cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ Rapport de ZHPDiag v2014.2.6.4 - Nicolas Coolman (06/02/2014)
~ Lancé par audrey (09/02/2014 12:16:41)
~ Adresse du Site Web http://nicolascoolman.webs.com
~ Forums gratuits d'Assistance à la désinfection : http://nicolascoolman.webs.com/apps/links/
~ Traduit par Nicolas Coolman
~ Etat de la version :
~ Liste blanche : Désactivée par l'utilisateur
~ Elévation des Privilèges : OK
~ User Account Control (UAC): Activate by user


---\\ Navigateurs Internet
MSIE: Internet Explorer v10.0.9200.16750 (Defaut)
MFIE: Mozilla Firefox 26.0

---\\ Informations sur les produits Windows
~ Langage: Français
Windows 8, 32-bit (Build 9200)
Windows Server License Manager Script : OK
~ ion : Windows(R) Operating System, OEM_DM channel
Windows ID Activation : OK
~ Windows Partial Key : JK6HD
Windows License : OK
~ Windows Remaining Initializations Number : 999
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ Logiciels de protection du système
Windows Defender W8

---\\ Logiciels d'optimisation du système
CCleaner v4.09 =>Piriform Ltd

---\\ Logiciels de partage PeerToPeer

---\\ Surveillance de Logiciels
Adobe Flash Player 12 Plugin

---\\ Informations sur le système
~ Processor: x86 Family 6 Model 55 Stepping 3, GenuineIntel
~ Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 1888 MB (38% free)
System Restore: Activé (Enable)
System drive C: has 422 GB (93%) free of 451 GB

---\\ Mode de connexion au système
~ Computer Name: AUDREY
~ User Name: audrey
~ All Users Names: HomeGroupUser$, audrey, Administrateur,
~ Unselected Option: None
Logged in as Administrator

---\\ Variables d'environnement
~ System Unit : C:\
~ %AppZHP% : C:\Users\audrey\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\audrey\AppData\Roaming\
~ %Desktop% : C:\Users\audrey\Desktop\
~ %Favorites% : C:\Users\audrey\Favorites\
~ %LocalAppData% : C:\Users\audrey\AppData\Local\
~ %StartMenu% : C:\Users\audrey\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ Enumération des unités disques
C: Hard drive, Flash drive, Thumb drive (Free 422 Go of 451 Go)



---\\ Etat du Centre de Sécurité Windows
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Security Center: 42 Scanned in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.EAFE46B0292D2BD2467835E2ACF717CC] - (.Microsoft Corporation - Explorateur Windows.) (.01/06/2013 - 11:24:46.) -- C:\Windows\Explorer.exe [2106176]
[MD5.7109FF769FFF962869C50D720F7AA7D7] - (.Microsoft Corporation - Application de démarrage de Windows.) (.26/07/2012 - 04:21:01.) -- C:\Windows\System32\Wininit.exe [101376]
[MD5.3AA6FD9B534F17CBD5D311DDC077973C] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.25/10/2013 - 05:45:11.) -- C:\Windows\System32\wininet.dll [1767936]
[MD5.87DA6ACA9AF2F536C68471787D1B3F4A] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.25/12/2012 - 09:53:27.) -- C:\Windows\System32\Winlogon.exe [411648]
[MD5.FAB11E1AC62579A9BE21593319F8E464] - (.Microsoft Corporation - Bibliothèque de licences.) (.26/07/2012 - 04:20:01.) -- C:\Windows\System32\sppcomapi.dll [246784]
[MD5.F12EFEE4DD20519D0DDF8D78704EE4DE] - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) (.22/03/2013 - 06:39:09.) -- C:\Windows\system32\Drivers\AFD.sys [438272]
[MD5.48D8C3F2006698691F5AE0BB595FDCC8] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.26/07/2012 - 04:42:31.) -- C:\Windows\system32\Drivers\atapi.sys [22768]
[MD5.00B4FA77732C7823D292ECD672660882] - (.Microsoft Corporation - CD-ROM File System Driver.) (.26/07/2012 - 03:38:28.) -- C:\Windows\system32\Drivers\Cdfs.sys [89088]
[MD5.4E707EC5071DD8F5C29A7410780BD4C3] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.26/07/2012 - 03:33:53.) -- C:\Windows\system32\Drivers\Cdrom.sys [135680]
[MD5.B21FDAC50FCD4CE53C203F097273532A] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.26/07/2012 - 03:34:25.) -- C:\Windows\system32\Drivers\DfsC.sys [92160]
[MD5.4A219AB84D6936C2A61FF44D32EF378D] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.04/10/2012 - 08:37:00.) -- C:\Windows\system32\Drivers\HDAudBus.sys [62464]
[MD5.11EDC37780E8A2F8E311D73F7658A4D7] - (.Microsoft Corporation - Pilote de port i8042.) (.26/07/2012 - 03:36:23.) -- C:\Windows\system32\Drivers\i8042prt.sys [89600]
[MD5.57B0C0D982013C72911A3F5CBA795034] - (.Microsoft Corporation - IP Network Address Translator.) (.26/07/2012 - 03:29:57.) -- C:\Windows\system32\Drivers\IpNat.sys [126976]
[MD5.5FAC7AC77D9ADD42579EDF678F08DF9F] - (.Microsoft Corporation - Minirdr SMB Windows NT.) (.21/03/2013 - 09:17:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [304128]
[MD5.303A053C25E468B9925C22288BEF8484] - (.Microsoft Corporation - MBT Transport driver.) (.26/07/2012 - 03:31:28.) -- C:\Windows\system32\Drivers\netBT.sys [254464]
[MD5.99C73E3FE9B36275BD91D2009F2BA2E0] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.21/03/2013 - 09:16:36.) -- C:\Windows\system32\Drivers\ntfs.sys [1614568]
[MD5.8BCE63AF5B52642E832630F862DE96EF] - (.Microsoft Corporation - Pilote de port parallèle.) (.26/07/2012 - 03:38:17.) -- C:\Windows\system32\Drivers\Parport.sys [90624]
[MD5.6E0649D7325D85C47C844EB3267E4625] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.26/07/2012 - 03:30:07.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [88064]
[MD5.2CAD2A13569741C67CD9C52F97E0F992] - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RDP.) (.26/07/2012 - 03:32:22.) -- C:\Windows\system32\Drivers\rdpdr.sys [156160]
[MD5.0886D9F1B5A5334FBB143A260E4BFB5C] - (.Microsoft Corporation - TDI Translation Driver.) (.26/07/2012 - 05:17:16.) -- C:\Windows\system32\Drivers\tdx.sys [97792]
[MD5.C9C8573006D7A8391AFE35D99036B6A0] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.01/06/2013 - 10:41:30.) -- C:\Windows\system32\Drivers\volsnap.sys [281344]
~ Generic Processes: Scanned in 00mn 00s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 2/1114
~ Mes musiques (My Musics) : 1/59
~ Mes Videos (My Videos) : 2/30
~ Mes Favoris (My Favorites) : 1/7
~ Mes Documents (My Documents) : 1/354
~ Mon Bureau (My Desktop) : 1/5
~ Menu demarrer (Programs) : 1/26
~ Hidden Files: Scanned in 00mn 03s



---\\ Processus lancés
[MD5.48AD530D49763BD09CF7DDF2D46DBCDB] - (.Synaptics Incorporated - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2412272] [PID.2260]
[MD5.3E7332DE76AF4704B02036B2B49C662C] - (.Microsoft Corporation - Processus hôte pour Tâches Windows.) -- C:\Windows\system32\taskhostex.exe [53760] [PID.2292]
[MD5.E82CDD9D3C517860C189F932117E985A] - (.Microsoft Corporation - Clavier tactile et volet d’écriture manuscr.) -- C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe [353120] [PID.2648]
[MD5.2BA7D1BDF43EF1299D4A39199AB0E592] - (.Pas de propriétaire - ChangeIcon MFC Application.) -- C:\Windows\system32\UMonit.exe [65536] [PID.3236]
[MD5.674E33892FCFC25DF29954D017325C8C] - (.Microsoft Corporation - Communications Service.) -- C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x86__8wekyb3d8bbwe\LiveComm.exe [138672] [PID.3392]
[MD5.AD3A07FEBB3B9F0110C90C26FC95E029] - (.Microsoft Corporation - Runtime Broker.) -- C:\Windows\System32\RuntimeBroker.exe [29808] [PID.3460]
[MD5.B91744DD1FDB7548A2D1C67D95F3F347] - (.Synaptics Incorporated - Synaptics Pointing Device Helper.) -- C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.exe [110320] [PID.1400]
[MD5.358CC6E8FBEADBEEF0470EB4C178AD9A] - (.Acer Incorporate - LMTray.) -- C:\Program Files\Packard Bell\Packard Bell Launch Manager\LMTray.exe [443944] [PID.1952]
[MD5.145A5E1C3AC7664A89E921EDC80AC130] - (.Acer Incorporated - ePowerTray.) -- C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe [1950280] [PID.3072]
[MD5.9A68C428E5E7860604FF30BE02E7889B] - (.Qualcomm®Atheros® - Extension Core.) -- C:\Program Files\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [124544] [PID.4840]
[MD5.2D99BBB899A000FB62F130DA5914432A] - (.Intel Corporation - igfxTray Module.) -- C:\Windows\System32\igfxtray.exe [142320] [PID.4860]
[MD5.CDF654BBC384C0008C7A380F25807027] - (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe [187888] [PID.4872]
[MD5.FE940F9C72C5E9BA8648258C5FB33B7D] - (.Intel Corporation - igfxsrvc Module.) -- C:\Windows\system32\igfxsrvc.exe [268272] [PID.4916]
[MD5.5BB33F2234964611FBE06DDE52CC053F] - (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe [196080] [PID.4944]
[MD5.5D16EB2862BA2BA20D28D98D1D2D8046] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [12000984] [PID.4996]
[MD5.0D5424211111B5013E28EFD16C68BB25] - (...) -- C:\Program Files\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe [11904] [PID.5024]
[MD5.B53E5E9F5901979FDDF6220DA1E9B3C2] - (.Intel Corporation - igfxext Module.) -- C:\Windows\system32\igfxext.exe [205808] [PID.5688]
[MD5.C03DBAD50CAEFBC38D64ECBD985E57B1] - (.Boxore OU - Boxore Client.) -- C:\Program Files\Boxore\BoxoreClient\boxore.exe [969504] [PID.5856] =>Adware.Boxore
[MD5.E7EEA4B204D9F2E6D46CC6C6E84997BF] - (.Finkit d.o.o. - ManicTime Tracker.) -- C:\Program Files\ManicTime\ManicTime.exe [250120] [PID.6136]
[MD5.F30BD702688CA1F2C28122132D3ECF1A] - (.Microsoft Corporation - Send to OneNote Tool.) -- C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.exe [194224] [PID.3320]
[MD5.BADF64A74F73910EA4736777A497A805] - (.Pas de propriétaire - iMindMap7_Preloader.) -- C:\Users\audrey\.thinkbuzan\imindmap7\preload\iMindMap7_Preloader.exe [727040] [PID.4164]
[MD5.BC1CE76EBB6ACB93AB54D18E5D7EA3EF] - (.ThinkBuzan - iMindMap 7.) -- C:\Program Files\ThinkBuzan\iMindMap 7\iMindMap 7.exe [4380752] [PID.5132]
[MD5.D3F53C3FCBA03E557424B48A32481980] - (.Pokki - Pokki.) -- C:\Users\audrey\AppData\Local\Pokki\Engine\pokki.exe [8252744] [PID.4776]
[MD5.60A3399135BEFC6F4BADBD6C13A4AC24] - (.Microsoft Corporation - Hôte Microsoft WWA.) -- C:\Windows\system32\wwahost.exe [333824] [PID.5512]
[MD5.AB898EC1FFD8B8B3494EE5F383189421] - (.Microsoft Corporation - Microsoft Office Document Cache.) -- C:\Program Files\Microsoft Office 15\Root\Office15\MsoSync.exe [448704] [PID.6044]
[MD5.1EEA6C1B35191DC177EA83672B9C3FC0] - (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe [275568] [PID.3012]
[MD5.0DD74786D22EDFF0CE5B8E1B1E398618] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files\Mozilla Firefox\plugin-container.exe [18544] [PID.5636]
[MD5.A9D8D4DF0EF4199A701137E0B5E9921A] - (.Adobe Systems, Inc. - Adobe Flash Player 12.0 r0.) -- C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_12_0_0_43.exe [1863048] [PID.5768]
[MD5.47D7F5E049E3FAA24176FB92859C552B] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [8333824] [PID.4488]
~ Processes Running: Scanned in 00mn 01s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\audrey\AppData\Roaming\Mozilla\Firefox\Profiles\snl2xo12.default-1389956500829\prefs.js
C:\Users\audrey\AppData\Roaming\Mozilla\Firefox\Profiles\snl2xo12.default-1389956500829\user.js
M3 - MFPP: Plugins - [audrey] -- C:\Users\audrey\AppData\Roaming\Mozilla\Firefox\Profiles\snl2xo12.default-1389956500829\searchplugins\iminent.xml =>Adware.IMBooster
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF32_12_0_0_43.dll
P2 - FPN: [HKLM] [@microsoft.com/SharePoint,version=14.0] - (.Microsoft Corporation - The plugin allows you to have a better experience with Microsoft Share.) -- C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.dll
P2 - FPN: [HKLM] [@tools.Software.com/Software Update;version=3] - (.The Software Group - Software Update.) -- C:\Program Files\Software\Update\1.3.25.0\npSoftwareUpdate3.dll =>Adware.Boxore
P2 - FPN: [HKLM] [@tools.Software.com/Software Update;version=9] - (.The Software Group - Software Update.) -- C:\Program Files\Software\Update\1.3.25.0\npSoftwareUpdate3.dll =>Adware.Boxore
~ Firefox Browser: 5 Scanned in 00mn 00s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://acer13.msn.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer13.msn.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.The Software Group - Software Update.) (No version) -- (.not file.) =>Adware.Boxore
R3 - URLSearchHook: (no name) - {84FF7BD6-B47F-46F8-9130-01B2696B36CB} . (.The Software Group - Software Update.) (No version) -- (.not file.) =>Adware.Boxore
~ IE Browser: 12 Scanned in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s



---\\ Hosts file redirection (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File: Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 21



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: Bizzybolt - {13070af0-bc6c-4185-8baa-40a4cf05b323} . (.Bizzybolt - Bizzybolt.) -- C:\Program Files\Bizzybolt\Bizzyboltbho.dll =>PUP.Bizzybolt
O2 - BHO: Highlightly - {83F2328D-0D6A-42B4-B0C4-02A929EDD4BE} . (.Highlightly - Highlightly Client BHO x86.) -- C:\Program Files\Highlightly\IE\HighlightlyClientIE.dll
O2 - BHO: (no name) - {84FF7BD6-B47F-46F8-9130-01B2696B36CB} Clé orpheline
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.dll
~ BHO: 8 Scanned in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - GS\Desktop [Public]: iMindMap 7.lnk . (.ThinkBuzan - iMindMap 7.) -- C:\Program Files\ThinkBuzan\iMindMap 7\iMindMap 7.exe
O4 - GS\Program [Public]: Anki.lnk . (...) -- C:\Program Files\Anki\anki.exe
O4 - GS\Program [Public]: Browser Choice.lnk . (...) -- C:\Windows\BrowserChoice\html\default.html
O4 - GS\Program [Public]: Desktop.lnk - Clé orpheline
O4 - GS\Program [Public]: Spotify.lnk . (...) -- C:\Program Files\Spotify\SpotifyLauncher.exe
O4 - GS\Program [Public]: Windows Store.lnk . (...) -- C:\Windows\WinStore\WinStore.htm
O4 - GS\Accessories [Public]: Calculator.lnk . (.Microsoft Corporation - Calculatrice de Windows.) -- C:\Windows\system32\calc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Math Input Panel.lnk . (.Microsoft Corporation - Accessoire du panneau de saisie mathématiqu.) -- C:\Program Files\Common Files\Microsoft Shared\Ink\mip.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.) -- C:\Windows\system32\mspaint.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Connexion Bureau à distance.) -- C:\Windows\system32\mstsc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - Outil Capture d’écran.) -- C:\Windows\system32\SnippingTool.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sound Recorder.lnk . (.Microsoft Corporation - Magnétophone Windows.) -- C:\Windows\system32\SoundRecorder.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Steps Recorder.lnk . (.Microsoft Corporation - Enregistreur d’actions.) -- C:\Windows\system32\psr.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sticky Notes.lnk . (.Microsoft Corporation - Pense-bête.) -- C:\Windows\system32\StikyNot.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Fax and Scan.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) -- C:\Windows\system32\WFS.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Application Windows Wordpad.) -- C:\Program Files\Windows NT\Accessories\wordpad.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: XPS Viewer.lnk . (.Microsoft Corporation - Visionneuse XPS.) -- C:\Windows\system32\xpsrchvw.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Table des caractères.) -- C:\Windows\system32\charmap.exe =>.Microsoft Corporation
O4 - GS\QuickLaunch [audrey]: Bandizip.lnk . (.Bandisoft.com - Bandizip.) -- C:\Users\audrey\AppData\Local\Bandizip\Bandizip32.exe
O4 - GS\QuickLaunch [audrey]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - GS\TaskBar [audrey]: File Explorer.lnk . (...) -- C:\Users\audrey\AppData\Roaming\Microsoft\Windows\Libraries
O4 - GS\TaskBar [audrey]: Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O4 - GS\TaskBar [audrey]: OneNote 2013.lnk . (.Microsoft Corporation - Microsoft OneNote.) -- C:\Program Files\Microsoft Office 15\root\office15\ONENOTE.exe =>.Microsoft Corporation
O4 - GS\TaskBar [audrey]: Opens classic shutdown dialog for Windows 8.lnk . (.TrishTech.com - Opens classic shutdown dialog for Windows 8.) -- C:\Program Files\ClassicShutdown.exe
O4 - GS\TaskBar [audrey]: PhotoFiltre Studio X.lnk . (...) -- C:\Program Files\PhotoFiltre Studio X\pfstudiox.exe
O4 - GS\TaskBar [audrey]: Skype.lnk . (...) -- C:\Windows\Installer\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}\SkypeIcon.exe
O4 - GS\TaskBar [audrey]: USB Disk Ejector.lnk . (.Quick And Easy Software - USB Disk Ejector.) -- C:\Users\audrey\Documents\USB ejector\usb-disk-ejector\USB_Disk_Eject.exe
O4 - GS\TaskBar [audrey]: Word 2013.lnk . (.Microsoft Corporation - Microsoft Word.) -- C:\Program Files\Microsoft Office 15\root\office15\WINWORD.exe
O4 - GS\Program [audrey]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - GS\Program [audrey]: ManicTime.lnk . (.Finkit d.o.o. - ManicTime Tracker.) -- C:\Program Files\ManicTime\ManicTime.exe
O4 - GS\Program [audrey]: PC App Store.lnk . (.Pokki - Pokki.) -- C:\Users\audrey\AppData\Local\Pokki\Engine\pokki.exe
O4 - GS\Program [audrey]: SkyDrive.lnk . (.Microsoft Corporation - Microsoft SkyDrive.) -- C:\Users\audrey\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe =>.Microsoft Corporation
O4 - GS\Accessories [audrey]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) -- C:\Windows\system32\notepad.exe =>.Microsoft Corporation
O4 - GS\SendTo [audrey]: Skype.lnk . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O4 - GS\Desktop [audrey]: Anki.lnk . (...) -- C:\Program Files\Anki\anki.exe
O4 - GS\Desktop [audrey]: PhotoFiltre Studio X.lnk . (...) -- C:\Program Files\PhotoFiltre Studio X\pfstudiox.exe
O4 - GS\Desktop [audrey]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag Setup.) -- C:\Program Files\ZHPDiag\ZHPhep.exe =>.Nicolas Coolman
O4 - GS\Desktop [audrey]: ZHPFix.lnk . (.Nicolas Coolman - ZHPDiag Setup.) -- C:\Program Files\ZHPDiag\ZHPFix\ZHPhep.exe =>.Nicolas Coolman
~ Global Startup: 41 Scanned in 00mn 01s



---\\ Applications lancées au démarrage du sytème (O4)
O4 - GS\Startup [audrey]: Envoyer à OneNote.lnk . (.Microsoft Corporation - Send to OneNote Tool.) -- C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.exe
O4 - GS\Startup [audrey]: iMindMap7 Preloader.lnk . (...) -- C:\Users\audrey\.thinkbuzan\imindmap7\preload\iMindMap7_Preloader.exe
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe =>.Realtek Semiconductor Corp
O4 - HKLM\..\Run: [fst_fr_78] Clé orpheline =>PUA.FSTfr9
O4 - HKLM\..\Run: [Boxore Client] . (.Boxore OU - Boxore Client.) -- C:\Program Files\Boxore\BoxoreClient\boxore.exe =>Adware.Boxore
O4 - HKCU\..\Run: [Pokki] Clé orpheline
O4 - HKCU\..\Run: [ManicTime] . (.Finkit d.o.o. - ManicTime Tracker.) -- C:\Program Files\ManicTime\ManicTime.exe
O4 - HKCU\..\RunOnce: [Application Restart #3] . (.Pokki - Pokki.) -- C:\Users\audrey\AppData\Local\Pokki\Engine\pokki.exe
O4 - HKLM\..\policies\Explorer\Run: [BtvStack] . (.Qualcomm®Atheros® - Extension Core.) -- C:\Program Files\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe
O4 - HKUS\S-1-5-21-30844821-2391127684-4000348375-1001\..\Run: [Pokki] Clé orpheline
O4 - HKUS\S-1-5-21-30844821-2391127684-4000348375-1001\..\Run: [ManicTime] . (.Finkit d.o.o. - ManicTime Tracker.) -- C:\Program Files\ManicTime\ManicTime.exe
O4 - HKUS\S-1-5-21-30844821-2391127684-4000348375-1001\..\RunOnce: [Application Restart #3] . (.Pokki - Pokki.) -- C:\Users\audrey\AppData\Local\Pokki\Engine\pokki.exe
~ Application: Scanned in 00mn 00s



---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ IE Control Panel: 1 Scanned in 00mn 00s



---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll =>.Microsoft Corporation
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll =>.Microsoft Corporation
~ IE Extra Buttons: Scanned in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll =>.Microsoft Corporation
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\Windows\system32\wshbth.dll
~ Winsock: 7 Scanned in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{D284B432-2F30-46F4-AD19-B6AD81A36256}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{D284B432-2F30-46F4-AD19-B6AD81A36256}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
~ Domain: Scanned in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation
~ Protocole Additionnel: Scanned in 00mn 00s



---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
~ Winlogon: Scanned in 00mn 00s



---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ SSODL: 1 Scanned in 00mn 00s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: AtherosSvc (AtherosSvc) . (.Windows (R) Win 7 DDK provider - Windows Setup API.) - C:\Program Files\Qualcomm Atheros\Bluetooth Suite\adminservice.exe
O23 - Service: Highlightly Client Service (hlsvc) . (.Highlightly - Highlightly Client Service.) - C:\Program Files\Highlightly\Service\hlsvc.exe
O23 - Service: Intel(R) Capability Licensing Service Interface (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation - Intel(R) Capability Licensing Service Inter.) - C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
O23 - Service: Launch Manager Service (LMSvc) . (.Acer Incorporate - LMSvc.) - C:\Program Files\Packard Bell\Packard Bell Launch Manager\LMSvc.exe
O23 - Service: c:\Program Files\Nero\Update\NASvc.exe (NAUpdate) . (.Nero AG - NeroUpdate.) - c:\Program Files\Nero\Update\NASvc.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Service Software Update (Software_update) (Software_update) . (.The Software Group - Software Update.) - C:\Program Files\Software\Update\SoftwareUpdate.exe =>Adware.Boxore
O23 - Service: Update Bizzybolt (Update Bizzybolt) . (...) - C:\Program Files\Bizzybolt\updateBizzybolt.exe =>PUP.Bizzybolt
O23 - Service: Util Bizzybolt (Util Bizzybolt) . (...) - C:\Program Files\Bizzybolt\bin\utilBizzybolt.exe =>PUP.Bizzybolt
~ Services: 9 Scanned in 00mn 08s



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Desktop Component: 4 Scanned in 00mn 00s



---\\ Enumère les données de BootExecute (BEX) (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ BEX: 1 Scanned in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\bench-sys.job [348] =>PUP.GiganticSavings
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\bench-Updater removing.job [308] =>PUP.GiganticSavings
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\SoftwareUpdateTaskMachineCore.job [916]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\SoftwareUpdateTaskMachineUA.job [920]
[MD5.F92019F2A58640821B109B30193D5E7D] [APT] [ALU] (...) -- C:\Program Files\Packard Bell\Live Updater\updater.exe [3367976]
[MD5.B690DE3B3D28AD45112BE310780DBE8D] [APT] [ALUAgent] (...) -- C:\Program Files\Packard Bell\Live Updater\liveupdater_agent.exe [40008]
[MD5.2064E97CF3396C4EC5A497CE49E4515F] [APT] [bench-sys] (...) -- C:\Program Files\Bench\Updater\updater.exe [254456] =>PUP.GiganticSavings
[MD5.48FA4C5D5CEDB1A1D0EC3506802924B8] [APT] [Launch Manager] (.Acer Incorporate.) -- C:\Program Files\Packard Bell\Packard Bell Launch Manager\LMLauncher.exe [432168]
[MD5.00000000000000000000000000000000] [APT] [Norton WSC Integration] (...) -- C:\Program Files\Norton Internet Security\Engine\20.4.0.40\WSCStub.exe (.not file.) [0]
[MD5.145A5E1C3AC7664A89E921EDC80AC130] [APT] [Power Management] (.Acer Incorporated.) -- C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe [1950280]
[MD5.95E0514907B680814073BB945DDB800B] [APT] [SoftwareUpdateTaskMachineCore] (.The Software Group.) -- C:\Program Files\Software\Update\SoftwareUpdate.exe [119408] =>Adware.Boxore
[MD5.95E0514907B680814073BB945DDB800B] [APT] [SoftwareUpdateTaskMachineUA] (.The Software Group.) -- C:\Program Files\Software\Update\SoftwareUpdate.exe [119408] =>Adware.Boxore
[MD5.2BA7D1BDF43EF1299D4A39199AB0E592] [APT] [UMonitor Task] (...) -- C:\Windows\system32\UMonit.exe [65536]
[MD5.00000000000000000000000000000000] [APT] [Norton Error Analyzer] (...) -- C:\Program Files\Norton Internet Security\Engine\20.4.0.40\SymErr.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [Norton Error Processor] (...) -- C:\Program Files\Norton Internet Security\Engine\20.4.0.40\SymErr.exe (.not file.) [0]
~ Scheduled Task: 16 Scanned in 00mn 07s



---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows Media Player 12.0 - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\System32\wmpdxm.dll =>.Microsoft Corporation
O40 - ASIC: Themes Setup - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files\Windows Mail\WinMail.exe =>.Microsoft Corporation
O40 - ASIC: Browsing Enhancements - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Windows Desktop Update - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\System32\mscories.dll
~ Active Setup: 9 Scanned in 00mn 00s



---\\ Pilotes lancés au démarrage du système (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (BasicDisplay) . (.Microsoft Corporation - Microsoft Basic Display Driver.) - C:\Windows\system32\drivers\BasicDisplay.sys
O41 - Driver: (BasicRender) . (.Microsoft Corporation - Microsoft Basic Render Driver.) - C:\Windows\system32\drivers\BasicRender.sys
O41 - Driver: cdrom.inf (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys
O41 - Driver: C:\Windows\System32\drivers\dam.sys (dam) . (.Microsoft Corporation - DAM Kernel Driver.) - C:\Windows\System32\drivers\dam.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (Dfsc) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: (hlnfd) . (.Highlightly - Highlightly Driver x86.) - C:\Windows\System32\drivers\hlnfd.sys
O41 - Driver: (MpKsl8cef40bd) . (. - .) - C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{0FD739D6-FA6A-4B97-90C5-433402F7AC96}\MpKsl8cef40bd.sys (.not file.)
O41 - Driver: mssmbios.inf (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: netnb.inf (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: npsvctrig.inf (npsvctrig) . (.Microsoft Corporation - Named pipe service triggers.) - C:\Windows\system32\drivers\npsvctrig.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\system32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys
O41 - Driver: C:\Windows\System32\drivers\vwififlt.sys (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\system32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\system32\DRIVERS\wanarp.sys
~ Drivers: 38 Scanned in 00mn 00s



---\\ Logiciels installés (O42)
O42 - Logiciel: Adobe Flash Player 12 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin
O42 - Logiciel: Anki - (...) [HKLM] -- Anki
O42 - Logiciel: Bandizip - (.Bandisoft.com.) [HKCU] -- Bandizip
O42 - Logiciel: Bizzybolt - (.Bizzybolt.) [HKLM] -- Bizzybolt =>PUP.Bizzybolt
O42 - Logiciel: Boxore Client - (.Boxore OU.) [HKLM] -- {903CFFD8-85BF-4A51-8A6D-4BBBCA346A6E} =>Adware.Boxore
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner =>Piriform Ltd
O42 - Logiciel: Genesys Logic USB2.0 Card Reader - (.Genesys Logic.) [HKLM] -- {959B7F35-2819-40C5-A0CD-3C53B5FCC935}
O42 - Logiciel: Highlightly - (.Highlightly.) [HKLM] -- Highlightly
O42 - Logiciel: Identity Card - (.Packard Bell.) [HKLM] -- {3D9CB654-99AD-4301-89C6-0D12A790767C}
O42 - Logiciel: Intel(R) Control Center - (.Intel Corporation.) [HKLM] -- {F8A9085D-4C7A-41a9-8A77-C8998A96C421}
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}
O42 - Logiciel: Intel(R) Trusted Execution Engine - (.Intel Corporation.) [HKLM] -- {176E2755-0A17-42C6-88E2-192AB2131278}
O42 - Logiciel: Intel(R) Trusted Execution Engine - (.Intel Corporation.) [HKLM] -- {572F86FD-3D53-449B-AF0F-CA580036F73D}
O42 - Logiciel: Intel(R) Trusted Execution Engine Driver - (.Intel Corporation.) [HKLM] -- {BABBDADF-763B-4F91-92A8-6C130C4DDCCB}
O42 - Logiciel: Live Updater - (.Packard Bell.) [HKLM] -- {EE26E302-876A-48D9-9058-3129E5B99999}
O42 - Logiciel: ManicTime - (.Finkit d.o.o..) [HKLM] -- {8F2CD640-643C-4DA8-887E-0329F0D49152}
O42 - Logiciel: Microsoft SkyDrive - (.Microsoft Corporation.) [HKCU] -- SkyDriveSetup.exe =>.Microsoft Corporation
O42 - Logiciel: Mozilla Firefox 26.0 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Firefox 26.0 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM] -- MozillaMaintenanceService
O42 - Logiciel: Nero BackItUp - (.Nero AG.) [HKLM] -- {DA2D3078-A58C-45E8-8EE0-18B8BE6B34F7}
O42 - Logiciel: Nero BackItUp 12 Essentials OEM.a01 - (.Nero AG.) [HKLM] -- {4CA8F973-6377-4ABF-9ED5-CC2323B3C000}
O42 - Logiciel: Nero BackItUp Help (CHM) - (.Nero AG.) [HKLM] -- {EF0D1292-8FC1-41BE-9740-DBC134F66415}
O42 - Logiciel: Nero ControlCenter - (.Nero AG.) [HKLM] -- {ABC88553-8770-4B97-B43E-5A90647A5B63}
O42 - Logiciel: Nero ControlCenter Help (CHM) - (.Nero AG.) [HKLM] -- {C994C746-C6D0-4EBA-B09E-DF7B18381B69}
O42 - Logiciel: Nero Core Components - (.Nero AG.) [HKLM] -- {BEBEE34D-84A2-4EDD-8BEA-96CC54371263}
O42 - Logiciel: Nero Launcher - (.Nero AG.) [HKLM] -- {0E4630AF-0AB7-440E-A978-1A78FC4F43B9}
O42 - Logiciel: Nero RescueAgent - (.Nero AG.) [HKLM] -- {A2D43081-CF7B-4637-A9F3-E2651AA5C4A8}
O42 - Logiciel: Nero RescueAgent Help (CHM) - (.Nero AG.) [HKLM] -- {0B311221-05A5-4766-8D03-7A6446794156}
O42 - Logiciel: Nero Update - (.Nero AG.) [HKLM] -- {65BB0407-4CC8-4DC7-952E-3EEFDF05602A}
O42 - Logiciel: Office 15 Click-to-Run Extensibility Component - (.Microsoft Corporation.) [HKLM] -- {90150000-008C-0000-0000-0000000FF1CE}
O42 - Logiciel: Office 15 Click-to-Run Licensing Component - (.Microsoft Corporation.) [HKLM] -- {90150000-007E-0000-0000-0000000FF1CE}
O42 - Logiciel: Office 15 Click-to-Run Localization Component - (.Microsoft Corporation.) [HKLM] -- {90150000-008C-040C-0000-0000000FF1CE}
O42 - Logiciel: Packard Bell Device Fast-lane - (.Packard Bell.) [HKLM] -- {3F62D2FD-13C1-49A2-8B5D-47623D9460D7}
O42 - Logiciel: Packard Bell Launch Manager - (.Packard Bell.) [HKLM] -- {C18D55BD-1EC6-466D-B763-8EEDDDA9100E}
O42 - Logiciel: Packard Bell Power Management - (.Packard Bell.) [HKLM] -- {89943901-4CD5-42AB-A55B-E5395FE27748}
O42 - Logiciel: Packard Bell Recovery Management - (.Packard Bell.) [HKLM] -- {D6B57AF2-2406-49E4-B219-EAA8B0B9F3CF}
O42 - Logiciel: PhotoFiltre Studio X - (...) [HKCU] -- PhotoFiltre Studio X
O42 - Logiciel: Pokki - (.Pokki.) [HKCU] -- Pokki
O42 - Logiciel: Qualcomm Atheros WLAN and Bluetooth Client Installation Program - (.Qualcomm Atheros.) [HKLM] -- {28006915-2739-4EBE-B5E8-49B25D32EB33}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Skype™ 6.13 - (.Skype Technologies S.A..) [HKLM] -- {7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}
O42 - Logiciel: Spotify - (.Spotify AB.) [HKLM] -- Spotify
O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM] -- SynTPDeinstKey
O42 - Logiciel: Update for Japanese Microsoft IME Postal Code Dictionary - (.Microsoft Corporation.) [HKLM] -- {83661BA0-9CAD-48C4-AF53-E420C729ACC0}
O42 - Logiciel: Update for Japanese Microsoft IME Standard Dictionary - (.Microsoft Corporation.) [HKLM] -- {7DB71278-9AD7-4480-AB08-8649C5010B17}
O42 - Logiciel: Update for Japanese Microsoft IME Standard Extended Dictionary - (.Microsoft Corporation.) [HKLM] -- {78CE66A9-85AF-4BD8-8FB7-35B5F3846C00}
O42 - Logiciel: iMindMap 7 - (.ThinkBuzan.) [HKLM] -- {D906DCC4-C3EB-4D78-A053-A6EBAA310144}
~ Logic: 29 Scanned in 00mn 00s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\Adobe]
[HKCU\Software\AppDataLow]
[HKCU\Software\Atheros]
[HKCU\Software\Bizzybolt] =>PUP.Bizzybolt
[HKCU\Software\Boxore] =>Adware.Boxore
[HKCU\Software\Chromium]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Cyberlink]
[HKCU\Software\Finkit]
[HKCU\Software\IM Providers]
[HKCU\Software\Intel]
[HKCU\Software\JavaSoft]
[HKCU\Software\Licenses]
[HKCU\Software\Local AppWizard-Generated Applications]
[HKCU\Software\MCAFEE]
[HKCU\Software\Macromedia]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\Netscape]
[HKCU\Software\ODBC]
[HKCU\Software\OEM]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\Realtek]
[HKCU\Software\RegisteredApplications]
[HKCU\Software\Skype]
[HKCU\Software\Softonic] =>Toolbar.Conduit
[HKCU\Software\Software]
[HKCU\Software\Synaptics]
[HKCU\Software\Trolltech]
[HKCU\Software\TutoTag] =>Spyware.AgenceExclusive
[HKCU\Software\ZebHelpProcess Helper]
[HKCU\Software\systweak]
[HKLM\Software\ATHEROS]
[HKLM\Software\ATI Technologies]
[HKLM\Software\Bench] =>PUP.GiganticSavings
[HKLM\Software\Boxore] =>Adware.Boxore
[HKLM\Software\Caphyon]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\CyberLink]
[HKLM\Software\DTS]
[HKLM\Software\Dolby]
[HKLM\Software\FREESOFTTODAY] =>Adware.FreeSoftToday
[HKLM\Software\Finkit]
[HKLM\Software\Genesys Logic]
[HKLM\Software\Google]
[HKLM\Software\IM Providers]
[HKLM\Software\Iminent] =>Adware.IMBooster
[HKLM\Software\InstalledOptions]
[HKLM\Software\Intel]
[HKLM\Software\JavaSoft]
[HKLM\Software\Khronos]
[HKLM\Software\Knowles]
[HKLM\Software\Lake]
[HKLM\Software\Macromedia]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\Nero]
[HKLM\Software\Nuance]
[HKLM\Software\ODBC]
[HKLM\Software\OEM]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\Qualcomm Atheros WLAN and Bluetooth Client Installation Program]
[HKLM\Software\Realtek Semiconductor Corp.]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SRS Labs]
[HKLM\Software\Skype]
[HKLM\Software\Software]
[HKLM\Software\SonicFocus]
[HKLM\Software\SymNRT]
[HKLM\Software\Symantec]
[HKLM\Software\Synaptics]
[HKLM\Software\Tutorials] =>Spyware.AgenceExclusive
[HKLM\Software\Volatile]
[HKLM\Software\Waves Audio]
[HKLM\Software\WildTangent]
[HKLM\Software\Wow6432Node]
[HKLM\Software\mozilla.org]
[HKLM\Software\systweak]
~ Key Software: 167 Scanned in 00mn 00s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 17/01/2014 - 13:04:16 - [107,915] ----D C:\Program Files\Anki
O43 - CFD: 08/02/2014 - 15:40:12 - [0,607] ----D C:\Program Files\Bench =>PUP.GiganticSavings
O43 - CFD: 08/02/2014 - 09:47:55 - [3,103] ----D C:\Program Files\Bizzybolt =>PUP.Bizzybolt
O43 - CFD: 07/02/2014 - 21:13:10 - [1,799] ----D C:\Program Files\Boxore =>Adware.Boxore
O43 - CFD: 18/01/2014 - 15:11:37 - [6,489] ----D C:\Program Files\CCleaner =>Piriform Ltd
O43 - CFD: 07/02/2014 - 21:12:43 - [156,358] ----D C:\Program Files\Common Files
O43 - CFD: 15/01/2014 - 22:41:17 - [0] -SH-D C:\Program Files\Fichiers communs
O43 - CFD: 07/02/2014 - 21:10:21 - [0,862] ----D C:\Program Files\Highlightly
O43 - CFD: 18/01/2014 - 15:56:20 - [223,920] --H-D C:\Program Files\InstallShield Installation Information
O43 - CFD: 14/10/2013 - 10:36:23 - [27,574] ----D C:\Program Files\Intel
O43 - CFD: 17/01/2014 - 10:43:21 - [5,048] ----D C:\Program Files\Internet Explorer
O43 - CFD: 06/02/2014 - 08:41:10 - [16,064] ----D C:\Program Files\ManicTime
O43 - CFD: 14/10/2013 - 11:05:16 - [0,262] ----D C:\Program Files\Microsoft Office
O43 - CFD: 20/01/2014 - 11:24:08 - [1405,766] ----D C:\Program Files\Microsoft Office 15
O43 - CFD: 15/01/2014 - 19:24:46 - [5,397] ----D C:\Program Files\Microsoft SkyDrive =>.Microsoft Corporation
O43 - CFD: 15/01/2014 - 19:17:35 - [7,797] ----D C:\Program Files\Microsoft.NET
O43 - CFD: 07/02/2014 - 21:10:20 - [51,055] ----D C:\Program Files\Mozilla Firefox
O43 - CFD: 15/01/2014 - 19:55:33 - [0,216] ----D C:\Program Files\Mozilla Maintenance Service
O43 - CFD: 03/09/2013 - 05:33:30 - [0,025] ----D C:\Program Files\MSBuild
O43 - CFD: 03/09/2013 - 07:04:08 - [150,860] ----D C:\Program Files\Nero
O43 - CFD: 14/10/2013 - 11:07:20 - [35,666] ----D C:\Program Files\Packard Bell
O43 - CFD: 18/01/2014 - 18:34:38 - [14,183] ----D C:\Program Files\PhotoFiltre Studio X
O43 - CFD: 07/02/2014 - 21:17:30 - [0] ----D C:\Program Files\predm
O43 - CFD: 14/10/2013 - 10:47:18 - [58,743] ----D C:\Program Files\Qualcomm Atheros
O43 - CFD: 14/10/2013 - 10:40:27 - [37,943] ----D C:\Program Files\Realtek
O43 - CFD: 03/09/2013 - 05:33:30 - [37,189] ----D C:\Program Files\Reference Assemblies
O43 - CFD: 04/02/2014 - 14:35:26 - [57,093] R---D C:\Program Files\Skype
O43 - CFD: 07/02/2014 - 21:09:29 - [5,140] ----D C:\Program Files\Software
O43 - CFD: 14/10/2013 - 10:57:06 - [42,601] ----D C:\Program Files\Spotify
O43 - CFD: 03/09/2013 - 07:06:07 - [1,859] ----D C:\Program Files\SymSilent
O43 - CFD: 14/10/2013 - 10:39:03 - [75,365] ----D C:\Program Files\Synaptics
O43 - CFD: 14/10/2013 - 10:41:23 - [0] --H-D C:\Program Files\Temp
O43 - CFD: 07/02/2014 - 22:02:30 - [209,668] ----D C:\Program Files\ThinkBuzan
O43 - CFD: 26/07/2012 - 07:04:59 - [0] --H-D C:\Program Files\Uninstall Information
O43 - CFD: 18/01/2014 - 13:26:26 - [6,454] ----D C:\Program Files\Windows Defender
O43 - CFD: 14/10/2013 - 20:02:57 - [7,185] ----D C:\Program Files\Windows Journal
O43 - CFD: 14/10/2013 - 20:02:57 - [5,466] ----D C:\Program Files\Windows Mail =>.Microsoft Corporation
O43 - CFD: 14/10/2013 - 20:02:57 - [4,768] ----D C:\Program Files\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 26/07/2012 - 07:53:56 - [0,209] ----D C:\Program Files\Windows Multimedia Platform
O43 - CFD: 15/01/2014 - 22:41:17 - [7,243] ----D C:\Program Files\Windows NT
O43 - CFD: 14/10/2013 - 20:02:57 - [5,226] ----D C:\Program Files\Windows Photo Viewer
O43 - CFD: 26/07/2012 - 07:53:56 - [0,209] ----D C:\Program Files\Windows Portable Devices
O43 - CFD: 26/07/2012 - 07:53:43 - [0] -SH-D C:\Program Files\Windows Sidebar
O43 - CFD: 06/02/2014 - 13:34:48 - [1284,203] --H-D C:\Program Files\WindowsApps
O43 - CFD: 09/02/2014 - 12:16:07 - [17,253] ----D C:\Program Files\ZHPDiag =>.Nicolas Coolman
O43 - CFD: 14/10/2013 - 10:44:30 - [0,112] ----D C:\Program Files\Common Files\Atheros
O43 - CFD: 15/01/2014 - 19:17:37 - [0,013] ----D C:\Program Files\Common Files\DESIGNER
O43 - CFD: 14/10/2013 - 10:37:32 - [3,593] ----D C:\Program Files\Common Files\InstallShield
O43 - CFD: 14/10/2013 - 10:33:31 - [46,835] ----D C:\Program Files\Common Files\Intel
O43 - CFD: 15/01/2014 - 19:17:37 - [75,992] ----D C:\Program Files\Common Files\microsoft shared
O43 - CFD: 03/09/2013 - 07:03:53 - [17,704] ----D C:\Program Files\Common Files\Nero
O43 - CFD: 14/10/2013 - 10:45:32 - [0,795] ----D C:\Program Files\Common Files\QCA_Bluetooth
O43 - CFD: 26/07/2012 - 07:53:56 - [0,003] ----D C:\Program Files\Common Files\Services
O43 - CFD: 26/01/2014 - 23:20:18 - [1,904] ----D C:\Program Files\Common Files\Skype
O43 - CFD: 14/10/2013 - 20:02:57 - [9,406] ----D C:\Program Files\Common Files\System
O43 - CFD: 26/07/2012 - 07:04:44 - [0] -SH-D C:\ProgramData\Application Data
O43 - CFD: 22/01/2014 - 18:35:18 - [0] ----D C:\ProgramData\Atheros
O43 - CFD: 07/02/2014 - 20:52:25 - [0] ----D C:\ProgramData\BOL
O43 - CFD: 17/01/2014 - 10:58:26 - [0] ----D C:\ProgramData\boost_interprocess
O43 - CFD: 15/01/2014 - 22:41:17 - [0] -SH-D C:\ProgramData\Bureau
O43 - CFD: 14/10/2013 - 11:02:12 - [0] ----D C:\ProgramData\CLSK
O43 - CFD: 18/01/2014 - 15:55:37 - [0] ----D C:\ProgramData\CyberLink
O43 - CFD: 26/07/2012 - 07:04:44 - [0] -SH-D C:\ProgramData\Desktop
O43 - CFD: 26/07/2012 - 07:04:44 - [0] -SH-D C:\ProgramData\Documents
O43 - CFD: 14/10/2013 - 11:00:16 - [0,495] ----D C:\ProgramData\install_clap
O43 - CFD: 14/10/2013 - 10:36:24 - [21,317] ----D C:\ProgramData\Intel
O43 - CFD: 09/02/2014 - 10:58:57 - [0] ----D C:\ProgramData\JSoft
O43 - CFD: 15/01/2014 - 22:41:17 - [0] -SH-D C:\ProgramData\Menu Démarrer
O43 - CFD: 27/01/2014 - 13:45:14 - [536,996] -S--D C:\ProgramData\Microsoft
O43 - CFD: 15/01/2014 - 19:24:19 - [0] ----D C:\ProgramData\Microsoft SkyDrive =>.Microsoft Corporation
O43 - CFD: 15/01/2014 - 22:41:17 - [0] -SH-D C:\ProgramData\Modèles
O43 - CFD: 15/01/2014 - 19:55:33 - [0] ----D C:\ProgramData\Mozilla
O43 - CFD: 03/09/2013 - 07:03:53 - [0,872] ----D C:\ProgramData\Nero
O43 - CFD: 18/01/2014 - 14:50:37 - [0,019] ----D C:\ProgramData\Norton
O43 - CFD: 17/01/2014 - 10:58:34 - [0,334] ----D C:\ProgramData\NortonInstaller
O43 - CFD: 14/10/2013 - 11:07:22 - [0] ----D C:\ProgramData\OEM
O43 - CFD: 15/01/2014 - 19:07:28 - [0] ----D C:\ProgramData\OEM_YAHOO
O43 - CFD: 03/09/2013 - 07:03:01 - [0,009] ----D C:\ProgramData\Packard Bell
O43 - CFD: 15/01/2014 - 19:10:57 - [0] ----D C:\ProgramData\Pokki
O43 - CFD: 18/01/2014 - 13:30:52 - [0,048] ----D C:\ProgramData\PRICache
O43 - CFD: 14/10/2013 - 10:43:43 - [0,023] ----D C:\ProgramData\Qualcomm Atheros
O43 - CFD: 20/01/2014 - 11:25:51 - [0,004] ----D C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 26/01/2014 - 23:20:28 - [34,352] ----D C:\ProgramData\Skype
O43 - CFD: 26/07/2012 - 07:04:44 - [0] -SH-D C:\ProgramData\Start Menu
O43 - CFD: 14/10/2013 - 11:00:55 - [0,040] ----D C:\ProgramData\Temp
O43 - CFD: 26/07/2012 - 07:04:44 - [0] -SH-D C:\ProgramData\Templates
O43 - CFD: 09/02/2014 - 10:58:57 - [143,277] ----D C:\ProgramData\ThinkBuzan
O43 - CFD: 18/01/2014 - 15:58:04 - [0,521] ----D C:\ProgramData\WildTangent
O43 - CFD: 18/01/2014 - 15:47:30 - [1,502] ----D C:\Users\audrey\AppData\Roaming\Adobe
O43 - CFD: 15/01/2014 - 19:08:09 - [0] ----D C:\Users\audrey\AppData\Roaming\Atheros
O43 - CFD: 07/02/2014 - 20:54:39 - [0,829] ----D C:\Users\audrey\AppData\Roaming\igdhbblpcellaljokkpfhcjlagemhgjl
O43 - CFD: 15/01/2014 - 19:09:06 - [0,003] ----D C:\Users\audrey\AppData\Roaming\Macromedia
O43 - CFD: 06/02/2014 - 08:41:11 - [44,133] -S--D C:\Users\audrey\AppData\Roaming\Microsoft
O43 - CFD: 15/01/2014 - 19:56:00 - [36,709] ----D C:\Users\audrey\AppData\Roaming\Mozilla
O43 - CFD: 18/01/2014 - 18:35:59 - [0,004] ----D C:\Users\audrey\AppData\Roaming\PhotoFiltre Studio X
O43 - CFD: 01/02/2014 - 00:14:12 - [7,648] ----D C:\Users\audrey\AppData\Roaming\Skype
O43 - CFD: 15/01/2014 - 19:05:31 - [0] ----D C:\Users\audrey\AppData\Roaming\Synaptics
O43 - CFD: 07/02/2014 - 21:19:05 - [0,555] ----D C:\Users\audrey\AppData\Roaming\systweak
O43 - CFD: 18/01/2014 - 15:58:04 - [0] ----D C:\Users\audrey\AppData\Roaming\WildTangent
O43 - CFD: 09/02/2014 - 12:17:06 - [0,016] ----D C:\Users\audrey\AppData\Roaming\ZHP =>.Nicolas Coolman
O43 - CFD: 15/01/2014 - 19:03:50 - [0] -SH-D C:\Users\audrey\AppData\Local\Application Data
O43 - CFD: 18/01/2014 - 23:25:25 - [9,366] ----D C:\Users\audrey\AppData\Local\Bandizip
O43 - CFD: 22/01/2014 - 18:35:19 - [0] ----D C:\Users\audrey\AppData\Local\BMExplorer
O43 - CFD: 07/02/2014 - 22:25:02 - [17,520] ----D C:\Users\audrey\AppData\Local\CrashDumps
O43 - CFD: 19/01/2014 - 12:10:54 - [1,332] ----D C:\Users\audrey\AppData\Local\Diagnostics
O43 - CFD: 06/02/2014 - 08:41:22 - [1,745] ----D C:\Users\audrey\AppData\Local\Finkit
O43 - CFD: 15/01/2014 - 19:03:50 - [0] -SH-D C:\Users\audrey\AppData\Local\Historique
O43 - CFD: 15/01/2014 - 22:15:29 - [0] ----D C:\Users\audrey\AppData\Local\Macromedia
O43 - CFD: 05/02/2014 - 15:04:16 - [273,990] ----D C:\Users\audrey\AppData\Local\Microsoft
O43 - CFD: 15/01/2014 - 19:56:00 - [23,594] ----D C:\Users\audrey\AppData\Local\Mozilla
O43 - CFD: 06/02/2014 - 13:34:48 - [597,676] ----D C:\Users\audrey\AppData\Local\Packages
O43 - CFD: 09/02/2014 - 11:01:49 - [114,686] ----D C:\Users\audrey\AppData\Local\Pokki
O43 - CFD: 07/02/2014 - 21:09:14 - [0] ----D C:\Users\audrey\AppData\Local\Programs
O43 - CFD: 26/01/2014 - 23:20:52 - [4,544] ----D C:\Users\audrey\AppData\Local\Skype
O43 - CFD: 07/02/2014 - 21:09:29 - [0] ----D C:\Users\audrey\AppData\Local\Software
O43 - CFD: 09/02/2014 - 12:16:10 - [26,495] ----D C:\Users\audrey\AppData\Local\Temp
O43 - CFD: 15/01/2014 - 19:03:50 - [0] -SH-D C:\Users\audrey\AppData\Local\Temporary Internet Files
O43 - CFD: 15/01/2014 - 19:04:37 - [0] ----D C:\Users\audrey\AppData\Local\VirtualStore
O43 - CFD: 03/09/2013 - 06:54:47 - [0,004] R---D C:\Users\audrey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 26/07/2012 - 07:53:43 - [0,001] R---D C:\Users\audrey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 18/01/2014 - 13:31:03 - [0] R---D C:\Users\audrey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 18/01/2014 - 23:25:21 - [0,001] ----D C:\Users\audrey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bandizip
O43 - CFD: 26/07/2012 - 07:53:44 - [0] ----D C:\Users\audrey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 18/01/2014 - 18:34:39 - [0] ----D C:\Users\audrey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PhotoFiltre Studio X
O43 - CFD: 07/02/2014 - 22:07:45 - [0,003] R---D C:\Users\audrey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 17/04/2013 - 12:10:36 - [0,005] R---D C:\Users\audrey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
~ Program Folder: 126 Scanned in 00mn 44s



---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.D288D9D1923FC2E4F35A1F035FF5EC25] - 04/02/2014 - 16:26:14 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [1793586]
O44 - LFC:[MD5.EB9078EB165B33CED60C366E4A6D30F1] - 04/02/2014 - 16:26:14 ---A- . (...) -- C:\Windows\System32\perfc009.dat [132614]
O44 - LFC:[MD5.4C81A972BAF3F2BAA8243485750C2F45] - 04/02/2014 - 16:26:14 ---A- . (...) -- C:\Windows\System32\perfc00C.dat [155734]
O44 - LFC:[MD5.67698FE0DA9048E282DF2A31FEDDA0F6] - 04/02/2014 - 16:26:14 ---A- . (...) -- C:\Windows\System32\perfh009.dat [710244]
O44 - LFC:[MD5.DA4A991093EC810BF70C9B62AA21E92E] - 04/02/2014 - 16:26:14 ---A- . (...) -- C:\Windows\System32\perfh00C.dat [801114]
O44 - LFC:[MD5.168D01D52DA18DBA89743056DA33E2A1] - 07/02/2014 - 21:10:58 ---A- . (.System Speedup - System Speedup.) -- C:\Windows\System32\roboot.exe [17496]
O44 - LFC:[MD5.B59CC930CB86A3ED25C6C03DCB3733F6] - 08/02/2014 - 09:47:55 ---A- . (...) -- C:\Windows\PFRO.log [6996]
O44 - LFC:[MD5.1AEB2876AA502910C9E87F93F225A8D6] - 08/02/2014 - 18:34:59 ---A- . (...) -- C:\Windows\WindowsUpdate.log [349466]
O44 - LFC:[MD5.3EA1E082864C6000D0E1DB721355E99D] - 09/02/2014 - 10:58:36 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.E5DDE10C19E32289F97D74C12FC975A7] - 30/01/2014 - 22:10:35 ---A- . (.Adobe Systems Incorporated - Adobe Flash Player Control Panel Applet.) -- C:\Windows\System32\FlashPlayerApp.exe [694240]
O44 - LFC:[MD5.E8D13BF478F9702EE3E200283EDD392A] - 30/01/2014 - 22:10:35 ---A- . (.Adobe Systems Incorporated - Adobe Flash Player Control Panel Applet.) -- C:\Windows\System32\FlashPlayerCPLApp.cpl [78296]
~ Files: 11 Scanned in 00mn 06s



---\\ Derniers fichiers créés dans Windows Prefetcher (O45)
O45 - LFCP:[MD5.342836235FF8C85585ABA0F479DD8D72] - 02/02/2014 - 15:17:16 ---A- - C:\Windows\Prefetch\PLUGIN-HANG-UI.EXE-336B0E60.pf
O45 - LFCP:[MD5.8951DE63F8DC80BD87826181CF86A948] - 03/02/2014 - 13:31:48 ---A- - C:\Windows\Prefetch\PFSTUDIOX.EXE-500F8F4E.pf
O45 - LFCP:[MD5.3E7E17A7BC112CF316CE87E0254AA28B] - 03/02/2014 - 19:03:48 ---A- - C:\Windows\Prefetch\MSDT.EXE-A16F1692.pf
O45 - LFCP:[MD5.3D4C50E0A6966F0EDA6B21670A891C1F] - 04/02/2014 - 09:06:24 ---A- - C:\Windows\Prefetch\YOUTUBE VIDEODOWNLOADER.EXE-BA9B2E15.pf
O45 - LFCP:[MD5.14B30505B251C6FCEB1F68003E279B80] - 04/02/2014 - 09:06:39 ---A- - C:\Windows\Prefetch\CCLEANER.EXE-E5FE256A.pf =>Piriform Ltd
O45 - LFCP:[MD5.02D4D06659B2F3F9D5F725B34C1C0C8B] - 04/02/2014 - 10:21:39 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-AC024951.pf
O45 - LFCP:[MD5.1BB99DC4B7FEAAC8BEDB2E08E6B13900] - 04/02/2014 - 14:11:25 ---A- - C:\Windows\Prefetch\CYCLE_GENITAL_FEMME.EXE-284091EE.pf
O45 - LFCP:[MD5.CD5AD75B89C3CE75EB51A24FEF487056] - 04/02/2014 - 14:12:13 ---A- - C:\Windows\Prefetch\CYCLE_GENITAL_FEMME.EXE-5FCAA94E.pf
O45 - LFCP:[MD5.5CE612C5990D692E193E76427434C80C] - 04/02/2014 - 14:40:56 ---A- - C:\Windows\Prefetch\PDFREFLOW.EXE-F608E4FB.pf
O45 - LFCP:[MD5.2D0D1BF9CED11E3E1B0F34473F888E4E] - 04/02/2014 - 15:44:16 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-29741569.pf
O45 - LFCP:[MD5.80AC7E16574E5AA768593FE171879E42] - 05/02/2014 - 14:51:00 ---A- - C:\Windows\Prefetch\WEBCAM.EXE-C111969B.pf
O45 - LFCP:[MD5.BE79B720C6E80252ADAF1DF0059A3AC7] - 05/02/2014 - 16:31:43 ---A- - C:\Windows\Prefetch\EXCEL.EXE-FC85DF63.pf
O45 - LFCP:[MD5.C1CC3892FB1D77D0BF3C179BD2D24630] - 06/02/2014 - 08:39:09 ---A- - C:\Windows\Prefetch\MANICTIME.EXE-9569AAEB.pf
O45 - LFCP:[MD5.E3192D0493BB42C8658FF6ED0B28CA6A] - 06/02/2014 - 08:39:11 ---A- - C:\Windows\Prefetch\SETUP.EXE-882F3A5F.pf
O45 - LFCP:[MD5.98646849B1DD3C53491007A5ED525DE7] - 06/02/2014 - 08:41:01 ---A- - C:\Windows\Prefetch\MANICTIME.EXE-B4CB8FA3.pf
O45 - LFCP:[MD5.B985AFB707B8CD30AC88BCDB46947256] - 06/02/2014 - 08:41:02 ---A- - C:\Windows\Prefetch\SETUP.EXE-4264CC79.pf
O45 - LFCP:[MD5.49F412CAED755BFC2269F9B0E3F0917B] - 06/02/2014 - 12:37:20 ---A- - C:\Windows\Prefetch\IEXPLORE.EXE-6C28DB75.pf
O45 - LFCP:[MD5.A26218F05BA54273169D343222492268] - 06/02/2014 - 12:37:20 ---A- - C:\Windows\Prefetch\IEXPLORE.EXE-6C28DB76.pf
O45 - LFCP:[MD5.24B016EDAD64324D77D298A778BEABBC] - 06/02/2014 - 13:14:03 ---A- - C:\Windows\Prefetch\PICKERHOST.EXE-03F09186.pf
O45 - LFCP:[MD5.709CCAD2195D6C5200468529BEC6785A] - 06/02/2014 - 13:27:09 ---A- - C:\Windows\Prefetch\WWAHOST.EXE-BF92B921.pf
O45 - LFCP:[MD5.3177725D4F0D1471545CE901D6B5A7B3] - 06/02/2014 - 13:30:51 ---A- - C:\Windows\Prefetch\MAP.EXE-1D44B134.pf
O45 - LFCP:[MD5.DC1ADB42AD1D34431847777471B8F4F9] - 06/02/2014 - 13:33:53 ---A- - C:\Windows\Prefetch\WWAHOST.EXE-D942537D.pf
O45 - LFCP:[MD5.6513E49D523E88AAC4DB0E2070E70D36] - 06/02/2014 - 13:34:30 ---A- - C:\Windows\Prefetch\APP1.EXE-7582074C.pf
O45 - LFCP:[MD5.1CBF55BEF3E5A17F9123A738BCEFA163] - 06/02/2014 - 13:50:13 ---A- - C:\Windows\Prefetch\WWAHOST.EXE-69B5DED2.pf
O45 - LFCP:[MD5.861604B3C588A1797A5C21D16815EAFC] - 06/02/2014 - 14:16:23 ---A- - C:\Windows\Prefetch\SNDVOL.EXE-276AC160.pf
O45 - LFCP:[MD5.455D0896278B9DBA891CFD658C22E395] - 07/02/2014 - 10:11:50 ---A- - C:\Windows\Prefetch\MANICTIMECLIENT.EXE-183BF051.pf
O45 - LFCP:[MD5.D0D7C6DE1184B3F6B2A0D2A94EAEB3FB] - 07/02/2014 - 18:19:36 ---A- - C:\Windows\Prefetch\WWAHOST.EXE-C676C4D4.pf
O45 - LFCP:[MD5.4D155D0EEB0261450B8A078F66B5ED8E] - 07/02/2014 - 20:11:11 ---A- - C:\Windows\Prefetch\WWAHOST.EXE-C11540C7.pf
O45 - LFCP:[MD5.36E0B8D94E274E3E7DBF63F347C550D4] - 07/02/2014 - 20:17:02 ---A- - C:\Windows\Prefetch\ONENOTE.EXE-6A88D7FE.pf
O45 - LFCP:[MD5.AD604F72EEE288717DCB413E15204CDF] - 07/02/2014 - 20:36:32 ---A- - C:\Windows\Prefetch\SOFTONICDOWNLOADER_POUR_IMIND-6B1E0833.pf =>Toolbar.Conduit
O45 - LFCP:[MD5.D700FB7656D57687D9BE3A06DCD5B90F] - 07/02/2014 - 20:43:52 ---A- - C:\Windows\Prefetch\IMINDMAP_4.1.2_7LIC.EXE-16599C0E.pf
O45 - LFCP:[MD5.B48A663D9E80D17107BBF4E09153EB6A] - 07/02/2014 - 20:54:53 ---A- - C:\Windows\Prefetch\IEXPLOREINSTALLER.EXE-0CAB152A.pf
O45 - LFCP:[MD5.ED45EE03ECE2CB6573CBA399A80E8825] - 07/02/2014 - 21:09:28 ---A- - C:\Windows\Prefetch\FST_FR_3101-3FA11E96.TMP-B06A7648.pf =>PUA.FSTfr9
O45 - LFCP:[MD5.664CEF952D0D40F718ACAA3FA4455AAA] - 07/02/2014 - 21:10:00 ---A- - C:\Windows\Prefetch\SSUPSETUP_SBINSTALL2_SBINSTAL-56D9A50E.pf
O45 - LFCP:[MD5.29DB93C6B838A3CF2D23037A489EC8DA] - 07/02/2014 - 21:11:47 ---A- - C:\Windows\Prefetch\SYSTWEAKASP.TMP-96CAC88F.pf
O45 - LFCP:[MD5.80259CB37C8A802AECB07AAC969900ED] - 07/02/2014 - 21:12:33 ---A- - C:\Windows\Prefetch\ASPSETUP.TMP-3F054F38.pf
O45 - LFCP:[MD5.37A23C5A4FE2D5EB3871CDD45F34DCB6] - 07/02/2014 - 21:12:33 ---A- - C:\Windows\Prefetch\IMINENTUNINSTALL.EXE-04E8A631.pf =>Adware.IMBooster
O45 - LFCP:[MD5.632B06A5877058A392F6E855EBF0E55F] - 07/02/2014 - 21:12:49 ---A- - C:\Windows\Prefetch\UPFST_FR_78.EXE-718FB254.pf =>PUA.FSTfr9
O45 - LFCP:[MD5.2ED40DEA71144836527125E644D59598] - 07/02/2014 - 21:14:49 ---A- - C:\Windows\Prefetch\UNINS000.EXE-71D04B7B.pf
O45 - LFCP:[MD5.6DDFAE925E687D00E48FEEB7095C4AE0] - 07/02/2014 - 21:14:56 ---A- - C:\Windows\Prefetch\PREDM.TMP-1573E0CF.pf
O45 - LFCP:[MD5.D4374CCD79102381449994A5611A701B] - 07/02/2014 - 21:15:06 ---A- - C:\Windows\Prefetch\DM.TMP-B993E26B.pf
O45 - LFCP:[MD5.2CA684F78D32A4ABBD2788C514427498] - 07/02/2014 - 21:15:44 ---A- - C:\Windows\Prefetch\IMNS.EXE-1D54FD12.pf
O45 - LFCP:[MD5.79DB6F4B1ECF3427DE5563AF42E39C9B] - 07/02/2014 - 21:16:48 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-92AE8069.pf
O45 - LFCP:[MD5.9388EAE535DF7B11585325B299E42ED0] - 07/02/2014 - 21:17:22 ---A- - C:\Windows\Prefetch\DDRAGON.TMP-19EAEE07.pf
O45 - LFCP:[MD5.7E2CECD2ABDE927583D68CBCCEB7B341] - 07/02/2014 - 21:17:49 ---A- - C:\Windows\Prefetch\NET.EXE-61E7A54D.pf
O45 - LFCP:[MD5.FA9FD9394ED101DF599A98EC903288A4] - 07/02/2014 - 21:19:01 ---A- - C:\Windows\Prefetch\ASPUNINSTALL.EXE-58EF44BF.pf
O45 - LFCP:[MD5.CB17105E881ECA70D7CC5ABFAAA537CC] - 07/02/2014 - 21:19:05 ---A- - C:\Windows\Prefetch\UNINS000.EXE-D8B442DA.pf
O45 - LFCP:[MD5.9E807B96632FB21FA7868EB6B3E1CC78] - 07/02/2014 - 22:02:15 ---A- - C:\Windows\Prefetch\IMINDMAP7_WINDOWS_7.0.2.EXE-C65AFCDC.pf
O45 - LFCP:[MD5.2B9943DCDFFEF81856AB100404F293E2] - 07/02/2014 - 22:53:10 ---A- - C:\Windows\Prefetch\WWAHOST.EXE-77ECD7A1.pf
O45 - LFCP:[MD5.60E8F81DA2C3D2EE6A14E8879C13981A] - 08/02/2014 - 09:49:42 ---A- - C:\Windows\Prefetch\EXPLORER.EXE-03C49D11.pf
O45 - LFCP:[MD5.A036437526258ACEDEBF0FFFA44421B7] - 08/02/2014 - 09:50:50 ---A- - C:\Windows\Prefetch\AgCx_SC4.db
O45 - LFCP:[MD5.10D097CF3671186280B8417C3011C1E3] - 08/02/2014 - 10:22:30 ---A- - C:\Windows\Prefetch\UPDATER.EXE-961310FD.pf
O45 - LFCP:[MD5.7B80B51702C758D8DA26FE7964778445] - 08/02/2014 - 10:22:43 ---A- - C:\Windows\Prefetch\ANIM_SPERMATOGENESE.EXE-E187C4FE.pf
O45 - LFCP:[MD5.23F5FD36A618A4DC9FBF98D64AC8EBBD] - 08/02/2014 - 10:26:13 ---A- - C:\Windows\Prefetch\CYCLE_GENITAL_FEMME.EXE-45E08E00.pf
O45 - LFCP:[MD5.C6645E227D572835165A4D4C7BA5AD99] - 08/02/2014 - 10:29:46 ---A- - C:\Windows\Prefetch\GLCND.EXE-413BA8E0.pf
O45 - LFCP:[MD5.977F1F8DFAEB7EDE7FFC73A15F066B4D] - 08/02/2014 - 12:33:41 ---A- - C:\Windows\Prefetch\AgCx_SC1.db.trx
O45 - LFCP:[MD5.65F8720494DD7074B02CE71230C3A877] - 08/02/2014 - 12:34:42 ---A- - C:\Windows\Prefetch\AgCx_SC1.db
O45 - LFCP:[MD5.85C22CB73A32AA97D397F1A185A6F95D] - 08/02/2014 - 14:03:18 ---A- - C:\Windows\Prefetch\BANDIZIP32.EXE-4E4BA8FA.pf
O45 - LFCP:[MD5.0C0CB744C505833C2F1C5C6BBA31ECDB] - 08/02/2014 - 14:03:25 ---A- - C:\Windows\Prefetch\CYCLE_GENITAL_FEMME.EXE-CA52A777.pf
O45 - LFCP:[MD5.4484174FAA90BACC65CABD11C3030E22] - 08/02/2014 - 14:57:04 ---A- - C:\Windows\Prefetch\WINWORD.EXE-2437DA78.pf
O45 - LFCP:[MD5.B05313E85B9D194EBBF2419CB9745139] - 08/02/2014 - 15:39:36 ---A- - C:\Windows\Prefetch\ANKI.EXE-C6BD07E6.pf
O45 - LFCP:[MD5.75555E3177CB77432EFE2184D3FD75D8] - 08/02/2014 - 15:44:32 ---A- - C:\Windows\Prefetch\AU_.EXE-17842429.pf
O45 - LFCP:[MD5.29B6A2712BF9E1880FE12C076354E9DE] - 08/02/2014 - 15:57:59 ---A- - C:\Windows\Prefetch\dynreservedpri.db
O45 - LFCP:[MD5.F715ED139A7328B726BED4B0D0FA1561] - 08/02/2014 - 15:58:24 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-AB312CEC.pf
O45 - LFCP:[MD5.EFF44BEE3A3345D0AC8B8867830E3E5D] - 08/02/2014 - 18:23:25 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-05B3EDF6.pf
O45 - LFCP:[MD5.B113D5856AEAF14B26A72E0DAE07EE43] - 08/02/2014 - 18:23:25 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-F2C7AEBC.pf
O45 - LFCP:[MD5.A9845D208464FAC248EECBF9CD80670F] - 08/02/2014 - 18:25:17 ---A- - C:\Windows\Prefetch\AgCx_SC2.db
O45 - LFCP:[MD5.08A279D5A94BEE932A362C2F7931544C] - 08/02/2014 - 18:27:55 ---A- - C:\Windows\Prefetch\WUAUCLT.EXE-4A7CF88B.pf
O45 - LFCP:[MD5.DF0766DEAD6F3DAF551F8AA7E549EDD3] - 08/02/2014 - 18:27:56 ---A- - C:\Windows\Prefetch\AM_DELTA_PATCH_1.165.3575.0.E-8E2BF5DA.pf
O45 - LFCP:[MD5.F0BEA77184850FFCFAC25D2A624F1EC1] - 08/02/2014 - 18:27:56 ---A- - C:\Windows\Prefetch\MPSIGSTUB.EXE-4D562760.pf
O45 - LFCP:[MD5.F6EDD3F5EBF4EEC03999FAD04983D58A] - 08/02/2014 - 18:34:00 ---A- - C:\Windows\Prefetch\WERFAULT.EXE-44194444.pf
O45 - LFCP:[MD5.2D997EE96CCB12D1700C89203FDC3C5B] - 08/02/2014 - 18:34:46 ---A- - C:\Windows\Prefetch\CLASSICSHUTDOWN.EXE-97E69C02.pf
O45 - LFCP:[MD5.C94703D3AD72B385831CD1526CEF90F7] - 08/02/2014 - 18:34:58 ---A- - C:\Windows\Prefetch\LOGONUI.EXE-E35F76FB.pf
O45 - LFCP:[MD5.2B3BAFF9881812BA78A365DB31971E4D] - 08/02/2014 - 18:34:58 ---A- - C:\Windows\Prefetch\PfSvPerfStats.bin
O45 - LFCP:[MD5.53F09BF32C9CEC4EEDB713C7FC26866C] - 09/02/2014 - 10:57:33 ---A- - C:\Windows\Prefetch\LIVECOMM.EXE-CE584DC3.pf
O45 - LFCP:[MD5.EF3BBCD1308F2BEEB67AD86D3BB3B651] - 09/02/2014 - 10:57:33 ---A- - C:\Windows\Prefetch\LMEVENT.EXE-2883358B.pf
O45 - LFCP:[MD5.1CA1157F5326E7E2DB391671F912A353] - 09/02/2014 - 10:57:33 ---A- - C:\Windows\Prefetch\LMLAUNCHER.EXE-2A85C78B.pf
O45 - LFCP:[MD5.1467DA10ECAB98BAE708EB43C501506A] - 09/02/2014 - 10:57:33 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-B865F023.pf
O45 - LFCP:[MD5.8558F20BC16C1473CBCFF65C9C9E94B9] - 09/02/2014 - 10:57:33 ---A- - C:\Windows\Prefetch\UTILBIZZYBOLT.EXE-2E708F11.pf =>PUP.Bizzybolt
O45 - LFCP:[MD5.09446409764A9D55CA6715C5A2C1F435] - 09/02/2014 - 10:58:00 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-6AA5D6C5.pf
O45 - LFCP:[MD5.08A04C903968C026AA61A96066CB9771] - 09/02/2014 - 10:58:06 ---A- - C:\Windows\Prefetch\UPDATER.EXE-FC15D90E.pf
O45 - LFCP:[MD5.7AC48349F98F872B4846E9BC46697857] - 09/02/2014 - 10:58:23 ---A- - C:\Windows\Prefetch\BTVSTACK.EXE-67DA3167.pf
O45 - LFCP:[MD5.C552570A89DE3FF329819D5F57283296] - 09/02/2014 - 10:58:23 ---A- - C:\Windows\Prefetch\EPOWERSVC.EXE-76E124E6.pf
O45 - LFCP:[MD5.BE63F3096F4AE72218BDCCDD512D82BD] - 09/02/2014 - 10:58:23 ---A- - C:\Windows\Prefetch\LMTRAY.EXE-F6028811.pf
O45 - LFCP:[MD5.F9B0934F969FFF71C83306E2DE507EAE] - 09/02/2014 - 10:58:23 ---A- - C:\Windows\Prefetch\SEARCHINDEXER.EXE-EF8503D3.pf
O45 - LFCP:[MD5.27404CB38B9F1A7CD17E95383972CC43] - 09/02/2014 - 10:58:23 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-A2BD634E.pf
O45 - LFCP:[MD5.45DE84420EC8C70B0B9275DBD6327102] - 09/02/2014 - 10:58:23 ---A- - C:\Windows\Prefetch\UPDATER.EXE-02A58154.pf
O45 - LFCP:[MD5.A9551895A08990275A783EB50D0E054D] - 09/02/2014 - 10:58:25 ---A- - C:\Windows\Prefetch\SETAPM.EXE-9D9BA1F2.pf
O45 - LFCP:[MD5.FB3A163826E64F3F7B6F2A35FCBAE13E] - 09/02/2014 - 10:58:34 ---A- - C:\Windows\Prefetch\IGFXEXT.EXE-B04096D5.pf
O45 - LFCP:[MD5.6FB41D3CAF80F11421199EC28112AEA9] - 09/02/2014 - 10:58:35 ---A- - C:\Windows\Prefetch\EPOWEREVENT.EXE-57DB0DA4.pf
O45 - LFCP:[MD5.2DEE9D8D255421260091608A823C821C] - 09/02/2014 - 10:58:35 ---A- - C:\Windows\Prefetch\UNSECAPP.EXE-454AB5C0.pf
O45 - LFCP:[MD5.AD14C501AD76E23045204647A7F21254] - 09/02/2014 - 10:58:39 ---A- - C:\Windows\Prefetch\BOXORE.EXE-EC04ABE8.pf =>Adware.Boxore
O45 - LFCP:[MD5.942442783C6EB86746C919CC8F4084CB] - 09/02/2014 - 10:58:45 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-1B28B747.pf
O45 - LFCP:[MD5.13B232D6DA9C8CE49CBAF3DBE0947B85] - 09/02/2014 - 10:58:45 ---A- - C:\Windows\Prefetch\MANICTIME.EXE-D868E4C6.pf
O45 - LFCP:[MD5.421C69A16A65D28E5882BD99251EF680] - 09/02/2014 - 10:58:45 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-5AA6CF77.pf
O45 - LFCP:[MD5.E296E68F320F35E56DA5A42AAB68DB9C] - 09/02/2014 - 10:58:46 ---A- - C:\Windows\Prefetch\ONENOTEM.EXE-5FF122CF.pf
O45 - LFCP:[MD5.DDDEE3C16AD7DC2B7A048469783DE144] - 09/02/2014 - 10:58:47 ---A- - C:\Windows\Prefetch\IMINDMAP7_PRELOADER.EXE-01F41225.pf
O45 - LFCP:[MD5.AB78154A90B5B0AEF5A3EC85C4C39505] - 09/02/2014 - 10:58:58 ---A- - C:\Windows\Prefetch\IMINDMAP 7.EXE-9674756E.pf
O45 - LFCP:[MD5.7A7808A7143401AAF9BE6B15C788CED0] - 09/02/2014 - 10:59:25 ---A- - C:\Windows\Prefetch\SOFTWARECRASHHANDLER.EXE-41DAE391.pf
O45 - LFCP:[MD5.1035C7D19713F7F05A749E86954CFF71] - 09/02/2014 - 10:59:35 ---A- - C:\Windows\Prefetch\NASVC.EXE-248CDF56.pf
O45 - LFCP:[MD5.57C098E6DC69A0F29BC38F49AA76E86B] - 09/02/2014 - 10:59:48 ---A- - C:\Windows\Prefetch\WMPNETWK.EXE-13D172B9.pf
O45 - LFCP:[MD5.C7E9F5A3CDE414543033BA97DC3C00B9] - 09/02/2014 - 11:00:49 ---A- - C:\Windows\Prefetch\POKKI.EXE-2892E9B5.pf
O45 - LFCP:[MD5.BE172BCFEC2ABBDE12A139FD8059C4B0] - 09/02/2014 - 11:00:53 ---A- - C:\Windows\Prefetch\POKKI.EXE-2892E9B8.pf
O45 - LFCP:[MD5.CF2376689CA6D4B8F38DA50D90FE5997] - 09/02/2014 - 11:01:23 ---A- - C:\Windows\Prefetch\WMIADAP.EXE-7D63BB4C.pf
O45 - LFCP:[MD5.CF73D19BBF368413984281C1339B6174] - 09/02/2014 - 11:02:38 ---A- - C:\Windows\Prefetch\TASKKILL.EXE-ECD4FD3D.pf
O45 - LFCP:[MD5.1F3B26C202B07F71AFB989373836FF64] - 09/02/2014 - 11:02:41 ---A- - C:\Windows\Prefetch\BEFOREUNINSTALL.EXE-A8FD3F78.pf
O45 - LFCP:[MD5.0708B4A9D6948C54042037914E2E7E22] - 09/02/2014 - 11:02:44 ---A- - C:\Windows\Prefetch\UNINS000.EXE-03B16620.pf
O45 - LFCP:[MD5.8B73FA0B9E6285395B9BABA46F7A57FB] - 09/02/2014 - 11:02:47 ---A- - C:\Windows\Prefetch\CLEANSCHEDULE.EXE-85982555.pf
O45 - LFCP:[MD5.E185780C3012DBAA77DF4B0F6F9B5BD4] - 09/02/2014 - 11:02:47 ---A- - C:\Windows\Prefetch\_IU14D2N.TMP-01E8D10E.pf
O45 - LFCP:[MD5.9FAACE265FC21EB0288DFBC091AC6A2A] - 09/02/2014 - 11:05:15 ---A- - C:\Windows\Prefetch\WWAHOST.EXE-BEAE7D29.pf
O45 - LFCP:[MD5.57FE40784718E4336E895DF03FE7E6FD] - 09/02/2014 - 11:09:14 ---A- - C:\Windows\Prefetch\POKKI.EXE-2892E9BC.pf
O45 - LFCP:[MD5.E2ACB7584A7F6013571BB0182D5EFC59] - 09/02/2014 - 11:11:50 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-985C34E6.pf
O45 - LFCP:[MD5.49D321BB484C145606B319886E8BD506] - 09/02/2014 - 11:15:07 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-EA0A52C8.pf
O45 - LFCP:[MD5.3C69B9EFED7A7E211F48513251BD2756] - 09/02/2014 - 11:42:39 ---A- - C:\Windows\Prefetch\AgGlGlobalHistory.db
O45 - LFCP:[MD5.3716AB179317458C8998D70BCBE46E02] - 09/02/2014 - 11:42:39 ---A- - C:\Windows\Prefetch\AgRobust.db
O45 - LFCP:[MD5.AC84375A9D1AB1896170CBA46D34B6D2] - 09/02/2014 - 11:42:40 ---A- - C:\Windows\Prefetch\AgGlFaultHistory.db
O45 - LFCP:[MD5.DF928B3682FFEC028F4EC3484B238C2E] - 09/02/2014 - 11:42:40 ---A- - C:\Windows\Prefetch\AgGlFgAppHistory.db
O45 - LFCP:[MD5.D855652E586DBD7C89A5E38DC65224B2] - 09/02/2014 - 11:43:36 ---A- - C:\Windows\Prefetch\OPENWITH.EXE-BA0DC300.pf
O45 - LFCP:[MD5.2972F8A185B85A8A9A96D9A4F58C0A66] - 09/02/2014 - 11:43:36 ---A- - C:\Windows\Prefetch\WWAHOST.EXE-ABFB9536.pf
O45 - LFCP:[MD5.017F234FE6AD4EE610F8009840100773] - 09/02/2014 - 11:43:37 ---A- - C:\Windows\Prefetch\BACKGROUNDTRANSFERHOST.EXE-DDC1EE5C.pf
O45 - LFCP:[MD5.1A87F7246A1E162D31B41E22C145AFBF] - 09/02/2014 - 11:43:47 ---A- - C:\Windows\Prefetch\IEXPLORE.EXE-7A9337F2.pf
O45 - LFCP:[MD5.586CDF2A1BEF55A14807136287FACF07] - 09/02/2014 - 11:43:47 ---A- - C:\Windows\Prefetch\IEXPLORE.EXE-7A9337F4.pf
O45 - LFCP:[MD5.A37EB1764D1304AF2D660BCB4F93933E] - 09/02/2014 - 11:47:24 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-92A1BF97.pf
O45 - LFCP:[MD5.AE7A5BA9135F3962C1BE60B0CE99F344] - 09/02/2014 - 11:47:33 ---A- - C:\Windows\Prefetch\Op-EXPLORER.EXE-03C49D11-000000F5.pf
O45 - LFCP:[MD5.26DEC4E8562AD3ADCDCEBC977D9654C6] - 09/02/2014 - 11:48:27 ---A- - C:\Windows\Prefetch\SYSTEMPROPERTIESPROTECTION.EX-9E926287.pf
O45 - LFCP:[MD5.4AC68C6CE3813CB87157C5901A406C08] - 09/02/2014 - 11:50:10 ---A- - C:\Windows\Prefetch\SRTASKS.EXE-29C2E869.pf
O45 - LFCP:[MD5.520C4D5B4D632EF8C02F2391FE19F83F] - 09/02/2014 - 11:56:15 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-29D61DAB.pf
O45 - LFCP:[MD5.C4D7FFB8A701E10EA6D2B70EB3BD185E] - 09/02/2014 - 11:56:15 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-D687BE54.pf
O45 - LFCP:[MD5.319CEFFD60089D50876E14630C9478D8] - 09/02/2014 - 11:56:25 ---A- - C:\Windows\Prefetch\SETTINGSYNCHOST.EXE-DD400067.pf
O45 - LFCP:[MD5.16271C89538CB8228C3F6A1B3181AB4C] - 09/02/2014 - 11:56:25 ---A- - C:\Windows\Prefetch\TASKHOSTEX.EXE-7356AAC0.pf
O45 - LFCP:[MD5.35378BC4DEEC7A4CBE80B8F0675FC5BA] - 09/02/2014 - 11:56:30 ---A- - C:\Windows\Prefetch\VSSVC.EXE-206E55B3.pf
O45 - LFCP:[MD5.1F7BAA995DB1A95AA2771C4829546DFA] - 09/02/2014 - 11:56:31 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-574A519D.pf
O45 - LFCP:[MD5.4EF956B11E7ADBFE7B2BCEBB097AB508] - 09/02/2014 - 11:56:44 ---A- - C:\Windows\Prefetch\Layout.ini
O45 - LFCP:[MD5.75A7EB0C0D51C77CE17A7520D9F9A9BD] - 09/02/2014 - 11:56:55 ---A- - C:\Windows\Prefetch\DEFRAG.EXE-22AD8A37.pf
O45 - LFCP:[MD5.AD0F254F9030F5637E97F4C1637403B6] - 09/02/2014 - 11:56:55 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-5511E724.pf
O45 - LFCP:[MD5.5FE5C175A27BE2824525AD66D5F8365A] - 09/02/2014 - 11:57:42 ---A- - C:\Windows\Prefetch\TIWORKER.EXE-B41E4FE4.pf
O45 - LFCP:[MD5.F5EE03DF4BC670259D548917413B06B9] - 09/02/2014 - 11:57:42 ---A- - C:\Windows\Prefetch\TRUSTEDINSTALLER.EXE-B018CCBF.pf
O45 - LFCP:[MD5.ABD4A1B4AF8DB472232248F54904E844] - 09/02/2014 - 11:59:22 ---A- - C:\Windows\Prefetch\NGEN.EXE-A8DBB043.pf
O45 - LFCP:[MD5.D6BB8666B1A74BC4BCA9025742D42CE9] - 09/02/2014 - 11:59:31 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-3C5D03F7.pf
O45 - LFCP:[MD5.85144A91CD5A44B10051093B86658E52] - 09/02/2014 - 11:59:32 ---A- - C:\Windows\Prefetch\NGENTASK.EXE-4DB88ADA.pf
O45 - LFCP:[MD5.CC21A9C67F7C6755E314BDC2D5217BAF] - 09/02/2014 - 11:59:32 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-9E940D77.pf
O45 - LFCP:[MD5.80C71B0936EF938D41D8C0EBA9D06DE7] - 09/02/2014 - 11:59:56 ---A- - C:\Windows\Prefetch\MSCORSVW.EXE-55FE3087.pf
O45 - LFCP:[MD5.EC91084439AD02B9A0B81343ED36064A] - 09/02/2014 - 12:11:56 ---A- - C:\Windows\Prefetch\THUMBNAILEXTRACTIONHOST.EXE-C3FB8861.pf
O45 - LFCP:[MD5.74A59059C7EA492AF92D90FF2754AB64] - 09/02/2014 - 12:12:10 ---A- - C:\Windows\Prefetch\TASKENG.EXE-23205583.pf
O45 - LFCP:[MD5.E27DFA90FDE82AC922C86EB2B5BE8E6B] - 09/02/2014 - 12:12:13 ---A- - C:\Windows\Prefetch\WMIPRVSE.EXE-BB49B536.pf
O45 - LFCP:[MD5.57E22C011741AD5E5640EE3F233733E5] - 09/02/2014 - 12:13:38 ---A- - C:\Windows\Prefetch\AUDIODG.EXE-9848A323.pf
O45 - LFCP:[MD5.6C50597C20BF4E31883C1F02FAA870F6] - 09/02/2014 - 12:13:38 ---A- - C:\Windows\Prefetch\FLASHPLAYERPLUGIN_12_0_0_43.E-4751A190.pf
O45 - LFCP:[MD5.BEFE1751DE7FF319D1BE08E9F1372E4A] - 09/02/2014 - 12:13:38 ---A- - C:\Windows\Prefetch\PLUGIN-CONTAINER.EXE-1BB59D12.pf
O45 - LFCP:[MD5.7769D1183961BED46479F461060FC826] - 09/02/2014 - 12:14:00 ---A- - C:\Windows\Prefetch\SOFTWAREUPDATE.EXE-0983C060.pf
O45 - LFCP:[MD5.B6D9483A0FDB6A077F43BB9A47490C7B] - 09/02/2014 - 12:15:13 ---A- - C:\Windows\Prefetch\MSASCUI.EXE-4ED47FD9.pf
O45 - LFCP:[MD5.C92DAB7F1768AC037F1B95E3F8F6DA79] - 09/02/2014 - 12:15:15 ---A- - C:\Windows\Prefetch\MSIEXEC.EXE-7D20CFB0.pf
O45 - LFCP:[MD5.1C6F6EFEBC8D1E06BD39E5253A448A23] - 09/02/2014 - 12:15:16 ---A- - C:\Windows\Prefetch\FIREFOX.EXE-25FC0A66.pf
O45 - LFCP:[MD5.C5A8135C00B6A244F7AC1F5C16AD1D37] - 09/02/2014 - 12:15:26 ---A- - C:\Windows\Prefetch\CONSENT.EXE-2D674CE4.pf
O45 - LFCP:[MD5.232957EBB25355C4C721809DB30BC32E] - 09/02/2014 - 12:15:28 ---A- - C:\Windows\Prefetch\WERMGR.EXE-D948C216.pf
O45 - LFCP:[MD5.DBE39C6BE3C82A03F68EC0439E3EDFE2] - 09/02/2014 - 12:15:32 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-DE573634.pf
O45 - LFCP:[MD5.CFD102E9FAFB1130252509F2CF87DB9E] - 09/02/2014 - 12:15:33 ---A- - C:\Windows\Prefetch\CONHOST.EXE-F98A1078.pf
O45 - LFCP:[MD5.47F00624F0338895AEF1D9ABD6E811E8] - 09/02/2014 - 12:15:33 ---A- - C:\Windows\Prefetch\MPCMDRUN.EXE-6520183E.pf
O45 - LFCP:[MD5.255288E2DDAC773775D9C0CE01BD8D3E] - 09/02/2014 - 12:15:58 ---A- - C:\Windows\Prefetch\ZHPDIAG2.EXE-F41537B5.pf
O45 - LFCP:[MD5.81FFBD9E850FF4636EE93E41686D43B3] - 09/02/2014 - 12:15:58 ---A- - C:\Windows\Prefetch\ZHPDIAG2.TMP-224A6CF4.pf
O45 - LFCP:[MD5.A49AD2B429C3E369EDE633D8347ECDB5] - 09/02/2014 - 12:16:01 ---A- - C:\Windows\Prefetch\SEARCHFILTERHOST.EXE-10E4267C.pf
O45 - LFCP:[MD5.B3549CD643BC5E204ED888ACBE0AE95C] - 09/02/2014 - 12:16:01 ---A- - C:\Windows\Prefetch\SEARCHPROTOCOLHOST.EXE-C6CFE2A8.pf
O45 - LFCP:[MD5.9A0D4701ECA51FB508267330647B9967] - 09/02/2014 - 12:16:12 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-210D3DBE.pf
O45 - LFCP:[MD5.2F85DFFDC6871254A1013388E6ED8F32] - 09/02/2014 - 12:16:13 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-38926D07.pf
O45 - LFCP:[MD5.AD9F76F59E8DB4BA41DF33F031731DCA] - 09/02/2014 - 12:16:25 ---A- - C:\Windows\Prefetch\ZHPHEP.EXE-F5855356.pf
O45 - LFCP:[MD5.7CCA509D29A3975BD5FFB19552CD22EB] - 09/02/2014 - 12:16:26 ---A- - C:\Windows\Prefetch\TABTIP.EXE-58E52E53.pf
O45 - LFCP:[MD5.3B92E7483360458A67E4435ED4C414CA] - 09/02/2014 - 12:16:30 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-50AF0BCC.pf
O45 - LFCP:[MD5.B6CD291B9E515A21F133AD3E351264ED] - 09/02/2014 - 12:16:35 ---A- - C:\Windows\Prefetch\ZHPDIAG.EXE-E3D4ADD6.pf
O45 - LFCP:[MD5.776781BBE952B970D6088CAF6B1F3006] - 09/02/2014 - 12:16:48 ---A- - C:\Windows\Prefetch\CSCRIPT.EXE-AC3ABA62.pf
O45 - LFCP:[MD5.5211EA88E4D07013626E76B276D36B81] - 09/02/2014 - 12:16:52 ---A- - C:\Windows\Prefetch\SPPSVC.EXE-7B160CA5.pf
O45 - LFCP:[MD5.A3BBF8A1EE153936E30EC4D6EBF89375] - 09/02/2014 - 12:16:53 ---A- - C:\Windows\Prefetch\PV.EXE-55D514E1.pf
O45 - LFCP:[MD5.D4795FA93190265C6CBE39C83F7EAAC0] - 09/02/2014 - 12:16:57 ---A- - C:\Windows\Prefetch\CMD.EXE-CD245F9E.pf
O45 - LFCP:[MD5.9B0BC1647F7D2F75C18B13630C6E6EED] - 09/02/2014 - 12:16:58 ---A- - C:\Windows\Prefetch\SUBINACL.EXE-24DEC368.pf
O45 - LFCP:[MD5.23F262B740EA5F208C3EC3ED891FD987] - 09/02/2014 - 12:17:02 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-5B401A7E.pf
O45 - LFCP:[MD5.89AE5B9A1AC718B3B336E0780366E8A9] - 09/02/2014 - 12:17:08 ---A- - C:\Windows\Prefetch\AgGlUAD_P_S-1-5-21-30844821-2391127684-4000348375-1001.db
O45 - LFCP:[MD5.08CAF238CE07325366235240C25DFDFC] - 09/02/2014 - 12:17:08 ---A- - C:\Windows\Prefetch\AgGlUAD_S-1-5-21-30844821-2391127684-4000348375-1001.db
O45 - LFCP:[MD5.A270F525C8D08ACFBDBD3E44B1FD5B60] - 09/02/2014 - 12:17:13 ---A- - C:\Windows\Prefetch\SCHTASKS.EXE-BA1E321E.pf
O45 - LFCP:[MD5.6F2CCB856C3588040539AAEFBED9BD27] - 15/01/2014 - 19:37:14 ---A- - C:\Windows\Prefetch\WWAHOST.EXE-75101F48.pf
O45 - LFCP:[MD5.7C4DEC3307FECAFB9BC98A8C9302CFE3] - 15/01/2014 - 19:55:33 ---A- - C:\Windows\Prefetch\MAINTENANCESERVICE_INSTALLER.-9B1CBD54.pf
O45 - LFCP:[MD5.54581CAB8CFB28465CD652B10B92B0A1] - 15/01/2014 - 22:17:15 ---A- - C:\Windows\Prefetch\FIREFOX SETUP STUB 26.0.EXE-160B6608.pf
O45 - LFCP:[MD5.D092517EF5B6D0D940A79ADF64E13D8A] - 15/01/2014 - 22:42:57 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-F75AB772.pf
O45 - LFCP:[MD5.E65D1E768F1CD66826A61A97561F3C12] - 16/01/2014 - 00:58:05 ---A- - C:\Windows\Prefetch\AgAppLaunch.db
O45 - LFCP:[MD5.40A03D15FD0DA84BDEF70E692024D688] - 17/01/2014 - 11:59:22 ---A- - C:\Windows\Prefetch\CRASHREPORTER.EXE-AE7E8073.pf
O45 - LFCP:[MD5.F3CC50E963EE4F09D6D87791A5EA566D] - 17/01/2014 - 21:02:28 ---A- - C:\Windows\Prefetch\WWAHOST.EXE-399D0696.pf
O45 - LFCP:[MD5.4E137BE403B769CEE7FE157AD6C2DC39] - 18/01/2014 - 11:33:41 ---A- - C:\Windows\Prefetch\WWAHOST.EXE-C77D5AEF.pf
O45 - LFCP:[MD5.229DCF13CA2F9BA0F5E737128D5AD30F] - 18/01/2014 - 14:43:14 ---A- - C:\Windows\Prefetch\MCCLNUI.EXE-4DB4AEF5.pf
O45 - LFCP:[MD5.71CE17C5D9FBC5A13122326B9757C50B] - 18/01/2014 - 14:43:17 ---A- - C:\Windows\Prefetch\MCCLEA~1.EXE-78F026CA.pf
O45 - LFCP:[MD5.D2B28855F3D03DD8DFD08B83FB39C49E] - 18/01/2014 - 14:51:23 ---A- - C:\Windows\Prefetch\NOTEPAD.EXE-1A4CC1C3.pf
O45 - LFCP:[MD5.25DE055700809DF1349770B0097604A2] - 18/01/2014 - 14:54:51 ---A- - C:\Windows\Prefetch\WWAHOST.EXE-B4587EAF.pf
O45 - LFCP:[MD5.5CBC5FD487D8B7F66257E815BE727FB4] - 18/01/2014 - 14:55:35 ---A- - C:\Windows\Prefetch\NORTON_REMOVAL_TOOL.EXE-A505C0DA.pf
O45 - LFCP:[MD5.714B04CF4019BD2FB22D2BFA6802E0DE] - 18/01/2014 - 15:09:58 ---A- - C:\Windows\Prefetch\CCSETUP409.EXE-F15F5B3C.pf
O45 - LFCP:[MD5.45B49D7A0BE1D39A15E056F42DDBC884] - 18/01/2014 - 15:48:15 ---A- - C:\Windows\Prefetch\PHOTOSHOP.EXE-A1A7A669.pf
O45 - LFCP:[MD5.6F1DBE0D2CCF5D7800DC099BB91C5D47] - 18/01/2014 - 15:55:02 ---A- - C:\Windows\Prefetch\POWERDVD12.EXE-CDD252E7.pf
O45 - LFCP:[MD5.504DB618A5F3944E957CF2F7BE39803C] - 18/01/2014 - 16:09:25 ---A- - C:\Windows\Prefetch\PHOTOSHOPCS6PORTABLE.EXE-CEE58360.pf
O45 - LFCP:[MD5.27DDA5043C5A45491C6333C22C365818] - 18/01/2014 - 18:36:39 ---A- - C:\Windows\Prefetch\USB_DISK_EJECT.EXE-3890432C.pf
O45 - LFCP:[MD5.F487E4539E076150BA498D1FF173392A] - 18/01/2014 - 18:38:12 ---A- - C:\Windows\Prefetch\DISPLAYSWITCH.EXE-4D432882.pf
O45 - LFCP:[MD5.F39B60BED965CAEB40398280A3D52163] - 18/01/2014 - 23:03:15 ---A- - C:\Windows\Prefetch\YANDEXTOUCH.EXE-7A63BF4A.pf
O45 - LFCP:[MD5.736E861A9C422DDEE333E8AED1925394] - 18/01/2014 - 23:12:24 ---A- - C:\Windows\Prefetch\UNCOMPRESS.EXE-3A1A7CEF.pf
O45 - LFCP:[MD5.45F80BEDA560C4B8F32EB12B4928AB75] - 18/01/2014 - 23:23:21 ---A- - C:\Windows\Prefetch\MANGAVIEWER.EXE-FD698EF8.pf
O45 - LFCP:[MD5.2E8976C1DA81B1629D56DB2D6261ADCA] - 20/01/2014 - 11:26:07 ---A- - C:\Windows\Prefetch\INTEGRATEDOFFICE.EXE-AD511C84.pf
O45 - LFCP:[MD5.E5BCA9D49131BDB3D50ADDEEACD5C955] - 21/01/2014 - 09:54:39 ---A- - C:\Windows\Prefetch\WWAHOST.EXE-399D068D.pf
O45 - LFCP:[MD5.D711A4908F7041D73AFF5B442FE371DE] - 21/01/2014 - 17:16:39 ---A- - C:\Windows\Prefetch\WWAHOST.EXE-10040487.pf
O45 - LFCP:[MD5.0D4B398DACDC21EF8BC1D5E3E85B43FA] - 21/01/2014 - 17:19:21 ---A- - C:\Windows\Prefetch\GLCND.EXE-1DDAA2C2.pf
O45 - LFCP:[MD5.577787642F5E097D80286FA4D3782239] - 21/01/2014 - 17:19:54 ---A- - C:\Windows\Prefetch\WWAHOST.EXE-54B7BE4E.pf
O45 - LFCP:[MD5.80C307F1DCC4A15BF21222146F8AC938] - 21/01/2014 - 17:20:58 ---A- - C:\Windows\Prefetch\WMPLAYER.EXE-F4B5869D.pf
O45 - LFCP:[MD5.6ABFE9F218689BD0C33D0F1656F72C84] - 21/01/2014 - 17:21:17 ---A- - C:\Windows\Prefetch\NOTEPAD.EXE-B28CC291.pf
O45 - LFCP:[MD5.34EF258E298E19C31393834F94EC293F] - 21/01/2014 - 17:26:41 ---A- - C:\Windows\Prefetch\WWAHOST.EXE-9F1D77FB.pf
O45 - LFCP:[MD5.EF1A6399261384C317ACBF17F26DB6F7] - 21/01/2014 - 18:59:18 ---A- - C:\Windows\Prefetch\WWAHOST.EXE-9A63BA49.pf
O45 - LFCP:[MD5.FDCC12D5F32E7500EF375980A9C04B35] - 21/01/2014 - 19:01:55 ---A- - C:\Windows\Prefetch\WWAHOST.EXE-18F1C146.pf
O45 - LFCP:[MD5.722952E384324D69E9087F245F37B266] - 22/01/2014 - 09:30:31 ---A- - C:\Windows\Prefetch\DEVICEFASTLANEUI.EXE-CF5A78A9.pf
O45 - LFCP:[MD5.2D3DBDBC7243E302F07290D6584FCF7E] - 22/01/2014 - 12:03:40 ---A- - C:\Windows\Prefetch\WWAHOST.EXE-B3598D62.pf
O45 - LFCP:[MD5.F0E510BA560D697EB1EC20B6763A7967] - 22/01/2014 - 18:34:11 ---A- - C:\Windows\Prefetch\HELPPANE.EXE-5A92E3D5.pf
O45 - LFCP:[MD5.06DF5E5BEB341962A78BB3B7684974BF] - 23/01/2014 - 16:14:13 ---A- - C:\Windows\Prefetch\WWAHOST.EXE-9178D9A9.pf
O45 - LFCP:[MD5.146C892E55C1C4504E6B1D413AE9A3CA] - 26/01/2014 - 10:52:09 ---A- - C:\Windows\Prefetch\NOTIFICATION.EXE-D7317444.pf
O45 - LFCP:[MD5.A4277696657579C5F0ADB44C22EDB080] - 26/01/2014 - 16:32:09 ---A- - C:\Windows\Prefetch\WWAHOST.EXE-41CE0E7F.pf
O45 - LFCP:[MD5.059DABE7E4663B67DD2D665E4AA61408] - 26/01/2014 - 16:40:38 ---A- - C:\Windows\Prefetch\SKYDRIVE.EXE-AFD157F3.pf
O45 - LFCP:[MD5.97ADEB8CDAE9534C87F31575A2787656] - 27/01/2014 - 00:35:45 ---A- - C:\Windows\Prefetch\WWAHOST.EXE-C676C4DD.pf
O45 - LFCP:[MD5.FDC766D222FF0F979DC201E46115AA39] - 27/01/2014 - 13:16:33 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-DE8E1F32.pf
O45 - LFCP:[MD5.CDB2F4FA8D4B4037CCE324E02D24A2F2] - 27/01/2014 - 13:43:33 ---A- - C:\Windows\Prefetch\TASKMGR.EXE-39AABA37.pf
O45 - LFCP:[MD5.D604F310BDA647AD9049A5C5E73F9196] - 28/01/2014 - 12:47:18 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-9DAA4B32.pf
O45 - LFCP:[MD5.6C9B030E6E5B77B1A32079243BE03F18] - 28/01/2014 - 12:48:30 ---A- - C:\Windows\Prefetch\OSK.EXE-C125D72B.pf
O45 - LFCP:[MD5.3DFCD0495C884A2C91962AB79554F34F] - 28/01/2014 - 20:44:12 ---A- - C:\Windows\Prefetch\AUTHHOST.EXE-44C90B62.pf
O45 - LFCP:[MD5.6F3F605DB48D96EA741BF648396B24E8] - 28/01/2014 - 21:12:10 ---A- - C:\Windows\Prefetch\SYSTEMSETTINGS.EXE-D8CC3B5E.pf
O45 - LFCP:[MD5.FCB305949EAF9886AEB8C8535F77B0AC] - 28/01/2014 - 21:13:37 ---A- - C:\Windows\Prefetch\DAILYMOTION.EXE-1861472B.pf
O45 - LFCP:[MD5.59763E2ADDA48C458D7F8FEA45C2EFC6] - 29/01/2014 - 17:49:35 ---A- - C:\Windows\Prefetch\USB_DISK_EJECT.EXE-3B07FDDE.pf
O45 - LFCP:[MD5.7AA44B405C27A4866E8D08C681857304] - 29/01/2014 - 22:27:49 ---A- - C:\Windows\Prefetch\WWAHOST.EXE-20674D6B.pf
O45 - LFCP:[MD5.D6B4E68CE9FCA9760A7B31BD75B09042] - 31/01/2014 - 08:28:12 ---A- - C:\Windows\Prefetch\MMC.EXE-FC5DEC18.pf
O45 - LFCP:[MD5.A8D285CC1D254DAD86889067F0172508] - 31/01/2014 - 09:16:09 ---A- - C:\Windows\Prefetch\WWAHOST.EXE-10B5BC08.pf
O45 - LFCP:[MD5.AF81583B75EB0B45E6522BF46182CF4D] - 31/01/2014 - 15:18:42 ---A- - C:\Windows\Prefetch\WWAHOST.EXE-C2058B6B.pf
~ Prefetcher: 228 Scanned in 00mn 04s



---\\ Déni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l’Éditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Fournisseur de sécurité TLS/SSL.) -- C:\Windows\System32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Live Security Package.) -- C:\Windows\System32\livessp.dll
~ LSA: 9 Scanned in 00mn 00s



---\\ Contrôle du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\BasicDisplay.sys . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\BasicRender.sys . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dxgkrnl.sys . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\FsDepends.sys . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\FsDepends.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\BasicDisplay.sys . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\BasicRender.sys . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dxgkrnl.sys . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\FsDepends.sys . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\FsDepends.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (...) -- C:\Windows\System32\Drivers\rdpencdd.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
~ CSB: 17 Scanned in 00mn 00s



---\\ Recherche d'infection sur les pilotes (HKLM)(TDSD) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Codec Cinepak®.) -- C:\Windows\System32\iccvid.dll
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
~ TDSD: 3 Scanned in 00mn 00s



---\\ Enumération des clés de registre SecurityProviders (MCSP) (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
~ MSCP: 2 Scanned in 00mn 00s



---\\ Enumération des clés de registre PoliciesSystem (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableCursorSuppression"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLinkedConnections"=1
~ MWPS: 18 Scanned in 00mn 00s



---\\ Liste des pilotes du système (SDL) (O58)
O58 - SDL:[MD5.E7B9E170EFF01486D3118E372BA0AF21] - 26/07/2012 - 03:33:52 ---A- . (.Microsoft Corporation - 1394 OpenHCI Driver.) -- C:\Windows\System32\Drivers\1394ohci.sys [173056]
O58 - SDL:[MD5.96191579DDB1A201A2FB79C1D05680B4] - 26/07/2012 - 04:42:31 ---A- . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\Windows\System32\Drivers\3ware.sys [85232]
O58 - SDL:[MD5.B69DD3D0C195558ED5A4CF69A9D241A4] - 04/10/2012 - 08:36:59 ---A- . (.Microsoft Corporation - Pilote ACPI pour NT.) -- C:\Windows\System32\Drivers\acpi.sys [338152]
O58 - SDL:[MD5.3A5DA97644B9E2662CFF186A8798519C] - 26/07/2012 - 04:48:44 ---A- . (.Microsoft Corporation - ACPIEx Driver.) -- C:\Windows\System32\Drivers\acpiex.sys [58608]
O58 - SDL:[MD5.87C4AE693CA8AB6E2A13B7C7453466DB] - 26/07/2012 - 03:34:43 ---A- . (.Microsoft Corporation - ACPI Processor Aggregator Device Driver.) -- C:\Windows\System32\Drivers\acpipagr.sys [8704]
O58 - SDL:[MD5.C7D2BA04BA3C6CA702C2615A0C50469C] - 26/07/2012 - 03:35:03 ---A- . (.Microsoft Corporation - ACPI Power Metering Driver.) -- C:\Windows\System32\Drivers\acpipmi.sys [9216]
O58 - SDL:[MD5.38E110C96B2ACAB4D9A701777C9BCD98] - 26/07/2012 - 03:35:06 ---A- . (.Microsoft Corporation - ACPI Wake Alarm.) -- C:\Windows\System32\Drivers\acpitime.sys [8704]
O58 - SDL:[MD5.2FE756FD6E0336990D0B3652A07EBB9B] - 26/07/2012 - 04:42:31 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys [424176]
O58 - SDL:[MD5.CC579EC50EE5435A4070306C0E4EF9E6] - 26/07/2012 - 04:42:31 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\Drivers\adpahci.sys [298736]
O58 - SDL:[MD5.82743090D0259BF9F1373AD48372CBAC] - 26/07/2012 - 04:42:31 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -- C:\Windows\System32\Drivers\adpu320.sys [147696]
O58 - SDL:[MD5.F12EFEE4DD20519D0DDF8D78704EE4DE] - 22/03/2013 - 06:39:09 ---A- . (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) -- C:\Windows\System32\Drivers\afd.sys [438272]
O58 - SDL:[MD5.F63755B2DCE1BE7927F5CEAB7991EFED] - 26/07/2012 - 03:30:04 ---A- . (.Microsoft Corporation - RAS Agile Vpn Miniport Call Manager.) -- C:\Windows\System32\Drivers\agilevpn.sys [53760]
O58 - SDL:[MD5.73BB2C687305C4195ED7511587B041AA] - 26/07/2012 - 04:42:31 ---A- . (.Microsoft Corporation - Filtre AGP 440 NT.) -- C:\Windows\System32\Drivers\AGP440.sys [55536]
O58 - SDL:[MD5.E44885EA3E89A54BF14C78892CE85EA0] - 26/07/2012 - 04:42:31 ---A- . (.Microsoft Corporation - Filtre AGP AMD NT.) -- C:\Windows\System32\Drivers\AMDAGP.SYS [56048]
O58 - SDL:[MD5.FFDBB0DC75CDF6A3CC63B3DF790313EB] - 22/03/2013 - 06:39:09 ---A- . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\Drivers\amdk8.sys [80384]
O58 - SDL:[MD5.DF7FE35014C17CC4659C2531F9EA5A36] - 22/03/2013 - 06:39:09 ---A- . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\Drivers\amdppm.sys [78336]
O58 - SDL:[MD5.8D5D89177552EDFD5C9730CCE79F7FCC] - 26/07/2012 - 04:42:31 ---A- . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\Drivers\amdsata.sys [67312]
O58 - SDL:[MD5.5725597CF5E002FB665C6C69787DAA8A] - 26/07/2012 - 04:42:31 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows fa.) -- C:\Windows\System32\Drivers\amdsbs.sys [213744]
O58 - SDL:[MD5.FB336B5F110770CF22F6BFEB1906E773] - 26/07/2012 - 04:42:31 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\Drivers\amdxata.sys [22256]
O58 - SDL:[MD5.CB3613E82A5B058AB6A69846B0DDC6C5] - 26/07/2012 - 03:32:11 ---A- . (.Microsoft Corporation - AppID Driver.) -- C:\Windows\System32\Drivers\appid.sys [67072]
O58 - SDL:[MD5.A0982052EE6B01DC9B0CB7FEFD13040F] - 26/07/2012 - 04:42:30 ---A- . (.PMC-Sierra, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\Drivers\arc.sys [91888]
O58 - SDL:[MD5.7E17A734B0D33B8F9287F28F1C583DD7] - 26/07/2012 - 04:42:30 ---A- . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\Drivers\arcsas.sys [94448]
O58 - SDL:[MD5.E12BC771325E70C2A875136B0BAF491E] - 26/07/2012 - 03:35:54 ---A- . (.Microsoft Corporation - MS Remote Access serial network driver.) -- C:\Windows\System32\Drivers\asyncmac.sys [21504]
O58 - SDL:[MD5.48D8C3F2006698691F5AE0BB595FDCC8] - 26/07/2012 - 04:42:31 ---A- . (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\Drivers\atapi.sys [22768]
O58 - SDL:[MD5.52ACC18F0900BD294DB68FE703661A3E] - 26/07/2012 - 04:42:31 ---A- . (.Microsoft Corporation - ATAPI Driver Extension.) -- C:\Windows\System32\Drivers\ataport.sys [158448]
O58 - SDL:[MD5.D8BCDE8388D5CB5B2CD22D2DA3B84D56] - 21/06/2013 - 02:47:08 ---A- . (.Qualcomm Atheros Communications, Inc. - Qualcomm Atheros Extensible Wireless LAN device driver.) -- C:\Windows\System32\Drivers\athw8.sys [2926080]
O58 - SDL:[MD5.192AEF910423BCC00359EDE64186CD8B] - 07/07/2012 - 03:00:49 ---A- . (.ASIX Electronics Corp. - ASIX AX88772/AX88772A/AX88772B Network Driver.) -- C:\Windows\System32\Drivers\ax88772.sys [91136]
O58 - SDL:[MD5.A96A499B6C931B7242D964D5D695A506] - 26/07/2012 - 03:36:54 ---A- . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys [42496]
O58 - SDL:[MD5.D313E4D7DF0187CEDA121793F937EA89] - 26/07/2012 - 03:36:35 ---A- . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys [24576]
O58 - SDL:[MD5.456568993AFA53EBAA47EB261E8DFA3B] - 25/12/2012 - 09:53:26 ---A- . (.Microsoft Corporation - Battery Class Driver.) -- C:\Windows\System32\Drivers\battc.sys [30440]
O58 - SDL:[MD5.E53DDF8C101E3CB6A0483D592A8CC476] - 26/07/2012 - 03:38:40 ---A- . (.Microsoft Corporation - BEEP Driver.) -- C:\Windows\System32\Drivers\beep.sys [6144]
O58 - SDL:[MD5.D7148E90581185DB2CC6A2EED9C8281C] - 26/07/2012 - 03:35:41 ---A- . (.Microsoft Corporation - NT Lan Manager Datagram Receiver Driver.) -- C:\Windows\System32\Drivers\bowser.sys [84992]
O58 - SDL:[MD5.61E23CF0A54EDBAE5CFE3322E960ECC9] - 26/07/2012 - 03:30:23 ---A- . (.Microsoft Corporation - MAC Bridge Driver.) -- C:\Windows\System32\Drivers\bridge.sys [102912]
O58 - SDL:[MD5.0DBBC71202B69442AA872DEF925B2A11] - 21/03/2013 - 07:25:15 ---A- . (.Microsoft Corporation - Microsoft Bluetooth Audio Multiprofile Manager.) -- C:\Windows\System32\Drivers\BtaMPM.sys [14848]
O58 - SDL:[MD5.BD45E6B4CC48727E41A46B478E8182E0] - 01/08/2013 - 02:01:42 ---A- . (.Qualcomm Atheros - Qualcomm Atheros A2DP driver.) -- C:\Windows\System32\Drivers\btath_a2dp.sys [294696]
O58 - SDL:[MD5.52686EAFFADAC2B8289E65FAC925A6FB] - 01/08/2013 - 02:01:42 ---A- . (.Qualcomm Atheros - Qualcomm Atheros Bluetooth AVDT driver.) -- C:\Windows\System32\Drivers\btath_avdt.sys [102184]
O58 - SDL:[MD5.EEE64C16658B062B5EBBBCC1A904B337] - 01/08/2013 - 02:01:42 ---A- . (.Qualcomm Atheros - Qualcomm Atheros BUS driver.) -- C:\Windows\System32\Drivers\btath_bus.sys [27976]
O58 - SDL:[MD5.3C45D1D15C1AAAFB30EBC32890DC7CDB] - 01/08/2013 - 02:01:42 ---A- . (.Qualcomm Atheros - Qualcomm Atheros FILTER driver.) -- C:\Windows\System32\Drivers\btath_flt.sys [80680]
O58 - SDL:[MD5.EEE20236FED2CA023B530DB601B795A4] - 01/08/2013 - 02:01:42 ---A- . (.Qualcomm Atheros - Qualcomm Atheros HCRP driver.) -- C:\Windows\System32\Drivers\btath_hcrp.sys [158688]
O58 - SDL:[MD5.C20D0B52774A85653426044BA4986FD7] - 01/08/2013 - 02:01:42 ---A- . (.Qualcomm Atheros - Qualcomm Atheros FILTER driver.) -- C:\Windows\System32\Drivers\btath_lwflt.sys [66448]
O58 - SDL:[MD5.8F9C184A08FEC62E593EFB28C03BB5B1] - 01/08/2013 - 02:01:42 ---A- . (.Qualcomm Atheros - Qualcomm Atheros AVRCP driver.) -- C:\Windows\System32\Drivers\btath_rcp.sys [120616]
O58 - SDL:[MD5.8DF6F76AE8585BFD9280C2E73E794F8A] - 01/08/2013 - 02:01:42 ---A- . (.Qualcomm Atheros - Qualcomm Atheros BtFilter Driver.) -- C:\Windows\System32\Drivers\btfilter.sys [501032]
O58 - SDL:[MD5.9053BEDE5844021CBF53273A5FE37333] - 01/06/2013 - 03:29:09 ---A- . (.Microsoft Corporation - HID de contrôle à distance audio/vidéo Bluetooth.) -- C:\Windows\System32\Drivers\BthAvrcpTg.sys [30208]
O58 - SDL:[MD5.957008E7DD926E02D1AE0D52010A588A] - 02/03/2013 - 08:15:18 ---A- . (.Microsoft Corporation - Extension de bus Bluetooth.) -- C:\Windows\System32\Drivers\bthenum.sys [40448]
O58 - SDL:[MD5.3EEEA1B69C16A8D159B53896EC78420C] - 26/07/2012 - 03:33:16 ---A- . (.Microsoft Corporation - Bluetooth Hands-Free Audio and Call Control HID Enumerator.) -- C:\Windows\System32\Drivers\bthhfenum.sys [44032]
O58 - SDL:[MD5.403C9BA247F4D4C0E4FF6FFA5F096EF6] - 21/03/2013 - 07:25:15 ---A- . (.Microsoft Corporation - Minipilote HID mains libres Bluetooth.) -- C:\Windows\System32\Drivers\BthhfHid.sys [22528]
O58 - SDL:[MD5.6173C6F57488B4DE16C2D4632B346B39] - 26/07/2012 - 03:32:00 ---A- . (.Microsoft Corporation - Bluetooth LE Bus Enumerator.) -- C:\Windows\System32\Drivers\BthLEEnum.sys [165376]
O58 - SDL:[MD5.6E6C5A4540113B0E52C6FB2486250A78] - 02/03/2013 - 08:15:15 ---A- . (.Microsoft Corporation - Bluetooth Communications Driver.) -- C:\Windows\System32\Drivers\bthmodem.sys [50688]
O58 - SDL:[MD5.0233CC205AD2480B707CF5F30BA7F6FE] - 26/07/2012 - 03:30:42 ---A- . (.Microsoft Corporation - Bluetooth Personal Area Networking.) -- C:\Windows\System32\Drivers\bthpan.sys [93696]
O58 - SDL:[MD5.17295B48575DD5D018D4F53911D0CECD] - 02/03/2013 - 08:14:40 ---A- . (.Microsoft Corporation - Pilote de bus Bluetooth.) -- C:\Windows\System32\Drivers\bthport.sys [990208]
O58 - SDL:[MD5.04C643A97C5961E86F0D42EBABCA526A] - 21/03/2013 - 07:30:15 ---A- . (.Microsoft Corporation - Pilote de Miniport Bluetooth.) -- C:\Windows\System32\Drivers\BTHUSB.SYS [56320]
O58 - SDL:[MD5.00B4FA77732C7823D292ECD672660882] - 26/07/2012 - 03:38:28 ---A- . (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\Drivers\cdfs.sys [89088]
O58 - SDL:[MD5.4E707EC5071DD8F5C29A7410780BD4C3] - 26/07/2012 - 03:33:53 ---A- . (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\Drivers\cdrom.sys [135680]
O58 - SDL:[MD5.17BE1CB162768E886B2BBA63F8B89371] - 26/07/2012 - 03:34:23 ---A- . (.Microsoft Corporation - Consumer IR Class Driver for eHome.) -- C:\Windows\System32\Drivers\circlass.sys [38400]
O58 - SDL:[MD5.E34349E840CCF5D5D6F30B1637A19783] - 29/06/2013 - 05:45:08 ---A- . (.Microsoft Corporation - SCSI Class System Dll.) -- C:\Windows\System32\Drivers\Classpnp.sys [296280]
O58 - SDL:[MD5.D5370A0D3A8F7E531FE9BA3E3C81BAC8] - 26/07/2012 - 04:40:10 ---A- . (.Microsoft Corporation - Common Log File System Driver.) -- C:\Windows\System32\Drivers\clfs.sys [256240]
O58 - SDL:[MD5.16744C84320D33880E38DF7409585EBF] - 26/07/2012 - 03:36:58 ---A- . (.Microsoft Corporation - Control Method Battery Driver.) -- C:\Windows\System32\Drivers\CmBatt.sys [20480]
O58 - SDL:[MD5.D4EF3370F53CF9647B6D33A512DDC2E9] - 25/12/2012 - 09:53:26 ---A- . (.Microsoft Corporation - Kernel Cryptography, Next Generation.) -- C:\Windows\System32\Drivers\cng.sys [493136]
O58 - SDL:[MD5.765969F18ABD50298AA880E803D2096F] - 04/10/2012 - 08:37:04 ---A- . (.Microsoft Corporation - CNG Hardware Assist algorithm provider.) -- C:\Windows\System32\Drivers\cnghwassist.sys [31464]
O58 - SDL:[MD5.357444DE560252A907F8B687005B3DCA] - 26/07/2012 - 03:35:05 ---A- . (.Microsoft Corporation - Multi-Transport Composite Bus Enumerator.) -- C:\Windows\System32\Drivers\CompositeBus.sys [30720]
O58 - SDL:[MD5.F1B79B7B595B0D7990756C12FA64F00E] - 26/07/2012 - 05:17:18 ---A- . (.Microsoft Corporation - Console Driver.) -- C:\Windows\System32\Drivers\condrv.sys [25600]
O58 - SDL:[MD5.9473E76C23D2B1CC4A3B238003D60FCA] - 30/08/2013 - 01:44:24 ---A- . (.Microsoft Corporation - Crash Dump Driver.) -- C:\Windows\System32\Drivers\crashdmp.sys [54104]
O58 - SDL:[MD5.EE5C5712BBA245CD0C394EF54410CBEB] - 16/08/2013 - 00:21:21 ---A- . (.Microsoft Corporation - DAM Kernel Driver.) -- C:\Windows\System32\Drivers\dam.sys [51544]
O58 - SDL:[MD5.B21FDAC50FCD4CE53C203F097273532A] - 26/07/2012 - 03:34:25 ---A- . (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\Drivers\dfsc.sys [92160]
O58 - SDL:[MD5.C0C87CCE88C4532B575AD60A95E7FD57] - 26/07/2012 - 03:36:02 ---A- . (.Microsoft Corporation - System Indexer/Cache Driver.) -- C:\Windows\System32\Drivers\discache.sys [41472]
O58 - SDL:[MD5.4E3237D8266580412CCA774321056111] - 26/07/2012 - 04:40:11 ---A- . (.Microsoft Corporation - PnP Disk Driver.) -- C:\Windows\System32\Drivers\disk.sys [84208]
O58 - SDL:[MD5.142FC4EF3E0A59A102C81D10D962B1D0] - 26/07/2012 - 04:42:31 ---A- . (.Microsoft Corporation - Crash Dump Disk Driver.) -- C:\Windows\System32\Drivers\Diskdump.sys [32496]
O58 - SDL:[MD5.D0F942FCCA49FF0F1869D7E8866376C8] - 26/07/2012 - 03:38:56 ---A- . (.Microsoft Corporation - Boot Over USB Dump Driver.) -- C:\Windows\System32\Drivers\Dmpusbstor.sys [12800]
O58 - SDL:[MD5.9B20A9DB154249E0E40036BC8BDC3E38] - 26/07/2012 - 03:32:53 ---A- . (.Microsoft Corporation - Dynamic Memory.) -- C:\Windows\System32\Drivers\dmvsc.sys [28672]
O58 - SDL:[MD5.861715D570A2DE8A9FF8A1B41B21DF0F] - 25/12/2012 - 09:53:26 ---A- . (.Microsoft Corporation - Microsoft Trusted Audio Drivers.) -- C:\Windows\System32\Drivers\drmk.sys [83456]
O58 - SDL:[MD5.50B8D915F3514EC8BE7DF0D2EDEC44BA] - 25/12/2012 - 09:53:26 ---A- . (.Microsoft Corporation - Microsoft Trusted Audio Drivers.) -- C:\Windows\System32\Drivers\drmkaud.sys [5120]
O58 - SDL:[MD5.647FADC5A0F49A6AF27D0C62B38672D8] - 26/07/2012 - 04:40:11 ---A- . (.Microsoft Corporation - ATAPI Dump Driver.) -- C:\Windows\System32\Drivers\Dumpata.sys [30960]
O58 - SDL:[MD5.70225165B2CEEE485A276E50EAF47E17] - 04/10/2012 - 08:37:12 ---A- . (.Microsoft Corporation - Bitlocker Drive Encryption Crashdump Filter.) -- C:\Windows\System32\Drivers\dumpfve.sys [62488]
O58 - SDL:[MD5.D3F29A0129F212840991516C1D4E93AB] - 29/06/2013 - 05:29:15 ---A- . (.Microsoft Corporation - SD Crashdump Port Driver.) -- C:\Windows\System32\Drivers\dumpsd.sys [105304]
O58 - SDL:[MD5.A2FF22D087311E34902D122ED4D1FE58] - 19/09/2013 - 07:02:07 ---A- . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys [1230168]
O58 - SDL:[MD5.961DD6EC0AE6C048D0BA0AC650C6A8EF] - 21/03/2013 - 07:30:15 ---A- . (.Microsoft Corporation - DirectX Graphics MMS.) -- C:\Windows\System32\Drivers\dxgmms1.sys [259816]
O58 - SDL:[MD5.BC7119CF5B5BC9F54C8FAE221C3227F2] - 26/07/2012 - 04:42:32 ---A- . (.Microsoft Corporation - Enhanced Storage Class driver for IEEE 1667 devices.) -- C:\Windows\System32\Drivers\EhStorClass.sys [70384]
O58 - SDL:[MD5.1A5945FA87A05A97A1175657B7BA4EDB] - 26/07/2012 - 04:42:32 ---A- . (.Microsoft Corporation - Microsoft driver for storage devices supporting IEEE 1667 and T.) -- C:\Windows\System32\Drivers\EhStorTcgDrv.sys [99056]
O58 - SDL:[MD5.8B22B788A329645F08AB4F86B9580AF3] - 26/07/2012 - 03:34:41 ---A- . (.Microsoft Corporation - Error Device Driver.) -- C:\Windows\System32\Drivers\errdev.sys [7168]
O58 - SDL:[MD5.B60B2A0E110D640440263268FC02C726] - 26/07/2012 - 03:38:42 ---A- . (.Microsoft Corporation - Microsoft Extended FAT File System.) -- C:\Windows\System32\Drivers\exfat.sys [155648]
O58 - SDL:[MD5.C8B18803E1521225BDBA86B5F7D2E9FC] - 26/07/2012 - 04:48:29 ---A- . (.Microsoft Corporation - Fast FAT File System Driver.) -- C:\Windows\System32\Drivers\fastfat.sys [168688]
O58 - SDL:[MD5.9709867A1354A4D10046ADE31DA67511] - 26/07/2012 - 03:38:32 ---A- . (.Microsoft Corporation - Floppy Disk Controller Driver.) -- C:\Windows\System32\Drivers\fdc.sys [25600]
O58 - SDL:[MD5.1018AE04A4D36BA60247C2C22D7BA7D1] - 26/07/2012 - 04:48:30 ---A- . (.Microsoft Corporation - FileInfo Filter Driver.) -- C:\Windows\System32\Drivers\fileinfo.sys [59632]
O58 - SDL:[MD5.3A2F87EF4400B5E542E2C2BA8FAB4222] - 26/07/2012 - 03:36:53 ---A- . (.Microsoft Corporation - File Trace Filter Driver.) -- C:\Windows\System32\Drivers\filetrace.sys [29696]
O58 - SDL:[MD5.F37314C92AB8C876DB478A36A6D9FF0E] - 26/07/2012 - 03:38:32 ---A- . (.Microsoft Corporation - Floppy Driver.) -- C:\Windows\System32\Drivers\flpydisk.sys [19968]
O58 - SDL:[MD5.13C0B6F6EFD0D5C6871C07B56CB5403D] - 26/07/2012 - 05:17:18 ---A- . (.Microsoft Corporation - Gestionnaire de filtres de système de fichiers Microsoft.) -- C:\Windows\System32\Drivers\fltMgr.sys [293104]
O58 - SDL:[MD5.16D4CC9AE485BC60B6AE026FF2497DE8] - 26/07/2012 - 04:48:30 ---A- . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\fsdepends.sys [49392]
O58 - SDL:[MD5.28E64CAC27FE3A7CA34E2F93E9A8092A] - 26/07/2012 - 05:17:18 ---A- . (.Microsoft Corporation - File System Recognizer Driver.) -- C:\Windows\System32\Drivers\fs_rec.sys [21232]
O58 - SDL:[MD5.EB45DB29D3B3BCD557F4A57DADA7B2BE] - 21/08/2013 - 05:28:38 ---A- . (.Microsoft Corporation - BitLocker Drive Encryption Driver.) -- C:\Windows\System32\Drivers\fvevol.sys [407384]
O58 - SDL:[MD5.2F5D913671946E1823526728D41CA1BF] - 02/03/2013 - 10:21:20 ---A- . (.Microsoft Corporation - FWP/IPsec Kernel-Mode API.) -- C:\Windows\System32\Drivers\FWPKCLNT.SYS [271080]
O58 - SDL:[MD5.05F58A34B5E1EB3274AE7B0875A143EF] - 22/03/2013 - 06:39:09 ---A- . (.Microsoft Corporation - Processor Driver.) -- C:\Windows\System32\Drivers\fxppm.sys [17920]
O58 - SDL:[MD5.B5AD0B13AD7FD1C749FC45D81392B9DF] - 26/07/2012 - 04:42:33 ---A- . (.Microsoft Corporation - Filtre AGPv3.0 générique Microsoft pour plateformes de processe.) -- C:\Windows\System32\Drivers\GAGP30KX.SYS [59120]
O58 - SDL:[MD5.85EB3F93EE23D56DF5DE03AAE0102D80] - 02/08/2013 - 08:09:52 ---A- . (.GenesysLogic - GeneStor.) -- C:\Windows\System32\Drivers\GeneStor.sys [90728]
O58 - SDL:[MD5.4A219AB84D6936C2A61FF44D32EF378D] - 04/10/2012 - 08:37:00 ---A- . (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\Drivers\hdaudbus.sys [62464]
O58 - SDL:[MD5.89D57B5741BAB84D7B846FEE23D576BE] - 26/06/2013 - 03:27:33 ---A- . (.Microsoft Corporation - High Definition Audio Function Driver.) -- C:\Windows\System32\Drivers\HdAudio.sys [277504]
O58 - SDL:[MD5.8CBCFA78D2B43CCC23BF5A4C09A700CA] - 26/07/2012 - 03:36:21 ---A- . (.Microsoft Corporation - Hid Battery Driver.) -- C:\Windows\System32\Drivers\hidbatt.sys [20992]
O58 - SDL:[MD5.9133AFFBA020B97100703DB8E598C73F] - 06/04/2013 - 05:59:15 ---A- . (.Microsoft Corporation - Pilote de miniport Bluetooth pour les périphériques HID.) -- C:\Windows\System32\Drivers\hidbth.sys [81920]
O58 - SDL:[MD5.C63B2B4344A57596229D7E0179904A26] - 29/06/2013 - 03:31:26 ---A- . (.Microsoft Corporation - Hid Class Library.) -- C:\Windows\System32\Drivers\hidclass.sys [61440]
O58 - SDL:[MD5.804019176228EBE260A821C5688CAFD2] - 21/03/2013 - 09:16:36 ---A- . (.Microsoft Corporation - I2C HID Miniport Driver.) -- C:\Windows\System32\Drivers\hidi2c.sys [30208]
O58 - SDL:[MD5.11A4D12F4CADD18CDA334C2756FE450A] - 26/07/2012 - 03:36:49 ---A- . (.Microsoft Corporation - Infrared Miniport Driver for Input Devices.) -- C:\Windows\System32\Drivers\hidir.sys [38400]
O58 - SDL:[MD5.C548379CDF15397075F00EE42C3D765B] - 29/06/2013 - 03:32:26 ---A- . (.Microsoft Corporation - Hid Parsing Library.) -- C:\Windows\System32\Drivers\hidparse.sys [26496]
O58 - SDL:[MD5.48ADFEFD445291AE7D619B3F4638B092] - 04/05/2013 - 05:08:13 ---A- . (.Microsoft Corporation - USB Miniport Driver for Input Devices.) -- C:\Windows\System32\Drivers\hidusb.sys [19456]
O58 - SDL:[MD5.350D32CE64901445DE81CDF6CB681F27] - 04/12/2013 - 20:46:36 ---A- . (.Highlightly - Highlightly Driver x86.) -- C:\Windows\System32\Drivers\hlnfd.sys [52752]
O58 - SDL:[MD5.D7544353157E11864C00A48BC90EF183] - 26/07/2012 - 04:42:33 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\System32\Drivers\HpSAMD.sys [56048]
O58 - SDL:[MD5.8FE9867871C32E9B9A3276C61A0FACC0] - 15/03/2013 - 01:16:27 ---A- . (.Microsoft Corporation - HTTP Pile du protocole.) -- C:\Windows\System32\Drivers\http.sys [640000]
O58 - SDL:[MD5.4A3E6732E5BEF6DF531A217B5EBB5C54] - 26/07/2012 - 04:40:13 ---A- . (.Microsoft Corporation - Hardware Policy Driver.) -- C:\Windows\System32\Drivers\hwpolicy.sys [24304]
O58 - SDL:[MD5.0F819743721DFB5906734243ED0CE935] - 26/07/2012 - 03:34:04 ---A- . (.Microsoft Corporation - Microsoft VMBus Synthetic Keyboard Driver.) -- C:\Windows\System32\Drivers\hyperkbd.sys [10496]
O58 - SDL:[MD5.A14A2EBA22929901F64B496C1D555982] - 26/07/2012 - 03:36:36 ---A- . (.Microsoft Corporation - Microsoft VMBus Video Device Miniport Driver.) -- C:\Windows\System32\Drivers\HyperVideo.sys [19456]
O58 - SDL:[MD5.11EDC37780E8A2F8E311D73F7658A4D7] - 26/07/2012 - 03:36:23 ---A- . (.Microsoft Corporation - Pilote de port i8042.) -- C:\Windows\System32\Drivers\i8042prt.sys [89600]
O58 - SDL:[MD5.C444F83C318BE18719DC1FDAEFF10898] - 26/07/2012 - 04:42:33 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\Windows\System32\Drivers\iaStorV.sys [333552]
O58 - SDL:[MD5.AD85010EFC73CF1F08700BE21E8B5C94] - 01/08/2013 - 15:36:55 ---A- . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\Drivers\igdkmd32.sys [3314688]
O58 - SDL:[MD5.7BB542C7156FA72CC83C1177BB190F94] - 26/07/2012 - 04:42:33 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\Drivers\iirsp.sys [42224]
O58 - SDL:[MD5.700DE92EAA1452A924450CD6CBABFEF7] - 01/08/2013 - 15:53:49 ---A- . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\Windows\System32\Drivers\IntcDAud.sys [298456]
O58 - SDL:[MD5.A43BC9416741ABEA2B8DF60D2C0EA6A2] - 26/07/2012 - 04:42:33 ---A- . (.Microsoft Corporation - Intel PCI IDE Driver.) -- C:\Windows\System32\Drivers\intelide.sys [16624]
O58 - SDL:[MD5.BE23B0DF1401DC890B5CEFA369B1BD8E] - 22/03/2013 - 06:39:09 ---A- . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\Drivers\intelppm.sys [78848]
O58 - SDL:[MD5.AB308167857138B84E4DECDF2000DD27] - 26/07/2012 - 03:29:54 ---A- . (.Microsoft Corporation - IP FILTER DRIVER.) -- C:\Windows\System32\Drivers\ipfltdrv.sys [65024]
O58 - SDL:[MD5.7E4FEE6D5C5BC52199C481DAC564FE43] - 26/07/2012 - 03:35:43 ---A- . (.Microsoft Corporation - PILOT IPMI WMI.) -- C:\Windows\System32\Drivers\IPMIDrv.sys [65536]
O58 - SDL:[MD5.57B0C0D982013C72911A3F5CBA795034] - 26/07/2012 - 03:29:57 ---A- . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys [126976]
O58 - SDL:[MD5.DE65DF57BCC20B4CF8AE345C0711C303] - 26/07/2012 - 03:33:25 ---A- . (.Microsoft Corporation - IRDA Protocol Driver.) -- C:\Windows\System32\Drivers\irda.sys [95232]
O58 - SDL:[MD5.9D6DB34476AC6448B3CA59D8676F7CE6] - 26/07/2012 - 03:35:22 ---A- . (.Microsoft Corporation - Infra-Red Bus Enumerator.) -- C:\Windows\System32\Drivers\irenum.sys [13312]
O58 - SDL:[MD5.2E1347C9CC7DDB43183AF725135ACF0D] - 26/07/2012 - 04:42:33 ---A- . (.Microsoft Corporation - Pilote de bus PNP ISA.) -- C:\Windows\System32\Drivers\isapnp.sys [47856]
O58 - SDL:[MD5.4533BE9F8D67BDCF5FECA87DCC345448] - 26/07/2012 - 04:42:33 ---A- . (.Microsoft Corporation - Pilote de la classe Clavier.) -- C:\Windows\System32\Drivers\kbdclass.sys [39664]
O58 - SDL:[MD5.8F73A6DAEF7F7D102FBBA6F3EBC47F97] - 26/07/2012 - 03:36:28 ---A- . (.Microsoft Corporation - Pilote de filtre clavier HID.) -- C:\Windows\System32\Drivers\kbdhid.sys [23040]
O58 - SDL:[MD5.F7E302012680B0617C904B58594E0376] - 26/07/2012 - 03:35:10 ---A- . (.Microsoft Corporation - Microsoft Kernel Debugger Network Miniport.) -- C:\Windows\System32\Drivers\kdnic.sys [15360]
O58 - SDL:[MD5.2F72163647BFCA2394F7E7A7AEEEBFC1] - 21/03/2013 - 09:16:36 ---A- . (.Microsoft Corporation - Kernel CSA Library.) -- C:\Windows\System32\Drivers\ks.sys [242688]
O58 - SDL:[MD5.137AB78B8510F9E432C4793C0CF4CD80] - 04/10/2012 - 08:37:01 ---A- . (.Microsoft Corporation - Kernel Security Support Provider Interface.) -- C:\Windows\System32\Drivers\ksecdd.sys [81128]
O58 - SDL:[MD5.90226157B0130F9F11A3890BAE6F07AA] - 25/12/2012 - 09:53:26 ---A- . (.Microsoft Corporation - Kernel Security Support Provider Interface Packages.) -- C:\Windows\System32\Drivers\ksecpkg.sys [155880]
O58 - SDL:[MD5.AD581D8BA8C2CE46933D44392BA35C24] - 26/07/2012 - 03:30:58 ---A- . (.Microsoft Corporation - Link-Layer Topology Mapper I/O Driver.) -- C:\Windows\System32\Drivers\lltdio.sys [48128]
O58 - SDL:[MD5.5990C446E92A78065E9A7A93866040BA] - 17/07/2013 - 10:58:32 ---A- . (.Acer Incorporated - LMDriver.) -- C:\Windows\System32\Drivers\LMDriver.sys [18232]
O58 - SDL:[MD5.6B01CB678E1E390CEA9514D4774EFB51] - 26/07/2012 - 04:42:33 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas.sys [93424]
O58 - SDL:[MD5.4C3AFBA9ED36535313054AC26532E9DE] - 26/07/2012 - 04:42:33 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas2.sys [78576]
O58 - SDL:[MD5.0715DC27611C202D04BC0365D666DD27] - 26/07/2012 - 04:42:33 ---A- . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_scsi.sys [100592]
O58 - SDL:[MD5.DB6B9554AA4F83212E80D5107D8C53EE] - 26/07/2012 - 04:42:33 ---A- . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sss.sys [68848]
O58 - SDL:[MD5.F731770C339FEB6563397D410793A756] - 26/07/2012 - 03:37:10 ---A- . (.Microsoft Corporation - Pilote de filtre de virtualisation de fichier LUA.) -- C:\Windows\System32\Drivers\luafv.sys [102400]
O58 - SDL:[MD5.236C0ABF1129DFAF32432F11BDFB703E] - 26/07/2012 - 03:36:47 ---A- . (.Microsoft Corporation - Medium changer class driver.) -- C:\Windows\System32\Drivers\mcd.sys [17920]
O58 - SDL:[MD5.125C3C5A315500A1AD54F0B4766AF815] - 26/07/2012 - 04:42:33 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\Drivers\megasas.sys [45296]
O58 - SDL:[MD5.05457CC7F5586C6E8D02FFA7F23FCEDF] - 26/07/2012 - 04:42:15 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\Drivers\MegaSR.sys [283888]
O58 - SDL:[MD5.049E433162AFE9B08C05D81D2C62CD61] - 26/07/2012 - 03:38:25 ---A- . (.Microsoft Corporation - Pilote de périphérique modem.) -- C:\Windows\System32\Drivers\modem.sys [31744]
O58 - SDL:[MD5.81F2FEE55660E51820C93A388AE8FEB9] - 02/03/2013 - 08:15:13 ---A- . (.Microsoft Corporation - Monitor Driver.) -- C:\Windows\System32\Drivers\monitor.sys [24064]
O58 - SDL:[MD5.9D3F069A705325E7B7CEA36BFB65E616] - 26/07/2012 - 04:42:15 ---A- . (.Microsoft Corporation - Pilote de la classe Souris.) -- C:\Windows\System32\Drivers\mouclass.sys [39152]
O58 - SDL:[MD5.3C3C50AA12E2E48A9FEAA4BF5AA789A0] - 02/03/2013 - 08:18:13 ---A- . (.Microsoft Corporation - Pilote de filtre souris HID.) -- C:\Windows\System32\Drivers\mouhid.sys [20992]
O58 - SDL:[MD5.13D8E3077EF0AE583F4634236D9A0992] - 26/07/2012 - 05:17:18 ---A- . (.Microsoft Corporation - Gestionnaire des points de montage.) -- C:\Windows\System32\Drivers\mountmgr.sys [78064]
O58 - SDL:[MD5.E8AA1C862C926126FBAD748565205586] - 31/10/2013 - 04:03:50 ---A- . (.Microsoft Corporation - Microsoft Protection Service Driver.) -- C:\Windows\System32\Drivers\mpsdrv.sys [56832]
O58 - SDL:[MD5.329E3ACBFC616666D3D04C6FDC1B71E0] - 26/07/2012 - 03:33:16 ---A- . (.Microsoft Corporation - Windows NT WebDav Minirdr.) -- C:\Windows\System32\Drivers\mrxdav.sys [122368]
O58 - SDL:[MD5.5FAC7AC77D9ADD42579EDF678F08DF9F] - 21/03/2013 - 09:17:40 ---A- . (.Microsoft Corporation - Minirdr SMB Windows NT.) -- C:\Windows\System32\Drivers\mrxsmb.sys [304128]
O58 - SDL:[MD5.B9F3DA35CDE171B5CBA70319AD7D5E59] - 26/07/2012 - 03:30:23 ---A- . (.Microsoft Corporation - Longhorn SMB Downlevel SubRdr.) -- C:\Windows\System32\Drivers\mrxsmb10.sys [244736]
O58 - SDL:[MD5.96E88C54A0CF32A74483819DA7DA3A15] - 21/03/2013 - 09:17:40 ---A- . (.Microsoft Corporation - Longhorn SMB 2.0 Redirector.) -- C:\Windows\System32\Drivers\mrxsmb20.sys [167424]
O58 - SDL:[MD5.651DEF4337DD77E6A607CEE49D3C4B30] - 26/07/2012 - 05:17:18 ---A- . (.Microsoft Corporation - Mailslot driver.) -- C:\Windows\System32\Drivers\msfs.sys [21504]
O58 - SDL:[MD5.1F4CF4223F27C515A9F6F5FE4D268E67] - 09/07/2013 - 05:16:17 ---A- . (.Microsoft Corporation - GPIO Class Extension Driver.) -- C:\Windows\System32\Drivers\msgpioclx.sys [97112]
O58 - SDL:[MD5.8F47F5F31F001C4F97840DB723618DD0] - 21/03/2013 - 07:30:15 ---A- . (.Microsoft Corporation - GPIO Button Driver.) -- C:\Windows\System32\Drivers\msgpiowin32.sys [24808]
O58 - SDL:[MD5.26BBD77D23FFABB14C3291A1B8555EA5] - 26/07/2012 - 03:37:06 ---A- . (.Microsoft Corporation - Pass-through HID to KMDF Filter Driver.) -- C:\Windows\System32\Drivers\mshidkmdf.sys [6656]
O58 - SDL:[MD5.51808FEF911B77758A6CF7CEB469AF9E] - 26/07/2012 - 03:36:49 ---A- . (.Microsoft Corporation - Pilote direct pour interface HID-UMDF.) -- C:\Windows\System32\Drivers\mshidumdf.sys [7680]
O58 - SDL:[MD5.F103DF830D370B7535FDA3D477C8D8A0] - 26/07/2012 - 04:42:14 ---A- . (.Microsoft Corporation - ISA Driver.) -- C:\Windows\System32\Drivers\msisadrv.sys [15088]
O58 - SDL:[MD5.6AC2FF3AF40AE6AC39B097A07225B95B] - 22/03/2013 - 06:39:09 ---A- . (.Microsoft Corporation - Microsoft iSCSI Initiator Driver.) -- C:\Windows\System32\Drivers\msiscsi.sys [237800]
O58 - SDL:[MD5.3FCF6AA904516872CF70ED248F86889B] - 26/07/2012 - 03:36:27 ---A- . (.Microsoft Corporation - MS KS Server.) -- C:\Windows\System32\Drivers\mskssrv.sys [8192]
O58 - SDL:[MD5.10C229EAC28FDB8550EE93D955932F83] - 26/07/2012 - 03:30:56 ---A- . (.Microsoft Corporation - Pilote de protocole LLDP (Link Layer Discovery Protocol) Micros.) -- C:\Windows\System32\Drivers\mslldp.sys [57344]
O58 - SDL:[MD5.BA786F089895196E18120F66F996A3D2] - 26/07/2012 - 03:36:26 ---A- . (.Microsoft Corporation - MS Proxy Clock.) -- C:\Windows\System32\Drivers\mspclock.sys [6144]
O58 - SDL:[MD5.362950A5F7B1794DA9CB985AF7BBCC4B] - 26/07/2012 - 03:36:27 ---A- . (.Microsoft Corporation - MS Proxy Quality Manager.) -- C:\Windows\System32\Drivers\mspqm.sys [5888]
O58 - SDL:[MD5.79A14AB6C6A5B01E9CE99937D1304D13] - 26/07/2012 - 05:17:16 ---A- . (.Microsoft Corporation - Kernel Remote Procedure Call Provider.) -- C:\Windows\System32\Drivers\msrpc.sys [211696]
O58 - SDL:[MD5.A819A3006C27870AF05E408AD06FACFF] - 26/07/2012 - 04:48:32 ---A- . (.Microsoft Corporation - System Management BIOS Driver.) -- C:\Windows\System32\Drivers\mssmbios.sys [33008]
O58 - SDL:[MD5.FB1D61A2998A5C4456C6B73DD41D5352] - 26/07/2012 - 03:34:42 ---A- . (.Microsoft Corporation - WDM Tee/Communication Transform Filter.) -- C:\Windows\System32\Drivers\mstee.sys [6272]
O58 - SDL:[MD5.3CC687876469F0FD3B2D936FA7A6EC59] - 26/07/2012 - 03:33:15 ---A- . (.Microsoft Corporation - Pilote HID multipoint Microsoft.) -- C:\Windows\System32\Drivers\MTConfig.sys [11264]
O58 - SDL:[MD5.6779B2A319A563C68B56DE8491E9EA76] - 26/07/2012 - 04:48:32 ---A- . (.Microsoft Corporation - Multiple UNC Provider Driver.) -- C:\Windows\System32\Drivers\mup.sys [57584]
O58 - SDL:[MD5.1DEF95DC467131BF4AB52A8F72C42D89] - 26/07/2012 - 04:42:15 ---A- . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\Windows\System32\Drivers\mvumis.sys [59120]
O58 - SDL:[MD5.46D2FC2CB94830C57EA760CE6FD32F37] - 16/06/2013 - 23:33:43 ---A- . (.Microsoft Corporation - Pilote NDIS 6.30.) -- C:\Windows\System32\Drivers\ndis.sys [816896]
O58 - SDL:[MD5.9B8BC481DEEAA07C51DA214D2CEF2FC9] - 26/07/2012 - 03:35:03 ---A- . (.Microsoft Corporation - Microsoft NDIS Packet Capture Filter Driver.) -- C:\Windows\System32\Drivers\ndiscap.sys [30720]
O58 - SDL:[MD5.1EA68DB9E05248EF9B940D6D0A0725B3] - 26/07/2012 - 03:31:11 ---A- . (.Microsoft Corporation - Microsoft Network Adapter Multiplexor.) -- C:\Windows\System32\Drivers\NdisImPlatform.sys [110592]
O58 - SDL:[MD5.71F6E2AF63B0E52B36CEE7F0AE076A18] - 04/10/2012 - 08:37:25 ---A- . (.Microsoft Corporation - NDIS 3.0 connection wrapper driver.) -- C:\Windows\System32\Drivers\ndistapi.sys [20480]
O58 - SDL:[MD5.DDC67239BFE82DC5A878039B464B1968] - 26/07/2012 - 03:33:26 ---A- . (.Microsoft Corporation - Pilote d’E/S du mode utilisateur NDIS.) -- C:\Windows\System32\Drivers\ndisuio.sys [47104]
O58 - SDL:[MD5.556DB924D61BC4A5E0F95D383E9B1009] - 26/07/2012 - 03:30:07 ---A- . (.Microsoft Corporation - MS PPP Framing Driver (Strong Encryption).) -- C:\Windows\System32\Drivers\ndiswan.sys [140288]
O58 - SDL:[MD5.B8C10B9DE50120E8CA3E995F94CA80D7] - 06/04/2013 - 05:58:12 ---A- . (.Microsoft Corporation - NDIS Proxy.) -- C:\Windows\System32\Drivers\ndproxy.sys [48640]
O58 - SDL:[MD5.583F95CEFCD5D896B5531BD338030401] - 26/07/2012 - 03:30:39 ---A- . (.Microsoft Corporation - Windows Network Data Usage Monitoring Driver.) -- C:\Windows\System32\Drivers\Ndu.sys [84480]
O58 - SDL:[MD5.4CA677A214248DB8227F8035B546F7D0] - 26/07/2012 - 03:35:44 ---A- . (.Microsoft Corporation - NetBIOS interface driver.) -- C:\Windows\System32\Drivers\netbios.sys [36864]
O58 - SDL:[MD5.303A053C25E468B9925C22288BEF8484] - 26/07/2012 - 03:31:28 ---A- . (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\Drivers\netbt.sys [254464]
O58 - SDL:[MD5.8D295B84844425CEDE2734C5B82F07C1] - 25/12/2012 - 09:53:26 ---A- . (.Microsoft Corporation - Network I/O Subsystem.) -- C:\Windows\System32\Drivers\netio.sys [342248]
O58 - SDL:[MD5.4B539272E9F5C3B8D9714D137FD340A6] - 26/07/2012 - 04:42:15 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\Drivers\nfrd960.sys [45808]
O58 - SDL:[MD5.EAC569A77BE92B247FCA51E498B17DF1] - 26/07/2012 - 05:17:18 ---A- . (.Microsoft Corporation - NPFS Driver.) -- C:\Windows\System32\Drivers\npfs.sys [38912]
O58 - SDL:[MD5.6E994702ED294CDBED7621590EC75735] - 26/07/2012 - 03:35:28 ---A- . (.Microsoft Corporation - Named pipe service triggers.) -- C:\Windows\System32\Drivers\npsvctrig.sys [17920]
O58 - SDL:[MD5.9588CCD14571FA22F8F2ECCF198AB448] - 26/07/2012 - 05:17:16 ---A- . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys [23552]
O58 - SDL:[MD5.99C73E3FE9B36275BD91D2009F2BA2E0] - 21/03/2013 - 09:16:36 ---A- . (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\Windows\System32\Drivers\ntfs.sys [1614568]
O58 - SDL:[MD5.0F965AF67042AF539274738FFD0C8C71] - 26/07/2012 - 05:17:18 ---A- . (.Microsoft Corporation - NULL Driver.) -- C:\Windows\System32\Drivers\null.sys [5120]
O58 - SDL:[MD5.BD23FF50A9A59AAF48052F5E7D0682B0] - 26/07/2012 - 04:42:15 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\Drivers\nvraid.sys [120048]
O58 - SDL:[MD5.108DD54A5B1E73F583AF7DC94CCE52B8] - 26/07/2012 - 04:42:15 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\Drivers\nvstor.sys [141552]
O58 - SDL:[MD5.5ED87C9C51CFE59B1DDFF8290719E0E4] - 26/07/2012 - 04:42:15 ---A- . (.Microsoft Corporation - Filtre AGP NForce NT.) -- C:\Windows\System32\Drivers\NV_AGP.SYS [106736]
O58 - SDL:[MD5.D48E3B33BD911BA28413A4337456724F] - 26/07/2012 - 03:32:08 ---A- . (.Microsoft Corporation - Pilote de miniport WiFi natif.) -- C:\Windows\System32\Drivers\nwifi.sys [355328]
O58 - SDL:[MD5.42E46DC7767F5AB664E3F6B36D9764AD] - 26/07/2012 - 03:30:07 ---A- . (.Microsoft Corporation - Planificateur de paquets QoS.) -- C:\Windows\System32\Drivers\pacer.sys [131584]
O58 - SDL:[MD5.8BCE63AF5B52642E832630F862DE96EF] - 26/07/2012 - 03:38:17 ---A- . (.Microsoft Corporation - Pilote de port parallèle.) -- C:\Windows\System32\Drivers\parport.sys [90624]
O58 - SDL:[MD5.7289BE4566F0E5126868EB6E4292CC3C] - 21/03/2013 - 07:30:15 ---A- . (.Microsoft Corporation - Partition Management Driver.) -- C:\Windows\System32\Drivers\partmgr.sys [74984]
O58 - SDL:[MD5.49A439FEAB060F74B8EC7DBF44D4A7BA] - 26/07/2012 - 03:38:14 ---A- . (.Microsoft Corporation - Pilote parallèle VDM.) -- C:\Windows\System32\Drivers\parvdm.sys [8704]
O58 - SDL:[MD5.EA828C84C8948D0E4994C1E0A45EB05F] - 26/07/2012 - 04:42:15 ---A- . (.Microsoft Corporation - Énumérateur Plug-and-Play PCI pour NT.) -- C:\Windows\System32\Drivers\pci.sys [191216]
O58 - SDL:[MD5.B4444133ED61F87FD49A2ADD28285115] - 26/07/2012 - 04:42:15 ---A- . (.Microsoft Corporation - Generic PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\pciide.sys [13552]
O58 - SDL:[MD5.D1AD005775754FB73E9E5F7568DA48C1] - 26/07/2012 - 04:42:15 ---A- . (.Microsoft Corporation - PCI IDE Bus Driver Extension.) -- C:\Windows\System32\Drivers\pciidex.sys [41200]
O58 - SDL:[MD5.6E11FDE71F2015007CDD4AE9D2D700C9] - 26/07/2012 - 04:48:32 ---A- . (.Microsoft Corporation - Pilote de bus PCMCIA.) -- C:\Windows\System32\Drivers\pcmcia.sys [194288]
O58 - SDL:[MD5.8A56B080B12950D448D556FE4BA6C68C] - 26/07/2012 - 04:40:18 ---A- . (.Microsoft Corporation - Performance Counters for Windows Driver.) -- C:\Windows\System32\Drivers\pcw.sys [43760]
O58 - SDL:[MD5.58F99F74C33B7615ABEECF70BAD5FE1E] - 02/03/2013 - 10:06:16 ---A- . (.Microsoft Corporation - Power Dependency Coordinator Driver.) -- C:\Windows\System32\Drivers\pdc.sys [57576]
O58 - SDL:[MD5.8C7EE53A9F6A5F01E77DBB81654E5B66] - 06/04/2013 - 05:56:49 ---A- . (.Microsoft Corporation - Protected Environment Authentication and Authorization Export D.) -- C:\Windows\System32\Drivers\PEAuth.sys [709632]
O58 - SDL:[MD5.19EBD4DA50D9AA30F406B9E5D9C2C38C] - 28/09/2013 - 03:57:41 ---A- . (.Microsoft Corporation - Port Class (Class Driver for Port/Miniport Devices).) -- C:\Windows\System32\Drivers\portcls.sys [219136]
O58 - SDL:[MD5.BD23C45A654066374E3EC7F4EF8FC9B6] - 22/03/2013 - 06:39:09 ---A- . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\Drivers\processr.sys [77312]
O58 - SDL:[MD5.29E548E1C511BFBE56FA6438488DE0E0] - 26/07/2012 - 03:36:38 ---A- . (.Microsoft Corporation - Pilote du support de Microsoft Quality Windows Audio Video Expe.) -- C:\Windows\System32\Drivers\qwavedrv.sys [31744]
O58 - SDL:[MD5.0DB868B3F54483999D0EB61ED06A84A9] - 17/07/2013 - 10:58:32 ---A- . (.Acer Incorporated - RadioShim.) -- C:\Windows\System32\Drivers\RadioShim.sys [13112]
O58 - SDL:[MD5.C07E9331431C78D41F30E62A15E1D324] - 26/07/2012 - 03:38:01 ---A- . (.Microsoft Corporation - RAS Automatic Connection Driver.) -- C:\Windows\System32\Drivers\rasacd.sys [11776]
O58 - SDL:[MD5.6E0649D7325D85C47C844EB3267E4625] - 26/07/2012 - 03:30:07 ---A- . (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\Drivers\rasl2tp.sys [88064]
O58 - SDL:[MD5.5BA6DB7AD04A8EADE0A41E6C8427582B] - 26/07/2012 - 03:31:27 ---A- . (.Microsoft Corporation - RAS PPPoE mini-port/call-manager driver.) -- C:\Windows\System32\Drivers\raspppoe.sys [66560]
O58 - SDL:[MD5.03D522782A0BB5108C8A43A10EE51CB0] - 26/07/2012 - 03:30:07 ---A- . (.Microsoft Corporation - Peer-to-Peer Tunneling Protocol.) -- C:\Windows\System32\Drivers\raspptp.sys [82944]
O58 - SDL:[MD5.3A421DDA09E3BF96E9D698D13FDC139E] - 26/07/2012 - 03:31:06 ---A- . (.Microsoft Corporation - RAS SSTP Miniport Call Manager.) -- C:\Windows\System32\Drivers\rassstp.sys [74752]
O58 - SDL:[MD5.ED1CBB55D5946520994FCD8CA9596D9D] - 04/05/2013 - 05:06:43 ---A- . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire tampon de lecteur red.) -- C:\Windows\System32\Drivers\rdbss.sys [320512]
O58 - SDL:[MD5.4FB0345ADE5C2E15EA1A22F173E71D37] - 26/07/2012 - 03:35:50 ---A- . (.Microsoft Corporation - Microsoft RDP Bus Device driver.) -- C:\Windows\System32\Drivers\rdpbus.sys [16896]
O58 - SDL:[MD5.2CAD2A13569741C67CD9C52F97E0F992] - 26/07/2012 - 03:32:22 ---A- . (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RDP.) -- C:\Windows\System32\Drivers\rdpdr.sys [156160]
O58 - SDL:[MD5.40083918DB637FCB8A2C2453A2284603] - 25/12/2012 - 09:55:37 ---A- . (.Microsoft Corporation - Microsoft RDP Video Miniport driver.) -- C:\Windows\System32\Drivers\rdpvideominiport.sys [23272]
O58 - SDL:[MD5.EA0E833A1418C28E6085DFFA68731EA5] - 26/07/2012 - 03:30:22 ---A- . (.Microsoft Corporation - Pilote de pile RDP Terminal.) -- C:\Windows\System32\Drivers\rdpwd.sys [179200]
O58 - SDL:[MD5.38A8012D03150D6852B9CDDB24280F1A] - 26/07/2012 - 04:48:32 ---A- . (.Microsoft Corporation - ReadyBoost Driver.) -- C:\Windows\System32\Drivers\rdyboost.sys [173296]
O58 - SDL:[MD5.225D97C5A1CA5AEB65D0F814CC65D195] - 02/03/2013 - 08:15:24 ---A- . (.Microsoft Corporation - Bluetooth RFCOMM Driver.) -- C:\Windows\System32\Drivers\rfcomm.sys [123904]
O58 - SDL:[MD5.5D57FE34BB713E0B4A0F63D60D57BA92] - 26/07/2012 - 03:31:17 ---A- . (.Microsoft Corporation - Reliable Multicast Transport.) -- C:\Windows\System32\Drivers\rmcast.sys [122880]
O58 - SDL:[MD5.7C75F83749A7AF3D981C715687AE49AD] - 26/07/2012 - 03:35:20 ---A- . (.Microsoft Corporation - Remote NDIS Miniport.) -- C:\Windows\System32\Drivers\RNDISMP.sys [25600]
O58 - SDL:[MD5.47A995D824FA2E0A038796F76FF4D5BF] - 26/07/2012 - 03:38:42 ---A- . (.Microsoft Corporation - Legacy Non-Pnp Modem Device Driver.) -- C:\Windows\System32\Drivers\rootmdm.sys [8192]
O58 - SDL:[MD5.C7BD738B9BF45E797A6089AF946BAC47] - 26/07/2012 - 03:31:07 ---A- . (.Microsoft Corporation - Link-Layer Topology Responder Driver for NDIS 6.) -- C:\Windows\System32\Drivers\rspndr.sys [62976]
O58 - SDL:[MD5.034D2B4058DE32FF310FB06093DF2B34] - 06/08/2013 - 14:21:56 ---A- . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function Driver.) -- C:\Windows\System32\Drivers\RTKVHDA.sys [2791384]
O58 - SDL:[MD5.434F805B0B3840A52C19C96A7BB64AA3] - 26/07/2012 - 04:39:34 ---A- . (.Microsoft Corporation - SBP-2 Protocol Driver.) -- C:\Windows\System32\Drivers\sbp2port.sys [89840]
O58 - SDL:[MD5.3F21FBE0550B41240B6A864F6C8C15E4] - 26/07/2012 - 03:35:32 ---A- . (.Microsoft Corporation - Pilote de filtre de lecteur de carte à puce Microsoft.) -- C:\Windows\System32\Drivers\scfilter.sys [32768]
O58 - SDL:[MD5.9B7788C8E93A67D04D0CD76B4BFB50CC] - 26/07/2012 - 04:42:16 ---A- . (.Microsoft Corporation - SCSI Port Driver.) -- C:\Windows\System32\Drivers\scsiport.sys [146672]
O58 - SDL:[MD5.6F685ED83090697ED608372722D32B9E] - 29/06/2013 - 05:29:21 ---A- . (.Microsoft Corporation - Pilote du bus numérique sécurisé (SD).) -- C:\Windows\System32\Drivers\sdbus.sys [159576]
O58 - SDL:[MD5.29A975CB4DDA873C80B0AAA91FFA74B8] - 25/12/2012 - 09:53:26 ---A- . (.Microsoft Corporation - Pilote de classe de stockage SD.) -- C:\Windows\System32\Drivers\sdstor.sys [46824]
O58 - SDL:[MD5.A8CC993CED4DF9710ADAABC9DA66B660] - 26/07/2012 - 07:52:42 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\System32\Drivers\secdrv.sys [20480]
O58 - SDL:[MD5.3DE395F302C4DCD3D4792EB786A7B402] - 26/07/2012 - 03:33:53 ---A- . (.Microsoft Corporation - Serial Class Extension.) -- C:\Windows\System32\Drivers\SerCx.sys [51200]
O58 - SDL:[MD5.C706C88BAEE6B23C86C791EF47D901D4] - 26/07/2012 - 03:38:31 ---A- . (.Microsoft Corporation - Serial Port Enumerator.) -- C:\Windows\System32\Drivers\serenum.sys [17920]
O58 - SDL:[MD5.F492965E2EDDB1BCA2E000A1085BE082] - 26/07/2012 - 03:38:16 ---A- . (.Microsoft Corporation - Pilote de périphérique série.) -- C:\Windows\System32\Drivers\serial.sys [86528]
O58 - SDL:[MD5.409C91880A6A70FDD33CFEDC43D0F808] - 26/07/2012 - 03:38:04 ---A- . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys [19968]
O58 - SDL:[MD5.BDF7F7AC3700DAF0A19D19C008D408C0] - 26/07/2012 - 03:37:57 ---A- . (.Microsoft Corporation - SCSI Floppy Driver.) -- C:\Windows\System32\Drivers\sfloppy.sys [13312]
O58 - SDL:[MD5.A5A3C56B5E46F77E6992A3772F8E4C8D] - 26/07/2012 - 04:42:15 ---A- . (.Microsoft Corporation - Filtre SIS NT AGP.) -- C:\Windows\System32\Drivers\SISAGP.SYS [53488]
O58 - SDL:[MD5.39763193254A265FDA6F08EF375549DF] - 26/07/2012 - 04:42:15 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid2.sys [41200]
O58 - SDL:[MD5.2A95CC135283B3C56B783171532B62D0] - 26/07/2012 - 04:42:16 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid4.sys [79088]
O58 - SDL:[MD5.1EB51D0EC6CC818212FD273F3BE216D2] - 26/07/2012 - 03:38:13 ---A- . (.Microsoft Corporation - Smart Card Driver Library.) -- C:\Windows\System32\Drivers\smclib.sys [17408]
O58 - SDL:[MD5.D9F46CF618066EB615B26AF03B8BEF7F] - 05/10/2013 - 05:33:14 ---A- . (.Microsoft Corporation - Storage Spaces Driver.) -- C:\Windows\System32\Drivers\spaceport.sys [238936]
O58 - SDL:[MD5.C8E9372645392E23CF36B4C1686B1509] - 26/07/2012 - 03:33:50 ---A- . (.Microsoft Corporation - SPB Class Extension.) -- C:\Windows\System32\Drivers\SpbCx.sys [46080]
O58 - SDL:[MD5.8B20E19AF56E21E9549D4CA496BB78D6] - 26/07/2012 - 03:32:21 ---A- . (.Microsoft Corporation - Server driver.) -- C:\Windows\System32\Drivers\srv.sys [338432]
O58 - SDL:[MD5.DD81ABA1081A9A4E2999568C0DB61A49] - 06/04/2013 - 05:57:11 ---A- . (.Microsoft Corporation - Pilote de serveur SMB 2.0.) -- C:\Windows\System32\Drivers\srv2.sys [494592]
O58 - SDL:[MD5.C4006F04178E58192FFD0A82A5E5E897] - 06/04/2013 - 05:55:42 ---A- . (.Microsoft Corporation - Server Network driver.) -- C:\Windows\System32\Drivers\srvnet.sys [196096]
O58 - SDL:[MD5.EDF7F8387C2072205ABCF105F14B13B4] - 28/10/2013 - 01:12:12 ---A- . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG USB Composite Device Driver (MSS Ver.3).) -- C:\Windows\System32\Drivers\ssudbus.sys [87064]
O58 - SDL:[MD5.24F5F92263E3B461A1105FE370D53D1C] - 28/10/2013 - 01:12:12 ---A- . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG Android Modem Device Driver (MSS Ver.3).) -- C:\Windows\System32\Drivers\ssudmdm.sys [182680]
O58 - SDL:[MD5.CC17B7A7C4DD72BE2B10DAF254147A2B] - 26/07/2012 - 04:42:15 ---A- . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Windows x86.) -- C:\Windows\System32\Drivers\stexstor.sys [26352]
O58 - SDL:[MD5.EC9B71B41184284E65F496B39C572F30] - 02/03/2013 - 09:52:47 ---A- . (.Microsoft Corporation - MS AHCI Storport Miniport Driver.) -- C:\Windows\System32\Drivers\storahci.sys [66280]
O58 - SDL:[MD5.AEF67EF55A41965A0CAB23CCCC57E442] - 02/03/2013 - 09:52:47 ---A- . (.Microsoft Corporation - Microsoft Storage Port Driver.) -- C:\Windows\System32\Drivers\storport.sys [302824]
O58 - SDL:[MD5.5C538C4975B53C31500BC535FF436CDC] - 26/07/2012 - 04:33:00 ---A- . (.Microsoft Corporation - Storage VSC Driver.) -- C:\Windows\System32\Drivers\storvsc.sys [32872]
O58 - SDL:[MD5.0C47D1EBCE68D4C8A49C7228BD4A5C78] - 26/07/2012 - 03:35:57 ---A- . (.Microsoft Corporation - WDM CODEC Class Device Driver 2.0.) -- C:\Windows\System32\Drivers\stream.sys [53376]
O58 - SDL:[MD5.8DCA45AD5E2D83E00A1952BE2B541A27] - 26/07/2012 - 04:42:18 ---A- . (.Microsoft Corporation - Plug and Play Software Device Enumerator.) -- C:\Windows\System32\Drivers\swenum.sys [13296]
O58 - SDL:[MD5.6496D584DA0FAF7E2E11347D40243543] - 30/07/2013 - 06:00:50 ---A- . (.Synaptics Incorporated - Synaptics Touchpad Driver.) -- C:\Windows\System32\Drivers\SynTP.sys [354800]
O58 - SDL:[MD5.B454E0993919D1F06F85A6E502FC9858] - 26/07/2012 - 03:37:05 ---A- . (.Microsoft Corporation - SCSI Tape Class Driver.) -- C:\Windows\System32\Drivers\tape.sys [23552]
O58 - SDL:[MD5.5CD9B19CF3F801809024019FE672A891] - 26/07/2012 - 04:48:32 ---A- . (.Microsoft Corporation - Export driver for kernel mode TPM API.) -- C:\Windows\System32\Drivers\tbs.sys [18160]
O58 - SDL:[MD5.215C4A9488DD9828891B4E61BD5EC247] - 01/08/2013 - 09:45:25 ---A- . (.Microsoft Corporation - Pilote TCP/IP.) -- C:\Windows\System32\Drivers\tcpip.sys [1800536]
O58 - SDL:[MD5.D40FB114D559FDDE599293E1B5107644] - 26/07/2012 - 03:30:18 ---A- . (.Microsoft Corporation - TCP/IP Registry Compatibility Driver.) -- C:\Windows\System32\Drivers\tcpipreg.sys [36352]
O58 - SDL:[MD5.C433C843CD891762C7DD9931D858727C] - 26/07/2012 - 05:17:16 ---A- . (.Microsoft Corporation - TDI Wrapper.) -- C:\Windows\System32\Drivers\tdi.sys [25600]
O58 - SDL:[MD5.0886D9F1B5A5334FBB143A260E4BFB5C] - 26/07/2012 - 05:17:16 ---A- . (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\Drivers\tdx.sys [97792]
O58 - SDL:[MD5.0E099CC6D72DD47CAB9CC3D5DDF0A93E] - 26/07/2012 - 04:39:55 ---A- . (.Microsoft Corporation - Terminal Server Input Driver.) -- C:\Windows\System32\Drivers\terminpt.sys [29936]
O58 - SDL:[MD5.2C107F7CDC2301122650F39373140C93] - 26/07/2012 - 04:39:34 ---A- . (.Microsoft Corporation - Kernel Transaction Manager Driver.) -- C:\Windows\System32\Drivers\tm.sys [98544]
O58 - SDL:[MD5.A7A43D0865B8E5D2E46CAF6BA423D0AC] - 10/08/2013 - 06:24:21 ---A- . (.Microsoft Corporation - Pilote de périphérique TPM.) -- C:\Windows\System32\Drivers\tpm.sys [123224]
O58 - SDL:[MD5.B9E622309DE8C780E6818531586F2221] - 26/07/2012 - 03:32:54 ---A- . (.Microsoft Corporation - Pilote de filtre pour concentrateur USB du Bureau à distance.) -- C:\Windows\System32\Drivers\TsUsbFlt.sys [49152]
O58 - SDL:[MD5.074440A1C04913F7DF81839565A47917] - 26/07/2012 - 03:33:29 ---A- . (.Microsoft Corporation - Remote Desktop Generic USB Driver.) -- C:\Windows\System32\Drivers\TsUsbGD.sys [27264]
O58 - SDL:[MD5.62EE13D4EE7DB793C13F33F51A21170E] - 26/07/2012 - 03:30:07 ---A- . (.Microsoft Corporation - Pilote d’interface de tunnel Microsoft.) -- C:\Windows\System32\Drivers\tunnel.sys [118784]
O58 - SDL:[MD5.22DB63E32E3B9A716A1B3EEC5E9A8F32] - 01/07/2013 - 19:09:50 ---A- . (.Intel Corporation - Intel(R) Trusted Execution Engine Interface.) -- C:\Windows\System32\Drivers\TXEI.sys [75792]
O58 - SDL:[MD5.E0750A399E378C8433165C843FD7F732] - 26/07/2012 - 04:42:19 ---A- . (.Microsoft Corporation - Filtre MS AGPv3.5.) -- C:\Windows\System32\Drivers\UAGP35.SYS [58096]
O58 - SDL:[MD5.B3B9DDEEFC3B823B3067DCADCD80014D] - 26/07/2012 - 04:42:18 ---A- . (.Microsoft Corporation - Microsoft Uasp Driver.) -- C:\Windows\System32\Drivers\uaspstor.sys [76016]
O58 - SDL:[MD5.14AF2FDF422E64F5D287B94E7CDEB13E] - 01/07/2013 - 23:50:28 ---A- . (.Microsoft Corporation - USB Controller Extension.) -- C:\Windows\System32\Drivers\UCX01000.SYS [180568]
O58 - SDL:[MD5.F7C3F24307957862CA4E0E11DDC88B2F] - 26/06/2013 - 03:29:49 ---A- . (.Microsoft Corporation - UDF File System Driver.) -- C:\Windows\System32\Drivers\udfs.sys [261120]
O58 - SDL:[MD5.C4FE9CC8AA769B1D140C07308574969D] - 26/07/2012 - 04:42:18 ---A- . (.Microsoft Corporation - Filtre ULi AGPv3.0 pour plateformes à processeur K8/9.) -- C:\Windows\System32\Drivers\ULIAGPKX.SYS [58608]
O58 - SDL:[MD5.D54E16CE5FF8493E611CFF34F96F5A00] - 26/07/2012 - 03:35:08 ---A- . (.Microsoft Corporation - User-Mode Bus Enumerator.) -- C:\Windows\System32\Drivers\umbus.sys [39424]
O58 - SDL:[MD5.4F92FB5D2353C1B75F0C3138C1822FC3] - 26/07/2012 - 03:35:06 ---A- . (.Microsoft Corporation - Generic pass-through driver.) -- C:\Windows\System32\Drivers\umpass.sys [8704]
O58 - SDL:[MD5.9120713D1E8868D54B19B7C16648C5F3] - 17/04/2013 - 12:11:27 ---A- . (.Microsoft Corporation - Remote NDIS USB Driver.) -- C:\Windows\System32\Drivers\usb8023.sys [15872]
O58 - SDL:[MD5.C679878B33D17B592DA10DC17C2D5633] - 26/07/2012 - 03:36:16 ---A- . (.Microsoft Corporation - Universal Serial Bus Camera Driver.) -- C:\Windows\System32\Drivers\USBCAMD.sys [25728]
O58 - SDL:[MD5.2E1196DDCA9523DFE73A4CBF822B1772] - 26/07/2012 - 03:36:17 ---A- . (.Microsoft Corporation - Universal Serial Bus Camera Driver.) -- C:\Windows\System32\Drivers\USBCAMD2.sys [25728]
O58 - SDL:[MD5.D982889116DBD5B36DA276B3C52BC751] - 29/06/2013 - 03:30:34 ---A- . (.Microsoft Corporation - USB Common Class Generic Parent Driver.) -- C:\Windows\System32\Drivers\usbccgp.sys [84992]
O58 - SDL:[MD5.157FA08A7E30735A032C08F39F6F7C55] - 09/07/2013 - 03:50:48 ---A- . (.Microsoft Corporation - USB Consumer IR Driver for eHome.) -- C:\Windows\System32\Drivers\usbcir.sys [87040]
O58 - SDL:[MD5.7EADA9537CE615D4A5C0CD56E0B6F87B] - 30/06/2013 - 23:48:36 ---A- . (.Microsoft Corporation - Universal Serial Bus Driver.) -- C:\Windows\System32\Drivers\usbd.sys [18776]
O58 - SDL:[MD5.09C8E68669444AFE92B71480110952B1] - 30/06/2013 - 23:48:37 ---A- . (.Microsoft Corporation - EHCI eUSB Miniport Driver.) -- C:\Windows\System32\Drivers\usbehci.sys [64344]
O58 - SDL:[MD5.03E855AD3F47B802542B0812F47FB9BD] - 30/06/2013 - 23:48:36 ---A- . (.Microsoft Corporation - Default Hub Driver for USB.) -- C:\Windows\System32\Drivers\usbhub.sys [334680]
O58 - SDL:[MD5.C92A1374885D78D6853AA18F5920FBDE] - 02/10/2013 - 01:38:26 ---A- . (.Microsoft Corporation - USB3 HUB Driver.) -- C:\Windows\System32\Drivers\USBHUB3.SYS [362840]
O58 - SDL:[MD5.D3641BCE4BE9858423CF0FA843A77AC1] - 21/03/2013 - 09:16:36 ---A- . (.Microsoft Corporation - OHCI USB Miniport Driver.) -- C:\Windows\System32\Drivers\usbohci.sys [22016]
O58 - SDL:[MD5.FDC6B192EDAB57EB891AA9418C713197] - 30/06/2013 - 23:48:37 ---A- . (.Microsoft Corporation - Pilote de port USB 1.1 & 2.0.) -- C:\Windows\System32\Drivers\usbport.sys [380248]
O58 - SDL:[MD5.3B68E41FDF2B053F148E4AA0B456A435] - 01/07/2013 - 23:15:22 ---A- . (.Microsoft Corporation - USB Printer driver.) -- C:\Windows\System32\Drivers\usbprint.sys [18944]
O58 - SDL:[MD5.6958D5760BDE4B8044B032397E250A71] - 26/07/2012 - 03:37:22 ---A- . (.Microsoft Corporation - Gestionnaire de stratégie de redirection USB Windows.) -- C:\Windows\System32\Drivers\usbrpm.sys [26112]
O58 - SDL:[MD5.6EE1CB13D89DFC95B6D7A90B38113F34] - 06/06/2013 - 07:03:37 ---A- . (.Microsoft Corporation - USB Mass Storage Class Driver.) -- C:\Windows\System32\Drivers\USBSTOR.SYS [97024]
O58 - SDL:[MD5.043BC3831B94A57122BE351658B61DC2] - 29/06/2013 - 03:31:42 ---A- . (.Microsoft Corporation - UHCI USB Miniport Driver.) -- C:\Windows\System32\Drivers\usbuhci.sys [24576]
O58 - SDL:[MD5.6AC515E4FEA8A0FDAA3F80C4CB112AEA] - 09/07/2013 - 03:49:57 ---A- . (.Microsoft Corporation - USB Video Class Driver.) -- C:\Windows\System32\Drivers\usbvideo.sys [175872]
O58 - SDL:[MD5.BAF8495C4D3301C3C75A88454C53517F] - 01/07/2013 - 23:50:31 ---A- . (.Microsoft Corporation - USB XHCI Driver.) -- C:\Windows\System32\Drivers\USBXHCI.SYS [268120]
O58 - SDL:[MD5.0AA85E1C967652071D283147AC4B17CD] - 26/07/2012 - 04:36:38 ---A- . (.Microsoft Corporation - Énumérateur racine de lecteur virtuel.) -- C:\Windows\System32\Drivers\vdrvroot.sys [32496]
O58 - SDL:[MD5.F70882757673FA7D4E466D811E1AC029] - 26/07/2012 - 04:42:19 ---A- . (.Microsoft Corporation - Driver Verifier Extension.) -- C:\Windows\System32\Drivers\VerifierExt.sys [80112]
O58 - SDL:[MD5.01F65399F930E5F26D39F18C1F665B03] - 02/03/2013 - 10:51:33 ---A- . (.Microsoft Corporation - VHD Miniport Driver.) -- C:\Windows\System32\Drivers\vhdmp.sys [368360]
O58 - SDL:[MD5.91A67D2DDDD75D173A6590B75E305E3C] - 26/07/2012 - 04:42:18 ---A- . (.Microsoft Corporation - Filtre VIA NT AGP.) -- C:\Windows\System32\Drivers\VIAAGP.SYS [55536]
O58 - SDL:[MD5.05DD6EA970A2493D8BFCE2CFCF2F445C] - 22/03/2013 - 06:39:09 ---A- . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\Drivers\viac7.sys [77824]
O58 - SDL:[MD5.11283532CE62BA51557D00E09262ED78] - 26/07/2012 - 04:42:18 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\viaide.sys [18160]
O58 - SDL:[MD5.7EDF2AEAA9FC0C8FA4789756539D1154] - 26/07/2012 - 03:36:35 ---A- . (.Microsoft Corporation - Video Port Driver.) -- C:\Windows\System32\Drivers\videoprt.sys [44032]
O58 - SDL:[MD5.FE95B96DAEAA7D048D52C724CA74E88D] - 26/07/2012 - 04:33:00 ---A- . (.Microsoft Corporation - Hyper-V VMBus KMCL.) -- C:\Windows\System32\Drivers\vmbkmcl.sys [66664]
O58 - SDL:[MD5.2E4777120FC246CCF76A69C7BB4AEF57] - 26/07/2012 - 04:33:00 ---A- . (.Microsoft Corporation - Microsoft Hyper-V Virtual Machine Bus Child Driver.) -- C:\Windows\System32\Drivers\vmbus.sys [130024]
O58 - SDL:[MD5.FA7B57977E55B60409FD9E36FC57395C] - 26/07/2012 - 03:34:22 ---A- . (.Microsoft Corporation - Microsoft VMBus HID Miniport.) -- C:\Windows\System32\Drivers\VMBusHID.sys [18304]
O58 - SDL:[MD5.A9608FF3B1B577BFC969A7B6797B1FC1] - 26/07/2012 - 03:35:04 ---A- . (.Microsoft Corporation - Virtual Machine Generation Counter.) -- C:\Windows\System32\Drivers\vmgencounter.sys [9856]
O58 - SDL:[MD5.E21867D4A8FF3824150E56979E333610] - 26/07/2012 - 03:35:30 ---A- . (.Microsoft Corporation - Microsoft S3 Emulated Device Cap Driver.) -- C:\Windows\System32\Drivers\vms3cap.sys [6528]
O58 - SDL:[MD5.B00DA575ADF228C1D33269CDE92A68EC] - 26/07/2012 - 04:33:00 ---A- . (.Microsoft Corporation - Virtual Storage Filter Driver.) -- C:\Windows\System32\Drivers\vmstorfl.sys [42344]
O58 - SDL:[MD5.7E8BCEEA56197925D944CA7D230596F7] - 26/07/2012 - 04:39:34 ---A- . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys [66288]
O58 - SDL:[MD5.9C21037D3983D9B93190D2AA16570395] - 26/07/2012 - 04:39:34 ---A- . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys [313072]
O58 - SDL:[MD5.C9C8573006D7A8391AFE35D99036B6A0] - 01/06/2013 - 10:41:30 ---A- . (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\Windows\System32\Drivers\volsnap.sys [281344]
O58 - SDL:[MD5.C5B79DA9C82C01EEFAABA713A858649E] - 26/07/2012 - 04:42:19 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\Drivers\vsmraid.sys [155376]
O58 - SDL:[MD5.AB5F5CC034E31E496606E666657F3CC2] - 26/07/2012 - 04:42:19 ---A- . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\Windows\System32\Drivers\VSTXRAID.SYS [285424]
O58 - SDL:[MD5.23044877230094EE20D057BC63ED19F0] - 26/07/2012 - 03:35:21 ---A- . (.Microsoft Corporation - Pilote de bus WiFi virtuel.) -- C:\Windows\System32\Drivers\vwifibus.sys [18944]
O58 - SDL:[MD5.7139B7012EF75A82CA11177D4BF1CD37] - 26/07/2012 - 03:33:51 ---A- . (.Microsoft Corporation - Virtual WiFi Filter Driver.) -- C:\Windows\System32\Drivers\vwififlt.sys [52224]
O58 - SDL:[MD5.3C93AA2C5AC6030706757DCEAF57CD64] - 26/07/2012 - 03:33:50 ---A- . (.Microsoft Corporation - Virtual WiFi Miniport Driver.) -- C:\Windows\System32\Drivers\vwifimp.sys [13824]
O58 - SDL:[MD5.B4254668F5806AAA051A320FE88146F6] - 26/07/2012 - 03:36:40 ---A- . (.Microsoft Corporation - Wacom Serial Pen Tablet HID Driver.) -- C:\Windows\System32\Drivers\wacompen.sys [20608]
O58 - SDL:[MD5.44D1EF3CDB0B286FD73A7C0144CC6B1E] - 06/04/2013 - 05:55:28 ---A- . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) -- C:\Windows\System32\Drivers\wanarp.sys [70656]
O58 - SDL:[MD5.E08D70579A17C0F1E102C1EF203AC563] - 26/07/2012 - 03:36:58 ---A- . (.Microsoft Corporation - Watchdog Driver.) -- C:\Windows\System32\Drivers\watchdog.sys [37888]
O58 - SDL:[MD5.9BF0CE1E215789664EB563A52EC0B83B] - 26/07/2012 - 04:39:34 ---A- . (.Microsoft Corporation - Microsoft Watchdog Timer Driver.) -- C:\Windows\System32\Drivers\wd.sys [20720]
O58 - SDL:[MD5.09E3C1A434E27A55E21CB6F9341B8072] - 01/07/2013 - 23:53:46 ---A- . (.Microsoft Corporation - Microsoft antimalware boot driver.) -- C:\Windows\System32\Drivers\WdBoot.sys [30144]
O58 - SDL:[MD5.25944D2CC49E0A6C581D02A74B7D6645] - 22/06/2013 - 05:47:30 ---A- . (.Microsoft Corporation - Runtime de l’infrastructure de pilotes en mode noyau.) -- C:\Windows\System32\Drivers\Wdf01000.sys [527064]
O58 - SDL:[MD5.99A9F611A3DCC4220D2B922E766CFA16] - 01/07/2013 - 23:08:32 ---A- . (.Microsoft Corporation - Microsoft antimalware file system filter driver.) -- C:\Windows\System32\Drivers\WdFilter.sys [211288]
O58 - SDL:[MD5.4AA741DEA4DB428BEEE54C3B14A4AA71] - 22/06/2013 - 05:47:30 ---A- . (.Microsoft Corporation - Kernel Mode Driver Framework Loader.) -- C:\Windows\System32\Drivers\WdfLdr.sys [47832]
O58 - SDL:[MD5.5EB8464B7E9FC7C9FDE98A9534C9EE6F] - 10/10/2013 - 11:07:31 ---A- . (.Microsoft Corporation - WFP NDIS 6.30 Lightweight Filter Driver.) -- C:\Windows\System32\Drivers\wfplwfs.sys [38744]
O58 - SDL:[MD5.8B7BBA41B67E92B73BAFEBDF570B3703] - 26/07/2012 - 04:38:11 ---A- . (.Microsoft Corporation - Wim file system Driver.) -- C:\Windows\System32\Drivers\wimmount.sys [27376]
O58 - SDL:[MD5.A6C9A177D6F3317B4B56C7BB16936E11] - 26/07/2012 - 04:33:00 ---A- . (.Microsoft Corporation - Windows Hypervisor Interface Driver.) -- C:\Windows\System32\Drivers\winhv.sys [56424]
O58 - SDL:[MD5.F8A31500A1B7EFDB95E5103A7C7275C1] - 26/07/2012 - 03:38:11 ---A- . (.Microsoft Corporation - Windows Management Interface for ACPI.) -- C:\Windows\System32\Drivers\wmiacpi.sys [11264]
O58 - SDL:[MD5.3699C7DF8C80A73DBF615AC8E4803F09] - 26/07/2012 - 05:17:18 ---A- . (.Microsoft Corporation - WMILIB WMI support library Dll.) -- C:\Windows\System32\Drivers\wmilib.sys [16112]
O58 - SDL:[MD5.9C3F5C7B716247756575235A3218FD38] - 26/07/2012 - 03:32:02 ---A- . (.Microsoft Corporation - Family Safety Filter Driver.) -- C:\Windows\System32\Drivers\wpcfltr.sys [35328]
O58 - SDL:[MD5.E5DCECD5A6A21AE48E94F6C9DC0E093C] - 26/07/2012 - 03:34:42 ---A- . (.Microsoft Corporation - Windows Portable Device Upper Class Filter Driver.) -- C:\Windows\System32\Drivers\WpdUpFltr.sys [15360]
O58 - SDL:[MD5.605F1AC4DEF4DB5B778CFE61A78B984C] - 26/07/2012 - 05:17:18 ---A- . (.Microsoft Corporation - WPP Trace Recorder.) -- C:\Windows\System32\Drivers\WppRecorder.sys [21232]
O58 - SDL:[MD5.7CB94AFFC7F56C8E645381DB9C23F845] - 04/10/2012 - 08:37:24 ---A- . (.Microsoft Corporation - Couche IFS Winsock2.) -- C:\Windows\System32\Drivers\ws2ifsl.sys [16384]
O58 - SDL:[MD5.06E6F32C8D0A3F66D956F57B43A2E070] - 26/07/2012 - 03:33:43 ---A- . (.Microsoft Corporation - Windows Driver Foundation - User-mode Driver Framework Platform.) -- C:\Windows\System32\Drivers\WUDFPf.sys [66560]
O58 - SDL:[MD5.867C301E8B790040AE9CF6486E8041DF] - 26/07/2012 - 03:32:51 ---A- . (.Microsoft Corporation - Windows Driver Foundation - User-mode Driver Framework Reflecto.) -- C:\Windows\System32\Drivers\WUDFRd.sys [155136]
O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 25/07/2012 - 23:52:51 ---A- . (...) -- C:\Windows\System32\ANSI.SYS [9029]
O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 25/07/2012 - 23:52:51 ---A- . (...) -- C:\Windows\System32\country.sys [27097]
O58 - SDL:[MD5.E6BC0F98FECEF245A0010D350C1A0B9B] - 25/07/2012 - 23:52:51 ---A- . (...) -- C:\Windows\System32\HIMEM.SYS [4768]
O58 - SDL:[MD5.492090267B9608C62B956CD29BE3AFB7] - 25/07/2012 - 23:52:52 ---A- . (...) -- C:\Windows\System32\KEY01.SYS [42809]
O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 25/07/2012 - 23:52:52 ---A- . (...) -- C:\Windows\System32\KEYBOARD.SYS [42537]
O58 - SDL:[MD5.FFFF296A08DBF2AC0126C62E3778AC0D] - 25/07/2012 - 23:52:54 ---A- . (...) -- C:\Windows\System32\NTDOS.SYS [27866]
O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 25/07/2012 - 23:52:54 ---A- . (...) -- C:\Windows\System32\NTDOS404.SYS [29146]
O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 25/07/2012 - 23:52:54 ---A- . (...) -- C:\Windows\System32\NTDOS411.SYS [29370]
O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 25/07/2012 - 23:52:54 ---A- . (...) -- C:\Windows\System32\NTDOS412.SYS [29274]
O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 25/07/2012 - 23:52:54 ---A- . (...) -- C:\Windows\System32\NTDOS804.SYS [29146]
O58 - SDL:[MD5.CB4EE86C87F4C03FAC7E14F30D57153E] - 25/07/2012 - 23:52:51 ---A- . (...) -- C:\Windows\System32\NTIO.SYS [33968]
O58 - SDL:[MD5.30A64B24DABF0483DDF6759D4F58A180] - 25/07/2012 - 23:52:51 ---A- . (...) -- C:\Windows\System32\NTIO404.SYS [34688]
O58 - SDL:[MD5.112BFAEA0B8AD1AAB4484BBBE1DA9B40] - 25/07/2012 - 23:52:51 ---A- . (...) -- C:\Windows\System32\NTIO411.SYS [35776]
O58 - SDL:[MD5.BE6FE759FC5B154243914AA330BAADE6] - 25/07/2012 - 23:52:51 ---A- . (...) -- C:\Windows\System32\NTIO412.SYS [35552]
O58 - SDL:[MD5.37BA9F0CB578362516C64344ECEC8ADC] - 25/07/2012 - 23:52:51 ---A- . (...) -- C:\Windows\System32\NTIO804.SYS [34688]
O58 - SDL:[MD5.CEFFF875205B5835B9B5CE40961F91BB] - 07/11/2013 - 00:18:46 ---A- . (.Microsoft Corporation - Pilote Win32 multi-utilisateurs.) -- C:\Windows\System32\win32k.sys [3387904]
O58 - SDL:[MD5.A5C5FC0AD219759EC10330C574BD886A] - 26/07/2012 - 04:20:19 ---A- . (.Microsoft Corporation - Windows Background System Events Broker API Server.) -- C:\Windows\System32\Windows.ApplicationModel.Background.SystemEventsBroker.dll [20480]
O58 - SDL:[MD5.11AB4BF5232EA3650748DD842255902D] - 26/07/2012 - 04:20:20 ---A- . (.Microsoft Corporation - Windows System Display Runtime DLL.) -- C:\Windows\System32\Windows.System.Display.dll [19968]
O58 - SDL:[MD5.885DE9642C72843515362D103F4200B1] - 26/07/2012 - 04:20:20 ---A- . (.Microsoft Corporation - DLL d’ID matériel du profil du système Windows.) -- C:\Windows\System32\Windows.System.Profile.HardwareId.dll [279040]
O58 - SDL:[MD5.2B42EC75EE41F16752BA6599754C0EF4] - 26/07/2012 - 04:20:20 ---A- . (.Microsoft Corporation - Windows System RemoteDesktop Runtime DLL.) -- C:\Windows\System32\Windows.System.RemoteDesktop.dll [14336]
~ Drivers: 18 Scanned in 00mn 10s



---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)
O61 - LFC: 06/02/2014 - 12:18:34 ---A- . (...) -- C:\Users\audrey\AppData\Local\Finkit\ManicTime\License [790]
O61 - LFC: 06/02/2014 - 12:18:34 ---A- . (...) -- C:\Users\audrey\AppData\Local\Finkit\ManicTime\Plugins\CustomTitle.txt [1664]
O61 - LFC: 06/02/2014 - 12:18:38 ---A- . (...) -- C:\Users\audrey\AppData\Local\Packages\aufeminin.com.Marmiton_mkpeb3b5nmday\Settings\settings.dat [8192]
O61 - LFC: 06/02/2014 - 12:18:43 ---A- . (...) -- C:\Users\audrey\AppData\Local\Packages\WikimediaFoundation.Wikipedia_54ggd3ev8bvz6\Settings\settings.dat [8192]
O61 - LFC: 06/02/2014 - 12:18:46 ---A- . (...) -- C:\Users\audrey\AppData\Roaming\Microsoft\Office\15.0\a2c86bb6\Proofing\RoamingCustom.dic [5654]
O61 - LFC: 06/02/2014 - 12:18:46 ---A- . (...) -- C:\Users\audrey\AppData\Roaming\Microsoft\Office\MSO1036.acl [45250]
O61 - LFC: 06/02/2014 - 12:18:46 ---A- . (...) -- C:\Users\audrey\AppData\Roaming\Microsoft\Office\Recent\APPROCHE DIFFERENTIELLE - CM (2).LNK [1670]
O61 - LFC: 06/02/2014 - 12:18:46 ---A- . (...) -- C:\Users\audrey\AppData\Roaming\Microsoft\Office\Recent\Cours.LNK [1440]
O61 - LFC: 06/02/2014 - 12:18:46 ---A- . (...) -- C:\Users\audrey\AppData\Roaming\Microsoft\Office\Recent\Incises.LNK [1570]
O61 - LFC: 06/02/2014 - 12:18:46 R--A- . (...) -- C:\Users\audrey\AppData\Roaming\Microsoft\Installer\{8F2CD640-643C-4DA8-887E-0329F0D49152}\ManicTime.ico [117074]
O61 - LFC: 06/02/2014 - 12:18:47 ---A- . (...) -- C:\Users\audrey\AppData\Roaming\Microsoft\UProof\CMAdj.12.bin [110]
O61 - LFC: 06/02/2014 - 12:18:49 ---A- . (...) -- C:\Users\audrey\Documents\Psychologie\L1\Semestre 2\Anglais\Cours\ANGLAIS - 06.02.14.docx [14477]
O61 - LFC: 06/02/2014 - 12:18:49 ---A- . (...) -- C:\Users\audrey\Documents\Psychologie\L1\Semestre 2\Anglais\Cours\Mots de liaison.docx [18613]
O61 - LFC: 06/02/2014 - 12:18:49 ---A- . (...) -- C:\Users\audrey\Downloads\ManicTime.exe [6869000]
O61 - LFC: 06/02/2014 - 12:18:49 ---A- . (...) -- C:\Users\audrey\Downloads\z2010_1633.pdf [145785]
O61 - LFC: 07/02/2014 - 12:18:33 ---A- . (...) -- C:\Users\audrey\.imindmap\4\recentfiles.xml [81]
O61 - LFC: 07/02/2014 - 12:18:33 ---A- . (...) -- C:\Users\audrey\.imindmap\4\settings_4.1.xml [6274]
O61 - LFC: 07/02/2014 - 12:18:33 ---A- . (...) -- C:\Users\audrey\.imindmap\4\templates.xml [8359]
O61 - LFC: 07/02/2014 - 12:18:33 ---A- . (...) -- C:\Users\audrey\.imindmap\4\templatesData\templates\23d98a7f11a9118748e-7ffe.imm [15541]
O61 - LFC: 07/02/2014 - 12:18:33 ---A- . (...) -- C:\Users\audrey\.imindmap\4\templatesData\templates\246dd94111a780dc9b0-7f8e.imm [44207]
O61 - LFC: 07/02/2014 - 12:18:33 ---A- . (...) -- C:\Users\audrey\.imindmap\4\templatesData\templates\246dd94111a780dc9b0-8000.imm [43948]
O61 - LFC: 07/02/2014 - 12:18:33 ---A- . (...) -- C:\Users\audrey\.imindmap\4\templatesData\templates\297b1f1d11a7c298ee0-7fab.imm [20100]
O61 - LFC: 07/02/2014 - 12:18:33 ---A- . (...) -- C:\Users\audrey\.imindmap\4\templatesData\templates\2abb57fb115f154d93f-7fdb.imm [29409]
O61 - LFC: 07/02/2014 - 12:18:33 ---A- . (...) -- C:\Users\audrey\.imindmap\4\templatesData\templates\33789fa511d71d752b1-7f1a.imm [31660]
O61 - LFC: 07/02/2014 - 12:18:33 ---A- . (...) -- C:\Users\audrey\.imindmap\4\templatesData\templates\346b90d21159ef51ab8-7f9c.imm [52632]
O61 - LFC: 07/02/2014 - 12:18:33 ---A- . (...) -- C:\Users\audrey\.imindmap\4\templatesData\templates\3f652f0211594670776-7fff.imm [31434]
O61 - LFC: 07/02/2014 - 12:18:33 ---A- . (...) -- C:\Users\audrey\.imindmap\4\templatesData\templates\5d9645041183607c850-8000.imm [87300]
O61 - LFC: 07/02/2014 - 12:18:33 ---A- . (...) -- C:\Users\audrey\.imindmap\4\templatesData\templates\5edb471d11a732dccc5-7fa8.imm [27333]
O61 - LFC: 07/02/2014 - 12:18:33 ---A- . (...) -- C:\Users\audrey\.imindmap\4\templatesData\templates\67b6590011a7c546b0c-7f02.imm [39698]
O61 - LFC: 07/02/2014 - 12:18:33 ---A- . (...) -- C:\Users\audrey\.imindmap\4\templatesData\templates\69a67caf11a7c3b007c-7f0f.imm [44053]
O61 - LFC: 07/02/2014 - 12:18:33 ---A- . (...) -- C:\Users\audrey\.imindmap\4\templatesData\templates\6d94bd5411a7830090f-8000.imm [21141]
O61 - LFC: 07/02/2014 - 12:18:33 ---A- . (...) -- C:\Users\audrey\.imindmap\4\templatesData\templates\730ba73611a769c124f-7fe3.imm [63865]
O61 - LFC: 07/02/2014 - 12:18:33 ---A- . (...) -- C:\Users\audrey\.imindmap\4\templatesData\templates\753e44ad11a812095ce-8000.imm [31780]
O61 - LFC: 07/02/2014 - 12:18:33 ---A- . (...) -- C:\Users\audrey\.imindmap\4\templatesData\templates\79906d8a11594b9bae8-7f84.imm [35649]
O61 - LFC: 07/02/2014 - 12:18:33 ---A- . (...) -- C:\Users\audrey\.imindmap\4\templatesData\templates\79906d8a11594b9bae8-7f9d.imm [24955]
O61 - LFC: 07/02/2014 - 12:18:33 ---A- . (...) -- C:\Users\audrey\.imindmap\4\templatesData\templates\79906d8a11594b9bae8-8000.imm [50708]
O61 - LFC: 07/02/2014 - 12:18:33 ---A- . (...) -- C:\Users\audrey\.imindmap\4\templatesData\templates\7be11fd611a7d6023a9-7fce.imm [52434]
O61 - LFC: 07/02/2014 - 12:18:33 ---A- . (...) -- C:\Users\audrey\.imindmap\4\templatesData\templates\7fea397f11a95ac15a6-7ffd.imm [27531]
O61 - LFC: 07/02/2014 - 12:18:33 ---A- . (...) -- C:\Users\audrey\.imindmap\4\templatesData\templates\867747311a814969b6-7fc7.imm [7898]
O61 - LFC: 07/02/2014 - 12:18:33 ---A- . (...) -- C:\Users\audrey\.imindmap\4\templatesData\thumbnails\23d98a7f11a9118748e-7ffe.png [30939]
O61 - LFC: 07/02/2014 - 12:18:33 ---A- . (...) -- C:\Users\audrey\.imindmap\4\templatesData\thumbnails\246dd94111a780dc9b0-7f8e.png [90236]
O61 - LFC: 07/02/2014 - 12:18:33 ---A- . (...) -- C:\Users\audrey\.imindmap\4\templatesData\thumbnails\246dd94111a780dc9b0-8000.png [57762]
O61 - LFC: 07/02/2014 - 12:18:33 ---A- . (...) -- C:\Users\audrey\.imindmap\4\templatesData\thumbnails\297b1f1d11a7c298ee0-7fab.png [27820]
O61 - LFC: 07/02/2014 - 12:18:33 ---A- . (...) -- C:\Users\audrey\.imindmap\4\templatesData\thumbnails\2abb57fb115f154d93f-7fdb.png [30774]
O61 - LFC: 07/02/2014 - 12:18:33 ---A- . (...) -- C:\Users\audrey\.imindmap\4\templatesData\thumbnails\33789fa511d71d752b1-7f1a.png [51366]
O61 - LFC: 07/02/2014 - 12:18:33 ---A- . (...) -- C:\Users\audrey\.imindmap\4\templatesData\thumbnails\346b90d21159ef51ab8-7f9c.png [52007]
O61 - LFC: 07/02/2014 - 12:18:33 ---A- . (...) -- C:\Users\audrey\.imindmap\4\templatesData\thumbnails\3f652f0211594670776-7fff.png [77138]
O61 - LFC: 07/02/2014 - 12:18:33 ---A- . (...) -- C:\Users\audrey\.imindmap\4\templatesData\thumbnails\5d9645041183607c850-8000.png [54627]
O61 - LFC: 07/02/2014 - 12:18:33 ---A- . (...) -- C:\Users\audrey\.imindmap\4\templatesData\thumbnails\5edb471d11a732dccc5-7fa8.png [35147]
O61 - LFC: 07/02/2014 - 12:18:33 ---A- . (...) -- C:\Users\audrey\.imindmap\4\templatesData\thumbnails\67b6590011a7c546b0c-7f02.png [36455]
O61 - LFC: 07/02/2014 - 12:18:34 ---A- . (...) -- C:\Users\audrey\.imindmap\4\templatesData\thumbnails\69a67caf11a7c3b007c-7f0f.png [36985]
O61 - LFC: 07/02/2014 - 12:18:34 ---A- . (...) -- C:\Users\audrey\.imindmap\4\templatesData\thumbnails\6d94bd5411a7830090f-8000.png [46668]
O61 - LFC: 07/02/2014 - 12:18:34 ---A- . (...) -- C:\Users\audrey\.imindmap\4\templatesData\thumbnails\730ba73611a769c124f-7fe3.png [52134]
O61 - LFC: 07/02/2014 - 12:18:34 ---A- . (...) -- C:\Users\audrey\.imindmap\4\templatesData\thumbnails\753e44ad11a812095ce-8000.png [49881]
O61 - LFC: 07/02/2014 - 12:18:34 ---A- . (...) -- C:\Users\audrey\.imindmap\4\templatesData\thumbnails\79906d8a11594b9bae8-7f84.png [48360]
O61 - LFC: 07/02/2014 - 12:18:34 ---A- . (...) -- C:\Users\audrey\.imindmap\4\templatesData\thumbnails\79906d8a11594b9bae8-7f9d.png [58879]
O61 - LFC: 07/02/2014 - 12:18:34 ---A- . (...) -- C:\Users\audrey\.imindmap\4\templatesData\thumbnails\79906d8a11594b9bae8-8000.png [45301]
O61 - LFC: 07/02/2014 - 12:18:34 ---A- . (...) -- C:\Users\audrey\.imindmap\4\templatesData\thumbnails\7be11fd611a7d6023a9-7fce.png [75849]
O61 - LFC: 07/02/2014 - 12:18:34 ---A- . (...) -- C:\Users\audrey\.imindmap\4\templatesData\thumbnails\7fea397f11a95ac15a6-7ffd.png [46077]
O61 - LFC: 07/02/2014 - 12:18:34 ---A- . (...) -- C:\Users\audrey\.imindmap\4\templatesData\thumbnails\867747311a814969b6-7fc7.png [24807]
O61 - LFC: 07/02/2014 - 12:18:34 ---A- . (...) -- C:\Users\audrey\.thinkbuzan\imindmap7\preload\Interop.IWshRuntimeLibrary.dll [37376]
O61 - LFC: 07/02/2014 - 12:18:34 ---A- . (...) -- C:\Users\audrey\.thinkbuzan\imindmap7\preload\RUNNING [0]
O61 - LFC: 07/02/2014 - 12:18:34 ---A- . (...) -- C:\Users\audrey\.thinkbuzan\imindmap7\preload\iMM7.ico [353118]
O61 - LFC: 07/02/2014 - 12:18:34 ---A- . (...) -- C:\Users\audrey\.thinkbuzan\imindmap7\preload\iMindMap7_Preloader.exe [727040]
O61 - LFC: 07/02/2014 - 12:18:34 ---A- . (...) -- C:\Users\audrey\.thinkbuzan\imindmap7\preload\ja\iMindMap7_Preloader.resources.dll [4096]
O61 - LFC: 07/02/2014 - 12:18:34 ---A- . (...) -- C:\Users\audrey\.thinkbuzan\imindmap7\preload\version [1]
O61 - LFC: 07/02/2014 - 12:18:34 ---A- . (...) -- C:\Users\audrey\AppData\Local\CrashDumps\iexplore.exe.1140.dmp [3867373]
O61 - LFC: 07/02/2014 - 12:18:34 ---A- . (...) -- C:\Users\audrey\AppData\Local\CrashDumps\iexplore.exe.4160.dmp [4137607]
O61 - LFC: 07/02/2014 - 12:18:34 ---A- . (...) -- C:\Users\audrey\AppData\Local\CrashDumps\iexplore.exe.5388.dmp [3907073]
O61 - LFC: 07/02/2014 - 12:18:34 ---A- . (...) -- C:\Users\audrey\AppData\Local\CrashDumps\iexplore.exe.616.dmp [2493309]
O61 - LFC: 07/02/2014 - 12:18:34 ---A- . (...) -- C:\Users\audrey\AppData\Local\Finkit\ManicTime\ManicTime.xml [2215]
O61 - LFC: 07/02/2014 - 12:18:36 ---A- . (...) -- C:\Users\audrey\AppData\Local\Packages\24264Craftbox.Showtime_hqe9ecxhfeext\Settings\settings.dat [262144]
O61 - LFC: 07/02/2014 - 12:18:36 ---A- . (...) -- C:\Users\audrey\AppData\Local\Packages\4338Epic94.YouTubeVideoDownloader_kb484z24cq2j2\Settings\settings.dat [8192]
O61 - LFC: 07/02/2014 - 12:18:37 ---A- . (...) -- C:\Users\audrey\AppData\Local\Packages\55667CoolStoreDevsPandora.YouTubeHD_fsgj3pht8nmqt\Settings\settings.dat [8192]
O61 - LFC: 07/02/2014 - 12:18:37 ---A- . (...) -- C:\Users\audrey\AppData\Local\Packages\7digitalLtd.7digitalMusicStore_qv1vc61z2t2b4\Settings\settings.dat [8192]
O61 - LFC: 07/02/2014 - 12:18:38 ---A- . (...) -- C:\Users\audrey\AppData\Local\Packages\DailymotionSA.Dailymotion_6dqnvyezrysvy\Settings\settings.dat [8192]
O61 - LFC: 07/02/2014 - 12:18:38 ---A- . (...) -- C:\Users\audrey\AppData\Local\Packages\MAGIX.MusicMakerJam_a2t3txkz9j1jw\Settings\settings.dat [8192] =>.MAGIX AG
O61 - LFC: 07/02/2014 - 12:18:38 ---A- . (...) -- C:\Users\audrey\AppData\Local\Packages\esobiIncorporated.newsXpressoMetro_sngswjb5h6fyg\Settings\settings.dat [8192]
O61 - LFC: 07/02/2014 - 12:18:43 ---A- . (...) -- C:\Users\audrey\AppData\Local\Packages\PagesJaunes.PagesJauneslapplicationderecherchedinf_df0capwf03m0p\Settings\settings.dat [8192]
O61 - LFC: 07/02/2014 - 12:18:43 ---A- . (...) -- C:\Users\audrey\AppData\Local\Packages\windows.immersivecontrolpanel_cw5n1h2txyewy\Settings\settings.dat [8192]
O61 - LFC: 07/02/2014 - 12:18:45 ---A- . (...) -- C:\Users\audrey\AppData\Local\Packages\ZinioLLC.Zinio_0q6dqzpp40p2e\Settings\settings.dat [8192] =>.Zinio LLC
O61 - LFC: 07/02/2014 - 12:18:46 ---A- . (...) -- C:\Users\audrey\AppData\Local\Temp\8A6D359B-8B17-4623-BF26-992549DCDCFA [9661]
O61 - LFC: 07/02/2014 - 12:18:46 ---A- . (...) -- C:\Users\audrey\AppData\Local\Temp\CVR2831.tmp.cvr [0]
O61 - LFC: 07/02/2014 - 12:18:46 ---A- . (...) -- C:\Users\audrey\AppData\Local\Temp\CVRBFC2.tmp.cvr [0]
O61 - LFC: 07/02/2014 - 12:18:46 ---A- . (...) -- C:\Users\audrey\AppData\Local\Temp\install [0]
O61 - LFC: 07/02/2014 - 12:18:46 ---A- . (...) -- C:\Users\audrey\AppData\Local\Temp\n5321\Bizzybolt_2511-5ea0573c.exe [231744] =>PUP.Bizzybolt
O61 - LFC: 07/02/2014 - 12:18:46 ---A- . (...) -- C:\Users\audrey\AppData\Local\Temp\n5321\systempspeedup_3001-1ea278a0.exe [4624790]
O61 - LFC: 07/02/2014 - 12:18:46 ---A- . (...) -- C:\Users\audrey\AppData\Local\Temp\snapshotProc [37]
O61 - LFC: 07/02/2014 - 12:18:46 ---A- . (...) -- C:\Users\audrey\AppData\Local\Temp\snpshtPrgSft [37]
O61 - LFC: 07/02/2014 - 12:18:46 ---A- . (...) -- C:\Users\audrey\AppData\Roaming\Microsoft\Spelling\fr-FR\default.acl [2]
O61 - LFC: 07/02/2014 - 12:18:46 ---A- . (...) -- C:\Users\audrey\AppData\Roaming\Microsoft\Spelling\fr-FR\default.dic [42]
O61 - LFC: 07/02/2014 - 12:18:46 ---A- . (...) -- C:\Users\audrey\AppData\Roaming\Microsoft\Spelling\fr-FR\default.exc [2]
O61 - LFC: 07/02/2014 - 12:18:46 ---A- . (.Boxore.) -- C:\Users\audrey\AppData\Local\Temp\n5321\OBBoxore_0912-99e29667.exe [740758] =>Adware.Boxore
O61 - LFC: 07/02/2014 - 12:18:46 ---A- . (.Highlightly.) -- C:\Users\audrey\AppData\Local\Temp\n5321\highlightly_1612-b3c8818a.exe [1175728]
O61 - LFC: 07/02/2014 - 12:18:46 ---A- . (.Microsoft Corporation.) -- C:\Users\audrey\AppData\Local\Temp\is-D3IK0.tmp\_isetup\_shfoldr.dll [23312]
O61 - LFC: 07/02/2014 - 12:18:46 ---A- . (.SIEN.) -- C:\Users\audrey\AppData\Local\Temp\Iminent.exe [2167160] =>Adware.IMBooster
O61 - LFC: 07/02/2014 - 12:18:46 ---A- . (.Sien SA.) -- C:\Users\audrey\AppData\Roaming\igdhbblpcellaljokkpfhcjlagemhgjl\minibarchrome.exe [869184] =>PUP.Minibar
O61 - LFC: 07/02/2014 - 12:18:46 ---A- . (.The Software Group.) -- C:\Users\audrey\AppData\Local\Temp\BoxoreInstaller.exe [621168] =>Adware.Boxore
O61 - LFC: 07/02/2014 - 12:18:47 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\animal.png [17049]
O61 - LFC: 07/02/2014 - 12:18:47 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\animal2.png [21061]
O61 - LFC: 07/02/2014 - 12:18:47 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\banner.png [10831]
O61 - LFC: 07/02/2014 - 12:18:47 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\bird.png [16857]
O61 - LFC: 07/02/2014 - 12:18:47 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\blackboard.png [19412]
O61 - LFC: 07/02/2014 - 12:18:47 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\blueNote.png [7348]
O61 - LFC: 07/02/2014 - 12:18:47 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\blueNoteCloud.png [13238]
O61 - LFC: 07/02/2014 - 12:18:47 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\blueparty.png [20233]
O61 - LFC: 07/02/2014 - 12:18:47 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\blueprint.png [77597]
O61 - LFC: 07/02/2014 - 12:18:47 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\book.png [8319]
O61 - LFC: 07/02/2014 - 12:18:47 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\brain front.png [25970]
O61 - LFC: 07/02/2014 - 12:18:47 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\brain side.png [22833]
O61 - LFC: 07/02/2014 - 12:18:47 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\brain side2.png [23840]
O61 - LFC: 07/02/2014 - 12:18:47 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\briefcase.png [4727]
O61 - LFC: 07/02/2014 - 12:18:47 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\bubbles.png [349744]
O61 - LFC: 07/02/2014 - 12:18:47 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\bulb.png [24724]
O61 - LFC: 07/02/2014 - 12:18:47 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\butterflystamp.png [13552]
O61 - LFC: 07/02/2014 - 12:18:47 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\bwbook.png [7301]
O61 - LFC: 07/02/2014 - 12:18:47 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\bwcloud.png [6450]
O61 - LFC: 07/02/2014 - 12:18:47 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\bwdocument.png [6202]
O61 - LFC: 07/02/2014 - 12:18:47 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\bwellipse.png [5857]
O61 - LFC: 07/02/2014 - 12:18:47 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\bwgroup.png [8213]
O61 - LFC: 07/02/2014 - 12:18:47 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\bwlightbulb.png [6361]
O61 - LFC: 07/02/2014 - 12:18:47 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\calender.png [5023]
O61 - LFC: 07/02/2014 - 12:18:47 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\car.png [13836]
O61 - LFC: 07/02/2014 - 12:18:47 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\cat.png [15289]
O61 - LFC: 07/02/2014 - 12:18:47 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\chart.png [4875]
O61 - LFC: 07/02/2014 - 12:18:47 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\clock.png [13773]
O61 - LFC: 07/02/2014 - 12:18:47 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\cloud.png [16663]
O61 - LFC: 07/02/2014 - 12:18:47 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\computer.png [5714]
O61 - LFC: 07/02/2014 - 12:18:47 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\creditcard.png [4164]
O61 - LFC: 07/02/2014 - 12:18:47 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\daycalendar.png [9115]
O61 - LFC: 07/02/2014 - 12:18:47 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\document.png [8343]
O61 - LFC: 07/02/2014 - 12:18:47 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\earth.png [25123]
O61 - LFC: 07/02/2014 - 12:18:47 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\ellipse.png [10435]
O61 - LFC: 07/02/2014 - 12:18:47 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\email.png [4313]
O61 - LFC: 07/02/2014 - 12:18:47 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\essayplan.png [14268]
O61 - LFC: 07/02/2014 - 12:18:47 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\fish.png [17154]
O61 - LFC: 07/02/2014 - 12:18:47 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\gift.png [21010]
O61 - LFC: 07/02/2014 - 12:18:47 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\gift2.png [21085]
O61 - LFC: 07/02/2014 - 12:18:47 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\globe.png [23252]
O61 - LFC: 07/02/2014 - 12:18:47 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\glossy-orb.png [97893]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\goalsetting.png [17917]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\graphBars.png [6247]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\green square.png [13123]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\greenNote.png [7062]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\greenOrbs.png [11026]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\group.png [13863]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\handshake.png [14365]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\headcogs.png [24953]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\heart.png [16367]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\holiday.png [15410]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\house.png [16539]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\jotter.png [18589]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\lightbulb.png [11614]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\lightbulb2.png [14440]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\lilypads.png [13870]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\loudspeaker.png [9559]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\magnifyingGlass.png [16256]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\makedecision.png [16284]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\man.png [14020]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\mintElipse.png [12491]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\money.png [18017]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\money2.png [18633]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\monthcalendar.png [7322]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\orange square.png [13907]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\orbBorder.png [14015]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\orbs.png [11549]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\oval blue.png [9902]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\oval red.png [11049]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\oval.png [8329]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\party girl.png [26225]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\party.png [25689]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\people.png [15879]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\peopleGraph.png [5776]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\piggybank.png [8634]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\pinkparty.png [18413]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\presentation.png [15846]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\purpleElipse.png [12761]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\puzzle.png [73246]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\questionmark.png [11843]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\record.png [14480]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\red square.png [13703]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\redElipse.png [11111]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\shapes.png [18247]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\shares purple.png [10665]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\shares yellow.png [10328]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\shares.png [9888]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\shoppingbasket.png [8315]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\speech-bubble.png [37946]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\speechBubble.png [8249]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\speechBubbleGreen.png [8012]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\speechBubblePink.png [9064]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\speechbubblesAbove.png [12743]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\speechbubblesAboveBlue.png [12786]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\speechbubblesAboveRed.png [11783]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\sportsfield.png [41894]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\star.png [11078]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\think.png [13251]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\todolist.png [14263]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\weddingbells.png [64357]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\weekcalendar.png [7323]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\yellOrbs.png [10745]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\yellow square.png [13601]
O61 - LFC: 07/02/2014 - 12:18:48 ---A- . (...) -- C:\Users\audrey\Documents\Mes fichiers iMindMap\Images\Idées centrales\yellowOrbs.png [7792]
O61 - LFC: 07/02/2014 - 12:18:49 ---A- . (...) -- C:\Users\audrey\Downloads\Affichage-du-vrai-travailleur-_-Reussite-Etudes.fr_.pdf [378804]
O61 - LFC: 07/02/2014 - 12:18:49 ---A- . (...) -- C:\Users\audrey\Downloads\Chap-1_Delengaigne.pdf [1016214]
O61 - LFC: 07/02/2014 - 12:18:49 ---A- . (...) -- C:\Users\audrey\Downloads\Travailler-régulièrement-Feuille-de-route.pdf [55138]
O61 - LFC: 07/02/2014 - 12:18:49 ---A- . (...) -- C:\Users\audrey\Downloads\Travailler-régulièrement-Objectif-SMART.docx [18967]
O61 - LFC: 07/02/2014 - 12:18:49 ---A- . (...) -- C:\Users\audrey\Downloads\TutorielFreeMindv8parFL.pdf [340502]
O61 - LFC: 07/02/2014 - 12:18:49 ---A- . (...) -- C:\Users\audrey\Downloads\exmm.pdf [1924365]
O61 - LFC: 07/02/2014 - 12:18:49 ---A- . (...) -- C:\Users\audrey\Downloads\imindmap_mode_d_emploi.pdf [545994]
O61 - LFC: 07/02/2014 - 12:18:49 ---A- . (.Softonic.) -- C:\Users\audrey\Downloads\SoftonicDownloader_pour_imindmap.exe [401768] =>Toolbar.Conduit
O61 - LFC: 07/02/2014 - 12:18:49 ---A- . (.ThinkBuzan.) -- C:\Users\audrey\Downloads\imindmap7_windows_7.0.2.exe [145465768]
O61 - LFC: 07/02/2014 - 12:18:49 ---A- . (.setupprocess.) -- C:\Users\audrey\Downloads\iMindMap%20Basic.exe [274288]
O61 - LFC: 07/02/2014 - 12:18:49 -SHA- . (...) -- C:\Users\audrey\Pictures\Créations graphisme\Thumbs.db [12800]
O61 - LFC: 07/02/2014 - 12:18:49 -SHA- . (...) -- C:\Users\audrey\Pictures\Defis entre cousines\Thumbs.db [287744]
O61 - LFC: 08/02/2014 - 12:18:34 --HA- . (...) -- C:\Users\audrey\AppData\Local\IconCache.db [265895]
O61 - LFC: 08/02/2014 - 12:18:46 ---A- . (...) -- C:\Users\audrey\AppData\Local\Temp\CVR65BF.tmp.cvr [0]
O61 - LFC: 08/02/2014 - 12:18:46 ---A- . (...) -- C:\Users\audrey\AppData\Local\Temp\CVRAC30.tmp.cvr [0]
O61 - LFC: 08/02/2014 - 12:18:46 ---A- . (...) -- C:\Users\audrey\AppData\Local\Temp\CVRF84A.tmp.cvr [0]
O61 - LFC: 08/02/2014 - 12:18:46 ---A- . (...) -- C:\Users\audrey\AppData\Local\Temp\CVRFC9.tmp.cvr [0]
O61 - LFC: 08/02/2014 - 12:18:46 ---A- . (...) -- C:\Users\audrey\AppData\Local\Temp\msohtmlclip1\01\clip_colorschememapping.xml [314]
O61 - LFC: 08/02/2014 - 12:18:46 ---A- . (...) -- C:\Users\audrey\AppData\Local\Temp\msohtmlclip1\01\clip_themedata.thmx [3146]
O61 - LFC: 08/02/2014 - 12:18:46 ---A- . (...) -- C:\Users\audrey\AppData\Local\Temp\transfer9158075156717160561dat [1667]
O61 - LFC: 08/02/2014 - 12:18:46 ---A- . (...) -- C:\Users\audrey\AppData\Roaming\Microsoft\Office\Recent\Psychobiologie CM.LNK [1570]
O61 - LFC: 08/02/2014 - 12:18:46 ---A- . (...) -- C:\Users\audrey\AppData\Roaming\Microsoft\Office\Recent\Psychobiologie.LNK [1518]
O61 - LFC: 08/02/2014 - 12:18:46 ---A- . (...) -- C:\Users\audrey\AppData\Roaming\Microsoft\Office\Recent\Représentation graphique.LNK [1558]
O61 - LFC: 08/02/2014 - 12:18:46 ---A- . (...) -- C:\Users\audrey\AppData\Roaming\Microsoft\Office\Recent\STATISTIQUES.LNK [1535]
O61 - LFC: 08/02/2014 - 12:18:46 --H-- . (...) -- C:\Users\audrey\AppData\Roaming\Microsoft\Office\Recent\index.dat [851]
O61 - LFC: 08/02/2014 - 12:18:47 ---A- . (...) -- C:\Users\audrey\Documents\Anki\Utilisateur 1\backups\backup-4.apkg [87544]
O61 - LFC: 08/02/2014 - 12:18:47 ---A- . (...) -- C:\Users\audrey\Documents\Anki\Utilisateur 1\collection.anki2 [360448]
O61 - LFC: 08/02/2014 - 12:18:47 ---A- . (...) -- C:\Users\audrey\Documents\Anki\prefs.db [5120]
O61 - LFC: 08/02/2014 - 12:18:49 ---A- . (...) -- C:\Users\audrey\Documents\Psychologie\Fiches de révision\Mind Mapping\Psychologie clinique.imx [49680]
O61 - LFC: 08/02/2014 - 12:18:49 ---A- . (...) -- C:\Users\audrey\Documents\Psychologie\Fiches de révision\Mind Mapping\Psychologie différentielle.imx [56324]
O61 - LFC: 08/02/2014 - 12:18:49 ---A- . (...) -- C:\Users\audrey\Documents\Psychologie\Fiches de révision\Mind Mapping\Psychologie expérimentale.imx [33315]
O61 - LFC: 08/02/2014 - 12:18:49 ---A- . (...) -- C:\Users\audrey\Documents\Psychologie\Fiches de révision\Psychobiologie\Psychobiologie.docx [38803]
O61 - LFC: 08/02/2014 - 12:18:49 ---A- . (...) -- C:\Users\audrey\Documents\Psychologie\Fiches de révision\Statistiques\Représentation graphique.docx [168608]
O61 - LFC: 08/02/2014 - 12:18:49 ---A- . (...) -- C:\Users\audrey\Documents\Psychologie\L1\Semestre 2\Approche clinique\APPROCHE CLINIQUE - CM.docx [13939]
O61 - LFC: 08/02/2014 - 12:18:49 ---A- . (...) -- C:\Users\audrey\Documents\Psychologie\L1\Semestre 2\Approche différentielle\APPROCHE DIFFERENTIELLE - CM.docx [20921]
O61 - LFC: 08/02/2014 - 12:18:49 ---A- . (...) -- C:\Users\audrey\Documents\Psychologie\L1\Semestre 2\Approche expérimentale\CM\APPROCHE EXPERIMENTALE CM.docx [75329]
O61 - LFC: 08/02/2014 - 12:18:49 ---A- . (...) -- C:\Users\audrey\Documents\Psychologie\L1\Semestre 2\Psychobiologie\Psychobiologie CM LESPSY.docx [962472]
O61 - LFC: 08/02/2014 - 12:18:49 ---A- . (...) -- C:\Users\audrey\Documents\Psychologie\L1\Semestre 2\Psychobiologie\Psychobiologie CM.docx [781154]
O61 - LFC: 08/02/2014 - 12:18:49 ---A- . (...) -- C:\Users\audrey\Documents\Psychologie\L1\Semestre 2\Statistiques\STATISTIQUES.docx [298121]
O61 - LFC: 08/02/2014 - 12:18:49 ---A- . (...) -- C:\Users\audrey\Downloads\2anim_spermatogenese.rar [874741]
O61 - LFC: 08/02/2014 - 12:18:49 ---A- . (...) -- C:\Users\audrey\Downloads\6-conseils-pour-préparer-ses-examens-S-V_Mai-2011.pdf [2735278]
O61 - LFC: 08/02/2014 - 12:18:49 ---A- . (...) -- C:\Users\audrey\Downloads\Agenda-du-sommeil-Reussite-etudes.fr_.pdf [1081670]
O61 - LFC: 08/02/2014 - 12:18:49 ---A- . (...) -- C:\Users\audrey\Downloads\pda_primsec-animations-simulations-videosanimes-tni.pdf [1957740]
O61 - LFC: 08/02/2014 - 12:18:49 ---A- . (.claudon.) -- C:\Users\audrey\Documents\Psychologie\L1\Semestre 2\Anglais\Cours\s4-student-titres.doc [36864]
O61 - LFC: 08/02/2014 - 12:18:49 ---A- . (.claudon.) -- C:\Users\audrey\Documents\Psychologie\L1\Semestre 2\Anglais\Travail en autonomie\Corrigé fiche statut.doc [23040]
O61 - LFC: 08/02/2014 - 12:18:49 ---A- . (.claudon.) -- C:\Users\audrey\Documents\Psychologie\L1\Semestre 2\Anglais\Travail en autonomie\Statut des mots.doc [28160]
O61 - LFC: 08/02/2014 - 12:18:49 --HA- . (...) -- C:\Users\audrey\Documents\Psychologie\L1\Semestre 2\Statistiques\~$ATISTIQUES.docx [162]
O61 - LFC: 09/02/2014 - 12:18:34 ---A- . (...) -- C:\Users\audrey\.thinkbuzan\imindmap7\appmeta\appmeta.xml [3739]
O61 - LFC: 09/02/2014 - 12:18:34 ---A- . (...) -- C:\Users\audrey\.thinkbuzan\imindmap7\preload\preload7.dat [62]
O61 - LFC: 09/02/2014 - 12:18:34 ---A- . (...) -- C:\Users\audrey\.thinkbuzan\imindmap7\themes\themes.xml [68454]
O61 - LFC: 09/02/2014 - 12:18:34 ---A- . (...) -- C:\Users\audrey\.thinkbuzan\imindmap7\themes\themes.xml.bak [68454]
O61 - LFC: 09/02/2014 - 12:18:34 ---A- . (...) -- C:\Users\audrey\AppData\Local\Finkit\ManicTime\ManicTime.sdf [1773568]
O61 - LFC: 09/02/2014 - 12:18:45 ---A- . (...) -- C:\Users\audrey\AppData\Local\Pokki\Pokkies\installed_pokkies.db [5120]
O61 - LFC: 09/02/2014 - 12:18:45 ---A- . (...) -- C:\Users\audrey\AppData\Local\Pokki\UserData\Default\Extension State\CURRENT [16]
O61 - LFC: 09/02/2014 - 12:18:45 ---A- . (...) -- C:\Users\audrey\AppData\Local\Pokki\UserData\Default\Extension State\MANIFEST-000134 [52] =>.Google Inc
O61 - LFC: 09/02/2014 - 12:18:45 ---A- . (...) -- C:\Users\audrey\AppData\Local\Pokki\UserData\Default\History Provider Cache [13]
O61 - LFC: 09/02/2014 - 12:18:45 ---A- . (...) -- C:\Users\audrey\AppData\Local\Pokki\UserData\Default\Managed Mode Settings [8]
O61 - LFC: 09/02/2014 - 12:18:45 ---A- . (...) -- C:\Users\audrey\AppData\Local\Pokki\UserData\Default\Preferences [57249]
O61 - LFC: 09/02/2014 - 12:18:45 ---A- . (...) -- C:\Users\audrey\AppData\Local\Pokki\UserData\Local State [60604]
O61 - LFC: 09/02/2014 - 12:18:45 ---A- . (...) -- C:\Users\audrey\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1-websheet\Extension State\CURRENT [16]
O61 - LFC: 09/02/2014 - 12:18:45 ---A- . (...) -- C:\Users\audrey\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1-websheet\Extension State\MANIFEST-000136 [52] =>.Google Inc
O61 - LFC: 09/02/2014 - 12:18:45 ---A- . (...) -- C:\Users\audrey\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1-websheet\History Provider Cache [13]
O61 - LFC: 09/02/2014 - 12:18:45 ---A- . (...) -- C:\Users\audrey\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1-websheet\Managed Mode Settings [8]
O61 - LFC: 09/02/2014 - 12:18:45 ---A- . (...) -- C:\Users\audrey\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1-websheet\Preferences [56987]
O61 - LFC: 09/02/2014 - 12:18:45 ---A- . (...) -- C:\Users\audrey\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1\Cookies [6144]
O61 - LFC: 09/02/2014 - 12:18:45 ---A- . (...) -- C:\Users\audrey\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1\Cookies-journal [4640]
O61 - LFC: 09/02/2014 - 12:18:45 ---A- . (...) -- C:\Users\audrey\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1\Extension State\CURRENT [16]
O61 - LFC: 09/02/2014 - 12:18:45 ---A- . (...) -- C:\Users\audrey\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1\Extension State\MANIFEST-000136 [52] =>.Google Inc
O61 - LFC: 09/02/2014 - 12:18:45 ---A- . (...) -- C:\Users\audrey\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1\History Provider Cache [13]
O61 - LFC: 09/02/2014 - 12:18:45 ---A- . (...) -- C:\Users\audrey\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1\Local Storage\file__0.localstorage [3072]
O61 - LFC: 09/02/2014 - 12:18:45 ---A- . (...) -- C:\Users\audrey\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1\Local Storage\file__0.localstorage-journal [3608]
O61 - LFC: 09/02/2014 - 12:18:45 ---A- . (...) -- C:\Users\audrey\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1\Managed Mode Settings [8]
O61 - LFC: 09/02/2014 - 12:18:45 ---A- . (...) -- C:\Users\audrey\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1\Preferences [57484]
O61 - LFC: 09/02/2014 - 12:18:45 ---A- . (...) -- C:\Users\audrey\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1\Session Storage\CURRENT [16]
O61 - LFC: 09/02/2014 - 12:18:45 ---A- . (...) -- C:\Users\audrey\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1\Session Storage\MANIFEST-000179 [509] =>.Google Inc
O61 - LFC: 09/02/2014 - 12:18:45 ---A- . (...) -- C:\Users\audrey\AppData\Local\Pokki\analytics.db [5120]
O61 - LFC: 09/02/2014 - 12:18:46 ---A- . (.Nicolas Coolman.) -- C:\Users\audrey\AppData\Local\Temp\PCkmabvk.exe.part [6865617]
O61 - LFC: 09/02/2014 - 12:18:46 -SHA- . (...) -- C:\Users\audrey\AppData\Roaming\Microsoft\Protect\S-1-5-21-30844821-2391127684-4000348375-1001\08a5d12d-706f-49ec-a729-e75456334296 [468]
O61 - LFC: 09/02/2014 - 12:18:47 ---A- . (...) -- C:\Users\audrey\AppData\Roaming\ZHP\Log.txt [17126] =>.Nicolas Coolman
O61 - LFC: 09/02/2014 - 12:18:47 ---A- . (...) -- C:\Users\audrey\AppData\Roaming\ZHP\TestsZHPDiag.txt [2807] =>.Nicolas Coolman
O61 - LFC: 09/02/2014 - 12:18:49 ---A- . (.Nicolas Coolman.) -- C:\Users\audrey\Downloads\ZHPDiag2.exe [6865617] =>.Nicolas Coolman
~ 21 Fichiers temporaires (Temporary files)
~ Files: 284 Scanned in 00mn 18s



---\\ Liste des outils de désinfection (LATC) (O63)
O63 - Logiciel: ZHPDiag 2014 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman
~ ADS: Scanned in 00mn 00s



---\\ Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S
~ FASS Keys: 10 Scanned in 00mn 00s



---\\ Menu de démarrage Internet (SMI) (O68)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
~ Keys: Scanned in 00mn 00s



---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69)
O69 - SBI: SearchScopes [HKCU] {AA9A4890-4262-4441-8977-E2FFCBFB706C} - (Yahoo!) - http://fr.yhs4.search.yahoo.com
~ Keys: Scanned in 00mn 00s



---\\ Enumère les service demarrés par Svchost (SSS) (O83)
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [169984]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [115200]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [115200]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [242176]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [1285632]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [683520]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’accès distant.) -- C:\Windows\System32\rasauto.dll [87552]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d’accès à distance.) -- C:\Windows\System32\rasmans.dll [302080]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [81920]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements système (SENS).) -- C:\Windows\System32\sens.dll [49152]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll [392192]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM).) -- C:\Windows\System32\tapisrv.dll [245760]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll [2600960]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\Windows\System32\qmgr.dll [630272]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [506368]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur un réseau IPv4..) -- C:\Windows\System32\iphlpsvc.dll [741376]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll [20992]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [52224]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [115200]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [89088]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [942080]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [166400]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédias.) -- C:\Windows\System32\mmcss.dll [60928]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [105472]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [170496]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à distance.) -- C:\Windows\System32\sessenv.dll [249344]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [59392]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\kmsvc.dll [73216]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [33280]
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\Windows\System32\wlidsvc.dll [1532928]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [154112]
O83 - Search Svchost Services: SystemEventsBroker (SystemEventsBroker) . (.Microsoft Corporation - Service Broker pour les événements système.) -- C:\Windows\System32\SystemEventsBrokerServer.dll [117760]
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d’installation de périphérique.) -- C:\Windows\System32\DeviceSetupManager.dll [161792]
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Microsoft.) -- C:\Windows\System32\ncasvc.dll [138752]

~ Services: 34 Scanned in 00mn 01s



---\\ Recherche particulière à la racine du système (SPRF) (O84)
[MD5.D66C4019645FB388A5CA5CA69C2B6B60] [SPRF][18/01/2014] (...) -- C:\Program Files\bandizip-setup-gl.exe [4321088]
[MD5.90B4989B832A57D261F0AB51F143E97A] [SPRF][18/01/2014] (.Piriform Ltd - CCleaner Installer.) -- C:\Program Files\ccsetup409.exe [4645232] =>Piriform Ltd
[MD5.7A42CE3C75E46FE1C120378E1366BE80] [SPRF][25/02/2013] (.TrishTech.com - Opens classic shutdown dialog for Windows 8.) -- C:\Program Files\ClassicShutdown.exe [184320]
[MD5.ED26E829B73F337FA9C3F8E44368C785] [SPRF][18/01/2014] (.Mozilla - Firefox.) -- C:\Program Files\Firefox Setup 26.0.exe [24239128]
[MD5.DF25188827559E7245CE23B70C2B2A6B] [SPRF][15/01/2014] (.Mozilla - Firefox.) -- C:\Program Files\Firefox Setup Stub 26.0.exe [283112]
[MD5.E2ECA03C1CB714A2BCE3383313DC8329] [SPRF][18/01/2014] (...) -- C:\Program Files\MCPR.exe [608344]
[MD5.9631FA36F4784888F0918394778B8B07] [SPRF][18/01/2014] (...) -- C:\Program Files\Norton_Removal_Tool.exe [870728]
~ Files: 7 Scanned in 00mn 00s



---\\ Liste des exceptions du parefeu (FirewallRules) (O87)
O87 - FAEL: "vm-monitoring-rpc" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "vm-monitoring-dcom" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMP-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMP-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "SNMPTRAP-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Interruption SNMP.) -- C:\Windows\system32\snmptrap.exe
O87 - FAEL: "SNMPTRAP-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Interruption SNMP.) -- C:\Windows\system32\snmptrap.exe
O87 - FAEL: "CoreNet-DHCP-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "CoreNet-DHCP-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "CoreNet-DHCPV6-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "CoreNet-DHCPV6-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "CoreNet-Teredo-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "CoreNet-Teredo-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "CoreNet-IPHTTPS-Out" | Out - None - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "CoreNet-GP-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "CoreNet-DNS-Out-UDP" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "CoreNet-GP-LSASS-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Local Security Authority Process.) -- C:\Windows\system32\lsass.exe
O87 - FAEL: "RemoteSvcAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe
O87 - FAEL: "RemoteSvcAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteSvcAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe
O87 - FAEL: "RemoteSvcAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "PerfLogsAlerts-PLASrv-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Performance Logs and Alerts DCOM Server.) -- C:\Windows\system32\plasrv.exe
O87 - FAEL: "PerfLogsAlerts-DCOM-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "PerfLogsAlerts-PLASrv-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Performance Logs and Alerts DCOM Server.) -- C:\Windows\system32\plasrv.exe
O87 - FAEL: "PerfLogsAlerts-DCOM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RVM-VDS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service de disque virtuel.) -- C:\Windows\system32\vds.exe
O87 - FAEL: "RVM-VDSLDR-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Virtual Disk Service Loader.) -- C:\Windows\system32\vdsldr.exe
O87 - FAEL: "RVM-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RVM-VDS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service de disque virtuel.) -- C:\Windows\system32\vds.exe
O87 - FAEL: "RVM-VDSLDR-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Virtual Disk Service Loader.) -- C:\Windows\system32\vdsldr.exe
O87 - FAEL: "RVM-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteTask-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteTask-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteTask-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteTask-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "PlayTo-In-UDP-NoScope" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-In-UDP-LocalSubnetScope" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-In-UDP-PlayToScope" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-Out-UDP-NoScope" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-Out-UDP-LocalSubnetScope" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-Out-UDP-PlayToScope" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-In-RTSP-NoScope" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-In-RTSP-LocalSubnetScope" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-In-RTSP-PlayToScope" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-SSDP-Discovery-PlayToScope" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "PlayTo-QWave-In-UDP-PlayToScope" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "PlayTo-QWave-Out-UDP-PlayToScope" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "PlayTo-QWave-In-TCP-PlayToScope" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "PlayTo-QWave-Out-TCP-PlayToScope" | Out - Public - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteEventLogSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteEventLogSvc-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteEventLogSvc-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteEventLogSvc-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MSDTC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-KTMRM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MSDTC-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MSDTC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-KTMRM-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MSDTC-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-UPnP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-TCP3587-In" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-TCP3587-Out" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-UDP3540-In" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-UDP3540-Out" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteAssistance-In-TCP-EdgeScope" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-In-EdgeScope" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-OUT" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteAssistance-RAServer-In-TCP-NoScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur COM d’assistance à distance Windows.) -- C:\Windows\system32\raserver.exe
O87 - FAEL: "RemoteAssistance-RAServer-Out-TCP-NoScope-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur COM d’assistance à distance Windows.) -- C:\Windows\system32\raserver.exe
O87 - FAEL: "RemoteAssistance-DCOM-In-TCP-NoScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteAssistance-In-TCP-EdgeScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-Out-TCP-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-SSDPSrv-In-UDP-Active" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteAssistance-SSDPSrv-Out-UDP-Active" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-In-EdgeScope-Active" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-OUT-Active" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "FPS-SpoolSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "FPS-SpoolSvc-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "FPS-LLMNR-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "FPS-LLMNR-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "Collab-PNRP-In-UDP" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "Collab-PNRP-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "Collab-PNRP-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "Collab-PNRP-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "TPMVSCMGR-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "TPMVSCMGR-Server-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - TPM Virtual Smart Card Manager DCOM Server.) -- C:\Windows\system32\RmtTpmVscMgrSvr.exe
O87 - FAEL: "TPMVSCMGR-Server-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - TPM Virtual Smart Card Manager DCOM Server.) -- C:\Windows\system32\RmtTpmVscMgrSvr.exe
O87 - FAEL: "TPMVSCMGR-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "TPMVSCMGR-Server-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - TPM Virtual Smart Card Manager DCOM Server.) -- C:\Windows\system32\RmtTpmVscMgrSvr.exe
O87 - FAEL: "TPMVSCMGR-Server-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - TPM Virtual Smart Card Manager DCOM Server.) -- C:\Windows\system32\RmtTpmVscMgrSvr.exe
O87 - FAEL: "Wininit-Shutdown-In-Rule-TCP-RPC" | In - None - P6 - FALSE | .(.Microsoft Corporation - Application de démarrage de Windows.) -- C:\Windows\system32\wininit.exe
O87 - FAEL: "Wininit-Shutdown-In-Rule-TCP-RPC-EPMapper" | In - None - P6 - FALSE | .(.Microsoft Corporation - Application de démarrage de Windows.) -- C:\Windows\system32\wininit.exe
O87 - FAEL: "WMI-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMI-WINMGMT-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMI-WINMGMT-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMI-ASYNC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) -- C:\Windows\system32\wbem\unsecapp.exe
O87 - FAEL: "WMI-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMI-WINMGMT-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMI-WINMGMT-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMI-ASYNC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) -- C:\Windows\system32\wbem\unsecapp.exe
O87 - FAEL: "RemoteFwAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteFwAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteFwAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteFwAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-UPnPHost-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-WSDEVNTS-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-WSDEVNT-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-SSDPSrv-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-UPnPHost-Out-TCP-Active" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-UPnP-Out-TCP-Active" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-FDPHOST-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-DAS-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Device Association Framework Provider Host.) -- C:\Windows\system32\dashost.exe
O87 - FAEL: "NETDIS-FDPHOST-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-LLMNR-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-LLMNR-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-WSDEVNTS-Out-TCP-Active" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-WSDEVNT-Out-TCP-Active" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-UPnP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-UPnPHost-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-FDPHOST-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-DAS-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Device Association Framework Provider Host.) -- C:\Windows\system32\dashost.exe
O87 - FAEL: "NETDIS-FDPHOST-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-LLMNR-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-LLMNR-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-WSDEVNTS-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-WSDEVNT-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "Netlogon-TCP-RPC-In" | In - None - P6 - FALSE | .(.Microsoft Corporation - Local Security Authority Process.) -- C:\Windows\System32\lsass.exe
O87 - FAEL: "MsiScsi-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MsiScsi-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MsiScsi-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MsiScsi-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "PNRPMNRS-PNRP-In-UDP" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "PNRPMNRS-PNRP-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "PNRPMNRS-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "PNRPMNRS-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "ProximityUxHost-Sharing-In-TCP-NoScope" | In - None - P6 - TRUE | .(.Microsoft Corporation - Hôte UX de proximité.) -- C:\Windows\system32\proximityuxhost.exe
O87 - FAEL: "ProximityUxHost-Sharing-Out-TCP-NoScope" | Out - None - P6 - TRUE | .(.Microsoft Corporation - Hôte UX de proximité.) -- C:\Windows\system32\proximityuxhost.exe
O87 - FAEL: "MCX-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MCX-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MCX-QWave-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MCX-QWave-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MCX-QWave-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MCX-QWave-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MCX-TERMSRV-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MCX-MCX2SVC-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MCX-PlayTo-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MCX-PlayTo-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MCX-FDPHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WPDMTP-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe
O87 - FAEL: "WPDMTP-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe
O87 - FAEL: "WPDMTP-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WPDMTP-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WPDMTP-UPnPHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WPDMTP-UPnP-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "{DBB0AB8A-11B4-452F-9D64-84815FB3E186}" | In - Public - P6 - TRUE | .(.Nero AG - Nero BackItUp.) -- C:\Program Files\Nero\Nero 12\Nero BackItUp\BackItUp.exe
O87 - FAEL: "{884E6AE0-39AB-4AE0-B240-6A47B2366028}" | In - Public - P17 - TRUE | .(.Nero AG - Nero BackItUp.) -- C:\Program Files\Nero\Nero 12\Nero BackItUp\BackItUp.exe
O87 - FAEL: "{414C4039-170B-478C-8DBE-244458B7D3C8}" | In - Public - P6 - TRUE | .(.Spotify Ltd - Spotify.) -- C:\Program Files\Spotify\spotify.exe
O87 - FAEL: "{54683D87-A401-4F32-8B2E-116908CA5BB2}" | In - Public - P17 - TRUE | .(.Spotify Ltd - Spotify.) -- C:\Program Files\Spotify\spotify.exe
O87 - FAEL: "{05244235-F97C-43B5-A3DF-0BE9C6FC07DC}" | In - Public - P6 - TRUE | .(...) -- C:\Program Files\Spotify\Data\SpotifyWebHelper.exe
O87 - FAEL: "{2DBCE73B-BFE7-4C6C-80A4-21C13FA3BDA8}" | In - Public - P17 - TRUE | .(...) -- C:\Program Files\Spotify\Data\SpotifyWebHelper.exe
O87 - FAEL: "{787AAD05-93AC-4EBC-A190-EAA786DA4919}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "{093FFA9C-BB03-4BCC-BC1B-2074285C5B20}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "{4742CF73-D11E-484F-9AA3-8618DDA390FA}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "{85FA2716-C210-4CE0-9851-61F2D8AE0BDB}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "{A50AECD1-7620-4946-8C2D-6FEC2583BD15}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "{FBFB0027-07D9-4A53-A4F0-694A93DC4E9F}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "{2C6BE286-6542-48AB-AD05-9ECFF27C34E4}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "{B4D089C2-EE7E-42DB-A817-1E6976AEE357}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation
O87 - FAEL: "{F879771C-B316-4F33-AE49-D9313B2ADA6D}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation
O87 - FAEL: "{4C9CC893-8932-4056-99F4-D1FA80CED8C4}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation
O87 - FAEL: "{EC78F0B2-8564-484E-888E-A4430D879681}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation
O87 - FAEL: "{636B8F52-B822-4972-8DB1-B71FFB4D4F4E}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "{1B0F73EB-E452-4693-AE04-65D5512AF643}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "{6CE38119-B851-4F2D-9B8D-106507D05B45}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "{C770E4D8-CF77-4D33-A527-7BA652ECA240}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "{CE44D36F-B10A-40F5-A88E-7427F5839660}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "{5D110467-3D03-4D04-9788-408B22E57B4A}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "{3DB1B1E0-FF2B-4784-BB6C-EDD92A68E9F0}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "{C6865BAA-8048-42A5-B747-0004017689DD}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "{0538CD2A-02CA-49E2-8A87-FC525A2EDDB2}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "{D8E95E97-76D1-4AF0-B7FC-D4C8D77CD471}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Microsoft SkyDrive.) -- C:\Users\audrey\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe =>.Microsoft Corporation
O87 - FAEL: "TCP Query User{00532C23-12A1-4729-AA5B-04D94DE1372C}C:\program files\skype\phone\skype.exe" | In - Private - P6 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\program files\skype\phone\skype.exe =>.Skype Technologies S.A.
O87 - FAEL: "UDP Query User{883F5E3E-DFBC-4DAA-8F2F-20CE83637B47}C:\program files\skype\phone\skype.exe" | In - Private - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\program files\skype\phone\skype.exe =>.Skype Technologies S.A.
O87 - FAEL: "TCP Query User{6B794863-5476-41BA-999B-53EA5A52BA0C}C:\program files\skype\phone\skype.exe" | In - Public - P6 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\program files\skype\phone\skype.exe =>.Skype Technologies S.A.
O87 - FAEL: "UDP Query User{63E7B507-42DD-4DE9-A53C-6D988B9D34D2}C:\program files\skype\phone\skype.exe" | In - Public - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\program files\skype\phone\skype.exe =>.Skype Technologies S.A.
~ Firewall: 219 Scanned in 00mn 03s



---\\ Enumère les codes produits des logiciels (PUC) (O90)
O90 - PUC: "0AB16638DAC94C84FA354E027C92CA0C" . (.Update for Japanese Microsoft IME Postal Code Dictionary.) -- C:\Windows\Installer\{83661BA0-9CAD-48C4-AF53-E420C729ACC0}\Product.ico
O90 - PUC: "122113B05A506674D830A74664971465" . (.Nero RescueAgent Help (CHM).) -- c:\Windows\Installer\{0B311221-05A5-4766-8D03-7A6446794156}\NeroHelpIcon.A2EDDB31_726D_4D40_8014_5D5F2D3EF945
O90 - PUC: "18034D2AB7FC73649A3F2E56A15A4C8A" . (.Nero RescueAgent.) -- c:\Windows\Installer\{A2D43081-CF7B-4637-A9F3-E2651AA5C4A8}\ARPPRODUCTICON.exe
O90 - PUC: "203E62EEA6789D84098513925E9B9999" . (.Live Updater.) -- C:\Windows\Installer\{EE26E302-876A-48D9-9058-3129E5B99999}\icon.ico
O90 - PUC: "2921D0FE1CF8EB147904BD1C436F4651" . (.Nero BackItUp Help (CHM).) -- c:\Windows\Installer\{EF0D1292-8FC1-41BE-9740-DBC134F66415}\NeroHelpIcon.A2EDDB31_726D_4D40_8014_5D5F2D3EF945
O90 - PUC: "2FA75B6D60424E942B91AE8A0B9B3FFC" . (.Recovery Management.) -- C:\Windows\Installer\{D6B57AF2-2406-49E4-B219-EAA8B0B9F3CF}\.\Bitmaps\eRecoveryicon.ico
O90 - PUC: "35588CBA077879B44BE3A50946A7B536" . (.Nero ControlCenter.) -- c:\Windows\Installer\{ABC88553-8770-4B97-B43E-5A90647A5B63}\ARPPRODUCTICON.exe
O90 - PUC: "379F8AC47736FBA4E95DCC32323B0C00" . (.Nero BackItUp 12 Essentials OEM.a01.) -- c:\Windows\Installer\{4CA8F973-6377-4ABF-9ED5-CC2323B3C000}\ARPPRODUCTICON.exe
O90 - PUC: "384CC67ABAA4FDD49902DAEB8ACCBD2A" . (..) -- C:\Windows\Installer\{A76CC483-4AAB-4DDF-9920-ADBEA8CCDBA2}\ARPPRODUCTICON.exe
O90 - PUC: "3A80BAA3921F5DB44B90EA76F43957D9" . (.Prerequisite installer.) -- c:\Windows\Installer\{3AAB08A3-F129-4BD5-B409-AE674F93759D}\ARPPRODUCTICON.exe
O90 - PUC: "456BC9D3DA991034986CD0217A0967C7" . (.Identity Card.) -- C:\Windows\Installer\{3D9CB654-99AD-4301-89C6-0D12A790767C}\icon.ico
O90 - PUC: "4CCD609DBE3C87D40A356ABEAA131044" . (.iMindMap 7.) -- C:\Windows\Installer\{D906DCC4-C3EB-4D78-A053-A6EBAA310144}\imm_7.exe
O90 - PUC: "50E7C3A773EE6D74991EE20BA5D33A7F" . (.Skype™ 6.13.) -- C:\Windows\Installer\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}\SkypeIcon.exe
O90 - PUC: "647C499C0D6CABE40BE9FDB78183B196" . (.Nero ControlCenter Help (CHM).) -- c:\Windows\Installer\{C994C746-C6D0-4EBA-B09E-DF7B18381B69}\NeroHelpIcon.8BC7562A_6065_4ED9_8502_C368ECC0724D
O90 - PUC: "7040BB568CC47CD459E2E3FEFD5006A2" . (.Nero Update.) -- c:\Windows\Installer\{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}\ARPPRODUCTICON.exe
O90 - PUC: "8703D2ADC85A8E54E80E818BEBB6437F" . (.Nero BackItUp.) -- c:\Windows\Installer\{DA2D3078-A58C-45E8-8EE0-18B8BE6B34F7}\ARPPRODUCTICON.exe
O90 - PUC: "87217BD77DA90844BA8068945C10B071" . (.Update for Japanese Microsoft IME Standard Dictionary.) -- C:\Windows\Installer\{7DB71278-9AD7-4480-AB08-8649C5010B17}\Product.ico
O90 - PUC: "8DFFC309FB5815A4A8D6B4BBAC43A6E6" . (.Boxore Client.) -- C:\Windows\Installer\{903CFFD8-85BF-4A51-8A6D-4BBBCA346A6E}\boxore.ico =>Adware.Boxore
O90 - PUC: "9A66EC87FA588DB4F87B535B3F48C600" . (.Update for Japanese Microsoft IME Standard Extended Dictionary.) -- C:\Windows\Installer\{78CE66A9-85AF-4BD8-8FB7-35B5F3846C00}\Product.ico
O90 - PUC: "FA0364E07BA0E0449A87A187CFF4349B" . (.Nero Launcher.) -- c:\Windows\Installer\{0E4630AF-0AB7-440E-A978-1A78FC4F43B9}\ARPPRODUCTICON.exe
~ Update Products: 34 Scanned in 00mn 00s



---\\ Recherche des packages WindowsInstaller (WIS) (O93) (NTFS)
[MD5.DA90883F74B05C4DDA976A4A0E1F2546] [WIS][26/01/2014] (.Skype Technologies S.A. - Skype.) -- C:\Windows\Installer\2116f69.msi [25432064]
[MD5.FD27033962C87183E39F38DB982AB9A3] [WIS][07/02/2014] (.Boxore OU - Boxore Client Installer.) -- C:\Windows\Installer\25a886c.msi [1896448] =>Adware.Boxore
[MD5.2FF23318F196F78545F355D60A00973A] [WIS][28/01/2014] (.ThinkBuzan - iMindMap 7.) -- C:\Windows\Installer\28d9a94.msi [3309056]
[MD5.DFB1BB80DDD5BD6C1BF7CB224CC01736] [WIS][03/02/2014] (.Finkit d.o.o. - ManicTime.) -- C:\Windows\Installer\387b2.msi [7389184]
~ WIS: 34 Scanned in 00mn 08s



---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SS - | Demand 10/09/2013 279024 | (cphs) . (.Intel Corporation.) - C:\Windows\System32\IntelCpHeciSvc.exe
SS - | Demand 12/03/2013 470088 | (DeviceFastLaneService) . (.Acer Incorporated.) - C:\Program Files\Packard Bell\Packard Bell Device Fast-lane\DeviceFastLaneSvc.exe
SS - | Demand 24/04/2012 169752 | (ICCS) . (.Intel Corporation.) - C:\Program Files\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
SS - | Demand 01/07/2013 637912 | (Intel(R) Capability Licensing Service TCP IP Interface) . (.Intel(R) Corporation.) - C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe
SS - | Demand 05/12/2013 119408 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
SS - | Auto 23/10/2013 172192 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files\Skype\Updater\Updater.exe
SS - | Auto 07/02/2014 119408 | (Software_update) . (.The Software Group.) - C:\Program Files\Software\Update\SoftwareUpdate.exe =>Adware.Boxore
SS - | Demand 07/02/2014 119408 | (Software_update_m) . (.The Software Group.) - C:\Program Files\Software\Update\SoftwareUpdate.exe =>Adware.Boxore
SS - | Demand 04/10/2012 23040 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe

SR - | Auto 01/08/2013 269440 | (AtherosSvc) . (.Windows (R) Win 7 DDK provider.) - C:\Program Files\Qualcomm Atheros\Bluetooth Suite\adminservice.exe
SR - | Demand 15/03/2013 595528 | (ePowerSvc) . (.Acer Incorporated.) - C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe
SR - | Auto 04/12/2013 273000 | (hlsvc) . (.Highlightly.) - C:\Program Files\Highlightly\Service\hlsvc.exe
SR - | Auto 01/07/2013 586752 | (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation.) - C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
SR - | Auto 03/08/2013 450088 | (LMSvc) . (.Acer Incorporate.) - C:\Program Files\Packard Bell\Packard Bell Launch Manager\LMSvc.exe
SR - | Auto 14/07/2012 769432 | (NAUpdate) . (.Nero AG.) - c:\Program Files\Nero\Update\NASvc.exe
SR - | Auto 05/02/2014 80160 | (Update Bizzybolt) . (...) - C:\Program Files\Bizzybolt\updateBizzybolt.exe =>PUP.Bizzybolt
SR - | Auto 07/02/2014 80160 | (Util Bizzybolt) . (...) - C:\Program Files\Bizzybolt\bin\utilBizzybolt.exe =>PUP.Bizzybolt
SR - | Demand 01/07/2013 14480 | (WinDefend) . (.Microsoft Corporation.) - C:\Program Files\Windows Defender\MsMpEng.exe

~ Services: Scanned in 00mn 11s



---\\ Recherche d'infection sur le Master Boot Record (MBR)(O80)
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net

~ MBR: 1 Scanned in 00mn 02s



---\\ Recherche d'infection sur le Master Boot Record (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by audrey at 09/02/2014 12:19:34

********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin

~ MBR: Scanned in 00mn 04s



---\\ Scan Additionnel (O88)
Database Version : 13030 - (06/02/2014)
Clés trouvées (Keys found) : 22
Valeurs trouvées (Values found) : 3
Dossiers trouvés (Folders found) : 6
Fichiers trouvés (Files found) : 14

[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{13070AF0-BC6C-4185-8BAA-40A4CF05B323}] =>PUP.Bizzybolt^
[HKLM\SYSTEM\CurrentControlSet\Services\Software_update) (Software_update] =>Adware.Boxore^
[HKLM\SYSTEM\CurrentControlSet\Services\Update Bizzybolt] =>PUP.Bizzybolt^
[HKLM\SYSTEM\CurrentControlSet\Services\Util Bizzybolt] =>PUP.Bizzybolt^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Bizzybolt] =>PUP.Bizzybolt^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{903CFFD8-85BF-4A51-8A6D-4BBBCA346A6E}] =>Adware.Boxore^
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199}] =>Adware.IMBooster
[HKLM\Software\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}] =>PUP.Babylon
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48d2-9061-8BBD4899EB08}] =>Adware.IMBooster
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\1C875DDE39636004CA8CDAEC335B4160] =>Adware.PredictAd
[HKCU\Software\Boxore] =>Adware.Boxore
[HKLM\Software\Boxore] =>Adware.Boxore
[HKLM\Software\Iminent] =>Adware.IMBooster
[HKCU\Software\Softonic] =>Toolbar.Conduit
[HKLM\Software\Tutorials] =>Spyware.AgenceExclusive
[HKLM\SOFTWARE\SOFTWARE\UPDATE\CLIENTS\{5B54E9B6-D6C4-11E0-8E9D-92FB4824019B}] =>Adware.Boxore
[HKLM\Software\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}] =>Adware.BrowseFox
[HKLM\Software\Classes\Iminent] =>Adware.IMBooster
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\38D5CDD0A851B3940A43CC50ABBA251C] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AAC05EAA51DC78A41A1DCE3B31038584] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BA71D41F6CC0B6247B05D473850A8AEA] =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA0054A5AB3EFFE4CB5660E44A1E7DCC] =>Adware.Boxore^
[HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks]:{CFBFAE00-17A6-11D0-99CB-00C04FD64497} =>Adware.Boxore^
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:fst_fr_78 =>PUA.FSTfr9^
[HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks]:{84FF7BD6-B47F-46F8-9130-01B2696B36CB} =>Adware.IMBooster
C:\Program Files\Bench =>PUP.GiganticSavings^
C:\Program Files\Bizzybolt =>PUP.Bizzybolt^
C:\Program Files\Boxore =>Adware.Boxore^
C:\Program Files\Software =>Adware.Boxore
C:\Users\audrey\AppData\Local\Software =>Adware.Boxore
C:\Users\audrey\AppData\Local\Temp\Iminent =>Adware.IMBooster
C:\Program Files\Boxore\BoxoreClient\boxore.exe =>Adware.Boxore^
C:\Windows\Tasks\bench-sys.job =>PUP.GiganticSavings^
C:\Windows\Tasks\bench-Updater removing.job =>PUP.GiganticSavings^
C:\Program Files\Bench\Updater\updater.exe =>PUP.GiganticSavings^
C:\Program Files\Software\Update\SoftwareUpdate.exe =>Adware.Boxore^
[HKCU\Software\Bizzybolt] =>PUP.Bizzybolt^
[HKCU\Software\TutoTag] =>Spyware.AgenceExclusive^
[HKLM\Software\Bench] =>PUP.GiganticSavings^
[HKLM\Software\FREESOFTTODAY] =>Adware.FreeSoftToday^
C:\Windows\Installer\25a886c.msi =>Adware.Boxore^
C:\Users\audrey\AppData\Local\Temp\Iminent.exe =>Adware.IMBooster
C:\Users\audrey\AppData\Local\Temp\BoxoreInstaller.exe =>Adware.Boxore
C:\Users\audrey\AppData\Local\Temp\Umbrella.exe2602c13 =>Adware.IMBooster
~ Additionnel Scan: 197075 Items scanned in 00mn 43s



---\\ Récapitulatif des détections trouvées sur votre station
~ http://nicolascoolman.webs.com/apps/blog/show/26626977-adware-boxore =>Adware.Boxore
~ http://nicolascoolman.webs.com/apps/blog/show/26684723-adware-imbooster =>Adware.IMBooster
~ http://nicolascoolman.webs.com/apps/blog/show/38533684-pup-bizzybolt =>PUP.Bizzybolt
~ http://nicolascoolman.webs.com/apps/blog/show/34014358-pua-fstfr9 =>PUA.FSTfr9
~ http://nicolascoolman.webs.com/apps/blog/show/37514218-pup-giganticsavings =>PUP.GiganticSavings
~ http://nicolascoolman.webs.com/apps/blog/show/29507721-toolbar-conduit =>Toolbar.Conduit
~ http://nicolascoolman.webs.com/apps/blog/show/26627641-spyware-agenceexclusive =>Spyware.AgenceExclusive
~ http://nicolascoolman.webs.com/apps/blog/show/33340107-adware-freesofttoday =>Adware.FreeSoftToday
~ http://nicolascoolman.webs.com/apps/blog/show/34407192-pup-minibar =>PUP.Minibar
~ http://nicolascoolman.webs.com/apps/blog/show/26627369-toolbar-babylon =>PUP.Babylon
~ http://nicolascoolman.webs.com/apps/blog/show/27229962-adware-predictad =>Adware.PredictAd
~ http://nicolascoolman.webs.com/apps/blog/show/32363262-adware-browsefox =>Adware.BrowseFox
~ MSI: 12 link(s) detected in 00mn 44s



End of the scan (2112 lines in 03mn 54s)(0)

Publicité


Signaler le contenu de ce document

Publicité