~ Rapport de ZHPDiag v2014.2.10.5 - Nicolas Coolman  (2014-02-10)
~ Lancé par Syvie (2014-02-17 08:07:11)
~ Adresse du Site Web  http://nicolascoolman.webs.com
~ Forums gratuits d'Assistance à la désinfection : http://nicolascoolman.webs.com/apps/links/
~ Traduit par Nicolas Coolman
~ Etat de la version : 
~ Liste blanche : Désactivée par l'utilisateur
~ Elévation des Privilèges : OK
~ User Account Control (UAC): Deactivate by user


---\\ Navigateurs Internet
MSIE: Internet Explorer v11.0.9600.16518
GCIE: Google Chrome v32.0.1700.107 (Defaut)

---\\ Informations sur les produits Windows
~ Langage: Français
Windows 7 Home Premium, 32-bit Service Pack 1 (Build 7601)
Windows Server License Manager Script : OK
~ Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : 3Q6C9
Windows License : OK
~ Windows Remaining Initializations Number : 3
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ Logiciels de protection du système
Malwarebytes Anti-Malware version 1.75.0.1300
Microsoft Security Client v4.4.0304.0
Windows Defender W7

---\\ Logiciels d'optimisation du système
CCleaner v4.10 =>Piriform Ltd

---\\ Logiciels de partage PeerToPeer

---\\ Surveillance de Logiciels
Adobe Flash Player 12 Plugin
Adobe Reader XI
Java 7 Update 51

---\\ Informations sur le système
~ Processor: x86 Family 15 Model 6 Stepping 5, GenuineIntel
~ Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 1015 MB (35% free)
System Restore: Activé (Enable)
System drive C: has 195 GB (65%) free of 298 GB

---\\ Mode de connexion au système
~ Computer Name: SYVIE-PC
~ User Name: Syvie
~ All Users Names: Syvie, HomeGroupUser$, Administrateur, 
~ Unselected Option: None
Logged in as Administrator

---\\ Variables d'environnement
~ System Unit : C:\
~ %AppZHP% : C:\Users\Syvie\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\Syvie\AppData\Roaming\
~ %Desktop% : C:\Users\Syvie\Desktop\
~ %Favorites% : C:\Users\Syvie\Favorites\
~ %LocalAppData% : C:\Users\Syvie\AppData\Local\
~ %StartMenu% : C:\Users\Syvie\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ Enumération des unités disques
C: Hard drive, Flash drive, Thumb drive (Free 195 Go of 298 Go)
D: CD-ROM drive (Free 0 Go of 3 Go)
E: Hard drive, Flash drive, Thumb drive (Free 149 Go of 149 Go)



---\\ Etat du Centre de Sécurité Windows
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableTaskMgr: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableRegistryTools: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime :  OK
~ Security Center: 46 Scanned in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.8B88EBBB05A0E56B7DCC708498C02B3E] - (.Microsoft Corporation - Explorateur Windows.) (.2011-02-25 - 00:30:54.) -- C:\Windows\Explorer.exe [2616320]
[MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de démarrage de Windows.) (.2009-07-13 - 20:14:45.) -- C:\Windows\System32\Wininit.exe [96256]
[MD5.9C89246184979A070B0C6CCF61C68136] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.2014-02-06 - 03:41:35.) -- C:\Windows\System32\wininet.dll [1820160]
[MD5.6D13E1406F50C66E2A95D97F22C47560] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.2010-11-20 - 16:29:06.) -- C:\Windows\System32\Winlogon.exe [286720]
[MD5.E3AE23569749DE12D45BA3B489A036AE] - (.Microsoft Corporation - Bibliothèque de licences.) (.2010-11-20 - 16:29:24.) -- C:\Windows\System32\sppcomapi.dll [193536]
[MD5.F81BB7E487EDCEAB630A7EE66CF23913] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.2013-09-13 - 19:48:58.) -- C:\Windows\system32\Drivers\AFD.sys [338944]
[MD5.338C86357871C167A96AB976519BF59E] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.2009-07-13 - 20:26:15.) -- C:\Windows\system32\Drivers\atapi.sys [21584]
[MD5.77EA11B065E0A8AB902D78145CA51E10] - (.Microsoft Corporation - CD-ROM File System Driver.) (.2009-07-13 - 18:11:15.) -- C:\Windows\system32\Drivers\Cdfs.sys [70656]
[MD5.BE167ED0FDB9C1FA1133953C18D5A6C9] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.2010-11-20 - 16:29:03.) -- C:\Windows\system32\Drivers\Cdrom.sys [108544]
[MD5.F024449C97EC1E464AAFFDA18593DB88] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.2010-11-20 - 16:29:07.) -- C:\Windows\system32\Drivers\DfsC.sys [78336]
[MD5.9036377B8A6C15DC2EEC53E489D159B5] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.2010-11-20 - 16:29:03.) -- C:\Windows\system32\Drivers\HDAudBus.sys [108544]
[MD5.F151F0BDC47F4A28B1B20A0818EA36D6] - (.Microsoft Corporation - Pilote de port i8042.) (.2009-07-13 - 18:11:24.) -- C:\Windows\system32\Drivers\i8042prt.sys [80896]
[MD5.A5FA468D67ABCDAA36264E463A7BB0CD] - (.Microsoft Corporation - IP Network Address Translator.) (.2009-07-13 - 18:54:29.) -- C:\Windows\system32\Drivers\IpNat.sys [101888]
[MD5.5D16C921E3671636C0EBA3BBAAC5FD25] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.2011-04-26 - 21:17:22.) -- C:\Windows\system32\Drivers\MRxSmb.sys [123904]
[MD5.280122DDCF04B378EDD1AD54D71C1E54] - (.Microsoft Corporation - MBT Transport driver.) (.2010-11-20 - 16:29:08.) -- C:\Windows\system32\Drivers\netBT.sys [187904]
[MD5.5E43D2B0EE64123D4880DFA6626DEFDE] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.2013-04-12 - 08:45:29.) -- C:\Windows\system32\Drivers\ntfs.sys [1211752]
[MD5.2EA877ED5DD9713C5AC74E8EA7348D14] - (.Microsoft Corporation - Pilote de port parallèle.) (.2009-07-13 - 18:45:35.) -- C:\Windows\system32\Drivers\Parport.sys [79360]
[MD5.D9F91EAFEC2815365CBE6D167E4E332A] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.2009-07-13 - 18:54:34.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [78848]
[MD5.3E21C083B8A01CB70BA1F09303010FCE] - (.Microsoft Corporation - SMB Transport driver.) (.2009-07-13 - 18:53:41.) -- C:\Windows\system32\Drivers\smb.sys [71168]
[MD5.B459575348C20E8121D6039DA063C704] - (.Microsoft Corporation - TDI Translation Driver.) (.2010-11-20 - 16:29:07.) -- C:\Windows\system32\Drivers\tdx.sys [74752]
[MD5.F497F67932C6FA693D7DE2780631CFE7] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.2010-11-20 - 16:29:03.) -- C:\Windows\system32\Drivers\volsnap.sys [245632]
~ Generic Processes:  Scanned in 00mn 00s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 0/761
~ Mes musiques (My Musics) : 0/156
~ Mes Videos (My Videos) : 0/1
~ Mes Favoris (My Favorites) : 0/18
~ Mes Documents (My Documents) : 0/375
~ Mon Bureau (My Desktop) : 0/3212
~ Menu demarrer (Programs) : 0/65
~ Hidden Files:  Scanned in 00mn 05s



---\\ Processus lancés
[MD5.FF547806C124212C204595574D2224BD] - (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe   [173592] [PID.1868]
[MD5.533856047347C34864F01A2A7D9D9DD6] - (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe   [150552] [PID.1328]
[MD5.DB367E8C8F46C26A05BA982715CC0DB5] - (.Pixart Imaging Inc - pximouse.) -- C:\Windows\System32\TiltWheelMouse.exe   [241152] [PID.652]
[MD5.C8CD6D51EAD86FA571D8E3151907DE59] - (.Intel Corporation - igfxsrvc Module.) -- C:\Windows\system32\igfxsrvc.exe   [252952] [PID.2284]
[MD5.DF37DE4EB253CC67CB6B9D0B1BC69463] - (.Ralink Technology, Corp. - Ralink Wireless LAN Card Utility.) -- C:\Program Files\Ralink\Common\RaUI.exe   [11474272] [PID.3980]
[MD5.C5AC2D90D39224C7D84DD7E9B783BE31] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe   [8333824] [PID.2248]
~ Processes Running:  Scanned in 00mn 11s



---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Preferences
G1 - GCS: Preference [User Data\Default] None
G2 - GCE: Preference [User Data\Default] [ahfgeienlihckogmohjhadlkjgocpleb] Google Store v.0.2 (Activé)
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Documents Google v.0.5 (Activé)
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Drive v.6.3 (Activé)
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] YouTube v.4.2.6 (Activé)
G2 - GCE: Preference [User Data\Default] [cfhdojbkjhnklbpkdaibdccddilifddb] Adblock Plus v.1.7.4, (Activé)
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Recherche Google v.0.0.0.20 (Activé)
G2 - GCE: Preference [User Data\Default] [eemcgdkfndhakfknompkggombfjjjeno] Bookmark Manager v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [ennkphjdgehloodpbhlhldgbnhmacadg] Settings v.0.2 (Activé)
G2 - GCE: Preference [User Data\Default] [gfdkimpbcpahaombhbimeihdjnejgicl] Feedback v.1.0 (Activé)
G2 - GCE: Preference [User Data\Default] [mfehgcgbbipciphmccgaenjidiccnmng] Cloud Print v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [mgndgikekgjfcpckkfioiadnlibdjbkf] Chrome v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [nkeimhogjdpnpccoofpliimaahmaaome] Hangout Services v.1.0 (Activé)
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Wallet v.0.0.6.0 (Activé)
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Gmail v.7 (Activé)
~ Google Browser: 15 Scanned in 00mn 05s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions  (P2,M0,M1,M2,M3)
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF32_12_0_0_44.dll
P2 - FPN: [HKLM] [@java.com/DTPlugin,version=10.51.2] - (.Oracle Corporation - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll
P2 - FPN: [HKLM] [@java.com/JavaPlugin,version=10.51.2] - (.Oracle Corporation - Next Generation Java Plug-in 10.51.2 for Mozilla browsers.) -- C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
P2 - FPN: [HKLM] [@microsoft.com/GENUINE] - (.Microsoft Corporation - Windows Activation Technologies Plugin for Mozilla.) -- C:\Windows\system32\Wat\npWatWeb.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.20913.0.) -- c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll
P2 - FPN: [HKLM] [@microsoft.com/OfficeAuthz,version=14.0] - (.Microsoft Corporation - Office Authorization plug-in for NPAPI browsers.) -- C:\Program Files\Microsoft Office\Office14\NPAUTHZ.dll
P2 - FPN: [HKLM] [@microsoft.com/SharePoint,version=14.0] - (.Microsoft Corporation - The plug-in allows you to open and edit files using Microsoft Office a.) -- C:\Program Files\Microsoft Office\Office14\NPSPWRAP.dll
P2 - FPN: [HKLM] [@oberon-media.com/ONCAdapter] - (.Oberon-Media - npapicomadapter.) -- C:\Program Files\Common Files\Oberon Media\NCAdapter\1.0.0.14\npapicomadapter.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.22.5\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.22.5\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [@videolan.org/vlc,version=2.0.8] - (.VideoLAN - VLC media player Web Plugin 2.1.3.) -- C:\Program Files\VideoLAN\VLC\npvlc.dll  =>.VideoLAN
P2 - FPN: [HKLM] [@videolan.org/vlc,version=2.1.1] - (.VideoLAN - VLC media player Web Plugin 2.1.3.) -- C:\Program Files\VideoLAN\VLC\npvlc.dll  =>.VideoLAN
P2 - FPN: [HKLM] [@videolan.org/vlc,version=2.1.2] - (.VideoLAN - VLC media player Web Plugin 2.1.3.) -- C:\Program Files\VideoLAN\VLC\npvlc.dll  =>.VideoLAN
P2 - FPN: [HKLM] [@videolan.org/vlc,version=2.1.3] - (.VideoLAN - VLC media player Web Plugin 2.1.3.) -- C:\Program Files\VideoLAN\VLC\npvlc.dll  =>.VideoLAN
P2 - FPN: [HKLM] [Adobe Reader] - (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 11.0.06.) -- C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
P2 - FPN: [HKCU] [@Skype Limited.com/Facebook Video Calling Plugin] - (.Skype Limited - Facebook Video Calling Plugin.) -- C:\Users\Syvie\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll
~ Firefox Browser: 16 Scanned in 00mn 00s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
~ IE Browser: 10 Scanned in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management:  Scanned in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys:  Scanned in 00mn 00s



---\\ Hosts file redirection (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File:  Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 0



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} . (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files\Microsoft Office\Office14\GROOVEEX.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\Program Files\Microsoft Office\Office14\URLREDIR.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre7\bin\jp2ssv.dll
~ BHO: 8 Scanned in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - GS\Desktop [Public]: AIMP3.lnk . (.AIMP DevTeam - AIMP3.)  -- C:\Program Files\AIMP3\AIMP3.exe 
O4 - GS\Desktop [Public]: CCleaner.lnk . (.Piriform Ltd - CCleaner.)  -- C:\Program Files\CCleaner\CCleaner.exe =>Piriform Ltd
O4 - GS\Desktop [Public]: CDBurnerXP.lnk . (.Canneverbe Limited - CDBurnerXP.)  -- C:\Program Files\CDBurnerXP\cdbxpp.exe 
O4 - GS\Desktop [Public]: CSI-Miami.lnk . (.Macromedia, Inc. - Macromedia Projector.)  -- C:\Program Files\Ubisoft\369\CSI-Miami\CSI-Miami.exe 
O4 - GS\Desktop [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.)  -- C:\Program Files\Google\Chrome\Application\chrome.exe 
O4 - GS\Desktop [Public]: Jeux.lnk . (...)  -- C:\Program Files\bfgclient\bfgclient.exe
O4 - GS\Desktop [Public]: Les Sims™ 3.lnk . (.Electronic Arts, Inc. - Sims 3Launcher Starter Application.)  -- C:\Program Files\Electronic Arts\Les Sims 3\Game\Bin\Sims3Launcher.exe 
O4 - GS\Desktop [Public]: Malwarebytes Anti-Malware.lnk . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.)  -- C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe 
O4 - GS\Desktop [Public]: Play Vampire Ventures.lnk . (...)  -- C:\Program Files\Vampire Ventures\LaunchGame.bfg 
O4 - GS\Desktop [Public]: Skype.lnk . (...)  -- C:\Windows\Installer\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}\SkypeIcon.exe
O4 - GS\Desktop [Public]: VLC media player.lnk . (.VideoLAN - VLC media player 2.1.3.)  -- C:\Program Files\VideoLAN\VLC\vlc.exe  =>.VideoLAN
O4 - GS\Program [Public]: Adobe Reader XI.lnk . (...)  -- C:\Windows\Installer\{AC76BA86-7AD7-1036-7B44-AB0000000001}\SC_Reader.ico 
O4 - GS\Program [Public]: CDBurnerXP.lnk . (.Canneverbe Limited - CDBurnerXP.)  -- C:\Program Files\CDBurnerXP\cdbxpp.exe 
O4 - GS\Program [Public]: Encore plus de jeux.lnk - Clé orpheline
O4 - GS\Program [Public]: Game Manager.lnk . (...)  -- C:\Program Files\bfgclient\bfgclient.exe
O4 - GS\Program [Public]: GIMP 2.lnk . (.Spencer Kimball, Peter Mattis and the GIMP - GNU Image Manipulation Program.)  -- C:\Program Files\GIMP 2\bin\gimp-2.8.exe 
O4 - GS\Program [Public]: Media Center.lnk . (.Microsoft Corporation - Windows Media Center.)  -- C:\Windows\ehome\ehshell.exe  =>.Microsoft Corporation
O4 - GS\Program [Public]: Microsoft Security Essentials.lnk . (.Microsoft Corporation - Microsoft Security Client User Interface.)  -- C:\Program Files\Microsoft Security Client\msseces.exe 
O4 - GS\Program [Public]: Sidebar.lnk . (.Microsoft Corporation - Gadgets du Bureau Windows.)  -- C:\Program Files\Windows Sidebar\sidebar.exe  =>.Microsoft Corporation
O4 - GS\Program [Public]: Switch - Convertisseur de fichiers audio.lnk . (...)  -- C:\Program Files\NCH Software\Switch\switch.exe (.not file.)
O4 - GS\Program [Public]: TeamViewer 8.lnk . (.TeamViewer GmbH - TeamViewer 8.)  -- C:\Program Files\TeamViewer\Version8\TeamViewer.exe 
O4 - GS\Program [Public]: WavePad - Logiciel d'édition audio.lnk . (...)  -- C:\Program Files\NCH Software\WavePad\wavepad.exe (.not file.)
O4 - GS\Program [Public]: Windows Anytime Upgrade.lnk . (.Microsoft Corporation - Interface utilisateur de Mise à niveau expr.)  -- C:\Windows\system32\WindowsAnytimeUpgradeUI.exe 
O4 - GS\Program [Public]: Windows DVD Maker.lnk . (.Microsoft Corporation - Création de DVD Windows.)  -- C:\Program Files\DVD Maker\DVDMaker.exe  =>.Microsoft Corporation
O4 - GS\Program [Public]: Windows Fax and Scan.lnk . (.Microsoft Corporation - Microsoft  Windows Fax and Scan.)  -- C:\Windows\system32\WFS.exe  =>.Microsoft Corporation
O4 - GS\Program [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.)  -- C:\Program Files\Windows Media Player\wmplayer.exe  =>.Microsoft Corporation
O4 - GS\Program [Public]: XPS Viewer.lnk . (.Microsoft Corporation - Visionneuse XPS.)  -- C:\Windows\system32\xpsrchvw.exe  =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Calculator.lnk . (.Microsoft Corporation - Calculatrice de Windows.)  -- C:\Windows\system32\calc.exe  =>.Microsoft Corporation
O4 - GS\Accessories [Public]: displayswitch.lnk . (.Microsoft Corporation - Afficher le commutateur.)  -- C:\Windows\system32\displayswitch.exe  =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Math Input Panel.lnk . (.Microsoft Corporation - Accessoire du panneau de saisie mathématiqu.)  -- C:\Program Files\Common Files\Microsoft Shared\Ink\mip.exe  =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Mobility Center.lnk . (.Microsoft Corporation - Centre de mobilité Windows.)  -- C:\Windows\system32\mblctr.exe  =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.)  -- C:\Windows\system32\mspaint.exe  =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Connexion Bureau à distance.)  -- C:\Windows\system32\mstsc.exe  =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - Outil Capture.)  -- C:\Windows\system32\SnippingTool.exe  =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sound Recorder.lnk . (.Microsoft Corporation - Magnétophone Windows.)  -- C:\Windows\system32\SoundRecorder.exe  =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sticky Notes.lnk . (.Microsoft Corporation - Pense-bête.)  -- C:\Windows\system32\StikyNot.exe  =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sync Center.lnk . (.Microsoft Corporation - Microsoft Sync Center.)  -- C:\Windows\System32\mobsync.exe  =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Welcome Center.lnk . (.Microsoft Corporation - Mise en route.)  -- C:\Windows\system32\OobeFldr.dll  =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Application Windows Wordpad.)  -- C:\Program Files\Windows NT\Accessories\wordpad.exe  =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Table des caractères.)  -- C:\Windows\system32\charmap.exe  =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: dfrgui.lnk . (.Microsoft Corporation - Défragmenteur de disque Microsoft®.)  -- C:\Windows\system32\dfrgui.exe  =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Disk Cleanup.lnk . (.Microsoft Corporation - Gestionnaire de nettoyage de disque pour Wi.)  -- C:\Windows\system32\cleanmgr.exe  =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Resource Monitor.lnk . (.Microsoft Corporation - Moniteur de ressources et de performances.)  -- C:\Windows\system32\perfmon.exe  =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: System Information.lnk . (.Microsoft Corporation - Informations système.)  -- C:\Windows\system32\msinfo32.exe  =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: System Restore.lnk . (.Microsoft Corporation - Restauration du système de Microsoft® Windo.)  -- C:\Windows\system32\rstrui.exe  =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Task Scheduler.lnk . (...)  -- C:\Windows\system32\taskschd.msc
O4 - GS\SystemTools [Public]: Windows Easy Transfer Reports.lnk . (.Microsoft Corporation - Application post-migration de transfert de.)  -- C:\Windows\system32\migwiz\postmig.exe  =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Windows Easy Transfer.lnk . (.Microsoft Corporation - Application Transfert de fichiers et paramè.)  -- C:\Windows\system32\migwiz\migwiz.exe  =>.Microsoft Corporation
O4 - GS\QuickLaunch [Syvie]: Google Chrome.lnk . (.Google Inc. - Google Chrome.)  -- C:\Program Files\Google\Chrome\Application\chrome.exe 
O4 - GS\QuickLaunch [Syvie]: Jeux.lnk . (...)  -- C:\Program Files\bfgclient\bfgclient.exe
O4 - GS\QuickLaunch [Syvie]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.)  -- C:\Program Files\Internet Explorer\iexplore.exe 
O4 - GS\QuickLaunch [Syvie]: Microsoft Outlook.lnk . (.Microsoft Corporation - Microsoft Outlook.)  -- C:\Program Files\Microsoft Office\Office14\OUTLOOK.exe 
O4 - GS\TaskBar [Syvie]: Google Chrome.lnk . (.Google Inc. - Google Chrome.)  -- C:\Program Files\Google\Chrome\Application\chrome.exe 
O4 - GS\TaskBar [Syvie]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.)  -- C:\Program Files\Internet Explorer\iexplore.exe 
O4 - GS\TaskBar [Syvie]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.)  -- C:\Windows\explorer.exe  =>.Microsoft Corporation
O4 - GS\TaskBar [Syvie]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.)  -- C:\Program Files\Windows Media Player\wmplayer.exe  =>.Microsoft Corporation
O4 - GS\Program [Syvie]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.)  -- C:\Program Files\Internet Explorer\iexplore.exe 
O4 - GS\Accessories [Syvie]: Command Prompt.lnk . (.Microsoft Corporation - Interpréteur de commandes Windows.)  -- C:\Windows\system32\cmd.exe  =>.Microsoft Corporation
O4 - GS\Accessories [Syvie]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.)  -- C:\Windows\system32\notepad.exe  =>.Microsoft Corporation
O4 - GS\Accessories [Syvie]: Run.lnk - Clé orpheline
O4 - GS\Accessories [Syvie]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.)  -- C:\Windows\explorer.exe  =>.Microsoft Corporation
O4 - GS\SystemTools [Syvie]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.)  -- C:\Program Files\Internet Explorer\iexplore.exe 
O4 - GS\SystemTools [Syvie]: Private Character Editor.lnk . (.Microsoft Corporation - Éditeur de caractères privés.)  -- C:\Windows\system32\eudcedit.exe  =>.Microsoft Corporation
O4 - GS\SendTo [Syvie]: Skype.lnk . (.Skype Technologies S.A. - Skype.)  -- C:\Program Files\Skype\Phone\Skype.exe  =>.Skype Technologies S.A.
O4 - GS\Desktop [Syvie]: AIDA64 Extreme Edition.lnk . (.FinalWire Ltd. - AIDA64 Extreme Edition.)  -- C:\Program Files\FinalWire\AIDA64 Extreme Edition\aida64.exe 
O4 - GS\Desktop [Syvie]: Castle_NeverJudgeABookByItsCover - Raccourci.lnk . (...)  -- C:\Users\Syvie\Downloads\Castle - Ne Vous Fiez Pas Aux Apparences\Castle_NeverJudgeABookByItsCover.exe
O4 - GS\Desktop [Syvie]: Documents - Raccourci.lnk . (...)  -- C:\Users\Syvie\AppData\Roaming\Microsoft\Windows\Libraries\Documents.library-ms 
O4 - GS\Desktop [Syvie]: Downloads.lnk . (...)  -- C:\Users\Syvie\Downloads 
O4 - GS\Desktop [Syvie]: Ma musique.lnk . (...)  -- C:\Users\Syvie\Music 
O4 - GS\Desktop [Syvie]: Microsoft Outlook 2010.lnk . (...)  -- C:\Windows\Installer\{90140000-0011-0000-0000-0000000FF1CE}\outicon.exe
O4 - GS\Desktop [Syvie]: Ordinateur - Raccourci.lnk - Clé orpheline
O4 - GS\Desktop [Syvie]: Panneau de configuration - Raccourci.lnk - Clé orpheline
O4 - GS\Desktop [Syvie]: Revo Uninstaller.lnk . (.VS Revo Group - Revo Uninstaller.)  -- C:\Program Files\VS Revo Group\Revo Uninstaller\Revouninstaller.exe 
O4 - GS\Desktop [Syvie]: TS3W - Raccourci.lnk . (.Electronic Arts Inc. - Sims 3.)  -- C:\Program Files\Electronic Arts\Les Sims 3\Game\Bin\TS3W.exe 
~ Global Startup: 78 Scanned in 00mn 04s



---\\ Applications lancées au démarrage du sytème (O4)
O4 - GS\Startup [Public]: Ralink Wireless Utility.lnk . (.Ralink Technology, Corp. - Ralink Wireless LAN Card Utility.)  -- C:\Program Files\Ralink\Common\RaUI.exe 
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe 
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe 
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe 
O4 - HKLM\..\Run: [MouseDriver] . (.Pixart Imaging Inc - pximouse.) -- C:\Windows\System32\TiltWheelMouse.exe 
O4 - HKLM\..\Run: [MSC] . (.Microsoft Corporation - Microsoft Security Client User Interface.) -- c:\Program Files\Microsoft Security Client\msseces.exe 
O4 - HKCU\..\Run: [WeatherEye] . (.Pelmorex Media Inc. - Pas de description.) -- C:\Users\Syvie\AppData\Local\MétéoMédia\weathereye.exe 
O4 - HKUS\S-1-5-21-1678490633-2079400848-2466730827-1000\..\Run: [WeatherEye] . (.Pelmorex Media Inc. - Pas de description.) -- C:\Users\Syvie\AppData\Local\MétéoMédia\weathereye.exe 
~ Application:  Scanned in 00mn 05s



---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ IE Control Panel: 1 Scanned in 00mn 00s



---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files\MICROS~2\Office14\ONBttnIE.dll  =>.Microsoft Corporation
O9 - Extra button: Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files\MICROS~2\Office14\ONBTTN~1.dll  =>.Microsoft Corporation
~ IE Extra Buttons:  Scanned in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll  =>.Microsoft Corporation
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
~ Winsock: 6 Scanned in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{1260B50D-21A1-46F4-AC31-C0C1D323BBF8}: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\..\{1260B50D-21A1-46F4-AC31-C0C1D323BBF8}: DhcpDomain = gateway.2wire.net
O17 - HKLM\System\CS1\Services\Tcpip\..\{1260B50D-21A1-46F4-AC31-C0C1D323BBF8}: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CS1\Services\Tcpip\..\{1260B50D-21A1-46F4-AC31-C0C1D323BBF8}: DhcpDomain = gateway.2wire.net
O17 - HKLM\System\CS2\Services\Tcpip\..\{1260B50D-21A1-46F4-AC31-C0C1D323BBF8}: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CS2\Services\Tcpip\..\{1260B50D-21A1-46F4-AC31-C0C1D323BBF8}: DhcpDomain = gateway.2wire.net
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
~ Domain:  Scanned in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll  =>.Microsoft Corporation
O18 - Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.dll  =>.Microsoft Corporation
~ Protocole Additionnel:  Scanned in 00mn 00s



---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
~ Winlogon:  Scanned in 00mn 00s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe  =>.Google Inc
O23 - Service: Online Games Manager (ogmservice) . (.RealNetworks, Inc. - Online Games Manager.) - C:\Program Files\Online Games Manager\ogmservice.exe
O23 - Service: Ralink Registry Writer (RalinkRegistryWriter) . (.Ralink Technology, Corp. - RalinkRegistryWriter.) - C:\Program Files\Ralink\Common\RaRegistry.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: TeamViewer 8 (TeamViewer8) . (.TeamViewer GmbH - TeamViewer 8.) - C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe
~ Services: 6 Scanned in 00mn 05s



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) -  (.not file.)
~ Desktop Component: 4 Scanned in 00mn 00s



---\\ Enumère les données de BootExecute (BEX) (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ BEX: 1 Scanned in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1678490633-2079400848-2466730827-1000Core.job   [906]
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1678490633-2079400848-2466730827-1000UA.job   [928]
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job   [1050]
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job   [1054]
[MD5.5B1AA494C27CF0BC3B03E8666ACB225E] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe   [4455704]  =>Piriform Ltd
[MD5.2A3FB4C98F139038E23330D2439DB8A4] [APT] [FacebookUpdateTaskUserS-1-5-21-1678490633-2079400848-2466730827-1000Core] (.Facebook Inc..) -- C:\Users\Syvie\AppData\Local\Facebook\Update\FacebookUpdate.exe   [138096]
[MD5.2A3FB4C98F139038E23330D2439DB8A4] [APT] [FacebookUpdateTaskUserS-1-5-21-1678490633-2079400848-2466730827-1000UA] (.Facebook Inc..) -- C:\Users\Syvie\AppData\Local\Facebook\Update\FacebookUpdate.exe   [138096]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe   [116648]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe   [116648]
[MD5.4C17D41E9A16A7FDC84E343698C7CB58] [APT] [HPCustParticipation HP Deskjet 3520 series] (.Hewlett-Packard Co..) -- C:\Program Files\HP\HP Deskjet 3520 series\Bin\HPCustPartic.exe   [2906984]
[MD5.DE76D8D3E89686D2842520CC0D55AF44] [APT] [{96418EF6-0E93-40DB-B30D-AEE6DF0BB7F7}] (.VS Revo Group.) -- C:\Program Files\VS Revo Group\Revo Uninstaller\Revouninstaller.exe   [3161648]
~ Scheduled Task: 12 Scanned in 00mn 03s



---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll  =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows Media Player 12.0 - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\System32\wmpdxm.dll  =>.Microsoft Corporation
O40 - ASIC: Themes Setup - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Internet Explorer - {2D46B6DC-2207-486B-B523-A557E6D54B47} . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\system32\cmd.exe  =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files\Windows Mail\WinMail.exe  =>.Microsoft Corporation
O40 - ASIC: Browsing Enhancements - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll  =>.Microsoft Corporation
O40 - ASIC: Windows Desktop Update - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
O40 - ASIC: Google Chrome - {8A69D345-D564-463c-AFF1-A69D9E530F96} . (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\32.0.1700.107\Installer\chrmstp.exe
~ Active Setup: 11 Scanned in 00mn 00s



---\\ Pilotes lancés au démarrage du système (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\System32\DRIVERS\blbdrive.sys
O41 - Driver:  (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver:  (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\System32\DRIVERS\mssmbios.sys
O41 - Driver:  (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\System32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\System32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver:  (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver:  (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver:  (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys
~ Drivers: 60 Scanned in 00mn 00s



---\\ Logiciels installés (O42)
O42 - Logiciel: AIDA64 Extreme Edition v3.20 - (.FinalWire Ltd..) [HKLM] -- AIDA64 Extreme Edition_is1
O42 - Logiciel: AIMP3 - (.AIMP DevTeam.) [HKLM] -- AIMP3
O42 - Logiciel: Adobe Flash Player 12 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 12 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Reader XI (11.0.06) - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-AB0000000001}
O42 - Logiciel: Big Fish: Game Manager - (...) [HKLM] -- BFGC
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner =>Piriform Ltd
O42 - Logiciel: CDBurnerXP - (.CDBurnerXP.) [HKLM] -- {7E265513-8CDA-4631-B696-F40D983F3B07}_is1
O42 - Logiciel: Cisco EAP-FAST Module - (.Cisco Systems, Inc..) [HKLM] -- {64BF0187-F3D2-498B-99EA-163AF9AE6EC9}
O42 - Logiciel: Cisco LEAP Module - (.Cisco Systems, Inc..) [HKLM] -- {51C7AD07-C3F6-4635-8E8A-231306D810FE}
O42 - Logiciel: Cisco PEAP Module - (.Cisco Systems, Inc..) [HKLM] -- {ED5776D5-59B4-46B7-AF81-5F2D94D7C640}
O42 - Logiciel: Facebook Video Calling 2.0.0.447 - (.Skype Limited.) [HKLM] -- {8DF41A9F-FE13-43E8-A003-5F9B55A011EE}
O42 - Logiciel: Flash Player Pro V5.4 - (.FlashPlayerPro.com.) [HKLM] -- Flash Player Pro_is1
O42 - Logiciel: GIMP 2.8.4 - (.The GIMP Team.) [HKLM] -- GIMP-2_is1
O42 - Logiciel: Gardenscapes 2 - (.Oberon Media.) [HKLM] -- 510008678
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM] -- Google Chrome
O42 - Logiciel: Google Drive - (.Google, Inc..) [HKLM] -- {E87022D3-C8C9-4C76-8E27-BC7F18F9B8FB}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: HP Deskjet 3520 series Aide - (.Hewlett Packard.) [HKLM] -- {9347E332-74BC-4738-9D37-FEC946F1900F}
O42 - Logiciel: HP Deskjet 3520 series Setup Guide - (.Hewlett Packard.) [HKLM] -- {AEEDCEB7-00B8-4BE1-B492-AB04803D5F1E}
O42 - Logiciel: HP FWUpdateEDO2 - (.Hewlett-Packard.) [HKLM] -- {415FA9AD-DA10-4ABE-97B6-5051D4795C90}
O42 - Logiciel: HP Photo Creations - (.HP Photo Creations Powered by RocketLife.) [HKLM] -- HP Photo Creations
O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM] -- {6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5}
O42 - Logiciel: HPDiagnosticAlert - (.Microsoft.) [HKLM] -- {846B5DED-DC8C-4E1A-B5B4-9F5B39A0CACE}
O42 - Logiciel: Intel(R) Graphics Media Accelerator Driver - (.Intel Corporation.) [HKLM] -- HDMI
O42 - Logiciel: Java 7 Update 51 - (.Oracle.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83217025FF}
O42 - Logiciel: LG USB Modem driver - (...) [HKLM] -- {C3ABE126-2BB2-4246-BFE1-6797679B3579}
O42 - Logiciel: Les Sims™ 3 - (.Electronic Arts.) [HKLM] -- {C05D8CDB-417D-4335-A38C-A0659EDFD6B8}
O42 - Logiciel: Les Sims™ 3 Super-pouvoirs - (.Electronic Arts.) [HKLM] -- {B37DAFA5-717D-41F8-BDFB-3A4B68C0B3A1}
O42 - Logiciel: Logiciel de base du périphérique HP Deskjet 3520 series - (.Hewlett-Packard Co..) [HKLM] -- {529B6647-6F89-479C-B697-B42215D6EF7F}  =>.Hewlett-Packard Co
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: Malwarebytes Anti-Malware version 1.75.0.1300 - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: Microsoft Security Client - (.Microsoft Corporation.) [HKLM] -- {0CD47142-BA4F-46B0-AA92-2675864928B8}
O42 - Logiciel: Microsoft Security Essentials - (.Microsoft Corporation.) [HKLM] -- Microsoft Security Client
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Microsoft WSE 3.0 Runtime - (.Microsoft Corp..) [HKLM] -- {E3E71D07-CD27-46CB-8448-16D4FB29AA13}
O42 - Logiciel: MétéoMédia - (.MétéoMédia.) [HKCU] -- MétéoMédia
O42 - Logiciel: Online Games Manager v1.21 - (.Real Networks, Inc..) [HKLM] -- Online Games Manager
O42 - Logiciel: Ralink RT2870 Wireless LAN Card - (.Ralink.) [HKLM] -- {28DA7D8B-F9A4-4F18-8AA0-551B1E084D0D}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Revo Uninstaller 1.95 - (.VS Revo Group.) [HKLM] -- Revo Uninstaller
O42 - Logiciel: Skype™ 6.11 - (.Skype Technologies S.A..) [HKLM] -- {4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}
O42 - Logiciel: TeamViewer 8 - (.TeamViewer.) [HKLM] -- TeamViewer 8
O42 - Logiciel: VC 9.0 Runtime - (.Check Point Software Technologies Ltd.) [HKLM] -- {02E89EFC-7B07-4D5A-AA03-9EC0902914EE}
O42 - Logiciel: VLC media player 2.1.3 - (.VideoLAN.) [HKLM] -- VLC media player  =>.VideoLAN
O42 - Logiciel: Vampire Ventures - (...) [HKLM] -- BFG-Vampire Ventures
O42 - Logiciel: WinRAR 5.00 (32-bit) - (.win.rar GmbH.) [HKLM] -- WinRAR archiver
O42 - Logiciel: Étude pour l'amélioration du produit HP Deskjet 3520 series - (.Hewlett-Packard Co..) [HKLM] -- {D73C4B21-72BD-463E-9AC0-034887B98AF0}  =>.Hewlett-Packard Co
~ Logic: 36 Scanned in 00mn 00s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\AWE Games]
[HKCU\Software\Adobe]
[HKCU\Software\AppDataLow\ISWVolatile]
[HKCU\Software\AppDataLow\Software\JavaSoft]
[HKCU\Software\AppDataLow]
[HKCU\Software\Aurigma]
[HKCU\Software\Big Fish Games]
[HKCU\Software\CITY_INTERACTIVE]
[HKCU\Software\Canneverbe Limited]
[HKCU\Software\CheckPoint]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\ClockworkPixels]
[HKCU\Software\DSS]
[HKCU\Software\DesktopPaints.com]
[HKCU\Software\Electronic Arts]
[HKCU\Software\Facebook]
[HKCU\Software\FinalWire]
[HKCU\Software\Gabest]
[HKCU\Software\GameHouse]
[HKCU\Software\Gogii Games]
[HKCU\Software\Google]
[HKCU\Software\HP]
[HKCU\Software\Hewlett-Packard]
[HKCU\Software\HowardMedia]
[HKCU\Software\IM Providers]
[HKCU\Software\Intel]
[HKCU\Software\JavaSoft]
[HKCU\Software\LazyTurtleGames]
[HKCU\Software\Licenses]
[HKCU\Software\LowRegistry]
[HKCU\Software\MMTWN]
[HKCU\Software\Macromedia]
[HKCU\Software\Macrovision]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\NCH Swift Sound]
[HKCU\Software\Netscape]
[HKCU\Software\ODBC]
[HKCU\Software\Oberon Media]
[HKCU\Software\Piriform]
[HKCU\Software\Pixart]
[HKCU\Software\Policies]
[HKCU\Software\Silverback Games]
[HKCU\Software\SkypeRS]
[HKCU\Software\Skype]
[HKCU\Software\TeamViewer]
[HKCU\Software\TeleCharger]
[HKCU\Software\The Silicon Realms Toolworks]
[HKCU\Software\Trolltech]
[HKCU\Software\Ubi Soft]
[HKCU\Software\VSRevoGroup]
[HKCU\Software\Visan]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinRAR]
[HKCU\Software\ej-technologies]
[HKCU\Software\telecharger-gratuit]
[HKLM\Software\ATI Technologies]
[HKLM\Software\Adobe]
[HKLM\Software\AdwCleaner]
[HKLM\Software\Anvisoft]
[HKLM\Software\Big Fish Games]
[HKLM\Software\Bunndle]
[HKLM\Software\CBSTEST]
[HKLM\Software\CSIMIAMI]
[HKLM\Software\Canneverbe Limited]
[HKLM\Software\CheckPoint]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Electronic Arts]
[HKLM\Software\Google]
[HKLM\Software\HP]
[HKLM\Software\Hewlett-Packard]
[HKLM\Software\IM Providers]
[HKLM\Software\Intel]
[HKLM\Software\JavaSoft]
[HKLM\Software\JreMetrics]
[HKLM\Software\Licenses]
[HKLM\Software\Macromedia]
[HKLM\Software\Malwarebytes' Anti-Malware (Trial)]
[HKLM\Software\Malwarebytes' Anti-Malware]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\MusicNet]
[HKLM\Software\ODBC]
[HKLM\Software\Oberon Media]
[HKLM\Software\OldTimer Tools]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\Ralink]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\RocketLife]
[HKLM\Software\SRS Labs]
[HKLM\Software\Shortcut_Module]
[HKLM\Software\Sims]
[HKLM\Software\Skype]
[HKLM\Software\Sonic]
[HKLM\Software\TeamViewer]
[HKLM\Software\VideoLAN]
[HKLM\Software\Visan]
[HKLM\Software\Volatile]
[HKLM\Software\WOW6432Node]
[HKLM\Software\WinRAR]
[HKLM\Software\Zone Labs]
[HKLM\Software\ej-technologies]
[HKLM\Software\mozilla.org]
~ Key Software: 194 Scanned in 00mn 00s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 2013-06-12 - 08:33:27 - [120,818] ----D C:\Program Files\Adobe
O43 - CFD: 2013-04-14 - 18:10:22 - [20,970] ----D C:\Program Files\AIMP3
O43 - CFD: 2014-02-11 - 14:02:14 - [2,547] ----D C:\Program Files\Anvisoft
O43 - CFD: 2013-10-22 - 18:48:44 - [11,343] ----D C:\Program Files\bfgclient
O43 - CFD: 2014-02-02 - 21:07:16 - [6,612] ----D C:\Program Files\CCleaner =>Piriform Ltd
O43 - CFD: 2013-07-29 - 17:19:02 - [18,768] ----D C:\Program Files\CDBurnerXP
O43 - CFD: 2013-12-06 - 22:02:45 - [0] ----D C:\Program Files\CheckPoint
O43 - CFD: 2013-04-14 - 16:41:48 - [2,558] ----D C:\Program Files\Cisco
O43 - CFD: 2014-02-05 - 14:40:15 - [345,216] ----D C:\Program Files\Common Files
O43 - CFD: 2011-04-11 - 20:45:02 - [79,371] ----D C:\Program Files\DVD Maker
O43 - CFD: 2013-07-03 - 21:16:38 - [862,823] ----D C:\Program Files\Electronic Arts
O43 - CFD: 2014-02-05 - 17:44:19 - [0] ----D C:\Program Files\Enigma Software Group
O43 - CFD: 2013-04-12 - 20:54:54 - [0] ----D C:\Program Files\Fichiers communs
O43 - CFD: 2014-01-10 - 18:16:51 - [28,153] ----D C:\Program Files\FinalWire
O43 - CFD: 2013-09-20 - 14:17:13 - [16,493] ----D C:\Program Files\Flash Player Pro
O43 - CFD: 2013-10-14 - 14:46:54 - [218,276] ----D C:\Program Files\GIMP 2
O43 - CFD: 2013-08-25 - 11:14:31 - [573,810] ----D C:\Program Files\Google
O43 - CFD: 2013-05-02 - 21:54:28 - [92,288] ----D C:\Program Files\HP
O43 - CFD: 2013-05-02 - 21:54:58 - [0,352] ----D C:\Program Files\HP Photo Creations
O43 - CFD: 2013-11-24 - 14:07:15 - [1065,562] ----D C:\Program Files\InstallShield Installation Information
O43 - CFD: 2014-02-14 - 08:33:45 - [22,366] ----D C:\Program Files\Internet Explorer
O43 - CFD: 2014-01-20 - 08:03:47 - [121,315] ----D C:\Program Files\Java
O43 - CFD: 2013-06-08 - 17:43:51 - [0,987] ----D C:\Program Files\LG Electronics
O43 - CFD: 2013-08-04 - 21:02:57 - [13,251] ----D C:\Program Files\Malwarebytes' Anti-Malware
O43 - CFD: 2013-04-13 - 13:02:14 - [38,002] ----D C:\Program Files\Microsoft Analysis Services
O43 - CFD: 2011-04-11 - 20:44:57 - [140,966] ----D C:\Program Files\Microsoft Games
O43 - CFD: 2013-04-13 - 13:07:49 - [950,776] ----D C:\Program Files\Microsoft Office
O43 - CFD: 2014-02-02 - 22:32:34 - [21,955] ----D C:\Program Files\Microsoft Security Client
O43 - CFD: 2013-10-10 - 06:01:43 - [40,851] ----D C:\Program Files\Microsoft Silverlight
O43 - CFD: 2013-04-13 - 13:07:43 - [1,722] ----D C:\Program Files\Microsoft SQL Server Compact Edition
O43 - CFD: 2013-04-13 - 13:07:43 - [0,757] ----D C:\Program Files\Microsoft Sync Framework
O43 - CFD: 2013-04-13 - 13:08:53 - [0,312] ----D C:\Program Files\Microsoft Synchronization Services
O43 - CFD: 2013-04-13 - 13:04:46 - [1,314] ----D C:\Program Files\Microsoft Visual Studio 8
O43 - CFD: 2013-07-01 - 09:30:45 - [0,934] ----D C:\Program Files\Microsoft WSE
O43 - CFD: 2013-04-13 - 13:07:43 - [7,789] ----D C:\Program Files\Microsoft.NET
O43 - CFD: 2013-08-18 - 11:41:33 - [47,728] ----D C:\Program Files\Mozilla Firefox.bak
O43 - CFD: 2013-04-13 - 13:10:44 - [0,025] ----D C:\Program Files\MSBuild
O43 - CFD: 2013-12-22 - 12:17:33 - [6,109] ----D C:\Program Files\MSECache
O43 - CFD: 2014-01-03 - 00:16:51 - [0] ----D C:\Program Files\MSXML 4.0
O43 - CFD: 2013-10-24 - 21:26:19 - [797,492] ----D C:\Program Files\Oberon Media SIDR
O43 - CFD: 2013-10-29 - 18:55:16 - [0,578] ----D C:\Program Files\Online Games Manager
O43 - CFD: 2014-02-05 - 13:49:31 - [0] ----D C:\Program Files\predm
O43 - CFD: 2013-04-14 - 16:41:18 - [104,588] ----D C:\Program Files\Ralink
O43 - CFD: 2013-04-13 - 10:24:50 - [8,845] ----D C:\Program Files\Realtek
O43 - CFD: 2009-07-13 - 23:52:30 - [37,357] ----D C:\Program Files\Reference Assemblies
O43 - CFD: 2013-12-20 - 14:52:05 - [20,261] R---D C:\Program Files\Skype
O43 - CFD: 2013-04-12 - 21:37:18 - [38,115] ----D C:\Program Files\TeamViewer
O43 - CFD: 2013-11-23 - 21:52:00 - [338,922] ----D C:\Program Files\Ubisoft
O43 - CFD: 2009-07-13 - 23:53:23 - [0] ----D C:\Program Files\Uninstall Information
O43 - CFD: 2013-10-29 - 20:38:46 - [82,496] ----D C:\Program Files\Vampire Ventures
O43 - CFD: 2013-04-13 - 15:33:29 - [99,701] ----D C:\Program Files\VideoLAN
O43 - CFD: 2013-04-14 - 17:58:32 - [6,523] ----D C:\Program Files\VS Revo Group
O43 - CFD: 2013-07-10 - 13:08:58 - [2,909] ----D C:\Program Files\Windows Defender
O43 - CFD: 2013-07-10 - 13:08:58 - [6,688] ----D C:\Program Files\Windows Journal
O43 - CFD: 2011-04-11 - 20:35:39 - [5,895] ----D C:\Program Files\Windows Mail  =>.Microsoft Corporation
O43 - CFD: 2013-12-12 - 13:34:28 - [6,298] ----D C:\Program Files\Windows Media Player  =>.Microsoft Corporation
O43 - CFD: 2013-04-12 - 20:54:54 - [11,632] ----D C:\Program Files\Windows NT
O43 - CFD: 2011-04-11 - 20:35:39 - [4,213] ----D C:\Program Files\Windows Photo Viewer
O43 - CFD: 2010-11-20 - 16:33:48 - [0,181] ----D C:\Program Files\Windows Portable Devices
O43 - CFD: 2011-04-11 - 20:35:39 - [6,388] ----D C:\Program Files\Windows Sidebar
O43 - CFD: 2013-11-23 - 21:24:29 - [4,604] ----D C:\Program Files\WinRAR
O43 - CFD: 2014-02-17 - 08:06:59 - [17,254] ----D C:\Program Files\ZHPDiag  =>.Nicolas Coolman
O43 - CFD: 2013-06-12 - 08:34:10 - [6,301] ----D C:\Program Files\Common Files\Adobe
O43 - CFD: 2013-04-13 - 13:08:49 - [0,095] ----D C:\Program Files\Common Files\DESIGNER
O43 - CFD: 2013-11-23 - 21:29:24 - [2,986] ----D C:\Program Files\Common Files\InstallShield
O43 - CFD: 2013-10-15 - 19:18:57 - [1,191] ----D C:\Program Files\Common Files\Java
O43 - CFD: 2013-04-13 - 13:11:30 - [234,638] ----D C:\Program Files\Common Files\microsoft shared
O43 - CFD: 2013-10-24 - 21:25:39 - [1,819] ----D C:\Program Files\Common Files\Oberon Media
O43 - CFD: 2009-07-13 - 21:37:05 - [0,003] ----D C:\Program Files\Common Files\Services
O43 - CFD: 2013-04-14 - 17:13:06 - [1,904] ----D C:\Program Files\Common Files\Skype
O43 - CFD: 2009-07-13 - 21:37:05 - [39,200] ----D C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 2013-04-13 - 15:00:07 - [13,740] ----D C:\Program Files\Common Files\System
O43 - CFD: 2014-02-05 - 14:40:16 - [43,340] ----D C:\Program Files\Common Files\Wise Installation Wizard
O43 - CFD: 2013-06-27 - 12:53:05 - [146,880] ----D C:\ProgramData\Adobe
O43 - CFD: 2009-07-13 - 23:53:55 - [0] -SH-D C:\ProgramData\Application Data
O43 - CFD: 2013-04-12 - 20:54:54 - [0] -SH-D C:\ProgramData\Bureau
O43 - CFD: 2013-04-14 - 17:49:20 - [0] ----D C:\ProgramData\Canneverbe Limited
O43 - CFD: 2013-04-12 - 22:38:33 - [0] ----D C:\ProgramData\CheckPoint
O43 - CFD: 2013-06-05 - 20:21:31 - [0] ----D C:\ProgramData\DailyMagic
O43 - CFD: 2009-07-13 - 23:53:55 - [0] -SH-D C:\ProgramData\Desktop
O43 - CFD: 2009-07-13 - 23:53:55 - [0] -SH-D C:\ProgramData\Documents
O43 - CFD: 2013-12-09 - 20:15:07 - [0] ----D C:\ProgramData\Elephant Games
O43 - CFD: 2013-04-12 - 20:54:54 - [0] -SH-D C:\ProgramData\Favoris
O43 - CFD: 2009-07-13 - 23:53:55 - [0] -SH-D C:\ProgramData\Favorites
O43 - CFD: 2013-06-08 - 21:39:37 - [0] ----D C:\ProgramData\Gamehouse
O43 - CFD: 2013-05-02 - 21:43:31 - [14,900] ----D C:\ProgramData\HP
O43 - CFD: 2013-05-02 - 21:54:57 - [2,086] ----D C:\ProgramData\HP Photo Creations
O43 - CFD: 2014-01-01 - 19:21:26 - [7,978] ----D C:\ProgramData\LGMOBILEAX
O43 - CFD: 2013-11-23 - 20:40:03 - [0,014] ----D C:\ProgramData\Logs
O43 - CFD: 2013-08-04 - 21:02:41 - [6,918] ----D C:\ProgramData\Malwarebytes
O43 - CFD: 2013-04-12 - 20:54:54 - [0] -SH-D C:\ProgramData\Menu Démarrer
O43 - CFD: 2014-02-02 - 22:32:03 - [897,429] -S--D C:\ProgramData\Microsoft
O43 - CFD: 2014-02-16 - 21:22:17 - [0,130] ----D C:\ProgramData\Microsoft Help
O43 - CFD: 2013-04-12 - 20:54:54 - [0] -SH-D C:\ProgramData\Modèles
O43 - CFD: 2013-04-12 - 22:24:55 - [0,013] ----D C:\ProgramData\Mozilla
O43 - CFD: 2013-05-29 - 17:47:27 - [0,007] ----D C:\ProgramData\MumboJumbo
O43 - CFD: 2013-05-29 - 17:55:18 - [0,025] ----D C:\ProgramData\MysteryChronicles
O43 - CFD: 2013-10-24 - 21:28:10 - [270,234] ----D C:\ProgramData\Oberon Media
O43 - CFD: 2014-01-20 - 12:41:04 - [0] ----D C:\ProgramData\Oracle
O43 - CFD: 2013-11-17 - 14:37:50 - [2,599] ----D C:\ProgramData\Playrix Entertainment
O43 - CFD: 2013-11-24 - 14:12:17 - [0] ----D C:\ProgramData\QuickTime
O43 - CFD: 2013-04-14 - 16:43:56 - [0] ----D C:\ProgramData\Ralink
O43 - CFD: 2013-04-14 - 16:41:53 - [3,222] ----D C:\ProgramData\Ralink Driver
O43 - CFD: 2013-12-20 - 14:52:11 - [28,381] ----D C:\ProgramData\Skype
O43 - CFD: 2013-06-08 - 20:31:39 - [0] ----D C:\ProgramData\SpinTop Games
O43 - CFD: 2009-07-13 - 23:53:55 - [0] -SH-D C:\ProgramData\Start Menu
O43 - CFD: 2013-06-04 - 09:08:49 - [0] ----D C:\ProgramData\Sun
O43 - CFD: 2013-11-24 - 18:04:54 - [0] ---AD C:\ProgramData\TEMP
O43 - CFD: 2009-07-13 - 23:53:55 - [0] -SH-D C:\ProgramData\Templates
O43 - CFD: 2013-05-28 - 17:05:48 - [0,158] ----D C:\ProgramData\TheFallTrilogyEp2-BF
O43 - CFD: 2013-05-23 - 21:56:51 - [0,001] ----D C:\ProgramData\TheFallTrilogyEp3-BF
O43 - CFD: 2013-05-20 - 16:11:45 - [0] ----D C:\ProgramData\Top Evidence
O43 - CFD: 2013-09-19 - 20:04:30 - [0] ----D C:\Users\Syvie\AppData\Roaming\0H1F2WtF1L1G1R
O43 - CFD: 2013-06-17 - 16:04:06 - [0,075] ----D C:\Users\Syvie\AppData\Roaming\Adobe
O43 - CFD: 2014-01-22 - 18:57:37 - [0,051] ----D C:\Users\Syvie\AppData\Roaming\AIMP3
O43 - CFD: 2013-05-31 - 17:31:46 - [0,048] ----D C:\Users\Syvie\AppData\Roaming\AlawarEntertainment
O43 - CFD: 2013-06-11 - 20:13:35 - [5,360] ----D C:\Users\Syvie\AppData\Roaming\Artifex Mundi
O43 - CFD: 2013-05-20 - 16:10:54 - [7,618] ----D C:\Users\Syvie\AppData\Roaming\Boomzap
O43 - CFD: 2013-04-14 - 17:49:19 - [0,001] ----D C:\Users\Syvie\AppData\Roaming\Canneverbe Limited
O43 - CFD: 2013-04-29 - 08:30:04 - [0,821] ----D C:\Users\Syvie\AppData\Roaming\cerasus.media
O43 - CFD: 2013-04-13 - 12:00:13 - [0,020] ----D C:\Users\Syvie\AppData\Roaming\CheckPoint
O43 - CFD: 2013-10-29 - 19:06:47 - [0,003] ----D C:\Users\Syvie\AppData\Roaming\Clockwork Pixels
O43 - CFD: 2013-05-10 - 14:40:47 - [0] ----D C:\Users\Syvie\AppData\Roaming\Cursed House 2
O43 - CFD: 2013-06-05 - 20:21:31 - [1,004] ----D C:\Users\Syvie\AppData\Roaming\DailyMagic
O43 - CFD: 2013-06-29 - 13:59:01 - [0] ----D C:\Users\Syvie\AppData\Roaming\DownLite
O43 - CFD: 2013-12-31 - 22:02:37 - [0] ----D C:\Users\Syvie\AppData\Roaming\dvdcss
O43 - CFD: 2013-04-16 - 21:02:42 - [3,752] ----D C:\Users\Syvie\AppData\Roaming\EleFun Games
O43 - CFD: 2013-12-09 - 20:15:07 - [0,069] ----D C:\Users\Syvie\AppData\Roaming\Elephant Games
O43 - CFD: 2013-04-27 - 21:28:57 - [1,678] ----D C:\Users\Syvie\AppData\Roaming\ERS Game Studios
O43 - CFD: 2013-04-15 - 20:49:17 - [0,013] ----D C:\Users\Syvie\AppData\Roaming\Fenomen Games
O43 - CFD: 2013-11-16 - 18:10:43 - [0,003] ----D C:\Users\Syvie\AppData\Roaming\GameMill Entertainment
O43 - CFD: 2013-06-11 - 14:07:58 - [0,005] ----D C:\Users\Syvie\AppData\Roaming\Gogii
O43 - CFD: 2013-05-08 - 20:42:44 - [0,024] ----D C:\Users\Syvie\AppData\Roaming\Gogii Games
O43 - CFD: 2013-04-14 - 20:24:13 - [0] ----D C:\Users\Syvie\AppData\Roaming\GTM_Bodie
O43 - CFD: 2013-04-16 - 13:57:54 - [0,599] ----D C:\Users\Syvie\AppData\Roaming\Hidden Objects LesMiserables
O43 - CFD: 2013-05-10 - 06:37:24 - [0,087] ----D C:\Users\Syvie\AppData\Roaming\HpUpdate
O43 - CFD: 2013-04-12 - 20:55:15 - [0] ----D C:\Users\Syvie\AppData\Roaming\Identities
O43 - CFD: 2013-04-14 - 16:40:29 - [0] ----D C:\Users\Syvie\AppData\Roaming\InstallShield
O43 - CFD: 2013-05-27 - 19:39:25 - [0] ----D C:\Users\Syvie\AppData\Roaming\IrfanView
O43 - CFD: 2013-05-29 - 17:56:29 - [0,026] ----D C:\Users\Syvie\AppData\Roaming\Lazy Turtle Games
O43 - CFD: 2013-06-23 - 17:06:46 - [0,036] ----D C:\Users\Syvie\AppData\Roaming\Legacy Games
O43 - CFD: 2013-06-06 - 14:58:25 - [0,019] ----D C:\Users\Syvie\AppData\Roaming\LegacyInteractive
O43 - CFD: 2013-05-29 - 17:52:28 - [0,001] ----D C:\Users\Syvie\AppData\Roaming\MA
O43 - CFD: 2013-04-13 - 10:48:37 - [0,001] ----D C:\Users\Syvie\AppData\Roaming\Macromedia
O43 - CFD: 2013-08-04 - 21:03:13 - [33,320] ----D C:\Users\Syvie\AppData\Roaming\Malwarebytes
O43 - CFD: 2011-04-11 - 20:44:38 - [0] ----D C:\Users\Syvie\AppData\Roaming\Media Center Programs
O43 - CFD: 2014-02-16 - 21:22:18 - [8,412] -S--D C:\Users\Syvie\AppData\Roaming\Microsoft
O43 - CFD: 2013-04-12 - 22:25:15 - [0] ----D C:\Users\Syvie\AppData\Roaming\Mozilla
O43 - CFD: 2013-08-19 - 15:11:48 - [0] ----D C:\Users\Syvie\AppData\Roaming\MusicNet
O43 - CFD: 2013-10-24 - 21:28:30 - [0] ----D C:\Users\Syvie\AppData\Roaming\Oberon Media
O43 - CFD: 2013-04-16 - 17:39:59 - [0,004] ----D C:\Users\Syvie\AppData\Roaming\Orneon
O43 - CFD: 2013-11-24 - 18:37:04 - [0,042] ----D C:\Users\Syvie\AppData\Roaming\Playrix Entertainment
O43 - CFD: 2013-06-11 - 13:35:41 - [0] ----D C:\Users\Syvie\AppData\Roaming\Princess Isabella
O43 - CFD: 2013-06-23 - 17:08:22 - [0,023] ----D C:\Users\Syvie\AppData\Roaming\Silverback Games
O43 - CFD: 2014-02-14 - 21:51:45 - [8,026] ----D C:\Users\Syvie\AppData\Roaming\Skype
O43 - CFD: 2013-09-12 - 14:51:44 - [0,049] ----D C:\Users\Syvie\AppData\Roaming\TeamViewer
O43 - CFD: 2013-05-28 - 19:25:01 - [0,689] ----D C:\Users\Syvie\AppData\Roaming\The Curse of the Werewolves
O43 - CFD: 2013-05-20 - 16:11:45 - [0,194] ----D C:\Users\Syvie\AppData\Roaming\Top Evidence
O43 - CFD: 2013-05-22 - 17:43:15 - [0,006] ----D C:\Users\Syvie\AppData\Roaming\VendelGAMES
O43 - CFD: 2014-02-14 - 13:16:51 - [0,081] ----D C:\Users\Syvie\AppData\Roaming\vlc
O43 - CFD: 2013-04-14 - 19:17:07 - [0] ----D C:\Users\Syvie\AppData\Roaming\WinRAR
O43 - CFD: 2014-02-17 - 08:08:07 - [182,422] ----D C:\Users\Syvie\AppData\Roaming\ZHP  =>.Nicolas Coolman
O43 - CFD: 2014-01-26 - 10:39:14 - [11,934] ----D C:\Users\Syvie\AppData\Local\Adobe
O43 - CFD: 2013-04-12 - 20:55:02 - [0] -SH-D C:\Users\Syvie\AppData\Local\Application Data
O43 - CFD: 2014-02-16 - 11:14:06 - [0] ----D C:\Users\Syvie\AppData\Local\Diagnostics
O43 - CFD: 2013-09-01 - 09:31:33 - [0] ----D C:\Users\Syvie\AppData\Local\ElevatedDiagnostics
O43 - CFD: 2013-09-14 - 19:29:35 - [14,659] ----D C:\Users\Syvie\AppData\Local\Facebook
O43 - CFD: 2013-10-14 - 14:48:40 - [1,354] ----D C:\Users\Syvie\AppData\Local\fontconfig
O43 - CFD: 2013-10-14 - 14:48:34 - [0,001] ----D C:\Users\Syvie\AppData\Local\gegl-0.2
O43 - CFD: 2013-08-25 - 11:15:40 - [423,002] ----D C:\Users\Syvie\AppData\Local\Google
O43 - CFD: 2013-04-12 - 20:55:02 - [0] -SH-D C:\Users\Syvie\AppData\Local\Historique
O43 - CFD: 2013-05-02 - 21:56:46 - [0,054] ----D C:\Users\Syvie\AppData\Local\HP
O43 - CFD: 2013-04-13 - 10:48:37 - [0] ----D C:\Users\Syvie\AppData\Local\Macromedia
O43 - CFD: 2014-01-11 - 11:05:03 - [733,612] ----D C:\Users\Syvie\AppData\Local\Microsoft
O43 - CFD: 2013-04-13 - 13:01:44 - [0] ----D C:\Users\Syvie\AppData\Local\Microsoft Help
O43 - CFD: 2013-04-12 - 22:25:07 - [0] ----D C:\Users\Syvie\AppData\Local\Mozilla
O43 - CFD: 2013-06-13 - 06:14:11 - [11,721] ----D C:\Users\Syvie\AppData\Local\MétéoMédia
O43 - CFD: 2013-05-06 - 21:23:35 - [0] ----D C:\Users\Syvie\AppData\Local\Programs
O43 - CFD: 2014-02-17 - 08:05:38 - [0,078] ----D C:\Users\Syvie\AppData\Local\Temp
O43 - CFD: 2013-04-12 - 20:55:02 - [0] -SH-D C:\Users\Syvie\AppData\Local\Temporary Internet Files
O43 - CFD: 2014-02-02 - 09:56:04 - [0,056] ----D C:\Users\Syvie\AppData\Local\VirtualStore
O43 - CFD: 2013-10-14 - 14:55:10 - [0,017] ----D C:\Users\Syvie\AppData\Local\webkit
O43 - CFD: 2009-07-13 - 23:42:04 - [0,014] R---D C:\Users\Syvie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2013-09-12 - 06:03:22 - [0] R---D C:\Users\Syvie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2013-11-23 - 22:22:48 - [0] ----D C:\Users\Syvie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 2009-07-13 - 23:37:42 - [0,001] R---D C:\Users\Syvie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2013-04-14 - 17:40:57 - [0,003] ----D C:\Users\Syvie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MétéoMédia
O43 - CFD: 2013-12-18 - 21:08:43 - [0,017] ----D C:\Users\Syvie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Programmes audio
O43 - CFD: 2013-07-11 - 14:50:16 - [0,005] ----D C:\Users\Syvie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
O43 - CFD: 2014-02-13 - 15:29:27 - [0] R---D C:\Users\Syvie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2013-12-18 - 21:08:45 - [0,021] ----D C:\Users\Syvie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Suite NCH Software
O43 - CFD: 2013-10-29 - 20:38:10 - [0,004] ----D C:\Users\Syvie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Vampire Ventures
O43 - CFD: 2013-11-23 - 21:14:15 - [0,004] ----D C:\Users\Syvie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
~ Program Folder: 193 Scanned in 00mn 21s



---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.275356CB540ADD6869E4C307D43A9DCF] - 2014-02-02 - 10:35:34 ---A- . (...) -- C:\Shortcut_Module_02_02_2014_10_35_34.txt   [3168]
O44 - LFC:[MD5.E185BDA84E5F03F4E1D8DCA30E209277] - 2014-02-02 - 22:33:56 ---A- . (...) -- C:\Windows\epplauncher.mif   [1912]
O44 - LFC:[MD5.675BCED636193DA8BCCDF2D9594EF4E8] - 2014-02-04 - 18:55:51 ---A- . (.Adobe Systems Incorporated - Adobe Flash Player Control Panel Applet.) -- C:\Windows\System32\FlashPlayerCPLApp.cpl   [71048]
O44 - LFC:[MD5.ED1543644C11CD56F374F3CDCD5A685F] - 2014-02-04 - 18:55:52 ---A- . (.Adobe Systems Incorporated - Adobe Flash Player Control Panel Applet.) -- C:\Windows\System32\FlashPlayerApp.exe   [692616]
O44 - LFC:[MD5.5DD49C02D059C1E6E47A8FB4A076C9B1] - 2014-02-06 - 03:34:31 ---A- . (.Microsoft Corporation - Microsoft SmartScreen Filter.) -- C:\Windows\System32\ieapfltr.dll   [703488]
O44 - LFC:[MD5.5D9DC6332A4FC66388B09BBE7CF53750] - 2014-02-06 - 03:36:05 ---A- . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll   [1156096]
O44 - LFC:[MD5.9C89246184979A070B0C6CCF61C68136] - 2014-02-06 - 03:41:35 ---A- . (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\System32\wininet.dll   [1820160]
O44 - LFC:[MD5.79FA7D8B488F90EDE325963379A6F738] - 2014-02-06 - 04:03:44 ---A- . (.Microsoft Corporation - Navigateur Internet.) -- C:\Windows\System32\ieframe.dll   [11266048]
O44 - LFC:[MD5.40E68599FE3A10F816217D3789FCE74E] - 2014-02-06 - 04:09:30 ---A- . (.Microsoft Corporation - Panneau de configuration Internet.) -- C:\Windows\System32\inetcpl.cpl   [1964032]
O44 - LFC:[MD5.C9D1131E2163CE932DF3EAAF0EEA3673] - 2014-02-06 - 04:13:13 ---A- . (.Microsoft Corporation - Microsoft Feeds Manager.) -- C:\Windows\System32\msfeeds.dll   [524288]
O44 - LFC:[MD5.99280392987A1A96C756A9F38C4CE396] - 2014-02-06 - 04:25:36 ---A- . (.Microsoft Corporation - Microsoft (R) JScript.) -- C:\Windows\System32\jscript9.dll   [4244480]
O44 - LFC:[MD5.B8F28AAC003060E3B125D2447CFC19E2] - 2014-02-06 - 04:25:43 ---A- . (.Microsoft Corporation - DLL de gestion d'utilisateur local et de co.) -- C:\Windows\System32\msrating.dll   [164864]
O44 - LFC:[MD5.1D724A2EC124094B83FCB07533FC9BB5] - 2014-02-06 - 04:34:32 ---A- . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe   [208896]
O44 - LFC:[MD5.0F739443669F3A48F1B2325995117BFE] - 2014-02-06 - 04:46:27 ---A- . (.Microsoft Corporation - Microsoft ® JScript Diagnostics.) -- C:\Windows\System32\jscript9diag.dll   [553472]
O44 - LFC:[MD5.29B66A7E3E1AA79C690D5D862AC76F64] - 2014-02-06 - 04:47:18 ---A- . (.Microsoft Corporation - IE ETW Collector Service.) -- C:\Windows\System32\ieetwcollector.exe   [108032]
O44 - LFC:[MD5.7D6B20C69CC8EECB8F31D4FAF913BBE8] - 2014-02-06 - 04:47:22 ---A- . (.Microsoft Corporation - Outil d’installation sans assistance d’IE 7.) -- C:\Windows\System32\ieUnatt.exe   [112128]
O44 - LFC:[MD5.85AC8EB265EDCAD86D651D45C5E3AB83] - 2014-02-06 - 04:49:22 ---A- . (.Microsoft Corporation - Moteur de l’interface utilisateur d’Interne.) -- C:\Windows\System32\ieui.dll   [440832]
O44 - LFC:[MD5.0E7B7C9F483300F9FF97C6A1E4BC4F57] - 2014-02-06 - 04:52:21 ---A- . (.Microsoft Corporation - Traitement de RunOnce complet avec interfac.) -- C:\Windows\System32\iernonce.dll   [32768]
O44 - LFC:[MD5.6A06EB11F1E5BDAA795DAE7838F9FE20] - 2014-02-06 - 04:52:56 ---A- . (.Microsoft Corporation - JScript Proxy Auto-Configuration.) -- C:\Windows\System32\jsproxy.dll   [43008]
O44 - LFC:[MD5.34CBED7698D557DDB43F8732FBC2ACB9] - 2014-02-06 - 04:57:22 ---A- . (.Microsoft Corporation - Run time utility for Internet Explorer.) -- C:\Windows\System32\iertutil.dll   [2168320]
O44 - LFC:[MD5.260D6B421E5551E8BA75D16B5CA90D9A] - 2014-02-06 - 05:00:46 ---A- . (.Microsoft Corporation - IE ETW Collector Proxy Stub Resources.) -- C:\Windows\System32\ieetwproxystub.dll   [51200]
O44 - LFC:[MD5.408805B8083896DC95E6340F4016BEBD] - 2014-02-06 - 05:01:36 ---A- . (.Microsoft Corporation - IOD Version Map.) -- C:\Windows\System32\iesetup.dll   [61952]
O44 - LFC:[MD5.6F2E12C6229558B5829FDD07603763C2] - 2014-02-06 - 05:19:55 ---A- . (.Microsoft Corporation - IE ETW Collector Service Resources.) -- C:\Windows\System32\ieetwcollectorres.dll   [4096]
O44 - LFC:[MD5.B5B3334F177CED627C2D7FE38235B6B1] - 2014-02-06 - 05:20:26 ---A- . (.Microsoft Corporation - Microsoft® MSHTML Typelib.) -- C:\Windows\System32\mshtml.tlb   [2724864]
O44 - LFC:[MD5.C863E5A2417DF0F2A31ED32C3B2CB23F] - 2014-02-06 - 05:38:24 ---A- . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll   [17103872]
O44 - LFC:[MD5.7B426B8E809EDF081D771EF429345528] - 2014-02-11 - 14:14:50 ---A- . (...) -- C:\Windows\System32\Drivers\sp_rsdrv2.sys   [32768]
O44 - LFC:[MD5.9158DBE2F8483434FC72F320690C9DB8] - 2014-02-13 - 07:01:07 ---A- . (.Microsoft Corporation - Windows Rights Management Services Server S.) -- C:\Windows\System32\secproc_ssp_isv.dll   [87040]
O44 - LFC:[MD5.7FA485555BF802FE3DB5598004DBDFAC] - 2014-02-13 - 07:01:08 ---A- . (.Microsoft Corporation - Client Gestion des droits Windows.) -- C:\Windows\System32\msdrm.dll   [390144]
O44 - LFC:[MD5.12A9F24DC9F465DA79AC2272D829A81E] - 2014-02-13 - 07:01:08 ---A- . (.Microsoft Corporation - Windows Rights Management Desktop Security.) -- C:\Windows\System32\secproc.dll   [428032]
O44 - LFC:[MD5.58712A48D31B40EBCB35B47205F87771] - 2014-02-13 - 07:01:08 ---A- . (.Microsoft Corporation - Windows Rights Management Services Server S.) -- C:\Windows\System32\secproc_ssp.dll   [87040]
O44 - LFC:[MD5.BBCE3E9E74C7CEA47FA4115B360AC2C6] - 2014-02-13 - 07:01:09 ---A- . (.Microsoft Corporation - Windows Rights Management Desktop Security.) -- C:\Windows\System32\secproc_isv.dll   [423936]
O44 - LFC:[MD5.08D323750350A8A29611D1004C0CF319] - 2014-02-13 - 07:01:09 ---A- . (.Microsoft Corporation - Windows Rights Management Services Activati.) -- C:\Windows\System32\RMActivate_ssp.exe   [510976]
O44 - LFC:[MD5.6142C5540C8D2764D59CBC11AF4A5900] - 2014-02-13 - 07:01:10 ---A- . (.Microsoft Corporation - Windows Rights Management Services Activati.) -- C:\Windows\System32\RMActivate.exe   [572416]
O44 - LFC:[MD5.E01D2AC63453534DB8AD1EA97DEE9C3A] - 2014-02-13 - 07:01:10 ---A- . (.Microsoft Corporation - Windows Rights Management Services Activati.) -- C:\Windows\System32\RMActivate_isv.exe   [594944]
O44 - LFC:[MD5.0F5FEF37588AF457E02125674F171A4F] - 2014-02-13 - 07:01:10 ---A- . (.Microsoft Corporation - Windows Rights Management Services Activati.) -- C:\Windows\System32\RMActivate_ssp_isv.exe   [508928]
O44 - LFC:[MD5.14800BD31701A5047AC3145BB1E698AE] - 2014-02-13 - 07:01:16 ---A- . (.Microsoft Corporation - Bibliothèque Microsoft D2D.) -- C:\Windows\System32\d2d1.dll   [3419136]
O44 - LFC:[MD5.D96106CF60505734B14F6AE80AAA4B07] - 2014-02-13 - 07:01:16 ---A- . (.Microsoft Corporation - Direct3D 10 Rasterizer.) -- C:\Windows\System32\d3d10warp.dll   [1987584]
O44 - LFC:[MD5.E4561704CBFA193761743E5AF746C669] - 2014-02-13 - 07:01:54 ---A- . (.Microsoft Corporation - MSXML 3.0 SP11.) -- C:\Windows\System32\msxml3.dll   [1237504]
O44 - LFC:[MD5.17B06F23237FCD731FA2E10ECD6EDFE1] - 2014-02-13 - 07:01:54 ---A- . (.Microsoft Corporation - XML Resources.) -- C:\Windows\System32\msxml3r.dll   [2048]
O44 - LFC:[MD5.EA093130471090037BB70A4AF86FAD1B] - 2014-02-13 - 07:01:57 ---A- . (...) -- C:\Windows\System32\locale.nls   [420008]
O44 - LFC:[MD5.0DB7527DB188C7D967A37BB51BBF3963] - 2014-02-13 - 13:40:17 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\System32\Drivers\mbamswissarmy.sys   [40776]
O44 - LFC:[MD5.3D485254E43EF4E4F707346B5731EA9A] - 2014-02-13 - 22:32:32 ---A- . (.Microsoft Corporation - Microsoft ® VBScript.) -- C:\Windows\System32\vbscript.dll   [454656]
O44 - LFC:[MD5.2465EBC8CD6E412CDC1AB9FEF40BCAE6] - 2014-02-13 - 22:34:34 ---A- . (...) -- C:\Windows\win.ini   [478]
O44 - LFC:[MD5.49701DF58647C3970B2EFD344A33FC83] - 2014-02-13 - 22:42:49 ---A- . (.Microsoft Corporation - Outil de suppression de logiciels malveilla.) -- C:\Windows\System32\MRT.exe   [85946576]
O44 - LFC:[MD5.E424CADF8E954A1B75F53E35DFFD58AB] - 2014-02-13 - 22:57:20 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI   [1578380]
O44 - LFC:[MD5.990C8BE0E9FBF704A77306CEFA4F694F] - 2014-02-13 - 22:57:20 ---A- . (...) -- C:\Windows\System32\perfc009.dat   [107034]
O44 - LFC:[MD5.80D50004FC5349983FA8B4CE3C523423] - 2014-02-13 - 22:57:20 ---A- . (...) -- C:\Windows\System32\perfc00C.dat   [131426]
O44 - LFC:[MD5.F349031DE95A4542ACA1CBCBE2BE4797] - 2014-02-13 - 22:57:20 ---A- . (...) -- C:\Windows\System32\perfh009.dat   [618714]
O44 - LFC:[MD5.795499FC8CA70A24734278566F767A1B] - 2014-02-13 - 22:57:20 ---A- . (...) -- C:\Windows\System32\perfh00C.dat   [706998]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 2014-02-14 - 08:35:20 ---A- . (...) -- C:\Windows\setuperr.log   [0]
O44 - LFC:[MD5.E71345741F2E66BCB50599CE70C1F897] - 2014-02-15 - 10:14:08 ---A- . (...) -- C:\Windows\PFRO.log   [496]
O44 - LFC:[MD5.819E871356B49A254F3F7FE52040DABD] - 2014-02-15 - 10:39:24 ---A- . (...) -- C:\PhysicalDisk0_MBR.bin   [512]
O44 - LFC:[MD5.B9B11E593BD31CFF1B718B76DEB494ED] - 2014-02-16 - 20:54:05 ---A- . (...) -- C:\RstHosts.txt   [676]
O44 - LFC:[MD5.A95A2A7B31CF395CEB3AC9AEE6449846] - 2014-02-17 - 07:08:11 -S-A- . (...) -- C:\Windows\bootstat.dat   [67584]
O44 - LFC:[MD5.4F3BB5CA906CDFED4CBEE14065A561F2] - 2014-02-17 - 07:08:26 ---A- . (...) -- C:\Windows\setupact.log   [336]
O44 - LFC:[MD5.AB42D29D5F6627976AEA7833EA987B55] - 2014-02-17 - 07:14:15 ---A- . (...) -- C:\Windows\WindowsUpdate.log   [2077972]
~ Files: 56 Scanned in 00mn 15s



---\\ Derniers fichiers créés dans Windows Prefetcher (O45)
O45 - LFCP:[MD5.0D72C0D50F456A7D8441E3662CBFC317] - 2014-02-17 - 08:05:52 ---A- - C:\Windows\Prefetch\SEARCHFILTERHOST.EXE-77482212.pf
O45 - LFCP:[MD5.E1FA189A83AD49CFAF2E937452D93966] - 2014-02-17 - 08:05:52 ---A- - C:\Windows\Prefetch\SEARCHPROTOCOLHOST.EXE-0CB8CADE.pf
O45 - LFCP:[MD5.BFD3A61FA09CA07E5E2EE0BA7EF2A65B] - 2014-02-17 - 08:06:01 ---A- - C:\Windows\Prefetch\NOTEPAD.EXE-D8414F97.pf
O45 - LFCP:[MD5.FE50B522B4A485247016CFAE3D49F83E] - 2014-02-17 - 08:06:27 ---A- - C:\Windows\Prefetch\NISSRV.EXE-78BBD390.pf
O45 - LFCP:[MD5.6BFD9A1A9703E129B8004329D95A9F84] - 2014-02-17 - 08:06:47 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-5E46FA0D.pf
O45 - LFCP:[MD5.80869BBEF793F9337DC46DD89E075B4F] - 2014-02-17 - 08:06:53 ---A- - C:\Windows\Prefetch\ZHPHEP.EXE-56A9B19C.pf
O45 - LFCP:[MD5.9A4D105B46AFF5370A2774332391D4FB] - 2014-02-17 - 08:07:03 ---A- - C:\Windows\Prefetch\ZHPDIAG.EXE-5F50D22C.pf
O45 - LFCP:[MD5.B5442D4E1215CA451A99EF646A411055] - 2014-02-17 - 08:07:04 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-A8DE6D5B.pf
O45 - LFCP:[MD5.B9DEE7452C122B0A0C4E1CD954614A3F] - 2014-02-17 - 08:07:20 ---A- - C:\Windows\Prefetch\CSCRIPT.EXE-D1EF4768.pf
O45 - LFCP:[MD5.37A9AB09D5D193C98E47F4C1CB29DDFB] - 2014-02-17 - 08:07:22 ---A- - C:\Windows\Prefetch\WMIPRVSE.EXE-1628051C.pf
O45 - LFCP:[MD5.34AF3D471A5B429CF177DF18A235033B] - 2014-02-17 - 08:07:23 ---A- - C:\Windows\Prefetch\SPPSVC.EXE-B0F8131B.pf
O45 - LFCP:[MD5.59543B31EEBDCDFEDC17A246347D8D3F] - 2014-02-17 - 08:07:27 ---A- - C:\Windows\Prefetch\PV.EXE-7B89A1E7.pf
O45 - LFCP:[MD5.58EACA39550F68A75999D7388F0EE579] - 2014-02-17 - 08:07:58 ---A- - C:\Windows\Prefetch\CMD.EXE-4A81B364.pf
O45 - LFCP:[MD5.72A4CE326FFA03B3BC043C417C50CF40] - 2014-02-17 - 08:07:58 ---A- - C:\Windows\Prefetch\CONHOST.EXE-1F3E9D7E.pf
~ Prefetcher: 14 Scanned in 00mn 00s



---\\ Opérations et fonctions au démarrage de Windows Explorer (O46)
O46 - SEH:ShellExecuteHooks - Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL
~ ShellExecuteHooks:  Scanned in 00mn 00s



---\\ Déni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l’Éditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\System32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll
~ LSA: 8 Scanned in 00mn 00s



---\\ Contrôle du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\System32\Drivers\rdpencdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
~ CSB: 13 Scanned in 00mn 00s



---\\ Recherche d'infection sur les pilotes (HKLM)(TDSD) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Codec Cinepak®.) -- C:\Windows\System32\iccvid.dll
O52 - TDSD: \Drivers32\"vidc.VP60"="C:\Windows\system32\vp6vfw.dll" . (.On2.com - VP6 VIDEO FOR WINDOWS CODEC.) -- C:\Windows\system32\vp6vfw.dll
O52 - TDSD: \Drivers32\"vidc.VP61"="C:\Windows\system32\vp6vfw.dll" . (.On2.com - VP6 VIDEO FOR WINDOWS CODEC.) -- C:\Windows\system32\vp6vfw.dll
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"vp6vfw.dll"="EA VP6 Codec" . (.On2.com - VP6 VIDEO FOR WINDOWS CODEC.) -- C:\Windows\System32\vp6vfw.dll
~ TDSD: 6 Scanned in 00mn 00s



---\\ Enumération des clés de registre StartupReg (SMSR) (O53)
O53 - SMSR:HKLM\...\startupreg\Facebook Update  [Key] . (.Facebook Inc. - Programme d'installation de Facebook.) -- C:\Users\Syvie\AppData\Local\Facebook\Update\FacebookUpdate.exe
O53 - SMSR:HKLM\...\startupreg\HP Software Update  [Key] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe  =>.Hewlett-Packard Co
O53 - SMSR:HKLM\...\startupreg\Skype  [Key] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe  =>.Skype Technologies S.A.
~ SMSR Keys: 3 Scanned in 00mn 00s



---\\ Enumération des clés de registre SecurityProviders (MCSP) (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
~ MSCP: 2 Scanned in 00mn 00s



---\\ Enumération des clés de registre PoliciesSystem (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=0
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=0
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
O55 - MWPS:[HKCU\...\Policies\System] - "DisableRegistryTools"=0
O55 - MWPS:[HKCU\...\Policies\System] - "DisableTaskMgr"=0
~ MWPS: 18 Scanned in 00mn 00s



---\\ Liste des pilotes du système (SDL) (O58)
O58 - SDL:[MD5.FBCE2F43185104AE8BF4D32571B19203] - 2009-07-13 - 18:51:21 ---A- . (.Microsoft Corporation - 1394 Bus Device Driver.) -- C:\Windows\System32\Drivers\1394bus.sys   [54784]
O58 - SDL:[MD5.1B133875B8AA8AC48969BD3458AFE9F5] - 2010-11-20 - 16:29:03 ---A- . (.Microsoft Corporation - 1394 OpenHCI Port Driver.) -- C:\Windows\System32\Drivers\1394ohci.sys   [164864]
O58 - SDL:[MD5.CEA80C80BED809AA0DA6FEBC04733349] - 2010-11-20 - 16:29:03 ---A- . (.Microsoft Corporation - Pilote ACPI pour NT.) -- C:\Windows\System32\Drivers\acpi.sys   [274304]
O58 - SDL:[MD5.1EFBC664ABFF416D1D07DB115DCB264F] - 2010-11-20 - 16:29:03 ---A- . (.Microsoft Corporation - ACPI Power Metering Driver.) -- C:\Windows\System32\Drivers\acpipmi.sys   [10240]
O58 - SDL:[MD5.21E785EBD7DC90A06391141AAC7892FB] - 2009-07-13 - 20:26:15 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys   [422976]
O58 - SDL:[MD5.0C676BC278D5B59FF5ABD57BBE9123F2] - 2009-07-13 - 20:26:17 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\Drivers\adpahci.sys   [297552]
O58 - SDL:[MD5.7C7B5EE4B7B822EC85321FE23A27DB33] - 2009-07-13 - 20:26:15 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -- C:\Windows\System32\Drivers\adpu320.sys   [146512]
O58 - SDL:[MD5.F81BB7E487EDCEAB630A7EE66CF23913] - 2013-09-13 - 19:48:58 ---A- . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\Windows\System32\Drivers\afd.sys   [338944]
O58 - SDL:[MD5.57EC4AEF73660166074D8F7F31C0D4FD] - 2009-07-13 - 18:55:00 ---A- . (.Microsoft Corporation - RAS Agile Vpn Miniport Call Manager.) -- C:\Windows\System32\Drivers\agilevpn.sys   [49152]
O58 - SDL:[MD5.507812C3054C21CEF746B6EE3D04DD6E] - 2009-07-13 - 20:26:15 ---A- . (.Microsoft Corporation - Filtre AGP 440 NT.) -- C:\Windows\System32\Drivers\AGP440.sys   [53312]
O58 - SDL:[MD5.0D40BCF52EA90FC7DF2AEAB6503DEA44] - 2009-07-13 - 20:26:15 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\Drivers\aliide.sys   [14400]
O58 - SDL:[MD5.3C6600A0696E90A463771C7422E23AB5] - 2009-07-13 - 20:26:15 ---A- . (.Microsoft Corporation - Filtre AGP AMD NT.) -- C:\Windows\System32\Drivers\AMDAGP.SYS   [53312]
O58 - SDL:[MD5.CD5914170297126B6266860198D1D4F0] - 2009-07-13 - 20:26:15 ---A- . (.Microsoft Corporation - Pilote IDE AMD.) -- C:\Windows\System32\Drivers\amdide.sys   [14912]
O58 - SDL:[MD5.00DDA200D71BAC534BF56A9DB5DFD666] - 2009-07-13 - 18:11:04 ---A- . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\Drivers\amdk8.sys   [55296]
O58 - SDL:[MD5.3CBF30F5370FDA40DD3E87DF38EA53B6] - 2009-07-13 - 18:11:04 ---A- . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\Drivers\amdppm.sys   [52736]
O58 - SDL:[MD5.D320BF87125326F996D4904FE24300FC] - 2011-03-11 - 00:38:37 ---A- . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\Drivers\amdsata.sys   [80256]
O58 - SDL:[MD5.EA43AF0C423FF267355F74E7A53BDABA] - 2009-07-13 - 20:26:15 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows fa.) -- C:\Windows\System32\Drivers\amdsbs.sys   [159312]
O58 - SDL:[MD5.46387FB17B086D16DEA267D5BE23A2F2] - 2011-03-11 - 00:38:37 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\Drivers\amdxata.sys   [22400]
O58 - SDL:[MD5.AEA177F783E20150ACE5383EE368DA19] - 2010-11-20 - 16:29:04 ---A- . (.Microsoft Corporation - AppID Driver.) -- C:\Windows\System32\Drivers\appid.sys   [50176]
O58 - SDL:[MD5.2932004F49677BD84DBC72EDB754FFB3] - 2009-07-13 - 20:26:15 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\Drivers\arc.sys   [76368]
O58 - SDL:[MD5.5D6F36C46FD283AE1B57BD2E9FEB0BC7] - 2009-07-13 - 20:26:15 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\Drivers\arcsas.sys   [86608]
O58 - SDL:[MD5.ADD2ADE1C2B285AB8378D2DAAF991481] - 2009-07-13 - 18:54:46 ---A- . (.Microsoft Corporation - MS Remote Access serial network driver.) -- C:\Windows\System32\Drivers\asyncmac.sys   [17920]
O58 - SDL:[MD5.338C86357871C167A96AB976519BF59E] - 2009-07-13 - 20:26:15 ---A- . (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\Drivers\atapi.sys   [21584]
O58 - SDL:[MD5.DDCE686D76C2B4DB435A3AF5BD0E691D] - 2013-08-04 - 20:56:47 ---A- . (.Microsoft Corporation - ATAPI Driver Extension.) -- C:\Windows\System32\Drivers\ataport.sys   [133056]
O58 - SDL:[MD5.87D6E1ACEFA1DAA88049D66D8DA365B9] - 2011-10-24 - 04:39:40 ---A- . (.AVEO - aveodcnt.) -- C:\Windows\System32\Drivers\AVEOdcnt.sys   [278528]
O58 - SDL:[MD5.BD8869EB9CDE6BBE4508D869929869EE] - 2009-07-13 - 17:02:49 ---A- . (.Broadcom Corporation - Pilote unifié NDIS6.x Broadcom NetXtreme Gigabit Ethernet..) -- C:\Windows\System32\Drivers\b57nd60x.sys   [229888]
O58 - SDL:[MD5.2B8EE031FD700AB942EBE60665440E83] - 2009-07-13 - 20:26:15 ---A- . (.Microsoft Corporation - Battery Class Driver.) -- C:\Windows\System32\Drivers\battc.sys   [25168]
O58 - SDL:[MD5.505506526A9D467307B3C393DEDAF858] - 2009-07-13 - 18:45:01 ---A- . (.Microsoft Corporation - BEEP Driver.) -- C:\Windows\System32\Drivers\beep.sys   [6144]
O58 - SDL:[MD5.2287078ED48FCFC477B05B20CF38F36F] - 2009-07-13 - 18:23:04 ---A- . (.Microsoft Corporation - BLB Drive Driver.) -- C:\Windows\System32\Drivers\blbdrive.sys   [35328]
O58 - SDL:[MD5.8F2DA3028D5FCBD1A060A3DE64CD6506] - 2011-02-22 - 23:47:33 ---A- . (.Microsoft Corporation - NT Lan Manager Datagram Receiver Driver.) -- C:\Windows\System32\Drivers\bowser.sys   [69632]
O58 - SDL:[MD5.9F9ACC7F7CCDE8A15C282D3F88B43309] - 2009-07-13 - 17:53:28 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\System32\Drivers\BrFiltLo.sys   [13568]
O58 - SDL:[MD5.56801AD62213A41F6497F96DEE83755A] - 2009-07-13 - 17:53:28 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\System32\Drivers\BrFiltUp.sys   [5248]
O58 - SDL:[MD5.77361D72A04F18809D0EFB6CCEB74D4B] - 2009-07-13 - 19:41:26 ---A- . (.Microsoft Corporation - MAC Bridge Driver.) -- C:\Windows\System32\Drivers\bridge.sys   [78336]
O58 - SDL:[MD5.845B8CE732E67F3B4133164868C666EA] - 2009-07-13 - 19:57:25 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\Drivers\BrSerId.sys   [272128]
O58 - SDL:[MD5.203F0B1E73ADADBBB7B7B1FABD901F6B] - 2009-07-13 - 17:53:32 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\Drivers\BrSerWdm.sys   [62336]
O58 - SDL:[MD5.BD456606156BA17E60A04E18016AE54B] - 2009-07-13 - 17:53:33 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\Drivers\BrUsbMdm.sys   [12160]
O58 - SDL:[MD5.AF72ED54503F717A43268B3CC5FAEC2E] - 2009-07-13 - 17:53:33 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\Drivers\BrUsbSer.sys   [11904]
O58 - SDL:[MD5.ED3DF7C56CE0084EB2034432FC56565A] - 2009-07-13 - 18:51:34 ---A- . (.Microsoft Corporation - Bluetooth Communications Driver.) -- C:\Windows\System32\Drivers\bthmodem.sys   [56320]
O58 - SDL:[MD5.1A231ABEC60FD316EC54C66715543CEC] - 2009-07-13 - 17:02:48 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\Drivers\bxvbdx.sys   [430080]
O58 - SDL:[MD5.77EA11B065E0A8AB902D78145CA51E10] - 2009-07-13 - 18:11:15 ---A- . (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\Drivers\cdfs.sys   [70656]
O58 - SDL:[MD5.BE167ED0FDB9C1FA1133953C18D5A6C9] - 2010-11-20 - 16:29:03 ---A- . (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\Drivers\cdrom.sys   [108544]
O58 - SDL:[MD5.3FE3FE94A34DF6FB06E6418D0F6A0060] - 2009-07-13 - 18:51:17 ---A- . (.Microsoft Corporation - Consumer IR Class Driver for eHome.) -- C:\Windows\System32\Drivers\circlass.sys   [37888]
O58 - SDL:[MD5.A6388A5ABF92C7927C085DB0A958125F] - 2009-07-13 - 20:26:15 ---A- . (.Microsoft Corporation - SCSI Class System Dll.) -- C:\Windows\System32\Drivers\Classpnp.sys   [140864]
O58 - SDL:[MD5.DEA805815E587DAD1DD2C502220B5616] - 2009-07-13 - 18:19:18 ---A- . (.Microsoft Corporation - Control Method Battery Driver.) -- C:\Windows\System32\Drivers\CmBatt.sys   [14080]
O58 - SDL:[MD5.C537B1DB64D495B9B4717B4D6D9EDBF2] - 2009-07-13 - 20:26:21 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\cmdide.sys   [15952]
O58 - SDL:[MD5.85449EEBE8F8EBD6481EFBF0F352B4EB] - 2013-07-04 - 07:16:47 ---A- . (.Microsoft Corporation - Kernel Cryptography, Next Generation.) -- C:\Windows\System32\Drivers\cng.sys   [369848]
O58 - SDL:[MD5.A6023D3823C37043986713F118A89BEE] - 2009-07-13 - 20:26:21 ---A- . (.Microsoft Corporation - Composite Battery Driver.) -- C:\Windows\System32\Drivers\compbatt.sys   [19024]
O58 - SDL:[MD5.CBE8C58A8579CFE5FCCF809E6F114E89] - 2010-11-20 - 16:29:03 ---A- . (.Microsoft Corporation - Multi-Transport Composite Bus Enumerator.) -- C:\Windows\System32\Drivers\CompositeBus.sys   [31232]
O58 - SDL:[MD5.B7EFEF22FF426EC4158A177CB3B558D3] - 2009-07-13 - 20:20:28 ---A- . (.Microsoft Corporation - Crash Dump Driver.) -- C:\Windows\System32\Drivers\crashdmp.sys   [35408]
O58 - SDL:[MD5.2C4EBCFC84A9B44F209DFF6C6E6C61D1] - 2009-07-13 - 20:20:28 ---A- . (.Microsoft Corporation - Disk Block Verification Filter Driver.) -- C:\Windows\System32\Drivers\crcdisk.sys   [22096]
O58 - SDL:[MD5.418114393BFCCE0B4F7CAE96405F4428] - 2012-11-26 - 17:05:22 ---A- . (.Microsoft Corporation - Filter Driver for Identification of Microsoft Hardware Wireless.) -- C:\Windows\System32\Drivers\dc3d.sys   [64624]
O58 - SDL:[MD5.F024449C97EC1E464AAFFDA18593DB88] - 2010-11-20 - 16:29:07 ---A- . (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\Drivers\dfsc.sys   [78336]
O58 - SDL:[MD5.1A050B0274BFB3890703D490F330C0DA] - 2009-07-13 - 18:24:05 ---A- . (.Microsoft Corporation - System Indexer/Cache Driver.) -- C:\Windows\System32\Drivers\discache.sys   [32256]
O58 - SDL:[MD5.565003F326F99802E68CA78F2A68E9FF] - 2009-07-13 - 20:20:27 ---A- . (.Microsoft Corporation - PnP Disk Driver.) -- C:\Windows\System32\Drivers\disk.sys   [57424]
O58 - SDL:[MD5.D0F0D7A97C90FE72A79732812E65F822] - 2011-04-22 - 14:14:16 ---A- . (.Microsoft Corporation - Crash Dump Disk Driver.) -- C:\Windows\System32\Drivers\Diskdump.sys   [27008]
O58 - SDL:[MD5.8B30250D573A8F6B4BD23195160D8707] - 2009-07-13 - 20:20:28 ---A- . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\System32\Drivers\djsvs.sys   [70720]
O58 - SDL:[MD5.9842041E2F5ACE1E2F5FB4EF02053DC8] - 2013-10-03 - 20:49:41 ---A- . (.Microsoft Corporation - Microsoft Trusted Audio Drivers.) -- C:\Windows\System32\Drivers\drmk.sys   [81408]
O58 - SDL:[MD5.B918E7C5F9BF77202F89E1A9539F2EB4] - 2009-07-13 - 18:50:57 ---A- . (.Microsoft Corporation - Microsoft Trusted Audio Drivers.) -- C:\Windows\System32\Drivers\drmkaud.sys   [5120]
O58 - SDL:[MD5.5428227D4730EBDFC842E9FB593F8C8A] - 2009-07-13 - 20:20:28 ---A- . (.Microsoft Corporation - ATAPI Dump Driver.) -- C:\Windows\System32\Drivers\Dumpata.sys   [26704]
O58 - SDL:[MD5.62A63EF2F3053B461CB327E4D69AAA74] - 2009-07-13 - 20:17:54 ---A- . (.Microsoft Corporation - Bitlocker Drive Encryption Crashdump Filter.) -- C:\Windows\System32\Drivers\dumpfve.sys   [55584]
O58 - SDL:[MD5.5FCD3320AAE71506B43F9E12E4E72172] - 2009-07-13 - 18:25:26 ---A- . (.Microsoft Corporation - DirectX API Driver.) -- C:\Windows\System32\Drivers\dxapi.sys   [13312]
O58 - SDL:[MD5.1B6242B20CB56F85A158E67F09EE84FE] - 2009-07-13 - 18:25:25 ---A- . (.Microsoft Corporation - DirectX Graphics Driver.) -- C:\Windows\System32\Drivers\dxg.sys   [76288]
O58 - SDL:[MD5.71BC35067CABC02C9453AEAA42B2E43E] - 2013-08-01 - 06:03:36 ---A- . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys   [729024]
O58 - SDL:[MD5.E405328A0E38BF823E2361C413283F6D] - 2013-04-10 - 00:18:40 ---A- . (.Microsoft Corporation - DirectX Graphics MMS.) -- C:\Windows\System32\Drivers\dxgmms1.sys   [218984]
O58 - SDL:[MD5.0ED67910C8C326796FAA00B2BF6D9D3C] - 2009-07-13 - 20:20:28 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\System32\Drivers\elxstor.sys   [453712]
O58 - SDL:[MD5.8FC3208352DD3912C94367A206AB3F11] - 2009-07-13 - 18:19:19 ---A- . (.Microsoft Corporation - Error Device Driver.) -- C:\Windows\System32\Drivers\errdev.sys   [7168]
O58 - SDL:[MD5.024E1B5CAC09731E4D868E64DBFB4AB0] - 2009-07-13 - 17:02:48 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\Drivers\evbdx.sys   [3100160]
O58 - SDL:[MD5.2DC9108D74081149CC8B651D3A26207F] - 2009-07-13 - 18:14:03 ---A- . (.Microsoft Corporation - Microsoft Extended FAT File System.) -- C:\Windows\System32\Drivers\exfat.sys   [142336]
O58 - SDL:[MD5.7E0AB74553476622FB6AE36F73D97D35] - 2009-07-13 - 18:14:02 ---A- . (.Microsoft Corporation - Fast FAT File System Driver.) -- C:\Windows\System32\Drivers\fastfat.sys   [148480]
O58 - SDL:[MD5.E817A017F82DF2A1F8CFDBDA29388B29] - 2009-07-13 - 18:45:45 ---A- . (.Microsoft Corporation - Floppy Disk Controller Driver.) -- C:\Windows\System32\Drivers\fdc.sys   [25088]
O58 - SDL:[MD5.6CF00369C97F3CF563BE99BE983D13D8] - 2009-07-13 - 20:20:28 ---A- . (.Microsoft Corporation - FileInfo Filter Driver.) -- C:\Windows\System32\Drivers\fileinfo.sys   [58448]
O58 - SDL:[MD5.42C51DC94C91DA21CB9196EB64C45DB9] - 2009-07-13 - 18:15:29 ---A- . (.Microsoft Corporation - File Trace Filter Driver.) -- C:\Windows\System32\Drivers\filetrace.sys   [28160]
O58 - SDL:[MD5.87907AA70CB3C56600F1C2FB8841579B] - 2009-07-13 - 18:45:45 ---A- . (.Microsoft Corporation - Floppy Driver.) -- C:\Windows\System32\Drivers\flpydisk.sys   [19968]
O58 - SDL:[MD5.7520EC808E0C35E0EE6F841294316653] - 2009-07-13 - 20:20:28 ---A- . (.Microsoft Corporation - Gestionnaire de filtres de système de fichiers Microsoft.) -- C:\Windows\System32\Drivers\fltMgr.sys   [198208]
O58 - SDL:[MD5.1A16B57943853E598CFF37FE2B8CBF1D] - 2009-07-13 - 20:20:28 ---A- . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\fsdepends.sys   [46160]
O58 - SDL:[MD5.7DAE5EBCC80E45D3253F4923DC424D05] - 2012-03-01 - 00:46:57 ---A- . (.Microsoft Corporation - File System Recognizer Driver.) -- C:\Windows\System32\Drivers\fs_rec.sys   [19824]
O58 - SDL:[MD5.E306A24D9694C724FA2491278BF50FDB] - 2013-01-23 - 23:47:07 ---A- . (.Microsoft Corporation - BitLocker Drive Encryption Driver.) -- C:\Windows\System32\Drivers\fvevol.sys   [196328]
O58 - SDL:[MD5.AAB149EE616952BB84308C28E75ED20D] - 2013-01-03 - 00:04:43 ---A- . (.Microsoft Corporation - FWP/IPsec Kernel-Mode API.) -- C:\Windows\System32\Drivers\FWPKCLNT.SYS   [187752]
O58 - SDL:[MD5.65EE0C7A58B65E74AE05637418153938] - 2009-07-13 - 20:20:28 ---A- . (.Microsoft Corporation - Filtre AGPv3.0 générique Microsoft pour plateformes de processe.) -- C:\Windows\System32\Drivers\GAGP30KX.SYS   [57936]
O58 - SDL:[MD5.C44E3C2BAB6837DB337DDEE7544736DB] - 2009-07-13 - 17:54:14 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\System32\Drivers\hcw85cir.sys   [26624]
O58 - SDL:[MD5.9036377B8A6C15DC2EEC53E489D159B5] - 2010-11-20 - 16:29:03 ---A- . (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\Drivers\hdaudbus.sys   [108544]
O58 - SDL:[MD5.A5EF29D5315111C80A5C1ABAD14C8972] - 2010-11-20 - 16:29:03 ---A- . (.Microsoft Corporation - High Definition Audio Function Driver.) -- C:\Windows\System32\Drivers\HdAudio.sys   [304128]
O58 - SDL:[MD5.1D58A7F3E11A9731D0EAAAA8405ACC36] - 2009-07-13 - 18:19:21 ---A- . (.Microsoft Corporation - Hid Battery Driver.) -- C:\Windows\System32\Drivers\hidbatt.sys   [21504]
O58 - SDL:[MD5.89448F40E6DF260C206A193A4683BA78] - 2009-07-13 - 18:51:33 ---A- . (.Microsoft Corporation - Pilote de miniport Bluetooth pour les périphériques HID.) -- C:\Windows\System32\Drivers\hidbth.sys   [91136]
O58 - SDL:[MD5.50ABE682EBE752EAF62B18790D6D491C] - 2013-07-02 - 22:36:24 ---A- . (.Microsoft Corporation - Hid Class Library.) -- C:\Windows\System32\Drivers\hidclass.sys   [55808]
O58 - SDL:[MD5.CF50B4CF4A4F229B9F3C08351F99CA5E] - 2009-07-13 - 18:51:05 ---A- . (.Microsoft Corporation - Infrared Miniport Driver for Input Devices.) -- C:\Windows\System32\Drivers\hidir.sys   [37888]
O58 - SDL:[MD5.F1B27299F547D452EDAEF01FC187CB91] - 2013-07-02 - 22:36:22 ---A- . (.Microsoft Corporation - Hid Parsing Library.) -- C:\Windows\System32\Drivers\hidparse.sys   [25728]
O58 - SDL:[MD5.10C19F8290891AF023EAEC0832E1EB4D] - 2010-11-20 - 16:29:03 ---A- . (.Microsoft Corporation - USB Miniport Driver for Input Devices.) -- C:\Windows\System32\Drivers\hidusb.sys   [24064]
O58 - SDL:[MD5.295FDC419039090EB8B49FFDBB374549] - 2009-07-13 - 20:20:28 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\System32\Drivers\HpSAMD.sys   [67152]
O58 - SDL:[MD5.871917B07A141BFF43D76D8844D48106] - 2010-11-20 - 16:29:12 ---A- . (.Microsoft Corporation - HTTP Pile du protocole.) -- C:\Windows\System32\Drivers\http.sys   [513536]
O58 - SDL:[MD5.0C4E035C7F105F1299258C90886C64C5] - 2010-11-20 - 16:29:04 ---A- . (.Microsoft Corporation - Hardware Policy Driver.) -- C:\Windows\System32\Drivers\hwpolicy.sys   [14208]
O58 - SDL:[MD5.F151F0BDC47F4A28B1B20A0818EA36D6] - 2009-07-13 - 18:11:24 ---A- . (.Microsoft Corporation - Pilote de port i8042.) -- C:\Windows\System32\Drivers\i8042prt.sys   [80896]
O58 - SDL:[MD5.5CD5F9A5444E6CDCB0AC89BD62D8B76E] - 2011-03-11 - 00:38:51 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\Windows\System32\Drivers\iaStorV.sys   [332160]
O58 - SDL:[MD5.A79416044080F5ADE931517C45BE9D58] - 2009-09-11 - 16:00:26 ---A- . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\Drivers\igdkmd32.sys   [4805120]
O58 - SDL:[MD5.4173FF5708F3236CF25195FECD742915] - 2009-07-13 - 20:20:36 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\Drivers\iirsp.sys   [41040]
O58 - SDL:[MD5.A0F12F2C9BA6C72F3987CE780E77C130] - 2009-07-13 - 20:20:36 ---A- . (.Microsoft Corporation - Intel PCI IDE Driver.) -- C:\Windows\System32\Drivers\intelide.sys   [15424]
O58 - SDL:[MD5.3B514D27BFC4ACCB4037BC6685F766E0] - 2009-07-13 - 18:11:04 ---A- . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\Drivers\intelppm.sys   [53760]
O58 - SDL:[MD5.709D1761D3B19A932FF0238EA6D50200] - 2009-07-13 - 18:54:29 ---A- . (.Microsoft Corporation - IP FILTER DRIVER.) -- C:\Windows\System32\Drivers\ipfltdrv.sys   [58880]
O58 - SDL:[MD5.4BD7134618C1D2A27466A099062547BF] - 2010-11-20 - 16:29:03 ---A- . (.Microsoft Corporation - PILOT IPMI WMI.) -- C:\Windows\System32\Drivers\IPMIDrv.sys   [65536]
O58 - SDL:[MD5.A5FA468D67ABCDAA36264E463A7BB0CD] - 2009-07-13 - 18:54:29 ---A- . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys   [101888]
O58 - SDL:[MD5.9F7E491FB0BA0F9E370163834FC1FE31] - 2009-07-13 - 18:53:32 ---A- . (.Microsoft Corporation - IRDA Protocol Driver.) -- C:\Windows\System32\Drivers\irda.sys   [96768]
O58 - SDL:[MD5.42996CFF20A3084A56017B7902307E9F] - 2009-07-13 - 18:53:27 ---A- . (.Microsoft Corporation - Infra-Red Bus Enumerator.) -- C:\Windows\System32\Drivers\irenum.sys   [13824]
O58 - SDL:[MD5.1F32BB6B38F62F7DF1A7AB7292638A35] - 2009-07-13 - 20:20:36 ---A- . (.Microsoft Corporation - Pilote de bus PNP ISA.) -- C:\Windows\System32\Drivers\isapnp.sys   [46656]
O58 - SDL:[MD5.ADEF52CA1AEAE82B50DF86B56413107E] - 2009-07-13 - 20:20:36 ---A- . (.Microsoft Corporation - Pilote de la classe Clavier.) -- C:\Windows\System32\Drivers\kbdclass.sys   [42576]
O58 - SDL:[MD5.9E3CED91863E6EE98C24794D05E27A71] - 2010-11-20 - 16:29:03 ---A- . (.Microsoft Corporation - Pilote de filtre clavier HID.) -- C:\Windows\System32\Drivers\kbdhid.sys   [28160]
O58 - SDL:[MD5.5DCEF0C32BE0F33277326586FA503689] - 2010-11-20 - 16:29:21 ---A- . (.Microsoft Corporation - Kernel CSA Library.) -- C:\Windows\System32\Drivers\ks.sys   [190976]
O58 - SDL:[MD5.F286830298323272260332D6ABC905C1] - 2013-09-24 - 21:01:06 ---A- . (.Microsoft Corporation - Kernel Security Support Provider Interface.) -- C:\Windows\System32\Drivers\ksecdd.sys   [67520]
O58 - SDL:[MD5.D7C760D57B1656DD748B9E4AB6CB5A51] - 2013-09-24 - 21:01:08 ---A- . (.Microsoft Corporation - Kernel Security Support Provider Interface Packages.) -- C:\Windows\System32\Drivers\ksecpkg.sys   [136640]
O58 - SDL:[MD5.F7611EC07349979DA9B0AE1F18CCC7A6] - 2009-07-13 - 18:53:19 ---A- . (.Microsoft Corporation - Link-Layer Topology Mapper I/O Driver.) -- C:\Windows\System32\Drivers\lltdio.sys   [48128]
O58 - SDL:[MD5.EB119A53CCF2ACC000AC71B065B78FEF] - 2009-07-13 - 20:20:36 ---A- . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_fc.sys   [95824]
O58 - SDL:[MD5.8ADE1C877256A22E49B75D1CC9161F9C] - 2009-07-13 - 20:20:37 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas.sys   [89168]
O58 - SDL:[MD5.DC9DC3D3DAA0E276FD2EC262E38B11E9] - 2009-07-13 - 20:20:36 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas2.sys   [54864]
O58 - SDL:[MD5.0A036C7D7CAB643A7F07135AC47E0524] - 2009-07-13 - 20:20:36 ---A- . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_scsi.sys   [96848]
O58 - SDL:[MD5.6703E366CC18D3B6E534F5CF7DF39CEE] - 2009-07-13 - 18:15:45 ---A- . (.Microsoft Corporation - Pilote de filtre de virtualisation de fichier LUA.) -- C:\Windows\System32\Drivers\luafv.sys   [86528]
O58 - SDL:[MD5.4470E3C1E0C3378E4CAB137893C12C3A] - 2013-04-04 - 13:50:32 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\mbam.sys   [22856]
O58 - SDL:[MD5.0DB7527DB188C7D967A37BB51BBF3963] - 2014-02-13 - 13:40:17 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\System32\Drivers\mbamswissarmy.sys   [40776]
O58 - SDL:[MD5.EF08D2EBE3EABBA43CC57EEE001027B6] - 2009-07-13 - 18:45:57 ---A- . (.Microsoft Corporation - Medium changer class driver.) -- C:\Windows\System32\Drivers\mcd.sys   [18432]
O58 - SDL:[MD5.0FFF5B045293002AB38EB1FD1FC2FB74] - 2009-07-13 - 20:20:36 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows 7 for x86.) -- C:\Windows\System32\Drivers\megasas.sys   [30800]
O58 - SDL:[MD5.DCBAB2920C75F390CAF1D29F675D03D6] - 2009-07-13 - 20:20:36 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\Drivers\MegaSR.sys   [235584]
O58 - SDL:[MD5.F001861E5700EE84E2D4E52C712F4964] - 2009-07-13 - 18:55:24 ---A- . (.Microsoft Corporation - Pilote de périphérique modem.) -- C:\Windows\System32\Drivers\modem.sys   [31744]
O58 - SDL:[MD5.79D10964DE86B292320E9DFE02282A23] - 2009-07-13 - 18:25:59 ---A- . (.Microsoft Corporation - Monitor Driver.) -- C:\Windows\System32\Drivers\monitor.sys   [23552]
O58 - SDL:[MD5.FB18CC1D4C2E716B6B903B0AC0CC0609] - 2009-07-13 - 20:20:44 ---A- . (.Microsoft Corporation - Pilote de la classe Souris.) -- C:\Windows\System32\Drivers\mouclass.sys   [41552]
O58 - SDL:[MD5.2C388D2CD01C9042596CF3C8F3C7B24D] - 2009-07-13 - 18:45:08 ---A- . (.Microsoft Corporation - Pilote de filtre souris HID.) -- C:\Windows\System32\Drivers\mouhid.sys   [26112]
O58 - SDL:[MD5.FC8771F45ECCCFD89684E38842539B9B] - 2010-11-20 - 16:29:11 ---A- . (.Microsoft Corporation - Gestionnaire des points de montage.) -- C:\Windows\System32\Drivers\mountmgr.sys   [78208]
O58 - SDL:[MD5.E77DC03DD3C8E5A388BF9EED2A28F3D1] - 2013-09-27 - 09:53:06 ---A- . (.Microsoft Corporation - Microsoft antimalware file system filter driver.) -- C:\Windows\System32\Drivers\MpFilter.sys   [214696]
O58 - SDL:[MD5.2D699FB6E89CE0D8DA14ECC03B3EDFE0] - 2010-11-20 - 16:29:03 ---A- . (.Microsoft Corporation - Pilote du bus de prise en charge des chemins d’accès multiples.) -- C:\Windows\System32\Drivers\mpio.sys   [130432]
O58 - SDL:[MD5.AD2723A7B53DD1AACAE6AD8C0BFBF4D0] - 2009-07-13 - 18:52:53 ---A- . (.Microsoft Corporation - Microsoft Protection Service Driver.) -- C:\Windows\System32\Drivers\mpsdrv.sys   [60416]
O58 - SDL:[MD5.21F4B24ACFC79A483515BD986DD9043F] - 2013-07-04 - 04:48:52 ---A- . (.Microsoft Corporation - Windows NT WebDav Minirdr.) -- C:\Windows\System32\Drivers\mrxdav.sys   [115712]
O58 - SDL:[MD5.5D16C921E3671636C0EBA3BBAAC5FD25] - 2011-04-26 - 21:17:22 ---A- . (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\Windows\System32\Drivers\mrxsmb.sys   [123904]
O58 - SDL:[MD5.6D17A4791ACA19328C685D256349FEFC] - 2011-07-08 - 21:30:00 ---A- . (.Microsoft Corporation - Longhorn SMB Downlevel SubRdr.) -- C:\Windows\System32\Drivers\mrxsmb10.sys   [223744]
O58 - SDL:[MD5.B81F204D146000BE76651A50670A5E9E] - 2011-04-26 - 21:17:28 ---A- . (.Microsoft Corporation - Longhorn SMB 2.0 Redirector.) -- C:\Windows\System32\Drivers\mrxsmb20.sys   [96768]
O58 - SDL:[MD5.012C5F4E9349E711E11E0F19A8589F0A] - 2010-11-20 - 16:29:03 ---A- . (.Microsoft Corporation - MS AHCI 1.0 Standard Driver.) -- C:\Windows\System32\Drivers\msahci.sys   [28032]
O58 - SDL:[MD5.55055F8AD8BE27A64C831322A780A228] - 2010-11-20 - 16:29:03 ---A- . (.Microsoft Corporation - Module spécifique de périphériques Microsoft.) -- C:\Windows\System32\Drivers\msdsm.sys   [116096]
O58 - SDL:[MD5.DAEFB28E3AF5A76ABCC2C3078C07327F] - 2009-07-13 - 18:11:26 ---A- . (.Microsoft Corporation - Mailslot driver.) -- C:\Windows\System32\Drivers\msfs.sys   [22528]
O58 - SDL:[MD5.3E1E5767043C5AF9367F0056295E9F84] - 2009-07-13 - 18:51:08 ---A- . (.Microsoft Corporation - Pass-through HID to KMDF Filter Driver.) -- C:\Windows\System32\Drivers\mshidkmdf.sys   [4096]
O58 - SDL:[MD5.0A4E5757AE09FA9622E3158CC1AEF114] - 2009-07-13 - 20:20:43 ---A- . (.Microsoft Corporation - ISA Driver.) -- C:\Windows\System32\Drivers\msisadrv.sys   [13888]
O58 - SDL:[MD5.CB7A9ABB12B8415BCE5D74994C7BA3AE] - 2010-11-20 - 16:29:03 ---A- . (.Microsoft Corporation - Microsoft iSCSI Initiator Driver.) -- C:\Windows\System32\Drivers\msiscsi.sys   [233344]
O58 - SDL:[MD5.8C0860D6366AAFFB6C5BB9DF9448E631] - 2009-07-13 - 18:45:08 ---A- . (.Microsoft Corporation - MS KS Server.) -- C:\Windows\System32\Drivers\mskssrv.sys   [8320]
O58 - SDL:[MD5.3EA8B949F963562CEDBB549EAC0C11CE] - 2009-07-13 - 18:45:08 ---A- . (.Microsoft Corporation - MS Proxy Clock.) -- C:\Windows\System32\Drivers\mspclock.sys   [5888]
O58 - SDL:[MD5.F456E973590D663B1073E9C463B40932] - 2009-07-13 - 18:45:07 ---A- . (.Microsoft Corporation - MS Proxy Quality Manager.) -- C:\Windows\System32\Drivers\mspqm.sys   [5504]
O58 - SDL:[MD5.0E008FC4819D238C51D7C93E7B41E560] - 2009-07-13 - 20:20:44 ---A- . (.Microsoft Corporation - Kernel Remote Procedure Call Provider.) -- C:\Windows\System32\Drivers\msrpc.sys   [162896]
O58 - SDL:[MD5.FC6B9FF600CC585EA38B12589BD4E246] - 2009-07-13 - 20:20:44 ---A- . (.Microsoft Corporation - System Management BIOS Driver.) -- C:\Windows\System32\Drivers\mssmbios.sys   [28240]
O58 - SDL:[MD5.B42C6B921F61A6E55159B8BE6CD54A36] - 2009-07-13 - 18:45:08 ---A- . (.Microsoft Corporation - WDM Tee/Communication Transform Filter.) -- C:\Windows\System32\Drivers\mstee.sys   [6144]
O58 - SDL:[MD5.33599130F44E1F34631CEA241DE8AC84] - 2009-07-13 - 18:46:55 ---A- . (.Microsoft Corporation - Pilote HID multipoint Microsoft.) -- C:\Windows\System32\Drivers\MTConfig.sys   [12288]
O58 - SDL:[MD5.159FAD02F64E6381758C990F753BCC80] - 2009-07-13 - 20:20:44 ---A- . (.Microsoft Corporation - Multiple UNC Provider Driver.) -- C:\Windows\System32\Drivers\mup.sys   [49728]
O58 - SDL:[MD5.8C9C922D71F1CD4DEF73F186416B7896] - 2012-08-22 - 12:16:46 ---A- . (.Microsoft Corporation - Pilote NDIS 6.20.) -- C:\Windows\System32\Drivers\ndis.sys   [712048]
O58 - SDL:[MD5.0E1787AA6C9191D3D319E8BAFE86F80C] - 2009-07-13 - 18:52:44 ---A- . (.Microsoft Corporation - NDIS Packet Capture Filter Driver.) -- C:\Windows\System32\Drivers\ndiscap.sys   [27136]
O58 - SDL:[MD5.E4A8AEC125A2E43A9E32AFEEA7C9C888] - 2009-07-13 - 18:54:24 ---A- . (.Microsoft Corporation - NDIS 3.0 connection wrapper driver.) -- C:\Windows\System32\Drivers\ndistapi.sys   [20992]
O58 - SDL:[MD5.D8A65DAFB3EB41CBB622745676FCD072] - 2010-11-20 - 16:29:07 ---A- . (.Microsoft Corporation - Pilote d’E/S du mode utilisateur NDIS.) -- C:\Windows\System32\Drivers\ndisuio.sys   [46080]
O58 - SDL:[MD5.38FBE267E7E6983311179230FACB1017] - 2010-11-20 - 16:29:19 ---A- . (.Microsoft Corporation - MS PPP Framing Driver (Strong Encryption).) -- C:\Windows\System32\Drivers\ndiswan.sys   [118784]
O58 - SDL:[MD5.A4BDC541E69674FBFF1A8FF00BE913F2] - 2010-11-20 - 16:29:20 ---A- . (.Microsoft Corporation - NDIS Proxy.) -- C:\Windows\System32\Drivers\ndproxy.sys   [48640]
O58 - SDL:[MD5.80B275B1CE3B0E79909DB7B39AF74D51] - 2009-07-13 - 18:53:54 ---A- . (.Microsoft Corporation - NetBIOS interface driver.) -- C:\Windows\System32\Drivers\netbios.sys   [36352]
O58 - SDL:[MD5.280122DDCF04B378EDD1AD54D71C1E54] - 2010-11-20 - 16:29:08 ---A- . (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\Drivers\netbt.sys   [187904]
O58 - SDL:[MD5.5DBD4F73E2A52FEED61DBAB3752E329C] - 2013-11-26 - 06:11:29 ---A- . (.Microsoft Corporation - Network I/O Subsystem.) -- C:\Windows\System32\Drivers\netio.sys   [240576]
O58 - SDL:[MD5.E411455F4427AA7C63C4B487E94FC315] - 2010-12-28 - 18:55:20 ---A- . (.Ralink Technology Corp. - Ralink 802.11n Wireless Adapter Driver.) -- C:\Windows\System32\Drivers\netr28u.sys   [1174880]
O58 - SDL:[MD5.1D85C4B390B0EE09C7A46B91EFB2C097] - 2009-07-13 - 20:20:44 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\Drivers\nfrd960.sys   [44624]
O58 - SDL:[MD5.32FF06EC6D946EF791D98D6C838A3090] - 2013-09-27 - 09:53:06 ---A- . (.Microsoft Corporation - Microsoft Network Realtime Inspection Driver.) -- C:\Windows\System32\Drivers\NisDrvWFP.sys   [104768]
O58 - SDL:[MD5.1DB262A9F8C087E8153D89BEF3D2235F] - 2009-07-13 - 18:11:32 ---A- . (.Microsoft Corporation - NPFS Driver.) -- C:\Windows\System32\Drivers\npfs.sys   [35328]
O58 - SDL:[MD5.E9A0A4D07E53D8FEA2BB8387A3293C58] - 2009-07-13 - 18:12:08 ---A- . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys   [16896]
O58 - SDL:[MD5.5E43D2B0EE64123D4880DFA6626DEFDE] - 2013-04-12 - 08:45:29 ---A- . (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\Windows\System32\Drivers\ntfs.sys   [1211752]
O58 - SDL:[MD5.F9756A98D69098DCA8945D62858A812C] - 2009-07-13 - 18:11:12 ---A- . (.Microsoft Corporation - NULL Driver.) -- C:\Windows\System32\Drivers\null.sys   [4608]
O58 - SDL:[MD5.B3E25EE28883877076E0E1FF877D02E0] - 2011-03-11 - 00:39:00 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\Drivers\nvraid.sys   [117120]
O58 - SDL:[MD5.4380E59A170D88C4F1022EFF6719A8A4] - 2011-03-11 - 00:39:00 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\Drivers\nvstor.sys   [143744]
O58 - SDL:[MD5.5A0983915F02BAE73267CC2A041F717D] - 2009-07-13 - 20:20:44 ---A- . (.Microsoft Corporation - Filtre AGP NForce NT.) -- C:\Windows\System32\Drivers\NV_AGP.SYS   [105024]
O58 - SDL:[MD5.26384429FCD85D83746F63E798AB1480] - 2009-07-13 - 18:52:03 ---A- . (.Microsoft Corporation - Pilote de miniport WiFi natif.) -- C:\Windows\System32\Drivers\nwifi.sys   [267264]
O58 - SDL:[MD5.08A70A1F2CDDE9BB49B885CB817A66EB] - 2009-07-13 - 18:51:29 ---A- . (.Microsoft Corporation - 1394 OpenHCI Port Driver.) -- C:\Windows\System32\Drivers\ohci1394.sys   [62464]
O58 - SDL:[MD5.6270CCAE2A86DE6D146529FE55B3246A] - 2009-07-13 - 18:53:58 ---A- . (.Microsoft Corporation - Planificateur de paquets QoS.) -- C:\Windows\System32\Drivers\pacer.sys   [104448]
O58 - SDL:[MD5.2EA877ED5DD9713C5AC74E8EA7348D14] - 2009-07-13 - 18:45:35 ---A- . (.Microsoft Corporation - Pilote de port parallèle.) -- C:\Windows\System32\Drivers\parport.sys   [79360]
O58 - SDL:[MD5.3F34A1B4C5F6475F320C275E63AFCE9B] - 2012-03-17 - 02:27:18 ---A- . (.Microsoft Corporation - Partition Management Driver.) -- C:\Windows\System32\Drivers\partmgr.sys   [56176]
O58 - SDL:[MD5.EB0A59F29C19B86479D36B35983DAADC] - 2009-07-13 - 18:45:29 ---A- . (.Microsoft Corporation - Pilote parallèle VDM.) -- C:\Windows\System32\Drivers\parvdm.sys   [8704]
O58 - SDL:[MD5.673E55C3498EB970088E812EA820AA8F] - 2010-11-20 - 16:29:03 ---A- . (.Microsoft Corporation - Énumérateur Plug-and-Play PCI pour NT.) -- C:\Windows\System32\Drivers\pci.sys   [153984]
O58 - SDL:[MD5.AFE86F419014DB4E5593F69FFE26CE0A] - 2009-07-13 - 20:20:45 ---A- . (.Microsoft Corporation - Generic PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\pciide.sys   [12368]
O58 - SDL:[MD5.EDE040D666FF81BF1978D0F19F799E7A] - 2009-07-13 - 20:19:03 ---A- . (.Microsoft Corporation - PCI IDE Bus Driver Extension.) -- C:\Windows\System32\Drivers\pciidex.sys   [42560]
O58 - SDL:[MD5.F396431B31693E71E8A80687EF523506] - 2009-07-13 - 20:19:03 ---A- . (.Microsoft Corporation - Pilote de bus PCMCIA.) -- C:\Windows\System32\Drivers\pcmcia.sys   [180288]
O58 - SDL:[MD5.250F6B43D2B613172035C6747AEEB19F] - 2009-07-13 - 20:19:04 ---A- . (.Microsoft Corporation - Performance Counters for Windows Driver.) -- C:\Windows\System32\Drivers\pcw.sys   [43088]
O58 - SDL:[MD5.9E0104BA49F4E6973749A02BF41344ED] - 2009-07-13 - 19:41:15 ---A- . (.Microsoft Corporation - Protected Environment Authentication and Authorization Export D.) -- C:\Windows\System32\Drivers\PEAuth.sys   [586752]
O58 - SDL:[MD5.EB6137D696A9B4E9718AC6F8641CB4C9] - 2013-10-03 - 20:17:08 ---A- . (.Microsoft Corporation - Port Class (Class Driver for Port/Miniport Devices).) -- C:\Windows\System32\Drivers\portcls.sys   [177152]
O58 - SDL:[MD5.85B1E3A0C7585BC4AAE6899EC6FCF011] - 2009-07-13 - 18:11:04 ---A- . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\Drivers\processr.sys   [52224]
O58 - SDL:[MD5.AB95ECF1F6659A60DDC166D8315B0751] - 2009-07-13 - 20:19:04 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\Drivers\ql2300.sys   [1383488]
O58 - SDL:[MD5.B4DD51DD25182244B86737DC51AF2270] - 2009-07-13 - 20:19:04 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\Drivers\ql40xx.sys   [106064]
O58 - SDL:[MD5.584078CA1B95CA72DF2A27C336F9719D] - 2009-07-13 - 18:54:13 ---A- . (.Microsoft Corporation - Pilote du support de Microsoft Quality Windows Audio Video Expe.) -- C:\Windows\System32\Drivers\qwavedrv.sys   [31744]
O58 - SDL:[MD5.30A81B53C766D0133BB86D234E5556AB] - 2009-07-13 - 18:54:40 ---A- . (.Microsoft Corporation - RAS Automatic Connection Driver.) -- C:\Windows\System32\Drivers\rasacd.sys   [11776]
O58 - SDL:[MD5.D9F91EAFEC2815365CBE6D167E4E332A] - 2009-07-13 - 18:54:34 ---A- . (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\Drivers\rasl2tp.sys   [78848]
O58 - SDL:[MD5.0FE8B15916307A6AC12BFB6A63E45507] - 2009-07-13 - 18:54:53 ---A- . (.Microsoft Corporation - RAS PPPoE mini-port/call-manager driver.) -- C:\Windows\System32\Drivers\raspppoe.sys   [77824]
O58 - SDL:[MD5.631E3E205AD6D86F2AED6A4A8E69F2DB] - 2009-07-13 - 18:54:48 ---A- . (.Microsoft Corporation - Peer-to-Peer Tunneling Protocol.) -- C:\Windows\System32\Drivers\raspptp.sys   [73728]
O58 - SDL:[MD5.44101F495A83EA6401D886E7FD70096B] - 2009-07-13 - 18:54:58 ---A- . (.Microsoft Corporation - RAS SSTP Miniport Call Manager.) -- C:\Windows\System32\Drivers\rassstp.sys   [75264]
O58 - SDL:[MD5.D528BC58A489409BA40334EBF96A311B] - 2010-11-20 - 16:29:19 ---A- . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire tampon de lecteur red.) -- C:\Windows\System32\Drivers\rdbss.sys   [242688]
O58 - SDL:[MD5.0D8F05481CB76E70E1DA06EE9F0DA9DF] - 2009-07-13 - 19:02:41 ---A- . (.Microsoft Corporation - Microsoft RDP Bus Device driver.) -- C:\Windows\System32\Drivers\rdpbus.sys   [18944]
O58 - SDL:[MD5.23DAE03F29D253AE74C44F99E515F9A1] - 2010-11-20 - 16:29:12 ---A- . (.Microsoft Corporation - RDP Miniport.) -- C:\Windows\System32\Drivers\RDPCDD.sys   [6656]
O58 - SDL:[MD5.5A53CA1598DD4156D44196D200C94B8A] - 2009-07-13 - 19:01:39 ---A- . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\System32\Drivers\RDPENCDD.sys   [6656]
O58 - SDL:[MD5.44B0A53CD4F27D50ED461DAE0C0B4E1F] - 2009-07-13 - 19:01:41 ---A- . (.Microsoft Corporation - RDP Reflector Driver Miniport.) -- C:\Windows\System32\Drivers\RDPREFMP.sys   [7168]
O58 - SDL:[MD5.65375DF758CA1872AB7EBBBA457FD5E6] - 2012-08-23 - 09:44:32 ---A- . (.Microsoft Corporation - Microsoft RDP Video Miniport driver.) -- C:\Windows\System32\Drivers\rdpvideominiport.sys   [14848]
O58 - SDL:[MD5.F031683E6D1FEA157ABB2FF260B51E61] - 2012-04-27 - 22:17:07 ---A- . (.Microsoft Corporation - Pilote de pile RDP Terminal.) -- C:\Windows\System32\Drivers\rdpwd.sys   [183808]
O58 - SDL:[MD5.518395321DC96FE2C9F0E96AC743B656] - 2010-11-20 - 16:29:24 ---A- . (.Microsoft Corporation - ReadyBoost Driver.) -- C:\Windows\System32\Drivers\rdyboost.sys   [173440]
O58 - SDL:[MD5.906DCFC5EBF4EC0433F8D4FFFB0BA334] - 2010-11-20 - 16:29:20 ---A- . (.Microsoft Corporation - Reliable Multicast Transport.) -- C:\Windows\System32\Drivers\rmcast.sys   [117760]
O58 - SDL:[MD5.ED80D303102A746D30C1684B387BCBF1] - 2012-07-04 - 14:45:31 ---A- . (.Microsoft Corporation - Remote NDIS Miniport.) -- C:\Windows\System32\Drivers\RNDISMP.sys   [33280]
O58 - SDL:[MD5.564297827D213F52C7A3A2FF749568CA] - 2009-07-13 - 18:55:21 ---A- . (.Microsoft Corporation - Legacy Non-Pnp Modem Device Driver.) -- C:\Windows\System32\Drivers\rootmdm.sys   [8192]
O58 - SDL:[MD5.032B0D36AD92B582D869879F5AF5B928] - 2009-07-13 - 18:53:20 ---A- . (.Microsoft Corporation - Link-Layer Topology Responder Driver for NDIS 6.) -- C:\Windows\System32\Drivers\rspndr.sys   [60928]
O58 - SDL:[MD5.3983CEA05BB855351D75F5482B6C42CE] - 2009-03-01 - 22:05:32 ---A- . (.Realtek Corporation - Realtek 8101E/8168/8169 NDIS 6.20 32-bit Driver.) -- C:\Windows\System32\Drivers\Rt86win7.sys   [139776]
O58 - SDL:[MD5.3914EA9111DBEFFAF1C68200817768AD] - 2009-08-04 - 08:48:20 ---A- . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function Driver.) -- C:\Windows\System32\Drivers\RTKVHDA.sys   [2744800]
O58 - SDL:[MD5.05D860DA1040F111503AC416CCEF2BCA] - 2010-11-20 - 16:29:03 ---A- . (.Microsoft Corporation - SBP-2 Protocol Driver.) -- C:\Windows\System32\Drivers\sbp2port.sys   [85376]
O58 - SDL:[MD5.0693B5EC673E34DC147E195779A4DCF6] - 2010-11-20 - 16:29:20 ---A- . (.Microsoft Corporation - Pilote de filtre de lecteur de carte à puce Microsoft.) -- C:\Windows\System32\Drivers\scfilter.sys   [26624]
O58 - SDL:[MD5.099972E1FAF4950D3994FBAB9DD21253] - 2010-11-20 - 16:29:12 ---A- . (.Microsoft Corporation - SCSI Port Driver.) -- C:\Windows\System32\Drivers\scsiport.sys   [140160]
O58 - SDL:[MD5.90A3935D05B494A5A39D37E71F09A677] - 2009-07-13 - 15:50:20 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\System32\Drivers\secdrv.sys   [20480]
O58 - SDL:[MD5.9AD8B8B515E3DF6ACD4212EF465DE2D1] - 2009-07-13 - 18:45:28 ---A- . (.Microsoft Corporation - Serial Port Enumerator.) -- C:\Windows\System32\Drivers\serenum.sys   [17920]
O58 - SDL:[MD5.5FB7FCEA0490D821F26F39CC5EA3D1E2] - 2009-07-13 - 18:45:33 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\Drivers\serial.sys   [83456]
O58 - SDL:[MD5.79BFFB520327FF916A582DFEA17AA813] - 2009-07-13 - 18:45:08 ---A- . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys   [19968]
O58 - SDL:[MD5.9F976E1EB233DF46FCE808D9DEA3EB9C] - 2009-07-13 - 18:45:52 ---A- . (.Microsoft Corporation - Small Form Factor Disk Driver.) -- C:\Windows\System32\Drivers\sffdisk.sys   [11264]
O58 - SDL:[MD5.932A68EE27833CFD57C1639D375F2731] - 2009-07-13 - 18:45:52 ---A- . (.Microsoft Corporation - Small Form Factor MMC Protocol Driver.) -- C:\Windows\System32\Drivers\sffp_mmc.sys   [12288]
O58 - SDL:[MD5.6D4CCAEDC018F1CF52866BBBAA235982] - 2010-11-20 - 16:29:03 ---A- . (.Microsoft Corporation - Small Form Factor SD Protocol Driver.) -- C:\Windows\System32\Drivers\sffp_sd.sys   [12800]
O58 - SDL:[MD5.DB96666CC8312EBC45032F30B007A547] - 2009-07-13 - 18:45:52 ---A- . (.Microsoft Corporation - SCSI Floppy Driver.) -- C:\Windows\System32\Drivers\sfloppy.sys   [13824]
O58 - SDL:[MD5.2565CAC0DC9FE0371BDCE60832582B2E] - 2009-07-13 - 20:19:03 ---A- . (.Microsoft Corporation - Filtre SIS NT AGP.) -- C:\Windows\System32\Drivers\SISAGP.SYS   [52304]
O58 - SDL:[MD5.A9F0486851BECB6DDA1D89D381E71055] - 2009-07-13 - 20:19:04 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid2.sys   [40016]
O58 - SDL:[MD5.3727097B55738E2F554972C3BE5BC1AA] - 2009-07-13 - 20:19:04 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid4.sys   [77888]
O58 - SDL:[MD5.3E21C083B8A01CB70BA1F09303010FCE] - 2009-07-13 - 18:53:41 ---A- . (.Microsoft Corporation - SMB Transport driver.) -- C:\Windows\System32\Drivers\smb.sys   [71168]
O58 - SDL:[MD5.2E467E6CA8E0A140C08011844C0D3936] - 2009-07-13 - 18:45:28 ---A- . (.Microsoft Corporation - Smart Card Driver Library.) -- C:\Windows\System32\Drivers\smclib.sys   [17408]
O58 - SDL:[MD5.95CF1AE7527FB70F7816563CBC09D942] - 2009-07-13 - 20:19:03 ---A- . (.Microsoft Corporation - loader for security processor.) -- C:\Windows\System32\Drivers\spldr.sys   [17472]
O58 - SDL:[MD5.D16D818E9930A6E5B4F6476DD0998D1A] - 2009-07-13 - 15:34:43 ---A- . (.Microsoft Corporation - security processor.) -- C:\Windows\System32\Drivers\spsys.sys   [405504]
O58 - SDL:[MD5.7B426B8E809EDF081D771EF429345528] - 2011-06-21 - 11:24:06 ---A- . (...) -- C:\Windows\System32\Drivers\sp_rsdrv2.sys   [32768]
O58 - SDL:[MD5.E4C2764065D66EA1D2D3EBC28FE99C46] - 2011-04-28 - 21:46:33 ---A- . (.Microsoft Corporation - Server driver.) -- C:\Windows\System32\Drivers\srv.sys   [311808]
O58 - SDL:[MD5.03F0545BD8D4C77FA0AE1CEEDFCC71AB] - 2011-04-28 - 21:46:15 ---A- . (.Microsoft Corporation - Smb 2.0 Server driver.) -- C:\Windows\System32\Drivers\srv2.sys   [310272]
O58 - SDL:[MD5.BE6BD660CAA6F291AE06A718A4FA8ABC] - 2011-04-28 - 21:46:10 ---A- . (.Microsoft Corporation - Server Network driver.) -- C:\Windows\System32\Drivers\srvnet.sys   [114688]
O58 - SDL:[MD5.DB32D325C192B801DF274BFD12A7E72B] - 2009-07-13 - 20:19:04 ---A- . (.Promise Technology - Promise  SuperTrak EX Series Driver for Windows.) -- C:\Windows\System32\Drivers\stexstor.sys   [21072]
O58 - SDL:[MD5.EF3D32464EBBB10449465C8CAB57CA19] - 2011-03-11 - 00:39:05 ---A- . (.Microsoft Corporation - Microsoft Storage Port Driver.) -- C:\Windows\System32\Drivers\storport.sys   [148864]
O58 - SDL:[MD5.45B44FC9E5AC0DB02B19D515EE809DE5] - 2009-07-13 - 18:50:57 ---A- . (.Microsoft Corporation - WDM CODEC Class Device Driver 2.0.) -- C:\Windows\System32\Drivers\stream.sys   [53632]
O58 - SDL:[MD5.E58C78A848ADD9610A4DB6D214AF5224] - 2009-07-13 - 20:19:10 ---A- . (.Microsoft Corporation - Plug and Play Software Device Enumerator.) -- C:\Windows\System32\Drivers\swenum.sys   [12240]
O58 - SDL:[MD5.949C35BF4AE6C110A924AB5E2175DDA7] - 2009-07-13 - 18:45:53 ---A- . (.Microsoft Corporation - SCSI Tape Class Driver.) -- C:\Windows\System32\Drivers\tape.sys   [24576]
O58 - SDL:[MD5.CA59F7C570AF70BC174F477CFE2D9EE3] - 2013-09-07 - 21:07:12 ---A- . (.Microsoft Corporation - Pilote TCP/IP.) -- C:\Windows\System32\Drivers\tcpip.sys   [1294272]
O58 - SDL:[MD5.3EEBD3BD93DA46A26E89893C7AB2FF3B] - 2012-10-03 - 10:21:38 ---A- . (.Microsoft Corporation - TCP/IP Registry Compatibility Driver.) -- C:\Windows\System32\Drivers\tcpipreg.sys   [35328]
O58 - SDL:[MD5.2F885864D5BC8A16C86BEE595969A48A] - 2010-11-20 - 16:29:12 ---A- . (.Microsoft Corporation - TDI Wrapper.) -- C:\Windows\System32\Drivers\tdi.sys   [21504]
O58 - SDL:[MD5.1CB91B2BD8F6DD367DFC2EF26FD751B2] - 2010-11-20 - 16:29:13 ---A- . (.Microsoft Corporation - Named Pipe Transport Driver.) -- C:\Windows\System32\Drivers\tdpipe.sys   [18432]
O58 - SDL:[MD5.2C2C5AFE7EE4F620D69C23C0617651A8] - 2012-02-16 - 23:13:22 ---A- . (.Microsoft Corporation - TCP Transport Driver.) -- C:\Windows\System32\Drivers\tdtcp.sys   [24576]
O58 - SDL:[MD5.B459575348C20E8121D6039DA063C704] - 2010-11-20 - 16:29:07 ---A- . (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\Drivers\tdx.sys   [74752]
O58 - SDL:[MD5.04DBF4B01EA4BF25A9A3E84AFFAC9B20] - 2010-11-20 - 16:29:03 ---A- . (.Microsoft Corporation - Remote Desktop Server Driver.) -- C:\Windows\System32\Drivers\termdd.sys   [53120]
O58 - SDL:[MD5.B37B08F2E5EEB1A37E448E09BACE1101] - 2013-06-14 - 22:38:43 ---A- . (.Microsoft Corporation - TS Security Filter Driver.) -- C:\Windows\System32\Drivers\tssecsrv.sys   [31232]
O58 - SDL:[MD5.9CE253214ACAA5A7D323327D2055EFAA] - 2012-08-23 - 09:40:25 ---A- . (.Microsoft Corporation - Pilote de filtre pour concentrateur USB du Bureau à distance.) -- C:\Windows\System32\Drivers\TsUsbFlt.sys   [49664]
O58 - SDL:[MD5.57C527AF84748B5C2F5178C499C0B81F] - 2012-08-23 - 09:41:34 ---A- . (.Microsoft Corporation - Remote Desktop Generic USB Driver.) -- C:\Windows\System32\Drivers\TsUsbGD.sys   [27136]
O58 - SDL:[MD5.B2FA25D9B17A68BB93D58B0556E8C90D] - 2010-11-20 - 16:29:20 ---A- . (.Microsoft Corporation - Pilote d’interface de tunnel Microsoft.) -- C:\Windows\System32\Drivers\tunnel.sys   [108544]
O58 - SDL:[MD5.0397852EF1E5463D57F22C689F6354F9] - 2012-12-19 - 07:42:08 ---A- . (...) -- C:\Windows\System32\Drivers\t_mouse.sys   [5120]
O58 - SDL:[MD5.750FBCB269F4D7DD2E420C56B795DB6D] - 2009-07-13 - 20:19:10 ---A- . (.Microsoft Corporation - Filtre MS AGPv3.5.) -- C:\Windows\System32\Drivers\UAGP35.SYS   [55888]
O58 - SDL:[MD5.EE43346C7E4B5E63E54F927BABBB32FF] - 2010-11-20 - 16:29:12 ---A- . (.Microsoft Corporation - UDF File System Driver.) -- C:\Windows\System32\Drivers\udfs.sys   [246784]
O58 - SDL:[MD5.44E8048ACE47BEFBFDC2E9BE4CBC8880] - 2009-07-13 - 20:19:11 ---A- . (.Microsoft Corporation - Filtre ULi AGPv3.0 pour plateformes à processeur K8/9.) -- C:\Windows\System32\Drivers\ULIAGPKX.SYS   [57424]
O58 - SDL:[MD5.D295BED4B898F0FD999FCFA9B32B071B] - 2010-11-20 - 16:29:03 ---A- . (.Microsoft Corporation - User-Mode Bus Enumerator.) -- C:\Windows\System32\Drivers\umbus.sys   [39936]
O58 - SDL:[MD5.7550AD0C6998BA1CB4843E920EE0FEAC] - 2009-07-13 - 18:51:35 ---A- . (.Microsoft Corporation - Generic pass-through driver.) -- C:\Windows\System32\Drivers\umpass.sys   [8192]
O58 - SDL:[MD5.FE8A57C8E04EDD3AA8ADD8F3C8F65297] - 2013-02-11 - 22:32:45 ---A- . (.Microsoft Corporation - Remote NDIS USB Driver.) -- C:\Windows\System32\Drivers\usb8023.sys   [15872]
O58 - SDL:[MD5.A1977C315BF5691DA99235AA4A6907AF] - 2013-07-12 - 05:07:52 ---A- . (.Microsoft Corporation - USB Audio Class Driver.) -- C:\Windows\System32\Drivers\USBAUDIO.sys   [80896]
O58 - SDL:[MD5.FD82D2B38C465A55C527E339BA1201B1] - 2010-11-20 - 16:29:20 ---A- . (.Microsoft Corporation - Universal Serial Bus Camera Driver.) -- C:\Windows\System32\Drivers\USBCAMD.sys   [25856]
O58 - SDL:[MD5.E071E5BE621FEC4590117C488A78AE32] - 2010-11-20 - 16:29:20 ---A- . (.Microsoft Corporation - Universal Serial Bus Camera Driver.) -- C:\Windows\System32\Drivers\USBCAMD2.sys   [25856]
O58 - SDL:[MD5.0803FBA9FE829D61AE26EC0BCC910C46] - 2013-11-26 - 20:13:44 ---A- . (.Microsoft Corporation - USB Common Class Generic Parent Driver.) -- C:\Windows\System32\Drivers\usbccgp.sys   [76288]
O58 - SDL:[MD5.2352AB5F9F8F097BF9D41D5A4718A041] - 2013-07-12 - 05:07:54 ---A- . (.Microsoft Corporation - USB Consumer IR Driver for eHome.) -- C:\Windows\System32\Drivers\usbcir.sys   [86016]
O58 - SDL:[MD5.74F805AB12EB0E3E49E469F19FF02640] - 2013-11-26 - 20:13:33 ---A- . (.Microsoft Corporation - Universal Serial Bus Driver.) -- C:\Windows\System32\Drivers\usbd.sys   [6016]
O58 - SDL:[MD5.D40855F89B69305140BBD7E9A3BA2DA6] - 2013-11-26 - 20:13:41 ---A- . (.Microsoft Corporation - EHCI eUSB Miniport Driver.) -- C:\Windows\System32\Drivers\usbehci.sys   [43520]
O58 - SDL:[MD5.EDF2DF71C4F1E13A6AC75F5224DE655A] - 2013-11-26 - 20:14:25 ---A- . (.Microsoft Corporation - Default Hub Driver for USB.) -- C:\Windows\System32\Drivers\usbhub.sys   [258560]
O58 - SDL:[MD5.9828C8D14CC2676421778F0DE638CF97] - 2013-11-26 - 20:13:38 ---A- . (.Microsoft Corporation - OHCI USB Miniport Driver.) -- C:\Windows\System32\Drivers\usbohci.sys   [20480]
O58 - SDL:[MD5.EC2C5AF37B76D7B58C642CB74423DB7A] - 2013-11-26 - 20:13:46 ---A- . (.Microsoft Corporation - Pilote de port USB 1.1 & 2.0.) -- C:\Windows\System32\Drivers\usbport.sys   [284672]
O58 - SDL:[MD5.797D862FE0875E75C7CC4C1AD7B30252] - 2009-07-13 - 19:17:06 ---A- . (.Microsoft Corporation - USB Printer driver.) -- C:\Windows\System32\Drivers\usbprint.sys   [19968]
O58 - SDL:[MD5.1A078C3FE1C1F9C8561CD600C69AD300] - 2010-11-20 - 16:29:26 ---A- . (.Microsoft Corporation - Gestionnaire de stratégie de redirection USB Windows.) -- C:\Windows\System32\Drivers\usbrpm.sys   [26112]
O58 - SDL:[MD5.FC6B21DB4B5B398AB93DBE59CBF11036] - 2013-07-02 - 23:02:48 ---A- . (.Microsoft Corporation - USB Scanner Driver.) -- C:\Windows\System32\Drivers\usbscan.sys   [36352]
O58 - SDL:[MD5.F991AB9CC6B908DB552166768176896A] - 2011-03-10 - 23:01:12 ---A- . (.Microsoft Corporation - USB Mass Storage Class Driver.) -- C:\Windows\System32\Drivers\USBSTOR.SYS   [76288]
O58 - SDL:[MD5.800AABFD625EEFF899F7E5496BDE37AB] - 2013-11-26 - 20:13:36 ---A- . (.Microsoft Corporation - UHCI USB Miniport Driver.) -- C:\Windows\System32\Drivers\usbuhci.sys   [24064]
O58 - SDL:[MD5.DE014425522610BEDCA3821BB8C0F1D5] - 2013-07-12 - 05:08:19 ---A- . (.Microsoft Corporation - USB Video Class Driver.) -- C:\Windows\System32\Drivers\usbvideo.sys   [146816]
O58 - SDL:[MD5.A059C4C3EDB09E07D21A8E5C0AABD3CB] - 2009-07-13 - 20:19:10 ---A- . (.Microsoft Corporation - Énumérateur racine de lecteur virtuel.) -- C:\Windows\System32\Drivers\vdrvroot.sys   [32832]
O58 - SDL:[MD5.8E38096AD5C8570A6F1570A61E251561] - 2009-07-13 - 18:25:51 ---A- . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys   [25088]
O58 - SDL:[MD5.17C408214EA61696CEC9C66E388B14F3] - 2009-07-13 - 18:25:49 ---A- . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vgapnp.sys   [26112]
O58 - SDL:[MD5.5461686CCA2FDA57B024547733AB42E3] - 2010-11-20 - 16:29:03 ---A- . (.Microsoft Corporation - VHD Miniport Driver.) -- C:\Windows\System32\Drivers\vhdmp.sys   [160128]
O58 - SDL:[MD5.C829317A37B4BEA8F39735D4B076E923] - 2009-07-13 - 20:19:10 ---A- . (.Microsoft Corporation - Filtre VIA NT AGP.) -- C:\Windows\System32\Drivers\VIAAGP.SYS   [53328]
O58 - SDL:[MD5.E02F079A6AA107F06B16549C6E5C7B74] - 2009-07-13 - 18:11:04 ---A- . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\Drivers\viac7.sys   [52736]
O58 - SDL:[MD5.E43574F6A56A0EE11809B48C09E4FD3C] - 2009-07-13 - 20:19:10 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\viaide.sys   [16976]
O58 - SDL:[MD5.15C126D1B55814B9E5CAB10A9C1F4C67] - 2009-07-13 - 18:25:51 ---A- . (.Microsoft Corporation - Video Port Driver.) -- C:\Windows\System32\Drivers\videoprt.sys   [111616]
O58 - SDL:[MD5.4C63E00F2F4B5F86AB48A58CD990F212] - 2010-11-20 - 16:29:03 ---A- . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys   [53120]
O58 - SDL:[MD5.B5BB72067DDDDBBFB04B2F89FF8C3C87] - 2009-07-13 - 20:19:11 ---A- . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys   [297040]
O58 - SDL:[MD5.F497F67932C6FA693D7DE2780631CFE7] - 2010-11-20 - 16:29:03 ---A- . (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\Windows\System32\Drivers\volsnap.sys   [245632]
O58 - SDL:[MD5.9DFA0CC2F8855A04816729651175B631] - 2009-07-13 - 20:19:11 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\Drivers\vsmraid.sys   [141904]
O58 - SDL:[MD5.90567B1E658001E79D7C8BBD3DDE5AA6] - 2009-07-13 - 18:52:02 ---A- . (.Microsoft Corporation - Pilote de bus WiFi virtuel.) -- C:\Windows\System32\Drivers\vwifibus.sys   [19968]
O58 - SDL:[MD5.7090D3436EEB4E7DA3373090A23448F7] - 2009-07-13 - 18:52:04 ---A- . (.Microsoft Corporation - Virtual WiFi Filter Driver.) -- C:\Windows\System32\Drivers\vwififlt.sys   [48128]
O58 - SDL:[MD5.A3F04CBEA6C2A10E6CB01F8B47611882] - 2009-07-13 - 18:52:10 ---A- . (.Microsoft Corporation - Virtual WiFi Miniport Driver.) -- C:\Windows\System32\Drivers\vwifimp.sys   [14336]
O58 - SDL:[MD5.DE3721E89C653AA281428C8A69745D90] - 2009-07-13 - 18:46:53 ---A- . (.Microsoft Corporation - Wacom Serial Pen Tablet HID Driver.) -- C:\Windows\System32\Drivers\wacompen.sys   [21632]
O58 - SDL:[MD5.3C3C78515F5AB448B022BDF5B8FFDD2E] - 2010-11-20 - 16:29:20 ---A- . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) -- C:\Windows\System32\Drivers\wanarp.sys   [63488]
O58 - SDL:[MD5.CB45A417C8EF7BA6BAC67EDCDDED8700] - 2009-07-13 - 18:24:11 ---A- . (.Microsoft Corporation - Watchdog Driver.) -- C:\Windows\System32\Drivers\watchdog.sys   [35328]
O58 - SDL:[MD5.1112A9BADACB47B7C0BB0392E3158DFF] - 2009-07-13 - 20:19:11 ---A- . (.Microsoft Corporation - Microsoft Watchdog Timer Driver.) -- C:\Windows\System32\Drivers\wd.sys   [19024]
O58 - SDL:[MD5.25944D2CC49E0A6C581D02A74B7D6645] - 2013-06-25 - 17:56:40 ---A- . (.Microsoft Corporation - Runtime de l’infrastructure de pilotes en mode noyau.) -- C:\Windows\System32\Drivers\Wdf01000.sys   [527064]
O58 - SDL:[MD5.48704647CD2E9DAA2EB81BDE6D029EDB] - 2012-07-25 - 22:39:21 ---A- . (.Microsoft Corporation - Kernel Mode Driver Framework Loader.) -- C:\Windows\System32\Drivers\WdfLdr.sys   [47720]
O58 - SDL:[MD5.8B9A943F3B53861F2BFAF6C186168F79] - 2009-07-13 - 18:53:51 ---A- . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) -- C:\Windows\System32\Drivers\wfplwf.sys   [9728]
O58 - SDL:[MD5.5CF95B35E59E2A38023836FFF31BE64C] - 2009-07-13 - 20:19:10 ---A- . (.Microsoft Corporation - Wim file system Driver.) -- C:\Windows\System32\Drivers\wimmount.sys   [19008]
O58 - SDL:[MD5.A67E5F9A400F3BD1BE3D80613B45F708] - 2010-11-20 - 16:29:03 ---A- . (.Microsoft Corporation - Windows USB Class Driver BETA.) -- C:\Windows\System32\Drivers\winusb.sys   [35968]
O58 - SDL:[MD5.0217679B8FCA58714C3BF2726D2CA84E] - 2009-07-13 - 18:19:17 ---A- . (.Microsoft Corporation - Windows Management Interface for ACPI.) -- C:\Windows\System32\Drivers\wmiacpi.sys   [11264]
O58 - SDL:[MD5.9A5B1059FE015DB5269FBB25ACBF841D] - 2009-07-13 - 20:19:10 ---A- . (.Microsoft Corporation - WMILIB WMI support library Dll.) -- C:\Windows\System32\Drivers\wmilib.sys   [14912]
O58 - SDL:[MD5.6DB3276587B853BF886B69528FDB048C] - 2009-07-13 - 18:55:02 ---A- . (.Microsoft Corporation - Couche IFS Winsock2.) -- C:\Windows\System32\Drivers\ws2ifsl.sys   [16384]
O58 - SDL:[MD5.06E6F32C8D0A3F66D956F57B43A2E070] - 2012-07-25 - 21:33:43 ---A- . (.Microsoft Corporation - Windows Driver Foundation - User-mode Driver Framework Platform.) -- C:\Windows\System32\Drivers\WUDFPf.sys   [66560]
O58 - SDL:[MD5.867C301E8B790040AE9CF6486E8041DF] - 2012-07-25 - 21:32:51 ---A- . (.Microsoft Corporation - Windows Driver Foundation - User-mode Driver Framework Reflecto.) -- C:\Windows\System32\Drivers\WUDFRd.sys   [155136]
O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 2009-07-13 - 16:40:41 ---A- . (...) -- C:\Windows\System32\ANSI.SYS   [9029]
O58 - SDL:[MD5.635181E0E9BBF16871BF5380D71DB02D] - 2009-07-13 - 20:26:21 ---A- . (.Microsoft Corporation - Common Log File System Driver.) -- C:\Windows\System32\clfs.sys   [249408]
O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 2009-07-13 - 16:40:44 ---A- . (...) -- C:\Windows\System32\country.sys   [27097]
O58 - SDL:[MD5.01CE484FF6D70A39479BC6D619DE7ED6] - 2012-06-22 - 11:01:32 ---A- . (...) -- C:\Windows\System32\ESGScanner.sys   [19984]
O58 - SDL:[MD5.E6BC0F98FECEF245A0010D350C1A0B9B] - 2009-07-13 - 16:40:40 ---A- . (...) -- C:\Windows\System32\HIMEM.SYS   [4768]
O58 - SDL:[MD5.492090267B9608C62B956CD29BE3AFB7] - 2009-07-13 - 16:40:43 ---A- . (...) -- C:\Windows\System32\KEY01.SYS   [42809]
O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 2009-07-13 - 16:40:43 ---A- . (...) -- C:\Windows\System32\KEYBOARD.SYS   [42537]
O58 - SDL:[MD5.FFFF296A08DBF2AC0126C62E3778AC0D] - 2009-07-13 - 16:40:23 ---A- . (...) -- C:\Windows\System32\NTDOS.SYS   [27866]
O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 2009-07-13 - 16:40:31 ---A- . (...) -- C:\Windows\System32\NTDOS404.SYS   [29146]
O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 2009-07-13 - 16:40:35 ---A- . (...) -- C:\Windows\System32\NTDOS411.SYS   [29370]
O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 2009-07-13 - 16:40:39 ---A- . (...) -- C:\Windows\System32\NTDOS412.SYS   [29274]
O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 2009-07-13 - 16:40:27 ---A- . (...) -- C:\Windows\System32\NTDOS804.SYS   [29146]
O58 - SDL:[MD5.2E4112FB7D1B76E11ADFD7487B5D0E95] - 2009-07-13 - 16:40:11 ---A- . (...) -- C:\Windows\System32\NTIO.SYS   [33952]
O58 - SDL:[MD5.A98EBD4C2DF983665BF2D1AF49949974] - 2009-07-13 - 16:40:15 ---A- . (...) -- C:\Windows\System32\NTIO404.SYS   [34672]
O58 - SDL:[MD5.3F7E6406EDEF197C5CAAB2240EEF6F48] - 2009-07-13 - 16:40:17 ---A- . (...) -- C:\Windows\System32\NTIO411.SYS   [35776]
O58 - SDL:[MD5.3E64D681B776CC57BDC38A46D881F85B] - 2009-07-13 - 16:40:19 ---A- . (...) -- C:\Windows\System32\NTIO412.SYS   [35536]
O58 - SDL:[MD5.D86B6435729231C171432B4E77801BDB] - 2009-07-13 - 16:40:13 ---A- . (...) -- C:\Windows\System32\NTIO804.SYS   [34672]
O58 - SDL:[MD5.1E882889A4314D6DF5DED4F6EC994E72] - 2013-11-26 - 05:10:21 ---A- . (.Microsoft Corporation - Pilote Win32 multi-utilisateurs.) -- C:\Windows\System32\win32k.sys   [2349056]
~ Drivers: 18 Scanned in 00mn 09s



---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)
O61 - LFC: 2014-02-14 - 08:09:05 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOCK   [0]
O61 - LFC: 2014-02-14 - 08:09:06 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\background.js   [12425]
O61 - LFC: 2014-02-14 - 08:09:06 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\block.html   [2216]
O61 - LFC: 2014-02-14 - 08:09:06 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\block.js   [3113]
O61 - LFC: 2014-02-14 - 08:09:06 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\ext\background.js   [14954]
O61 - LFC: 2014-02-14 - 08:09:06 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\ext\common.js   [3179]
O61 - LFC: 2014-02-14 - 08:09:06 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\ext\content.js   [42]
O61 - LFC: 2014-02-14 - 08:09:06 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\ext\popup.js   [240]
O61 - LFC: 2014-02-14 - 08:09:06 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\firstRun.html   [5555]
O61 - LFC: 2014-02-14 - 08:09:06 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\firstRun.js   [7565]
O61 - LFC: 2014-02-14 - 08:09:06 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\i18n.js   [4169]
O61 - LFC: 2014-02-14 - 08:09:06 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\iconAnimation.js   [3091]
O61 - LFC: 2014-02-14 - 08:09:06 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\icons\abp-128.png   [15615]
O61 - LFC: 2014-02-14 - 08:09:06 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\icons\abp-16-notification-critical.png   [648]
O61 - LFC: 2014-02-14 - 08:09:06 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\icons\abp-16-notification-information.png   [676]
O61 - LFC: 2014-02-14 - 08:09:06 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\icons\abp-16.png   [834]
O61 - LFC: 2014-02-14 - 08:09:06 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\icons\abp-19-notification-critical-1.png   [863]
O61 - LFC: 2014-02-14 - 08:09:06 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\icons\abp-19-notification-critical-2.png   [856]
O61 - LFC: 2014-02-14 - 08:09:06 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\icons\abp-19-notification-critical-3.png   [851]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\icons\abp-19-notification-critical-4.png   [848]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\icons\abp-19-notification-critical-5.png   [835]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\icons\abp-19-notification-critical-6.png   [816]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\icons\abp-19-notification-critical-7.png   [795]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\icons\abp-19-notification-critical-8.png   [761]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\icons\abp-19-notification-critical-9.png   [699]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\icons\abp-19-notification-critical.png   [440]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\icons\abp-19-notification-information-1.png   [867]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\icons\abp-19-notification-information-2.png   [862]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\icons\abp-19-notification-information-3.png   [858]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\icons\abp-19-notification-information-4.png   [856]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\icons\abp-19-notification-information-5.png   [846]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\icons\abp-19-notification-information-6.png   [846]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\icons\abp-19-notification-information-7.png   [826]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\icons\abp-19-notification-information-8.png   [812]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\icons\abp-19-notification-information-9.png   [773]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\icons\abp-19-notification-information.png   [533]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\icons\abp-19-whitelisted-notification-critical-1.png   [843]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\icons\abp-19-whitelisted-notification-critical-2.png   [848]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\icons\abp-19-whitelisted-notification-critical-3.png   [836]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\icons\abp-19-whitelisted-notification-critical-4.png   [827]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\icons\abp-19-whitelisted-notification-critical-5.png   [814]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\icons\abp-19-whitelisted-notification-critical-6.png   [800]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\icons\abp-19-whitelisted-notification-critical-7.png   [775]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\icons\abp-19-whitelisted-notification-critical-8.png   [747]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\icons\abp-19-whitelisted-notification-critical-9.png   [680]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\icons\abp-19-whitelisted-notification-information-1.png   [856]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\icons\abp-19-whitelisted-notification-information-2.png   [865]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\icons\abp-19-whitelisted-notification-information-3.png   [863]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\icons\abp-19-whitelisted-notification-information-4.png   [851]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\icons\abp-19-whitelisted-notification-information-5.png   [844]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\icons\abp-19-whitelisted-notification-information-6.png   [841]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\icons\abp-19-whitelisted-notification-information-7.png   [816]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\icons\abp-19-whitelisted-notification-information-8.png   [795]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\icons\abp-19-whitelisted-notification-information-9.png   [739]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\icons\abp-19-whitelisted.png   [458]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\icons\abp-19.png   [889]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\icons\abp-32.png   [2350]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\icons\abp-48.png   [3639]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\include.postload.js   [20929]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\include.preload.js   [3665]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\jquery-ui\css\smoothness\images\ui-bg_flat_0_aaaaaa_40x100.png   [180]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\jquery-ui\css\smoothness\images\ui-bg_flat_75_ffffff_40x100.png   [178]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\jquery-ui\css\smoothness\images\ui-bg_glass_55_fbf9ee_1x400.png   [120]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\jquery-ui\css\smoothness\images\ui-bg_glass_65_ffffff_1x400.png   [105]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\jquery-ui\css\smoothness\images\ui-bg_glass_75_dadada_1x400.png   [111]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\jquery-ui\css\smoothness\images\ui-bg_glass_75_e6e6e6_1x400.png   [110]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\jquery-ui\css\smoothness\images\ui-bg_glass_95_fef1ec_1x400.png   [119]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\jquery-ui\css\smoothness\images\ui-bg_highlight-soft_75_cccccc_1x100.png   [101]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\jquery-ui\css\smoothness\images\ui-icons_222222_256x240.png   [4369]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\jquery-ui\css\smoothness\images\ui-icons_2e83ff_256x240.png   [4369]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\jquery-ui\css\smoothness\images\ui-icons_454545_256x240.png   [4369]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\jquery-ui\css\smoothness\images\ui-icons_888888_256x240.png   [4369]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\jquery-ui\css\smoothness\images\ui-icons_cd0a0a_256x240.png   [4369]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\jquery-ui\css\smoothness\jquery-ui-1.8.16.custom.css   [22785]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\jquery-ui\js\jquery-1.7.1.min.js   [93868]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\jquery-ui\js\jquery-ui-1.8.16.custom.min.js   [30148]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\lib\adblockplus.js   [110229]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\lib\basedomain.js   [6795]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\lib\compat.js   [5449]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\lib\info.js   [1113]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\lib\io.js   [6340]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\lib\jsbn.js   [17236]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\lib\publicSuffixList.js   [134254]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\lib\punycode.js   [14067]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\lib\rsa.js   [5420]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\lib\sha1.js   [3600]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\manifest.json   [1811]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\notification.html   [639]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\notification.js   [2780]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\options.html   [8119]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\options.js   [19960]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\popup.html   [3200]
O61 - LFC: 2014-02-14 - 08:09:07 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\popup.js   [4480]
O61 - LFC: 2014-02-14 - 08:09:08 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\_locales\ar\messages.json   [21506]
O61 - LFC: 2014-02-14 - 08:09:08 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\_locales\bg\messages.json   [25227]
O61 - LFC: 2014-02-14 - 08:09:08 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\_locales\bn\messages.json   [12757]
O61 - LFC: 2014-02-14 - 08:09:08 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\_locales\ca\messages.json   [10042]
O61 - LFC: 2014-02-14 - 08:09:08 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\_locales\cs\messages.json   [11646]
O61 - LFC: 2014-02-14 - 08:09:08 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\_locales\da\messages.json   [9843]
O61 - LFC: 2014-02-14 - 08:09:08 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\_locales\de\messages.json   [10506]
O61 - LFC: 2014-02-14 - 08:09:08 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\_locales\el\messages.json   [27377]
O61 - LFC: 2014-02-14 - 08:09:08 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\_locales\en_GB\messages.json   [9478]
O61 - LFC: 2014-02-14 - 08:09:08 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\_locales\en_US\messages.json   [10854]
O61 - LFC: 2014-02-14 - 08:09:08 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\_locales\es\messages.json   [10373]
O61 - LFC: 2014-02-14 - 08:09:08 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\_locales\es_419\messages.json   [10606]
O61 - LFC: 2014-02-14 - 08:09:08 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\_locales\et\messages.json   [7688]
O61 - LFC: 2014-02-14 - 08:09:08 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\_locales\fa\messages.json   [11270]
O61 - LFC: 2014-02-14 - 08:09:08 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\_locales\fi\messages.json   [10786]
O61 - LFC: 2014-02-14 - 08:09:08 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\_locales\fil\messages.json   [513]
O61 - LFC: 2014-02-14 - 08:09:08 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\_locales\fr\messages.json   [10816]
O61 - LFC: 2014-02-14 - 08:09:08 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\_locales\he\messages.json   [19568]
O61 - LFC: 2014-02-14 - 08:09:08 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\_locales\hi\messages.json   [4479]
O61 - LFC: 2014-02-14 - 08:09:08 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\_locales\hr\messages.json   [10315]
O61 - LFC: 2014-02-14 - 08:09:08 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\_locales\hu\messages.json   [11959]
O61 - LFC: 2014-02-14 - 08:09:08 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\_locales\id\messages.json   [9990]
O61 - LFC: 2014-02-14 - 08:09:08 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\_locales\it\messages.json   [10453]
O61 - LFC: 2014-02-14 - 08:09:08 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\_locales\ja\messages.json   [15081]
O61 - LFC: 2014-02-14 - 08:09:08 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\_locales\ko\messages.json   [12941]
O61 - LFC: 2014-02-14 - 08:09:08 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\_locales\lt\messages.json   [10803]
O61 - LFC: 2014-02-14 - 08:09:08 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\_locales\lv\messages.json   [10319]
O61 - LFC: 2014-02-14 - 08:09:08 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\_locales\ms\messages.json   [5282]
O61 - LFC: 2014-02-14 - 08:09:08 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\_locales\nb\messages.json   [5289]
O61 - LFC: 2014-02-14 - 08:09:08 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\_locales\nl\messages.json   [9935]
O61 - LFC: 2014-02-14 - 08:09:08 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\_locales\pl\messages.json   [10939]
O61 - LFC: 2014-02-14 - 08:09:08 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\_locales\pt_BR\messages.json   [10562]
O61 - LFC: 2014-02-14 - 08:09:08 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\_locales\pt_PT\messages.json   [10457]
O61 - LFC: 2014-02-14 - 08:09:08 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\_locales\ro\messages.json   [10690]
O61 - LFC: 2014-02-14 - 08:09:08 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\_locales\ru\messages.json   [25327]
O61 - LFC: 2014-02-14 - 08:09:08 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\_locales\sk\messages.json   [11179]
O61 - LFC: 2014-02-14 - 08:09:08 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\_locales\sl\messages.json   [6278]
O61 - LFC: 2014-02-14 - 08:09:08 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\_locales\sr\messages.json   [23204]
O61 - LFC: 2014-02-14 - 08:09:08 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\popupBlocker.js   [2099]
O61 - LFC: 2014-02-14 - 08:09:08 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\skin\abp-icon-big.png   [15201]
O61 - LFC: 2014-02-14 - 08:09:08 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\skin\background-main.png   [163]
O61 - LFC: 2014-02-14 - 08:09:08 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\skin\background-share.png   [162]
O61 - LFC: 2014-02-14 - 08:09:08 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\skin\background.png   [162]
O61 - LFC: 2014-02-14 - 08:09:08 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\skin\donate.png   [160]
O61 - LFC: 2014-02-14 - 08:09:08 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\skin\features\malware.png   [3335]
O61 - LFC: 2014-02-14 - 08:09:08 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\skin\features\social.png   [4260]
O61 - LFC: 2014-02-14 - 08:09:08 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\skin\features\tracking.png   [3562]
O61 - LFC: 2014-02-14 - 08:09:08 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\skin\firstRun.css   [9625]
O61 - LFC: 2014-02-14 - 08:09:08 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\skin\fonts\CreteRound-Italic.otf   [43152]
O61 - LFC: 2014-02-14 - 08:09:08 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\skin\fonts\CreteRound-Regular.otf   [40968]
O61 - LFC: 2014-02-14 - 08:09:08 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\skin\popup.css   [4638]
O61 - LFC: 2014-02-14 - 08:09:08 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\skin\popup.png   [3275]
O61 - LFC: 2014-02-14 - 08:09:08 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\skin\social\facebook.png   [3861]
O61 - LFC: 2014-02-14 - 08:09:08 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\skin\social\googleplus.png   [4009]
O61 - LFC: 2014-02-14 - 08:09:08 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\skin\social\renren.png   [2619]
O61 - LFC: 2014-02-14 - 08:09:08 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\skin\social\twitter.png   [3944]
O61 - LFC: 2014-02-14 - 08:09:08 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\skin\social\weibo.png   [3497]
O61 - LFC: 2014-02-14 - 08:09:08 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\stats.js   [4198]
O61 - LFC: 2014-02-14 - 08:09:08 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\subscriptions.xml   [5440]
O61 - LFC: 2014-02-14 - 08:09:08 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\utils.js   [871]
O61 - LFC: 2014-02-14 - 08:09:08 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\webrequest.js   [2749]
O61 - LFC: 2014-02-14 - 08:09:09 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\_locales\sv\messages.json   [10304]
O61 - LFC: 2014-02-14 - 08:09:09 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\_locales\ta\messages.json   [9328]
O61 - LFC: 2014-02-14 - 08:09:09 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\_locales\te\messages.json   [14465]
O61 - LFC: 2014-02-14 - 08:09:09 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\_locales\th\messages.json   [16594]
O61 - LFC: 2014-02-14 - 08:09:09 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\_locales\tr\messages.json   [11523]
O61 - LFC: 2014-02-14 - 08:09:09 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\_locales\uk\messages.json   [24852]
O61 - LFC: 2014-02-14 - 08:09:09 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\_locales\vi\messages.json   [11193]
O61 - LFC: 2014-02-14 - 08:09:09 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\_locales\zh_CN\messages.json   [12228]
O61 - LFC: 2014-02-14 - 08:09:09 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.7.4_0\_locales\zh_TW\messages.json   [12247]
O61 - LFC: 2014-02-14 - 08:09:10 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\File System\001\p\Paths\000005.ldb   [265]
O61 - LFC: 2014-02-14 - 08:09:10 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\File System\001\p\Paths\LOCK   [0]
O61 - LFC: 2014-02-14 - 08:09:10 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\000133.ldb   [196]
O61 - LFC: 2014-02-14 - 08:09:11 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_c.betrad.com_0.localstorage   [75776]
O61 - LFC: 2014-02-14 - 08:09:11 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_c.betrad.com_0.localstorage-journal   [3608]
O61 - LFC: 2014-02-14 - 08:09:11 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.ricardocuisine.com_0.localstorage   [3072]
O61 - LFC: 2014-02-14 - 08:09:11 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.ricardocuisine.com_0.localstorage-journal   [3608]
O61 - LFC: 2014-02-14 - 08:09:11 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.youtube-nocookie.com_0.localstorage   [3072]
O61 - LFC: 2014-02-14 - 08:09:11 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.youtube-nocookie.com_0.localstorage-journal   [3608]
O61 - LFC: 2014-02-14 - 08:09:13 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\RZZNWPYM\macromedia.com\support\flashplayer\sys\#p.jwpcdn.com\settings.sol   [82]
O61 - LFC: 2014-02-14 - 08:09:13 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\RZZNWPYM\macromedia.com\support\flashplayer\sys\#s.ytimg.com\settings.sol   [81]
O61 - LFC: 2014-02-14 - 08:09:25 ---A- . (...) -- C:\Users\Syvie\AppData\Roaming\Skype\cocotte076\bistats.db   [143360]
O61 - LFC: 2014-02-14 - 08:09:26 ---A- . (...) -- C:\Users\Syvie\AppData\Roaming\Skype\cocotte076\chatsync\9a\9a30d2ba1e84706d.dat   [51887]
O61 - LFC: 2014-02-14 - 08:09:26 ---A- . (...) -- C:\Users\Syvie\AppData\Roaming\Skype\cocotte076\config.xml   [19004]
O61 - LFC: 2014-02-14 - 08:09:26 ---A- . (...) -- C:\Users\Syvie\AppData\Roaming\Skype\cocotte076\dc.db   [49152]
O61 - LFC: 2014-02-14 - 08:09:26 ---A- . (...) -- C:\Users\Syvie\AppData\Roaming\Skype\cocotte076\eas.db   [53248]
O61 - LFC: 2014-02-14 - 08:09:26 ---A- . (...) -- C:\Users\Syvie\AppData\Roaming\Skype\cocotte076\httpfe\cookies.dat   [2]
O61 - LFC: 2014-02-14 - 08:09:27 ---A- . (...) -- C:\Users\Syvie\AppData\Roaming\Skype\cocotte076\keyval.db   [61440]
O61 - LFC: 2014-02-14 - 08:09:27 ---A- . (...) -- C:\Users\Syvie\AppData\Roaming\Skype\cocotte076\main.db   [3375104]
O61 - LFC: 2014-02-14 - 08:09:27 ---A- . (...) -- C:\Users\Syvie\AppData\Roaming\Skype\cocotte076\msn.db   [86016]
O61 - LFC: 2014-02-14 - 08:09:27 ---A- . (...) -- C:\Users\Syvie\AppData\Roaming\Skype\cocotte076\qikdb\qik_main.db   [28672]
O61 - LFC: 2014-02-14 - 08:09:27 ---A- . (...) -- C:\Users\Syvie\AppData\Roaming\Skype\cocotte076\simcache\streamlist   [44]
O61 - LFC: 2014-02-14 - 08:09:27 ---A- . (...) -- C:\Users\Syvie\AppData\Roaming\Skype\cocotte076\statistics.db   [184320]
O61 - LFC: 2014-02-14 - 08:09:27 ---A- . (...) -- C:\Users\Syvie\AppData\Roaming\Skype\shared.xml   [93382]
O61 - LFC: 2014-02-14 - 08:09:27 ---A- . (...) -- C:\Users\Syvie\AppData\Roaming\Skype\shared_dynco\dc.db   [2224128]
O61 - LFC: 2014-02-14 - 08:09:28 ---A- . (...) -- C:\Users\Syvie\AppData\Roaming\ZHP\ZHPExportRegistry-2014-02-14-08-48-38.txt   [22184]  =>.Nicolas Coolman
O61 - LFC: 2014-02-14 - 08:09:28 ---A- . (...) -- C:\Users\Syvie\AppData\Roaming\ZHP\ZHPFix[R5].txt   [1730]  =>.Nicolas Coolman
O61 - LFC: 2014-02-14 - 08:10:19 ---A- . (...) -- C:\Users\Syvie\Downloads\CSI.Las.Vegas.S11E01.FRENCH.LD.HDTV.XviD-JMT-.rar   [364370737]
O61 - LFC: 2014-02-15 - 08:09:11 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.google.ca_0.indexeddb.leveldb\000034.bak   [365]
O61 - LFC: 2014-02-15 - 08:09:11 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.google.ca_0.indexeddb.leveldb\000034.ldb   [365]
O61 - LFC: 2014-02-15 - 08:09:11 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_dkr1.ssisurveys.com_0.localstorage   [3072]
O61 - LFC: 2014-02-15 - 08:09:11 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_dkr1.ssisurveys.com_0.localstorage-journal   [3608]
O61 - LFC: 2014-02-15 - 08:09:11 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_research.ipsosinteractive.com_0.localstorage   [3072] =>Toolbar.Ipsos
O61 - LFC: 2014-02-15 - 08:09:11 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_research.ipsosinteractive.com_0.localstorage-journal   [3608] =>Toolbar.Ipsos
O61 - LFC: 2014-02-15 - 08:09:12 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\RZZNWPYM\macromedia.com\support\flashplayer\sys\#assets1.g8.wooga.com\settings.sol   [90]
O61 - LFC: 2014-02-15 - 08:09:13 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\RZZNWPYM\macromedia.com\support\flashplayer\sys\#relevantid.imperium.com\settings.sol   [93]
O61 - LFC: 2014-02-15 - 08:09:13 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\RZZNWPYM\macromedia.com\support\flashplayer\sys\#secureinclude.ebaystatic.com\settings.sol   [98] =>Toolbar.eBay
O61 - LFC: 2014-02-15 - 08:09:13 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\RZZNWPYM\macromedia.com\support\flashplayer\sys\#ss.ktrmr.com\settings.sol   [82]
O61 - LFC: 2014-02-15 - 08:09:13 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\RZZNWPYM\relevantid.imperium.com\dedupe.swf\glbl.sol   [70]
O61 - LFC: 2014-02-15 - 08:09:13 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\RZZNWPYM\secureinclude.ebaystatic.com\ebayLSO.sol   [132] =>Toolbar.eBay
O61 - LFC: 2014-02-15 - 08:09:13 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\RZZNWPYM\secureinclude.ebaystatic.com\ebayT.sol   [39] =>Toolbar.eBay
O61 - LFC: 2014-02-15 - 08:09:13 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\RZZNWPYM\ss.ktrmr.com\mrIWeb\Images\Flash\Engine\FlashSurveyEngine_3.0.swf\localXML.sol   [1236]
O61 - LFC: 2014-02-15 - 08:09:13 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Top Sites   [36864]
O61 - LFC: 2014-02-15 - 08:09:13 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Top Sites-journal   [12824]
O61 - LFC: 2014-02-15 - 08:09:24 ---A- . (...) -- C:\Users\Syvie\AppData\Roaming\Microsoft\UProof\CMAdj.12.bin   [1052]
O61 - LFC: 2014-02-15 - 08:09:27 ---A- . (...) -- C:\Users\Syvie\AppData\Roaming\ZHP\ZHPADSReport.txt   [351]  =>.Nicolas Coolman
O61 - LFC: 2014-02-15 - 08:09:27 ---A- . (...) -- C:\Users\Syvie\AppData\Roaming\ZHP\ZHPDiag.txt   [273899]  =>.Nicolas Coolman
O61 - LFC: 2014-02-15 - 08:09:28 ---A- . (...) -- C:\Users\Syvie\AppData\Roaming\ZHP\ZHPExportRegistry-2014-02-15-10-30-12.txt   [182548]  =>.Nicolas Coolman
O61 - LFC: 2014-02-15 - 08:09:28 ---A- . (...) -- C:\Users\Syvie\AppData\Roaming\ZHP\ZHPFix[R6].txt   [3209]  =>.Nicolas Coolman
O61 - LFC: 2014-02-16 - 08:09:05 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Certificate Revocation Lists   [272857]
O61 - LFC: 2014-02-16 - 08:09:05 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Bookmarks   [15441]
O61 - LFC: 2014-02-16 - 08:09:05 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Bookmarks.bak   [15441]
O61 - LFC: 2014-02-16 - 08:09:05 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG.old   [151]
O61 - LFC: 2014-02-16 - 08:09:05 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extension State\000122.ldb   [304]
O61 - LFC: 2014-02-16 - 08:09:05 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG.old   [777]
O61 - LFC: 2014-02-16 - 08:09:10 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\File System\001\p\.usage   [24]
O61 - LFC: 2014-02-16 - 08:09:10 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\File System\001\p\00\00000000   [2079773]
O61 - LFC: 2014-02-16 - 08:09:10 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\File System\001\p\Paths\LOG.old   [145]
O61 - LFC: 2014-02-16 - 08:09:10 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\LOG.old   [148]
O61 - LFC: 2014-02-16 - 08:09:11 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.google.ca_0.indexeddb.leveldb\CURRENT   [16]
O61 - LFC: 2014-02-16 - 08:09:11 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.google.ca_0.indexeddb.leveldb\LOG   [145]
O61 - LFC: 2014-02-16 - 08:09:11 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.google.ca_0.indexeddb.leveldb\LOG.old   [145]
O61 - LFC: 2014-02-16 - 08:09:11 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.google.ca_0.indexeddb.leveldb\MANIFEST-000069   [105]
O61 - LFC: 2014-02-16 - 08:09:11 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Last Session   [152269]
O61 - LFC: 2014-02-16 - 08:09:11 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Last Tabs   [78901]
O61 - LFC: 2014-02-16 - 08:09:11 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_cfhdojbkjhnklbpkdaibdccddilifddb_0.localstorage   [3072]
O61 - LFC: 2014-02-16 - 08:09:11 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_cfhdojbkjhnklbpkdaibdccddilifddb_0.localstorage-journal   [3608]
O61 - LFC: 2014-02-16 - 08:09:11 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.girlsgogames.fr_0.localstorage   [5120]
O61 - LFC: 2014-02-16 - 08:09:11 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.girlsgogames.fr_0.localstorage-journal   [3608]
O61 - LFC: 2014-02-16 - 08:09:11 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.youtube.com_0.localstorage   [6144]
O61 - LFC: 2014-02-16 - 08:09:11 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.youtube.com_0.localstorage-journal   [6704]
O61 - LFC: 2014-02-16 - 08:09:11 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_apps.facebook.com_0.localstorage   [7168]
O61 - LFC: 2014-02-16 - 08:09:11 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_apps.facebook.com_0.localstorage-journal   [7736]
O61 - LFC: 2014-02-16 - 08:09:11 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.facebook.com_0.localstorage   [15360]
O61 - LFC: 2014-02-16 - 08:09:11 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.facebook.com_0.localstorage-journal   [15992]
O61 - LFC: 2014-02-16 - 08:09:11 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.youtube.com_0.localstorage   [6144]
O61 - LFC: 2014-02-16 - 08:09:11 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.youtube.com_0.localstorage-journal   [6704]
O61 - LFC: 2014-02-16 - 08:09:12 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Origin Bound Certs   [28672]
O61 - LFC: 2014-02-16 - 08:09:12 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Origin Bound Certs-journal   [4640]
O61 - LFC: 2014-02-16 - 08:09:12 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\RZZNWPYM\d1ycmosi5gcpw0.cloudfront.net\##07127A291A15A986\00000001.sol   [2694]
O61 - LFC: 2014-02-16 - 08:09:12 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\RZZNWPYM\d1ycmosi5gcpw0.cloudfront.net\##67CEAC7C660361B3\00000001.sol   [242]
O61 - LFC: 2014-02-16 - 08:09:12 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\RZZNWPYM\d1ycmosi5gcpw0.cloudfront.net\##6C1869C2682F2895\00000001.sol   [212]
O61 - LFC: 2014-02-16 - 08:09:12 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\RZZNWPYM\d1ycmosi5gcpw0.cloudfront.net\fr_facebook#\_100004080512178_isShowRipe.sol   [101]
O61 - LFC: 2014-02-16 - 08:09:12 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\RZZNWPYM\d1ycmosi5gcpw0.cloudfront.net\fr_facebook_10#\0004080512178_zoomlevel_key.sol   [108]
O61 - LFC: 2014-02-16 - 08:09:12 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\RZZNWPYM\d1ycmosi5gcpw0.cloudfront.net\fr_facebook_1000040#\80512178_timespay_starttime.sol   [125]
O61 - LFC: 2014-02-16 - 08:09:12 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\RZZNWPYM\d1ycmosi5gcpw0.cloudfront.net\fr_facebook_16#\02126843_timespay_starttime.sol   [115]
O61 - LFC: 2014-02-16 - 08:09:13 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\RZZNWPYM\macromedia.com\support\flashplayer\sys\#tv.ndsstatic.com\settings.sol   [86]
O61 - LFC: 2014-02-16 - 08:09:13 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\RZZNWPYM\macromedia.com\support\flashplayer\sys\settings.sol   [796]
O61 - LFC: 2014-02-16 - 08:09:13 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG.old   [275]
O61 - LFC: 2014-02-16 - 08:09:13 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Shortcuts   [28672]
O61 - LFC: 2014-02-16 - 08:09:13 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Shortcuts-journal   [16384]
O61 - LFC: 2014-02-16 - 08:09:13 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Web Data   [86016]
O61 - LFC: 2014-02-16 - 08:09:13 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal   [14904]
O61 - LFC: 2014-02-16 - 08:09:14 --HA- . (...) -- C:\Users\Syvie\AppData\Local\IconCache.db   [1862071]
O61 - LFC: 2014-02-16 - 08:09:23 ---A- . (...) -- C:\Users\Syvie\AppData\Roaming\Microsoft\IdentityCRL\Production\MetaConfig.xml   [163]
O61 - LFC: 2014-02-16 - 08:09:24 ---A- . (...) -- C:\Users\Syvie\AppData\Roaming\Microsoft\Templates\LiveContent\Managed\Document Themes\1036\TC101955421[[fn=Emploi du temps]].dotx   [276683]
O61 - LFC: 2014-02-16 - 08:09:33 ---A- . (...) -- C:\Users\Syvie\Documents\startup.txt   [2606]
O61 - LFC: 2014-02-16 - 08:11:18 ---A- . (...) -- C:\Users\Syvie\Downloads\rsthosts.exe   [353632]
O61 - LFC: 2014-02-17 - 08:09:05 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Cookies   [850944]
O61 - LFC: 2014-02-17 - 08:09:05 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Cookies-journal   [16384]
O61 - LFC: 2014-02-17 - 08:09:05 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Current Session   [16187]
O61 - LFC: 2014-02-17 - 08:09:05 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Current Tabs   [2918]
O61 - LFC: 2014-02-17 - 08:09:05 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\CURRENT   [16]
O61 - LFC: 2014-02-17 - 08:09:05 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG   [151]
O61 - LFC: 2014-02-17 - 08:09:05 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\MANIFEST-002340   [1087]
O61 - LFC: 2014-02-17 - 08:09:05 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extension State\000124.ldb   [2463]
O61 - LFC: 2014-02-17 - 08:09:05 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extension State\CURRENT   [16]
O61 - LFC: 2014-02-17 - 08:09:05 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG   [270]
O61 - LFC: 2014-02-17 - 08:09:05 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Extension State\MANIFEST-000123   [343]  =>.Google Inc
O61 - LFC: 2014-02-17 - 08:09:05 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\chrome_shutdown_ms.txt   [5]
O61 - LFC: 2014-02-17 - 08:09:10 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Favicons   [3747840]
O61 - LFC: 2014-02-17 - 08:09:10 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Favicons-journal   [16384]
O61 - LFC: 2014-02-17 - 08:09:10 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\File System\001\p\Paths\CURRENT   [16]
O61 - LFC: 2014-02-17 - 08:09:10 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\File System\001\p\Paths\LOG   [148]
O61 - LFC: 2014-02-17 - 08:09:10 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\File System\001\p\Paths\MANIFEST-000127   [88]
O61 - LFC: 2014-02-17 - 08:09:10 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\CURRENT   [16]
O61 - LFC: 2014-02-17 - 08:09:10 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\LOG   [148]
O61 - LFC: 2014-02-17 - 08:09:10 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\MANIFEST-000257   [294]
O61 - LFC: 2014-02-17 - 08:09:10 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_0   [45056]
O61 - LFC: 2014-02-17 - 08:09:10 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_1   [270336]
O61 - LFC: 2014-02-17 - 08:09:10 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\History   [3198976]
O61 - LFC: 2014-02-17 - 08:09:10 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache   [169321]
O61 - LFC: 2014-02-17 - 08:09:11 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\History-journal   [16384]
O61 - LFC: 2014-02-17 - 08:09:12 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor   [115712]
O61 - LFC: 2014-02-17 - 08:09:12 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor-journal   [16384]
O61 - LFC: 2014-02-17 - 08:09:13 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Preferences   [107697]
O61 - LFC: 2014-02-17 - 08:09:13 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\QuotaManager   [13312]
O61 - LFC: 2014-02-17 - 08:09:13 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\QuotaManager-journal   [6704]
O61 - LFC: 2014-02-17 - 08:09:13 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Session Storage\003875.ldb   [147]
O61 - LFC: 2014-02-17 - 08:09:13 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Session Storage\CURRENT   [16]
O61 - LFC: 2014-02-17 - 08:09:13 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG   [791]
O61 - LFC: 2014-02-17 - 08:09:13 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Session Storage\MANIFEST-003872   [404]  =>.Google Inc
O61 - LFC: 2014-02-17 - 08:09:13 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\TransportSecurity   [965]
O61 - LFC: 2014-02-17 - 08:09:13 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Default\Visited Links   [131072]
O61 - LFC: 2014-02-17 - 08:09:13 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Local State   [79876]
O61 - LFC: 2014-02-17 - 08:09:14 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Safe Browsing Bloom   [5787840]
O61 - LFC: 2014-02-17 - 08:09:14 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Safe Browsing Bloom Prefix Set   [1432648]
O61 - LFC: 2014-02-17 - 08:09:14 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Safe Browsing Cookies   [6144]
O61 - LFC: 2014-02-17 - 08:09:14 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Safe Browsing Cookies-journal   [2576]
O61 - LFC: 2014-02-17 - 08:09:14 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Safe Browsing Csd Whitelist   [135548]
O61 - LFC: 2014-02-17 - 08:09:14 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Safe Browsing Download   [906976]
O61 - LFC: 2014-02-17 - 08:09:14 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Safe Browsing Download Whitelist   [19504]
O61 - LFC: 2014-02-17 - 08:09:14 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Safe Browsing Extension Blacklist   [8160]
O61 - LFC: 2014-02-17 - 08:09:14 ---A- . (...) -- C:\Users\Syvie\AppData\Local\Google\Chrome\User Data\Safe Browsing IP Blacklist   [100]
O61 - LFC: 2014-02-17 - 08:09:23 ---A- . (...) -- C:\Users\Syvie\AppData\Roaming\Microsoft\Outlook\Outlook.srs   [3584]
O61 - LFC: 2014-02-17 - 08:09:23 ---A- . (...) -- C:\Users\Syvie\AppData\Roaming\Microsoft\Outlook\Outlook.xml   [3201]
O61 - LFC: 2014-02-17 - 08:09:27 ---A- . (...) -- C:\Users\Syvie\AppData\Roaming\ZHP\Log.txt   [128419]  =>.Nicolas Coolman
O61 - LFC: 2014-02-17 - 08:09:27 ---A- . (...) -- C:\Users\Syvie\AppData\Roaming\ZHP\TestsZHPDiag.txt   [2809]  =>.Nicolas Coolman
O61 - LFC: 2014-02-17 - 08:09:28 ---A- . (...) -- C:\Users\Syvie\AppData\Roaming\ZHP\ZHPExportRegistry-2014-02-17-08-05-41.txt   [170276]  =>.Nicolas Coolman
O61 - LFC: 2014-02-17 - 08:09:28 ---A- . (...) -- C:\Users\Syvie\AppData\Roaming\ZHP\ZHPFixQuarantine.txt   [2477]  =>.Nicolas Coolman
O61 - LFC: 2014-02-17 - 08:09:28 ---A- . (...) -- C:\Users\Syvie\AppData\Roaming\ZHP\ZHPFix[R7].txt   [2275]  =>.Nicolas Coolman
O61 - LFC: 2014-02-17 - 08:09:32 ---A- . (...) -- C:\Users\Syvie\Documents\Fichiers Outlook\Outlook.pst   [779264]
O61 - LFC: 2014-02-17 - 08:09:33 ---A- . (...) -- C:\Users\Syvie\Documents\startup2.txt   [2274]
O61 - LFC: 2028-01-01 - 08:09:43 R-HA- . (...) -- C:\Users\Syvie\Downloads\Castle - Ne Vous Fiez Pas Aux Apparences\HURLUS.txt   [20768]
O61 - LFC: 2028-01-01 - 08:11:06 --HA- . (...) -- C:\Users\Syvie\Downloads\Gardenscapes 2 Premium Edition\HURLUS.txt   [20768]
~ Files: 318 Scanned in 02mn 31s



---\\ Liste des outils de désinfection (LATC) (O63)
O63 - Logiciel: ZHPDiag 2014 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1  =>.Nicolas Coolman
~ ADS:  Scanned in 00mn 00s



---\\ Liste les services legacy du registre (LALS) (O64)
O64 - Services: CurCS - 2013-09-13 - C:\Windows\system32\drivers\afd.sys (AFD)  .(.Microsoft Corporation - Ancillary Function Driver for WinSock.) - LEGACY_AFD
O64 - Services: CurCS - 2009-07-13 - C:\Windows\System32\Drivers\Beep.sys (Beep)  .(.Microsoft Corporation - BEEP Driver.) - LEGACY_BEEP
O64 - Services: CurCS - 2012-07-04 - C:\Windows\system32\browser.dll (bowser)  .(.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) - LEGACY_BOWSER
O64 - Services: CurCS - 2009-07-13 - C:\Windows\system32\clfs.sys (CLFS)  .(.Microsoft Corporation - Common Log File System Driver.) - LEGACY_CLFS
O64 - Services: CurCS - 2013-07-04 - C:\Windows\System32\Drivers\cng.sys (CNG)  .(.Microsoft Corporation - Kernel Cryptography, Next Generation.) - LEGACY_CNG
O64 - Services: CurCS - 2010-11-20 - C:\Windows\system32\drivers\dfsc.sys (DfsC)  .(.Microsoft Corporation - DFS Namespace Client Driver.) - LEGACY_DFSC
O64 - Services: CurCS - 2009-07-13 - C:\Windows\system32\drivers\discache.sys (discache)  .(.Microsoft Corporation - System Indexer/Cache Driver.) - LEGACY_DISCACHE
O64 - Services: CurCS - 2013-08-01 - C:\Windows\system32\drivers\dxgkrnl.sys (DXGKrnl)  .(.Microsoft Corporation - DirectX Graphics Kernel.) - LEGACY_DXGKRNL
O64 - Services: CurCS - 2009-07-13 - C:\Windows\system32\drivers\fileinfo.sys (FileInfo)  .(.Microsoft Corporation - FileInfo Filter Driver.) - LEGACY_FILEINFO
O64 - Services: CurCS - 2009-07-13 - C:\Windows\system32\drivers\fltmgr.sys (FltMgr)  .(.Microsoft Corporation - Gestionnaire de filtres de système de fichi.) - LEGACY_FLTMGR
O64 - Services: CurCS - 2013-01-23 - C:\Windows\system32\drivers\fvevol.sys (fvevol)  .(.Microsoft Corporation - BitLocker Drive Encryption Driver.) - LEGACY_FVEVOL
O64 - Services: CurCS - 2010-11-20 - C:\Windows\system32\drivers\http.sys (HTTP)  .(.Microsoft Corporation - HTTP Pile du protocole.) - LEGACY_HTTP
O64 - Services: CurCS - 2010-11-20 - C:\Windows\system32\drivers\hwpolicy.sys (hwpolicy)  .(.Microsoft Corporation - Hardware Policy Driver.) - LEGACY_HWPOLICY
O64 - Services: CurCS - 2013-09-24 - C:\Windows\System32\Drivers\ksecdd.sys (KSecDD)  .(.Microsoft Corporation - Kernel Security Support Provider Interface.) - LEGACY_KSECDD
O64 - Services: CurCS - 2013-09-24 - C:\Windows\System32\Drivers\ksecpkg.sys (KSecPkg)  .(.Microsoft Corporation - Kernel Security Support Provider Interface.) - LEGACY_KSECPKG
O64 - Services: CurCS - 2009-07-13 - C:\Windows\System32\DRIVERS\lltdio.sys (lltdio)  .(.Microsoft Corporation - Link-Layer Topology Mapper I/O Driver.) - LEGACY_LLTDIO
O64 - Services: CurCS - 2009-07-13 - C:\Windows\system32\drivers\luafv.sys (luafv)  .(.Microsoft Corporation - Pilote de filtre de virtualisation de fichi.) - LEGACY_LUAFV
O64 - Services: CurCS - 2010-11-20 - C:\Windows\system32\drivers\mountmgr.sys (mountmgr)  .(.Microsoft Corporation - Gestionnaire des points de montage.) - LEGACY_MOUNTMGR
O64 - Services: CurCS - 2013-09-27 - C:\Windows\System32\DRIVERS\MpFilter.sys (MpFilter)  .(.Microsoft Corporation - Microsoft antimalware file system filter dr.) - LEGACY_MPFILTER
O64 - Services: CurCS - 2009-07-13 - C:\Windows\system32\FirewallAPI.dll (mpsdrv)  .(.Microsoft Corporation - API du Pare-feu Windows.) - LEGACY_MPSDRV
O64 - Services: CurCS - 2010-11-20 - C:\Windows\system32\wkssvc.dll (mrxsmb)  .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB
O64 - Services: CurCS - 2010-11-20 - C:\Windows\system32\wkssvc.dll (mrxsmb10)  .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB10
O64 - Services: CurCS - 2010-11-20 - C:\Windows\system32\wkssvc.dll (mrxsmb20)  .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB20
O64 - Services: CurCS - 2009-07-13 - C:\Windows\System32\drivers\msisadrv.sys (msisadrv)  .(.Microsoft Corporation - ISA Driver.) - LEGACY_MSISADRV
O64 - Services: CurCS - 2009-07-13 - C:\Windows\system32\drivers\mup.sys (Mup)  .(.Microsoft Corporation - Multiple UNC Provider Driver.) - LEGACY_MUP
O64 - Services: CurCS - 2009-07-13 - C:\Windows\System32\DRIVERS\nwifi.sys (NativeWifiP)  .(.Microsoft Corporation - Pilote de miniport WiFi natif.) - LEGACY_NATIVEWIFIP
O64 - Services: CurCS - 2012-08-22 - C:\Windows\system32\drivers\ndis.sys (NDIS)  .(.Microsoft Corporation - Pilote NDIS 6.20.) - LEGACY_NDIS
O64 - Services: CurCS - 2010-11-20 - C:\Windows\System32\DRIVERS\ndisuio.sys (Ndisuio)  .(.Microsoft Corporation - Pilote d’E/S du mode utilisateur NDIS.) - LEGACY_NDISUIO
O64 - Services: CurCS - 2009-07-13 - C:\Windows\System32\DRIVERS\netbios.sys (NetBIOS)  .(.Microsoft Corporation - NetBIOS interface driver.) - LEGACY_NETBIOS
O64 - Services: CurCS - 2010-11-20 - C:\Windows\system32\drivers\netbt.sys (NetBT)  .(.Microsoft Corporation - MBT Transport driver.) - LEGACY_NETBT
O64 - Services: CurCS - 2013-09-27 - C:\Windows\System32\DRIVERS\NisDrvWFP.sys (NisDrv)  .(.Microsoft Corporation - Microsoft Network Realtime Inspection Drive.) - LEGACY_NISDRV
O64 - Services: CurCS - 2009-07-13 - C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy)  .(.Microsoft Corporation - NSI Proxy.) - LEGACY_NSIPROXY
O64 - Services: CurCS - 2009-07-13 - C:\Windows\System32\drivers\pcw.sys (pcw)  .(.Microsoft Corporation - Performance Counters for Windows Driver.) - LEGACY_PCW
O64 - Services: CurCS - 2009-07-13 - C:\Windows\System32\drivers\peauth.sys (PEAUTH)  .(.Microsoft Corporation - Protected Environment Authentication and Au.) - LEGACY_PEAUTH
O64 - Services: CurCS - 2009-07-13 - C:\Windows\System32\drivers\pacer.sys (Psched)  .(.Microsoft Corporation - Planificateur de paquets QoS.) - LEGACY_PSCHED
O64 - Services: CurCS - 2010-11-20 - C:\Windows\system32\wkssvc.dll (rdbss)  .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_RDBSS
O64 - Services: CurCS - 2010-11-20 - C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD)  .(.Microsoft Corporation - RDP Miniport.) - LEGACY_RDPCDD
O64 - Services: CurCS - 2009-07-13 - C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD)  .(.Microsoft Corporation - RDP Encoder Miniport.) - LEGACY_RDPENCDD
O64 - Services: CurCS - 2009-07-13 - C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP)  .(.Microsoft Corporation - RDP Reflector Driver Miniport.) - LEGACY_RDPREFMP
O64 - Services: CurCS - 2009-07-13 - C:\Windows\System32\DRIVERS\rspndr.sys (rspndr)  .(.Microsoft Corporation - Link-Layer Topology Responder Driver for ND.) - LEGACY_RSPNDR
O64 - Services: CurCS - 2009-07-13 - C:\Windows\System32\Drivers\secdrv.sys (secdrv)  .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV
O64 - Services: CurCS - 2009-07-13 - C:\Windows\System32\Drivers\spldr.sys (spldr)  .(.Microsoft Corporation - loader for security processor.) - LEGACY_SPLDR
O64 - Services: CurCS - 2010-11-20 - C:\Windows\system32\srvsvc.dll (srv)  .(.Microsoft Corporation - DLL du service Serveur.) - LEGACY_SRV
O64 - Services: CurCS - 2010-11-20 - C:\Windows\system32\srvsvc.dll (srv2)  .(.Microsoft Corporation - DLL du service Serveur.) - LEGACY_SRV2
O64 - Services: CurCS - 2011-04-28 - C:\Windows\System32\DRIVERS\srvnet.sys (srvnet)  .(.Microsoft Corporation - Server Network driver.) - LEGACY_SRVNET
O64 - Services: CurCS - 2010-11-20 - C:\Windows\system32\tcpipcfg.dll (Tcpip)  .(.Microsoft Corporation - Objets de configuration du réseau.) - LEGACY_TCPIP
O64 - Services: CurCS - 2012-10-03 - C:\Windows\System32\drivers\tcpipreg.sys (tcpipreg)  .(.Microsoft Corporation - TCP/IP Registry Compatibility Driver.) - LEGACY_TCPIPREG
O64 - Services: CurCS - 2010-11-20 - C:\Windows\system32\tcpipcfg.dll (tdx)  .(.Microsoft Corporation - Objets de configuration du réseau.) - LEGACY_TDX
O64 - Services: CurCS - 2010-11-20 - C:\Windows\System32\DRIVERS\udfs.sys (udfs)  .(.Microsoft Corporation - UDF File System Driver.) - LEGACY_UDFS
O64 - Services: CurCS - 2009-07-13 - C:\Windows\system32\drivers\vga.sys (VgaSave)  .(.Microsoft Corporation - VGA/Super VGA Video Driver.) - LEGACY_VGASAVE
O64 - Services: CurCS - 2009-07-13 - C:\Windows\system32\drivers\volmgrx.sys (volmgrx)  .(.Microsoft Corporation - Pilote d’extension du gestionnaire de volum.) - LEGACY_VOLMGRX
O64 - Services: CurCS - 2010-11-20 - C:\Windows\System32\drivers\volsnap.sys (volsnap)  .(.Microsoft Corporation - Pilote de cliché instantané du volume.) - LEGACY_VOLSNAP
O64 - Services: CurCS - 2009-07-13 - C:\Windows\System32\DRIVERS\vwififlt.sys (vwififlt)  .(.Microsoft Corporation - Virtual WiFi Filter Driver.) - LEGACY_VWIFIFLT
O64 - Services: CurCS - 2009-07-13 - C:\Windows\system32\rascfg.dll (Wanarpv6)  .(.Microsoft Corporation - Objets de configuration RAS.) - LEGACY_WANARPV6
O64 - Services: CurCS - 2013-06-25 - C:\Windows\System32\drivers\Wdf01000.sys (Wdf01000)  .(.Microsoft Corporation - Runtime de l’infrastructure de pilotes en m.) - LEGACY_WDF01000
O64 - Services: CurCS - 2009-07-13 - C:\Windows\System32\DRIVERS\wfplwf.sys (WfpLwf)  .(.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - LEGACY_WFPLWF
~ Legacy: 88 Scanned in 00mn 00s



---\\ Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe  =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> <evtfile>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.scr> <scrfile>[HKLM\..\open\Command] (...) -- "%1" /S
O67 - Shell Spawning: <.html> <ChromeHTML>[HKCU\..\open\Command] (.Not Key.)
~ FASS Keys: 11 Scanned in 00mn 00s



---\\ Menu de démarrage Internet (SMI) (O68)
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (...) -- C:\Program Files\Mozilla Firefox\firefox.exe (.not file.)
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
~ Keys:  Scanned in 00mn 00s



---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69)
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Bing) - http://www.bing.com
~ Keys:  Scanned in 00mn 00s



---\\ Enumère les service demarrés par Svchost (SSS) (O83)
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll   [62464]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll   [67584]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll   [67584]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll   [168960]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll   [593408]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll   [679424]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll   [473600]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’accès distant.) -- C:\Windows\System32\rasauto.dll   [90624]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll   [286208]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll   [75264]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements système (SENS).) -- C:\Windows\System32\sens.dll   [49664]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll   [300544]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM).) -- C:\Windows\System32\tapisrv.dll   [242176]
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du serveur hôte de session Burea.) -- C:\Windows\System32\termsrv.dll   [521216]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll   [1933848]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\Windows\System32\qmgr.dll   [585728]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll   [328192]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur un réseau IPv4..) -- C:\Windows\System32\iphlpsvc.dll   [499712]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll   [21504]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll   [47104]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll   [114688]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédias.) -- C:\Windows\System32\mmcss.dll   [49664]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll   [61440]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll   [98304]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll   [164352]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll   [750592]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\kmsvc.dll   [71168]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à distance.) -- C:\Windows\System32\sessenv.dll   [113664]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll   [168960]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll   [102912]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll   [37376]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll   [76800]

~ Services: 32 Scanned in 00mn 00s



---\\ Liste des exceptions du parefeu (FirewallRules) (O87)
O87 - FAEL: "RVM-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "RVM-VDSLDR-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Virtual Disk Service Loader.) -- C:\Windows\system32\vdsldr.exe
O87 - FAEL: "RVM-VDS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service de disque virtuel.) -- C:\Windows\system32\vds.exe
O87 - FAEL: "RVM-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "RVM-VDSLDR-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Virtual Disk Service Loader.) -- C:\Windows\system32\vdsldr.exe
O87 - FAEL: "RVM-VDS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service de disque virtuel.) -- C:\Windows\system32\vds.exe
O87 - FAEL: "RemoteFwAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "RemoteFwAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "RemoteFwAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "RemoteFwAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "RemoteTask-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "RemoteTask-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "RemoteTask-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "RemoteTask-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "RemoteEventLogSvc-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "RemoteEventLogSvc-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "RemoteEventLogSvc-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "RemoteEventLogSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "PNRPMNRS-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "PNRPMNRS-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "PNRPMNRS-PNRP-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "PNRPMNRS-PNRP-In-UDP" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "WMI-ASYNC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) -- C:\Windows\system32\wbem\unsecapp.exe
O87 - FAEL: "WMI-WINMGMT-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "WMI-WINMGMT-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "WMI-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "WMI-ASYNC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) -- C:\Windows\system32\wbem\unsecapp.exe
O87 - FAEL: "WMI-WINMGMT-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "WMI-WINMGMT-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "WMI-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "PerfLogsAlerts-DCOM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "PerfLogsAlerts-PLASrv-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Performance Logs and Alerts DCOM Server.) -- C:\Windows\system32\plasrv.exe
O87 - FAEL: "PerfLogsAlerts-DCOM-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "PerfLogsAlerts-PLASrv-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Performance Logs and Alerts DCOM Server.) -- C:\Windows\system32\plasrv.exe
O87 - FAEL: "RemoteSvcAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "RemoteSvcAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe
O87 - FAEL: "RemoteSvcAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "RemoteSvcAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe
O87 - FAEL: "MSDTC-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "MSDTC-KTMRM-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "MSDTC-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "MSDTC-KTMRM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "MSDTC-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MsiScsi-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "MsiScsi-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "MsiScsi-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "MsiScsi-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "NETDIS-LLMNR-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "NETDIS-LLMNR-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "NETDIS-FDPHOST-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "NETDIS-FDPHOST-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "NETDIS-UPnP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "NETDIS-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "NETDIS-LLMNR-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "NETDIS-LLMNR-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "NETDIS-FDPHOST-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "NETDIS-FDPHOST-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "NETDIS-UPnP-Out-TCP-Active" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "NETDIS-SSDPSrv-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "CoreNet-GP-LSASS-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Local Security Authority Process.) -- C:\Windows\system32\lsass.exe
O87 - FAEL: "CoreNet-DNS-Out-UDP" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "CoreNet-GP-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "CoreNet-IPHTTPS-Out" | Out - None - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "CoreNet-Teredo-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "CoreNet-Teredo-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "CoreNet-DHCPV6-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "CoreNet-DHCPV6-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "CoreNet-DHCP-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "CoreNet-DHCP-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "FPS-LLMNR-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "FPS-LLMNR-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "FPS-SpoolSvc-In-TCP" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "FPS-SpoolSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-OUT-Active" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-In-EdgeScope-Active" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "RemoteAssistance-SSDPSrv-Out-TCP-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "RemoteAssistance-SSDPSrv-In-TCP-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "RemoteAssistance-SSDPSrv-Out-UDP-Active" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "RemoteAssistance-SSDPSrv-In-UDP-Active" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "RemoteAssistance-Out-TCP-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-In-TCP-EdgeScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-DCOM-In-TCP-NoScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "RemoteAssistance-RAServer-Out-TCP-NoScope-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur COM d’assistance à distance Windows.) -- C:\Windows\system32\raserver.exe
O87 - FAEL: "RemoteAssistance-RAServer-In-TCP-NoScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur COM d’assistance à distance Windows.) -- C:\Windows\system32\raserver.exe
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-OUT" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-In-EdgeScope" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "RemoteAssistance-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-In-TCP-EdgeScope" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "Collab-PNRP-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "Collab-PNRP-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "Collab-PNRP-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "Collab-PNRP-In-UDP" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "Collab-P2PHost-WSD-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "Collab-P2PHost-WSD-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "Collab-P2PHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "Collab-P2PHost-In-TCP" | In - None - P6 - TRUE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-UDP3540-Out" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-UDP3540-In" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-TCP3587-Out" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-TCP3587-In" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-UPnP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "WMP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe  =>.Microsoft Corporation
O87 - FAEL: "WMP-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe  =>.Microsoft Corporation
O87 - FAEL: "WMP-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe  =>.Microsoft Corporation
O87 - FAEL: "SNMPTRAP-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Interruption SNMP.) -- C:\Windows\system32\snmptrap.exe
O87 - FAEL: "SNMPTRAP-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Interruption SNMP.) -- C:\Windows\system32\snmptrap.exe
O87 - FAEL: "WPDMTP-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe
O87 - FAEL: "WPDMTP-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe
O87 - FAEL: "WPDMTP-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "WPDMTP-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "WPDMTP-UPnPHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "WPDMTP-UPnP-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "MCX-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "MCX-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "MCX-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe  =>.Microsoft Corporation
O87 - FAEL: "MCX-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe  =>.Microsoft Corporation
O87 - FAEL: "MCX-QWave-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "MCX-QWave-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "MCX-QWave-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "MCX-QWave-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "MCX-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe  =>.Microsoft Corporation
O87 - FAEL: "MCX-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe  =>.Microsoft Corporation
O87 - FAEL: "MCX-MCX2SVC-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "MCX-Prov-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - MCX2 Provisioning library.) -- C:\Windows\ehome\mcx2prov.exe
O87 - FAEL: "MCX-PlayTo-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "MCX-McrMgr-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Media Center Extender Manager.) -- C:\Windows\ehome\mcrmgr.exe
O87 - FAEL: "MCX-PlayTo-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "MCX-FDPHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "RemoteDesktop-UserMode-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "{38F5756D-5D68-4CAD-AC91-98CC0E93EBD5}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Microsoft SharePoint Workspace.) -- C:\Program Files\Microsoft Office\Office14\GROOVE.exe
O87 - FAEL: "{981AC50C-1EB5-4778-8180-45F0603A4089}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Microsoft SharePoint Workspace.) -- C:\Program Files\Microsoft Office\Office14\GROOVE.exe
O87 - FAEL: "{A662C629-2296-496C-A465-1323AA70DA2C}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Microsoft OneNote.) -- C:\Program Files\Microsoft Office\Office14\ONENOTE.exe  =>.Microsoft Corporation
O87 - FAEL: "{C345B97B-6387-4128-A4AA-DB79A103FC49}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Microsoft OneNote.) -- C:\Program Files\Microsoft Office\Office14\ONENOTE.exe  =>.Microsoft Corporation
O87 - FAEL: "{35641CE0-967E-4CD5-8EF6-BB12EF99BEBD}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Microsoft Outlook.) -- C:\Program Files\Microsoft Office\Office14\outlook.exe
O87 - FAEL: "{2A42B489-7125-4D0C-9510-A5DB1BCDB3D4}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe  =>.Microsoft Corporation
O87 - FAEL: "{D9C07176-B16D-45DB-96B9-8769B9E498CB}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe  =>.Microsoft Corporation
O87 - FAEL: "{D3D1F100-8B97-405F-AFCA-64C38D16B1D9}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe  =>.Microsoft Corporation
O87 - FAEL: "{EEA5FFC4-8246-44CA-AA08-0E9AE7863C53}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "{1E247AE7-A15A-488F-8E04-F6131C7712B3}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "{7C7D673F-0D88-45BE-B5E9-C3C1D2A4D8CB}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "{491416FE-B445-4F4D-B1F6-CB61EA95053B}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "{98595EC4-3B8A-4716-8005-85368CC2A601}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "{98227A80-2FF9-4676-ABFD-4951CC58C0B2}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "{669A1D31-5B14-40E3-889B-7F882BA35443}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe  =>.Microsoft Corporation
O87 - FAEL: "{365163AC-1D8B-4A42-9B79-9E94EF8DAE57}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe  =>.Microsoft Corporation
O87 - FAEL: "{A9F561D1-378A-4DD7-BD84-5B774C21F353}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe  =>.Microsoft Corporation
O87 - FAEL: "{EA399496-2537-49E6-A365-1F5D2497F184}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe  =>.Microsoft Corporation
O87 - FAEL: "{4436D7E1-928F-4570-BBE3-7479671B6829}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe  =>.Microsoft Corporation
O87 - FAEL: "{08333C9C-93C1-430D-B558-8D5E1229CB7D}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe  =>.Microsoft Corporation
O87 - FAEL: "{6F308463-1079-4AA3-96B5-A42D83A25C37}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe  =>.Microsoft Corporation
O87 - FAEL: "{35450318-F013-4216-8E26-314802663E04}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "{782047B0-07C1-4F29-A74B-B8A7CEE32F0B}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "{030C415A-05B9-4B0A-B6B2-B002DEC28D0D}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "{3A6E4702-7800-4B21-A489-4BFC8DE2FABE}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "{0612F61C-90F3-4358-90DD-7EB3819CDE9A}" | In - None - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe  =>.Skype Technologies S.A.
O87 - FAEL: "{D33FEC7B-8549-4ACB-B5AF-E1D405A58667}" | In - None - P17 - TRUE | .(.Hewlett-Packard Co. - DeviceSetup.exe.) -- C:\Program Files\HP\HP Deskjet 3520 series\Bin\DeviceSetup.exe
O87 - FAEL: "{4C478384-2634-460A-B5DF-2C4ECF32CFA3}" | In - None - P17 - TRUE | .(.Hewlett-Packard Co. - HPNetworkCommunicator.) -- C:\Program Files\HP\HP Deskjet 3520 series\Bin\HPNetworkCommunicator.exe
O87 - FAEL: "{FB1A6563-EC82-4670-B354-01E8D6220F72}" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "{23F65345-6E17-45BD-9B44-F407F988D9A3}" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "TCP Query User{3A52860D-CCEE-419B-AAA5-5C694182CC86}C:\program files\java\jre7\bin\javaw.exe" | In - Private - P6 - TRUE | .(.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\program files\java\jre7\bin\javaw.exe
O87 - FAEL: "UDP Query User{CB89F7D3-6294-4CE0-8033-6AC93E99C419}C:\program files\java\jre7\bin\javaw.exe" | In - Private - P17 - TRUE | .(.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\program files\java\jre7\bin\javaw.exe
O87 - FAEL: "{575F185F-81EE-41AC-8210-C64278B90BA6}" | In - Private - P6 - TRUE | .(.TeamViewer GmbH - TeamViewer 8.) -- C:\Program Files\TeamViewer\Version8\TeamViewer.exe
O87 - FAEL: "{E43721D1-51C0-443A-B666-4C343C735FFB}" | In - Private - P17 - TRUE | .(.TeamViewer GmbH - TeamViewer 8.) -- C:\Program Files\TeamViewer\Version8\TeamViewer.exe
O87 - FAEL: "{B6BE2E7F-A494-4B44-9466-C48A742329A2}" | In - Private - P6 - TRUE | .(.TeamViewer GmbH - TeamViewer 8.) -- C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe
O87 - FAEL: "{8E849923-E9CD-41AE-AC79-020A2572CD13}" | In - Private - P17 - TRUE | .(.TeamViewer GmbH - TeamViewer 8.) -- C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe
O87 - FAEL: "{C6007710-8EB8-403A-8686-D1615A7AF3B0}" | In - None - P17 - TRUE | .(.Skype Limited - Facebook Video Calling.) -- C:\Users\Syvie\AppData\Local\Facebook\Video\Skype\FacebookVideoCalling.exe
~ Firewall: 199 Scanned in 00mn 01s



---\\ Enumère les codes produits des logiciels (PUC) (O90)
O90 - PUC: "000041591800C0400000000000F01FEC" . (.Microsoft Office Outlook Connector.) -- C:\Windows\Installer\{95140000-0081-040C-0000-0000000FF1CE}\OLCIcon.exe  =>.Microsoft Corporation
O90 - PUC: "12B4C37DDB27E364A90C3084789BA80F" . (.Étude pour l'amélioration du produit HP Deskjet 3520 series.) -- C:\Windows\Installer\{D73C4B21-72BD-463E-9AC0-034887B98AF0}\ARP_Icon  =>.Hewlett-Packard Co
O90 - PUC: "233E7439CB478374D973EF9C641F09F0" . (.HP Deskjet 3520 series Aide.) -- C:\Windows\Installer\{9347E332-74BC-4738-9D37-FEC946F1900F}\ARP_Icon
O90 - PUC: "2D00C1F62C52ABC41862EAA9E6E2C95D" . (.HP Update.) -- C:\Windows\Installer\{6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5}\ARPPRODUCTICON.exe
O90 - PUC: "3D22078E9C8C67C4E872CBF7819F8BBF" . (.Google Drive.) -- C:\Windows\Installer\{E87022D3-C8C9-4C76-8E27-BC7F18F9B8FB}\DriveIcon
O90 - PUC: "68AB67CA7DA76301B744BA0000000010" . (.Adobe Reader XI (11.0.06) - Français.) -- C:\Windows\Installer\{AC76BA86-7AD7-1036-7B44-AB0000000001}\SC_Reader.ico
O90 - PUC: "7466B92598F6C9746B794B22516DFEF7" . (.Logiciel de base du périphérique HP Deskjet 3520 series.) -- C:\Windows\Installer\{529B6647-6F89-479C-B697-B42215D6EF7F}\ARP_Icon  =>.Hewlett-Packard Co
O90 - PUC: "7BECDEEA8B001EB44B29BA4008D3F5E1" . (.HP Deskjet 3520 series Setup Guide.) -- C:\Windows\Installer\{AEEDCEB7-00B8-4BE1-B492-AB04803D5F1E}\ARP_Icon
O90 - PUC: "D7314F9862C648A4DB8BE2A5B47BE100" . (.Microsoft Silverlight.) -- c:\Windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ARPIcon
O90 - PUC: "E7FF67E4ABEA78C47B88DC745E24B5D9" . (.Skype™ 6.11.) -- C:\Windows\Installer\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}\SkypeIcon.exe
~ Update Products: 43 Scanned in 00mn 00s



---\\ Recherche des packages WindowsInstaller (WIS) (O93) (NTFS)
[MD5.A3AEEC9A9B6984F2E22B90FDC9A23AB8] [WIS][2013-12-20] (.Skype Technologies S.A. - Skype.) -- C:\Windows\Installer\19734ae.msi   [24993792]
[MD5.3E77ADE6A070951079DE13B1C01EE503] [WIS][2013-06-07] (.Google, Inc. - Google Drive.) -- C:\Windows\Installer\2464983.msi   [31137792]
[MD5.085637CCB5EFD06B323BF7C3D9024C6C] [WIS][2014-01-31] (.Google, Inc. - Google Drive.) -- C:\Windows\Installer\248a9af.msi   [34143232]
~ WIS: 49 Scanned in 00mn 13s



---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SS - | Demand 1658-07-10 0 |  (AdobeFlashPlayerUpdateSvc) . (...) - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
SS - | Auto 2013-04-16 116648 |  (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SS - | Demand 2013-04-16 116648 |  (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SS - | Demand 2010-12-31 619872 |  (RaMediaServer) . (...) - C:\Program Files\Ralink\Common\RaMediaServer.exe
SS - | Auto 2013-09-05 171680 |  (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files\Skype\Updater\Updater.exe
SS - | Demand 2009-07-13 20992 | C:\Program Files\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe

SR - | Auto 2013-12-21 65432 |  (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
SR - | Auto 2013-10-23 22208 |  (MsMpSvc) . (.Microsoft Corporation.) - c:\Program Files\Microsoft Security Client\MsMpEng.exe
SR - | Auto 2013-08-08 559552 |  (ogmservice) . (.RealNetworks, Inc..) - C:\Program Files\Online Games Manager\ogmservice.exe
SR - | Auto 2010-11-11 374112 |  (RalinkRegistryWriter) . (.Ralink Technology, Corp..) - C:\Program Files\Ralink\Common\RaRegistry.exe
SR - | Auto 2013-10-01 5087584 |  (TeamViewer8) . (.TeamViewer GmbH.) - C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe
SR - | Auto 2009-07-13 20992 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe

~ Services:  Scanned in 00mn 15s



---\\ Recherche d'infection sur le Master Boot Record (MBR)(O80)
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net

~ MBR: 1 Scanned in 00mn 02s



---\\ Recherche d'infection sur le Master Boot Record (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by Syvie at 2014-02-17 08:12:22

********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin

~ MBR:  Scanned in 00mn 04s



---\\ Scan Additionnel (O88)
Database Version : 13030 - (2014-02-10)
Clés trouvées (Keys found) : 0
Valeurs trouvées (Values found) : 0
Dossiers trouvés  (Folders found) : 0
Fichiers trouvés  (Files found) : 0

~ Additionnel Scan: 213333 Items scanned in 00mn 34s



---\\ Récapitulatif des détections trouvées sur votre station
~ http://nicolascoolman.webs.com/apps/blog/show/33956117-toolbar-ipsos   =>Toolbar.Ipsos
~ MSI: 1 link(s) detected in 00mn 34s



End of the scan (2039 lines in 05mn 51s)(0)