~ Rapport de ZHPDiag v2014.2.17.15 - Nicolas Coolman (17/02/2014) ~ Lancé par chantal (18/02/2014 15:43:04) ~ Adresse du Site Web http://nicolascoolman.webs.com ~ Forums gratuits d'Assistance à la désinfection : http://nicolascoolman.webs.com/apps/links/ ~ Traduit par Nicolas Coolman ~ Etat de la version : ~ Liste blanche : Désactivée par l'utilisateur ~ Elévation des Privilèges : OK ~ User Account Control (UAC): Deactivate by program ---\\ Navigateurs Internet MSIE: Internet Explorer v11.0.9600.16518 (Defaut) ---\\ Informations sur les produits Windows ~ Langage: Français Windows 8.1 Pro with Media Center, 64-bit (Build 9600) Windows Server License Manager Script : OK ~ ion : Windows(R) Operating System, RETAIL channel Windows ID Activation : OK ~ Windows Partial Key : KTJY3 Windows License : OK ~ Windows Remaining Initializations Number : 999 Software Protection Service (Protection logicielle) : OK Windows Automatic Updates : OK Windows Activation Technologies : OK ---\\ Logiciels de protection du système Computer Security 12.62.109.0 Malwarebytes Anti-Malware version 1.75.0.1300 Windows Defender W8 ---\\ Logiciels d'optimisation du système CCleaner v4.10 =>Piriform Ltd ---\\ Logiciels de partage PeerToPeer eMule qBittorrent 3.1.5 v3.1.5 =>P2P.BitTorrent ---\\ Surveillance de Logiciels Adobe Reader XI ---\\ Informations sur le système ~ Processor: Intel64 Family 6 Model 23 Stepping 10, GenuineIntel ~ Operating System: 64 Bits Boot mode: Normal (Normal boot) Total RAM: 4026 MB (59% free) System Restore: Activé (Enable) System drive C: has 363 GB (77%) free of 465 GB ---\\ Mode de connexion au système ~ Computer Name: CHANTALOU ~ User Name: chantal ~ All Users Names: chantal, Administrateur, ~ Unselected Option: None Logged in as Administrator ---\\ Variables d'environnement ~ System Unit : C:\ ~ %AppZHP% : C:\Users\chantal\AppData\Roaming\ZHP\ ~ %AppData% : C:\Users\chantal\AppData\Roaming\ ~ %Desktop% : C:\Users\chantal\Desktop\ ~ %Favorites% : C:\Users\chantal\Favorites\ ~ %LocalAppData% : C:\Users\chantal\AppData\Local\ ~ %StartMenu% : C:\Users\chantal\AppData\Roaming\Microsoft\Windows\Start Menu\ ~ %Windir% : C:\Windows\ ~ %System% : C:\Windows\System32\ ---\\ Enumération des unités disques C: Hard drive, Flash drive, Thumb drive (Free 363 Go of 465 Go) D: CD-ROM drive (Not Inserted) J: Floppy drive, Flash card reader, USB Key (Free 17 Go of 64 Go) ---\\ Etat du Centre de Sécurité Windows [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK [HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK ~ Security Center: 41 Scanned in 00mn 00s ---\\ Recherche particulière de fichiers génériques [MD5.63DC38C3E4564B2405D562855643ABA2] - (.Microsoft Corporation - Explorateur Windows.) (.14/11/2013 - 08:37:35.) -- C:\Windows\Explorer.exe [2328872] [MD5.48CFA7BE561A7BE144C29BB912055016] - (.Microsoft Corporation - Application de démarrage de Windows.) (.22/08/2013 - 10:58:29.) -- C:\Windows\System32\Wininit.exe [144384] [MD5.263B6E451526A90FF8B1CEC759F22956] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.06/02/2014 - 10:24:52.) -- C:\Windows\System32\wininet.dll [2334208] [MD5.7C94FDA3809015B8F2208D2E1C221F17] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.22/08/2013 - 10:55:08.) -- C:\Windows\System32\Winlogon.exe [564736] [MD5.2F18065618E39AA2E656EE737B71E791] - (.Microsoft Corporation - Bibliothèque de licences.) (.22/08/2013 - 11:39:40.) -- C:\Windows\System32\sppcomapi.dll [447488] [MD5.239268BAB58EAE9A3FF4E08334C00451] - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) (.22/08/2013 - 14:25:35.) -- C:\Windows\system32\Drivers\AFD.sys [567296] [MD5.74B14192CF79A72F7536B27CB8814FBD] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.22/08/2013 - 13:43:41.) -- C:\Windows\system32\Drivers\atapi.sys [26464] [MD5.2FA6510E33F7DEFEC03658B74101A9B9] - (.Microsoft Corporation - CD-ROM File System Driver.) (.22/08/2013 - 12:40:15.) -- C:\Windows\system32\Drivers\Cdfs.sys [88576] [MD5.C6796EA22B513E3457514D92DCDB1A3D] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.22/08/2013 - 09:46:35.) -- C:\Windows\system32\Drivers\Cdrom.sys [164352] [MD5.5DB26D7E0216D0BF364A81D3829AD7B9] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.22/08/2013 - 12:38:00.) -- C:\Windows\system32\Drivers\DfsC.sys [134656] [MD5.03909BDBFF0DCACCABF2B2D4ADEE44DC] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.22/08/2013 - 12:38:38.) -- C:\Windows\system32\Drivers\HDAudBus.sys [78336] [MD5.84CFC5EFA97D0C965EDE1D56F116A541] - (.Microsoft Corporation - Pilote de port i8042.) (.22/08/2013 - 12:39:15.) -- C:\Windows\system32\Drivers\i8042prt.sys [107520] [MD5.B7342B3C58E91107F6E946A93D9D4EFD] - (.Microsoft Corporation - IP Network Address Translator.) (.27/11/2013 - 13:02:29.) -- C:\Windows\system32\Drivers\IpNat.sys [142848] [MD5.79B6F3DF7CDFD12159871FF71464F0CE] - (.Microsoft Corporation - Minirdr SMB Windows NT.) (.23/11/2013 - 08:08:19.) -- C:\Windows\system32\Drivers\MRxSmb.sys [403456] [MD5.0217532E19A748F0E5D569307363D5FD] - (.Microsoft Corporation - MBT Transport driver.) (.22/08/2013 - 12:37:02.) -- C:\Windows\system32\Drivers\netBT.sys [282624] [MD5.4412D565C0278C401575E11072C7DCE3] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.22/08/2013 - 14:25:41.) -- C:\Windows\system32\Drivers\ntfs.sys [2011488] [MD5.764B1121867B2D9B31C491668AC72B2B] - (.Microsoft Corporation - Pilote de port parallèle.) (.22/08/2013 - 12:40:02.) -- C:\Windows\system32\Drivers\Parport.sys [94208] [MD5.BBB6272B7F46C4640A8CDB8A70C3450F] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.22/08/2013 - 12:35:51.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [120832] [MD5.680C1DAE268B6FB67FA21B389A8B79EF] - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RDP.) (.14/11/2013 - 08:15:31.) -- C:\Windows\system32\Drivers\rdpdr.sys [195584] [MD5.FFF28F9F6823EB1756C60F1649560BBF] - (.Microsoft Corporation - TDI Translation Driver.) (.22/08/2013 - 14:25:35.) -- C:\Windows\system32\Drivers\tdx.sys [107520] [MD5.9F9CE33B50611A1C61A46B8911E0B30B] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.22/08/2013 - 13:39:15.) -- C:\Windows\system32\Drivers\volsnap.sys [312160] ~ Generic Processes: Scanned in 00mn 00s ---\\ Etat des fichiers cachés (Caché/Total) ~ Mes images (My Pictures) : 2/3879 ~ Mes musiques (My Musics) : 687/2018 ~ Mes Videos (My Videos) : 2/136 ~ Mes Favoris (My Favorites) : 1/270 ~ Mes Documents (My Documents) : 1/3765 ~ Mon Bureau (My Desktop) : 2/1691 ~ Menu demarrer (Programs) : 1/33 ~ Hidden Files: Scanned in 00mn 01s ---\\ Processus lancés [MD5.D1D5DAB39DCB4BE0359943738D87409B] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe [532040] [PID.1972] [MD5.3CA8BCA68E716AD2BBE29337B9701E33] - (.ActMask Co.,Ltd - http://www.all2pdf.com - PrintDisp.) -- C:\WINDOWS\system32\PrintDisp.exe [870400] [PID.1240] [MD5.D9095576E7275FAE44C427E6EC0D2F1D] - (.F-Secure Corporation - F-Secure Host Process.) -- C:\Program Files (x86)\Orange\Antivirus Firewall\fshoster32.exe [167632] [PID.1584] [MD5.7F76CD9460EA79C5E6D83190835746D0] - (.F-Secure Corporation - F-Secure Settings and Statistics.) -- C:\Program Files (x86)\Orange\Antivirus Firewall\apps\ComputerSecurity\Common\FSM32.exe [310992] [PID.4500] [MD5.3F744D5BCEF935B32B43BF7F83098032] - (.QFX Software Corporation - KeyScrambler.) -- C:\Program Files (x86)\KeyScrambler\KeyScrambler.exe [508144] [PID.5020] [MD5.9FBB2F038A2DDCE696BDEE7080241C0C] - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\IEXPLORE.exe [808112] [PID.3284] [MD5.1ACCA74287FE5D7449FBB2B9F0C83341] - (.Google Inc. - Google Toolbar Broker.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe [309328] [PID.1136] =>Toolbar.Google [MD5.AB44884BC129FC04D75A4649E0710203] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [8338432] [PID.6136] ~ Processes Running: Scanned in 00mn 00s ---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) P2 - FPN: [HKLM] [@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf] - (.Tracker Software Products (Canada) Ltd. - PDF-XChange Viewer Netscape Gecko Plugin.) -- C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.20913.0.) -- C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll P2 - FPN: [HKLM] [@microsoft.com/SharePoint,version=14.0] - (.Microsoft Corporation - The plugin allows you to have a better experience with Microsoft Share.) -- C:\Program Files\Microsoft Office\Office15\NPSPWRAP.dll P2 - FPN: [HKLM] [@tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf] - (.Tracker Software Products (Canada) Ltd. - PDF-XChange Viewer Netscape Gecko Plugin.) -- C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll P2 - FPN: [HKCU] [@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf] - (.Tracker Software Products (Canada) Ltd. - PDF-XChange Viewer Netscape Gecko Plugin.) -- C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll ~ Firefox Browser: 5 Scanned in 00mn 00s ---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://orange.fr R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (11.00.9600.16412 (winblue_gdr.130925-1958)) -- C:\Windows\SysWOW64\ieframe.dll ~ IE Browser: 15 Scanned in 00mn 00s ---\\ Internet Explorer, Proxy Management (R5) R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ~ Proxy management: Scanned in 00mn 00s ---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe, F2 - REG:system.ini: Shell=C:\Windows\explorer.exe F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe ~ Keys: Scanned in 00mn 00s ---\\ Hosts file redirection (O1) ~ Le fichier hosts est sain (The hosts file is clean). ~ Hosts File: Scanned in 00mn 00s ~ Nombre de lignes (Lines number): 21 ---\\ Browser Helper Objects de navigateur (O2) O2 - BHO: Lync Click to Call BHO [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} . (.Microsoft Corporation - Microsoft Lync.) -- C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll O2 - BHO: Google Toolbar Helper [64Bits] - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll =>Toolbar.Google O2 - BHO: Microsoft SkyDrive Pro Browser Helper [64Bits] - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} . (.Microsoft Corporation - Microsoft SkyDrive Pro Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.dll =>.Microsoft Corporation ~ BHO: 6 Scanned in 00mn 00s ---\\ Internet Explorer Toolbars (O3) O3 - Toolbar: Google Toolbar - [HKLM]{2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll =>Toolbar.Google O3 - Toolbar\WebBrowser: (no name) - [HKCU]{2318C2B1-4965-11D4-9B18-009027A5CD4F} Clé orpheline ~ Toolbar: Scanned in 00mn 00s ---\\ Autres liens utilisateurs (O4) O4 - GS\Desktop [Public]: CCleaner.lnk . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>Piriform Ltd O4 - GS\Desktop [Public]: Comic Life 2.lnk . (.plasq LLC - Comic Life 2.) -- C:\Program Files (x86)\plasq\Comic Life 2\ComicLife2.app\Contents\Windows\ComicLife2.exe O4 - GS\Desktop [Public]: Defraggler.lnk . (.Piriform Ltd - Defraggler.) -- C:\Program Files\Defraggler\Defraggler64.exe O4 - GS\Desktop [Public]: Driver Booster.lnk . (.IObit - Driver Booster.) -- C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe O4 - GS\Desktop [Public]: eMule.lnk . (.http://www.emule-project.net - eMule.) -- C:\Program Files (x86)\eMule\emule.exe O4 - GS\Desktop [Public]: GIMP 2.lnk . (...) -- C:\Program Files (x86)\GIMP-2.0\bin\gimp-2.6.exe O4 - GS\Desktop [Public]: Glary Utilities 4.lnk . (.Glarysoft Ltd - Glary Utilities 4.) -- C:\Program Files (x86)\Glary Utilities 4\Integrator.exe O4 - GS\Desktop [Public]: Heroglyph 4.0.lnk . (...) -- C:\Program Files (x86)\proDAD\Heroglyph-4.0\Heroglyph.exe (.not file.) O4 - GS\Desktop [Public]: ImageShack Uploader.lnk . (...) -- C:\WINDOWS\Installer\{8BCD7AE7-F713-4D50-BAB9-7839B9386870}\ImageShackUploader.exe O4 - GS\Desktop [Public]: iResizer.lnk . (...) -- C:\Program Files\iResizer\iResizer.exe O4 - GS\Desktop [Public]: MAGIX 3D Maker 7 Version à télécharger.lnk . (.Xara Ltd. - MAGIX 3D Maker.) -- C:\Program Files (x86)\MAGIX\3D_Maker_7_Version_a_telecharger\X3d.exe O4 - GS\Desktop [Public]: Malwarebytes Anti-Malware.lnk . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe O4 - GS\Desktop [Public]: Nero 2014.lnk . (.Acresso Software Inc. - InstallShield.) -- C:\WINDOWS\Installer\{D5115C78-2D22-4668-A5E2-6C87DED3ED1B}\NeroLauncher.ex_06255901E67449719980557FAA5EC1C6.exe O4 - GS\Desktop [Public]: Nokia Suite.lnk . (.Nokia - Nokia Suite.) -- C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe O4 - GS\Desktop [Public]: PDFZilla.lnk . (.PDFZilla, Inc. - Convert PDF files to Word, Txt, HTML, Image.) -- C:\Program Files (x86)\PDFZilla\PDFZilla.exe O4 - GS\Desktop [Public]: TuneUp Utilities 2014.lnk . (.TuneUp Software - TuneUp Utilities - Interface de démarrage.) -- C:\Program Files (x86)\TuneUp Utilities 2014\Integrator.exe O4 - GS\Desktop [Public]: Winamax Poker.lnk . (...) -- C:\Program Files (x86)\Winamax Poker\Winamax Poker.exe O4 - GS\Program [Public]: Adobe Reader XI.lnk . (...) -- C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-AB0000000001}\SC_Reader.ico O4 - GS\Program [Public]: Browser Choice.lnk . (...) -- C:\WINDOWS\BrowserChoice\html\default.html O4 - GS\Program [Public]: Camera.lnk . (.Microsoft Corporation - Camera.) -- C:\WINDOWS\Camera\Camera.exe O4 - GS\Program [Public]: Desktop.lnk - Clé orpheline O4 - GS\Program [Public]: Enregistrement OCR I.R.I.S..lnk . (.I.R.I.S. Image Recognition Integarted Syste - Registration Wizard.) -- C:\Program Files (x86)\HP\Digital Imaging\DocProc\regipe.exe O4 - GS\Program [Public]: FileManager.lnk . (.Microsoft Corporation - SkyDrive.) -- C:\WINDOWS\FileManager\FileManager.exe O4 - GS\Program [Public]: Glary Utilities 4.lnk . (.Glarysoft Ltd - Glary Utilities 4.) -- C:\Program Files (x86)\Glary Utilities 4\Integrator.exe O4 - GS\Program [Public]: PhotosApp.lnk . (.Microsoft Corporation - Photos.) -- C:\WINDOWS\FileManager\PhotosApp.exe O4 - GS\Program [Public]: TuneUp Utilities 2014.lnk . (.TuneUp Software - TuneUp Utilities - Interface de démarrage.) -- C:\Program Files (x86)\TuneUp Utilities 2014\Integrator.exe O4 - GS\Program [Public]: Winamax Poker.lnk . (...) -- C:\Program Files (x86)\Winamax Poker\Winamax Poker.exe O4 - GS\Program [Public]: Windows Media Center.lnk . (.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe =>.Microsoft Corporation O4 - GS\Program [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O4 - GS\Program [Public]: Windows Store.lnk . (...) -- C:\WINDOWS\WinStore\WinStore.htm O4 - GS\Accessories [Public]: Calculator.lnk . (.Microsoft Corporation - Calculatrice de Windows.) -- C:\WINDOWS\system32\calc.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Math Input Panel.lnk . (...) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\mip.exe (.not file.) O4 - GS\Accessories [Public]: Media Center.lnk . (.Microsoft Corporation - Windows Media Center.) -- C:\WINDOWS\ehome\ehshell.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.) -- C:\WINDOWS\system32\mspaint.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Connexion Bureau à distance.) -- C:\WINDOWS\system32\mstsc.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - Outil Capture d’écran.) -- C:\WINDOWS\system32\SnippingTool.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Sound Recorder.lnk . (.Microsoft Corporation - Magnétophone Windows.) -- C:\WINDOWS\system32\SoundRecorder.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Steps Recorder.lnk . (.Microsoft Corporation - Enregistreur d’actions.) -- C:\WINDOWS\system32\psr.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Sticky Notes.lnk . (.Microsoft Corporation - Pense-bête.) -- C:\WINDOWS\system32\StikyNot.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Windows Fax and Scan.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) -- C:\WINDOWS\system32\WFS.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Application Windows Wordpad.) -- C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: XPS Viewer.lnk . (.Microsoft Corporation - Visionneuse XPS.) -- C:\WINDOWS\system32\xpsrchvw.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Table des caractères.) -- C:\WINDOWS\system32\charmap.exe =>.Microsoft Corporation O4 - GS\QuickLaunch [chantal]: Glary Utilities 4.lnk . (.Glarysoft Ltd - Glary Utilities 4.) -- C:\Program Files (x86)\Glary Utilities 4\Integrator.exe O4 - GS\QuickLaunch [chantal]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - GS\QuickLaunch [chantal]: Light Image Resizer 4.lnk . (.ObviousIdea SARL - Light Image Resizer.) -- C:\Program Files (x86)\ObviousIdea\Image Resizer 4\Resize.exe O4 - GS\QuickLaunch [chantal]: Microsoft Outlook.lnk . (...) -- C:\Program Files (x86)\Microsoft Office\Office15\OUTLOOK.exe (.not file.) O4 - GS\QuickLaunch [chantal]: PDFZilla.lnk . (.PDFZilla, Inc. - Convert PDF files to Word, Txt, HTML, Image.) -- C:\Program Files (x86)\PDFZilla\PDFZilla.exe O4 - GS\QuickLaunch [chantal]: PSPad.lnk . (.Jan Fiala - PSPad editor.) -- C:\Program Files (x86)\PSPad editor\PSPad.exe O4 - GS\TaskBar [chantal]: File Explorer.lnk - Clé orpheline O4 - GS\TaskBar [chantal]: Internet Explorer (3).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe O4 - GS\TaskBar [chantal]: Outlook 2013.lnk . (...) -- C:\WINDOWS\Installer\{90150000-0011-0000-1000-0000000FF1CE}\outicon.exe O4 - GS\TaskBar [chantal]: Snipping Tool.lnk . (.Microsoft Corporation - Outil Capture d’écran.) -- C:\WINDOWS\system32\SnippingTool.exe =>.Microsoft Corporation O4 - GS\TaskBar [chantal]: Word 2013.lnk . (...) -- C:\WINDOWS\Installer\{90150000-0011-0000-1000-0000000FF1CE}\wordicon.exe O4 - GS\Program [chantal]: Internet Explorer (3).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe O4 - GS\Program [chantal]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - GS\Program [chantal]: MediaInfo.lnk . (.MediaArea.net - All about your audio and video files.) -- C:\Program Files\MediaInfo\MediaInfo.exe O4 - GS\Program [chantal]: Orange Launch pad.lnk . (.F-Secure Corporation - F-Secure Service Enabler GUI Launcher.) -- C:\Program Files (x86)\Orange\Antivirus Firewall\trigger.exe O4 - GS\Program [chantal]: Update Checker.lnk . (.FileHippo.com - FileHippo.com Update Checker.) -- C:\Program Files (x86)\FileHippo.com\UpdateChecker.exe O4 - GS\Accessories [chantal]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) -- C:\WINDOWS\system32\notepad.exe =>.Microsoft Corporation O4 - GS\SendTo [chantal]: Format Factory.lnk . (.Free Time - FormatFactory.) -- C:\Program Files (x86)\FreeTime\FormatFactory\FormatFactory.exe O4 - GS\Desktop [chantal]: FileZilla.lnk . (.FileZilla Project - FileZilla FTP Client.) -- C:\Program Files (x86)\FileZilla FTP Client\filezilla.exe O4 - GS\Desktop [chantal]: Format Factory.lnk . (.Free Time - FormatFactory.) -- C:\Program Files (x86)\FreeTime\FormatFactory\FormatFactory.exe O4 - GS\Desktop [chantal]: Light Image Resizer 4.lnk . (.ObviousIdea SARL - Light Image Resizer.) -- C:\Program Files (x86)\ObviousIdea\Image Resizer 4\Resize.exe O4 - GS\Desktop [chantal]: PSPad.lnk . (.Jan Fiala - PSPad editor.) -- C:\Program Files (x86)\PSPad editor\PSPad.exe O4 - GS\Desktop [chantal]: qBittorrent.lnk . (...) -- C:\Program Files (x86)\qBittorrent\qbittorrent.exe =>P2P.BitTorrent O4 - GS\Desktop [chantal]: Update Checker.lnk . (.FileHippo.com - FileHippo.com Update Checker.) -- C:\Program Files (x86)\FileHippo.com\UpdateChecker.exe O4 - GS\Desktop [chantal]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag Setup.) -- C:\Program Files (x86)\ZHPDiag\ZHPhep.exe =>.Nicolas Coolman O4 - GS\Desktop [chantal]: ZHPFix.lnk . (.Nicolas Coolman - ZHPDiag Setup.) -- C:\Program Files (x86)\ZHPDiag\ZHPFix\ZHPhep.exe =>.Nicolas Coolman ~ Global Startup: 71 Scanned in 00mn 00s ---\\ Applications lancées au démarrage du sytème (O4) O4 - GS\Startup [Public]: HP Digital Imaging Monitor.lnk . (.Hewlett-Packard Co. - HP Digital Imaging Monitor.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe =>.Hewlett-Packard Co O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe =>.Realtek Semiconductor Corp O4 - HKLM\..\Run: [ooccctrl.exe] . (.O&O Software GmbH - O&O CleverCache Control Center (x64).) -- C:\Program Files\OO Software\CleverCache\ooccctrl.exe O4 - HKLM\..\Run: [PrintDisp] . (.ActMask Co.,Ltd - http://www.all2pdf.com - PrintDisp.) -- C:\WINDOWS\system32\PrintDisp.exe O4 - HKCU\..\Run: [FileHippo.com] . (.FileHippo.com - FileHippo.com Update Checker.) -- C:\Program Files (x86)\FileHippo.com\UpdateChecker.exe O4 - HKCU\..\Run: [NokiaSuite.exe] . (.Nokia - Nokia Suite.) -- C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe O4 - HKCU\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>Piriform Ltd O4 - HKLM\..\Wow6432Node\Run: [F-Secure Hoster (77051)] . (.F-Secure Corporation - F-Secure Host Process.) -- C:\Program Files (x86)\Orange\Antivirus Firewall\fshoster32.exe O4 - HKLM\..\Wow6432Node\Run: [F-Secure Manager] . (.F-Secure Corporation - F-Secure Settings and Statistics.) -- C:\Program Files (x86)\Orange\Antivirus Firewall\apps\ComputerSecurity\Common\FSM32.exe O4 - HKLM\..\Wow6432Node\Run: [HP Software Update] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe =>.Hewlett-Packard Co O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe =>.Adobe Systems Incorporated O4 - HKLM\..\Wow6432Node\Run: [KeyScrambler] . (.QFX Software Corporation - KeyScrambler.) -- C:\Program Files (x86)\KeyScrambler\keyscrambler.exe O4 - HKUS\S-1-5-21-803192325-2889172547-468948696-1001\..\Run: [FileHippo.com] . (.FileHippo.com - FileHippo.com Update Checker.) -- C:\Program Files (x86)\FileHippo.com\UpdateChecker.exe O4 - HKUS\S-1-5-21-803192325-2889172547-468948696-1001\..\Run: [NokiaSuite.exe] . (.Nokia - Nokia Suite.) -- C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe O4 - HKUS\S-1-5-21-803192325-2889172547-468948696-1001\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>Piriform Ltd ~ Application: Scanned in 00mn 00s ---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5) O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no ~ IE Control Panel: 1 Scanned in 00mn 00s ---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9) O9 - Extra button: &Envoyer à OneNote [64Bits] - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files (x86)\MICROS~1\Office15\ONBttnIE.dll =>.Microsoft Corporation O9 - Extra button: Cliquer pour appeler Lync [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} . (.Microsoft Corporation - Microsoft Lync.) -- C:\Program Files\Microsoft Office\Office15\lync.exe O9 - Extra button: Notes &liées OneNote [64Bits] - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files (x86)\MICROS~1\Office15\ONBTTN~1.dll =>.Microsoft Corporation ~ IE Extra Buttons: Scanned in 00mn 00s ---\\ Winsock hijacker (Layered Service Provider) (O10) O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\WINDOWS\system32\napinsp.dll O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\WINDOWS\system32\pnrpnsp.dll O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\WINDOWS\system32\pnrpnsp.dll O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\WINDOWS\system32\NLAapi.dll O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll =>.Microsoft Corporation O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll ~ Winsock: 6 Scanned in 00mn 00s ---\\ Modification Domaine/Adresses DNS (O17) O17 - HKLM\System\CCS\Services\Tcpip\..\{CBD6F3D8-F189-4EA6-8551-DC15C94D3CC9}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\..\{D304A042-4ED8-40AA-9136-F4C9DC8A844C}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CS1\Services\Tcpip\..\{CBD6F3D8-F189-4EA6-8551-DC15C94D3CC9}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CS1\Services\Tcpip\..\{D304A042-4ED8-40AA-9136-F4C9DC8A844C}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 ~ Domain: Scanned in 00mn 00s ---\\ Protocole additionnel (O18) O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation O18 - Filter: text/xml [64Bits] - {807583E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.dll =>.Microsoft Corporation ~ Protocole Additionnel: Scanned in 00mn 00s ---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21) O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. ~ SSODL: 1 Scanned in 00mn 00s ---\\ Liste des services NT non Microsoft et non désactivés (O23) O23 - Service: F-Secure Dll Hoster (fshoster) . (.F-Secure Corporation - F-Secure Host Process.) - C:\Program Files (x86)\Orange\Antivirus Firewall\fshoster32.exe O23 - Service: F-Secure ORSP Client (FSORSPClient) . (.F-Secure Corporation - F-Secure ORSP Service.) - C:\Program Files (x86)\Orange\Antivirus Firewall\apps\CCF_Reputation\fsorsp.exe O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc O23 - Service: MBAMScheduler (MBAMScheduler) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe O23 - Service: MBAMService (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe O23 - Service: O&O CleverCache (O&O CleverCache) . (.O&O Software GmbH - O&O CleverCache Agent (x64).) - C:\Program Files\OO Software\CleverCache\ooccag.exe O23 - Service: (Printer Control) . (.ActMask Co.,Ltd - HTTP://WWW.ALL2PDF.COM - PrintCtrl 64bit.) - C:\WINDOWS\system32\PrintCtrl.exe O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) . (.TuneUp Software - TuneUp Utilities Service.) - C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe ~ Services: 8 Scanned in 00mn 20s ---\\ Enumération Active Desktop & MHTML Editor (O24) O24 - Default MHTML Editor: Last - .(...) - (.not file.) ~ Desktop Component: 4 Scanned in 00mn 00s ---\\ Enumère les données de BootExecute (BEX) (O34) O34 - HKLM BootExecute: (autocheck autochk * ) - File not found ~ BEX: 1 Scanned in 00mn 00s ---\\ Tâches planifiées en automatique (O39) O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Driver Booster Update.job [308] O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GlaryInitialize 4.job [356] O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1086] O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1090] [MD5.5B1AA494C27CF0BC3B03E8666ACB225E] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [4455704] =>Piriform Ltd [MD5.E864A571B7406DE0584FCCC0829D3E09] [APT] [Driver Booster Scan] (.IObit.) -- C:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe [55104] [MD5.498DF557613771ECC3178A626D0C15F2] [APT] [Driver Booster Update] (.IObit.) -- C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe [1033536] [MD5.C886B01866CBEC896BF45973CE319A70] [APT] [GlaryInitialize 4] (.Glarysoft Ltd.) -- C:\Program Files (x86)\Glary Utilities 4\Initialize.exe [93984] [MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [116648] [MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [116648] [MD5.048EA4B978851788E9F5E8E4F081DF7A] [APT] [Programme de mise … jour en ligne de Adobe] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904] [MD5.911D7F71CB2A40CACB6D8FE8425914FF] [APT] [TuneUpUtilities_Task_BkGndMaintenance2013] (.TuneUp Software.) -- C:\Program Files (x86)\TuneUp Utilities 2014\OneClick.exe [450872] [MD5.00000000000000000000000000000000] [APT] [WinThruster] (...) -- C:\Program Files (x86)\WinThruster\WinThruster.exe (.not file.) [0] [MD5.00000000000000000000000000000000] [APT] [{1C82DA6C-FB5A-41A3-A10A-FC4769A8F427}] (...) -- C:\Program Files\Lame ACM config\unins000.exe (.not file.) [0] [MD5.C20F5CD1265B5EFC757F41DFB9E347BB] [APT] [Nero Info] (.Nero AG.) -- C:\Program Files (x86)\Common Files\Nero\Nero Info\NeroInfo.exe [3227472] ~ Scheduled Task: 16 Scanned in 00mn 03s ---\\ Composants installés (ActiveSetup Installed Components) (O40) O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll =>.Microsoft Corporation O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe =>.Microsoft Corporation O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\System32\mscories.dll ~ Active Setup: 9 Scanned in 00mn 00s ---\\ Pilotes lancés au démarrage du système (O41) O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) - C:\Windows\system32\drivers\afd.sys O41 - Driver: C:\Windows\System32\drivers\ahcache.sys (ahcache) . (.Microsoft Corporation - Application Compatibility Cache.) - C:\Windows\System32\DRIVERS\ahcache.sys O41 - Driver: (BasicDisplay) . (.Microsoft Corporation - Microsoft Basic Display Driver.) - C:\Windows\system32\drivers\BasicDisplay.sys O41 - Driver: (BasicRender) . (.Microsoft Corporation - Microsoft Basic Render Driver.) - C:\Windows\system32\drivers\BasicRender.sys O41 - Driver: cdrom.inf (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys O41 - Driver: C:\Windows\System32\cscsvc.dll (CSC) . (.Microsoft Corporation - Windows Client Side Caching Driver.) - C:\Windows\System32\drivers\csc.sys O41 - Driver: C:\Windows\System32\drivers\dam.sys (dam) . (.Microsoft Corporation - DAM Kernel Driver.) - C:\Windows\System32\drivers\dam.sys O41 - Driver: C:\Windows\System32\wkssvc.dll (Dfsc) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys O41 - Driver: (F-Secure HIPS) . (.F-Secure Corporation - HIPS 64-bit kernel module.) - C:\Program Files (x86)\Orange\Antivirus Firewall\apps\ComputerSecurity\HIPS\drivers\fshs.sys O41 - Driver: (fsvista) . (...) - C:\Program Files (x86)\Orange\Antivirus Firewall\apps\ComputerSecurity\Anti-Virus\minifilter\fsvista.sys O41 - Driver: mssmbios.inf (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys O41 - Driver: netnb.inf (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys O41 - Driver: npsvctrig.inf (npsvctrig) . (.Microsoft Corporation - Named pipe service triggers.) - C:\Windows\system32\drivers\npsvctrig.sys O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\system32\DRIVERS\pacer.sys O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys O41 - Driver: C:\Windows\System32\drivers\vwififlt.sys (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\system32\DRIVERS\vwififlt.sys O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\system32\DRIVERS\wanarp.sys ~ Drivers: 40 Scanned in 00mn 00s ---\\ Logiciels installés (O42) O42 - Logiciel: 64 Bit HP CIO Components Installer - (.Hewlett-Packard.) [HKLM][64Bits] -- {FF21C3E6-97FD-474F-9518-8DCBE94C2854} O42 - Logiciel: AC3Filter 2.6.0b - (.Alexander Vigovsky.) [HKLM][64Bits] -- AC3Filter_is1 O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {B92C2C6C-F70E-497B-88A7-1FEF9888272B} O42 - Logiciel: Adobe Reader XI (11.0.06) - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AB0000000001} O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner =>Piriform Ltd O42 - Logiciel: Comic Life 2 - (.plasq LLC.) [HKLM][64Bits] -- {A8405D99-9D76-4456-8752-87DA930CC3A3} O42 - Logiciel: Computer Security 12.62.109.0 (release) - (.F-Secure Corporation.) [HKLM][64Bits] -- {658FDBCA-B7A1-43E4-A849-9F0812473331} O42 - Logiciel: Defraggler - (.Piriform.) [HKLM][64Bits] -- Defraggler O42 - Logiciel: Driver Booster - (.IObit.) [HKLM][64Bits] -- Driver Booster_is1 O42 - Logiciel: F-Secure CCF Reputation - (.F-Secure.) [HKLM][64Bits] -- {00000000-2778-5BED-8199-52EB14D8D22F} O42 - Logiciel: F-Secure CCF Scanning 1.06.137.5589 (release) - (.F-Secure Corporation.) [HKLM][64Bits] -- {56C4D6B1-6430-444B-9186-3781B9AAAFB6} O42 - Logiciel: F-Secure Network CCF 1.02.115 - (.F-Secure Corporation.) [HKLM][64Bits] -- {47746266-C19F-40B4-9355-C60A285C2A7D} O42 - Logiciel: FileHippo.com Update Checker - (...) [HKLM][64Bits] -- FileHippo.com O42 - Logiciel: FileZilla Client 3.7.3 - (.Tim Kosse.) [HKLM][64Bits] -- FileZilla Client O42 - Logiciel: FormatFactory 3.00 - (.Free Time.) [HKLM][64Bits] -- FormatFactory O42 - Logiciel: GIMP 2.6.7 - (...) [HKLM][64Bits] -- WinGimp-2.0_is1 O42 - Logiciel: Glary Utilities PRO 4.2 - (.Glarysoft Ltd.) [HKLM][64Bits] -- Glary Utilities 4 O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {18455581-E099-4BA8-BC6B-F34B2F06600C} =>Toolbar.Google O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F} =>Toolbar.Google O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} O42 - Logiciel: HP Customer Participation Program 14.0 - (.HP.) [HKLM][64Bits] -- HPExtendedCapabilities O42 - Logiciel: HP Imaging Device Functions 14.0 - (.HP.) [HKLM][64Bits] -- HP Imaging Device Functions O42 - Logiciel: HP Solution Center 14.0 - (.HP.) [HKLM][64Bits] -- HP Solution Center & Imaging Support Tools O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM][64Bits] -- {B0069CFA-5BB9-4C03-B1C6-89CE290E5AFE} O42 - Logiciel: ImageShack Uploader 2.2.0 - (.ImageShack Corp..) [HKLM][64Bits] -- {8BCD7AE7-F713-4D50-BAB9-7839B9386870} O42 - Logiciel: K-Lite Codec Pack 10.2.0 Full - (...) [HKLM][64Bits] -- KLiteCodecPack_is1 O42 - Logiciel: KeyScrambler - (.QFX Software Corporation.) [HKLM][64Bits] -- KeyScrambler O42 - Logiciel: Lame ACM MP3 Codec - (...) [HKLM][64Bits] -- LameACM O42 - Logiciel: Light Image Resizer 4.5.7.0 - (.ObviousIdea.) [HKLM][64Bits] -- {EBE030DD-D404-4D92-85E9-8C3624820808}_is1 O42 - Logiciel: MAGIX 3D Maker 7 Version à télécharger - (.MAGIX AG.) [HKLM][64Bits] -- MAGIX_MSI_3D7 O42 - Logiciel: MAGIX 3D Maker 7 Version à télécharger - (.MAGIX AG.) [HKLM][64Bits] -- {30EF6AB4-D810-46E0-B1B9-431782EF2FEF} O42 - Logiciel: MSVC80_x64_v2 - (.Nokia.) [HKLM][64Bits] -- {4D668D4F-FAA2-4726-834C-31F4614F312E} O42 - Logiciel: MSVC80_x86_v2 - (.Nokia.) [HKLM][64Bits] -- {6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6} O42 - Logiciel: MSVC90_x64 - (.Nokia.) [HKLM][64Bits] -- {AB071C8B-873C-459F-ACA9-9EBE03C3E89B} O42 - Logiciel: MSVC90_x86 - (.Nokia.) [HKLM][64Bits] -- {AF111648-99A1-453E-81DD-80DBBF6DAD0D} O42 - Logiciel: MSXML 4.0 SP3 Parser - (.Microsoft Corporation.) [HKLM][64Bits] -- {196467F1-C11F-4F76-858B-5812ADC83B94} O42 - Logiciel: Malwarebytes Anti-Malware version 1.75.0.1300 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes' Anti-Malware_is1 O42 - Logiciel: MediaInfo 0.7.65 - (.MediaArea.net.) [HKLM][64Bits] -- MediaInfo O42 - Logiciel: Microsoft Access MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0015-040C-1000-0000000FF1CE} O42 - Logiciel: Microsoft DCF MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0090-040C-1000-0000000FF1CE} O42 - Logiciel: Microsoft Excel MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0016-040C-1000-0000000FF1CE} O42 - Logiciel: Microsoft Groove MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-00BA-040C-1000-0000000FF1CE} O42 - Logiciel: Microsoft InfoPath MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0044-040C-1000-0000000FF1CE} O42 - Logiciel: Microsoft Lync MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-012B-040C-1000-0000000FF1CE} O42 - Logiciel: Microsoft OneNote MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-00A1-040C-1000-0000000FF1CE} =>.Microsoft Corporation O42 - Logiciel: Microsoft Outlook MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-001A-040C-1000-0000000FF1CE} O42 - Logiciel: Microsoft PowerPoint MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0018-040C-1000-0000000FF1CE} O42 - Logiciel: Microsoft Publisher MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0019-040C-1000-0000000FF1CE} O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} O42 - Logiciel: Microsoft Word MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-001B-040C-1000-0000000FF1CE} O42 - Logiciel: Nero 2014 - (.Nero AG.) [HKLM][64Bits] -- {F384C1E1-3A16-4073-95C3-7271FE0ED4C2} O42 - Logiciel: Nero Audio Pack 1 - (.Nero AG.) [HKLM][64Bits] -- {A7A0BF2E-31CC-49E3-9913-52C503EB969D} O42 - Logiciel: Nero Blu-ray Player - (.Nero AG.) [HKLM][64Bits] -- {A2FE691E-3F8E-4E30-AA7D-FF17AC77EA87} O42 - Logiciel: Nero Blu-ray Player Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {36DA8969-4DCD-48FF-894A-6BD3936050C3} O42 - Logiciel: Nero Burning Core - (.Nero AG.) [HKLM][64Bits] -- {B166374C-105E-445E-8E5D-A86CA5742645} O42 - Logiciel: Nero Burning ROM - (.Nero AG.) [HKLM][64Bits] -- {F2B9C8D6-C69C-4BA7-95D2-66F1C68D15DA} O42 - Logiciel: Nero Burning ROM Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {FA78CC15-9F90-443B-BA61-A66595F06432} O42 - Logiciel: Nero ControlCenter - (.Nero AG.) [HKLM][64Bits] -- {ABC88553-8770-4B97-B43E-5A90647A5B63} O42 - Logiciel: Nero ControlCenter Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {CDFE8F95-F80F-4115-9C3F-0E1FD8F9F58C} O42 - Logiciel: Nero Core Components - (.Nero AG.) [HKLM][64Bits] -- {BEBEE34D-84A2-4EDD-8BEA-96CC54371263} O42 - Logiciel: Nero Disc Menus Basic - (.Nero AG.) [HKLM][64Bits] -- {E17BCB76-9924-4BD5-B6D6-50D3407B4E74} O42 - Logiciel: Nero Disc to Device - (.Nero AG.) [HKLM][64Bits] -- {C03E2FB3-250B-44A1-8B9E-61DFCD544133} O42 - Logiciel: Nero Effects Basic - (.Nero AG.) [HKLM][64Bits] -- {29F67D84-3A70-456E-806A-52301B02070B} O42 - Logiciel: Nero Express - (.Nero AG.) [HKLM][64Bits] -- {ED7943A4-2FF0-4096-BBEA-DE3CC206E3D4} O42 - Logiciel: Nero Express Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {4CA46F9F-174C-4766-9EA2-2325DF414B9E} O42 - Logiciel: Nero Info - (.Nero AG.) [HKLM][64Bits] -- {B791E0AB-87A9-41A4-8D98-D13C2E37D928} O42 - Logiciel: Nero Kwik Themes Basic - (.Nero AG.) [HKLM][64Bits] -- {1B6F5E51-575E-4693-BCA2-7543570D076D} O42 - Logiciel: Nero Launcher - (.Nero AG.) [HKLM][64Bits] -- {D5115C78-2D22-4668-A5E2-6C87DED3ED1B} O42 - Logiciel: Nero MediaHome - (.Nero AG.) [HKLM][64Bits] -- {4DB136AF-389B-4A34-AE34-50123559D08E} O42 - Logiciel: Nero MediaHome Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {75CA8AAE-5346-4312-A9A8-5CF89955930F} O42 - Logiciel: Nero PiP Effects Basic - (.Nero AG.) [HKLM][64Bits] -- {ACE49D50-19CD-44A6-B192-46F985283B26} O42 - Logiciel: Nero Recode - (.Nero AG.) [HKLM][64Bits] -- {40E51513-D917-4563-84F6-4EF6ADD46E2F} O42 - Logiciel: Nero Recode Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {0CF7D22B-977C-43B2-9219-E03017FBAC6D} O42 - Logiciel: Nero RescueAgent - (.Nero AG.) [HKLM][64Bits] -- {581DCE84-1948-4891-A4A7-A1222CC137C5} O42 - Logiciel: Nero RescueAgent Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {F69D4104-5394-4F7C-801C-D96DC92E7F69} O42 - Logiciel: Nero SharedVideoCodecs - (.Nero AG.) [HKLM][64Bits] -- {2432E589-6256-4513-B0BF-EFA8E325D5F0} O42 - Logiciel: Nero Update - (.Nero AG.) [HKLM][64Bits] -- {65BB0407-4CC8-4DC7-952E-3EEFDF05602A} O42 - Logiciel: Nero Video - (.Nero AG.) [HKLM][64Bits] -- {511B5F54-CB1D-4F5B-BE0E-09B1D86BE586} O42 - Logiciel: Nero Video Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {5446D3AF-B060-49B6-9535-F300E1532022} O42 - Logiciel: Nokia Connectivity Cable Driver - (.Nokia.) [HKLM][64Bits] -- {29373274-977E-413C-A4DE-DC0F8E80C429} O42 - Logiciel: Nokia Suite - (.Nokia.) [HKLM][64Bits] -- Nokia Suite O42 - Logiciel: Nokia Suite - (.Nokia.) [HKLM][64Bits] -- {EDB188F5-D8E8-42EE-89E0-F212DA48CB81} O42 - Logiciel: O&O CleverCache - (.O&O Software GmbH.) [HKLM][64Bits] -- {2A64B9EB-AAEF-462B-8D5A-855B1DD5467A} O42 - Logiciel: OCR Software by I.R.I.S. 14.0 - (.HP.) [HKLM][64Bits] -- HPOCR O42 - Logiciel: Online Safety 2.63.170.284 - (.F-Secure Corporation.) [HKLM][64Bits] -- {DC213574-F9C7-4A65-BE84-20F4079BD1C3} O42 - Logiciel: Orange Launch pad - (.F-Secure Corporation.) [HKLM][64Bits] -- F-Secure ServiceEnabler 77051 O42 - Logiciel: Orange Launch pad - (.F-Secure Corporation.) [HKLM][64Bits] -- {7FECD05A-0927-471D-AEF8-6D657D6577F0} O42 - Logiciel: PC Connectivity Solution - (.Nokia.) [HKLM][64Bits] -- {6D01D1B1-17BD-4F10-BB11-F08F0C47D42B} O42 - Logiciel: PDF-Viewer - (.Tracker Software Products Ltd.) [HKLM][64Bits] -- {A278382D-4F1B-4D47-9885-8523F7261E8D}_is1 O42 - Logiciel: PDFZilla V3.0.0 - (.PDFZilla, Inc..) [HKLM][64Bits] -- PDFZilla_is1 O42 - Logiciel: PSPad editor - (.Jan Fiala.) [HKLM][64Bits] -- PSPad editor_is1 O42 - Logiciel: Package de pilotes Windows - Nokia pccsmcfd LegacyDriver (05/31/2012 7.1.2 - (.Nokia.) [HKLM][64Bits] -- 62BBD193ADFDBB228C7E1ADB56463F5732FF7F6F O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} O42 - Logiciel: StartIsBack+ - (.startisback.com.) [HKLM][64Bits] -- StartIsBack O42 - Logiciel: TuneUp Utilities 2014 - (.TuneUp Software.) [HKLM][64Bits] -- TuneUp Utilities 2014 O42 - Logiciel: WinRAR 4.20 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver O42 - Logiciel: Winamax Poker - (.Winamax.) [HKLM][64Bits] -- wam.04351C371E530C3762CBA45FA283ED972DCDEFB6.1 O42 - Logiciel: Winamax Poker - (.Winamax.) [HKLM][64Bits] -- {E1C360AE-F225-ABBA-30AB-B76EC70774A2} O42 - Logiciel: Xvid 1.1.2 final uninstall - (.Xvid team (Koepi).) [HKLM][64Bits] -- Xvid_is1 O42 - Logiciel: eMule - (...) [HKLM][64Bits] -- eMule O42 - Logiciel: iResizer 2.4 - (.teorex.) [HKLM][64Bits] -- {FD071DBA-2994-4350-93BB-EC245D0D3C74}_is1 O42 - Logiciel: proDAD Heroglyph 4.0 (64bit) - (.proDAD GmbH.) [HKLM][64Bits] -- proDAD-Heroglyph-4.0 O42 - Logiciel: qBittorrent 3.1.5 - (.The qBittorrent project.) [HKLM][64Bits] -- qbittorrent =>P2P.BitTorrent ~ Logic: 54 Scanned in 00mn 00s ---\\ HKCU & HKLM Software Keys [HKCU\Software\AC3Filter] [HKCU\Software\Adobe] [HKCU\Software\AppDataLow] [HKCU\Software\ChessBase] [HKCU\Software\Classes] [HKCU\Software\Clients] [HKCU\Software\DT Soft] [HKCU\Software\EasyBannerFL] [HKCU\Software\EasyBanner] [HKCU\Software\F-Secure] [HKCU\Software\FileHippo.com] [HKCU\Software\FreeTime] [HKCU\Software\GNU] [HKCU\Software\Gabest] [HKCU\Software\GlarySoft] [HKCU\Software\Google] [HKCU\Software\HP] [HKCU\Software\Haali] [HKCU\Software\Hewlett-Packard] [HKCU\Software\IM Providers] [HKCU\Software\Icaros] [HKCU\Software\Iceni Technology Limited] [HKCU\Software\Iceni] [HKCU\Software\ImageShack Corp.] [HKCU\Software\ImageShack] [HKCU\Software\Licenses] [HKCU\Software\LogiShrd] [HKCU\Software\Macromedia] [HKCU\Software\Magix] [HKCU\Software\Malwarebytes' Anti-Malware] [HKCU\Software\MozillaPlugins] [HKCU\Software\Nero] [HKCU\Software\Netscape] [HKCU\Software\Nokia] [HKCU\Software\O&O] [HKCU\Software\ODBC] [HKCU\Software\ObviousIdea] [HKCU\Software\PCTuneUp] [HKCU\Software\PSPad] [HKCU\Software\Piriform] [HKCU\Software\Policies] [HKCU\Software\QFX Software] [HKCU\Software\QtProject] [HKCU\Software\Realtek] [HKCU\Software\RegisteredApplications] [HKCU\Software\SimonTatham] [HKCU\Software\Solvusoft] [HKCU\Software\Spoon] [HKCU\Software\StartIsBack] [HKCU\Software\Teorex] [HKCU\Software\Tracker Software] [HKCU\Software\Trolltech] [HKCU\Software\TuneUp] [HKCU\Software\VB and VBA Program Settings] [HKCU\Software\VirtualDub.org] [HKCU\Software\WinRAR SFX] [HKCU\Software\WinRAR] [HKCU\Software\Wow6432Node] [HKCU\Software\Xara] [HKCU\Software\ZebHelpProcess Helper] [HKCU\Software\eMule] [HKCU\Software\plasq] [HKCU\Software\proDAD] [HKLM\Software\ATI Technologies] [HKLM\Software\ActMask Virtual Printer SDK] [HKLM\Software\Classes] [HKLM\Software\Clients] [HKLM\Software\DTS] [HKLM\Software\Dolby] [HKLM\Software\FileZilla 3] [HKLM\Software\GNU] [HKLM\Software\Hewlett-Packard] [HKLM\Software\IM Providers] [HKLM\Software\Icaros] [HKLM\Software\Intel] [HKLM\Software\Knowles] [HKLM\Software\LAV64] [HKLM\Software\Logishrd] [HKLM\Software\Macromedia] [HKLM\Software\MozillaPlugins] [HKLM\Software\Nahimic] [HKLM\Software\Nuance] [HKLM\Software\O&O] [HKLM\Software\ODBC] [HKLM\Software\PC Connectivity Solution] [HKLM\Software\Piriform] [HKLM\Software\Policies] [HKLM\Software\Realtek] [HKLM\Software\RegisteredApplications] [HKLM\Software\SRS Labs] [HKLM\Software\SonicFocus] [HKLM\Software\StartIsBack] [HKLM\Software\Tracker Software] [HKLM\Software\TuneUp] [HKLM\Software\Volatile] [HKLM\Software\Waves Audio] [HKLM\Software\WinRAR] [HKLM\Software\Wow6432Node\ActMask Virtual Printer SDK] [HKLM\Software\Wow6432Node\Adobe] [HKLM\Software\Wow6432Node\AdwCleaner] [HKLM\Software\Wow6432Node\AviSynth] [HKLM\Software\Wow6432Node\Belarc] [HKLM\Software\Wow6432Node\Classes] [HKLM\Software\Wow6432Node\Clients] [HKLM\Software\Wow6432Node\DT Soft] [HKLM\Software\Wow6432Node\Data Fellows] [HKLM\Software\Wow6432Node\EasyBanner] [HKLM\Software\Wow6432Node\F-Secure] [HKLM\Software\Wow6432Node\FileZilla 3] [HKLM\Software\Wow6432Node\GNU] [HKLM\Software\Wow6432Node\GlarySoft] [HKLM\Software\Wow6432Node\Google] [HKLM\Software\Wow6432Node\HaaliMkx] [HKLM\Software\Wow6432Node\Hewlett-Packard] [HKLM\Software\Wow6432Node\IObit] [HKLM\Software\Wow6432Node\Iceni Technology Limited] [HKLM\Software\Wow6432Node\Infix PDF] [HKLM\Software\Wow6432Node\Intel] [HKLM\Software\Wow6432Node\KLCodecPack] [HKLM\Software\Wow6432Node\LAV] [HKLM\Software\Wow6432Node\MAGIX] [HKLM\Software\Wow6432Node\Macromedia] [HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware] [HKLM\Software\Wow6432Node\MozillaPlugins] [HKLM\Software\Wow6432Node\Nero] [HKLM\Software\Wow6432Node\Nokia Mobile Phones] [HKLM\Software\Wow6432Node\Nokia] [HKLM\Software\Wow6432Node\Nuance] [HKLM\Software\Wow6432Node\ODBC] [HKLM\Software\Wow6432Node\ObviousIdea] [HKLM\Software\Wow6432Node\PC Connectivity Solution] [HKLM\Software\Wow6432Node\PCSuite] [HKLM\Software\Wow6432Node\Policies] [HKLM\Software\Wow6432Node\PowerPivot] [HKLM\Software\Wow6432Node\QFX Software] [HKLM\Software\Wow6432Node\RegisteredApplications] [HKLM\Software\Wow6432Node\Solvusoft] [HKLM\Software\Wow6432Node\TrendMicro] [HKLM\Software\Wow6432Node\TuneUp] [HKLM\Software\Wow6432Node\Volatile] [HKLM\Software\Wow6432Node\fssg] [HKLM\Software\Wow6432Node\proDAD] [HKLM\Software\Wow6432Node] [HKLM\Software\proDAD] ~ Key Software: 306 Scanned in 00mn 00s ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) O43 - CFD: 11/01/2014 - 13:23:08 - [12,301] ----D C:\Program Files (x86)\AC3Filter O43 - CFD: 09/01/2014 - 11:59:08 - [121,023] ----D C:\Program Files (x86)\Adobe O43 - CFD: 12/02/2014 - 08:51:41 - [0] ----D C:\Program Files (x86)\Auslogics O43 - CFD: 09/01/2014 - 11:59:08 - [305,314] ----D C:\Program Files (x86)\Common Files O43 - CFD: 07/02/2014 - 20:19:09 - [0,074] ----D C:\Program Files (x86)\EasyPhotoUploader O43 - CFD: 22/12/2013 - 19:00:11 - [10,401] ----D C:\Program Files (x86)\eMule O43 - CFD: 25/12/2013 - 17:49:19 - [0,421] ----D C:\Program Files (x86)\FileHippo.com O43 - CFD: 15/02/2014 - 09:42:46 - [17,575] ----D C:\Program Files (x86)\FileZilla FTP Client O43 - CFD: 26/12/2013 - 10:11:37 - [135,748] ----D C:\Program Files (x86)\FreeTime O43 - CFD: 10/02/2014 - 19:10:30 - [83,100] ----D C:\Program Files (x86)\GIMP-2.0 O43 - CFD: 17/02/2014 - 12:34:15 - [29,833] ----D C:\Program Files (x86)\Glary Utilities 4 O43 - CFD: 09/01/2014 - 12:03:58 - [104,244] ----D C:\Program Files (x86)\Google O43 - CFD: 05/01/2014 - 16:12:49 - [217,652] ----D C:\Program Files (x86)\HP O43 - CFD: 17/02/2014 - 17:12:19 - [26,352] ----D C:\Program Files (x86)\ImageShack Uploader O43 - CFD: 13/02/2014 - 08:25:51 - [6,106] ----D C:\Program Files (x86)\Internet Explorer O43 - CFD: 24/12/2013 - 13:10:18 - [157,773] ----D C:\Program Files (x86)\IObit O43 - CFD: 11/01/2014 - 13:44:22 - [83,727] ----D C:\Program Files (x86)\K-Lite Codec Pack O43 - CFD: 16/02/2014 - 09:59:34 - [3,886] ----D C:\Program Files (x86)\KeyScrambler O43 - CFD: 11/01/2014 - 19:36:58 - [0,374] ----D C:\Program Files (x86)\LAME O43 - CFD: 07/02/2014 - 17:05:32 - [32,308] ----D C:\Program Files (x86)\MAGIX O43 - CFD: 20/12/2013 - 17:16:17 - [13,376] ----D C:\Program Files (x86)\Malwarebytes' Anti-Malware O43 - CFD: 05/01/2014 - 13:55:10 - [0] ----D C:\Program Files (x86)\Microsoft O43 - CFD: 22/12/2013 - 11:21:45 - [98,053] ----D C:\Program Files (x86)\Microsoft Analysis Services O43 - CFD: 03/01/2014 - 09:36:30 - [103,195] ----D C:\Program Files (x86)\Microsoft Office O43 - CFD: 24/12/2013 - 08:16:43 - [40,851] ----D C:\Program Files (x86)\Microsoft Silverlight O43 - CFD: 03/01/2014 - 09:47:57 - [0,029] ----D C:\Program Files (x86)\Microsoft SQL Server O43 - CFD: 03/01/2014 - 12:27:40 - [8,445] ----D C:\Program Files (x86)\Microsoft.NET O43 - CFD: 03/01/2014 - 09:42:51 - [0,025] ----D C:\Program Files (x86)\MSBuild O43 - CFD: 23/12/2013 - 13:06:01 - [0,147] ----D C:\Program Files (x86)\MSXML 4.0 O43 - CFD: 23/12/2013 - 13:13:56 - [1017,349] ----D C:\Program Files (x86)\Nero O43 - CFD: 06/02/2014 - 09:55:05 - [0] ----D C:\Program Files (x86)\NirSoft O43 - CFD: 22/12/2013 - 19:01:11 - [133,625] ----D C:\Program Files (x86)\Nokia O43 - CFD: 20/01/2014 - 14:19:40 - [24,610] ----D C:\Program Files (x86)\ObviousIdea O43 - CFD: 20/12/2013 - 15:40:37 - [568,836] ----D C:\Program Files (x86)\Orange O43 - CFD: 22/12/2013 - 19:00:31 - [21,404] ----D C:\Program Files (x86)\PC Connectivity Solution O43 - CFD: 24/12/2013 - 10:34:09 - [25,962] ----D C:\Program Files (x86)\PDFZilla O43 - CFD: 01/01/2014 - 12:35:05 - [141,171] ----D C:\Program Files (x86)\plasq O43 - CFD: 20/12/2013 - 19:45:05 - [14,431] ----D C:\Program Files (x86)\PSPad editor O43 - CFD: 30/01/2014 - 12:28:13 - [44,677] ----D C:\Program Files (x86)\qBittorrent =>P2P.BitTorrent O43 - CFD: 25/12/2013 - 17:47:49 - [36,661] ----D C:\Program Files (x86)\Reference Assemblies O43 - CFD: 21/01/2014 - 22:16:35 - [5,197] ----D C:\Program Files (x86)\StartIsBack O43 - CFD: 23/12/2013 - 11:27:56 - [90,287] ----D C:\Program Files (x86)\TuneUp Utilities 2014 O43 - CFD: 01/02/2014 - 13:50:57 - [5,284] ----D C:\Program Files (x86)\Winamax Poker O43 - CFD: 14/11/2013 - 08:52:41 - [1,011] ----D C:\Program Files (x86)\Windows Defender O43 - CFD: 14/11/2013 - 08:12:26 - [5,449] ----D C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation O43 - CFD: 22/12/2013 - 00:39:40 - [3,148] ----D C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation O43 - CFD: 22/08/2013 - 16:36:33 - [0,211] ----D C:\Program Files (x86)\Windows Multimedia Platform O43 - CFD: 22/08/2013 - 16:36:30 - [7,175] ----D C:\Program Files (x86)\Windows NT O43 - CFD: 14/11/2013 - 08:12:26 - [5,118] ----D C:\Program Files (x86)\Windows Photo Viewer O43 - CFD: 22/08/2013 - 16:36:33 - [0,211] ----D C:\Program Files (x86)\Windows Portable Devices O43 - CFD: 22/12/2013 - 00:39:40 - [0,334] -SH-D C:\Program Files (x86)\Windows Sidebar O43 - CFD: 22/08/2013 - 16:36:30 - [0] ----D C:\Program Files (x86)\WindowsPowerShell O43 - CFD: 11/01/2014 - 11:38:06 - [0,730] ----D C:\Program Files (x86)\Xvid O43 - CFD: 18/02/2014 - 15:42:59 - [17,258] ----D C:\Program Files (x86)\ZHPDiag =>.Nicolas Coolman O43 - CFD: 09/01/2014 - 11:59:28 - [6,301] ----D C:\Program Files (x86)\Common Files\Adobe O43 - CFD: 21/01/2014 - 13:57:11 - [46,039] ----D C:\Program Files (x86)\Common Files\Adobe AIR O43 - CFD: 26/12/2013 - 11:08:06 - [6,359] ----D C:\Program Files (x86)\Common Files\ChessBase O43 - CFD: 26/12/2013 - 12:30:22 - [2,453] ----D C:\Program Files (x86)\Common Files\Hewlett-Packard O43 - CFD: 26/12/2013 - 12:30:37 - [1,348] ----D C:\Program Files (x86)\Common Files\HP O43 - CFD: 03/01/2014 - 10:39:22 - [156,079] ----D C:\Program Files (x86)\Common Files\Microsoft Shared O43 - CFD: 23/12/2013 - 13:15:01 - [59,896] ----D C:\Program Files (x86)\Common Files\Nero O43 - CFD: 22/12/2013 - 19:01:12 - [11,540] ----D C:\Program Files (x86)\Common Files\Nokia O43 - CFD: 16/02/2014 - 09:33:10 - [0] ----D C:\Program Files (x86)\Common Files\PX Storage Engine O43 - CFD: 22/08/2013 - 16:36:33 - [0,003] ----D C:\Program Files (x86)\Common Files\Services O43 - CFD: 22/12/2013 - 10:48:01 - [15,296] ----D C:\Program Files (x86)\Common Files\System O43 - CFD: 05/02/2014 - 12:07:09 - [201,873] ----D C:\ProgramData\Adobe O43 - CFD: 22/08/2013 - 15:45:52 - [0] -SH-D C:\ProgramData\Application Data O43 - CFD: 20/12/2013 - 15:09:48 - [0] -SH-D C:\ProgramData\Bureau O43 - CFD: 28/12/2013 - 14:51:24 - [0,001] ----D C:\ProgramData\ChessBase O43 - CFD: 23/12/2013 - 11:19:54 - [0] --H-D C:\ProgramData\Common Files O43 - CFD: 22/08/2013 - 15:45:52 - [0] -SH-D C:\ProgramData\Desktop O43 - CFD: 22/08/2013 - 15:45:52 - [0] -SH-D C:\ProgramData\Documents O43 - CFD: 22/12/2013 - 19:10:23 - [0] ----D C:\ProgramData\eMule O43 - CFD: 20/12/2013 - 15:45:48 - [401,417] ----D C:\ProgramData\F-Secure O43 - CFD: 23/12/2013 - 12:45:30 - [0] ----D C:\ProgramData\GlarySoft O43 - CFD: 20/12/2013 - 16:51:10 - [0,012] ----D C:\ProgramData\Google O43 - CFD: 05/01/2014 - 13:31:06 - [21,420] ----D C:\ProgramData\HP O43 - CFD: 05/01/2014 - 13:30:55 - [0,009] ----D C:\ProgramData\HP Product Assistant O43 - CFD: 24/12/2013 - 13:10:30 - [0,001] ----D C:\ProgramData\IObit O43 - CFD: 07/02/2014 - 17:06:17 - [0,098] ----D C:\ProgramData\MAGIX O43 - CFD: 20/12/2013 - 17:15:09 - [16,742] ----D C:\ProgramData\Malwarebytes O43 - CFD: 20/12/2013 - 15:09:48 - [0] -SH-D C:\ProgramData\Menu Démarrer O43 - CFD: 05/01/2014 - 13:55:10 - [389,671] -S--D C:\ProgramData\Microsoft O43 - CFD: 15/01/2014 - 07:33:41 - [0,028] ----D C:\ProgramData\Microsoft Help O43 - CFD: 20/12/2013 - 16:33:06 - [0,002] ----D C:\ProgramData\Microsoft Toolkit O43 - CFD: 20/12/2013 - 15:09:48 - [0] -SH-D C:\ProgramData\Modèles O43 - CFD: 23/12/2013 - 13:15:39 - [0,795] ----D C:\ProgramData\Nero O43 - CFD: 22/12/2013 - 19:01:37 - [4,764] ----D C:\ProgramData\Nokia O43 - CFD: 22/12/2013 - 18:36:18 - [486,364] ----D C:\ProgramData\NokiaInstallerCache O43 - CFD: 23/12/2013 - 13:59:19 - [54,731] ----D C:\ProgramData\OO Software O43 - CFD: 22/12/2013 - 19:01:51 - [0,072] ----D C:\ProgramData\PC Suite O43 - CFD: 22/12/2013 - 00:39:45 - [0,039] ----D C:\ProgramData\PRICache O43 - CFD: 21/01/2014 - 13:04:00 - [0,004] ----D C:\ProgramData\proDAD O43 - CFD: 16/02/2014 - 09:41:55 - [0] ----D C:\ProgramData\QFX Software O43 - CFD: 03/01/2014 - 09:47:26 - [0,002] ----D C:\ProgramData\regid.1991-06.com.microsoft O43 - CFD: 22/08/2013 - 15:45:52 - [0] -SH-D C:\ProgramData\Start Menu O43 - CFD: 13/02/2014 - 07:46:28 - [0] ----D C:\ProgramData\Temp O43 - CFD: 22/08/2013 - 15:45:52 - [0] -SH-D C:\ProgramData\Templates O43 - CFD: 15/02/2014 - 15:58:03 - [10,116] ----D C:\ProgramData\TuneUp Software O43 - CFD: 26/12/2013 - 12:45:35 - [0] ----D C:\ProgramData\WEBREG O43 - CFD: 23/12/2013 - 11:34:44 - [0] -SH-D C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C} O43 - CFD: 09/01/2014 - 12:09:01 - [12,350] ----D C:\Users\chantal\AppData\Roaming\Adobe O43 - CFD: 16/02/2014 - 09:32:05 - [0] ----D C:\Users\chantal\AppData\Roaming\Aspell O43 - CFD: 26/12/2013 - 11:27:19 - [0] ----D C:\Users\chantal\AppData\Roaming\ChessBase O43 - CFD: 01/01/2014 - 12:36:40 - [0] ----D C:\Users\chantal\AppData\Roaming\CocotronLibrary O43 - CFD: 18/02/2014 - 12:26:05 - [0,021] ----D C:\Users\chantal\AppData\Roaming\FileZilla O43 - CFD: 23/12/2013 - 12:46:12 - [0,144] ----D C:\Users\chantal\AppData\Roaming\GlarySoft O43 - CFD: 20/12/2013 - 16:57:01 - [0] ----D C:\Users\chantal\AppData\Roaming\Google O43 - CFD: 11/02/2014 - 06:00:49 - [0] ----D C:\Users\chantal\AppData\Roaming\gtk-2.0 O43 - CFD: 26/12/2013 - 12:45:35 - [0,013] ----D C:\Users\chantal\AppData\Roaming\HP O43 - CFD: 05/01/2014 - 13:31:57 - [0] ----D C:\Users\chantal\AppData\Roaming\HpUpdate O43 - CFD: 22/12/2013 - 10:33:26 - [0] ----D C:\Users\chantal\AppData\Roaming\Identities O43 - CFD: 24/12/2013 - 13:10:30 - [0,053] ----D C:\Users\chantal\AppData\Roaming\IObit O43 - CFD: 20/12/2013 - 16:54:18 - [0,055] ----D C:\Users\chantal\AppData\Roaming\Macromedia O43 - CFD: 13/02/2014 - 07:51:47 - [0,001] ----D C:\Users\chantal\AppData\Roaming\Mael O43 - CFD: 07/02/2014 - 17:06:17 - [0,004] ----D C:\Users\chantal\AppData\Roaming\MAGIX O43 - CFD: 20/12/2013 - 17:15:28 - [0] ----D C:\Users\chantal\AppData\Roaming\Malwarebytes O43 - CFD: 14/11/2013 - 08:15:49 - [0] ----D C:\Users\chantal\AppData\Roaming\Media Center Programs O43 - CFD: 21/01/2014 - 12:44:29 - [53,129] -S--D C:\Users\chantal\AppData\Roaming\Microsoft O43 - CFD: 28/01/2014 - 14:09:08 - [0] ----D C:\Users\chantal\AppData\Roaming\mkvtoolnix O43 - CFD: 07/02/2014 - 19:41:04 - [0,045] ----D C:\Users\chantal\AppData\Roaming\Nero O43 - CFD: 22/12/2013 - 19:41:11 - [1,549] ----D C:\Users\chantal\AppData\Roaming\Nokia O43 - CFD: 22/12/2013 - 19:41:13 - [0,032] ----D C:\Users\chantal\AppData\Roaming\Nokia Suite O43 - CFD: 05/01/2014 - 18:34:03 - [0,084] ----D C:\Users\chantal\AppData\Roaming\Obvious Idea O43 - CFD: 16/02/2014 - 09:24:35 - [0,032] ----D C:\Users\chantal\AppData\Roaming\ObviousIdea O43 - CFD: 22/12/2013 - 19:40:48 - [18,149] ----D C:\Users\chantal\AppData\Roaming\PC Suite O43 - CFD: 23/01/2014 - 19:23:20 - [7,896] ----D C:\Users\chantal\AppData\Roaming\proDAD O43 - CFD: 15/02/2014 - 09:42:53 - [0,009] ----D C:\Users\chantal\AppData\Roaming\PSpad O43 - CFD: 30/01/2014 - 16:36:02 - [0,006] ----D C:\Users\chantal\AppData\Roaming\qBittorrent =>P2P.BitTorrent O43 - CFD: 20/12/2013 - 17:39:19 - [0] ----D C:\Users\chantal\AppData\Roaming\QFX Software O43 - CFD: 23/12/2013 - 11:21:45 - [173,509] ----D C:\Users\chantal\AppData\Roaming\TuneUp Software O43 - CFD: 09/01/2014 - 15:17:35 - [0,611] ----D C:\Users\chantal\AppData\Roaming\vlc O43 - CFD: 21/12/2013 - 02:54:23 - [0] ----D C:\Users\chantal\AppData\Roaming\wam O43 - CFD: 21/12/2013 - 02:54:23 - [6,943] ----D C:\Users\chantal\AppData\Roaming\wam.04351C371E530C3762CBA45FA283ED972DCDEFB6.1 O43 - CFD: 20/12/2013 - 16:20:13 - [1,809] ----D C:\Users\chantal\AppData\Roaming\WinRAR O43 - CFD: 24/12/2013 - 10:38:13 - [0] ----D C:\Users\chantal\AppData\Roaming\YCanPDF O43 - CFD: 18/02/2014 - 15:43:34 - [0,338] ----D C:\Users\chantal\AppData\Roaming\ZHP =>.Nicolas Coolman O43 - CFD: 09/01/2014 - 12:09:01 - [0,177] ----D C:\Users\chantal\AppData\Local\Adobe O43 - CFD: 09/01/2014 - 15:17:31 - [13,622] ----D C:\Users\chantal\AppData\Local\adslTV O43 - CFD: 22/12/2013 - 00:37:04 - [0] -SH-D C:\Users\chantal\AppData\Local\Application Data O43 - CFD: 13/02/2014 - 07:45:59 - [0] ----D C:\Users\chantal\AppData\Local\Aspell O43 - CFD: 24/12/2013 - 08:11:25 - [0,003] ----D C:\Users\chantal\AppData\Local\Avg2014 O43 - CFD: 28/12/2013 - 14:51:24 - [0] ----D C:\Users\chantal\AppData\Local\ChessBase O43 - CFD: 14/02/2014 - 13:15:43 - [0,970] ----D C:\Users\chantal\AppData\Local\Diagnostics O43 - CFD: 14/02/2014 - 22:16:15 - [0,072] ----D C:\Users\chantal\AppData\Local\ElevatedDiagnostics O43 - CFD: 23/12/2013 - 10:58:34 - [6,013] ----D C:\Users\chantal\AppData\Local\eMule O43 - CFD: 11/02/2014 - 12:55:54 - [0,006] ----D C:\Users\chantal\AppData\Local\Google O43 - CFD: 22/12/2013 - 00:37:04 - [0] -SH-D C:\Users\chantal\AppData\Local\Historique O43 - CFD: 13/02/2014 - 07:53:07 - [0,003] ----D C:\Users\chantal\AppData\Local\Iceni O43 - CFD: 13/01/2014 - 13:27:52 - [-420,392] ----D C:\Users\chantal\AppData\Local\Microsoft O43 - CFD: 27/01/2014 - 10:39:28 - [0] ----D C:\Users\chantal\AppData\Local\Microsoft Help O43 - CFD: 21/12/2013 - 11:42:16 - [0,002] ----D C:\Users\chantal\AppData\Local\Microsoft Toolkit O43 - CFD: 22/12/2013 - 19:31:04 - [12,574] ----D C:\Users\chantal\AppData\Local\Nokia O43 - CFD: 22/12/2013 - 19:40:34 - [0,001] ----D C:\Users\chantal\AppData\Local\NokiaAccount O43 - CFD: 23/12/2013 - 14:01:26 - [0,018] ----D C:\Users\chantal\AppData\Local\O&O O43 - CFD: 11/02/2014 - 19:53:16 - [77,012] ----D C:\Users\chantal\AppData\Local\Packages O43 - CFD: 20/12/2013 - 16:12:39 - [0] ----D C:\Users\chantal\AppData\Local\Programs O43 - CFD: 30/01/2014 - 12:28:27 - [0,654] ----D C:\Users\chantal\AppData\Local\qBittorrent =>P2P.BitTorrent O43 - CFD: 09/01/2014 - 14:48:13 - [0,003] ----D C:\Users\chantal\AppData\Local\Readon_Technology O43 - CFD: 18/02/2014 - 15:43:18 - [18,754] ----D C:\Users\chantal\AppData\Local\Temp O43 - CFD: 22/12/2013 - 00:37:04 - [0] -SH-D C:\Users\chantal\AppData\Local\Temporary Internet Files O43 - CFD: 20/12/2013 - 22:42:37 - [0] ----D C:\Users\chantal\AppData\Local\Tracker Software O43 - CFD: 06/02/2014 - 09:54:38 - [0,187] ----D C:\Users\chantal\AppData\Local\VirtualStore O43 - CFD: 07/02/2014 - 17:06:16 - [0,113] ----D C:\Users\chantal\AppData\Local\Xara O43 - CFD: 22/08/2013 - 16:36:32 - [0,004] R---D C:\Users\chantal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility O43 - CFD: 22/08/2013 - 16:36:32 - [0,001] R---D C:\Users\chantal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories O43 - CFD: 17/02/2014 - 16:14:52 - [0] R---D C:\Users\chantal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools O43 - CFD: 26/12/2013 - 10:12:03 - [0,004] ----D C:\Users\chantal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory O43 - CFD: 22/08/2013 - 16:36:32 - [0] ----D C:\Users\chantal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance O43 - CFD: 30/01/2014 - 12:28:13 - [0,002] ----D C:\Users\chantal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\qBittorrent =>P2P.BitTorrent O43 - CFD: 17/02/2014 - 16:14:52 - [0] R---D C:\Users\chantal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup O43 - CFD: 22/12/2013 - 00:38:00 - [0,006] R---D C:\Users\chantal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools O43 - CFD: 22/12/2013 - 00:41:22 - [0,003] ----D C:\Users\chantal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR ~ Program Folder: 173 Scanned in 00mn 01s ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44) O44 - LFC:[MD5.F348B2D0983C91392632B4291C517AA4] - 06/02/2014 - 09:40:06 ---A- . (.Microsoft Corporation - Microsoft SmartScreen Filter.) -- C:\Windows\System32\ieapfltr.dll [817664] O44 - LFC:[MD5.22874047B810B5B174C68ACD7C0B6510] - 06/02/2014 - 09:55:46 ---A- . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll [1393664] O44 - LFC:[MD5.DB02F4D37E5F7F07A0D0F9FAA68249EE] - 06/02/2014 - 10:22:13 ---A- . (.Microsoft Corporation - Navigateur Internet.) -- C:\Windows\System32\ieframe.dll [13051392] O44 - LFC:[MD5.263B6E451526A90FF8B1CEC759F22956] - 06/02/2014 - 10:24:52 ---A- . (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\System32\wininet.dll [2334208] O44 - LFC:[MD5.83296DE8CFFEADA636DCC1AB2E3BF643] - 06/02/2014 - 10:50:32 ---A- . (.Microsoft Corporation - Panneau de configuration Internet.) -- C:\Windows\System32\inetcpl.cpl [2041856] O44 - LFC:[MD5.CDE728C8FB1D6E132CED44835FA44C87] - 06/02/2014 - 10:57:13 ---A- . (.Microsoft Corporation - Microsoft Feeds Manager.) -- C:\Windows\System32\msfeeds.dll [627200] O44 - LFC:[MD5.5922EEA922D3AD686342F866CAEE851F] - 06/02/2014 - 11:11:37 ---A- . (.Microsoft Corporation - Microsoft (R) JScript.) -- C:\Windows\System32\jscript9.dll [5768704] O44 - LFC:[MD5.1D1D7F52EC84294859642A4309FE648E] - 06/02/2014 - 11:17:15 ---A- . (.Microsoft Corporation - DLL de gestion d'utilisateur local et de co.) -- C:\Windows\System32\msrating.dll [195584] O44 - LFC:[MD5.27516B54E116D5EF8B0129B5C829A87C] - 06/02/2014 - 11:32:49 ---A- . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe [218624] O44 - LFC:[MD5.3906C9640406FC0FC00A324947C74893] - 06/02/2014 - 11:48:11 ---A- . (.Microsoft Corporation - Microsoft ® JScript Diagnostics.) -- C:\Windows\System32\jscript9diag.dll [708608] O44 - LFC:[MD5.E129D34089E70215B65EA611F802FA9A] - 06/02/2014 - 11:48:45 ---A- . (.Microsoft Corporation - IE ETW Collector Service.) -- C:\Windows\System32\ieetwcollector.exe [111616] O44 - LFC:[MD5.338415F2E9A188875B6E43B5269620B0] - 06/02/2014 - 11:49:03 ---A- . (.Microsoft Corporation - Outil d’installation sans assistance d’IE 7.) -- C:\Windows\System32\ieUnatt.exe [139264] O44 - LFC:[MD5.FD08F8BA2437A85F500EFFE3FD3158A6] - 06/02/2014 - 11:56:03 ---A- . (.Microsoft Corporation - Traitement de RunOnce complet avec interfac.) -- C:\Windows\System32\iernonce.dll [33792] O44 - LFC:[MD5.99ED8FBAFD325550D07A32664D9E3CC8] - 06/02/2014 - 11:57:16 ---A- . (.Microsoft Corporation - JScript Proxy Auto-Configuration.) -- C:\Windows\System32\jsproxy.dll [53760] O44 - LFC:[MD5.FCFAEDF0AA1A78A1875FDB798598408B] - 06/02/2014 - 12:06:47 ---A- . (.Microsoft Corporation - IE ETW Collector Proxy Stub Resources.) -- C:\Windows\System32\ieetwproxystub.dll [48640] O44 - LFC:[MD5.C1E2C16D58D76323800C3EE5E2C5095A] - 06/02/2014 - 12:07:39 ---A- . (.Microsoft Corporation - IOD Version Map.) -- C:\Windows\System32\iesetup.dll [66048] O44 - LFC:[MD5.6300AD525D639CECBB3D144B6D7B30F9] - 06/02/2014 - 12:12:09 ---A- . (.Microsoft Corporation - Utilitaire à l’exécution pour Internet Expl.) -- C:\Windows\System32\iertutil.dll [2765824] O44 - LFC:[MD5.E77092C38028EB0A5C461B3436E0A6D5] - 06/02/2014 - 12:30:12 ---A- . (.Microsoft Corporation - Ressources du service Collecteur ETW d’IE.) -- C:\Windows\System32\ieetwcollectorres.dll [4096] O44 - LFC:[MD5.94C59DD02BC7EA0E421055B9946CA861] - 06/02/2014 - 12:30:46 ---A- . (.Microsoft Corporation - Microsoft® MSHTML Typelib.) -- C:\Windows\System32\mshtml.tlb [2724864] O44 - LFC:[MD5.D016F5092E4FFC41147E8555A71D2DDE] - 06/02/2014 - 13:16:01 ---A- . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll [23170048] O44 - LFC:[MD5.C0BA352412C002730831E83E69285BB6] - 09/02/2014 - 20:17:26 ---A- . (.Glarysoft Ltd - Boot Defrag Driver.) -- C:\Windows\System32\Drivers\BootDefragDriver.sys [17088] O44 - LFC:[MD5.BE94090FCBB95B6F22E952D27BD2610E] - 12/02/2014 - 10:06:01 ---A- . (.Microsoft Corporation - Client Gestion des droits Windows.) -- C:\Windows\System32\msdrm.dll [570880] O44 - LFC:[MD5.D13EE1D0B33D2B19C048EFA53DD41A2B] - 12/02/2014 - 10:06:04 ---A- . (.Microsoft Corporation - DLL du client API BASE Windows NT.) -- C:\Windows\System32\KernelBase.dll [1113040] O44 - LFC:[MD5.AC7C39F7A866BF81103042244CE85827] - 12/02/2014 - 10:06:05 ---A- . (.Microsoft Corporation - MSXML 3.0.) -- C:\Windows\System32\msxml3.dll [2152448] O44 - LFC:[MD5.6F531F98B8601A9E7A93F8FEC393E2D1] - 12/02/2014 - 10:06:05 ---A- . (.Microsoft Corporation - Program Compatibility Assistant User Interf.) -- C:\Windows\System32\pcaui.exe [18944] O44 - LFC:[MD5.22B4875CBDFA96BEF911F5A79FFA56EA] - 12/02/2014 - 10:06:06 ---A- . (.Microsoft Corporation - Microsoft ® VBScript.) -- C:\Windows\System32\vbscript.dll [548864] O44 - LFC:[MD5.389C4E97E3A498159B625A7A13EA4560] - 12/02/2014 - 10:06:07 ---A- . (.Microsoft Corporation - Direct3D 10 Rasterizer.) -- C:\Windows\System32\d3d10warp.dll [2397184] O44 - LFC:[MD5.053472337FDD116BD010C88DB0C34DF1] - 12/02/2014 - 10:06:08 ---A- . (.Microsoft Corporation - Bibliothèque Microsoft D2D.) -- C:\Windows\System32\d2d1.dll [4604416] O44 - LFC:[MD5.2100B28C34C4FCE916A4A61F58E31198] - 12/02/2014 - 10:06:26 ---A- . (...) -- C:\Windows\System32\connectedsearch-results.searchconnector-ms [9701] O44 - LFC:[MD5.30D839DEBD6B0E89D13B9259C39B3FFA] - 12/02/2014 - 10:06:26 ---A- . (.Microsoft Corporation - Système de propriétés Microsoft.) -- C:\Windows\System32\propsys.dll [1462216] O44 - LFC:[MD5.A9154084EBC2A190943548AE4275A0E9] - 12/02/2014 - 10:06:27 ---A- . (.Microsoft Corporation - SearchFolder.) -- C:\Windows\System32\SearchFolder.dll [1105408] O44 - LFC:[MD5.5BD47B7C7DF76203FD639F2568A8C7B7] - 12/02/2014 - 10:06:29 ---A- . (.Microsoft Corporation - TWINUI.) -- C:\Windows\System32\twinui.dll [13209088] O44 - LFC:[MD5.570444FD34EE07261E22536122ECD720] - 12/02/2014 - 10:06:30 ---A- . (.Microsoft Corporation - Windows.UI.Search.) -- C:\Windows\System32\Windows.UI.Search.dll [7416832] O44 - LFC:[MD5.41BD327A7518C4102969FCEE8F3D5030] - 12/02/2014 - 10:06:38 ---A- . (.Microsoft Corporation - Extension de l’interpréteur de commandes Mi.) -- C:\Windows\System32\SkyDriveShell.dll [121344] O44 - LFC:[MD5.5A9895295C7C6174C73496BD06B2E288] - 12/02/2014 - 10:06:39 ---A- . (.Microsoft Corporation - SkyDrive Sync Engine Host.) -- C:\Windows\System32\SkyDrive.exe [870912] O44 - LFC:[MD5.5C6F6CC5C1395A8B5864713CD3F7F329] - 12/02/2014 - 10:06:39 ---A- . (.Microsoft Corporation - Telemetry Library for the SkyDrive client.) -- C:\Windows\System32\SkyDriveTelemetry.dll [720384] O44 - LFC:[MD5.1968E2E5143D2EB964F836BA19A51104] - 12/02/2014 - 10:06:40 ---A- . (.Microsoft Corporation - ActiveX Interface Marshaling Library.) -- C:\Windows\System32\actxprxy.dll [2804224] O44 - LFC:[MD5.F2629AF810E939672173CB17ECAC1667] - 12/02/2014 - 10:06:40 ---A- . (.Microsoft Corporation - Microsoft Windows MRM.) -- C:\Windows\System32\MrmCoreR.dll [919040] O44 - LFC:[MD5.F67102E9791A5B80070B30ADF1159A3C] - 12/02/2014 - 10:06:41 ---A- . (.Microsoft Corporation - Microsoft SkyDrive Sync Engine.) -- C:\Windows\System32\SyncEngine.dll [4217344] O44 - LFC:[MD5.BBB9A31169B4969169ADE608231E2985] - 12/02/2014 - 10:06:41 ---A- . (.Microsoft Corporation - Windows Services Instrumentation Module.) -- C:\Windows\System32\winbici.dll [115712] O44 - LFC:[MD5.44FE8331D96E0C975B5AD76E19F4A3CC] - 12/02/2014 - 10:09:23 ---A- . (.Microsoft Corporation - Outil de suppression de logiciels malveilla.) -- C:\Windows\System32\MRT.exe [88567024] O44 - LFC:[MD5.E49B328C2EE511EB4A6CDCAAA9FA1DD1] - 13/02/2014 - 07:46:16 ---A- . (.ActMask - http://www.all2pdf.com - Printer Tools.) -- C:\Windows\System32\PrtTools.exe [429568] O44 - LFC:[MD5.6BB771F278D8219BD8A5E67D31902FDE] - 13/02/2014 - 07:46:16 ---A- . (.ActMask Co.,Ltd - HTTP://WWW.ALL2PDF.COM - Printer SDK Client.) -- C:\Windows\System32\PrtClient.exe [1175552] O44 - LFC:[MD5.CA9BCB32447711C637ABD3A513826C65] - 13/02/2014 - 07:46:16 ---A- . (.ActMask Co.,Ltd - HTTP://WWW.ALL2PDF.COM - Printer SDK Configuration.) -- C:\Windows\System32\SetupDrv.exe [828416] O44 - LFC:[MD5.4A05D0F2B8D1D3FC717091B9FB6A012D] - 13/02/2014 - 07:46:17 ---A- . (...) -- C:\Windows\System32\PrintLog.exe [691200] O44 - LFC:[MD5.E0FFEFB6B353353AA2A19321C9188AEC] - 13/02/2014 - 07:46:17 ---A- . (.ActMask Co.,Ltd - HTTP://WWW.ALL2PDF.COM - SetPrinter.) -- C:\Windows\System32\SetPrinter.exe [398848] O44 - LFC:[MD5.EA36954D2DE1731C32638A4CDC4EE3AA] - 13/02/2014 - 07:46:17 ---A- . (.ActMask Co.,Ltd - http://www.all2pdf.com - PrtPass.) -- C:\Windows\System32\PrtPass.exe [526848] O44 - LFC:[MD5.E8C71B5EB3B6276D30CA5148A41928AC] - 13/02/2014 - 07:46:29 ---A- . (.ActMask Co.,Ltd - ActMask Publisher.) -- C:\Windows\System32\ActPub.exe [369152] O44 - LFC:[MD5.39A0B403468B256E8DC64B2A3FEBD9CC] - 13/02/2014 - 07:46:34 ---A- . (.ActMask Co.,Ltd - HTTP://WWW.ALL2PDF.COM - PrintCtrl 64bit.) -- C:\Windows\System32\PrintCtrl.exe [121856] O44 - LFC:[MD5.3CA8BCA68E716AD2BBE29337B9701E33] - 13/02/2014 - 07:46:34 ---A- . (.ActMask Co.,Ltd - http://www.all2pdf.com - PrintDisp.) -- C:\Windows\System32\PrintDisp.exe [870400] O44 - LFC:[MD5.324F9D3EEEE321EA60641362FE94D188] - 13/02/2014 - 09:11:19 ---A- . (.Microsoft Corporation - Windows Wordpad Application.) -- C:\Windows\System32\wordpad.exe [4561920] O44 - LFC:[MD5.D956C3D6ECE65A10A1018A72E08C4973] - 13/02/2014 - 12:32:10 ---A- . (.Waves Audio Ltd. - MaxxAudio APO Shell.) -- C:\Windows\System32\MaxxAudioAPOShell64.dll [1013504] O44 - LFC:[MD5.E15522E4A9CF2F48395F5548167E8895] - 13/02/2014 - 12:32:10 ---A- . (.Waves Audio Ltd. - MaxxAudio APO.) -- C:\Windows\System32\MaxxAudioAPO5064.dll [1345280] O44 - LFC:[MD5.1A6C91215105B6B6C48B0F531E1CD8FA] - 13/02/2014 - 12:32:10 ---A- . (.Waves Audio Ltd. - Pas de description.) -- C:\Windows\System32\MaxxAudioEQ64.dll [2036992] O44 - LFC:[MD5.DD8A18C147ACD7799D84FD4A4E1C4064] - 13/02/2014 - 12:32:10 ---A- . (.Waves Audio Ltd. - Waves Realtek App.) -- C:\Windows\System32\MaxxAudioRealtek264.dll [1922304] O44 - LFC:[MD5.61D45CFD4C0694D318D8160857CF4DDA] - 13/02/2014 - 12:32:11 ---A- . (.Waves Audio Ltd. - Pas de description.) -- C:\Windows\System32\MaxxAudioRealtek64.dll [14153984] O44 - LFC:[MD5.0B8F799CDEFF2A5C4ADFA86CC22323FA] - 13/02/2014 - 12:32:13 ---A- . (.Waves Audio Ltd. - Pas de description.) -- C:\Windows\System32\MaxxAudioVnN64.dll [3899648] O44 - LFC:[MD5.32D0421AE8550172EEFC6301685FED1C] - 13/02/2014 - 12:32:15 ---A- . (.Nahimic Inc - Nahimic APO Settings Communication Dll.) -- C:\Windows\System32\NAHIMICAPOSettingsIPC.dll [912184] O44 - LFC:[MD5.34775CBB1FAA0693C61994082B4C55D9] - 13/02/2014 - 12:32:15 ---A- . (.Nahimic Inc - Nahimic APO lfx dll.) -- C:\Windows\System32\NAHIMICAPOlfx.dll [5753112] O44 - LFC:[MD5.8AD236A88D274D688105C23679723581] - 13/02/2014 - 12:32:16 ---A- . (...) -- C:\Windows\System32\Drivers\RTAIODAT.DAT [693385] O44 - LFC:[MD5.22CAB76AF907B82664FEDE6A653ABA2A] - 13/02/2014 - 12:32:16 ---A- . (.Realtek Semiconductor Corp. - RTCOMDLL Module.) -- C:\Windows\System32\RTCOM64.dll [1286872] O44 - LFC:[MD5.43E5AC698CDB42A7823106FF22D14F26] - 13/02/2014 - 12:32:16 ---A- . (.Realtek Semiconductor Corp. - Realtek HD Audio Coinstaller Resource.) -- C:\Windows\System32\RCoRes64.dat [43342848] O44 - LFC:[MD5.A501B35471810628A9263E966FBCB362] - 13/02/2014 - 12:32:16 ---A- . (.Realtek Semiconductor Corp. - Realtek HD Audio Coinstaller.) -- C:\Windows\System32\RCoInstII64.dll [153304] O44 - LFC:[MD5.2A7224C314131592497D02A57D867218] - 13/02/2014 - 12:32:18 ---A- . (.Realtek Semiconductor Corp. - HDA driver COM file.) -- C:\Windows\System32\RtDataProc64.dll [618200] O44 - LFC:[MD5.6090C634C996CBA3DEB6A4A18ED91345] - 13/02/2014 - 12:32:19 ---A- . (.Realtek Semiconductor Corp. - Realtek(r) LFX/GFX DSP component.) -- C:\Windows\System32\RtkAPO64.dll [2588888] O44 - LFC:[MD5.69976169745EDFB3225D9ABEB5E91155] - 13/02/2014 - 12:32:20 ---A- . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\Drivers\RTKVHD64.sys [3771352] O44 - LFC:[MD5.F0D94C5786977B4C44A914683DEBAA9A] - 13/02/2014 - 12:32:21 ---A- . (.Realtek Semiconductor Corp. - Realtek HD Audio Control Panel.) -- C:\Windows\System32\RTSnMg64.cpl [1958616] O44 - LFC:[MD5.0E2C5B7C842024F50B1795A980C4D0FF] - 13/02/2014 - 12:32:21 ---A- . (.Realtek Semiconductor Corp. - Realtek LFX/GFX DSP UI component for Window.) -- C:\Windows\System32\RtPgEx64.dll [2810072] O44 - LFC:[MD5.858BC9345F2BD44140C4B2F8EED8EB42] - 13/02/2014 - 12:32:22 ---A- . (...) -- C:\Windows\System32\Drivers\rtvienna.dat [5681196] O44 - LFC:[MD5.0C089E47D8BD3996742F0939DE7E2D48] - 13/02/2014 - 12:32:25 ---A- . (.Waves Audio Ltd. - General Library for Plug-Ins.) -- C:\Windows\System32\WavesGUILib64.dll [2103040] O44 - LFC:[MD5.0B9FBEC5714523FF76DDFEB320FE2DF2] - 17/02/2014 - 13:09:44 ---A- . (.Microsoft Corporation - DLL client de périphériques d’images fixes.) -- C:\Windows\System32\sti.dll [303616] O44 - LFC:[MD5.66F214C9E446407D78048681394820A6] - 17/02/2014 - 13:09:44 ---A- . (.Microsoft Corporation - Exchange ActiveSync Windows Runtime DLL.) -- C:\Windows\System32\easwrt.dll [178176] O44 - LFC:[MD5.7C5C9E65AC6579CA552A9CF9BB7F4845] - 17/02/2014 - 13:09:44 ---A- . (.Microsoft Corporation - Remote Desktop Services Client for Microsof.) -- C:\Windows\System32\rdvidcrl.dll [1057280] O44 - LFC:[MD5.3D136E8D4C0407D9C40FD8BDD649B587] - 17/02/2014 - 13:09:45 ---A- . (.Microsoft Corporation - DLL Couche NT.) -- C:\Windows\System32\ntdll.dll [1720560] O44 - LFC:[MD5.A0D3749BB1BC942C7D21C4D99E79A615] - 17/02/2014 - 13:09:45 ---A- . (.Microsoft Corporation - Exchange ActiveSync Invoker.) -- C:\Windows\System32\easinvoker.exe [131160] O44 - LFC:[MD5.C8ACFF60C553E63949A79DC370B516E4] - 17/02/2014 - 13:09:45 ---A- . (.Microsoft Corporation - Moteur de réinitialisation Microsoft Window.) -- C:\Windows\System32\reseteng.dll [947712] O44 - LFC:[MD5.A1A5E79C0D1352AFDC08328A623DA051] - 17/02/2014 - 13:09:45 ---A- . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) -- C:\Windows\System32\Drivers\rdbss.sys [408576] O44 - LFC:[MD5.D03BF756457B6A1EB305B26046BB9B4D] - 17/02/2014 - 13:09:46 ---A- . (.Microsoft Corporation - DLL de l’agent de récupération Microsoft Wi.) -- C:\Windows\System32\ReAgent.dll [914944] O44 - LFC:[MD5.E287F157F7A0011D93179C64EF8ADCF2] - 17/02/2014 - 13:09:46 ---A- . (.Microsoft Corporation - DLL du service PNRP.) -- C:\Windows\System32\pnrpsvc.dll [376320] O44 - LFC:[MD5.22EDC0DE06A0272DFA4C7B47B5D8E377] - 17/02/2014 - 13:09:46 ---A- . (.Microsoft Corporation - DirectX Graphics MMS.) -- C:\Windows\System32\Drivers\dxgmms1.sys [382808] O44 - LFC:[MD5.847CFF96ACB575CE73C0E2E86C6BA993] - 17/02/2014 - 13:09:46 ---A- . (.Microsoft Corporation - Fonctions de vérification de l’orthographe.) -- C:\Windows\System32\MsSpellCheckingFacility.dll [842752] O44 - LFC:[MD5.1FCA4E287F0ED13BF037A484AA2FE3B1] - 17/02/2014 - 13:09:46 ---A- . (.Microsoft Corporation - Hardware Abstraction Layer DLL.) -- C:\Windows\System32\hal.dll [419160] O44 - LFC:[MD5.E80700EB046D0B82B694C98CF7231C08] - 17/02/2014 - 13:09:46 ---A- . (.Microsoft Corporation - Media Foundation Simple Video Renderer DLL.) -- C:\Windows\System32\mfsvr.dll [481944] O44 - LFC:[MD5.D22EB844EB57D016CC34178AC86456DF] - 17/02/2014 - 13:09:46 ---A- . (.Microsoft Corporation - Pilote XHCI USB.) -- C:\Windows\System32\Drivers\USBXHCI.SYS [325464] O44 - LFC:[MD5.A95838FFFAEAA7500263D491575F7E0C] - 17/02/2014 - 13:09:46 ---A- . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [1214976] O44 - LFC:[MD5.13B160C1913F012BD1615EB1398D3779] - 17/02/2014 - 13:09:47 ---A- . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys [1530712] O44 - LFC:[MD5.E069B63DAD920D231FA8A141DFF43A8C] - 17/02/2014 - 13:09:47 ---A- . (.Microsoft Corporation - Media Foundation Media Engine DLL.) -- C:\Windows\System32\MFMediaEngine.dll [960512] O44 - LFC:[MD5.68085A085DE8E3540EE8E02CAE575B2E] - 17/02/2014 - 13:09:49 ---A- . (...) -- C:\Windows\System32\OEMLicense.dll [138240] O44 - LFC:[MD5.7561B559B8431C92A73B1EF1756DC6EB] - 17/02/2014 - 13:09:49 ---A- . (.Microsoft Corporation - Client ActiveX des services Bureau à distan.) -- C:\Windows\System32\mstscax.dll [6640640] O44 - LFC:[MD5.B88A70259DF2927787C0B766DD4CFB5C] - 17/02/2014 - 13:09:49 ---A- . (.Microsoft Corporation - Client de gestion de licences du Windows St.) -- C:\Windows\System32\WSClient.dll [206336] O44 - LFC:[MD5.04B5ADB034D17585D3BCFC6DE5CADFF8] - 17/02/2014 - 13:09:51 ---A- . (.Microsoft Corporation - Windows.UI.Xaml dll.) -- C:\Windows\System32\Windows.UI.Xaml.dll [18576384] O44 - LFC:[MD5.FF73B88BA206966BD228320F664D4D92] - 17/02/2014 - 13:09:55 ---A- . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll [21199256] O44 - LFC:[MD5.1D8F8BE07D2B06C32ADB4B08F0F2A357] - 17/02/2014 - 13:09:58 ---A- . (.Microsoft Corporation - Synchronisation principale des paramètres.) -- C:\Windows\System32\SettingSyncCore.dll [749056] O44 - LFC:[MD5.43D0F8E593ABD37B5BC9573EDD71EFEB] - 17/02/2014 - 13:09:59 ---A- . (.Microsoft Corporation - Host Process for Setting Synchronization.) -- C:\Windows\System32\SettingSyncHost.exe [628736] O44 - LFC:[MD5.3022CFC7840D12C51F2A061EC7F46383] - 17/02/2014 - 13:09:59 ---A- . (.Microsoft Corporation - Pilote Win32 multi-utilisateurs.) -- C:\Windows\System32\win32k.sys [4190720] O44 - LFC:[MD5.968FB3BA8E7DF0933A1CF593BD503F4A] - 17/02/2014 - 13:09:59 ---A- . (.Microsoft Corporation - XPS to GDI Converter.) -- C:\Windows\System32\XpsGdiConverter.dll [461312] O44 - LFC:[MD5.9BA7441FD200BC99FC9967B20EE4763C] - 17/02/2014 - 16:13:13 ---A- . (...) -- C:\Windows\System32\FNTCACHE.DAT [517480] O44 - LFC:[MD5.4F1D3D5E732BD3C6F507F01257C4374E] - 18/02/2014 - 15:29:34 ---A- . (...) -- C:\Windows\PFRO.log [2996] O44 - LFC:[MD5.A01AA8DF022D221D82D39F4E19F60A43] - 18/02/2014 - 15:31:40 -S-A- . (...) -- C:\Windows\bootstat.dat [67584] O44 - LFC:[MD5.BCFF5325DB678D7F5EAA5FD8370EA801] - 18/02/2014 - 15:33:10 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1531663] O44 - LFC:[MD5.538AB5366E6818A0EE6472694990C046] - 18/02/2014 - 15:37:20 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [1824010] O44 - LFC:[MD5.5BE4FF0AC125D33C3A782C5A96CEDB4D] - 18/02/2014 - 15:37:20 ---A- . (...) -- C:\Windows\System32\perfc009.dat [135592] O44 - LFC:[MD5.FCD1EAED5AF1227FF40DDE76AD3A6ADC] - 18/02/2014 - 15:37:20 ---A- . (...) -- C:\Windows\System32\perfc00C.dat [159412] O44 - LFC:[MD5.27E50249C578F84B288BEC2BE47D4573] - 18/02/2014 - 15:37:20 ---A- . (...) -- C:\Windows\System32\perfh009.dat [722476] O44 - LFC:[MD5.E0A04F86DAA66DECB8A4CD2BCD8D9F54] - 18/02/2014 - 15:37:20 ---A- . (...) -- C:\Windows\System32\perfh00C.dat [812350] O44 - LFC:[MD5.990A35B16FEB8E7927F0F37D729EC408] - 18/02/2014 - 15:38:49 ---A- . (...) -- C:\PhysicalDisk0_MBR.bin [512] ~ Files: 106 Scanned in 00mn 12s ---\\ Derniers fichiers créés dans Windows Prefetcher (O45) O45 - LFCP:[MD5.1B86E67C2084EA2A1688988E5B4304BE] - 07/02/2014 - 19:53:21 ---A- - C:\Windows\Prefetch\NEROLAUNCHER.EXE-69A2C4C8.pf O45 - LFCP:[MD5.ABBDE1C6C27A20FD740B82A92795C5B2] - 08/02/2014 - 09:25:01 ---A- - C:\Windows\Prefetch\NERO.EXE-9CE45F1B.pf O45 - LFCP:[MD5.6AB553F245986781ACD139637B4B68D0] - 08/02/2014 - 18:18:36 ---A- - C:\Windows\Prefetch\NOKIASUITE.EXE-6080AF1F.pf O45 - LFCP:[MD5.973C87E06C656B43AFF8777585509344] - 09/02/2014 - 10:18:59 ---A- - C:\Windows\Prefetch\DFRGUI.EXE-C853DD35.pf O45 - LFCP:[MD5.1C7DE5AADDC11CA833D1CDE7395BCB51] - 09/02/2014 - 10:20:31 ---A- - C:\Windows\Prefetch\OODEFRAG17PROFESSIONAL64ENU.E-04A41AD8.pf O45 - LFCP:[MD5.6BF9C94E8C306A852CC6ABF722060770] - 10/02/2014 - 14:36:15 ---A- - C:\Windows\Prefetch\GIF MOVIE GEAR 4.EXE-353F2E7A.pf O45 - LFCP:[MD5.4CE770DFB13BBA38390612FBFFB86ACF] - 10/02/2014 - 19:10:05 ---A- - C:\Windows\Prefetch\GIMP-2.6.7-I686-SETUP.EXE-51E62873.pf O45 - LFCP:[MD5.31E983F2806557E6D4FA39AF3C07033D] - 11/02/2014 - 05:57:39 ---A- - C:\Windows\Prefetch\GIMP-2.6.EXE-7EF1C2C4.pf O45 - LFCP:[MD5.A59E6D7BB4785CA716D71A4C7202A042] - 11/02/2014 - 05:58:29 ---A- - C:\Windows\Prefetch\FILE-JPEG.EXE-E85C7641.pf O45 - LFCP:[MD5.B03A6A7A497321413CCB66D398EED465] - 11/02/2014 - 05:59:21 ---A- - C:\Windows\Prefetch\ANIMATION-PLAY.EXE-D5EEEB41.pf O45 - LFCP:[MD5.37B9680ED7E277A646BA806D600014AC] - 11/02/2014 - 06:00:33 ---A- - C:\Windows\Prefetch\FILE-GIF-SAVE.EXE-3F33FE25.pf O45 - LFCP:[MD5.DF20AAF71AA40BAA91F2AF8DB502516B] - 12/02/2014 - 08:18:23 ---A- - C:\Windows\Prefetch\DISKDEFRAGPRO.EXE-A6A9A68D.pf O45 - LFCP:[MD5.A96D2AF38E0CBFC5B33FC7CA26F27F48] - 12/02/2014 - 08:55:43 ---A- - C:\Windows\Prefetch\DFSETUP217.EXE-43851AD4.pf O45 - LFCP:[MD5.66E7E9F651BC8BE70656F1692260AC1D] - 13/02/2014 - 07:46:26 ---A- - C:\Windows\Prefetch\DEFFORMS.TMP-BDC5BBE2.pf O45 - LFCP:[MD5.F1A5A44F30F8AF56900ADDB67D78BB5B] - 13/02/2014 - 07:46:38 ---A- - C:\Windows\Prefetch\PRTSETUPX.TMP-3FBB82D5.pf O45 - LFCP:[MD5.D3CB1D7A07D5FF09A8E52028C68300E4] - 13/02/2014 - 07:46:46 ---A- - C:\Windows\Prefetch\DEFFORMS.TMP-CA37FC1F.pf O45 - LFCP:[MD5.3DFC9DE8F032B4B85B076B870E0195B9] - 13/02/2014 - 07:48:47 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-EA533AAF.pf O45 - LFCP:[MD5.7F97E0C1CE40A2145A5130549A5CA16B] - 13/02/2014 - 08:10:33 ---A- - C:\Windows\Prefetch\HXD.EXE-C6278B01.pf O45 - LFCP:[MD5.C690F0E13C4CDD94E2B5983A404021ED] - 13/02/2014 - 08:24:09 ---A- - C:\Windows\Prefetch\PHOTOSAPP.EXE-0B65831E.pf O45 - LFCP:[MD5.687C1F11330DC028397B55702823DCAD] - 13/02/2014 - 08:40:44 ---A- - C:\Windows\Prefetch\INFIX.EXE-B0499072.pf O45 - LFCP:[MD5.18C8AAA45EA9AB31E322624DE58ACA37] - 13/02/2014 - 08:43:02 ---A- - C:\Windows\Prefetch\UNINS000.EXE-26880626.pf O45 - LFCP:[MD5.029ED131F09760F2D6918DD8ACE65AD3] - 13/02/2014 - 08:43:03 ---A- - C:\Windows\Prefetch\_IU14D2N.TMP-3122323E.pf O45 - LFCP:[MD5.26AF9692AC285CC7CE6174C86441672E] - 13/02/2014 - 08:43:04 ---A- - C:\Windows\Prefetch\INSTPRTX.EXE-6FC040DC.pf O45 - LFCP:[MD5.632585C4AB3A5828B4F83E7081164092] - 13/02/2014 - 09:11:35 ---A- - C:\Windows\Prefetch\PRTSETUPX.TMP-F1D7EC62.pf O45 - LFCP:[MD5.72D583F3C2F0465A255704A3F9D94092] - 13/02/2014 - 09:19:21 ---A- - C:\Windows\Prefetch\INFIX.EXE-F6BB2807.pf O45 - LFCP:[MD5.65848B7ADC4BC1A34EB2FB7236E0635D] - 13/02/2014 - 09:23:27 ---A- - C:\Windows\Prefetch\UNINS000.EXE-224CD5EA.pf O45 - LFCP:[MD5.1EC925765633542F0AD135F677FE4088] - 13/02/2014 - 09:23:28 ---A- - C:\Windows\Prefetch\PRTSETUPX.TMP-60D25412.pf O45 - LFCP:[MD5.4468974F7863CC0BD1F782172A8A73F7] - 13/02/2014 - 09:23:28 ---A- - C:\Windows\Prefetch\UNINS000.EXE-3B33C0CE.pf O45 - LFCP:[MD5.939FEABF525F692EF672A44E10EF5181] - 13/02/2014 - 09:33:46 ---A- - C:\Windows\Prefetch\INFIXSETUP.TMP-99F0BD72.pf O45 - LFCP:[MD5.1921741BB236D6F0FF7C161B29D8BA2F] - 13/02/2014 - 09:34:03 ---A- - C:\Windows\Prefetch\INFIXSETUP.TMP-82DD7EAD.pf O45 - LFCP:[MD5.0D0077F51D19DF3552F5DDF66772D2E4] - 13/02/2014 - 09:35:16 ---A- - C:\Windows\Prefetch\INSTPRTX.EXE-9A3CFADB.pf O45 - LFCP:[MD5.30487D8EF77B5F5F7F19E62551D7BEC2] - 13/02/2014 - 09:35:29 ---A- - C:\Windows\Prefetch\PRINTERPATCH.TMP-66970EA5.pf O45 - LFCP:[MD5.2083C2E2E12099CCBE44783014A80D85] - 13/02/2014 - 09:36:14 ---A- - C:\Windows\Prefetch\PCAUI.EXE-3E82C312.pf O45 - LFCP:[MD5.19CA03781E76614E009504E68C340FE4] - 13/02/2014 - 11:40:57 ---A- - C:\Windows\Prefetch\QUARANTI.EXE-2816C4AA.pf O45 - LFCP:[MD5.571F492C63E00987BF3A36AC6F8DAF4C] - 13/02/2014 - 11:56:33 ---A- - C:\Windows\Prefetch\QBITTORRENT.EXE-8A9223F5.pf =>P2P.BitTorrent O45 - LFCP:[MD5.AF04F146C56BC16BB37A1A27FA09B197] - 13/02/2014 - 12:47:47 ---A- - C:\Windows\Prefetch\WINAMAX POKER.EXE-0AB59F05.pf O45 - LFCP:[MD5.A7A75F2F3A9B79EB02C8CAC1FE77F6E3] - 13/02/2014 - 15:05:48 ---A- - C:\Windows\Prefetch\NGENTASK.EXE-0D27B71F.pf O45 - LFCP:[MD5.6B6A1DD6B2F3DA689F6756DC97C4E5AA] - 14/02/2014 - 10:05:32 ---A- - C:\Windows\Prefetch\PROMOTE.EXE-EF309B08.pf O45 - LFCP:[MD5.7C34B2E3D52CBDD608D3374B2EABE4A1] - 14/02/2014 - 11:42:38 ---A- - C:\Windows\Prefetch\UNINSTALL.EXE-37E0AE54.pf O45 - LFCP:[MD5.19BB90409659869A37C92E3C760D1A22] - 14/02/2014 - 11:42:41 ---A- - C:\Windows\Prefetch\FILEZILLA_3.7.4.1_WIN32-SETUP-5E111987.pf O45 - LFCP:[MD5.FC65415A2C886F74E27EE7A90B89EC1A] - 14/02/2014 - 12:08:50 ---A- - C:\Windows\Prefetch\X3D.EXE-F988D05C.pf O45 - LFCP:[MD5.08B2F5FD90C6CEECF744B485984B42E2] - 14/02/2014 - 13:13:40 ---A- - C:\Windows\Prefetch\HELPPANE.EXE-FEDC965B.pf O45 - LFCP:[MD5.5CFE6DF7C94D0474E3007017605C3124] - 14/02/2014 - 16:53:44 ---A- - C:\Windows\Prefetch\PfPre_67525db2.db O45 - LFCP:[MD5.732CC1DDC108CD49E6D208765910D7FC] - 14/02/2014 - 17:04:30 ---A- - C:\Windows\Prefetch\LAUNCHTM.EXE-56CAE1A4.pf O45 - LFCP:[MD5.5E9E963BA8950CA49A58A0D6CDA46DD0] - 14/02/2014 - 17:04:32 ---A- - C:\Windows\Prefetch\TASKMGR.EXE-5F5F473D.pf O45 - LFCP:[MD5.4F5254EDCF8D5D8773FABD1A9DC13978] - 14/02/2014 - 17:16:07 ---A- - C:\Windows\Prefetch\AgCx_SC2.db O45 - LFCP:[MD5.CFCDB832B45879D3AFFC1E3AFA309AFC] - 14/02/2014 - 22:15:41 ---A- - C:\Windows\Prefetch\MSDT.EXE-09841468.pf O45 - LFCP:[MD5.721B3EF8AF99928F489A87752140FC05] - 14/02/2014 - 22:33:48 ---A- - C:\Windows\Prefetch\DISKDOCTOR.EXE-0576CD3B.pf O45 - LFCP:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 14/11/2141 - 11:22:52 ----D - C:\Windows\Prefetch\ReadyBoot O45 - LFCP:[MD5.444A7F5DFDC6625EED217CE4C27DAA60] - 15/02/2014 - 09:47:10 ---A- - C:\Windows\Prefetch\RELPOST.EXE-D1F65AB5.pf O45 - LFCP:[MD5.AD81F1C283AFBF5C42EA01BEABA6F962] - 15/02/2014 - 09:49:16 ---A- - C:\Windows\Prefetch\INTEGRATOR.EXE-FB454F80.pf O45 - LFCP:[MD5.C7B5C7451307B6269AFA7481848F50E5] - 15/02/2014 - 09:52:28 ---A- - C:\Windows\Prefetch\PERFORMANCEOPTIMIZER.EXE-A8E428FE.pf O45 - LFCP:[MD5.EFA43243F62D7A6A689D5A18014197DB] - 15/02/2014 - 09:54:41 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-ABDA138A.pf O45 - LFCP:[MD5.1A01BE4D14B4C90124D4CC0BD313914C] - 15/02/2014 - 10:12:26 ---A- - C:\Windows\Prefetch\FORMATFACTORY.EXE-778CAF8C.pf O45 - LFCP:[MD5.F8C3D63C3309CF18759EE2515F06BB58] - 15/02/2014 - 10:14:57 ---A- - C:\Windows\Prefetch\ZEDTV.EXE-DC2C3DFC.pf O45 - LFCP:[MD5.7A662AC77FD2222C085FE3EE6A56F56A] - 15/02/2014 - 11:31:42 ---A- - C:\Windows\Prefetch\MKV-VIDEO-CONVERTER.TMP-D009A12F.pf O45 - LFCP:[MD5.195AFDCE74A26DFF6C0A9D390A6BAA8E] - 15/02/2014 - 11:32:05 ---A- - C:\Windows\Prefetch\MKV-VIDEO-CONVERTER.TMP-25AE2D04.pf O45 - LFCP:[MD5.4796F462466AB96F58DB6E1DCEAEF753] - 15/02/2014 - 12:22:11 ---A- - C:\Windows\Prefetch\VIRTUALDUB.EXE-108E4960.pf O45 - LFCP:[MD5.F5BD5F97B8830AB15D82BA35167DA1A1] - 15/02/2014 - 12:30:35 ---A- - C:\Windows\Prefetch\ADWCLEANER (1).EXE-F5FBAF1B.pf O45 - LFCP:[MD5.BB95CF60B05455C0BFA81C25E4441064] - 15/02/2014 - 13:03:00 ---A- - C:\Windows\Prefetch\MBAM.EXE-80210E2F.pf O45 - LFCP:[MD5.94D5D82CA1EE2C98E3FE4CD3800AC4E5] - 15/02/2014 - 13:05:06 ---A- - C:\Windows\Prefetch\NOTEPAD.EXE-86E0E9B9.pf O45 - LFCP:[MD5.99D7E9FD56927DBE762F543AB32303E6] - 15/02/2014 - 18:16:36 ---A- - C:\Windows\Prefetch\4VIDEOSOFT MKV VIDEO CONVERTE-F88FF3B0.pf O45 - LFCP:[MD5.75D1C9DA2A76AE53AAD53F9E958F36A0] - 16/02/2014 - 08:36:52 ---A- - C:\Windows\Prefetch\ORSPUPD.EXE-D327F79B.pf O45 - LFCP:[MD5.1960053BECE21722628134F62F382E60] - 16/02/2014 - 09:24:48 ---A- - C:\Windows\Prefetch\IRESIZER.EXE-BFF00770.pf O45 - LFCP:[MD5.8D1634B35EEE0D9D831248C9972BE71E] - 16/02/2014 - 09:29:46 ---A- - C:\Windows\Prefetch\UNINS000.EXE-7E98D777.pf O45 - LFCP:[MD5.791D0818C50EB9D8FE516472713D228E] - 16/02/2014 - 09:29:48 ---A- - C:\Windows\Prefetch\_IU14D2N.TMP-8933038F.pf O45 - LFCP:[MD5.569150D440AE1680F246F1C2E4426B2C] - 16/02/2014 - 09:31:04 ---A- - C:\Windows\Prefetch\AU_.EXE-3CF60129.pf O45 - LFCP:[MD5.6E5E09527C15F5F0A67C06A8EF9E4AC7] - 16/02/2014 - 09:32:00 ---A- - C:\Windows\Prefetch\UNINS000.EXE-83486415.pf O45 - LFCP:[MD5.3A6EA2E9980FD87D1232C057AFA11136] - 16/02/2014 - 09:32:00 ---A- - C:\Windows\Prefetch\_IU14D2N.TMP-8DE2902D.pf O45 - LFCP:[MD5.1CB742C63FEF32FE67ECB3C3604D5F51] - 16/02/2014 - 09:32:01 ---A- - C:\Windows\Prefetch\PRTSETUPX.TMP-DC4D5DD7.pf O45 - LFCP:[MD5.A9D9E2D4214D9FB4C53D381A5CDA80A0] - 16/02/2014 - 09:32:03 ---A- - C:\Windows\Prefetch\UNINS000.EXE-2CF3EBA0.pf O45 - LFCP:[MD5.B2AE25914DF0E2298CE164B74AC59E23] - 16/02/2014 - 09:32:03 ---A- - C:\Windows\Prefetch\_IU14D2N.TMP-378E17B8.pf O45 - LFCP:[MD5.4212BFA7DE4BF86C9DC43DADD18DDC05] - 16/02/2014 - 09:32:49 ---A- - C:\Windows\Prefetch\MSIEXEC.EXE-F8D46C2E.pf O45 - LFCP:[MD5.F90AD81FC73F4F17DBADFDE9B1C9535C] - 16/02/2014 - 09:33:08 ---A- - C:\Windows\Prefetch\LIGHTROOM.EXE-9D61E479.pf O45 - LFCP:[MD5.5C99A8783BB93BF9E6951A5F0D3164F8] - 16/02/2014 - 09:34:26 ---A- - C:\Windows\Prefetch\AU_.EXE-E519843F.pf O45 - LFCP:[MD5.2338508D9D6D96643E43D7315F50EDB0] - 16/02/2014 - 09:59:27 ---A- - C:\Windows\Prefetch\KEYSCRAMBLER_SETUP (1).EXE-D92D1F91.pf O45 - LFCP:[MD5.73400D1DDFA5951FDCAF19D46A792DDF] - 16/02/2014 - 10:00:27 ---A- - C:\Windows\Prefetch\HEROGLYPH.EXE-6054137B.pf O45 - LFCP:[MD5.B653F4179EDA6E8642EE9C9D0DC49C29] - 16/02/2014 - 10:20:51 ---A- - C:\Windows\Prefetch\CLEANMGR.EXE-E3C5E89D.pf O45 - LFCP:[MD5.5B84D875D066B5663E7066DE352FFF25] - 16/02/2014 - 11:42:19 ---A- - C:\Windows\Prefetch\CAPTVTY.EXE-488C3B20.pf O45 - LFCP:[MD5.30FDFA03EA9EE0DF69A521579E5ACF83] - 16/02/2014 - 12:16:43 ---A- - C:\Windows\Prefetch\FHMANAGEW.EXE-A5C18056.pf O45 - LFCP:[MD5.6D0395AF05B0343BD6C79C874931B5B2] - 16/02/2014 - 12:21:16 ---A- - C:\Windows\Prefetch\MEDIAINFO.EXE-BFE3007E.pf O45 - LFCP:[MD5.6642E20067FA521F1777F4F43394B714] - 16/02/2014 - 13:53:09 ---A- - C:\Windows\Prefetch\WINWORD.EXE-CECBA770.pf O45 - LFCP:[MD5.DA5A9CBE924D6176A8C351E2B3E659A2] - 16/02/2014 - 15:28:46 ---A- - C:\Windows\Prefetch\SNIPPINGTOOL.EXE-EFFDAFDE.pf O45 - LFCP:[MD5.E296B06BBD23730F5F968A866484C685] - 16/02/2014 - 18:09:37 ---A- - C:\Windows\Prefetch\WERFAULT.EXE-37549B7E.pf O45 - LFCP:[MD5.504FF5187A70BAF30D9F8302DC3B93B8] - 17/02/2014 - 10:30:15 ---A- - C:\Windows\Prefetch\RUPLP.EXE-E30EFB21.pf O45 - LFCP:[MD5.F1BCD6E0BDF4FA933441E102054BD9B4] - 17/02/2014 - 10:30:41 ---A- - C:\Windows\Prefetch\REVOUNINPRO.EXE-CD886C89.pf O45 - LFCP:[MD5.38613E9D00280C269D97D6EB499DC8BF] - 17/02/2014 - 10:30:55 ---A- - C:\Windows\Prefetch\AU_.EXE-97030481.pf O45 - LFCP:[MD5.B4D26F8A8CD0FEE95ACDEDEA1FF602D4] - 17/02/2014 - 10:31:05 ---A- - C:\Windows\Prefetch\DF64.EXE-1632AAB3.pf O45 - LFCP:[MD5.F281C52DCDE937E0494D15218C823EC9] - 17/02/2014 - 10:38:14 ---A- - C:\Windows\Prefetch\DFSETUP217.EXE-4F65F2B6.pf O45 - LFCP:[MD5.12D034B8F7CA3F6A01DAB414C9EF2959] - 17/02/2014 - 10:38:56 ---A- - C:\Windows\Prefetch\DEFRAGGLER64.EXE-37C3219E.pf O45 - LFCP:[MD5.E36AF404E2F48760AAC73CBA2FAAEA69] - 17/02/2014 - 10:48:16 ---A- - C:\Windows\Prefetch\CCSETUP410.EXE-26ADEFC5.pf O45 - LFCP:[MD5.A224BEE52BD578D338A6E65E1736B907] - 17/02/2014 - 11:18:25 ---A- - C:\Windows\Prefetch\UPDATECHECKER.EXE-36EB3522.pf O45 - LFCP:[MD5.16C87F0DC4ACA1FD1FFE606D8BDB5D21] - 17/02/2014 - 11:39:10 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-8118CFAF.pf O45 - LFCP:[MD5.DD6D0D5045A2CAA1F64ED4541ACD93EF] - 17/02/2014 - 12:34:23 ---A- - C:\Windows\Prefetch\INTEGRATOR.EXE-8D31AC67.pf O45 - LFCP:[MD5.0E0A5150CED7B16EB5EC9F49BC0D1DF2] - 17/02/2014 - 12:37:24 ---A- - C:\Windows\Prefetch\SOFTWAREUPDATE.EXE-687B00FA.pf O45 - LFCP:[MD5.B3949D97AC44C8E396C9ECD16EA138BC] - 17/02/2014 - 13:05:46 ---A- - C:\Windows\Prefetch\SYSTEMPROPERTIESPROTECTION.EX-64B3993D.pf O45 - LFCP:[MD5.7B7B06A3F457681914A7EC9AC78F50B6] - 17/02/2014 - 13:05:50 ---A- - C:\Windows\Prefetch\RSTRUI.EXE-2D50C58D.pf O45 - LFCP:[MD5.712CCB79928673B5014D27AAB767C3B0] - 17/02/2014 - 13:06:00 ---A- - C:\Windows\Prefetch\SYSTEMPROPERTIESADVANCED.EXE-68C7C4F0.pf O45 - LFCP:[MD5.2BE5260BAF7BC79A70A6828ADEE54E53] - 17/02/2014 - 13:20:25 ---A- - C:\Windows\Prefetch\SDCLT.EXE-E10B972A.pf O45 - LFCP:[MD5.5138756D68F986F3327E85205D253895] - 17/02/2014 - 15:02:49 ---A- - C:\Windows\Prefetch\OPENWITH.EXE-5C93E816.pf O45 - LFCP:[MD5.24E7D238E963094C87B5A540E549BB10] - 17/02/2014 - 16:16:07 ---A- - C:\Windows\Prefetch\AgCx_SC4.db O45 - LFCP:[MD5.001E990880F4660CD7DAB899FBFB3F74] - 17/02/2014 - 16:16:42 ---A- - C:\Windows\Prefetch\WERMGR.EXE-0F2AC88C.pf O45 - LFCP:[MD5.B8A1F309BBB88E116B0B1D0E30A9CE7D] - 17/02/2014 - 17:12:19 ---A- - C:\Windows\Prefetch\MSIEXEC.EXE-E09A077A.pf O45 - LFCP:[MD5.7EED654AEC511FEE0A9EA8699D7C2D06] - 17/02/2014 - 17:12:23 ---A- - C:\Windows\Prefetch\MSIEXEC.EXE-A2D55CB6.pf O45 - LFCP:[MD5.979E3E81FCB64D5DF32C8C6EC2B6C2D7] - 17/02/2014 - 21:20:11 ---A- - C:\Windows\Prefetch\OOCCCTRL.EXE-C7AFC4ED.pf O45 - LFCP:[MD5.218DE293D84736D901CA92857612BD07] - 18/02/2014 - 08:40:43 ---A- - C:\Windows\Prefetch\EXPLORER.EXE-A80E4F97.pf O45 - LFCP:[MD5.C39D60840E5F348DDD8AC3D093F0C0E4] - 18/02/2014 - 08:40:58 ---A- - C:\Windows\Prefetch\CCLEANER64.EXE-779BD542.pf =>Piriform Ltd O45 - LFCP:[MD5.0DCFEE20DDF9E9FCC540DD3644BFFB67] - 18/02/2014 - 08:41:46 ---A- - C:\Windows\Prefetch\AgCx_SC5.db O45 - LFCP:[MD5.35954C4238619905627D5351D52BE6D4] - 18/02/2014 - 09:34:51 ---A- - C:\Windows\Prefetch\HIJACKTHIS.EXE-65843D35.pf O45 - LFCP:[MD5.25573372072D5DECAF234BFD39E3591A] - 18/02/2014 - 09:36:51 ---A- - C:\Windows\Prefetch\IMAGESHACKUPLOADER.EXE-7592108B.pf O45 - LFCP:[MD5.54D83DCF0BED8C2991729AB0605B8500] - 18/02/2014 - 09:44:11 ---A- - C:\Windows\Prefetch\ZHPDIAG2.TMP-FACDCF7B.pf O45 - LFCP:[MD5.F3B82E8B4EC86358E991B0B617B74E77] - 18/02/2014 - 09:44:16 ---A- - C:\Windows\Prefetch\ZHPDIAG2.TMP-89D4D210.pf O45 - LFCP:[MD5.13E0B4454F7C56F566521013450D4BBC] - 18/02/2014 - 10:08:51 ---A- - C:\Windows\Prefetch\W32TM.EXE-1101AF41.pf O45 - LFCP:[MD5.56F16FB0CD855788ED43599C058DFB86] - 18/02/2014 - 10:09:06 ---A- - C:\Windows\Prefetch\PING.EXE-7E94E73E.pf O45 - LFCP:[MD5.ED772D8CF3C0BCA299D64216829F9D69] - 18/02/2014 - 10:09:23 ---A- - C:\Windows\Prefetch\NGENTASK.EXE-4F8BD802.pf O45 - LFCP:[MD5.52F9A385CCCA61C0DEF2A556718F8970] - 18/02/2014 - 10:09:27 ---A- - C:\Windows\Prefetch\NGENTASK.EXE-BB7F7010.pf O45 - LFCP:[MD5.68BBEF05BE534B110F0E2D4921A4CA2D] - 18/02/2014 - 10:09:45 ---A- - C:\Windows\Prefetch\NGEN.EXE-AE594A6B.pf O45 - LFCP:[MD5.CA453DE30967C1894FFA1BFF6990A1F5] - 18/02/2014 - 10:09:46 ---A- - C:\Windows\Prefetch\MSCORSVW.EXE-57D17DAF.pf O45 - LFCP:[MD5.2127CE48D537E87E5E6CC82AB809582C] - 18/02/2014 - 10:09:46 ---A- - C:\Windows\Prefetch\NGEN.EXE-EC3F9239.pf O45 - LFCP:[MD5.1609E6A1D262E316E910D4843FC5B0D9] - 18/02/2014 - 10:10:01 ---A- - C:\Windows\Prefetch\MSCORSVW.EXE-C3C515BD.pf O45 - LFCP:[MD5.8758706BA83F73D52169065904A5E0D4] - 18/02/2014 - 10:16:56 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-E4DB4546.pf O45 - LFCP:[MD5.B7A9D00C6E485D27565D74FED7D70AB6] - 18/02/2014 - 10:33:06 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-35512F8F.pf O45 - LFCP:[MD5.BF2C4C88817EB817B2FBDFF21051DF5F] - 18/02/2014 - 10:50:06 ---A- - C:\Windows\Prefetch\FILEZILLA.EXE-4247A2A6.pf O45 - LFCP:[MD5.486254670BC992ECD425C40A7E79411B] - 18/02/2014 - 10:50:42 ---A- - C:\Windows\Prefetch\FZSFTP.EXE-D6DD215B.pf O45 - LFCP:[MD5.D3B8EA59395886238A7E81BD4BBB5E1E] - 18/02/2014 - 11:01:24 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-63F2C164.pf O45 - LFCP:[MD5.0793844CDCC285FE0A34B27A1495079E] - 18/02/2014 - 11:01:24 ---A- - C:\Windows\Prefetch\WINSAT.EXE-DE36CB46.pf O45 - LFCP:[MD5.D89ABA676D70189FF24F5890EFC8F958] - 18/02/2014 - 11:06:32 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-FF7C64C1.pf O45 - LFCP:[MD5.23F9306217FF1E2C3B5D28083F0C6172] - 18/02/2014 - 11:10:33 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-084FEA86.pf O45 - LFCP:[MD5.7318696BB39A13B9953BFE88E38BB490] - 18/02/2014 - 11:10:37 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-E8E5D194.pf O45 - LFCP:[MD5.702DE1DBB01642A16DA8A1016A0FB67E] - 18/02/2014 - 11:18:09 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-5E731DE3.pf O45 - LFCP:[MD5.E938290F83643C89C7F4E884909E0332] - 18/02/2014 - 11:18:09 ---A- - C:\Windows\Prefetch\VSSVC.EXE-B8AFC319.pf O45 - LFCP:[MD5.7178D9F20BDD3ABAD549DBBA3CEA2ECE] - 18/02/2014 - 11:30:44 ---A- - C:\Windows\Prefetch\TUNEUPSYSTEMSTATUSCHECK.EXE-FCBFFD55.pf O45 - LFCP:[MD5.35D37146803E8F51E67F5AF85EDAD937] - 18/02/2014 - 11:59:20 ---A- - C:\Windows\Prefetch\SPPEXTCOMOBJ.EXE-BB03B3D6.pf O45 - LFCP:[MD5.685230C63163D0679F171E93D74135FB] - 18/02/2014 - 12:29:42 ---A- - C:\Windows\Prefetch\AgGlUAD_P_S-1-5-21-803192325-2889172547-468948696-1001.db O45 - LFCP:[MD5.7A3EDB410FBCF130DC2F5BF284D10FA5] - 18/02/2014 - 12:29:42 ---A- - C:\Windows\Prefetch\AgGlUAD_S-1-5-21-803192325-2889172547-468948696-1001.db O45 - LFCP:[MD5.31335F2BFF00E13C2E4EDAE0C55FB5C8] - 18/02/2014 - 12:34:02 ---A- - C:\Windows\Prefetch\FLASHUTIL_ACTIVEX.EXE-C484AAB9.pf O45 - LFCP:[MD5.DAD0ED6ABD475377053E03F252E41BE7] - 18/02/2014 - 12:47:42 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-081B5A6F.pf O45 - LFCP:[MD5.496EC617010005C0028A295DDA0F6B96] - 18/02/2014 - 12:53:49 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-7180C77E.pf O45 - LFCP:[MD5.114E8C78DB1F28A4712EF0BAE10D94E0] - 18/02/2014 - 12:54:20 ---A- - C:\Windows\Prefetch\BYTECODEGENERATOR.EXE-C1E9BCE6.pf O45 - LFCP:[MD5.0A3C2899718FCC142B6C877D9BE0B088] - 18/02/2014 - 13:02:14 ---A- - C:\Windows\Prefetch\Layout.ini O45 - LFCP:[MD5.1BE8CD9E568A5CEF5153C351C8C186DB] - 18/02/2014 - 13:03:52 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-3AE259FC.pf O45 - LFCP:[MD5.73364F48768DEC45CCD01FA19D14374B] - 18/02/2014 - 13:59:15 ---A- - C:\Windows\Prefetch\SETTINGCENTER.EXE-2F265CE0.pf O45 - LFCP:[MD5.FB772B4450D1DB4E42814CD31952646A] - 18/02/2014 - 14:04:20 ---A- - C:\Windows\Prefetch\PSPAD.EXE-D675E3AC.pf O45 - LFCP:[MD5.3A4D7D1E725ED86D91F39FCCB42CB061] - 18/02/2014 - 14:36:24 ---A- - C:\Windows\Prefetch\OUTLOOK.EXE-1DF422BF.pf O45 - LFCP:[MD5.8C78E4F899388E1FEAB7D1D18F8023F8] - 18/02/2014 - 14:41:41 ---A- - C:\Windows\Prefetch\OSE.EXE-533D8AC9.pf O45 - LFCP:[MD5.9586B246BF054682EE39F28929AD1BC4] - 18/02/2014 - 14:45:32 ---A- - C:\Windows\Prefetch\TRIGGER.EXE-0603EAAC.pf O45 - LFCP:[MD5.104CFC957B6ED0A58EF48DD400AC6B3F] - 18/02/2014 - 15:06:10 ---A- - C:\Windows\Prefetch\TASKENG.EXE-48D4E289.pf O45 - LFCP:[MD5.9B147E6FFF06C469043C616CAF4A1D04] - 18/02/2014 - 15:08:23 ---A- - C:\Windows\Prefetch\AgRobust.db O45 - LFCP:[MD5.FF4F3F36E97604DDA3B4232B422D44D4] - 18/02/2014 - 15:08:24 ---A- - C:\Windows\Prefetch\AgGlFaultHistory.db O45 - LFCP:[MD5.B9924B6FED9A69153025F6D1B78ABC62] - 18/02/2014 - 15:08:24 ---A- - C:\Windows\Prefetch\AgGlGlobalHistory.db O45 - LFCP:[MD5.73007A21AC7B163F8EABCE200435C516] - 18/02/2014 - 15:08:25 ---A- - C:\Windows\Prefetch\AgGlFgAppHistory.db O45 - LFCP:[MD5.E4AD6F212127199EEA1AB6AB9F657997] - 18/02/2014 - 15:10:54 ---A- - C:\Windows\Prefetch\dynreservedpri.db O45 - LFCP:[MD5.E97120B86F9AF78D592B20BBF0E606B6] - 18/02/2014 - 15:10:55 ---A- - C:\Windows\Prefetch\TASKHOSTEX.EXE-280CA476.pf O45 - LFCP:[MD5.8CBDA518B44E01AFAC9AB353CFDB8FB6] - 18/02/2014 - 15:16:44 ---A- - C:\Windows\Prefetch\WMPLAYER.EXE-26C72A86.pf O45 - LFCP:[MD5.717AFF3FA22925A2DA91D63EB975BF00] - 18/02/2014 - 15:16:51 ---A- - C:\Windows\Prefetch\SNDVOL.EXE-5D4CC7D6.pf O45 - LFCP:[MD5.9AAF745589A46083E0DBA4C75DAF6B09] - 18/02/2014 - 15:27:48 ---A- - C:\Windows\Prefetch\Op-EXPLORER.EXE-A80E4F97-000000F5.pf O45 - LFCP:[MD5.9F2F7F590390061E8E587254BDCBD552] - 18/02/2014 - 15:27:56 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-1EA744B6.pf O45 - LFCP:[MD5.D76717F1F855C9C34A69D94DBD981BFF] - 18/02/2014 - 15:28:09 ---A- - C:\Windows\Prefetch\SC.EXE-945D79AE.pf O45 - LFCP:[MD5.1458FEEBAE93DA45549F72953A191823] - 18/02/2014 - 15:28:09 ---A- - C:\Windows\Prefetch\SCHTASKS.EXE-5CA45734.pf O45 - LFCP:[MD5.793A8FF0AFD94B2E221159594E54E860] - 18/02/2014 - 15:28:10 ---A- - C:\Windows\Prefetch\CMD.EXE-4A81B364.pf O45 - LFCP:[MD5.4F705CD75A68C9CE944CDF38134BF4DE] - 18/02/2014 - 15:28:11 ---A- - C:\Windows\Prefetch\UNINS000.EXE-F9CE072D.pf O45 - LFCP:[MD5.6BB2310BD9759634F167FCA384191B8E] - 18/02/2014 - 15:28:14 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-B19A5B8C.pf O45 - LFCP:[MD5.739A0DFDDA07416EB0FDD569B380BE25] - 18/02/2014 - 15:28:16 ---A- - C:\Windows\Prefetch\_IU14D2N.TMP-73C34509.pf O45 - LFCP:[MD5.DA064B5A9941A611502271ECA8BC2128] - 18/02/2014 - 15:28:19 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-C39362D4.pf O45 - LFCP:[MD5.B1139A44A522A2AA9839234DF074C7B1] - 18/02/2014 - 15:28:33 ---A- - C:\Windows\Prefetch\TUNEUPUTILITIESAPP64.EXE-63EEBDAD.pf O45 - LFCP:[MD5.BDE8D4974DE2F14D348ADA0B458C32F2] - 18/02/2014 - 15:28:41 ---A- - C:\Windows\Prefetch\LOGONUI.EXE-09140401.pf O45 - LFCP:[MD5.A220284F3541E6ED031204CD81E2F2B8] - 18/02/2014 - 15:28:45 ---A- - C:\Windows\Prefetch\PfSvPerfStats.bin O45 - LFCP:[MD5.C3983891036BBF739A5FF71536EEDE76] - 18/02/2014 - 15:30:43 ---A- - C:\Windows\Prefetch\CHECKUPDATE.EXE-F672E031.pf O45 - LFCP:[MD5.07EB93D09891AC57519ADDAD501A7F81] - 18/02/2014 - 15:30:43 ---A- - C:\Windows\Prefetch\SEARCHINDEXER.EXE-4A6353B9.pf O45 - LFCP:[MD5.EF79BEC3332BEE4CB651E969045387DB] - 18/02/2014 - 15:30:43 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-90C9B795.pf O45 - LFCP:[MD5.CDA6A5605EB9C131F4986EA01EE950D3] - 18/02/2014 - 15:30:43 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-D55DF7E7.pf O45 - LFCP:[MD5.C53B95AFEB32CA942E5A57ED139D797E] - 18/02/2014 - 15:30:43 ---A- - C:\Windows\Prefetch\UPDATECHECK.EXE-F5B5CDCD.pf O45 - LFCP:[MD5.286ECE6C59D95FE1766CD0B4F57AB676] - 18/02/2014 - 15:30:45 ---A- - C:\Windows\Prefetch\SETTINGSYNCHOST.EXE-2521C7ED.pf O45 - LFCP:[MD5.60CC3CCD55EA282FFB259C62339C1B2E] - 18/02/2014 - 15:30:46 ---A- - C:\Windows\Prefetch\FSHDLL64.EXE-98F4877B.pf O45 - LFCP:[MD5.437C01B6B51CA1DD7799F05CAD12C427] - 18/02/2014 - 15:30:47 ---A- - C:\Windows\Prefetch\WUDFHOST.EXE-AFFEF87C.pf O45 - LFCP:[MD5.A41640E0D2B899294FBE8719D60BE556] - 18/02/2014 - 15:30:48 ---A- - C:\Windows\Prefetch\SKYDRIVE.EXE-B0416B7D.pf O45 - LFCP:[MD5.EB1D57797A562242C0061EE7C2DE6904] - 18/02/2014 - 15:30:54 ---A- - C:\Windows\Prefetch\FSSM32.EXE-0B597ACB.pf O45 - LFCP:[MD5.0E77AC07549011348B803BF87A961ABD] - 18/02/2014 - 15:30:58 ---A- - C:\Windows\Prefetch\FSM32.EXE-933BCD6F.pf O45 - LFCP:[MD5.D7E9F44168518724A1C54F966FD809A3] - 18/02/2014 - 15:30:58 ---A- - C:\Windows\Prefetch\FSSCOEPL_X64.EXE-C34CD0BD.pf O45 - LFCP:[MD5.4E6CCFF40BF2541E923A2030EBCBF4C5] - 18/02/2014 - 15:31:03 ---A- - C:\Windows\Prefetch\KEYSCRAMBLER.EXE-40837EA1.pf O45 - LFCP:[MD5.196033A433E2ED4EF7A65C1BAFEFA0C0] - 18/02/2014 - 15:31:05 ---A- - C:\Windows\Prefetch\KEYSCRAMBLER.EXE-DC0AA197.pf O45 - LFCP:[MD5.79C2A4A7F1218200D65EDA96F25125C1] - 18/02/2014 - 15:31:20 ---A- - C:\Windows\Prefetch\UNSECAPP.EXE-A02905A6.pf O45 - LFCP:[MD5.1D24AB9BDCC240E980C518BEAD9DC955] - 18/02/2014 - 15:31:34 ---A- - C:\Windows\Prefetch\IEXPLORE.EXE-908C99F8.pf O45 - LFCP:[MD5.F3F4BBA5420706DE492CB6FE77EA1159] - 18/02/2014 - 15:31:43 ---A- - C:\Windows\Prefetch\IEXPLORE.EXE-4B6C9215.pf O45 - LFCP:[MD5.2AE6B76D793837A6E10E93D48E404165] - 18/02/2014 - 15:31:57 ---A- - C:\Windows\Prefetch\GOOGLETOOLBARUSER_32.EXE-34B1B1C5.pf =>Toolbar.Google O45 - LFCP:[MD5.B7AEF9B6B1D4AED9DEF4E806BDAD75E9] - 18/02/2014 - 15:32:31 ---A- - C:\Windows\Prefetch\GOOGLEUPDATE.EXE-B95715F5.pf O45 - LFCP:[MD5.436528CE3FA04B5DD3AE5F79A0EC42A7] - 18/02/2014 - 15:32:31 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-4357E98E.pf O45 - LFCP:[MD5.A1DDA8D92A83B7186E44DC99C9DF2D6B] - 18/02/2014 - 15:32:39 ---A- - C:\Windows\Prefetch\FSWSCS.EXE-B7F1AF25.pf O45 - LFCP:[MD5.9500FA18BB17282384069C80BCD33B8C] - 18/02/2014 - 15:32:39 ---A- - C:\Windows\Prefetch\MPCMDRUN.EXE-F401FBB4.pf O45 - LFCP:[MD5.D80DA6030274FF6813A2E455942BE3E8] - 18/02/2014 - 15:33:11 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-B92E19D8.pf O45 - LFCP:[MD5.9E246CE29062B5849399D857B62D1BEF] - 18/02/2014 - 15:33:12 ---A- - C:\Windows\Prefetch\WSHOST.EXE-3BD2AA25.pf O45 - LFCP:[MD5.6396E5406066D5A4D7F9F76BBCBCBB43] - 18/02/2014 - 15:34:11 ---A- - C:\Windows\Prefetch\WMIADAP.EXE-F8DFDFA2.pf O45 - LFCP:[MD5.C8F22442A0AF8CBCC0D151DCC8C21310] - 18/02/2014 - 15:34:14 ---A- - C:\Windows\Prefetch\WMIPRVSE.EXE-1628051C.pf O45 - LFCP:[MD5.3DD4809D73923F28AA4A1BC540AC18A3] - 18/02/2014 - 15:34:58 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-FF80E12C.pf O45 - LFCP:[MD5.3B0245442C994DD766C7BA30DAB511D2] - 18/02/2014 - 15:35:35 ---A- - C:\Windows\Prefetch\ONECLICKSTARTER.EXE-B8CDDA3E.pf O45 - LFCP:[MD5.1B496AEA4F86933ADB7949BF9812E2DF] - 18/02/2014 - 15:37:49 ---A- - C:\Windows\Prefetch\LADS.EXE-046BC4A8.pf O45 - LFCP:[MD5.6AD14686461F0E89C5CD03441FA24732] - 18/02/2014 - 15:38:18 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-9037274D.pf O45 - LFCP:[MD5.013EEF0565E67B1C685DB0338AB43E00] - 18/02/2014 - 15:38:28 ---A- - C:\Windows\Prefetch\NSLOOKUP.EXE-8DBC12C3.pf O45 - LFCP:[MD5.9358E9FD656A85D2F7581885C0F7B2AA] - 18/02/2014 - 15:38:49 ---A- - C:\Windows\Prefetch\MBRCHECK.EXE-2CA9EB2F.pf O45 - LFCP:[MD5.FE595AAC5EF62DB34A74BC3C398472E7] - 18/02/2014 - 15:39:21 ---A- - C:\Windows\Prefetch\RUNTIMEBROKER.EXE-72C0C855.pf O45 - LFCP:[MD5.54DCE559D10F30621C3AFC6CD4558C0A] - 18/02/2014 - 15:39:40 ---A- - C:\Windows\Prefetch\NOTEPAD.EXE-1605FA5B.pf O45 - LFCP:[MD5.9E14FD91602FA95F8367822B9B0165FA] - 18/02/2014 - 15:39:40 ---A- - C:\Windows\Prefetch\SEARCHFILTERHOST.EXE-77482212.pf O45 - LFCP:[MD5.37602A1ECB63A2BEF306F82A22C65D37] - 18/02/2014 - 15:39:40 ---A- - C:\Windows\Prefetch\SEARCHPROTOCOLHOST.EXE-0CB8CADE.pf O45 - LFCP:[MD5.6906DE2CE0697203F6040316D3FB3ACE] - 18/02/2014 - 15:40:28 ---A- - C:\Windows\Prefetch\TRUSTEDINSTALLER.EXE-3CC531E5.pf O45 - LFCP:[MD5.A728FEDCA43813BE74826B7E2CB68449] - 18/02/2014 - 15:40:32 ---A- - C:\Windows\Prefetch\TIWORKER.EXE-50146017.pf O45 - LFCP:[MD5.E58303EEAD6A40BBBA105B441EFF5486] - 18/02/2014 - 15:40:59 ---A- - C:\Windows\Prefetch\AUDIODG.EXE-BDFD3029.pf O45 - LFCP:[MD5.8C9EAD4CDD36E8AB018B94FDE6282B49] - 18/02/2014 - 15:41:17 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-A8839C15.pf O45 - LFCP:[MD5.90146B7D3CF1C0BA9159D76D9B2895F2] - 18/02/2014 - 15:41:17 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-CC5C42C1.pf O45 - LFCP:[MD5.EEFAC7667F9C98C4028E68B175E52473] - 18/02/2014 - 15:41:24 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-5DE54978.pf O45 - LFCP:[MD5.C630583D31A82185A84C2108FE96939F] - 18/02/2014 - 15:41:27 ---A- - C:\Windows\Prefetch\THUMBNAILEXTRACTIONHOST.EXE-D9F4EA67.pf O45 - LFCP:[MD5.64D2142028936CA4474BB9F68C5FE763] - 18/02/2014 - 15:42:56 ---A- - C:\Windows\Prefetch\CONSENT.EXE-531BD9EA.pf O45 - LFCP:[MD5.C2167C929B4A596E40395B610C2F1D56] - 18/02/2014 - 15:42:57 ---A- - C:\Windows\Prefetch\ZHPHEP.EXE-EBD3B8D7.pf O45 - LFCP:[MD5.F051F89C5F1E0B91A1473F8711947CB3] - 18/02/2014 - 15:42:58 ---A- - C:\Windows\Prefetch\WERFAULT.EXE-E69F695A.pf O45 - LFCP:[MD5.3E3D2FA59FC680AFBEA7ECFF8BC9968C] - 18/02/2014 - 15:43:01 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-A853C612.pf O45 - LFCP:[MD5.9A602A48A3B37A2E037D6405F077629A] - 18/02/2014 - 15:43:06 ---A- - C:\Windows\Prefetch\CMD.EXE-AC113AA8.pf O45 - LFCP:[MD5.0F2D00BC41096D2924ABCC83DA60C396] - 18/02/2014 - 15:43:06 ---A- - C:\Windows\Prefetch\CONHOST.EXE-1F3E9D7E.pf O45 - LFCP:[MD5.D3ED2D108762042CEEBB82C8DD6BC9CD] - 18/02/2014 - 15:43:06 ---A- - C:\Windows\Prefetch\CSCRIPT.EXE-0FB3F22C.pf O45 - LFCP:[MD5.3B671F484BF3B6C31EDA8018B802490E] - 18/02/2014 - 15:43:08 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-24568AC4.pf O45 - LFCP:[MD5.03972A47C6E494B25ED0B763F52A9F19] - 18/02/2014 - 15:43:08 ---A- - C:\Windows\Prefetch\ZHPDIAG.EXE-0D117CAF.pf O45 - LFCP:[MD5.BB3C51173EBA7E4D6CF8C9F8EA1C8E93] - 18/02/2014 - 15:43:09 ---A- - C:\Windows\Prefetch\PV.EXE-34B75B82.pf O45 - LFCP:[MD5.6EC8600E6A341A888A354CF7C42F0A81] - 18/02/2014 - 15:43:11 ---A- - C:\Windows\Prefetch\SUBINACL.EXE-AB0CE9D9.pf O45 - LFCP:[MD5.1F51EF76F72BA9542241FC3662AF697F] - 18/02/2014 - 15:43:14 ---A- - C:\Windows\Prefetch\WMIPRVSE.EXE-6768A320.pf O45 - LFCP:[MD5.E23796DDE458FB72AEA352F60BBD4C79] - 18/02/2014 - 15:43:15 ---A- - C:\Windows\Prefetch\SPPSVC.EXE-B0F8131B.pf O45 - LFCP:[MD5.AE443C9440AD1C88984A5F9D39BD0670] - 18/02/2014 - 15:43:34 ---A- - C:\Windows\Prefetch\SCHTASKS.EXE-AD598958.pf O45 - LFCP:[MD5.2D8526A1BC4035CAA6E8A4EDD6DC833D] - 23/01/2014 - 10:03:31 ---A- - C:\Windows\Prefetch\AgCx_SC1.db.trx O45 - LFCP:[MD5.BC44E0C7547D6569ACA1C0B98BF12F33] - 23/01/2014 - 10:04:32 ---A- - C:\Windows\Prefetch\AgCx_SC1.db ~ Prefetcher: 226 Scanned in 00mn 04s ---\\ Déni du service (Local Security Authority) (O48) O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l’Éditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Fournisseur de sécurité TLS/SSL.) -- C:\Windows\System32\schannel.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Live Security Package.) -- C:\Windows\System32\livessp.dll ~ LSA: 9 Scanned in 00mn 00s ---\\ Contrôle du Safe Boot (CSB) (O49) O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\BasicDisplay.sys . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\BasicRender.sys . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dxgkrnl.sys . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\FsDepends.sys . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\FsDepends.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\BasicDisplay.sys . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\BasicRender.sys . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dxgkrnl.sys . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\FsDepends.sys . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\FsDepends.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (...) -- C:\Windows\System32\Drivers\rdpencdd.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys ~ CSB: 17 Scanned in 00mn 00s ---\\ Image File Execution Options (IFEO) (O50) O50 - IFEO:Image File Execution Options - AcroRd32.exe - "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe" O50 - IFEO:Image File Execution Options - adobe air application installer.exe - "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe" O50 - IFEO:Image File Execution Options - lucaschessportable805.exe - "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe" O50 - IFEO:Image File Execution Options - nokiasuite.exe - "C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe" ~ IFEO: Scanned in 00mn 00s ---\\ Recherche d'infection sur les pilotes (HKLM)(TDSD) (O52) O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm O52 - TDSD: \Drivers32\"msacm.ac3filter"="ac3filter64.acm" . (.Pas de propriétaire - ac3filter.) -- C:\Windows\System32\ac3filter64.acm O52 - TDSD: \Drivers32\"msacm.lameacm"="LameACM.acm" . (.http://www.mp3dev.org/ - Lame MP3 codec engine.) -- C:\Windows\System32\LameACM.acm O52 - TDSD: \Drivers32\"vidc.pDAD"="prodad-codec.dll" . (.proDAD GmbH - Video-Codec by proDAD.) -- C:\Windows\System32\prodad-codec.dll O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm O52 - TDSD: \drivers.desc\"LameACM.acm"="Lame ACM MP3 Codec" . (.http://www.mp3dev.org/ - Lame MP3 codec engine.) -- C:\Windows\System32\LameACM.acm O52 - TDSD: \drivers.desc\"prodad-codec.dll"="proDAD Codec" . (.proDAD GmbH - Video-Codec by proDAD.) -- C:\Windows\System32\prodad-codec.dll ~ TDSD: 7 Scanned in 00mn 00s ---\\ Enumération des clés de registre SecurityProviders (MCSP) (O54) O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll ~ MSCP: 2 Scanned in 00mn 00s ---\\ Enumération des clés de registre PoliciesSystem (MWPS) (O55) O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1 O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1 O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5 O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0 O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0 O55 - MWPS:[HKLM\...\Policies\System] - "EnableCursorSuppression"=1 O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3 O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0 O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0 O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0 ~ MWPS: 17 Scanned in 00mn 00s ---\\ Enumération des clés de registre PoliciesExplorer (MWPE) (O56) O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1 ~ MWPE Keys: 3 Scanned in 00mn 00s ---\\ Liste des pilotes du système (SDL) (O58) O58 - SDL:[MD5.E1832BD9FD7E0FC2DC9FA5935DE3E8C1] - 22/08/2013 - 12:38:15 ---A- . (.Microsoft Corporation - 1394 OpenHCI Driver.) -- C:\Windows\System32\Drivers\1394ohci.sys [231424] O58 - SDL:[MD5.AD508A1A46EC21B740AB31C28EFDFDB1] - 22/08/2013 - 13:43:41 ---A- . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\Windows\System32\Drivers\3ware.sys [108896] O58 - SDL:[MD5.3D30878A269D934100FA5F972E53AF39] - 14/11/2013 - 08:37:34 ---A- . (.Microsoft Corporation - Pilote ACPI pour NT.) -- C:\Windows\System32\Drivers\acpi.sys [523096] O58 - SDL:[MD5.AC8279D229398BCF05C3154ADCA86813] - 22/08/2013 - 13:49:54 ---A- . (.Microsoft Corporation - ACPIEx Driver.) -- C:\Windows\System32\Drivers\acpiex.sys [79712] O58 - SDL:[MD5.A8970D9BF23CD309E0403978A1B58F3F] - 22/08/2013 - 12:38:48 ---A- . (.Microsoft Corporation - ACPI Processor Aggregator Device Driver.) -- C:\Windows\System32\Drivers\acpipagr.sys [10240] O58 - SDL:[MD5.111A89C99C5B4F1A7BCE5F643DD86F65] - 22/08/2013 - 12:38:53 ---A- . (.Microsoft Corporation - ACPI Power Metering Driver.) -- C:\Windows\System32\Drivers\acpipmi.sys [12288] O58 - SDL:[MD5.5758387D68A20AE7D3245011B07E36E7] - 22/08/2013 - 12:38:58 ---A- . (.Microsoft Corporation - ACPI Wake Alarm.) -- C:\Windows\System32\Drivers\acpitime.sys [10752] O58 - SDL:[MD5.7C1FDF1B48298CBA7CE4BDD4978951AD] - 22/08/2013 - 13:43:41 ---A- . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS/SATA controller.) -- C:\Windows\System32\Drivers\adp80xx.sys [782176] O58 - SDL:[MD5.239268BAB58EAE9A3FF4E08334C00451] - 22/08/2013 - 14:25:35 ---A- . (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) -- C:\Windows\System32\Drivers\afd.sys [567296] O58 - SDL:[MD5.55FE43112F61836D0581D615C72AA113] - 14/11/2013 - 08:30:57 ---A- . (.Microsoft Corporation - RAS Agile Vpn Miniport Call Manager.) -- C:\Windows\System32\Drivers\agilevpn.sys [97280] O58 - SDL:[MD5.7DFAEBA9AD62D20102B576D5CAC45EC8] - 22/08/2013 - 13:43:40 ---A- . (.Microsoft Corporation - Filtre AGP 440 NT.) -- C:\Windows\System32\Drivers\AGP440.sys [62304] O58 - SDL:[MD5.8E8E34B7BA059050EED827410D0697A2] - 22/08/2013 - 12:39:54 ---A- . (.Microsoft Corporation - Application Compatibility Cache.) -- C:\Windows\System32\Drivers\ahcache.sys [76800] O58 - SDL:[MD5.7589DE749DB6F71A68489DCE04158729] - 22/08/2013 - 09:46:34 ---A- . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\Drivers\amdk8.sys [95744] O58 - SDL:[MD5.B46D2D89AFF8A9490FA8C98C7A5616E3] - 22/08/2013 - 09:46:35 ---A- . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\Drivers\amdppm.sys [98816] O58 - SDL:[MD5.D2BF2F94A47D332814910FD47C6BBCD2] - 22/08/2013 - 13:43:41 ---A- . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\Windows\System32\Drivers\amdsata.sys [79200] O58 - SDL:[MD5.A8E04943C7BBA7219AA50400272C3C6E] - 22/08/2013 - 13:43:41 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows -.) -- C:\Windows\System32\Drivers\amdsbs.sys [259424] O58 - SDL:[MD5.CEA5F4F27CFC08E3A44D576811B35F50] - 22/08/2013 - 13:43:40 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\Drivers\amdxata.sys [25952] O58 - SDL:[MD5.04951A9A937CBE28A2D3FEEA360B6D1F] - 14/11/2013 - 08:30:56 ---A- . (.Microsoft Corporation - AppID Driver.) -- C:\Windows\System32\Drivers\appid.sys [83456] O58 - SDL:[MD5.65045784366F7EC5FB4E71BCF923187B] - 22/08/2013 - 13:43:41 ---A- . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\Drivers\arcsas.sys [114016] O58 - SDL:[MD5.3DB7721F06BC2FEDB25029EA23AB27DA] - 22/08/2013 - 12:38:53 ---A- . (.Microsoft Corporation - MS Remote Access serial network driver.) -- C:\Windows\System32\Drivers\asyncmac.sys [26624] O58 - SDL:[MD5.74B14192CF79A72F7536B27CB8814FBD] - 22/08/2013 - 13:43:41 ---A- . (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\Drivers\atapi.sys [26464] O58 - SDL:[MD5.38E1F4E0148A24C65D215F14D57B0711] - 22/08/2013 - 13:43:41 ---A- . (.Microsoft Corporation - ATAPI Driver Extension.) -- C:\Windows\System32\Drivers\ataport.sys [199520] O58 - SDL:[MD5.B04BF12AEBFB5E71971B4EDA4EDFC196] - 18/06/2013 - 15:45:05 ---A- . (.Qualcomm Atheros Communications, Inc. - Qualcomm Atheros Extensible Wireless LAN device driver.) -- C:\Windows\System32\Drivers\athwnx.sys [3680256] O58 - SDL:[MD5.8CC7F7E4AFCBA605921B137ED7992C68] - 22/08/2013 - 12:39:31 ---A- . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys [50688] O58 - SDL:[MD5.2748E116F8621A4DB0D39FCDD7318C01] - 22/08/2013 - 12:39:28 ---A- . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys [33792] O58 - SDL:[MD5.99387C515F80270F097F6DD9B5315649] - 22/08/2013 - 13:49:53 ---A- . (.Microsoft Corporation - Battery Class Driver.) -- C:\Windows\System32\Drivers\battc.sys [35168] O58 - SDL:[MD5.C1ABB0F7E3BEA48A0417BDF6FF14AB21] - 13/08/2013 - 00:25:46 ---A- . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\Windows\System32\Drivers\bcmfn2.sys [17624] O58 - SDL:[MD5.EC19013E4CF87609534165DF897274D6] - 22/08/2013 - 12:40:24 ---A- . (.Microsoft Corporation - BEEP Driver.) -- C:\Windows\System32\Drivers\beep.sys [7680] O58 - SDL:[MD5.C0BA352412C002730831E83E69285BB6] - 17/12/2013 - 06:05:36 ---A- . (.Glarysoft Ltd - Boot Defrag Driver.) -- C:\Windows\System32\Drivers\BootDefragDriver.sys [17088] O58 - SDL:[MD5.6B4FFFDDC618FCF64473CAA86E305697] - 22/08/2013 - 12:38:38 ---A- . (.Microsoft Corporation - NT Lan Manager Datagram Receiver Driver.) -- C:\Windows\System32\Drivers\bowser.sys [102912] O58 - SDL:[MD5.4E888019078AC363076A5433E89AA4F8] - 22/08/2013 - 12:35:50 ---A- . (.Microsoft Corporation - MAC Bridge Driver.) -- C:\Windows\System32\Drivers\bridge.sys [115712] O58 - SDL:[MD5.1C89EF529DB7DCA98E801EFDCC8437DE] - 23/11/2013 - 08:13:50 ---A- . (.Microsoft Corporation - Microsoft Bluetooth Audio Multiprofile Manager.) -- C:\Windows\System32\Drivers\BtaMPM.sys [19456] O58 - SDL:[MD5.A8F23D453A424FF4DE04989C4727ECC7] - 22/08/2013 - 12:38:39 ---A- . (.Microsoft Corporation - HID de contrôle à distance audio/vidéo Bluetooth.) -- C:\Windows\System32\Drivers\BthAvrcpTg.sys [36992] O58 - SDL:[MD5.746B9F94214915AECDE4B7FEA5FF9664] - 22/08/2013 - 12:37:42 ---A- . (.Microsoft Corporation - Bluetooth Hands-Free Audio and Call Control HID Enumerator.) -- C:\Windows\System32\Drivers\bthhfenum.sys [57856] O58 - SDL:[MD5.71FE2A48E4C93DDB9798C024880B6C07] - 22/08/2013 - 12:38:16 ---A- . (.Microsoft Corporation - Minipilote HID mains libres Bluetooth.) -- C:\Windows\System32\Drivers\BthhfHid.sys [30720] O58 - SDL:[MD5.07E33226AD218A2A162662A05CAFB52F] - 22/08/2013 - 12:36:44 ---A- . (.Microsoft Corporation - Bluetooth Communications Driver.) -- C:\Windows\System32\Drivers\bthmodem.sys [63488] O58 - SDL:[MD5.A4A73F631FE2AA2826FBE4A399B04DEF] - 22/08/2013 - 13:43:41 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\Drivers\bxvbda.sys [531296] O58 - SDL:[MD5.205510CDB7B6084BF31760B5D06F9242] - 23/01/2013 - 10:31:52 ---A- . (.Nokia - Nokia USB Phone Bus Driver.) -- C:\Windows\System32\Drivers\ccdcmbox64.sys [27136] O58 - SDL:[MD5.1381E95D4E0F94F22DD484B5F8C1D61D] - 23/01/2013 - 10:31:52 ---A- . (.Nokia - Nokia USB Phone Bus Driver.) -- C:\Windows\System32\Drivers\ccdcmbx64.sys [19968] O58 - SDL:[MD5.2FA6510E33F7DEFEC03658B74101A9B9] - 22/08/2013 - 12:40:15 ---A- . (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\Drivers\cdfs.sys [88576] O58 - SDL:[MD5.C99A4BEE54DA56BA03D774A263113FEA] - 31/03/2010 - 02:05:46 ----- . (.Sonic Solutions - CDR4 64-bit CD and DVD Place Holder Driver (see PxHelp).) -- C:\Windows\System32\Drivers\cdr4_xp.sys [10224] O58 - SDL:[MD5.DE056F1329FFA68304F8ABDE2425F813] - 31/03/2010 - 02:05:46 ----- . (.Sonic Solutions - CDRAL 64-bit Place Holder Driver (see PxHelp).) -- C:\Windows\System32\Drivers\cdralw2k.sys [10224] O58 - SDL:[MD5.C6796EA22B513E3457514D92DCDB1A3D] - 22/08/2013 - 09:46:35 ---A- . (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\Drivers\cdrom.sys [164352] O58 - SDL:[MD5.BE9936EDD3267FAAFF94A7835867F00B] - 22/08/2013 - 12:38:25 ---A- . (.Microsoft Corporation - Consumer IR Class Driver for eHome.) -- C:\Windows\System32\Drivers\circlass.sys [44032] O58 - SDL:[MD5.E18B615257E80E4A1EC6148943CED42B] - 22/08/2013 - 14:25:40 ---A- . (.Microsoft Corporation - SCSI Class System Dll.) -- C:\Windows\System32\Drivers\Classpnp.sys [337760] O58 - SDL:[MD5.7F006813C2AFE622C13D7AF94F56CD07] - 22/08/2013 - 13:39:44 ---A- . (.Microsoft Corporation - Common Log File System Driver.) -- C:\Windows\System32\Drivers\clfs.sys [377696] O58 - SDL:[MD5.EF6EF85DADC3184A10D8F2F7159973CB] - 22/08/2013 - 12:39:43 ---A- . (.Microsoft Corporation - Control Method Battery Driver.) -- C:\Windows\System32\Drivers\CmBatt.sys [25472] O58 - SDL:[MD5.825BE21E6395E00698D8A23955A87972] - 22/08/2013 - 13:41:39 ---A- . (.Microsoft Corporation - Kernel Cryptography, Next Generation.) -- C:\Windows\System32\Drivers\cng.sys [564520] O58 - SDL:[MD5.03AAED827C36F35D70900558B8274905] - 22/08/2013 - 12:38:48 ---A- . (.Microsoft Corporation - Multi-Transport Composite Bus Enumerator.) -- C:\Windows\System32\Drivers\CompositeBus.sys [36352] O58 - SDL:[MD5.A1FF7DFBFBE164CF92603C651D304DD2] - 22/08/2013 - 14:25:40 ---A- . (.Microsoft Corporation - Console Driver.) -- C:\Windows\System32\Drivers\condrv.sys [43008] O58 - SDL:[MD5.FA47B0AA255B7CF4519E995C6404AE22] - 22/08/2013 - 13:43:41 ---A- . (.Microsoft Corporation - Crash Dump Driver.) -- C:\Windows\System32\Drivers\crashdmp.sys [68960] O58 - SDL:[MD5.EE2F3C0D6ADBC975D6B621EC15ACF4E2] - 14/11/2013 - 08:15:26 ---A- . (.Microsoft Corporation - Windows Client Side Caching Driver.) -- C:\Windows\System32\Drivers\csc.sys [559616] O58 - SDL:[MD5.315BA4BC19316D72B2E037534E048B93] - 22/08/2013 - 13:50:19 ---A- . (.Microsoft Corporation - DAM Kernel Driver.) -- C:\Windows\System32\Drivers\dam.sys [57696] O58 - SDL:[MD5.5DB26D7E0216D0BF364A81D3829AD7B9] - 22/08/2013 - 12:38:00 ---A- . (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\Drivers\dfsc.sys [134656] O58 - SDL:[MD5.4D40C9B33F738797CF50E77CB7C53E85] - 22/08/2013 - 13:39:44 ---A- . (.Microsoft Corporation - PnP Disk Driver.) -- C:\Windows\System32\Drivers\disk.sys [100192] O58 - SDL:[MD5.224C2CB37497472C345CB2A02DF11363] - 22/08/2013 - 13:43:40 ---A- . (.Microsoft Corporation - Crash Dump Disk Driver.) -- C:\Windows\System32\Drivers\Diskdump.sys [36192] O58 - SDL:[MD5.407B4FC1AEE5C19AC2ED7118CBB271E9] - 22/08/2013 - 12:40:38 ---A- . (.Microsoft Corporation - Boot Over USB Dump Driver.) -- C:\Windows\System32\Drivers\Dmpusbstor.sys [13312] O58 - SDL:[MD5.EB70A894708D1BC176AFD690FF06085F] - 22/08/2013 - 12:37:14 ---A- . (.Microsoft Corporation - Dynamic Memory.) -- C:\Windows\System32\Drivers\dmvsc.sys [29696] O58 - SDL:[MD5.27069CFFF29B7F04F4B1BB10154BE52B] - 19/10/2012 - 04:52:32 ---A- . (.Windows (R) Win 7 DDK provider - IEEE-1284.4-1999 Driver.) -- C:\Windows\System32\Drivers\Dot4.sys [151968] O58 - SDL:[MD5.0BD906A79F9CE3013F7D9D0AC45F9F9D] - 25/09/2012 - 08:52:04 ---A- . (.Windows (R) Win 7 DDK provider - IEEE-1284.4 Print Class Driver.) -- C:\Windows\System32\Drivers\Dot4Prt.sys [27040] O58 - SDL:[MD5.B7D595F2F464F7B628AD53F06547792C] - 19/10/2012 - 04:52:32 ---A- . (.Microsoft Corporation - DOT4USB filter driver.) -- C:\Windows\System32\Drivers\Dot4usb.sys [49056] O58 - SDL:[MD5.3103BBAB41F0C75BE6FA302439C9B9D6] - 22/08/2013 - 12:39:24 ---A- . (.Microsoft Corporation - Microsoft Trusted Audio Drivers.) -- C:\Windows\System32\Drivers\drmk.sys [88576] O58 - SDL:[MD5.DDC11A202207C0400CBE07315B8FDE5E] - 22/08/2013 - 13:40:31 ---A- . (.Microsoft Corporation - Microsoft Trusted Audio Drivers.) -- C:\Windows\System32\Drivers\drmkaud.sys [14560] O58 - SDL:[MD5.05F5C162881BE293956C60456EDB0092] - 22/08/2013 - 13:39:46 ---A- . (.Microsoft Corporation - ATAPI Dump Driver.) -- C:\Windows\System32\Drivers\Dumpata.sys [33632] O58 - SDL:[MD5.05C674A72412E6400D5A2684C867402D] - 22/08/2013 - 13:45:59 ---A- . (.Microsoft Corporation - Bitlocker Drive Encryption Crashdump Filter.) -- C:\Windows\System32\Drivers\dumpfve.sys [71896] O58 - SDL:[MD5.E194BE41AE3C80CFBBEBAC3394160091] - 14/11/2013 - 08:30:54 ---A- . (.Microsoft Corporation - SD Crashdump Port Driver.) -- C:\Windows\System32\Drivers\dumpsd.sys [151384] O58 - SDL:[MD5.13B160C1913F012BD1615EB1398D3779] - 08/01/2014 - 02:41:24 ---A- . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys [1530712] O58 - SDL:[MD5.22EDC0DE06A0272DFA4C7B47B5D8E377] - 08/01/2014 - 02:41:24 ---A- . (.Microsoft Corporation - DirectX Graphics MMS.) -- C:\Windows\System32\Drivers\dxgmms1.sys [382808] O58 - SDL:[MD5.43531A5993380CC5113242C29D265FD9] - 22/08/2013 - 13:43:40 ---A- . (.Microsoft Corporation - Enhanced Storage Class driver for IEEE 1667 devices.) -- C:\Windows\System32\Drivers\EhStorClass.sys [82784] O58 - SDL:[MD5.6F8E738A9505A388B1157FDDE7B3101B] - 22/08/2013 - 13:43:40 ---A- . (.Microsoft Corporation - Microsoft driver for storage devices supporting IEEE 1667 and T.) -- C:\Windows\System32\Drivers\EhStorTcgDrv.sys [114016] O58 - SDL:[MD5.DFFFAE1442BA4076E18EED5E406FA0D3] - 22/08/2013 - 12:38:45 ---A- . (.Microsoft Corporation - Error Device Driver.) -- C:\Windows\System32\Drivers\errdev.sys [10240] O58 - SDL:[MD5.114BCFDF367FF37C3F1B0A96AF542E4D] - 22/08/2013 - 13:43:45 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\Drivers\evbda.sys [3357024] O58 - SDL:[MD5.7729D294A555C7AEB281ED8E4D0E01E4] - 22/08/2013 - 12:40:18 ---A- . (.Microsoft Corporation - Microsoft Extended FAT File System.) -- C:\Windows\System32\Drivers\exfat.sys [200704] O58 - SDL:[MD5.7C4E0D5900B2A1D11EDD626D6DDB937B] - 22/08/2013 - 13:49:30 ---A- . (.Microsoft Corporation - Fast FAT File System Driver.) -- C:\Windows\System32\Drivers\fastfat.sys [217952] O58 - SDL:[MD5.5D8402613E778B3BD45E687A8372710B] - 22/08/2013 - 12:40:18 ---A- . (.Microsoft Corporation - Floppy Disk Controller Driver.) -- C:\Windows\System32\Drivers\fdc.sys [30720] O58 - SDL:[MD5.957A7A8F5ACCAF23DD9DFF6DAA393CE5] - 22/08/2013 - 13:49:30 ---A- . (.Microsoft Corporation - FileInfo Filter Driver.) -- C:\Windows\System32\Drivers\fileinfo.sys [79200] O58 - SDL:[MD5.A1A66C4FDAFD6B0289523232AFB7D8AF] - 22/08/2013 - 12:39:41 ---A- . (.Microsoft Corporation - File Trace Filter Driver.) -- C:\Windows\System32\Drivers\filetrace.sys [34816] O58 - SDL:[MD5.BE743083CF7063C486A4398E3AEFE59A] - 22/08/2013 - 12:40:18 ---A- . (.Microsoft Corporation - Floppy Driver.) -- C:\Windows\System32\Drivers\flpydisk.sys [25088] O58 - SDL:[MD5.60D5067FCE6D9433D35E04C01D8538B3] - 22/08/2013 - 14:25:41 ---A- . (.Microsoft Corporation - Gestionnaire de filtres de système de fichiers Microsoft.) -- C:\Windows\System32\Drivers\fltMgr.sys [358752] O58 - SDL:[MD5.F59F2C574AA5D84477EB89F87C938F16] - 20/12/2013 - 15:51:08 ---A- . (...) -- C:\Windows\System32\Drivers\fsbts.sys [56016] O58 - SDL:[MD5.35005534E600E993A90B036E4E599F2B] - 22/08/2013 - 13:49:30 ---A- . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\fsdepends.sys [56672] O58 - SDL:[MD5.09F460AFEDCA03F3BF6E07D1CCC9AC42] - 22/08/2013 - 14:25:40 ---A- . (.Microsoft Corporation - File System Recognizer Driver.) -- C:\Windows\System32\Drivers\fs_rec.sys [30048] O58 - SDL:[MD5.83E1F0983B02A6F8EC764D18E24ECF10] - 14/11/2013 - 08:31:10 ---A- . (.Microsoft Corporation - BitLocker Drive Encryption Driver.) -- C:\Windows\System32\Drivers\fvevol.sys [579416] O58 - SDL:[MD5.9ED04A7137B4451303407DFBAB15457A] - 22/08/2013 - 14:25:35 ---A- . (.Microsoft Corporation - FWP/IPsec Kernel-Mode API.) -- C:\Windows\System32\Drivers\FWPKCLNT.SYS [428896] O58 - SDL:[MD5.9591D0B9351ED489EAFD9D1CE52A8015] - 22/08/2013 - 09:46:33 ---A- . (.Microsoft Corporation - Processor Driver.) -- C:\Windows\System32\Drivers\fxppm.sys [27136] O58 - SDL:[MD5.FC3EF65EE20D39F8749C2218DBA681CA] - 22/08/2013 - 13:43:45 ---A- . (.Microsoft Corporation - Filtre AGPv3.0 générique Microsoft pour plateformes de processe.) -- C:\Windows\System32\Drivers\GAGP30KX.SYS [65888] O58 - SDL:[MD5.03909BDBFF0DCACCABF2B2D4ADEE44DC] - 22/08/2013 - 12:38:38 ---A- . (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\Drivers\hdaudbus.sys [78336] O58 - SDL:[MD5.56F69F7C25FB67C970997D7066DBC593] - 22/08/2013 - 12:38:21 ---A- . (.Microsoft Corporation - High Definition Audio Function Driver.) -- C:\Windows\System32\Drivers\HdAudio.sys [395776] O58 - SDL:[MD5.10A70BC1871CD955D85CD88372724906] - 22/08/2013 - 12:39:01 ---A- . (.Microsoft Corporation - Hid Battery Driver.) -- C:\Windows\System32\Drivers\hidbatt.sys [26624] O58 - SDL:[MD5.1EA1B4FABB8CC348E73CA90DBA22E104] - 22/08/2013 - 12:38:39 ---A- . (.Microsoft Corporation - Pilote de miniport Bluetooth pour les périphériques HID.) -- C:\Windows\System32\Drivers\hidbth.sys [96768] O58 - SDL:[MD5.ADB26481D4D247C1D6986EC45FFDAB53] - 22/08/2013 - 12:39:14 ---A- . (.Microsoft Corporation - Bibliothèque Hid Class.) -- C:\Windows\System32\Drivers\hidclass.sys [111616] O58 - SDL:[MD5.C241A8BAFBBFC90176EA0F5240EACC17] - 22/08/2013 - 12:37:28 ---A- . (.Microsoft Corporation - I2C HID Miniport Driver.) -- C:\Windows\System32\Drivers\hidi2c.sys [41472] O58 - SDL:[MD5.9BDDEE26255421017E161CCB9D5EDA95] - 22/08/2013 - 12:39:16 ---A- . (.Microsoft Corporation - Infrared Miniport Driver for Input Devices.) -- C:\Windows\System32\Drivers\hidir.sys [45568] O58 - SDL:[MD5.7FFB24B4A54B1ACD46CF6899D879CC9F] - 22/08/2013 - 12:40:26 ---A- . (.Microsoft Corporation - Hid Parsing Library.) -- C:\Windows\System32\Drivers\hidparse.sys [32512] O58 - SDL:[MD5.F31397220D9687E11EB448649AA6E038] - 22/08/2013 - 12:38:58 ---A- . (.Microsoft Corporation - USB Miniport Driver for Input Devices.) -- C:\Windows\System32\Drivers\hidusb.sys [33792] O58 - SDL:[MD5.A6AACEA4C785789BDA5912AD1FEDA80D] - 22/08/2013 - 13:43:45 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\System32\Drivers\HpSAMD.sys [64352] O58 - SDL:[MD5.3502776E366C913D49C0DA928AE3E6CB] - 22/08/2013 - 13:32:16 ---A- . (.Microsoft Corporation - HTTP Pile du protocole.) -- C:\Windows\System32\Drivers\http.sys [994144] O58 - SDL:[MD5.90656C0B3864804B090434EFC582404F] - 22/08/2013 - 13:39:47 ---A- . (.Microsoft Corporation - Hardware Policy Driver.) -- C:\Windows\System32\Drivers\hwpolicy.sys [24416] O58 - SDL:[MD5.6D6F9E3BF0484967E52F7E846BFF1CA1] - 22/08/2013 - 12:37:49 ---A- . (.Microsoft Corporation - Microsoft VMBus Synthetic Keyboard Driver.) -- C:\Windows\System32\Drivers\hyperkbd.sys [13824] O58 - SDL:[MD5.907C870F8C31F8DDD6F090857B46AB25] - 22/08/2013 - 12:39:20 ---A- . (.Microsoft Corporation - Microsoft VMBus Video Device Miniport Driver.) -- C:\Windows\System32\Drivers\HyperVideo.sys [22016] O58 - SDL:[MD5.84CFC5EFA97D0C965EDE1D56F116A541] - 22/08/2013 - 12:39:15 ---A- . (.Microsoft Corporation - Pilote de port i8042.) -- C:\Windows\System32\Drivers\i8042prt.sys [107520] O58 - SDL:[MD5.5D90E32E36CE5D4C535D17CE08AEAF05] - 30/07/2013 - 19:47:35 ---A- . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\Windows\System32\Drivers\iaLPSSi_GPIO.sys [24568] O58 - SDL:[MD5.DD05E7E80F52ADE9AEB292819920F32C] - 25/07/2013 - 20:05:39 ---A- . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\Windows\System32\Drivers\iaLPSSi_I2C.sys [99320] O58 - SDL:[MD5.08BFE413B0B4AA8DFA4B5684CE06D3DC] - 10/08/2013 - 01:39:30 ---A- . (.Intel Corporation - Intel Rapid Storage Technology driver (inbox) - x64.) -- C:\Windows\System32\Drivers\iaStorAV.sys [651248] O58 - SDL:[MD5.A2200C3033FA4EF249FC096A7A7D02A2] - 22/08/2013 - 13:43:45 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\Drivers\iaStorV.sys [412000] O58 - SDL:[MD5.83915E05E168AB63B48302F7DC5D8E00] - 23/03/2012 - 18:13:28 ---A- . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\Drivers\igdkmd64.sys [10627744] O58 - SDL:[MD5.4E448FCFFD00E8D657CD9E48D3E47157] - 22/08/2013 - 13:43:44 ---A- . (.Microsoft Corporation - Intel PCI IDE Driver.) -- C:\Windows\System32\Drivers\intelide.sys [18272] O58 - SDL:[MD5.139CFCDCD36B1B1782FD8C0014AC9B0E] - 22/12/2013 - 00:26:36 ---A- . (.Microsoft Corporation - Intel Power Engine Plugin.) -- C:\Windows\System32\Drivers\intelpep.sys [39768] O58 - SDL:[MD5.47E74A8E53C7C24DCE38311E1451C1D9] - 22/08/2013 - 09:46:35 ---A- . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\Drivers\intelppm.sys [98816] O58 - SDL:[MD5.9DB76D7F9E4E53EFE5DD8C53DE837514] - 22/08/2013 - 12:35:51 ---A- . (.Microsoft Corporation - IP FILTER DRIVER.) -- C:\Windows\System32\Drivers\ipfltdrv.sys [84992] O58 - SDL:[MD5.9949A3C7590B8C536C05312205079A82] - 22/08/2013 - 12:38:56 ---A- . (.Microsoft Corporation - PILOT IPMI WMI.) -- C:\Windows\System32\Drivers\IPMIDrv.sys [79360] O58 - SDL:[MD5.B7342B3C58E91107F6E946A93D9D4EFD] - 27/11/2013 - 13:02:29 ---A- . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys [142848] O58 - SDL:[MD5.D826F4874A372FAE2F42478E0975EA02] - 22/08/2013 - 12:37:35 ---A- . (.Microsoft Corporation - IRDA Protocol Driver.) -- C:\Windows\System32\Drivers\irda.sys [118784] O58 - SDL:[MD5.AE44C526AB5F8A487D941CEB57B10C97] - 22/08/2013 - 12:38:30 ---A- . (.Microsoft Corporation - Infra-Red Bus Enumerator.) -- C:\Windows\System32\Drivers\irenum.sys [17920] O58 - SDL:[MD5.8AFEEA3955AA43616A60F133B1D25F21] - 22/08/2013 - 13:43:45 ---A- . (.Microsoft Corporation - Pilote de bus PNP ISA.) -- C:\Windows\System32\Drivers\isapnp.sys [21856] O58 - SDL:[MD5.45369E037410609D769852A1CE46A184] - 18/06/2013 - 15:45:14 ---A- . (.Broadcom Corporation - Broadcom NetLink (TM) Gigabit Ethernet NDIS6.x Unified Driver..) -- C:\Windows\System32\Drivers\k57nd60a.sys [425984] O58 - SDL:[MD5.8BE92376799B6B44D543E8D07CDCF885] - 22/08/2013 - 13:43:45 ---A- . (.Microsoft Corporation - Pilote de la classe Clavier.) -- C:\Windows\System32\Drivers\kbdclass.sys [58208] O58 - SDL:[MD5.FB6E47E569D4872ABEB506BE03A45FBA] - 22/08/2013 - 12:39:13 ---A- . (.Microsoft Corporation - Pilote de filtre clavier HID.) -- C:\Windows\System32\Drivers\kbdhid.sys [32256] O58 - SDL:[MD5.DB7A09BC90DF20F44F16F8B0F9ED3491] - 14/11/2013 - 08:15:35 ---A- . (.Microsoft Corporation - Keyboard Lockdown Subsystem.) -- C:\Windows\System32\Drivers\kbldfltr.sys [22272] O58 - SDL:[MD5.813871C7D402A05F2E3A7075F9584A05] - 22/08/2013 - 12:38:26 ---A- . (.Microsoft Corporation - Microsoft Kernel Debugger Network Miniport.) -- C:\Windows\System32\Drivers\kdnic.sys [19456] O58 - SDL:[MD5.783BEB99743BACB9586CCB70356449C5] - 31/05/2013 - 15:53:12 ---A- . (.QFX Software Corporation - KeyScrambler Keyboard Encryption Driver.) -- C:\Windows\System32\Drivers\keyscrambler.sys [222200] O58 - SDL:[MD5.65EBBB459B66C818E809DD8135DCFFA2] - 14/11/2013 - 08:30:56 ---A- . (.Microsoft Corporation - Kernel CSA Library.) -- C:\Windows\System32\Drivers\ks.sys [285696] O58 - SDL:[MD5.ADDECBCC777665BD113BED437E602AB0] - 14/11/2013 - 08:30:55 ---A- . (.Microsoft Corporation - Kernel Security Support Provider Interface.) -- C:\Windows\System32\Drivers\ksecdd.sys [101208] O58 - SDL:[MD5.7296EA420134EAC390798B3232D066A4] - 22/08/2013 - 13:44:43 ---A- . (.Microsoft Corporation - Kernel Security Support Provider Interface Packages.) -- C:\Windows\System32\Drivers\ksecpkg.sys [192864] O58 - SDL:[MD5.11AFB527AA370B1DAFD5C36F35F6D45F] - 22/08/2013 - 12:39:31 ---A- . (.Microsoft Corporation - Kernel Streaming WOW Thunk Service.) -- C:\Windows\System32\Drivers\ksthunk.sys [21248] O58 - SDL:[MD5.C09010B3680860131631F53E8FE7BAD8] - 22/08/2013 - 12:36:18 ---A- . (.Microsoft Corporation - Link-Layer Topology Mapper I/O Driver.) -- C:\Windows\System32\Drivers\lltdio.sys [59392] O58 - SDL:[MD5.C755AE4635457AA2A11F79C0DF857ABC] - 22/08/2013 - 13:43:44 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas.sys [109408] O58 - SDL:[MD5.ADAC09CBE7A2040B7F68B5E5C9A75141] - 22/08/2013 - 13:43:45 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas2.sys [93536] O58 - SDL:[MD5.04D1274BB9BBCCF12BD12374002AA191] - 22/08/2013 - 13:43:44 ---A- . (.LSI Corporation - LSI SAS Gen3 Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas3.sys [81760] O58 - SDL:[MD5.327469EEF3833D0C584B7E88A76AEC0C] - 22/08/2013 - 13:43:45 ---A- . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sss.sys [82784] O58 - SDL:[MD5.5EF604B0698F4FA962778285E8C5F1F2] - 22/08/2013 - 12:39:36 ---A- . (.Microsoft Corporation - Pilote de filtre de virtualisation de fichier LUA.) -- C:\Windows\System32\Drivers\luafv.sys [123904] O58 - SDL:[MD5.0BB97D43299910CBFBA59C461B99B910] - 04/04/2013 - 14:50:32 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\mbam.sys [25928] O58 - SDL:[MD5.C895E3FAE8628EAA4ADE0F52862CA575] - 22/08/2013 - 12:39:38 ---A- . (.Microsoft Corporation - Medium changer class driver.) -- C:\Windows\System32\Drivers\mcd.sys [22016] O58 - SDL:[MD5.EB5C03A070F30D64A6DF80E53B22F53F] - 22/08/2013 - 13:43:45 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\Drivers\megasas.sys [56672] O58 - SDL:[MD5.F6F13533196DE7A582D422B0241E4363] - 22/08/2013 - 13:43:45 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\Drivers\megasr.sys [575840] O58 - SDL:[MD5.8B38C44F69259987C95135C9627E2378] - 22/08/2013 - 12:40:15 ---A- . (.Microsoft Corporation - Pilote de périphérique modem.) -- C:\Windows\System32\Drivers\modem.sys [40960] O58 - SDL:[MD5.601589000CC90F0DF8DA2CC254A3CCC9] - 22/08/2013 - 12:36:37 ---A- . (.Microsoft Corporation - Monitor Driver.) -- C:\Windows\System32\Drivers\monitor.sys [30208] O58 - SDL:[MD5.CEAC6D40FE887CE8406C2393CF97DE06] - 22/08/2013 - 13:43:45 ---A- . (.Microsoft Corporation - Pilote de la classe Souris.) -- C:\Windows\System32\Drivers\mouclass.sys [51040] O58 - SDL:[MD5.02D98BF804084E9A0D69D1C69B02CCA9] - 22/08/2013 - 12:39:13 ---A- . (.Microsoft Corporation - Pilote de filtre souris HID.) -- C:\Windows\System32\Drivers\mouhid.sys [30208] O58 - SDL:[MD5.515549560D481138E6E21AF7C6998E56] - 22/08/2013 - 14:25:40 ---A- . (.Microsoft Corporation - Gestionnaire des points de montage.) -- C:\Windows\System32\Drivers\mountmgr.sys [101728] O58 - SDL:[MD5.F170510BE94CF45E3C6274578F6204B2] - 22/08/2013 - 12:36:06 ---A- . (.Microsoft Corporation - Microsoft Protection Service Driver.) -- C:\Windows\System32\Drivers\mpsdrv.sys [74240] O58 - SDL:[MD5.59DCEC7499095DE5AED741358037AE2D] - 22/08/2013 - 12:37:19 ---A- . (.Microsoft Corporation - Windows NT WebDav Minirdr.) -- C:\Windows\System32\Drivers\mrxdav.sys [140288] O58 - SDL:[MD5.79B6F3DF7CDFD12159871FF71464F0CE] - 23/11/2013 - 08:08:19 ---A- . (.Microsoft Corporation - Minirdr SMB Windows NT.) -- C:\Windows\System32\Drivers\mrxsmb.sys [403456] O58 - SDL:[MD5.295771B092D4F7FCF2B62F80CCD14320] - 22/08/2013 - 12:35:42 ---A- . (.Microsoft Corporation - Longhorn SMB Downlevel SubRdr.) -- C:\Windows\System32\Drivers\mrxsmb10.sys [283648] O58 - SDL:[MD5.AAF56E4E84D35411B4E446C445732DFE] - 14/11/2013 - 08:30:55 ---A- . (.Microsoft Corporation - Longhorn SMB 2.0 Redirector.) -- C:\Windows\System32\Drivers\mrxsmb20.sys [207360] O58 - SDL:[MD5.D13329FBF8345B28AB30F44CC247DC08] - 22/08/2013 - 14:25:41 ---A- . (.Microsoft Corporation - Mailslot driver.) -- C:\Windows\System32\Drivers\msfs.sys [30208] O58 - SDL:[MD5.FDA72810CA2F8409D9B31E833C448E34] - 22/08/2013 - 13:43:48 ---A- . (.Microsoft Corporation - GPIO Class Extension Driver.) -- C:\Windows\System32\Drivers\msgpioclx.sys [146272] O58 - SDL:[MD5.C6B474E46F9E543B875981ED3FFE6ADD] - 22/08/2013 - 13:43:48 ---A- . (.Microsoft Corporation - GPIO Button Driver.) -- C:\Windows\System32\Drivers\msgpiowin32.sys [41824] O58 - SDL:[MD5.65C92EB9D08DB5C69F28C7FFD4E84E31] - 22/08/2013 - 12:39:06 ---A- . (.Microsoft Corporation - Pass-through HID to KMDF Filter Driver.) -- C:\Windows\System32\Drivers\mshidkmdf.sys [8192] O58 - SDL:[MD5.52299F086AC2DAFD100DD5DC4A8614BA] - 22/08/2013 - 12:39:06 ---A- . (.Microsoft Corporation - Pilote direct pour interface HID-UMDF.) -- C:\Windows\System32\Drivers\mshidumdf.sys [9728] O58 - SDL:[MD5.36D92AF3343C3A3E57FEF11C449AEA4C] - 22/08/2013 - 13:43:49 ---A- . (.Microsoft Corporation - ISA Driver.) -- C:\Windows\System32\Drivers\msisadrv.sys [17248] O58 - SDL:[MD5.034D4BD9DC67C64F3A4C8A049B5173BF] - 22/08/2013 - 13:43:49 ---A- . (.Microsoft Corporation - Microsoft iSCSI Initiator Driver.) -- C:\Windows\System32\Drivers\msiscsi.sys [274784] O58 - SDL:[MD5.A9BBBD2BAE6142253B9195E949AC2E8D] - 22/08/2013 - 12:39:31 ---A- . (.Microsoft Corporation - MS KS Server.) -- C:\Windows\System32\Drivers\mskssrv.sys [10624] O58 - SDL:[MD5.375E44168F2DFB91A68B8A3F619C5A7C] - 22/08/2013 - 12:36:07 ---A- . (.Microsoft Corporation - Pilote de protocole LLDP (Link Layer Discovery Protocol) Micros.) -- C:\Windows\System32\Drivers\mslldp.sys [66560] O58 - SDL:[MD5.7B2128EB875DCBC006E6A913211006D6] - 22/08/2013 - 12:39:30 ---A- . (.Microsoft Corporation - MS Proxy Clock.) -- C:\Windows\System32\Drivers\mspclock.sys [7040] O58 - SDL:[MD5.1E88171579B218115C7A772F8DE04BD8] - 22/08/2013 - 12:39:31 ---A- . (.Microsoft Corporation - MS Proxy Quality Manager.) -- C:\Windows\System32\Drivers\mspqm.sys [6784] O58 - SDL:[MD5.BBE2A455053E63BECBF42C2F9B21FAE0] - 22/08/2013 - 14:25:35 ---A- . (.Microsoft Corporation - Kernel Remote Procedure Call Provider.) -- C:\Windows\System32\Drivers\msrpc.sys [366432] O58 - SDL:[MD5.8D6B7D515C5CBCDB75B928A0B73C3C5E] - 22/08/2013 - 13:49:29 ---A- . (.Microsoft Corporation - System Management BIOS Driver.) -- C:\Windows\System32\Drivers\mssmbios.sys [37728] O58 - SDL:[MD5.115019AE01E0EB9C048530D2928AB4A2] - 22/08/2013 - 12:38:38 ---A- . (.Microsoft Corporation - WDM Tee/Communication Transform Filter.) -- C:\Windows\System32\Drivers\mstee.sys [7936] O58 - SDL:[MD5.96D604A35070360F0DD4A7A8AF410B5E] - 22/08/2013 - 12:37:36 ---A- . (.Microsoft Corporation - Pilote HID multipoint Microsoft.) -- C:\Windows\System32\Drivers\MTConfig.sys [13312] O58 - SDL:[MD5.619CA29326B82372621DB2C0964D8365] - 22/08/2013 - 13:49:29 ---A- . (.Microsoft Corporation - Multiple UNC Provider Driver.) -- C:\Windows\System32\Drivers\mup.sys [78688] O58 - SDL:[MD5.B8C35C94DCB2DFEAF03BB42131F2F77F] - 22/08/2013 - 13:43:49 ---A- . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\Windows\System32\Drivers\mvumis.sys [63840] O58 - SDL:[MD5.ED39D676080A1AEA755F1DEC1A8DF1A4] - 25/11/2013 - 02:32:57 ---A- . (.Microsoft Corporation - NDIS (Network Driver Interface Specification).) -- C:\Windows\System32\Drivers\ndis.sys [1119064] O58 - SDL:[MD5.C6BB12BC35D1637CA17AE16D3A4725EB] - 22/08/2013 - 12:38:06 ---A- . (.Microsoft Corporation - Microsoft NDIS Packet Capture Filter Driver.) -- C:\Windows\System32\Drivers\ndiscap.sys [43008] O58 - SDL:[MD5.9F1DA20E943BE7AA4ED5F3E1EBA78B37] - 22/08/2013 - 12:36:17 ---A- . (.Microsoft Corporation - Microsoft Network Adapter Multiplexor.) -- C:\Windows\System32\Drivers\NdisImPlatform.sys [124928] O58 - SDL:[MD5.9423421E735BD5394351E0C47C76BB92] - 22/08/2013 - 12:39:16 ---A- . (.Microsoft Corporation - NDIS 3.0 connection wrapper driver.) -- C:\Windows\System32\Drivers\ndistapi.sys [24576] O58 - SDL:[MD5.B832B35055BA2B7B4181861FF94D8E59] - 22/08/2013 - 12:37:34 ---A- . (.Microsoft Corporation - Pilote d’E/S du mode utilisateur NDIS.) -- C:\Windows\System32\Drivers\ndisuio.sys [60416] O58 - SDL:[MD5.1F58E48EF75F34C35D8E93A0DC535CFE] - 22/08/2013 - 12:36:25 ---A- . (.Microsoft Corporation - Énumérateur de cartes réseau virtuelles Microsoft.) -- C:\Windows\System32\Drivers\NdisVirtualBus.sys [16384] O58 - SDL:[MD5.DEC29080202D4F9F17F55E18BCFCC41A] - 22/08/2013 - 12:35:56 ---A- . (.Microsoft Corporation - MS PPP Framing Driver (Strong Encryption).) -- C:\Windows\System32\Drivers\ndiswan.sys [220672] O58 - SDL:[MD5.A5BD69A8812FA79D1A487691DD3FB244] - 22/08/2013 - 12:38:16 ---A- . (.Microsoft Corporation - NDIS Proxy.) -- C:\Windows\System32\Drivers\ndproxy.sys [72192] O58 - SDL:[MD5.5A072F0B90C29C5233D78BE33EF5ED78] - 22/08/2013 - 12:35:42 ---A- . (.Microsoft Corporation - Windows Network Data Usage Monitoring Driver.) -- C:\Windows\System32\Drivers\Ndu.sys [103424] O58 - SDL:[MD5.A83D67D347A684F10B7D3019C8A6380C] - 22/08/2013 - 12:38:58 ---A- . (.Microsoft Corporation - NetBIOS interface driver.) -- C:\Windows\System32\Drivers\netbios.sys [48128] O58 - SDL:[MD5.0217532E19A748F0E5D569307363D5FD] - 22/08/2013 - 12:37:02 ---A- . (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\Drivers\netbt.sys [282624] O58 - SDL:[MD5.9E900970FEDF9AF53687940F44E05227] - 22/08/2013 - 14:25:35 ---A- . (.Microsoft Corporation - Network I/O Subsystem.) -- C:\Windows\System32\Drivers\netio.sys [478048] O58 - SDL:[MD5.70414DB660BFBB7BD58FCE8EA4364E1B] - 22/08/2013 - 12:36:43 ---A- . (.Microsoft Corporation - Virtual NDIS6.3 Miniport.) -- C:\Windows\System32\Drivers\netvsc63.sys [87040] O58 - SDL:[MD5.8F44A2F57C9F1A19AC9C6288C10FB351] - 22/08/2013 - 14:25:41 ---A- . (.Microsoft Corporation - NPFS Driver.) -- C:\Windows\System32\Drivers\npfs.sys [58880] O58 - SDL:[MD5.CBDB4F0871C88DF930FC0E8588CA67FC] - 22/08/2013 - 12:38:22 ---A- . (.Microsoft Corporation - Named pipe service triggers.) -- C:\Windows\System32\Drivers\npsvctrig.sys [23040] O58 - SDL:[MD5.E490B459978CB87779E84C761D22B827] - 22/08/2013 - 14:25:35 ---A- . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys [39936] O58 - SDL:[MD5.4412D565C0278C401575E11072C7DCE3] - 22/08/2013 - 14:25:41 ---A- . (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\Windows\System32\Drivers\ntfs.sys [2011488] O58 - SDL:[MD5.EF1B290FC9F0E47CC0B537292BEE5904] - 22/08/2013 - 14:25:41 ---A- . (.Microsoft Corporation - NULL Driver.) -- C:\Windows\System32\Drivers\null.sys [5632] O58 - SDL:[MD5.BC6B5942AFF25EBAF62DE43C3807EDF8] - 22/08/2013 - 13:43:31 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\Drivers\nvraid.sys [150368] O58 - SDL:[MD5.1F43ABFFAC3D6CA356851D517392966E] - 22/08/2013 - 13:43:32 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\Drivers\nvstor.sys [168288] O58 - SDL:[MD5.6934A936A7369DFE37B7DBA93F5E5E49] - 22/08/2013 - 13:43:32 ---A- . (.Microsoft Corporation - Filtre AGP NForce NT.) -- C:\Windows\System32\Drivers\NV_AGP.SYS [124768] O58 - SDL:[MD5.CF8B989D89D6807B887690F2CF24EFD9] - 14/11/2013 - 08:30:57 ---A- . (.Microsoft Corporation - Pilote de miniport WiFi natif.) -- C:\Windows\System32\Drivers\nwifi.sys [442368] O58 - SDL:[MD5.8528BB05E4D4E25945F78B00B2555FB7] - 22/08/2013 - 12:36:07 ---A- . (.Microsoft Corporation - Planificateur de paquets QoS.) -- C:\Windows\System32\Drivers\pacer.sys [151552] O58 - SDL:[MD5.764B1121867B2D9B31C491668AC72B2B] - 22/08/2013 - 12:40:02 ---A- . (.Microsoft Corporation - Pilote de port parallèle.) -- C:\Windows\System32\Drivers\parport.sys [94208] O58 - SDL:[MD5.EF0C1749C9A8CEE9A457473D433CC00F] - 22/08/2013 - 14:25:40 ---A- . (.Microsoft Corporation - Partition Management Driver.) -- C:\Windows\System32\Drivers\partmgr.sys [88928] O58 - SDL:[MD5.3FDE033DFB0D07F8B7D5C9A3044AA121] - 17/10/2012 - 14:53:46 ---A- . (.Nokia - PCCS Mode Change Filter Driver.) -- C:\Windows\System32\Drivers\pccsmcfdx64.sys [26112] O58 - SDL:[MD5.C0D3F3BC1C84B4BA746D9847314C1164] - 22/08/2013 - 13:43:32 ---A- . (.Microsoft Corporation - Énumérateur Plug-and-Play PCI pour NT.) -- C:\Windows\System32\Drivers\pci.sys [285536] O58 - SDL:[MD5.346E38FCC6859A727DD28AFAD1F0AFF4] - 22/08/2013 - 13:43:31 ---A- . (.Microsoft Corporation - Generic PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\pciide.sys [14688] O58 - SDL:[MD5.5D4D6146346B82EB3CA4EE0C5573193C] - 22/08/2013 - 13:43:32 ---A- . (.Microsoft Corporation - PCI IDE Bus Driver Extension.) -- C:\Windows\System32\Drivers\pciidex.sys [48992] O58 - SDL:[MD5.4D3BDCC1C7B40C9D7B6AD990E6DEC397] - 22/08/2013 - 13:49:30 ---A- . (.Microsoft Corporation - Pilote de bus PCMCIA.) -- C:\Windows\System32\Drivers\pcmcia.sys [114528] O58 - SDL:[MD5.BF28771D1436C88BE1D297D3098B0F7D] - 22/08/2013 - 13:39:15 ---A- . (.Microsoft Corporation - Performance Counters for Windows Driver.) -- C:\Windows\System32\Drivers\pcw.sys [50016] O58 - SDL:[MD5.B9D968D8E2B0F9C6301CEB39CFC9B9E4] - 22/12/2013 - 00:26:36 ---A- . (.Microsoft Corporation - Power Dependency Coordinator Driver.) -- C:\Windows\System32\Drivers\pdc.sys [86872] O58 - SDL:[MD5.BA50CC0BD19004AAB88BE37338B6FA0D] - 22/08/2013 - 12:36:07 ---A- . (.Microsoft Corporation - Protected Environment Authentication and Authorization Export D.) -- C:\Windows\System32\Drivers\PEAuth.sys [663040] O58 - SDL:[MD5.486F21443BD82029284AE82F238DA44C] - 14/11/2013 - 08:37:34 ---A- . (.Microsoft Corporation - Port Class (Class Driver for Port/Miniport Devices).) -- C:\Windows\System32\Drivers\portcls.sys [270848] O58 - SDL:[MD5.ECD373F9571C745894367CC2635EA44F] - 22/08/2013 - 09:46:34 ---A- . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\Drivers\processr.sys [92160] O58 - SDL:[MD5.05F46042208E515B9C240AAFC54E7AA2] - 31/03/2010 - 02:05:46 ----- . (.Sonic Solutions - Px Engine Device Driver for 64-bit Windows.) -- C:\Windows\System32\Drivers\PxHlpa64.sys [53488] O58 - SDL:[MD5.3FB466684609A4329858CF2EBD62E0FD] - 22/08/2013 - 12:39:27 ---A- . (.Microsoft Corporation - Pilote du support de Microsoft Quality Windows Audio Video Expe.) -- C:\Windows\System32\Drivers\qwavedrv.sys [47104] O58 - SDL:[MD5.2C56F0EE27E4EF70CA4B4983D3638905] - 22/08/2013 - 12:40:01 ---A- . (.Microsoft Corporation - RAS Automatic Connection Driver.) -- C:\Windows\System32\Drivers\rasacd.sys [17408] O58 - SDL:[MD5.BBB6272B7F46C4640A8CDB8A70C3450F] - 22/08/2013 - 12:35:51 ---A- . (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\Drivers\rasl2tp.sys [120832] O58 - SDL:[MD5.5247F308C4103CDC4FE12AE1D235800A] - 22/08/2013 - 12:36:37 ---A- . (.Microsoft Corporation - RAS PPPoE mini-port/call-manager driver.) -- C:\Windows\System32\Drivers\raspppoe.sys [84992] O58 - SDL:[MD5.E075CC071022BD4E9BE7C024717C0E0A] - 22/08/2013 - 12:35:51 ---A- . (.Microsoft Corporation - Peer-to-Peer Tunneling Protocol.) -- C:\Windows\System32\Drivers\raspptp.sys [107520] O58 - SDL:[MD5.2B0F1677CDD08967005F34488559BC6F] - 22/08/2013 - 12:36:11 ---A- . (.Microsoft Corporation - RAS SSTP Miniport Call Manager.) -- C:\Windows\System32\Drivers\rassstp.sys [96256] O58 - SDL:[MD5.A1A5E79C0D1352AFDC08328A623DA051] - 17/12/2013 - 08:21:26 ---A- . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire tampon de lecteur red.) -- C:\Windows\System32\Drivers\rdbss.sys [408576] O58 - SDL:[MD5.6B21EBF892CD8CACB71669B35AB5DE32] - 22/08/2013 - 12:38:52 ---A- . (.Microsoft Corporation - Microsoft RDP Bus Device driver.) -- C:\Windows\System32\Drivers\rdpbus.sys [22528] O58 - SDL:[MD5.680C1DAE268B6FB67FA21B389A8B79EF] - 14/11/2013 - 08:15:31 ---A- . (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RDP.) -- C:\Windows\System32\Drivers\rdpdr.sys [195584] O58 - SDL:[MD5.858776908AF838E3790F3261B799CDA6] - 14/11/2013 - 08:15:33 ---A- . (.Microsoft Corporation - Microsoft RDP Video Miniport driver.) -- C:\Windows\System32\Drivers\rdpvideominiport.sys [27488] O58 - SDL:[MD5.847C6A08912C3515807049C93E526D65] - 14/11/2013 - 08:37:34 ---A- . (.Microsoft Corporation - ReadyBoost Driver.) -- C:\Windows\System32\Drivers\rdyboost.sys [258904] O58 - SDL:[MD5.036746D54347FD2D0385668E2A4064E4] - 22/08/2013 - 13:39:15 ---A- . (.Microsoft Corporation - Pilote du système de fichiers ReFS NT.) -- C:\Windows\System32\Drivers\refs.sys [924512] O58 - SDL:[MD5.47008A9CF5F5D550B6ABDA3BDBC891CE] - 22/08/2013 - 12:36:23 ---A- . (.Microsoft Corporation - Reliable Multicast Transport.) -- C:\Windows\System32\Drivers\rmcast.sys [144384] O58 - SDL:[MD5.4A24C61ED665DB4D13B93FACA06350CA] - 22/08/2013 - 12:38:44 ---A- . (.Microsoft Corporation - Remote NDIS Miniport.) -- C:\Windows\System32\Drivers\RNDISMP.sys [32256] O58 - SDL:[MD5.A0AF9EBF560FDD0E044E04C0AF9FF9E6] - 22/08/2013 - 12:40:26 ---A- . (.Microsoft Corporation - Legacy Non-Pnp Modem Device Driver.) -- C:\Windows\System32\Drivers\rootmdm.sys [11776] O58 - SDL:[MD5.2D05A5508F4685412F2B89E8C2189ABC] - 22/08/2013 - 12:36:34 ---A- . (.Microsoft Corporation - Link-Layer Topology Responder Driver for NDIS 6.) -- C:\Windows\System32\Drivers\rspndr.sys [80384] O58 - SDL:[MD5.69976169745EDFB3225D9ABEB5E91155] - 13/02/2014 - 12:32:20 ---A- . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function Driver.) -- C:\Windows\System32\Drivers\RTKVHD64.sys [3771352] O58 - SDL:[MD5.C624A1B32211C3166EDB3F4AB02A30B7] - 22/08/2013 - 13:39:15 ---A- . (.Microsoft Corporation - SBP-2 Protocol Driver.) -- C:\Windows\System32\Drivers\sbp2port.sys [107872] O58 - SDL:[MD5.ABD0237B15DBD2B4695F4B7D734A58F7] - 22/08/2013 - 12:38:07 ---A- . (.Microsoft Corporation - Pilote de filtre de lecteur de carte à puce Microsoft.) -- C:\Windows\System32\Drivers\scfilter.sys [40960] O58 - SDL:[MD5.1C4EB3ACEA98CAD8FC7CF50F629FF0C6] - 22/08/2013 - 13:43:32 ---A- . (.Microsoft Corporation - SCSI Port Driver.) -- C:\Windows\System32\Drivers\scsiport.sys [170848] O58 - SDL:[MD5.2F9A3380B8C0380E5608E29C7AA66899] - 14/11/2013 - 08:30:54 ---A- . (.Microsoft Corporation - Pilote du bus numérique sécurisé (SD).) -- C:\Windows\System32\Drivers\sdbus.sys [236376] O58 - SDL:[MD5.4EAF4DCF9DBD9A56952A58F56D61C005] - 22/08/2013 - 13:43:32 ---A- . (.Microsoft Corporation - Pilote de classe de stockage SD.) -- C:\Windows\System32\Drivers\sdstor.sys [78688] O58 - SDL:[MD5.3EA8A16169C26AFBEB544E0E48421186] - 22/08/2013 - 16:35:09 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\System32\Drivers\secdrv.sys [23040] O58 - SDL:[MD5.DB2FF24CE0BDD15FE75870AFE312BA89] - 22/08/2013 - 13:43:31 ---A- . (.Microsoft Corporation - Serial Class Extension.) -- C:\Windows\System32\Drivers\SerCx.sys [69472] O58 - SDL:[MD5.0044B31F93946D5D41982314381FE431] - 22/12/2013 - 00:26:36 ---A- . (.Microsoft Corporation - Serial Class Extension V2.) -- C:\Windows\System32\Drivers\SerCx2.sys [146776] O58 - SDL:[MD5.3CD600C089C1251BEEB4CD4CD5164F9E] - 22/08/2013 - 12:40:17 ---A- . (.Microsoft Corporation - Serial Port Enumerator.) -- C:\Windows\System32\Drivers\serenum.sys [23040] O58 - SDL:[MD5.D864381BC9C725FAB01D94C060660166] - 22/08/2013 - 12:40:08 ---A- . (.Microsoft Corporation - Pilote de périphérique série.) -- C:\Windows\System32\Drivers\serial.sys [83456] O58 - SDL:[MD5.0BD2B65DCE756FDE95A2E5CCCBF7705D] - 22/08/2013 - 12:40:02 ---A- . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys [26112] O58 - SDL:[MD5.472B7A5AC181C050888DB454663DD764] - 22/08/2013 - 12:40:00 ---A- . (.Microsoft Corporation - SCSI Floppy Driver.) -- C:\Windows\System32\Drivers\sfloppy.sys [17408] O58 - SDL:[MD5.2F518D13DD6F3053837FE606F1A2EA1F] - 22/08/2013 - 13:43:31 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid2.sys [44896] O58 - SDL:[MD5.1AC9A200A9C49C4508F04AAFFCA34A3F] - 22/08/2013 - 13:43:32 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid4.sys [81760] O58 - SDL:[MD5.8C0773703184485D57975B6C1ED48730] - 22/08/2013 - 12:40:16 ---A- . (.Microsoft Corporation - Smart Card Driver Library.) -- C:\Windows\System32\Drivers\smclib.sys [19968] O58 - SDL:[MD5.F6EBE514D13ECE7EDC23440039CDF9AB] - 22/12/2013 - 00:26:36 ---A- . (.Microsoft Corporation - Storage Spaces Driver.) -- C:\Windows\System32\Drivers\spaceport.sys [372568] O58 - SDL:[MD5.F337BE11071818FC3F5DC2940B6BDE34] - 22/08/2013 - 13:43:31 ---A- . (.Microsoft Corporation - SPB Class Extension.) -- C:\Windows\System32\Drivers\SpbCx.sys [72032] O58 - SDL:[MD5.AA90A319BB067E0D149B4C95608C4B05] - 25/12/2013 - 12:27:38 ---A- . (.Duplex Secure Ltd. - SCSI Pass Through Direct Host.) -- C:\Windows\System32\Drivers\sptd.sys [867064] O58 - SDL:[MD5.2B78788A1485F9B99A578A299DF42C02] - 14/11/2013 - 08:37:34 ---A- . (.Microsoft Corporation - Server driver.) -- C:\Windows\System32\Drivers\srv.sys [454656] O58 - SDL:[MD5.C1AE59C0B0817236EC083A91C396005A] - 14/11/2013 - 08:30:55 ---A- . (.Microsoft Corporation - Pilote de serveur SMB 2.0.) -- C:\Windows\System32\Drivers\srv2.sys [675328] O58 - SDL:[MD5.77195C32175FC63D6054EBA5A066D727] - 14/11/2013 - 08:30:55 ---A- . (.Microsoft Corporation - Server Network driver.) -- C:\Windows\System32\Drivers\srvnet.sys [244224] O58 - SDL:[MD5.366DEA74BBA65B362BCCFC6FC2ADFD8B] - 22/08/2013 - 13:43:32 ---A- . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Windows x64.) -- C:\Windows\System32\Drivers\stexstor.sys [31072] O58 - SDL:[MD5.0ED2E318ABB68C1A35A8B8038BDB4C90] - 22/08/2013 - 13:43:31 ---A- . (.Microsoft Corporation - MS AHCI Storport Miniport Driver.) -- C:\Windows\System32\Drivers\storahci.sys [107872] O58 - SDL:[MD5.6B06E2D11E604BE2B1A406C4CB3B90DE] - 14/11/2013 - 08:37:34 ---A- . (.Microsoft Corporation - Microsoft NVM Express Storport Miniport Driver.) -- C:\Windows\System32\Drivers\stornvme.sys [57176] O58 - SDL:[MD5.A5764EE0625ACD6F010460B5200FE687] - 22/08/2013 - 13:43:32 ---A- . (.Microsoft Corporation - Microsoft Storage Port Driver.) -- C:\Windows\System32\Drivers\storport.sys [374112] O58 - SDL:[MD5.548759755BC73DAD663250239D7E0B9F] - 22/08/2013 - 13:36:48 ---A- . (.Microsoft Corporation - Storage VSC Driver.) -- C:\Windows\System32\Drivers\storvsc.sys [45888] O58 - SDL:[MD5.03618F935379614837F915D04C45FC0E] - 14/11/2013 - 08:15:19 ---A- . (.Microsoft Corporation - Storage vsp Driver.) -- C:\Windows\System32\Drivers\storvsp.sys [68608] O58 - SDL:[MD5.FF184501F8F556147BBBDE571315C137] - 22/08/2013 - 12:39:26 ---A- . (.Microsoft Corporation - WDM CODEC Class Device Driver 2.0.) -- C:\Windows\System32\Drivers\stream.sys [67584] O58 - SDL:[MD5.84E0F5D41C138C5CC975137A2A98F6D3] - 22/08/2013 - 13:43:33 ---A- . (.Microsoft Corporation - Plug and Play Software Device Enumerator.) -- C:\Windows\System32\Drivers\swenum.sys [14176] O58 - SDL:[MD5.B13A57CE2F17B8C789E895E15F115DB0] - 22/08/2013 - 12:39:50 ---A- . (.Microsoft Corporation - SCSI Tape Class Driver.) -- C:\Windows\System32\Drivers\tape.sys [29696] O58 - SDL:[MD5.DAD68FB30EFC58E322EADF01F013A99B] - 22/08/2013 - 13:49:33 ---A- . (.Microsoft Corporation - Export driver for kernel mode TPM API.) -- C:\Windows\System32\Drivers\tbs.sys [21856] O58 - SDL:[MD5.3D9A5AC880D7AA2305812D665D24ED23] - 05/11/2013 - 21:12:19 ---A- . (.Microsoft Corporation - Pilote TCP/IP.) -- C:\Windows\System32\Drivers\tcpip.sys [2551128] O58 - SDL:[MD5.33A7D83EEB15431773A6E186CFAABA21] - 22/08/2013 - 12:36:03 ---A- . (.Microsoft Corporation - TCP/IP Registry Compatibility Driver.) -- C:\Windows\System32\Drivers\tcpipreg.sys [48640] O58 - SDL:[MD5.3C7361E0A5A6966DB957B94ECF924A9E] - 22/08/2013 - 14:25:35 ---A- . (.Microsoft Corporation - TDI Wrapper.) -- C:\Windows\System32\Drivers\tdi.sys [30208] O58 - SDL:[MD5.FFF28F9F6823EB1756C60F1649560BBF] - 22/08/2013 - 14:25:35 ---A- . (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\Drivers\tdx.sys [107520] O58 - SDL:[MD5.232D185D2337F141311D0CF1983E1431] - 14/11/2013 - 08:15:20 ---A- . (.Microsoft Corporation - Terminal Server Input Driver.) -- C:\Windows\System32\Drivers\terminpt.sys [37216] O58 - SDL:[MD5.E8D2721972B8A2C3A4F6DE5C43D163E5] - 22/08/2013 - 13:39:14 ---A- . (.Microsoft Corporation - Kernel Transaction Manager Driver.) -- C:\Windows\System32\Drivers\tm.sys [121184] O58 - SDL:[MD5.82F909359600D3603FE852DB7F135626] - 22/08/2013 - 13:49:33 ---A- . (.Microsoft Corporation - Pilote de périphérique TPM.) -- C:\Windows\System32\Drivers\tpm.sys [159584] O58 - SDL:[MD5.BF8F54CA37E9C9D6582C31C5761F8C93] - 22/08/2013 - 12:37:28 ---A- . (.Microsoft Corporation - Pilote de filtre pour concentrateur USB du Bureau à distance.) -- C:\Windows\System32\Drivers\TsUsbFlt.sys [56320] O58 - SDL:[MD5.E0088068DCE2EE82897027DDB8E05254] - 22/08/2013 - 12:37:46 ---A- . (.Microsoft Corporation - Remote Desktop Generic USB Driver.) -- C:\Windows\System32\Drivers\TsUsbGD.sys [29696] O58 - SDL:[MD5.C8E0E78B5D284C2FF59BDFFDAF997242] - 22/08/2013 - 12:35:45 ---A- . (.Microsoft Corporation - Pilote d’interface de tunnel Microsoft.) -- C:\Windows\System32\Drivers\tunnel.sys [154112] O58 - SDL:[MD5.F6EEAD052943B5A3104C1405BB856C54] - 22/08/2013 - 13:43:33 ---A- . (.Microsoft Corporation - Filtre MS AGPv3.5.) -- C:\Windows\System32\Drivers\UAGP35.SYS [64864] O58 - SDL:[MD5.FE6067B1FD4E63650C667B33D080565B] - 22/08/2013 - 13:43:33 ---A- . (.Microsoft Corporation - Microsoft Uasp Driver.) -- C:\Windows\System32\Drivers\uaspstor.sys [74080] O58 - SDL:[MD5.5D1B430EA11064C56E7C8F84B90DEB6A] - 22/08/2013 - 13:43:33 ---A- . (.Microsoft Corporation - USB Controller Extension.) -- C:\Windows\System32\Drivers\UCX01000.SYS [189792] O58 - SDL:[MD5.1EC649F112896FAE33250F0B97AC5D0B] - 22/08/2013 - 12:40:20 ---A- . (.Microsoft Corporation - UDF File System Driver.) -- C:\Windows\System32\Drivers\udfs.sys [316928] O58 - SDL:[MD5.9578691F297E1B1F519970FE6D47CB21] - 22/08/2013 - 13:39:15 ---A- . (.Microsoft Corporation - UEFI Driver for NT.) -- C:\Windows\System32\Drivers\uefi.sys [26976] O58 - SDL:[MD5.5EAB5117DDB24FC4D39E6FFFCF1837B9] - 22/08/2013 - 13:43:33 ---A- . (.Microsoft Corporation - Filtre ULi AGPv3.0 pour plateformes à processeur K8/9.) -- C:\Windows\System32\Drivers\ULIAGPKX.SYS [65888] O58 - SDL:[MD5.DA34C39A18E60E7C3FA0630566408034] - 22/08/2013 - 12:38:59 ---A- . (.Microsoft Corporation - User-Mode Bus Enumerator.) -- C:\Windows\System32\Drivers\umbus.sys [46080] O58 - SDL:[MD5.AE8294875E5446E359B1E8035D40C05E] - 22/08/2013 - 12:38:58 ---A- . (.Microsoft Corporation - Generic pass-through driver.) -- C:\Windows\System32\Drivers\umpass.sys [11776] O58 - SDL:[MD5.A5A402FE30B5E0831F4EB6A112104811] - 22/08/2013 - 12:38:16 ---A- . (.Microsoft Corporation - Remote NDIS USB Driver.) -- C:\Windows\System32\Drivers\usb8023.sys [20992] O58 - SDL:[MD5.5D45329A96B1A417DC7F59FDEABC0DDE] - 22/08/2013 - 12:39:27 ---A- . (.Microsoft Corporation - Universal Serial Bus Camera Driver.) -- C:\Windows\System32\Drivers\USBCAMD2.sys [32512] O58 - SDL:[MD5.433ECDE01A52691FA7ACA51C10C09B70] - 14/11/2013 - 08:37:34 ---A- . (.Microsoft Corporation - USB Common Class Generic Parent Driver.) -- C:\Windows\System32\Drivers\usbccgp.sys [155480] O58 - SDL:[MD5.B3D6457D841A0CAEF4C52D88621715F2] - 22/08/2013 - 12:38:26 ---A- . (.Microsoft Corporation - USB Consumer IR Driver for eHome.) -- C:\Windows\System32\Drivers\usbcir.sys [98304] O58 - SDL:[MD5.882222A9961418A75A08CB68671679D5] - 22/08/2013 - 13:43:33 ---A- . (.Microsoft Corporation - Universal Serial Bus Driver.) -- C:\Windows\System32\Drivers\usbd.sys [28000] O58 - SDL:[MD5.5477D6E27C7D266EF8C152B9A25ADE5E] - 22/08/2013 - 13:43:33 ---A- . (.Microsoft Corporation - EHCI eUSB Miniport Driver.) -- C:\Windows\System32\Drivers\usbehci.sys [89952] O58 - SDL:[MD5.DF56C2C04EFA328D7A66B69007130266] - 22/08/2013 - 13:43:34 ---A- . (.Microsoft Corporation - Pilote de concentrateur USB par défaut.) -- C:\Windows\System32\Drivers\usbhub.sys [422240] O58 - SDL:[MD5.C0E33820326199CE3CFD3B9F27F81D99] - 14/11/2013 - 08:30:54 ---A- . (.Microsoft Corporation - Pilote de concentrateur USB3.) -- C:\Windows\System32\Drivers\USBHUB3.SYS [467800] O58 - SDL:[MD5.3019097FB6C985EF24C058090FF3BDBD] - 22/08/2013 - 12:39:27 ---A- . (.Microsoft Corporation - OHCI USB Miniport Driver.) -- C:\Windows\System32\Drivers\usbohci.sys [30208] O58 - SDL:[MD5.32F2E6BAD9FA8E14B55E97280661801E] - 22/08/2013 - 13:43:34 ---A- . (.Microsoft Corporation - Pilote de port USB 1.1 & 2.0.) -- C:\Windows\System32\Drivers\usbport.sys [439136] O58 - SDL:[MD5.4D655E3B684BE9B0F7FFD8A2935C348C] - 22/08/2013 - 12:36:33 ---A- . (.Microsoft Corporation - USB Printer driver.) -- C:\Windows\System32\Drivers\usbprint.sys [26112] O58 - SDL:[MD5.3431FBFAC156EB7FEF9B936EC2A77AF6] - 22/08/2013 - 12:39:39 ---A- . (.Microsoft Corporation - Gestionnaire de stratégie de redirection USB Windows.) -- C:\Windows\System32\Drivers\usbrpm.sys [30720] O58 - SDL:[MD5.F04D164C4168701A4E7835607722E5F1] - 22/08/2013 - 12:39:58 ---A- . (.Microsoft Corporation - USB Scanner Driver.) -- C:\Windows\System32\Drivers\usbscan.sys [44544] O58 - SDL:[MD5.029DFB6E5B38ADD45561A8CE0F60B331] - 22/08/2013 - 12:40:00 ---A- . (.Microsoft Corporation - USB Modem Driver.) -- C:\Windows\System32\Drivers\usbser.sys [33280] O58 - SDL:[MD5.C03DA998E412D69D18DD11D835229AF0] - 23/01/2013 - 10:31:52 ---A- . (.Nokia - Filter Driver for Nokia USB Phone Bus Driver.) -- C:\Windows\System32\Drivers\usbser_lowerfltjx64.sys [9216] O58 - SDL:[MD5.311C90F0767A63000AC35DD0A7078A30] - 23/01/2013 - 10:31:52 ---A- . (.Nokia - Filter Driver for Nokia USB Phone Bus Driver.) -- C:\Windows\System32\Drivers\usbser_lowerfltx64.sys [9216] O58 - SDL:[MD5.4628B415A84EA9D4D396A56F1D0CB6C6] - 25/11/2013 - 02:45:34 ---A- . (.Microsoft Corporation - Pilote de classe de stockage de masse USB.) -- C:\Windows\System32\Drivers\USBSTOR.SYS [142680] O58 - SDL:[MD5.BA4FA655E0FC577DB7436FC963932CE4] - 22/08/2013 - 12:39:28 ---A- . (.Microsoft Corporation - UHCI USB Miniport Driver.) -- C:\Windows\System32\Drivers\usbuhci.sys [34816] O58 - SDL:[MD5.18F744E8CCEB2670040EBAF7AD77B8C6] - 22/08/2013 - 12:38:00 ---A- . (.Microsoft Corporation - USB Video Class Driver.) -- C:\Windows\System32\Drivers\usbvideo.sys [212224] O58 - SDL:[MD5.D22EB844EB57D016CC34178AC86456DF] - 08/01/2014 - 02:46:27 ---A- . (.Microsoft Corporation - Pilote XHCI USB.) -- C:\Windows\System32\Drivers\USBXHCI.SYS [325464] O58 - SDL:[MD5.8DB40EB504AE9C10558675035B4B4A4A] - 18/12/2013 - 17:19:54 ---A- . (.Oracle Corporation - VirtualBox Support Driver.) -- C:\Windows\System32\Drivers\VBoxDrv.sys [252688] O58 - SDL:[MD5.9C24F61B36E7305AC42DC41881A2C97C] - 18/12/2013 - 17:16:44 ---A- . (.Oracle Corporation - VirtualBox Host-Only Network Adapter Driver.) -- C:\Windows\System32\Drivers\VBoxNetAdp.sys [140560] O58 - SDL:[MD5.DD8F22BA8DD0F2A9A1D5D93023441FE0] - 18/12/2013 - 17:16:44 ---A- . (.Oracle Corporation - VirtualBox USB Monitor Driver.) -- C:\Windows\System32\Drivers\VBoxUSBMon.sys [126736] O58 - SDL:[MD5.FEB26E3B8345A7E8D62F945C4AE86562] - 22/08/2013 - 13:37:27 ---A- . (.Microsoft Corporation - Virtual Drive Root Enumerator.) -- C:\Windows\System32\Drivers\vdrvroot.sys [37728] O58 - SDL:[MD5.A026EDEAA5EECAE0B08E2748B616D4BD] - 14/11/2013 - 08:30:55 ---A- . (.Microsoft Corporation - Driver Verifier Extension.) -- C:\Windows\System32\Drivers\VerifierExt.sys [175960] O58 - SDL:[MD5.041D3EF364E624DBB2703A64A5AADF89] - 22/08/2013 - 13:37:27 ---A- . (.Microsoft Corporation - VHD Miniport Driver.) -- C:\Windows\System32\Drivers\vhdmp.sys [551776] O58 - SDL:[MD5.06D38968028E9AB19DE9B618C7B6D199] - 22/08/2013 - 13:43:34 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\viaide.sys [19808] O58 - SDL:[MD5.3CE922E34DB12D9F3C0EA856BC09687C] - 14/11/2013 - 08:15:19 ---A- . (.Microsoft Corporation - Pilote d’infrastructure de virtualisation Microsoft Hyper-V.) -- C:\Windows\System32\Drivers\Vid.sys [220672] O58 - SDL:[MD5.608BD5400EFD2307A5F8DDDC87775734] - 22/08/2013 - 12:39:31 ---A- . (.Microsoft Corporation - Video Port Driver.) -- C:\Windows\System32\Drivers\videoprt.sys [49152] O58 - SDL:[MD5.B600C96614BC7F890A6F2A4C93FA15EC] - 22/08/2013 - 13:36:48 ---A- . (.Microsoft Corporation - Hyper-V VMBus KMCL.) -- C:\Windows\System32\Drivers\vmbkmcl.sys [90944] O58 - SDL:[MD5.4957325209E461B419797D042B5F6FF5] - 14/11/2013 - 08:15:19 ---A- . (.Microsoft Corporation - Hyper-V VMBus Root KMCL.) -- C:\Windows\System32\Drivers\vmbkmclr.sys [77312] O58 - SDL:[MD5.C6305BDFC4F7CE51F72BB072C03D4ACE] - 22/08/2013 - 13:36:51 ---A- . (.Microsoft Corporation - Microsoft Hyper-V Virtual Machine Bus Child Driver.) -- C:\Windows\System32\Drivers\vmbus.sys [97088] O58 - SDL:[MD5.DA40BEA0A863CE768C940CA9723BF81F] - 22/08/2013 - 12:37:50 ---A- . (.Microsoft Corporation - Microsoft VMBus HID Miniport.) -- C:\Windows\System32\Drivers\VMBusHID.sys [21760] O58 - SDL:[MD5.68F8C26DEA2D42E8DEC0778943433C80] - 14/11/2013 - 08:15:19 ---A- . (.Microsoft Corporation - Microsoft Hyper-V Virtual Machine Bus Root Driver.) -- C:\Windows\System32\Drivers\vmbusr.sys [129536] O58 - SDL:[MD5.0BF5CAD281E25F1418E5B8875DC5ADD1] - 22/08/2013 - 12:38:23 ---A- . (.Microsoft Corporation - Virtual Machine Generation Counter.) -- C:\Windows\System32\Drivers\vmgencounter.sys [11264] O58 - SDL:[MD5.1A063730F221B2746FF00457AE17E4F0] - 22/08/2013 - 12:38:37 ---A- . (.Microsoft Corporation - Microsoft S3 Emulated Device Cap Driver.) -- C:\Windows\System32\Drivers\vms3cap.sys [7168] O58 - SDL:[MD5.7A08CEE1535F5A448215634C5EA74E50] - 22/08/2013 - 13:36:48 ---A- . (.Microsoft Corporation - Virtual Storage Filter Driver.) -- C:\Windows\System32\Drivers\vmstorfl.sys [49984] O58 - SDL:[MD5.55D7D963DE85162F1C49721E502F9744] - 22/08/2013 - 13:39:15 ---A- . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys [73568] O58 - SDL:[MD5.CCB9E901F7254BF96D28EB1B0E5329B7] - 22/08/2013 - 13:39:15 ---A- . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys [377696] O58 - SDL:[MD5.9F9CE33B50611A1C61A46B8911E0B30B] - 22/08/2013 - 13:39:15 ---A- . (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\Windows\System32\Drivers\volsnap.sys [312160] O58 - SDL:[MD5.01355C98B5C3ED1EC446743CDA848FCE] - 22/08/2013 - 13:37:27 ---A- . (.Microsoft Corporation - Virtual PCI Bus.) -- C:\Windows\System32\Drivers\vpci.sys [69472] O58 - SDL:[MD5.ADBE96C33D1A5BB1BBAF90B4BC84F523] - 14/11/2013 - 08:15:19 ---A- . (.Microsoft Corporation - Virtual PCI VSP Driver.) -- C:\Windows\System32\Drivers\vpcivsp.sys [65536] O58 - SDL:[MD5.4539F45F9F4C9757A86A56C949421E07] - 22/08/2013 - 13:43:34 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\Drivers\vsmraid.sys [168800] O58 - SDL:[MD5.0849B7260F26FE05EA56DED0672E2F4B] - 22/08/2013 - 13:43:34 ---A- . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\Windows\System32\Drivers\VSTXRAID.SYS [305504] O58 - SDL:[MD5.BE970C369E43B509C1EDA2B8FA7CECB0] - 22/08/2013 - 12:39:00 ---A- . (.Microsoft Corporation - Pilote de bus WiFi virtuel.) -- C:\Windows\System32\Drivers\vwifibus.sys [24576] O58 - SDL:[MD5.6B26AD573CCDD5209DF4397438B76354] - 22/08/2013 - 12:38:05 ---A- . (.Microsoft Corporation - Virtual WiFi Filter Driver.) -- C:\Windows\System32\Drivers\vwififlt.sys [71680] O58 - SDL:[MD5.0B48E0DFB44EE475F4FD8A8EE599AF30] - 22/08/2013 - 12:36:15 ---A- . (.Microsoft Corporation - Virtual WiFi Miniport Driver.) -- C:\Windows\System32\Drivers\vwifimp.sys [36864] O58 - SDL:[MD5.0910AB9ED404C1434E2D0376C2AD5D8B] - 22/08/2013 - 12:39:15 ---A- . (.Microsoft Corporation - Wacom Serial Pen Tablet HID Driver.) -- C:\Windows\System32\Drivers\wacompen.sys [26752] O58 - SDL:[MD5.AFCD4054D61BD708B82991348ED1C763] - 22/08/2013 - 12:35:46 ---A- . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) -- C:\Windows\System32\Drivers\wanarp.sys [79872] O58 - SDL:[MD5.602811E8AAE68030C151345C84A0CDAF] - 22/08/2013 - 12:39:48 ---A- . (.Microsoft Corporation - Watchdog Driver.) -- C:\Windows\System32\Drivers\watchdog.sys [54272] O58 - SDL:[MD5.694B28DE12AD47031FFB4B052662131A] - 22/08/2013 - 13:31:28 ---A- . (.Microsoft Corporation - Microsoft antimalware boot driver.) -- C:\Windows\System32\Drivers\WdBoot.sys [34760] O58 - SDL:[MD5.CB6C63FF8342B467E2EF76E98D5B934D] - 22/08/2013 - 14:25:41 ---A- . (.Microsoft Corporation - Runtime de l’infrastructure de pilotes en mode noyau.) -- C:\Windows\System32\Drivers\Wdf01000.sys [839488] O58 - SDL:[MD5.0B99529A3BECC3528D865DDECB62503B] - 22/08/2013 - 13:34:22 ---A- . (.Microsoft Corporation - Microsoft antimalware file system filter driver.) -- C:\Windows\System32\Drivers\WdFilter.sys [265056] O58 - SDL:[MD5.42C23552FC0BF2BAB9053BE6E4DC3D13] - 22/08/2013 - 14:25:41 ---A- . (.Microsoft Corporation - Kernel Mode Driver Framework Loader.) -- C:\Windows\System32\Drivers\WdfLdr.sys [60224] O58 - SDL:[MD5.282E7D46310338FF4A6B7680440EB0DA] - 22/08/2013 - 13:34:22 ---A- . (.Microsoft Corporation - Microsoft Network Realtime Inspection Driver.) -- C:\Windows\System32\Drivers\WdNisDrv.sys [124256] O58 - SDL:[MD5.2E0AF5B354ED1BB10314353B6A625B68] - 22/08/2013 - 13:39:04 ---A- . (.Microsoft Corporation - Windows Error Reporting Kernel Driver.) -- C:\Windows\System32\Drivers\werkernel.sys [38240] O58 - SDL:[MD5.2E3E82D7B1076B90F4E228A8EF17B261] - 14/11/2013 - 08:26:39 ---A- . (.Microsoft Corporation - WFP NDIS 6.30 Lightweight Filter Driver.) -- C:\Windows\System32\Drivers\wfplwfs.sys [136536] O58 - SDL:[MD5.867BCC69ED9C31C501465EB0E8BA9DFA] - 22/08/2013 - 13:45:37 ---A- . (.Microsoft Corporation - Wim file system Driver.) -- C:\Windows\System32\Drivers\wimmount.sys [33632] O58 - SDL:[MD5.54BAF0C6639AF707D00BB6C1ACA8837A] - 22/08/2013 - 13:36:48 ---A- . (.Microsoft Corporation - Windows Hypervisor Interface Driver.) -- C:\Windows\System32\Drivers\winhv.sys [61248] O58 - SDL:[MD5.8535519A44051B481E5D0020A69204C6] - 14/11/2013 - 08:15:19 ---A- . (.Microsoft Corporation - Windows Hypervisor Root Interface Driver.) -- C:\Windows\System32\Drivers\winhvr.sys [48128] O58 - SDL:[MD5.AC263C2F66405589528995AA41040599] - 22/08/2013 - 12:37:55 ---A- . (.Microsoft Corporation - Windows WinUSB Class Driver.) -- C:\Windows\System32\Drivers\winusb.sys [78848] O58 - SDL:[MD5.2834D9D3B4F554A39C72F00EA3F0E128] - 22/08/2013 - 12:40:04 ---A- . (.Microsoft Corporation - Windows Management Interface for ACPI.) -- C:\Windows\System32\Drivers\wmiacpi.sys [16384] O58 - SDL:[MD5.1FE5DDC32243469E6FA4440C02775A34] - 22/08/2013 - 14:25:41 ---A- . (.Microsoft Corporation - WMILIB WMI support library Dll.) -- C:\Windows\System32\Drivers\wmilib.sys [18272] O58 - SDL:[MD5.E746BCDBA2E02CF6B8D6B26FB167FBE0] - 22/08/2013 - 13:41:08 ---A- . (.Microsoft Corporation - Family Safety Filter Driver.) -- C:\Windows\System32\Drivers\wpcfltr.sys [54304] O58 - SDL:[MD5.9F2904B55F6CECCD1A8D986B5CE2609A] - 22/08/2013 - 13:36:12 ---A- . (.Microsoft Corporation - Windows Portable Device Upper Class Filter Driver.) -- C:\Windows\System32\Drivers\WpdUpFltr.sys [26976] O58 - SDL:[MD5.38CAE0D33091C6F3B542F230E70ED44B] - 22/08/2013 - 14:25:41 ---A- . (.Microsoft Corporation - WPP Trace Recorder.) -- C:\Windows\System32\Drivers\WppRecorder.sys [23392] O58 - SDL:[MD5.AE072B0339D0A18E455DC21666CAD572] - 22/08/2013 - 12:40:03 ---A- . (.Microsoft Corporation - Couche IFS Winsock2.) -- C:\Windows\System32\Drivers\ws2ifsl.sys [21504] O58 - SDL:[MD5.2FEAE33E9B2B56104596E1BA444405A9] - 22/08/2013 - 12:37:21 ---A- . (.Microsoft Corporation - Windows Driver Foundation - User-mode Driver Framework Platform.) -- C:\Windows\System32\Drivers\WUDFPf.sys [117760] O58 - SDL:[MD5.19240C13F526125554B5370566F21A0A] - 22/08/2013 - 12:36:50 ---A- . (.Microsoft Corporation - Windows Driver Foundation - User-mode Driver Framework Reflecto.) -- C:\Windows\System32\Drivers\WUDFRd.sys [230912] O58 - SDL:[MD5.3022CFC7840D12C51F2A061EC7F46383] - 09/12/2013 - 04:25:37 ---A- . (.Microsoft Corporation - Pilote Win32 multi-utilisateurs.) -- C:\Windows\System32\win32k.sys [4190720] O58 - SDL:[MD5.93E9D905C90F8C3112C4DAFD1E92EC73] - 22/08/2013 - 10:26:02 ---A- . (.Microsoft Corporation - Windows Background System Events Broker API Server.) -- C:\Windows\System32\Windows.ApplicationModel.Background.SystemEventsBroker.dll [29184] O58 - SDL:[MD5.BEC416C94F914C379E1A2BC5752EF763] - 22/08/2013 - 10:53:40 ---A- . (.Microsoft Corporation - DLL d’exécution de l’affichage système Windows.) -- C:\Windows\System32\Windows.System.Display.dll [25600] O58 - SDL:[MD5.C352CC3A499712E4E919385B74E1C8C0] - 22/08/2013 - 10:09:22 ---A- . (.Microsoft Corporation - DLL d’ID matériel du profil du système Windows.) -- C:\Windows\System32\Windows.System.Profile.HardwareId.dll [210944] O58 - SDL:[MD5.E91F19CF5E4B73AB2ECA7E362A206920] - 22/08/2013 - 10:53:16 ---A- . (.Microsoft Corporation - Windows.System.Profile.SystemManufacturers.) -- C:\Windows\System32\Windows.System.Profile.SystemManufacturers.dll [25600] O58 - SDL:[MD5.BEBFC818CCF0057A84456A35A1E7AFF2] - 22/08/2013 - 10:53:53 ---A- . (.Microsoft Corporation - Windows System RemoteDesktop Runtime DLL.) -- C:\Windows\System32\Windows.System.RemoteDesktop.dll [21504] O58 - SDL:[MD5.343786E182B9C9AE3066E00DEC650F50] - 20/12/2013 - 15:45:43 ---A- . (...) -- C:\Windows\SysWOW64\drivers\fsbts.sys [42672] O58 - SDL:[MD5.EC5B17B8036FAC9DFF8BAC94E30799B1] - 22/08/2013 - 03:27:50 ---A- . (.Microsoft Corporation - Windows Background System Events Broker API Server.) -- C:\Windows\SysWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll [24064] O58 - SDL:[MD5.7084BCD3A95C278D38C9EBDF413DF29F] - 22/08/2013 - 03:47:07 ---A- . (.Microsoft Corporation - DLL d’exécution de l’affichage système Windows.) -- C:\Windows\SysWOW64\Windows.System.Display.dll [22016] O58 - SDL:[MD5.FC01DFD0046CD6121B92C377C2A9C2AB] - 22/08/2013 - 03:18:25 ---A- . (.Microsoft Corporation - DLL d’ID matériel du profil du système Windows.) -- C:\Windows\SysWOW64\Windows.System.Profile.HardwareId.dll [169984] O58 - SDL:[MD5.433A9B4E0DB68C176F9AF34BF6441D59] - 22/08/2013 - 03:46:48 ---A- . (.Microsoft Corporation - Windows.System.Profile.SystemManufacturers.) -- C:\Windows\SysWOW64\Windows.System.Profile.SystemManufacturers.dll [22016] O58 - SDL:[MD5.BB4F2BCF02F0E98E8EA5CB45EC0285A6] - 22/08/2013 - 03:47:23 ---A- . (.Microsoft Corporation - Windows System RemoteDesktop Runtime DLL.) -- C:\Windows\SysWOW64\Windows.System.RemoteDesktop.dll [18432] ~ Drivers: 17 Scanned in 00mn 08s ---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61) O61 - LFC: 15/02/2014 - 15:44:10 ---A- . (...) -- C:\Users\chantal\AppData\Roaming\Microsoft\Office\15.0\a2ac945e\Proofing\RoamingCustom.dic [112] O61 - LFC: 15/02/2014 - 15:44:10 ---A- . (...) -- C:\Users\chantal\AppData\Roaming\Microsoft\Spelling\en-US\default.acl [6] O61 - LFC: 15/02/2014 - 15:44:10 ---A- . (...) -- C:\Users\chantal\AppData\Roaming\Microsoft\Spelling\en-US\default.dic [24] O61 - LFC: 15/02/2014 - 15:44:10 ---A- . (...) -- C:\Users\chantal\AppData\Roaming\Microsoft\Spelling\en-US\default.exc [6] O61 - LFC: 15/02/2014 - 15:44:13 ---A- . (...) -- C:\Users\chantal\Documents\4Videosoft Studio\Output\Le droit de tuer - BDRip - French - X264 - AC3 - Hillafen.avi [1238190110] O61 - LFC: 16/02/2014 - 15:44:09 ---A- . (...) -- C:\Users\chantal\AppData\Local\Packages\MCNEXT.Echec_ptt4xv5hcsz3a\Settings\settings.dat [8192] O61 - LFC: 16/02/2014 - 15:44:11 ---A- . (...) -- C:\Users\chantal\AppData\Roaming\proDAD\Heroglyph-4.0\heroglyph-protocol.txt [2387400] O61 - LFC: 16/02/2014 - 15:44:11 ---A- . (...) -- C:\Users\chantal\AppData\Roaming\proDAD\Heroglyph-4.0\mt-env.dat [3421] O61 - LFC: 16/02/2014 - 15:44:12 ---A- . (...) -- C:\Users\chantal\AppData\Roaming\proDAD\Heroglyph-4.0\tl\model\project\hg4_Romance-Common-Heart\Heart-c000-156x88.tif [22392] O61 - LFC: 16/02/2014 - 15:44:12 ---A- . (...) -- C:\Users\chantal\AppData\Roaming\proDAD\Heroglyph-4.0\tl\model\project\hg4_Romance-Common-Heart\Heart-c000-240x135.tif [43418] O61 - LFC: 16/02/2014 - 15:44:12 ---A- . (...) -- C:\Users\chantal\AppData\Roaming\proDAD\Heroglyph-4.0\tl\model\project\hg4_Romance-Common-Heart\Heart-c000-84x47.tif [8172] O61 - LFC: 16/02/2014 - 15:44:12 ---A- . (...) -- C:\Users\chantal\AppData\Roaming\proDAD\Heroglyph-4.0\tl\model\project\hg4_Romance-Common-Heart\Heart-c010-156x88.tif [22926] O61 - LFC: 16/02/2014 - 15:44:12 ---A- . (...) -- C:\Users\chantal\AppData\Roaming\proDAD\Heroglyph-4.0\tl\model\project\hg4_Romance-Common-Heart\Heart-c010-84x47.tif [8286] O61 - LFC: 16/02/2014 - 15:44:12 ---A- . (...) -- C:\Users\chantal\AppData\Roaming\proDAD\Heroglyph-4.0\tl\model\project\hg4_Romance-Common-Heart\Heart-c020-156x88.tif [20946] O61 - LFC: 16/02/2014 - 15:44:12 ---A- . (...) -- C:\Users\chantal\AppData\Roaming\proDAD\Heroglyph-4.0\tl\model\project\hg4_Romance-Common-Heart\Heart-c020-84x47.tif [7568] O61 - LFC: 16/02/2014 - 15:44:12 ---A- . (...) -- C:\Users\chantal\AppData\Roaming\proDAD\Heroglyph-4.0\tl\model\project\hg4_Romance-Common-Heart\Heart-c030-156x88.tif [17058] O61 - LFC: 16/02/2014 - 15:44:12 ---A- . (...) -- C:\Users\chantal\AppData\Roaming\proDAD\Heroglyph-4.0\tl\model\project\hg4_Romance-Common-Heart\Heart-c030-84x47.tif [6040] O61 - LFC: 16/02/2014 - 15:44:12 ---A- . (...) -- C:\Users\chantal\AppData\Roaming\proDAD\Heroglyph-4.0\tl\model\project\hg4_Romance-Common-Heart\Heart-c040-84x47.tif [8978] O61 - LFC: 16/02/2014 - 15:44:12 ---A- . (...) -- C:\Users\chantal\AppData\Roaming\proDAD\Heroglyph-4.0\tl\model\project\hg4_Romance-Common-Heart\Heart-c060-84x47.tif [10106] O61 - LFC: 16/02/2014 - 15:44:12 ---A- . (...) -- C:\Users\chantal\AppData\Roaming\proDAD\Heroglyph-4.0\tl\model\project\hg4_Romance-Common-Heart\Heart-c070-84x47.tif [7710] O61 - LFC: 16/02/2014 - 15:44:21 ---A- . (...) -- C:\Users\chantal\Downloads\KeyScrambler_Setup (1).exe [1279384] O61 - LFC: 16/02/2014 - 15:44:21 ---A- . (...) -- C:\Users\chantal\Downloads\eMule\Temp\003.part [622592000] O61 - LFC: 16/02/2014 - 15:44:21 ---A- . (...) -- C:\Users\chantal\Downloads\eMule\Temp\004.part [690688000] O61 - LFC: 17/02/2014 - 15:44:07 ---A- . (...) -- C:\Users\chantal\AppData\Local\Google\Toolbar Cache\7.5.4805.320\fr\translate_languages.json.content [2033] O61 - LFC: 17/02/2014 - 15:44:10 ---A- . (...) -- C:\Users\chantal\AppData\Local\Packages\windows.immersivecontrolpanel_cw5n1h2txyewy\Settings\settings.dat [8192] O61 - LFC: 17/02/2014 - 15:44:10 ---A- . (...) -- C:\Users\chantal\AppData\Local\Temp\qtsingleapp-images-bc6-1-lockfile [0] O61 - LFC: 17/02/2014 - 15:44:10 ---A- . (...) -- C:\Users\chantal\AppData\Roaming\GlarySoft\Glary Utilities 4\Backups\41687.524467592593 [19874] O61 - LFC: 17/02/2014 - 15:44:21 ---A- . (...) -- C:\Users\chantal\Downloads\eMule\Temp\001.part.met [1677] O61 - LFC: 17/02/2014 - 15:44:21 ---A- . (...) -- C:\Users\chantal\Downloads\eMule\Temp\001.part.met.bak [1677] O61 - LFC: 17/02/2014 - 15:44:21 ---A- . (...) -- C:\Users\chantal\Downloads\eMule\Temp\002.part [734011746] O61 - LFC: 17/02/2014 - 15:44:21 ---A- . (...) -- C:\Users\chantal\Downloads\eMule\Temp\002.part.met [1743] O61 - LFC: 17/02/2014 - 15:44:21 ---A- . (...) -- C:\Users\chantal\Downloads\eMule\Temp\002.part.met.bak [1743] O61 - LFC: 17/02/2014 - 15:44:21 ---A- . (...) -- C:\Users\chantal\Downloads\eMule\Temp\003.part.met [1453] O61 - LFC: 17/02/2014 - 15:44:21 ---A- . (...) -- C:\Users\chantal\Downloads\eMule\Temp\003.part.met.bak [1453] O61 - LFC: 17/02/2014 - 15:44:21 ---A- . (...) -- C:\Users\chantal\Downloads\eMule\Temp\004.part.met [1860] O61 - LFC: 17/02/2014 - 15:44:21 ---A- . (...) -- C:\Users\chantal\Downloads\eMule\Temp\004.part.met.bak [1860] O61 - LFC: 17/02/2014 - 15:44:21 ---A- . (...) -- C:\Users\chantal\Downloads\eMule\Temp\005.part.met [1466] O61 - LFC: 17/02/2014 - 15:44:21 ---A- . (...) -- C:\Users\chantal\Downloads\eMule\Temp\005.part.met.bak [1466] O61 - LFC: 17/02/2014 - 15:44:21 ---A- . (...) -- C:\Users\chantal\Downloads\eMule\Temp\007.part.met [1466] O61 - LFC: 17/02/2014 - 15:44:21 ---A- . (...) -- C:\Users\chantal\Downloads\eMule\Temp\007.part.met.bak [1466] O61 - LFC: 17/02/2014 - 15:44:21 ---A- . (...) -- C:\Users\chantal\Downloads\eMule\Temp\008.part.met [1539] O61 - LFC: 17/02/2014 - 15:44:21 ---A- . (...) -- C:\Users\chantal\Downloads\eMule\Temp\008.part.met.bak [1539] O61 - LFC: 17/02/2014 - 15:44:21 ---A- . (...) -- C:\Users\chantal\Links\Desktop.lnk [482] O61 - LFC: 17/02/2014 - 15:44:21 ---A- . (...) -- C:\Users\chantal\Links\RecentPlaces.lnk [383] O61 - LFC: 17/02/2014 - 15:44:21 ---A- . (.Trend Micro Inc..) -- C:\Users\chantal\Downloads\HijackThis.exe [388608] O61 - LFC: 18/02/2014 - 15:44:07 --HA- . (...) -- C:\Users\chantal\AppData\Local\IconCache.db [105042] O61 - LFC: 18/02/2014 - 15:44:09 ---A- . (...) -- C:\Users\chantal\AppData\Local\Packages\59202MaximeAVART.CheckMate3D_q76p5h0v1m35c\Settings\settings.dat [8192] O61 - LFC: 18/02/2014 - 15:44:10 ---A- . (...) -- C:\Users\chantal\AppData\Local\Temp\CVR5EF9.tmp.cvr [0] O61 - LFC: 18/02/2014 - 15:44:10 ---A- . (...) -- C:\Users\chantal\AppData\Local\Temp\CVRE89B.tmp.cvr [0] O61 - LFC: 18/02/2014 - 15:44:10 ---A- . (...) -- C:\Users\chantal\AppData\Local\Temp\gusetup0.exe [12095272] O61 - LFC: 18/02/2014 - 15:44:10 ---A- . (...) -- C:\Users\chantal\AppData\Local\Temp\wmplog00.sqm [2204] O61 - LFC: 18/02/2014 - 15:44:10 ---A- . (...) -- C:\Users\chantal\AppData\Local\Temp\~glaryutilities-version.dat [492] O61 - LFC: 18/02/2014 - 15:44:10 ---A- . (...) -- C:\Users\chantal\AppData\Roaming\Google\Local Search History\google%2Eweb.w [52] O61 - LFC: 18/02/2014 - 15:44:10 ---A- . (...) -- C:\Users\chantal\AppData\Roaming\Microsoft\Outlook\Outlook.srs [3584] O61 - LFC: 18/02/2014 - 15:44:10 ---A- . (...) -- C:\Users\chantal\AppData\Roaming\Microsoft\Outlook\Outlook.xml [2310] O61 - LFC: 18/02/2014 - 15:44:10 ---A- . (...) -- C:\Users\chantal\AppData\Roaming\Microsoft\Spelling\fr-FR\default.acl [6] O61 - LFC: 18/02/2014 - 15:44:10 ---A- . (...) -- C:\Users\chantal\AppData\Roaming\Microsoft\Spelling\fr-FR\default.dic [24] O61 - LFC: 18/02/2014 - 15:44:10 ---A- . (...) -- C:\Users\chantal\AppData\Roaming\Microsoft\Spelling\fr-FR\default.exc [6] O61 - LFC: 18/02/2014 - 15:44:10 -SHA- . (...) -- C:\Users\chantal\AppData\Roaming\Microsoft\Credentials\FFF35E7994DC2EDBAACF7DF6D0EB4B8E [864] O61 - LFC: 18/02/2014 - 15:44:10 -SHA- . (...) -- C:\Users\chantal\AppData\Roaming\Microsoft\Protect\S-1-5-21-803192325-2889172547-468948696-1001\1eaa4e4c-f324-48c1-8080-3d527f85af03 [468] O61 - LFC: 18/02/2014 - 15:44:13 ---A- . (...) -- C:\Users\chantal\AppData\Roaming\TuneUp Software\TuneUp Utilities 2014\Dashboard\IntegratorStates_fr-FR.xml [344] O61 - LFC: 18/02/2014 - 15:44:13 ---A- . (...) -- C:\Users\chantal\AppData\Roaming\TuneUp Software\TuneUp Utilities 2014\Speed Optimizer\SpeedOptimizerStates.xml [785] O61 - LFC: 18/02/2014 - 15:44:13 ---A- . (...) -- C:\Users\chantal\AppData\Roaming\ZHP\Log.txt [79015] =>.Nicolas Coolman O61 - LFC: 18/02/2014 - 15:44:13 ---A- . (...) -- C:\Users\chantal\AppData\Roaming\ZHP\TestsZHPDiag.txt [2901] =>.Nicolas Coolman O61 - LFC: 18/02/2014 - 15:44:13 ---A- . (...) -- C:\Users\chantal\AppData\Roaming\ZHP\ZHPADSReport.txt [351] =>.Nicolas Coolman O61 - LFC: 18/02/2014 - 15:44:13 ---A- . (...) -- C:\Users\chantal\AppData\Roaming\ZHP\ZHPDiag.txt [275964] =>.Nicolas Coolman O61 - LFC: 18/02/2014 - 15:44:17 ---A- . (...) -- C:\Users\chantal\Documents\Fichiers Outlook\Outlook.pst [124961792] O61 - LFC: 18/02/2014 - 15:44:21 ---A- . (.Nicolas Coolman.) -- C:\Users\chantal\Downloads\ZHPDiag2.exe [6866750] =>.Nicolas Coolman ~ 6 Fichiers temporaires (Temporary files) ~ Files: 68 Scanned in 00mn 19s ---\\ Liste des outils de désinfection (LATC) (O63) O63 - Logiciel: ZHPDiag 2014 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman ~ ADS: Scanned in 00mn 00s ---\\ Associations Shell Spawning (O67) O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\System32\eventvwr.exe O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.exe O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S ~ FASS Keys: 10 Scanned in 00mn 00s ---\\ Menu de démarrage Internet (SMI) (O68) O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe ~ Keys: Scanned in 00mn 00s ---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69) O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Google) - http://www.google.com ~ Keys: Scanned in 00mn 00s ---\\ Enumère les fichiers Crack & Keygen (CKF) (O82) C:\Users\chantal\Desktop\T411\MES TORRENTS\Camtasia Studio v7.0.1 fr + keygen.rar.torrent C:\Users\chantal\Desktop\T411\MES TORRENTS\Camtasia Studio v7.0.1 fr + keygen.rar.torrent ~ Files: Scanned in 00mn 18s ---\\ Enumère les service demarrés par Svchost (SSS) (O83) O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [207360] O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [155136] O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [155136] O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [324608] O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [1311744] O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [1104384] O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur un réseau IPv4..) -- C:\Windows\System32\iphlpsvc.dll [903168] O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll [30720] O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [109568] O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [150528] O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [107008] O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [1214976] O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [220672] O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédias.) -- C:\Windows\System32\mmcss.dll [70656] O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [134144] O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [221184] O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à distance.) -- C:\Windows\System32\sessenv.dll [326656] O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [81408] O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\kmsvc.dll [97792] O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [336896] O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Service d’infrastructure de localisation Windows.) -- C:\Windows\System32\GeofenceMonitorService.dll [491520] O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\Windows\System32\wlidsvc.dll [1555456] O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [50688] O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d’installation de périphérique.) -- C:\Windows\System32\DeviceSetupManager.dll [201728] O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Microsoft.) -- C:\Windows\System32\ncasvc.dll [164352] O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’accès distant.) -- C:\Windows\System32\rasauto.dll [101376] O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d’accès à distance.) -- C:\Windows\System32\rasmans.dll [534016] O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [223744] O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements système (SENS).) -- C:\Windows\System32\sens.dll [71680] O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll [433664] O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM).) -- C:\Windows\System32\tapisrv.dll [306688] O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll [3532288] O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\Windows\System32\qmgr.dll [1017856] O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [629760] O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll [183296] O83 - Search Svchost Services: MsKeyboardFilter (MsKeyboardFilter) . (.Microsoft Corporation - SvcHost Service for Microsoft Keyboard Filter.) -- C:\Windows\System32\KeyboardFilterSvc.dll [90464] ~ Services: 36 Scanned in 00mn 00s ---\\ Recherche particulière à la racine du système (SPRF) (O84) [MD5.E6E6CC2F515AAE1F59DFFA10C507F392] [SPRF][01/01/2014] (...) -- C:\ProgramData\sysqcl1129067056.dat [8] [MD5.E546E12290E4CF48EC771B2DFCBD7C62] [SPRF][24/12/2013] (...) -- C:\Users\chantal\AppData\Roaming\pdfsound.dll [703] [MD5.E75BFE9C1EB8CE57FC3F828369AB0047] [SPRF][09/02/2013] (.fcportables.blogspot.com - Revo Uninstaller Pro.) -- C:\Users\chantal\Desktop\RevoUninPro.exe [11595947] [MD5.BAFD24E8BD9D6A0CDB347809D4A68093] [SPRF][24/12/2010] (.Pas de propriétaire - VirtualDub.) -- C:\Users\chantal\Desktop\VirtualDub.exe [2670592] ~ Files: 4 Scanned in 00mn 00s ---\\ Liste des exceptions du parefeu (FirewallRules) (O87) O87 - FAEL: "vm-monitoring-rpc" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "vm-monitoring-dcom" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMP-In-UDP" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMP-Out-UDP" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMP-Out-TCP" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "SNMPTRAP-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Interruption SNMP.) -- C:\Windows\system32\snmptrap.exe O87 - FAEL: "SNMPTRAP-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Interruption SNMP.) -- C:\Windows\system32\snmptrap.exe O87 - FAEL: "Wininit-Shutdown-In-Rule-TCP-RPC" | In - None - P6 - FALSE | .(.Microsoft Corporation - Application de démarrage de Windows.) -- C:\Windows\system32\wininit.exe O87 - FAEL: "Wininit-Shutdown-In-Rule-TCP-RPC-EPMapper" | In - None - P6 - FALSE | .(.Microsoft Corporation - Application de démarrage de Windows.) -- C:\Windows\system32\wininit.exe O87 - FAEL: "PNRPMNRS-PNRP-In-UDP" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "PNRPMNRS-PNRP-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "PNRPMNRS-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "PNRPMNRS-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MsiScsi-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MsiScsi-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MsiScsi-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MsiScsi-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "ProximityUxHost-Sharing-In-TCP-NoScope" | In - None - P6 - TRUE | .(.Microsoft Corporation - Hôte UX de proximité.) -- C:\Windows\system32\proximityuxhost.exe O87 - FAEL: "ProximityUxHost-Sharing-Out-TCP-NoScope" | Out - None - P6 - TRUE | .(.Microsoft Corporation - Hôte UX de proximité.) -- C:\Windows\system32\proximityuxhost.exe O87 - FAEL: "NETDIS-UPnPHost-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-WSDEVNTS-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-WSDEVNT-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-SSDPSrv-In-UDP-Active" | In - Private - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP-Active" | Out - Private - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-UPnPHost-Out-TCP-Active" | Out - Private - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-UPnP-Out-TCP-Active" | Out - Private - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-FDPHOST-In-UDP-Active" | In - Private - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-DAS-In-UDP-Active" | In - Private - P17 - FALSE | .(.Microsoft Corporation - Device Association Framework Provider Host.) -- C:\Windows\system32\dashost.exe O87 - FAEL: "NETDIS-FDPHOST-Out-UDP-Active" | Out - Private - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-LLMNR-In-UDP-Active" | In - Private - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-LLMNR-Out-UDP-Active" | Out - Private - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP-Active" | In - Private - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP-Active" | Out - Private - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-WSDEVNTS-Out-TCP-Active" | Out - Private - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-WSDEVNT-Out-TCP-Active" | Out - Private - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-UPnP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-UPnPHost-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-FDPHOST-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-DAS-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Device Association Framework Provider Host.) -- C:\Windows\system32\dashost.exe O87 - FAEL: "NETDIS-FDPHOST-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-LLMNR-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-LLMNR-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-WSDEVNTS-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-WSDEVNT-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "EventForwarder-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Event Forwarder.) -- C:\Windows\system32\NetEvtFwdr.exe O87 - FAEL: "EventForwarder-RPCSS-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteFwAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteFwAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteFwAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteFwAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "TPMVSCMGR-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "TPMVSCMGR-Server-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - TPM Virtual Smart Card Manager DCOM Server.) -- C:\Windows\system32\RmtTpmVscMgrSvr.exe O87 - FAEL: "TPMVSCMGR-Server-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - TPM Virtual Smart Card Manager DCOM Server.) -- C:\Windows\system32\RmtTpmVscMgrSvr.exe O87 - FAEL: "TPMVSCMGR-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "TPMVSCMGR-Server-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - TPM Virtual Smart Card Manager DCOM Server.) -- C:\Windows\system32\RmtTpmVscMgrSvr.exe O87 - FAEL: "TPMVSCMGR-Server-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - TPM Virtual Smart Card Manager DCOM Server.) -- C:\Windows\system32\RmtTpmVscMgrSvr.exe O87 - FAEL: "Netlogon-TCP-RPC-In" | In - None - P6 - FALSE | .(.Microsoft Corporation - Local Security Authority Process.) -- C:\Windows\System32\lsass.exe O87 - FAEL: "Collab-PNRP-In-UDP" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "Collab-PNRP-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "Collab-PNRP-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "Collab-PNRP-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WirelessDisplay-In-TCP" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes.) -- C:\Windows\system32\WUDFHost.exe O87 - FAEL: "WirelessDisplay-Out-TCP" | Out - Public - P6 - TRUE | .(.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes.) -- C:\Windows\system32\WUDFHost.exe O87 - FAEL: "WirelessDisplay-Out-UDP" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes.) -- C:\Windows\system32\WUDFHost.exe O87 - FAEL: "WMI-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMI-WINMGMT-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMI-WINMGMT-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMI-ASYNC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) -- C:\Windows\system32\wbem\unsecapp.exe O87 - FAEL: "WMI-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMI-WINMGMT-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMI-WINMGMT-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMI-ASYNC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) -- C:\Windows\system32\wbem\unsecapp.exe O87 - FAEL: "FPS-SpoolSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe O87 - FAEL: "FPS-SpoolSvc-In-TCP" | In - Private - P6 - FALSE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe O87 - FAEL: "FPS-LLMNR-In-UDP" | In - Private - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "FPS-LLMNR-Out-UDP" | Out - Private - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-TCP3587-In" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-TCP3587-Out" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-UDP3540-In" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-UDP3540-Out" | Out - Private - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteAssistance-In-TCP-EdgeScope" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe O87 - FAEL: "RemoteAssistance-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-In-EdgeScope" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-OUT" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteAssistance-RAServer-In-TCP-NoScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur COM d’assistance à distance Windows.) -- C:\Windows\system32\raserver.exe O87 - FAEL: "RemoteAssistance-RAServer-Out-TCP-NoScope-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur COM d’assistance à distance Windows.) -- C:\Windows\system32\raserver.exe O87 - FAEL: "RemoteAssistance-DCOM-In-TCP-NoScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteAssistance-In-TCP-EdgeScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe O87 - FAEL: "RemoteAssistance-Out-TCP-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe O87 - FAEL: "RemoteAssistance-SSDPSrv-In-UDP-Active" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteAssistance-SSDPSrv-Out-UDP-Active" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-In-EdgeScope-Active" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-OUT-Active" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MSDTC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe O87 - FAEL: "MSDTC-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe O87 - FAEL: "MSDTC-KTMRM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MSDTC-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MSDTC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe O87 - FAEL: "MSDTC-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe O87 - FAEL: "MSDTC-KTMRM-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MSDTC-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-QWave-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-QWave-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-QWave-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-QWave-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-WMP-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-WMP-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-WMP-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-In-UDP-NoScope" |In - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation O87 - FAEL: "WMPNSS-Out-UDP-NoScope" |Out - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation O87 - FAEL: "WMPNSS-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation O87 - FAEL: "WMPNSS-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation O87 - FAEL: "WMPNSS-QWave-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-QWave-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-QWave-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-QWave-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-WMP-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-WMP-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-WMP-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-In-UDP" |In - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation O87 - FAEL: "WMPNSS-Out-UDP" |Out - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation O87 - FAEL: "WMPNSS-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation O87 - FAEL: "WMPNSS-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation O87 - FAEL: "WMPNSS-UPnP-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteEventLogSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteEventLogSvc-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteEventLogSvc-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteEventLogSvc-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteTask-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteTask-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteTask-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteTask-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RVM-VDS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service de disque virtuel.) -- C:\Windows\system32\vds.exe O87 - FAEL: "RVM-VDSLDR-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Virtual Disk Service Loader.) -- C:\Windows\system32\vdsldr.exe O87 - FAEL: "RVM-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RVM-VDS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service de disque virtuel.) -- C:\Windows\system32\vds.exe O87 - FAEL: "RVM-VDSLDR-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Virtual Disk Service Loader.) -- C:\Windows\system32\vdsldr.exe O87 - FAEL: "RVM-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "PlayTo-In-UDP-NoScope" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe O87 - FAEL: "PlayTo-In-UDP-LocalSubnetScope" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe O87 - FAEL: "PlayTo-In-UDP-PlayToScope" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe O87 - FAEL: "PlayTo-Out-UDP-NoScope" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe O87 - FAEL: "PlayTo-Out-UDP-LocalSubnetScope" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe O87 - FAEL: "PlayTo-Out-UDP-PlayToScope" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe O87 - FAEL: "PlayTo-In-RTSP-NoScope" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe O87 - FAEL: "PlayTo-In-RTSP-LocalSubnetScope" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe O87 - FAEL: "PlayTo-In-RTSP-PlayToScope" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe O87 - FAEL: "PlayTo-SSDP-Discovery-PlayToScope" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "PlayTo-QWave-In-UDP-PlayToScope" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "PlayTo-QWave-Out-UDP-PlayToScope" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "PlayTo-QWave-In-TCP-PlayToScope" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "PlayTo-QWave-Out-TCP-PlayToScope" | Out - Public - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WFDPRINT-DAFWSD-In-Active" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Device Association Framework Provider Host.) -- C:\Windows\system32\dashost.exe O87 - FAEL: "WFDPRINT-DAFWSD-Out-Active" | Out - Public - P6 - TRUE | .(.Microsoft Corporation - Device Association Framework Provider Host.) -- C:\Windows\system32\dashost.exe O87 - FAEL: "WFDPRINT-SPOOL-In-Active" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe O87 - FAEL: "WFDPRINT-SPOOL-Out-Active" | Out - Public - P6 - TRUE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe O87 - FAEL: "WFDPRINT-SCAN-In-Active" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WFDPRINT-SCAN-Out-Active" | Out - Public - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-DHCP-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-DHCP-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-DHCPV6-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-DHCPV6-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-Teredo-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-Teredo-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-IPHTTPS-Out" | Out - None - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-GP-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-DNS-Out-UDP" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-GP-LSASS-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Local Security Authority Process.) -- C:\Windows\system32\lsass.exe O87 - FAEL: "PerfLogsAlerts-PLASrv-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Performance Logs and Alerts DCOM Server.) -- C:\Windows\system32\plasrv.exe O87 - FAEL: "PerfLogsAlerts-DCOM-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "PerfLogsAlerts-PLASrv-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Performance Logs and Alerts DCOM Server.) -- C:\Windows\system32\plasrv.exe O87 - FAEL: "PerfLogsAlerts-DCOM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteSvcAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe O87 - FAEL: "RemoteSvcAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteSvcAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe O87 - FAEL: "RemoteSvcAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "Microsoft-Windows-PeerDist-WSD-In" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "Microsoft-Windows-PeerDist-WSD-Out" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe =>.Microsoft Corporation O87 - FAEL: "MCX-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe =>.Microsoft Corporation O87 - FAEL: "MCX-QWave-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-QWave-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-QWave-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-QWave-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-TERMSRV-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe =>.Microsoft Corporation O87 - FAEL: "MCX-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe =>.Microsoft Corporation O87 - FAEL: "MCX-MCX2SVC-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-Prov-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - MCX2 Provisioning library.) -- C:\Windows\ehome\mcx2prov.exe O87 - FAEL: "MCX-PlayTo-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-McrMgr-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Media Center Extender Manager.) -- C:\Windows\ehome\mcrmgr.exe O87 - FAEL: "MCX-PlayTo-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-FDPHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteDesktop-UserMode-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteDesktop-UserMode-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteDesktop-Shadow-In-TCP" | In - None - P6 - TRUE | .(.Microsoft Corporation - Agent de session Bureau à distance.) -- C:\Windows\system32\RdpSa.exe O87 - FAEL: "SPPSVC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - KMS Connection Broker.) -- C:\Windows\system32\sppextcomobj.exe O87 - FAEL: "SPPSVC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - KMS Connection Broker.) -- C:\Windows\system32\sppextcomobj.exe O87 - FAEL: "WPDMTP-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe O87 - FAEL: "WPDMTP-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe O87 - FAEL: "WPDMTP-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WPDMTP-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WPDMTP-UPnPHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WPDMTP-UPnP-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "FPS-LLMNR-Out-UDP_1" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "FPS-LLMNR-In-UDP_1" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "FPS-SpoolSvc-In-TCP_1" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe O87 - FAEL: "WMP-Out-TCP_1" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMP-Out-UDP_1" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMP-In-UDP_1" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "UDP Query User{445084C3-6E1D-420B-90CF-47FA078F87C8}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Visual Basic Command Line Compiler.) -- C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe O87 - FAEL: "TCP Query User{74D1D316-7D6F-4147-A2BA-2A61A6D45907}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Visual Basic Command Line Compiler.) -- C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe O87 - FAEL: "{56471552-A83F-4030-B16E-48611C077A06}" | In - None - P6 - TRUE | .(.Nokia - Nokia Suite.) -- C:\Program Files (x86)\nokia\nokia suite\nokiasuite.exe O87 - FAEL: "TCP Query User{A6291EE1-1744-42F2-997E-7F032042378F}C:\program files (x86)\emule\emule.exe" | In - Private - P6 - TRUE | .(.http://www.emule-project.net - eMule.) -- C:\program files (x86)\emule\emule.exe O87 - FAEL: "UDP Query User{37308B5E-C8E8-4002-9AD7-10EDF8E7D1F3}C:\program files (x86)\emule\emule.exe" | In - Private - P17 - TRUE | .(.http://www.emule-project.net - eMule.) -- C:\program files (x86)\emule\emule.exe O87 - FAEL: "{A31F1E9F-89AF-404A-A64E-DA93FB0B254E}" | In - Public - P6 - TRUE | .(.Nero AG - Nero Blu-ray Player.) -- C:\Program Files (x86)\Nero\Nero Blu-ray Player\Blu-rayPlayer.exe O87 - FAEL: "{FE055801-0C93-498E-8770-279706524D59}" | In - Public - P17 - TRUE | .(.Nero AG - Nero Blu-ray Player.) -- C:\Program Files (x86)\Nero\Nero Blu-ray Player\Blu-rayPlayer.exe O87 - FAEL: "{46EEE446-77B5-400B-B7A2-7F619E55E6E8}" | In - Public - P6 - TRUE | .(.Nero AG - OutProc server for DLL loading.) -- C:\Program Files (x86)\Nero\KM\NMDllHost.exe O87 - FAEL: "{9A194C48-E52F-4574-B0BA-DF143E5B5A74}" | In - Public - P17 - TRUE | .(.Nero AG - OutProc server for DLL loading.) -- C:\Program Files (x86)\Nero\KM\NMDllHost.exe O87 - FAEL: "{AB1F96C9-EC2A-4C43-91AA-E43D7EC93E1C}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Microsoft Lync.) -- C:\Program Files\Microsoft Office\Office15\lync.exe O87 - FAEL: "{5237EDFD-D8CB-43F9-89DF-9EB67F4F24C6}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Microsoft Lync.) -- C:\Program Files\Microsoft Office\Office15\lync.exe O87 - FAEL: "{FD105F9C-BB11-4BBC-8D5B-F25A9CE57981}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Microsoft Lync.) -- C:\Program Files\Microsoft Office\Office15\UcMapi.exe O87 - FAEL: "{73270CA7-1560-42FB-82CC-D0EA314A126A}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Microsoft Lync.) -- C:\Program Files\Microsoft Office\Office15\UcMapi.exe O87 - FAEL: "{3C479D9E-05B6-4CB9-8270-83A3188E6A63}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Microsoft Outlook.) -- C:\Program Files\Microsoft Office\Office15\outlook.exe O87 - FAEL: "{863D44C1-67E4-4145-B48E-9D7FCCF3B83B}" | In - None - P17 - TRUE | .(.Hewlett-Packard - HP Update Client.) -- C:\Program Files (x86)\HP\hp software update\hpwucli.exe =>.Hewlett-Packard Co O87 - FAEL: "{069156F1-D81C-4F74-82C5-8CB6517B7878}" | In - Private - P6 - TRUE | .(.proDAD GmbH - proDAD Heroglyph.) -- C:\Program Files\proDAD\Heroglyph-4.0\Heroglyph.exe O87 - FAEL: "{6F293C85-A71E-413E-B34F-27297169CF2F}" | In - Private - P17 - TRUE | .(.proDAD GmbH - proDAD Heroglyph.) -- C:\Program Files\proDAD\Heroglyph-4.0\Heroglyph.exe O87 - FAEL: "{4FC7179C-62D9-489C-A3CE-0AFA4A984038}" | In - Domain - P6 - FALSE | .(.proDAD GmbH - proDAD Heroglyph.) -- C:\Program Files\proDAD\Heroglyph-4.0\Heroglyph.exe O87 - FAEL: "{10D97FAD-6F07-4967-92A7-52943134CF7F}" | In - Domain - P17 - FALSE | .(.proDAD GmbH - proDAD Heroglyph.) -- C:\Program Files\proDAD\Heroglyph-4.0\Heroglyph.exe O87 - FAEL: "{C4E0B410-3F64-4668-A742-73626AC3616D}" | In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\AC3Filter\ac3config.exe O87 - FAEL: "{8D13EB65-8E86-4097-8F02-92648FE28935}" | In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\AC3Filter\ac3config.exe O87 - FAEL: "{EEDE8F47-754A-4508-A67B-66821D856E67}" | In - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\AC3Filter\ac3config.exe O87 - FAEL: "{F07B37B7-DACA-4924-BED0-F6ED37E6B049}" | In - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\AC3Filter\ac3config.exe O87 - FAEL: "{45C9A404-AD96-408A-A3BF-0A40D4C4125F}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files\KMSpico\KMSELDI.exe (.not file.) =>PUP.KMSpico O87 - FAEL: "{77AF05F0-F84B-4EB8-8589-7723FEE675C2}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files\KMSpico\KMSELDI.exe (.not file.) =>PUP.KMSpico O87 - FAEL: "{E9D4BF1F-FF03-4121-A8A7-E4EB9F804357}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files\KMSpico\AutoPico.exe (.not file.) =>PUP.KMSpico O87 - FAEL: "{67CCE1B0-FD76-4E9C-B51F-F30DEF5BC60F}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files\KMSpico\AutoPico.exe (.not file.) =>PUP.KMSpico O87 - FAEL: "{8A9F46C0-733E-4D7B-8C71-38035A775062}" |In - Public - P6 - TRUE | .(...) -- C:\Program Files\KMSpico\Service_KMS.exe (.not file.) =>PUP.KMSpico O87 - FAEL: "{5926D070-E7A6-4986-BB78-E90F7B511217}" |In - Public - P17 - TRUE | .(...) -- C:\Program Files\KMSpico\Service_KMS.exe (.not file.) =>PUP.KMSpico O87 - FAEL: "{C2D12581-3AEA-4D3D-A4E5-412037457CBD}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files\KMSpico\Service_KMS.exe (.not file.) =>PUP.KMSpico O87 - FAEL: "{F13B0B04-80D9-420B-B00F-0C7DEAAE3562}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files\KMSpico\Service_KMS.exe (.not file.) =>PUP.KMSpico O87 - FAEL: "{EF8DD66D-60F9-4F69-885E-C532E3AC5669}" | In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\qBittorrent\qbittorrent.exe =>P2P.BitTorrent O87 - FAEL: "{4CCF6601-9D2A-4D44-A92F-B5DA7C1DC20F}" | In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\qBittorrent\qbittorrent.exe =>P2P.BitTorrent ~ Firewall: 251 Scanned in 00mn 01s ---\\ Enumère les codes produits des logiciels (PUC) (O90) O90 - PUC: "00005109F10010400100000000F01FEC" . (.Microsoft Office Proofing Tools 2013 - اللغة العربية.) -- C:\WINDOWS\Installer\{90150000-001F-0401-1000-0000000FF1CE}\misc.exe,6 O90 - PUC: "00005109F10031400100000000F01FEC" . (.Microsoft Office Proofing Tools 2013 - Nederlands.) -- C:\WINDOWS\Installer\{90150000-001F-0413-1000-0000000FF1CE}\misc.exe,6 O90 - PUC: "00005109F10070400100000000F01FEC" . (.Microsoft Office Korrekturhilfen 2013 - Deutsch.) -- C:\WINDOWS\Installer\{90150000-001F-0407-1000-0000000FF1CE}\misc.exe,6 O90 - PUC: "00005109F10090400100000000F01FEC" . (.Microsoft Office Proofing Tools 2013 - English.) -- C:\WINDOWS\Installer\{90150000-001F-0409-1000-0000000FF1CE}\misc.exe,6 O90 - PUC: "00005109F100A0C00100000000F01FEC" . (.Microsoft Office Proofing Tools 2013 - Español.) -- C:\WINDOWS\Installer\{90150000-001F-0C0A-1000-0000000FF1CE}\misc.exe,6 O90 - PUC: "00005109F100C0400100000000F01FEC" . (.Outils de vérification linguistique 2013 de Microsoft Office - Français.) -- C:\WINDOWS\Installer\{90150000-001F-040C-1000-0000000FF1CE}\misc.exe,6 O90 - PUC: "05D94ECADC916A441B29649F5882B362" . (.Nero PiP Effects Basic.) -- C:\WINDOWS\Installer\{ACE49D50-19CD-44A6-B192-46F985283B26}\ARPPRODUCTICON.exe O90 - PUC: "15E5F6B1E5753964CB2A573475D070D6" . (.Nero Kwik Themes Basic.) -- C:\WINDOWS\Installer\{1B6F5E51-575E-4693-BCA2-7543570D076D}\ARPPRODUCTICON.exe O90 - PUC: "1B1D10D6DB7101F4BB110FF8C0744DB2" . (.PC Connectivity Solution.) -- C:\WINDOWS\Installer\{6D01D1B1-17BD-4F10-BB11-F08F0C47D42B}\ARPPRODUCTICON.exe O90 - PUC: "1E1C483F61A33704593C2717EFE04D2C" . (.Nero 2014.) -- C:\WINDOWS\Installer\{F384C1E1-3A16-4073-95C3-7271FE0ED4C2}\ARPPRODUCTICON.exe O90 - PUC: "31515E04719D3654486FE46FDA4DE6F2" . (.Nero Recode.) -- C:\WINDOWS\Installer\{40E51513-D917-4563-84F6-4EF6ADD46E2F}\ARPPRODUCTICON.exe O90 - PUC: "35588CBA077879B44BE3A50946A7B536" . (.Nero ControlCenter.) -- C:\WINDOWS\Installer\{ABC88553-8770-4B97-B43E-5A90647A5B63}\ARPPRODUCTICON.exe O90 - PUC: "45F5B115D1BCB5F4EBE0901B8DB65E68" . (.Nero Video.) -- C:\WINDOWS\Installer\{511B5F54-CB1D-4F5B-BE0E-09B1D86BE586}\ARPPRODUCTICON.exe O90 - PUC: "47237392E779C3144AEDCDF0E8084C92" . (.Nokia Connectivity Cable Driver.) -- C:\WINDOWS\Installer\{29373274-977E-413C-A4DE-DC0F8E80C429}\ARPPRODUCTICON.exe O90 - PUC: "475312CD7C9F56A4EB48024F70B91D3C" . (.Online Safety 2.63.170.284.) -- C:\Windows\Installer\{DC213574-F9C7-4A65-BE84-20F4079BD1C3}\icon.ico O90 - PUC: "48D76F9207A3E65408A62503B12070B0" . (.Nero Effects Basic.) -- C:\WINDOWS\Installer\{29F67D84-3A70-456E-806A-52301B02070B}\ARPPRODUCTICON.exe O90 - PUC: "48ECD185849119844A7A1A22C21C735C" . (.Nero RescueAgent.) -- C:\WINDOWS\Installer\{581DCE84-1948-4891-A4A7-A1222CC137C5}\ARPPRODUCTICON.exe O90 - PUC: "4A3497DE0FF26904BBAEEDC32C603E4D" . (.Nero Express.) -- C:\WINDOWS\Installer\{ED7943A4-2FF0-4096-BBEA-DE3CC206E3D4}\ARPPRODUCTICON.exe O90 - PUC: "5F881BDE8E8DEE24980E2F21AD84BC18" . (.Nokia Suite.) -- C:\WINDOWS\Installer\{EDB188F5-D8E8-42EE-89E0-F212DA48CB81}\ARPPRODUCTICON.exe O90 - PUC: "67BCB71E42995DB46B6D053D04B7E447" . (.Nero Disc Menus Basic.) -- C:\WINDOWS\Installer\{E17BCB76-9924-4BD5-B6D6-50D3407B4E74}\ARPPRODUCTICON.exe O90 - PUC: "68AB67CA7DA76301B744BA0000000010" . (.Adobe Reader XI (11.0.06) - Français.) -- C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-AB0000000001}\SC_Reader.ico O90 - PUC: "6D8C9B2FC96C7AB4592D661F6CD851AD" . (.Nero Burning ROM.) -- C:\WINDOWS\Installer\{F2B9C8D6-C69C-4BA7-95D2-66F1C68D15DA}\ARPPRODUCTICON.exe O90 - PUC: "7040BB568CC47CD459E2E3FEFD5006A2" . (.Nero Update.) -- C:\WINDOWS\Installer\{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}\ARPPRODUCTICON.exe O90 - PUC: "87C5115D22D286645A2EC678ED3DDEB1" . (.Nero Launcher.) -- C:\WINDOWS\Installer\{D5115C78-2D22-4668-A5E2-6C87DED3ED1B}\ARPPRODUCTICON.exe O90 - PUC: "99D5048A67D96544782578AD39C03C3A" . (.Comic Life 2.) -- C:\WINDOWS\Installer\{A8405D99-9D76-4456-8752-87DA930CC3A3}\icon.ico O90 - PUC: "BA0E197B9A784A14D8891DC3E2739D82" . (.Nero Info.) -- C:\WINDOWS\Installer\{B791E0AB-87A9-41A4-8D98-D13C2E37D928}\ARPPRODUCTICON.exe O90 - PUC: "BE9B46A2FEAAB264D8A558B5D15D64A7" . (.O&O CleverCache.) -- C:\WINDOWS\Installer\{2A64B9EB-AAEF-462B-8D5A-855B1DD5467A}\ARPPRODUCTICON.exe O90 - PUC: "D7314F9862C648A4DB8BE2A5B47BE100" . (.Microsoft Silverlight.) -- C:\WINDOWS\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ARPIcon O90 - PUC: "E196EF2AE8F303E4AAD7FF71CA77AE78" . (.Nero Blu-ray Player.) -- C:\WINDOWS\Installer\{A2FE691E-3F8E-4E30-AA7D-FF17AC77EA87}\ARPPRODUCTICON.exe O90 - PUC: "E2FB0A7ACC133E949931255C30BE69D9" . (.Nero Audio Pack 1.) -- C:\WINDOWS\Installer\{A7A0BF2E-31CC-49E3-9913-52C503EB969D}\ARPPRODUCTICON.exe O90 - PUC: "E98A9095F79CC704EAB274DBDE68FBD5" . (.Prerequisite installer.) -- C:\WINDOWS\Installer\{5909A89E-C97F-407C-AE2B-47BDED86BF5D}\ARPPRODUCTICON.exe O90 - PUC: "FA631BD4B98343A4EA43052153950DE8" . (.Nero MediaHome.) -- C:\WINDOWS\Installer\{4DB136AF-389B-4A34-AE34-50123559D08E}\NeroKwikMedia._63C8A7B0BBE5459F9AC436392B2FF50D.exe ~ Update Products: 109 Scanned in 00mn 00s ---\\ Enumère les données de la clé NameSpace (MNS) (O92) O92 - MNS: - {1CF1260C-4DD0-4ebb-811F-33C572699FDE} O92 - MNS: - {374DE290-123F-4565-9164-39C4925E467B} O92 - MNS: - {3ADD1653-EB32-4cb0-BBD7-DFA0ABB5ACCA} O92 - MNS: - {A0953C92-50DC-43bf-BE83-3742FED03C9C} O92 - MNS: - {A8CDFF1C-4878-43be-B5FD-F8091C1C60D0} O92 - MNS: - {B4BFCC3A-DB2C-424C-B029-7FE99A87C641} ~ MNS: 6 Scanned in 00mn 00s ---\\ Recherche des packages WindowsInstaller (WIS) (O93) (NTFS) [MD5.8922966D516E0B7E0D409D2679548FBC] [WIS][23/12/2013] (.TuneUp Software - TuneUp Utilities 2014 (fr-FR).) -- C:\Windows\Installer\203a14.msi [2662400] [MD5.79370ECA66CB99B1A3D20F8AA59F9D94] [WIS][23/12/2013] (.TuneUp Software - TuneUp Utilities 2014.) -- C:\Windows\Installer\203a17.msi [28983296] [MD5.9C013032A7C73B9EDE52DAF4FE3045DE] [WIS][25/09/2013] (.plasq LLC - Comic Life 2 Installer Package.) -- C:\Windows\Installer\2b33578.msi [82440192] [MD5.4E2A8D1CA31863991C7665CEA3BD9B43] [WIS][15/08/2012] (.ImageShack Corp. - ImageShack bulk uploader.) -- C:\Windows\Installer\36d7cd.msi [12964864] [MD5.C133F19570415BEC44B8403A15BD4E9A] [WIS][29/04/2011] (.Builds the Destinations MSI - Builds the Destinations MSI.) -- C:\Windows\Installer\4fcde4d.msi [523776] [MD5.1B88BF49F3FF0D2596BCA9E49894F611] [WIS][20/12/2013] (.Google Inc. - Google Toolbar for Internet Explorer.) -- C:\Windows\Installer\5d7785.msi [28672] =>Toolbar.Google [MD5.6B3B407E30E7D4C46F0F2327D63789FA] [WIS][31/12/2013] (.Nokia - MSVC80_x86_v2.) -- C:\Windows\Installer\79e343.msi [12815360] [MD5.7B09592A44073ACB96533B400EF1970D] [WIS][31/12/2013] (.Nokia - MSVC80_x64_v2.) -- C:\Windows\Installer\79e348.msi [12307968] [MD5.19A665988BA2E2C24261EEA6AFD1B353] [WIS][31/12/2013] (.Nokia - MSVC90_x86.) -- C:\Windows\Installer\79e34d.msi [28236288] [MD5.BADDD497B35DFE7EBA77C072222F6528] [WIS][31/12/2013] (.Nokia - MSVC90_x64.) -- C:\Windows\Installer\79e352.msi [24828928] [MD5.44AC5FA411BDC34CF17DB30422612742] [WIS][31/12/2013] (.Nokia - Microsoft_VC100_CRT_SP1.) -- C:\Windows\Installer\79e357.msi [503808] [MD5.BC749588ABCDF4964E6132A3B6CBD7A3] [WIS][31/12/2013] (.Nokia - Microsoft_VC100_CRT_SP1.) -- C:\Windows\Installer\79e35c.msi [536064] [MD5.C8ADE4B1732EF1770C5E6B54F892A6A4] [WIS][31/12/2013] (.Nokia - Nokia Connectivity Cable Driver.) -- C:\Windows\Installer\79e362.msi [7032832] [MD5.10E805D8636B1B3AF596688600EF6EC2] [WIS][31/12/2013] (.Nokia - PC Connectivity Solution.) -- C:\Windows\Installer\79e368.msi [26374144] [MD5.96D46EB790E2C269871162FB5F9A05E6] [WIS][31/12/2013] (.Nokia - Nokia Suite.) -- C:\Windows\Installer\79e38c.msi [261939200] [MD5.9740CEBC435B0D3161C3F2DC221173AA] [WIS][01/02/2014] (.Winamax - Winamax Poker.) -- C:\Windows\Installer\9de4d0b.msi [22016] ~ WIS: 110 Scanned in 00mn 16s ---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) SS - | Disabled 21/12/2013 65432 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe SS - | Auto 20/12/2013 116648 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe SS - | Demand 20/12/2013 116648 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe SS - | Demand 20/12/2013 194032 | (gusvc) . (.Google.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe SS - | Disabled 18/07/2013 762192 | (NAUpdate) . (.Nero AG.) - C:\Program Files (x86)\Nero\Update\NASvc.exe SS - | Demand 18/04/2013 737616 | (ServiceLayer) . (.Nokia.) - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe SS - | Demand 10/07/1658 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation SR - | Auto 27/08/2012 167632 | (fshoster) . (.F-Secure Corporation.) - C:\Program Files (x86)\Orange\Antivirus Firewall\fshoster32.exe SR - | Demand 03/07/2012 212688 | (FSMA) . (.F-Secure Corporation.) - C:\Program Files (x86)\Orange\Antivirus Firewall\apps\ComputerSecurity\Common\FSMA32.exe SR - | Auto 20/12/2013 60352 | (FSORSPClient) . (.F-Secure Corporation.) - C:\Program Files (x86)\Orange\Antivirus Firewall\apps\CCF_Reputation\fsorsp.exe SR - | Demand 22/08/2013 37768 | C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll (hpqcxs08) . (.Hewlett-Packard Co..) - C:\Windows\System32\svchost.exe SR - | Auto 22/08/2013 37768 | C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll (hpqddsvc) . (.Hewlett-Packard Co..) - C:\Windows\System32\svchost.exe SR - | Auto 04/04/2013 418376 | (MBAMScheduler) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe SR - | Auto 04/04/2013 701512 | (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe SR - | Auto 22/08/2013 37768 | C:\Windows\System32\HPZinw12.dll (Net Driver HPZ12) . (.Hewlett-Packard.) - C:\Windows\System32\svchost.exe SR - | Auto 09/12/2009 844616 | (O&O CleverCache) . (.O&O Software GmbH.) - C:\Program Files\OO Software\CleverCache\ooccag.exe SR - | Auto 22/08/2013 37768 | C:\Windows\System32\HPZipm12.dll (Pml Driver HPZ12) . (.Hewlett-Packard.) - C:\Windows\System32\svchost.exe SR - | Auto 21/10/2012 121856 | (Printer Control) . (.ActMask Co.,Ltd - HTTP://WWW.ALL2PDF.COM.) - C:\WINDOWS\system32\PrintCtrl.exe SR - | Auto 30/08/2013 2100024 | (TuneUp.UtilitiesSvc) . (.TuneUp Software.) - C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe SR - | Demand 10/07/1658 0 | (WdNisSvc) . (...) - C:\Program Files (x86)\Windows Defender\NisSrv.exe SR - | Demand 10/07/1658 0 | (WinDefend) . (...) - C:\Program Files (x86)\Windows Defender\MsMpEng.exe SR - | Demand 22/08/2013 37768 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe ~ Services: Scanned in 00mn 18s ---\\ Recherche d'infection sur le Master Boot Record (MBR)(O80) Run by chantal at 18/02/2014 15:45:13 ~ OS 64 not supported by MBR tool ~ MBR: 0 Scanned in 00mn 00s ---\\ Recherche d'infection sur le Master Boot Record (MBRCheck)(O80) Written by ad13, http://ad13.geekstog Run by chantal at 18/02/2014 15:45:15 ********* Dump file Name ********* C:\PhysicalDisk0_MBR.bin ~ MBR: Scanned in 00mn 02s ---\\ Liste des émulateurs de CD/DVD (MBR Hook) O58 - SDL:[MD5.AA90A319BB067E0D149B4C95608C4B05] - 25/12/2013 - 12:27:38 ---A- . (.Duplex Secure Ltd. - SCSI Pass Through Direct Host.) -- C:\Windows\System32\Drivers\sptd.sys [867064] ~ Emulateurs: Scanned in 00mn 02s ---\\ Scan Additionnel (O88) Database Version : 13031 - (17/02/2014) Clés trouvées (Keys found) : 4 Valeurs trouvées (Values found) : 1 Dossiers trouvés (Folders found) : 4 Fichiers trouvés (Files found) : 2 [HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4D91-8333-CF10577473F7}] =>Toolbar.Google^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{18455581-E099-4BA8-BC6B-F34B2F06600C}] =>Toolbar.Google^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{2318C2B1-4965-11d4-9B18-009027A5CD4F}] =>Toolbar.Google^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\qbittorrent] =>P2P.BitTorrent^ [HKLM\Software\Microsoft\Internet Explorer\Toolbar]:{2318C2B1-4965-11d4-9B18-009027A5CD4F} =>Toolbar.Google^ C:\Program Files (x86)\qBittorrent =>P2P.BitTorrent^ C:\Users\chantal\AppData\Roaming\qBittorrent =>P2P.BitTorrent^ C:\Users\chantal\AppData\Local\qBittorrent =>P2P.BitTorrent^ C:\Users\chantal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\qBittorrent =>P2P.BitTorrent^ C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe =>Toolbar.Google^ C:\Windows\Installer\5d7785.msi =>Toolbar.Google^ ~ Additionnel Scan: 304401 Items scanned in 00mn 36s ---\\ Récapitulatif des détections trouvées sur votre station ~ http://nicolascoolman.webs.com/apps/blog/show/29633319-pup-kmspico =>PUP.KMSpico ~ MSI: 1 link(s) detected in 00mn 36s End of the scan (2234 lines in 02mn 56s)(2)