~ Rapport de ZHPDiag v2014.1.16.17 - Nicolas Coolman (17/01/2014) ~ Lancé par Best Hotel Fixe (17/01/2014 09:06:21) ~ Adresse du Site Web http://nicolascoolman.webs.com ~ Forums gratuits d'Assistance à la désinfection : http://nicolascoolman.webs.com/apps/links/ ~ Traduit par Nicolas Coolman ~ Etat de la version : ~ Liste blanche : Désactivée par l'utilisateur ~ Elévation des Privilèges : OK ~ User Account Control (UAC): Activate by user ---\\ Navigateurs Internet MSIE: Internet Explorer v11.0.9600.16476 GCIE: Google Chrome v32.0.1700.76 (Defaut) OBIE: Safari v5.34.57.2 ---\\ Informations sur les produits Windows ~ Langage: Français Windows 7 Professional, 32-bit Service Pack 1 (Build 7601) Windows Server License Manager Script : OK ---\\ Logiciels de protection du système Bitdefender Internet Security v17.23.0.996 Windows Defender W7 ---\\ Logiciels d'optimisation du système ---\\ Logiciels de partage PeerToPeer ---\\ Surveillance de Logiciels Adobe Flash Player 10 Plugin Adobe Reader XI ---\\ Informations sur le système ~ Processor: x86 Family 6 Model 23 Stepping 10, GenuineIntel ~ Operating System: 32 Bits Boot mode: Normal (Normal boot) Total RAM: 3036 MB (55% free) System Restore: Activé (Enable) System drive C: has 245 GB (84%) free of 289 GB ---\\ Mode de connexion au système ~ Computer Name: BESTHOTELFIXE ~ User Name: Best Hotel Fixe ~ All Users Names: Best Hotel Fixe, Administrateur, ~ Unselected Option: None Logged in as Administrator ---\\ Variables d'environnement ~ System Unit : C:\ ~ %AppZHP% : C:\Users\Best Hotel Fixe\AppData\Roaming\ZHP\ ~ %AppData% : C:\Users\Best Hotel Fixe\AppData\Roaming\ ~ %Desktop% : C:\Users\Best Hotel Fixe\Desktop\ ~ %Favorites% : C:\Users\Best Hotel Fixe\Favorites\ ~ %LocalAppData% : C:\Users\Best Hotel Fixe\AppData\Local\ ~ %StartMenu% : C:\Users\Best Hotel Fixe\AppData\Roaming\Microsoft\Windows\Start Menu\ ~ %Windir% : C:\Windows\ ~ %System% : C:\Windows\System32\ ---\\ Enumération des unités disques C: Hard drive, Flash drive, Thumb drive (Free 245 Go of 289 Go) D: CD-ROM drive (Not Inserted) E: Floppy drive, Flash card reader, USB Key (Not Inserted) ---\\ Etat du Centre de Sécurité Windows [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowMyGames: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK [HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK [HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK ~ Security Center: 41 Scanned in 00mn 00s ---\\ Recherche particulière de fichiers génériques [MD5.8B88EBBB05A0E56B7DCC708498C02B3E] - (.Microsoft Corporation - Explorateur Windows.) (.25/02/2011 - 06:30:54.) -- C:\Windows\Explorer.exe [2616320] [MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:14:45.) -- C:\Windows\System32\Wininit.exe [96256] [MD5.927FA6456AD6D7630F6854828D2FD16B] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.26/11/2013 - 07:33:33.) -- C:\Windows\System32\wininet.dll [1820160] [MD5.6D13E1406F50C66E2A95D97F22C47560] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.20/11/2010 - 13:17:54.) -- C:\Windows\System32\Winlogon.exe [286720] [MD5.E3AE23569749DE12D45BA3B489A036AE] - (.Microsoft Corporation - Bibliothèque de licences.) (.20/11/2010 - 13:21:24.) -- C:\Windows\System32\sppcomapi.dll [193536] [MD5.F81BB7E487EDCEAB630A7EE66CF23913] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.14/09/2013 - 01:48:58.) -- C:\Windows\system32\Drivers\AFD.sys [338944] [MD5.338C86357871C167A96AB976519BF59E] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:26:15.) -- C:\Windows\system32\Drivers\atapi.sys [21584] [MD5.77EA11B065E0A8AB902D78145CA51E10] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:11:15.) -- C:\Windows\system32\Drivers\Cdfs.sys [70656] [MD5.BE167ED0FDB9C1FA1133953C18D5A6C9] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.20/11/2010 - 09:38:10.) -- C:\Windows\system32\Drivers\Cdrom.sys [108544] [MD5.F024449C97EC1E464AAFFDA18593DB88] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.20/11/2010 - 09:42:32.) -- C:\Windows\system32\Drivers\DfsC.sys [78336] [MD5.9036377B8A6C15DC2EEC53E489D159B5] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.20/11/2010 - 10:59:29.) -- C:\Windows\system32\Drivers\HDAudBus.sys [108544] [MD5.F151F0BDC47F4A28B1B20A0818EA36D6] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:11:24.) -- C:\Windows\system32\Drivers\i8042prt.sys [80896] [MD5.A5FA468D67ABCDAA36264E463A7BB0CD] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 00:54:29.) -- C:\Windows\system32\Drivers\IpNat.sys [101888] [MD5.5D16C921E3671636C0EBA3BBAAC5FD25] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.27/04/2011 - 03:17:22.) -- C:\Windows\system32\Drivers\MRxSmb.sys [123904] [MD5.280122DDCF04B378EDD1AD54D71C1E54] - (.Microsoft Corporation - MBT Transport driver.) (.20/11/2010 - 09:39:44.) -- C:\Windows\system32\Drivers\netBT.sys [187904] [MD5.5E43D2B0EE64123D4880DFA6626DEFDE] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.12/04/2013 - 14:45:29.) -- C:\Windows\system32\Drivers\ntfs.sys [1211752] [MD5.2EA877ED5DD9713C5AC74E8EA7348D14] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 00:45:35.) -- C:\Windows\system32\Drivers\Parport.sys [79360] [MD5.D9F91EAFEC2815365CBE6D167E4E332A] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.14/07/2009 - 00:54:34.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [78848] [MD5.B973FCFC50DC1434E1970A146F7E3885] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.20/11/2010 - 11:24:46.) -- C:\Windows\system32\Drivers\rdpdr.sys [133632] [MD5.3E21C083B8A01CB70BA1F09303010FCE] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 00:53:41.) -- C:\Windows\system32\Drivers\smb.sys [71168] [MD5.B459575348C20E8121D6039DA063C704] - (.Microsoft Corporation - TDI Translation Driver.) (.20/11/2010 - 09:39:17.) -- C:\Windows\system32\Drivers\tdx.sys [74752] [MD5.F497F67932C6FA693D7DE2780631CFE7] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.20/11/2010 - 13:30:16.) -- C:\Windows\system32\Drivers\volsnap.sys [245632] ~ Generic Processes: Scanned in 00mn 00s ---\\ Etat des fichiers cachés (Caché/Total) ~ Mes images (My Pictures) : 2/352 ~ Mes musiques (My Musics) : 1/177 ~ Mes Favoris (My Favorites) : 1/41 ~ Mes Documents (My Documents) : 3/148 ~ Mon Bureau (My Desktop) : 3/108 ~ Menu demarrer (Programs) : 1/27 ~ Hidden Files: Scanned in 00mn 01s ---\\ Processus lancés [MD5.0EE886B38B4A4BC23338887005AB8F29] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [7739936] [PID.2724] [MD5.76BF13E24442B4A3314379ABEAD51C99] - (.CyberLink Corp. - CyberLink PowerDVD Resident Program.) -- C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe [140520] [PID.3148] [MD5.87D78CF6365BDDACBE9D34B60FE0E23B] - (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe [171032] [PID.3140] [MD5.89D3DE5E2C77DCD99C56F0E46310AEA0] - (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe [172568] [PID.740] [MD5.10923CB228E1E591AC238C3C437BDF75] - (.Hewlett-Packard Company - HPTLBXFX.) -- C:\Program Files\HP\ToolboxFX\bin\HPTLBXFX.exe [58936] [PID.1960] [MD5.C637FC4638A96165256B28D38DE7B953] - (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files\HP\HP Software Update\hpwuschd2.exe [49208] [PID.3364] [MD5.BAF535F843A3E790E04A7613811B55BC] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe [152392] [PID.3640] [MD5.176F979B29C4A972230CC68E76B92E41] - (.Bitdefender - Bitdefender Agent.) -- C:\Program Files\BitDefender\Bitdefender\bdagent.exe [1834240] [PID.3648] [MD5.86D66F5D9D8D494913A035A5CB2256AB] - (.Bitdefender - Bitdefender Password Manager Agent.) -- C:\Program Files\BitDefender\Bitdefender\pmbxag.exe [477736] [PID.3692] [MD5.8AE23533BC5BABEC1728EB93C71D0788] - (.Bitdefender - Bitdefender Application Password Manager Ag.) -- C:\Program Files\BitDefender\Bitdefender\bdapppassmgr.exe [612696] [PID.1208] [MD5.137BB82253BC95BDA9DC42F2A20B6830] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [8335360] [PID.1316] ~ Processes Running: Scanned in 00mn 00s ---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2) C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Preferences G1 - GCS: Preference [User Data\Default] None G2 - GCE: Preference [User Data\Default] [ahfgeienlihckogmohjhadlkjgocpleb] Google Store v.0.2 (Activé) G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Documents Google v.0.5 (Activé) G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Drive v.6.3 (Désactivé) G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] YouTube v.4.2.6 (Activé) G2 - GCE: Preference [User Data\Default] [ccahoghmggldkcdjiebjkidpfongdfbl] Bitdefender Wallet v.17.24.0 (Désactivé) G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Recherche Google v.0.0.0.20 (Activé) G2 - GCE: Preference [User Data\Default] [eemcgdkfndhakfknompkggombfjjjeno] Bookmark Manager v.0.1 (Activé) G2 - GCE: Preference [User Data\Default] [ennkphjdgehloodpbhlhldgbnhmacadg] Settings v.0.2 (Activé) G2 - GCE: Preference [User Data\Default] [gfdkimpbcpahaombhbimeihdjnejgicl] Feedback v.1.0 (Activé) G2 - GCE: Preference [User Data\Default] [lifbcibllhkdhoafpjfnlhfpfgnpldfl] Skype Click to Call v.5.7.0.8773 (Désactivé) G2 - GCE: Preference [User Data\Default] [mfehgcgbbipciphmccgaenjidiccnmng] Cloud Print v.0.1 (Activé) G2 - GCE: Preference [User Data\Default] [mgndgikekgjfcpckkfioiadnlibdjbkf] Chrome v.0.1 (Activé) G2 - GCE: Preference [User Data\Default] [nkeimhogjdpnpccoofpliimaahmaaome] Hangout Services v.1.0 (Activé) G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Wallet v.0.0.6.0 (Activé) G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Gmail v.7 (Activé) ~ Google Browser: 16 Scanned in 00mn 01s ---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) C:\Users\Best Hotel Fixe\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\prefs.js P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF32.dll P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (...) -- C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll P2 - FPN: [HKLM] [@Bitdefender.com/PasswordManager;version=17.8] - (.Bitdefender - Bitdefender Password Manager NPAPI Plugin.) -- C:\Program Files\Bitdefender\Bitdefender\pmbxnp.dll P2 - FPN: [HKLM] [@google.com/npPicasa3,version=3.0.0] - (.Google, Inc. - Picasa plugin.) -- C:\Program Files\Google\Picasa3\npPicasa3.dll P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Sun Microsystems, Inc. - Next Generation Java Plug-in 1.6.0_24 for Mozilla browsers.) -- C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.20913.0.) -- c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=15.4.3502.0922] - (.Microsoft Corporation - NPWLPG.) -- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=15.4.3508.1109] - (.Microsoft Corporation - NPWLPG.) -- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll P2 - FPN: [HKLM] [Adobe Reader] - (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 11.0.06.) -- C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll ~ Firefox Browser: 11 Scanned in 00mn 00s ---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = preserve R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 11.0.06.) (No version) -- (.not file.) R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1 ~ IE Browser: 14 Scanned in 00mn 00s ---\\ Internet Explorer, Proxy Management (R5) R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ~ Proxy management: Scanned in 00mn 00s ---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe, F2 - REG:system.ini: Shell=C:\Windows\explorer.exe F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe ~ Keys: Scanned in 00mn 00s ---\\ Hosts file redirection (O1) ~ Le fichier hosts est sain (The hosts file is clean). ~ Hosts File: Scanned in 00mn 00s ~ Nombre de lignes (Lines number): 19 ---\\ Browser Helper Objects de navigateur (O2) O2 - BHO: Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} . (.Bitdefender - Bitdefender Password Manager Internet Explo.) -- C:\Program Files\Bitdefender\Bitdefender\pmbxie.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} . (...) -- C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (.not file.) =>Trojan.FindFDSearch O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll =>Toolbar.Google O2 - BHO: (no name) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} Clé orpheline O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll ~ BHO: 12 Scanned in 00mn 00s ---\\ Internet Explorer Toolbars (O3) O3 - Toolbar: (no name) - [HKLM]{8dcb7100-df86-4384-8842-8fa844297b3f} Clé orpheline O3 - Toolbar: Google Toolbar - [HKLM]{2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll =>Toolbar.Google O3 - Toolbar\WebBrowser: (no name) - [HKCU]{21FA44EF-376D-4D53-9B0F-8A89D3229068} Clé orpheline ~ Toolbar: Scanned in 00mn 00s ---\\ Autres liens utilisateurs (O4) O4 - GS\Desktop [Public]: Bitdefender Internet Security.lnk . (.Bitdefender - Bitdefender Security Center.) -- C:\Program Files\BitDefender\Bitdefender\seccenter.exe O4 - GS\Desktop [Public]: Bitdefender Safepay.lnk . (.Bitdefender - Bitdefender Safepay.) -- C:\Program Files\BitDefender\Bitdefender\obk.exe O4 - GS\Desktop [Public]: CCleaner.lnk . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner.exe =>Piriform Ltd O4 - GS\Desktop [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe O4 - GS\Desktop [Public]: Utilitaire Outils du scanner HP.lnk . (.Hewlett-Packard Co. - Scanner Tools Utility.) -- C:\Program Files\Common Files\Hewlett-Packard\Scanjet\6010\hpScan2Ls.exe O4 - GS\Program [Public]: Adobe Illustrator CS.lnk . (.Adobe Systems, Inc. - Adobe Illustrator.) -- C:\Program Files\Adobe\Illustrator CS\Support Files\Contents\Windows\Illustrator.exe =>.Adobe Systems Incorporated O4 - GS\Program [Public]: Adobe Reader XI.lnk . (...) -- C:\Windows\Installer\{AC76BA86-7AD7-1036-7B44-AB0000000001}\SC_Reader.ico O4 - GS\Program [Public]: Apple Software Update.lnk . (...) -- C:\Windows\Installer\{C6579A65-9CAE-4B31-8B6B-3306E0630A66}\AppleSoftwareUpdateIco.exe =>.Apple Inc O4 - GS\Program [Public]: Documentation d'aide de Dell.lnk . (.Dell Inc. - Dell Document Viewer.) -- C:\Program Files\Dell Inc\Dell Edoc Viewer\EDocs.exe O4 - GS\Program [Public]: Enregistrement OCR I.R.I.S..lnk . (.I.R.I.S. SA - Registration Wizard for I.R.I.S. products.) -- C:\Program Files\Common Files\Hewlett-Packard\Scanjet\Corp20\DocProc\regipe.exe O4 - GS\Program [Public]: Lanceur de tâches Microsoft Works.lnk . (.Microsoft® Corporation - Microsoft® Works.) -- C:\Program Files\Microsoft Works\MSWorks.exe =>.Microsoft Corporation O4 - GS\Program [Public]: Media Center.lnk . (.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe =>.Microsoft Corporation O4 - GS\Program [Public]: PowerDVD DX.lnk . (.CyberLink Corp. - CyberLink PowerDVD DX.) -- C:\Program Files\CyberLink\PowerDVD DX\PowerDVD.exe O4 - GS\Program [Public]: Sidebar.lnk . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation O4 - GS\Program [Public]: Visionneuse Microsoft Office PowerPoint 2007.lnk . (...) -- C:\Windows\Installer\{95120000-00AF-040C-0000-0000000FF1CE}\ppvwicon.exe =>.Microsoft Corporation O4 - GS\Program [Public]: Windows Anytime Upgrade.lnk . (.Microsoft Corporation - Interface utilisateur de Mise à niveau expr.) -- C:\Windows\system32\WindowsAnytimeUpgradeUI.exe O4 - GS\Program [Public]: Windows DVD Maker.lnk . (.Microsoft Corporation - Création de DVD Windows.) -- C:\Program Files\DVD Maker\DVDMaker.exe =>.Microsoft Corporation O4 - GS\Program [Public]: Windows Fax and Scan.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) -- C:\Windows\system32\WFS.exe =>.Microsoft Corporation O4 - GS\Program [Public]: Windows Live Mail.lnk . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files\Windows Live\Mail\wlmail.exe =>.Microsoft Corporation O4 - GS\Program [Public]: Windows Live Messenger.lnk . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe O4 - GS\Program [Public]: Windows Live Movie Maker.lnk . (.Microsoft Corporation - Windows Live Movie Maker.) -- C:\Program Files\Windows Live\Photo Gallery\MovieMaker.exe =>.Microsoft Corporation O4 - GS\Program [Public]: Windows Live Photo Gallery.lnk . (.Microsoft Corporation - Windows Live Photo Gallery.) -- C:\Program Files\Windows Live\Photo Gallery\WLXPhotoGallery.exe =>.Microsoft Corporation O4 - GS\Program [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O4 - GS\Program [Public]: XPS Viewer.lnk . (.Microsoft Corporation - Visionneuse XPS.) -- C:\Windows\system32\xpsrchvw.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Calculator.lnk . (.Microsoft Corporation - Calculatrice de Windows.) -- C:\Windows\system32\calc.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: displayswitch.lnk . (.Microsoft Corporation - Afficher le commutateur.) -- C:\Windows\system32\displayswitch.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Math Input Panel.lnk . (.Microsoft Corporation - Accessoire du panneau de saisie mathématiqu.) -- C:\Program Files\Common Files\Microsoft Shared\Ink\mip.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Mobility Center.lnk . (.Microsoft Corporation - Centre de mobilité Windows.) -- C:\Windows\system32\mblctr.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: NetworkProjection.lnk . (.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\NetProj.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.) -- C:\Windows\system32\mspaint.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Connexion Bureau à distance.) -- C:\Windows\system32\mstsc.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - Outil Capture.) -- C:\Windows\system32\SnippingTool.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Sound Recorder.lnk . (.Microsoft Corporation - Magnétophone Windows.) -- C:\Windows\system32\SoundRecorder.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Sticky Notes.lnk . (.Microsoft Corporation - Pense-bête.) -- C:\Windows\system32\StikyNot.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Sync Center.lnk . (.Microsoft Corporation - Microsoft Sync Center.) -- C:\Windows\System32\mobsync.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Welcome Center.lnk . (.Microsoft Corporation - Mise en route.) -- C:\Windows\system32\OobeFldr.dll =>.Microsoft Corporation O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Application Windows Wordpad.) -- C:\Program Files\Windows NT\Accessories\wordpad.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Table des caractères.) -- C:\Windows\system32\charmap.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: dfrgui.lnk . (.Microsoft Corporation - Défragmenteur de disque Microsoft®.) -- C:\Windows\system32\dfrgui.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: Disk Cleanup.lnk . (.Microsoft Corporation - Gestionnaire de nettoyage de disque pour Wi.) -- C:\Windows\system32\cleanmgr.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: Resource Monitor.lnk . (.Microsoft Corporation - Moniteur de ressources et de performances.) -- C:\Windows\system32\perfmon.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: System Information.lnk . (.Microsoft Corporation - Informations système.) -- C:\Windows\system32\msinfo32.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: System Restore.lnk . (.Microsoft Corporation - Restauration du système de Microsoft® Windo.) -- C:\Windows\system32\rstrui.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: Task Scheduler.lnk . (...) -- C:\Windows\system32\taskschd.msc O4 - GS\SystemTools [Public]: Windows Easy Transfer Reports.lnk . (.Microsoft Corporation - Application post-migration de transfert de.) -- C:\Windows\system32\migwiz\postmig.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: Windows Easy Transfer.lnk . (.Microsoft Corporation - Application Transfert de fichiers et paramè.) -- C:\Windows\system32\migwiz\migwiz.exe =>.Microsoft Corporation O4 - GS\QuickLaunch [Best Hotel Fixe]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe O4 - GS\QuickLaunch [Best Hotel Fixe]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe O4 - GS\QuickLaunch [Best Hotel Fixe]: Meteo.lnk - Clé orpheline O4 - GS\QuickLaunch [Best Hotel Fixe]: Microsoft Office Outlook.lnk . (.Microsoft Corporation - Microsoft Office Outlook.) -- C:\Program Files\Microsoft Office\Office12\OUTLOOK.exe =>.Microsoft Corporation O4 - GS\TaskBar [Best Hotel Fixe]: Adobe Illustrator CS.lnk . (.Adobe Systems, Inc. - Adobe Illustrator.) -- C:\Program Files\Adobe\Illustrator CS\Support Files\Contents\Windows\Illustrator.exe =>.Adobe Systems Incorporated O4 - GS\TaskBar [Best Hotel Fixe]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe O4 - GS\TaskBar [Best Hotel Fixe]: Microsoft Office Excel 2007.lnk . (...) -- C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\xlicons.exe O4 - GS\TaskBar [Best Hotel Fixe]: Microsoft Office Outlook 2007.lnk . (...) -- C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\outicon.exe =>.Microsoft Corporation O4 - GS\TaskBar [Best Hotel Fixe]: Microsoft Office PowerPoint 2007.lnk . (...) -- C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\pptico.exe =>.Microsoft Corporation O4 - GS\TaskBar [Best Hotel Fixe]: Microsoft Office Word 2007.lnk . (...) -- C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\wordicon.exe O4 - GS\TaskBar [Best Hotel Fixe]: Snipping Tool.lnk . (.Microsoft Corporation - Outil Capture.) -- C:\Windows\system32\SnippingTool.exe =>.Microsoft Corporation O4 - GS\TaskBar [Best Hotel Fixe]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe =>.Microsoft Corporation O4 - GS\Program [Best Hotel Fixe]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe O4 - GS\Accessories [Best Hotel Fixe]: Command Prompt.lnk . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\system32\cmd.exe =>.Microsoft Corporation O4 - GS\Accessories [Best Hotel Fixe]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) -- C:\Windows\system32\notepad.exe =>.Microsoft Corporation O4 - GS\Accessories [Best Hotel Fixe]: Run.lnk - Clé orpheline O4 - GS\Accessories [Best Hotel Fixe]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe =>.Microsoft Corporation O4 - GS\SystemTools [Best Hotel Fixe]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe O4 - GS\SystemTools [Best Hotel Fixe]: Private Character Editor.lnk . (.Microsoft Corporation - Éditeur de caractères privés.) -- C:\Windows\system32\eudcedit.exe =>.Microsoft Corporation O4 - GS\SendTo [Best Hotel Fixe]: Skype.lnk . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe =>.Skype Technologies S.A. O4 - GS\Desktop [Best Hotel Fixe]: La Solution Ciel.lnk . (...) -- C:\Program Files\Ciel\Starter.exe O4 - GS\Desktop [Best Hotel Fixe]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag Setup.) -- C:\Program Files\ZHPDiag\ZHPhep.exe =>.Nicolas Coolman O4 - GS\Desktop [Best Hotel Fixe]: ZHPFix.lnk . (.Nicolas Coolman - ZHPDiag Setup.) -- C:\Program Files\ZHPDiag\ZHPFix\ZHPhep.exe =>.Nicolas Coolman ~ Global Startup: 69 Scanned in 00mn 01s ---\\ Applications lancées au démarrage du sytème (O4) O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe =>.Realtek Semiconductor Corp O4 - HKLM\..\Run: [PDVDDXSrv] . (.CyberLink Corp. - CyberLink PowerDVD Resident Program.) -- C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe O4 - HKLM\..\Run: [GrooveMonitor] . (.Microsoft Corporation - GrooveMonitor Utility.) -- C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe O4 - HKLM\..\Run: [ToolboxFX] . (.Hewlett-Packard Company - HPTLBXFX.) -- C:\Program Files\HP\ToolboxFX\bin\HPTLBXFX.exe O4 - HKLM\..\Run: [QuickTime Task] C:\Program Files\QuickTime\QTTask.exe (.not file.) O4 - HKLM\..\Run: [HP Software Update] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe =>.Hewlett-Packard Co O4 - HKLM\..\Run: [APSDaemon] . (.Apple Inc. - Apple Push.) -- C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe O4 - HKLM\..\Run: [AppleSyncNotifier] . (.Apple Inc. - AppleSyncNotifier.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe =>.Adobe Systems Incorporated O4 - HKLM\..\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe O4 - HKLM\..\Run: [Bdagent] . (.Bitdefender - Bitdefender Agent.) -- C:\Program Files\Bitdefender\Bitdefender\bdagent.exe O4 - HKCU\..\Run: [Bitdefender Wallet Agent] . (.Bitdefender - Bitdefender Password Manager Agent.) -- C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe O4 - HKCU\..\Run: [Bitdefender Wallet] . (.Bitdefender - Bitdefender Password Manager.) -- C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe O4 - HKCU\..\Run: [Bitdefender Agent de l'application Wallet] . (.Bitdefender - Bitdefender Application Password Manager Ag.) -- C:\Program Files\Bitdefender\Bitdefender\bdapppassmgr.exe O4 - HKUS\.DEFAULT\..\Run: [Bitdefender Wallet Agent] . (.Bitdefender - Bitdefender Password Manager Agent.) -- C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe O4 - HKUS\.DEFAULT\..\Run: [Bitdefender Wallet] . (.Bitdefender - Bitdefender Password Manager.) -- C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe O4 - HKUS\.DEFAULT\..\Run: [Bitdefender Agent de l'application Wallet] . (.Bitdefender - Bitdefender Application Password Manager Ag.) -- C:\Program Files\Bitdefender\Bitdefender\bdapppassmgr.exe O4 - HKUS\S-1-5-18\..\Run: [Bitdefender Wallet Agent] . (.Bitdefender - Bitdefender Password Manager Agent.) -- C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe O4 - HKUS\S-1-5-18\..\Run: [Bitdefender Wallet] . (.Bitdefender - Bitdefender Password Manager.) -- C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe O4 - HKUS\S-1-5-18\..\Run: [Bitdefender Agent de l'application Wallet] . (.Bitdefender - Bitdefender Application Password Manager Ag.) -- C:\Program Files\Bitdefender\Bitdefender\bdapppassmgr.exe O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation O4 - HKUS\.DEFAULT\..\RunOnce: [{90120000-0030-0000-0000-0000000FF1CE}] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\system32\cmd.exe =>.Microsoft Corporation O4 - HKUS\S-1-5-18\..\RunOnce: [{90120000-0030-0000-0000-0000000FF1CE}] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\system32\cmd.exe =>.Microsoft Corporation O4 - HKUS\S-1-5-21-2671117400-3108136850-848238817-1000\..\Run: [Bitdefender Wallet Agent] . (.Bitdefender - Bitdefender Password Manager Agent.) -- C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe O4 - HKUS\S-1-5-21-2671117400-3108136850-848238817-1000\..\Run: [Bitdefender Wallet] . (.Bitdefender - Bitdefender Password Manager.) -- C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe O4 - HKUS\S-1-5-21-2671117400-3108136850-848238817-1000\..\Run: [Bitdefender Agent de l'application Wallet] . (.Bitdefender - Bitdefender Application Password Manager Ag.) -- C:\Program Files\Bitdefender\Bitdefender\bdapppassmgr.exe ~ Application: Scanned in 00mn 00s ---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5) O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no ~ IE Control Panel: 1 Scanned in 00mn 00s ---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9) O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} . (.Microsoft Corporation - Windows Live Writer Blog This Extension.) -- C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft Office OneNote Internet Explorer Add-in.) -- C:\Program Files\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} . (...) -- C:\Program Files\Skype\Toolbars\Internet Explorer\icon.ico O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (...) -- C:\Program Files\Microsoft Office\Office12\REFBARH.ICO ~ IE Extra Buttons: Scanned in 00mn 00s ---\\ Winsock hijacker (Layered Service Provider) (O10) O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll =>.Microsoft Corporation O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll =>.Microsoft Corporation O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll =>.Microsoft Corporation O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll O10 - WLSP:\000000000009\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files\Bonjour\mdnsNSP.dll ~ Winsock: 9 Scanned in 00mn 00s ---\\ Objets ActiveX (Downloaded Program Files)(O16) O16 - DPF: Microsoft XML Parser for Java - (Microsoft XML Parser for Java) - (.not file.) - C:\Windows\Java\classes\xmldso.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} ((no name)) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab ~ Objets ActiveX: Scanned in 00mn 00s ---\\ Modification Domaine/Adresses DNS (O17) O17 - HKLM\System\CCS\Services\Tcpip\..\{2087F7BF-8FB5-4D52-A236-BE7DA689B1E9}: DhcpNameServer = 192.168.1.1 192.168.0.1 O17 - HKLM\System\CS1\Services\Tcpip\..\{2087F7BF-8FB5-4D52-A236-BE7DA689B1E9}: DhcpNameServer = 192.168.1.1 192.168.0.1 O17 - HKLM\System\CS2\Services\Tcpip\..\{2087F7BF-8FB5-4D52-A236-BE7DA689B1E9}: DhcpNameServer = 192.168.1.1 192.168.0.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.0.1 ~ Domain: Scanned in 00mn 00s ---\\ Protocole additionnel (O18) O18 - Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (.Microsoft Corporation - Windows Live Album Download Protocol Handle.) -- C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O18 - Filter: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.dll =>.Microsoft Corporation ~ Protocole Additionnel: Scanned in 00mn 00s ---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20) O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll ~ Winlogon: Scanned in 00mn 00s ---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21) O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. ~ SSODL: 1 Scanned in 00mn 00s ---\\ Liste des services NT non Microsoft et non désactivés (O23) O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Andrea RT Filters Service (AERTFilters) . (.Andrea Electronics Corporation - Andrea filters APO access service (32-bit).) - C:\Program Files\Realtek\Audio\HDA\AERTSrv.exe O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Broadcom Power monitoring service (BPowMon) . (.Broadcom Corp. - Broadcom Power Source Monitoring Service.) - C:\Program Files\Broadcom\BPowMon\BPowMon.exe O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe =>.Google Inc O23 - Service: HP LaserJet Service (HP LaserJet Service) . (.HP - HP LaserJet Service.) - C:\Program Files\HP\HPLaserJetService\HPLaserJetService.exe O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files\Skype\Updater\Updater.exe O23 - Service: Bitdefender Desktop Update Service (UPDATESRV) . (.Bitdefender - Bitdefender Update Service.) - C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe O23 - Service: Bitdefender Virus Shield (VSSERV) . (.Bitdefender - Bitdefender Security Service.) - C:\Program Files\Bitdefender\Bitdefender\vsserv.exe ~ Services: 10 Scanned in 00mn 05s ---\\ Enumération Active Desktop & MHTML Editor (O24) O24 - Default MHTML Editor: Last - .(...) - (.not file.) ~ Desktop Component: 4 Scanned in 00mn 00s ---\\ Enumère les données de BootExecute (BEX) (O34) O34 - HKLM BootExecute: (autocheck autochk *) - File not found ~ BEX: 1 Scanned in 00mn 00s ---\\ Tâches planifiées en automatique (O39) O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Adobe Flash Player Updater.job [1002] O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1070] O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1074] [MD5.1BA1AB4141A92EB34DA99F1249CA2D4D] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [257416] [MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe [136176] [MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe [136176] [MD5.6E17843E1E65F8DE34861692667CD3FC] [APT] [HPLJCustParticipation] (.Hewlett Packard.) -- C:\Program Files\HP\HPLJUT\HPLJUTSCH.exe [42808] [MD5.00000000000000000000000000000000] [APT] [{8301D41D-7F61-4587-9A0E-1EDD3B1446A1}] (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Temp\calsync-0.9.4.1\GoogleCalendarSync_Installer.exe (.not file.) [0] [MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files\Apple Software Update\SoftwareUpdate.exe [561984] ~ Scheduled Task: 10 Scanned in 00mn 02s ---\\ Composants installés (ActiveSetup Installed Components) (O40) O40 - ASIC: Microsoft Windows Media Player - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation O40 - ASIC: Microsoft VM - {08B0E5C0-4FCB-11CF-AAA5-00401C608500} . (.Microsoft Corporation - Microsoft® VM.) -- C:\Windows\system32\msjava.dll O40 - ASIC: Microsoft Windows Media Player 12.0 - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\System32\wmpdxm.dll =>.Microsoft Corporation O40 - ASIC: Themes Setup - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll O40 - ASIC: Internet Explorer - {2D46B6DC-2207-486B-B523-A557E6D54B47} . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\system32\cmd.exe =>.Microsoft Corporation O40 - ASIC: Microsoft Windows - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files\Windows Mail\WinMail.exe =>.Microsoft Corporation O40 - ASIC: Browsing Enhancements - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll O40 - ASIC: Microsoft Windows Media Player - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation O40 - ASIC: Windows Desktop Update - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll O40 - ASIC: Web Platform Customizations - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe O40 - ASIC: (no name) - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll O40 - ASIC: Google Chrome - {8A69D345-D564-463c-AFF1-A69D9E530F96} . (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\32.0.1700.76\Installer\chrmstp.exe ~ Active Setup: 12 Scanned in 00mn 00s ---\\ Pilotes lancés au démarrage du système (O41) O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys O41 - Driver: (BdfNdisf) . (.BitDefender LLC - BitDefender Firewall NDIS6 Filter Driver.) - c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys O41 - Driver: (bdfwfpf) . (.BitDefender LLC - BitDefender Firewall WFP Filter Driver.) - C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys O41 - Driver: (bdselfpr) . (.BitDefender LLC - BitDefender Self Protection Driver.) - C:\Program Files\Bitdefender\Bitdefender\bdselfpr.sys O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\System32\DRIVERS\blbdrive.sys O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys O41 - Driver: C:\Windows\System32\cscsvc.dll (CSC) . (.Microsoft Corporation - Windows Client Side Caching Driver.) - C:\Windows\System32\drivers\csc.sys O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys O41 - Driver: C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys O41 - Driver: C:\Windows\System32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys O41 - Driver: C:\Windows\System32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys O41 - Driver: (Serial) . (.Microsoft Corporation - Pilote de périphérique série.) - C:\Windows\System32\DRIVERS\serial.sys O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers\termdd.sys O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys ~ Drivers: 72 Scanned in 00mn 00s ---\\ Logiciels installés (O42) O42 - Logiciel: 32 Bit HP CIO Components Installer - (.Hewlett-Packard.) [HKLM] -- {0360D8F0-626A-4E87-8A16-938BD0BEBCC5} O42 - Logiciel: 32 Bit HP CIO Components Installer - (.Hewlett-Packard.) [HKLM] -- {A80FA752-C491-4ED9-ABF0-4278563160B2} O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM] -- Adobe AIR O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM] -- {AFF7E080-1974-45BF-9310-10DE1A1F5ED0} O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin O42 - Logiciel: Adobe Flash Player 11 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX O42 - Logiciel: Adobe Illustrator CS - (.Adobe Systems, Inc..) [HKLM] -- {91A4AD99-69CE-4745-97B7-0E0DFBECFDE5} =>.Adobe Systems Incorporated O42 - Logiciel: Adobe Reader XI (11.0.06) - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-AB0000000001} O42 - Logiciel: Adobe SVG Viewer 3.0 - (.Adobe Systems, Inc..) [HKLM] -- Adobe SVG Viewer O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM] -- {46F044A5-CE8B-4196-984E-5BD6525E361D} O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM] -- {0592EF96-69D8-4E4B-9CC9-88F58EA86F01} O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {C6579A65-9CAE-4B31-8B6B-3306E0630A66} =>.Apple Inc O42 - Logiciel: Bayam 3-7 - (.Bayard Presse S.A.) [HKLM] -- bayardKids.08AE7BFC096D057FBA48C7E4F898C35F7FA11BBA.1 O42 - Logiciel: Bayam 3-7 - (.Bayard Presse S.A.) [HKLM] -- {33487F5F-4ECF-28DE-81D4-51E3E288D52C} O42 - Logiciel: Bing Bar - (.Microsoft Corporation.) [HKLM] -- {77F8A71E-3515-4832-B8B2-2F1EDBD2E0F1} =>Toolbar.Bing O42 - Logiciel: Bitdefender Internet Security - (.Bitdefender.) [HKLM] -- Bitdefender O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM] -- {79155F2B-9895-49D7-8612-D92580E0DE5B} O42 - Logiciel: Broadcom Gigabit NetLink Controller - (.Broadcom Corporation.) [HKLM] -- {A325B368-A9EC-40EF-A95C-9DEAD3683AE3} O42 - Logiciel: Broadcom Management Programs - (.Broadcom Corporation.) [HKLM] -- {5DB87A63-9420-48CC-9F9A-B8801D38D6B5} O42 - Logiciel: Ciel Compta 17.0 - (.Ciel.) [HKLM] -- {69A936A4-726B-4FB6-89E8-8A0763447E6D} O42 - Logiciel: Ciel Gestion Commerciale 17.0 - (.Ciel.) [HKLM] -- {F3EBBC50-C205-4314-9F6E-1495E7B433B6} O42 - Logiciel: Ciel Immobilisations 17.0 - (.Ciel.) [HKLM] -- {A0AD5B20-5389-4FFF-B2BB-D391BB2A039A} O42 - Logiciel: Ciel Paye 17.00 - (.CIEL.) [HKLM] -- {DF3C3472-7A31-4F36-87A1-2819290A540A} O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF} O42 - Logiciel: Dell Backup and Recovery Manager - (.Dell Inc..) [HKLM] -- {AC474F86-9A17-4BCB-8B15-11ABFD5B7F95} O42 - Logiciel: Dell Edoc Viewer - (.Dell Inc.) [HKLM] -- {3138EAD3-700B-4A10-B617-B3F8096EE30D} O42 - Logiciel: Google Calendar Sync - (...) [HKLM] -- Google Calendar Sync O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM] -- Google Chrome O42 - Logiciel: Google Drive - (.Google, Inc..) [HKLM] -- {56D4499E-AC3E-4B8D-91C9-C700C148C44B} O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM] -- {18455581-E099-4BA8-BC6B-F34B2F06600C} =>Toolbar.Google O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F} =>Toolbar.Google O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} O42 - Logiciel: Google+ Auto Backup - (.Google.) [HKLM] -- {A50DE037-B5C0-4C8A-8049-B0C576B313D1} O42 - Logiciel: HP FWUpdateEDO3 - (.Hewlett-Packard Company.) [HKLM] -- {A82D0C46-EBDF-4B27-A731-D06EF2056E81} O42 - Logiciel: HP LaserJet Professional CP1520 Series - (.Hewlett-Packard.) [HKLM] -- {5C069542-CA13-4f1b-B90C-28C6430F4992} O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM] -- {2EFA4E4C-7B5F-48F7-A1C0-1AA882B7A9C3} O42 - Logiciel: HPLaserJetHelp_LearnCenter - (.Hewlett-Packard.) [HKLM] -- {E15C68A1-9CA5-44AC-A7F7-6C0673F196A8} O42 - Logiciel: Intel(R) Graphics Media Accelerator Driver - (.Intel Corporation.) [HKLM] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA} O42 - Logiciel: Java(TM) 6 Update 24 - (.Sun Microsystems, Inc..) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216017FF} O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4} O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F} O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71} O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC} O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.) [HKLM] -- {3B160861-7250-451E-B5EE-8B92BF30A710} O42 - Logiciel: PDFCreator - (.Frank Heindörfer, Philip Chinery.) [HKLM] -- {0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D} O42 - Logiciel: Picasa 3 - (.Google, Inc..) [HKLM] -- Picasa 3 O42 - Logiciel: Pilotes et outils HP Scanjet N6010 - (.HP.) [HKLM] -- {2BFED3CD-88DD-425C-A672-E1151F0C0A5D} O42 - Logiciel: PowerDVD DX - (.CyberLink Corp..) [HKLM] -- {6811CAA0-BF12-11D4-9EA1-0050BAE317E1} O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM] -- {B67BAFBA-4C9F-48FA-9496-933E3B255044} O42 - Logiciel: Realtek High Definition Audio Driver - (...) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} O42 - Logiciel: Roxio Creator Audio - (.Roxio.) [HKLM] -- {73A4F29F-31AC-4EBD-AA1B-0CC5F18C8F83} O42 - Logiciel: Roxio Creator Copy - (.Roxio.) [HKLM] -- {B6A26DE5-F2B5-4D58-9570-4FC760E00FCD} O42 - Logiciel: Roxio Creator DE 10.3 - (.Roxio.) [HKLM] -- {09760D42-E223-42AD-8C3E-55B47D0DDAC3} O42 - Logiciel: Roxio Creator DE 10.3 - (.Roxio.) [HKLM] -- {ED439A64-F018-4DD4-8BA5-328D85AB09AB} O42 - Logiciel: Roxio Creator Data - (.Roxio.) [HKLM] -- {08E81ABD-79F7-49C2-881F-FD6CB0975693} O42 - Logiciel: Roxio Creator Tools - (.Roxio.) [HKLM] -- {1F54DAFA-9261-4A62-B59D-6C9F26B48FE4} O42 - Logiciel: Roxio Express Labeler 3 - (.Roxio.) [HKLM] -- {6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA} O42 - Logiciel: Roxio Update Manager - (.Roxio.) [HKLM] -- {30465B6C-B53F-49A1-9EBA-A3F187AD502E} O42 - Logiciel: Safari - (.Apple Inc..) [HKLM] -- {C779648B-410E-4BBA-B75B-5815BCEFE71D} O42 - Logiciel: Skype Click to Call - (.Skype Technologies S.A..) [HKLM] -- {B6CF2967-C81E-40C0-9815-C05774FEF120} O42 - Logiciel: Skype™ 6.3 - (.Skype Technologies S.A..) [HKLM] -- {4E76FF7E-AEBA-4C87-B788-CD47E5425B9D} O42 - Logiciel: Spelling Dictionaries Support For Adobe Reader 9 - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-5464-3428-900000000004} O42 - Logiciel: UFS Explorer version 3.19.1, Professional Recovery Edition - (.LLC "SysDev Laboratories".) [HKLM] -- UFS Explorer Professional Recovery_is1 O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM] -- {C197BC08-3D82-4651-8886-E68C21578A38} ~ Logic: 27 Scanned in 00mn 00s ---\\ HKCU & HKLM Software Keys [HKCU\Software\Adobe] [HKCU\Software\AppDataLow] [HKCU\Software\Apple Computer, Inc.] [HKCU\Software\Apple Inc.] [HKCU\Software\Bitdefender] [HKCU\Software\Classes] [HKCU\Software\Clients] [HKCU\Software\Cyberlink] [HKCU\Software\Google] [HKCU\Software\Hewlett-Packard] [HKCU\Software\IM Providers] [HKCU\Software\Intel] [HKCU\Software\Iris] [HKCU\Software\JavaSoft] [HKCU\Software\Licenses] [HKCU\Software\Local AppWizard-Generated Applications] [HKCU\Software\LowRegistry] [HKCU\Software\Macromedia] [HKCU\Software\Malwarebytes Anti-Rootkit] [HKCU\Software\Malwarebytes' Anti-Malware] [HKCU\Software\MozillaPlugins] [HKCU\Software\Netscape] [HKCU\Software\Northcode Inc] [HKCU\Software\ODBC] [HKCU\Software\PDFCreator] [HKCU\Software\Piriform] [HKCU\Software\Policies] [HKCU\Software\Realtek] [HKCU\Software\Sage] [HKCU\Software\Skype] [HKCU\Software\SysDevSoftware] [HKCU\Software\TeamViewer] [HKCU\Software\Trolltech] [HKCU\Software\WinRAR SFX] [HKCU\Software\ZebHelpProcess Helper] [HKCU\Software\kde.org] [HKLM\Software\ATI Technologies] [HKLM\Software\AVC3] [HKLM\Software\Adobe] [HKLM\Software\Adobee] [HKLM\Software\AdwCleaner] [HKLM\Software\Apple Computer, Inc.] [HKLM\Software\Apple Inc.] [HKLM\Software\BitDefender] [HKLM\Software\BitdefenderSavedSettings] [HKLM\Software\Broadcom] [HKLM\Software\CDDB] [HKLM\Software\Canon] [HKLM\Software\Classes] [HKLM\Software\Clients] [HKLM\Software\Creative Tech] [HKLM\Software\CyberLink] [HKLM\Software\Dell] [HKLM\Software\DivXNetworks] [HKLM\Software\GEAR Software] [HKLM\Software\Google] [HKLM\Software\Hewlett-Packard] [HKLM\Software\IM Providers] [HKLM\Software\InstallShield] [HKLM\Software\Intel] [HKLM\Software\JavaSoft] [HKLM\Software\JreMetrics] [HKLM\Software\Kodak] [HKLM\Software\Macromedia] [HKLM\Software\Malwarebytes Anti-Rootkit] [HKLM\Software\Malwarebytes' Anti-Malware (Trial)] [HKLM\Software\Malwarebytes' Anti-Malware] [HKLM\Software\MicroVision] [HKLM\Software\MidasHeurScanner] [HKLM\Software\MozillaPlugins] [HKLM\Software\Mozilla] [HKLM\Software\ODBC] [HKLM\Software\PDFCreator] [HKLM\Software\Policies] [HKLM\Software\Realtek] [HKLM\Software\RegisteredApplications] [HKLM\Software\Roxio] [HKLM\Software\SRS Labs] [HKLM\Software\Sage] [HKLM\Software\Skype] [HKLM\Software\Sonic] [HKLM\Software\SysDevSoftware] [HKLM\Software\TeamViewer] [HKLM\Software\Windows] ~ Key Software: 178 Scanned in 00mn 00s ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) O43 - CFD: 18/10/2013 - 11:37:18 - [500,994] ----D C:\Program Files\Adobe O43 - CFD: 28/06/2011 - 08:02:24 - [2,201] ----D C:\Program Files\Apple Software Update =>.Apple Inc O43 - CFD: 08/01/2014 - 18:05:18 - [487,757] ----D C:\Program Files\BitDefender O43 - CFD: 17/04/2012 - 08:00:52 - [0,602] ----D C:\Program Files\Bonjour O43 - CFD: 13/05/2010 - 12:10:58 - [8,084] ----D C:\Program Files\Broadcom O43 - CFD: 08/01/2014 - 08:38:32 - [6,377] ----D C:\Program Files\CCleaner =>Piriform Ltd O43 - CFD: 26/11/2010 - 10:41:27 - [355,611] ----D C:\Program Files\Ciel O43 - CFD: 27/03/2013 - 15:43:39 - [-1920,514] ----D C:\Program Files\Common Files O43 - CFD: 09/01/2014 - 18:10:26 - [5,555] ----D C:\Program Files\CrystalDiskInfo O43 - CFD: 13/05/2010 - 12:20:02 - [46,913] ----D C:\Program Files\CyberLink O43 - CFD: 13/05/2010 - 12:10:29 - [99,834] ----D C:\Program Files\Dell O43 - CFD: 13/05/2010 - 12:09:20 - [1,477] ----D C:\Program Files\Dell Inc O43 - CFD: 28/06/2011 - 08:06:48 - [79,371] ----D C:\Program Files\DVD Maker O43 - CFD: 19/11/2010 - 14:05:08 - [0] -SH-D C:\Program Files\Fichiers communs O43 - CFD: 13/01/2014 - 16:39:46 - [606,833] ----D C:\Program Files\Google O43 - CFD: 05/12/2013 - 17:18:00 - [0] ----D C:\Program Files\GUM7DA3.tmp O43 - CFD: 26/04/2012 - 11:16:16 - [87,950] ----D C:\Program Files\HP O43 - CFD: 18/10/2013 - 11:37:18 - [13,701] --H-D C:\Program Files\InstallShield Installation Information O43 - CFD: 13/05/2010 - 12:05:18 - [3,548] ----D C:\Program Files\Intel O43 - CFD: 12/12/2013 - 10:31:18 - [22,622] ----D C:\Program Files\Internet Explorer O43 - CFD: 21/11/2013 - 12:58:55 - [1,962] ----D C:\Program Files\iPod O43 - CFD: 21/11/2013 - 12:59:08 - [186,952] ----D C:\Program Files\iTunes O43 - CFD: 30/03/2011 - 09:25:50 - [86,415] ----D C:\Program Files\Java O43 - CFD: 08/01/2014 - 14:49:41 - [13,251] ----D C:\Program Files\Malwarebytes' Anti-Malware O43 - CFD: 10/01/2014 - 08:35:48 - [0] ----D C:\Program Files\Microsoft O43 - CFD: 18/07/2011 - 11:02:00 - [678,443] ----D C:\Program Files\Microsoft Office O43 - CFD: 10/10/2013 - 11:27:37 - [40,851] ----D C:\Program Files\Microsoft Silverlight O43 - CFD: 13/05/2010 - 12:18:18 - [1,745] ----D C:\Program Files\Microsoft SQL Server Compact Edition O43 - CFD: 19/11/2010 - 14:19:32 - [0,014] ----D C:\Program Files\Microsoft Visual Studio O43 - CFD: 19/11/2010 - 14:17:59 - [1,323] ----D C:\Program Files\Microsoft Visual Studio 8 O43 - CFD: 11/10/2012 - 11:02:14 - [138,685] ----D C:\Program Files\Microsoft Works O43 - CFD: 24/11/2010 - 11:33:40 - [7,797] ----D C:\Program Files\Microsoft.NET O43 - CFD: 19/11/2010 - 14:19:38 - [0,025] ----D C:\Program Files\MSBuild O43 - CFD: 26/11/2010 - 17:48:20 - [0] ----D C:\Program Files\MSXML 4.0 O43 - CFD: 08/01/2014 - 10:20:32 - [25,675] ----D C:\Program Files\PDFCreator O43 - CFD: 08/01/2014 - 15:33:35 - [0] ----D C:\Program Files\predm O43 - CFD: 13/05/2010 - 12:05:28 - [11,355] ----D C:\Program Files\Realtek O43 - CFD: 14/07/2009 - 05:52:30 - [37,357] ----D C:\Program Files\Reference Assemblies O43 - CFD: 13/05/2010 - 12:13:53 - [17,807] ----D C:\Program Files\Roxio O43 - CFD: 27/03/2013 - 15:43:39 - [34,324] R---D C:\Program Files\Skype O43 - CFD: 21/07/2011 - 08:08:35 - [3,300] ----D C:\Program Files\UFS Explorer O43 - CFD: 14/07/2009 - 05:53:23 - [0] --H-D C:\Program Files\Uninstall Information O43 - CFD: 08/01/2014 - 15:31:28 - [0] ----D C:\Program Files\VLC Player GPU+ O43 - CFD: 16/07/2013 - 11:09:10 - [2,909] ----D C:\Program Files\Windows Defender O43 - CFD: 16/07/2013 - 11:09:11 - [6,688] ----D C:\Program Files\Windows Journal O43 - CFD: 05/04/2011 - 09:53:04 - [139,416] ----D C:\Program Files\Windows Live O43 - CFD: 28/06/2011 - 08:06:48 - [5,895] ----D C:\Program Files\Windows Mail =>.Microsoft Corporation O43 - CFD: 11/12/2013 - 12:01:00 - [6,298] ----D C:\Program Files\Windows Media Player =>.Microsoft Corporation O43 - CFD: 19/11/2010 - 14:05:08 - [11,632] ----D C:\Program Files\Windows NT O43 - CFD: 28/06/2011 - 08:06:47 - [4,213] ----D C:\Program Files\Windows Photo Viewer O43 - CFD: 28/06/2011 - 08:06:47 - [0,181] ----D C:\Program Files\Windows Portable Devices O43 - CFD: 28/06/2011 - 08:06:48 - [6,374] ----D C:\Program Files\Windows Sidebar O43 - CFD: 17/01/2014 - 09:05:12 - [23,812] ----D C:\Program Files\ZHPDiag =>.Nicolas Coolman O43 - CFD: 18/10/2013 - 11:38:46 - [122,824] ----D C:\Program Files\Common Files\Adobe O43 - CFD: 05/05/2011 - 13:21:29 - [29,675] ----D C:\Program Files\Common Files\Adobe AIR O43 - CFD: 21/11/2013 - 12:58:55 - [245,630] ----D C:\Program Files\Common Files\Apple O43 - CFD: 14/01/2014 - 11:42:22 - [1228,569] ----D C:\Program Files\Common Files\BitDefender O43 - CFD: 26/11/2010 - 10:35:47 - [27,014] ----D C:\Program Files\Common Files\Ciel O43 - CFD: 19/11/2010 - 14:19:32 - [0,089] ----D C:\Program Files\Common Files\DESIGNER O43 - CFD: 20/11/2010 - 06:30:10 - [86,566] ----D C:\Program Files\Common Files\Hewlett-Packard O43 - CFD: 26/11/2010 - 09:49:45 - [10,067] ----D C:\Program Files\Common Files\InstallShield O43 - CFD: 30/03/2011 - 17:56:21 - [1,189] ----D C:\Program Files\Common Files\Java O43 - CFD: 12/01/2012 - 09:40:32 - [300,678] ----D C:\Program Files\Common Files\microsoft shared O43 - CFD: 26/11/2010 - 09:50:45 - [0,622] ----D C:\Program Files\Common Files\MSSoap O43 - CFD: 13/05/2010 - 12:13:55 - [4,558] ----D C:\Program Files\Common Files\PX Storage Engine O43 - CFD: 13/05/2010 - 12:13:39 - [32,810] ----D C:\Program Files\Common Files\Roxio Shared O43 - CFD: 14/07/2009 - 03:37:05 - [0,003] ----D C:\Program Files\Common Files\Services O43 - CFD: 27/03/2013 - 15:43:39 - [1,904] ----D C:\Program Files\Common Files\Skype O43 - CFD: 13/05/2010 - 12:13:39 - [1,038] ----D C:\Program Files\Common Files\Sonic Shared O43 - CFD: 14/07/2009 - 03:37:05 - [39,200] ----D C:\Program Files\Common Files\SpeechEngines O43 - CFD: 13/05/2010 - 12:13:53 - [0,700] ----D C:\Program Files\Common Files\SureThing Shared O43 - CFD: 09/11/2011 - 12:25:10 - [42,255] ----D C:\Program Files\Common Files\System O43 - CFD: 13/05/2010 - 12:14:11 - [0] ----D C:\Program Files\Common Files\Windows Live O43 - CFD: 21/11/2013 - 12:59:08 - [2,446] ----D C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1 O43 - CFD: 16/01/2014 - 12:25:32 - [253,979] ----D C:\ProgramData\Adobe O43 - CFD: 14/01/2011 - 14:43:15 - [326,732] ----D C:\ProgramData\Apple O43 - CFD: 14/01/2011 - 14:40:58 - [156,416] ----D C:\ProgramData\Apple Computer O43 - CFD: 14/07/2009 - 05:53:55 - [0] -SH-D C:\ProgramData\Application Data O43 - CFD: 19/11/2010 - 16:54:23 - [0] ----D C:\ProgramData\bdch O43 - CFD: 12/09/2013 - 08:04:34 - [0] ----D C:\ProgramData\BDLogging O43 - CFD: 14/01/2014 - 11:45:30 - [0,341] ----D C:\ProgramData\BitDefender O43 - CFD: 19/11/2010 - 14:05:08 - [0] -SH-D C:\ProgramData\Bureau O43 - CFD: 23/05/2011 - 13:32:14 - [19,793] --H-D C:\ProgramData\CanonBJ O43 - CFD: 26/11/2010 - 09:50:47 - [373,192] ----D C:\ProgramData\Ciel O43 - CFD: 13/05/2010 - 12:20:09 - [0] ----D C:\ProgramData\Dell O43 - CFD: 14/07/2009 - 05:53:55 - [0] -SH-D C:\ProgramData\Desktop O43 - CFD: 14/07/2009 - 05:53:55 - [0] -SH-D C:\ProgramData\Documents O43 - CFD: 19/11/2010 - 14:05:08 - [0] -SH-D C:\ProgramData\Favoris O43 - CFD: 14/07/2009 - 05:53:55 - [0] -SH-D C:\ProgramData\Favorites O43 - CFD: 03/01/2012 - 16:13:25 - [0,012] ----D C:\ProgramData\Google O43 - CFD: 17/04/2012 - 07:56:13 - [0,720] ----D C:\ProgramData\Hewlett-Packard O43 - CFD: 17/04/2012 - 07:56:29 - [0,013] ----D C:\ProgramData\HP O43 - CFD: 13/05/2010 - 12:13:29 - [0] ----D C:\ProgramData\InstallShield O43 - CFD: 08/01/2014 - 14:49:41 - [8,708] ----D C:\ProgramData\Malwarebytes O43 - CFD: 12/01/2014 - 17:59:35 - [0] ----D C:\ProgramData\Malwarebytes' Anti-Malware (portable) O43 - CFD: 19/11/2010 - 14:05:08 - [0] -SH-D C:\ProgramData\Menu Démarrer O43 - CFD: 13/01/2014 - 11:15:28 - [339,375] -S--D C:\ProgramData\Microsoft O43 - CFD: 15/01/2014 - 12:01:17 - [0,062] ----D C:\ProgramData\Microsoft Help O43 - CFD: 19/11/2010 - 14:05:08 - [0] -SH-D C:\ProgramData\Modèles O43 - CFD: 27/03/2013 - 15:43:44 - [72,868] ----D C:\ProgramData\Skype O43 - CFD: 13/05/2010 - 12:13:41 - [0,001] ----D C:\ProgramData\Sonic O43 - CFD: 14/07/2009 - 05:53:55 - [0] -SH-D C:\ProgramData\Start Menu O43 - CFD: 19/11/2010 - 17:12:14 - [0] ----D C:\ProgramData\Sun O43 - CFD: 14/07/2009 - 05:53:55 - [0] -SH-D C:\ProgramData\Templates O43 - CFD: 19/11/2010 - 16:28:57 - [0,006] ----D C:\ProgramData\Trend Micro O43 - CFD: 13/05/2010 - 12:13:53 - [13,120] ----D C:\ProgramData\Uninstall O43 - CFD: 14/01/2011 - 14:41:20 - [0,002] ----D C:\ProgramData\{429CAD59-35B1-4DBC-BB6D-1DB246563521} O43 - CFD: 17/10/2012 - 13:32:23 - [0] -SH-D C:\Users\Best Hotel Fixe\AppData\Roaming\.# O43 - CFD: 08/01/2014 - 17:34:21 - [1,063] ----D C:\Users\Best Hotel Fixe\AppData\Roaming\0D0S1L2Z1P1B O43 - CFD: 16/01/2014 - 12:25:32 - [22,594] ----D C:\Users\Best Hotel Fixe\AppData\Roaming\Adobe O43 - CFD: 21/11/2013 - 13:06:21 - [10,343] ----D C:\Users\Best Hotel Fixe\AppData\Roaming\Apple Computer O43 - CFD: 04/01/2011 - 15:17:42 - [31,091] ----D C:\Users\Best Hotel Fixe\AppData\Roaming\bayardKids.08AE7BFC096D057FBA48C7E4F898C35F7FA11BBA.1 O43 - CFD: 14/01/2014 - 11:45:12 - [0,051] ----D C:\Users\Best Hotel Fixe\AppData\Roaming\Bitdefender O43 - CFD: 19/11/2010 - 14:13:33 - [0] ----D C:\Users\Best Hotel Fixe\AppData\Roaming\CyberLink O43 - CFD: 17/04/2012 - 07:56:14 - [0] ----D C:\Users\Best Hotel Fixe\AppData\Roaming\Hewlett-Packard Company O43 - CFD: 03/05/2012 - 08:43:36 - [0,035] ----D C:\Users\Best Hotel Fixe\AppData\Roaming\HpUpdate O43 - CFD: 02/12/2010 - 15:45:57 - [0,003] ----D C:\Users\Best Hotel Fixe\AppData\Roaming\Icones O43 - CFD: 19/11/2010 - 14:05:36 - [0] ----D C:\Users\Best Hotel Fixe\AppData\Roaming\Identities O43 - CFD: 19/11/2010 - 15:08:42 - [0,057] ----D C:\Users\Best Hotel Fixe\AppData\Roaming\Macromedia O43 - CFD: 08/01/2014 - 14:49:43 - [36,296] ----D C:\Users\Best Hotel Fixe\AppData\Roaming\Malwarebytes O43 - CFD: 14/07/2009 - 10:00:41 - [0] ----D C:\Users\Best Hotel Fixe\AppData\Roaming\Media Center Programs O43 - CFD: 16/01/2014 - 15:26:20 - [7,709] -S--D C:\Users\Best Hotel Fixe\AppData\Roaming\Microsoft O43 - CFD: 08/01/2014 - 15:33:15 - [0,010] ----D C:\Users\Best Hotel Fixe\AppData\Roaming\Mozilla O43 - CFD: 19/11/2010 - 16:33:27 - [0] ----D C:\Users\Best Hotel Fixe\AppData\Roaming\QuickScan O43 - CFD: 08/01/2014 - 09:19:03 - [5,137] ----D C:\Users\Best Hotel Fixe\AppData\Roaming\Skype O43 - CFD: 15/10/2013 - 12:20:11 - [0,109] ----D C:\Users\Best Hotel Fixe\AppData\Roaming\TeamViewer O43 - CFD: 17/01/2014 - 09:06:39 - [5,088] ----D C:\Users\Best Hotel Fixe\AppData\Roaming\ZHP =>.Nicolas Coolman O43 - CFD: 16/01/2014 - 16:03:53 - [2,598] ----D C:\Users\Best Hotel Fixe\AppData\Local\72AD6604-E8DD-454F-B41B-00A12350385C.aplzod O43 - CFD: 04/12/2012 - 11:07:51 - [17,969] ----D C:\Users\Best Hotel Fixe\AppData\Local\Adobe O43 - CFD: 21/11/2013 - 13:04:15 - [0,006] ----D C:\Users\Best Hotel Fixe\AppData\Local\Apple O43 - CFD: 21/11/2013 - 13:03:33 - [60,463] ----D C:\Users\Best Hotel Fixe\AppData\Local\Apple Computer O43 - CFD: 19/11/2010 - 14:05:18 - [0] -SH-D C:\Users\Best Hotel Fixe\AppData\Local\Application Data O43 - CFD: 19/11/2010 - 15:05:54 - [1,173] ----D C:\Users\Best Hotel Fixe\AppData\Local\Apps O43 - CFD: 08/01/2014 - 15:20:29 - [2,259] ----D C:\Users\Best Hotel Fixe\AppData\Local\cache O43 - CFD: 19/11/2010 - 15:06:00 - [0] ----D C:\Users\Best Hotel Fixe\AppData\Local\Deployment O43 - CFD: 12/12/2013 - 10:40:34 - [0,536] ----D C:\Users\Best Hotel Fixe\AppData\Local\Diagnostics O43 - CFD: 16/01/2014 - 13:51:48 - [0,884] ----D C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics O43 - CFD: 13/01/2014 - 16:39:54 - [175,298] ----D C:\Users\Best Hotel Fixe\AppData\Local\Google O43 - CFD: 19/11/2010 - 14:05:18 - [0] -SH-D C:\Users\Best Hotel Fixe\AppData\Local\Historique O43 - CFD: 13/01/2014 - 11:15:28 - [-1383,783] ----D C:\Users\Best Hotel Fixe\AppData\Local\Microsoft O43 - CFD: 17/10/2013 - 15:54:40 - [0,426] ----D C:\Users\Best Hotel Fixe\AppData\Local\Microsoft Help O43 - CFD: 16/01/2014 - 15:26:19 - [6,729] ----D C:\Users\Best Hotel Fixe\AppData\Local\Programs O43 - CFD: 17/01/2014 - 09:05:21 - [7,365] ----D C:\Users\Best Hotel Fixe\AppData\Local\Temp O43 - CFD: 19/11/2010 - 14:05:18 - [0] -SH-D C:\Users\Best Hotel Fixe\AppData\Local\Temporary Internet Files O43 - CFD: 18/10/2013 - 11:39:38 - [0,412] ----D C:\Users\Best Hotel Fixe\AppData\Local\VirtualStore O43 - CFD: 21/11/2012 - 14:41:16 - [0,035] ----D C:\Users\Best Hotel Fixe\AppData\Local\Windows Live O43 - CFD: 14/07/2009 - 05:42:04 - [0,014] R---D C:\Users\Best Hotel Fixe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories O43 - CFD: 11/09/2013 - 12:35:51 - [0] R---D C:\Users\Best Hotel Fixe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools O43 - CFD: 16/01/2014 - 15:26:20 - [0,003] ----D C:\Users\Best Hotel Fixe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google+ Auto Backup O43 - CFD: 17/04/2012 - 07:54:29 - [0,003] ----D C:\Users\Best Hotel Fixe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HP O43 - CFD: 14/07/2009 - 05:37:42 - [0,001] R---D C:\Users\Best Hotel Fixe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance O43 - CFD: 08/01/2014 - 15:34:18 - [0] R---D C:\Users\Best Hotel Fixe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup ~ Program Folder: 152 Scanned in 00mn 14s ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44) O44 - LFC:[MD5.1A5F9109705CF798D2ED9B5D7D596A72] - 06/01/2014 - 20:23:36 ---A- . (.Google Inc. - Google Photos Screensaver.) -- C:\Windows\System32\GPhotos.scr [4558848] O44 - LFC:[MD5.4470E3C1E0C3378E4CAB137893C12C3A] - 08/01/2014 - 14:49:40 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\mbam.sys [22856] O44 - LFC:[MD5.33B26FA5DBEB69FFAB703EDCB4E6DE4A] - 09/01/2014 - 09:57:59 ---A- . (.Microsoft Corporation - DirectShow DVD PlayBack Runtime..) -- C:\Windows\System32\qdvd.dll [514560] O44 - LFC:[MD5.0DB7527DB188C7D967A37BB51BBF3963] - 09/01/2014 - 15:46:53 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\System32\Drivers\mbamswissarmy.sys.bak [40776] O44 - LFC:[MD5.6743A3C33E8B3BFC2D9B55E15500BB13] - 09/01/2014 - 19:47:03 ---A- . (.BitDefender LLC - BitDefender Firewall NDIS6 Filter Driver.) -- C:\Windows\System32\Drivers\BdfNdisf6.sys.bak [78144] O44 - LFC:[MD5.5C83DF7DB66EEFCD82152E85EC9E9F06] - 10/01/2014 - 08:56:08 ---A- . (.BitDefender - Active Virus Control Kernel Filtering drive.) -- C:\Windows\System32\Drivers\avckf.sys [490144] O44 - LFC:[MD5.DBCB72388C719C9EAFCE91AB40EAA05E] - 10/01/2014 - 08:56:08 ---A- . (.BitDefender - Active Virus Control filter driver.) -- C:\Windows\System32\Drivers\avc3.sys [640560] O44 - LFC:[MD5.B82A4AE7C1259411421D2389BD1AB058] - 10/01/2014 - 08:59:26 ---A- . (.BitDefender - FileVault Disk Driver.) -- C:\Windows\System32\Drivers\bdvedisk.sys [72704] O44 - LFC:[MD5.FBCE2F43185104AE8BF4D32571B19203] - 10/01/2014 - 15:44:35 ---A- . (.Microsoft Corporation - 1394 Bus Device Driver.) -- C:\Windows\System32\Drivers\1394bus.sys.bak [54784] O44 - LFC:[MD5.1B133875B8AA8AC48969BD3458AFE9F5] - 10/01/2014 - 15:44:35 ---A- . (.Microsoft Corporation - 1394 OpenHCI Driver.) -- C:\Windows\System32\Drivers\1394ohci.sys.bak [164864] O44 - LFC:[MD5.21E785EBD7DC90A06391141AAC7892FB] - 10/01/2014 - 15:44:36 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys.bak [422976] O44 - LFC:[MD5.0C676BC278D5B59FF5ABD57BBE9123F2] - 10/01/2014 - 15:44:36 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\Drivers\adpahci.sys.bak [297552] O44 - LFC:[MD5.CEA80C80BED809AA0DA6FEBC04733349] - 10/01/2014 - 15:44:36 ---A- . (.Microsoft Corporation - ACPI Driver for NT.) -- C:\Windows\System32\Drivers\acpi.sys.bak [274304] O44 - LFC:[MD5.1EFBC664ABFF416D1D07DB115DCB264F] - 10/01/2014 - 15:44:36 ---A- . (.Microsoft Corporation - ACPI Power Metering Driver.) -- C:\Windows\System32\Drivers\acpipmi.sys.bak [10240] O44 - LFC:[MD5.0D40BCF52EA90FC7DF2AEAB6503DEA44] - 10/01/2014 - 15:44:37 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\Drivers\aliide.sys.bak [14400] O44 - LFC:[MD5.7C7B5EE4B7B822EC85321FE23A27DB33] - 10/01/2014 - 15:44:37 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -- C:\Windows\System32\Drivers\adpu320.sys.bak [146512] O44 - LFC:[MD5.507812C3054C21CEF746B6EE3D04DD6E] - 10/01/2014 - 15:44:37 ---A- . (.Microsoft Corporation - 440 NT AGP Filter.) -- C:\Windows\System32\Drivers\AGP440.sys.bak [53312] O44 - LFC:[MD5.F81BB7E487EDCEAB630A7EE66CF23913] - 10/01/2014 - 15:44:37 ---A- . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\Windows\System32\Drivers\afd.sys.bak [338944] O44 - LFC:[MD5.57EC4AEF73660166074D8F7F31C0D4FD] - 10/01/2014 - 15:44:37 ---A- . (.Microsoft Corporation - RAS Agile Vpn Miniport Call Manager.) -- C:\Windows\System32\Drivers\agilevpn.sys.bak [49152] O44 - LFC:[MD5.D320BF87125326F996D4904FE24300FC] - 10/01/2014 - 15:44:38 ---A- . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\Drivers\amdsata.sys.bak [80256] O44 - LFC:[MD5.CD5914170297126B6266860198D1D4F0] - 10/01/2014 - 15:44:38 ---A- . (.Microsoft Corporation - AMD IDE Driver.) -- C:\Windows\System32\Drivers\amdide.sys.bak [14912] O44 - LFC:[MD5.3C6600A0696E90A463771C7422E23AB5] - 10/01/2014 - 15:44:38 ---A- . (.Microsoft Corporation - AMD NT AGP Filter.) -- C:\Windows\System32\Drivers\AMDAGP.SYS.bak [53312] O44 - LFC:[MD5.00DDA200D71BAC534BF56A9DB5DFD666] - 10/01/2014 - 15:44:38 ---A- . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\Drivers\amdk8.sys.bak [55296] O44 - LFC:[MD5.3CBF30F5370FDA40DD3E87DF38EA53B6] - 10/01/2014 - 15:44:38 ---A- . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\Drivers\amdppm.sys.bak [52736] O44 - LFC:[MD5.EA43AF0C423FF267355F74E7A53BDABA] - 10/01/2014 - 15:44:39 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\Drivers\amdsbs.sys.bak [159312] O44 - LFC:[MD5.2932004F49677BD84DBC72EDB754FFB3] - 10/01/2014 - 15:44:39 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\Drivers\arc.sys.bak [76368] O44 - LFC:[MD5.5D6F36C46FD283AE1B57BD2E9FEB0BC7] - 10/01/2014 - 15:44:39 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\Drivers\arcsas.sys.bak [86608] O44 - LFC:[MD5.46387FB17B086D16DEA267D5BE23A2F2] - 10/01/2014 - 15:44:39 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\Drivers\amdxata.sys.bak [22400] O44 - LFC:[MD5.AEA177F783E20150ACE5383EE368DA19] - 10/01/2014 - 15:44:39 ---A- . (.Microsoft Corporation - AppID Driver.) -- C:\Windows\System32\Drivers\appid.sys.bak [50176] O44 - LFC:[MD5.ADD2ADE1C2B285AB8378D2DAAF991481] - 10/01/2014 - 15:44:39 ---A- . (.Microsoft Corporation - MS Remote Access serial network driver.) -- C:\Windows\System32\Drivers\asyncmac.sys.bak [17920] O44 - LFC:[MD5.5C83DF7DB66EEFCD82152E85EC9E9F06] - 10/01/2014 - 15:44:40 ---A- . (.BitDefender - Active Virus Control Kernel Filtering drive.) -- C:\Windows\System32\Drivers\avckf.sys.bak [490144] O44 - LFC:[MD5.DBCB72388C719C9EAFCE91AB40EAA05E] - 10/01/2014 - 15:44:40 ---A- . (.BitDefender - Active Virus Control filter driver.) -- C:\Windows\System32\Drivers\avc3.sys.bak [640560] O44 - LFC:[MD5.7F9B99B564E7C9FBB6729ED95B5BBB24] - 10/01/2014 - 15:44:40 ---A- . (.BitDefender - BitDefender AntiVirus Active Virus Control.) -- C:\Windows\System32\Drivers\avchv.sys.bak [242504] O44 - LFC:[MD5.DDCE686D76C2B4DB435A3AF5BD0E691D] - 10/01/2014 - 15:44:40 ---A- . (.Microsoft Corporation - ATAPI Driver Extension.) -- C:\Windows\System32\Drivers\ataport.sys.bak [133056] O44 - LFC:[MD5.338C86357871C167A96AB976519BF59E] - 10/01/2014 - 15:44:40 ---A- . (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\Drivers\atapi.sys.bak [21584] O44 - LFC:[MD5.A1777C97C2FEA21D7166752AA2CCCBE8] - 10/01/2014 - 15:44:41 ---A- . (.BitDefender SRL - BitDefender SandBox Filter Driver.) -- C:\Windows\System32\Drivers\bdsandbox.sys.bak [66832] O44 - LFC:[MD5.BD8869EB9CDE6BBE4508D869929869EE] - 10/01/2014 - 15:44:41 ---A- . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x.) -- C:\Windows\System32\Drivers\b57nd60x.sys.bak [229888] O44 - LFC:[MD5.505506526A9D467307B3C393DEDAF858] - 10/01/2014 - 15:44:41 ---A- . (.Microsoft Corporation - BEEP Driver.) -- C:\Windows\System32\Drivers\beep.sys.bak [6144] O44 - LFC:[MD5.2287078ED48FCFC477B05B20CF38F36F] - 10/01/2014 - 15:44:41 ---A- . (.Microsoft Corporation - BLB Drive Driver.) -- C:\Windows\System32\Drivers\blbdrive.sys.bak [35328] O44 - LFC:[MD5.2B8EE031FD700AB942EBE60665440E83] - 10/01/2014 - 15:44:41 ---A- . (.Microsoft Corporation - Battery Class Driver.) -- C:\Windows\System32\Drivers\battc.sys.bak [25168] O44 - LFC:[MD5.9F9ACC7F7CCDE8A15C282D3F88B43309] - 10/01/2014 - 15:44:42 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\Drivers\BrFiltLo.sys.bak [13568] O44 - LFC:[MD5.56801AD62213A41F6497F96DEE83755A] - 10/01/2014 - 15:44:42 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\Drivers\BrFiltUp.sys.bak [5248] O44 - LFC:[MD5.77361D72A04F18809D0EFB6CCEB74D4B] - 10/01/2014 - 15:44:42 ---A- . (.Microsoft Corporation - MAC Bridge Driver.) -- C:\Windows\System32\Drivers\bridge.sys.bak [78336] O44 - LFC:[MD5.8F2DA3028D5FCBD1A060A3DE64CD6506] - 10/01/2014 - 15:44:42 ---A- . (.Microsoft Corporation - NT Lan Manager Datagram Receiver Driver.) -- C:\Windows\System32\Drivers\bowser.sys.bak [69632] O44 - LFC:[MD5.1A231ABEC60FD316EC54C66715543CEC] - 10/01/2014 - 15:44:43 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\Drivers\bxvbdx.sys.bak [430080] O44 - LFC:[MD5.203F0B1E73ADADBBB7B7B1FABD901F6B] - 10/01/2014 - 15:44:43 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\Drivers\BrSerWdm.sys.bak [62336] O44 - LFC:[MD5.BD456606156BA17E60A04E18016AE54B] - 10/01/2014 - 15:44:43 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\Drivers\BrUsbMdm.sys.bak [12160] O44 - LFC:[MD5.AF72ED54503F717A43268B3CC5FAEC2E] - 10/01/2014 - 15:44:43 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\Drivers\BrUsbSer.sys.bak [11904] O44 - LFC:[MD5.845B8CE732E67F3B4133164868C666EA] - 10/01/2014 - 15:44:43 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\Drivers\BrSerId.sys.bak [272128] O44 - LFC:[MD5.ED3DF7C56CE0084EB2034432FC56565A] - 10/01/2014 - 15:44:43 ---A- . (.Microsoft Corporation - Bluetooth Communications Driver.) -- C:\Windows\System32\Drivers\bthmodem.sys.bak [56320] O44 - LFC:[MD5.77EA11B065E0A8AB902D78145CA51E10] - 10/01/2014 - 15:44:44 ---A- . (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\Drivers\cdfs.sys.bak [70656] O44 - LFC:[MD5.3FE3FE94A34DF6FB06E6418D0F6A0060] - 10/01/2014 - 15:44:44 ---A- . (.Microsoft Corporation - Consumer IR Class Driver for eHome.) -- C:\Windows\System32\Drivers\circlass.sys.bak [37888] O44 - LFC:[MD5.BE167ED0FDB9C1FA1133953C18D5A6C9] - 10/01/2014 - 15:44:44 ---A- . (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\Drivers\cdrom.sys.bak [108544] O44 - LFC:[MD5.C716C877A528FAE6D352A7430AE0A4A4] - 10/01/2014 - 15:44:44 ---A- . (.Sonic Solutions - CDR4 CD and DVD Place Holder Driver (see Px.) -- C:\Windows\System32\Drivers\cdr4_xp.sys.bak [9072] O44 - LFC:[MD5.17CD01A8B4D0A1E6CBF4BB07CD57043C] - 10/01/2014 - 15:44:44 ---A- . (.Sonic Solutions - CDRAL Place Holder Driver (see PxHelp).) -- C:\Windows\System32\Drivers\cdralw2k.sys.bak [9200] O44 - LFC:[MD5.C537B1DB64D495B9B4717B4D6D9EDBF2] - 10/01/2014 - 15:44:45 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\cmdide.sys.bak [15952] O44 - LFC:[MD5.A6023D3823C37043986713F118A89BEE] - 10/01/2014 - 15:44:45 ---A- . (.Microsoft Corporation - Composite Battery Driver.) -- C:\Windows\System32\Drivers\compbatt.sys.bak [19024] O44 - LFC:[MD5.DEA805815E587DAD1DD2C502220B5616] - 10/01/2014 - 15:44:45 ---A- . (.Microsoft Corporation - Control Method Battery Driver.) -- C:\Windows\System32\Drivers\CmBatt.sys.bak [14080] O44 - LFC:[MD5.85449EEBE8F8EBD6481EFBF0F352B4EB] - 10/01/2014 - 15:44:45 ---A- . (.Microsoft Corporation - Kernel Cryptography, Next Generation.) -- C:\Windows\System32\Drivers\cng.sys.bak [369848] O44 - LFC:[MD5.CBE8C58A8579CFE5FCCF809E6F114E89] - 10/01/2014 - 15:44:45 ---A- . (.Microsoft Corporation - Multi-Transport Composite Bus Enumerator.) -- C:\Windows\System32\Drivers\CompositeBus.sys.bak [31232] O44 - LFC:[MD5.A6388A5ABF92C7927C085DB0A958125F] - 10/01/2014 - 15:44:45 ---A- . (.Microsoft Corporation - SCSI Class System Dll.) -- C:\Windows\System32\Drivers\Classpnp.sys.bak [140864] O44 - LFC:[MD5.B7EFEF22FF426EC4158A177CB3B558D3] - 10/01/2014 - 15:44:46 ---A- . (.Microsoft Corporation - Crash Dump Driver.) -- C:\Windows\System32\Drivers\crashdmp.sys.bak [35408] O44 - LFC:[MD5.F024449C97EC1E464AAFFDA18593DB88] - 10/01/2014 - 15:44:46 ---A- . (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\Drivers\dfsc.sys.bak [78336] O44 - LFC:[MD5.2C4EBCFC84A9B44F209DFF6C6E6C61D1] - 10/01/2014 - 15:44:46 ---A- . (.Microsoft Corporation - Disk Block Verification Filter Driver.) -- C:\Windows\System32\Drivers\crcdisk.sys.bak [22096] O44 - LFC:[MD5.565003F326F99802E68CA78F2A68E9FF] - 10/01/2014 - 15:44:46 ---A- . (.Microsoft Corporation - PnP Disk Driver.) -- C:\Windows\System32\Drivers\disk.sys.bak [57424] O44 - LFC:[MD5.1A050B0274BFB3890703D490F330C0DA] - 10/01/2014 - 15:44:46 ---A- . (.Microsoft Corporation - System Indexer/Cache Driver.) -- C:\Windows\System32\Drivers\discache.sys.bak [32256] O44 - LFC:[MD5.3C2177A897B4CA2788C6FB0C3FD81D4B] - 10/01/2014 - 15:44:46 ---A- . (.Microsoft Corporation - Windows Client Side Caching Driver.) -- C:\Windows\System32\Drivers\csc.sys.bak [388096] O44 - LFC:[MD5.8B30250D573A8F6B4BD23195160D8707] - 10/01/2014 - 15:44:47 ---A- . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\System32\Drivers\djsvs.sys.bak [70720] O44 - LFC:[MD5.5428227D4730EBDFC842E9FB593F8C8A] - 10/01/2014 - 15:44:47 ---A- . (.Microsoft Corporation - ATAPI Dump Driver.) -- C:\Windows\System32\Drivers\Dumpata.sys.bak [26704] O44 - LFC:[MD5.D0F0D7A97C90FE72A79732812E65F822] - 10/01/2014 - 15:44:47 ---A- . (.Microsoft Corporation - Crash Dump Disk Driver.) -- C:\Windows\System32\Drivers\Diskdump.sys.bak [27008] O44 - LFC:[MD5.9842041E2F5ACE1E2F5FB4EF02053DC8] - 10/01/2014 - 15:44:47 ---A- . (.Microsoft Corporation - Microsoft Trusted Audio Drivers.) -- C:\Windows\System32\Drivers\drmk.sys.bak [81408] O44 - LFC:[MD5.B918E7C5F9BF77202F89E1A9539F2EB4] - 10/01/2014 - 15:44:47 ---A- . (.Microsoft Corporation - Microsoft Trusted Audio Drivers.) -- C:\Windows\System32\Drivers\drmkaud.sys.bak [5120] O44 - LFC:[MD5.0ED67910C8C326796FAA00B2BF6D9D3C] - 10/01/2014 - 15:44:48 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\Drivers\elxstor.sys.bak [453712] O44 - LFC:[MD5.62A63EF2F3053B461CB327E4D69AAA74] - 10/01/2014 - 15:44:48 ---A- . (.Microsoft Corporation - Bitlocker Drive Encryption Crashdump Filter.) -- C:\Windows\System32\Drivers\dumpfve.sys.bak [55584] O44 - LFC:[MD5.5FCD3320AAE71506B43F9E12E4E72172] - 10/01/2014 - 15:44:48 ---A- . (.Microsoft Corporation - DirectX API Driver.) -- C:\Windows\System32\Drivers\dxapi.sys.bak [13312] O44 - LFC:[MD5.1B6242B20CB56F85A158E67F09EE84FE] - 10/01/2014 - 15:44:48 ---A- . (.Microsoft Corporation - DirectX Graphics Driver.) -- C:\Windows\System32\Drivers\dxg.sys.bak [76288] O44 - LFC:[MD5.71BC35067CABC02C9453AEAA42B2E43E] - 10/01/2014 - 15:44:48 ---A- . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys.bak [729024] O44 - LFC:[MD5.E405328A0E38BF823E2361C413283F6D] - 10/01/2014 - 15:44:48 ---A- . (.Microsoft Corporation - DirectX Graphics MMS.) -- C:\Windows\System32\Drivers\dxgmms1.sys.bak [218984] O44 - LFC:[MD5.024E1B5CAC09731E4D868E64DBFB4AB0] - 10/01/2014 - 15:44:49 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\Drivers\evbdx.sys.bak [3100160] O44 - LFC:[MD5.8FC3208352DD3912C94367A206AB3F11] - 10/01/2014 - 15:44:49 ---A- . (.Microsoft Corporation - Error Device Driver.) -- C:\Windows\System32\Drivers\errdev.sys.bak [7168] O44 - LFC:[MD5.2DC9108D74081149CC8B651D3A26207F] - 10/01/2014 - 15:44:49 ---A- . (.Microsoft Corporation - Microsoft Extended FAT File System.) -- C:\Windows\System32\Drivers\exfat.sys.bak [142336] O44 - LFC:[MD5.7E0AB74553476622FB6AE36F73D97D35] - 10/01/2014 - 15:44:50 ---A- . (.Microsoft Corporation - Fast FAT File System Driver.) -- C:\Windows\System32\Drivers\fastfat.sys.bak [148480] O44 - LFC:[MD5.42C51DC94C91DA21CB9196EB64C45DB9] - 10/01/2014 - 15:44:50 ---A- . (.Microsoft Corporation - File Trace Filter Driver.) -- C:\Windows\System32\Drivers\filetrace.sys.bak [28160] O44 - LFC:[MD5.6CF00369C97F3CF563BE99BE983D13D8] - 10/01/2014 - 15:44:50 ---A- . (.Microsoft Corporation - FileInfo Filter Driver.) -- C:\Windows\System32\Drivers\fileinfo.sys.bak [58448] O44 - LFC:[MD5.E817A017F82DF2A1F8CFDBDA29388B29] - 10/01/2014 - 15:44:50 ---A- . (.Microsoft Corporation - Floppy Disk Controller Driver.) -- C:\Windows\System32\Drivers\fdc.sys.bak [25088] O44 - LFC:[MD5.87907AA70CB3C56600F1C2FB8841579B] - 10/01/2014 - 15:44:50 ---A- . (.Microsoft Corporation - Floppy Driver.) -- C:\Windows\System32\Drivers\flpydisk.sys.bak [19968] O44 - LFC:[MD5.7520EC808E0C35E0EE6F841294316653] - 10/01/2014 - 15:44:50 ---A- . (.Microsoft Corporation - Gestionnaire de filtres de système de fichi.) -- C:\Windows\System32\Drivers\fltMgr.sys.bak [198208] O44 - LFC:[MD5.E306A24D9694C724FA2491278BF50FDB] - 10/01/2014 - 15:44:51 ---A- . (.Microsoft Corporation - BitLocker Drive Encryption Driver.) -- C:\Windows\System32\Drivers\fvevol.sys.bak [196328] O44 - LFC:[MD5.AAB149EE616952BB84308C28E75ED20D] - 10/01/2014 - 15:44:51 ---A- . (.Microsoft Corporation - FWP/IPsec Kernel-Mode API.) -- C:\Windows\System32\Drivers\FWPKCLNT.SYS.bak [187752] O44 - LFC:[MD5.1A16B57943853E598CFF37FE2B8CBF1D] - 10/01/2014 - 15:44:51 ---A- . (.Microsoft Corporation - File System Dependency Manager Mini Filter.) -- C:\Windows\System32\Drivers\fsdepends.sys.bak [46160] O44 - LFC:[MD5.7DAE5EBCC80E45D3253F4923DC424D05] - 10/01/2014 - 15:44:51 ---A- . (.Microsoft Corporation - File System Recognizer Driver.) -- C:\Windows\System32\Drivers\fs_rec.sys.bak [19824] O44 - LFC:[MD5.65EE0C7A58B65E74AE05637418153938] - 10/01/2014 - 15:44:51 ---A- . (.Microsoft Corporation - MS Generic AGPv3.0 Filter for K8/9 Processo.) -- C:\Windows\System32\Drivers\GAGP30KX.SYS.bak [57936] O44 - LFC:[MD5.3B5CA8EB6748D234F117AB203491F6F9] - 10/01/2014 - 15:44:52 ---A- . (.BitDefender LLC - BitDefender Gonzales FileSystem Driver.) -- C:\Windows\System32\Drivers\gzflt.sys.bak [165744] O44 - LFC:[MD5.185ADA973B5020655CEE342059A86CBB] - 10/01/2014 - 15:44:52 ---A- . (.GEAR Software Inc. - CD DVD Filter.) -- C:\Windows\System32\Drivers\GEARAspiWDM.sys.bak [26840] O44 - LFC:[MD5.C44E3C2BAB6837DB337DDEE7544736DB] - 10/01/2014 - 15:44:52 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\Drivers\hcw85cir.sys.bak [26624] O44 - LFC:[MD5.89448F40E6DF260C206A193A4683BA78] - 10/01/2014 - 15:44:52 ---A- . (.Microsoft Corporation - Bluetooth Miniport Driver for HID Devices.) -- C:\Windows\System32\Drivers\hidbth.sys.bak [91136] O44 - LFC:[MD5.1D58A7F3E11A9731D0EAAAA8405ACC36] - 10/01/2014 - 15:44:52 ---A- . (.Microsoft Corporation - Hid Battery Driver.) -- C:\Windows\System32\Drivers\hidbatt.sys.bak [21504] O44 - LFC:[MD5.9036377B8A6C15DC2EEC53E489D159B5] - 10/01/2014 - 15:44:52 ---A- . (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\Drivers\hdaudbus.sys.bak [108544] O44 - LFC:[MD5.6F98A555ACF3C1B68FCC1F50E0FD2091] - 10/01/2014 - 15:44:53 ---A- . (.Hewlett Packard - LEDM BULK.) -- C:\Windows\System32\Drivers\hppcbulkio.sys.bak [20504] O44 - LFC:[MD5.BA7804A6D56CBA2625580D1BF7740D33] - 10/01/2014 - 15:44:53 ---A- . (.Hewlett Packard - LEDM USB Composite Support Driver.) -- C:\Windows\System32\Drivers\hppcgenio.sys.bak [26648] O44 - LFC:[MD5.50ABE682EBE752EAF62B18790D6D491C] - 10/01/2014 - 15:44:53 ---A- . (.Microsoft Corporation - Hid Class Library.) -- C:\Windows\System32\Drivers\hidclass.sys.bak [55808] O44 - LFC:[MD5.F1B27299F547D452EDAEF01FC187CB91] - 10/01/2014 - 15:44:53 ---A- . (.Microsoft Corporation - Hid Parsing Library.) -- C:\Windows\System32\Drivers\hidparse.sys.bak [25728] O44 - LFC:[MD5.CF50B4CF4A4F229B9F3C08351F99CA5E] - 10/01/2014 - 15:44:53 ---A- . (.Microsoft Corporation - Infrared Miniport Driver for Input Devices.) -- C:\Windows\System32\Drivers\hidir.sys.bak [37888] O44 - LFC:[MD5.10C19F8290891AF023EAEC0832E1EB4D] - 10/01/2014 - 15:44:53 ---A- . (.Microsoft Corporation - USB Miniport Driver for Input Devices.) -- C:\Windows\System32\Drivers\hidusb.sys.bak [24064] O44 - LFC:[MD5.295FDC419039090EB8B49FFDBB374549] - 10/01/2014 - 15:44:54 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\Drivers\HpSAMD.sys.bak [67152] O44 - LFC:[MD5.5CD5F9A5444E6CDCB0AC89BD62D8B76E] - 10/01/2014 - 15:44:54 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\Windows\System32\Drivers\iaStorV.sys.bak [332160] O44 - LFC:[MD5.871917B07A141BFF43D76D8844D48106] - 10/01/2014 - 15:44:54 ---A- . (.Microsoft Corporation - HTTP Pile du protocole.) -- C:\Windows\System32\Drivers\http.sys.bak [513536] O44 - LFC:[MD5.0C4E035C7F105F1299258C90886C64C5] - 10/01/2014 - 15:44:54 ---A- . (.Microsoft Corporation - Hardware Policy Driver.) -- C:\Windows\System32\Drivers\hwpolicy.sys.bak [14208] O44 - LFC:[MD5.F151F0BDC47F4A28B1B20A0818EA36D6] - 10/01/2014 - 15:44:54 ---A- . (.Microsoft Corporation - i8042 Port Driver.) -- C:\Windows\System32\Drivers\i8042prt.sys.bak [80896] O44 - LFC:[MD5.DCE0B53570703CCE580D066F89EF58CD] - 10/01/2014 - 15:44:55 ---A- . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\Drivers\igdkmd32.sys.bak [9036800] O44 - LFC:[MD5.4173FF5708F3236CF25195FECD742915] - 10/01/2014 - 15:44:56 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\Drivers\iirsp.sys.bak [41040] O44 - LFC:[MD5.709D1761D3B19A932FF0238EA6D50200] - 10/01/2014 - 15:44:56 ---A- . (.Microsoft Corporation - IP FILTER DRIVER.) -- C:\Windows\System32\Drivers\ipfltdrv.sys.bak [58880] O44 - LFC:[MD5.A0F12F2C9BA6C72F3987CE780E77C130] - 10/01/2014 - 15:44:56 ---A- . (.Microsoft Corporation - Intel PCI IDE Driver.) -- C:\Windows\System32\Drivers\intelide.sys.bak [15424] O44 - LFC:[MD5.3B514D27BFC4ACCB4037BC6685F766E0] - 10/01/2014 - 15:44:56 ---A- . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\Drivers\intelppm.sys.bak [53760] O44 - LFC:[MD5.4BD7134618C1D2A27466A099062547BF] - 10/01/2014 - 15:44:56 ---A- . (.Microsoft Corporation - WMI IPMI DRIVER.) -- C:\Windows\System32\Drivers\IPMIDrv.sys.bak [65536] O44 - LFC:[MD5.7EA81534E80570BDF6EE4A4248BBA4D6] - 10/01/2014 - 15:44:57 ---A- . (.Broadcom Corporation - Broadcom NetLink (TM) Gigabit Ethernet NDIS.) -- C:\Windows\System32\Drivers\k57nd60x.sys.bak [273960] O44 - LFC:[MD5.A5FA468D67ABCDAA36264E463A7BB0CD] - 10/01/2014 - 15:44:57 ---A- . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys.bak [101888] O44 - LFC:[MD5.9F7E491FB0BA0F9E370163834FC1FE31] - 10/01/2014 - 15:44:57 ---A- . (.Microsoft Corporation - IRDA Protocol Driver.) -- C:\Windows\System32\Drivers\irda.sys.bak [96768] O44 - LFC:[MD5.42996CFF20A3084A56017B7902307E9F] - 10/01/2014 - 15:44:57 ---A- . (.Microsoft Corporation - Infra-Red Bus Enumerator.) -- C:\Windows\System32\Drivers\irenum.sys.bak [13824] O44 - LFC:[MD5.1F32BB6B38F62F7DF1A7AB7292638A35] - 10/01/2014 - 15:44:57 ---A- . (.Microsoft Corporation - PNP ISA Bus Driver.) -- C:\Windows\System32\Drivers\isapnp.sys.bak [46656] O44 - LFC:[MD5.9E3CED91863E6EE98C24794D05E27A71] - 10/01/2014 - 15:44:58 ---A- . (.Microsoft Corporation - HID Keyboard Filter Driver.) -- C:\Windows\System32\Drivers\kbdhid.sys.bak [28160] O44 - LFC:[MD5.5DCEF0C32BE0F33277326586FA503689] - 10/01/2014 - 15:44:58 ---A- . (.Microsoft Corporation - Kernel CSA Library.) -- C:\Windows\System32\Drivers\ks.sys.bak [190976] O44 - LFC:[MD5.F286830298323272260332D6ABC905C1] - 10/01/2014 - 15:44:58 ---A- . (.Microsoft Corporation - Kernel Security Support Provider Interface.) -- C:\Windows\System32\Drivers\ksecdd.sys.bak [67520] O44 - LFC:[MD5.D7C760D57B1656DD748B9E4AB6CB5A51] - 10/01/2014 - 15:44:58 ---A- . (.Microsoft Corporation - Kernel Security Support Provider Interface.) -- C:\Windows\System32\Drivers\ksecpkg.sys.bak [136640] O44 - LFC:[MD5.ADEF52CA1AEAE82B50DF86B56413107E] - 10/01/2014 - 15:44:58 ---A- . (.Microsoft Corporation - Keyboard Class Driver.) -- C:\Windows\System32\Drivers\kbdclass.sys.bak [42576] O44 - LFC:[MD5.EB119A53CCF2ACC000AC71B065B78FEF] - 10/01/2014 - 15:44:59 ---A- . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_fc.sys.bak [95824] O44 - LFC:[MD5.8ADE1C877256A22E49B75D1CC9161F9C] - 10/01/2014 - 15:44:59 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas.sys.bak [89168] O44 - LFC:[MD5.0A036C7D7CAB643A7F07135AC47E0524] - 10/01/2014 - 15:44:59 ---A- . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_scsi.sys.bak [96848] O44 - LFC:[MD5.DC9DC3D3DAA0E276FD2EC262E38B11E9] - 10/01/2014 - 15:44:59 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas2.sys.bak [54864] O44 - LFC:[MD5.4470E3C1E0C3378E4CAB137893C12C3A] - 10/01/2014 - 15:44:59 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\mbam.sys.bak [22856] O44 - LFC:[MD5.F7611EC07349979DA9B0AE1F18CCC7A6] - 10/01/2014 - 15:44:59 ---A- . (.Microsoft Corporation - Link-Layer Topology Mapper I/O Driver.) -- C:\Windows\System32\Drivers\lltdio.sys.bak [48128] O44 - LFC:[MD5.6703E366CC18D3B6E534F5CF7DF39CEE] - 10/01/2014 - 15:44:59 ---A- . (.Microsoft Corporation - Pilote de filtre de virtualisation de fichi.) -- C:\Windows\System32\Drivers\luafv.sys.bak [86528] O44 - LFC:[MD5.0FFF5B045293002AB38EB1FD1FC2FB74] - 10/01/2014 - 15:45:00 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\Drivers\megasas.sys.bak [30800] O44 - LFC:[MD5.DCBAB2920C75F390CAF1D29F675D03D6] - 10/01/2014 - 15:45:00 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\Drivers\MegaSR.sys.bak [235584] O44 - LFC:[MD5.EF08D2EBE3EABBA43CC57EEE001027B6] - 10/01/2014 - 15:45:00 ---A- . (.Microsoft Corporation - Medium changer class driver.) -- C:\Windows\System32\Drivers\mcd.sys.bak [18432] O44 - LFC:[MD5.F001861E5700EE84E2D4E52C712F4964] - 10/01/2014 - 15:45:00 ---A- . (.Microsoft Corporation - Modem Device Driver.) -- C:\Windows\System32\Drivers\modem.sys.bak [31744] O44 - LFC:[MD5.79D10964DE86B292320E9DFE02282A23] - 10/01/2014 - 15:45:00 ---A- . (.Microsoft Corporation - Monitor Driver.) -- C:\Windows\System32\Drivers\monitor.sys.bak [23552] O44 - LFC:[MD5.FB18CC1D4C2E716B6B903B0AC0CC0609] - 10/01/2014 - 15:45:00 ---A- . (.Microsoft Corporation - Mouse Class Driver.) -- C:\Windows\System32\Drivers\mouclass.sys.bak [41552] O44 - LFC:[MD5.2C388D2CD01C9042596CF3C8F3C7B24D] - 10/01/2014 - 15:45:01 ---A- . (.Microsoft Corporation - HID Mouse Filter Driver.) -- C:\Windows\System32\Drivers\mouhid.sys.bak [26112] O44 - LFC:[MD5.AD2723A7B53DD1AACAE6AD8C0BFBF4D0] - 10/01/2014 - 15:45:01 ---A- . (.Microsoft Corporation - Microsoft Protection Service Driver.) -- C:\Windows\System32\Drivers\mpsdrv.sys.bak [60416] O44 - LFC:[MD5.FC8771F45ECCCFD89684E38842539B9B] - 10/01/2014 - 15:45:01 ---A- . (.Microsoft Corporation - Mount Point Manager.) -- C:\Windows\System32\Drivers\mountmgr.sys.bak [78208] O44 - LFC:[MD5.2D699FB6E89CE0D8DA14ECC03B3EDFE0] - 10/01/2014 - 15:45:01 ---A- . (.Microsoft Corporation - MultiPath Support Bus-Driver.) -- C:\Windows\System32\Drivers\mpio.sys.bak [130432] O44 - LFC:[MD5.5D16C921E3671636C0EBA3BBAAC5FD25] - 10/01/2014 - 15:45:01 ---A- . (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\Windows\System32\Drivers\mrxsmb.sys.bak [123904] O44 - LFC:[MD5.21F4B24ACFC79A483515BD986DD9043F] - 10/01/2014 - 15:45:01 ---A- . (.Microsoft Corporation - Windows NT WebDav Minirdr.) -- C:\Windows\System32\Drivers\mrxdav.sys.bak [115712] O44 - LFC:[MD5.B81F204D146000BE76651A50670A5E9E] - 10/01/2014 - 15:45:02 ---A- . (.Microsoft Corporation - Longhorn SMB 2.0 Redirector.) -- C:\Windows\System32\Drivers\mrxsmb20.sys.bak [96768] O44 - LFC:[MD5.6D17A4791ACA19328C685D256349FEFC] - 10/01/2014 - 15:45:02 ---A- . (.Microsoft Corporation - Longhorn SMB Downlevel SubRdr.) -- C:\Windows\System32\Drivers\mrxsmb10.sys.bak [223744] O44 - LFC:[MD5.012C5F4E9349E711E11E0F19A8589F0A] - 10/01/2014 - 15:45:02 ---A- . (.Microsoft Corporation - MS AHCI 1.0 Standard Driver.) -- C:\Windows\System32\Drivers\msahci.sys.bak [28032] O44 - LFC:[MD5.DAEFB28E3AF5A76ABCC2C3078C07327F] - 10/01/2014 - 15:45:02 ---A- . (.Microsoft Corporation - Mailslot driver.) -- C:\Windows\System32\Drivers\msfs.sys.bak [22528] O44 - LFC:[MD5.55055F8AD8BE27A64C831322A780A228] - 10/01/2014 - 15:45:02 ---A- . (.Microsoft Corporation - Microsoft Device Specific Module.) -- C:\Windows\System32\Drivers\msdsm.sys.bak [116096] O44 - LFC:[MD5.0A4E5757AE09FA9622E3158CC1AEF114] - 10/01/2014 - 15:45:03 ---A- . (.Microsoft Corporation - ISA Driver.) -- C:\Windows\System32\Drivers\msisadrv.sys.bak [13888] O44 - LFC:[MD5.8C0860D6366AAFFB6C5BB9DF9448E631] - 10/01/2014 - 15:45:03 ---A- . (.Microsoft Corporation - MS KS Server.) -- C:\Windows\System32\Drivers\mskssrv.sys.bak [8320] O44 - LFC:[MD5.3EA8B949F963562CEDBB549EAC0C11CE] - 10/01/2014 - 15:45:03 ---A- . (.Microsoft Corporation - MS Proxy Clock.) -- C:\Windows\System32\Drivers\mspclock.sys.bak [5888] O44 - LFC:[MD5.F456E973590D663B1073E9C463B40932] - 10/01/2014 - 15:45:03 ---A- . (.Microsoft Corporation - MS Proxy Quality Manager.) -- C:\Windows\System32\Drivers\mspqm.sys.bak [5504] O44 - LFC:[MD5.CB7A9ABB12B8415BCE5D74994C7BA3AE] - 10/01/2014 - 15:45:03 ---A- . (.Microsoft Corporation - Microsoft iSCSI Initiator Driver.) -- C:\Windows\System32\Drivers\msiscsi.sys.bak [233344] O44 - LFC:[MD5.3E1E5767043C5AF9367F0056295E9F84] - 10/01/2014 - 15:45:03 ---A- . (.Microsoft Corporation - Pass-through HID to KMDF Filter Driver.) -- C:\Windows\System32\Drivers\mshidkmdf.sys.bak [4096] O44 - LFC:[MD5.0E008FC4819D238C51D7C93E7B41E560] - 10/01/2014 - 15:45:04 ---A- . (.Microsoft Corporation - Kernel Remote Procedure Call Provider.) -- C:\Windows\System32\Drivers\msrpc.sys.bak [162896] O44 - LFC:[MD5.33599130F44E1F34631CEA241DE8AC84] - 10/01/2014 - 15:45:04 ---A- . (.Microsoft Corporation - Microsoft Multi-Touch HID Driver.) -- C:\Windows\System32\Drivers\MTConfig.sys.bak [12288] O44 - LFC:[MD5.159FAD02F64E6381758C990F753BCC80] - 10/01/2014 - 15:45:04 ---A- . (.Microsoft Corporation - Multiple UNC Provider Driver.) -- C:\Windows\System32\Drivers\mup.sys.bak [49728] O44 - LFC:[MD5.8C9C922D71F1CD4DEF73F186416B7896] - 10/01/2014 - 15:45:04 ---A- . (.Microsoft Corporation - Pilote NDIS 6.20.) -- C:\Windows\System32\Drivers\ndis.sys.bak [712048] O44 - LFC:[MD5.FC6B9FF600CC585EA38B12589BD4E246] - 10/01/2014 - 15:45:04 ---A- . (.Microsoft Corporation - System Management BIOS Driver.) -- C:\Windows\System32\Drivers\mssmbios.sys.bak [28240] O44 - LFC:[MD5.B42C6B921F61A6E55159B8BE6CD54A36] - 10/01/2014 - 15:45:04 ---A- . (.Microsoft Corporation - WDM Tee/Communication Transform Filter.) -- C:\Windows\System32\Drivers\mstee.sys.bak [6144] O44 - LFC:[MD5.38FBE267E7E6983311179230FACB1017] - 10/01/2014 - 15:45:05 ---A- . (.Microsoft Corporation - MS PPP Framing Driver (Strong Encryption).) -- C:\Windows\System32\Drivers\ndiswan.sys.bak [118784] O44 - LFC:[MD5.E4A8AEC125A2E43A9E32AFEEA7C9C888] - 10/01/2014 - 15:45:05 ---A- . (.Microsoft Corporation - NDIS 3.0 connection wrapper driver.) -- C:\Windows\System32\Drivers\ndistapi.sys.bak [20992] O44 - LFC:[MD5.0E1787AA6C9191D3D319E8BAFE86F80C] - 10/01/2014 - 15:45:05 ---A- . (.Microsoft Corporation - NDIS Packet Capture Filter Driver.) -- C:\Windows\System32\Drivers\ndiscap.sys.bak [27136] O44 - LFC:[MD5.A4BDC541E69674FBFF1A8FF00BE913F2] - 10/01/2014 - 15:45:05 ---A- . (.Microsoft Corporation - NDIS Proxy.) -- C:\Windows\System32\Drivers\ndproxy.sys.bak [48640] O44 - LFC:[MD5.D8A65DAFB3EB41CBB622745676FCD072] - 10/01/2014 - 15:45:05 ---A- . (.Microsoft Corporation - NDIS User mode I/O driver.) -- C:\Windows\System32\Drivers\ndisuio.sys.bak [46080] O44 - LFC:[MD5.80B275B1CE3B0E79909DB7B39AF74D51] - 10/01/2014 - 15:45:05 ---A- . (.Microsoft Corporation - NetBIOS interface driver.) -- C:\Windows\System32\Drivers\netbios.sys.bak [36352] O44 - LFC:[MD5.1D85C4B390B0EE09C7A46B91EFB2C097] - 10/01/2014 - 15:45:06 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\Drivers\nfrd960.sys.bak [44624] O44 - LFC:[MD5.280122DDCF04B378EDD1AD54D71C1E54] - 10/01/2014 - 15:45:06 ---A- . (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\Drivers\netbt.sys.bak [187904] O44 - LFC:[MD5.1DB262A9F8C087E8153D89BEF3D2235F] - 10/01/2014 - 15:45:06 ---A- . (.Microsoft Corporation - NPFS Driver.) -- C:\Windows\System32\Drivers\npfs.sys.bak [35328] O44 - LFC:[MD5.E9A0A4D07E53D8FEA2BB8387A3293C58] - 10/01/2014 - 15:45:06 ---A- . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys.bak [16896] O44 - LFC:[MD5.5E43D2B0EE64123D4880DFA6626DEFDE] - 10/01/2014 - 15:45:06 ---A- . (.Microsoft Corporation - NT File System Driver.) -- C:\Windows\System32\Drivers\ntfs.sys.bak [1211752] O44 - LFC:[MD5.776FCEFE2CD27C442DF66D3F3535078D] - 10/01/2014 - 15:45:06 ---A- . (.Microsoft Corporation - Network I/O Subsystem.) -- C:\Windows\System32\Drivers\netio.sys.bak [240496] O44 - LFC:[MD5.5A0983915F02BAE73267CC2A041F717D] - 10/01/2014 - 15:45:07 ---A- . (.Microsoft Corporation - NForce NT AGP Filter.) -- C:\Windows\System32\Drivers\NV_AGP.SYS.bak [105024] O44 - LFC:[MD5.F9756A98D69098DCA8945D62858A812C] - 10/01/2014 - 15:45:07 ---A- . (.Microsoft Corporation - NULL Driver.) -- C:\Windows\System32\Drivers\null.sys.bak [4608] O44 - LFC:[MD5.26384429FCD85D83746F63E798AB1480] - 10/01/2014 - 15:45:07 ---A- . (.Microsoft Corporation - NativeWiFi Miniport Driver.) -- C:\Windows\System32\Drivers\nwifi.sys.bak [267264] O44 - LFC:[MD5.B3E25EE28883877076E0E1FF877D02E0] - 10/01/2014 - 15:45:07 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\Drivers\nvraid.sys.bak [117120] O44 - LFC:[MD5.4380E59A170D88C4F1022EFF6719A8A4] - 10/01/2014 - 15:45:07 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\Drivers\nvstor.sys.bak [143744] O44 - LFC:[MD5.08A70A1F2CDDE9BB49B885CB817A66EB] - 10/01/2014 - 15:45:08 ---A- . (.Microsoft Corporation - 1394 OpenHCI Port Driver.) -- C:\Windows\System32\Drivers\ohci1394.sys.bak [62464] O44 - LFC:[MD5.2EA877ED5DD9713C5AC74E8EA7348D14] - 10/01/2014 - 15:45:08 ---A- . (.Microsoft Corporation - Parallel Port Driver.) -- C:\Windows\System32\Drivers\parport.sys.bak [79360] O44 - LFC:[MD5.3F34A1B4C5F6475F320C275E63AFCE9B] - 10/01/2014 - 15:45:08 ---A- . (.Microsoft Corporation - Partition Management Driver.) -- C:\Windows\System32\Drivers\partmgr.sys.bak [56176] O44 - LFC:[MD5.6270CCAE2A86DE6D146529FE55B3246A] - 10/01/2014 - 15:45:08 ---A- . (.Microsoft Corporation - Planificateur de paquets QoS.) -- C:\Windows\System32\Drivers\pacer.sys.bak [104448] O44 - LFC:[MD5.EB0A59F29C19B86479D36B35983DAADC] - 10/01/2014 - 15:45:08 ---A- . (.Microsoft Corporation - VDM Parallel Driver.) -- C:\Windows\System32\Drivers\parvdm.sys.bak [8704] O44 - LFC:[MD5.AFE86F419014DB4E5593F69FFE26CE0A] - 10/01/2014 - 15:45:09 ---A- . (.Microsoft Corporation - Generic PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\pciide.sys.bak [12368] O44 - LFC:[MD5.673E55C3498EB970088E812EA820AA8F] - 10/01/2014 - 15:45:09 ---A- . (.Microsoft Corporation - NT Plug and Play PCI Enumerator.) -- C:\Windows\System32\Drivers\pci.sys.bak [153984] O44 - LFC:[MD5.EDE040D666FF81BF1978D0F19F799E7A] - 10/01/2014 - 15:45:09 ---A- . (.Microsoft Corporation - PCI IDE Bus Driver Extension.) -- C:\Windows\System32\Drivers\pciidex.sys.bak [42560] O44 - LFC:[MD5.F396431B31693E71E8A80687EF523506] - 10/01/2014 - 15:45:09 ---A- . (.Microsoft Corporation - PCMCIA Bus Driver.) -- C:\Windows\System32\Drivers\pcmcia.sys.bak [180288] O44 - LFC:[MD5.250F6B43D2B613172035C6747AEEB19F] - 10/01/2014 - 15:45:09 ---A- . (.Microsoft Corporation - Performance Counters for Windows Driver.) -- C:\Windows\System32\Drivers\pcw.sys.bak [43088] O44 - LFC:[MD5.EB6137D696A9B4E9718AC6F8641CB4C9] - 10/01/2014 - 15:45:10 ---A- . (.Microsoft Corporation - Port Class (Class Driver for Port/Miniport.) -- C:\Windows\System32\Drivers\portcls.sys.bak [177152] O44 - LFC:[MD5.85B1E3A0C7585BC4AAE6899EC6FCF011] - 10/01/2014 - 15:45:10 ---A- . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\Drivers\processr.sys.bak [52224] O44 - LFC:[MD5.9E0104BA49F4E6973749A02BF41344ED] - 10/01/2014 - 15:45:10 ---A- . (.Microsoft Corporation - Protected Environment Authentication and Au.) -- C:\Windows\System32\Drivers\PEAuth.sys.bak [586752] O44 - LFC:[MD5.AB95ECF1F6659A60DDC166D8315B0751] - 10/01/2014 - 15:45:10 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\Drivers\ql2300.sys.bak [1383488] O44 - LFC:[MD5.B4DD51DD25182244B86737DC51AF2270] - 10/01/2014 - 15:45:10 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\Drivers\ql40xx.sys.bak [106064] O44 - LFC:[MD5.40FEDD328F98245AD201CF5F9F311724] - 10/01/2014 - 15:45:10 ---A- . (.Sonic Solutions - Px Engine Device Driver for Windows 2000/XP.) -- C:\Windows\System32\Drivers\pxhelp20.sys.bak [45200] O44 - LFC:[MD5.631E3E205AD6D86F2AED6A4A8E69F2DB] - 10/01/2014 - 15:45:11 ---A- . (.Microsoft Corporation - Peer-to-Peer Tunneling Protocol.) -- C:\Windows\System32\Drivers\raspptp.sys.bak [73728] O44 - LFC:[MD5.584078CA1B95CA72DF2A27C336F9719D] - 10/01/2014 - 15:45:11 ---A- . (.Microsoft Corporation - Pilote du support de Microsoft Quality Wind.) -- C:\Windows\System32\Drivers\qwavedrv.sys.bak [31744] O44 - LFC:[MD5.30A81B53C766D0133BB86D234E5556AB] - 10/01/2014 - 15:45:11 ---A- . (.Microsoft Corporation - RAS Automatic Connection Driver.) -- C:\Windows\System32\Drivers\rasacd.sys.bak [11776] O44 - LFC:[MD5.D9F91EAFEC2815365CBE6D167E4E332A] - 10/01/2014 - 15:45:11 ---A- . (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\Drivers\rasl2tp.sys.bak [78848] O44 - LFC:[MD5.0FE8B15916307A6AC12BFB6A63E45507] - 10/01/2014 - 15:45:11 ---A- . (.Microsoft Corporation - RAS PPPoE mini-port/call-manager driver.) -- C:\Windows\System32\Drivers\raspppoe.sys.bak [77824] O44 - LFC:[MD5.44101F495A83EA6401D886E7FD70096B] - 10/01/2014 - 15:45:11 ---A- . (.Microsoft Corporation - RAS SSTP Miniport Call Manager.) -- C:\Windows\System32\Drivers\rassstp.sys.bak [75264] O44 - LFC:[MD5.0D8F05481CB76E70E1DA06EE9F0DA9DF] - 10/01/2014 - 15:45:12 ---A- . (.Microsoft Corporation - Microsoft RDP Bus Device driver.) -- C:\Windows\System32\Drivers\rdpbus.sys.bak [18944] O44 - LFC:[MD5.B973FCFC50DC1434E1970A146F7E3885] - 10/01/2014 - 15:45:12 ---A- . (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\Windows\System32\Drivers\rdpdr.sys.bak [133632] O44 - LFC:[MD5.5A53CA1598DD4156D44196D200C94B8A] - 10/01/2014 - 15:45:12 ---A- . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\System32\Drivers\RDPENCDD.sys.bak [6656] O44 - LFC:[MD5.23DAE03F29D253AE74C44F99E515F9A1] - 10/01/2014 - 15:45:12 ---A- . (.Microsoft Corporation - RDP Miniport.) -- C:\Windows\System32\Drivers\RDPCDD.sys.bak [6656] O44 - LFC:[MD5.44B0A53CD4F27D50ED461DAE0C0B4E1F] - 10/01/2014 - 15:45:12 ---A- . (.Microsoft Corporation - RDP Reflector Driver Miniport.) -- C:\Windows\System32\Drivers\RDPREFMP.sys.bak [7168] O44 - LFC:[MD5.D528BC58A489409BA40334EBF96A311B] - 10/01/2014 - 15:45:12 ---A- . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) -- C:\Windows\System32\Drivers\rdbss.sys.bak [242688] O44 - LFC:[MD5.564297827D213F52C7A3A2FF749568CA] - 10/01/2014 - 15:45:13 ---A- . (.Microsoft Corporation - Legacy Non-Pnp Modem Device Driver.) -- C:\Windows\System32\Drivers\rootmdm.sys.bak [8192] O44 - LFC:[MD5.032B0D36AD92B582D869879F5AF5B928] - 10/01/2014 - 15:45:13 ---A- . (.Microsoft Corporation - Link-Layer Topology Responder Driver for ND.) -- C:\Windows\System32\Drivers\rspndr.sys.bak [60928] O44 - LFC:[MD5.F031683E6D1FEA157ABB2FF260B51E61] - 10/01/2014 - 15:45:13 ---A- . (.Microsoft Corporation - RDP Terminal Stack Driver.) -- C:\Windows\System32\Drivers\rdpwd.sys.bak [183808] O44 - LFC:[MD5.518395321DC96FE2C9F0E96AC743B656] - 10/01/2014 - 15:45:13 ---A- . (.Microsoft Corporation - ReadyBoost Driver.) -- C:\Windows\System32\Drivers\rdyboost.sys.bak [173440] O44 - LFC:[MD5.906DCFC5EBF4EC0433F8D4FFFB0BA334] - 10/01/2014 - 15:45:13 ---A- . (.Microsoft Corporation - Reliable Multicast Transport.) -- C:\Windows\System32\Drivers\rmcast.sys.bak [117760] O44 - LFC:[MD5.ED80D303102A746D30C1684B387BCBF1] - 10/01/2014 - 15:45:13 ---A- . (.Microsoft Corporation - Remote NDIS Miniport.) -- C:\Windows\System32\Drivers\RNDISMP.sys.bak [33280] O44 - LFC:[MD5.0693B5EC673E34DC147E195779A4DCF6] - 10/01/2014 - 15:45:14 ---A- . (.Microsoft Corporation - Microsoft Smart Card Reader Filter Driver.) -- C:\Windows\System32\Drivers\scfilter.sys.bak [26624] O44 - LFC:[MD5.05D860DA1040F111503AC416CCEF2BCA] - 10/01/2014 - 15:45:14 ---A- . (.Microsoft Corporation - SBP-2 Protocol Driver.) -- C:\Windows\System32\Drivers\sbp2port.sys.bak [85376] O44 - LFC:[MD5.099972E1FAF4950D3994FBAB9DD21253] - 10/01/2014 - 15:45:14 ---A- . (.Microsoft Corporation - SCSI Port Driver.) -- C:\Windows\System32\Drivers\scsiport.sys.bak [140160] O44 - LFC:[MD5.94B1FF5D243D34B31380A2F79FC48959] - 10/01/2014 - 15:45:14 ---A- . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\Drivers\RTKVHDA.sys.bak [2769120] O44 - LFC:[MD5.90A3935D05B494A5A39D37E71F09A677] - 10/01/2014 - 15:45:15 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\System32\Drivers\secdrv.sys.bak [20480] O44 - LFC:[MD5.5FB7FCEA0490D821F26F39CC5EA3D1E2] - 10/01/2014 - 15:45:15 ---A- . (.Microsoft Corporation - Serial Device Driver.) -- C:\Windows\System32\Drivers\serial.sys.bak [83456] O44 - LFC:[MD5.79BFFB520327FF916A582DFEA17AA813] - 10/01/2014 - 15:45:15 ---A- . (.Microsoft Corporation - Serial Mouse Filter Driver.) -- C:\Windows\System32\Drivers\sermouse.sys.bak [19968] O44 - LFC:[MD5.9AD8B8B515E3DF6ACD4212EF465DE2D1] - 10/01/2014 - 15:45:15 ---A- . (.Microsoft Corporation - Serial Port Enumerator.) -- C:\Windows\System32\Drivers\serenum.sys.bak [17920] O44 - LFC:[MD5.9F976E1EB233DF46FCE808D9DEA3EB9C] - 10/01/2014 - 15:45:15 ---A- . (.Microsoft Corporation - Small Form Factor Disk Driver.) -- C:\Windows\System32\Drivers\sffdisk.sys.bak [11264] O44 - LFC:[MD5.932A68EE27833CFD57C1639D375F2731] - 10/01/2014 - 15:45:15 ---A- . (.Microsoft Corporation - Small Form Factor MMC Protocol Driver.) -- C:\Windows\System32\Drivers\sffp_mmc.sys.bak [12288] O44 - LFC:[MD5.6D4CCAEDC018F1CF52866BBBAA235982] - 10/01/2014 - 15:45:15 ---A- . (.Microsoft Corporation - Small Form Factor SD Protocol Driver.) -- C:\Windows\System32\Drivers\sffp_sd.sys.bak [12800] O44 - LFC:[MD5.DB96666CC8312EBC45032F30B007A547] - 10/01/2014 - 15:45:16 ---A- . (.Microsoft Corporation - SCSI Floppy Driver.) -- C:\Windows\System32\Drivers\sfloppy.sys.bak [13824] O44 - LFC:[MD5.2565CAC0DC9FE0371BDCE60832582B2E] - 10/01/2014 - 15:45:16 ---A- . (.Microsoft Corporation - SIS NT AGP Filter.) -- C:\Windows\System32\Drivers\SISAGP.SYS.bak [52304] O44 - LFC:[MD5.3E21C083B8A01CB70BA1F09303010FCE] - 10/01/2014 - 15:45:16 ---A- . (.Microsoft Corporation - SMB Transport driver.) -- C:\Windows\System32\Drivers\smb.sys.bak [71168] O44 - LFC:[MD5.2E467E6CA8E0A140C08011844C0D3936] - 10/01/2014 - 15:45:16 ---A- . (.Microsoft Corporation - Smart Card Driver Library.) -- C:\Windows\System32\Drivers\smclib.sys.bak [17408] O44 - LFC:[MD5.3727097B55738E2F554972C3BE5BC1AA] - 10/01/2014 - 15:45:16 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid4.sys.bak [77888] O44 - LFC:[MD5.A9F0486851BECB6DDA1D89D381E71055] - 10/01/2014 - 15:45:16 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid2.sys.bak [40016] O44 - LFC:[MD5.BE6BD660CAA6F291AE06A718A4FA8ABC] - 10/01/2014 - 15:45:17 ---A- . (.Microsoft Corporation - Server Network driver.) -- C:\Windows\System32\Drivers\srvnet.sys.bak [114688] O44 - LFC:[MD5.E4C2764065D66EA1D2D3EBC28FE99C46] - 10/01/2014 - 15:45:17 ---A- . (.Microsoft Corporation - Server driver.) -- C:\Windows\System32\Drivers\srv.sys.bak [311808] O44 - LFC:[MD5.03F0545BD8D4C77FA0AE1CEEDFCC71AB] - 10/01/2014 - 15:45:17 ---A- . (.Microsoft Corporation - Smb 2.0 Server driver.) -- C:\Windows\System32\Drivers\srv2.sys.bak [310272] O44 - LFC:[MD5.95CF1AE7527FB70F7816563CBC09D942] - 10/01/2014 - 15:45:17 ---A- . (.Microsoft Corporation - loader for security processor.) -- C:\Windows\System32\Drivers\spldr.sys.bak [17472] O44 - LFC:[MD5.D16D818E9930A6E5B4F6476DD0998D1A] - 10/01/2014 - 15:45:17 ---A- . (.Microsoft Corporation - security processor.) -- C:\Windows\System32\Drivers\spsys.sys.bak [405504] O44 - LFC:[MD5.DB32D325C192B801DF274BFD12A7E72B] - 10/01/2014 - 15:45:17 ---A- . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\Drivers\stexstor.sys.bak [21072] O44 - LFC:[MD5.EF3D32464EBBB10449465C8CAB57CA19] - 10/01/2014 - 15:45:18 ---A- . (.Microsoft Corporation - Microsoft Storage Port Driver.) -- C:\Windows\System32\Drivers\storport.sys.bak [148864] O44 - LFC:[MD5.E58C78A848ADD9610A4DB6D214AF5224] - 10/01/2014 - 15:45:18 ---A- . (.Microsoft Corporation - Plug and Play Software Device Enumerator.) -- C:\Windows\System32\Drivers\swenum.sys.bak [12240] O44 - LFC:[MD5.949C35BF4AE6C110A924AB5E2175DDA7] - 10/01/2014 - 15:45:18 ---A- . (.Microsoft Corporation - SCSI Tape Class Driver.) -- C:\Windows\System32\Drivers\tape.sys.bak [24576] O44 - LFC:[MD5.DCAFFD62259E0BDB433DD67B5BB37619] - 10/01/2014 - 15:45:18 ---A- . (.Microsoft Corporation - Storage VSC Driver.) -- C:\Windows\System32\Drivers\storvsc.sys.bak [28032] O44 - LFC:[MD5.CA59F7C570AF70BC174F477CFE2D9EE3] - 10/01/2014 - 15:45:18 ---A- . (.Microsoft Corporation - TCP/IP Driver.) -- C:\Windows\System32\Drivers\tcpip.sys.bak [1294272] O44 - LFC:[MD5.45B44FC9E5AC0DB02B19D515EE809DE5] - 10/01/2014 - 15:45:18 ---A- . (.Microsoft Corporation - WDM CODEC Class Device Driver 2.0.) -- C:\Windows\System32\Drivers\stream.sys.bak [53632] O44 - LFC:[MD5.1CB91B2BD8F6DD367DFC2EF26FD751B2] - 10/01/2014 - 15:45:19 ---A- . (.Microsoft Corporation - Named Pipe Transport Driver.) -- C:\Windows\System32\Drivers\tdpipe.sys.bak [18432] O44 - LFC:[MD5.2C2C5AFE7EE4F620D69C23C0617651A8] - 10/01/2014 - 15:45:19 ---A- . (.Microsoft Corporation - TCP Transport Driver.) -- C:\Windows\System32\Drivers\tdtcp.sys.bak [24576] O44 - LFC:[MD5.3EEBD3BD93DA46A26E89893C7AB2FF3B] - 10/01/2014 - 15:45:19 ---A- . (.Microsoft Corporation - TCP/IP Registry Compatibility Driver.) -- C:\Windows\System32\Drivers\tcpipreg.sys.bak [35328] O44 - LFC:[MD5.B459575348C20E8121D6039DA063C704] - 10/01/2014 - 15:45:19 ---A- . (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\Drivers\tdx.sys.bak [74752] O44 - LFC:[MD5.2F885864D5BC8A16C86BEE595969A48A] - 10/01/2014 - 15:45:19 ---A- . (.Microsoft Corporation - TDI Wrapper.) -- C:\Windows\System32\Drivers\tdi.sys.bak [21504] O44 - LFC:[MD5.130AFD0E373F22A6320B60FEBB7E8D56] - 10/01/2014 - 15:45:20 ---A- . (.BitDefender S.R.L. - Trufos Kernel Module.) -- C:\Windows\System32\Drivers\trufos.sys.bak [360376] O44 - LFC:[MD5.750FBCB269F4D7DD2E420C56B795DB6D] - 10/01/2014 - 15:45:20 ---A- . (.Microsoft Corporation - MS AGPv3.5 Filter.) -- C:\Windows\System32\Drivers\UAGP35.SYS.bak [55888] O44 - LFC:[MD5.B2FA25D9B17A68BB93D58B0556E8C90D] - 10/01/2014 - 15:45:20 ---A- . (.Microsoft Corporation - Microsoft Tunnel Interface Driver.) -- C:\Windows\System32\Drivers\tunnel.sys.bak [108544] O44 - LFC:[MD5.04DBF4B01EA4BF25A9A3E84AFFAC9B20] - 10/01/2014 - 15:45:20 ---A- . (.Microsoft Corporation - Remote Desktop Server Driver.) -- C:\Windows\System32\Drivers\termdd.sys.bak [53120] O44 - LFC:[MD5.FD1D6C73E6333BE727CBCC6054247654] - 10/01/2014 - 15:45:20 ---A- . (.Microsoft Corporation - Remote Desktop USB Hub Filter Driver.) -- C:\Windows\System32\Drivers\TsUsbFlt.sys.bak [52224] O44 - LFC:[MD5.B37B08F2E5EEB1A37E448E09BACE1101] - 10/01/2014 - 15:45:20 ---A- . (.Microsoft Corporation - TS Security Filter Driver.) -- C:\Windows\System32\Drivers\tssecsrv.sys.bak [31232] O44 - LFC:[MD5.EE43346C7E4B5E63E54F927BABBB32FF] - 10/01/2014 - 15:45:20 ---A- . (.Microsoft Corporation - UDF File System Driver.) -- C:\Windows\System32\Drivers\udfs.sys.bak [246784] O44 - LFC:[MD5.6E421CCC57059B0186C6259CA3B6DFC9] - 10/01/2014 - 15:45:21 ---A- . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\Windows\System32\Drivers\usbaapl.sys.bak [45056] O44 - LFC:[MD5.7550AD0C6998BA1CB4843E920EE0FEAC] - 10/01/2014 - 15:45:21 ---A- . (.Microsoft Corporation - Generic pass-through driver.) -- C:\Windows\System32\Drivers\umpass.sys.bak [8192] O44 - LFC:[MD5.FE8A57C8E04EDD3AA8ADD8F3C8F65297] - 10/01/2014 - 15:45:21 ---A- . (.Microsoft Corporation - Remote NDIS USB Driver.) -- C:\Windows\System32\Drivers\usb8023.sys.bak [15872] O44 - LFC:[MD5.44E8048ACE47BEFBFDC2E9BE4CBC8880] - 10/01/2014 - 15:45:21 ---A- . (.Microsoft Corporation - ULi AGPv3.0 Filter for K8/9 Processor Platf.) -- C:\Windows\System32\Drivers\ULIAGPKX.SYS.bak [57424] O44 - LFC:[MD5.A1977C315BF5691DA99235AA4A6907AF] - 10/01/2014 - 15:45:21 ---A- . (.Microsoft Corporation - USB Audio Class Driver.) -- C:\Windows\System32\Drivers\USBAUDIO.sys.bak [80896] O44 - LFC:[MD5.D295BED4B898F0FD999FCFA9B32B071B] - 10/01/2014 - 15:45:21 ---A- . (.Microsoft Corporation - User-Mode Bus Enumerator.) -- C:\Windows\System32\Drivers\umbus.sys.bak [39936] O44 - LFC:[MD5.C4FB8E7ADEA9B5CEEA885A1B504B7E40] - 10/01/2014 - 15:45:22 ---A- . (.Microsoft Corporation - EHCI eUSB Miniport Driver.) -- C:\Windows\System32\Drivers\usbehci.sys.bak [43008] O44 - LFC:[MD5.71D97F1A3CC47A56728F7A400A3F8295] - 10/01/2014 - 15:45:22 ---A- . (.Microsoft Corporation - USB Common Class Generic Parent Driver.) -- C:\Windows\System32\Drivers\usbccgp.sys.bak [76288] O44 - LFC:[MD5.2352AB5F9F8F097BF9D41D5A4718A041] - 10/01/2014 - 15:45:22 ---A- . (.Microsoft Corporation - USB Consumer IR Driver for eHome.) -- C:\Windows\System32\Drivers\usbcir.sys.bak [86016] O44 - LFC:[MD5.FD82D2B38C465A55C527E339BA1201B1] - 10/01/2014 - 15:45:22 ---A- . (.Microsoft Corporation - Universal Serial Bus Camera Driver.) -- C:\Windows\System32\Drivers\USBCAMD.sys.bak [25856] O44 - LFC:[MD5.E071E5BE621FEC4590117C488A78AE32] - 10/01/2014 - 15:45:22 ---A- . (.Microsoft Corporation - Universal Serial Bus Camera Driver.) -- C:\Windows\System32\Drivers\USBCAMD2.sys.bak [25856] O44 - LFC:[MD5.6FB17D7A2E76B838886E5E8C60239DAE] - 10/01/2014 - 15:45:22 ---A- . (.Microsoft Corporation - Universal Serial Bus Driver.) -- C:\Windows\System32\Drivers\usbd.sys.bak [6016] O44 - LFC:[MD5.86AA95ACB611001E26CD2C0145F2225A] - 10/01/2014 - 15:45:23 ---A- . (.Microsoft Corporation - Default Hub Driver for USB.) -- C:\Windows\System32\Drivers\usbhub.sys.bak [258560] O44 - LFC:[MD5.DCDF9855145A14DFCA0AB32308871961] - 10/01/2014 - 15:45:23 ---A- . (.Microsoft Corporation - OHCI USB Miniport Driver.) -- C:\Windows\System32\Drivers\usbohci.sys.bak [20480] O44 - LFC:[MD5.FDA6F2BB7FA034D95863ED8788B4E416] - 10/01/2014 - 15:45:23 ---A- . (.Microsoft Corporation - USB 1.1 & 2.0 Port Driver.) -- C:\Windows\System32\Drivers\usbport.sys.bak [284672] O44 - LFC:[MD5.797D862FE0875E75C7CC4C1AD7B30252] - 10/01/2014 - 15:45:23 ---A- . (.Microsoft Corporation - USB Printer driver.) -- C:\Windows\System32\Drivers\usbprint.sys.bak [19968] O44 - LFC:[MD5.FC6B21DB4B5B398AB93DBE59CBF11036] - 10/01/2014 - 15:45:23 ---A- . (.Microsoft Corporation - USB Scanner Driver.) -- C:\Windows\System32\Drivers\usbscan.sys.bak [36352] O44 - LFC:[MD5.1A078C3FE1C1F9C8561CD600C69AD300] - 10/01/2014 - 15:45:23 ---A- . (.Microsoft Corporation - Windows USB Redirection Policy Manager.) -- C:\Windows\System32\Drivers\usbrpm.sys.bak [26112] O44 - LFC:[MD5.8E51D04175BAA14C4F79AA5F6D248770] - 10/01/2014 - 15:45:24 ---A- . (.Microsoft Corporation - UHCI USB Miniport Driver.) -- C:\Windows\System32\Drivers\usbuhci.sys.bak [24064] O44 - LFC:[MD5.F991AB9CC6B908DB552166768176896A] - 10/01/2014 - 15:45:24 ---A- . (.Microsoft Corporation - USB Mass Storage Class Driver.) -- C:\Windows\System32\Drivers\USBSTOR.SYS.bak [76288] O44 - LFC:[MD5.8E38096AD5C8570A6F1570A61E251561] - 10/01/2014 - 15:45:24 ---A- . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys.bak [25088] O44 - LFC:[MD5.17C408214EA61696CEC9C66E388B14F3] - 10/01/2014 - 15:45:24 ---A- . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vgapnp.sys.bak [26112] O44 - LFC:[MD5.5461686CCA2FDA57B024547733AB42E3] - 10/01/2014 - 15:45:24 ---A- . (.Microsoft Corporation - VHD Miniport Driver.) -- C:\Windows\System32\Drivers\vhdmp.sys.bak [160128] O44 - LFC:[MD5.C829317A37B4BEA8F39735D4B076E923] - 10/01/2014 - 15:45:24 ---A- . (.Microsoft Corporation - VIA NT AGP Filter.) -- C:\Windows\System32\Drivers\VIAAGP.SYS.bak [53328] O44 - LFC:[MD5.A059C4C3EDB09E07D21A8E5C0AABD3CB] - 10/01/2014 - 15:45:24 ---A- . (.Microsoft Corporation - Virtual Drive Root Enumerator.) -- C:\Windows\System32\Drivers\vdrvroot.sys.bak [32832] O44 - LFC:[MD5.7FA7F2E249A5DCBB7970630E15E1F482] - 10/01/2014 - 15:45:25 ---A- . (.Microsoft Corporation - Microsoft S3 Emulated Device Cap Driver.) -- C:\Windows\System32\Drivers\vms3cap.sys.bak [5632] O44 - LFC:[MD5.D4D77455211E204F370D08F4963063CE] - 10/01/2014 - 15:45:25 ---A- . (.Microsoft Corporation - Microsoft VMBus HID Miniport.) -- C:\Windows\System32\Drivers\VMBusHID.sys.bak [17920] O44 - LFC:[MD5.E02F079A6AA107F06B16549C6E5C7B74] - 10/01/2014 - 15:45:25 ---A- . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\Drivers\viac7.sys.bak [52736] O44 - LFC:[MD5.15C126D1B55814B9E5CAB10A9C1F4C67] - 10/01/2014 - 15:45:25 ---A- . (.Microsoft Corporation - Video Port Driver.) -- C:\Windows\System32\Drivers\videoprt.sys.bak [111616] O44 - LFC:[MD5.C2F2911156FDC7817C52829C86DA494E] - 10/01/2014 - 15:45:25 ---A- . (.Microsoft Corporation - Virtual Machine Bus.) -- C:\Windows\System32\Drivers\vmbus.sys.bak [175360] O44 - LFC:[MD5.E43574F6A56A0EE11809B48C09E4FD3C] - 10/01/2014 - 15:45:25 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\viaide.sys.bak [16976] O44 - LFC:[MD5.472AF0311073DCECEAA8FA18BA2BDF89] - 10/01/2014 - 15:45:26 ---A- . (.Microsoft Corporation - Virtual Storage Filter Driver.) -- C:\Windows\System32\Drivers\vmstorfl.sys.bak [40704] O44 - LFC:[MD5.4C63E00F2F4B5F86AB48A58CD990F212] - 10/01/2014 - 15:45:26 ---A- . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys.bak [53120] O44 - LFC:[MD5.B5BB72067DDDDBBFB04B2F89FF8C3C87] - 10/01/2014 - 15:45:26 ---A- . (.Microsoft Corporation - Volume Manager Extension Driver.) -- C:\Windows\System32\Drivers\volmgrx.sys.bak [297040] O44 - LFC:[MD5.F497F67932C6FA693D7DE2780631CFE7] - 10/01/2014 - 15:45:26 ---A- . (.Microsoft Corporation - Volume Shadow Copy Driver.) -- C:\Windows\System32\Drivers\volsnap.sys.bak [245632] O44 - LFC:[MD5.9DFA0CC2F8855A04816729651175B631] - 10/01/2014 - 15:45:26 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\Drivers\vsmraid.sys.bak [141904] O44 - LFC:[MD5.3C3C78515F5AB448B022BDF5B8FFDD2E] - 10/01/2014 - 15:45:27 ---A- . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) -- C:\Windows\System32\Drivers\wanarp.sys.bak [63488] O44 - LFC:[MD5.1112A9BADACB47B7C0BB0392E3158DFF] - 10/01/2014 - 15:45:27 ---A- . (.Microsoft Corporation - Microsoft Watchdog Timer Driver.) -- C:\Windows\System32\Drivers\wd.sys.bak [19024] O44 - LFC:[MD5.90567B1E658001E79D7C8BBD3DDE5AA6] - 10/01/2014 - 15:45:27 ---A- . (.Microsoft Corporation - Virtual WiFi Bus Driver.) -- C:\Windows\System32\Drivers\vwifibus.sys.bak [19968] O44 - LFC:[MD5.7090D3436EEB4E7DA3373090A23448F7] - 10/01/2014 - 15:45:27 ---A- . (.Microsoft Corporation - Virtual WiFi Filter Driver.) -- C:\Windows\System32\Drivers\vwififlt.sys.bak [48128] O44 - LFC:[MD5.A3F04CBEA6C2A10E6CB01F8B47611882] - 10/01/2014 - 15:45:27 ---A- . (.Microsoft Corporation - Virtual WiFi Miniport Driver.) -- C:\Windows\System32\Drivers\vwifimp.sys.bak [14336] O44 - LFC:[MD5.DE3721E89C653AA281428C8A69745D90] - 10/01/2014 - 15:45:27 ---A- . (.Microsoft Corporation - Wacom Serial Pen Tablet HID Driver.) -- C:\Windows\System32\Drivers\wacompen.sys.bak [21632] O44 - LFC:[MD5.CB45A417C8EF7BA6BAC67EDCDDED8700] - 10/01/2014 - 15:45:27 ---A- . (.Microsoft Corporation - Watchdog Driver.) -- C:\Windows\System32\Drivers\watchdog.sys.bak [35328] O44 - LFC:[MD5.48704647CD2E9DAA2EB81BDE6D029EDB] - 10/01/2014 - 15:45:28 ---A- . (.Microsoft Corporation - Kernel Mode Driver Framework Loader.) -- C:\Windows\System32\Drivers\WdfLdr.sys.bak [47720] O44 - LFC:[MD5.25944D2CC49E0A6C581D02A74B7D6645] - 10/01/2014 - 15:45:28 ---A- . (.Microsoft Corporation - Kernel Mode Driver Framework Runtime.) -- C:\Windows\System32\Drivers\Wdf01000.sys.bak [527064] O44 - LFC:[MD5.8B9A943F3B53861F2BFAF6C186168F79] - 10/01/2014 - 15:45:28 ---A- . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) -- C:\Windows\System32\Drivers\wfplwf.sys.bak [9728] O44 - LFC:[MD5.5CF95B35E59E2A38023836FFF31BE64C] - 10/01/2014 - 15:45:28 ---A- . (.Microsoft Corporation - Wim file system Driver.) -- C:\Windows\System32\Drivers\wimmount.sys.bak [19008] O44 - LFC:[MD5.62BA4FDCA65BDB69695E0D1157C57717] - 10/01/2014 - 15:45:28 ---A- . (.Microsoft Corporation - Windows Hypervisor Interface Driver.) -- C:\Windows\System32\Drivers\winhv.sys.bak [43392] O44 - LFC:[MD5.A67E5F9A400F3BD1BE3D80613B45F708] - 10/01/2014 - 15:45:28 ---A- . (.Microsoft Corporation - Windows USB Class Driver BETA.) -- C:\Windows\System32\Drivers\winusb.sys.bak [35968] O44 - LFC:[MD5.9A5B1059FE015DB5269FBB25ACBF841D] - 10/01/2014 - 15:45:29 ---A- . (.Microsoft Corporation - WMILIB WMI support library Dll.) -- C:\Windows\System32\Drivers\wmilib.sys.bak [14912] O44 - LFC:[MD5.06E6F32C8D0A3F66D956F57B43A2E070] - 10/01/2014 - 15:45:29 ---A- . (.Microsoft Corporation - Windows Driver Foundation - User-mode Drive.) -- C:\Windows\System32\Drivers\WUDFPf.sys.bak [66560] O44 - LFC:[MD5.867C301E8B790040AE9CF6486E8041DF] - 10/01/2014 - 15:45:29 ---A- . (.Microsoft Corporation - Windows Driver Foundation - User-mode Drive.) -- C:\Windows\System32\Drivers\WUDFRd.sys.bak [155136] O44 - LFC:[MD5.0217679B8FCA58714C3BF2726D2CA84E] - 10/01/2014 - 15:45:29 ---A- . (.Microsoft Corporation - Windows Management Interface for ACPI.) -- C:\Windows\System32\Drivers\wmiacpi.sys.bak [11264] O44 - LFC:[MD5.6DB3276587B853BF886B69528FDB048C] - 10/01/2014 - 15:45:29 ---A- . (.Microsoft Corporation - Winsock2 IFS Layer.) -- C:\Windows\System32\Drivers\ws2ifsl.sys.bak [16384] O44 - LFC:[MD5.7AF1247231509C62FE66DE88E483B810] - 11/01/2014 - 07:56:50 ---A- . (...) -- C:\Windows\System32\spsys.log [296] O44 - LFC:[MD5.EB4B7D10B312CEB7DFAB6C45D6EA7696] - 11/01/2014 - 07:57:24 --HA- . (...) -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0.bak [25424] O44 - LFC:[MD5.EB4B7D10B312CEB7DFAB6C45D6EA7696] - 11/01/2014 - 07:57:59 --HA- . (...) -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0.bak [25424] O44 - LFC:[MD5.EF1689081813A60D4610FF429530BA36] - 11/01/2014 - 11:04:44 ---A- . (.Microsoft Corporation - Client ActiveX des services Bureau à distan.) -- C:\Windows\System32\mstscax.dll [4916224] O44 - LFC:[MD5.E6446AB7A7E602CAFF51ACA3C68C1526] - 11/01/2014 - 11:04:44 ---A- . (.Microsoft Corporation - Client avec accès à distance.) -- C:\Windows\System32\aaclient.dll [269312] O44 - LFC:[MD5.A9D4140B8B843D5719F7C3EED8C0F9FD] - 11/01/2014 - 11:04:44 ---A- . (.Microsoft Corporation - Client de contrainte de quarantaine de la p.) -- C:\Windows\System32\tsgqec.dll [37376] O44 - LFC:[MD5.235B7E30D5B48A3B769C00DA166F080B] - 11/01/2014 - 11:04:44 ---A- . (.Microsoft Corporation - Co-installateur de pilote USB générique du.) -- C:\Windows\System32\TsUsbGDCoInstaller.dll [32768] O44 - LFC:[MD5.40FF6C636380A87DE3A99F4E348BFDCB] - 11/01/2014 - 11:04:44 ---A- . (.Microsoft Corporation - Connexion Bureau à distance.) -- C:\Windows\System32\mstsc.exe [1048064] O44 - LFC:[MD5.AC3598BD1101BBC4365994BAB093BB62] - 11/01/2014 - 11:04:44 ---A- . (.Microsoft Corporation - DLL RDPCore TS.) -- C:\Windows\System32\rdpcorets.dll [2739712] O44 - LFC:[MD5.3F853160DEE5B71B9AD2F1BAF2B1E55B] - 11/01/2014 - 11:04:44 ---A- . (.Microsoft Corporation - Microsoft Remote Desktop Services Web Acces.) -- C:\Windows\System32\MsRdpWebAccess.dll [46592] O44 - LFC:[MD5.321BE3A2C87206B0C85ECD4FA4EBBF54] - 11/01/2014 - 11:04:44 ---A- . (.Microsoft Corporation - Microsoft Remote Desktop Services Web Proxy.) -- C:\Windows\System32\TSWbPrxy.exe [56320] O44 - LFC:[MD5.8999F18D38D55E34D356796507FFD639] - 11/01/2014 - 11:04:44 ---A- . (.Microsoft Corporation - Point de terminaison audio RDP.) -- C:\Windows\System32\rdpendp_winip.dll [192000] O44 - LFC:[MD5.C551B35F71CA76C88112966238821105] - 11/01/2014 - 11:04:44 ---A- . (.Microsoft Corporation - Runtime de connexion RemoteApp et Bureau à.) -- C:\Windows\System32\wksprt.exe [317440] O44 - LFC:[MD5.3228AB5F8652EAABFF3C5FC7FD0F603A] - 11/01/2014 - 11:04:44 ---A- . (.Microsoft Corporation - UMRDP Display Driver.) -- C:\Windows\System32\rdpudd.dll [221184] O44 - LFC:[MD5.D3F64318307CEC05CBDE533D99976532] - 11/01/2014 - 11:04:44 ---A- . (.Microsoft Corporation - WorkspaceRuntime ProxyStub DLL.) -- C:\Windows\System32\wksprtPS.dll [16896] O44 - LFC:[MD5.9CE253214ACAA5A7D323327D2055EFAA] - 11/01/2014 - 11:04:49 ---A- . (.Microsoft Corporation - Pilote de filtre pour concentrateur USB du.) -- C:\Windows\System32\Drivers\TsUsbFlt.sys [49664] O44 - LFC:[MD5.D3A08BA0A5C9CA61A10A8EB81C176692] - 11/01/2014 - 11:04:52 ---A- . (.Microsoft Corporation - Extension de stratégie de groupe pour la re.) -- C:\Windows\System32\TsUsbRedirectionGroupPolicyExtension.dll [13312] O44 - LFC:[MD5.A86F5616EACB7155998011CEFFFB52F6] - 11/01/2014 - 11:04:52 ---A- . (.Microsoft Corporation - Remote Desktop Protocol Group Policy Extens.) -- C:\Windows\System32\RdpGroupPolicyExtension.dll [12800] O44 - LFC:[MD5.65375DF758CA1872AB7EBBBA457FD5E6] - 11/01/2014 - 11:04:55 ---A- . (.Microsoft Corporation - Microsoft RDP Video Miniport driver.) -- C:\Windows\System32\Drivers\rdpvideominiport.sys [14848] O44 - LFC:[MD5.18C48414627F5F1C57A8C7CA815E75BD] - 11/01/2014 - 11:04:56 ---A- . (.Microsoft Corporation - Remote Desktop USB Redirection GP Extension.) -- C:\Windows\System32\TsUsbRedirectionGroupPolicyControl.exe [12288] O44 - LFC:[MD5.14EA85B4C79B655C229D3596342A833A] - 11/01/2014 - 18:34:30 ---A- . (.Malwarebytes Corporation - Malwarebytes Chameleon Protection Driver.) -- C:\Windows\System32\Drivers\mbamchameleon.sys [74456] O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 12/01/2014 - 16:25:07 ---A- . (...) -- C:\Windows\setuperr.log [0] O44 - LFC:[MD5.EDB14CFFF86770E92FA1763A325A01A4] - 13/01/2014 - 16:50:58 ---A- . (...) -- C:\PhysicalDisk0_MBR.bin [512] O44 - LFC:[MD5.3B5CA8EB6748D234F117AB203491F6F9] - 14/01/2014 - 11:42:21 ---A- . (.BitDefender LLC - BitDefender Gonzales FileSystem Driver.) -- C:\Windows\System32\Drivers\gzflt.sys [165744] O44 - LFC:[MD5.130AFD0E373F22A6320B60FEBB7E8D56] - 14/01/2014 - 11:42:22 ---A- . (.BitDefender S.R.L. - Trufos Kernel Module.) -- C:\Windows\System32\Drivers\trufos.sys [360376] O44 - LFC:[MD5.A079A731323A07DB86FE4E46B9FB9605] - 14/01/2014 - 11:42:25 --HA- . (...) -- C:\bdr-im01.gz [36728084] O44 - LFC:[MD5.D1A861DE33CAB5B477E3BB7AA7FDD5B7] - 14/01/2014 - 11:42:26 --HA- . (...) -- C:\bdr-bz01 [2294848] O44 - LFC:[MD5.927D1EF1B3DC3479B433F00FE80041BA] - 14/01/2014 - 11:45:21 --HA- . (...) -- C:\bdr-cf01 [308] O44 - LFC:[MD5.8E83A0EAB3AD8599EA4CC21F18564B2D] - 14/01/2014 - 11:45:21 --HA- . (...) -- C:\bdr-ld01 [253404] O44 - LFC:[MD5.0F6AA65A6E1037C915DD38A8109ACAFE] - 14/01/2014 - 11:45:21 --HA- . (...) -- C:\bdr-ld01.mbr [9216] O44 - LFC:[MD5.715CE958C22FAE434C3C5D3653B8D2D2] - 14/01/2014 - 11:46:11 ---A- . (...) -- C:\Windows\PFRO.log [668] O44 - LFC:[MD5.EDF2DF71C4F1E13A6AC75F5224DE655A] - 15/01/2014 - 08:18:17 ---A- . (.Microsoft Corporation - Default Hub Driver for USB.) -- C:\Windows\System32\Drivers\usbhub.sys [258560] O44 - LFC:[MD5.9828C8D14CC2676421778F0DE638CF97] - 15/01/2014 - 08:18:17 ---A- . (.Microsoft Corporation - OHCI USB Miniport Driver.) -- C:\Windows\System32\Drivers\usbohci.sys [20480] O44 - LFC:[MD5.800AABFD625EEFF899F7E5496BDE37AB] - 15/01/2014 - 08:18:17 ---A- . (.Microsoft Corporation - UHCI USB Miniport Driver.) -- C:\Windows\System32\Drivers\usbuhci.sys [24064] O44 - LFC:[MD5.0803FBA9FE829D61AE26EC0BCC910C46] - 15/01/2014 - 08:18:17 ---A- . (.Microsoft Corporation - USB Common Class Generic Parent Driver.) -- C:\Windows\System32\Drivers\usbccgp.sys [76288] O44 - LFC:[MD5.74F805AB12EB0E3E49E469F19FF02640] - 15/01/2014 - 08:18:17 ---A- . (.Microsoft Corporation - Universal Serial Bus Driver.) -- C:\Windows\System32\Drivers\usbd.sys [6016] O44 - LFC:[MD5.D40855F89B69305140BBD7E9A3BA2DA6] - 15/01/2014 - 08:18:18 ---A- . (.Microsoft Corporation - EHCI eUSB Miniport Driver.) -- C:\Windows\System32\Drivers\usbehci.sys [43520] O44 - LFC:[MD5.EC2C5AF37B76D7B58C642CB74423DB7A] - 15/01/2014 - 08:18:18 ---A- . (.Microsoft Corporation - Pilote de port USB 1.1 & 2.0.) -- C:\Windows\System32\Drivers\usbport.sys [284672] O44 - LFC:[MD5.5DBD4F73E2A52FEED61DBAB3752E329C] - 15/01/2014 - 08:18:21 ---A- . (.Microsoft Corporation - Network I/O Subsystem.) -- C:\Windows\System32\Drivers\netio.sys [240576] O44 - LFC:[MD5.1E882889A4314D6DF5DED4F6EC994E72] - 15/01/2014 - 08:18:38 ---A- . (.Microsoft Corporation - Pilote Win32 multi-utilisateurs.) -- C:\Windows\System32\win32k.sys [2349056] O44 - LFC:[MD5.6F29222AF3334831EDA01E5326D60994] - 15/01/2014 - 12:03:12 ---A- . (...) -- C:\Windows\System32\FNTCACHE.DAT [426240] O44 - LFC:[MD5.D5AD6FE415664BFD94384A30AAC5488B] - 15/01/2014 - 14:52:47 ---A- . (.Microsoft Corporation - Outil de suppression de logiciels malveilla.) -- C:\Windows\System32\MRT.exe [83425928] O44 - LFC:[MD5.F44C3B762C2AADAF5984391D8FFD2EE8] - 16/01/2014 - 18:42:43 ---A- . (...) -- C:\bdlog.txt [631016] O44 - LFC:[MD5.89D1660B41DCB802D4E5E327B994BD44] - 17/01/2014 - 08:59:39 -S-A- . (...) -- C:\Windows\bootstat.dat [67584] O44 - LFC:[MD5.B230884CAAE01CD216C1590731841828] - 17/01/2014 - 09:00:18 ---A- . (...) -- C:\Windows\setupact.log [1400] O44 - LFC:[MD5.7BDB209AC423F4F21080EFF3B487BC53] - 17/01/2014 - 09:03:54 ---A- . (...) -- C:\Windows\WindowsUpdate.log [492136] O44 - LFC:[MD5.A1405199385282C99C2185BB8D7031F0] - 17/01/2014 - 09:04:59 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [1867402] O44 - LFC:[MD5.C0F5C3D6763B73775D294725D9D1CD85] - 17/01/2014 - 09:04:59 ---A- . (...) -- C:\Windows\System32\perfc009.dat [149226] O44 - LFC:[MD5.AC9647063ABD2DAED3425490C17E7409] - 17/01/2014 - 09:04:59 ---A- . (...) -- C:\Windows\System32\perfc00C.dat [182334] O44 - LFC:[MD5.E7C5A35A319B2C3A9F8FA58F19889D72] - 17/01/2014 - 09:04:59 ---A- . (...) -- C:\Windows\System32\perfh009.dat [709064] O44 - LFC:[MD5.EA82F7E136DE88ACAED94412DD5930D3] - 17/01/2014 - 09:04:59 ---A- . (...) -- C:\Windows\System32\perfh00C.dat [827514] ~ Files: 358 Scanned in 00mn 51s ---\\ Derniers fichiers créés dans Windows Prefetcher (O45) O45 - LFCP:[MD5.7EB1FFC6404C2F53E59E75C921DB6C41] - 07/01/2014 - 10:28:03 ---A- - C:\Windows\Prefetch\AgCx_SC1.db.trx O45 - LFCP:[MD5.9E7897D9DDBC29AC7B29FD15755DD48D] - 07/01/2014 - 10:29:03 ---A- - C:\Windows\Prefetch\AgCx_SC1.db O45 - LFCP:[MD5.EF7FA561E2630D64751C87E820964E79] - 13/01/2014 - 09:59:32 ---A- - C:\Windows\Prefetch\NTOSBOOT-B00DFAAD.pf O45 - LFCP:[MD5.2DA8E28AA7CE5A79851B06F0FCEA5731] - 13/01/2014 - 11:03:23 ---A- - C:\Windows\Prefetch\GOOGLEUPDATE.EXE-B34D0BF2.pf O45 - LFCP:[MD5.4FC38349FC46C8DFC8197105127B0CA4] - 15/01/2014 - 12:38:30 ---A- - C:\Windows\Prefetch\MAKECAB.EXE-FC3CBE21.pf O45 - LFCP:[MD5.87866A488B1228FB97C2B7B4487CCEC3] - 15/01/2014 - 13:23:09 ---A- - C:\Windows\Prefetch\SETUP.EXE-AC3238A8.pf O45 - LFCP:[MD5.CB470C30FC0A1019D8CE2FDFA1E888A7] - 15/01/2014 - 13:23:19 ---A- - C:\Windows\Prefetch\32.0.1700.76_31.0.1650.63_CHR-C6EFDD75.pf O45 - LFCP:[MD5.07D1506447D8C12FE86AEC7B16E73654] - 15/01/2014 - 13:23:19 ---A- - C:\Windows\Prefetch\SETUP.EXE-4685C492.pf O45 - LFCP:[MD5.5F29E10F477EA673E44382A5F5314918] - 15/01/2014 - 14:10:14 ---A- - C:\Windows\Prefetch\STARTER.EXE-0212FE55.pf O45 - LFCP:[MD5.69493B9242943288BA5B0843307B6261] - 15/01/2014 - 14:11:52 ---A- - C:\Windows\Prefetch\WK.EXE-8574FA86.pf O45 - LFCP:[MD5.D2EF343D0F7F22E8A50249DFD4B4BA99] - 15/01/2014 - 14:18:35 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-AB5C7A9B.pf O45 - LFCP:[MD5.36D82823523210EF52747E096A46A256] - 15/01/2014 - 14:20:11 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-3378DA60.pf O45 - LFCP:[MD5.64ED94A8CA6CD9940D73F81F1C93CDFB] - 15/01/2014 - 14:20:12 ---A- - C:\Windows\Prefetch\ADOBEARM.EXE-368641B4.pf O45 - LFCP:[MD5.7FBBBFA0B84CA016386789BECD43AA9A] - 15/01/2014 - 14:52:19 ---A- - C:\Windows\Prefetch\SECCENTER.EXE-592A6613.pf O45 - LFCP:[MD5.C95B12A506E53F8D02319335276EA7E4] - 15/01/2014 - 14:52:33 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-61AB3437.pf O45 - LFCP:[MD5.4520B3160BE9D798A91D50D5DDFF6241] - 15/01/2014 - 14:52:46 ---A- - C:\Windows\Prefetch\MRTSTUB.EXE-41CD3696.pf O45 - LFCP:[MD5.6A65B16E59BD288ED0F96C8C4ECC3173] - 15/01/2014 - 14:52:51 ---A- - C:\Windows\Prefetch\MRT.EXE-46668014.pf O45 - LFCP:[MD5.BEB870B051E27374120BF36BF673C54B] - 15/01/2014 - 14:52:51 ---A- - C:\Windows\Prefetch\WUAUCLT.EXE-5D573F0E.pf O45 - LFCP:[MD5.B6015525CAC861B10FF4D6F0F79036E3] - 15/01/2014 - 14:52:53 ---A- - C:\Windows\Prefetch\WINDOWS-KB890830-V5.8-DELTA.E-8F977BCB.pf O45 - LFCP:[MD5.36E81023DEA9DD1F305314BBD4144E18] - 15/01/2014 - 15:00:57 ---A- - C:\Windows\Prefetch\NOTEPAD.EXE-C5670914.pf O45 - LFCP:[MD5.A43F978490FC9E3CD8957B060F78A51B] - 15/01/2014 - 15:01:32 ---A- - C:\Windows\Prefetch\SETUP.EXE-6F8E730D.pf O45 - LFCP:[MD5.511B1115EE05EC09200AD7D1C3E3C9B9] - 16/01/2014 - 08:46:30 ---A- - C:\Windows\Prefetch\GOOGLECRASHHANDLER.EXE-55379F30.pf O45 - LFCP:[MD5.B3A424C9D84C1D8C1405A961FBBD471B] - 16/01/2014 - 09:02:07 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-6FD72002.pf O45 - LFCP:[MD5.B3E3CD76F051580AE2CFDE8D00529F3A] - 16/01/2014 - 09:52:02 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-E35AFEC7.pf O45 - LFCP:[MD5.56F996F434A93C3B6395DE356274C661] - 16/01/2014 - 10:00:00 ---A- - C:\Windows\Prefetch\SDCLT.EXE-94EAE077.pf O45 - LFCP:[MD5.15555BDE1A3B31E6D39DDB87A3B298E9] - 16/01/2014 - 10:51:27 ---A- - C:\Windows\Prefetch\OUTLOOK.EXE-768DAFF5.pf O45 - LFCP:[MD5.3EF937B5F26E69627FF016E867C425E4] - 16/01/2014 - 11:20:38 ---A- - C:\Windows\Prefetch\EXCEL.EXE-29EAAC71.pf O45 - LFCP:[MD5.8FA5FCCCBDA155A8D1F20E0E1D837213] - 16/01/2014 - 11:43:06 ---A- - C:\Windows\Prefetch\ODSCANUI.EXE-34CCFC45.pf O45 - LFCP:[MD5.065B5BCCCA4A9CB6F02FB0B87F094631] - 16/01/2014 - 11:46:18 ---A- - C:\Windows\Prefetch\ITUNES.EXE-4FE7BA9B.pf O45 - LFCP:[MD5.2DEDEFB93C95D8D3BB15E32A343A7599] - 16/01/2014 - 11:46:23 ---A- - C:\Windows\Prefetch\WUDFHOST.EXE-DEBBE5F1.pf O45 - LFCP:[MD5.1187DF4041CCBEB86FDD074F0BFD2213] - 16/01/2014 - 11:46:28 ---A- - C:\Windows\Prefetch\APPLEMOBILEDEVICEHELPER.EXE-76F5A864.pf O45 - LFCP:[MD5.FA686D43476C6E2DACFEB9D047972AF9] - 16/01/2014 - 11:46:29 ---A- - C:\Windows\Prefetch\DISTNOTED.EXE-197F878E.pf O45 - LFCP:[MD5.8D6C924BBD7E14654D926693C3228C8D] - 16/01/2014 - 11:46:32 ---A- - C:\Windows\Prefetch\ATH.EXE-C105050B.pf O45 - LFCP:[MD5.D3AADBA29C51BB03EB4B0096086194A3] - 16/01/2014 - 11:46:35 ---A- - C:\Windows\Prefetch\SYNCSERVER.EXE-5517C116.pf O45 - LFCP:[MD5.5B2CCE8815D7BB734888A9513C049E02] - 16/01/2014 - 12:16:39 ---A- - C:\Windows\Prefetch\ILLUSTRATOR.EXE-FF89BE4F.pf O45 - LFCP:[MD5.95C94DBA76D124F10CE8D0A07F2CC5DE] - 16/01/2014 - 12:25:39 ---A- - C:\Windows\Prefetch\IGFXSRVC.EXE-C5618119.pf O45 - LFCP:[MD5.D5E2F243157B79B5EAFF3814FC8FD0A4] - 16/01/2014 - 13:25:33 ---A- - C:\Windows\Prefetch\WINWORD.EXE-276534A6.pf O45 - LFCP:[MD5.519B08D88F99992B48EC9A663774580B] - 16/01/2014 - 13:25:45 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-BB953A25.pf O45 - LFCP:[MD5.ECE63193C5E15075F59DF94CA4ABEA89] - 16/01/2014 - 13:32:46 ---A- - C:\Windows\Prefetch\AUDIODG.EXE-AB22E9A6.pf O45 - LFCP:[MD5.0A5BEA1A473F5531F01F1CE109F03AB2] - 16/01/2014 - 13:51:14 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-DC7F59C0.pf O45 - LFCP:[MD5.95D694047E153F708A016DEBA988526F] - 16/01/2014 - 13:53:19 ---A- - C:\Windows\Prefetch\WERFAULT.EXE-155C56CF.pf O45 - LFCP:[MD5.812796D6EFB1A5E817A1081365AA4D06] - 16/01/2014 - 13:55:43 ---A- - C:\Windows\Prefetch\DEVICEDISPLAYOBJECTPROVIDER.E-D37241ED.pf O45 - LFCP:[MD5.FA29BF74CDB5F65DFE6D6496C3038082] - 16/01/2014 - 13:56:45 ---A- - C:\Windows\Prefetch\SNDVOL.EXE-425BC49B.pf O45 - LFCP:[MD5.68D6668850D6517F04CB8B1C236449AF] - 16/01/2014 - 13:56:54 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-C75E9908.pf O45 - LFCP:[MD5.AD648D36B732C385D43B10B7FFBA24E7] - 16/01/2014 - 13:57:00 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-F3A4139F.pf O45 - LFCP:[MD5.376773E74B880F9159E5B08687D3D2AC] - 16/01/2014 - 13:57:09 ---A- - C:\Windows\Prefetch\DW20.EXE-7D49EFFE.pf O45 - LFCP:[MD5.A452905F729B0D81A1F0E852B5B668BD] - 16/01/2014 - 13:57:26 ---A- - C:\Windows\Prefetch\LOGONUI.EXE-F639BD7E.pf O45 - LFCP:[MD5.4B609B4A18504BF83D83357E3B970A72] - 16/01/2014 - 14:02:19 ---A- - C:\Windows\Prefetch\WMIADAP.EXE-BB21CD77.pf O45 - LFCP:[MD5.BA54A8248C00265BF1B32C12FCFD6FF9] - 16/01/2014 - 14:12:38 ---A- - C:\Windows\Prefetch\WERMGR.EXE-F439C551.pf O45 - LFCP:[MD5.A6BFF4990EA89B87043BF663F52A7ABF] - 16/01/2014 - 14:12:43 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-31898C74.pf O45 - LFCP:[MD5.2C6565E3BE35EB4A6A7B0EA78182CD5C] - 16/01/2014 - 14:14:42 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-BC50C179.pf O45 - LFCP:[MD5.D30B2A33AA8A295BC1E231A191BF45B0] - 16/01/2014 - 14:15:22 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-0D53616E.pf O45 - LFCP:[MD5.BBDFB266A3D1A1A46B97C117FB2069AA] - 16/01/2014 - 15:25:45 ---A- - C:\Windows\Prefetch\PICASAPHOTOVIEWER.EXE-FFC8CFD5.pf O45 - LFCP:[MD5.557777D4F9A2DAC65468A085F5B905BF] - 16/01/2014 - 15:25:55 ---A- - C:\Windows\Prefetch\PICASAUPDATER.EXE-7C1086B2.pf O45 - LFCP:[MD5.2B92AF73987820BEEBE86FF1888FDA1B] - 16/01/2014 - 15:26:03 ---A- - C:\Windows\Prefetch\PICASAUPDATER_69B9.EXE-9E8B93C4.pf O45 - LFCP:[MD5.492541FB666A6C7520762E2115074C3D] - 16/01/2014 - 15:26:08 ---A- - C:\Windows\Prefetch\GOOGLEUPDATERSERVICE.EXE-B29A0C52.pf O45 - LFCP:[MD5.AD7C5A04327484763F72D5999C70D599] - 16/01/2014 - 15:26:09 ---A- - C:\Windows\Prefetch\GOOGLEUPDATERSERVICE.EXE-127C41E3.pf O45 - LFCP:[MD5.2D88D91858F42D56FCBEA75B13186A2F] - 16/01/2014 - 15:26:10 ---A- - C:\Windows\Prefetch\SETUP.EXE-D99DE24B.pf O45 - LFCP:[MD5.817FDD37ACFD12A6E0B74585D84C07DE] - 16/01/2014 - 15:26:11 ---A- - C:\Windows\Prefetch\PICASA3.EXE-40F23A68.pf O45 - LFCP:[MD5.0E573C036D7ED2AD937204AC10B6D2E7] - 16/01/2014 - 15:26:11 ---A- - C:\Windows\Prefetch\PICASAUPDATER_6DB1.EXE-E8E6970C.pf O45 - LFCP:[MD5.DEE3676E89C8DE960CAD27261FF1A1AC] - 16/01/2014 - 15:26:17 ---A- - C:\Windows\Prefetch\GPHOTOS.SCR-FFE71C7F.pf O45 - LFCP:[MD5.C2E9CDFA43FD48E01E6EEE6932111FE6] - 16/01/2014 - 15:26:22 ---A- - C:\Windows\Prefetch\MSIEXEC.EXE-8FFB1633.pf O45 - LFCP:[MD5.F5DC71702914FD99A934DA0F06E79973] - 16/01/2014 - 15:41:01 ---A- - C:\Windows\Prefetch\MSSPELLCHECKINGFACILITY.EXE-2435B712.pf O45 - LFCP:[MD5.7C03B0BD1A611F47AFD5A8B756A6A8C1] - 16/01/2014 - 15:51:37 ---A- - C:\Windows\Prefetch\CHROME.EXE-AED7BA3C.pf O45 - LFCP:[MD5.9E8B91A305C0650E588983769FDFAEB7] - 16/01/2014 - 15:52:48 ---A- - C:\Windows\Prefetch\FLASHUTIL32_11_9_900_170_ACTI-6A37CA9F.pf O45 - LFCP:[MD5.725C98E77F468C5506F6C430FDC0B72E] - 16/01/2014 - 15:53:59 ---A- - C:\Windows\Prefetch\AgRobust.db O45 - LFCP:[MD5.D08A768199034077B6883E020C03542E] - 16/01/2014 - 15:54:00 ---A- - C:\Windows\Prefetch\AgGlFaultHistory.db O45 - LFCP:[MD5.8CE5C2EB70EB18C627F8A0135827EDF9] - 16/01/2014 - 15:54:00 ---A- - C:\Windows\Prefetch\AgGlFgAppHistory.db O45 - LFCP:[MD5.BE77D85475865F3FD21B0F213CD555EB] - 16/01/2014 - 15:54:00 ---A- - C:\Windows\Prefetch\AgGlGlobalHistory.db O45 - LFCP:[MD5.0250A2992DB8CA647898C6CA8D7BBACD] - 16/01/2014 - 15:59:33 ---A- - C:\Windows\Prefetch\HPSCANPDF.EXE-3C93854A.pf O45 - LFCP:[MD5.20383F4EF85A53AD40B210660EADE64F] - 16/01/2014 - 16:00:20 ---A- - C:\Windows\Prefetch\IEXPLORE.EXE-058FE8F5.pf O45 - LFCP:[MD5.DDCBFEAFE1D0C61142770128CF1A3E62] - 16/01/2014 - 16:00:54 ---A- - C:\Windows\Prefetch\ACRORD32.EXE-2921E290.pf O45 - LFCP:[MD5.649BB709FAAE40112D56D7F551422520] - 16/01/2014 - 16:01:22 ---A- - C:\Windows\Prefetch\DPE_OCR.EXE-E303369B.pf O45 - LFCP:[MD5.56DD2E0DF8180FC4D9948359E2D650E7] - 16/01/2014 - 16:01:23 ---A- - C:\Windows\Prefetch\MOBILEMESERVICES.EXE-C451C178.pf O45 - LFCP:[MD5.18D1892DB053A9A70EF9ADDB5C385F98] - 16/01/2014 - 16:01:26 ---A- - C:\Windows\Prefetch\OUTLOOK.EXE-BE7A7BAF.pf O45 - LFCP:[MD5.DEFBADE2AFFF5D644786026C029CF9E7] - 16/01/2014 - 16:11:29 ---A- - C:\Windows\Prefetch\CONTROL.EXE-6EA5489A.pf O45 - LFCP:[MD5.B6DB1383A9F992C293C3D12885A6E77C] - 16/01/2014 - 16:11:29 ---A- - C:\Windows\Prefetch\MSDT.EXE-D579957D.pf O45 - LFCP:[MD5.69DA230A0C87C24801340197DE79E81C] - 16/01/2014 - 16:11:29 ---A- - C:\Windows\Prefetch\SDIAGNHOST.EXE-B3171AA1.pf O45 - LFCP:[MD5.CDCCD66110B361FF4729DFA813F9E6D1] - 16/01/2014 - 16:11:34 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-577C6FE3.pf O45 - LFCP:[MD5.582EA4C853F8B30974DFA16CD02D3D66] - 16/01/2014 - 16:48:04 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-51CCB287.pf O45 - LFCP:[MD5.8E03D25C3C7DC200F945CE417DB9CD3C] - 16/01/2014 - 16:48:13 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-6A249820.pf O45 - LFCP:[MD5.28739BE278959D048DC626F28A4C2456] - 16/01/2014 - 16:48:13 ---A- - C:\Windows\Prefetch\VSSVC.EXE-6C8F0C66.pf O45 - LFCP:[MD5.E618414666F2D07AB74B20694D782772] - 16/01/2014 - 18:27:00 ---A- - C:\Windows\Prefetch\FLASHPLAYERUPDATESERVICE.EXE-CC69B9EE.pf O45 - LFCP:[MD5.412BE0BA040A75A5DAD3D1B188F4EF23] - 16/01/2014 - 18:29:01 ---A- - C:\Windows\Prefetch\INSTALLER.EXE-A146F957.pf O45 - LFCP:[MD5.52AAFA8DFA70A3E6D5FA91C4F74E3D5B] - 16/01/2014 - 18:33:08 ---A- - C:\Windows\Prefetch\AgGlUAD_P_S-1-5-21-2671117400-3108136850-848238817-1000.db O45 - LFCP:[MD5.6DB5C610C176DE881BC60E6B14A9C761] - 16/01/2014 - 18:33:08 ---A- - C:\Windows\Prefetch\AgGlUAD_S-1-5-21-2671117400-3108136850-848238817-1000.db O45 - LFCP:[MD5.AE65E807675062C7B7D82D9B2EC104BA] - 16/01/2014 - 18:41:30 ---A- - C:\Windows\Prefetch\Layout.ini O45 - LFCP:[MD5.E1539876F4A38A27A7042E2EE8277C0F] - 16/01/2014 - 18:42:43 ---A- - C:\Windows\Prefetch\PfSvPerfStats.bin O45 - LFCP:[MD5.19EDD7B46B77006528B2773DC207052B] - 17/01/2014 - 09:02:22 ---A- - C:\Windows\Prefetch\MSCORSVW.EXE-8CE1A322.pf O45 - LFCP:[MD5.CCD99D1C821A2EB588B97D4FF6F9B281] - 17/01/2014 - 09:02:23 ---A- - C:\Windows\Prefetch\GOOGLEUPDATE.EXE-737A6CD7.pf O45 - LFCP:[MD5.3078AC1D63260DED4A824A1511DA46CD] - 17/01/2014 - 09:02:33 ---A- - C:\Windows\Prefetch\SPPSVC.EXE-96070FE0.pf O45 - LFCP:[MD5.516FB05CD3306E138B0D45B6AC0C6E97] - 17/01/2014 - 09:02:35 ---A- - C:\Windows\Prefetch\SEARCHINDEXER.EXE-1CF42BC6.pf O45 - LFCP:[MD5.E1DC59561F5155F3D42BED1C14DA3DB3] - 17/01/2014 - 09:03:24 ---A- - C:\Windows\Prefetch\WMIPRVSE.EXE-E8B8DD29.pf O45 - LFCP:[MD5.DBB613B125B5E86720C5094FCBA5E4D5] - 17/01/2014 - 09:03:27 ---A- - C:\Windows\Prefetch\TRUSTEDINSTALLER.EXE-766EFF52.pf O45 - LFCP:[MD5.0BEAF912BF5D7CF08B7BD771CD6EA5D4] - 17/01/2014 - 09:04:15 ---A- - C:\Windows\Prefetch\ATBROKER.EXE-5CD29207.pf O45 - LFCP:[MD5.0593B0D74318377893D882F1A848A78B] - 17/01/2014 - 09:04:15 ---A- - C:\Windows\Prefetch\EFSUI.EXE-46C27389.pf O45 - LFCP:[MD5.D8A7073CE5D2190185EE3F0BF7C3C1C9] - 17/01/2014 - 09:04:16 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-A0F5E092.pf O45 - LFCP:[MD5.5278F9106F7E80147D97164A2A0C4853] - 17/01/2014 - 09:04:17 ---A- - C:\Windows\Prefetch\GROOVEMONITOR.EXE-164575AE.pf O45 - LFCP:[MD5.5059CA9702248C8D287C644AE269E982] - 17/01/2014 - 09:04:17 ---A- - C:\Windows\Prefetch\IGFXTRAY.EXE-F30110F3.pf O45 - LFCP:[MD5.512DFCBD09CCD1459C71A962C44FAD16] - 17/01/2014 - 09:04:20 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-6389524F.pf O45 - LFCP:[MD5.442231B6E8DC846F272C92D09B5D825E] - 17/01/2014 - 09:04:25 ---A- - C:\Windows\Prefetch\DWM.EXE-314E93C5.pf O45 - LFCP:[MD5.E8E22CB5897CAEF2D2A3BA754E3D82B1] - 17/01/2014 - 09:04:25 ---A- - C:\Windows\Prefetch\USERINIT.EXE-5114915C.pf O45 - LFCP:[MD5.A64C9D354C8A55A0DAEA4C0A6E6EA193] - 17/01/2014 - 09:04:26 ---A- - C:\Windows\Prefetch\CSC.EXE-F8803EEA.pf O45 - LFCP:[MD5.0D01AE1823B04178E6B75F54DF9E41F4] - 17/01/2014 - 09:04:26 ---A- - C:\Windows\Prefetch\EXPLORER.EXE-D5E97654.pf O45 - LFCP:[MD5.3308AF97FC9DD9EF5B765A7C9E201624] - 17/01/2014 - 09:04:26 ---A- - C:\Windows\Prefetch\HPTLBXFX.EXE-3FB821E9.pf O45 - LFCP:[MD5.4710D434B8B93A0B0EFC9AF6B51EC519] - 17/01/2014 - 09:04:26 ---A- - C:\Windows\Prefetch\TASKENG.EXE-35FA9C06.pf O45 - LFCP:[MD5.53CDB4455EDFE9030367E1AFD35E651A] - 17/01/2014 - 09:04:26 ---A- - C:\Windows\Prefetch\WMPNSCFG.EXE-18FC9E64.pf O45 - LFCP:[MD5.E043B387E5D62AE800621EEBEDD1D6FB] - 17/01/2014 - 09:04:27 ---A- - C:\Windows\Prefetch\PDVDDXSRV.EXE-02BBE4B2.pf O45 - LFCP:[MD5.C8CACFD12B84A7E141CA0AED34AF2F03] - 17/01/2014 - 09:04:27 ---A- - C:\Windows\Prefetch\RTHDVCPL.EXE-BDBA07C9.pf O45 - LFCP:[MD5.E793FFDDD645264A0DB0CE54416146CB] - 17/01/2014 - 09:04:30 ---A- - C:\Windows\Prefetch\IPODSERVICE.EXE-716E0AD1.pf O45 - LFCP:[MD5.35CD34EB484D23D83F7926778B0B630A] - 17/01/2014 - 09:04:32 ---A- - C:\Windows\Prefetch\CVTRES.EXE-CB8485B0.pf O45 - LFCP:[MD5.AAC6CFBE8B09834590FBD430C91D56D2] - 17/01/2014 - 09:04:36 ---A- - C:\Windows\Prefetch\WMPNETWK.EXE-F6E20E14.pf O45 - LFCP:[MD5.7C0795F4EDD0A046036363E10334B2CF] - 17/01/2014 - 09:04:43 ---A- - C:\Windows\Prefetch\CONSENT.EXE-40419367.pf O45 - LFCP:[MD5.E50793E2C85368EBC0B27AA821865A9F] - 17/01/2014 - 09:04:56 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-960426D8.pf O45 - LFCP:[MD5.39C72B098D7FDE278F30798788006893] - 17/01/2014 - 09:05:12 ---A- - C:\Windows\Prefetch\ZHPDIAG2.EXE-29E02ED3.pf O45 - LFCP:[MD5.7657056FEF284FC3BCD74EE5785EA0E8] - 17/01/2014 - 09:05:12 ---A- - C:\Windows\Prefetch\ZHPDIAG2.TMP-765358B4.pf O45 - LFCP:[MD5.4E15D11D7F13161CD8E46F3B8E17B1A5] - 17/01/2014 - 09:05:18 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-4B6CB38A.pf O45 - LFCP:[MD5.B043CE1DC6ADEE7A72437AB97111D076] - 17/01/2014 - 09:05:24 ---A- - C:\Windows\Prefetch\AgCx_SC4.db O45 - LFCP:[MD5.94DE4E22929C52416239267B0DD90B5E] - 17/01/2014 - 09:05:24 ---A- - C:\Windows\Prefetch\DOWNLOADER.EXE-CEED29CA.pf O45 - LFCP:[MD5.D8ACDF21040F205594E628C5B17B14B4] - 17/01/2014 - 09:05:29 ---A- - C:\Windows\Prefetch\ZHPHEP.EXE-A6178279.pf O45 - LFCP:[MD5.589826DB545024528599D413D9C084EA] - 17/01/2014 - 09:05:39 ---A- - C:\Windows\Prefetch\SEARCHFILTERHOST.EXE-44162447.pf O45 - LFCP:[MD5.E8099ECD3DE240D585E06C8E3FAA602B] - 17/01/2014 - 09:05:39 ---A- - C:\Windows\Prefetch\ZHPDIAG.EXE-2192C001.pf O45 - LFCP:[MD5.2CD404471FC4CD6F024485CD24AD2774] - 17/01/2014 - 09:05:45 ---A- - C:\Windows\Prefetch\SEARCHPROTOCOLHOST.EXE-69C456C3.pf O45 - LFCP:[MD5.E6539AF6C5A60603AB3226860358D2A9] - 17/01/2014 - 09:06:22 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-6E1A6101.pf O45 - LFCP:[MD5.5631833BEE77651BAA43561F2EC67FDC] - 17/01/2014 - 09:06:25 ---A- - C:\Windows\Prefetch\CSCRIPT.EXE-BF1500E5.pf O45 - LFCP:[MD5.5AF741146069FACF862B35511FC051A6] - 17/01/2014 - 09:06:29 ---A- - C:\Windows\Prefetch\CONHOST.EXE-0C6456FB.pf O45 - LFCP:[MD5.21D2C3C50B56416A6B9013FCB58F7486] - 17/01/2014 - 09:06:29 ---A- - C:\Windows\Prefetch\PV.EXE-68AF5B64.pf O45 - LFCP:[MD5.0AF63ECFC760C7C2D931AA17CF0037A9] - 17/01/2014 - 09:06:35 ---A- - C:\Windows\Prefetch\CMD.EXE-0BD30981.pf O45 - LFCP:[MD5.D1C09A53BD053521F1EB4883F886EC37] - 17/01/2014 - 09:06:35 ---A- - C:\Windows\Prefetch\SUBINACL.EXE-524DEB5B.pf O45 - LFCP:[MD5.744D2A9DEAF44BAD56FA154185FFA5F7] - 17/01/2014 - 09:06:41 ---A- - C:\Windows\Prefetch\SCHTASKS.EXE-8B6144A9.pf ~ Prefetcher: 130 Scanned in 00mn 01s ---\\ Opérations et fonctions au démarrage de Windows Explorer (O46) O46 - SEH:ShellExecuteHooks - Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll ~ ShellExecuteHooks: Scanned in 00mn 00s ---\\ Déni du service (Local Security Authority) (O48) O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l’Éditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\System32\schannel.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corp. - LiveSSP.) -- C:\Windows\System32\livessp.dll ~ LSA: 9 Scanned in 00mn 00s ---\\ Contrôle du Safe Boot (CSB) (O49) O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\System32\Drivers\rdpencdd.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys ~ CSB: 13 Scanned in 00mn 00s ---\\ Clé de registre Shell MountPoints2 (MPKS) (O51) O51 - MPSK:{ffcec60f-7bab-11e3-8d1b-00262d2284dd}\AutoRun\command. (...) -- F:\WD SmartWare.exe (.not file.) ~ Keys: Scanned in 00mn 00s ---\\ Recherche d'infection sur les pilotes (HKLM)(TDSD) (O52) O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Codec Cinepak®.) -- C:\Windows\System32\iccvid.dll O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm ~ TDSD: 3 Scanned in 00mn 00s ---\\ Enumération des clés de registre SecurityProviders (MCSP) (O54) O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll ~ MSCP: 2 Scanned in 00mn 00s ---\\ Enumération des clés de registre PoliciesSystem (MWPS) (O55) O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5 O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3 O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0 O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1 O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=0 O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0 O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0 O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0 O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0 ~ MWPS: 16 Scanned in 00mn 00s ---\\ Liste des pilotes du système (SDL) (O58) O58 - SDL:[MD5.21E785EBD7DC90A06391141AAC7892FB] - 14/07/2009 - 02:26:15 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys [422976] O58 - SDL:[MD5.21E785EBD7DC90A06391141AAC7892FB] - 10/01/2014 - 15:44:36 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys.bak [422976] O58 - SDL:[MD5.0C676BC278D5B59FF5ABD57BBE9123F2] - 14/07/2009 - 02:26:17 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\Drivers\adpahci.sys [297552] O58 - SDL:[MD5.0C676BC278D5B59FF5ABD57BBE9123F2] - 10/01/2014 - 15:44:36 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\Drivers\adpahci.sys.bak [297552] O58 - SDL:[MD5.7C7B5EE4B7B822EC85321FE23A27DB33] - 14/07/2009 - 02:26:15 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -- C:\Windows\System32\Drivers\adpu320.sys [146512] O58 - SDL:[MD5.7C7B5EE4B7B822EC85321FE23A27DB33] - 10/01/2014 - 15:44:37 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -- C:\Windows\System32\Drivers\adpu320.sys.bak [146512] O58 - SDL:[MD5.0D40BCF52EA90FC7DF2AEAB6503DEA44] - 14/07/2009 - 02:26:15 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\Drivers\aliide.sys [14400] O58 - SDL:[MD5.0D40BCF52EA90FC7DF2AEAB6503DEA44] - 10/01/2014 - 15:44:37 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\Drivers\aliide.sys.bak [14400] O58 - SDL:[MD5.D320BF87125326F996D4904FE24300FC] - 11/03/2011 - 06:38:37 ---A- . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\Drivers\amdsata.sys [80256] O58 - SDL:[MD5.D320BF87125326F996D4904FE24300FC] - 10/01/2014 - 15:44:38 ---A- . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\Drivers\amdsata.sys.bak [80256] O58 - SDL:[MD5.EA43AF0C423FF267355F74E7A53BDABA] - 14/07/2009 - 02:26:15 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows fa.) -- C:\Windows\System32\Drivers\amdsbs.sys [159312] O58 - SDL:[MD5.EA43AF0C423FF267355F74E7A53BDABA] - 10/01/2014 - 15:44:39 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows fa.) -- C:\Windows\System32\Drivers\amdsbs.sys.bak [159312] O58 - SDL:[MD5.46387FB17B086D16DEA267D5BE23A2F2] - 11/03/2011 - 06:38:37 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\Drivers\amdxata.sys [22400] O58 - SDL:[MD5.46387FB17B086D16DEA267D5BE23A2F2] - 10/01/2014 - 15:44:39 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\Drivers\amdxata.sys.bak [22400] O58 - SDL:[MD5.2932004F49677BD84DBC72EDB754FFB3] - 14/07/2009 - 02:26:15 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\Drivers\arc.sys [76368] O58 - SDL:[MD5.2932004F49677BD84DBC72EDB754FFB3] - 10/01/2014 - 15:44:39 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\Drivers\arc.sys.bak [76368] O58 - SDL:[MD5.5D6F36C46FD283AE1B57BD2E9FEB0BC7] - 14/07/2009 - 02:26:15 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\Drivers\arcsas.sys [86608] O58 - SDL:[MD5.5D6F36C46FD283AE1B57BD2E9FEB0BC7] - 10/01/2014 - 15:44:39 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\Drivers\arcsas.sys.bak [86608] O58 - SDL:[MD5.DBCB72388C719C9EAFCE91AB40EAA05E] - 19/07/2013 - 17:03:32 ---A- . (.BitDefender - Active Virus Control filter driver.) -- C:\Windows\System32\Drivers\avc3.sys [640560] O58 - SDL:[MD5.DBCB72388C719C9EAFCE91AB40EAA05E] - 10/01/2014 - 15:44:40 ---A- . (.BitDefender - Active Virus Control filter driver.) -- C:\Windows\System32\Drivers\avc3.sys.bak [640560] O58 - SDL:[MD5.7F9B99B564E7C9FBB6729ED95B5BBB24] - 02/11/2012 - 13:17:14 ---A- . (.BitDefender - BitDefender AntiVirus Active Virus Control Hypervisor driver.) -- C:\Windows\System32\Drivers\avchv.sys [242504] O58 - SDL:[MD5.7F9B99B564E7C9FBB6729ED95B5BBB24] - 10/01/2014 - 15:44:40 ---A- . (.BitDefender - BitDefender AntiVirus Active Virus Control Hypervisor driver.) -- C:\Windows\System32\Drivers\avchv.sys.bak [242504] O58 - SDL:[MD5.5C83DF7DB66EEFCD82152E85EC9E9F06] - 19/07/2013 - 17:06:44 ---A- . (.BitDefender - Active Virus Control Kernel Filtering driver.) -- C:\Windows\System32\Drivers\avckf.sys [490144] O58 - SDL:[MD5.5C83DF7DB66EEFCD82152E85EC9E9F06] - 10/01/2014 - 15:44:40 ---A- . (.BitDefender - Active Virus Control Kernel Filtering driver.) -- C:\Windows\System32\Drivers\avckf.sys.bak [490144] O58 - SDL:[MD5.BD8869EB9CDE6BBE4508D869929869EE] - 13/07/2009 - 23:02:49 ---A- . (.Broadcom Corporation - Pilote unifié NDIS6.x Broadcom NetXtreme Gigabit Ethernet..) -- C:\Windows\System32\Drivers\b57nd60x.sys [229888] O58 - SDL:[MD5.BD8869EB9CDE6BBE4508D869929869EE] - 10/01/2014 - 15:44:41 ---A- . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver..) -- C:\Windows\System32\Drivers\b57nd60x.sys.bak [229888] O58 - SDL:[MD5.6743A3C33E8B3BFC2D9B55E15500BB13] - 09/01/2014 - 19:47:03 ---A- . (.BitDefender LLC - BitDefender Firewall NDIS6 Filter Driver.) -- C:\Windows\System32\Drivers\BdfNdisf6.sys.bak [78144] O58 - SDL:[MD5.A1777C97C2FEA21D7166752AA2CCCBE8] - 04/11/2013 - 15:47:30 ---A- . (.BitDefender SRL - BitDefender SandBox Filter Driver.) -- C:\Windows\System32\Drivers\bdsandbox.sys [66832] O58 - SDL:[MD5.A1777C97C2FEA21D7166752AA2CCCBE8] - 10/01/2014 - 15:44:41 ---A- . (.BitDefender SRL - BitDefender SandBox Filter Driver.) -- C:\Windows\System32\Drivers\bdsandbox.sys.bak [66832] O58 - SDL:[MD5.B82A4AE7C1259411421D2389BD1AB058] - 10/01/2014 - 08:59:26 ---A- . (.BitDefender - FileVault Disk Driver.) -- C:\Windows\System32\Drivers\bdvedisk.sys [72704] O58 - SDL:[MD5.9F9ACC7F7CCDE8A15C282D3F88B43309] - 13/07/2009 - 23:53:28 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\System32\Drivers\BrFiltLo.sys [13568] O58 - SDL:[MD5.9F9ACC7F7CCDE8A15C282D3F88B43309] - 10/01/2014 - 15:44:42 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\System32\Drivers\BrFiltLo.sys.bak [13568] O58 - SDL:[MD5.56801AD62213A41F6497F96DEE83755A] - 13/07/2009 - 23:53:28 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\System32\Drivers\BrFiltUp.sys [5248] O58 - SDL:[MD5.56801AD62213A41F6497F96DEE83755A] - 10/01/2014 - 15:44:42 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\System32\Drivers\BrFiltUp.sys.bak [5248] O58 - SDL:[MD5.845B8CE732E67F3B4133164868C666EA] - 14/07/2009 - 01:57:25 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\Drivers\BrSerId.sys [272128] O58 - SDL:[MD5.845B8CE732E67F3B4133164868C666EA] - 10/01/2014 - 15:44:43 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\Drivers\BrSerId.sys.bak [272128] O58 - SDL:[MD5.203F0B1E73ADADBBB7B7B1FABD901F6B] - 13/07/2009 - 23:53:32 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\Drivers\BrSerWdm.sys [62336] O58 - SDL:[MD5.203F0B1E73ADADBBB7B7B1FABD901F6B] - 10/01/2014 - 15:44:43 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\Drivers\BrSerWdm.sys.bak [62336] O58 - SDL:[MD5.BD456606156BA17E60A04E18016AE54B] - 13/07/2009 - 23:53:33 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\Drivers\BrUsbMdm.sys [12160] O58 - SDL:[MD5.BD456606156BA17E60A04E18016AE54B] - 10/01/2014 - 15:44:43 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\Drivers\BrUsbMdm.sys.bak [12160] O58 - SDL:[MD5.AF72ED54503F717A43268B3CC5FAEC2E] - 13/07/2009 - 23:53:33 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\Drivers\BrUsbSer.sys [11904] O58 - SDL:[MD5.AF72ED54503F717A43268B3CC5FAEC2E] - 10/01/2014 - 15:44:43 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\Drivers\BrUsbSer.sys.bak [11904] O58 - SDL:[MD5.1A231ABEC60FD316EC54C66715543CEC] - 13/07/2009 - 23:02:48 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\Drivers\bxvbdx.sys [430080] O58 - SDL:[MD5.1A231ABEC60FD316EC54C66715543CEC] - 10/01/2014 - 15:44:43 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\Drivers\bxvbdx.sys.bak [430080] O58 - SDL:[MD5.C716C877A528FAE6D352A7430AE0A4A4] - 17/10/2007 - 01:00:00 ---A- . (.Sonic Solutions - CDR4 CD and DVD Place Holder Driver (see PxHelp).) -- C:\Windows\System32\Drivers\cdr4_xp.sys [9072] O58 - SDL:[MD5.C716C877A528FAE6D352A7430AE0A4A4] - 10/01/2014 - 15:44:44 ---A- . (.Sonic Solutions - CDR4 CD and DVD Place Holder Driver (see PxHelp).) -- C:\Windows\System32\Drivers\cdr4_xp.sys.bak [9072] O58 - SDL:[MD5.17CD01A8B4D0A1E6CBF4BB07CD57043C] - 17/10/2007 - 01:00:00 ---A- . (.Sonic Solutions - CDRAL Place Holder Driver (see PxHelp).) -- C:\Windows\System32\Drivers\cdralw2k.sys [9200] O58 - SDL:[MD5.17CD01A8B4D0A1E6CBF4BB07CD57043C] - 10/01/2014 - 15:44:44 ---A- . (.Sonic Solutions - CDRAL Place Holder Driver (see PxHelp).) -- C:\Windows\System32\Drivers\cdralw2k.sys.bak [9200] O58 - SDL:[MD5.C537B1DB64D495B9B4717B4D6D9EDBF2] - 14/07/2009 - 02:26:21 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\cmdide.sys [15952] O58 - SDL:[MD5.C537B1DB64D495B9B4717B4D6D9EDBF2] - 10/01/2014 - 15:44:45 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\cmdide.sys.bak [15952] O58 - SDL:[MD5.8B30250D573A8F6B4BD23195160D8707] - 14/07/2009 - 02:20:28 ---A- . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\System32\Drivers\djsvs.sys [70720] O58 - SDL:[MD5.8B30250D573A8F6B4BD23195160D8707] - 10/01/2014 - 15:44:47 ---A- . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\System32\Drivers\djsvs.sys.bak [70720] O58 - SDL:[MD5.0ED67910C8C326796FAA00B2BF6D9D3C] - 14/07/2009 - 02:20:28 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\System32\Drivers\elxstor.sys [453712] O58 - SDL:[MD5.0ED67910C8C326796FAA00B2BF6D9D3C] - 10/01/2014 - 15:44:48 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\System32\Drivers\elxstor.sys.bak [453712] O58 - SDL:[MD5.024E1B5CAC09731E4D868E64DBFB4AB0] - 13/07/2009 - 23:02:48 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\Drivers\evbdx.sys [3100160] O58 - SDL:[MD5.024E1B5CAC09731E4D868E64DBFB4AB0] - 10/01/2014 - 15:44:49 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\Drivers\evbdx.sys.bak [3100160] O58 - SDL:[MD5.185ADA973B5020655CEE342059A86CBB] - 21/08/2012 - 13:01:22 ---A- . (.GEAR Software Inc. - CD DVD Filter.) -- C:\Windows\System32\Drivers\GEARAspiWDM.sys [26840] O58 - SDL:[MD5.185ADA973B5020655CEE342059A86CBB] - 10/01/2014 - 15:44:52 ---A- . (.GEAR Software Inc. - CD DVD Filter.) -- C:\Windows\System32\Drivers\GEARAspiWDM.sys.bak [26840] O58 - SDL:[MD5.3B5CA8EB6748D234F117AB203491F6F9] - 23/08/2013 - 12:48:39 ---A- . (.BitDefender LLC - BitDefender Gonzales FileSystem Driver.) -- C:\Windows\System32\Drivers\gzflt.sys [165744] O58 - SDL:[MD5.3B5CA8EB6748D234F117AB203491F6F9] - 10/01/2014 - 15:44:52 ---A- . (.BitDefender LLC - BitDefender Gonzales FileSystem Driver.) -- C:\Windows\System32\Drivers\gzflt.sys.bak [165744] O58 - SDL:[MD5.C44E3C2BAB6837DB337DDEE7544736DB] - 13/07/2009 - 23:54:14 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\System32\Drivers\hcw85cir.sys [26624] O58 - SDL:[MD5.C44E3C2BAB6837DB337DDEE7544736DB] - 10/01/2014 - 15:44:52 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\System32\Drivers\hcw85cir.sys.bak [26624] O58 - SDL:[MD5.6F98A555ACF3C1B68FCC1F50E0FD2091] - 03/10/2010 - 04:09:14 ---A- . (.Hewlett Packard - LEDM BULK.) -- C:\Windows\System32\Drivers\hppcbulkio.sys [20504] O58 - SDL:[MD5.6F98A555ACF3C1B68FCC1F50E0FD2091] - 10/01/2014 - 15:44:53 ---A- . (.Hewlett Packard - LEDM BULK.) -- C:\Windows\System32\Drivers\hppcbulkio.sys.bak [20504] O58 - SDL:[MD5.BA7804A6D56CBA2625580D1BF7740D33] - 03/10/2010 - 04:07:42 ---A- . (.Hewlett Packard - LEDM USB Composite Support Driver.) -- C:\Windows\System32\Drivers\hppcgenio.sys [26648] O58 - SDL:[MD5.BA7804A6D56CBA2625580D1BF7740D33] - 10/01/2014 - 15:44:53 ---A- . (.Hewlett Packard - LEDM USB Composite Support Driver.) -- C:\Windows\System32\Drivers\hppcgenio.sys.bak [26648] O58 - SDL:[MD5.295FDC419039090EB8B49FFDBB374549] - 14/07/2009 - 02:20:28 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\System32\Drivers\HpSAMD.sys [67152] O58 - SDL:[MD5.295FDC419039090EB8B49FFDBB374549] - 10/01/2014 - 15:44:54 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\System32\Drivers\HpSAMD.sys.bak [67152] O58 - SDL:[MD5.5CD5F9A5444E6CDCB0AC89BD62D8B76E] - 11/03/2011 - 06:38:51 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\Windows\System32\Drivers\iaStorV.sys [332160] O58 - SDL:[MD5.5CD5F9A5444E6CDCB0AC89BD62D8B76E] - 10/01/2014 - 15:44:54 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\Windows\System32\Drivers\iaStorV.sys.bak [332160] O58 - SDL:[MD5.DCE0B53570703CCE580D066F89EF58CD] - 11/02/2011 - 18:12:16 ---A- . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\Drivers\igdkmd32.sys [9036800] O58 - SDL:[MD5.DCE0B53570703CCE580D066F89EF58CD] - 10/01/2014 - 15:44:55 ---A- . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\Drivers\igdkmd32.sys.bak [9036800] O58 - SDL:[MD5.4173FF5708F3236CF25195FECD742915] - 14/07/2009 - 02:20:36 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\Drivers\iirsp.sys [41040] O58 - SDL:[MD5.4173FF5708F3236CF25195FECD742915] - 10/01/2014 - 15:44:56 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\Drivers\iirsp.sys.bak [41040] O58 - SDL:[MD5.7EA81534E80570BDF6EE4A4248BBA4D6] - 21/08/2009 - 21:50:48 ---A- . (.Broadcom Corporation - Broadcom NetLink (TM) Gigabit Ethernet NDIS6.x Unified Driver..) -- C:\Windows\System32\Drivers\k57nd60x.sys [273960] O58 - SDL:[MD5.7EA81534E80570BDF6EE4A4248BBA4D6] - 10/01/2014 - 15:44:57 ---A- . (.Broadcom Corporation - Broadcom NetLink (TM) Gigabit Ethernet NDIS6.x Unified Driver..) -- C:\Windows\System32\Drivers\k57nd60x.sys.bak [273960] O58 - SDL:[MD5.EB119A53CCF2ACC000AC71B065B78FEF] - 14/07/2009 - 02:20:36 ---A- . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_fc.sys [95824] O58 - SDL:[MD5.EB119A53CCF2ACC000AC71B065B78FEF] - 10/01/2014 - 15:44:59 ---A- . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_fc.sys.bak [95824] O58 - SDL:[MD5.8ADE1C877256A22E49B75D1CC9161F9C] - 14/07/2009 - 02:20:37 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas.sys [89168] O58 - SDL:[MD5.8ADE1C877256A22E49B75D1CC9161F9C] - 10/01/2014 - 15:44:59 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas.sys.bak [89168] O58 - SDL:[MD5.DC9DC3D3DAA0E276FD2EC262E38B11E9] - 14/07/2009 - 02:20:36 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas2.sys [54864] O58 - SDL:[MD5.DC9DC3D3DAA0E276FD2EC262E38B11E9] - 10/01/2014 - 15:44:59 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas2.sys.bak [54864] O58 - SDL:[MD5.0A036C7D7CAB643A7F07135AC47E0524] - 14/07/2009 - 02:20:36 ---A- . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_scsi.sys [96848] O58 - SDL:[MD5.0A036C7D7CAB643A7F07135AC47E0524] - 10/01/2014 - 15:44:59 ---A- . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_scsi.sys.bak [96848] O58 - SDL:[MD5.4470E3C1E0C3378E4CAB137893C12C3A] - 04/04/2013 - 14:50:32 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\mbam.sys [22856] O58 - SDL:[MD5.4470E3C1E0C3378E4CAB137893C12C3A] - 10/01/2014 - 15:44:59 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\mbam.sys.bak [22856] O58 - SDL:[MD5.14EA85B4C79B655C229D3596342A833A] - 11/01/2014 - 18:34:30 ---A- . (.Malwarebytes Corporation - Malwarebytes Chameleon Protection Driver.) -- C:\Windows\System32\Drivers\mbamchameleon.sys [74456] O58 - SDL:[MD5.0DB7527DB188C7D967A37BB51BBF3963] - 09/01/2014 - 15:46:53 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\System32\Drivers\mbamswissarmy.sys.bak [40776] O58 - SDL:[MD5.0FFF5B045293002AB38EB1FD1FC2FB74] - 14/07/2009 - 02:20:36 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows 7 for x86.) -- C:\Windows\System32\Drivers\megasas.sys [30800] O58 - SDL:[MD5.0FFF5B045293002AB38EB1FD1FC2FB74] - 10/01/2014 - 15:45:00 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows 7 for x86.) -- C:\Windows\System32\Drivers\megasas.sys.bak [30800] O58 - SDL:[MD5.DCBAB2920C75F390CAF1D29F675D03D6] - 14/07/2009 - 02:20:36 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\Drivers\MegaSR.sys [235584] O58 - SDL:[MD5.DCBAB2920C75F390CAF1D29F675D03D6] - 10/01/2014 - 15:45:00 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\Drivers\MegaSR.sys.bak [235584] O58 - SDL:[MD5.1D85C4B390B0EE09C7A46B91EFB2C097] - 14/07/2009 - 02:20:44 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\Drivers\nfrd960.sys [44624] O58 - SDL:[MD5.1D85C4B390B0EE09C7A46B91EFB2C097] - 10/01/2014 - 15:45:06 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\Drivers\nfrd960.sys.bak [44624] O58 - SDL:[MD5.B3E25EE28883877076E0E1FF877D02E0] - 11/03/2011 - 06:39:00 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\Drivers\nvraid.sys [117120] O58 - SDL:[MD5.B3E25EE28883877076E0E1FF877D02E0] - 10/01/2014 - 15:45:07 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\Drivers\nvraid.sys.bak [117120] O58 - SDL:[MD5.4380E59A170D88C4F1022EFF6719A8A4] - 11/03/2011 - 06:39:00 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\Drivers\nvstor.sys [143744] O58 - SDL:[MD5.4380E59A170D88C4F1022EFF6719A8A4] - 10/01/2014 - 15:45:07 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\Drivers\nvstor.sys.bak [143744] O58 - SDL:[MD5.40FEDD328F98245AD201CF5F9F311724] - 09/07/2009 - 11:00:00 ----- . (.Sonic Solutions - Px Engine Device Driver for Windows 2000/XP.) -- C:\Windows\System32\Drivers\pxhelp20.sys [45200] O58 - SDL:[MD5.40FEDD328F98245AD201CF5F9F311724] - 10/01/2014 - 15:45:10 ---A- . (.Sonic Solutions - Px Engine Device Driver for Windows 2000/XP.) -- C:\Windows\System32\Drivers\pxhelp20.sys.bak [45200] O58 - SDL:[MD5.AB95ECF1F6659A60DDC166D8315B0751] - 14/07/2009 - 02:19:04 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\Drivers\ql2300.sys [1383488] O58 - SDL:[MD5.AB95ECF1F6659A60DDC166D8315B0751] - 10/01/2014 - 15:45:10 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\Drivers\ql2300.sys.bak [1383488] O58 - SDL:[MD5.B4DD51DD25182244B86737DC51AF2270] - 14/07/2009 - 02:19:04 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\Drivers\ql40xx.sys [106064] O58 - SDL:[MD5.B4DD51DD25182244B86737DC51AF2270] - 10/01/2014 - 15:45:10 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\Drivers\ql40xx.sys.bak [106064] O58 - SDL:[MD5.94B1FF5D243D34B31380A2F79FC48959] - 12/09/2009 - 06:44:44 ---A- . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function Driver.) -- C:\Windows\System32\Drivers\RTKVHDA.sys [2769120] O58 - SDL:[MD5.94B1FF5D243D34B31380A2F79FC48959] - 10/01/2014 - 15:45:14 ---A- . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function Driver.) -- C:\Windows\System32\Drivers\RTKVHDA.sys.bak [2769120] O58 - SDL:[MD5.90A3935D05B494A5A39D37E71F09A677] - 13/07/2009 - 21:50:20 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\System32\Drivers\secdrv.sys [20480] O58 - SDL:[MD5.90A3935D05B494A5A39D37E71F09A677] - 10/01/2014 - 15:45:15 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\System32\Drivers\secdrv.sys.bak [20480] O58 - SDL:[MD5.A9F0486851BECB6DDA1D89D381E71055] - 14/07/2009 - 02:19:04 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid2.sys [40016] O58 - SDL:[MD5.A9F0486851BECB6DDA1D89D381E71055] - 10/01/2014 - 15:45:16 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid2.sys.bak [40016] O58 - SDL:[MD5.3727097B55738E2F554972C3BE5BC1AA] - 14/07/2009 - 02:19:04 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid4.sys [77888] O58 - SDL:[MD5.3727097B55738E2F554972C3BE5BC1AA] - 10/01/2014 - 15:45:16 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid4.sys.bak [77888] O58 - SDL:[MD5.DB32D325C192B801DF274BFD12A7E72B] - 14/07/2009 - 02:19:04 ---A- . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\Windows\System32\Drivers\stexstor.sys [21072] O58 - SDL:[MD5.DB32D325C192B801DF274BFD12A7E72B] - 10/01/2014 - 15:45:17 ---A- . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\Windows\System32\Drivers\stexstor.sys.bak [21072] O58 - SDL:[MD5.130AFD0E373F22A6320B60FEBB7E8D56] - 07/08/2013 - 12:46:04 ---A- . (.BitDefender S.R.L. - Trufos Kernel Module.) -- C:\Windows\System32\Drivers\trufos.sys [360376] O58 - SDL:[MD5.130AFD0E373F22A6320B60FEBB7E8D56] - 10/01/2014 - 15:45:20 ---A- . (.BitDefender S.R.L. - Trufos Kernel Module.) -- C:\Windows\System32\Drivers\trufos.sys.bak [360376] O58 - SDL:[MD5.6E421CCC57059B0186C6259CA3B6DFC9] - 13/12/2012 - 12:50:38 ---A- . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\Windows\System32\Drivers\usbaapl.sys [45056] O58 - SDL:[MD5.6E421CCC57059B0186C6259CA3B6DFC9] - 10/01/2014 - 15:45:21 ---A- . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\Windows\System32\Drivers\usbaapl.sys.bak [45056] O58 - SDL:[MD5.E43574F6A56A0EE11809B48C09E4FD3C] - 14/07/2009 - 02:19:10 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\viaide.sys [16976] O58 - SDL:[MD5.E43574F6A56A0EE11809B48C09E4FD3C] - 10/01/2014 - 15:45:25 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\viaide.sys.bak [16976] O58 - SDL:[MD5.9DFA0CC2F8855A04816729651175B631] - 14/07/2009 - 02:19:11 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\Drivers\vsmraid.sys [141904] O58 - SDL:[MD5.9DFA0CC2F8855A04816729651175B631] - 10/01/2014 - 15:45:26 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\Drivers\vsmraid.sys.bak [141904] O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 13/07/2009 - 22:40:41 ---A- . (...) -- C:\Windows\System32\ANSI.SYS [9029] O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 13/07/2009 - 22:40:44 ---A- . (...) -- C:\Windows\System32\country.sys [27097] O58 - SDL:[MD5.E6BC0F98FECEF245A0010D350C1A0B9B] - 13/07/2009 - 22:40:40 ---A- . (...) -- C:\Windows\System32\HIMEM.SYS [4768] O58 - SDL:[MD5.492090267B9608C62B956CD29BE3AFB7] - 13/07/2009 - 22:40:43 ---A- . (...) -- C:\Windows\System32\KEY01.SYS [42809] O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 13/07/2009 - 22:40:43 ---A- . (...) -- C:\Windows\System32\KEYBOARD.SYS [42537] O58 - SDL:[MD5.FFFF296A08DBF2AC0126C62E3778AC0D] - 13/07/2009 - 22:40:23 ---A- . (...) -- C:\Windows\System32\NTDOS.SYS [27866] O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 13/07/2009 - 22:40:31 ---A- . (...) -- C:\Windows\System32\NTDOS404.SYS [29146] O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 13/07/2009 - 22:40:35 ---A- . (...) -- C:\Windows\System32\NTDOS411.SYS [29370] O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 13/07/2009 - 22:40:39 ---A- . (...) -- C:\Windows\System32\NTDOS412.SYS [29274] O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 13/07/2009 - 22:40:27 ---A- . (...) -- C:\Windows\System32\NTDOS804.SYS [29146] O58 - SDL:[MD5.2E4112FB7D1B76E11ADFD7487B5D0E95] - 13/07/2009 - 22:40:11 ---A- . (...) -- C:\Windows\System32\NTIO.SYS [33952] O58 - SDL:[MD5.A98EBD4C2DF983665BF2D1AF49949974] - 13/07/2009 - 22:40:15 ---A- . (...) -- C:\Windows\System32\NTIO404.SYS [34672] O58 - SDL:[MD5.3F7E6406EDEF197C5CAAB2240EEF6F48] - 13/07/2009 - 22:40:17 ---A- . (...) -- C:\Windows\System32\NTIO411.SYS [35776] O58 - SDL:[MD5.3E64D681B776CC57BDC38A46D881F85B] - 13/07/2009 - 22:40:19 ---A- . (...) -- C:\Windows\System32\NTIO412.SYS [35536] O58 - SDL:[MD5.D86B6435729231C171432B4E77801BDB] - 13/07/2009 - 22:40:13 ---A- . (...) -- C:\Windows\System32\NTIO804.SYS [34672] ~ Drivers: 16 Scanned in 00mn 02s ---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61) O61 - LFC: 14/01/2014 - 09:07:57 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\72AD6604-E8DD-454F-B41B-00A12350385C.aplzod\main.db [2717696] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\000005.ldb [235] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\000024.ldb [311] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOCK [0] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\ar\messages.json [374] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\bg\messages.json [428] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\ca\messages.json [207] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\cs\messages.json [230] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\da\messages.json [216] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\de\messages.json [217] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\el\messages.json [416] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\en_GB\messages.json [208] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\en_US\messages.json [209] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\es\messages.json [206] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\es_419\messages.json [206] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\et\messages.json [216] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\fi\messages.json [216] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\fil\messages.json [219] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\fr\messages.json [224] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\he\messages.json [293] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\hi\messages.json [375] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\hu\messages.json [251] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\id\messages.json [209] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\it\messages.json [213] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\ja\messages.json [263] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\ko\messages.json [254] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\lt\messages.json [234] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\lv\messages.json [232] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\ms\messages.json [207] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\nl\messages.json [217] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\no\messages.json [195] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\pl\messages.json [217] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\pt_BR\messages.json [206] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\pt_PT\messages.json [208] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\ro\messages.json [225] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\ru\messages.json [434] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\sk\messages.json [225] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\sl\messages.json [218] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\sr\messages.json [380] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\sv\messages.json [214] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\th\messages.json [329] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\tr\messages.json [243] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\uk\messages.json [428] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\vi\messages.json [252] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\zh_CN\messages.json [233] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\zh_TW\messages.json [233] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\icon_128.png [3009] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\icon_16.png [143] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\main.html [92] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\main.js [98] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\manifest.json [724] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\128.png [3524] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\ar\messages.json [401] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\bg\messages.json [427] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\ca\messages.json [250] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\cs\messages.json [255] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\da\messages.json [242] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\de\messages.json [226] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\el\messages.json [475] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\en\messages.json [227] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\es\messages.json [240] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\fi\messages.json [222] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\fil\messages.json [236] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\fr\messages.json [249] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\he\messages.json [419] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\hi\messages.json [408] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\hr\messages.json [220] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\hu\messages.json [253] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\id\messages.json [231] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\it\messages.json [224] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\ja\messages.json [349] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\ko\messages.json [323] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\lt\messages.json [266] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\lv\messages.json [245] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\nl\messages.json [225] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\no\messages.json [216] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\pl\messages.json [274] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\pt_BR\messages.json [237] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\pt_PT\messages.json [236] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\ro\messages.json [248] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\ru\messages.json [394] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\sk\messages.json [241] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\sl\messages.json [245] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\sr\messages.json [437] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\sv\messages.json [238] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\th\messages.json [365] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\tr\messages.json [255] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\uk\messages.json [442] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\vi\messages.json [310] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\zh_CN\messages.json [257] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\_locales\zh_TW\messages.json [269] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\manifest.json [785] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\databases\Databases.db [7168] O61 - LFC: 14/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\databases\Databases.db-journal [512] O61 - LFC: 14/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\128.png [5367] O61 - LFC: 14/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\16.png [499] O61 - LFC: 14/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\32.png [1154] O61 - LFC: 14/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\48.png [1872] O61 - LFC: 14/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\ar\messages.json [423] O61 - LFC: 14/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\bg\messages.json [515] O61 - LFC: 14/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\ca\messages.json [330] O61 - LFC: 14/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\cs\messages.json [355] O61 - LFC: 14/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\da\messages.json [328] O61 - LFC: 14/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\de\messages.json [307] O61 - LFC: 14/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\el\messages.json [569] O61 - LFC: 14/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\en\messages.json [314] O61 - LFC: 14/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\en_GB\messages.json [314] O61 - LFC: 14/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\en_US\messages.json [314] O61 - LFC: 14/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\es\messages.json [340] O61 - LFC: 14/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\es_419\messages.json [341] O61 - LFC: 14/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\et\messages.json [314] O61 - LFC: 14/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\fi\messages.json [305] O61 - LFC: 14/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\fil\messages.json [337] O61 - LFC: 14/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\fr\messages.json [329] O61 - LFC: 14/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\he\messages.json [471] O61 - LFC: 14/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\hi\messages.json [326] O61 - LFC: 14/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\hr\messages.json [340] O61 - LFC: 14/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\hu\messages.json [336] O61 - LFC: 14/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\id\messages.json [319] O61 - LFC: 14/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\it\messages.json [324] O61 - LFC: 14/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\ja\messages.json [388] O61 - LFC: 14/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\ko\messages.json [380] O61 - LFC: 14/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\lt\messages.json [359] O61 - LFC: 14/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\lv\messages.json [360] O61 - LFC: 14/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\nl\messages.json [323] O61 - LFC: 14/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\no\messages.json [300] O61 - LFC: 14/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\pl\messages.json [336] O61 - LFC: 14/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\pt_BR\messages.json [332] O61 - LFC: 14/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\pt_PT\messages.json [331] O61 - LFC: 14/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\ro\messages.json [332] O61 - LFC: 14/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\ru\messages.json [471] O61 - LFC: 14/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\sk\messages.json [338] O61 - LFC: 14/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\sl\messages.json [329] O61 - LFC: 14/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\sr\messages.json [483] O61 - LFC: 14/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\sv\messages.json [333] O61 - LFC: 14/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\th\messages.json [472] O61 - LFC: 14/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\tr\messages.json [330] O61 - LFC: 14/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\uk\messages.json [501] O61 - LFC: 14/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\vi\messages.json [363] O61 - LFC: 14/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\zh_CN\messages.json [346] O61 - LFC: 14/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\_locales\zh_TW\messages.json [346] O61 - LFC: 14/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\manifest.json [817] O61 - LFC: 14/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_3 [8192] O61 - LFC: 14/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\GPUCache\index [262512] O61 - LFC: 14/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.google.fr_0.indexeddb.leveldb\CURRENT [16] O61 - LFC: 14/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.google.fr_0.indexeddb.leveldb\LOCK [0] O61 - LFC: 14/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.google.fr_0.indexeddb.leveldb\LOG [47] O61 - LFC: 14/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.google.fr_0.indexeddb.leveldb\MANIFEST-000002 [32] O61 - LFC: 14/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.google.com_0.localstorage [3072] O61 - LFC: 14/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.google.com_0.localstorage-journal [512] O61 - LFC: 14/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Origin Bound Certs [5120] O61 - LFC: 14/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Origin Bound Certs-journal [1544] O61 - LFC: 14/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\QuotaManager [13312] O61 - LFC: 14/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\QuotaManager-journal [6704] O61 - LFC: 14/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\PnaclTranslationCache\data_0 [8192] O61 - LFC: 14/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\PnaclTranslationCache\data_1 [270336] O61 - LFC: 14/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\PnaclTranslationCache\data_2 [8192] O61 - LFC: 14/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\PnaclTranslationCache\data_3 [8192] O61 - LFC: 14/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\PnaclTranslationCache\index [524656] O61 - LFC: 14/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.1.377\_platform_specific\win_x86\widevinecdm.dll [6940304] O61 - LFC: 14/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.1.377\imgs\icon-128x128.png [1630] O61 - LFC: 14/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\fr-FR-3-0.bdic [1074744] O61 - LFC: 14/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\pnacl\0.1.0.12332\_platform_specific\x86_32\pnacl_public_x86_32_crtbegin_for_eh_o [1476] O61 - LFC: 14/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\pnacl\0.1.0.12332\_platform_specific\x86_32\pnacl_public_x86_32_crtbegin_o [1564] O61 - LFC: 14/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\pnacl\0.1.0.12332\_platform_specific\x86_32\pnacl_public_x86_32_crtend_o [981] O61 - LFC: 14/01/2014 - 09:08:03 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Temp\2088_21056\crl-set [267844] O61 - LFC: 14/01/2014 - 09:08:03 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Temp\2088_21056\manifest.fingerprint [12] O61 - LFC: 14/01/2014 - 09:08:03 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Temp\2088_21056\manifest.json [34] O61 - LFC: 14/01/2014 - 09:08:03 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Temp\4026807.od [134] O61 - LFC: 14/01/2014 - 09:08:03 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Temp\4575197.od [134] O61 - LFC: 14/01/2014 - 09:08:03 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Temp\CVR71A7.tmp.cvr [0] O61 - LFC: 14/01/2014 - 09:08:03 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Temp\CVRCFDD.tmp.cvr [0] O61 - LFC: 14/01/2014 - 09:08:03 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Temp\E926.tmp\filemap.txt [1090] O61 - LFC: 14/01/2014 - 09:08:12 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Roaming\Microsoft\Office\Recent\Envoi Chèque fidélité.LNK [1255] O61 - LFC: 14/01/2014 - 09:08:12 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Roaming\Microsoft\Office\Recent\Mes documents (2).LNK [940] O61 - LFC: 14/01/2014 - 09:08:12 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Roaming\Microsoft\Office\Recent\Mes documents.LNK [940] O61 - LFC: 14/01/2014 - 09:08:12 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Roaming\Microsoft\Office\Recent\Nouveau dossier.LNK [1088] O61 - LFC: 14/01/2014 - 09:08:12 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Roaming\Microsoft\Office\Recent\courrier classe Cm1.LNK [1280] O61 - LFC: 14/01/2014 - 09:08:12 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Roaming\Microsoft\Office\Word12.pip [1708] O61 - LFC: 14/01/2014 - 09:08:13 ---A- . (...) -- C:\Users\Best Hotel Fixe\Documents\Mr Hugues BOULET réclamation.docx [16101] O61 - LFC: 14/01/2014 - 09:08:16 ---A- . (...) -- C:\Users\Best Hotel Fixe\Downloads\adwcleaner (1).exe [1236282] O61 - LFC: 15/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Certificate Revocation Lists [273221] O61 - LFC: 15/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\000029.ldb [231] O61 - LFC: 15/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1\_locales\bg\messages.json [1585] O61 - LFC: 15/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1\_locales\ca\messages.json [682] O61 - LFC: 15/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1\_locales\cs\messages.json [743] O61 - LFC: 15/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1\_locales\da\messages.json [665] O61 - LFC: 15/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1\_locales\de\messages.json [714] O61 - LFC: 15/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1\_locales\el\messages.json [1764] O61 - LFC: 15/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1\_locales\en\messages.json [611] O61 - LFC: 15/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1\_locales\en_GB\messages.json [611] O61 - LFC: 15/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1\_locales\es\messages.json [713] O61 - LFC: 15/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1\_locales\es_419\messages.json [671] O61 - LFC: 15/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1\_locales\et\messages.json [615] O61 - LFC: 15/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1\_locales\fi\messages.json [738] O61 - LFC: 15/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1\_locales\fil\messages.json [672] O61 - LFC: 15/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1\_locales\fr\messages.json [721] O61 - LFC: 15/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1\_locales\hi\messages.json [1406] O61 - LFC: 15/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1\_locales\hr\messages.json [662] O61 - LFC: 15/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1\_locales\hu\messages.json [766] O61 - LFC: 15/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1\_locales\id\messages.json [612] O61 - LFC: 15/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1\_locales\it\messages.json [626] O61 - LFC: 15/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1\_locales\ja\messages.json [1181] O61 - LFC: 15/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1\_locales\ko\messages.json [892] O61 - LFC: 15/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1\_locales\lt\messages.json [706] O61 - LFC: 15/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1\_locales\lv\messages.json [735] O61 - LFC: 15/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1\_locales\nb\messages.json [665] O61 - LFC: 15/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1\_locales\nl\messages.json [630] O61 - LFC: 15/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1\_locales\pl\messages.json [701] O61 - LFC: 15/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1\_locales\pt_BR\messages.json [701] O61 - LFC: 15/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1\_locales\pt_PT\messages.json [702] O61 - LFC: 15/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1\_locales\ro\messages.json [700] O61 - LFC: 15/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1\_locales\ru\messages.json [1296] O61 - LFC: 15/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1\_locales\sk\messages.json [739] O61 - LFC: 15/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1\_locales\sl\messages.json [647] O61 - LFC: 15/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1\_locales\sr\messages.json [1507] O61 - LFC: 15/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1\_locales\sv\messages.json [687] O61 - LFC: 15/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1\_locales\th\messages.json [1626] O61 - LFC: 15/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1\_locales\tr\messages.json [728] O61 - LFC: 15/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1\_locales\uk\messages.json [1403] O61 - LFC: 15/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1\_locales\vi\messages.json [798] O61 - LFC: 15/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1\_locales\zh_CN\messages.json [760] O61 - LFC: 15/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1\craw_background.js [125750] O61 - LFC: 15/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1\craw_window.js [155992] O61 - LFC: 15/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1\css\craw_window.css [1741] O61 - LFC: 15/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1\css\craw_window.css~ [1702] O61 - LFC: 15/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1\html\craw_window.html [810] O61 - LFC: 15/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1\images\icon_128.png [9460] O61 - LFC: 15/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1\images\icon_16.png [702] O61 - LFC: 15/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1\images\topbar_floating_button.png [160] O61 - LFC: 15/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1\images\topbar_floating_button_close.png [252] O61 - LFC: 15/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1\images\topbar_floating_button_hover.png [160] O61 - LFC: 15/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1\images\topbar_floating_button_maximize.png [166] O61 - LFC: 15/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1\images\topbar_floating_button_pressed.png [160] O61 - LFC: 15/01/2014 - 09:08:00 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1\manifest.json [1275] O61 - LFC: 15/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1\_locales\zh_TW\messages.json [814] O61 - LFC: 15/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.campanile.com_0.localstorage [3072] O61 - LFC: 15/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.campanile.com_0.localstorage-journal [512] O61 - LFC: 15/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.google.fr_0.localstorage [3072] O61 - LFC: 15/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.google.fr_0.localstorage-journal [3608] O61 - LFC: 15/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\FZ4BP5L5\asp.zone-secure.net\v2\index.swf\Webpublication#\_BkMarks0xffffff0x004e98184.sol [83] O61 - LFC: 15/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\FZ4BP5L5\macromedia.com\support\flashplayer\sys\#asp.zone-secure.net\settings.sol [89] O61 - LFC: 15/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\pnacl\0.1.0.12332\_platform_specific\x86_32\pnacl_public_pnacl_json [439] O61 - LFC: 15/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\pnacl\0.1.0.12332\_platform_specific\x86_32\pnacl_public_x86_32_ld_nexe [1854128] O61 - LFC: 15/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\pnacl\0.1.0.12332\_platform_specific\x86_32\pnacl_public_x86_32_libcrt_platform_a [4064] O61 - LFC: 15/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\pnacl\0.1.0.12332\_platform_specific\x86_32\pnacl_public_x86_32_libgcc_a [37712] O61 - LFC: 15/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\pnacl\0.1.0.12332\_platform_specific\x86_32\pnacl_public_x86_32_libgcc_eh_a [148206] O61 - LFC: 15/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\pnacl\0.1.0.12332\_platform_specific\x86_32\pnacl_public_x86_32_libpnacl_irt_shim_a [147672] O61 - LFC: 15/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\pnacl\0.1.0.12332\_platform_specific\x86_32\pnacl_public_x86_32_libpnacl_irt_shim_dummy_a [1310] O61 - LFC: 15/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\pnacl\0.1.0.12332\_platform_specific\x86_32\pnacl_public_x86_32_pnacl_llc_nexe [8163600] O61 - LFC: 15/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\pnacl\0.1.0.12332\manifest.fingerprint [66] O61 - LFC: 15/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\pnacl\0.1.0.12332\manifest.json [572] O61 - LFC: 15/01/2014 - 09:08:03 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Temp\5468_25561\crl-set [6536] O61 - LFC: 15/01/2014 - 09:08:03 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Temp\5468_25561\manifest.fingerprint [12] O61 - LFC: 15/01/2014 - 09:08:03 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Temp\5468_25561\manifest.json [34] O61 - LFC: 15/01/2014 - 09:08:03 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Temp\CielTemp\2206\Bilan synthétique.pdf [65201] O61 - LFC: 15/01/2014 - 09:08:03 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Temp\CielTemp\2206\Compte de résultat synthétique - Copie.pdf [63024] O61 - LFC: 15/01/2014 - 09:08:03 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Temp\CielTemp\2206\Compte de résultat synthétique.pdf [62882] O61 - LFC: 15/01/2014 - 09:08:03 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Temp\CielTemp\2206\Etat de rapprochement bancaire - Copie.pdf [61129] O61 - LFC: 15/01/2014 - 09:08:03 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Temp\CielTemp\2206\Etat de rapprochement bancaire.pdf [61976] O61 - LFC: 15/01/2014 - 09:08:03 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Temp\CielTemp\2206\Etat préparatoire 2050.pdf [1246274] O61 - LFC: 15/01/2014 - 09:08:03 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Temp\CielTemp\2206\Grand livre - Copie (2).pdf [167501] O61 - LFC: 15/01/2014 - 09:08:03 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Temp\CielTemp\2206\Grand livre - Copie (3).pdf [212834] O61 - LFC: 15/01/2014 - 09:08:03 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Temp\CielTemp\2206\Grand livre - Copie.pdf [96943] O61 - LFC: 15/01/2014 - 09:08:03 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Temp\CielTemp\2206\Grand livre.pdf [91728] O61 - LFC: 15/01/2014 - 09:08:05 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Roaming\Adobe\Acrobat\11.0\Security\CRLCache\48B76449F3D5FEFA1133AA805E420F0FCA643651.crl [898] O61 - LFC: 15/01/2014 - 09:08:05 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Roaming\Adobe\Acrobat\11.0\Security\CRLCache\A9B8213768ADC68AF64FCC6409E8BE414726687F.crl [37213] O61 - LFC: 15/01/2014 - 09:08:05 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Roaming\Adobe\Acrobat\11.0\Security\addressbook.acrodata [5486] O61 - LFC: 16/01/2014 - 09:07:58 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Apple Computer\iTunes\iPodDevices.xml [2062] O61 - LFC: 16/01/2014 - 09:07:58 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Apple Computer\iTunes\iTunesPrefs.xml [1702789] O61 - LFC: 16/01/2014 - 09:07:58 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011612.000\AudioDiagnostic.0.debugreport.xml [2004] O61 - LFC: 16/01/2014 - 09:07:58 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011612.000\DeviceDiagnostic.0.debugreport.xml [1349] O61 - LFC: 16/01/2014 - 09:07:58 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011612.000\ResultReport.xml [10628] O61 - LFC: 16/01/2014 - 09:07:58 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011612.000\results.xml [321] O61 - LFC: 16/01/2014 - 09:07:58 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011612.000\results.xsl [49097] O61 - LFC: 16/01/2014 - 09:07:58 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011612.001\AudioDiagnostic.0.debugreport.xml [2002] O61 - LFC: 16/01/2014 - 09:07:58 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011612.001\DeviceDiagnostic.0.debugreport.xml [1349] O61 - LFC: 16/01/2014 - 09:07:58 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011612.001\ResultReport.xml [10628] O61 - LFC: 16/01/2014 - 09:07:58 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011612.001\results.xml [321] O61 - LFC: 16/01/2014 - 09:07:58 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011612.001\results.xsl [49097] O61 - LFC: 16/01/2014 - 09:07:58 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011612.002\AudioDiagnostic.0.debugreport.xml [2002] O61 - LFC: 16/01/2014 - 09:07:58 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011612.002\DeviceDiagnostic.0.debugreport.xml [1349] O61 - LFC: 16/01/2014 - 09:07:58 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011612.002\ResultReport.xml [10628] O61 - LFC: 16/01/2014 - 09:07:58 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011612.002\results.xml [321] O61 - LFC: 16/01/2014 - 09:07:58 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011612.002\results.xsl [49097] O61 - LFC: 16/01/2014 - 09:07:58 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011612.003\AudioDiagnostic.0.debugreport.xml [2004] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011612.003\DeviceDiagnostic.0.debugreport.xml [1348] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011612.003\ResultReport.xml [10628] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011612.003\results.xml [321] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011612.003\results.xsl [49097] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011612.004\AudioDiagnostic.0.debugreport.xml [2002] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011612.004\DeviceDiagnostic.0.debugreport.xml [1349] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011612.004\ResultReport.xml [10628] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011612.004\results.xml [321] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011612.004\results.xsl [49097] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011612.005\AudioDiagnostic.0.debugreport.xml [2002] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011612.005\DeviceDiagnostic.0.debugreport.xml [1349] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011612.005\ResultReport.xml [10628] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011612.005\results.xml [321] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011612.005\results.xsl [49097] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011612.006\AudioDiagnostic.0.debugreport.xml [2002] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011612.006\DeviceDiagnostic.0.debugreport.xml [1349] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011612.006\ResultReport.xml [10628] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011612.006\results.xml [321] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011612.006\results.xsl [49097] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011612.007\AudioDiagnostic.0.debugreport.xml [2002] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011612.007\DeviceDiagnostic.0.debugreport.xml [1349] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011612.007\ResultReport.xml [10628] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011612.007\results.xml [321] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011612.007\results.xsl [49097] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011612.008\AudioDiagnostic.0.debugreport.xml [2002] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011612.008\DeviceDiagnostic.0.debugreport.xml [1349] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011612.008\ResultReport.xml [10628] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011612.008\results.xml [321] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011612.008\results.xsl [49097] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011612.009\AudioDiagnostic.0.debugreport.xml [2002] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011612.009\DeviceDiagnostic.0.debugreport.xml [1349] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011612.009\ResultReport.xml [10628] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011612.009\results.xml [321] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011612.009\results.xsl [49097] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011613.000\AudioDiagnostic.0.debugreport.xml [9263] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011613.000\DeviceDiagnostic.0.debugreport.xml [1349] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011613.000\ResultReport.xml [10628] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011613.000\results.xml [321] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011613.000\results.xsl [49097] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011613.001\AudioDiagnostic.0.debugreport.xml [9261] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011613.001\DeviceDiagnostic.0.debugreport.xml [1348] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011613.001\ResultReport.xml [10628] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011613.001\results.xml [321] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011613.001\results.xsl [49097] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011614.000\AudioDiagnostic.0.debugreport.xml [9261] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011614.000\DeviceDiagnostic.0.debugreport.xml [1349] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011614.000\ResultReport.xml [10628] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011614.000\results.xml [321] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011614.000\results.xsl [49097] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011615.000\AudioDiagnostic.0.debugreport.xml [9261] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011615.000\DeviceDiagnostic.0.debugreport.xml [1349] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011615.000\ResultReport.xml [10628] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011615.000\results.xml [321] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\2014011615.000\results.xsl [49097] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\ElevatedDiagnostics\2550435360\latest.cab [10464] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Bookmarks [5594] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Bookmarks.bak [5594] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Cookies [87040] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Cookies-journal [16384] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Current Session [12852] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Current Tabs [12052] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\CURRENT [16] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG [145] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG.old [145] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\MANIFEST-000035 [613] O61 - LFC: 16/01/2014 - 09:07:59 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\chrome_shutdown_ms.txt [4] O61 - LFC: 16/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Favicons [63488] O61 - LFC: 16/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Favicons-journal [16384] O61 - LFC: 16/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_0 [45056] O61 - LFC: 16/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_1 [270336] O61 - LFC: 16/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_2 [1056768] O61 - LFC: 16/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\History [139264] O61 - LFC: 16/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache [27013] O61 - LFC: 16/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\History-journal [16384] O61 - LFC: 16/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Last Session [735395] O61 - LFC: 16/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Last Tabs [68025] O61 - LFC: 16/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.dailymotion.com_0.localstorage [3072] O61 - LFC: 16/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.dailymotion.com_0.localstorage-journal [3608] O61 - LFC: 16/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Login Data [18432] O61 - LFC: 16/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Login Data-journal [8736] O61 - LFC: 16/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor [77824] O61 - LFC: 16/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor-journal [16384] O61 - LFC: 16/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\FZ4BP5L5\macromedia.com\support\flashplayer\sys\#static1.dmcdn.net\settings.sol [87] O61 - LFC: 16/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\FZ4BP5L5\macromedia.com\support\flashplayer\sys\#www.dailymotion.com\settings.sol [89] O61 - LFC: 16/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\FZ4BP5L5\macromedia.com\support\flashplayer\sys\settings.sol [546] O61 - LFC: 16/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\FZ4BP5L5\static1.dmcdn.net\com.dm.player.sol [101] O61 - LFC: 16/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\FZ4BP5L5\www.dailymotion.com\com.dm.player.sol [220] O61 - LFC: 16/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Preferences [95278] O61 - LFC: 16/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Session Storage\000091.ldb [299698] O61 - LFC: 16/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Session Storage\000093.ldb [16855] O61 - LFC: 16/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Session Storage\CURRENT [16] O61 - LFC: 16/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG [266] O61 - LFC: 16/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG.old [776] O61 - LFC: 16/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Session Storage\MANIFEST-000092 [156] =>.Google Inc O61 - LFC: 16/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Shortcuts [24576] O61 - LFC: 16/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Shortcuts-journal [12824] O61 - LFC: 16/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Top Sites [90112] O61 - LFC: 16/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Top Sites-journal [16384] O61 - LFC: 16/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\TransportSecurity [1279] O61 - LFC: 16/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Visited Links [131072] O61 - LFC: 16/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Web Data [92160] O61 - LFC: 16/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal [12848] O61 - LFC: 16/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Local State [55006] O61 - LFC: 16/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Safe Browsing Bloom [7603984] O61 - LFC: 16/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Safe Browsing Bloom Prefix Set [1335046] O61 - LFC: 16/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Safe Browsing Cookies [6144] O61 - LFC: 16/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Safe Browsing Cookies-journal [4640] O61 - LFC: 16/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Safe Browsing Csd Whitelist [135496] O61 - LFC: 16/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Safe Browsing Download [1248840] O61 - LFC: 16/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Safe Browsing Download Whitelist [19504] O61 - LFC: 16/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Safe Browsing Extension Blacklist [6940] O61 - LFC: 16/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\Safe Browsing IP Blacklist [168] O61 - LFC: 16/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.1.377\manifest.fingerprint [66] O61 - LFC: 16/01/2014 - 09:08:01 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.1.377\manifest.json [845] O61 - LFC: 16/01/2014 - 09:08:02 ---A- . (.Google Inc..) -- C:\Users\Best Hotel Fixe\AppData\Local\Google\Picasa2\update\LifescapeUpdater\setup.exe [17660184] O61 - LFC: 16/01/2014 - 09:08:02 --HA- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\IconCache.db [2562182] O61 - LFC: 16/01/2014 - 09:08:03 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Temp\16883099.od [134] O61 - LFC: 16/01/2014 - 09:08:03 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Temp\6025179.od [134] O61 - LFC: 16/01/2014 - 09:08:03 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Temp\CVR9D8B.tmp.cvr [0] O61 - LFC: 16/01/2014 - 09:08:03 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Temp\CVREFDB.tmp.cvr [0] O61 - LFC: 16/01/2014 - 09:08:05 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Roaming\Adobe\Acrobat\11.0\JSCache\GlobSettings [24] O61 - LFC: 16/01/2014 - 09:08:05 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Roaming\Adobe\Acrobat\11.0\Security\CRLCache\0FDED5CEB68C302B1CDB2BDDD9D0000E76539CB0.crl [637] O61 - LFC: 16/01/2014 - 09:08:05 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Roaming\Adobe\Acrobat\11.0\Security\CRLCache\CE338828149963DCEA4CD26BB86F0363B4CA0BA5.crl [681] O61 - LFC: 16/01/2014 - 09:08:05 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Roaming\Adobe\Acrobat\11.0\Security\services_rdr.dat [10240] O61 - LFC: 16/01/2014 - 09:08:05 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Roaming\Adobe\Acrobat\11.0\Security\services_rdri.dat [24152] O61 - LFC: 16/01/2014 - 09:08:05 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Roaming\Adobe\Acrobat\11.0\Security\services_rdrk.dat [264] O61 - LFC: 16/01/2014 - 09:08:05 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Roaming\Adobe\Acrobat\11.0\TMDocs.sav [36] O61 - LFC: 16/01/2014 - 09:08:05 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Roaming\Adobe\Acrobat\11.0\TMGrpPrm.sav [54] O61 - LFC: 16/01/2014 - 09:08:05 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Roaming\Adobe\Paramètres Adobe Illustrator CS\AIAppResources [146360] =>.Adobe Systems Incorporated O61 - LFC: 16/01/2014 - 09:08:05 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Roaming\Adobe\Paramètres Adobe Illustrator CS\AIPrefs [47662] =>.Adobe Systems Incorporated O61 - LFC: 16/01/2014 - 09:08:05 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Roaming\Adobe\Paramètres Adobe Illustrator CS\Aplatissement prédéfini des transparences [1308] =>.Adobe Systems Incorporated O61 - LFC: 16/01/2014 - 09:08:05 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Roaming\Adobe\Paramètres Adobe Illustrator CS\Impressions prédéfinies [2044] =>.Adobe Systems Incorporated O61 - LFC: 16/01/2014 - 09:08:05 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Roaming\Adobe\Paramètres Adobe Illustrator CS\PDF prédéfinis [5671] =>.Adobe Systems Incorporated O61 - LFC: 16/01/2014 - 09:08:05 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Roaming\Adobe\Paramètres Adobe Illustrator CS\Paramètres de couleurs AI [440] =>.Adobe Systems Incorporated O61 - LFC: 16/01/2014 - 09:08:05 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Roaming\Apple Computer\iTunes\Cookies\Cookies.binarycookies [521] O61 - LFC: 16/01/2014 - 09:08:05 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Roaming\Apple Computer\iTunes\iTunesPrefs.xml [189930] O61 - LFC: 16/01/2014 - 09:08:08 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Roaming\Apple Computer\Preferences\ByHost\com.apple.syncservices.{e29ac6c0-7037-11de-816d-806e6f6e6963}.plist [73] O61 - LFC: 16/01/2014 - 09:08:08 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Roaming\Apple Computer\Preferences\com.apple.iTunes.plist [605] O61 - LFC: 16/01/2014 - 09:08:08 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Roaming\Apple Computer\SyncServices\Local\admin.syncdb [61440] O61 - LFC: 16/01/2014 - 09:08:08 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Roaming\Apple Computer\SyncServices\Local\schemas.adminarchive [133532] O61 - LFC: 16/01/2014 - 09:08:11 R--A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Roaming\Microsoft\Installer\{A50DE037-B5C0-4C8A-8049-B0C576B313D1}\GPUploader.exe [71894] O61 - LFC: 16/01/2014 - 09:08:12 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Roaming\Microsoft\Office\Excel12.pip [1552] O61 - LFC: 16/01/2014 - 09:08:12 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Roaming\Microsoft\Office\MSOut12.pip [1804] O61 - LFC: 16/01/2014 - 09:08:12 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Roaming\Microsoft\Office\Recent\Bureau.LNK [912] O61 - LFC: 16/01/2014 - 09:08:12 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Roaming\Microsoft\Office\Recent\Enregistrement fidélité.LNK [1242] O61 - LFC: 16/01/2014 - 09:08:12 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Roaming\Microsoft\Office\Recent\FIDELITE.LNK [1025] O61 - LFC: 16/01/2014 - 09:08:12 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Roaming\Microsoft\Office\Recent\Mes images.LNK [935] O61 - LFC: 16/01/2014 - 09:08:12 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Roaming\Microsoft\Office\Recent\Scan16-01-2014.LNK [1079] O61 - LFC: 16/01/2014 - 09:08:12 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Roaming\Microsoft\Office\Recent\Tabary.LNK [1037] O61 - LFC: 16/01/2014 - 09:08:12 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Roaming\Microsoft\Office\Recent\Voeux-2014.LNK [1082] O61 - LFC: 16/01/2014 - 09:08:12 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Roaming\Microsoft\Outlook\Outlook.NK2 [1721806] O61 - LFC: 16/01/2014 - 09:08:12 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Roaming\Microsoft\Outlook\Outlook.xml [4035] O61 - LFC: 16/01/2014 - 09:08:12 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Roaming\Microsoft\Outlook\outcmd.dat [1592] O61 - LFC: 16/01/2014 - 09:08:12 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Roaming\Microsoft\Spelling\fr-FR\default.acl [2] O61 - LFC: 16/01/2014 - 09:08:12 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Roaming\Microsoft\Spelling\fr-FR\default.dic [2] O61 - LFC: 16/01/2014 - 09:08:12 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Roaming\Microsoft\Spelling\fr-FR\default.exc [2] O61 - LFC: 16/01/2014 - 09:08:12 --H-- . (...) -- C:\Users\Best Hotel Fixe\AppData\Roaming\Microsoft\Office\Recent\index.dat [284] O61 - LFC: 16/01/2014 - 09:08:23 ---A- . (...) -- C:\Users\Best Hotel Fixe\Music\iTunes\iTunes Library Extras.itdb [16384] O61 - LFC: 16/01/2014 - 09:08:23 ---A- . (...) -- C:\Users\Best Hotel Fixe\Music\iTunes\iTunes Library.itl [15528] O61 - LFC: 16/01/2014 - 09:08:23 ---A- . (...) -- C:\Users\Best Hotel Fixe\Music\iTunes\iTunes Music Library.xml [32960] O61 - LFC: 16/01/2014 - 09:08:23 --HA- . (...) -- C:\Users\Best Hotel Fixe\Music\iTunes\sentinel [8] O61 - LFC: 17/01/2014 - 09:08:11 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Roaming\Hewlett-Packard Company\HPTLBXFX\6.15.1163.0\handle.dat [153] O61 - LFC: 17/01/2014 - 09:08:12 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Roaming\ZHP\Log.txt [351787] =>.Nicolas Coolman O61 - LFC: 17/01/2014 - 09:08:12 ---A- . (...) -- C:\Users\Best Hotel Fixe\AppData\Roaming\ZHP\TestsZHPDiag.txt [3070] =>.Nicolas Coolman ~ 25 Fichiers temporaires (Temporary files) ~ 1 Fichiers cookies (Cookies files) ~ Files: 450 Scanned in 00mn 26s ---\\ Liste des outils de désinfection (LATC) (O63) O63 - Logiciel: ZHPDiag 2014 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman ~ ADS: Scanned in 00mn 00s ---\\ Liste les services legacy du registre (LALS) (O64) O64 - Services: CurCS - 14/09/2013 - C:\Windows\system32\drivers\afd.sys (AFD) .(.Microsoft Corporation - Ancillary Function Driver for WinSock.) - LEGACY_AFD O64 - Services: CurCS - 19/07/2013 - C:\Windows\System32\DRIVERS\avc3.sys (avc3) .(.BitDefender - Active Virus Control filter driver.) - LEGACY_AVC3 O64 - Services: CurCS - 19/07/2013 - C:\Windows\System32\DRIVERS\avckf.sys (avckf) .(.BitDefender - Active Virus Control Kernel Filtering drive.) - LEGACY_AVCKF O64 - Services: CurCS - 22/02/2013 - c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys (BdfNdisf) .(.BitDefender LLC - BitDefender Firewall NDIS6 Filter Driver.) - LEGACY_BDFNDISF O64 - Services: CurCS - 14/11/2011 - C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys (bdfwfpf) .(.BitDefender LLC - BitDefender Firewall WFP Filter Driver.) - LEGACY_BDFWFPF O64 - Services: CurCS - 26/07/2013 - C:\Program Files\Bitdefender\Bitdefender\bdselfpr.sys (bdselfpr) .(.BitDefender LLC - BitDefender Self Protection Driver.) - LEGACY_BDSELFPR O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\Drivers\Beep.sys (Beep) .(.Microsoft Corporation - BEEP Driver.) - LEGACY_BEEP O64 - Services: CurCS - 04/07/2012 - C:\Windows\system32\browser.dll (bowser) .(.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) - LEGACY_BOWSER O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\clfs.sys (CLFS) .(.Microsoft Corporation - Common Log File System Driver.) - LEGACY_CLFS O64 - Services: CurCS - 04/07/2013 - C:\Windows\System32\Drivers\cng.sys (CNG) .(.Microsoft Corporation - Kernel Cryptography, Next Generation.) - LEGACY_CNG O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\cscsvc.dll (CSC) .(.Microsoft Corporation - DLL du service CSC.) - LEGACY_CSC O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\drivers\dfsc.sys (DfsC) .(.Microsoft Corporation - DFS Namespace Client Driver.) - LEGACY_DFSC O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\discache.sys (discache) .(.Microsoft Corporation - System Indexer/Cache Driver.) - LEGACY_DISCACHE O64 - Services: CurCS - 01/08/2013 - C:\Windows\system32\drivers\dxgkrnl.sys (DXGKrnl) .(.Microsoft Corporation - DirectX Graphics Kernel.) - LEGACY_DXGKRNL O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\fileinfo.sys (FileInfo) .(.Microsoft Corporation - FileInfo Filter Driver.) - LEGACY_FILEINFO O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\fltmgr.sys (FltMgr) .(.Microsoft Corporation - Gestionnaire de filtres de système de fichi.) - LEGACY_FLTMGR O64 - Services: CurCS - 24/01/2013 - C:\Windows\system32\drivers\fvevol.sys (fvevol) .(.Microsoft Corporation - BitLocker Drive Encryption Driver.) - LEGACY_FVEVOL O64 - Services: CurCS - 23/08/2013 - C:\Windows\System32\DRIVERS\gzflt.sys (gzflt) .(.BitDefender LLC - BitDefender Gonzales FileSystem Driver.) - LEGACY_GZFLT O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\drivers\http.sys (HTTP) .(.Microsoft Corporation - HTTP Pile du protocole.) - LEGACY_HTTP O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\drivers\hwpolicy.sys (hwpolicy) .(.Microsoft Corporation - Hardware Policy Driver.) - LEGACY_HWPOLICY O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\intelide.sys (intelide) .(.Microsoft Corporation - Intel PCI IDE Driver.) - LEGACY_INTELIDE O64 - Services: CurCS - 25/09/2013 - C:\Windows\System32\Drivers\ksecdd.sys (KSecDD) .(.Microsoft Corporation - Kernel Security Support Provider Interface.) - LEGACY_KSECDD O64 - Services: CurCS - 25/09/2013 - C:\Windows\System32\Drivers\ksecpkg.sys (KSecPkg) .(.Microsoft Corporation - Kernel Security Support Provider Interface.) - LEGACY_KSECPKG O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\lltdio.sys (lltdio) .(.Microsoft Corporation - Link-Layer Topology Mapper I/O Driver.) - LEGACY_LLTDIO O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\luafv.sys (luafv) .(.Microsoft Corporation - Pilote de filtre de virtualisation de fichi.) - LEGACY_LUAFV O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\drivers\mountmgr.sys (mountmgr) .(.Microsoft Corporation - Gestionnaire des points de montage.) - LEGACY_MOUNTMGR O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\FirewallAPI.dll (mpsdrv) .(.Microsoft Corporation - API du Pare-feu Windows.) - LEGACY_MPSDRV O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\wkssvc.dll (mrxsmb) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\wkssvc.dll (mrxsmb10) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB10 O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\wkssvc.dll (mrxsmb20) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB20 O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\msisadrv.sys (msisadrv) .(.Microsoft Corporation - ISA Driver.) - LEGACY_MSISADRV O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\mup.sys (Mup) .(.Microsoft Corporation - Multiple UNC Provider Driver.) - LEGACY_MUP O64 - Services: CurCS - 22/08/2012 - C:\Windows\system32\drivers\ndis.sys (NDIS) .(.Microsoft Corporation - Pilote NDIS 6.20.) - LEGACY_NDIS O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\netbios.sys (NetBIOS) .(.Microsoft Corporation - NetBIOS interface driver.) - LEGACY_NETBIOS O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\drivers\netbt.sys (NetBT) .(.Microsoft Corporation - MBT Transport driver.) - LEGACY_NETBT O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) .(.Microsoft Corporation - NSI Proxy.) - LEGACY_NSIPROXY O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\pcw.sys (pcw) .(.Microsoft Corporation - Performance Counters for Windows Driver.) - LEGACY_PCW O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\peauth.sys (PEAUTH) .(.Microsoft Corporation - Protected Environment Authentication and Au.) - LEGACY_PEAUTH O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\pacer.sys (Psched) .(.Microsoft Corporation - Planificateur de paquets QoS.) - LEGACY_PSCHED O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\wkssvc.dll (rdbss) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_RDBSS O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) .(.Microsoft Corporation - RDP Miniport.) - LEGACY_RDPCDD O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) .(.Microsoft Corporation - RDP Encoder Miniport.) - LEGACY_RDPENCDD O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) .(.Microsoft Corporation - RDP Reflector Driver Miniport.) - LEGACY_RDPREFMP O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\rspndr.sys (rspndr) .(.Microsoft Corporation - Link-Layer Topology Responder Driver for ND.) - LEGACY_RSPNDR O64 - Services: CurCS - 13/07/2009 - C:\Windows\System32\Drivers\secdrv.sys (secdrv) .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\Drivers\spldr.sys (spldr) .(.Microsoft Corporation - loader for security processor.) - LEGACY_SPLDR O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\srvsvc.dll (srv) .(.Microsoft Corporation - DLL du service Serveur.) - LEGACY_SRV O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\srvsvc.dll (srv2) .(.Microsoft Corporation - DLL du service Serveur.) - LEGACY_SRV2 O64 - Services: CurCS - 29/04/2011 - C:\Windows\System32\DRIVERS\srvnet.sys (srvnet) .(.Microsoft Corporation - Server Network driver.) - LEGACY_SRVNET O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\vmstorfltres.dll (storflt) .(.Microsoft Corporation - Fichier DLL de ressources du filtre de stoc.) - LEGACY_STORFLT O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\tcpipcfg.dll (Tcpip) .(.Microsoft Corporation - Objets de configuration du réseau.) - LEGACY_TCPIP O64 - Services: CurCS - 03/10/2012 - C:\Windows\System32\drivers\tcpipreg.sys (tcpipreg) .(.Microsoft Corporation - TCP/IP Registry Compatibility Driver.) - LEGACY_TCPIPREG O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\tcpipcfg.dll (tdx) .(.Microsoft Corporation - Objets de configuration du réseau.) - LEGACY_TDX O64 - Services: CurCS - 07/08/2013 - C:\Windows\System32\DRIVERS\trufos.sys (trufos) .(.BitDefender S.R.L. - Trufos Kernel Module.) - LEGACY_TRUFOS O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\vga.sys (VgaSave) .(.Microsoft Corporation - VGA/Super VGA Video Driver.) - LEGACY_VGASAVE O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\vmbusres.dll (vmbus) .(.Microsoft Corporation - Fichier DLL de ressources de bus VMBus.) - LEGACY_VMBUS O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\volmgrx.sys (volmgrx) .(.Microsoft Corporation - Pilote d’extension du gestionnaire de volum.) - LEGACY_VOLMGRX O64 - Services: CurCS - 20/11/2010 - C:\Windows\System32\drivers\volsnap.sys (volsnap) .(.Microsoft Corporation - Pilote de cliché instantané du volume.) - LEGACY_VOLSNAP O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\rascfg.dll (Wanarpv6) .(.Microsoft Corporation - Objets de configuration RAS.) - LEGACY_WANARPV6 O64 - Services: CurCS - 25/06/2013 - C:\Windows\System32\drivers\Wdf01000.sys (Wdf01000) .(.Microsoft Corporation - Runtime de l’infrastructure de pilotes en m.) - LEGACY_WDF01000 O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\wfplwf.sys (WfpLwf) .(.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - LEGACY_WFPLWF O64 - Services: CurCS - 26/07/2012 - C:\Windows\System32\drivers\WudfPf.sys (WudfPf) .(.Microsoft Corporation - Windows Driver Foundation - User-mode Drive.) - LEGACY_WUDFPF ~ Legacy: 75 Scanned in 00mn 16s ---\\ Associations Shell Spawning (O67) O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\System32\eventvwr.exe O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Not Key.) ~ FASS Keys: 11 Scanned in 00mn 00s ---\\ Menu de démarrage Internet (SMI) (O68) O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- C:\Program Files\Safari\Safari.exe (.not file.) ~ Keys: Scanned in 00mn 00s ---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69) O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com ~ Keys: Scanned in 00mn 00s ---\\ Enumère les service demarrés par Svchost (SSS) (O83) O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [62464] O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [67584] O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [67584] O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [168960] O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [593408] O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [679424] O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll [473600] O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’accès distant.) -- C:\Windows\System32\rasauto.dll [90624] O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll [286208] O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [75264] O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements système (SENS).) -- C:\Windows\System32\sens.dll [49664] O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll [300544] O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM).) -- C:\Windows\System32\tapisrv.dll [242176] O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du serveur hôte de session Burea.) -- C:\Windows\System32\termsrv.dll [521216] O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll [1933848] O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\Windows\System32\qmgr.dll [585728] O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [328192] O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur un réseau IPv4..) -- C:\Windows\System32\iphlpsvc.dll [499712] O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll [21504] O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [47104] O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [114688] O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédias.) -- C:\Windows\System32\mmcss.dll [49664] O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [61440] O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [98304] O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [164352] O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [750592] O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\kmsvc.dll [71168] O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à distance.) -- C:\Windows\System32\sessenv.dll [113664] O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [168960] O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [102912] O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [37376] O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [76800] O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll [149504] ~ Services: 33 Scanned in 00mn 00s ---\\ Recherche particulière à la racine du système (SPRF) (O84) [MD5.6146FF31F9C920A7C41BB770F60D866B] [SPRF][12/09/2013] (...) -- C:\ProgramData\1378969196.bdinstall.bin [532614] [MD5.1B7683564DC1FB385FCF9CAA3BA9BEC9] [SPRF][08/01/2014] (...) -- C:\ProgramData\1389200680.bdinstall.bin [88292] [MD5.21F415135D78B6C0E7F10666246B2DE9] [SPRF][08/01/2014] (...) -- C:\ProgramData\1389200681.bdinstall.bin [545978] [MD5.3CB5E2D534E1FB8F2B072F50A35E289E] [SPRF][09/01/2014] (...) -- C:\ProgramData\1389258459.bdinstall.bin [88294] [MD5.88382C31B14EDF25238EA3394945584B] [SPRF][09/01/2014] (...) -- C:\ProgramData\1389258464.bdinstall.bin [477526] [MD5.889DFD5EA4C32F08BA0352BB8360FC6B] [SPRF][10/01/2014] (...) -- C:\ProgramData\1389338763.bdinstall.bin [88293] [MD5.BED720E3C11F1A37C670969F8214807D] [SPRF][10/01/2014] (...) -- C:\ProgramData\1389338764.1232.bin [206864] [MD5.9C6AACE191607A3B61C94C65EDBC5019] [SPRF][10/01/2014] (...) -- C:\ProgramData\1389338764.1324.bin [1090] [MD5.F30E94C1F7BF16BDBB7411567BEF4519] [SPRF][10/01/2014] (...) -- C:\ProgramData\1389338764.1360.bin [35724] [MD5.BBF6EE3DE24200CB88BE734C143D3428] [SPRF][10/01/2014] (...) -- C:\ProgramData\1389339269.bdinstall.bin [278458] [MD5.A97FF2D8AC8F179816570BE8E39C5196] [SPRF][10/01/2014] (...) -- C:\ProgramData\1389339908.bdinstall.bin [88311] [MD5.3A25167AA34CF6C0E32D9E0381DFD51B] [SPRF][10/01/2014] (...) -- C:\ProgramData\1389339910.bdinstall.bin [175935] [MD5.6926C84C83FC0214C8491AC4E06247BF] [SPRF][10/01/2014] (...) -- C:\ProgramData\1389339947.bdinstall.bin [58950] [MD5.DC8F38FC28AB3288F4D7DC1CAB95D310] [SPRF][10/01/2014] (...) -- C:\ProgramData\1389339971.bdinstall.bin [58950] [MD5.0937403D9B5C192827302B75DB4B60F4] [SPRF][10/01/2014] (...) -- C:\ProgramData\1389340048.bdinstall.bin [182884] [MD5.91147751E5CE2AF6B25DDA0315ADB15E] [SPRF][10/01/2014] (...) -- C:\ProgramData\1389340142.bdinstall.bin [168782] [MD5.4227A3B765CFDBA3827DDB6C6B642941] [SPRF][10/01/2014] (...) -- C:\ProgramData\1389340224.bdinstall.bin [62384] [MD5.AAF9FD33495A294D97274CDEC9573970] [SPRF][10/01/2014] (...) -- C:\ProgramData\1389340341.bdinstall.bin [515013] [MD5.F92F9CD2CA74E322B18CD859AC7A0A34] [SPRF][14/01/2014] (...) -- C:\ProgramData\1389696115.bdinstall.bin [92558] [MD5.E440FF67983870CD9C3130FE21149549] [SPRF][14/01/2014] (...) -- C:\ProgramData\1389696120.bdinstall.bin [488491] [MD5.66A812AD607D5EF935AC5DEC58645D34] [SPRF][12/09/2013] (...) -- C:\ProgramData\bdinstall.bin [67647] [MD5.D144F2BC69DC0482663F048453419C12] [SPRF][08/01/2014] (.AnyProtect.com - AnyProtect Setup.) -- C:\Users\Best Hotel Fixe\AppData\Local\AnyProtectScannerSetup.exe [823160] [MD5.F0A5B44B9B8A23E2F2950B346B5C7718] [SPRF][23/12/2013] (...) -- C:\Users\Best Hotel Fixe\AppData\Local\Temp\Quarantine.exe [360051] [MD5.8CE7705CB43B03BB7970B04087C7758F] [SPRF][30/06/2006] (.InstallShield Software Corporation - InstallShield Update Service Setup Player Module.) -- C:\Windows\Downloaded Program Files\dwusplay.dll [29616] [MD5.D715A946E66028CDB04C9E9F8C7137F5] [SPRF][20/03/2007] (.InstallShield Software Corporation - InstallShield Update Service Setup Player.) -- C:\Windows\Downloaded Program Files\dwusplay.exe [205744] [MD5.632E0CE38FBCADEAAE28077F4C9C45D5] [SPRF][21/10/2010] (.Adobe Systems, Inc. - Adobe® Flash® Player Installer/Uninstaller 10.1 r102.) -- C:\Windows\Downloaded Program Files\FP_AX_CAB_INSTALLER.exe [2827728] [MD5.2D54DAECBA60EB03F9E63DD50669F634] [SPRF][24/10/2008] (.Macrovision Corporation - Macrovision Software Manager Web Agent.) -- C:\Windows\Downloaded Program Files\isusweb.dll [488736] ~ Files: 27 Scanned in 00mn 00s ---\\ Liste des exceptions du parefeu (FirewallRules) (O87) O87 - FAEL: "SNMPTRAP-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Interruption SNMP.) -- C:\Windows\system32\snmptrap.exe O87 - FAEL: "SNMPTRAP-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Interruption SNMP.) -- C:\Windows\system32\snmptrap.exe O87 - FAEL: "WMP-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMP-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-QWave-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-QWave-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-QWave-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-QWave-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-WMP-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-WMP-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-WMP-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-QWave-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-QWave-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-QWave-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-QWave-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-WMP-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-WMP-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-WMP-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-UPnP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-TCP3587-In" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-TCP3587-Out" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-UDP3540-In" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-UDP3540-Out" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "Collab-P2PHost-In-TCP" | In - None - P6 - TRUE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe O87 - FAEL: "Collab-P2PHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe O87 - FAEL: "Collab-P2PHost-WSD-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe O87 - FAEL: "Collab-P2PHost-WSD-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe O87 - FAEL: "Collab-PNRP-In-UDP" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "Collab-PNRP-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "Collab-PNRP-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "Collab-PNRP-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteAssistance-In-TCP-EdgeScope" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe O87 - FAEL: "RemoteAssistance-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-In-EdgeScope" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-OUT" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteAssistance-RAServer-In-TCP-NoScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur COM d’assistance à distance Windows.) -- C:\Windows\system32\raserver.exe O87 - FAEL: "RemoteAssistance-RAServer-Out-TCP-NoScope-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur COM d’assistance à distance Windows.) -- C:\Windows\system32\raserver.exe O87 - FAEL: "RemoteAssistance-DCOM-In-TCP-NoScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteAssistance-In-TCP-EdgeScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe O87 - FAEL: "RemoteAssistance-Out-TCP-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe O87 - FAEL: "RemoteAssistance-SSDPSrv-In-UDP-Active" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteAssistance-SSDPSrv-Out-UDP-Active" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteAssistance-SSDPSrv-In-TCP-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteAssistance-SSDPSrv-Out-TCP-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-In-EdgeScope-Active" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-OUT-Active" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "FPS-SpoolSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe O87 - FAEL: "FPS-SpoolSvc-In-TCP" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe O87 - FAEL: "FPS-LLMNR-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "FPS-LLMNR-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-DHCP-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-DHCP-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-DHCPV6-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-DHCPV6-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-Teredo-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-Teredo-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-IPHTTPS-Out" | Out - None - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-GP-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-DNS-Out-UDP" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-GP-LSASS-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Local Security Authority Process.) -- C:\Windows\system32\lsass.exe O87 - FAEL: "NETDIS-SSDPSrv-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-UPnP-Out-TCP-Active" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-FDPHOST-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-FDPHOST-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-LLMNR-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-LLMNR-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-UPnP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-FDPHOST-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-FDPHOST-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-LLMNR-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-LLMNR-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MsiScsi-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MsiScsi-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MsiScsi-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MsiScsi-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MSDTC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe O87 - FAEL: "MSDTC-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe O87 - FAEL: "MSDTC-KTMRM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MSDTC-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MSDTC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe O87 - FAEL: "MSDTC-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe O87 - FAEL: "MSDTC-KTMRM-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MSDTC-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteSvcAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe O87 - FAEL: "RemoteSvcAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteSvcAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe O87 - FAEL: "RemoteSvcAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "PerfLogsAlerts-PLASrv-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Performance Logs and Alerts DCOM Server.) -- C:\Windows\system32\plasrv.exe O87 - FAEL: "PerfLogsAlerts-DCOM-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "PerfLogsAlerts-PLASrv-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Performance Logs and Alerts DCOM Server.) -- C:\Windows\system32\plasrv.exe O87 - FAEL: "PerfLogsAlerts-DCOM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMI-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMI-WINMGMT-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMI-WINMGMT-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMI-ASYNC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) -- C:\Windows\system32\wbem\unsecapp.exe O87 - FAEL: "WMI-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMI-WINMGMT-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMI-WINMGMT-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMI-ASYNC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) -- C:\Windows\system32\wbem\unsecapp.exe O87 - FAEL: "PNRPMNRS-PNRP-In-UDP" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "PNRPMNRS-PNRP-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "PNRPMNRS-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "PNRPMNRS-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteEventLogSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteEventLogSvc-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteEventLogSvc-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteEventLogSvc-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteTask-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteTask-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteTask-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteTask-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteFwAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteFwAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteFwAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteFwAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RVM-VDS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service de disque virtuel.) -- C:\Windows\system32\vds.exe O87 - FAEL: "RVM-VDSLDR-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Virtual Disk Service Loader.) -- C:\Windows\system32\vdsldr.exe O87 - FAEL: "RVM-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RVM-VDS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service de disque virtuel.) -- C:\Windows\system32\vds.exe O87 - FAEL: "RVM-VDSLDR-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Virtual Disk Service Loader.) -- C:\Windows\system32\vdsldr.exe O87 - FAEL: "RVM-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe =>.Microsoft Corporation O87 - FAEL: "MCX-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe =>.Microsoft Corporation O87 - FAEL: "MCX-QWave-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-QWave-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-QWave-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-QWave-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe =>.Microsoft Corporation O87 - FAEL: "MCX-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe =>.Microsoft Corporation O87 - FAEL: "MCX-MCX2SVC-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-Prov-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - MCX2 Provisioning library.) -- C:\Windows\ehome\mcx2prov.exe O87 - FAEL: "MCX-PlayTo-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-McrMgr-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Media Center Extender Manager.) -- C:\Windows\ehome\mcrmgr.exe O87 - FAEL: "MCX-PlayTo-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-FDPHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WPDMTP-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe O87 - FAEL: "WPDMTP-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe O87 - FAEL: "WPDMTP-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WPDMTP-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WPDMTP-UPnPHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WPDMTP-UPnP-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "SPPSVC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service de la plateforme de protection logicielle Microsoft.) -- C:\Windows\system32\sppsvc.exe O87 - FAEL: "SPPSVC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service de la plateforme de protection logicielle Microsoft.) -- C:\Windows\system32\sppsvc.exe O87 - FAEL: "NetPres-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe =>.Microsoft Corporation O87 - FAEL: "NetPres-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe =>.Microsoft Corporation O87 - FAEL: "NetPres-WSD-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe =>.Microsoft Corporation O87 - FAEL: "NetPres-WSD-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe =>.Microsoft Corporation O87 - FAEL: "NetPres-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe =>.Microsoft Corporation O87 - FAEL: "NetPres-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe =>.Microsoft Corporation O87 - FAEL: "Microsoft-Windows-PeerDist-WSD-In" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "Microsoft-Windows-PeerDist-WSD-Out" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{B51B1996-EC30-432F-932D-9C883547E2B6}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe O87 - FAEL: "{50CE6515-22D1-4B82-A5DD-A3251FD39C6E}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\System32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{8F86D86D-3BF9-4345-9AFD-4448690A3827}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Windows Live Sync.) -- C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe O87 - FAEL: "{F89DEE95-AB34-4A74-80B1-0C3C8B1A65B0}" | In - None - P17 - TRUE | .(.CyberLink Corp. - CyberLink PowerDVD DX.) -- C:\Program Files\CyberLink\PowerDVD DX\PowerDVD.exe O87 - FAEL: "{673B7EC9-ED69-48E5-A193-0B99B6A13F23}" | In - None - P17 - TRUE | .(.CyberLink Corp. - CyberLink PowerDVD Resident Program.) -- C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe O87 - FAEL: "{F799687C-A8BC-436F-A01E-0B7752256850}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Microsoft Office Outlook.) -- C:\Program Files\Microsoft Office\Office12\outlook.exe =>.Microsoft Corporation O87 - FAEL: "{DEF9369C-A0F0-4D77-BC5B-270A04C7299E}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Microsoft Office Groove.) -- C:\Program Files\Microsoft Office\Office12\GROOVE.exe O87 - FAEL: "{B36E6A23-7E67-476D-B1D9-D08F4ECF5AE5}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Microsoft Office Groove.) -- C:\Program Files\Microsoft Office\Office12\GROOVE.exe O87 - FAEL: "{0B1BA3FF-BAAC-42D1-8C7F-E9693B8640D3}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Microsoft Office OneNote.) -- C:\Program Files\Microsoft Office\Office12\ONENOTE.exe O87 - FAEL: "{9A32D1AE-09CB-49F9-9852-C2637C11D2C4}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Microsoft Office OneNote.) -- C:\Program Files\Microsoft Office\Office12\ONENOTE.exe O87 - FAEL: "{96524509-AAE2-42DB-928D-9AEB8FC7A40B}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe O87 - FAEL: "{8A9A6DF4-18D9-4799-9996-B97FFD3D69D8}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{EDA6492E-AFEC-4C3C-8D16-60E635125D0B}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{993E45D6-99F9-40B7-83BE-17C5FF904C65}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "{27C2D495-5E8D-48F6-8370-9F69807590CB}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "{999A6BDA-EB7E-4416-8F03-B99FF9620021}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "{936A9317-F3F3-4491-AEB5-CC63A8C7F38F}" | Out - Private - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{20C92E31-9831-4311-A18B-FE007B43AC0D}" | Out - Private - P6 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation O87 - FAEL: "{E8424A30-BD0B-4DFE-96CB-DB0D7CC5A319}" | In - Private - P6 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation O87 - FAEL: "{D7065037-2D98-439F-82DC-9F1B563EB725}" | Out - Private - P17 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation O87 - FAEL: "{FED01EC6-02A5-4350-AC27-D25D1D7765A4}" | In - Private - P17 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation O87 - FAEL: "{785C25D4-B90B-4EC5-A31D-BC98294DDFC8}" | Out - Private - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "{1DC4DC3E-8D6D-41DC-9BA3-B76B2B095D50}" | Out - Private - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "{16C1CE69-D05E-45D6-8FD4-1D2147E331BB}" | In - Private - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "{1BC33049-9D31-4F72-AB7A-351E1A447A61}" | Out - Private - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{EA3D265A-2AC6-48A7-96DF-56E91FEDB569}" | In - Private - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{0314D954-7342-4698-8F86-8CF315428956}" | Out - Private - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{951D0BE7-A8AE-439B-8CB6-72D5D931F4A6}" | In - Private - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{31FD0866-5C3D-40F5-B863-D92F7ED6AD9A}" | Out - Private - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{9CF5B387-FB99-4643-A85A-16451FB03075}" | In - Private - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{700B61E9-BE46-47BE-BA09-2AE08340904E}" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{5C42C9B8-5163-4C5B-8158-29BD45996FAC}" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{5F463FCD-7DD5-4E58-B6FA-AD653441EF0D}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Windows Live Communications Platform.) -- C:\Program Files\Windows Live\Contacts\wlcomm.exe O87 - FAEL: "RemoteDesktop-UserMode-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{4D40F8D1-8CCA-4E53-9420-A2BC0167E9C9}" | In - None - P6 - TRUE | .(.Apple Inc. - WebKit2WebProcess.exe.) -- C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe O87 - FAEL: "{FE82C1D0-98DE-4D20-A1B8-9581FEC80CDE}" | In - None - P6 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe =>.Skype Technologies S.A. O87 - FAEL: "{6A8E2F2F-FC5F-4014-9B58-4D7EEC1893CD}" | In - Private - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe O87 - FAEL: "{D2E953BB-34EE-4CFB-9FB8-57236ECF808F}" | In - Private - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe O87 - FAEL: "TCP Query User{0E435D7D-B375-484F-925F-68487B213692}C:\program files\microsoft office\office12\groove.exe" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Microsoft Office Groove.) -- C:\program files\microsoft office\office12\groove.exe O87 - FAEL: "UDP Query User{60727BFB-B79E-49E0-871B-1BCD45227F42}C:\program files\microsoft office\office12\groove.exe" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Microsoft Office Groove.) -- C:\program files\microsoft office\office12\groove.exe O87 - FAEL: "{597A23E0-19B9-42CE-9127-F7A37632B4FA}" | In - None - P17 - TRUE | .(.Apple Inc. - iTunes.) -- C:\Program Files\iTunes\iTunes.exe O87 - FAEL: "{3187ACA1-5E9D-400D-9219-C47DE60F951C}" | In - None - P6 - TRUE | .(.Microsoft Corporation - SMSvcHost.exe.) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe O87 - FAEL: "RemoteDesktop-UserMode-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation ~ Firewall: 214 Scanned in 00mn 01s ---\\ Enumère les codes produits des logiciels (PUC) (O90) O90 - PUC: "000021090200C0400000000000F01FEC" . (.Module de compatibilité pour Microsoft Office System 2007.) -- C:\Windows\Installer\{90120000-0020-040C-0000-0000000FF1CE}\O12ConvIcon.exe O90 - PUC: "00002159FA00C0400000000000F01FEC" . (.Microsoft Office PowerPoint Viewer 2007 (French).) -- C:\Windows\Installer\{95120000-00AF-040C-0000-0000000FF1CE}\ppvwicon.exe,0 =>.Microsoft Corporation O90 - PUC: "02B5DA0A9835FFF42BBB3D19BBA230A9" . (.Ciel Immobilisations 17.0.) -- C:\Windows\Installer\{A0AD5B20-5389-4FFF-B2BB-D391BB2A039A}\ARPPRODUCTICON.exe O90 - PUC: "05CBBE3F502C4134F9E641597E4B336B" . (.Ciel Gestion Commerciale 17.0.) -- C:\Windows\Installer\{F3EBBC50-C205-4314-9F6E-1495E7B433B6}\ARPPRODUCTICON.exe O90 - PUC: "076CFAAAB965F2A4284B2449E5D03EFE" . (.Windows Live Writer.) -- C:\Windows\Installer\{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}\ApplicationIcon.ico O90 - PUC: "07FF6C02B0967FD4F8D562D93D7ADF32" . (.iCloud.) -- C:\Windows\Installer\{20C6FF70-690B-4DF7-8F5D-269DD3A7FD23}\ARP.ico O90 - PUC: "0C2AA9A5F2799324AA144E903414495D" . (.MobileMe Control Panel.) -- C:\Windows\Installer\{5A9AA2C0-972F-4239-AA41-E409434194D5}\Installer.ico O90 - PUC: "168061B30527E1545BEEB829FB037A01" . (.Microsoft Works.) -- C:\Windows\Installer\{3B160861-7250-451E-B5EE-8B92BF30A710}\MSWorks.exe O90 - PUC: "1A86C51E5AC9CA447A7FC660371F698A" . (.HPLaserJetHelp_LearnCenter.) -- C:\Windows\Installer\{E15C68A1-9CA5-44AC-A7F7-6C0673F196A8}\ARPPRODUCTICON.exe O90 - PUC: "1D034B0FAA6BD374B960AAD30DF10D8B" . (.Microsoft SQL Server 2005 Compact Edition [ENU].) -- C:\Windows\Installer\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}\ProductIcon O90 - PUC: "2743C3FD13A763F4781A829192A045A0" . (.Ciel Paye 17.00.) -- C:\Windows\Installer\{DF3C3472-7A31-4F36-87A1-2819290A540A}\ARPPRODUCTICON.exe O90 - PUC: "36A78BD50249CC84F9A98B08D1836D5B" . (.Broadcom Management Programs.) -- C:\Windows\Installer\{5DB87A63-9420-48CC-9F9A-B8801D38D6B5}\ARPPRODUCTICON.exe O90 - PUC: "46A934DE810F4DD4B85A23D858BA90BA" . (.Roxio Creator DE 10.3.) -- C:\Windows\Installer\{ED439A64-F018-4DD4-8BA5-328D85AB09AB}\RoxioCentral.exe O90 - PUC: "4A639A96B6276BF4988EA8703644E7D6" . (.Ciel Compta 17.0.) -- C:\Windows\Installer\{69A936A4-726B-4FB6-89E8-8A0763447E6D}\ARPPRODUCTICON.exe O90 - PUC: "56A9756CEAC913B4B8B633600E36A066" . (.Apple Software Update.) -- C:\Windows\Installer\{C6579A65-9CAE-4B31-8B6B-3306E0630A66}\Installer.ico =>.Apple Inc O90 - PUC: "5A440F64B8EC691489E4B56D25E563D1" . (.Apple Application Support.) -- C:\Windows\Installer\{46F044A5-CE8B-4196-984E-5BD6525E361D}\WinInstall.ico O90 - PUC: "5ED62A6B5B2F85D45907F47C060EF0DC" . (.Roxio Creator Copy.) -- C:\Windows\Installer\{B6A26DE5-F2B5-4D58-9570-4FC760E00FCD}\RoxioCentral.exe O90 - PUC: "68AB67CA7DA746454382090000000040" . (.Spelling Dictionaries Support For Adobe Reader 9.) -- C:\Windows\Installer\{AC76BA86-7AD7-5464-3428-900000000004}\ARPPRODUCTICON.exe O90 - PUC: "68AB67CA7DA76301B744BA0000000010" . (.Adobe Reader XI (11.0.06) - Français.) -- C:\Windows\Installer\{AC76BA86-7AD7-1036-7B44-AB0000000001}\SC_Reader.ico O90 - PUC: "68F474CA71A9BCB4B85111BADFB5F759" . (.Dell Backup and Recovery Manager.) -- C:\Windows\Installer\{AC474F86-9A17-4BCB-8B15-11ABFD5B7F95}\_6FEFF9B68218417F98F549.exe O90 - PUC: "69FE29508D96B4E4C99C885FE88AF610" . (.Apple Mobile Device Support.) -- C:\Windows\Installer\{0592EF96-69D8-4E4B-9CC9-88F58EA86F01}\Installer.ico O90 - PUC: "7692FC6BE18C0C0489510C7547EF1F02" . (.Skype Click to Call.) -- C:\Windows\Installer\{B6CF2967-C81E-40C0-9815-C05774FEF120}\IconUninstallIco O90 - PUC: "80CB791C28D3156488686EC81275A883" . (.iTunes.) -- C:\Windows\Installer\{C197BC08-3D82-4651-8886-E68C21578A38}\Installer.ico O90 - PUC: "863B523ACE9AFE049AC5D9AE3D86A33E" . (.Broadcom Gigabit NetLink Controller.) -- c:\Windows\Installer\{A325B368-A9EC-40EF-A95C-9DEAD3683AE3}\ARPPRODUCTICON.exe O90 - PUC: "884FD4BEFEAAF6043A14BCA2AA13B509" . (.Windows Live Messenger.) -- C:\Windows\Installer\{EB4DF488-AAEF-406F-A341-CB2AAA315B90}\MsblIco.Exe O90 - PUC: "A0BC5702F62DAAD44B42059792B634AB" . (.Windows Live FolderShare.) -- C:\Windows\Installer\{2075CB0A-D26F-4DAA-B424-5079296B43BA}\FolderShare48x48.ico O90 - PUC: "ABFAB76BF9C4AF84496939E3B3520544" . (.QuickTime.) -- C:\Windows\Installer\{B67BAFBA-4C9F-48FA-9496-933E3B255044}\Installer.ico O90 - PUC: "AFAD45F1162926A45BD9C6F9624BF84E" . (.Roxio Creator Tools.) -- C:\Windows\Installer\{1F54DAFA-9261-4A62-B59D-6C9F26B48FE4}\RoxioCentral.exe O90 - PUC: "B2F5519759897D9468219D52080EEDB5" . (.Bonjour.) -- C:\Windows\Installer\{79155F2B-9895-49D7-8612-D92580E0DE5B}\Bonjour.ico O90 - PUC: "B846977CE014ABB47BB58551CBFE7ED1" . (.Safari.) -- C:\Windows\Installer\{C779648B-410E-4BBA-B75B-5815BCEFE71D}\Installer.ico O90 - PUC: "C4E4AFE2F5B77F841A0CA18A287B9A3C" . (.HP Update.) -- C:\Windows\Installer\{2EFA4E4C-7B5F-48F7-A1C0-1AA882B7A9C3}\ARPPRODUCTICON.exe O90 - PUC: "C6B56403F35B1A94E9AB3A1F78DA05E2" . (.Roxio Update Manager.) -- C:\Windows\Installer\{30465B6C-B53F-49A1-9EBA-A3F187AD502E}\UpdateMgr.ico O90 - PUC: "D7314F9862C648A4DB8BE2A5B47BE100" . (.Microsoft Silverlight.) -- c:\Windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ARPIcon O90 - PUC: "DBA18E807F972C9488F1DFC60B796539" . (.Roxio Creator Data.) -- C:\Windows\Installer\{08E81ABD-79F7-49C2-881F-FD6CB0975693}\RoxioCentral.exe O90 - PUC: "E17A8F77515323848B2BF2E1BD2D0E1F" . (.Bing Bar.) -- C:\Windows\Installer\{77F8A71E-3515-4832-B8B2-2F1EDBD2E0F1}\icon_installer_ico =>Toolbar.Bing O90 - PUC: "E7FF67E4ABEA78C47B88DC745E24B5D9" . (.Skype™ 6.3.) -- C:\Windows\Installer\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}\SkypeIcon.exe O90 - PUC: "E9944D65E3CAD8B4199C7C001C844CB4" . (.Google Drive.) -- C:\Windows\Installer\{56D4499E-AC3E-4B8D-91C9-C700C148C44B}\DriveIcon O90 - PUC: "F92F4A37CA13DBE4AAB1C05C1FC8F838" . (.Roxio Creator Audio.) -- C:\Windows\Installer\{73A4F29F-31AC-4EBD-AA1B-0CC5F18C8F83}\RoxioCentral.exe ~ Update Products: 107 Scanned in 00mn 00s ---\\ Enumère les données de la clé NameSpace (MNS) (O92) O92 - MNS: Photos iCloud - {F0D63F85-37EC-4097-B30D-61B4A8917118} ~ MNS: 1 Scanned in 00mn 00s ---\\ Recherche des packages WindowsInstaller (WIS) (O93) (NTFS) [MD5.0A6579005EC884F274C92EEE13CAC7CB] [WIS][22/11/2011] (.Skype Technologies S.A. - Skype Click to Call.) -- C:\Windows\Installer\11d3689.msi [6537216] [MD5.ADE4BF8C92AE83137744FE6BB0DA1EAA] [WIS][17/12/2009] (.HP - Chai Commercial Install.) -- C:\Windows\Installer\13c42d.msi [2178560] [MD5.F0D844E2545011B3F3520093C3DC5050] [WIS][29/06/2010] (.Ciel - Ciel Compta.) -- C:\Windows\Installer\15af2a.msi [8536880] [MD5.B06712BF5643BB55600A040F210DC218] [WIS][27/03/2013] (.Skype Technologies S.A. - Skype.) -- C:\Windows\Installer\1a22bff.msi [20586496] [MD5.8797F3592E055284D113FEAA21B71ED3] [WIS][03/01/2012] (.Google Inc. - Google Toolbar for Internet Explorer.) -- C:\Windows\Installer\1a46411.msi [28160] =>Toolbar.Google [MD5.47FE6777BC5F33EC9FB4A6741E96E665] [WIS][07/12/2013] (.Google, Inc. - Google Drive.) -- C:\Windows\Installer\2348aab.msi [31694848] [MD5.B57716C8EB17345662CF107DD5898FA0] [WIS][29/06/2010] (.Ciel - Ciel Gestion Commerciale.) -- C:\Windows\Installer\243953.msi [8602700] [MD5.A56A7DF16D3F8D398D2187CA0428A3BA] [WIS][26/11/2010] (.CIEL - Ciel Paye 17.00.) -- C:\Windows\Installer\243957.msi [55322112] [MD5.E05F2F0644DABD0D0E0629213B98798D] [WIS][30/06/2010] (.Ciel - Ciel Immobilisations.) -- C:\Windows\Installer\24395f.msi [8405488] [MD5.39988793C0BE26963F7C8228E7F04E23] [WIS][06/01/2014] (.Google - Google+ Auto Backup.) -- C:\Windows\Installer\50fb54.msi [3088384] [MD5.00B258DC3BFC30198C6E7CEB3A0801C1] [WIS][14/12/2010] (.HP - HPLJUT.) -- C:\Windows\Installer\63b6f.msi [737280] [MD5.B9E7744060B09F5B88D750B71B5FD127] [WIS][21/08/2009] (.Broadcom Corporation - Broadcom Driver Installer.) -- C:\Windows\Installer\8c7a.msi [1288704] [MD5.2BE0AF949B6B5AD20C28AE6F19746EA2] [WIS][13/05/2010] (.Broadcom Corporation - Blank Project Template.) -- C:\Windows\Installer\8c81.msi [21408768] ~ WIS: 106 Scanned in 00mn 12s ---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) SS - | Demand 12/12/2013 257416 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe SS - | Disabled 21/11/2013 69880 | (BdDesktopParental) . (.Bitdefender.) - C:\Program Files\Bitdefender\Bitdefender\bdparentalservice.exe SS - | Auto 03/01/2012 136176 | (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe SS - | Demand 03/01/2012 136176 | (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe SS - | Demand 29/08/2012 194032 | (gusvc) . (.Google.) - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe SS - | Demand 14/11/2005 69632 | (IDriverT) . (.Macrovision Corporation.) - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe SS - | Auto 28/02/2013 161384 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files\Skype\Updater\Updater.exe SS - | Demand 16/01/2009 74392 | (stllssvr) . (.MicroVision Development, Inc..) - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe SS - | Demand 14/07/2009 20992 | C:\Program Files\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe SR - | Auto 21/12/2013 65432 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe SR - | Auto 31/03/2009 81920 | (AERTFilters) . (.Andrea Electronics Corporation.) - C:\Program Files\Realtek\Audio\HDA\AERTSrv.exe SR - | Auto 07/09/2013 55624 | (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe SR - | Auto 30/08/2011 390504 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe SR - | Auto 17/08/2009 79168 | (BPowMon) . (.Broadcom Corp..) - C:\Program Files\Broadcom\BPowMon\BPowMon.exe SR - | Auto 25/10/2010 145920 | (HP LaserJet Service) . (.HP.) - C:\Program Files\HP\HPLaserJetService\HPLaserJetService.exe SR - | Demand 02/11/2013 553288 | (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe SR - | Auto 14/07/2009 20992 | C:\Windows\system32\HPZinw12.dll (Net Driver HPZ12) . (.Hewlett-Packard.) - C:\Windows\System32\svchost.exe SR - | Auto 14/07/2009 20992 | C:\Windows\system32\HPZipm12.dll (Pml Driver HPZ12) . (.Hewlett-Packard.) - C:\Windows\System32\svchost.exe SR - | Auto 07/10/2013 54424 | (UPDATESRV) . (.Bitdefender.) - C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe SR - | Auto 15/11/2013 1234792 | (VSSERV) . (.Bitdefender.) - C:\Program Files\Bitdefender\Bitdefender\vsserv.exe SR - | Auto 14/07/2009 20992 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe ~ Services: Scanned in 00mn 19s ---\\ Recherche d'infection sur le Master Boot Record (MBR)(O80) Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net Run by Best Hotel Fixe at 17/01/2014 09:09:11 device: opened successfully user: MBR read successfully Disk trace: called modules: ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys halmacpi.dll ataport.SYS pciide.sys PCIIDEX.SYS atapi.sys 1 ntkrnlpa!IofCallDriver[0x82C82BBA] >> \Device\Harddisk0\DR0[0x86352A78] 3 CLASSPNP[0x8B7B559E] >> ntkrnlpa!IofCallDriver[0x82C82BBA] >> [0x855EE830] 5 ACPI[0x8B0D43D4] >> ntkrnlpa!IofCallDriver[0x82C82BBA] >> \Device\Ide\IdeDeviceP0T0L0-0[0x855A6610] kernel: MBR read successfully user & kernel MBR OK ~ MBR: 13 Scanned in 00mn 02s ---\\ Recherche d'infection sur le Master Boot Record (MBRCheck)(O80) Written by ad13, http://ad13.geekstog Run by Best Hotel Fixe at 17/01/2014 09:09:13 ********* Dump file Name ********* C:\PhysicalDisk0_MBR.bin ~ MBR: Scanned in 00mn 04s ---\\ Scan Additionnel (O88) Database Version : 13024 - (17/01/2014) Clés trouvées (Keys found) : 5 Valeurs trouvées (Values found) : 1 Dossiers trouvés (Folders found) : 0 Fichiers trouvés (Files found) : 1 [HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}] =>Trojan.FindFDSearch^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4D91-8333-CF10577473F7}] =>Toolbar.Google^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{77F8A71E-3515-4832-B8B2-2F1EDBD2E0F1}] =>Toolbar.Bing^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{18455581-E099-4BA8-BC6B-F34B2F06600C}] =>Toolbar.Google^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{2318C2B1-4965-11d4-9B18-009027A5CD4F}] =>Toolbar.Google^ [HKLM\Software\Microsoft\Internet Explorer\Toolbar]:{2318C2B1-4965-11d4-9B18-009027A5CD4F} =>Toolbar.Google^ C:\Windows\Installer\1a46411.msi =>Toolbar.Google^ ~ Additionnel Scan: 358399 Items scanned in 00mn 21s ---\\ Récapitulatif des détections trouvées sur votre station ~ http://nicolascoolman.webs.com/apps/blog/show/34817643-trojan-findfdsearch =>Trojan.FindFDSearch ~ MSI: 1 link(s) detected in 00mn 21s End of the scan (2535 lines in 03mn 17s)(0)