cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ Rapport de ZHPDiag v2014.3.2.6 - Nicolas Coolman (03/03/2014)
~ Lancé par nikita (08/03/2014 18:59:17)
~ Adresse du Site Web http://nicolascoolman.webs.com
~ Forums gratuits d'Assistance à la désinfection : http://nicolascoolman.webs.com/apps/links/
~ Traduit par Nicolas Coolman
~ Etat de la version :
~ Liste blanche : Désactivée par l'utilisateur
~ Elévation des Privilèges : OK
~ User Account Control (UAC): Activate by user


---\\ Navigateurs Internet
MSIE: Internet Explorer v11.0.9600.16518
MFIE: Mozilla Firefox 27.0.1 (Defaut)
GCIE: Google Chrome v33.0.1750.146

---\\ Informations sur les produits Windows
~ Langage: Français
Windows 8.1, 64-bit (Build 9600)
Windows Server License Manager Script : OK
~ ion : Windows(R) Operating System, OEM_DM channel
Windows ID Activation : OK
~ Windows Partial Key : YKH36
Windows License : OK
~ Windows Remaining Initializations Number : 999
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ Logiciels de protection du système
avast! Free Antivirus v9.0.2013
Malwarebytes Anti-Malware version 1.75.0.1300
Windows Defender W8

---\\ Logiciels d'optimisation du système
CCleaner v4.04 =>Piriform Ltd

---\\ Logiciels de partage PeerToPeer

---\\ Surveillance de Logiciels
Adobe Flash Player 12 Plugin
Adobe Reader XI
Java 7 Update 51

---\\ Informations sur le système
~ Processor: Intel64 Family 6 Model 42 Stepping 7, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3986 MB (51% free)
System Restore: Activé (Enable)
System drive C: has 149 GB (53%) free of 276 GB

---\\ Mode de connexion au système
~ Computer Name: DOMINIQUE
~ User Name: nikita
~ All Users Names: nikita, HomeGroupUser$, Administrateur,
~ Unselected Option: None
Logged in as Administrator

---\\ Variables d'environnement
~ System Unit : C:\
~ %AppZHP% : C:\Users\nikita\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\nikita\AppData\Roaming\
~ %Desktop% : C:\Users\nikita\Desktop\
~ %Favorites% : C:\Users\nikita\Favorites\
~ %LocalAppData% : C:\Users\nikita\AppData\Local\
~ %StartMenu% : C:\Users\nikita\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ Enumération des unités disques
C: Hard drive, Flash drive, Thumb drive (Free 149 Go of 276 Go)
D: Hard drive, Flash drive, Thumb drive (Free 2 Go of 21 Go)
E: CD-ROM drive (Not Inserted)



---\\ Etat du Centre de Sécurité Windows
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Security Center: 41 Scanned in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.63DC38C3E4564B2405D562855643ABA2] - (.Microsoft Corporation - Explorateur Windows.) (.26/11/2013 - 09:42:14.) -- C:\Windows\Explorer.exe [2328872]
[MD5.48CFA7BE561A7BE144C29BB912055016] - (.Microsoft Corporation - Application de démarrage de Windows.) (.22/08/2013 - 10:58:29.) -- C:\Windows\System32\Wininit.exe [144384]
[MD5.263B6E451526A90FF8B1CEC759F22956] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.06/02/2014 - 10:24:52.) -- C:\Windows\System32\wininet.dll [2334208]
[MD5.7C94FDA3809015B8F2208D2E1C221F17] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.22/08/2013 - 10:55:08.) -- C:\Windows\System32\Winlogon.exe [564736]
[MD5.2F18065618E39AA2E656EE737B71E791] - (.Microsoft Corporation - Bibliothèque de licences.) (.22/08/2013 - 11:39:40.) -- C:\Windows\System32\sppcomapi.dll [447488]
[MD5.239268BAB58EAE9A3FF4E08334C00451] - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) (.22/08/2013 - 14:25:35.) -- C:\Windows\system32\Drivers\AFD.sys [567296]
[MD5.74B14192CF79A72F7536B27CB8814FBD] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.22/08/2013 - 13:43:41.) -- C:\Windows\system32\Drivers\atapi.sys [26464]
[MD5.2FA6510E33F7DEFEC03658B74101A9B9] - (.Microsoft Corporation - CD-ROM File System Driver.) (.22/08/2013 - 12:40:15.) -- C:\Windows\system32\Drivers\Cdfs.sys [88576]
[MD5.C6796EA22B513E3457514D92DCDB1A3D] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.22/08/2013 - 09:46:35.) -- C:\Windows\system32\Drivers\Cdrom.sys [164352]
[MD5.5DB26D7E0216D0BF364A81D3829AD7B9] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.22/08/2013 - 12:38:00.) -- C:\Windows\system32\Drivers\DfsC.sys [134656]
[MD5.03909BDBFF0DCACCABF2B2D4ADEE44DC] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.22/08/2013 - 12:38:38.) -- C:\Windows\system32\Drivers\HDAudBus.sys [78336]
[MD5.84CFC5EFA97D0C965EDE1D56F116A541] - (.Microsoft Corporation - Pilote de port i8042.) (.22/08/2013 - 12:39:15.) -- C:\Windows\system32\Drivers\i8042prt.sys [107520]
[MD5.B7342B3C58E91107F6E946A93D9D4EFD] - (.Microsoft Corporation - IP Network Address Translator.) (.27/11/2013 - 13:02:29.) -- C:\Windows\system32\Drivers\IpNat.sys [142848]
[MD5.79B6F3DF7CDFD12159871FF71464F0CE] - (.Microsoft Corporation - Minirdr SMB Windows NT.) (.23/11/2013 - 08:08:19.) -- C:\Windows\system32\Drivers\MRxSmb.sys [403456]
[MD5.0217532E19A748F0E5D569307363D5FD] - (.Microsoft Corporation - MBT Transport driver.) (.22/08/2013 - 12:37:02.) -- C:\Windows\system32\Drivers\netBT.sys [282624]
[MD5.4412D565C0278C401575E11072C7DCE3] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.22/08/2013 - 14:25:41.) -- C:\Windows\system32\Drivers\ntfs.sys [2011488]
[MD5.764B1121867B2D9B31C491668AC72B2B] - (.Microsoft Corporation - Pilote de port parallèle.) (.22/08/2013 - 12:40:02.) -- C:\Windows\system32\Drivers\Parport.sys [94208]
[MD5.BBB6272B7F46C4640A8CDB8A70C3450F] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.22/08/2013 - 12:35:51.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [120832]
[MD5.680C1DAE268B6FB67FA21B389A8B79EF] - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RDP.) (.30/09/2013 - 04:59:53.) -- C:\Windows\system32\Drivers\rdpdr.sys [195584]
[MD5.FFF28F9F6823EB1756C60F1649560BBF] - (.Microsoft Corporation - TDI Translation Driver.) (.22/08/2013 - 14:25:35.) -- C:\Windows\system32\Drivers\tdx.sys [107520]
[MD5.9F9CE33B50611A1C61A46B8911E0B30B] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.22/08/2013 - 13:39:15.) -- C:\Windows\system32\Drivers\volsnap.sys [312160]
~ Generic Processes: Scanned in 00mn 00s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 2/683
~ Mes musiques (My Musics) : 6/23
~ Mes Videos (My Videos) : 2/6
~ Mes Favoris (My Favorites) : 1/10
~ Mes Documents (My Documents) : 2/2936
~ Mon Bureau (My Desktop) : 2/1043
~ Menu demarrer (Programs) : 1/28
~ Hidden Files: Scanned in 00mn 21s



---\\ Processus lancés
[MD5.D1D5DAB39DCB4BE0359943738D87409B] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe [532040] [PID.2132]
[MD5.724CB7A116F7E1A67009D751BCF86586] - (.CyberLink - CyberLink MediaLibray Service.) -- C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111120] [PID.3144]
[MD5.D1C8B0DC04347B6B9B5B3B9204DF6756] - (.Hewlett-Packard Development Company, L.P. - HP CoolSense.) -- C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe [1343904] [PID.3160]
[MD5.E650003C472935D7F5B01CF67490669C] - (.BitTorrent Inc. - BitTorrent.) -- C:\Users\nikita\AppData\Roaming\BitTorrent\BitTorrent.exe [1126488] [PID.3496] =>P2P.BitTorrent
[MD5.E72E98FEB4160E8B40075604EFC723EC] - (.Badoo - Badoo Desktop.) -- C:\ProgramData\Badoo\Badoo desktop\1.6.58.1220\Badoo.desktop.exe [1067232] [PID.3504]
[MD5.B7995C675014EEBE77A0BEB7AFCCFC08] - (.CyberLink Corp. - PowerDVD RC Service.) -- C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [91432] [PID.4012]
[MD5.D658AB1B55127D18DCFBCAC8CAAEA522] - (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe [49208] [PID.1592]
[MD5.6198A9BC15ED77F318D5DDD1918CF1D1] - (.Hewlett-Packard Development Company, L.P. - HP Message Service.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [581024] [PID.888]
[MD5.FB1A303207C1124C2B61A50E5A32AC21] - (.Pas de propriétaire - DivX Update.) -- C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1861968] [PID.3040]
[MD5.A78AAB0D2D70EF7DD56B7328AC502059] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe [3767096] [PID.3600]
[MD5.5B6E8E09BE6401A7E022F52FDFCB2FF8] - (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336] [PID.3840]
[MD5.B2F0B501A7C017F21C4B4417623895BD] - (.Hewlett-Packard - GPCore COM object.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe [367976] [PID.4512]
[MD5.2FB757B35C94B1C1C65BA35E4E7EC0F2] - (.Hewlett-Packard Co. - HP CUE Status Root.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe [174952] [PID.1872]
[MD5.F9DFC08677FC9AC81DD5ACA5EE879E47] - (.Hewlett-Packard Co. - HP CUE Alert Popup Window Objects.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe [565096] [PID.3780]
[MD5.935186665A34CAE2FA881A8A1BE80DF2] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe [20918432] [PID.6932]
[MD5.D5CDEA452982FC61E21EE978AAB134DD] - (.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe [367016] [PID.7000]
[MD5.312707A513F86ED20642F43F8EF4DD14] - (.IncrediMail, Ltd. - IncrediMail Tray Application.) -- C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe [264616] [PID.6376]
[MD5.D9184C5FF3FD526761D518A95ABA74A3] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [275568] [PID.6996]
[MD5.FF409C974A9AD58B82374DEEF6B44CBB] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe [18544] [PID.620]
[MD5.0642800E69522E29B93EF4C6BE00D13E] - (.Adobe Systems, Inc. - Adobe Flash Player 12.0 r0.) -- C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_70.exe [1863560] [PID.3420]
[MD5.66EA3B698F9A7EA2DBF0E4B246B6C958] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [8349696] [PID.4704]
~ Processes Running: Scanned in 00mn 02s



---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\nikita\AppData\Local\Google\Chrome\User Data\Default\Preferences
G1 - GCS: Preference [User Data\Default] None
G0 - GCSP: Preference [User Data\Default][HomePage] http://portail.free.fr
G2 - GCE: Preference [User Data\Default] [ahfgeienlihckogmohjhadlkjgocpleb] Google Store v.0.2 (Activé)
G2 - GCE: Preference [User Data\Default] [eemcgdkfndhakfknompkggombfjjjeno] Bookmark Manager v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [ennkphjdgehloodpbhlhldgbnhmacadg] Settings v.0.2 (Activé)
G2 - GCE: Preference [User Data\Default] [gfdkimpbcpahaombhbimeihdjnejgicl] Feedback v.1.0 (Activé)
G2 - GCE: Preference [User Data\Default] [mfehgcgbbipciphmccgaenjidiccnmng] Cloud Print v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [mgndgikekgjfcpckkfioiadnlibdjbkf] Chrome v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [neajdppkdcdipfabeoofebfddakdcjhd] Google Network Speech v.1.0 (Activé)
G2 - GCE: Preference [User Data\Default] [nikpibnbobmbdbheedjfogjlikpgpnhp] DVDVideoSoft v.1.3.0.0, (Désactivé)
G2 - GCE: Preference [User Data\Default] [nkeimhogjdpnpccoofpliimaahmaaome] Hangout Services v.1.0 (Activé)
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Wallet v.0.0.6.1 (Activé)
~ Google Browser: 12 Scanned in 00mn 00s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\nikita\AppData\Roaming\Mozilla\Firefox\Profiles\lk5npphk.default\prefs.js
M3 - MFPP: Plugins - [nikita] -- C:\Users\nikita\AppData\Roaming\Mozilla\Firefox\Profiles\lk5npphk.default\searchplugins\badoo.xml
M0 - MFSP: prefs.js [nikita - lk5npphk.default] http://portail.free.fr
M2 - MFEP: prefs.js [nikita - lk5npphk.default\{ab91efd4-6975-4081-8552-1b3922ed79e2}] [] HP Detect v1.0.19.2 (..)
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - Office Plugin for Netscape Navigator.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\NPOFF12.DLL
P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 11.0.06.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nppdf32.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF64_12_0_0_70.dll
P2 - FPN: [HKLM] [@divx.com/DivX VOD Helper,version=1.0.0] - (.DivX, LLC. - DivX VOD Helper Plug-in.) -- C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.20913.0.) -- c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll
P2 - FPN: [HKCU] [@Skype Limited.com/Facebook Video Calling Plugin] - (.Skype Limited - Facebook Video Calling Plugin.) -- C:\Users\nikita\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll
P2 - FPN: [HKCU] [@unity3d.com/UnityPlayer,version=1.0] - (.Unity Technologies ApS - Unity Player 4.2.2f1.) -- C:\Users\nikita\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
~ Firefox Browser: 12 Scanned in 00mn 00s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.uk.msn.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.uk.msn.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = http://www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (11.00.9600.16412 (winblue_gdr.130925-1958)) -- C:\Windows\SysWOW64\ieframe.dll
~ IE Browser: 21 Scanned in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s



---\\ Hosts file redirection (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File: Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 21



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security [64Bits] - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - IE Webrep plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: HP Network Check Helper [64Bits] - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} . (.Hewlett-Packard - HP Network Check IE Plug-in.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O2 - BHO: (no name) [64Bits] - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} Clé orpheline
~ BHO: 7 Scanned in 00mn 00s



---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: avast! Online Security - [HKLM]{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} . (.AVAST Software - IE Webrep plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
~ Toolbar: Scanned in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - GS\Desktop [Public]: Adobe Digital Editions 2.0.lnk . (.Adobe Systems Incorporated - Adobe Digital Editions 2.0.) -- C:\Program Files (x86)\Adobe\Adobe Digital Editions 2.0\DigitalEditions.exe
O4 - GS\Desktop [Public]: avast! Free Antivirus.lnk . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
O4 - GS\Desktop [Public]: calibre - E-book management.lnk . (...) -- C:\Program Files (x86)\Calibre2\calibre.exe
O4 - GS\Desktop [Public]: CCleaner.lnk . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>Piriform Ltd
O4 - GS\Desktop [Public]: DVDVideoSoft Free Studio.lnk . (.DvdVideoSoft Ltd. - FreeStudioManager.) -- C:\Program Files (x86)\Common Files\DVDVideoSoft\FreeStudioManager.exe
O4 - GS\Desktop [Public]: Free YouTube to MP3 Converter.lnk . (.DVDVideoSoft Ltd. - FreeYouTubeToMP3Converter.) -- C:\Program Files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\FreeYouTubeToMP3Converter.exe
O4 - GS\Desktop [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - GS\Desktop [Public]: IncrediMail.lnk . (.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe
O4 - GS\Desktop [Public]: Malwarebytes Anti-Malware.lnk . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
O4 - GS\Desktop [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O4 - GS\Program [Public]: Adobe Reader XI.lnk . (...) -- C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-AB0000000001}\SC_Reader.ico
O4 - GS\Program [Public]: Apple Software Update.lnk . (...) -- C:\Windows\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\AppleSoftwareUpdateIco.exe =>.Apple Inc
O4 - GS\Program [Public]: Camera.lnk . (.Microsoft Corporation - Camera.) -- C:\WINDOWS\Camera\Camera.exe
O4 - GS\Program [Public]: Connected Music powered by Meridian.lnk . (.Meridian Audio Ltd - HP Connected Music.) -- C:\Program Files (x86)\HPConnectedMusic\HPConnectedMusic.exe
O4 - GS\Program [Public]: Connected Music powered by Universal Music Group.lnk . (...) -- C:\Program Files (x86)\Connected Music powered by Universal Music Group\Connected Music powered by Universal Music Group.exe
O4 - GS\Program [Public]: Desktop.lnk - Clé orpheline
O4 - GS\Program [Public]: FileManager.lnk . (.Microsoft Corporation - SkyDrive.) -- C:\WINDOWS\FileManager\FileManager.exe
O4 - GS\Program [Public]: IncrediMail.lnk . (.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe
O4 - GS\Program [Public]: Microsoft Office.lnk . (...) -- C:\windows\Installer\{95140000-0070-0000-0000-0000000FF1CE}\oobeicon.exe
O4 - GS\Program [Public]: Movie Maker.lnk . (.Microsoft Corporation - Movie Maker.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\MovieMaker.exe =>.Microsoft Corporation
O4 - GS\Program [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O4 - GS\Program [Public]: Photo Gallery.lnk . (.Microsoft Corporation - Photo Gallery.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe =>.Microsoft Corporation
O4 - GS\Program [Public]: PhotosApp.lnk . (.Microsoft Corporation - Photos.) -- C:\WINDOWS\FileManager\PhotosApp.exe
O4 - GS\Program [Public]: Windows Live Mail.lnk . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files (x86)\Windows Live\Mail\wlmail.exe =>.Microsoft Corporation
O4 - GS\Program [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O4 - GS\Program [Public]: Windows Store.lnk . (...) -- C:\WINDOWS\WinStore\WinStore.htm
O4 - GS\Accessories [Public]: Calculator.lnk . (.Microsoft Corporation - Calculatrice de Windows.) -- C:\WINDOWS\system32\calc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Math Input Panel.lnk . (...) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\mip.exe (.not file.)
O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.) -- C:\WINDOWS\system32\mspaint.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Connexion Bureau à distance.) -- C:\WINDOWS\system32\mstsc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - Outil Capture d’écran.) -- C:\WINDOWS\system32\SnippingTool.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sound Recorder.lnk . (.Microsoft Corporation - Magnétophone Windows.) -- C:\WINDOWS\system32\SoundRecorder.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Steps Recorder.lnk . (.Microsoft Corporation - Enregistreur d’actions.) -- C:\WINDOWS\system32\psr.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sticky Notes.lnk . (.Microsoft Corporation - Pense-bête.) -- C:\WINDOWS\system32\StikyNot.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Fax and Scan.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) -- C:\WINDOWS\system32\WFS.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Application Windows Wordpad.) -- C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: XPS Viewer.lnk . (.Microsoft Corporation - Visionneuse XPS.) -- C:\WINDOWS\system32\xpsrchvw.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Table des caractères.) -- C:\WINDOWS\system32\charmap.exe =>.Microsoft Corporation
O4 - GS\QuickLaunch [nikita]: Badoo.Desktop.lnk . (.Badoo - Badoo Desktop.) -- C:\ProgramData\Badoo\Badoo desktop\1.6.58.1220\Badoo.desktop.exe
O4 - GS\QuickLaunch [nikita]: BitTorrent.lnk . (.BitTorrent Inc. - BitTorrent.) -- C:\Users\nikita\AppData\Roaming\BitTorrent\BitTorrent.exe =>P2P.BitTorrent
O4 - GS\QuickLaunch [nikita]: BookSmart.lnk . (.Blurb, Inc - BookSmart® 3.4.3 3.4.3 34780.) -- C:\Program Files (x86)\BookSmart\BookSmart.exe
O4 - GS\QuickLaunch [nikita]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - GS\QuickLaunch [nikita]: IncrediMail 2.0.lnk . (.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe
O4 - GS\QuickLaunch [nikita]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\QuickLaunch [nikita]: Microsoft Office Outlook.lnk . (.Microsoft Corporation - Microsoft Office Outlook.) -- C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.exe =>.Microsoft Corporation
O4 - GS\TaskBar [nikita]: Calculator.lnk . (.Microsoft Corporation - Calculatrice de Windows.) -- C:\WINDOWS\system32\calc.exe =>.Microsoft Corporation
O4 - GS\TaskBar [nikita]: Centre de solutions HP.lnk . (.Hewlett-Packard Company - hpqdirec.exe.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\Hpqdirec.exe
O4 - GS\TaskBar [nikita]: CyberLink Power2Go.lnk . (.CyberLink Corp. - Power2Go.) -- C:\Program Files (x86)\CyberLink\Power2Go8\Power2Go8.exe
O4 - GS\TaskBar [nikita]: File Explorer.lnk - Clé orpheline
O4 - GS\TaskBar [nikita]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - GS\TaskBar [nikita]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O4 - GS\TaskBar [nikita]: Picasa 3.lnk . (.Google Inc. - Picasa.) -- C:\Program Files (x86)\Google\Picasa3\Picasa3.exe
O4 - GS\Program [nikita]: Badoo Desktop.lnk . (.Badoo - Badoo Desktop.) -- C:\ProgramData\Badoo\Badoo desktop\1.6.58.1220\Badoo.desktop.exe
O4 - GS\Program [nikita]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\Accessories [nikita]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) -- C:\WINDOWS\system32\notepad.exe =>.Microsoft Corporation
O4 - GS\SendTo [nikita]: Format Factory.lnk . (.Free Time - FormatFactory.) -- C:\Program Files (x86)\FreeTime\FormatFactory\FormatFactory.exe
O4 - GS\SendTo [nikita]: Skype.lnk . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O4 - GS\Desktop [nikita]: BitTorrent.lnk . (.BitTorrent Inc. - BitTorrent.) -- C:\Users\nikita\AppData\Roaming\BitTorrent\BitTorrent.exe =>P2P.BitTorrent
O4 - GS\Desktop [nikita]: Microsoft Office Excel 2007.lnk . (...) -- C:\Windows\Installer\{90120000-0011-0000-0000-0000000FF1CE}\xlicons.exe
O4 - GS\Desktop [nikita]: Microsoft Office Word 2007.lnk . (...) -- C:\Windows\Installer\{90120000-0011-0000-0000-0000000FF1CE}\wordicon.exe
O4 - GS\Desktop [nikita]: scrabbleproB.lnk . (...) -- C:\Program Files (x86)\scrabbleproB1.1\scrabblepro.exe
O4 - GS\Desktop [nikita]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag Setup.) -- C:\Program Files (x86)\ZHPDiag\ZHPhep.exe =>.Nicolas Coolman
O4 - GS\Desktop [nikita]: ZHPFix.lnk . (.Nicolas Coolman - ZHPDiag Setup.) -- C:\Program Files (x86)\ZHPDiag\ZHPFix\ZHPhep.exe =>.Nicolas Coolman
~ Global Startup: 64 Scanned in 00mn 03s



---\\ Applications lancées au démarrage du sytème (O4)
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\RunOnce: [NCPluginUpdater] . (.Hewlett-Packard - NCPluginUpdater.) -- c:\program files (x86)\hewlett-packard\hp health check\activecheck\product_line\NCPluginUpdater.exe
O4 - HKCU\..\Run: [BitTorrent] . (.BitTorrent Inc. - BitTorrent.) -- C:\Users\nikita\AppData\Roaming\BitTorrent\BitTorrent.exe =>P2P.BitTorrent
O4 - HKCU\..\Run: [Badoo Desktop] . (.Badoo - Badoo Desktop.) -- C:\ProgramData\Badoo\Badoo desktop\1.6.58.1220\Badoo.desktop.exe
O4 - HKCU\..\Run: [Google+ Auto Backup] C:\Users\nikita\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe (.not file.)
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O4 - HKLM\..\Wow6432Node\Run: [RemoteControl10] . (.CyberLink Corp. - PowerDVD RC Service.) -- C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
O4 - HKLM\..\Wow6432Node\Run: [DivXMediaServer] . (.DivX, LLC - DivX DLNA Media Server.) -- C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
O4 - HKLM\..\Wow6432Node\Run: [HP Software Update] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe =>.Hewlett-Packard Co
O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe =>.Adobe Systems Incorporated
O4 - HKLM\..\Wow6432Node\Run: [HP Quick Launch] . (.Hewlett-Packard Development Company, L.P. - HP Message Service.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
O4 - HKLM\..\Wow6432Node\Run: [DivXUpdate] . (.Pas de propriétaire - DivX Update.) -- C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
O4 - HKLM\..\Wow6432Node\Run: [AvastUI.exe] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe =>.Oracle Corporation
O4 - HKUS\S-1-5-21-2785223111-1158521573-2117656058-1001\..\Run: [BitTorrent] . (.BitTorrent Inc. - BitTorrent.) -- C:\Users\nikita\AppData\Roaming\BitTorrent\BitTorrent.exe =>P2P.BitTorrent
O4 - HKUS\S-1-5-21-2785223111-1158521573-2117656058-1001\..\Run: [Badoo Desktop] . (.Badoo - Badoo Desktop.) -- C:\ProgramData\Badoo\Badoo desktop\1.6.58.1220\Badoo.desktop.exe
O4 - HKUS\S-1-5-21-2785223111-1158521573-2117656058-1001\..\Run: [Google+ Auto Backup] C:\Users\nikita\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe (.not file.)
O4 - HKUS\S-1-5-21-2785223111-1158521573-2117656058-1001\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
~ Application: Scanned in 00mn 00s



---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ IE Control Panel: 1 Scanned in 00mn 00s



---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll,-102 [64Bits] - {25510184-5A38-4A99-B273-DCA8EEF6CD08} . (...) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\Resources\Icons\HP.ico
O9 - Extra button: Free YouTube Download [64Bits] - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} . (...) -- C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\dvdvideosoft.ico
~ IE Extra Buttons: Scanned in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\WINDOWS\system32\napinsp.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\WINDOWS\system32\pnrpnsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\WINDOWS\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\WINDOWS\system32\NLAapi.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll =>.Microsoft Corporation
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll
~ Winsock: 6 Scanned in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{526B0B46-003E-42FC-8652-FDB992DCBDE3}: DhcpNameServer = 212.27.40.240 212.27.40.241
O17 - HKLM\System\CCS\Services\Tcpip\..\{77D8BFC8-FE31-4C51-BD8A-ABCB9642805F}: DhcpNameServer = 212.27.40.241 212.27.40.240
O17 - HKLM\System\CS1\Services\Tcpip\..\{526B0B46-003E-42FC-8652-FDB992DCBDE3}: DhcpNameServer = 212.27.40.240 212.27.40.241
O17 - HKLM\System\CS1\Services\Tcpip\..\{77D8BFC8-FE31-4C51-BD8A-ABCB9642805F}: DhcpNameServer = 212.27.40.241 212.27.40.240
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 212.27.40.241 212.27.40.240
~ Domain: Scanned in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (...) --
O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.dll =>.Microsoft Corporation
~ Protocole Additionnel: Scanned in 00mn 00s



---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
~ Winlogon: Scanned in 00mn 00s



---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ SSODL: 1 Scanned in 00mn 00s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: avast! Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: avast! Firewall (avast! Firewall) . (.AVAST Software - avast! firewall service.) - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc
O23 - Service: HP Support Assistant Service (HP Support Assistant Service) . (.Hewlett-Packard Company - HP Support Assistant Service.) - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe =>.Hewlett-Packard Co
O23 - Service: Technologie de stockage Intel(R) Rapid (IAStorDataMgrSvc) . (.Intel Corporation - IAStorDataSvc.) - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: IconMan_R (IconMan_R) . (.Realsil Microelectronics Inc. - Realtek Card Reader Patch Tool..) - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
O23 - Service: Intel(R) Capability Licensing Service Interface (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation - Intel(R) Capability Licensing Service Inter.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) ME Service (Intel(R) ME Service) . (.Intel Corporation - Intel(R) ME Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) . (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: (MBAMScheduler) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: Intel(R) Management and Security Application User Notificat (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
~ Services: 16 Scanned in 00mn 20s



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Desktop Component: 4 Scanned in 00mn 00s



---\\ Enumère les données de BootExecute (BEX) (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ BEX: 1 Scanned in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Adobe Flash Player Updater.job [1002]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2785223111-1158521573-2117656058-1001Core.job [930]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2785223111-1158521573-2117656058-1001UA.job [952]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1084]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1088]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\HPCeeScheduleForDOMINIQUE$.job [372]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\HPCeeScheduleFornikita.job [356]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Synaptics TouchPad Enhancements.job [264]
[MD5.F7AB315A4D400CA876381D1E188A2E20] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [257928]
[MD5.F82F374417148CF545221DD88876219F] [APT] [avast! Emergency Update] (.AVAST Software.) -- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [783728]
[MD5.E62ED5A7A2F21C5F377F924A33E12792] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [3643160] =>Piriform Ltd
[MD5.724CB7A116F7E1A67009D751BCF86586] [APT] [CLMLSvc_P2G8] (.CyberLink.) -- C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111120]
[MD5.CF7927AE082B578E38B82AE6D95B5F90] [APT] [CLVDLauncher] (.CyberLink Corp..) -- C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [338544]
[MD5.2A3FB4C98F139038E23330D2439DB8A4] [APT] [FacebookUpdateTaskUserS-1-5-21-2785223111-1158521573-2117656058-1001Core] (.Facebook Inc..) -- C:\Users\nikita\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096]
[MD5.2A3FB4C98F139038E23330D2439DB8A4] [APT] [FacebookUpdateTaskUserS-1-5-21-2785223111-1158521573-2117656058-1001UA] (.Facebook Inc..) -- C:\Users\nikita\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096]
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [136176]
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [136176]
[MD5.AF51D4FE088A3EFA5303B36FFFD0581B] [APT] [HPCeeScheduleForDOMINIQUE$] (.Hewlett-Packard.) -- C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [91704]
[MD5.AF51D4FE088A3EFA5303B36FFFD0581B] [APT] [HPCeeScheduleFornikita] (.Hewlett-Packard.) -- C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [91704]
[MD5.D9184C5FF3FD526761D518A95ABA74A3] [APT] [{297F5249-F865-4156-9D6E-7081E1EE61EB}] (.Mozilla Corporation.) -- c:\program files (x86)\mozilla firefox\firefox.exe [275568]
[MD5.D9184C5FF3FD526761D518A95ABA74A3] [APT] [{33540280-A03D-4FBB-8181-7152F840B9DF}] (.Mozilla Corporation.) -- c:\program files (x86)\mozilla firefox\firefox.exe [275568]
[MD5.D9184C5FF3FD526761D518A95ABA74A3] [APT] [{4B2923F6-126C-4FA4-91BF-100F4191AFA4}] (.Mozilla Corporation.) -- c:\program files (x86)\mozilla firefox\firefox.exe [275568]
[MD5.D9184C5FF3FD526761D518A95ABA74A3] [APT] [{6AC9FB11-EE03-4040-8672-C91C32E10AC9}] (.Mozilla Corporation.) -- c:\program files (x86)\mozilla firefox\firefox.exe [275568]
[MD5.D9184C5FF3FD526761D518A95ABA74A3] [APT] [{73B59ABA-6843-4667-B1F5-F802DCD1BA52}] (.Mozilla Corporation.) -- c:\program files (x86)\mozilla firefox\firefox.exe [275568]
[MD5.D9184C5FF3FD526761D518A95ABA74A3] [APT] [{AE51DAB5-23DC-48F6-9240-17A6158CB55C}] (.Mozilla Corporation.) -- c:\program files (x86)\mozilla firefox\firefox.exe [275568]
[MD5.D9184C5FF3FD526761D518A95ABA74A3] [APT] [{B86FB764-7222-4C9B-8C61-7FD5540681B1}] (.Mozilla Corporation.) -- c:\program files (x86)\mozilla firefox\firefox.exe [275568]
[MD5.D9184C5FF3FD526761D518A95ABA74A3] [APT] [{DA967161-8A95-4801-BD4D-38F64F2A24F3}] (.Mozilla Corporation.) -- c:\program files (x86)\mozilla firefox\firefox.exe [275568]
[MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [561984]
[MD5.D1C8B0DC04347B6B9B5B3B9204DF6756] [APT] [HP CoolSense Start at Logon] (.Hewlett-Packard Development Company, L.P..) -- C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe [1343904]
[MD5.771CA68072E4A68AA930F3E2368E8F93] [APT] [HP SoftPaq Installer] (.Hewlett-Packard Company.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF_Tasks.exe [41272]
[MD5.3E53CC4591B043C8D42FB3D771D55FCE] [APT] [HP Support Assistant Quick Start] (.Hewlett-Packard Company.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [542008]
[MD5.3E53CC4591B043C8D42FB3D771D55FCE] [APT] [PC Health Analysis] (.Hewlett-Packard Company.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [542008]
[MD5.F89A2101EFFAC2406AAE955502DFC4E6] [APT] [Update Check] (.Hewlett-Packard Company.) -- C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [631608]
[MD5.198A2C0C33188D71ECB5C97E77981CB4] [APT] [WarrantyChecker] (.Hewlett-Packard.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1586392]
[MD5.198A2C0C33188D71ECB5C97E77981CB4] [APT] [WarrantyChecker_DeviceScan] (.Hewlett-Packard.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1586392]
~ Scheduled Task: 37 Scanned in 00mn 08s



---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll =>.Microsoft Corporation
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe =>.Microsoft Corporation
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\System32\mscories.dll
~ Active Setup: 9 Scanned in 00mn 00s



---\\ Pilotes lancés au démarrage du système (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: C:\Windows\System32\drivers\ahcache.sys (ahcache) . (.Microsoft Corporation - Application Compatibility Cache.) - C:\Windows\System32\DRIVERS\ahcache.sys
O41 - Driver: (aswKbd) . (. - .) - C:\Windows\system32\drivers\aswKbd.sys (.not file.)
O41 - Driver: oem29.inf (aswNdisFlt) . (.AVAST Software - avast! Filtering NDIS driver.) - C:\Windows\system32\DRIVERS\aswNdisFlt.sys
O41 - Driver: (aswRdr) . (.AVAST Software - avast! WFP Redirect Driver.) - C:\Windows\system32\drivers\aswRdr2.sys
O41 - Driver: (aswSnx) . (.AVAST Software - avast! Virtualization Driver.) - C:\Windows\system32\drivers\aswSnx.sys
O41 - Driver: (aswSP) . (.AVAST Software - avast! self protection module.) - C:\Windows\system32\drivers\aswSP.sys
O41 - Driver: (BasicDisplay) . (.Microsoft Corporation - Microsoft Basic Display Driver.) - C:\Windows\system32\drivers\BasicDisplay.sys
O41 - Driver: (BasicRender) . (.Microsoft Corporation - Microsoft Basic Render Driver.) - C:\Windows\system32\drivers\BasicRender.sys
O41 - Driver: cdrom.inf (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys
O41 - Driver: (CLVirtualDrive) . (.CyberLink - It is a virtual device driver which could c.) - C:\Windows\system32\DRIVERS\CLVirtualDrive.sys
O41 - Driver: C:\Windows\System32\drivers\dam.sys (dam) . (.Microsoft Corporation - DAM Kernel Driver.) - C:\Windows\System32\drivers\dam.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (Dfsc) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: mssmbios.inf (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: netnb.inf (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: npsvctrig.inf (npsvctrig) . (.Microsoft Corporation - Named pipe service triggers.) - C:\Windows\system32\drivers\npsvctrig.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\system32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys
O41 - Driver: C:\Windows\System32\drivers\vwififlt.sys (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\system32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\system32\DRIVERS\wanarp.sys
~ Drivers: 46 Scanned in 00mn 00s



---\\ Logiciels installés (O42)
O42 - Logiciel: 64 Bit HP CIO Components Installer - (.Hewlett-Packard.) [HKLM][64Bits] -- {FF21C3E6-97FD-474F-9518-8DCBE94C2854}
O42 - Logiciel: Adobe Digital Editions 2.0 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Digital Editions 2.0
O42 - Logiciel: Adobe Flash Player 12 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Reader XI (11.0.06) - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AB0000000001}
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM][64Bits] -- {2EF5D87E-B7BD-458F-8428-E4D0B8B4E65C}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE} =>.Apple Inc
O42 - Logiciel: Badoo Desktop - (.Badoo.) [HKLM][64Bits] -- {D0AF8BD9-79A6-45D6-8B71-25281B1300A7}
O42 - Logiciel: BitTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- BitTorrent =>P2P.BitTorrent
O42 - Logiciel: BookSmart® 3.4.3 3.4.3 - (.Blurb, Inc.) [HKLM][64Bits] -- BookSmart® 3.4.3 3.4.3
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner =>Piriform Ltd
O42 - Logiciel: Configuration DivX - (.DivX, LLC.) [HKLM][64Bits] -- DivX Setup
O42 - Logiciel: Connected Music powered by Universal Music Group version 1.0 - (.Snowite.) [HKLM][64Bits] -- {46037DC7-F927-46DF-935F-D6F122BDD34B}_is1
O42 - Logiciel: Converter version 0.1 - (...) [HKLM][64Bits] -- Converter_is1
O42 - Logiciel: CyberLink LabelPrint - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}
O42 - Logiciel: CyberLink LabelPrint - (.CyberLink Corp..) [HKLM][64Bits] -- {C59C179C-668D-49A9-B6EA-0121CCFC1243}
O42 - Logiciel: CyberLink Media Suite 10 - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}
O42 - Logiciel: CyberLink Media Suite 10 - (.CyberLink Corp..) [HKLM][64Bits] -- {1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}
O42 - Logiciel: CyberLink PhotoDirector - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{4862344A-A39C-4897-ACD4-A1BED5163C5A}
O42 - Logiciel: CyberLink PhotoDirector - (.CyberLink Corp..) [HKLM][64Bits] -- {4862344A-A39C-4897-ACD4-A1BED5163C5A}
O42 - Logiciel: CyberLink Power2Go 8 - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}
O42 - Logiciel: CyberLink Power2Go 8 - (.CyberLink Corp..) [HKLM][64Bits] -- {2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}
O42 - Logiciel: CyberLink PowerDVD - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}
O42 - Logiciel: CyberLink PowerDVD - (.CyberLink Corp..) [HKLM][64Bits] -- {DEC235ED-58A4-4517-A278-C41E8DAEAB3B}
O42 - Logiciel: CyberLink PowerDirector 10 - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}
O42 - Logiciel: CyberLink PowerDirector 10 - (.CyberLink Corp..) [HKLM][64Bits] -- {B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}
O42 - Logiciel: CyberLink YouCam - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}
O42 - Logiciel: CyberLink YouCam - (.CyberLink Corp..) [HKLM][64Bits] -- {01FB4998-33C4-4431-85ED-079E3EEFE75D}
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: Energy Star - (.Hewlett-Packard.) [HKLM][64Bits] -- {0FA995CC-C849-4755-B14B-5404CC75DC24}
O42 - Logiciel: Exper PDF Professional Démo - (.Avanquest.) [HKLM][64Bits] -- {03e6a8fc-dc23-4f7e-B7A5-D181A97BA7BC}
O42 - Logiciel: Facebook Video Calling 2.0.0.447 - (.Skype Limited.) [HKLM][64Bits] -- {8DF41A9F-FE13-43E8-A003-5F9B55A011EE}
O42 - Logiciel: FileHippo.com Update Checker - (...) [HKLM][64Bits] -- FileHippo.com
O42 - Logiciel: Flash Video Player Packages - (...) [HKCU][64Bits] -- Flash Video Player Packages
O42 - Logiciel: FormatFactory 3.0.1 - (.Free Time.) [HKLM][64Bits] -- FormatFactory
O42 - Logiciel: Free Studio version 2013 - (.DVDVideoSoft Ltd..) [HKLM][64Bits] -- Free Studio_is1
O42 - Logiciel: Free YouTube to MP3 Converter version 3.12.20.1230 - (.DVDVideoSoft Ltd..) [HKLM][64Bits] -- Free YouTube to MP3 Converter_is1
O42 - Logiciel: Galerie de photos - (.Microsoft Corporation.) [HKLM][64Bits] -- {446CC8CE-0E90-44F7-ADD0-774B243EF090}
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: HP 3D DriveGuard - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {F9E399CB-046F-45FD-A67F-CF399E2128E4}
O42 - Logiciel: HP Connected Music (Meridian - installer) - (.Meridian Audio Ltd.) [HKLM][64Bits] -- StartHPConnectedMusic
O42 - Logiciel: HP CoolSense - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {59F8C5AA-91BD-423D-BF05-09A80F39898F}
O42 - Logiciel: HP Customer Experience Enhancements - (.Hewlett-Packard.) [HKLM][64Bits] -- {07FA4960-B038-49EB-891B-9F95930AA544}
O42 - Logiciel: HP Customer Participation Program 14.0 - (.HP.) [HKLM][64Bits] -- HPExtendedCapabilities
O42 - Logiciel: HP Documentation - (.Hewlett-Packard.) [HKLM][64Bits] -- {1AC082E0-049D-4C5C-9ECF-9473AD5A949D}
O42 - Logiciel: HP Games - (.WildTangent.) [HKLM][64Bits] -- WildTangent hp Master Uninstall
O42 - Logiciel: HP Imaging Device Functions 14.0 - (.HP.) [HKLM][64Bits] -- HP Imaging Device Functions
O42 - Logiciel: HP Photosmart All-In-One Driver Software - (.HP.) [HKLM][64Bits] -- {4F6C1178-3FC0-44BB-8F9A-28D8516DFEE2} =>.Hewlett-Packard Co
O42 - Logiciel: HP Postscript Converter - (.Hewlett-Packard.) [HKLM][64Bits] -- {6E14E6D6-3175-4E1A-B934-CAB5A86367CD}
O42 - Logiciel: HP Quick Launch - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {E5823036-6F09-4D0A-B05C-E2BAA129288A}
O42 - Logiciel: HP Recovery Manager - (.Hewlett-Packard.) [HKLM][64Bits] -- {528AB81B-D65A-4AB0-A2B6-82B51A087D01}
O42 - Logiciel: HP Registration Service - (.Hewlett-Packard.) [HKLM][64Bits] -- {E4D6CCF2-0AAF-4B9C-9DE5-893EDC9B4BAA}
O42 - Logiciel: HP Software Framework - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {98D5A5FA-1AA3-4CBE-B26C-A737E20F8A6D}
O42 - Logiciel: HP Solution Center 14.0 - (.HP.) [HKLM][64Bits] -- HP Solution Center & Imaging Support Tools
O42 - Logiciel: HP Support Assistant - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {E35A3B13-78CD-4967-8AC8-AA9FDA693EDE} =>.Hewlett-Packard Co
O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM][64Bits] -- {B0069CFA-5BB9-4C03-B1C6-89CE290E5AFE}
O42 - Logiciel: HP Utility Center - (.Hewlett-Packard.) [HKLM][64Bits] -- {0C57987A-A03A-4B95-A309-D23F78F406CA}
O42 - Logiciel: HP Wireless Button Driver - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {30B2D1D8-0A07-4B71-9553-0710C5D31E35}
O42 - Logiciel: Hewlett-Packard ACLM.NET v1.2.2.3 - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {6F340107-F9AA-47C6-B54C-C3A19F11553F}
O42 - Logiciel: IDT Audio - (.IDT.) [HKLM][64Bits] -- {E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}
O42 - Logiciel: IncrediMail - (.IncrediMail.) [HKLM][64Bits] -- {2CF22C94-1369-4C04-9A5F-A4BC6D91B508}
O42 - Logiciel: IncrediMail 2.0 - (.IncrediMail Ltd..) [HKLM][64Bits] -- IncrediMail
O42 - Logiciel: Intel(R) Control Center - (.Intel Corporation.) [HKLM][64Bits] -- {F8A9085D-4C7A-41a9-8A77-C8998A96C421}
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A}
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {3E29EE6C-963A-4aae-86C1-DC237C4A49FC}
O42 - Logiciel: Intel(R) SDK for OpenCL - CPU Only Runtime Package - (.Intel Corporation.) [HKLM][64Bits] -- {FCB3772C-B7D0-4933-B1A9-3707EBACC573}
O42 - Logiciel: Intel® Trusted Connect Service Client - (.Intel Corporation.) [HKLM][64Bits] -- {F4404AFD-2EF3-40C1-8C09-29E5F3B6972B}
O42 - Logiciel: Java 7 Update 51 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83217045FF}
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {400C31E4-796F-4E86-8FDC-C3C4FACC6847}
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: MSVCRT110 - (.Microsoft.) [HKLM][64Bits] -- {8E14DDC8-EA60-4E18-B3E3-1937104D5BDA}
O42 - Logiciel: MSVCRT110_amd64 - (.Microsoft.) [HKLM][64Bits] -- {E9FA781F-3E80-4399-825A-AD3E11C28C77}
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9}
O42 - Logiciel: Malwarebytes Anti-Malware version 1.75.0.1300 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: Media Player Codec Pack 4.2.2 - (.Media Player Codec Pack.) [HKLM][64Bits] -- Media Player - Codec Pack
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Microsoft SkyDrive - (.Microsoft Corporation.) [HKCU][64Bits] -- SkyDriveSetup.exe =>.Microsoft Corporation
O42 - Logiciel: Mozilla Firefox 27.0.1 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 27.0.1 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService
O42 - Logiciel: PDFCreator - (.pdfforge.) [HKLM][64Bits] -- {0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}
O42 - Logiciel: Photo Notifier and Animation Creator - (.IncrediMail Ltd..) [HKLM][64Bits] -- Photo Notifier and Animation Creator
O42 - Logiciel: Photo Notifier and Animation Creator - (.Nom de votre société.) [HKLM][64Bits] -- {6B7F28D4-160E-40C6-B7C8-5EC6B9734DA7}
O42 - Logiciel: Picasa 3 - (.Google, Inc..) [HKLM][64Bits] -- Picasa 3
O42 - Logiciel: Ralink RT5390R 802.11bgn Wi-Fi Adapter - (.Mediatek.) [HKLM][64Bits] -- {8FC4F1DD-F7FD-4766-804D-3C8FF1D309AF}
O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}
O42 - Logiciel: Realtek PCIE Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {C1594429-8296-4652-BF54-9DBE4932A44C}
O42 - Logiciel: Shop for HP Supplies - (.HP.) [HKLM][64Bits] -- Shop for HP Supplies
O42 - Logiciel: Skype™ 6.14 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}
O42 - Logiciel: SmartPCFixer 4.2 - (.LionSea Software.) [HKLM][64Bits] -- {2C5927BD-3F65-4207-8FB5-8EDF638A3511}_is1
O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM][64Bits] -- SynTPDeinstKey
O42 - Logiciel: Unity Web Player - (.Unity Technologies ApS.) [HKCU][64Bits] -- UnityWebPlayer
O42 - Logiciel: VC80CRTRedist - 8.0.50727.6195 - (.DivX, Inc.) [HKLM][64Bits] -- {933B4015-4618-4716-A828-5289FC03165F}
O42 - Logiciel: VLC media player 2.0.5 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player =>.VideoLAN
O42 - Logiciel: avast! Free Antivirus v9.0.2013 - (.Avast Software.) [HKLM][64Bits] -- avast
O42 - Logiciel: calibre - (.Kovid Goyal.) [HKLM][64Bits] -- {1BFDD064-4C67-4156-A6C6-6E8D63563B3B}
O42 - Logiciel: scrabbleproB 1.1.3 - (.scrabblepro.) [HKLM][64Bits] -- scrabbleproB_is1
O42 - Logiciel: swMSM - (.Adobe Systems, Inc.) [HKLM][64Bits] -- {612C34C7-5E90-47D8-9B5C-0F717DD82726}
~ Logic: 70 Scanned in 00mn 00s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\AC3Filter]
[HKCU\Software\AVS4YOU]
[HKCU\Software\Adobe]
[HKCU\Software\AlterGeo]
[HKCU\Software\AppDataLow\Software\Adobe]
[HKCU\Software\AppDataLow\Software\DVDVideoSoft]
[HKCU\Software\AppDataLow\Software\JavaSoft]
[HKCU\Software\AppDataLow\Software\Unity]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Apple Inc.]
[HKCU\Software\Applications]
[HKCU\Software\Avast Software]
[HKCU\Software\Badoo]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\CyberLink]
[HKCU\Software\DSP-worx]
[HKCU\Software\DVDVideoSoft]
[HKCU\Software\DivXNetworks]
[HKCU\Software\DivX]
[HKCU\Software\Facebook]
[HKCU\Software\FileHippo.com]
[HKCU\Software\FreeTime]
[HKCU\Software\GNU]
[HKCU\Software\Gabest]
[HKCU\Software\Google]
[HKCU\Software\HP]
[HKCU\Software\Haali]
[HKCU\Software\Hewlett-Packard]
[HKCU\Software\I.R.I.S.]
[HKCU\Software\IM Providers]
[HKCU\Software\IncrediMail]
[HKCU\Software\Intel]
[HKCU\Software\Iris]
[HKCU\Software\JavaSoft]
[HKCU\Software\JollyBear]
[HKCU\Software\Kobo]
[HKCU\Software\LAV]
[HKCU\Software\Lagarith]
[HKCU\Software\Lake]
[HKCU\Software\Licenses]
[HKCU\Software\Local AppWizard-Generated Applications]
[HKCU\Software\MCAFEE]
[HKCU\Software\Macromedia]
[HKCU\Software\Macrovision]
[HKCU\Software\MainConcept]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\Media Player - Codec Pack]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\Netscape]
[HKCU\Software\ODBC]
[HKCU\Software\Oberon Media]
[HKCU\Software\PDF Architect]
[HKCU\Software\PDFCreator]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\RegisteredApplications]
[HKCU\Software\SkypeRS]
[HKCU\Software\Skype]
[HKCU\Software\Software]
[HKCU\Software\Symantec]
[HKCU\Software\Synaptics]
[HKCU\Software\Sysinternals]
[HKCU\Software\TeleCharger]
[HKCU\Software\The Silicon Realms Toolworks]
[HKCU\Software\Trolltech]
[HKCU\Software\TuneUp]
[HKCU\Software\Unity]
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\Windows Live Writer]
[HKCU\Software\Wow6432Node]
[HKCU\Software\ZONER]
[HKCU\Software\ZebHelpProcess Helper]
[HKCU\Software\ej-technologies]
[HKCU\Software\kde.org]
[HKCU\Software\nuevos-programas.com]
[HKLM\Software\AMD]
[HKLM\Software\ATI Technologies]
[HKLM\Software\AVS4YOU]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\CyberLink]
[HKLM\Software\DVDVideoSoft]
[HKLM\Software\DivX]
[HKLM\Software\Dolby]
[HKLM\Software\GEAR Software]
[HKLM\Software\GNU]
[HKLM\Software\Google]
[HKLM\Software\HPQ]
[HKLM\Software\HaaliMkx]
[HKLM\Software\Hewlett-Packard]
[HKLM\Software\IDT]
[HKLM\Software\IM Providers]
[HKLM\Software\InstalledOptions]
[HKLM\Software\Intel]
[HKLM\Software\Khronos]
[HKLM\Software\Macromedia]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\ODBC]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\RTLSetup]
[HKLM\Software\Realtek Semiconductor Corp.]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SmartPCFixer]
[HKLM\Software\Synaptics]
[HKLM\Software\TuneUp]
[HKLM\Software\Wow6432Node\AVAST Software]
[HKLM\Software\Wow6432Node\AVS4YOU]
[HKLM\Software\Wow6432Node\Adobe]
[HKLM\Software\Wow6432Node\AdwCleaner]
[HKLM\Software\Wow6432Node\AppDataLow]
[HKLM\Software\Wow6432Node\Apple Inc.]
[HKLM\Software\Wow6432Node\Avanquest]
[HKLM\Software\Wow6432Node\AviSynth]
[HKLM\Software\Wow6432Node\Big Fish Games]
[HKLM\Software\Wow6432Node\Bunndle]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\CyberLink]
[HKLM\Software\Wow6432Node\DVDVideoSoft]
[HKLM\Software\Wow6432Node\DivXNetworks]
[HKLM\Software\Wow6432Node\DivX]
[HKLM\Software\Wow6432Node\GNU]
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\HaaliMkx]
[HKLM\Software\Wow6432Node\Hewlett-Packard]
[HKLM\Software\Wow6432Node\IDT]
[HKLM\Software\Wow6432Node\IM Providers]
[HKLM\Software\Wow6432Node\Insyde]
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\JavaSoft]
[HKLM\Software\Wow6432Node\JreMetrics]
[HKLM\Software\Wow6432Node\Khronos]
[HKLM\Software\Wow6432Node\Lake]
[HKLM\Software\Wow6432Node\Lavasoft]
[HKLM\Software\Wow6432Node\Licenses]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware (Trial)]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware]
[HKLM\Software\Wow6432Node\McAfee.com]
[HKLM\Software\Wow6432Node\Mediatek]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\PDFCreator]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\Ralink]
[HKLM\Software\Wow6432Node\Realtek Semiconductor Corp.]
[HKLM\Software\Wow6432Node\Realtek]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\Safer Networking Limited]
[HKLM\Software\Wow6432Node\Skype]
[HKLM\Software\Wow6432Node\Symantec]
[HKLM\Software\Wow6432Node\TuneUp]
[HKLM\Software\Wow6432Node\UCAM_Upgrade]
[HKLM\Software\Wow6432Node\VideoLAN]
[HKLM\Software\Wow6432Node\Volatile]
[HKLM\Software\Wow6432Node\WildTangent]
[HKLM\Software\Wow6432Node\calibre]
[HKLM\Software\Wow6432Node\ej-technologies]
[HKLM\Software\Wow6432Node\mcafeeupdater]
[HKLM\Software\Wow6432Node\mozilla.org]
[HKLM\Software\Wow6432Node]
[HKLM\Software\ZONER]
[HKLM\Software\mcafeeupdater]
~ Key Software: 345 Scanned in 00mn 00s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 08/08/2013 - 18:52:35 - [173,695] ----D C:\Program Files (x86)\Ad-Aware Antivirus
O43 - CFD: 15/10/2013 - 22:21:48 - [135,641] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 07/10/2013 - 21:51:10 - [2,316] ----D C:\Program Files (x86)\Apple Software Update =>.Apple Inc
O43 - CFD: 03/01/2014 - 10:22:02 - [3,869] ----D C:\Program Files (x86)\Avanquest
O43 - CFD: 02/02/2013 - 14:58:42 - [0] ----D C:\Program Files (x86)\AVS4YOU
O43 - CFD: 21/05/2013 - 15:17:36 - [179,964] ----D C:\Program Files (x86)\BookSmart
O43 - CFD: 22/03/2013 - 11:13:04 - [0,090] ----D C:\Program Files (x86)\Burn4Free
O43 - CFD: 20/01/2014 - 09:13:02 - [142,764] ----D C:\Program Files (x86)\Calibre2
O43 - CFD: 27/02/2014 - 08:28:56 - [518,098] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 01/09/2012 - 12:15:11 - [2,557] ----D C:\Program Files (x86)\Connected Music powered by Universal Music Group
O43 - CFD: 19/01/2014 - 12:02:19 - [1400,281] ----D C:\Program Files (x86)\CyberLink
O43 - CFD: 15/09/2013 - 08:34:45 - [169,987] ----D C:\Program Files (x86)\DivX
O43 - CFD: 08/01/2014 - 18:49:24 - [268,709] ----D C:\Program Files (x86)\DVDVideoSoft
O43 - CFD: 13/12/2013 - 19:40:16 - [0,421] ----D C:\Program Files (x86)\FileHippo.com
O43 - CFD: 22/03/2013 - 11:12:48 - [0,015] ----D C:\Program Files (x86)\Free PDF to Word Doc Converter
O43 - CFD: 10/02/2013 - 18:51:07 - [135,748] ----D C:\Program Files (x86)\FreeTime
O43 - CFD: 17/10/2013 - 07:11:51 - [587,245] ----D C:\Program Files (x86)\Google
O43 - CFD: 09/02/2014 - 18:04:24 - [353,119] ----D C:\Program Files (x86)\Hewlett-Packard
O43 - CFD: 23/01/2013 - 18:19:01 - [169,790] ----D C:\Program Files (x86)\HP
O43 - CFD: 17/10/2013 - 07:02:05 - [23,283] ----D C:\Program Files (x86)\HP Games
O43 - CFD: 01/09/2012 - 12:15:05 - [0,671] ----D C:\Program Files (x86)\HPConnectedMusic
O43 - CFD: 19/03/2013 - 18:30:27 - [5,509] ----D C:\Program Files (x86)\ImTOO
O43 - CFD: 25/11/2013 - 01:00:51 - [26,257] ----D C:\Program Files (x86)\IncrediMail
O43 - CFD: 09/02/2014 - 18:05:27 - [182,146] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 13/06/2013 - 21:06:55 - [189,998] ----D C:\Program Files (x86)\Intel
O43 - CFD: 14/02/2014 - 23:05:02 - [6,108] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 19/01/2014 - 09:02:30 - [122,991] ----D C:\Program Files (x86)\Java
O43 - CFD: 25/01/2013 - 09:00:32 - [0,604] ----D C:\Program Files (x86)\JCA2000
O43 - CFD: 22/11/2013 - 18:57:31 - [14,870] ----D C:\Program Files (x86)\Kobo
O43 - CFD: 08/08/2013 - 18:51:28 - [0] ----D C:\Program Files (x86)\Lavasoft
O43 - CFD: 07/03/2014 - 21:23:03 - [13,336] ----D C:\Program Files (x86)\Malwarebytes' Anti-Malware
O43 - CFD: 24/01/2013 - 17:07:04 - [0] ----D C:\Program Files (x86)\Microsoft
O43 - CFD: 03/02/2013 - 18:35:25 - [559,235] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 20/10/2013 - 17:21:30 - [81,273] ----D C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 28/02/2013 - 22:56:30 - [5,306] ----D C:\Program Files (x86)\Microsoft SkyDrive =>.Microsoft Corporation
O43 - CFD: 01/09/2012 - 12:11:09 - [1,745] ----D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 03/02/2013 - 18:35:22 - [0,014] ----D C:\Program Files (x86)\Microsoft Visual Studio
O43 - CFD: 03/02/2013 - 18:31:55 - [1,323] ----D C:\Program Files (x86)\Microsoft Visual Studio 8
O43 - CFD: 05/02/2013 - 08:50:06 - [3,554] ----D C:\Program Files (x86)\Microsoft Works
O43 - CFD: 26/11/2013 - 10:05:46 - [7,797] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 15/02/2014 - 10:12:48 - [52,257] ----D C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 17/02/2014 - 20:16:48 - [0,216] ----D C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 26/11/2013 - 10:10:13 - [0,025] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 26/10/2013 - 19:56:12 - [149,942] ----D C:\Program Files (x86)\Oberon Media SIDR
O43 - CFD: 18/01/2013 - 17:16:06 - [1,567] R---D C:\Program Files (x86)\Online Services
O43 - CFD: 25/10/2013 - 08:24:53 - [0] ----D C:\Program Files (x86)\OpenOffice.org 3
O43 - CFD: 02/02/2014 - 12:30:32 - [24,872] ----D C:\Program Files (x86)\PDFCreator
O43 - CFD: 21/03/2013 - 17:03:20 - [0,021] ----D C:\Program Files (x86)\PDFReader
O43 - CFD: 22/11/2013 - 14:44:22 - [2,630] ----D C:\Program Files (x86)\Photo Notifier and Animation Creator
O43 - CFD: 21/11/2012 - 16:49:02 - [30,560] ----D C:\Program Files (x86)\Realtek
O43 - CFD: 26/11/2013 - 09:35:45 - [36,661] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 20/01/2013 - 18:35:34 - [3,200] ----D C:\Program Files (x86)\scrabbleproB1.1
O43 - CFD: 27/02/2014 - 08:28:57 - [23,256] R---D C:\Program Files (x86)\Skype
O43 - CFD: 19/03/2013 - 07:50:29 - [1,077] ----D C:\Program Files (x86)\Smart Projects
O43 - CFD: 27/01/2013 - 11:41:27 - [4,370] ----D C:\Program Files (x86)\Spybot - Search & Destroy
O43 - CFD: 21/11/2012 - 17:19:00 - [2,444] ----D C:\Program Files (x86)\SymSilent
O43 - CFD: 12/12/2013 - 15:16:28 - [0] ----D C:\Program Files (x86)\Tweaking.com
O43 - CFD: 11/09/2013 - 06:51:17 - [0,975] ----D C:\Program Files (x86)\uTorrent =>P2P.µTorrent
O43 - CFD: 27/02/2013 - 14:40:16 - [0,671] ----D C:\Program Files (x86)\VIA
O43 - CFD: 19/01/2013 - 09:11:09 - [94,419] ----D C:\Program Files (x86)\VideoLAN
O43 - CFD: 30/09/2013 - 05:18:05 - [1,011] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 16/07/2013 - 07:40:06 - [124,732] ----D C:\Program Files (x86)\Windows Live
O43 - CFD: 30/09/2013 - 04:56:46 - [5,449] ----D C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation
O43 - CFD: 26/11/2013 - 10:05:51 - [3,148] ----D C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 22/08/2013 - 16:36:33 - [0,211] ----D C:\Program Files (x86)\Windows Multimedia Platform
O43 - CFD: 22/08/2013 - 16:36:30 - [7,175] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 30/09/2013 - 04:56:46 - [5,118] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 22/08/2013 - 16:36:33 - [0,211] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 26/11/2013 - 10:05:51 - [0,334] -SH-D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 22/08/2013 - 16:36:30 - [0] ----D C:\Program Files (x86)\WindowsPowerShell
O43 - CFD: 08/03/2014 - 18:58:53 - [17,268] ----D C:\Program Files (x86)\ZHPDiag =>.Nicolas Coolman
O43 - CFD: 09/12/2013 - 10:55:33 - [0] ----D C:\Program Files (x86)\Zylom Games
O43 - CFD: 25/01/2013 - 16:57:37 - [6,301] ----D C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 07/12/2013 - 08:12:48 - [16,721] ----D C:\Program Files (x86)\Common Files\Apple
O43 - CFD: 02/02/2013 - 14:58:45 - [0] ----D C:\Program Files (x86)\Common Files\AVSMedia
O43 - CFD: 25/05/2013 - 15:04:20 - [0,091] ----D C:\Program Files (x86)\Common Files\CyberLink
O43 - CFD: 03/02/2013 - 18:35:21 - [0,089] ----D C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 15/09/2013 - 08:33:56 - [36,259] ----D C:\Program Files (x86)\Common Files\DivX Shared
O43 - CFD: 08/01/2014 - 18:49:18 - [160,678] ----D C:\Program Files (x86)\Common Files\DVDVideoSoft
O43 - CFD: 23/01/2013 - 18:16:15 - [2,453] ----D C:\Program Files (x86)\Common Files\Hewlett-Packard
O43 - CFD: 23/01/2013 - 18:16:18 - [1,348] ----D C:\Program Files (x86)\Common Files\HP
O43 - CFD: 27/02/2013 - 14:40:09 - [0] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 13/06/2013 - 21:15:37 - [0,170] ----D C:\Program Files (x86)\Common Files\Intel Corporation
O43 - CFD: 29/12/2013 - 16:04:14 - [1,191] ----D C:\Program Files (x86)\Common Files\Java
O43 - CFD: 26/11/2013 - 10:05:43 - [247,880] ----D C:\Program Files (x86)\Common Files\Microsoft Shared
O43 - CFD: 01/09/2012 - 12:03:34 - [1,416] ----D C:\Program Files (x86)\Common Files\Nikon
O43 - CFD: 30/12/2013 - 12:25:47 - [0] ----D C:\Program Files (x86)\Common Files\PDF Architect
O43 - CFD: 21/11/2012 - 16:45:12 - [0,185] ----D C:\Program Files (x86)\Common Files\postureAgent
O43 - CFD: 22/08/2013 - 16:36:33 - [0,003] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 27/02/2014 - 08:28:56 - [1,904] ----D C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 22/01/2013 - 07:57:38 - [0] ----D C:\Program Files (x86)\Common Files\Symantec Shared
O43 - CFD: 26/11/2013 - 10:05:44 - [41,411] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 01/09/2012 - 12:09:59 - [0] ----D C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 17/10/2013 - 06:58:49 - [0,007] ----D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
O43 - CFD: 08/08/2013 - 13:37:03 - [0,005] ----D C:\ProgramData\Ad-Aware Antivirus
O43 - CFD: 24/04/2013 - 17:43:52 - [145,736] ----D C:\ProgramData\Adobe
O43 - CFD: 07/10/2013 - 21:50:41 - [13,806] ----D C:\ProgramData\Apple
O43 - CFD: 07/10/2013 - 21:51:27 - [0] ----D C:\ProgramData\Apple Computer
O43 - CFD: 22/08/2013 - 15:45:52 - [0] -SH-D C:\ProgramData\Application Data
O43 - CFD: 03/01/2014 - 10:22:02 - [0] ----D C:\ProgramData\Avanquest
O43 - CFD: 19/11/2013 - 08:32:02 - [56,872] ----D C:\ProgramData\AVAST Software
O43 - CFD: 24/03/2013 - 06:48:28 - [0,011] ----D C:\ProgramData\AVG2013
O43 - CFD: 02/02/2013 - 14:41:09 - [0] ----D C:\ProgramData\AVS4YOU
O43 - CFD: 30/12/2013 - 10:20:12 - [1,829] ----D C:\ProgramData\Badoo
O43 - CFD: 22/11/2013 - 18:54:00 - [30,845] ----D C:\ProgramData\Big Fish
O43 - CFD: 18/01/2013 - 17:06:43 - [0] -SH-D C:\ProgramData\Bureau
O43 - CFD: 08/01/2014 - 18:49:35 - [0] --H-D C:\ProgramData\Common Files
O43 - CFD: 07/10/2013 - 11:04:18 - [20,312] ----D C:\ProgramData\CyberLink
O43 - CFD: 22/08/2013 - 15:45:52 - [0] -SH-D C:\ProgramData\Desktop
O43 - CFD: 15/09/2013 - 08:34:53 - [7,357] ----D C:\ProgramData\DivX
O43 - CFD: 22/08/2013 - 15:45:52 - [0] -SH-D C:\ProgramData\Documents
O43 - CFD: 08/08/2013 - 13:30:20 - [19,106] ----D C:\ProgramData\Downloaded Installations
O43 - CFD: 05/02/2013 - 12:32:19 - [0,001] ----D C:\ProgramData\DriverGenius
O43 - CFD: 15/02/2014 - 11:48:44 - [174,120] ----D C:\ProgramData\Hewlett-Packard
O43 - CFD: 13/10/2013 - 14:27:29 - [27,555] ----D C:\ProgramData\HP
O43 - CFD: 23/01/2013 - 18:18:10 - [0,009] ----D C:\ProgramData\HP Product Assistant
O43 - CFD: 02/07/2013 - 13:12:18 - [0] ----D C:\ProgramData\HPSSUPPLY
O43 - CFD: 16/06/2013 - 19:20:15 - [0] ----D C:\ProgramData\IM
O43 - CFD: 19/03/2013 - 18:30:27 - [0] ----D C:\ProgramData\ImTOO
O43 - CFD: 16/06/2013 - 19:19:36 - [6,572] ----D C:\ProgramData\IncrediMail
O43 - CFD: 21/11/2012 - 17:04:21 - [0,376] ----D C:\ProgramData\install_clap
O43 - CFD: 13/06/2013 - 21:13:49 - [0,178] ----D C:\ProgramData\Intel
O43 - CFD: 24/10/2013 - 20:12:13 - [0,001] ----D C:\ProgramData\JollyBear
O43 - CFD: 08/08/2013 - 13:30:43 - [0,561] ----D C:\ProgramData\Lavasoft
O43 - CFD: 24/03/2013 - 07:07:00 - [0,007] ----D C:\ProgramData\Logs
O43 - CFD: 30/01/2013 - 14:28:37 - [7,584] ----D C:\ProgramData\Malwarebytes
O43 - CFD: 01/12/2013 - 11:58:08 - [0,068] ----D C:\ProgramData\McAfee
O43 - CFD: 18/01/2013 - 17:06:43 - [0] -SH-D C:\ProgramData\Menu Démarrer
O43 - CFD: 24/03/2013 - 06:48:43 - [26,509] ----D C:\ProgramData\MFAData
O43 - CFD: 26/11/2013 - 10:06:01 - [-2026,882] -S--D C:\ProgramData\Microsoft
O43 - CFD: 06/02/2014 - 12:32:04 - [0,062] ----D C:\ProgramData\Microsoft Help
O43 - CFD: 28/02/2013 - 22:56:11 - [0] ----D C:\ProgramData\Microsoft SkyDrive =>.Microsoft Corporation
O43 - CFD: 18/01/2013 - 17:06:43 - [0] -SH-D C:\ProgramData\Modèles
O43 - CFD: 18/01/2013 - 18:57:20 - [0,020] ----D C:\ProgramData\Mozilla
O43 - CFD: 22/01/2013 - 07:59:29 - [0,016] ----D C:\ProgramData\Norton
O43 - CFD: 21/11/2012 - 17:16:53 - [12,984] ----D C:\ProgramData\NortonInstaller
O43 - CFD: 26/10/2013 - 16:41:56 - [128,989] ----D C:\ProgramData\Oberon Media
O43 - CFD: 19/01/2014 - 09:02:46 - [0] ----D C:\ProgramData\Oracle
O43 - CFD: 22/11/2013 - 14:44:22 - [1,222] ----D C:\ProgramData\Photo Notifier and Animation Creator
O43 - CFD: 26/11/2013 - 10:06:02 - [0,038] ----D C:\ProgramData\PRICache
O43 - CFD: 21/11/2012 - 16:50:26 - [8,208] ----D C:\ProgramData\Ralink Driver
O43 - CFD: 30/09/2013 - 05:00:03 - [0,001] ----D C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 27/02/2014 - 08:29:08 - [58,286] ----D C:\ProgramData\Skype
O43 - CFD: 22/08/2013 - 15:45:52 - [0] -SH-D C:\ProgramData\Start Menu
O43 - CFD: 29/12/2013 - 16:04:17 - [0] ----D C:\ProgramData\Sun
O43 - CFD: 21/11/2012 - 16:53:55 - [0,179] ----D C:\ProgramData\Synaptics
O43 - CFD: 30/12/2013 - 12:23:54 - [3,315] ---AD C:\ProgramData\Temp
O43 - CFD: 22/08/2013 - 15:45:52 - [0] -SH-D C:\ProgramData\Templates
O43 - CFD: 08/01/2014 - 18:49:44 - [0,429] ----D C:\ProgramData\TuneUp Software
O43 - CFD: 23/01/2013 - 18:58:22 - [0] ----D C:\ProgramData\WEBREG
O43 - CFD: 17/10/2013 - 06:59:48 - [0,793] ----D C:\ProgramData\WildTangent
O43 - CFD: 18/03/2013 - 11:01:52 - [0] ----D C:\ProgramData\WinZip
O43 - CFD: 23/09/2013 - 15:30:05 - [0,010] ----D C:\ProgramData\Zoner
O43 - CFD: 21/10/2013 - 17:10:24 - [0] ----D C:\ProgramData\Zylom
O43 - CFD: 09/02/2014 - 18:02:53 - [43,420] ----D C:\ProgramData\{18165758-115C-4DC0-9EC2-FF89F725767F}
O43 - CFD: 08/01/2014 - 18:49:35 - [27,641] -SH-D C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
O43 - CFD: 08/08/2013 - 18:52:12 - [0,014] ----D C:\Users\nikita\AppData\Roaming\Ad-Aware Antivirus
O43 - CFD: 07/11/2013 - 15:24:04 - [7,546] ----D C:\Users\nikita\AppData\Roaming\Adobe
O43 - CFD: 07/10/2013 - 21:53:23 - [0,205] ----D C:\Users\nikita\AppData\Roaming\Apple Computer
O43 - CFD: 19/11/2013 - 08:41:26 - [0] ----D C:\Users\nikita\AppData\Roaming\AVAST Software
O43 - CFD: 10/02/2013 - 18:20:14 - [0,023] ----D C:\Users\nikita\AppData\Roaming\avidemux
O43 - CFD: 02/02/2013 - 14:41:11 - [0] ----D C:\Users\nikita\AppData\Roaming\AVS4YOU
O43 - CFD: 08/03/2014 - 18:59:45 - [8,863] ----D C:\Users\nikita\AppData\Roaming\BitTorrent =>P2P.BitTorrent
O43 - CFD: 20/01/2014 - 09:22:01 - [0,516] ----D C:\Users\nikita\AppData\Roaming\calibre
O43 - CFD: 23/10/2013 - 16:07:56 - [0,442] ----D C:\Users\nikita\AppData\Roaming\cerasus.media
O43 - CFD: 26/05/2013 - 07:13:23 - [0,650] ----D C:\Users\nikita\AppData\Roaming\CyberLink
O43 - CFD: 24/03/2013 - 07:13:20 - [0,150] ----D C:\Users\nikita\AppData\Roaming\DivX
O43 - CFD: 03/11/2013 - 23:08:40 - [0,001] ----D C:\Users\nikita\AppData\Roaming\dvdcss
O43 - CFD: 08/01/2014 - 18:48:48 - [45,058] ----D C:\Users\nikita\AppData\Roaming\DVDVideoSoft
O43 - CFD: 27/04/2013 - 17:51:34 - [0,011] ----D C:\Users\nikita\AppData\Roaming\Hewlett-Packard
O43 - CFD: 26/10/2013 - 17:08:47 - [0,035] ----D C:\Users\nikita\AppData\Roaming\Hidden Objects Expert
O43 - CFD: 23/01/2013 - 19:30:34 - [0,124] ----D C:\Users\nikita\AppData\Roaming\HP
O43 - CFD: 22/01/2013 - 07:39:05 - [0,564] ----D C:\Users\nikita\AppData\Roaming\hpqlog
O43 - CFD: 07/06/2013 - 20:49:42 - [0,022] ----D C:\Users\nikita\AppData\Roaming\HpUpdate
O43 - CFD: 21/01/2013 - 09:59:02 - [0] ----D C:\Users\nikita\AppData\Roaming\Identities
O43 - CFD: 27/02/2013 - 19:47:11 - [0,005] ----D C:\Users\nikita\AppData\Roaming\IDT
O43 - CFD: 19/03/2013 - 18:31:21 - [0] ----D C:\Users\nikita\AppData\Roaming\ImTOO
O43 - CFD: 01/03/2014 - 12:29:33 - [0] ----D C:\Users\nikita\AppData\Roaming\InstallShield
O43 - CFD: 16/10/2013 - 22:10:15 - [0,001] ----D C:\Users\nikita\AppData\Roaming\LavasoftStatistics
O43 - CFD: 25/03/2013 - 14:02:30 - [15,209] ----D C:\Users\nikita\AppData\Roaming\LibreOffice
O43 - CFD: 18/01/2013 - 18:44:41 - [0,031] ----D C:\Users\nikita\AppData\Roaming\Macromedia
O43 - CFD: 28/10/2013 - 14:07:05 - [0,016] ----D C:\Users\nikita\AppData\Roaming\MagicIndie
O43 - CFD: 30/01/2013 - 14:28:53 - [139,014] ----D C:\Users\nikita\AppData\Roaming\Malwarebytes
O43 - CFD: 29/01/2014 - 11:54:54 - [6,236] -S--D C:\Users\nikita\AppData\Roaming\Microsoft
O43 - CFD: 28/10/2013 - 14:23:40 - [3,583] ----D C:\Users\nikita\AppData\Roaming\MoonriseInteractive
O43 - CFD: 19/01/2013 - 09:15:11 - [117,364] ----D C:\Users\nikita\AppData\Roaming\Mozilla
O43 - CFD: 26/10/2013 - 16:42:13 - [0] ----D C:\Users\nikita\AppData\Roaming\Oberon Media
O43 - CFD: 23/01/2013 - 10:07:18 - [12,430] ----D C:\Users\nikita\AppData\Roaming\OpenOffice.org
O43 - CFD: 23/10/2013 - 15:48:22 - [0,002] ----D C:\Users\nikita\AppData\Roaming\Orneon
O43 - CFD: 30/12/2013 - 12:25:45 - [0,002] ----D C:\Users\nikita\AppData\Roaming\PDF Architect
O43 - CFD: 27/10/2013 - 20:42:38 - [0,008] ----D C:\Users\nikita\AppData\Roaming\RobinsonCrusoeBFGFR
O43 - CFD: 08/03/2014 - 18:55:06 - [28,992] ----D C:\Users\nikita\AppData\Roaming\Skype
O43 - CFD: 21/03/2013 - 17:04:51 - [0,001] ----D C:\Users\nikita\AppData\Roaming\SumatraPDF
O43 - CFD: 18/01/2013 - 17:14:40 - [0] ----D C:\Users\nikita\AppData\Roaming\Synaptics
O43 - CFD: 17/10/2013 - 08:56:46 - [13,764] ----D C:\Users\nikita\AppData\Roaming\Thunderbird =>.Mozilla Corporation
O43 - CFD: 30/01/2013 - 22:02:00 - [0] ----D C:\Users\nikita\AppData\Roaming\TP
O43 - CFD: 08/01/2014 - 18:51:05 - [0,004] ----D C:\Users\nikita\AppData\Roaming\TuneUp Software
O43 - CFD: 29/10/2013 - 11:08:04 - [0] ----D C:\Users\nikita\AppData\Roaming\Unity
O43 - CFD: 29/12/2013 - 12:01:44 - [0] ----D C:\Users\nikita\AppData\Roaming\uTorrent =>P2P.µTorrent
O43 - CFD: 07/03/2014 - 11:32:56 - [1,635] ----D C:\Users\nikita\AppData\Roaming\vlc
O43 - CFD: 28/01/2013 - 11:37:59 - [0] ----D C:\Users\nikita\AppData\Roaming\WebApp
O43 - CFD: 17/10/2013 - 06:59:48 - [0,001] ----D C:\Users\nikita\AppData\Roaming\WildTangent
O43 - CFD: 29/05/2013 - 11:46:46 - [0] ----D C:\Users\nikita\AppData\Roaming\Windows Live Writer
O43 - CFD: 08/03/2014 - 19:00:21 - [0,357] ----D C:\Users\nikita\AppData\Roaming\ZHP =>.Nicolas Coolman
O43 - CFD: 23/09/2013 - 15:38:23 - [0] ----D C:\Users\nikita\AppData\Roaming\Zoner
O43 - CFD: 18/10/2013 - 08:05:05 - [11,191] ----D C:\Users\nikita\AppData\Local\adawarebp
O43 - CFD: 31/01/2014 - 13:10:00 - [17,726] ----D C:\Users\nikita\AppData\Local\Adobe
O43 - CFD: 08/10/2013 - 07:32:11 - [0,002] ----D C:\Users\nikita\AppData\Local\Adobe_Systems_Incorporate
O43 - CFD: 07/10/2013 - 21:51:14 - [0] ----D C:\Users\nikita\AppData\Local\Apple
O43 - CFD: 07/10/2013 - 21:52:34 - [7,101] ----D C:\Users\nikita\AppData\Local\Apple Computer
O43 - CFD: 26/11/2013 - 10:01:12 - [0] -SH-D C:\Users\nikita\AppData\Local\Application Data
O43 - CFD: 23/09/2013 - 15:32:54 - [0,102] ----D C:\Users\nikita\AppData\Local\avgchrome
O43 - CFD: 23/10/2013 - 15:09:50 - [0,020] ----D C:\Users\nikita\AppData\Local\Big Fish
O43 - CFD: 09/12/2013 - 10:42:48 - [6,669] ----D C:\Users\nikita\AppData\Local\cache
O43 - CFD: 04/02/2014 - 12:46:12 - [0,543] ----D C:\Users\nikita\AppData\Local\calibre-cache
O43 - CFD: 11/12/2013 - 09:24:12 - [0] ----D C:\Users\nikita\AppData\Local\CrashDumps
O43 - CFD: 11/08/2013 - 08:30:51 - [0,007] ----D C:\Users\nikita\AppData\Local\CyberLink
O43 - CFD: 24/03/2013 - 07:20:55 - [0] ----D C:\Users\nikita\AppData\Local\DDMSettings
O43 - CFD: 19/09/2013 - 08:53:59 - [0] ----D C:\Users\nikita\AppData\Local\Diagnostics
O43 - CFD: 21/03/2013 - 17:04:34 - [0] ----D C:\Users\nikita\AppData\Local\Downloaded Installations
O43 - CFD: 14/06/2013 - 09:30:11 - [0] ----D C:\Users\nikita\AppData\Local\ElevatedDiagnostics
O43 - CFD: 29/01/2013 - 20:37:30 - [14,666] ----D C:\Users\nikita\AppData\Local\Facebook
O43 - CFD: 03/02/2014 - 18:06:08 - [331,713] ----D C:\Users\nikita\AppData\Local\Google
O43 - CFD: 21/01/2013 - 18:44:06 - [0,016] ----D C:\Users\nikita\AppData\Local\Hewlett-Packard
O43 - CFD: 26/11/2013 - 10:01:13 - [0] -SH-D C:\Users\nikita\AppData\Local\Historique
O43 - CFD: 23/01/2013 - 19:30:32 - [0,129] ----D C:\Users\nikita\AppData\Local\HP
O43 - CFD: 10/07/2013 - 13:35:11 - [191,080] ----D C:\Users\nikita\AppData\Local\IM
O43 - CFD: 24/10/2013 - 20:12:13 - [0] ----D C:\Users\nikita\AppData\Local\JollyBear
O43 - CFD: 19/01/2013 - 21:28:07 - [0] ----D C:\Users\nikita\AppData\Local\Macromedia
O43 - CFD: 23/03/2013 - 19:17:11 - [9,759] ----D C:\Users\nikita\AppData\Local\MFAData
O43 - CFD: 04/12/2013 - 17:26:29 - [-963,385] ----D C:\Users\nikita\AppData\Local\Microsoft
O43 - CFD: 09/09/2013 - 10:39:02 - [0,426] ----D C:\Users\nikita\AppData\Local\Microsoft Help
O43 - CFD: 18/09/2013 - 11:03:29 - [56,512] ----D C:\Users\nikita\AppData\Local\Mozilla
O43 - CFD: 08/12/2013 - 11:51:58 - [558,620] ----D C:\Users\nikita\AppData\Local\Packages
O43 - CFD: 18/01/2013 - 17:14:25 - [0,052] ----D C:\Users\nikita\AppData\Local\Power2Go8
O43 - CFD: 11/02/2014 - 08:38:09 - [0] ----D C:\Users\nikita\AppData\Local\Programs
O43 - CFD: 27/02/2014 - 08:29:30 - [4,549] ----D C:\Users\nikita\AppData\Local\Skype
O43 - CFD: 08/03/2014 - 18:59:47 - [169,806] ----D C:\Users\nikita\AppData\Local\Temp
O43 - CFD: 26/11/2013 - 10:01:13 - [0] -SH-D C:\Users\nikita\AppData\Local\Temporary Internet Files
O43 - CFD: 17/10/2013 - 08:56:46 - [1,183] ----D C:\Users\nikita\AppData\Local\Thunderbird =>.Mozilla Corporation
O43 - CFD: 29/10/2013 - 11:05:44 - [0,209] ----D C:\Users\nikita\AppData\Local\Unity
O43 - CFD: 08/01/2014 - 19:56:24 - [0,390] ----D C:\Users\nikita\AppData\Local\VirtualStore
O43 - CFD: 23/02/2014 - 19:22:51 - [0,086] ----D C:\Users\nikita\AppData\Local\Windows Live
O43 - CFD: 25/01/2013 - 10:11:57 - [0,620] ----D C:\Users\nikita\AppData\Local\Windows Live Writer
O43 - CFD: 18/03/2013 - 11:01:55 - [0,184] ----D C:\Users\nikita\AppData\Local\WinZip
O43 - CFD: 23/09/2013 - 15:30:30 - [0] ----D C:\Users\nikita\AppData\Local\Zoner
O43 - CFD: 22/08/2013 - 16:36:32 - [0,004] R---D C:\Users\nikita\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 22/08/2013 - 16:36:32 - [0,001] R---D C:\Users\nikita\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 17/02/2014 - 20:18:31 - [0] R---D C:\Users\nikita\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 01/12/2013 - 19:46:35 - [0,004] ----D C:\Users\nikita\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
O43 - CFD: 22/08/2013 - 16:36:32 - [0] ----D C:\Users\nikita\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 26/11/2013 - 10:02:37 - [0,002] ----D C:\Users\nikita\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Orange
O43 - CFD: 17/02/2014 - 20:18:31 - [0] R---D C:\Users\nikita\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 26/11/2013 - 10:02:37 - [0,006] R---D C:\Users\nikita\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
~ Program Folder: 254 Scanned in 01mn 55s



---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.30417BFECA13376FC4BFC54A8E2EE32B] - 01/03/2014 - 12:29:59 ---A- . (...) -- C:\Windows\System32\RaCoInst.log [4245]
O44 - LFC:[MD5.D46D074B8BF3F42AB0820C49AD760823] - 02/03/2014 - 08:04:12 ---A- . (...) -- C:\AVScanner.ini [426]
O44 - LFC:[MD5.044E6A5A7438382F36F3BFBB8E41F4DF] - 07/03/2014 - 13:09:06 ---A- . (...) -- C:\PhysicalDisk0_MBR.bin [512]
O44 - LFC:[MD5.0BB97D43299910CBFBA59C461B99B910] - 07/03/2014 - 21:23:00 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\mbam.sys [25928]
O44 - LFC:[MD5.F4DBC313B20443DE641843EE5BB39100] - 07/03/2014 - 22:49:48 ---A- . (...) -- C:\Windows\PFRO.log [3122]
O44 - LFC:[MD5.F55212A30073A75CFAFB4656058D6D96] - 08/03/2014 - 09:10:35 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.593127CECCC07A5B903FDE94F0884D01] - 08/03/2014 - 09:15:48 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [2028496]
O44 - LFC:[MD5.AAFF333442EC1F3654AD2326E1532507] - 08/03/2014 - 09:15:48 ---A- . (...) -- C:\Windows\System32\perfc009.dat [161748]
O44 - LFC:[MD5.008684EE9DD42A855178525DA94CAB08] - 08/03/2014 - 09:15:48 ---A- . (...) -- C:\Windows\System32\perfc00C.dat [192446]
O44 - LFC:[MD5.F77C56F86E9FC924CE7D88B53184D46F] - 08/03/2014 - 09:15:48 ---A- . (...) -- C:\Windows\System32\perfh009.dat [787990]
O44 - LFC:[MD5.94A7B91549D4879C4A37D89B7B27E944] - 08/03/2014 - 09:15:48 ---A- . (...) -- C:\Windows\System32\perfh00C.dat [887258]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 08/03/2014 - 11:23:58 ---A- . (...) -- C:\Windows\System32\HP_ActiveX_Patch_NOT_DETECTED.txt [0]
O44 - LFC:[MD5.891ACC4344520A76C8E9876204A1EDD7] - 08/03/2014 - 12:52:06 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1839628]
O44 - LFC:[MD5.44FE8331D96E0C975B5AD76E19F4A3CC] - 24/02/2014 - 09:05:23 ---A- . (.Microsoft Corporation - Outil de suppression de logiciels malveilla.) -- C:\Windows\System32\MRT.exe [88567024]
~ Files: 14 Scanned in 00mn 52s



---\\ Derniers fichiers créés dans Windows Prefetcher (O45)
O45 - LFCP:[MD5.11C3C9617804E7753AEA4B84726C32F9] - 01/03/2014 - 11:32:38 ---A- - C:\Windows\Prefetch\HPSAOBJUTIL7.EXE-BE8A4479.pf
O45 - LFCP:[MD5.33C06563C0EE60E3AF5DF804E7D9AD29] - 01/03/2014 - 17:45:33 ---A- - C:\Windows\Prefetch\WLMAIL.EXE-A89F57F3.pf
O45 - LFCP:[MD5.2A2220CF3B6672A72815506800CA27DC] - 02/03/2014 - 08:04:11 ---A- - C:\Windows\Prefetch\MCUICNT.EXE-1E11B99A.pf
O45 - LFCP:[MD5.9170E6AE094F90E0F57410E681451FE5] - 02/03/2014 - 08:04:14 ---A- - C:\Windows\Prefetch\AU_.EXE-A626699F.pf
O45 - LFCP:[MD5.8FF48C259F86989C649FC03ABA288BCE] - 02/03/2014 - 10:09:25 ---A- - C:\Windows\Prefetch\WMPLAYER.EXE-B0AD61F0.pf
O45 - LFCP:[MD5.3D8583B08096F4EE59D4B56EBBCE7BEF] - 03/03/2014 - 10:26:18 ---A- - C:\Windows\Prefetch\WERFAULT.EXE-94CE7668.pf
O45 - LFCP:[MD5.7FA55C6F66BCBEFD0CBFB4E18E3D0B2E] - 04/03/2014 - 07:42:15 ---A- - C:\Windows\Prefetch\CLVIEW.EXE-E0B176FE.pf
O45 - LFCP:[MD5.67462F2E81D729B3F54F7FDB8F90827A] - 04/03/2014 - 10:26:45 ---A- - C:\Windows\Prefetch\ACRORD32.EXE-4E288B88.pf
O45 - LFCP:[MD5.CE2264ABA145923B774E130CB1514549] - 05/03/2014 - 11:34:27 ---A- - C:\Windows\Prefetch\POWERPNT.EXE-6410969F.pf
O45 - LFCP:[MD5.1E895751BA505116D720BCFEEE320104] - 05/03/2014 - 12:52:42 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-5B6442A9.pf
O45 - LFCP:[MD5.79FA01C3E87EE5F009F9AD557DEF77D6] - 06/02/2014 - 08:49:06 ---A- - C:\Windows\Prefetch\FILEMANAGER.EXE-D7E24B17.pf
O45 - LFCP:[MD5.C822E6A69263D43EC6483E0631232591] - 06/02/2014 - 09:08:23 ---A- - C:\Windows\Prefetch\MBAM-SETUP-1.75.0.1300(1).TMP-921B29D4.pf
O45 - LFCP:[MD5.BA95CE73961CF564D761E81A37B688CF] - 06/02/2014 - 09:08:26 ---A- - C:\Windows\Prefetch\MBAM-SETUP-1.75.0.1300(1).TMP-EBC9C10B.pf
O45 - LFCP:[MD5.891DB57F6A678392B2C1D8E49354B00E] - 06/02/2014 - 09:28:30 ---A- - C:\Windows\Prefetch\WWAHOST.EXE-AF456BE3.pf
O45 - LFCP:[MD5.BFD646F9304C271E95543711B0B28C43] - 06/02/2014 - 12:29:39 ---A- - C:\Windows\Prefetch\WWAHOST.EXE-8DC8C70F.pf
O45 - LFCP:[MD5.0EEF255AA52209028D740D31282B0B19] - 06/02/2014 - 20:34:16 ---A- - C:\Windows\Prefetch\PNAC.EXE-FB18F1FF.pf
O45 - LFCP:[MD5.78B9137E0EE60BF32B872ABC0DA742D7] - 06/03/2014 - 11:32:05 ---A- - C:\Windows\Prefetch\HPWUCLI.EXE-49FE5EE9.pf
O45 - LFCP:[MD5.A495F40419402575A219D2EE4EADAB5A] - 07/03/2014 - 06:54:20 ---A- - C:\Windows\Prefetch\PICASA3.EXE-FA9EEDA0.pf
O45 - LFCP:[MD5.E13B885258D7D37F8B4D2038788F4FD7] - 07/03/2014 - 08:30:46 ---A- - C:\Windows\Prefetch\AgCx_SC1.db.trx
O45 - LFCP:[MD5.FC05F99FC26B3A3B7F88EDD2C781E2BA] - 07/03/2014 - 08:31:47 ---A- - C:\Windows\Prefetch\AgCx_SC1.db
O45 - LFCP:[MD5.5C5531601C373957E95202D2027A3B42] - 07/03/2014 - 08:36:21 ---A- - C:\Windows\Prefetch\CALC.EXE-0FE8F3A9.pf
O45 - LFCP:[MD5.46E2122F7DDE5D01ED288EAB3A4CC3CD] - 07/03/2014 - 10:36:02 ---A- - C:\Windows\Prefetch\POWER2GO8.EXE-9EB38AD0.pf
O45 - LFCP:[MD5.EAB6B5DDD7C0082BA551E9C8687E6DFD] - 07/03/2014 - 10:36:10 ---A- - C:\Windows\Prefetch\CLUPDATER.EXE-68739AF1.pf
O45 - LFCP:[MD5.93D8F5DBD960F04714E3398EF3E17F71] - 07/03/2014 - 11:29:53 ---A- - C:\Windows\Prefetch\VLC.EXE-F1ED81B3.pf
O45 - LFCP:[MD5.AF7B35DE41B14EE42239B87045B11F15] - 07/03/2014 - 11:30:20 ---A- - C:\Windows\Prefetch\WWAHOST.EXE-EC6C20B8.pf
O45 - LFCP:[MD5.72AD3F73D4DAF7BC3CA0E60640CC616A] - 07/03/2014 - 11:30:24 ---A- - C:\Windows\Prefetch\OPENWITH.EXE-BA0DC300.pf
O45 - LFCP:[MD5.B7F0FC670BABCE8A8BF95D1A7D7D7265] - 07/03/2014 - 12:57:15 ---A- - C:\Windows\Prefetch\ZHPDIAG20.TMP-112F2B81.pf
O45 - LFCP:[MD5.38A2B772FC2F9D178CCD5CF3A916DBBB] - 07/03/2014 - 12:57:24 ---A- - C:\Windows\Prefetch\ZHPDIAG20.TMP-0A66491E.pf
O45 - LFCP:[MD5.00FF700C1D7FF32EE52E9806BF0F49E5] - 07/03/2014 - 13:09:55 ---A- - C:\Windows\Prefetch\NOTEPAD.EXE-F0516D55.pf
O45 - LFCP:[MD5.D6AF4959E298557E711E8E26FD94BA44] - 07/03/2014 - 15:20:17 ---A- - C:\Windows\Prefetch\dynreservedpri.db
O45 - LFCP:[MD5.F70B12B77BAD02CE70C822B2682D5D87] - 07/03/2014 - 21:19:31 ---A- - C:\Windows\Prefetch\Op-EXPLORER.EXE-03C49D11-000000F5.pf
O45 - LFCP:[MD5.D610D7D5999E3AA084F7D185640FEFC6] - 07/03/2014 - 21:22:38 ---A- - C:\Windows\Prefetch\MBAM-SETUP-1.75.0.1300.TMP-A1D429CD.pf
O45 - LFCP:[MD5.C7A68C01C4CE187501E5C4BB59ECDFF7] - 07/03/2014 - 21:22:42 ---A- - C:\Windows\Prefetch\MBAM-SETUP-1.75.0.1300.TMP-9F1BC5C6.pf
O45 - LFCP:[MD5.8246A5EFCC82F5BD0D0F918AC36E339F] - 07/03/2014 - 21:23:20 ---A- - C:\Windows\Prefetch\MBAM.EXE-125A28F9.pf
O45 - LFCP:[MD5.4DE4C807C5450F2B0D960E6BD9F7EF8E] - 07/03/2014 - 22:46:16 ---A- - C:\Windows\Prefetch\NOTEPAD.EXE-1A4CC1C3.pf
O45 - LFCP:[MD5.ADE598C5380E4DDC30381233502DF924] - 07/03/2014 - 22:58:01 ---A- - C:\Windows\Prefetch\LOGONUI.EXE-E35F76FB.pf
O45 - LFCP:[MD5.010B778055FE3DACFAC1910887F879C0] - 08/03/2014 - 08:29:26 ---A- - C:\Windows\Prefetch\EXPLORER.EXE-03C49D11.pf
O45 - LFCP:[MD5.D2FB7C4998160CAD8E90A3D014864600] - 08/03/2014 - 08:29:46 ---A- - C:\Windows\Prefetch\BITTORRENT.EXE-64C25D51.pf =>P2P.BitTorrent
O45 - LFCP:[MD5.D056B4D5F8BE07D3AA4020C039C00489] - 08/03/2014 - 08:29:48 ---A- - C:\Windows\Prefetch\ADOBEARM.EXE-813E932C.pf
O45 - LFCP:[MD5.F4E082B028E1F49FD16282998762A837] - 08/03/2014 - 08:30:28 ---A- - C:\Windows\Prefetch\AgCx_SC5.db
O45 - LFCP:[MD5.379EE3483D1C60D5B2BAD762B9B1F545] - 08/03/2014 - 08:41:09 ---A- - C:\Windows\Prefetch\EXCEL.EXE-A8B924E9.pf
O45 - LFCP:[MD5.99583ED309DC86F71519123A82BB3EB1] - 08/03/2014 - 09:06:07 ---A- - C:\Windows\Prefetch\ADWCLEANER.EXE-4B68D39C.pf
O45 - LFCP:[MD5.893B9B8B35B40DDF50C2ABBE0075FCF4] - 08/03/2014 - 09:07:40 ---A- - C:\Windows\Prefetch\CMD.EXE-CD245F9E.pf
O45 - LFCP:[MD5.14B75ED2ECCF8E3813A7EFEC4B248C36] - 08/03/2014 - 09:07:52 ---A- - C:\Windows\Prefetch\PfSvPerfStats.bin
O45 - LFCP:[MD5.AB1C5A1E12F862AB3BC21B6D2EF28AB6] - 08/03/2014 - 09:27:21 ---A- - C:\Windows\Prefetch\HPQDIREC.EXE-4D68D632.pf
O45 - LFCP:[MD5.6CA81A89AEBEBE5817FAA017D86EE585] - 08/03/2014 - 11:31:09 ---A- - C:\Windows\Prefetch\WINWORD.EXE-4C6BDD9E.pf
O45 - LFCP:[MD5.DFF35E5DBE715A2E1EAB3E5A57A75E32] - 08/03/2014 - 11:48:52 ---A- - C:\Windows\Prefetch\NGENTASK.EXE-4DB88ADA.pf
O45 - LFCP:[MD5.162BE6CF4178FB06076C14367C61BC5C] - 08/03/2014 - 11:48:53 ---A- - C:\Windows\Prefetch\NGENTASK.EXE-CD4E002C.pf
O45 - LFCP:[MD5.BC83829660EFC928F74729535877DC25] - 08/03/2014 - 13:09:51 ---A- - C:\Windows\Prefetch\MPCMDRUN.EXE-6520183E.pf
O45 - LFCP:[MD5.1C98920FDC0E087FB6E2B79D81553DA3] - 08/03/2014 - 13:16:50 ---A- - C:\Windows\Prefetch\IGFXSRVC.EXE-F41E6E8E.pf
O45 - LFCP:[MD5.8B5E6DAEA25BCE9D5612B927C5009261] - 08/03/2014 - 13:24:48 ---A- - C:\Windows\Prefetch\HPASSET.EXE-01C82747.pf
O45 - LFCP:[MD5.48F72A074A55AE416B9AAFD317834F53] - 08/03/2014 - 13:24:49 ---A- - C:\Windows\Prefetch\SCHTASKS.EXE-BA1E321E.pf
O45 - LFCP:[MD5.6E0A20894DD494467FEB8C1E2E4D79CB] - 08/03/2014 - 13:24:49 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-05BE8C4F.pf
O45 - LFCP:[MD5.FC7AF3DE4022CF17964180B5061B514C] - 08/03/2014 - 13:26:29 ---A- - C:\Windows\Prefetch\DELEGATE_EXECUTE.EXE-81757103.pf
O45 - LFCP:[MD5.DD4A42EFB871E0599F32802381D95DF2] - 08/03/2014 - 13:29:45 ---A- - C:\Windows\Prefetch\CHROME.EXE-CCF9F3F4.pf
O45 - LFCP:[MD5.00ECDB95E16DB9C27AFD4191B49AC3F9] - 08/03/2014 - 13:34:08 ---A- - C:\Windows\Prefetch\SNDVOL.EXE-276AC160.pf
O45 - LFCP:[MD5.7465B4334036B01B8C282A4B4F6850BE] - 08/03/2014 - 13:36:47 ---A- - C:\Windows\Prefetch\AgRobust.db
O45 - LFCP:[MD5.1BCAF6602F9379B072F4AD6464D4C651] - 08/03/2014 - 13:36:48 ---A- - C:\Windows\Prefetch\AgGlFaultHistory.db
O45 - LFCP:[MD5.39676D70811CD1C37BD5120DEB3AAB55] - 08/03/2014 - 13:36:48 ---A- - C:\Windows\Prefetch\AgGlGlobalHistory.db
O45 - LFCP:[MD5.243CFC12FDF49A36E7595EB9A5E7A268] - 08/03/2014 - 13:36:49 ---A- - C:\Windows\Prefetch\AgGlFgAppHistory.db
O45 - LFCP:[MD5.1BC98E746AE60C85340FD77CE0A025CA] - 08/03/2014 - 13:47:36 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-985C34E6.pf
O45 - LFCP:[MD5.C0CED3A52541117A2FC1B0B9B14CE99F] - 08/03/2014 - 13:47:46 ---A- - C:\Windows\Prefetch\TASKHOSTEX.EXE-7356AAC0.pf
O45 - LFCP:[MD5.58B5B2B7EFE0B6A2F647705FAF3DAC23] - 08/03/2014 - 13:47:49 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-93798CD2.pf
O45 - LFCP:[MD5.ED23904695886AAE7B2D2C65C2713ACB] - 08/03/2014 - 14:10:17 ---A- - C:\Windows\Prefetch\PfPre_59a7581e.db
O45 - LFCP:[MD5.E59080123A95E2AA533810FB3C40D05A] - 08/03/2014 - 17:09:09 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-05B3EDF6.pf
O45 - LFCP:[MD5.905E5BFFEE5B5804F2BA09C368AD01D6] - 08/03/2014 - 17:09:09 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-F2C7AEBC.pf
O45 - LFCP:[MD5.D6658291AC29ECF66F7376C307D7E205] - 08/03/2014 - 17:10:21 ---A- - C:\Windows\Prefetch\AVBUGREPORT.EXE-E4EA699E.pf
O45 - LFCP:[MD5.C35509C61FCDA9FD87BA0D41D29A6AC3] - 08/03/2014 - 17:10:21 ---A- - C:\Windows\Prefetch\INSTUP.EXE-3AF05CB9.pf
O45 - LFCP:[MD5.C4618F450CED04771BA9C7ABA7D7383D] - 08/03/2014 - 17:41:02 ---A- - C:\Windows\Prefetch\FACEBOOKUPDATE.EXE-E70ED0EB.pf
O45 - LFCP:[MD5.B4F92855AF5ACC9F71FCC9CFF59B4A58] - 08/03/2014 - 17:47:49 ---A- - C:\Windows\Prefetch\Layout.ini
O45 - LFCP:[MD5.C362591731AC264F7DE5BBD00A05EEB8] - 08/03/2014 - 18:09:00 ---A- - C:\Windows\Prefetch\GOOGLEUPDATE.EXE-62E5E10F.pf
O45 - LFCP:[MD5.F7D7800222A282DADB02D150A3B6712D] - 08/03/2014 - 18:22:01 ---A- - C:\Windows\Prefetch\FLASHPLAYERUPDATESERVICE.EXE-E0E5E52F.pf
O45 - LFCP:[MD5.AD44C81777191DCB7C1DA861DE845FAA] - 08/03/2014 - 18:22:10 ---A- - C:\Windows\Prefetch\TASKENG.EXE-23205583.pf
O45 - LFCP:[MD5.AC9A2C352AF868072B265B1A91CAF29E] - 08/03/2014 - 18:53:48 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-B51A0D95.pf
O45 - LFCP:[MD5.9646CE6E4DB58D701999042B1E55C60E] - 08/03/2014 - 18:53:50 ---A- - C:\Windows\Prefetch\RUNTIMEBROKER.EXE-17E2786F.pf
O45 - LFCP:[MD5.0F1F6DCA5F7997CC01369E1ED0C7C519] - 08/03/2014 - 18:54:31 ---A- - C:\Windows\Prefetch\THUMBNAILEXTRACTIONHOST.EXE-C3FB8861.pf
O45 - LFCP:[MD5.8A58AC66D3839D6F4D9BF89CA3419EBD] - 08/03/2014 - 18:54:33 ---A- - C:\Windows\Prefetch\SKYPE.EXE-67114AC9.pf
O45 - LFCP:[MD5.A7E730F27A2DD9F8D764AA3FA2E6915B] - 08/03/2014 - 18:54:39 ---A- - C:\Windows\Prefetch\UPDATER.EXE-6775DEB5.pf
O45 - LFCP:[MD5.C7A4D8E6F0CDFD42DBDD387DFC11DD0F] - 08/03/2014 - 18:54:41 ---A- - C:\Windows\Prefetch\AUDIODG.EXE-9848A323.pf
O45 - LFCP:[MD5.1A3B897AFEEC4427CBA8A674137511C6] - 08/03/2014 - 18:54:53 ---A- - C:\Windows\Prefetch\IMLPP.EXE-468937FB.pf
O45 - LFCP:[MD5.59CA7FCEA16DEC6D7DBD18D42C0AFC1E] - 08/03/2014 - 18:54:58 ---A- - C:\Windows\Prefetch\INCMAIL.EXE-32F9B55A.pf
O45 - LFCP:[MD5.60C52FB221518B332431D858A4E00A29] - 08/03/2014 - 18:55:02 ---A- - C:\Windows\Prefetch\IMAPP.EXE-BB8E10B4.pf
O45 - LFCP:[MD5.3EBFEBBC8966DA1CEF14406F8EFE881F] - 08/03/2014 - 18:55:58 ---A- - C:\Windows\Prefetch\IMNOTFY.EXE-8DBD7167.pf
O45 - LFCP:[MD5.B827BFB802356723458B0DC235D50B3F] - 08/03/2014 - 18:56:25 ---A- - C:\Windows\Prefetch\IMBPP.EXE-3C8D9FE9.pf
O45 - LFCP:[MD5.401B7FBB4BA38B89B81FD17AE294A9D9] - 08/03/2014 - 18:56:52 ---A- - C:\Windows\Prefetch\FIREFOX.EXE-528BC649.pf
O45 - LFCP:[MD5.CF0DB74D34D28C7EB28F7C61AD30E59E] - 08/03/2014 - 18:56:53 ---A- - C:\Windows\Prefetch\WMIPRVSE.EXE-BB49B536.pf
O45 - LFCP:[MD5.C697C86B87644213258A6E6A26202391] - 08/03/2014 - 18:57:19 ---A- - C:\Windows\Prefetch\PLUGIN-CONTAINER.EXE-E510713D.pf
O45 - LFCP:[MD5.A9423977AB05E7DCECB8DF76133114F0] - 08/03/2014 - 18:57:20 ---A- - C:\Windows\Prefetch\FLASHPLAYERPLUGIN_12_0_0_70.E-51CC959C.pf
O45 - LFCP:[MD5.60B03A79B116F7B530AA99B071C64267] - 08/03/2014 - 18:58:21 ---A- - C:\Windows\Prefetch\AgGlUAD_P_S-1-5-21-2785223111-1158521573-2117656058-1001.db
O45 - LFCP:[MD5.2440991F25175967442940DD1933CEB2] - 08/03/2014 - 18:58:21 ---A- - C:\Windows\Prefetch\AgGlUAD_S-1-5-21-2785223111-1158521573-2117656058-1001.db
O45 - LFCP:[MD5.F10C2F671997222567F84FD217AEA4B7] - 08/03/2014 - 18:58:46 ---A- - C:\Windows\Prefetch\CONSENT.EXE-2D674CE4.pf
O45 - LFCP:[MD5.330054934026416D05659FBAEAE64D96] - 08/03/2014 - 18:58:49 ---A- - C:\Windows\Prefetch\ZHPHEP.EXE-5F2753B1.pf
O45 - LFCP:[MD5.F56EA851013B59D2AFB434EE3F61EB05] - 08/03/2014 - 18:58:51 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-829F390C.pf
O45 - LFCP:[MD5.79C57C62D4B8A7533CFEB88B7AA61EF2] - 08/03/2014 - 18:58:59 ---A- - C:\Windows\Prefetch\ZHPDIAG.EXE-C7289479.pf
O45 - LFCP:[MD5.75158F8A04FB05952E42A7AE90CB4B0A] - 08/03/2014 - 18:59:21 ---A- - C:\Windows\Prefetch\CMD.EXE-2EB3E6E2.pf
O45 - LFCP:[MD5.00B9265C525D3CF11912643547380322] - 08/03/2014 - 18:59:21 ---A- - C:\Windows\Prefetch\CSCRIPT.EXE-E9FF6526.pf
O45 - LFCP:[MD5.4A6BC6E5E3E6C967F718AFEC29F8A457] - 08/03/2014 - 18:59:28 ---A- - C:\Windows\Prefetch\SEARCHFILTERHOST.EXE-10E4267C.pf
O45 - LFCP:[MD5.80E9A9A0749EC6B3E04C5F81456A8AB2] - 08/03/2014 - 18:59:28 ---A- - C:\Windows\Prefetch\SEARCHPROTOCOLHOST.EXE-C6CFE2A8.pf
O45 - LFCP:[MD5.FDBB9E249A48EB52C9B6FD2AC2707905] - 08/03/2014 - 18:59:29 ---A- - C:\Windows\Prefetch\WMIPRVSE.EXE-0C8A533A.pf
O45 - LFCP:[MD5.814E7EAB3C84195AEA4EFE3786270E8C] - 08/03/2014 - 18:59:30 ---A- - C:\Windows\Prefetch\SPPSVC.EXE-7B160CA5.pf
O45 - LFCP:[MD5.1B20A25A94749C2E2C2FE1133F81D7F7] - 08/03/2014 - 18:59:37 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-FEA1FDBE.pf
O45 - LFCP:[MD5.BD6D877A39EF399E601E338A8B8EB4D8] - 08/03/2014 - 18:59:46 ---A- - C:\Windows\Prefetch\PV.EXE-D9D90B9C.pf
O45 - LFCP:[MD5.4256402537BF943080AEBD9BB195588F] - 08/03/2014 - 18:59:54 ---A- - C:\Windows\Prefetch\CONHOST.EXE-F98A1078.pf
O45 - LFCP:[MD5.038D932EA2C53A0D891FA161EC56DAC4] - 08/03/2014 - 18:59:57 ---A- - C:\Windows\Prefetch\SUBINACL.EXE-D08B2113.pf
O45 - LFCP:[MD5.E8548C0ED2E3995E19E9DA90B48E1DAF] - 08/03/2014 - 19:00:20 ---A- - C:\Windows\Prefetch\SCHTASKS.EXE-0AD36442.pf
O45 - LFCP:[MD5.C0FADCBB8087949DC74BD5CB252ACD7B] - 09/02/2014 - 10:20:18 ---A- - C:\Windows\Prefetch\PICASAPHOTOVIEWER.EXE-1DEB098D.pf
O45 - LFCP:[MD5.879C0F884A25722D0CB6AAEC646F22DA] - 09/02/2014 - 18:01:17 ---A- - C:\Windows\Prefetch\HPSF.EXE-FF58409B.pf
O45 - LFCP:[MD5.CB1D164DE9C330BE08D4B03ECBBA58CF] - 11/02/2014 - 08:36:15 ---A- - C:\Windows\Prefetch\GOOGLE+ AUTO BACKUP.EXE-D36CD22B.pf
O45 - LFCP:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 11/06/2145 - 23:38:41 ----D - C:\Windows\Prefetch\ReadyBoot
O45 - LFCP:[MD5.1731FA2A57C68A0273D5A35E9F116505] - 13/02/2014 - 11:02:19 ---A- - C:\Windows\Prefetch\PLUGIN-HANG-UI.EXE-63DEED3B.pf
O45 - LFCP:[MD5.027C51450DFA4D61BA81DB47971E1191] - 15/02/2014 - 09:48:06 ---A- - C:\Windows\Prefetch\AgCx_SC4.db
O45 - LFCP:[MD5.CED70B7536C4072772233E2C46F240A1] - 15/02/2014 - 10:12:48 ---A- - C:\Windows\Prefetch\UPDATER.EXE-72E276B9.pf
O45 - LFCP:[MD5.591A42599B87C1AAECFC5879271BA69D] - 15/02/2014 - 11:49:01 ---A- - C:\Windows\Prefetch\HPSAOBJUTIL.EXE-654DEED6.pf
O45 - LFCP:[MD5.E9F81EA93B2CF82C8C12C1445DE6666C] - 15/02/2014 - 12:16:15 ---A- - C:\Windows\Prefetch\WLXPHOTOGALLERY.EXE-55FF63A1.pf
O45 - LFCP:[MD5.D45DA9903A2258DF92EB54E803891F73] - 16/02/2014 - 00:25:06 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-C0CBE3F8.pf
O45 - LFCP:[MD5.EFA1BFE9BD984722E19F3C2E3E44A4A3] - 16/02/2014 - 08:46:53 ---A- - C:\Windows\Prefetch\MCUICNT.EXE-FA222868.pf
O45 - LFCP:[MD5.30FACBE847AE9561BF3294ACDE6AD237] - 17/02/2014 - 10:06:29 ---A- - C:\Windows\Prefetch\WFS.EXE-3D0064E2.pf
O45 - LFCP:[MD5.0BEB74CE35C4630834DEAE6768204310] - 17/02/2014 - 18:06:18 ---A- - C:\Windows\Prefetch\AgCx_SC2.db
O45 - LFCP:[MD5.4823B5F259ACF63C4AD02B8C237631D8] - 19/02/2014 - 08:55:48 ---A- - C:\Windows\Prefetch\WINWORD.EXE-A9DD9485.pf
O45 - LFCP:[MD5.E6C2FAB97FA2C4D0B93BE49C06AD47F2] - 19/02/2014 - 10:00:37 ---A- - C:\Windows\Prefetch\MBAM-SETUP-1.75.0.1300(2).TMP-ADD7B7EB.pf
O45 - LFCP:[MD5.9EF27E48AEC4BCFF8374A147B2ADECAB] - 19/02/2014 - 10:00:43 ---A- - C:\Windows\Prefetch\MBAM-SETUP-1.75.0.1300(2).TMP-13AD6B7B.pf
O45 - LFCP:[MD5.A1E69A08578FBEFA2F9E5334E7AFF2FB] - 20/02/2014 - 12:13:13 ---A- - C:\Windows\Prefetch\WWAHOST.EXE-9DDDD2DD.pf
O45 - LFCP:[MD5.E67F12430BDC6142FA48BC62242C735B] - 20/02/2014 - 20:05:30 ---A- - C:\Windows\Prefetch\FLASHPLAYERPLUGIN_12_0_0_44.E-6ECC2BF9.pf
O45 - LFCP:[MD5.9136F6F284A068F5869608DB705401FE] - 25/02/2014 - 11:41:54 ---A- - C:\Windows\Prefetch\MSPUB.EXE-5593603F.pf
O45 - LFCP:[MD5.80707000FA6B8EB15CB890E997DA9648] - 26/02/2014 - 05:56:01 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-4499C2C5.pf
O45 - LFCP:[MD5.4677D251665C0E9914DA72764FA39024] - 26/02/2014 - 07:10:33 ---A- - C:\Windows\Prefetch\DIGITALEDITIONS.EXE-B09CD597.pf
O45 - LFCP:[MD5.E36F69A212DDA1E28D5C7E4439420004] - 26/02/2014 - 07:26:31 ---A- - C:\Windows\Prefetch\CALIBRE.EXE-25EB2469.pf
O45 - LFCP:[MD5.4222F88BA643BDF690CA2376A492E804] - 26/02/2014 - 07:37:37 ---A- - C:\Windows\Prefetch\CALIBRE-PARALLEL.EXE-60AF643B.pf
O45 - LFCP:[MD5.6089E63BD20196C0E48F44E0B64D8BFA] - 27/02/2014 - 08:28:22 ---A- - C:\Windows\Prefetch\MSIEXEC.EXE-7D20CFB0.pf
O45 - LFCP:[MD5.71F02D79D34CA4E8DBF9FDC4132696F2] - 27/02/2014 - 08:28:31 ---A- - C:\Windows\Prefetch\MSIEXEC.EXE-BAE57A74.pf
O45 - LFCP:[MD5.56442DDE69B3960B8098111EDB1A8C0F] - 27/02/2014 - 08:30:27 ---A- - C:\Windows\Prefetch\HPQKYGRP.EXE-32C60CD8.pf
O45 - LFCP:[MD5.DE44D4DD531BF36BFB320E24F2B927C0] - 27/02/2014 - 08:30:48 ---A- - C:\Windows\Prefetch\HPISCNAPP.EXE-9068B730.pf
O45 - LFCP:[MD5.68FD915F4097C8E9ECB1D251C28CB094] - 27/02/2014 - 13:27:40 ---A- - C:\Windows\Prefetch\MBAM-SETUP-1.75.0.1300(3).TMP-E14EF920.pf
O45 - LFCP:[MD5.22A5B64EE6167E62FFF27F2FDF3F90E0] - 27/02/2014 - 13:27:45 ---A- - C:\Windows\Prefetch\MBAM-SETUP-1.75.0.1300(3).TMP-F14D2975.pf
O45 - LFCP:[MD5.8D692B9C07B10FB048B50FE40AB292CF] - 28/02/2014 - 09:47:07 ---A- - C:\Windows\Prefetch\WWAHOST.EXE-CB231E28.pf
O45 - LFCP:[MD5.999234F1B369C55160CEDE88A24EF5C8] - 28/02/2014 - 11:37:02 ---A- - C:\Windows\Prefetch\IEXPLORE.EXE-7A9337F2.pf
O45 - LFCP:[MD5.66D3EDBACE9B823558CE15BC55522812] - 28/02/2014 - 11:37:04 ---A- - C:\Windows\Prefetch\IEXPLORE.EXE-F4FB5D2F.pf
O45 - LFCP:[MD5.A4ACF7B41BA828D369A424654849768E] - 28/02/2014 - 13:53:08 ---A- - C:\Windows\Prefetch\UNINS000.EXE-B2F9B9B1.pf
O45 - LFCP:[MD5.7CDAC8052E0B39945238564D7D01E8FF] - 28/02/2014 - 13:56:06 ---A- - C:\Windows\Prefetch\INSTALLER_INTERNET_EXPLORER_F-99323C15.pf
O45 - LFCP:[MD5.9C5AC4926EEA3C4962F380EFD77980D6] - 28/02/2014 - 13:56:35 ---A- - C:\Windows\Prefetch\FINDRIGHTSETUP.EXE-A16E5FE1.pf =>Hijacker.FindrToolbar
O45 - LFCP:[MD5.B2D9E73A0A594DA618B79494CA7FF181] - 28/02/2014 - 13:56:35 ---A- - C:\Windows\Prefetch\PCSPEEDMAXSETUP.TMP-3AD02956.pf
O45 - LFCP:[MD5.BAC592C1A8BB7D3ABAC7BA1AC3A663AB] - 28/02/2014 - 13:56:59 ---A- - C:\Windows\Prefetch\FINDRIGHT_SETUP.EXE-B2DA0B75.pf =>Hijacker.FindrToolbar
O45 - LFCP:[MD5.603674D8F9660E1DD54D723F970E1848] - 28/02/2014 - 13:57:08 ---A- - C:\Windows\Prefetch\UNINSTALLER.EXE-582C093A.pf
O45 - LFCP:[MD5.574B430A95360576258C42A0AF5A7BA7] - 28/02/2014 - 13:59:27 ---A- - C:\Windows\Prefetch\UNINSTALLER.EXE-7D187826.pf
O45 - LFCP:[MD5.2E22D37565FE0A6DBD80045B02DF0488] - 28/02/2014 - 13:59:33 ---A- - C:\Windows\Prefetch\46042U~1.EXE-3EC1EAE7.pf
O45 - LFCP:[MD5.5AADF7FEC6FA4B20DFE6B20F088DA580] - 28/02/2014 - 14:00:00 ---A- - C:\Windows\Prefetch\UNINS000.EXE-A7996A16.pf
O45 - LFCP:[MD5.F01BDB0FAE200EC6F61E441FC1252E8D] - 28/02/2014 - 14:00:02 ---A- - C:\Windows\Prefetch\_IU14D2N.TMP-D5605B44.pf
O45 - LFCP:[MD5.0E5DCF77185FA26B4A6C5A01F9F8974B] - 28/02/2014 - 14:01:53 ---A- - C:\Windows\Prefetch\UNINSTALLER.EXE-9B74C3EA.pf
O45 - LFCP:[MD5.E4F148771ADE0E5A71156EFC7598AF54] - 28/02/2014 - 14:16:39 ---A- - C:\Windows\Prefetch\GOOGLEUPDATE.EXE-021505F5.pf
O45 - LFCP:[MD5.C2642508A736C3844C0C6B619ACFF81B] - 28/02/2014 - 14:16:45 ---A- - C:\Windows\Prefetch\GOOGLEUPDATE.EXE-A6C57D2D.pf
O45 - LFCP:[MD5.30C76C64959EC134870283D5C3E35C41] - 28/02/2014 - 18:56:24 ---A- - C:\Windows\Prefetch\DSMUSERTASK.EXE-D4A83970.pf
~ Prefetcher: 151 Scanned in 00mn 03s



---\\ Déni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l’Éditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Fournisseur de sécurité TLS/SSL.) -- C:\Windows\System32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Live Security Package.) -- C:\Windows\System32\livessp.dll
~ LSA: 9 Scanned in 00mn 00s



---\\ Contrôle du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\BasicDisplay.sys . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\BasicRender.sys . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dxgkrnl.sys . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\FsDepends.sys . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\FsDepends.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\BasicDisplay.sys . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\BasicRender.sys . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dxgkrnl.sys . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\FsDepends.sys . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\FsDepends.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (...) -- C:\Windows\System32\Drivers\rdpencdd.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
~ CSB: 17 Scanned in 00mn 00s



---\\ Recherche d'infection sur les pilotes (HKLM)(TDSD) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \Drivers32\"vidc.ffds"="ff_vfw.dll" . (.Pas de propriétaire - ffdshow VFW.) -- C:\Windows\System32\ff_vfw.dll
O52 - TDSD: \Drivers32\"vidc.lags"="lagarith.dll" . (.Pas de propriétaire - Lagarith.) -- C:\Windows\System32\lagarith.dll
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"ff_vfw.dll"="ffdshow Video Codec" . (.Pas de propriétaire - ffdshow VFW.) -- C:\Windows\System32\ff_vfw.dll
O52 - TDSD: \drivers.desc\"lagarith.dll"="Lagarith lossless codec [LAGS]" . (.Pas de propriétaire - Lagarith.) -- C:\Windows\System32\lagarith.dll
~ TDSD: 6 Scanned in 00mn 00s



---\\ Enumération des clés de registre SecurityProviders (MCSP) (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
~ MSCP: 2 Scanned in 00mn 00s



---\\ Enumération des clés de registre PoliciesSystem (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableCursorSuppression"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPath"=1
~ MWPS: 18 Scanned in 00mn 00s



---\\ Enumération des clés de registre PoliciesExplorer (MWPE) (O56)
O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1
~ MWPE Keys: 3 Scanned in 00mn 00s



---\\ Liste des pilotes du système (SDL) (O58)
O58 - SDL:[MD5.E1832BD9FD7E0FC2DC9FA5935DE3E8C1] - 22/08/2013 - 12:38:15 ---A- . (.Microsoft Corporation - 1394 OpenHCI Driver.) -- C:\Windows\System32\Drivers\1394ohci.sys [231424]
O58 - SDL:[MD5.AD508A1A46EC21B740AB31C28EFDFDB1] - 22/08/2013 - 13:43:41 ---A- . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\Windows\System32\Drivers\3ware.sys [108896]
O58 - SDL:[MD5.899B7E724BF19F17978B6A37B864A277] - 24/09/2012 - 12:40:56 ---A- . (.Hewlett-Packard Company - HP Accelerometer.) -- C:\Windows\System32\Drivers\Accelerometer.sys [43840]
O58 - SDL:[MD5.3D30878A269D934100FA5F972E53AF39] - 26/11/2013 - 09:42:14 ---A- . (.Microsoft Corporation - Pilote ACPI pour NT.) -- C:\Windows\System32\Drivers\acpi.sys [523096]
O58 - SDL:[MD5.AC8279D229398BCF05C3154ADCA86813] - 22/08/2013 - 13:49:54 ---A- . (.Microsoft Corporation - ACPIEx Driver.) -- C:\Windows\System32\Drivers\acpiex.sys [79712]
O58 - SDL:[MD5.A8970D9BF23CD309E0403978A1B58F3F] - 22/08/2013 - 12:38:48 ---A- . (.Microsoft Corporation - ACPI Processor Aggregator Device Driver.) -- C:\Windows\System32\Drivers\acpipagr.sys [10240]
O58 - SDL:[MD5.111A89C99C5B4F1A7BCE5F643DD86F65] - 22/08/2013 - 12:38:53 ---A- . (.Microsoft Corporation - ACPI Power Metering Driver.) -- C:\Windows\System32\Drivers\acpipmi.sys [12288]
O58 - SDL:[MD5.5758387D68A20AE7D3245011B07E36E7] - 22/08/2013 - 12:38:58 ---A- . (.Microsoft Corporation - ACPI Wake Alarm.) -- C:\Windows\System32\Drivers\acpitime.sys [10752]
O58 - SDL:[MD5.7C1FDF1B48298CBA7CE4BDD4978951AD] - 22/08/2013 - 13:43:41 ---A- . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS/SATA controller.) -- C:\Windows\System32\Drivers\adp80xx.sys [782176]
O58 - SDL:[MD5.239268BAB58EAE9A3FF4E08334C00451] - 22/08/2013 - 14:25:35 ---A- . (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) -- C:\Windows\System32\Drivers\afd.sys [567296]
O58 - SDL:[MD5.55FE43112F61836D0581D615C72AA113] - 30/09/2013 - 05:14:00 ---A- . (.Microsoft Corporation - RAS Agile Vpn Miniport Call Manager.) -- C:\Windows\System32\Drivers\agilevpn.sys [97280]
O58 - SDL:[MD5.7DFAEBA9AD62D20102B576D5CAC45EC8] - 22/08/2013 - 13:43:40 ---A- . (.Microsoft Corporation - Filtre AGP 440 NT.) -- C:\Windows\System32\Drivers\AGP440.sys [62304]
O58 - SDL:[MD5.8E8E34B7BA059050EED827410D0697A2] - 22/08/2013 - 12:39:54 ---A- . (.Microsoft Corporation - Application Compatibility Cache.) -- C:\Windows\System32\Drivers\ahcache.sys [76800]
O58 - SDL:[MD5.7589DE749DB6F71A68489DCE04158729] - 22/08/2013 - 09:46:34 ---A- . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\Drivers\amdk8.sys [95744]
O58 - SDL:[MD5.B46D2D89AFF8A9490FA8C98C7A5616E3] - 22/08/2013 - 09:46:35 ---A- . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\Drivers\amdppm.sys [98816]
O58 - SDL:[MD5.D2BF2F94A47D332814910FD47C6BBCD2] - 22/08/2013 - 13:43:41 ---A- . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\Windows\System32\Drivers\amdsata.sys [79200]
O58 - SDL:[MD5.A8E04943C7BBA7219AA50400272C3C6E] - 22/08/2013 - 13:43:41 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows -.) -- C:\Windows\System32\Drivers\amdsbs.sys [259424]
O58 - SDL:[MD5.CEA5F4F27CFC08E3A44D576811B35F50] - 22/08/2013 - 13:43:40 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\Drivers\amdxata.sys [25952]
O58 - SDL:[MD5.04951A9A937CBE28A2D3FEEA360B6D1F] - 30/09/2013 - 05:14:00 ---A- . (.Microsoft Corporation - AppID Driver.) -- C:\Windows\System32\Drivers\appid.sys [83456]
O58 - SDL:[MD5.65045784366F7EC5FB4E71BCF923187B] - 22/08/2013 - 13:43:41 ---A- . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\Drivers\arcsas.sys [114016]
O58 - SDL:[MD5.84F74D9072858B8E7D25A88FB94FBB57] - 31/10/2013 - 07:46:12 ---A- . (.AVAST Software - avast! Filtering TDI driver.) -- C:\Windows\System32\Drivers\aswFW.sys [131232]
O58 - SDL:[MD5.0ACC3F49015E628590CA4372322EB46B] - 23/01/2014 - 17:04:01 ---A- . (.AVAST Software - avast! File System Minifilter for Windows 2003/Vista.) -- C:\Windows\System32\Drivers\aswMonFlt.sys [78648]
O58 - SDL:[MD5.F342BA969535A992208ABC670CA89171] - 19/11/2013 - 08:35:12 ---A- . (.AVAST Software - avast! Filtering NDIS driver.) -- C:\Windows\System32\Drivers\aswNdisFlt.sys [447888]
O58 - SDL:[MD5.679712B7A353EE665B9301592164A172] - 19/11/2013 - 08:35:29 ---A- . (.AVAST Software - avast! WFP Redirect Driver.) -- C:\Windows\System32\Drivers\aswRdr2.sys [92544]
O58 - SDL:[MD5.C04F7B373881009D7994D9BF55D24AB4] - 19/11/2013 - 08:35:30 ---A- . (...) -- C:\Windows\System32\Drivers\aswRvrt.sys [65776]
O58 - SDL:[MD5.43599E630DFC30AD4E6A2B4B269EB1C0] - 23/01/2014 - 17:04:01 ---A- . (.AVAST Software - avast! Virtualization Driver.) -- C:\Windows\System32\Drivers\aswSnx.sys [1038072]
O58 - SDL:[MD5.F22DE5F5BA8ADA0A861441B624B51EB5] - 23/01/2014 - 17:04:01 ---A- . (.AVAST Software - avast! self protection module.) -- C:\Windows\System32\Drivers\aswSP.sys [421704]
O58 - SDL:[MD5.FD3EA14ADF6216BDF4030DB2EFD43D96] - 23/01/2014 - 17:04:01 ---A- . (.AVAST Software - Stream Filter.) -- C:\Windows\System32\Drivers\aswstm.sys [80184]
O58 - SDL:[MD5.90399625F341AB76BA4B85A5E860EB1F] - 01/01/2014 - 19:02:50 ---A- . (...) -- C:\Windows\System32\Drivers\aswVmm.sys [207904]
O58 - SDL:[MD5.3DB7721F06BC2FEDB25029EA23AB27DA] - 22/08/2013 - 12:38:53 ---A- . (.Microsoft Corporation - MS Remote Access serial network driver.) -- C:\Windows\System32\Drivers\asyncmac.sys [26624]
O58 - SDL:[MD5.74B14192CF79A72F7536B27CB8814FBD] - 22/08/2013 - 13:43:41 ---A- . (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\Drivers\atapi.sys [26464]
O58 - SDL:[MD5.38E1F4E0148A24C65D215F14D57B0711] - 22/08/2013 - 13:43:41 ---A- . (.Microsoft Corporation - ATAPI Driver Extension.) -- C:\Windows\System32\Drivers\ataport.sys [199520]
O58 - SDL:[MD5.8CC7F7E4AFCBA605921B137ED7992C68] - 22/08/2013 - 12:39:31 ---A- . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys [50688]
O58 - SDL:[MD5.2748E116F8621A4DB0D39FCDD7318C01] - 22/08/2013 - 12:39:28 ---A- . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys [33792]
O58 - SDL:[MD5.99387C515F80270F097F6DD9B5315649] - 22/08/2013 - 13:49:53 ---A- . (.Microsoft Corporation - Battery Class Driver.) -- C:\Windows\System32\Drivers\battc.sys [35168]
O58 - SDL:[MD5.C1ABB0F7E3BEA48A0417BDF6FF14AB21] - 13/08/2013 - 00:25:46 ---A- . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\Windows\System32\Drivers\bcmfn2.sys [17624]
O58 - SDL:[MD5.EC19013E4CF87609534165DF897274D6] - 22/08/2013 - 12:40:24 ---A- . (.Microsoft Corporation - BEEP Driver.) -- C:\Windows\System32\Drivers\beep.sys [7680]
O58 - SDL:[MD5.6B4FFFDDC618FCF64473CAA86E305697] - 22/08/2013 - 12:38:38 ---A- . (.Microsoft Corporation - NT Lan Manager Datagram Receiver Driver.) -- C:\Windows\System32\Drivers\bowser.sys [102912]
O58 - SDL:[MD5.4E888019078AC363076A5433E89AA4F8] - 22/08/2013 - 12:35:50 ---A- . (.Microsoft Corporation - MAC Bridge Driver.) -- C:\Windows\System32\Drivers\bridge.sys [115712]
O58 - SDL:[MD5.1C89EF529DB7DCA98E801EFDCC8437DE] - 23/11/2013 - 08:13:50 ---A- . (.Microsoft Corporation - Microsoft Bluetooth Audio Multiprofile Manager.) -- C:\Windows\System32\Drivers\BtaMPM.sys [19456]
O58 - SDL:[MD5.A8F23D453A424FF4DE04989C4727ECC7] - 22/08/2013 - 12:38:39 ---A- . (.Microsoft Corporation - HID de contrôle à distance audio/vidéo Bluetooth.) -- C:\Windows\System32\Drivers\BthAvrcpTg.sys [36992]
O58 - SDL:[MD5.746B9F94214915AECDE4B7FEA5FF9664] - 22/08/2013 - 12:37:42 ---A- . (.Microsoft Corporation - Bluetooth Hands-Free Audio and Call Control HID Enumerator.) -- C:\Windows\System32\Drivers\bthhfenum.sys [57856]
O58 - SDL:[MD5.71FE2A48E4C93DDB9798C024880B6C07] - 22/08/2013 - 12:38:16 ---A- . (.Microsoft Corporation - Minipilote HID mains libres Bluetooth.) -- C:\Windows\System32\Drivers\BthhfHid.sys [30720]
O58 - SDL:[MD5.07E33226AD218A2A162662A05CAFB52F] - 22/08/2013 - 12:36:44 ---A- . (.Microsoft Corporation - Bluetooth Communications Driver.) -- C:\Windows\System32\Drivers\bthmodem.sys [63488]
O58 - SDL:[MD5.A4A73F631FE2AA2826FBE4A399B04DEF] - 22/08/2013 - 13:43:41 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\Drivers\bxvbda.sys [531296]
O58 - SDL:[MD5.2FA6510E33F7DEFEC03658B74101A9B9] - 22/08/2013 - 12:40:15 ---A- . (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\Drivers\cdfs.sys [88576]
O58 - SDL:[MD5.C6796EA22B513E3457514D92DCDB1A3D] - 22/08/2013 - 09:46:35 ---A- . (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\Drivers\cdrom.sys [164352]
O58 - SDL:[MD5.BE9936EDD3267FAAFF94A7835867F00B] - 22/08/2013 - 12:38:25 ---A- . (.Microsoft Corporation - Consumer IR Class Driver for eHome.) -- C:\Windows\System32\Drivers\circlass.sys [44032]
O58 - SDL:[MD5.E18B615257E80E4A1EC6148943CED42B] - 22/08/2013 - 14:25:40 ---A- . (.Microsoft Corporation - SCSI Class System Dll.) -- C:\Windows\System32\Drivers\Classpnp.sys [337760]
O58 - SDL:[MD5.7F006813C2AFE622C13D7AF94F56CD07] - 22/08/2013 - 13:39:44 ---A- . (.Microsoft Corporation - Common Log File System Driver.) -- C:\Windows\System32\Drivers\clfs.sys [377696]
O58 - SDL:[MD5.075CCE75090786F124573A788C8656E6] - 25/06/2012 - 09:24:50 ---A- . (.CyberLink - It is a virtual device driver which could create multiple virtu.) -- C:\Windows\System32\Drivers\CLVirtualDrive.sys [92536]
O58 - SDL:[MD5.EF6EF85DADC3184A10D8F2F7159973CB] - 22/08/2013 - 12:39:43 ---A- . (.Microsoft Corporation - Control Method Battery Driver.) -- C:\Windows\System32\Drivers\CmBatt.sys [25472]
O58 - SDL:[MD5.825BE21E6395E00698D8A23955A87972] - 22/08/2013 - 13:41:39 ---A- . (.Microsoft Corporation - Kernel Cryptography, Next Generation.) -- C:\Windows\System32\Drivers\cng.sys [564520]
O58 - SDL:[MD5.03AAED827C36F35D70900558B8274905] - 22/08/2013 - 12:38:48 ---A- . (.Microsoft Corporation - Multi-Transport Composite Bus Enumerator.) -- C:\Windows\System32\Drivers\CompositeBus.sys [36352]
O58 - SDL:[MD5.A1FF7DFBFBE164CF92603C651D304DD2] - 22/08/2013 - 14:25:40 ---A- . (.Microsoft Corporation - Console Driver.) -- C:\Windows\System32\Drivers\condrv.sys [43008]
O58 - SDL:[MD5.FA47B0AA255B7CF4519E995C6404AE22] - 22/08/2013 - 13:43:41 ---A- . (.Microsoft Corporation - Crash Dump Driver.) -- C:\Windows\System32\Drivers\crashdmp.sys [68960]
O58 - SDL:[MD5.315BA4BC19316D72B2E037534E048B93] - 22/08/2013 - 13:50:19 ---A- . (.Microsoft Corporation - DAM Kernel Driver.) -- C:\Windows\System32\Drivers\dam.sys [57696]
O58 - SDL:[MD5.5DB26D7E0216D0BF364A81D3829AD7B9] - 22/08/2013 - 12:38:00 ---A- . (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\Drivers\dfsc.sys [134656]
O58 - SDL:[MD5.4D40C9B33F738797CF50E77CB7C53E85] - 22/08/2013 - 13:39:44 ---A- . (.Microsoft Corporation - PnP Disk Driver.) -- C:\Windows\System32\Drivers\disk.sys [100192]
O58 - SDL:[MD5.224C2CB37497472C345CB2A02DF11363] - 22/08/2013 - 13:43:40 ---A- . (.Microsoft Corporation - Crash Dump Disk Driver.) -- C:\Windows\System32\Drivers\Diskdump.sys [36192]
O58 - SDL:[MD5.407B4FC1AEE5C19AC2ED7118CBB271E9] - 22/08/2013 - 12:40:38 ---A- . (.Microsoft Corporation - Boot Over USB Dump Driver.) -- C:\Windows\System32\Drivers\Dmpusbstor.sys [13312]
O58 - SDL:[MD5.EB70A894708D1BC176AFD690FF06085F] - 22/08/2013 - 12:37:14 ---A- . (.Microsoft Corporation - Dynamic Memory.) -- C:\Windows\System32\Drivers\dmvsc.sys [29696]
O58 - SDL:[MD5.27069CFFF29B7F04F4B1BB10154BE52B] - 19/10/2012 - 04:52:32 ---A- . (.Windows (R) Win 7 DDK provider - IEEE-1284.4-1999 Driver.) -- C:\Windows\System32\Drivers\Dot4.sys [151968]
O58 - SDL:[MD5.0BD906A79F9CE3013F7D9D0AC45F9F9D] - 19/10/2012 - 04:52:30 ---A- . (.Windows (R) Win 7 DDK provider - IEEE-1284.4 Print Class Driver.) -- C:\Windows\System32\Drivers\Dot4Prt.sys [27040]
O58 - SDL:[MD5.B7D595F2F464F7B628AD53F06547792C] - 19/10/2012 - 04:52:32 ---A- . (.Microsoft Corporation - DOT4USB filter driver.) -- C:\Windows\System32\Drivers\Dot4usb.sys [49056]
O58 - SDL:[MD5.3103BBAB41F0C75BE6FA302439C9B9D6] - 22/08/2013 - 12:39:24 ---A- . (.Microsoft Corporation - Microsoft Trusted Audio Drivers.) -- C:\Windows\System32\Drivers\drmk.sys [88576]
O58 - SDL:[MD5.DDC11A202207C0400CBE07315B8FDE5E] - 22/08/2013 - 13:40:31 ---A- . (.Microsoft Corporation - Microsoft Trusted Audio Drivers.) -- C:\Windows\System32\Drivers\drmkaud.sys [14560]
O58 - SDL:[MD5.05F5C162881BE293956C60456EDB0092] - 22/08/2013 - 13:39:46 ---A- . (.Microsoft Corporation - ATAPI Dump Driver.) -- C:\Windows\System32\Drivers\Dumpata.sys [33632]
O58 - SDL:[MD5.05C674A72412E6400D5A2684C867402D] - 22/08/2013 - 13:45:59 ---A- . (.Microsoft Corporation - Bitlocker Drive Encryption Crashdump Filter.) -- C:\Windows\System32\Drivers\dumpfve.sys [71896]
O58 - SDL:[MD5.E194BE41AE3C80CFBBEBAC3394160091] - 30/09/2013 - 05:13:57 ---A- . (.Microsoft Corporation - SD Crashdump Port Driver.) -- C:\Windows\System32\Drivers\dumpsd.sys [151384]
O58 - SDL:[MD5.A3D1CB64DF885ACE126543E6D7067348] - 04/11/2013 - 18:13:19 ---A- . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys [1530200]
O58 - SDL:[MD5.9E167CDB2AEEF7994434543D0543AEEB] - 04/11/2013 - 18:13:19 ---A- . (.Microsoft Corporation - DirectX Graphics MMS.) -- C:\Windows\System32\Drivers\dxgmms1.sys [382808]
O58 - SDL:[MD5.43531A5993380CC5113242C29D265FD9] - 22/08/2013 - 13:43:40 ---A- . (.Microsoft Corporation - Enhanced Storage Class driver for IEEE 1667 devices.) -- C:\Windows\System32\Drivers\EhStorClass.sys [82784]
O58 - SDL:[MD5.6F8E738A9505A388B1157FDDE7B3101B] - 22/08/2013 - 13:43:40 ---A- . (.Microsoft Corporation - Microsoft driver for storage devices supporting IEEE 1667 and T.) -- C:\Windows\System32\Drivers\EhStorTcgDrv.sys [114016]
O58 - SDL:[MD5.DFFFAE1442BA4076E18EED5E406FA0D3] - 22/08/2013 - 12:38:45 ---A- . (.Microsoft Corporation - Error Device Driver.) -- C:\Windows\System32\Drivers\errdev.sys [10240]
O58 - SDL:[MD5.114BCFDF367FF37C3F1B0A96AF542E4D] - 22/08/2013 - 13:43:45 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\Drivers\evbda.sys [3357024]
O58 - SDL:[MD5.7729D294A555C7AEB281ED8E4D0E01E4] - 22/08/2013 - 12:40:18 ---A- . (.Microsoft Corporation - Microsoft Extended FAT File System.) -- C:\Windows\System32\Drivers\exfat.sys [200704]
O58 - SDL:[MD5.7C4E0D5900B2A1D11EDD626D6DDB937B] - 22/08/2013 - 13:49:30 ---A- . (.Microsoft Corporation - Fast FAT File System Driver.) -- C:\Windows\System32\Drivers\fastfat.sys [217952]
O58 - SDL:[MD5.5D8402613E778B3BD45E687A8372710B] - 22/08/2013 - 12:40:18 ---A- . (.Microsoft Corporation - Floppy Disk Controller Driver.) -- C:\Windows\System32\Drivers\fdc.sys [30720]
O58 - SDL:[MD5.957A7A8F5ACCAF23DD9DFF6DAA393CE5] - 22/08/2013 - 13:49:30 ---A- . (.Microsoft Corporation - FileInfo Filter Driver.) -- C:\Windows\System32\Drivers\fileinfo.sys [79200]
O58 - SDL:[MD5.A1A66C4FDAFD6B0289523232AFB7D8AF] - 22/08/2013 - 12:39:41 ---A- . (.Microsoft Corporation - File Trace Filter Driver.) -- C:\Windows\System32\Drivers\filetrace.sys [34816]
O58 - SDL:[MD5.BE743083CF7063C486A4398E3AEFE59A] - 22/08/2013 - 12:40:18 ---A- . (.Microsoft Corporation - Floppy Driver.) -- C:\Windows\System32\Drivers\flpydisk.sys [25088]
O58 - SDL:[MD5.60D5067FCE6D9433D35E04C01D8538B3] - 22/08/2013 - 14:25:41 ---A- . (.Microsoft Corporation - Gestionnaire de filtres de système de fichiers Microsoft.) -- C:\Windows\System32\Drivers\fltMgr.sys [358752]
O58 - SDL:[MD5.35005534E600E993A90B036E4E599F2B] - 22/08/2013 - 13:49:30 ---A- . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\fsdepends.sys [56672]
O58 - SDL:[MD5.09F460AFEDCA03F3BF6E07D1CCC9AC42] - 22/08/2013 - 14:25:40 ---A- . (.Microsoft Corporation - File System Recognizer Driver.) -- C:\Windows\System32\Drivers\fs_rec.sys [30048]
O58 - SDL:[MD5.83E1F0983B02A6F8EC764D18E24ECF10] - 30/09/2013 - 05:14:17 ---A- . (.Microsoft Corporation - BitLocker Drive Encryption Driver.) -- C:\Windows\System32\Drivers\fvevol.sys [579416]
O58 - SDL:[MD5.9ED04A7137B4451303407DFBAB15457A] - 22/08/2013 - 14:25:35 ---A- . (.Microsoft Corporation - FWP/IPsec Kernel-Mode API.) -- C:\Windows\System32\Drivers\FWPKCLNT.SYS [428896]
O58 - SDL:[MD5.9591D0B9351ED489EAFD9D1CE52A8015] - 22/08/2013 - 09:46:33 ---A- . (.Microsoft Corporation - Processor Driver.) -- C:\Windows\System32\Drivers\fxppm.sys [27136]
O58 - SDL:[MD5.FC3EF65EE20D39F8749C2218DBA681CA] - 22/08/2013 - 13:43:45 ---A- . (.Microsoft Corporation - Filtre AGPv3.0 générique Microsoft pour plateformes de processe.) -- C:\Windows\System32\Drivers\GAGP30KX.SYS [65888]
O58 - SDL:[MD5.14908F4F9005C29DE8F5587E271390EE] - 16/10/2013 - 22:10:24 ---A- . (.GFI Software - GFI Boot Time Operations Driver.) -- C:\Windows\System32\Drivers\gfibto.sys [14456]
O58 - SDL:[MD5.03909BDBFF0DCACCABF2B2D4ADEE44DC] - 22/08/2013 - 12:38:38 ---A- . (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\Drivers\hdaudbus.sys [78336]
O58 - SDL:[MD5.772A1DEEDFDBC244183B5C805D1B7D85] - 03/07/2012 - 00:16:02 ---A- . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\Drivers\HECIx64.sys [62784]
O58 - SDL:[MD5.10A70BC1871CD955D85CD88372724906] - 22/08/2013 - 12:39:01 ---A- . (.Microsoft Corporation - Hid Battery Driver.) -- C:\Windows\System32\Drivers\hidbatt.sys [26624]
O58 - SDL:[MD5.1EA1B4FABB8CC348E73CA90DBA22E104] - 22/08/2013 - 12:38:39 ---A- . (.Microsoft Corporation - Pilote de miniport Bluetooth pour les périphériques HID.) -- C:\Windows\System32\Drivers\hidbth.sys [96768]
O58 - SDL:[MD5.ADB26481D4D247C1D6986EC45FFDAB53] - 22/08/2013 - 12:39:14 ---A- . (.Microsoft Corporation - Bibliothèque Hid Class.) -- C:\Windows\System32\Drivers\hidclass.sys [111616]
O58 - SDL:[MD5.C241A8BAFBBFC90176EA0F5240EACC17] - 22/08/2013 - 12:37:28 ---A- . (.Microsoft Corporation - I2C HID Miniport Driver.) -- C:\Windows\System32\Drivers\hidi2c.sys [41472]
O58 - SDL:[MD5.9BDDEE26255421017E161CCB9D5EDA95] - 22/08/2013 - 12:39:16 ---A- . (.Microsoft Corporation - Infrared Miniport Driver for Input Devices.) -- C:\Windows\System32\Drivers\hidir.sys [45568]
O58 - SDL:[MD5.7FFB24B4A54B1ACD46CF6899D879CC9F] - 22/08/2013 - 12:40:26 ---A- . (.Microsoft Corporation - Hid Parsing Library.) -- C:\Windows\System32\Drivers\hidparse.sys [32512]
O58 - SDL:[MD5.F31397220D9687E11EB448649AA6E038] - 22/08/2013 - 12:38:58 ---A- . (.Microsoft Corporation - USB Miniport Driver for Input Devices.) -- C:\Windows\System32\Drivers\hidusb.sys [33792]
O58 - SDL:[MD5.D104FF402FC3DDB686E6DEF00334DB26] - 24/09/2012 - 12:40:56 ---A- . (.Hewlett-Packard Company - HP Disk Filter - SATA/RAID.) -- C:\Windows\System32\Drivers\hpdskflt.sys [31040]
O58 - SDL:[MD5.A6AACEA4C785789BDA5912AD1FEDA80D] - 22/08/2013 - 13:43:45 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\System32\Drivers\HpSAMD.sys [64352]
O58 - SDL:[MD5.3502776E366C913D49C0DA928AE3E6CB] - 22/08/2013 - 13:32:16 ---A- . (.Microsoft Corporation - HTTP Pile du protocole.) -- C:\Windows\System32\Drivers\http.sys [994144]
O58 - SDL:[MD5.90656C0B3864804B090434EFC582404F] - 22/08/2013 - 13:39:47 ---A- . (.Microsoft Corporation - Hardware Policy Driver.) -- C:\Windows\System32\Drivers\hwpolicy.sys [24416]
O58 - SDL:[MD5.6D6F9E3BF0484967E52F7E846BFF1CA1] - 22/08/2013 - 12:37:49 ---A- . (.Microsoft Corporation - Microsoft VMBus Synthetic Keyboard Driver.) -- C:\Windows\System32\Drivers\hyperkbd.sys [13824]
O58 - SDL:[MD5.907C870F8C31F8DDD6F090857B46AB25] - 22/08/2013 - 12:39:20 ---A- . (.Microsoft Corporation - Microsoft VMBus Video Device Miniport Driver.) -- C:\Windows\System32\Drivers\HyperVideo.sys [22016]
O58 - SDL:[MD5.84CFC5EFA97D0C965EDE1D56F116A541] - 22/08/2013 - 12:39:15 ---A- . (.Microsoft Corporation - Pilote de port i8042.) -- C:\Windows\System32\Drivers\i8042prt.sys [107520]
O58 - SDL:[MD5.5D90E32E36CE5D4C535D17CE08AEAF05] - 30/07/2013 - 19:47:35 ---A- . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\Windows\System32\Drivers\iaLPSSi_GPIO.sys [24568]
O58 - SDL:[MD5.DD05E7E80F52ADE9AEB292819920F32C] - 25/07/2013 - 20:05:39 ---A- . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\Windows\System32\Drivers\iaLPSSi_I2C.sys [99320]
O58 - SDL:[MD5.C02FC4C6C411C85F209EBD0EBBF8CAE9] - 13/06/2013 - 20:57:00 ---A- . (.Intel Corporation - Intel Rapid Storage Technology driver - x64.) -- C:\Windows\System32\Drivers\iaStorA.sys [650808]
O58 - SDL:[MD5.08BFE413B0B4AA8DFA4B5684CE06D3DC] - 10/08/2013 - 01:39:30 ---A- . (.Intel Corporation - Intel Rapid Storage Technology driver (inbox) - x64.) -- C:\Windows\System32\Drivers\iaStorAV.sys [651248]
O58 - SDL:[MD5.A2200C3033FA4EF249FC096A7A7D02A2] - 22/08/2013 - 13:43:45 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\Drivers\iaStorV.sys [412000]
O58 - SDL:[MD5.348214F96642FD4FEF630DE021BA3540] - 14/12/2012 - 02:42:22 ---A- . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\Drivers\igdkmd64.sys [5353888]
O58 - SDL:[MD5.F5495B38BFB9149925F54F65AB40EFBF] - 19/06/2012 - 16:40:50 ---A- . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\Windows\System32\Drivers\IntcDAud.sys [342528]
O58 - SDL:[MD5.4E448FCFFD00E8D657CD9E48D3E47157] - 22/08/2013 - 13:43:44 ---A- . (.Microsoft Corporation - Intel PCI IDE Driver.) -- C:\Windows\System32\Drivers\intelide.sys [18272]
O58 - SDL:[MD5.139CFCDCD36B1B1782FD8C0014AC9B0E] - 11/11/2013 - 03:48:41 ---A- . (.Microsoft Corporation - Intel Power Engine Plugin.) -- C:\Windows\System32\Drivers\intelpep.sys [39768]
O58 - SDL:[MD5.47E74A8E53C7C24DCE38311E1451C1D9] - 22/08/2013 - 09:46:35 ---A- . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\Drivers\intelppm.sys [98816]
O58 - SDL:[MD5.9DB76D7F9E4E53EFE5DD8C53DE837514] - 22/08/2013 - 12:35:51 ---A- . (.Microsoft Corporation - IP FILTER DRIVER.) -- C:\Windows\System32\Drivers\ipfltdrv.sys [84992]
O58 - SDL:[MD5.9949A3C7590B8C536C05312205079A82] - 22/08/2013 - 12:38:56 ---A- . (.Microsoft Corporation - PILOT IPMI WMI.) -- C:\Windows\System32\Drivers\IPMIDrv.sys [79360]
O58 - SDL:[MD5.B7342B3C58E91107F6E946A93D9D4EFD] - 27/11/2013 - 13:02:29 ---A- . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys [142848]
O58 - SDL:[MD5.D826F4874A372FAE2F42478E0975EA02] - 22/08/2013 - 12:37:35 ---A- . (.Microsoft Corporation - IRDA Protocol Driver.) -- C:\Windows\System32\Drivers\irda.sys [118784]
O58 - SDL:[MD5.AE44C526AB5F8A487D941CEB57B10C97] - 22/08/2013 - 12:38:30 ---A- . (.Microsoft Corporation - Infra-Red Bus Enumerator.) -- C:\Windows\System32\Drivers\irenum.sys [17920]
O58 - SDL:[MD5.8AFEEA3955AA43616A60F133B1D25F21] - 22/08/2013 - 13:43:45 ---A- . (.Microsoft Corporation - Pilote de bus PNP ISA.) -- C:\Windows\System32\Drivers\isapnp.sys [21856]
O58 - SDL:[MD5.8BE92376799B6B44D543E8D07CDCF885] - 22/08/2013 - 13:43:45 ---A- . (.Microsoft Corporation - Pilote de la classe Clavier.) -- C:\Windows\System32\Drivers\kbdclass.sys [58208]
O58 - SDL:[MD5.FB6E47E569D4872ABEB506BE03A45FBA] - 22/08/2013 - 12:39:13 ---A- . (.Microsoft Corporation - Pilote de filtre clavier HID.) -- C:\Windows\System32\Drivers\kbdhid.sys [32256]
O58 - SDL:[MD5.813871C7D402A05F2E3A7075F9584A05] - 22/08/2013 - 12:38:26 ---A- . (.Microsoft Corporation - Microsoft Kernel Debugger Network Miniport.) -- C:\Windows\System32\Drivers\kdnic.sys [19456]
O58 - SDL:[MD5.65EBBB459B66C818E809DD8135DCFFA2] - 30/09/2013 - 05:13:59 ---A- . (.Microsoft Corporation - Kernel CSA Library.) -- C:\Windows\System32\Drivers\ks.sys [285696]
O58 - SDL:[MD5.ADDECBCC777665BD113BED437E602AB0] - 30/09/2013 - 05:13:57 ---A- . (.Microsoft Corporation - Kernel Security Support Provider Interface.) -- C:\Windows\System32\Drivers\ksecdd.sys [101208]
O58 - SDL:[MD5.7296EA420134EAC390798B3232D066A4] - 22/08/2013 - 13:44:43 ---A- . (.Microsoft Corporation - Kernel Security Support Provider Interface Packages.) -- C:\Windows\System32\Drivers\ksecpkg.sys [192864]
O58 - SDL:[MD5.11AFB527AA370B1DAFD5C36F35F6D45F] - 22/08/2013 - 12:39:31 ---A- . (.Microsoft Corporation - Kernel Streaming WOW Thunk Service.) -- C:\Windows\System32\Drivers\ksthunk.sys [21248]
O58 - SDL:[MD5.C09010B3680860131631F53E8FE7BAD8] - 22/08/2013 - 12:36:18 ---A- . (.Microsoft Corporation - Link-Layer Topology Mapper I/O Driver.) -- C:\Windows\System32\Drivers\lltdio.sys [59392]
O58 - SDL:[MD5.C755AE4635457AA2A11F79C0DF857ABC] - 22/08/2013 - 13:43:44 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas.sys [109408]
O58 - SDL:[MD5.ADAC09CBE7A2040B7F68B5E5C9A75141] - 22/08/2013 - 13:43:45 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas2.sys [93536]
O58 - SDL:[MD5.04D1274BB9BBCCF12BD12374002AA191] - 22/08/2013 - 13:43:44 ---A- . (.LSI Corporation - LSI SAS Gen3 Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas3.sys [81760]
O58 - SDL:[MD5.327469EEF3833D0C584B7E88A76AEC0C] - 22/08/2013 - 13:43:45 ---A- . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sss.sys [82784]
O58 - SDL:[MD5.5EF604B0698F4FA962778285E8C5F1F2] - 22/08/2013 - 12:39:36 ---A- . (.Microsoft Corporation - Pilote de filtre de virtualisation de fichier LUA.) -- C:\Windows\System32\Drivers\luafv.sys [123904]
O58 - SDL:[MD5.0BB97D43299910CBFBA59C461B99B910] - 04/04/2013 - 14:50:32 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\mbam.sys [25928]
O58 - SDL:[MD5.C895E3FAE8628EAA4ADE0F52862CA575] - 22/08/2013 - 12:39:38 ---A- . (.Microsoft Corporation - Medium changer class driver.) -- C:\Windows\System32\Drivers\mcd.sys [22016]
O58 - SDL:[MD5.EB5C03A070F30D64A6DF80E53B22F53F] - 22/08/2013 - 13:43:45 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\Drivers\megasas.sys [56672]
O58 - SDL:[MD5.F6F13533196DE7A582D422B0241E4363] - 22/08/2013 - 13:43:45 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\Drivers\megasr.sys [575840]
O58 - SDL:[MD5.8B38C44F69259987C95135C9627E2378] - 22/08/2013 - 12:40:15 ---A- . (.Microsoft Corporation - Pilote de périphérique modem.) -- C:\Windows\System32\Drivers\modem.sys [40960]
O58 - SDL:[MD5.601589000CC90F0DF8DA2CC254A3CCC9] - 22/08/2013 - 12:36:37 ---A- . (.Microsoft Corporation - Monitor Driver.) -- C:\Windows\System32\Drivers\monitor.sys [30208]
O58 - SDL:[MD5.CEAC6D40FE887CE8406C2393CF97DE06] - 22/08/2013 - 13:43:45 ---A- . (.Microsoft Corporation - Pilote de la classe Souris.) -- C:\Windows\System32\Drivers\mouclass.sys [51040]
O58 - SDL:[MD5.02D98BF804084E9A0D69D1C69B02CCA9] - 22/08/2013 - 12:39:13 ---A- . (.Microsoft Corporation - Pilote de filtre souris HID.) -- C:\Windows\System32\Drivers\mouhid.sys [30208]
O58 - SDL:[MD5.515549560D481138E6E21AF7C6998E56] - 22/08/2013 - 14:25:40 ---A- . (.Microsoft Corporation - Gestionnaire des points de montage.) -- C:\Windows\System32\Drivers\mountmgr.sys [101728]
O58 - SDL:[MD5.F170510BE94CF45E3C6274578F6204B2] - 22/08/2013 - 12:36:06 ---A- . (.Microsoft Corporation - Microsoft Protection Service Driver.) -- C:\Windows\System32\Drivers\mpsdrv.sys [74240]
O58 - SDL:[MD5.59DCEC7499095DE5AED741358037AE2D] - 22/08/2013 - 12:37:19 ---A- . (.Microsoft Corporation - Windows NT WebDav Minirdr.) -- C:\Windows\System32\Drivers\mrxdav.sys [140288]
O58 - SDL:[MD5.79B6F3DF7CDFD12159871FF71464F0CE] - 23/11/2013 - 08:08:19 ---A- . (.Microsoft Corporation - Minirdr SMB Windows NT.) -- C:\Windows\System32\Drivers\mrxsmb.sys [403456]
O58 - SDL:[MD5.295771B092D4F7FCF2B62F80CCD14320] - 22/08/2013 - 12:35:42 ---A- . (.Microsoft Corporation - Longhorn SMB Downlevel SubRdr.) -- C:\Windows\System32\Drivers\mrxsmb10.sys [283648]
O58 - SDL:[MD5.AAF56E4E84D35411B4E446C445732DFE] - 30/09/2013 - 05:13:57 ---A- . (.Microsoft Corporation - Longhorn SMB 2.0 Redirector.) -- C:\Windows\System32\Drivers\mrxsmb20.sys [207360]
O58 - SDL:[MD5.D13329FBF8345B28AB30F44CC247DC08] - 22/08/2013 - 14:25:41 ---A- . (.Microsoft Corporation - Mailslot driver.) -- C:\Windows\System32\Drivers\msfs.sys [30208]
O58 - SDL:[MD5.FDA72810CA2F8409D9B31E833C448E34] - 22/08/2013 - 13:43:48 ---A- . (.Microsoft Corporation - GPIO Class Extension Driver.) -- C:\Windows\System32\Drivers\msgpioclx.sys [146272]
O58 - SDL:[MD5.C6B474E46F9E543B875981ED3FFE6ADD] - 22/08/2013 - 13:43:48 ---A- . (.Microsoft Corporation - GPIO Button Driver.) -- C:\Windows\System32\Drivers\msgpiowin32.sys [41824]
O58 - SDL:[MD5.65C92EB9D08DB5C69F28C7FFD4E84E31] - 22/08/2013 - 12:39:06 ---A- . (.Microsoft Corporation - Pass-through HID to KMDF Filter Driver.) -- C:\Windows\System32\Drivers\mshidkmdf.sys [8192]
O58 - SDL:[MD5.52299F086AC2DAFD100DD5DC4A8614BA] - 22/08/2013 - 12:39:06 ---A- . (.Microsoft Corporation - Pilote direct pour interface HID-UMDF.) -- C:\Windows\System32\Drivers\mshidumdf.sys [9728]
O58 - SDL:[MD5.36D92AF3343C3A3E57FEF11C449AEA4C] - 22/08/2013 - 13:43:49 ---A- . (.Microsoft Corporation - ISA Driver.) -- C:\Windows\System32\Drivers\msisadrv.sys [17248]
O58 - SDL:[MD5.034D4BD9DC67C64F3A4C8A049B5173BF] - 22/08/2013 - 13:43:49 ---A- . (.Microsoft Corporation - Microsoft iSCSI Initiator Driver.) -- C:\Windows\System32\Drivers\msiscsi.sys [274784]
O58 - SDL:[MD5.A9BBBD2BAE6142253B9195E949AC2E8D] - 22/08/2013 - 12:39:31 ---A- . (.Microsoft Corporation - MS KS Server.) -- C:\Windows\System32\Drivers\mskssrv.sys [10624]
O58 - SDL:[MD5.375E44168F2DFB91A68B8A3F619C5A7C] - 22/08/2013 - 12:36:07 ---A- . (.Microsoft Corporation - Pilote de protocole LLDP (Link Layer Discovery Protocol) Micros.) -- C:\Windows\System32\Drivers\mslldp.sys [66560]
O58 - SDL:[MD5.7B2128EB875DCBC006E6A913211006D6] - 22/08/2013 - 12:39:30 ---A- . (.Microsoft Corporation - MS Proxy Clock.) -- C:\Windows\System32\Drivers\mspclock.sys [7040]
O58 - SDL:[MD5.1E88171579B218115C7A772F8DE04BD8] - 22/08/2013 - 12:39:31 ---A- . (.Microsoft Corporation - MS Proxy Quality Manager.) -- C:\Windows\System32\Drivers\mspqm.sys [6784]
O58 - SDL:[MD5.BBE2A455053E63BECBF42C2F9B21FAE0] - 22/08/2013 - 14:25:35 ---A- . (.Microsoft Corporation - Kernel Remote Procedure Call Provider.) -- C:\Windows\System32\Drivers\msrpc.sys [366432]
O58 - SDL:[MD5.8D6B7D515C5CBCDB75B928A0B73C3C5E] - 22/08/2013 - 13:49:29 ---A- . (.Microsoft Corporation - System Management BIOS Driver.) -- C:\Windows\System32\Drivers\mssmbios.sys [37728]
O58 - SDL:[MD5.115019AE01E0EB9C048530D2928AB4A2] - 22/08/2013 - 12:38:38 ---A- . (.Microsoft Corporation - WDM Tee/Communication Transform Filter.) -- C:\Windows\System32\Drivers\mstee.sys [7936]
O58 - SDL:[MD5.96D604A35070360F0DD4A7A8AF410B5E] - 22/08/2013 - 12:37:36 ---A- . (.Microsoft Corporation - Pilote HID multipoint Microsoft.) -- C:\Windows\System32\Drivers\MTConfig.sys [13312]
O58 - SDL:[MD5.619CA29326B82372621DB2C0964D8365] - 22/08/2013 - 13:49:29 ---A- . (.Microsoft Corporation - Multiple UNC Provider Driver.) -- C:\Windows\System32\Drivers\mup.sys [78688]
O58 - SDL:[MD5.B8C35C94DCB2DFEAF03BB42131F2F77F] - 22/08/2013 - 13:43:49 ---A- . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\Windows\System32\Drivers\mvumis.sys [63840]
O58 - SDL:[MD5.ED39D676080A1AEA755F1DEC1A8DF1A4] - 25/11/2013 - 02:32:57 ---A- . (.Microsoft Corporation - NDIS (Network Driver Interface Specification).) -- C:\Windows\System32\Drivers\ndis.sys [1119064]
O58 - SDL:[MD5.C6BB12BC35D1637CA17AE16D3A4725EB] - 22/08/2013 - 12:38:06 ---A- . (.Microsoft Corporation - Microsoft NDIS Packet Capture Filter Driver.) -- C:\Windows\System32\Drivers\ndiscap.sys [43008]
O58 - SDL:[MD5.9F1DA20E943BE7AA4ED5F3E1EBA78B37] - 22/08/2013 - 12:36:17 ---A- . (.Microsoft Corporation - Microsoft Network Adapter Multiplexor.) -- C:\Windows\System32\Drivers\NdisImPlatform.sys [124928]
O58 - SDL:[MD5.9423421E735BD5394351E0C47C76BB92] - 22/08/2013 - 12:39:16 ---A- . (.Microsoft Corporation - NDIS 3.0 connection wrapper driver.) -- C:\Windows\System32\Drivers\ndistapi.sys [24576]
O58 - SDL:[MD5.B832B35055BA2B7B4181861FF94D8E59] - 22/08/2013 - 12:37:34 ---A- . (.Microsoft Corporation - Pilote d’E/S du mode utilisateur NDIS.) -- C:\Windows\System32\Drivers\ndisuio.sys [60416]
O58 - SDL:[MD5.1F58E48EF75F34C35D8E93A0DC535CFE] - 22/08/2013 - 12:36:25 ---A- . (.Microsoft Corporation - Énumérateur de cartes réseau virtuelles Microsoft.) -- C:\Windows\System32\Drivers\NdisVirtualBus.sys [16384]
O58 - SDL:[MD5.DEC29080202D4F9F17F55E18BCFCC41A] - 22/08/2013 - 12:35:56 ---A- . (.Microsoft Corporation - MS PPP Framing Driver (Strong Encryption).) -- C:\Windows\System32\Drivers\ndiswan.sys [220672]
O58 - SDL:[MD5.A5BD69A8812FA79D1A487691DD3FB244] - 22/08/2013 - 12:38:16 ---A- . (.Microsoft Corporation - NDIS Proxy.) -- C:\Windows\System32\Drivers\ndproxy.sys [72192]
O58 - SDL:[MD5.5A072F0B90C29C5233D78BE33EF5ED78] - 22/08/2013 - 12:35:42 ---A- . (.Microsoft Corporation - Windows Network Data Usage Monitoring Driver.) -- C:\Windows\System32\Drivers\Ndu.sys [103424]
O58 - SDL:[MD5.A83D67D347A684F10B7D3019C8A6380C] - 22/08/2013 - 12:38:58 ---A- . (.Microsoft Corporation - NetBIOS interface driver.) -- C:\Windows\System32\Drivers\netbios.sys [48128]
O58 - SDL:[MD5.0217532E19A748F0E5D569307363D5FD] - 22/08/2013 - 12:37:02 ---A- . (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\Drivers\netbt.sys [282624]
O58 - SDL:[MD5.9E900970FEDF9AF53687940F44E05227] - 22/08/2013 - 14:25:35 ---A- . (.Microsoft Corporation - Network I/O Subsystem.) -- C:\Windows\System32\Drivers\netio.sys [478048]
O58 - SDL:[MD5.76E90502D9001077DA92F81126D06C9B] - 26/11/2013 - 16:34:34 ---A- . (.Ralink Technology, Corp. - Ralink 802.11 Wireless Adapter Driver.) -- C:\Windows\System32\Drivers\netr28x.sys [2483376]
O58 - SDL:[MD5.70414DB660BFBB7BD58FCE8EA4364E1B] - 22/08/2013 - 12:36:43 ---A- . (.Microsoft Corporation - Virtual NDIS6.3 Miniport.) -- C:\Windows\System32\Drivers\netvsc63.sys [87040]
O58 - SDL:[MD5.8F44A2F57C9F1A19AC9C6288C10FB351] - 22/08/2013 - 14:25:41 ---A- . (.Microsoft Corporation - NPFS Driver.) -- C:\Windows\System32\Drivers\npfs.sys [58880]
O58 - SDL:[MD5.CBDB4F0871C88DF930FC0E8588CA67FC] - 22/08/2013 - 12:38:22 ---A- . (.Microsoft Corporation - Named pipe service triggers.) -- C:\Windows\System32\Drivers\npsvctrig.sys [23040]
O58 - SDL:[MD5.E490B459978CB87779E84C761D22B827] - 22/08/2013 - 14:25:35 ---A- . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys [39936]
O58 - SDL:[MD5.4412D565C0278C401575E11072C7DCE3] - 22/08/2013 - 14:25:41 ---A- . (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\Windows\System32\Drivers\ntfs.sys [2011488]
O58 - SDL:[MD5.EF1B290FC9F0E47CC0B537292BEE5904] - 22/08/2013 - 14:25:41 ---A- . (.Microsoft Corporation - NULL Driver.) -- C:\Windows\System32\Drivers\null.sys [5632]
O58 - SDL:[MD5.BC6B5942AFF25EBAF62DE43C3807EDF8] - 22/08/2013 - 13:43:31 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\Drivers\nvraid.sys [150368]
O58 - SDL:[MD5.1F43ABFFAC3D6CA356851D517392966E] - 22/08/2013 - 13:43:32 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\Drivers\nvstor.sys [168288]
O58 - SDL:[MD5.6934A936A7369DFE37B7DBA93F5E5E49] - 22/08/2013 - 13:43:32 ---A- . (.Microsoft Corporation - Filtre AGP NForce NT.) -- C:\Windows\System32\Drivers\NV_AGP.SYS [124768]
O58 - SDL:[MD5.CF8B989D89D6807B887690F2CF24EFD9] - 30/09/2013 - 05:14:01 ---A- . (.Microsoft Corporation - Pilote de miniport WiFi natif.) -- C:\Windows\System32\Drivers\nwifi.sys [442368]
O58 - SDL:[MD5.8528BB05E4D4E25945F78B00B2555FB7] - 22/08/2013 - 12:36:07 ---A- . (.Microsoft Corporation - Planificateur de paquets QoS.) -- C:\Windows\System32\Drivers\pacer.sys [151552]
O58 - SDL:[MD5.764B1121867B2D9B31C491668AC72B2B] - 22/08/2013 - 12:40:02 ---A- . (.Microsoft Corporation - Pilote de port parallèle.) -- C:\Windows\System32\Drivers\parport.sys [94208]
O58 - SDL:[MD5.EF0C1749C9A8CEE9A457473D433CC00F] - 22/08/2013 - 14:25:40 ---A- . (.Microsoft Corporation - Partition Management Driver.) -- C:\Windows\System32\Drivers\partmgr.sys [88928]
O58 - SDL:[MD5.C0D3F3BC1C84B4BA746D9847314C1164] - 22/08/2013 - 13:43:32 ---A- . (.Microsoft Corporation - Énumérateur Plug-and-Play PCI pour NT.) -- C:\Windows\System32\Drivers\pci.sys [285536]
O58 - SDL:[MD5.346E38FCC6859A727DD28AFAD1F0AFF4] - 22/08/2013 - 13:43:31 ---A- . (.Microsoft Corporation - Generic PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\pciide.sys [14688]
O58 - SDL:[MD5.5D4D6146346B82EB3CA4EE0C5573193C] - 22/08/2013 - 13:43:32 ---A- . (.Microsoft Corporation - PCI IDE Bus Driver Extension.) -- C:\Windows\System32\Drivers\pciidex.sys [48992]
O58 - SDL:[MD5.4D3BDCC1C7B40C9D7B6AD990E6DEC397] - 22/08/2013 - 13:49:30 ---A- . (.Microsoft Corporation - Pilote de bus PCMCIA.) -- C:\Windows\System32\Drivers\pcmcia.sys [114528]
O58 - SDL:[MD5.BF28771D1436C88BE1D297D3098B0F7D] - 22/08/2013 - 13:39:15 ---A- . (.Microsoft Corporation - Performance Counters for Windows Driver.) -- C:\Windows\System32\Drivers\pcw.sys [50016]
O58 - SDL:[MD5.B9D968D8E2B0F9C6301CEB39CFC9B9E4] - 01/11/2013 - 12:39:53 ---A- . (.Microsoft Corporation - Power Dependency Coordinator Driver.) -- C:\Windows\System32\Drivers\pdc.sys [86872]
O58 - SDL:[MD5.BA50CC0BD19004AAB88BE37338B6FA0D] - 22/08/2013 - 12:36:07 ---A- . (.Microsoft Corporation - Protected Environment Authentication and Authorization Export D.) -- C:\Windows\System32\Drivers\PEAuth.sys [663040]
O58 - SDL:[MD5.486F21443BD82029284AE82F238DA44C] - 26/11/2013 - 09:42:14 ---A- . (.Microsoft Corporation - Port Class (Class Driver for Port/Miniport Devices).) -- C:\Windows\System32\Drivers\portcls.sys [270848]
O58 - SDL:[MD5.ECD373F9571C745894367CC2635EA44F] - 22/08/2013 - 09:46:34 ---A- . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\Drivers\processr.sys [92160]
O58 - SDL:[MD5.3FB466684609A4329858CF2EBD62E0FD] - 22/08/2013 - 12:39:27 ---A- . (.Microsoft Corporation - Pilote du support de Microsoft Quality Windows Audio Video Expe.) -- C:\Windows\System32\Drivers\qwavedrv.sys [47104]
O58 - SDL:[MD5.2C56F0EE27E4EF70CA4B4983D3638905] - 22/08/2013 - 12:40:01 ---A- . (.Microsoft Corporation - RAS Automatic Connection Driver.) -- C:\Windows\System32\Drivers\rasacd.sys [17408]
O58 - SDL:[MD5.BBB6272B7F46C4640A8CDB8A70C3450F] - 22/08/2013 - 12:35:51 ---A- . (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\Drivers\rasl2tp.sys [120832]
O58 - SDL:[MD5.5247F308C4103CDC4FE12AE1D235800A] - 22/08/2013 - 12:36:37 ---A- . (.Microsoft Corporation - RAS PPPoE mini-port/call-manager driver.) -- C:\Windows\System32\Drivers\raspppoe.sys [84992]
O58 - SDL:[MD5.E075CC071022BD4E9BE7C024717C0E0A] - 22/08/2013 - 12:35:51 ---A- . (.Microsoft Corporation - Peer-to-Peer Tunneling Protocol.) -- C:\Windows\System32\Drivers\raspptp.sys [107520]
O58 - SDL:[MD5.2B0F1677CDD08967005F34488559BC6F] - 22/08/2013 - 12:36:11 ---A- . (.Microsoft Corporation - RAS SSTP Miniport Call Manager.) -- C:\Windows\System32\Drivers\rassstp.sys [96256]
O58 - SDL:[MD5.B939A2A0F9D6C6C186721E268EB6FA93] - 22/08/2013 - 12:37:50 ---A- . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire tampon de lecteur red.) -- C:\Windows\System32\Drivers\rdbss.sys [408576]
O58 - SDL:[MD5.6B21EBF892CD8CACB71669B35AB5DE32] - 22/08/2013 - 12:38:52 ---A- . (.Microsoft Corporation - Microsoft RDP Bus Device driver.) -- C:\Windows\System32\Drivers\rdpbus.sys [22528]
O58 - SDL:[MD5.680C1DAE268B6FB67FA21B389A8B79EF] - 30/09/2013 - 04:59:53 ---A- . (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RDP.) -- C:\Windows\System32\Drivers\rdpdr.sys [195584]
O58 - SDL:[MD5.858776908AF838E3790F3261B799CDA6] - 30/09/2013 - 04:59:54 ---A- . (.Microsoft Corporation - Microsoft RDP Video Miniport driver.) -- C:\Windows\System32\Drivers\rdpvideominiport.sys [27488]
O58 - SDL:[MD5.847C6A08912C3515807049C93E526D65] - 26/11/2013 - 09:42:14 ---A- . (.Microsoft Corporation - ReadyBoost Driver.) -- C:\Windows\System32\Drivers\rdyboost.sys [258904]
O58 - SDL:[MD5.036746D54347FD2D0385668E2A4064E4] - 22/08/2013 - 13:39:15 ---A- . (.Microsoft Corporation - Pilote du système de fichiers ReFS NT.) -- C:\Windows\System32\Drivers\refs.sys [924512]
O58 - SDL:[MD5.47008A9CF5F5D550B6ABDA3BDBC891CE] - 22/08/2013 - 12:36:23 ---A- . (.Microsoft Corporation - Reliable Multicast Transport.) -- C:\Windows\System32\Drivers\rmcast.sys [144384]
O58 - SDL:[MD5.4A24C61ED665DB4D13B93FACA06350CA] - 22/08/2013 - 12:38:44 ---A- . (.Microsoft Corporation - Remote NDIS Miniport.) -- C:\Windows\System32\Drivers\RNDISMP.sys [32256]
O58 - SDL:[MD5.A0AF9EBF560FDD0E044E04C0AF9FF9E6] - 22/08/2013 - 12:40:26 ---A- . (.Microsoft Corporation - Legacy Non-Pnp Modem Device Driver.) -- C:\Windows\System32\Drivers\rootmdm.sys [11776]
O58 - SDL:[MD5.2D05A5508F4685412F2B89E8C2189ABC] - 22/08/2013 - 12:36:34 ---A- . (.Microsoft Corporation - Link-Layer Topology Responder Driver for NDIS 6.) -- C:\Windows\System32\Drivers\rspndr.sys [80384]
O58 - SDL:[MD5.19764658C1468C2C0CEF133D28414A6B] - 18/06/2013 - 15:46:17 ---A- . (.Realtek - Realtek 8101E/8168/8169 NDIS 6.30 64-bit Driver.) -- C:\Windows\System32\Drivers\Rt630x64.sys [591360]
O58 - SDL:[MD5.D38250F459BF60D6F4B69B79DCD948CC] - 04/07/2012 - 14:09:08 ---A- . (.Realtek Semiconductor Corp. - Realtek Pcie CardReader Driver for 2K/XP/Vista/Win7/Win8.) -- C:\Windows\System32\Drivers\RtsP2Stor.sys [269968]
O58 - SDL:[MD5.C624A1B32211C3166EDB3F4AB02A30B7] - 22/08/2013 - 13:39:15 ---A- . (.Microsoft Corporation - SBP-2 Protocol Driver.) -- C:\Windows\System32\Drivers\sbp2port.sys [107872]
O58 - SDL:[MD5.ABD0237B15DBD2B4695F4B7D734A58F7] - 22/08/2013 - 12:38:07 ---A- . (.Microsoft Corporation - Pilote de filtre de lecteur de carte à puce Microsoft.) -- C:\Windows\System32\Drivers\scfilter.sys [40960]
O58 - SDL:[MD5.1C4EB3ACEA98CAD8FC7CF50F629FF0C6] - 22/08/2013 - 13:43:32 ---A- . (.Microsoft Corporation - SCSI Port Driver.) -- C:\Windows\System32\Drivers\scsiport.sys [170848]
O58 - SDL:[MD5.2F9A3380B8C0380E5608E29C7AA66899] - 30/09/2013 - 05:13:57 ---A- . (.Microsoft Corporation - Pilote du bus numérique sécurisé (SD).) -- C:\Windows\System32\Drivers\sdbus.sys [236376]
O58 - SDL:[MD5.4EAF4DCF9DBD9A56952A58F56D61C005] - 22/08/2013 - 13:43:32 ---A- . (.Microsoft Corporation - Pilote de classe de stockage SD.) -- C:\Windows\System32\Drivers\sdstor.sys [78688]
O58 - SDL:[MD5.3EA8A16169C26AFBEB544E0E48421186] - 22/08/2013 - 16:35:09 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\System32\Drivers\secdrv.sys [23040]
O58 - SDL:[MD5.DB2FF24CE0BDD15FE75870AFE312BA89] - 22/08/2013 - 13:43:31 ---A- . (.Microsoft Corporation - Serial Class Extension.) -- C:\Windows\System32\Drivers\SerCx.sys [69472]
O58 - SDL:[MD5.0044B31F93946D5D41982314381FE431] - 26/10/2013 - 02:54:32 ---A- . (.Microsoft Corporation - Serial Class Extension V2.) -- C:\Windows\System32\Drivers\SerCx2.sys [146776]
O58 - SDL:[MD5.3CD600C089C1251BEEB4CD4CD5164F9E] - 22/08/2013 - 12:40:17 ---A- . (.Microsoft Corporation - Serial Port Enumerator.) -- C:\Windows\System32\Drivers\serenum.sys [23040]
O58 - SDL:[MD5.D864381BC9C725FAB01D94C060660166] - 22/08/2013 - 12:40:08 ---A- . (.Microsoft Corporation - Pilote de périphérique série.) -- C:\Windows\System32\Drivers\serial.sys [83456]
O58 - SDL:[MD5.0BD2B65DCE756FDE95A2E5CCCBF7705D] - 22/08/2013 - 12:40:02 ---A- . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys [26112]
O58 - SDL:[MD5.472B7A5AC181C050888DB454663DD764] - 22/08/2013 - 12:40:00 ---A- . (.Microsoft Corporation - SCSI Floppy Driver.) -- C:\Windows\System32\Drivers\sfloppy.sys [17408]
O58 - SDL:[MD5.2F518D13DD6F3053837FE606F1A2EA1F] - 22/08/2013 - 13:43:31 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid2.sys [44896]
O58 - SDL:[MD5.1AC9A200A9C49C4508F04AAFFCA34A3F] - 22/08/2013 - 13:43:32 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid4.sys [81760]
O58 - SDL:[MD5.AF5CC3F9B88F140D78FC967ABF0F4EC7] - 24/08/2012 - 10:38:26 ---A- . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\Windows\System32\Drivers\Smb_driver_AMDASF.sys [41272]
O58 - SDL:[MD5.410F4660C8472873818A288EBBE1FC8A] - 25/05/2013 - 13:35:23 ---A- . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\Windows\System32\Drivers\Smb_driver_Intel.sys [33008]
O58 - SDL:[MD5.8C0773703184485D57975B6C1ED48730] - 22/08/2013 - 12:40:16 ---A- . (.Microsoft Corporation - Smart Card Driver Library.) -- C:\Windows\System32\Drivers\smclib.sys [19968]
O58 - SDL:[MD5.F6EBE514D13ECE7EDC23440039CDF9AB] - 31/10/2013 - 01:58:59 ---A- . (.Microsoft Corporation - Storage Spaces Driver.) -- C:\Windows\System32\Drivers\spaceport.sys [372568]
O58 - SDL:[MD5.F337BE11071818FC3F5DC2940B6BDE34] - 22/08/2013 - 13:43:31 ---A- . (.Microsoft Corporation - SPB Class Extension.) -- C:\Windows\System32\Drivers\SpbCx.sys [72032]
O58 - SDL:[MD5.2B78788A1485F9B99A578A299DF42C02] - 26/11/2013 - 09:42:14 ---A- . (.Microsoft Corporation - Server driver.) -- C:\Windows\System32\Drivers\srv.sys [454656]
O58 - SDL:[MD5.C1AE59C0B0817236EC083A91C396005A] - 30/09/2013 - 05:13:57 ---A- . (.Microsoft Corporation - Pilote de serveur SMB 2.0.) -- C:\Windows\System32\Drivers\srv2.sys [675328]
O58 - SDL:[MD5.77195C32175FC63D6054EBA5A066D727] - 30/09/2013 - 05:13:57 ---A- . (.Microsoft Corporation - Server Network driver.) -- C:\Windows\System32\Drivers\srvnet.sys [244224]
O58 - SDL:[MD5.366DEA74BBA65B362BCCFC6FC2ADFD8B] - 22/08/2013 - 13:43:32 ---A- . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Windows x64.) -- C:\Windows\System32\Drivers\stexstor.sys [31072]
O58 - SDL:[MD5.0ED2E318ABB68C1A35A8B8038BDB4C90] - 22/08/2013 - 13:43:31 ---A- . (.Microsoft Corporation - MS AHCI Storport Miniport Driver.) -- C:\Windows\System32\Drivers\storahci.sys [107872]
O58 - SDL:[MD5.6B06E2D11E604BE2B1A406C4CB3B90DE] - 26/11/2013 - 09:42:14 ---A- . (.Microsoft Corporation - Microsoft NVM Express Storport Miniport Driver.) -- C:\Windows\System32\Drivers\stornvme.sys [57176]
O58 - SDL:[MD5.A5764EE0625ACD6F010460B5200FE687] - 22/08/2013 - 13:43:32 ---A- . (.Microsoft Corporation - Microsoft Storage Port Driver.) -- C:\Windows\System32\Drivers\storport.sys [374112]
O58 - SDL:[MD5.548759755BC73DAD663250239D7E0B9F] - 22/08/2013 - 13:36:48 ---A- . (.Microsoft Corporation - Storage VSC Driver.) -- C:\Windows\System32\Drivers\storvsc.sys [45888]
O58 - SDL:[MD5.FF184501F8F556147BBBDE571315C137] - 22/08/2013 - 12:39:26 ---A- . (.Microsoft Corporation - WDM CODEC Class Device Driver 2.0.) -- C:\Windows\System32\Drivers\stream.sys [67584]
O58 - SDL:[MD5.32BE0B7CCA47A5BE30E7E43DC54B54F3] - 13/06/2013 - 20:53:40 ---A- . (.IDT, Inc. - IDT PC Audio.) -- C:\Windows\System32\Drivers\stwrt64.sys [542208]
O58 - SDL:[MD5.84E0F5D41C138C5CC975137A2A98F6D3] - 22/08/2013 - 13:43:33 ---A- . (.Microsoft Corporation - Plug and Play Software Device Enumerator.) -- C:\Windows\System32\Drivers\swenum.sys [14176]
O58 - SDL:[MD5.0F34FE968C91D02CE30D76C257F2BDA0] - 25/05/2013 - 13:35:30 ---A- . (.Synaptics Incorporated - Synaptics Touchpad Driver.) -- C:\Windows\System32\Drivers\SynTP.sys [495856]
O58 - SDL:[MD5.B13A57CE2F17B8C789E895E15F115DB0] - 22/08/2013 - 12:39:50 ---A- . (.Microsoft Corporation - SCSI Tape Class Driver.) -- C:\Windows\System32\Drivers\tape.sys [29696]
O58 - SDL:[MD5.DAD68FB30EFC58E322EADF01F013A99B] - 22/08/2013 - 13:49:33 ---A- . (.Microsoft Corporation - Export driver for kernel mode TPM API.) -- C:\Windows\System32\Drivers\tbs.sys [21856]
O58 - SDL:[MD5.3D9A5AC880D7AA2305812D665D24ED23] - 05/11/2013 - 21:12:19 ---A- . (.Microsoft Corporation - Pilote TCP/IP.) -- C:\Windows\System32\Drivers\tcpip.sys [2551128]
O58 - SDL:[MD5.33A7D83EEB15431773A6E186CFAABA21] - 22/08/2013 - 12:36:03 ---A- . (.Microsoft Corporation - TCP/IP Registry Compatibility Driver.) -- C:\Windows\System32\Drivers\tcpipreg.sys [48640]
O58 - SDL:[MD5.3C7361E0A5A6966DB957B94ECF924A9E] - 22/08/2013 - 14:25:35 ---A- . (.Microsoft Corporation - TDI Wrapper.) -- C:\Windows\System32\Drivers\tdi.sys [30208]
O58 - SDL:[MD5.FFF28F9F6823EB1756C60F1649560BBF] - 22/08/2013 - 14:25:35 ---A- . (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\Drivers\tdx.sys [107520]
O58 - SDL:[MD5.232D185D2337F141311D0CF1983E1431] - 30/09/2013 - 04:59:49 ---A- . (.Microsoft Corporation - Terminal Server Input Driver.) -- C:\Windows\System32\Drivers\terminpt.sys [37216]
O58 - SDL:[MD5.E8D2721972B8A2C3A4F6DE5C43D163E5] - 22/08/2013 - 13:39:14 ---A- . (.Microsoft Corporation - Kernel Transaction Manager Driver.) -- C:\Windows\System32\Drivers\tm.sys [121184]
O58 - SDL:[MD5.82F909359600D3603FE852DB7F135626] - 22/08/2013 - 13:49:33 ---A- . (.Microsoft Corporation - Pilote de périphérique TPM.) -- C:\Windows\System32\Drivers\tpm.sys [159584]
O58 - SDL:[MD5.BF8F54CA37E9C9D6582C31C5761F8C93] - 22/08/2013 - 12:37:28 ---A- . (.Microsoft Corporation - Pilote de filtre pour concentrateur USB du Bureau à distance.) -- C:\Windows\System32\Drivers\TsUsbFlt.sys [56320]
O58 - SDL:[MD5.E0088068DCE2EE82897027DDB8E05254] - 22/08/2013 - 12:37:46 ---A- . (.Microsoft Corporation - Remote Desktop Generic USB Driver.) -- C:\Windows\System32\Drivers\TsUsbGD.sys [29696]
O58 - SDL:[MD5.C8E0E78B5D284C2FF59BDFFDAF997242] - 22/08/2013 - 12:35:45 ---A- . (.Microsoft Corporation - Pilote d’interface de tunnel Microsoft.) -- C:\Windows\System32\Drivers\tunnel.sys [154112]
O58 - SDL:[MD5.F6EEAD052943B5A3104C1405BB856C54] - 22/08/2013 - 13:43:33 ---A- . (.Microsoft Corporation - Filtre MS AGPv3.5.) -- C:\Windows\System32\Drivers\UAGP35.SYS [64864]
O58 - SDL:[MD5.FE6067B1FD4E63650C667B33D080565B] - 22/08/2013 - 13:43:33 ---A- . (.Microsoft Corporation - Microsoft Uasp Driver.) -- C:\Windows\System32\Drivers\uaspstor.sys [74080]
O58 - SDL:[MD5.5D1B430EA11064C56E7C8F84B90DEB6A] - 22/08/2013 - 13:43:33 ---A- . (.Microsoft Corporation - USB Controller Extension.) -- C:\Windows\System32\Drivers\UCX01000.SYS [189792]
O58 - SDL:[MD5.1EC649F112896FAE33250F0B97AC5D0B] - 22/08/2013 - 12:40:20 ---A- . (.Microsoft Corporation - UDF File System Driver.) -- C:\Windows\System32\Drivers\udfs.sys [316928]
O58 - SDL:[MD5.9578691F297E1B1F519970FE6D47CB21] - 22/08/2013 - 13:39:15 ---A- . (.Microsoft Corporation - UEFI Driver for NT.) -- C:\Windows\System32\Drivers\uefi.sys [26976]
O58 - SDL:[MD5.5EAB5117DDB24FC4D39E6FFFCF1837B9] - 22/08/2013 - 13:43:33 ---A- . (.Microsoft Corporation - Filtre ULi AGPv3.0 pour plateformes à processeur K8/9.) -- C:\Windows\System32\Drivers\ULIAGPKX.SYS [65888]
O58 - SDL:[MD5.DA34C39A18E60E7C3FA0630566408034] - 22/08/2013 - 12:38:59 ---A- . (.Microsoft Corporation - User-Mode Bus Enumerator.) -- C:\Windows\System32\Drivers\umbus.sys [46080]
O58 - SDL:[MD5.AE8294875E5446E359B1E8035D40C05E] - 22/08/2013 - 12:38:58 ---A- . (.Microsoft Corporation - Generic pass-through driver.) -- C:\Windows\System32\Drivers\umpass.sys [11776]
O58 - SDL:[MD5.A5A402FE30B5E0831F4EB6A112104811] - 22/08/2013 - 12:38:16 ---A- . (.Microsoft Corporation - Remote NDIS USB Driver.) -- C:\Windows\System32\Drivers\usb8023.sys [20992]
O58 - SDL:[MD5.5D45329A96B1A417DC7F59FDEABC0DDE] - 22/08/2013 - 12:39:27 ---A- . (.Microsoft Corporation - Universal Serial Bus Camera Driver.) -- C:\Windows\System32\Drivers\USBCAMD2.sys [32512]
O58 - SDL:[MD5.433ECDE01A52691FA7ACA51C10C09B70] - 26/11/2013 - 09:34:12 ---A- . (.Microsoft Corporation - USB Common Class Generic Parent Driver.) -- C:\Windows\System32\Drivers\usbccgp.sys [155480]
O58 - SDL:[MD5.B3D6457D841A0CAEF4C52D88621715F2] - 22/08/2013 - 12:38:26 ---A- . (.Microsoft Corporation - USB Consumer IR Driver for eHome.) -- C:\Windows\System32\Drivers\usbcir.sys [98304]
O58 - SDL:[MD5.882222A9961418A75A08CB68671679D5] - 22/08/2013 - 13:43:33 ---A- . (.Microsoft Corporation - Universal Serial Bus Driver.) -- C:\Windows\System32\Drivers\usbd.sys [28000]
O58 - SDL:[MD5.5477D6E27C7D266EF8C152B9A25ADE5E] - 22/08/2013 - 13:43:33 ---A- . (.Microsoft Corporation - EHCI eUSB Miniport Driver.) -- C:\Windows\System32\Drivers\usbehci.sys [89952]
O58 - SDL:[MD5.DF56C2C04EFA328D7A66B69007130266] - 22/08/2013 - 13:43:34 ---A- . (.Microsoft Corporation - Pilote de concentrateur USB par défaut.) -- C:\Windows\System32\Drivers\usbhub.sys [422240]
O58 - SDL:[MD5.C0E33820326199CE3CFD3B9F27F81D99] - 30/09/2013 - 05:13:57 ---A- . (.Microsoft Corporation - Pilote de concentrateur USB3.) -- C:\Windows\System32\Drivers\USBHUB3.SYS [467800]
O58 - SDL:[MD5.3019097FB6C985EF24C058090FF3BDBD] - 22/08/2013 - 12:39:27 ---A- . (.Microsoft Corporation - OHCI USB Miniport Driver.) -- C:\Windows\System32\Drivers\usbohci.sys [30208]
O58 - SDL:[MD5.32F2E6BAD9FA8E14B55E97280661801E] - 22/08/2013 - 13:43:34 ---A- . (.Microsoft Corporation - Pilote de port USB 1.1 & 2.0.) -- C:\Windows\System32\Drivers\usbport.sys [439136]
O58 - SDL:[MD5.4D655E3B684BE9B0F7FFD8A2935C348C] - 22/08/2013 - 12:36:33 ---A- . (.Microsoft Corporation - USB Printer driver.) -- C:\Windows\System32\Drivers\usbprint.sys [26112]
O58 - SDL:[MD5.3431FBFAC156EB7FEF9B936EC2A77AF6] - 22/08/2013 - 12:39:39 ---A- . (.Microsoft Corporation - Gestionnaire de stratégie de redirection USB Windows.) -- C:\Windows\System32\Drivers\usbrpm.sys [30720]
O58 - SDL:[MD5.F04D164C4168701A4E7835607722E5F1] - 22/08/2013 - 12:39:58 ---A- . (.Microsoft Corporation - USB Scanner Driver.) -- C:\Windows\System32\Drivers\usbscan.sys [44544]
O58 - SDL:[MD5.4628B415A84EA9D4D396A56F1D0CB6C6] - 25/11/2013 - 02:45:34 ---A- . (.Microsoft Corporation - Pilote de classe de stockage de masse USB.) -- C:\Windows\System32\Drivers\USBSTOR.SYS [142680]
O58 - SDL:[MD5.BA4FA655E0FC577DB7436FC963932CE4] - 22/08/2013 - 12:39:28 ---A- . (.Microsoft Corporation - UHCI USB Miniport Driver.) -- C:\Windows\System32\Drivers\usbuhci.sys [34816]
O58 - SDL:[MD5.18F744E8CCEB2670040EBAF7AD77B8C6] - 22/08/2013 - 12:38:00 ---A- . (.Microsoft Corporation - USB Video Class Driver.) -- C:\Windows\System32\Drivers\usbvideo.sys [212224]
O58 - SDL:[MD5.3B44CB989757428208CCFCC028C13110] - 09/11/2013 - 12:55:11 ---A- . (.Microsoft Corporation - Pilote XHCI USB.) -- C:\Windows\System32\Drivers\USBXHCI.SYS [325464]
O58 - SDL:[MD5.FEB26E3B8345A7E8D62F945C4AE86562] - 22/08/2013 - 13:37:27 ---A- . (.Microsoft Corporation - Virtual Drive Root Enumerator.) -- C:\Windows\System32\Drivers\vdrvroot.sys [37728]
O58 - SDL:[MD5.A026EDEAA5EECAE0B08E2748B616D4BD] - 30/09/2013 - 05:13:57 ---A- . (.Microsoft Corporation - Driver Verifier Extension.) -- C:\Windows\System32\Drivers\VerifierExt.sys [175960]
O58 - SDL:[MD5.041D3EF364E624DBB2703A64A5AADF89] - 22/08/2013 - 13:37:27 ---A- . (.Microsoft Corporation - VHD Miniport Driver.) -- C:\Windows\System32\Drivers\vhdmp.sys [551776]
O58 - SDL:[MD5.06D38968028E9AB19DE9B618C7B6D199] - 22/08/2013 - 13:43:34 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\viaide.sys [19808]
O58 - SDL:[MD5.608BD5400EFD2307A5F8DDDC87775734] - 22/08/2013 - 12:39:31 ---A- . (.Microsoft Corporation - Video Port Driver.) -- C:\Windows\System32\Drivers\videoprt.sys [49152]
O58 - SDL:[MD5.B600C96614BC7F890A6F2A4C93FA15EC] - 22/08/2013 - 13:36:48 ---A- . (.Microsoft Corporation - Hyper-V VMBus KMCL.) -- C:\Windows\System32\Drivers\vmbkmcl.sys [90944]
O58 - SDL:[MD5.C6305BDFC4F7CE51F72BB072C03D4ACE] - 22/08/2013 - 13:36:51 ---A- . (.Microsoft Corporation - Microsoft Hyper-V Virtual Machine Bus Child Driver.) -- C:\Windows\System32\Drivers\vmbus.sys [97088]
O58 - SDL:[MD5.DA40BEA0A863CE768C940CA9723BF81F] - 22/08/2013 - 12:37:50 ---A- . (.Microsoft Corporation - Microsoft VMBus HID Miniport.) -- C:\Windows\System32\Drivers\VMBusHID.sys [21760]
O58 - SDL:[MD5.0BF5CAD281E25F1418E5B8875DC5ADD1] - 22/08/2013 - 12:38:23 ---A- . (.Microsoft Corporation - Virtual Machine Generation Counter.) -- C:\Windows\System32\Drivers\vmgencounter.sys [11264]
O58 - SDL:[MD5.1A063730F221B2746FF00457AE17E4F0] - 22/08/2013 - 12:38:37 ---A- . (.Microsoft Corporation - Microsoft S3 Emulated Device Cap Driver.) -- C:\Windows\System32\Drivers\vms3cap.sys [7168]
O58 - SDL:[MD5.7A08CEE1535F5A448215634C5EA74E50] - 22/08/2013 - 13:36:48 ---A- . (.Microsoft Corporation - Virtual Storage Filter Driver.) -- C:\Windows\System32\Drivers\vmstorfl.sys [49984]
O58 - SDL:[MD5.55D7D963DE85162F1C49721E502F9744] - 22/08/2013 - 13:39:15 ---A- . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys [73568]
O58 - SDL:[MD5.CCB9E901F7254BF96D28EB1B0E5329B7] - 22/08/2013 - 13:39:15 ---A- . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys [377696]
O58 - SDL:[MD5.9F9CE33B50611A1C61A46B8911E0B30B] - 22/08/2013 - 13:39:15 ---A- . (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\Windows\System32\Drivers\volsnap.sys [312160]
O58 - SDL:[MD5.01355C98B5C3ED1EC446743CDA848FCE] - 22/08/2013 - 13:37:27 ---A- . (.Microsoft Corporation - Virtual PCI Bus.) -- C:\Windows\System32\Drivers\vpci.sys [69472]
O58 - SDL:[MD5.4539F45F9F4C9757A86A56C949421E07] - 22/08/2013 - 13:43:34 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\Drivers\vsmraid.sys [168800]
O58 - SDL:[MD5.0849B7260F26FE05EA56DED0672E2F4B] - 22/08/2013 - 13:43:34 ---A- . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\Windows\System32\Drivers\VSTXRAID.SYS [305504]
O58 - SDL:[MD5.BE970C369E43B509C1EDA2B8FA7CECB0] - 22/08/2013 - 12:39:00 ---A- . (.Microsoft Corporation - Pilote de bus WiFi virtuel.) -- C:\Windows\System32\Drivers\vwifibus.sys [24576]
O58 - SDL:[MD5.6B26AD573CCDD5209DF4397438B76354] - 22/08/2013 - 12:38:05 ---A- . (.Microsoft Corporation - Virtual WiFi Filter Driver.) -- C:\Windows\System32\Drivers\vwififlt.sys [71680]
O58 - SDL:[MD5.0B48E0DFB44EE475F4FD8A8EE599AF30] - 22/08/2013 - 12:36:15 ---A- . (.Microsoft Corporation - Virtual WiFi Miniport Driver.) -- C:\Windows\System32\Drivers\vwifimp.sys [36864]
O58 - SDL:[MD5.0910AB9ED404C1434E2D0376C2AD5D8B] - 22/08/2013 - 12:39:15 ---A- . (.Microsoft Corporation - Wacom Serial Pen Tablet HID Driver.) -- C:\Windows\System32\Drivers\wacompen.sys [26752]
O58 - SDL:[MD5.AFCD4054D61BD708B82991348ED1C763] - 22/08/2013 - 12:35:46 ---A- . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) -- C:\Windows\System32\Drivers\wanarp.sys [79872]
O58 - SDL:[MD5.602811E8AAE68030C151345C84A0CDAF] - 22/08/2013 - 12:39:48 ---A- . (.Microsoft Corporation - Watchdog Driver.) -- C:\Windows\System32\Drivers\watchdog.sys [54272]
O58 - SDL:[MD5.694B28DE12AD47031FFB4B052662131A] - 22/08/2013 - 13:31:28 ---A- . (.Microsoft Corporation - Microsoft antimalware boot driver.) -- C:\Windows\System32\Drivers\WdBoot.sys [34760]
O58 - SDL:[MD5.CB6C63FF8342B467E2EF76E98D5B934D] - 22/08/2013 - 14:25:41 ---A- . (.Microsoft Corporation - Runtime de l’infrastructure de pilotes en mode noyau.) -- C:\Windows\System32\Drivers\Wdf01000.sys [839488]
O58 - SDL:[MD5.0B99529A3BECC3528D865DDECB62503B] - 22/08/2013 - 13:34:22 ---A- . (.Microsoft Corporation - Microsoft antimalware file system filter driver.) -- C:\Windows\System32\Drivers\WdFilter.sys [265056]
O58 - SDL:[MD5.42C23552FC0BF2BAB9053BE6E4DC3D13] - 22/08/2013 - 14:25:41 ---A- . (.Microsoft Corporation - Kernel Mode Driver Framework Loader.) -- C:\Windows\System32\Drivers\WdfLdr.sys [60224]
O58 - SDL:[MD5.282E7D46310338FF4A6B7680440EB0DA] - 22/08/2013 - 13:34:22 ---A- . (.Microsoft Corporation - Microsoft Network Realtime Inspection Driver.) -- C:\Windows\System32\Drivers\WdNisDrv.sys [124256]
O58 - SDL:[MD5.2E0AF5B354ED1BB10314353B6A625B68] - 22/08/2013 - 13:39:04 ---A- . (.Microsoft Corporation - Windows Error Reporting Kernel Driver.) -- C:\Windows\System32\Drivers\werkernel.sys [38240]
O58 - SDL:[MD5.2E3E82D7B1076B90F4E228A8EF17B261] - 26/11/2013 - 09:39:55 ---A- . (.Microsoft Corporation - WFP NDIS 6.30 Lightweight Filter Driver.) -- C:\Windows\System32\Drivers\wfplwfs.sys [136536]
O58 - SDL:[MD5.867BCC69ED9C31C501465EB0E8BA9DFA] - 22/08/2013 - 13:45:37 ---A- . (.Microsoft Corporation - Wim file system Driver.) -- C:\Windows\System32\Drivers\wimmount.sys [33632]
O58 - SDL:[MD5.54BAF0C6639AF707D00BB6C1ACA8837A] - 22/08/2013 - 13:36:48 ---A- . (.Microsoft Corporation - Windows Hypervisor Interface Driver.) -- C:\Windows\System32\Drivers\winhv.sys [61248]
O58 - SDL:[MD5.AC263C2F66405589528995AA41040599] - 22/08/2013 - 12:37:55 ---A- . (.Microsoft Corporation - Windows WinUSB Class Driver.) -- C:\Windows\System32\Drivers\winusb.sys [78848]
O58 - SDL:[MD5.4F2A80D65AE6F845776E2F06AE6782ED] - 31/08/2012 - 09:40:24 ---A- . (.Hewlett-Packard Development Company, L.P. - HP Wireless Button Driver.) -- C:\Windows\System32\Drivers\WirelessButtonDriver64.sys [20800]
O58 - SDL:[MD5.2834D9D3B4F554A39C72F00EA3F0E128] - 22/08/2013 - 12:40:04 ---A- . (.Microsoft Corporation - Windows Management Interface for ACPI.) -- C:\Windows\System32\Drivers\wmiacpi.sys [16384]
O58 - SDL:[MD5.1FE5DDC32243469E6FA4440C02775A34] - 22/08/2013 - 14:25:41 ---A- . (.Microsoft Corporation - WMILIB WMI support library Dll.) -- C:\Windows\System32\Drivers\wmilib.sys [18272]
O58 - SDL:[MD5.E746BCDBA2E02CF6B8D6B26FB167FBE0] - 22/08/2013 - 13:41:08 ---A- . (.Microsoft Corporation - Family Safety Filter Driver.) -- C:\Windows\System32\Drivers\wpcfltr.sys [54304]
O58 - SDL:[MD5.9F2904B55F6CECCD1A8D986B5CE2609A] - 22/08/2013 - 13:36:12 ---A- . (.Microsoft Corporation - Windows Portable Device Upper Class Filter Driver.) -- C:\Windows\System32\Drivers\WpdUpFltr.sys [26976]
O58 - SDL:[MD5.38CAE0D33091C6F3B542F230E70ED44B] - 22/08/2013 - 14:25:41 ---A- . (.Microsoft Corporation - WPP Trace Recorder.) -- C:\Windows\System32\Drivers\WppRecorder.sys [23392]
O58 - SDL:[MD5.AE072B0339D0A18E455DC21666CAD572] - 22/08/2013 - 12:40:03 ---A- . (.Microsoft Corporation - Couche IFS Winsock2.) -- C:\Windows\System32\Drivers\ws2ifsl.sys [21504]
O58 - SDL:[MD5.2FEAE33E9B2B56104596E1BA444405A9] - 22/08/2013 - 12:37:21 ---A- . (.Microsoft Corporation - Windows Driver Foundation - User-mode Driver Framework Platform.) -- C:\Windows\System32\Drivers\WUDFPf.sys [117760]
O58 - SDL:[MD5.19240C13F526125554B5370566F21A0A] - 22/08/2013 - 12:36:50 ---A- . (.Microsoft Corporation - Windows Driver Foundation - User-mode Driver Framework Reflecto.) -- C:\Windows\System32\Drivers\WUDFRd.sys [230912]
O58 - SDL:[MD5.0E0796E3413D38A396B1C1591CE2B72E] - 26/11/2013 - 11:13:36 ---A- . (.Microsoft Corporation - Pilote Win32 multi-utilisateurs.) -- C:\Windows\System32\win32k.sys [4191232]
O58 - SDL:[MD5.93E9D905C90F8C3112C4DAFD1E92EC73] - 22/08/2013 - 10:26:02 ---A- . (.Microsoft Corporation - Windows Background System Events Broker API Server.) -- C:\Windows\System32\Windows.ApplicationModel.Background.SystemEventsBroker.dll [29184]
O58 - SDL:[MD5.BEC416C94F914C379E1A2BC5752EF763] - 22/08/2013 - 10:53:40 ---A- . (.Microsoft Corporation - DLL d’exécution de l’affichage système Windows.) -- C:\Windows\System32\Windows.System.Display.dll [25600]
O58 - SDL:[MD5.C352CC3A499712E4E919385B74E1C8C0] - 22/08/2013 - 10:09:22 ---A- . (.Microsoft Corporation - DLL d’ID matériel du profil du système Windows.) -- C:\Windows\System32\Windows.System.Profile.HardwareId.dll [210944]
O58 - SDL:[MD5.E91F19CF5E4B73AB2ECA7E362A206920] - 22/08/2013 - 10:53:16 ---A- . (.Microsoft Corporation - Windows.System.Profile.SystemManufacturers.) -- C:\Windows\System32\Windows.System.Profile.SystemManufacturers.dll [25600]
O58 - SDL:[MD5.BEBFC818CCF0057A84456A35A1E7AFF2] - 22/08/2013 - 10:53:53 ---A- . (.Microsoft Corporation - Windows System RemoteDesktop Runtime DLL.) -- C:\Windows\System32\Windows.System.RemoteDesktop.dll [21504]
O58 - SDL:[MD5.EC5B17B8036FAC9DFF8BAC94E30799B1] - 22/08/2013 - 03:27:50 ---A- . (.Microsoft Corporation - Windows Background System Events Broker API Server.) -- C:\Windows\SysWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll [24064]
O58 - SDL:[MD5.7084BCD3A95C278D38C9EBDF413DF29F] - 22/08/2013 - 03:47:07 ---A- . (.Microsoft Corporation - DLL d’exécution de l’affichage système Windows.) -- C:\Windows\SysWOW64\Windows.System.Display.dll [22016]
O58 - SDL:[MD5.FC01DFD0046CD6121B92C377C2A9C2AB] - 22/08/2013 - 03:18:25 ---A- . (.Microsoft Corporation - DLL d’ID matériel du profil du système Windows.) -- C:\Windows\SysWOW64\Windows.System.Profile.HardwareId.dll [169984]
O58 - SDL:[MD5.433A9B4E0DB68C176F9AF34BF6441D59] - 22/08/2013 - 03:46:48 ---A- . (.Microsoft Corporation - Windows.System.Profile.SystemManufacturers.) -- C:\Windows\SysWOW64\Windows.System.Profile.SystemManufacturers.dll [22016]
O58 - SDL:[MD5.BB4F2BCF02F0E98E8EA5CB45EC0285A6] - 22/08/2013 - 03:47:23 ---A- . (.Microsoft Corporation - Windows System RemoteDesktop Runtime DLL.) -- C:\Windows\SysWOW64\Windows.System.RemoteDesktop.dll [18432]
~ Drivers: 18 Scanned in 00mn 07s



---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)
O61 - LFC: 05/03/2014 - 19:03:50 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\DomainsFavicons\priceminister.com.ico [3638]
O61 - LFC: 05/03/2014 - 19:03:51 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{656F79EA-4C0B-46A6-9C54-A6FD7A729C1C}\AccountsOrder.dat [40]
O61 - LFC: 05/03/2014 - 19:03:51 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{656F79EA-4C0B-46A6-9C54-A6FD7A729C1C}\imsl.dat [8257]
O61 - LFC: 05/03/2014 - 19:03:53 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{656F79EA-4C0B-46A6-9C54-A6FD7A729C1C}\Message Store\Containers.db [41984]
O61 - LFC: 05/03/2014 - 19:04:08 ----- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{8676FEE7-8FD5-4335-A3D0-F54CF8E3D490}\Message Store\Outbox.imm [513265]
O61 - LFC: 05/03/2014 - 19:04:08 ----- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{8676FEE7-8FD5-4335-A3D0-F54CF8E3D490}\Message Store\Sent Items.imm [9188358]
O61 - LFC: 05/03/2014 - 19:04:11 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{95906C12-829F-4F46-9B5E-AF9D9EBD9396}\Message Store\IndexB\history.ix [1007209]
O61 - LFC: 05/03/2014 - 19:04:11 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{95906C12-829F-4F46-9B5E-AF9D9EBD9396}\Message Store\IndexB\index_d_1.ix [589824]
O61 - LFC: 05/03/2014 - 19:04:11 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{95906C12-829F-4F46-9B5E-AF9D9EBD9396}\Message Store\IndexB\index_di_1.ix [65536]
O61 - LFC: 05/03/2014 - 19:04:11 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{95906C12-829F-4F46-9B5E-AF9D9EBD9396}\Message Store\IndexB\index_i_1236.ix [5638]
O61 - LFC: 05/03/2014 - 19:04:11 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{95906C12-829F-4F46-9B5E-AF9D9EBD9396}\Message Store\IndexB\index_k_1236.ix [65536]
O61 - LFC: 05/03/2014 - 19:04:11 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{95906C12-829F-4F46-9B5E-AF9D9EBD9396}\Message Store\IndexB\index_kl_1.ix [3276800]
O61 - LFC: 05/03/2014 - 19:04:11 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{95906C12-829F-4F46-9B5E-AF9D9EBD9396}\Message Store\IndexB\index_klh_1236.ix [1482]
O61 - LFC: 05/03/2014 - 19:04:11 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{95906C12-829F-4F46-9B5E-AF9D9EBD9396}\Message Store\IndexB\index_r_1.ix [2748643]
O61 - LFC: 05/03/2014 - 19:04:11 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{95906C12-829F-4F46-9B5E-AF9D9EBD9396}\Message Store\IndexB\index_v.ix [297]
O61 - LFC: 05/03/2014 - 19:04:11 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{95906C12-829F-4F46-9B5E-AF9D9EBD9396}\Message Store\IndexB\indexlog.dat [2766]
O61 - LFC: 05/03/2014 - 19:04:13 ----- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{95906C12-829F-4F46-9B5E-AF9D9EBD9396}\Message Store\Sent Items.imm [355093]
O61 - LFC: 05/03/2014 - 19:04:20 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Runtime\Letter\7C961F0F-07F7-4199-83AA-685847E59836\1BD5DBCA-6F17-4937-83DC-4FCAAD9BA45C.htm [48972]
O61 - LFC: 05/03/2014 - 19:04:22 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Runtime\Message\745D24D6-6F2C-496A-BB0B-EB1FB11546B6.htm [46724]
O61 - LFC: 05/03/2014 - 19:04:29 ---A- . (...) -- C:\Users\nikita\AppData\Local\Packages\CheckPoint.VPN_cw5n1h2txyewy\Settings\settings.dat [8192]
O61 - LFC: 05/03/2014 - 19:04:29 ---A- . (...) -- C:\Users\nikita\AppData\Local\Packages\FileManager_cw5n1h2txyewy\Settings\settings.dat [8192]
O61 - LFC: 05/03/2014 - 19:04:29 ---A- . (...) -- C:\Users\nikita\AppData\Local\Packages\JuniperNetworks.JunosPulseVpn_cw5n1h2txyewy\Settings\settings.dat [8192]
O61 - LFC: 05/03/2014 - 19:04:29 ---A- . (...) -- C:\Users\nikita\AppData\Local\Packages\f5.vpn.client_cw5n1h2txyewy\Settings\settings.dat [8192]
O61 - LFC: 05/03/2014 - 19:04:31 ---A- . (...) -- C:\Users\nikita\AppData\Local\Packages\SonicWALL.MobileConnect_cw5n1h2txyewy\Settings\settings.dat [8192]
O61 - LFC: 05/03/2014 - 19:04:38 ---A- . (...) -- C:\Users\nikita\AppData\Local\Temp\14032_28271\crl-set [1553]
O61 - LFC: 05/03/2014 - 19:04:38 ---A- . (...) -- C:\Users\nikita\AppData\Local\Temp\14032_28271\manifest.fingerprint [12]
O61 - LFC: 05/03/2014 - 19:04:38 ---A- . (...) -- C:\Users\nikita\AppData\Local\Temp\14032_28271\manifest.json [34]
O61 - LFC: 05/03/2014 - 19:04:44 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\BitTorrent\dlimagecache\0B88BC038938D5C1D55025CEA0BD96C15338BDAC [16966] =>P2P.BitTorrent
O61 - LFC: 05/03/2014 - 19:04:44 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\BitTorrent\dlimagecache\151259088B77B983A3F4F90FF5CE69A8BB3ADF31 [15217] =>P2P.BitTorrent
O61 - LFC: 05/03/2014 - 19:04:44 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\BitTorrent\dlimagecache\18E01BFC05B2A874C7C29795EE3DAEE1387D5072 [6220] =>P2P.BitTorrent
O61 - LFC: 05/03/2014 - 19:04:44 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\BitTorrent\dlimagecache\249616258D28921BE8E3178BF5366E87EA524B84 [35260] =>P2P.BitTorrent
O61 - LFC: 05/03/2014 - 19:04:44 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\BitTorrent\dlimagecache\343D64ABB4E815C630FBB7DDB14B4B5D647EC46D [33711] =>P2P.BitTorrent
O61 - LFC: 05/03/2014 - 19:04:44 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\BitTorrent\dlimagecache\37ED730701FF0D15660D15DF9BC19D20EF1E1C8D [3088] =>P2P.BitTorrent
O61 - LFC: 05/03/2014 - 19:04:44 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\BitTorrent\dlimagecache\3A51A02399FCE77573C75099FCEA3A111045C8F2 [18264] =>P2P.BitTorrent
O61 - LFC: 05/03/2014 - 19:04:44 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\BitTorrent\dlimagecache\4E3225380CB20A0CAFB0D8BF88708108942C7E04 [16950] =>P2P.BitTorrent
O61 - LFC: 05/03/2014 - 19:04:44 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\BitTorrent\dlimagecache\660915E9B6CF5381594EB3A400CD66E3CB3B05AF [17417] =>P2P.BitTorrent
O61 - LFC: 05/03/2014 - 19:04:44 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\BitTorrent\dlimagecache\6C79537B16E3C961B999B0D11F1DD7F5FFA5F95A [44302] =>P2P.BitTorrent
O61 - LFC: 05/03/2014 - 19:04:45 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\BitTorrent\dlimagecache\73ACF9085FA540494AC612CCAF7154939F94B6F4 [33341] =>P2P.BitTorrent
O61 - LFC: 05/03/2014 - 19:04:45 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\BitTorrent\dlimagecache\7AEDAB9B32D81154467C70FD3CC185FDAD1F0804 [50485] =>P2P.BitTorrent
O61 - LFC: 05/03/2014 - 19:04:45 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\BitTorrent\dlimagecache\8A7251FE40DC992E821AEEA826EA09EE94594874 [43458] =>P2P.BitTorrent
O61 - LFC: 05/03/2014 - 19:04:45 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\BitTorrent\dlimagecache\8DC37C52FC5DB0CAABFE1F6034F887B5F099D6DF [6460] =>P2P.BitTorrent
O61 - LFC: 05/03/2014 - 19:04:45 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\BitTorrent\dlimagecache\A7417BEC3DC97203B334A973292F3BCAB901EED4 [6154] =>P2P.BitTorrent
O61 - LFC: 05/03/2014 - 19:04:45 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\BitTorrent\dlimagecache\BEBD106797D17C8E1E0C6373E6E1D9B8128FD879 [20027] =>P2P.BitTorrent
O61 - LFC: 05/03/2014 - 19:04:45 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\BitTorrent\dlimagecache\D7B7CCE6C0794FC5E12FDF16669D8B61CD4B7CA6 [54982] =>P2P.BitTorrent
O61 - LFC: 05/03/2014 - 19:04:45 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\BitTorrent\dlimagecache\DCB83DFC140FA3BB1DF4D251AADC7E1C54DA1FBB [42173] =>P2P.BitTorrent
O61 - LFC: 05/03/2014 - 19:04:45 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\BitTorrent\dlimagecache\DDC87C8D4D0CD86C4ED2C9663F6114402CCB42B8 [54294] =>P2P.BitTorrent
O61 - LFC: 05/03/2014 - 19:04:45 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\BitTorrent\dlimagecache\E477A25207CB6511614CC884C278598BEEB2D1BB [45067] =>P2P.BitTorrent
O61 - LFC: 05/03/2014 - 19:04:46 ----- . (...) -- C:\Users\nikita\AppData\Roaming\BitTorrent\[www.Cpasbien.me] Demi-Soeur.2013.FRENCH.BDRip.x264-NERD.torrent [53687] =>P2P.BitTorrent
O61 - LFC: 05/03/2014 - 19:04:46 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\BitTorrent\dlimagecache\F36684BCC28377CA9079ACF2D364F8E2F3CBED88 [74682] =>P2P.BitTorrent
O61 - LFC: 05/03/2014 - 19:04:46 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\BitTorrent\dlimagecache\F90AA754D0A1C31EDF446A689D910E2ECCEDE83C [25471] =>P2P.BitTorrent
O61 - LFC: 05/03/2014 - 19:04:46 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\BitTorrent\dlimagecache\FA1870C1D99AE8D6BE8EC170030327C5F98BCBF0 [12041] =>P2P.BitTorrent
O61 - LFC: 05/03/2014 - 19:04:46 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\BitTorrent\dlimagecache\FAB209EAFFB412BAE3F0D931D8ECEF1F70FA68A6 [28466] =>P2P.BitTorrent
O61 - LFC: 05/03/2014 - 19:04:46 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\BitTorrent\dlimagecache\FB0AB00DCB324DADFC1BD0FAB979D78D44685A38 [8523] =>P2P.BitTorrent
O61 - LFC: 05/03/2014 - 19:04:46 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\BitTorrent\dlimagecache\FE011A3257BCBB5A2646970E2355EB4793691D01 [25479] =>P2P.BitTorrent
O61 - LFC: 05/03/2014 - 19:04:51 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\Microsoft\Office\PowerP12.pip [1468]
O61 - LFC: 05/03/2014 - 19:04:52 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\Microsoft\Office\Recent\LECTURE.LNK [1029]
O61 - LFC: 05/03/2014 - 19:05:02 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\Skype\coquirose\chatsync\82\8278654cd76b8b47.dat [3270]
O61 - LFC: 05/03/2014 - 19:05:42 ---A- . (...) -- C:\Users\nikita\Documents\LECTURE\MARIE BERNADETTE DUPUY.docx [13363]
O61 - LFC: 05/03/2014 - 19:05:48 ---A- . (...) -- C:\Users\nikita\Downloads\Braquo.S03E08.FiNAL.FRENCH.PDTV.x264-HYBRiS\braquo.s03e08.final.french.pdtv.x264-hybris.mp4 [524001829]
O61 - LFC: 05/03/2014 - 19:05:48 ---A- . (...) -- C:\Users\nikita\Downloads\Braquo.S03E08.FiNAL.FRENCH.PDTV.x264-HYBRiS\braquo.s03e08.final.french.pdtv.x264-hybris.nfo [11906]
O61 - LFC: 05/03/2014 - 19:05:49 ---A- . (...) -- C:\Users\nikita\Downloads\demi-soeur-french-dvdrip-2013.torrent [53687]
O61 - LFC: 05/03/2014 - 19:05:50 R--A- . (...) -- C:\Users\nikita\Downloads\[www.Cpasbien.me] Demi-Soeur.2013.FRENCH.BDRip.x264-NERD\Films DVDRIP sur www.Cpasbien.me.html [462]
O61 - LFC: 05/03/2014 - 19:05:50 R--A- . (...) -- C:\Users\nikita\Downloads\[www.Cpasbien.me] Demi-Soeur.2013.FRENCH.BDRip.x264-NERD\Films et series sur www.CPASBIEN.me.txt [57]
O61 - LFC: 05/03/2014 - 19:05:50 R--A- . (...) -- C:\Users\nikita\Downloads\[www.Cpasbien.me] Demi-Soeur.2013.FRENCH.BDRip.x264-NERD\Les derniers Film et serie sur Cpasbien.me - cliquez ici !.html [462]
O61 - LFC: 05/03/2014 - 19:05:50 R--A- . (...) -- C:\Users\nikita\Downloads\[www.Cpasbien.me] Demi-Soeur.2013.FRENCH.BDRip.x264-NERD\[www.Cpasbien.me] Demi-Soeur.2013.FRENCH.BDRip.x264-NERD.mkv [686053736]
O61 - LFC: 06/03/2014 - 19:03:45 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\BQGJVMDR\one-multi.iscoolcdn.com\##AE6EF9AC4B7FE87C\00000001.sol [287]
O61 - LFC: 06/03/2014 - 19:03:45 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Chrome\User Data\Default\Top Sites [94208]
O61 - LFC: 06/03/2014 - 19:03:45 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Chrome\User Data\Default\Top Sites-journal [16384]
O61 - LFC: 06/03/2014 - 19:04:08 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{8676FEE7-8FD5-4335-A3D0-F54CF8E3D490}\Message Store\Pictures\Pictures.db [59392]
O61 - LFC: 06/03/2014 - 19:04:38 ---A- . (...) -- C:\Users\nikita\AppData\Local\Temp\12864_18958\crl-set [1079]
O61 - LFC: 06/03/2014 - 19:04:38 ---A- . (...) -- C:\Users\nikita\AppData\Local\Temp\12864_18958\manifest.fingerprint [12]
O61 - LFC: 06/03/2014 - 19:04:38 ---A- . (...) -- C:\Users\nikita\AppData\Local\Temp\12864_18958\manifest.json [34]
O61 - LFC: 06/03/2014 - 19:04:39 ---A- . (...) -- C:\Users\nikita\AppData\Local\Temp\5792_15596\crl-set [823]
O61 - LFC: 06/03/2014 - 19:04:39 ---A- . (...) -- C:\Users\nikita\AppData\Local\Temp\5792_15596\manifest.fingerprint [12]
O61 - LFC: 06/03/2014 - 19:04:39 ---A- . (...) -- C:\Users\nikita\AppData\Local\Temp\5792_15596\manifest.json [34]
O61 - LFC: 06/03/2014 - 19:04:39 ---A- . (...) -- C:\Users\nikita\AppData\Local\Temp\msohtmlclip1\01\clip_colorschememapping.xml [314]
O61 - LFC: 06/03/2014 - 19:04:39 ---A- . (...) -- C:\Users\nikita\AppData\Local\Temp\msohtmlclip1\01\clip_themedata.thmx [3086]
O61 - LFC: 06/03/2014 - 19:04:51 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\Microsoft\Office\Recent\APEROS.LNK [1141]
O61 - LFC: 06/03/2014 - 19:04:51 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\Microsoft\Office\Recent\COUSINADE.LNK [1041]
O61 - LFC: 06/03/2014 - 19:04:52 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\Microsoft\Office\Recent\TARTINES ET BRUSHETTAS.LNK [1223]
O61 - LFC: 06/03/2014 - 19:04:57 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\Skype\coquirose\chatsync\2a\2a9f39a6ee286709.dat [2998]
O61 - LFC: 06/03/2014 - 19:05:07 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\Skype\coquirose\chatsync\e0\e0ba6d976b54a1be.dat [13120]
O61 - LFC: 06/03/2014 - 19:05:12 ---A- . (...) -- C:\Users\nikita\Documents\COUSINADE\REPAS COUSINADE.docx [36160]
O61 - LFC: 06/03/2014 - 19:05:12 ---A- . (...) -- C:\Users\nikita\Documents\COUSINADE\liste des invités.xlsx [13967]
O61 - LFC: 06/03/2014 - 19:05:45 ---A- . (...) -- C:\Users\nikita\Documents\RECETTES\DESSERTS\TRIANON.docx [13150]
O61 - LFC: 07/03/2014 - 19:03:43 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG.old [151]
O61 - LFC: 07/03/2014 - 19:03:44 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Chrome\User Data\Default\File System\003\t\Paths\LOG.old [148]
O61 - LFC: 07/03/2014 - 19:03:44 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\LOG.old [151]
O61 - LFC: 07/03/2014 - 19:03:44 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Chrome\User Data\Default\Last Session [61030]
O61 - LFC: 07/03/2014 - 19:03:44 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Chrome\User Data\Default\Last Tabs [28596]
O61 - LFC: 07/03/2014 - 19:03:45 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Chrome\User Data\Default\Session Storage\000395.ldb [146]
O61 - LFC: 07/03/2014 - 19:03:45 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Chrome\User Data\Default\Session Storage\000397.ldb [962]
O61 - LFC: 07/03/2014 - 19:03:45 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG.old [269]
O61 - LFC: 07/03/2014 - 19:03:46 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Picasa2\cache\cacheindex_lastfetch.pmp [204]
O61 - LFC: 07/03/2014 - 19:03:46 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Picasa2\db3\albumdata_category.pmp [436]
O61 - LFC: 07/03/2014 - 19:03:46 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Picasa2\db3\albumdata_date.pmp [852]
O61 - LFC: 07/03/2014 - 19:03:46 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Picasa2\db3\albumdata_description.pmp [165]
O61 - LFC: 07/03/2014 - 19:03:46 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Picasa2\db3\albumdata_filename.pmp [5248]
O61 - LFC: 07/03/2014 - 19:03:46 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Picasa2\db3\albumdata_hascollage.pmp [124]
O61 - LFC: 07/03/2014 - 19:03:46 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Picasa2\db3\albumdata_location.pmp [124]
O61 - LFC: 07/03/2014 - 19:03:46 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Picasa2\db3\albumdata_music.pmp [123]
O61 - LFC: 07/03/2014 - 19:03:46 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Picasa2\db3\albumdata_name.pmp [1837]
O61 - LFC: 07/03/2014 - 19:03:46 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Picasa2\db3\albumdata_token.pmp [3980]
O61 - LFC: 07/03/2014 - 19:03:46 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Picasa2\db3\albumdata_uid.pmp [3292]
O61 - LFC: 07/03/2014 - 19:03:46 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Picasa2\db3\albums_0.db [1437944]
O61 - LFC: 07/03/2014 - 19:03:46 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Picasa2\db3\albums_index.db [1160]
O61 - LFC: 07/03/2014 - 19:03:46 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Picasa2\db3\bigthumbs_0.db [25202]
O61 - LFC: 07/03/2014 - 19:03:46 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Picasa2\db3\bigthumbs_index.db [35624]
O61 - LFC: 07/03/2014 - 19:03:46 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Picasa2\db3\catdata_catpri.pmp [29]
O61 - LFC: 07/03/2014 - 19:03:46 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Picasa2\db3\facetags.txt [0]
O61 - LFC: 07/03/2014 - 19:03:46 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Picasa2\db3\facetemplatesV2_index.db [27308]
O61 - LFC: 07/03/2014 - 19:03:46 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Picasa2\db3\imagedata_avgcolor.pmp [9124]
O61 - LFC: 07/03/2014 - 19:03:47 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Picasa2Albums\frexcludefolders.txt [34]
O61 - LFC: 07/03/2014 - 19:03:47 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Picasa2Albums\watchedfolders.txt [106]
O61 - LFC: 07/03/2014 - 19:03:47 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Picasa2\db3\imagedata_edit_height.pmp [9124]
O61 - LFC: 07/03/2014 - 19:03:47 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Picasa2\db3\imagedata_edit_width.pmp [9124]
O61 - LFC: 07/03/2014 - 19:03:47 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Picasa2\db3\imagedata_filetype.pmp [9124]
O61 - LFC: 07/03/2014 - 19:03:47 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Picasa2\db3\imagedata_height.pmp [9124]
O61 - LFC: 07/03/2014 - 19:03:47 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Picasa2\db3\imagedata_originfast.pmp [18228]
O61 - LFC: 07/03/2014 - 19:03:47 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Picasa2\db3\imagedata_width.pmp [9124]
O61 - LFC: 07/03/2014 - 19:03:47 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Picasa2\db3\previews_0.db [96055]
O61 - LFC: 07/03/2014 - 19:03:47 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Picasa2\db3\previews_index.db [35180]
O61 - LFC: 07/03/2014 - 19:03:47 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Picasa2\db3\repository.dat [140]
O61 - LFC: 07/03/2014 - 19:03:47 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Picasa2\db3\saverlist.txt [0]
O61 - LFC: 07/03/2014 - 19:03:47 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Picasa2\db3\scanlist.txt [1202]
O61 - LFC: 07/03/2014 - 19:03:47 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Picasa2\db3\starlist.txt [0]
O61 - LFC: 07/03/2014 - 19:03:47 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Picasa2\db3\tags.txt [0]
O61 - LFC: 07/03/2014 - 19:03:47 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Picasa2\db3\thumbindex.db [98408]
O61 - LFC: 07/03/2014 - 19:03:47 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Picasa2\db3\thumbs2_0.db [4328775]
O61 - LFC: 07/03/2014 - 19:03:47 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Picasa2\db3\thumbs2_index.db [27332]
O61 - LFC: 07/03/2014 - 19:03:47 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Picasa2\db3\thumbs_0.db [11703785]
O61 - LFC: 07/03/2014 - 19:03:47 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Picasa2\db3\thumbs_index.db [27332]
O61 - LFC: 07/03/2014 - 19:03:47 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Picasa2\db3\usernames.dat [270]
O61 - LFC: 07/03/2014 - 19:03:47 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Picasa2\db3\wordhash.dat [156280]
O61 - LFC: 07/03/2014 - 19:03:47 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Picasa2\ioqueue\albumsafe.ioq [0]
O61 - LFC: 07/03/2014 - 19:03:47 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Picasa2\ioqueue\filesafe.ioq [0]
O61 - LFC: 07/03/2014 - 19:03:47 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Picasa2\ioqueue\slingshot.ioq [0]
O61 - LFC: 07/03/2014 - 19:03:47 ---A- . (...) -- C:\Users\nikita\AppData\Local\Hewlett-Packard\HPCEE.exe_Url_pzhsl5v0i1efivcm1patkorkz2ji0v0q\6.0.1.7\user.config [5745] =>.Hewlett-Packard Co
O61 - LFC: 07/03/2014 - 19:04:04 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{8676FEE7-8FD5-4335-A3D0-F54CF8E3D490}\309D7118-BB3F-46BA-B3C5-A0E85BE9C520_data.bak [0]
O61 - LFC: 07/03/2014 - 19:04:08 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{95906C12-829F-4F46-9B5E-AF9D9EBD9396}\8ADAAD6C-8F49-4B95-8077-84E8068955BD_data.bak [0]
O61 - LFC: 07/03/2014 - 19:04:08 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{95906C12-829F-4F46-9B5E-AF9D9EBD9396}\AddressBook\AddrBook.db3.bak [174080]
O61 - LFC: 07/03/2014 - 19:04:24 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Runtime\Message\{0BE31CA8-8F75-4809-8E7D-DED9EF5EA706}\Show\noScriptHtmlStrWithoutSource_Prev_9.htm [10890]
O61 - LFC: 07/03/2014 - 19:04:24 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Runtime\Message\{D348EF4B-2E6D-456F-9057-60B650332A8E}\Show\noScriptHtmlStrWithoutSource_Prev_9.htm [10890]
O61 - LFC: 07/03/2014 - 19:04:24 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Runtime\Message\{F6B20D57-D68E-4A89-9725-A8697C5764EE}\Show\noScriptHtmlStrWithoutSource_Prev_9.htm [10890]
O61 - LFC: 07/03/2014 - 19:04:35 ---A- . (...) -- C:\Users\nikita\AppData\Local\Power2Go8\CLML\CLDB.db [54272]
O61 - LFC: 07/03/2014 - 19:04:38 ---A- . (...) -- C:\Users\nikita\AppData\Local\Temp\11916_19311\crl-set [1531]
O61 - LFC: 07/03/2014 - 19:04:38 ---A- . (...) -- C:\Users\nikita\AppData\Local\Temp\11916_19311\manifest.fingerprint [12]
O61 - LFC: 07/03/2014 - 19:04:38 ---A- . (...) -- C:\Users\nikita\AppData\Local\Temp\11916_19311\manifest.json [34]
O61 - LFC: 07/03/2014 - 19:04:39 ---A- . (...) -- C:\Users\nikita\AppData\Local\Temp\CLDATAFILESYSTEM.fs [563200]
O61 - LFC: 07/03/2014 - 19:04:39 ---A- . (...) -- C:\Users\nikita\AppData\Local\Temp\IM\imv188A.htm [78]
O61 - LFC: 07/03/2014 - 19:04:39 ---A- . (...) -- C:\Users\nikita\AppData\Local\Temp\IM\imv2279.htm [78]
O61 - LFC: 07/03/2014 - 19:04:39 ---A- . (...) -- C:\Users\nikita\AppData\Local\Temp\IM\imv36AE.htm [78]
O61 - LFC: 07/03/2014 - 19:04:39 ---A- . (...) -- C:\Users\nikita\AppData\Local\Temp\IM\imv4167.htm [78]
O61 - LFC: 07/03/2014 - 19:04:39 ---A- . (...) -- C:\Users\nikita\AppData\Local\Temp\IM\imv5DF9.htm [78]
O61 - LFC: 07/03/2014 - 19:04:39 ---A- . (...) -- C:\Users\nikita\AppData\Local\Temp\IM\imv5FC3.htm [78]
O61 - LFC: 07/03/2014 - 19:04:39 ---A- . (...) -- C:\Users\nikita\AppData\Local\Temp\IM\imvD896.htm [78]
O61 - LFC: 07/03/2014 - 19:04:39 ---A- . (...) -- C:\Users\nikita\AppData\Local\Temp\IM\imvDE40.htm [78]
O61 - LFC: 07/03/2014 - 19:04:39 ---A- . (...) -- C:\Users\nikita\AppData\Local\Temp\P2GoLog.txt [1903]
O61 - LFC: 07/03/2014 - 19:04:44 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\BitTorrent\dht.dat [3416] =>P2P.BitTorrent
O61 - LFC: 07/03/2014 - 19:04:44 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\BitTorrent\dht.dat.old [3130] =>P2P.BitTorrent
O61 - LFC: 07/03/2014 - 19:04:46 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\BitTorrent\rss.dat [99] =>P2P.BitTorrent
O61 - LFC: 07/03/2014 - 19:04:46 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\BitTorrent\rss.dat.old [99] =>P2P.BitTorrent
O61 - LFC: 07/03/2014 - 19:04:51 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-2014-03-07 (21-23-52).txt [6802]
O61 - LFC: 07/03/2014 - 19:04:52 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\Microsoft\Office\Recent\FAIRE VERIFIER REPARER.docx.LNK [1282]
O61 - LFC: 07/03/2014 - 19:05:08 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\Skype\coquirose\dc.db [102400]
O61 - LFC: 07/03/2014 - 19:05:10 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\ZHP\ZHPADSReport.txt [351] =>.Nicolas Coolman
O61 - LFC: 07/03/2014 - 19:05:10 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\ZHP\ZHPDiag.txt [334687] =>.Nicolas Coolman
O61 - LFC: 07/03/2014 - 19:05:43 ---A- . (...) -- C:\Users\nikita\Documents\MAINTENANCE PC\FAIRE VERIFIER REPARER.docx [53626]
O61 - LFC: 07/03/2014 - 19:05:50 ---A- . (.Malwarebytes Corporation.) -- C:\Users\nikita\Downloads\mbam-setup-1.75.0.1300.exe [10285040]
O61 - LFC: 07/03/2014 - 19:05:50 ---A- . (.Nicolas Coolman.) -- C:\Users\nikita\Downloads\zhpdiag20.exe [6866603] =>.Nicolas Coolman
O61 - LFC: 08/03/2014 - 19:03:43 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Chrome\User Data\Certificate Revocation Lists [270561]
O61 - LFC: 08/03/2014 - 19:03:43 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Chrome\User Data\Default\Cookies [119808]
O61 - LFC: 08/03/2014 - 19:03:43 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Chrome\User Data\Default\Current Session [1507963]
O61 - LFC: 08/03/2014 - 19:03:43 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Chrome\User Data\Default\Current Tabs [96187]
O61 - LFC: 08/03/2014 - 19:03:43 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\CURRENT [16]
O61 - LFC: 08/03/2014 - 19:03:43 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG [148]
O61 - LFC: 08/03/2014 - 19:03:43 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\MANIFEST-000263 [711]
O61 - LFC: 08/03/2014 - 19:03:43 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG [0]
O61 - LFC: 08/03/2014 - 19:03:43 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG.old [0]
O61 - LFC: 08/03/2014 - 19:03:43 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Chrome\User Data\chrome_shutdown_ms.txt [5]
O61 - LFC: 08/03/2014 - 19:03:44 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Chrome\User Data\Default\Favicons [292864]
O61 - LFC: 08/03/2014 - 19:03:44 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Chrome\User Data\Default\Favicons-journal [16384]
O61 - LFC: 08/03/2014 - 19:03:44 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Chrome\User Data\Default\File System\003\t\.usage [24]
O61 - LFC: 08/03/2014 - 19:03:44 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Chrome\User Data\Default\File System\003\t\Paths\CURRENT [16]
O61 - LFC: 08/03/2014 - 19:03:44 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Chrome\User Data\Default\File System\003\t\Paths\LOG [145]
O61 - LFC: 08/03/2014 - 19:03:44 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Chrome\User Data\Default\File System\003\t\Paths\MANIFEST-000051 [86]
O61 - LFC: 08/03/2014 - 19:03:44 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\CURRENT [16]
O61 - LFC: 08/03/2014 - 19:03:44 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\LOG [148]
O61 - LFC: 08/03/2014 - 19:03:44 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\MANIFEST-000197 [413]
O61 - LFC: 08/03/2014 - 19:03:44 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_0 [45056]
O61 - LFC: 08/03/2014 - 19:03:44 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_1 [270336]
O61 - LFC: 08/03/2014 - 19:03:44 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Chrome\User Data\Default\History [2260992]
O61 - LFC: 08/03/2014 - 19:03:44 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache [297341]
O61 - LFC: 08/03/2014 - 19:03:44 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Chrome\User Data\Default\History-journal [16384]
O61 - LFC: 08/03/2014 - 19:03:45 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_apps.facebook.com_0.localstorage [8192]
O61 - LFC: 08/03/2014 - 19:03:45 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_apps.facebook.com_0.localstorage-journal [8768]
O61 - LFC: 08/03/2014 - 19:03:45 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.facebook.com_0.localstorage [11264]
O61 - LFC: 08/03/2014 - 19:03:45 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.facebook.com_0.localstorage-journal [11864]
O61 - LFC: 08/03/2014 - 19:03:45 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Chrome\User Data\Default\Preferences [55720]
O61 - LFC: 08/03/2014 - 19:03:45 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Chrome\User Data\Default\QuotaManager [20480]
O61 - LFC: 08/03/2014 - 19:03:45 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Chrome\User Data\Default\QuotaManager-journal [6704]
O61 - LFC: 08/03/2014 - 19:03:45 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Chrome\User Data\Default\Session Storage\000400.ldb [727]
O61 - LFC: 08/03/2014 - 19:03:45 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Chrome\User Data\Default\Session Storage\CURRENT [16]
O61 - LFC: 08/03/2014 - 19:03:45 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG [269]
O61 - LFC: 08/03/2014 - 19:03:45 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Chrome\User Data\Default\Session Storage\MANIFEST-000399 [206] =>.Google Inc
O61 - LFC: 08/03/2014 - 19:03:45 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Chrome\User Data\Default\TransportSecurity [1924]
O61 - LFC: 08/03/2014 - 19:03:45 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Chrome\User Data\Default\Visited Links [131072]
O61 - LFC: 08/03/2014 - 19:03:45 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Chrome\User Data\Local State [62464]
O61 - LFC: 08/03/2014 - 19:03:46 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Chrome\User Data\Safe Browsing Bloom [7560700]
O61 - LFC: 08/03/2014 - 19:03:46 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Chrome\User Data\Safe Browsing Bloom Prefix Set [1635524]
O61 - LFC: 08/03/2014 - 19:03:46 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Chrome\User Data\Safe Browsing Cookies [6144]
O61 - LFC: 08/03/2014 - 19:03:46 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Chrome\User Data\Safe Browsing Cookies-journal [3608]
O61 - LFC: 08/03/2014 - 19:03:46 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Chrome\User Data\Safe Browsing Csd Whitelist [135548]
O61 - LFC: 08/03/2014 - 19:03:46 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Chrome\User Data\Safe Browsing Download [796356]
O61 - LFC: 08/03/2014 - 19:03:46 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Chrome\User Data\Safe Browsing Download Whitelist [19504]
O61 - LFC: 08/03/2014 - 19:03:46 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Chrome\User Data\Safe Browsing Extension Blacklist [24308]
O61 - LFC: 08/03/2014 - 19:03:46 ---A- . (...) -- C:\Users\nikita\AppData\Local\Google\Chrome\User Data\Safe Browsing IP Blacklist [2232]
O61 - LFC: 08/03/2014 - 19:03:47 --HA- . (...) -- C:\Users\nikita\AppData\Local\IconCache.db [312209]
O61 - LFC: 08/03/2014 - 19:03:48 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\content.xml [670]
O61 - LFC: 08/03/2014 - 19:04:04 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{8676FEE7-8FD5-4335-A3D0-F54CF8E3D490}\309D7118-BB3F-46BA-B3C5-A0E85BE9C520_data.msg [0]
O61 - LFC: 08/03/2014 - 19:04:04 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{8676FEE7-8FD5-4335-A3D0-F54CF8E3D490}\7852E52E-E04A-42BC-8E25-75B312D0AF82_data.bak [13202]
O61 - LFC: 08/03/2014 - 19:04:04 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{8676FEE7-8FD5-4335-A3D0-F54CF8E3D490}\7852E52E-E04A-42BC-8E25-75B312D0AF82_data.msg [13202]
O61 - LFC: 08/03/2014 - 19:04:04 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{8676FEE7-8FD5-4335-A3D0-F54CF8E3D490}\AccountsOrder.dat [200]
O61 - LFC: 08/03/2014 - 19:04:04 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{8676FEE7-8FD5-4335-A3D0-F54CF8E3D490}\AddressBook\AddrBook.db3 [148480]
O61 - LFC: 08/03/2014 - 19:04:04 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{8676FEE7-8FD5-4335-A3D0-F54CF8E3D490}\AddressBook\AddrBook.db3.bak [148480]
O61 - LFC: 08/03/2014 - 19:04:04 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{8676FEE7-8FD5-4335-A3D0-F54CF8E3D490}\BF44A558-8613-4E82-B12C-2D45D35A56C8_data.bak [35282]
O61 - LFC: 08/03/2014 - 19:04:04 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{8676FEE7-8FD5-4335-A3D0-F54CF8E3D490}\BF44A558-8613-4E82-B12C-2D45D35A56C8_data.msg [35522]
O61 - LFC: 08/03/2014 - 19:04:04 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{8676FEE7-8FD5-4335-A3D0-F54CF8E3D490}\FDB76069-5183-4679-A24E-A0B1863F9F64_data.bak [0]
O61 - LFC: 08/03/2014 - 19:04:04 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{8676FEE7-8FD5-4335-A3D0-F54CF8E3D490}\FDB76069-5183-4679-A24E-A0B1863F9F64_data.msg [0]
O61 - LFC: 08/03/2014 - 19:04:04 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{8676FEE7-8FD5-4335-A3D0-F54CF8E3D490}\imsl.dat [8392]
O61 - LFC: 08/03/2014 - 19:04:07 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{8676FEE7-8FD5-4335-A3D0-F54CF8E3D490}\Message Store\Containers.db [4410368]
O61 - LFC: 08/03/2014 - 19:04:07 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{8676FEE7-8FD5-4335-A3D0-F54CF8E3D490}\Message Store\Deleted Items.imm [199379]
O61 - LFC: 08/03/2014 - 19:04:07 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{8676FEE7-8FD5-4335-A3D0-F54CF8E3D490}\Message Store\IndexB\history.ix [1031192]
O61 - LFC: 08/03/2014 - 19:04:07 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{8676FEE7-8FD5-4335-A3D0-F54CF8E3D490}\Message Store\IndexB\imit.dat [19456]
O61 - LFC: 08/03/2014 - 19:04:07 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{8676FEE7-8FD5-4335-A3D0-F54CF8E3D490}\Message Store\IndexB\index_d_1.ix [458752]
O61 - LFC: 08/03/2014 - 19:04:07 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{8676FEE7-8FD5-4335-A3D0-F54CF8E3D490}\Message Store\IndexB\index_di_1.ix [65536]
O61 - LFC: 08/03/2014 - 19:04:07 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{8676FEE7-8FD5-4335-A3D0-F54CF8E3D490}\Message Store\IndexB\index_i_694.ix [3470]
O61 - LFC: 08/03/2014 - 19:04:07 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{8676FEE7-8FD5-4335-A3D0-F54CF8E3D490}\Message Store\IndexB\index_k_694.ix [65536]
O61 - LFC: 08/03/2014 - 19:04:07 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{8676FEE7-8FD5-4335-A3D0-F54CF8E3D490}\Message Store\IndexB\index_kl_1.ix [3604480]
O61 - LFC: 08/03/2014 - 19:04:07 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{8676FEE7-8FD5-4335-A3D0-F54CF8E3D490}\Message Store\IndexB\index_klh_694.ix [1658]
O61 - LFC: 08/03/2014 - 19:04:07 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{8676FEE7-8FD5-4335-A3D0-F54CF8E3D490}\Message Store\IndexB\index_r_1.ix [2493787]
O61 - LFC: 08/03/2014 - 19:04:07 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{8676FEE7-8FD5-4335-A3D0-F54CF8E3D490}\Message Store\IndexB\index_v.ix [293]
O61 - LFC: 08/03/2014 - 19:04:07 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{8676FEE7-8FD5-4335-A3D0-F54CF8E3D490}\Message Store\IndexB\indexlog.dat [2764]
O61 - LFC: 08/03/2014 - 19:04:07 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{8676FEE7-8FD5-4335-A3D0-F54CF8E3D490}\Message Store\IndexH\history.ix [1044191]
O61 - LFC: 08/03/2014 - 19:04:07 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{8676FEE7-8FD5-4335-A3D0-F54CF8E3D490}\Message Store\IndexH\imit.dat [15360]
O61 - LFC: 08/03/2014 - 19:04:07 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{8676FEE7-8FD5-4335-A3D0-F54CF8E3D490}\Message Store\IndexH\index_d_1.ix [917504]
O61 - LFC: 08/03/2014 - 19:04:07 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{8676FEE7-8FD5-4335-A3D0-F54CF8E3D490}\Message Store\IndexH\index_di_1.ix [65536]
O61 - LFC: 08/03/2014 - 19:04:07 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{8676FEE7-8FD5-4335-A3D0-F54CF8E3D490}\Message Store\IndexH\index_i_3454.ix [14555]
O61 - LFC: 08/03/2014 - 19:04:07 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{8676FEE7-8FD5-4335-A3D0-F54CF8E3D490}\Message Store\IndexH\index_k_3454.ix [65536]
O61 - LFC: 08/03/2014 - 19:04:07 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{8676FEE7-8FD5-4335-A3D0-F54CF8E3D490}\Message Store\IndexH\index_kl_1.ix [2908160]
O61 - LFC: 08/03/2014 - 19:04:07 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{8676FEE7-8FD5-4335-A3D0-F54CF8E3D490}\Message Store\IndexH\index_klh_3454.ix [1114]
O61 - LFC: 08/03/2014 - 19:04:07 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{8676FEE7-8FD5-4335-A3D0-F54CF8E3D490}\Message Store\IndexH\index_r_1.ix [1379689]
O61 - LFC: 08/03/2014 - 19:04:07 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{8676FEE7-8FD5-4335-A3D0-F54CF8E3D490}\Message Store\IndexH\index_v.ix [298]
O61 - LFC: 08/03/2014 - 19:04:07 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{8676FEE7-8FD5-4335-A3D0-F54CF8E3D490}\Message Store\IndexH\indexlog.dat [2733]
O61 - LFC: 08/03/2014 - 19:04:08 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{95906C12-829F-4F46-9B5E-AF9D9EBD9396}\67903C68-DF23-4205-9EB9-3890E8F75C24_data.bak [45282]
O61 - LFC: 08/03/2014 - 19:04:08 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{95906C12-829F-4F46-9B5E-AF9D9EBD9396}\67903C68-DF23-4205-9EB9-3890E8F75C24_data.msg [45282]
O61 - LFC: 08/03/2014 - 19:04:08 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{95906C12-829F-4F46-9B5E-AF9D9EBD9396}\8ADAAD6C-8F49-4B95-8077-84E8068955BD_data.msg [0]
O61 - LFC: 08/03/2014 - 19:04:08 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{95906C12-829F-4F46-9B5E-AF9D9EBD9396}\AccountsOrder.dat [80]
O61 - LFC: 08/03/2014 - 19:04:08 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{95906C12-829F-4F46-9B5E-AF9D9EBD9396}\AddressBook\AddrBook.db3 [174080]
O61 - LFC: 08/03/2014 - 19:04:09 ----- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{95906C12-829F-4F46-9B5E-AF9D9EBD9396}\imsl.dat [8949]
O61 - LFC: 08/03/2014 - 19:04:11 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{95906C12-829F-4F46-9B5E-AF9D9EBD9396}\Message Store\Containers.db [732160]
O61 - LFC: 08/03/2014 - 19:04:11 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{95906C12-829F-4F46-9B5E-AF9D9EBD9396}\Message Store\IndexB\imit.dat [107520]
O61 - LFC: 08/03/2014 - 19:04:11 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{95906C12-829F-4F46-9B5E-AF9D9EBD9396}\Message Store\IndexH\history.ix [961337]
O61 - LFC: 08/03/2014 - 19:04:11 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{95906C12-829F-4F46-9B5E-AF9D9EBD9396}\Message Store\IndexH\imit.dat [69632]
O61 - LFC: 08/03/2014 - 19:04:11 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{95906C12-829F-4F46-9B5E-AF9D9EBD9396}\Message Store\IndexH\index_d_1.ix [786432]
O61 - LFC: 08/03/2014 - 19:04:11 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{95906C12-829F-4F46-9B5E-AF9D9EBD9396}\Message Store\IndexH\index_di_1.ix [65536]
O61 - LFC: 08/03/2014 - 19:04:11 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{95906C12-829F-4F46-9B5E-AF9D9EBD9396}\Message Store\IndexH\index_i_1987.ix [8687]
O61 - LFC: 08/03/2014 - 19:04:11 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{95906C12-829F-4F46-9B5E-AF9D9EBD9396}\Message Store\IndexH\index_k_1987.ix [65536]
O61 - LFC: 08/03/2014 - 19:04:11 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{95906C12-829F-4F46-9B5E-AF9D9EBD9396}\Message Store\IndexH\index_kl_1.ix [2588672]
O61 - LFC: 08/03/2014 - 19:04:11 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{95906C12-829F-4F46-9B5E-AF9D9EBD9396}\Message Store\IndexH\index_klh_1987.ix [1034]
O61 - LFC: 08/03/2014 - 19:04:11 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{95906C12-829F-4F46-9B5E-AF9D9EBD9396}\Message Store\IndexH\index_r_1.ix [1120571]
O61 - LFC: 08/03/2014 - 19:04:11 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{95906C12-829F-4F46-9B5E-AF9D9EBD9396}\Message Store\IndexH\index_v.ix [297]
O61 - LFC: 08/03/2014 - 19:04:11 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Identities\{95906C12-829F-4F46-9B5E-AF9D9EBD9396}\Message Store\IndexH\indexlog.dat [2675]
O61 - LFC: 08/03/2014 - 19:04:24 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Runtime\Message\{05CA36A1-6F9E-47DE-A6DD-CB305B6764C6}\Show\noScriptHtmlStrWithoutSource_Prev_9.htm [10890]
O61 - LFC: 08/03/2014 - 19:04:24 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Runtime\Message\{11C22336-B09A-4A56-A450-D115F53B9237}\Show\noScriptHtmlStrWithoutSource_Prev_7.htm [60450]
O61 - LFC: 08/03/2014 - 19:04:24 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Runtime\Message\{12917A56-1204-4DDB-B9A9-5F3158F9583C}\Show\noScriptHtmlStrWithoutSource_Prev_7.htm [21748]
O61 - LFC: 08/03/2014 - 19:04:24 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Runtime\Message\{133313BF-0DA7-4DB0-844F-2A29F54988BE}\Show\noScriptHtmlStrWithoutSource_Prev_7.htm [7008]
O61 - LFC: 08/03/2014 - 19:04:24 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Runtime\Message\{1EB4C1FE-A228-4138-96ED-314D32AEEE8A}\Show\noScriptHtmlStrWithoutSource_Prev_block_7.htm [13908]
O61 - LFC: 08/03/2014 - 19:04:24 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Runtime\Message\{2B8B44A9-3B7D-418C-8394-A5B1DAC56536}\Show\noScriptHtmlStrWithoutSource_Prev_7.htm [7008]
O61 - LFC: 08/03/2014 - 19:04:24 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Runtime\Message\{2DD3F9E5-CDA9-450C-989A-D85EBE27277D}\Show\noScriptHtmlStrWithoutSource_Prev_9.htm [10890]
O61 - LFC: 08/03/2014 - 19:04:24 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Runtime\Message\{3F9B1317-E87D-4BF3-B36F-52E7B5444868}\Show\noScriptHtmlStrWithoutSource_Prev_9.htm [10890]
O61 - LFC: 08/03/2014 - 19:04:24 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Runtime\Message\{5117F5E5-E363-4842-96FB-75FCE7F1CBC9}\Show\noScriptHtmlStrWithoutSource_Prev_7.htm [11348]
O61 - LFC: 08/03/2014 - 19:04:24 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Runtime\Message\{5155AF0C-9A06-463C-BE08-86B2F01A8320}\Show\noScriptHtmlStrWithoutSource_Prev_block_7.htm [31356]
O61 - LFC: 08/03/2014 - 19:04:24 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Runtime\Message\{5AF5A079-F399-4C17-B5BD-4A4D4D0A5250}\Show\noScriptHtmlStrWithoutSource_Prev_9.htm [10890]
O61 - LFC: 08/03/2014 - 19:04:24 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Runtime\Message\{67F82AA2-4C5B-485F-BBB5-DEC4C1CE6490}\Show\noScriptHtmlStrWithoutSource_Prev_block_7.htm [15496]
O61 - LFC: 08/03/2014 - 19:04:24 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Runtime\Message\{8A7F1025-F96C-4493-8B32-599B5A96A107}\Show\noScriptHtmlStrWithoutSource_Prev_block_7.htm [82826]
O61 - LFC: 08/03/2014 - 19:04:24 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Runtime\Message\{A9FF267C-28B3-42FA-926A-C947DF05F543}\Show\noScriptHtmlStrWithoutSource_Prev_9.htm [10890]
O61 - LFC: 08/03/2014 - 19:04:24 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Runtime\Message\{C3090F3A-03A3-49E1-9292-B517F3108F98}\Show\noScriptHtmlStrWithoutSource_Prev_9.htm [10890]
O61 - LFC: 08/03/2014 - 19:04:24 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Runtime\Message\{E0C37E20-F223-4E9C-990E-98D63888B480}\Show\noScriptHtmlStrWithoutSource_Prev_9.htm [10890]
O61 - LFC: 08/03/2014 - 19:04:24 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Runtime\Message\{E1D9CA48-6A1C-4D0B-A7E8-CA0103909E45}\Show\noScriptHtmlStrWithoutSource_Prev_9.htm [10890]
O61 - LFC: 08/03/2014 - 19:04:24 ---A- . (...) -- C:\Users\nikita\AppData\Local\IM\Runtime\Message\{FF4D0D21-7A25-498C-ADDB-2389F70C82D7}\Show\noScriptHtmlStrWithoutSource_Prev_7.htm [90864]
O61 - LFC: 08/03/2014 - 19:04:38 ---A- . (...) -- C:\Users\nikita\AppData\Local\Temp\1600_8242\crl-set [1158]
O61 - LFC: 08/03/2014 - 19:04:38 ---A- . (...) -- C:\Users\nikita\AppData\Local\Temp\1600_8242\manifest.fingerprint [12]
O61 - LFC: 08/03/2014 - 19:04:38 ---A- . (...) -- C:\Users\nikita\AppData\Local\Temp\1600_8242\manifest.json [34]
O61 - LFC: 08/03/2014 - 19:04:39 ---A- . (...) -- C:\Users\nikita\AppData\Local\Temp\HPSAActionItems.xml [5351]
O61 - LFC: 08/03/2014 - 19:04:39 ---A- . (...) -- C:\Users\nikita\AppData\Local\Temp\IM\imv12EF.htm [78]
O61 - LFC: 08/03/2014 - 19:04:39 ---A- . (...) -- C:\Users\nikita\AppData\Local\Temp\IM\imv1337.htm [78]
O61 - LFC: 08/03/2014 - 19:04:39 ---A- . (...) -- C:\Users\nikita\AppData\Local\Temp\IM\imv1B25.htm [78]
O61 - LFC: 08/03/2014 - 19:04:39 ---A- . (...) -- C:\Users\nikita\AppData\Local\Temp\IM\imv2AA0.htm [78]
O61 - LFC: 08/03/2014 - 19:04:39 ---A- . (...) -- C:\Users\nikita\AppData\Local\Temp\IM\imv2B89.htm [78]
O61 - LFC: 08/03/2014 - 19:04:39 ---A- . (...) -- C:\Users\nikita\AppData\Local\Temp\IM\imv419B.htm [78]
O61 - LFC: 08/03/2014 - 19:04:39 ---A- . (...) -- C:\Users\nikita\AppData\Local\Temp\IM\imv42D1.htm [78]
O61 - LFC: 08/03/2014 - 19:04:39 ---A- . (...) -- C:\Users\nikita\AppData\Local\Temp\IM\imv46E9.htm [78]
O61 - LFC: 08/03/2014 - 19:04:39 ---A- . (...) -- C:\Users\nikita\AppData\Local\Temp\IM\imv5798.htm [78]
O61 - LFC: 08/03/2014 - 19:04:39 ---A- . (...) -- C:\Users\nikita\AppData\Local\Temp\IM\imv581F.htm [78]
O61 - LFC: 08/03/2014 - 19:04:39 ---A- . (...) -- C:\Users\nikita\AppData\Local\Temp\IM\imv5E99.htm [78]
O61 - LFC: 08/03/2014 - 19:04:39 ---A- . (...) -- C:\Users\nikita\AppData\Local\Temp\IM\imv6605.htm [78]
O61 - LFC: 08/03/2014 - 19:04:39 ---A- . (...) -- C:\Users\nikita\AppData\Local\Temp\IM\imv6632.htm [78]
O61 - LFC: 08/03/2014 - 19:04:39 ---A- . (...) -- C:\Users\nikita\AppData\Local\Temp\IM\imv898C.htm [78]
O61 - LFC: 08/03/2014 - 19:04:39 ---A- . (...) -- C:\Users\nikita\AppData\Local\Temp\IM\imv8CD3.htm [78]
O61 - LFC: 08/03/2014 - 19:04:39 ---A- . (...) -- C:\Users\nikita\AppData\Local\Temp\IM\imvA13C.htm [78]
O61 - LFC: 08/03/2014 - 19:04:39 ---A- . (...) -- C:\Users\nikita\AppData\Local\Temp\IM\imvA463.htm [78]
O61 - LFC: 08/03/2014 - 19:04:39 ---A- . (...) -- C:\Users\nikita\AppData\Local\Temp\IM\imvB3BE.htm [78]
O61 - LFC: 08/03/2014 - 19:04:39 ---A- . (...) -- C:\Users\nikita\AppData\Local\Temp\IM\imvC0CB.htm [78]
O61 - LFC: 08/03/2014 - 19:04:39 ---A- . (...) -- C:\Users\nikita\AppData\Local\Temp\IM\imvCEAA.htm [78]
O61 - LFC: 08/03/2014 - 19:04:39 ---A- . (...) -- C:\Users\nikita\AppData\Local\Temp\IM\imvD35D.htm [78]
O61 - LFC: 08/03/2014 - 19:04:39 ---A- . (...) -- C:\Users\nikita\AppData\Local\Temp\IM\imvD4A.htm [78]
O61 - LFC: 08/03/2014 - 19:04:39 ---A- . (...) -- C:\Users\nikita\AppData\Local\Temp\RedboxLog.txt [53450]
O61 - LFC: 08/03/2014 - 19:04:39 ---A- . (...) -- C:\Users\nikita\AppData\Local\Temp\Skype\DbTemp\temp-1Fyaaf0nUD23WIy1P8bW8h9l [0]
O61 - LFC: 08/03/2014 - 19:04:39 ---A- . (...) -- C:\Users\nikita\AppData\Local\Temp\Skype\DbTemp\temp-PcDvJ5m33qK5IehcoLRo5lh6 [0]
O61 - LFC: 08/03/2014 - 19:04:44 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\BitTorrent\dht_feed.dat [2] =>P2P.BitTorrent
O61 - LFC: 08/03/2014 - 19:04:44 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\BitTorrent\dht_feed.dat.old [2] =>P2P.BitTorrent
O61 - LFC: 08/03/2014 - 19:04:45 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\BitTorrent\dlimagecache\A4A2064D83BD6952E714CE44F3FE0E461B8607C2 [9629] =>P2P.BitTorrent
O61 - LFC: 08/03/2014 - 19:04:45 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\BitTorrent\dlimagecache\AFA3D276810389A4144D927E74A1DD935EFD9598 [40656] =>P2P.BitTorrent
O61 - LFC: 08/03/2014 - 19:04:45 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\BitTorrent\dlimagecache\CF4BF2D36ED3070397D7C066408486C45919C862 [1150] =>P2P.BitTorrent
O61 - LFC: 08/03/2014 - 19:04:46 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\BitTorrent\resume.dat [116902] =>P2P.BitTorrent
O61 - LFC: 08/03/2014 - 19:04:46 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\BitTorrent\resume.dat.old [102491] =>P2P.BitTorrent
O61 - LFC: 08/03/2014 - 19:04:46 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\BitTorrent\settings.dat [165951] =>P2P.BitTorrent
O61 - LFC: 08/03/2014 - 19:04:46 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\BitTorrent\settings.dat.old [165950] =>P2P.BitTorrent
O61 - LFC: 08/03/2014 - 19:04:46 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\BitTorrent\updates.dat [472] =>P2P.BitTorrent
O61 - LFC: 08/03/2014 - 19:04:49 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\HP\ScLogs\SolutionCenter.htm [49552]
O61 - LFC: 08/03/2014 - 19:04:49 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\Hewlett-Packard\HP Support Framework\cee\1339023893.cee [2203]
O61 - LFC: 08/03/2014 - 19:04:49 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\Hewlett-Packard\HP Support Framework\cee\1883185833.cee [2203]
O61 - LFC: 08/03/2014 - 19:04:49 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\Hewlett-Packard\HP Support Framework\cee\2800816784.cee [3115]
O61 - LFC: 08/03/2014 - 19:04:51 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\Microsoft\Office\Excel12.pip [1544]
O61 - LFC: 08/03/2014 - 19:04:51 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\Microsoft\Office\Recent\CCP DOM.xlsx.LNK [1146]
O61 - LFC: 08/03/2014 - 19:04:51 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\Microsoft\Office\Recent\CCP LUDO.xlsx.LNK [1158]
O61 - LFC: 08/03/2014 - 19:04:51 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\Microsoft\Office\Recent\DESSERTS.LNK [1153]
O61 - LFC: 08/03/2014 - 19:04:51 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\Microsoft\Office\Recent\DOM.LNK [1005]
O61 - LFC: 08/03/2014 - 19:04:51 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\Microsoft\Office\Recent\ECHANGE AVEC MAXOU.docx.LNK [1262]
O61 - LFC: 08/03/2014 - 19:04:52 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\Microsoft\Office\Recent\LUDO.LNK [1012]
O61 - LFC: 08/03/2014 - 19:04:52 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\Microsoft\Office\Recent\MAINTENANCE PC.LNK [1066]
O61 - LFC: 08/03/2014 - 19:04:52 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\Microsoft\Office\Word12.pip [1700]
O61 - LFC: 08/03/2014 - 19:04:52 --H-- . (...) -- C:\Users\nikita\AppData\Roaming\Microsoft\Office\Recent\index.dat [580]
O61 - LFC: 08/03/2014 - 19:04:52 -SHA- . (...) -- C:\Users\nikita\AppData\Roaming\Microsoft\Protect\S-1-5-21-2785223111-1158521573-2117656058-1001\0d878ae4-e793-476e-ad85-7fd2cded1acc [468]
O61 - LFC: 08/03/2014 - 19:04:52 -SHA- . (...) -- C:\Users\nikita\AppData\Roaming\Microsoft\Protect\S-1-5-21-2785223111-1158521573-2117656058-1001\c2d6426d-0770-4614-9a17-f89a2e038ab3 [468]
O61 - LFC: 08/03/2014 - 19:04:52 -SHA- . (...) -- C:\Users\nikita\AppData\Roaming\Microsoft\Protect\S-1-5-21-2785223111-1158521573-2117656058-1001\d9d43ae8-788d-4cb5-b784-87b16b596061 [468]
O61 - LFC: 08/03/2014 - 19:04:55 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\Skype\coquirose\bistats.db [208896]
O61 - LFC: 08/03/2014 - 19:04:55 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\Skype\coquirose\bistats.db-journal [49760]
O61 - LFC: 08/03/2014 - 19:04:59 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\Skype\coquirose\chatsync\4d\4dae2547224b082e.dat [3185]
O61 - LFC: 08/03/2014 - 19:05:03 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\Skype\coquirose\chatsync\9d\9ddf61127178a025.dat [6146]
O61 - LFC: 08/03/2014 - 19:05:04 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\Skype\coquirose\chatsync\af\afcc8c735308c00a.dat [150013]
O61 - LFC: 08/03/2014 - 19:05:05 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\Skype\coquirose\chatsync\bb\bb0f2c0a37bf5efd.dat [1499]
O61 - LFC: 08/03/2014 - 19:05:05 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\Skype\coquirose\chatsync\bc\bc13b8afb73fc136.dat [3963]
O61 - LFC: 08/03/2014 - 19:05:05 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\Skype\coquirose\chatsync\c4\c4d221d56b1b98f4.dat [7973]
O61 - LFC: 08/03/2014 - 19:05:07 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\Skype\coquirose\chatsync\ea\eae6592f391063b6.dat [3041]
O61 - LFC: 08/03/2014 - 19:05:08 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\Skype\coquirose\chatsync\fe\fe05bb3ab6587aed.dat [6080]
O61 - LFC: 08/03/2014 - 19:05:08 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\Skype\coquirose\config.xml [29515]
O61 - LFC: 08/03/2014 - 19:05:08 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\Skype\coquirose\eas.db [98304]
O61 - LFC: 08/03/2014 - 19:05:08 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\Skype\coquirose\httpfe\cookies.dat [2]
O61 - LFC: 08/03/2014 - 19:05:08 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\Skype\coquirose\keyval.db [69632]
O61 - LFC: 08/03/2014 - 19:05:08 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\Skype\coquirose\main.db [10506240]
O61 - LFC: 08/03/2014 - 19:05:08 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\Skype\coquirose\main.db-journal [156464]
O61 - LFC: 08/03/2014 - 19:05:08 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\Skype\coquirose\mmanager\mediacache.ldb [40]
O61 - LFC: 08/03/2014 - 19:05:08 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\Skype\coquirose\msn.db [86016]
O61 - LFC: 08/03/2014 - 19:05:08 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\Skype\coquirose\msn.db-journal [37448]
O61 - LFC: 08/03/2014 - 19:05:08 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\Skype\coquirose\qikdb\qik_main.db [28672]
O61 - LFC: 08/03/2014 - 19:05:08 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\Skype\coquirose\simcache\streamlist [44]
O61 - LFC: 08/03/2014 - 19:05:08 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\Skype\coquirose\statistics.db [491520]
O61 - LFC: 08/03/2014 - 19:05:08 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\Skype\coquirose\statistics.db-journal [37448]
O61 - LFC: 08/03/2014 - 19:05:08 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\Skype\coquirose\thmanager\thumbcache.ldb [40]
O61 - LFC: 08/03/2014 - 19:05:10 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\Skype\shared.xml [94539]
O61 - LFC: 08/03/2014 - 19:05:10 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\Skype\shared_dynco\dc.db [2220032]
O61 - LFC: 08/03/2014 - 19:05:10 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\Skype\shared_dynco\dc.db-journal [8720]
O61 - LFC: 08/03/2014 - 19:05:10 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\ZHP\Log.txt [39449] =>.Nicolas Coolman
O61 - LFC: 08/03/2014 - 19:05:10 ---A- . (...) -- C:\Users\nikita\AppData\Roaming\ZHP\TestsZHPDiag.txt [2851] =>.Nicolas Coolman
O61 - LFC: 08/03/2014 - 19:05:12 ---A- . (...) -- C:\Users\nikita\Documents\DOM\CCP DOM.xlsx [44711]
O61 - LFC: 08/03/2014 - 19:05:42 ---A- . (...) -- C:\Users\nikita\Documents\LUDO\CCP LUDO.xlsx [36753]
O61 - LFC: 08/03/2014 - 19:05:43 ---A- . (...) -- C:\Users\nikita\Documents\MAINTENANCE PC\ECHANGE AVEC MAXOU.docx [260007]
O61 - LFC: 08/03/2014 - 19:05:45 ---A- . (...) -- C:\Users\nikita\Documents\RECETTES\DESSERTS\Gâteau magique à la.docx [50560]
O61 - LFC: 08/03/2014 - 19:05:47 ---A- . (...) -- C:\Users\nikita\Downloads\adwcleaner.exe [1244192]
~ 53 Fichiers temporaires (Temporary files)
~ Files: 381 Scanned in 02mn 26s



---\\ Liste des outils de désinfection (LATC) (O63)
O63 - Logiciel: ZHPDiag 2014 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman
~ ADS: Scanned in 00mn 00s



---\\ Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.exe
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S
O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
~ FASS Keys: 11 Scanned in 00mn 00s



---\\ Menu de démarrage Internet (SMI) (O68)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- c:\program files (x86)\google\chrome\application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- c:\program files\internet explorer\iexplore.exe
~ Keys: Scanned in 00mn 00s



---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69)
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKCU] {44E3D635-F019-4A89-B66D-4FA7D3099185} - (Propositions de recherche Amazon.fr) - http://www.amazon.fr
O69 - SBI: SearchScopes [HKCU] {99CF4F34-6703-4522-AFEB-5FDD05D5DC96} - (uTorrentBar_FR Customized Web Search) - http://search.conduit.com =>P2P.µTorrent
~ Keys: Scanned in 00mn 00s



---\\ Enumère les service demarrés par Svchost (SSS) (O83)
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [207360]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [155136]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [155136]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [324608]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [1311744]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [1104384]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur un réseau IPv4..) -- C:\Windows\System32\iphlpsvc.dll [903168]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll [30720]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [109568]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [150528]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [107008]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [1212416]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [220672]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédias.) -- C:\Windows\System32\mmcss.dll [70656]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [134144]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [221184]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à distance.) -- C:\Windows\System32\sessenv.dll [326656]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [81408]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\kmsvc.dll [97792]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [336896]
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Service d’infrastructure de localisation Windows.) -- C:\Windows\System32\GeofenceMonitorService.dll [491520]
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\Windows\System32\wlidsvc.dll [1555456]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [50688]
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d’installation de périphérique.) -- C:\Windows\System32\DeviceSetupManager.dll [201728]
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Microsoft.) -- C:\Windows\System32\ncasvc.dll [164352]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’accès distant.) -- C:\Windows\System32\rasauto.dll [101376]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d’accès à distance.) -- C:\Windows\System32\rasmans.dll [534016]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [223744]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements système (SENS).) -- C:\Windows\System32\sens.dll [71680]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll [433664]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM).) -- C:\Windows\System32\tapisrv.dll [306688]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll [3532288]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\Windows\System32\qmgr.dll [1017856]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [629760]

~ Services: 34 Scanned in 00mn 01s



---\\ Recherche particulière à la racine du système (SPRF) (O84)
[MD5.98435D564188B715A53B6B59C8328DDE] [SPRF][24/10/2012] (.WildTangent, Inc. - Master Uninstaller.) -- C:\ProgramData\uninstall3542923.exe [656048]
[MD5.63287A13A20D526E39BC027EC1C91A3C] [SPRF][28/02/2013] (.Microsoft Corporation - Programme d’installation de Windows Essentials.) -- C:\Users\nikita\Desktop\wlsetup-all.exe [139601632]
~ Files: 2 Scanned in 00mn 02s



---\\ Liste des exceptions du parefeu (FirewallRules) (O87)
O87 - FAEL: "vm-monitoring-rpc" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "vm-monitoring-dcom" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMP-In-UDP" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMP-Out-UDP" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMP-Out-TCP" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "SNMPTRAP-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Interruption SNMP.) -- C:\Windows\system32\snmptrap.exe
O87 - FAEL: "SNMPTRAP-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Interruption SNMP.) -- C:\Windows\system32\snmptrap.exe
O87 - FAEL: "Wininit-Shutdown-In-Rule-TCP-RPC" | In - None - P6 - FALSE | .(.Microsoft Corporation - Application de démarrage de Windows.) -- C:\Windows\system32\wininit.exe
O87 - FAEL: "Wininit-Shutdown-In-Rule-TCP-RPC-EPMapper" | In - None - P6 - FALSE | .(.Microsoft Corporation - Application de démarrage de Windows.) -- C:\Windows\system32\wininit.exe
O87 - FAEL: "PNRPMNRS-PNRP-In-UDP" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "PNRPMNRS-PNRP-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "PNRPMNRS-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "PNRPMNRS-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MsiScsi-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MsiScsi-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MsiScsi-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MsiScsi-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "ProximityUxHost-Sharing-In-TCP-NoScope" | In - None - P6 - TRUE | .(.Microsoft Corporation - Hôte UX de proximité.) -- C:\Windows\system32\proximityuxhost.exe
O87 - FAEL: "ProximityUxHost-Sharing-Out-TCP-NoScope" | Out - None - P6 - TRUE | .(.Microsoft Corporation - Hôte UX de proximité.) -- C:\Windows\system32\proximityuxhost.exe
O87 - FAEL: "NETDIS-UPnPHost-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-WSDEVNTS-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-WSDEVNT-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-SSDPSrv-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-UPnPHost-Out-TCP-Active" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-UPnP-Out-TCP-Active" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-FDPHOST-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-DAS-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Device Association Framework Provider Host.) -- C:\Windows\system32\dashost.exe
O87 - FAEL: "NETDIS-FDPHOST-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-LLMNR-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-LLMNR-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-WSDEVNTS-Out-TCP-Active" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-WSDEVNT-Out-TCP-Active" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-SSDPSrv-In-UDP" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-UPnP-Out-TCP" | Out - Public - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-UPnPHost-Out-TCP" | Out - Public - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-FDPHOST-In-UDP" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-DAS-In-UDP" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Device Association Framework Provider Host.) -- C:\Windows\system32\dashost.exe
O87 - FAEL: "NETDIS-FDPHOST-Out-UDP" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-LLMNR-In-UDP" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-LLMNR-Out-UDP" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-WSDEVNTS-Out-TCP" | Out - Public - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-WSDEVNT-Out-TCP" | Out - Public - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "EventForwarder-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Event Forwarder.) -- C:\Windows\system32\NetEvtFwdr.exe
O87 - FAEL: "EventForwarder-RPCSS-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteFwAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteFwAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteFwAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteFwAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "TPMVSCMGR-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "TPMVSCMGR-Server-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - TPM Virtual Smart Card Manager DCOM Server.) -- C:\Windows\system32\RmtTpmVscMgrSvr.exe
O87 - FAEL: "TPMVSCMGR-Server-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - TPM Virtual Smart Card Manager DCOM Server.) -- C:\Windows\system32\RmtTpmVscMgrSvr.exe
O87 - FAEL: "TPMVSCMGR-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "TPMVSCMGR-Server-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - TPM Virtual Smart Card Manager DCOM Server.) -- C:\Windows\system32\RmtTpmVscMgrSvr.exe
O87 - FAEL: "TPMVSCMGR-Server-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - TPM Virtual Smart Card Manager DCOM Server.) -- C:\Windows\system32\RmtTpmVscMgrSvr.exe
O87 - FAEL: "Netlogon-TCP-RPC-In" | In - None - P6 - FALSE | .(.Microsoft Corporation - Local Security Authority Process.) -- C:\Windows\System32\lsass.exe
O87 - FAEL: "Collab-PNRP-In-UDP" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "Collab-PNRP-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "Collab-PNRP-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "Collab-PNRP-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WirelessDisplay-In-TCP" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes.) -- C:\Windows\system32\WUDFHost.exe
O87 - FAEL: "WirelessDisplay-Out-TCP" | Out - Public - P6 - TRUE | .(.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes.) -- C:\Windows\system32\WUDFHost.exe
O87 - FAEL: "WirelessDisplay-Out-UDP" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes.) -- C:\Windows\system32\WUDFHost.exe
O87 - FAEL: "WMI-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMI-WINMGMT-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMI-WINMGMT-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMI-ASYNC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) -- C:\Windows\system32\wbem\unsecapp.exe
O87 - FAEL: "WMI-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMI-WINMGMT-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMI-WINMGMT-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMI-ASYNC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) -- C:\Windows\system32\wbem\unsecapp.exe
O87 - FAEL: "FPS-SpoolSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "FPS-SpoolSvc-In-TCP" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "FPS-LLMNR-In-UDP" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "FPS-LLMNR-Out-UDP" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-TCP3587-In" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-TCP3587-Out" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-UDP3540-In" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-UDP3540-Out" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteAssistance-In-TCP-EdgeScope" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-In-EdgeScope" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-OUT" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteAssistance-RAServer-In-TCP-NoScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur COM d’assistance à distance Windows.) -- C:\Windows\system32\raserver.exe
O87 - FAEL: "RemoteAssistance-RAServer-Out-TCP-NoScope-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur COM d’assistance à distance Windows.) -- C:\Windows\system32\raserver.exe
O87 - FAEL: "RemoteAssistance-DCOM-In-TCP-NoScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteAssistance-In-TCP-EdgeScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-Out-TCP-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-SSDPSrv-In-UDP-Active" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteAssistance-SSDPSrv-Out-UDP-Active" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-In-EdgeScope-Active" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-OUT-Active" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MSDTC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-KTMRM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MSDTC-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MSDTC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-KTMRM-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MSDTC-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-In-UDP-NoScope" |In - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-Out-UDP-NoScope" |Out - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-In-UDP" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-Out-UDP" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-In-TCP" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-Out-TCP" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-SSDPSrv-In-UDP" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-SSDPSrv-Out-UDP" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-In-UDP" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-Out-UDP" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-Out-TCP" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-In-UDP" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-Out-UDP" |Out - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-In-TCP" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-Out-TCP" |Out - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-UPnP-Out-TCP" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteEventLogSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteEventLogSvc-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteEventLogSvc-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteEventLogSvc-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteTask-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteTask-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteTask-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteTask-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RVM-VDS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service de disque virtuel.) -- C:\Windows\system32\vds.exe
O87 - FAEL: "RVM-VDSLDR-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Virtual Disk Service Loader.) -- C:\Windows\system32\vdsldr.exe
O87 - FAEL: "RVM-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RVM-VDS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service de disque virtuel.) -- C:\Windows\system32\vds.exe
O87 - FAEL: "RVM-VDSLDR-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Virtual Disk Service Loader.) -- C:\Windows\system32\vdsldr.exe
O87 - FAEL: "RVM-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "PlayTo-In-UDP-NoScope" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-In-UDP-LocalSubnetScope" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-In-UDP-PlayToScope" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-Out-UDP-NoScope" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-Out-UDP-LocalSubnetScope" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-Out-UDP-PlayToScope" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-In-RTSP-NoScope" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-In-RTSP-LocalSubnetScope" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-In-RTSP-PlayToScope" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-SSDP-Discovery-PlayToScope" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "PlayTo-QWave-In-UDP-PlayToScope" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "PlayTo-QWave-Out-UDP-PlayToScope" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "PlayTo-QWave-In-TCP-PlayToScope" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "PlayTo-QWave-Out-TCP-PlayToScope" | Out - Public - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WFDPRINT-DAFWSD-In-Active" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Device Association Framework Provider Host.) -- C:\Windows\system32\dashost.exe
O87 - FAEL: "WFDPRINT-DAFWSD-Out-Active" | Out - Public - P6 - TRUE | .(.Microsoft Corporation - Device Association Framework Provider Host.) -- C:\Windows\system32\dashost.exe
O87 - FAEL: "WFDPRINT-SPOOL-In-Active" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "WFDPRINT-SPOOL-Out-Active" | Out - Public - P6 - TRUE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "WFDPRINT-SCAN-In-Active" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WFDPRINT-SCAN-Out-Active" | Out - Public - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "CoreNet-DHCP-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "CoreNet-DHCP-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "CoreNet-DHCPV6-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "CoreNet-DHCPV6-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "CoreNet-Teredo-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "CoreNet-Teredo-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "CoreNet-IPHTTPS-Out" | Out - None - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "CoreNet-GP-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "CoreNet-DNS-Out-UDP" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "CoreNet-GP-LSASS-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Local Security Authority Process.) -- C:\Windows\system32\lsass.exe
O87 - FAEL: "PerfLogsAlerts-PLASrv-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Performance Logs and Alerts DCOM Server.) -- C:\Windows\system32\plasrv.exe
O87 - FAEL: "PerfLogsAlerts-DCOM-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "PerfLogsAlerts-PLASrv-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Performance Logs and Alerts DCOM Server.) -- C:\Windows\system32\plasrv.exe
O87 - FAEL: "PerfLogsAlerts-DCOM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteSvcAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe
O87 - FAEL: "RemoteSvcAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteSvcAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe
O87 - FAEL: "RemoteSvcAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WPDMTP-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe
O87 - FAEL: "WPDMTP-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe
O87 - FAEL: "WPDMTP-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WPDMTP-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WPDMTP-UPnPHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WPDMTP-UPnP-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MCX-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MCX-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MCX-QWave-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MCX-QWave-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MCX-QWave-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MCX-QWave-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MCX-TERMSRV-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MCX-MCX2SVC-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MCX-PlayTo-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MCX-PlayTo-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MCX-FDPHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "FPS-LLMNR-Out-UDP_1" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "FPS-LLMNR-In-UDP_1" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "FPS-SpoolSvc-In-TCP_1" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "WMP-Out-TCP_1" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMP-Out-UDP_1" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMP-In-UDP_1" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-UPnP-Out-TCP_1" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-Out-TCP_1" |Out - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-In-TCP_1" |In - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-Out-UDP_1" |Out - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-In-UDP_1" |In - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-Out-TCP_1" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-Out-UDP_1" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-In-UDP_1" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-SSDPSrv-Out-UDP_1" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-SSDPSrv-In-UDP_1" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-Out-TCP_1" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-In-TCP_1" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-Out-UDP_1" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-In-UDP_1" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP_1" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP_1" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-LLMNR-Out-UDP_1" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-LLMNR-In-UDP_1" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-FDPHOST-Out-UDP_1" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-DAS-In-UDP_1" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Device Association Framework Provider Host.) -- C:\Windows\system32\dashost.exe
O87 - FAEL: "NETDIS-FDPHOST-In-UDP_1" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-UPnP-Out-TCP_1" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP_1" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-SSDPSrv-In-UDP_1" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "{F2A66D16-E8BA-44E0-AD13-C16B9A69C3A0}" | In - Public - P17 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Tray Application.) -- C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe
O87 - FAEL: "{3DC1BF7B-FC4A-4537-AF45-3C2FA953D0B2}" | In - Public - P6 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Tray Application.) -- C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe
O87 - FAEL: "{9AA27812-E436-489F-99A5-4000D18A4C9C}" | In - Public - P17 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe
O87 - FAEL: "{859E1C96-B76F-4EE0-A7A9-54E9775A92C6}" | In - Public - P6 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe
O87 - FAEL: "{F5804659-ECF8-43D4-9C59-C2C9D9E758F5}" | In - Public - P17 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Content Importer.) -- C:\Program Files (x86)\IncrediMail\Bin\ImpCnt.exe
O87 - FAEL: "{088B9257-A0B4-43A5-A360-2314BD0BE8BC}" | In - Public - P17 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Content Importer.) -- C:\Program Files (x86)\IncrediMail\Bin\ImpCnt.exe
O87 - FAEL: "{6DA210CC-377A-4070-B229-438C7136B56B}" | In - Public - P17 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Content Importer.) -- C:\Program Files (x86)\IncrediMail\Bin\ImpCnt.exe
O87 - FAEL: "{D76ECDC4-A605-4297-8FB1-BDB3AE8A53EF}" | In - Public - P6 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Content Importer.) -- C:\Program Files (x86)\IncrediMail\Bin\ImpCnt.exe
O87 - FAEL: "{EF9564B1-2A6D-470A-89AC-6FD58F4A6A7B}" | In - Public - P6 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Content Importer.) -- C:\Program Files (x86)\IncrediMail\Bin\ImpCnt.exe
O87 - FAEL: "{732976E2-EC08-46DB-81AA-8366A64A6B1B}" | In - Public - P6 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Content Importer.) -- C:\Program Files (x86)\IncrediMail\Bin\ImpCnt.exe
O87 - FAEL: "{A5FE3C74-CDA2-4E7C-94DD-FE6BD52BA2FF}" | In - None - P6 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O87 - FAEL: "UDP Query User{178034A6-AC1B-4CD2-9191-5675A691D58C}C:\program files (x86)\mozilla firefox\plugin-container.exe" | In - Public - P17 - TRUE | .(.Mozilla Corporation - Plugin Container for Firefox.) -- C:\program files (x86)\mozilla firefox\plugin-container.exe
O87 - FAEL: "TCP Query User{A83E2EE9-7AD3-40C8-999B-4CFE2E2D5427}C:\program files (x86)\mozilla firefox\plugin-container.exe" | In - Public - P6 - TRUE | .(.Mozilla Corporation - Plugin Container for Firefox.) -- C:\program files (x86)\mozilla firefox\plugin-container.exe
O87 - FAEL: "UDP Query User{9894E06C-574D-4932-8CB4-0714537D51F0}C:\users\nikita\desktop\utorrent.exe" |In - Private - P17 - TRUE | .(...) -- C:\users\nikita\desktop\utorrent.exe (.not file.) =>P2P.µTorrent
O87 - FAEL: "TCP Query User{476AA5CE-0ADD-4A27-8F8A-80951634998E}C:\users\nikita\desktop\utorrent.exe" |In - Private - P6 - TRUE | .(...) -- C:\users\nikita\desktop\utorrent.exe (.not file.) =>P2P.µTorrent
O87 - FAEL: "UDP Query User{0C388081-4A47-4EC7-8BD0-C775F7EA2ED1}C:\users\nikita\desktop\utorrent.exe" |In - Public - P17 - TRUE | .(...) -- C:\users\nikita\desktop\utorrent.exe (.not file.) =>P2P.µTorrent
O87 - FAEL: "TCP Query User{ED71D7D5-DA5A-469B-AE80-10660F2C0AF8}C:\users\nikita\desktop\utorrent.exe" |In - Public - P6 - TRUE | .(...) -- C:\users\nikita\desktop\utorrent.exe (.not file.) =>P2P.µTorrent
O87 - FAEL: "{9E1698B0-971B-4A24-9CAE-84FB672895E1}" | In - None - P6 - TRUE | .(.Microsoft Corporation - Windows Live Communications Platform.) -- C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
O87 - FAEL: "{44281E60-D034-4D2A-823F-107089E901B5}" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Microsoft Office Outlook.) -- C:\Program Files (x86)\Microsoft Office\Office12\outlook.exe =>.Microsoft Corporation
O87 - FAEL: "{2D689020-9C98-4DB3-9D31-4C666563C731}" | In - None - P17 - TRUE | .(.Hewlett-Packard - HP Update Client.) -- C:\Program Files (x86)\HP\hp software update\hpwucli.exe =>.Hewlett-Packard Co
O87 - FAEL: "{C5B1F4F8-7227-4A41-87DF-5DE7EF6F8F97}" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Installateur Windows®.) -- C:\Windows\SysWOW64\msiexec.exe
O87 - FAEL: "{D7807E12-F9C0-48E6-8838-388F36557726}" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Installateur Windows®.) -- C:\Windows\SysWOW64\msiexec.exe
O87 - FAEL: "{C568D151-C712-475A-95D0-0D7AAF61B99F}" | In - None - P6 - TRUE | .(.CyberLink Corp. - PowerDVD 10.0.) -- C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.exe
O87 - FAEL: "{B3915762-BD07-41F5-942E-658E6140D5FC}" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "{B357E7B2-9468-4D57-8B10-8598F8D19255}" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "{D9858838-0AB4-4EBE-B881-3097411C5B64}" |In - None - P6 - TRUE | .(...) -- C:\Users\nikita\AppData\Roaming\uTorrent\uTorrent.exe (.not file.) =>P2P.µTorrent
O87 - FAEL: "{68F8B9BB-558C-4583-AD32-AAC61B020F62}" |In - None - P17 - TRUE | .(...) -- C:\Users\nikita\AppData\Roaming\uTorrent\uTorrent.exe (.not file.) =>P2P.µTorrent
O87 - FAEL: "{61A4ACBA-F53B-4DD4-9CEA-61D3A3F61623}" | In - None - P6 - TRUE | .(.BitTorrent Inc. - BitTorrent.) -- C:\Users\nikita\AppData\Roaming\BitTorrent\BitTorrent.exe =>P2P.BitTorrent
O87 - FAEL: "{DB348DCC-1F1D-4FE8-B747-A82A5C2419C4}" | In - None - P17 - TRUE | .(.BitTorrent Inc. - BitTorrent.) -- C:\Users\nikita\AppData\Roaming\BitTorrent\BitTorrent.exe =>P2P.BitTorrent
O87 - FAEL: "{02113EF2-916D-4DDB-A89C-D12A791E6436}" | In - None - P17 - TRUE | .(.Skype Limited - Facebook Video Calling.) -- C:\Users\nikita\AppData\Local\Facebook\Video\Skype\FacebookVideoCalling.exe
O87 - FAEL: "{708EA46D-A985-4613-A3A5-CA88AA1F5A6F}" | In - None - P17 - TRUE | .(.Hewlett-Packard Company - HP Device Detection.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPDeviceDetection3.exe
~ Firewall: 260 Scanned in 00mn 01s



---\\ Enumère les codes produits des logiciels (PUC) (O90)
O90 - PUC: "00004159070000000000000000F01FEC" . (.Microsoft Office.) -- C:\windows\Installer\{95140000-0070-0000-0000-0000000FF1CE}\oobeicon.exe
O90 - PUC: "0694AF70830BBE9498B1F95939A05A44" . (.HP Customer Experience Enhancements.) -- C:\windows\Installer\{07FA4960-B038-49EB-891B-9F95930AA544}\ARPPRODUCTICON.exe
O90 - PUC: "0E280CA1D940C5C4E9FC4937DAA549D9" . (.HP Documentation.) -- C:\Windows\Installer\{1AC082E0-049D-4C5C-9ECF-9473AD5A949D}\NotebookDocs.exe
O90 - PUC: "1B641C2DD849FE743878D5C1B689F0C7" . (.Windows Live Writer.) -- C:\Windows\Installer\{D2C146B1-948D-47EF-8387-5D1C6B980F7C}\ApplicationIcon.ico
O90 - PUC: "1D034B0FAA6BD374B960AAD30DF10D8B" . (.Microsoft SQL Server 2005 Compact Edition [ENU].) -- C:\windows\Installer\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}\ProductIcon
O90 - PUC: "2FCC6D4EFAA0C9B4D95E98E3CDB9B4AA" . (.HP Registration Service.) -- C:\Windows\Installer\{E4D6CCF2-0AAF-4B9C-9DE5-893EDC9B4BAA}\ARPPRODUCTICON.exe
O90 - PUC: "31B3A53EDC877694A88CAAF9AD96E3ED" . (.HP Support Assistant.) -- C:\WINDOWS\Installer\{E35A3B13-78CD-4967-8AC8-AA9FDA693EDE}\ARPPRODUCTICON.exe =>.Hewlett-Packard Co
O90 - PUC: "42C6FBF1Df1C10144AB2C065F4E9E897" . (.Media Suite.) -- C:\Windows\Installer\{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}\ARPPRODUCTICON.exe
O90 - PUC: "460DDFB176C465146A6CE6D83665B3B3" . (.calibre.) -- C:\WINDOWS\Installer\{1BFDD064-4C67-4156-A6C6-6E8D63563B3B}\main_icon
O90 - PUC: "46B5A9879DD95AB419A50FCFA0B1B7EF" . (.Apple Software Update.) -- C:\Windows\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\Installer.ico =>.Apple Inc
O90 - PUC: "49C22FC2963140C4A9F54ACBD6195B80" . (.IncrediMail.) -- C:\Windows\Installer\{2CF22C94-1369-4C04-9A5F-A4BC6D91B508}\ARPPRODUCTICON.exe
O90 - PUC: "4D82F7B6E0616C047B8CE56C9B37D47A" . (.Photo Notifier and Animation Creator.) -- C:\Windows\Installer\{6B7F28D4-160E-40C6-B7C8-5EC6B9734DA7}\ARPPRODUCTICON.exe
O90 - PUC: "50E7C3A773EE6D74991EE20BA5D33A7F" . (.Skype™ 6.14.) -- C:\WINDOWS\Installer\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}\SkypeIcon.exe
O90 - PUC: "6303285E90F6A0D40BC52EAB1A9282A8" . (.HP Quick Launch.) -- C:\Windows\Installer\{E5823036-6F09-4D0A-B05C-E2BAA129288A}\_853F67D554F05449430E7E.exe
O90 - PUC: "68AB67CA7DA76301B744BA0000000010" . (.Adobe Reader XI (11.0.06) - Français.) -- C:\Windows\Installer\{AC76BA86-7AD7-1036-7B44-AB0000000001}\SC_Reader.ico
O90 - PUC: "701043F6AA9F6C745BC43C1AF91155F3" . (.Hewlett-Packard ACLM.NET v1.2.2.3.) -- C:\WINDOWS\Installer\{6F340107-F9AA-47C6-B54C-C3A19F11553F}\ARPPRODUCTICON.exe
O90 - PUC: "7C43C21609E58D74B9C5F017D78D7262" . (.swMSM.) -- C:\windows\Installer\{612C34C7-5E90-47D8-9B5C-0F717DD82726}\ARPPRODUCTICON.exe
O90 - PUC: "8994BF104C33134458DE70E9E3FE7ED5" . (.YouCam.) -- C:\Windows\Installer\{01FB4998-33C4-4431-85ED-079E3EEFE75D}\ARPPRODUCTICON.exe
O90 - PUC: "8D1D2B0370A017B4593570015C3DE153" . (.HP Wireless Button Driver.) -- C:\Windows\Installer\{30B2D1D8-0A07-4B71-9553-0710C5D31E35}\ARPPRODUCTICON.exe
O90 - PUC: "A4432684C93A7984CA4D1AEB5D61C3A5" . (.PhotoDirector.) -- C:\Windows\Installer\{4862344A-A39C-4897-ACD4-A1BED5163C5A}\ARPPRODUCTICON.exe
O90 - PUC: "A78975C0A30A59B43A902DF3874F60AC" . (.HP Utility Center.) -- C:\Windows\Installer\{0C57987A-A03A-4B95-A309-D23F78F406CA}\ARPPRODUCTICON.exe
O90 - PUC: "AA5C8F95DB19D324FB50908AF09398F8" . (.HP CoolSense.) -- C:\Windows\Installer\{59F8C5AA-91BD-423D-BF05-09A80F39898F}\_853F67D554F05449430E7E.exe
O90 - PUC: "AF5A5D893AA1EBC42BC67A732EF0A8D6" . (.HP Software Framework.) -- C:\Windows\Installer\{98D5A5FA-1AA3-4CBE-B26C-A737E20F8A6D}\app_1.exe
O90 - PUC: "B18BA825A56D0BA42A6B285BA180D710" . (.HP Recovery Manager.) -- C:\windows\Installer\{528AB81B-D65A-4AB0-A2B6-82B51A087D01}\_853F67D554F05449430E7E.exe
O90 - PUC: "BC993E9FF640DF546AF7FC93E912824E" . (.HP 3D DriveGuard.) -- C:\Windows\Installer\{F9E399CB-046F-45FD-A67F-CF399E2128E4}\controlPanelIcon.exe
O90 - PUC: "C971C95CD8669A946BAE1012CCCF2134" . (.LabelPrint.) -- C:\WINDOWS\Installer\{C59C179C-668D-49A9-B6EA-0121CCFC1243}\ARPPRODUCTICON.exe
O90 - PUC: "CC599AF0948C55741BB44540CC57CD42" . (.Energy Star.) -- C:\Windows\Installer\{0FA995CC-C849-4755-B14B-5404CC75DC24}\_853F67D554F05449430E7E.exe
O90 - PUC: "D7314F9862C648A4DB8BE2A5B47BE100" . (.Microsoft Silverlight.) -- c:\Windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ARPIcon
O90 - PUC: "D84D78A2FDF3df1479DC1A3E07FEFF2E" . (.Power2Go.) -- C:\Windows\Installer\{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}\ARPPRODUCTICON.exe
O90 - PUC: "DE532CED4A8571542A874CE1D8EABAB3" . (.PowerDVD.) -- C:\Windows\Installer\{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}\ARPPRODUCTICON.exe
O90 - PUC: "E5E5322F18873924B9F6402B06F9FB0F" . (.Windows Live Messenger.) -- C:\Windows\Installer\{F2235E5E-7881-4293-9B6F-04B2609FBFF0}\MsblIco.Exe
O90 - PUC: "E78D5FE2DB7BF85448824E0D8B4B6EC5" . (.Apple Mobile Device Support.) -- C:\Windows\Installer\{2EF5D87E-B7BD-458F-8428-E4D0B8B4E65C}\Installer.ico
~ Update Products: 129 Scanned in 00mn 00s



---\\ Enumère les données de la clé NameSpace (MNS) (O92)
O92 - MNS: - {1CF1260C-4DD0-4ebb-811F-33C572699FDE}
O92 - MNS: - {374DE290-123F-4565-9164-39C4925E467B}
O92 - MNS: - {3ADD1653-EB32-4cb0-BBD7-DFA0ABB5ACCA}
O92 - MNS: - {A0953C92-50DC-43bf-BE83-3742FED03C9C}
O92 - MNS: - {A8CDFF1C-4878-43be-B5FD-F8091C1C60D0}
O92 - MNS: - {B4BFCC3A-DB2C-424C-B029-7FE99A87C641}
~ MNS: 6 Scanned in 00mn 00s



---\\ Recherche des packages WindowsInstaller (WIS) (O93) (NTFS)
[MD5.C84C35B3ED26F11A04F50874B40AA5E8] [WIS][25/11/2013] (.IncrediMail - IncrediMail.) -- C:\Windows\Installer\17b15cdb.msi [2687488]
[MD5.F62240F8598C9B71A372ECEE96002059] [WIS][20/01/2014] (.Kovid Goyal - calibre Installer.) -- C:\Windows\Installer\29c4528.msi [54334976]
[MD5.4A12DF154BCF3816932D45937FCE0C2A] [WIS][27/02/2014] (.Skype Technologies S.A. - Skype.) -- C:\Windows\Installer\30f6ffa3.msi [25616384]
[MD5.30AA0099343BD8D9ECFAFBEE9C666EC3] [WIS][30/12/2013] (.Badoo - Badoo Desktop Installer.) -- C:\Windows\Installer\4c6a287d.msi [2301952]
[MD5.C133F19570415BEC44B8403A15BD4E9A] [WIS][29/04/2011] (.Builds the Destinations MSI - Builds the Destinations MSI.) -- C:\Windows\Installer\759aa8b.msi [523776]
[MD5.19DC7F8A3078711805394592A9F16BF1] [WIS][22/11/2013] (.Nom de votre société - Photo Notifier and Animation Creator.) -- C:\Windows\Installer\b2fac52.msi [2850816]
~ WIS: 131 Scanned in 00mn 13s



---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SS - | Demand 20/02/2014 257928 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SS - | Auto 07/09/2013 55624 | (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
SS - | Demand 14/12/2012 277616 | (cphs) . (.Intel Corporation.) - C:\Windows\SysWow64\IntelCpHeciSvc.exe
SS - | Auto 19/01/2013 136176 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 19/01/2013 136176 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 19/01/2013 194032 | (gusvc) . (.Google.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
SS - | Demand 22/08/2013 37768 | C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll (hpqddsvc) . (.Hewlett-Packard Co..) - C:\Windows\system32\svchost.exe
SS - | Demand 22/08/2013 37768 | C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.dll (HPSLPSVC) . (.Hewlett-Packard Co..) - C:\Windows\system32\svchost.exe
SS - | Demand 24/09/2012 31040 | (hpsrv) . (.Hewlett-Packard Company.) - C:\Windows\System32\Hpservice.exe
SS - | Demand 07/09/2012 35232 | (HPWMISVC) . (.Hewlett-Packard Development Company, L.P..) - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
SS - | Demand 15/02/2014 118896 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
SS - | Auto 23/10/2013 172192 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
SS - | Demand 13/06/2013 323072 | (STacSV) . (.IDT, Inc..) - C:\Program Files\IDT\WDM\STacSV64.exe
SS - | Demand 10/07/1658 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation
SS - | Demand 22/08/2013 37768 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe

SR - | Auto 21/12/2013 65432 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
SR - | Auto 23/01/2014 50344 | (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
SR - | Auto 19/11/2013 116776 | (avast! Firewall) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\afwServ.exe
SR - | Auto 04/11/2013 92160 | (HP Support Assistant Service) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe =>.Hewlett-Packard Co
SR - | Demand 22/08/2013 37768 | C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll (hpqcxs08) . (.Hewlett-Packard Co..) - C:\Windows\system32\svchost.exe
SR - | Demand 07/06/2013 1129760 | (hpqwmiex) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
SR - | Auto 13/06/2013 14904 | (IAStorDataMgrSvc) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
SR - | Auto 14/07/2012 2451456 | (IconMan_R) . (.Realsil Microelectronics Inc..) - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
SR - | Auto 20/04/2012 635104 | (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe
SR - | Auto 18/07/2012 128896 | (Intel(R) ME Service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
SR - | Auto 18/07/2012 165760 | (jhi_service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
SR - | Auto 18/07/2012 276864 | (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
SR - | Auto 04/04/2013 418376 | (MBAMScheduler) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
SR - | Auto 04/04/2013 701512 | (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
SR - | Auto 22/08/2013 37768 | C:\Windows\System32\HPZinw12.dll (Net Driver HPZ12) . (.Hewlett-Packard.) - C:\Windows\System32\svchost.exe
SR - | Auto 22/08/2013 37768 | C:\Windows\System32\HPZipm12.dll (Pml Driver HPZ12) . (.Hewlett-Packard.) - C:\Windows\System32\svchost.exe
SR - | Auto 18/07/2012 364416 | (UNS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
SR - | Demand 10/07/1658 0 | (WdNisSvc) . (...) - C:\Program Files (x86)\Windows Defender\NisSrv.exe
SR - | Demand 10/07/1658 0 | (WinDefend) . (...) - C:\Program Files (x86)\Windows Defender\MsMpEng.exe

~ Services: Scanned in 00mn 18s



---\\ Recherche d'infection sur le Master Boot Record (MBR)(O80)
Run by nikita at 08/03/2014 19:07:11
~ OS 64 not supported by MBR tool

~ MBR: 0 Scanned in 00mn 00s



---\\ Recherche d'infection sur le Master Boot Record (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by nikita at 08/03/2014 19:07:13

********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin

~ MBR: Scanned in 00mn 02s



---\\ Scan Additionnel (O88)
Database Version : 13031 - (03/03/2014)
Clés trouvées (Keys found) : 1
Valeurs trouvées (Values found) : 3
Dossiers trouvés (Folders found) : 3
Fichiers trouvés (Files found) : 1

[HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\BitTorrent] =>P2P.BitTorrent^
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:BitTorrent =>P2P.BitTorrent^
C:\Program Files (x86)\uTorrent =>P2P.µTorrent^
C:\Users\nikita\AppData\Roaming\BitTorrent =>P2P.BitTorrent^
C:\Users\nikita\AppData\Roaming\uTorrent =>P2P.µTorrent^
C:\Users\nikita\AppData\Roaming\BitTorrent\BitTorrent.exe =>P2P.BitTorrent^
~ Additionnel Scan: 317034 Items scanned in 00mn 23s



---\\ Récapitulatif des détections trouvées sur votre station
~ http://nicolascoolman.webs.com/apps/blog/show/33083759-hijacker-findrtoolbar =>Hijacker.FindrToolbar
~ MSI: 1 link(s) detected in 00mn 24s



End of the scan (2542 lines in 08mn 25s)(0)

Publicité


Signaler le contenu de ce document

Publicité