~ Rapport de ZHPDiag v2014.2.10.5 - Nicolas Coolman  (10/02/2014)
~ Lancé par Roger sous sol (12/02/2014 13:49:19)
~ Adresse du Site Web  http://nicolascoolman.webs.com
~ Forums gratuits d'Assistance à la désinfection : http://nicolascoolman.webs.com/apps/links/
~ Traduit par Nicolas Coolman
~ Etat de la version : 
~ Liste blanche : Désactivée par l'utilisateur
~ Elévation des Privilèges : OK
~ User Account Control (UAC): Activate by user


---\\ Navigateurs Internet
MSIE: Internet Explorer v11.0.9600.16476 (Defaut)

---\\ Informations sur les produits Windows
~ Langage: Français
Windows 7 Ultimate, 64-bit Service Pack 1 (Build 7601)
Windows Server License Manager Script : OK

---\\ Logiciels de protection du système
AVG 2014 v14.0.3697
Windows Defender W7

---\\ Logiciels d'optimisation du système
CCleaner v4.10 =>Piriform Ltd

---\\ Logiciels de partage PeerToPeer

---\\ Surveillance de Logiciels
Adobe Flash Player Plugin
Adobe Reader XI
Java 7 Update 51

---\\ Informations sur le système
~ Processor: Intel64 Family 6 Model 58 Stepping 9, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 8079 MB (73% free)
System Restore: Activé (Enable)
System drive C: has 59 GB (52%) free of 112 GB

---\\ Mode de connexion au système
~ Computer Name: ROGERSOUSSOL-PC
~ User Name: Roger sous sol
~ All Users Names: Roger sous sol, Administrateur, 
~ Unselected Option: None
Logged in as Administrator

---\\ Variables d'environnement
~ System Unit : C:\
~ %AppZHP% : C:\Users\Roger sous sol\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\Roger sous sol\AppData\Roaming\
~ %Desktop% : C:\Users\Roger sous sol\Desktop\
~ %Favorites% : C:\Users\Roger sous sol\Favorites\
~ %LocalAppData% : C:\Users\Roger sous sol\AppData\Local\
~ %StartMenu% : C:\Users\Roger sous sol\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ Enumération des unités disques
C: Hard drive, Flash drive, Thumb drive (Free 59 Go of 112 Go)
D: Hard drive, Flash drive, Thumb drive (Free 70 Go of 102 Go)
E: Hard drive, Flash drive, Thumb drive (Free 78 Go of 233 Go)
F: Hard drive, Flash drive, Thumb drive (Free 181 Go of 494 Go)
G: CD-ROM drive (Not Inserted)
H: CD-ROM drive (Not Inserted)



---\\ Etat du Centre de Sécurité Windows
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime :  OK
~ Security Center: 41 Scanned in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.25/02/2011 - 07:19:30.) -- C:\Windows\Explorer.exe [2871808]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\System32\Wininit.exe [129024]
[MD5.9B6678DB9C6A232C5A84D2FDFFF8B0E1] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.26/11/2013 - 08:07:57.) -- C:\Windows\System32\wininet.dll [2334208]
[MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.21/11/2010 - 04:24:29.) -- C:\Windows\System32\Winlogon.exe [390656]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) (.21/11/2010 - 04:24:16.) -- C:\Windows\System32\sppcomapi.dll [232448]
[MD5.79059559E89D06E8B80CE2944BE20228] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.28/09/2013 - 02:09:10.) -- C:\Windows\system32\Drivers\AFD.sys [497152]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.21/11/2010 - 04:23:47.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.21/11/2010 - 04:24:32.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.21/11/2010 - 04:23:47.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.27/04/2011 - 03:40:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [158208]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.21/11/2010 - 04:23:51.) -- C:\Windows\system32\Drivers\netBT.sys [261632]
[MD5.B98F8C6E31CD07B2E6F71F7F648E38C0] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.12/04/2013 - 15:45:08.) -- C:\Windows\system32\Drivers\ntfs.sys [1656680]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.21/11/2010 - 04:24:33.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536]
[MD5.1B6163C503398B23FF8B939C67747683] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.21/11/2010 - 04:25:07.) -- C:\Windows\system32\Drivers\rdpdr.sys [165888]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.21/11/2010 - 04:24:32.) -- C:\Windows\system32\Drivers\tdx.sys [119296]
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.21/11/2010 - 04:23:47.) -- C:\Windows\system32\Drivers\volsnap.sys [295808]
~ Generic Processes:  Scanned in 00mn 00s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes Videos (My Videos) : 1/6
~ Mes Favoris (My Favorites) : 1/194
~ Mes Documents (My Documents) : 1/4876
~ Mon Bureau (My Desktop) : 1/24
~ Menu demarrer (Programs) : 1/33
~ Hidden Files:  Scanned in 00mn 00s



---\\ Processus lancés
[MD5.58920E6A409046BA06548D9D139CE0F0] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe   [20584608] [PID.2544]
[MD5.D5CDEA452982FC61E21EE978AAB134DD] - (.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe   [367016] [PID.2564]
[MD5.3D128E3AE74833E82F852BD096D937C5] - (.Dropbox, Inc. - Dropbox.) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\bin\Dropbox.exe   [33508336] [PID.2704]
[MD5.643F7A81B4FC27845886AB9650AD2C61] - (.AVG Technologies CZ, s.r.o. - AVG User Interface.) -- C:\Program Files (x86)\AVG\AVG2014\avgui.exe   [4956176] [PID.2936]
[MD5.5B6E8E09BE6401A7E022F52FDFCB2FF8] - (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe   [254336] [PID.3012]
[MD5.7515EC02E1F288107C95D5C195381235] - (.Intel Corporation - Intel(R) USB 3.0 Monitor.) -- C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe   [292088] [PID.2168]
[MD5.312707A513F86ED20642F43F8EF4DD14] - (.IncrediMail, Ltd. - IncrediMail Tray Application.) -- C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe   [264616] [PID.3140]
[MD5.4738DC864215B00B886E27A8D18CC326] - (.Intel Corporation - IAStorIcon.) -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe   [287592] [PID.4636]
[MD5.C8A8321292A459B0A17FB39A782A5C74] - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\IEXPLORE.exe   [806096] [PID.5528]
[MD5.C5AC2D90D39224C7D84DD7E9B783BE31] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe   [8333824] [PID.2452]
~ Processes Running:  Scanned in 00mn 00s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions  (P2,M0,M1,M2,M3)
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.20913.0.) -- C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll
P2 - FPN: [HKLM] [@videolan.org/vlc,version=2.1.2] - (.VideoLAN - VLC media player Web Plugin 2.1.0.) -- C:\Program Files\VideoLAN\VLC\npvlc.dll  =>.VideoLAN
~ Firefox Browser: 2 Scanned in 00mn 00s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (11.00.9600.16428 (winblue_gdr.131013-1700)) -- C:\Windows\SysWOW64\ieframe.dll
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
~ IE Browser: 22 Scanned in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management:  Scanned in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys:  Scanned in 00mn 00s



---\\ Hosts file redirection (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File:  Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 21



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: Groove GFS Browser Helper [64Bits] - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} . (.Microsoft Corporation - GrooveShellExtensions Module.) -- C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll =>Trojan.Trojan.FindFDSearch
O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
~ BHO: 4 Scanned in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - GS\Desktop [Public]: Canon My Printer.lnk . (.CANON INC. - Canon My Printer.)  -- C:\Program Files\Canon\MyPrinter\BJMyPrt.exe 
O4 - GS\Desktop [Public]: CCleaner.lnk . (.Piriform Ltd - CCleaner.)  -- C:\Program Files\CCleaner\CCleaner64.exe =>Piriform Ltd
O4 - GS\Desktop [Public]: Dictionnaire le Littré.lnk . (...)  -- C:\Program Files (x86)\Dictionnaire le Littré 2.0\Littre.exe
O4 - GS\Desktop [Public]: EPSON Scan.lnk . (.SEIKO EPSON CORP. - EPSON Scan.)  -- C:\Windows\twain_32\escndv\escndv.exe 
O4 - GS\Desktop [Public]: Glary Utilities 4.lnk . (.Glarysoft Ltd - Glary Utilities 4.)  -- C:\Program Files (x86)\Glary Utilities 4\Integrator.exe 
O4 - GS\Desktop [Public]: Picasa 3.lnk . (.Google Inc. - Picasa.)  -- C:\Program Files (x86)\Google\Picasa3\Picasa3.exe 
O4 - GS\Desktop [Public]: Pinnacle Studio 15.lnk . (.Pinnacle Systems - Studio program file.)  -- C:\Program Files (x86)\Pinnacle\Studio 15\Programs\Studio.exe 
O4 - GS\Desktop [Public]: Pizzicato 3.6.lnk . (...)  -- C:\Program Files (x86)\Pizzicato 3.x\Pizzicato.exe
O4 - GS\Program [Public]: ABBYY FineReader 5.0 Sprint.lnk . (.ABBYY (BIT Software) - FineReader Shell.)  -- C:\Program Files (x86)\ABBYY\FineReader 5.0 Sprint\Sprint.exe 
O4 - GS\Program [Public]: ABBYY FineReader 6.0 Professional.lnk . (...)  -- C:\Program Files (x86)\ABBYY\FineReader 6.0\E5Starter.exe
O4 - GS\Program [Public]: Adobe Reader XI.lnk . (...)  -- C:\Windows\Installer\{AC76BA86-7AD7-1036-7B44-AB0000000001}\SC_Reader.ico 
O4 - GS\Program [Public]: Glary Utilities 4.lnk . (.Glarysoft Ltd - Glary Utilities 4.)  -- C:\Program Files (x86)\Glary Utilities 4\Integrator.exe 
O4 - GS\Program [Public]: IncrediMail.lnk . (.IncrediMail, Ltd. - IncrediMail Application.)  -- C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe 
O4 - GS\Program [Public]: Media Center.lnk . (.Microsoft Corporation - Windows Media Center.)  -- C:\Windows\ehome\ehshell.exe  =>.Microsoft Corporation
O4 - GS\Program [Public]: Sidebar.lnk . (.Microsoft Corporation - Gadgets du Bureau Windows.)  -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe  =>.Microsoft Corporation
O4 - GS\Program [Public]: Windows DVD Maker.lnk . (...)  -- C:\Program Files (x86)\DVD Maker\DVDMaker.exe (.not file.)
O4 - GS\Program [Public]: Windows Fax and Scan.lnk . (.Microsoft Corporation - Microsoft  Windows Fax and Scan.)  -- C:\Windows\system32\WFS.exe  =>.Microsoft Corporation
O4 - GS\Program [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.)  -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe  =>.Microsoft Corporation
O4 - GS\Program [Public]: XPS Viewer.lnk . (.Microsoft Corporation - Visionneuse XPS.)  -- C:\Windows\system32\xpsrchvw.exe  =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Calculator.lnk . (.Microsoft Corporation - Calculatrice de Windows.)  -- C:\Windows\system32\calc.exe  =>.Microsoft Corporation
O4 - GS\Accessories [Public]: displayswitch.lnk . (.Microsoft Corporation - Afficher le commutateur.)  -- C:\Windows\system32\displayswitch.exe  =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Math Input Panel.lnk . (.Microsoft Corporation - Accessoire du panneau de saisie mathématiqu.)  -- C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\mip.exe  =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Mobility Center.lnk . (.Microsoft Corporation - Centre de mobilité Windows.)  -- C:\Windows\system32\mblctr.exe  =>.Microsoft Corporation
O4 - GS\Accessories [Public]: NetworkProjection.lnk . (.Microsoft Corporation - Connect to a Network Projector.)  -- C:\Windows\system32\NetProj.exe  =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.)  -- C:\Windows\system32\mspaint.exe  =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Connexion Bureau à distance.)  -- C:\Windows\system32\mstsc.exe  =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - Outil Capture.)  -- C:\Windows\system32\SnippingTool.exe  =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sound Recorder.lnk . (.Microsoft Corporation - Magnétophone Windows.)  -- C:\Windows\system32\SoundRecorder.exe  =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sticky Notes.lnk . (.Microsoft Corporation - Pense-bête.)  -- C:\Windows\system32\StikyNot.exe  =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sync Center.lnk . (.Microsoft Corporation - Microsoft Sync Center.)  -- C:\Windows\System32\mobsync.exe  =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Welcome Center.lnk . (.Microsoft Corporation - Mise en route.)  -- C:\Windows\system32\OobeFldr.dll  =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Application Windows Wordpad.)  -- C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe  =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Table des caractères.)  -- C:\Windows\system32\charmap.exe  =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: dfrgui.lnk . (.Microsoft Corporation - Défragmenteur de disque Microsoft®.)  -- C:\Windows\system32\dfrgui.exe  =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Disk Cleanup.lnk . (.Microsoft Corporation - Gestionnaire de nettoyage de disque pour Wi.)  -- C:\Windows\system32\cleanmgr.exe  =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Resource Monitor.lnk . (.Microsoft Corporation - Moniteur de ressources et de performances.)  -- C:\Windows\system32\perfmon.exe  =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: System Information.lnk . (.Microsoft Corporation - Informations système.)  -- C:\Windows\system32\msinfo32.exe  =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: System Restore.lnk . (.Microsoft Corporation - Restauration du système de Microsoft® Windo.)  -- C:\Windows\system32\rstrui.exe  =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Task Scheduler.lnk . (...)  -- C:\Windows\system32\taskschd.msc
O4 - GS\SystemTools [Public]: Windows Easy Transfer Reports.lnk . (.Microsoft Corporation - Application post-migration de transfert de.)  -- C:\Windows\system32\migwiz\postmig.exe  =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Windows Easy Transfer.lnk . (.Microsoft Corporation - Application Transfert de fichiers et paramè.)  -- C:\Windows\system32\migwiz\migwiz.exe  =>.Microsoft Corporation
O4 - GS\QuickLaunch [Roger sous sol]: Glary Utilities 4.lnk . (.Glarysoft Ltd - Glary Utilities 4.)  -- C:\Program Files (x86)\Glary Utilities 4\Integrator.exe 
O4 - GS\QuickLaunch [Roger sous sol]: IncrediMail 2.0.lnk . (.IncrediMail, Ltd. - IncrediMail Application.)  -- C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe 
O4 - GS\QuickLaunch [Roger sous sol]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.)  -- C:\Program Files (x86)\Internet Explorer\iexplore.exe 
O4 - GS\TaskBar [Roger sous sol]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.)  -- C:\Program Files (x86)\Internet Explorer\iexplore.exe 
O4 - GS\TaskBar [Roger sous sol]: Snipping Tool.lnk . (.Microsoft Corporation - Outil Capture.)  -- C:\Windows\system32\SnippingTool.exe  =>.Microsoft Corporation
O4 - GS\TaskBar [Roger sous sol]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.)  -- C:\Windows\explorer.exe  =>.Microsoft Corporation
O4 - GS\TaskBar [Roger sous sol]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.)  -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe  =>.Microsoft Corporation
O4 - GS\TaskBar [Roger sous sol]: wlmail.lnk . (.Microsoft Corporation - Windows Live Mail.)  -- C:\Program Files (x86)\Windows Live\Mail\wlmail.exe  =>.Microsoft Corporation
O4 - GS\Program [Roger sous sol]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.)  -- C:\Program Files (x86)\Internet Explorer\iexplore.exe 
O4 - GS\Accessories [Roger sous sol]: Command Prompt.lnk . (.Microsoft Corporation - Interpréteur de commandes Windows.)  -- C:\Windows\system32\cmd.exe  =>.Microsoft Corporation
O4 - GS\Accessories [Roger sous sol]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.)  -- C:\Windows\system32\notepad.exe  =>.Microsoft Corporation
O4 - GS\Accessories [Roger sous sol]: Run.lnk - Clé orpheline
O4 - GS\Accessories [Roger sous sol]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.)  -- C:\Windows\explorer.exe  =>.Microsoft Corporation
O4 - GS\SystemTools [Roger sous sol]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.)  -- C:\Program Files (x86)\Internet Explorer\iexplore.exe 
O4 - GS\SystemTools [Roger sous sol]: Private Character Editor.lnk . (.Microsoft Corporation - Éditeur de caractères privés.)  -- C:\Windows\system32\eudcedit.exe  =>.Microsoft Corporation
O4 - GS\SendTo [Roger sous sol]: Dropbox.lnk . (...)  -- C:\Users\Roger sous sol\Dropbox 
O4 - GS\SendTo [Roger sous sol]: Skype.lnk . (.Skype Technologies S.A. - Skype.)  -- C:\Program Files (x86)\Skype\Phone\Skype.exe  =>.Skype Technologies S.A.
O4 - GS\Desktop [Roger sous sol]: game.lnk . (...)  -- C:\Fireplace - Elefun Game v1.25 Freeware\game.exe
O4 - GS\Desktop [Roger sous sol]: hyperlobby.lnk . (.Jiri Fojtasek - Pas de description.)  -- C:\HyperLobby client\hyperlobby.exe 
O4 - GS\Desktop [Roger sous sol]: Kyodai Mahjongg.lnk . (.Rene-Gilles Deberdt - Kyodai Mahjongg.)  -- C:\Program Files (x86)\Kyodai Mahjongg 2006\kmj.exe 
O4 - GS\Desktop [Roger sous sol]: Mes vidéos.lnk . (...)  -- C:\Users\Roger sous sol\Videos 
O4 - GS\Desktop [Roger sous sol]: Microsoft Office Excel 2007.lnk . (...)  -- C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\xlicons.exe
O4 - GS\Desktop [Roger sous sol]: Microsoft Office Word 2007.lnk . (...)  -- C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\wordicon.exe
O4 - GS\Desktop [Roger sous sol]: PR1500.lnk . (...)  -- C:\JEUX CARTES\PR1500.exe
O4 - GS\Desktop [Roger sous sol]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag Setup.)  -- C:\Program Files (x86)\ZHPDiag\ZHPhep.exe  =>.Nicolas Coolman
~ Global Startup: 67 Scanned in 00mn 00s



---\\ Applications lancées au démarrage du sytème (O4)
O4 - GS\Startup [Roger sous sol]: Dropbox.lnk . (.Dropbox, Inc. - Dropbox.)  -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\bin\Dropbox.exe  =>.Dropbox
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe 
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe 
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe 
O4 - HKLM\..\Run: [IAStorIcon] . (.Intel Corporation - Delayed launcher.) -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe 
O4 - HKLM\..\Run: [HDAudDeck] . (.VIA - VIA HD Audio CPL.) -- C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe 
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe  =>.Skype Technologies S.A.
O4 - HKCU\..\Run: [IncrediMail] . (.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Program Files (x86)\IncrediMail\bin\IncMail.exe 
O4 - HKLM\..\Wow6432Node\Run: [AVG_UI] . (.AVG Technologies CZ, s.r.o. - AVG User Interface.) -- C:\Program Files (x86)\AVG\AVG2014\avgui.exe 
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe  =>.Oracle Corporation
O4 - HKLM\..\Wow6432Node\Run: [GrooveMonitor] . (.Microsoft Corporation - GrooveMonitor Utility.) -- C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe 
O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe  =>.Adobe Systems Incorporated
O4 - HKLM\..\Wow6432Node\Run: [USB3MON] . (.Intel Corporation - Intel(R) USB 3.0 Monitor.) -- C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe 
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe  =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe  =>.Microsoft Corporation
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe  =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe  =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-2821401529-3189236867-1356594552-1000\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe  =>.Skype Technologies S.A.
O4 - HKUS\S-1-5-21-2821401529-3189236867-1356594552-1000\..\Run: [IncrediMail] . (.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Program Files (x86)\IncrediMail\bin\IncMail.exe 
~ Application:  Scanned in 00mn 00s



---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ IE Control Panel: 1 Scanned in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll  =>.Microsoft Corporation
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
~ Winsock: 6 Scanned in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{DB1BC205-1132-4985-BACE-7F9922FBFAD0}: DhcpNameServer = 192.168.0.254
O17 - HKLM\System\CS1\Services\Tcpip\..\{DB1BC205-1132-4985-BACE-7F9922FBFAD0}: DhcpNameServer = 192.168.0.254
O17 - HKLM\System\CS2\Services\Tcpip\..\{DB1BC205-1132-4985-BACE-7F9922FBFAD0}: DhcpNameServer = 192.168.0.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.254
~ Domain:  Scanned in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: wlmailhtml [64Bits] - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (...) -- 
O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.dll  =>.Microsoft Corporation
~ Protocole Additionnel:  Scanned in 00mn 00s



---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
~ Winlogon:  Scanned in 00mn 00s



---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ SSODL: 1 Scanned in 00mn 00s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: AVGIDSAgent (AVGIDSAgent) . (.AVG Technologies CZ, s.r.o. - AVG Identity Protection Service.) - C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) . (.AVG Technologies CZ, s.r.o. - AVG Watchdog Service.) - C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
O23 - Service: C-DillaCdaC11BA (C-DillaCdaC11BA) . (.C-Dilla Ltd - C-Dilla RTS Service.) - C:\Windows\SysWOW64\drivers\CDAC11BA.exe
O23 - Service: devolo Network Service (DevoloNetworkService) . (.devolo AG - devolo Network Service.) - C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) . (.Intel Corporation - IAStorDataSvc.) - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Ma-Config Agent (MaConfigAgent) . (.CybelSoft - Service de détection matériel.) - C:\Program Files\ma-config.com\MaConfigAgent.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: TomTomHOMEService (TomTomHOMEService) . (.TomTom - Windows Service for TomTom HOME.) - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
O23 - Service: VIA Karaoke digital mixer Service (VIAKaraokeService) . (.VIA Technologies, Inc. - Service binary.) - C:\Windows\System32\viakaraokesrv.exe
~ Services: 10 Scanned in 00mn 03s



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) -  (.not file.)
~ Desktop Component: 4 Scanned in 00mn 00s



---\\ Enumère les données de BootExecute (BEX) (O34)
O34 - HKLM BootExecute: (autocheck autochk * ) - File not found
~ BEX: 1 Scanned in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\GlaryInitialize 4.job   [350]
[MD5.5B1AA494C27CF0BC3B03E8666ACB225E] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe   [4455704]  =>Piriform Ltd
[MD5.56CF1B5E7C0D68F1119CCA74218E65F0] [APT] [GlaryInitialize 4] (.Glarysoft Ltd.) -- C:\Program Files (x86)\Glary Utilities 4\Initialize.exe   [101152]
[MD5.369AA0C7DA802B6A27690B6C3513E96C] [APT] [GU4SkipUAC] (.Glarysoft Ltd.) -- C:\Program Files (x86)\Glary Utilities 4\Integrator.exe   [780064]
[MD5.00000000000000000000000000000000] [APT] [{05813B50-8D15-4E11-8F90-6E36610B8C99}] (...) -- G:\EPSetup.exe (.not file.)   [0]
[MD5.A894CA0A2DC28DF209B2B992A2A32A13] [APT] [{38341707-1D8E-4C9B-96D9-2A3E3F8DDE30}] (.SEIKO EPSON CORP..) -- C:\Windows\twain_32\escndv\escndv.exe   [118784]
[MD5.00000000000000000000000000000000] [APT] [{61197D34-55EF-4724-81BF-5371052A9FF2}] (...) -- C:\Users\Roger sous sol\Desktop\Atheros\setup.exe (.not file.)   [0]
[MD5.04081EC718BCF857D6778259123D4753] [APT] [{81D69D11-7D63-4C2F-A228-24ACC0459CAD}] (.devolo AG.) -- C:\Program Files (x86)\devolo\setup.exe   [575480]
[MD5.A894CA0A2DC28DF209B2B992A2A32A13] [APT] [{9811DCAA-1382-48F2-A5BB-EB0236387537}] (.SEIKO EPSON CORP..) -- C:\Windows\twain_32\escndv\escndv.exe   [118784]
~ Scheduled Task: 9 Scanned in 00mn 00s



---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll  =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll  =>.Microsoft Corporation
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Internet Explorer [64Bits] - {2D46B6DC-2207-486B-B523-A557E6D54B47} . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\system32\cmd.exe  =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe  =>.Microsoft Corporation
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll  =>.Microsoft Corporation
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
~ Active Setup: 10 Scanned in 00mn 00s



---\\ Pilotes lancés au démarrage du système (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver:  (Avgdiska) . (.AVG Technologies CZ, s.r.o. - AVG File Vault Driver.) - C:\Windows\System32\DRIVERS\avgdiska.sys
O41 - Driver:  (AVGIDSDriver) . (.AVG Technologies CZ, s.r.o. - IDS Application Activity Monitor Driver..) - C:\Windows\System32\DRIVERS\avgidsdrivera.sys
O41 - Driver:  (Avgldx64) . (.AVG Technologies CZ, s.r.o. - AVG AVI Loader Driver.) - C:\Windows\System32\DRIVERS\avgldx64.sys
O41 - Driver:  (Avgtdia) . (.AVG Technologies CZ, s.r.o. - AVG Network connection watcher.) - C:\Windows\System32\DRIVERS\avgtdia.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\System32\DRIVERS\blbdrive.sys
O41 - Driver:  (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: C:\Windows\System32\cscsvc.dll (CSC) . (.Microsoft Corporation - Windows Client Side Caching Driver.) - C:\Windows\System32\drivers\csc.sys
O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver:  (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\System32\DRIVERS\mssmbios.sys
O41 - Driver:  (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\System32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\System32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver:  (Serial) . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) - C:\Windows\System32\DRIVERS\serial.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver:  (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver:  (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys
~ Drivers: 75 Scanned in 00mn 00s



---\\ Logiciels installés (O42)
O42 - Logiciel: ABBYY FineReader 5.0 Sprint - (.ABBYY Software House.) [HKLM][64Bits] -- {D1696920-9794-4BBC-8A30-7A88763DE5A2}
O42 - Logiciel: ABBYY FineReader 6.0 - (.ABBYY Software House.) [HKLM][64Bits] -- {AF600F7B-67A7-48D9-BA3B-0FF97F35F970}
O42 - Logiciel: AVG 2014 - (.AVG Technologies.) [HKLM][64Bits] -- AVG
O42 - Logiciel: AVG 2014 - (.AVG Technologies.) [HKLM][64Bits] -- {34883B9C-CDFE-46F0-9C5B-935484C218C3}
O42 - Logiciel: AVG 2014 - (.AVG Technologies.) [HKLM][64Bits] -- {F95BF201-C9AE-4215-883A-EC12A0D88C58}
O42 - Logiciel: Adobe Flash Player 12 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Reader XI (11.0.06) - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AB0000000001}
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner =>Piriform Ltd
O42 - Logiciel: Canon My Printer - (.Canon Inc..) [HKLM][64Bits] -- CanonMyPrinter
O42 - Logiciel: Canon iP4800 series Printer Driver - (.Canon Inc..) [HKLM][64Bits] -- {1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP4800_series
O42 - Logiciel: Dictionnaire le Littré 2.0 - (.Murielle Descerisiers.) [HKLM][64Bits] -- {2575CF76-C88A-4B97-AC0F-62FFA453FD08}_is1
O42 - Logiciel: Dropbox - (.Dropbox, Inc..) [HKCU][64Bits] -- Dropbox
O42 - Logiciel: EPSON Scan - (...) [HKLM][64Bits] -- EPSON Scanner
O42 - Logiciel: Etron USB3.0 Host Controller - (.Etron Technology.) [HKLM][64Bits] -- InstallShield_{DFBB738C-71D8-4DC5-B8D2-D65C37680E27}
O42 - Logiciel: Etron USB3.0 Host Controller - (.Etron Technology.) [HKLM][64Bits] -- {DFBB738C-71D8-4DC5-B8D2-D65C37680E27}
O42 - Logiciel: Glary Utilities 4.5 - (.Glarysoft Ltd.) [HKLM][64Bits] -- Glary Utilities 4
O42 - Logiciel: IncrediMail - (.IncrediMail.) [HKLM][64Bits] -- {2CF22C94-1369-4C04-9A5F-A4BC6D91B508}
O42 - Logiciel: IncrediMail 2.0 - (.IncrediMail Ltd..) [HKLM][64Bits] -- IncrediMail
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {27DEA29A-222C-45F8-B70D-0A7B303FC71B}
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {409CB30E-E457-4008-9B1A-ED1B9EA21140}
O42 - Logiciel: Intel(R) USB 3.0 eXtensible Host Controller Driver - (.Intel Corporation.) [HKLM][64Bits] -- {240C3DDD-C5E9-4029-9DF7-95650D040CF2}
O42 - Logiciel: Java 7 Update 51 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83217051FF}
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {8E5233E1-7495-44FB-8DEB-4BE906D59619}
O42 - Logiciel: Kyodai Mahjongg 2006 v1.21 - (.Rene-Gilles Deberdt.) [HKLM][64Bits] -- Kyodai Mahjongg 2006_is1
O42 - Logiciel: Logiciel d'archivage WinRAR - (...) [HKLM][64Bits] -- WinRAR archiver
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: Ma-Config.com (64 bits) - (.Cybelsoft.) [HKLM][64Bits] -- {CFF24F63-A683-4202-8526-3F9A77A3B0E8}
O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM][64Bits] -- {F0E12BBA-AD66-4022-A453-A1C8A0C4D570}
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: PhotoImpression 5 - (...) [HKLM][64Bits] -- {66C8BE35-8BBB-472B-96C7-C7C9A499F988}
O42 - Logiciel: Picasa 3 - (.Google, Inc..) [HKLM][64Bits] -- Picasa 3
O42 - Logiciel: Pilote vidéo Pinnacle - (.Pinnacle Systems.) [HKLM][64Bits] -- {6DE721A5-5E89-4D74-994C-652BB3C0672E}
O42 - Logiciel: Pinnacle Studio 15 - (.Pinnacle Systems.) [HKLM][64Bits] -- {1362E602-9625-42D3-B57F-CDA9D26F9DA8}
O42 - Logiciel: Pizzicato 3.6.2 - (...) [HKLM][64Bits] -- Pizzicato 3.6.2
O42 - Logiciel: Qualcomm Atheros Inc.(R) AR81Family Gigabit/Fast Ethernet Driver - (.Qualcomm Atheros Inc..) [HKLM][64Bits] -- {3108C217-BE83-42E4-AE9E-A56A2A92E549}
O42 - Logiciel: ScanToWeb - (...) [HKLM][64Bits] -- {EBAE381B-60A6-4863-AA9F-FCAB755BC9E5}
O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM][64Bits] -- KB931906
O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM][64Bits] -- {0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
O42 - Logiciel: Skype™ 6.11 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}
O42 - Logiciel: Spelling Dictionaries Support For Adobe Reader 9 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-5464-3428-900000000004}
O42 - Logiciel: TomTom HOME - (.Nom de votre société.) [HKLM][64Bits] -- {99072AB4-D795-44D5-9D65-E3C9F8322C97}
O42 - Logiciel: TomTom HOME Visual Studio Merge Modules - (.TomTom International B.V..) [HKLM][64Bits] -- {8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}
O42 - Logiciel: Unlocker 1.9.2 - (.Cedrick Collomb.) [HKLM][64Bits] -- Unlocker
O42 - Logiciel: VIA Gestionnaire de périphériques de plate-forme - (.VIA Technologies, Inc..) [HKLM][64Bits] -- InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}
O42 - Logiciel: VLC media player 2.1.2 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player  =>.VideoLAN
O42 - Logiciel: Visual Studio 2012 x64 Redistributables - (.AVG Technologies.) [HKLM][64Bits] -- {8C775E70-A791-4DA8-BCC3-6AB7136F4484}
O42 - Logiciel: Visual Studio 2012 x86 Redistributables - (.AVG Technologies CZ, s.r.o..) [HKLM][64Bits] -- {98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}
O42 - Logiciel: devolo Informer - (.devolo AG.) [HKLM][64Bits] -- dslmon
O42 - Logiciel: devolo dLAN - Assistant de configuration - (.devolo AG.) [HKLM][64Bits] -- dlanconf
O42 - Logiciel: devolo dLAN Cockpit - (.devolo AG.) [HKLM][64Bits] -- dlancockpit
O42 - Logiciel: e-Carte Bleue Société Générale - (...) [HKLM][64Bits] -- {EC3CAFA6-1CDC-46D1-AD8D-B66CFDE59EE0}
~ Logic: 38 Scanned in 00mn 00s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\ABBYY]
[HKCU\Software\ARPEGE]
[HKCU\Software\Adobe]
[HKCU\Software\AppDataLow\Software\Adobe]
[HKCU\Software\AppDataLow\Software\JavaSoft]
[HKCU\Software\AppDataLow]
[HKCU\Software\Avg]
[HKCU\Software\Canon]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\DivXNetworks]
[HKCU\Software\EPSON]
[HKCU\Software\GlarySoft]
[HKCU\Software\Google]
[HKCU\Software\IM Providers]
[HKCU\Software\IncrediMail]
[HKCU\Software\Intel]
[HKCU\Software\JavaSoft]
[HKCU\Software\Macromedia]
[HKCU\Software\Mozilla]
[HKCU\Software\Namida]
[HKCU\Software\Netscape]
[HKCU\Software\ODBC]
[HKCU\Software\Pinnacle Systems]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\Sage]
[HKCU\Software\Skype]
[HKCU\Software\TomTom]
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\VIA]
[HKCU\Software\VOB]
[HKCU\Software\WinRAR]
[HKCU\Software\Wow6432Node]
[HKCU\Software\ZebHelpProcess Helper]
[HKLM\Software\ATI Technologies]
[HKLM\Software\BrowserChoice]
[HKLM\Software\CBSTEST]
[HKLM\Software\Canon]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\IM Providers]
[HKLM\Software\Intel]
[HKLM\Software\Khronos]
[HKLM\Software\Macromedia]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\ODBC]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\Sonic]
[HKLM\Software\VideoLAN]
[HKLM\Software\WinRAR]
[HKLM\Software\Wow6432Node\ABBYY]
[HKLM\Software\Wow6432Node\ARPEGE]
[HKLM\Software\Wow6432Node\Adobe]
[HKLM\Software\Wow6432Node\Adobee]
[HKLM\Software\Wow6432Node\AdwCleaner]
[HKLM\Software\Wow6432Node\ArcSoft]
[HKLM\Software\Wow6432Node\Avg]
[HKLM\Software\Wow6432Node\Avid]
[HKLM\Software\Wow6432Node\Canon]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\DivXNetworks]
[HKLM\Software\Wow6432Node\DivX]
[HKLM\Software\Wow6432Node\EPSON]
[HKLM\Software\Wow6432Node\FAST Multimedia]
[HKLM\Software\Wow6432Node\GlarySoft]
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\HaaliMkx]
[HKLM\Software\Wow6432Node\IM Providers]
[HKLM\Software\Wow6432Node\InstallShield]
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\JGsoft]
[HKLM\Software\Wow6432Node\JavaSoft]
[HKLM\Software\Wow6432Node\JreMetrics]
[HKLM\Software\Wow6432Node\Khronos]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\Pegasus Imaging]
[HKLM\Software\Wow6432Node\PegasusImaging]
[HKLM\Software\Wow6432Node\Pinnacle Systems]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\Skype]
[HKLM\Software\Wow6432Node\TomTom]
[HKLM\Software\Wow6432Node\VIA Technologies, Inc]
[HKLM\Software\Wow6432Node\devolo]
[HKLM\Software\Wow6432Node\e-Carte Bleue Société Générale]
[HKLM\Software\Wow6432Node\e-Carte Bleue]
[HKLM\Software\Wow6432Node]
[HKLM\Software\cybelsoft]
~ Key Software: 192 Scanned in 00mn 00s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 30/01/2014 - 22:07:26 - [85,831] ----D C:\Program Files (x86)\ABBYY
O43 - CFD: 29/01/2014 - 15:21:34 - [170,691] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 30/01/2014 - 22:06:20 - [170,699] ----D C:\Program Files (x86)\ArcSoft
O43 - CFD: 17/01/2014 - 14:43:49 - [129,400] ----D C:\Program Files (x86)\AVG
O43 - CFD: 06/02/2014 - 09:32:24 - [0,376] ----D C:\Program Files (x86)\Canon
O43 - CFD: 01/02/2014 - 16:07:28 - [469,937] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 24/01/2014 - 17:10:08 - [64,999] ----D C:\Program Files (x86)\devolo
O43 - CFD: 28/01/2014 - 08:31:16 - [90,604] ----D C:\Program Files (x86)\Dictionnaire le Littré 2.0
O43 - CFD: 08/02/2014 - 13:34:23 - [0,463] ----D C:\Program Files (x86)\e-Carte Bleue Société Générale
O43 - CFD: 30/01/2014 - 22:18:35 - [6,400] ----D C:\Program Files (x86)\epson
O43 - CFD: 31/01/2014 - 17:35:32 - [0,376] ----D C:\Program Files (x86)\Etron Technology
O43 - CFD: 12/02/2014 - 12:20:38 - [29,959] ----D C:\Program Files (x86)\Glary Utilities 4
O43 - CFD: 19/01/2014 - 21:37:31 - [83,195] ----D C:\Program Files (x86)\Google
O43 - CFD: 17/01/2014 - 18:12:29 - [26,257] ----D C:\Program Files (x86)\IncrediMail
O43 - CFD: 12/02/2014 - 11:34:27 - [12,457] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 01/02/2014 - 00:03:10 - [40,313] ----D C:\Program Files (x86)\Intel
O43 - CFD: 18/01/2014 - 09:04:03 - [9,678] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 17/01/2014 - 15:59:12 - [121,300] ----D C:\Program Files (x86)\Java
O43 - CFD: 17/01/2014 - 18:06:52 - [18,529] ----D C:\Program Files (x86)\Kyodai Mahjongg 2006
O43 - CFD: 17/01/2014 - 22:26:55 - [0,216] ----D C:\Program Files (x86)\Microsoft
O43 - CFD: 17/01/2014 - 23:42:43 - [0,764] ----D C:\Program Files (x86)\Microsoft CAPICOM 2.1.0.2
O43 - CFD: 18/01/2014 - 19:29:00 - [898,450] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 02/02/2014 - 18:47:52 - [40,851] ----D C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 17/01/2014 - 16:28:58 - [0,014] ----D C:\Program Files (x86)\Microsoft Visual Studio
O43 - CFD: 17/01/2014 - 16:25:26 - [54,188] ----D C:\Program Files (x86)\Microsoft Visual Studio 8
O43 - CFD: 18/01/2014 - 09:08:46 - [3,554] ----D C:\Program Files (x86)\Microsoft Works
O43 - CFD: 17/01/2014 - 22:11:39 - [7,797] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 17/01/2014 - 16:29:01 - [0,025] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 17/01/2014 - 22:09:48 - [0] ----D C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 17/01/2014 - 15:36:09 - [1018,771] ----D C:\Program Files (x86)\Pinnacle
O43 - CFD: 17/01/2014 - 23:31:36 - [56,920] ----D C:\Program Files (x86)\Pizzicato 3.x
O43 - CFD: 14/07/2009 - 06:32:38 - [37,357] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 12/02/2014 - 11:34:27 - [19,916] R---D C:\Program Files (x86)\Skype
O43 - CFD: 07/02/2014 - 19:06:09 - [0] ----D C:\Program Files (x86)\TomTom DesktopSuite
O43 - CFD: 07/02/2014 - 19:09:21 - [49,485] ----D C:\Program Files (x86)\TomTom HOME 2
O43 - CFD: 07/02/2014 - 19:07:14 - [0,021] ----D C:\Program Files (x86)\TomTom International B.V
O43 - CFD: 11/02/2014 - 11:42:07 - [0,618] ----D C:\Program Files (x86)\Tweaking.com
O43 - CFD: 14/07/2009 - 05:57:06 - [0] ----D C:\Program Files (x86)\Uninstall Information
O43 - CFD: 01/02/2014 - 00:16:06 - [51,828] ----D C:\Program Files (x86)\VIA
O43 - CFD: 17/01/2014 - 20:40:29 - [0,500] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 17/01/2014 - 22:26:51 - [37,592] ----D C:\Program Files (x86)\Windows Live
O43 - CFD: 17/01/2014 - 22:26:38 - [0,234] ----D C:\Program Files (x86)\Windows Live SkyDrive
O43 - CFD: 12/04/2011 - 10:16:36 - [5,895] ----D C:\Program Files (x86)\Windows Mail  =>.Microsoft Corporation
O43 - CFD: 17/01/2014 - 20:40:31 - [4,791] ----D C:\Program Files (x86)\Windows Media Player  =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - 06:32:38 - [11,632] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 12/04/2011 - 10:16:36 - [4,213] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 21/11/2010 - 04:31:38 - [0,181] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 12/04/2011 - 10:16:36 - [5,717] ----D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 12/02/2014 - 13:48:21 - [17,257] ----D C:\Program Files (x86)\ZHPDiag  =>.Nicolas Coolman
O43 - CFD: 29/01/2014 - 15:21:34 - [6,301] ----D C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 01/02/2014 - 16:07:29 - [0,001] ----D C:\Program Files (x86)\Common Files\Ciel
O43 - CFD: 17/01/2014 - 16:28:58 - [0,089] ----D C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 01/02/2014 - 00:15:25 - [4,844] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 01/02/2014 - 00:03:03 - [101,667] ----D C:\Program Files (x86)\Common Files\Intel
O43 - CFD: 01/02/2014 - 00:13:34 - [0,238] ----D C:\Program Files (x86)\Common Files\Intel Corporation
O43 - CFD: 17/01/2014 - 15:59:17 - [1,191] ----D C:\Program Files (x86)\Common Files\Java
O43 - CFD: 18/01/2014 - 09:08:51 - [269,533] ----D C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 17/01/2014 - 15:36:09 - [0,383] ----D C:\Program Files (x86)\Common Files\Pegasus Imaging
O43 - CFD: 17/01/2014 - 15:37:23 - [1,394] ----D C:\Program Files (x86)\Common Files\Pinnacle
O43 - CFD: 14/07/2009 - 04:20:08 - [0,003] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 17/01/2014 - 17:21:16 - [1,904] ----D C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 14/07/2009 - 04:20:08 - [39,200] ----D C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 17/01/2014 - 20:40:30 - [42,889] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 17/01/2014 - 22:24:19 - [0] ----D C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 17/01/2014 - 15:36:09 - [0,302] ----D C:\Program Files (x86)\Common Files\Yahoo!
O43 - CFD: 01/02/2014 - 17:12:18 - [257,772] ----D C:\ProgramData\Adobe
O43 - CFD: 14/07/2009 - 06:08:56 - [0] -SH-D C:\ProgramData\Application Data
O43 - CFD: 17/01/2014 - 14:44:09 - [275,105] ----D C:\ProgramData\AVG2014
O43 - CFD: 17/01/2014 - 13:08:20 - [0] -SH-D C:\ProgramData\Bureau
O43 - CFD: 12/02/2014 - 11:34:23 - [23,777] --H-D C:\ProgramData\CanonBJ
O43 - CFD: 17/01/2014 - 15:20:12 - [21,493] ----D C:\ProgramData\Ciel
O43 - CFD: 17/01/2014 - 14:42:19 - [0] ----D C:\ProgramData\Common Files
O43 - CFD: 14/07/2009 - 06:08:56 - [0] -SH-D C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - 06:08:56 - [0] -SH-D C:\ProgramData\Documents
O43 - CFD: 17/01/2014 - 13:08:20 - [0] -SH-D C:\ProgramData\Favoris
O43 - CFD: 14/07/2009 - 06:08:56 - [0] -SH-D C:\ProgramData\Favorites
O43 - CFD: 17/01/2014 - 18:12:47 - [0] ----D C:\ProgramData\IM
O43 - CFD: 17/01/2014 - 18:12:29 - [6,574] ----D C:\ProgramData\IncrediMail
O43 - CFD: 01/02/2014 - 00:12:49 - [9,868] ----D C:\ProgramData\Intel
O43 - CFD: 30/01/2014 - 21:47:27 - [1,395] ----D C:\ProgramData\ma-config.com
O43 - CFD: 17/01/2014 - 13:08:20 - [0] -SH-D C:\ProgramData\Menu Démarrer
O43 - CFD: 12/02/2014 - 11:39:57 - [23,503] ----D C:\ProgramData\MFAData
O43 - CFD: 02/02/2014 - 18:47:54 - [181,270] -S--D C:\ProgramData\Microsoft
O43 - CFD: 12/02/2014 - 11:34:27 - [0,084] ----D C:\ProgramData\Microsoft Help
O43 - CFD: 17/01/2014 - 13:08:20 - [0] -SH-D C:\ProgramData\Modèles
O43 - CFD: 17/01/2014 - 15:59:22 - [0] ----D C:\ProgramData\Oracle
O43 - CFD: 17/01/2014 - 15:36:47 - [0,667] ----D C:\ProgramData\Pinnacle
O43 - CFD: 17/01/2014 - 15:36:09 - [0] ----D C:\ProgramData\Pinnacle Studio Plus
O43 - CFD: 17/01/2014 - 15:36:56 - [0,035] ----D C:\ProgramData\Pinnacle Studio Ultimate
O43 - CFD: 17/01/2014 - 22:47:43 - [0,034] ----D C:\ProgramData\Pinnacle Studio Ultimate Collection
O43 - CFD: 17/01/2014 - 17:21:17 - [28,380] ----D C:\ProgramData\Skype
O43 - CFD: 14/07/2009 - 06:08:56 - [0] -SH-D C:\ProgramData\Start Menu
O43 - CFD: 17/01/2014 - 15:36:09 - [271,086] ----D C:\ProgramData\Studio 15
O43 - CFD: 17/01/2014 - 15:59:17 - [0] ----D C:\ProgramData\Sun
O43 - CFD: 14/07/2009 - 06:08:56 - [0] -SH-D C:\ProgramData\Templates
O43 - CFD: 07/02/2014 - 19:07:33 - [0,034] ----D C:\ProgramData\TomTom
O43 - CFD: 30/01/2014 - 22:08:14 - [0] ----D C:\Users\Roger sous sol\AppData\Roaming\ABBYY
O43 - CFD: 29/01/2014 - 15:21:53 - [0,533] ----D C:\Users\Roger sous sol\AppData\Roaming\Adobe
O43 - CFD: 17/01/2014 - 14:44:37 - [0,031] ----D C:\Users\Roger sous sol\AppData\Roaming\AVG2014
O43 - CFD: 12/02/2014 - 12:20:24 - [78,916] ----D C:\Users\Roger sous sol\AppData\Roaming\Dropbox
O43 - CFD: 17/01/2014 - 21:55:14 - [0,005] ----D C:\Users\Roger sous sol\AppData\Roaming\DropboxMaster
O43 - CFD: 19/01/2014 - 11:48:01 - [22,017] ----D C:\Users\Roger sous sol\AppData\Roaming\GlarySoft
O43 - CFD: 17/01/2014 - 17:40:01 - [0,029] ----D C:\Users\Roger sous sol\AppData\Roaming\HyperLobby
O43 - CFD: 17/01/2014 - 13:08:27 - [0] ----D C:\Users\Roger sous sol\AppData\Roaming\Identities
O43 - CFD: 17/01/2014 - 15:18:04 - [0] ----D C:\Users\Roger sous sol\AppData\Roaming\InstallShield
O43 - CFD: 01/02/2014 - 00:12:51 - [0,001] ----D C:\Users\Roger sous sol\AppData\Roaming\Intel Corporation
O43 - CFD: 17/01/2014 - 16:33:44 - [0,002] ----D C:\Users\Roger sous sol\AppData\Roaming\Macromedia
O43 - CFD: 12/04/2011 - 10:27:56 - [0] ----D C:\Users\Roger sous sol\AppData\Roaming\Media Center Programs
O43 - CFD: 29/01/2014 - 21:59:26 - [1,597] -S--D C:\Users\Roger sous sol\AppData\Roaming\Microsoft
O43 - CFD: 07/02/2014 - 19:07:21 - [0] ----D C:\Users\Roger sous sol\AppData\Roaming\Mozilla
O43 - CFD: 12/02/2014 - 13:41:15 - [5,367] ----D C:\Users\Roger sous sol\AppData\Roaming\Skype
O43 - CFD: 23/01/2014 - 11:46:06 - [0,008] ----D C:\Users\Roger sous sol\AppData\Roaming\SumatraPDF
O43 - CFD: 07/02/2014 - 19:07:21 - [7,825] ----D C:\Users\Roger sous sol\AppData\Roaming\TomTom
O43 - CFD: 17/01/2014 - 14:43:57 - [0] ----D C:\Users\Roger sous sol\AppData\Roaming\TuneUp Software
O43 - CFD: 29/01/2014 - 15:40:00 - [0,080] ----D C:\Users\Roger sous sol\AppData\Roaming\vlc
O43 - CFD: 18/01/2014 - 14:24:11 - [1,180] ----D C:\Users\Roger sous sol\AppData\Roaming\WinRAR
O43 - CFD: 12/02/2014 - 13:49:25 - [0,015] ----D C:\Users\Roger sous sol\AppData\Roaming\ZHP  =>.Nicolas Coolman
O43 - CFD: 30/01/2014 - 22:08:14 - [0] ----D C:\Users\Roger sous sol\AppData\Local\ABBYY
O43 - CFD: 29/01/2014 - 15:21:30 - [17,707] ----D C:\Users\Roger sous sol\AppData\Local\Adobe
O43 - CFD: 17/01/2014 - 13:08:23 - [0] -SH-D C:\Users\Roger sous sol\AppData\Local\Application Data
O43 - CFD: 18/01/2014 - 10:13:07 - [6,629] ----D C:\Users\Roger sous sol\AppData\Local\Avg2014
O43 - CFD: 30/01/2014 - 22:23:15 - [1,620] ----D C:\Users\Roger sous sol\AppData\Local\Diagnostics
O43 - CFD: 07/02/2014 - 19:08:45 - [36,282] ----D C:\Users\Roger sous sol\AppData\Local\Downloaded Installations
O43 - CFD: 12/02/2014 - 11:47:29 - [0,239] ----D C:\Users\Roger sous sol\AppData\Local\ElevatedDiagnostics
O43 - CFD: 19/01/2014 - 21:37:53 - [1394,479] ----D C:\Users\Roger sous sol\AppData\Local\Google
O43 - CFD: 17/01/2014 - 13:08:23 - [0] -SH-D C:\Users\Roger sous sol\AppData\Local\Historique
O43 - CFD: 17/01/2014 - 22:32:24 - [1546,652] ----D C:\Users\Roger sous sol\AppData\Local\IM
O43 - CFD: 17/01/2014 - 14:42:19 - [5,836] ----D C:\Users\Roger sous sol\AppData\Local\MFAData
O43 - CFD: 04/02/2014 - 20:51:20 - [204,880] ----D C:\Users\Roger sous sol\AppData\Local\Microsoft
O43 - CFD: 17/01/2014 - 13:12:24 - [0,014] ----D C:\Users\Roger sous sol\AppData\Local\Microsoft Games
O43 - CFD: 17/01/2014 - 16:24:56 - [0] ----D C:\Users\Roger sous sol\AppData\Local\Microsoft Help
O43 - CFD: 07/02/2014 - 22:16:24 - [15,788] ----D C:\Users\Roger sous sol\AppData\Local\Pinnacle
O43 - CFD: 08/02/2014 - 13:15:30 - [0] ----D C:\Users\Roger sous sol\AppData\Local\Programs
O43 - CFD: 12/02/2014 - 13:48:15 - [19,652] ----D C:\Users\Roger sous sol\AppData\Local\Temp
O43 - CFD: 17/01/2014 - 13:08:23 - [0] -SH-D C:\Users\Roger sous sol\AppData\Local\Temporary Internet Files
O43 - CFD: 07/02/2014 - 19:07:21 - [1,857] ----D C:\Users\Roger sous sol\AppData\Local\TomTom
O43 - CFD: 30/01/2014 - 22:10:49 - [0,037] ----D C:\Users\Roger sous sol\AppData\Local\VirtualStore
O43 - CFD: 14/07/2009 - 05:54:32 - [0,014] R---D C:\Users\Roger sous sol\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 17/01/2014 - 20:42:41 - [0] R---D C:\Users\Roger sous sol\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 12/02/2014 - 11:34:28 - [0,002] ----D C:\Users\Roger sous sol\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
O43 - CFD: 14/07/2009 - 05:49:38 - [0,001] R---D C:\Users\Roger sous sol\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 12/02/2014 - 11:34:28 - [0,001] R---D C:\Users\Roger sous sol\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 31/01/2014 - 09:14:59 - [0,003] ----D C:\Users\Roger sous sol\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
O43 - CFD: 18/01/2014 - 14:20:17 - [0,003] ----D C:\Users\Roger sous sol\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
~ Program Folder: 144 Scanned in 00mn 00s



---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.84BFC42EE604A700A072DAC4468BF60F] - 01/02/2014 - 00:14:39 ---A- . (.Dolby Laboratories - Dolby PCEE4 Control Panel x64.) -- C:\Windows\System32\EEP64A.dll   [7163744]
O44 - LFC:[MD5.0E21133A8CD4C1220961DD9ABD3CDF91] - 01/02/2014 - 00:15:32 ----- . (.Microsoft Corporation - Driver Install Frameworks for API library m.) -- C:\Windows\difxapi.dll   [414632]
O44 - LFC:[MD5.FB3CFA9DDE1CF41CA3C25A89825B9F38] - 01/02/2014 - 00:15:52 ---A- . (.Creative Technology Ltd. - Audio Processing Object Chaining Module.) -- C:\Windows\System32\VMWRP64.DLL   [74240]
O44 - LFC:[MD5.C0B907BCDCE4BB46A604A6B2FCA81610] - 01/02/2014 - 00:15:52 ---A- . (.Creative Technology Ltd. - Creative Audio Processing Object Module.) -- C:\Windows\System32\VMTHX64.DLL   [619520]
O44 - LFC:[MD5.4A4D8A930C704AFFDB13E55AFE293718] - 01/02/2014 - 00:15:52 ---A- . (.Creative Technology Ltd. - Creative Chaining Property Page Loader Modu.) -- C:\Windows\System32\VMPPCN64.DLL   [53760]
O44 - LFC:[MD5.6D4BBADD305E44165AF164D3FF1085D7] - 01/02/2014 - 00:15:52 ---A- . (.Creative Technology Ltd. - Creative Property Page Loader Module.) -- C:\Windows\System32\VMPPLD64.DLL   [57856]
O44 - LFC:[MD5.4A5637047815A32C86C5D205025D144C] - 01/02/2014 - 00:15:52 ---A- . (.Dolby Laboratories - Dolby PCEE4 ASL Analog x64.) -- C:\Windows\System32\EEA64A.dll   [120160]
O44 - LFC:[MD5.B22A197C8648345D5C6DBDE95EC02C93] - 01/02/2014 - 00:15:52 ---A- . (.Dolby Laboratories - Dolby PCEE4 ASL HDMI x64.) -- C:\Windows\System32\EEA64H.dll   [120160]
O44 - LFC:[MD5.13B5DF95C20E7170460A2940B585202F] - 01/02/2014 - 00:15:52 ---A- . (.Dolby Laboratories - Dolby PCEE4 COM DLL x64.) -- C:\Windows\System32\EED64A.dll   [433504]
O44 - LFC:[MD5.4D751ADAA4FC4A68FD2E07EA858B2251] - 01/02/2014 - 00:15:52 ---A- . (.Dolby Laboratories - Dolby PCEE4 GFX APO x64.) -- C:\Windows\System32\EEG64A.dll   [75104]
O44 - LFC:[MD5.C991B4A78F398D67BAA98988511AD909] - 01/02/2014 - 00:15:52 ---A- . (.Dolby Laboratories - Dolby PCEE4 HDMI COM DLL x64.) -- C:\Windows\System32\EED64H.dll   [433504]
O44 - LFC:[MD5.DB7796E33B0A6925FA0D2F5A14C3B0C0] - 01/02/2014 - 00:15:52 ---A- . (.Dolby Laboratories - Dolby PCEE4 HDMI Control Panel x64.) -- C:\Windows\System32\EEP64H.dll   [7163744]
O44 - LFC:[MD5.8DD710BDA2D8BBA81A3D62B462A01628] - 01/02/2014 - 00:15:52 ---A- . (.Dolby Laboratories - Dolby PCEE4 HDMI GFX APO x64.) -- C:\Windows\System32\EEG64H.dll   [75104]
O44 - LFC:[MD5.E19EE1AD7FD9C9FC5585BB9DED2E034A] - 01/02/2014 - 00:15:52 ---A- . (.Dolby Laboratories - Dolby PCEE4 HDMI LFX APO x64.) -- C:\Windows\System32\EEL64H.dll   [137056]
O44 - LFC:[MD5.B2F5160C4D56C957062A8672A8BA4A9A] - 01/02/2014 - 00:15:52 ---A- . (.Dolby Laboratories - Dolby PCEE4 LFX APO x64.) -- C:\Windows\System32\EEL64A.dll   [137056]
O44 - LFC:[MD5.045AEE7015041153098C2081F1799074] - 01/02/2014 - 00:15:52 ---A- . (.TODO: <Company name> - TODO: <File description>.) -- C:\Windows\System32\PropPageExt.dll   [55416]
O44 - LFC:[MD5.526CBB22FA5B1E05D9327E71263D9902] - 01/02/2014 - 00:15:52 ---A- . (.VIA Technologies,Inc. - VIA APO for MicArray Applications..) -- C:\Windows\System32\ViaKaraokePropPageExt.dll   [123512]
O44 - LFC:[MD5.C6B36BA2DCA7F9955D59C9D48B7666E5] - 01/02/2014 - 00:15:52 ---A- . (.Windows (R) Codename Longhorn DDK provider - DTS2 APO.) -- C:\Windows\System32\Dts2APO.dll   [248952]
O44 - LFC:[MD5.754C8BF43F0DD4B54865F174A62761E9] - 01/02/2014 - 00:15:53 ---A- . (.Creative Technology Ltd. - Creative Audio Driver.) -- C:\Windows\System32\Drivers\VMfilt64.sys   [25600]
O44 - LFC:[MD5.1329B8C3E7A4D75157F6EA7DA5E3BCDA] - 01/02/2014 - 00:15:53 ---A- . (.Creative Technology Ltd. - Creative Audio Processing Object Module.) -- C:\Windows\System32\VMAPO64.DLL   [879616]
O44 - LFC:[MD5.8BCE3BDFF6D8B703A2975D3259E3FFD7] - 01/02/2014 - 00:15:53 ---A- . (.QSound Labs, Inc. - Pas de description.) -- C:\Windows\System32\nQPropPageExt.dll   [86016]
O44 - LFC:[MD5.FDAB92C4F7925A5313E14DEAFEA81047] - 01/02/2014 - 00:15:53 ---A- . (.QSound Labs, Inc. - nQ APO.) -- C:\Windows\System32\nQAPO.dll   [83968]
O44 - LFC:[MD5.C8AFF0C0C42ECD24851FE98ED3392C54] - 01/02/2014 - 00:15:53 ---A- . (.VIA Technologies, Inc. - DTS Surround Sensation Control Page.) -- C:\Windows\System32\Dts2PropPageExt.dll   [92280]
O44 - LFC:[MD5.265ABC06AD6BD64AFBFB61B3E57839A1] - 01/02/2014 - 00:15:53 ---A- . (.VIA Technologies, Inc. - Service binary.) -- C:\Windows\System32\ViakaraokeSrv.exe   [27768]
O44 - LFC:[MD5.0AE6B10B700689681A9892E67EE7B00B] - 01/02/2014 - 00:15:53 ---A- . (.VIA Technologies, Inc. - VIA High Definition Audio Function Driver.) -- C:\Windows\System32\Drivers\viahduaa.sys   [2206864]
O44 - LFC:[MD5.F8FF2F8EC0EBC0AFE8C132680AC26BCD] - 01/02/2014 - 00:15:53 ---A- . (.VIA Technologies, Inc. - VIA LFX/GFX DSP Component.) -- C:\Windows\System32\VIASysFx.dll   [683640]
O44 - LFC:[MD5.89F9439ED20C46FA6499CC461D8F96AB] - 01/02/2014 - 00:15:53 ---A- . (.VIA Technologies, Inc. - VIA LFX/GFX DSP UI component.) -- C:\Windows\System32\VIAPropPageExt.dll   [2994808]
O44 - LFC:[MD5.EE4057DC8EC245701DDA1FF5841E6442] - 01/02/2014 - 00:15:53 ---A- . (.VIA Technologies, Inc. - ViaKaraoke APO.) -- C:\Windows\System32\ViaKaraokeApo.dll   [1161336]
O44 - LFC:[MD5.2AC94C5FA300EE8264A5E11D3FD60FF0] - 01/02/2014 - 00:15:53 ---A- . (.VIA Technologies, Inc. - ViaMicArray APO.) -- C:\Windows\System32\ViaMicArrayAPO.dll   [1119352]
O44 - LFC:[MD5.F31CD8682E940B25B63A0BB2680DB833] - 01/02/2014 - 00:15:53 ---A- . (.VIA Technologies,Inc. - VIA APO for MicArray Applications..) -- C:\Windows\System32\ViaMicArrayPropPageExt.dll   [95352]
O44 - LFC:[MD5.663C964503A66D63B2FCB4C99BC4CA09] - 01/02/2014 - 00:15:53 ---A- . (.Waves Audio Ltd. - General Library for Plug-Ins.) -- C:\Windows\System32\WavesGUILib64.dll   [2080120]
O44 - LFC:[MD5.62BB90B2806C1122ADA9E91A9051453A] - 01/02/2014 - 00:15:53 ---A- . (.Waves Audio Ltd. - MaxxAudio APO Shell.) -- C:\Windows\System32\MaxxAudioAPOShell64.dll   [860024]
O44 - LFC:[MD5.AE34DBEDA6A18DF2E49D8D4A88902674] - 01/02/2014 - 00:15:53 ---A- . (.Waves Audio Ltd. - MaxxAudio APO.) -- C:\Windows\System32\MaxxAudioAPO30.dll   [394104]
O44 - LFC:[MD5.7EFE66E76728EB555EAB03F2C94779F7] - 01/02/2014 - 00:15:53 ---A- . (.Waves Audio Ltd. - Pas de description.) -- C:\Windows\System32\MaxxAudioVIA64.dll   [3141496]
O44 - LFC:[MD5.75FAF77B15E27D8AA923A89E450CCBEB] - 01/02/2014 - 00:15:53 ---A- . (.Windows (R) Codename Longhorn DDK provider - VtSrd APO.) -- C:\Windows\System32\VtSrdAPO.dll   [70776]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 09/02/2014 - 22:31:56 ---A- . (...) -- C:\Windows\setuperr.log   [0]
O44 - LFC:[MD5.3A49AC603613603F9D2D4AA720B9072C] - 09/02/2014 - 22:31:57 ---A- . (...) -- C:\Windows\System32\FNTCACHE.DAT   [481432]
O44 - LFC:[MD5.2C6193A8FA263EF26313D4E9CF2210E2] - 12/02/2014 - 11:50:00 ---A- . (...) -- C:\Windows\ntbtlog.txt   [172510]
O44 - LFC:[MD5.F6D13D75A30A14ED11DF7EAB86F1E229] - 12/02/2014 - 12:20:15 -S-A- . (...) -- C:\Windows\bootstat.dat   [67584]
O44 - LFC:[MD5.E570239983AA75E89B105CE43F92F21F] - 12/02/2014 - 12:20:16 ---A- . (...) -- C:\Windows\setupact.log   [448]
O44 - LFC:[MD5.4CBAE0CC751532D6CE9BD317E7237E24] - 12/02/2014 - 12:25:24 ---A- . (...) -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0   [21280]
O44 - LFC:[MD5.4CBAE0CC751532D6CE9BD317E7237E24] - 12/02/2014 - 12:25:24 ---A- . (...) -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0   [21280]
O44 - LFC:[MD5.55631E17B4D7B8BDFD5B427AF75CB3C6] - 12/02/2014 - 12:26:11 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI   [1670714]
O44 - LFC:[MD5.7C76F09ACF583A8D1DE42271D6E3910F] - 12/02/2014 - 12:26:11 ---A- . (...) -- C:\Windows\System32\perfc009.dat   [121934]
O44 - LFC:[MD5.69704D365E3F95B00AFA4BF09B59034C] - 12/02/2014 - 12:26:11 ---A- . (...) -- C:\Windows\System32\perfc00C.dat   [149976]
O44 - LFC:[MD5.294F353A221B84A4506F50AFF8BC009C] - 12/02/2014 - 12:26:11 ---A- . (...) -- C:\Windows\System32\perfh009.dat   [654564]
O44 - LFC:[MD5.05B3856F008BBAA1EE1A98FA5863834C] - 12/02/2014 - 12:26:11 ---A- . (...) -- C:\Windows\System32\perfh00C.dat   [747954]
O44 - LFC:[MD5.41EEEF6DDF17ECC6A5058561A1ADC94C] - 12/02/2014 - 12:40:54 ---A- . (...) -- C:\Windows\WindowsUpdate.log   [1100238]
O44 - LFC:[MD5.40FDF3546B2DD93413C2223169683979] - 30/01/2014 - 22:02:11 ---A- . (...) -- C:\Windows\CDE P242580EF.ini   [25]
O44 - LFC:[MD5.7ED438C44B90AF7B01609A942C7E7196] - 30/01/2014 - 22:06:21 ---A- . (.Eastman Kodak - PCDLIB32.) -- C:\Windows\PCDLIB32.DLL   [212480]
O44 - LFC:[MD5.ABD52A582F08E727B44D0AB959D6E303] - 31/01/2014 - 08:40:41 ---A- . (...) -- C:\Windows\System32\esfw41.bin   [64000]
O44 - LFC:[MD5.3EB4350D03127C55397C61FB4B206F3D] - 31/01/2014 - 08:40:41 ---A- . (.SEIKO EPSON CORP. - Command Interpreter Module.) -- C:\Windows\System32\esxuin41.dll   [164864]
O44 - LFC:[MD5.95C0913F5B1A8CB6BC2E9A1A97B6903B] - 31/01/2014 - 08:40:41 ---A- . (.SEIKO EPSON CORP. - EPSON WIA Module.) -- C:\Windows\System32\esxwia41.dll   [95232]
O44 - LFC:[MD5.E8976D5F0736AAD5CFA87F175328D117] - 31/01/2014 - 08:40:41 ---A- . (.SEIKO EPSON CORP. - EPSON WIA Module.) -- C:\Windows\System32\esxwiaml.dll   [4608]
O44 - LFC:[MD5.DDE9068F9BAC0210195F217AA39B9276] - 31/01/2014 - 17:35:33 ---A- . (.Etron Technology Inc - Etron eXtensible Host Controller Driver..) -- C:\Windows\System32\Drivers\EtronXHCI.sys   [94208]
O44 - LFC:[MD5.FD291A75ECAF197F07BD2040C2A7322A] - 31/01/2014 - 17:35:33 ---A- . (.Etron Technology Inc - Etron eXtensible Hub Driver..) -- C:\Windows\System32\Drivers\EtronHub3.sys   [65408]
O44 - LFC:[MD5.68CF5515B176527523ED379915350AE3] - 31/01/2014 - 23:51:44 ---A- . (.Intel Corporation - Intel(R) USB 3.0 Host Controller Switch Dri.) -- C:\Windows\System32\Drivers\iusb3hcs.sys   [20464]
O44 - LFC:[MD5.EE522B28633D275BFE12EF70F4936E37] - 31/01/2014 - 23:51:44 ---A- . (.Intel Corporation - Intel(R) USB 3.0 Hub Driver.) -- C:\Windows\System32\Drivers\iusb3hub.sys   [358896]
O44 - LFC:[MD5.69AB13996A97F8168538F98FB832A86B] - 31/01/2014 - 23:51:44 ---A- . (.Intel Corporation - Intel(R) USB 3.0 eXtensible Host Controller.) -- C:\Windows\System32\Drivers\iusb3xhc.sys   [795632]
O44 - LFC:[MD5.4DA5DA193E0E4F86F6F8FD43EF25329A] - 31/01/2014 - 23:51:44 ---A- . (.Microsoft Corporation - WDF Coinstaller.) -- C:\Windows\System32\WdfCoInstaller01009.dll   [1721576]
O44 - LFC:[MD5.13C8D4C52C6492E8B19AC39B301B0B55] - 31/01/2014 - 23:52:13 ---A- . (.Intel Corporation - Versioning library for Intel(R) USB 3.0 Dri.) -- C:\Windows\System32\Drivers\USB3Ver.dll   [41984]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 31/01/2014 - 23:52:34 --HA- . (...) -- C:\Windows\System32\Drivers\Msft_Kernel_iusb3hcs_01009.Wdf   [0]
~ Files: 62 Scanned in 00mn 02s



---\\ Derniers fichiers créés dans Windows Prefetcher (O45)
O45 - LFCP:[MD5.1E2F3A5D27C6161F783A2BE1BEAFFB66] - 11/02/2014 - 12:09:47 ---A- - C:\Windows\Prefetch\NTOSBOOT-B00DFAAD.pf
O45 - LFCP:[MD5.02013DB952D345F355BB914426CEB213] - 11/02/2014 - 12:30:13 ---A- - C:\Windows\Prefetch\DEFRAG.EXE-738093E8.pf
O45 - LFCP:[MD5.E7DE3CB1F8A2903206ED43B2DA748D41] - 11/02/2014 - 13:06:57 ---A- - C:\Windows\Prefetch\MMC.EXE-5AD691E1.pf
O45 - LFCP:[MD5.6C48D051BBCFD4241EA95595C5AC9E57] - 11/02/2014 - 13:07:07 ---A- - C:\Windows\Prefetch\MMC.EXE-5F8C9231.pf
O45 - LFCP:[MD5.C48F201D6C2BCB00536A5D141A0A1590] - 11/02/2014 - 13:12:21 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-FF915DF9.pf
O45 - LFCP:[MD5.A64D971B7F34BA16A4E8DA4318814B25] - 11/02/2014 - 13:12:50 ---A- - C:\Windows\Prefetch\DEVICEDISPLAYOBJECTPROVIDER.E-5B0FD533.pf
O45 - LFCP:[MD5.57380A520244DEB0DB3D5ECCCAE2F81A] - 11/02/2014 - 13:18:53 ---A- - C:\Windows\Prefetch\WUDFHOST.EXE-81420B07.pf
O45 - LFCP:[MD5.F8BFE8F36229BD705683D7D6166CC046] - 11/02/2014 - 13:32:56 ---A- - C:\Windows\Prefetch\WMPLAYER.EXE-61D40ED1.pf
O45 - LFCP:[MD5.83A929AEDE00F66676F4C50E7BEDFB3E] - 11/02/2014 - 13:33:45 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-40528DFB.pf
O45 - LFCP:[MD5.46DA5DB9832C1173AB050AEBC3D54F24] - 11/02/2014 - 15:42:16 ---A- - C:\Windows\Prefetch\PIXIETOOL.EXE-B79EF3A4.pf
O45 - LFCP:[MD5.BD4EC846823E8C1963C17B0BA6D72D94] - 11/02/2014 - 15:42:17 ---A- - C:\Windows\Prefetch\STUDIO.EXE-ECB6B03B.pf
O45 - LFCP:[MD5.ECFB17A3B261BB79D2B8CC4E92B2DE81] - 11/02/2014 - 15:42:19 ---A- - C:\Windows\Prefetch\CSC.EXE-4EF173D0.pf
O45 - LFCP:[MD5.BE39C0FA4CD037FAB2546D2C00F22D1D] - 11/02/2014 - 15:42:19 ---A- - C:\Windows\Prefetch\IMPORTER.EXE-5E5B0460.pf
O45 - LFCP:[MD5.3708C34EE536CA6DD1C2493315FB952A] - 11/02/2014 - 15:42:26 ---A- - C:\Windows\Prefetch\PER.EXE-D41F073E.pf
O45 - LFCP:[MD5.A18556C50875DD00DD410999D658D109] - 11/02/2014 - 15:42:26 ---A- - C:\Windows\Prefetch\RM.EXE-5364F466.pf
O45 - LFCP:[MD5.3EC5BBCDF1D31424F67143329C533F14] - 11/02/2014 - 15:42:26 ---A- - C:\Windows\Prefetch\UMI.EXE-D6ACCE82.pf
O45 - LFCP:[MD5.88FA1645F39089A464EBC03D05898CE8] - 11/02/2014 - 15:42:28 ---A- - C:\Windows\Prefetch\UMI.EXE-FC3DE395.pf
O45 - LFCP:[MD5.290ED865CDEC9E9B4445008336423E92] - 11/02/2014 - 16:42:22 ---A- - C:\Windows\Prefetch\WERFAULT.EXE-0897AE09.pf
O45 - LFCP:[MD5.F83CA87FEBC4F4B9CA1C7932E188E309] - 11/02/2014 - 16:42:32 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-93CEEE07.pf
O45 - LFCP:[MD5.6221868E9898DB2CFFFC50BC0DAAD978] - 11/02/2014 - 18:32:43 ---A- - C:\Windows\Prefetch\AVGCMGR.EXE-915525CA.pf
O45 - LFCP:[MD5.6BFFC6573AB649707E35FE3A1C080AB5] - 11/02/2014 - 20:30:42 ---A- - C:\Windows\Prefetch\INCMAIL.EXE-DC2B876B.pf
O45 - LFCP:[MD5.5ABD85217D1565AF2EFFBA9B4A455004] - 11/02/2014 - 21:00:17 ---A- - C:\Windows\Prefetch\PR1500.EXE-6A50B33C.pf
O45 - LFCP:[MD5.20F3AB86B41B478D8CE804333C49D34B] - 11/02/2014 - 21:37:01 ---A- - C:\Windows\Prefetch\ATBROKER.EXE-FF58B71D.pf
O45 - LFCP:[MD5.8C659A08CA117104EEBB63219C3F9C02] - 11/02/2014 - 21:37:01 ---A- - C:\Windows\Prefetch\AVGIDSAGENT.EXE-0B4F7D00.pf
O45 - LFCP:[MD5.EC226C8ED8319E4FF3E90908C2DF6E81] - 11/02/2014 - 21:37:01 ---A- - C:\Windows\Prefetch\SPOOLSV.EXE-E4D0FF39.pf
O45 - LFCP:[MD5.0E0F9616823CA2FAD33AE41568608A6B] - 11/02/2014 - 21:52:39 ---A- - C:\Windows\Prefetch\ACRORD32.EXE-11854F49.pf
O45 - LFCP:[MD5.9DAC1AB33445BF3DA41AF76E8DB98DA7] - 11/02/2014 - 21:53:02 ---A- - C:\Windows\Prefetch\ADOBEARM.EXE-E8E973DD.pf
O45 - LFCP:[MD5.D9D42ADC6E9721615DAA6A6A82A28D3A] - 12/02/2014 - 07:16:33 ---A- - C:\Windows\Prefetch\WSQMCONS.EXE-E2CE6542.pf
O45 - LFCP:[MD5.A8FCA39667B35D434FB2FE36991ED51A] - 12/02/2014 - 07:37:57 ---A- - C:\Windows\Prefetch\REPAIR_WINDOWS.EXE-050E7651.pf
O45 - LFCP:[MD5.686E89BEB74D1E52E1F4EB4CA8A59053] - 12/02/2014 - 07:39:48 ---A- - C:\Windows\Prefetch\MMC.EXE-533FBECA.pf
O45 - LFCP:[MD5.70852506B47506071711536949585BF2] - 12/02/2014 - 07:39:48 ---A- - C:\Windows\Prefetch\MMC.EXE-5D74608B.pf
O45 - LFCP:[MD5.12373A051C6A94ABA09B2FEC59D0858C] - 12/02/2014 - 07:40:12 ---A- - C:\Windows\Prefetch\WMIPRVSE.EXE-94D7CB13.pf
O45 - LFCP:[MD5.AF51453992D4F1B9025B39AFFCB0C0B2] - 12/02/2014 - 07:40:14 ---A- - C:\Windows\Prefetch\SCRCONS.EXE-D45CB92D.pf
O45 - LFCP:[MD5.6B7B8860A753DD283F6EE35920CAA85F] - 12/02/2014 - 07:40:14 ---A- - C:\Windows\Prefetch\UNSECAPP.EXE-CD982D99.pf
O45 - LFCP:[MD5.537EB4B8E5A77A693A549BF2E5AAA893] - 12/02/2014 - 07:40:14 ---A- - C:\Windows\Prefetch\WMIAPSRV.EXE-576286C3.pf
O45 - LFCP:[MD5.FE5D730502EA2E011714447E088A0BF2] - 12/02/2014 - 07:40:16 ---A- - C:\Windows\Prefetch\NET.EXE-1DF3A2F6.pf
O45 - LFCP:[MD5.802C71B5B8D32FEC0CECBE84B2F385D1] - 12/02/2014 - 07:40:16 ---A- - C:\Windows\Prefetch\NET1.EXE-B8A8247B.pf
O45 - LFCP:[MD5.F4D0F3CB3CB1E1B518AD177CFE916F00] - 12/02/2014 - 07:40:18 ---A- - C:\Windows\Prefetch\WINMGMT.EXE-44FDDF7D.pf
O45 - LFCP:[MD5.BA04C1D02ADE594F0198061A7F9E7AF3] - 12/02/2014 - 07:40:37 ---A- - C:\Windows\Prefetch\MOFCOMP.EXE-CDA1E783.pf
O45 - LFCP:[MD5.0C06159416E6961614E5974740F369D9] - 12/02/2014 - 07:41:13 ---A- - C:\Windows\Prefetch\ATTRIB.EXE-C481CEC1.pf
O45 - LFCP:[MD5.F717EBAECEDD62E977344A1EED20483B] - 12/02/2014 - 07:41:16 ---A- - C:\Windows\Prefetch\REGEDIT.EXE-32FE412B.pf
O45 - LFCP:[MD5.1A5F977FB3875DF83590BCA22EB6AF81] - 12/02/2014 - 07:41:19 ---A- - C:\Windows\Prefetch\IPCONFIG.EXE-B327820A.pf
O45 - LFCP:[MD5.FB2D97CAB35A4AC9167AF3F649A4A759] - 12/02/2014 - 07:41:20 ---A- - C:\Windows\Prefetch\NETSH.EXE-3DD790C5.pf
O45 - LFCP:[MD5.9F8B4E05CF7D990D07A6EFE7FCCA7769] - 12/02/2014 - 07:41:20 ---A- - C:\Windows\Prefetch\REGEDIT.EXE-4748FE01.pf
O45 - LFCP:[MD5.8F6A9847E5C04BB6ABED476A7D3E1B4B] - 12/02/2014 - 07:41:27 ---A- - C:\Windows\Prefetch\IPCONFIG.EXE-62724FE6.pf
O45 - LFCP:[MD5.EF97DB54BF8542031A3EF65B40ABAADA] - 12/02/2014 - 07:44:49 ---A- - C:\Windows\Prefetch\PSEXEC.EXE-A7F84B2B.pf
O45 - LFCP:[MD5.DFC66FF842173F0371803DE905B31C20] - 12/02/2014 - 07:44:49 ---A- - C:\Windows\Prefetch\PSEXESVC.EXE-51BA46F2.pf
O45 - LFCP:[MD5.C7CD22219170A6A0FA9DF21E6905991B] - 12/02/2014 - 07:44:51 ---A- - C:\Windows\Prefetch\CMD.EXE-EABFE48B.pf
O45 - LFCP:[MD5.062193ADF5F0F94165EBA12694FF8771] - 12/02/2014 - 07:44:51 ---A- - C:\Windows\Prefetch\SHUTDOWN.EXE-09CE0E7B.pf
O45 - LFCP:[MD5.E61FAD86F34D3A17C0910660C4F0BFE4] - 12/02/2014 - 07:45:01 ---A- - C:\Windows\Prefetch\WLRMDR.EXE-DDA57653.pf
O45 - LFCP:[MD5.7AAF632FEBE841C72BC151347D4AD61B] - 12/02/2014 - 08:04:44 ---A- - C:\Windows\Prefetch\SDCLT.EXE-2D2C4DDD.pf
O45 - LFCP:[MD5.D48CDFEBDFB91D07B218A5491460B524] - 12/02/2014 - 08:06:24 ---A- - C:\Windows\Prefetch\KMJ.EXE-06B6AAC2.pf
O45 - LFCP:[MD5.A24079AF7471DB087948803473091136] - 12/02/2014 - 08:19:40 ---A- - C:\Windows\Prefetch\MSSPELLCHECKINGFACILITY.EXE-3A2F1918.pf
O45 - LFCP:[MD5.EB7A964C9D9A7677306B2AA598D978FD] - 12/02/2014 - 09:06:40 ---A- - C:\Windows\Prefetch\Layout.ini
O45 - LFCP:[MD5.13F2832F23CF533B06C2578B1A4B1439] - 12/02/2014 - 09:09:12 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-125D4518.pf
O45 - LFCP:[MD5.381C820446ED943DE6276385CCE45A6F] - 12/02/2014 - 09:09:22 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-8DA0BAAD.pf
O45 - LFCP:[MD5.F9EC9E87FDE66C9358E488AF0B456C43] - 12/02/2014 - 09:16:21 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-F452D79D.pf
O45 - LFCP:[MD5.38BB75F160CC4B23EE837C42D94CAA47] - 12/02/2014 - 09:16:45 ---A- - C:\Windows\Prefetch\AVGMFAPX.EXE-69E508B1.pf
O45 - LFCP:[MD5.6DE52D7B4B4FF522B03499B7D2E00912] - 12/02/2014 - 10:58:11 ---A- - C:\Windows\Prefetch\AgCx_SC1.db.trx
O45 - LFCP:[MD5.0EE5F88322A7B1A4353682421F5EBEF4] - 12/02/2014 - 10:58:19 ---A- - C:\Windows\Prefetch\MOBSYNC.EXE-D8BC6ED2.pf
O45 - LFCP:[MD5.55D75A14C61B198D7A9C084E210A660A] - 12/02/2014 - 10:58:27 ---A- - C:\Windows\Prefetch\EXPLORER.EXE-F6875474.pf
O45 - LFCP:[MD5.6789CEA44E4599EABFFDA708A82DB617] - 12/02/2014 - 10:58:32 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-71214090.pf
O45 - LFCP:[MD5.3F82ADA16F78E948E8B0C39CEFD36870] - 12/02/2014 - 10:58:37 ---A- - C:\Windows\Prefetch\EXPLORER.EXE-7A3328DA.pf
O45 - LFCP:[MD5.8A1B8DD00900E76A7AD9C088BFCB9E45] - 12/02/2014 - 10:58:39 ---A- - C:\Windows\Prefetch\EXCEL.EXE-4D637CBA.pf
O45 - LFCP:[MD5.13DC0A2BFFFD5A1A25F12F395691FDFF] - 12/02/2014 - 10:59:11 ---A- - C:\Windows\Prefetch\AgCx_SC1.db
O45 - LFCP:[MD5.70695D234F422FCAEC4987A8F83C2401] - 12/02/2014 - 11:00:18 ---A- - C:\Windows\Prefetch\POWERPNT.EXE-1F2369B8.pf
O45 - LFCP:[MD5.09128264ECDBE766ABDC7B86B0BD2993] - 12/02/2014 - 11:00:19 ---A- - C:\Windows\Prefetch\PRINTISOLATIONHOST.EXE-83C184C4.pf
O45 - LFCP:[MD5.6667D4D40C591FD9FD8E0A2701CC748C] - 12/02/2014 - 11:00:19 ---A- - C:\Windows\Prefetch\SPLWOW64.EXE-FBA11EAB.pf
O45 - LFCP:[MD5.27EF69358F0B506850F1EC98555BFD24] - 12/02/2014 - 11:02:13 ---A- - C:\Windows\Prefetch\AgGlUAD_P_S-1-5-21-2821401529-3189236867-1356594552-1000.db
O45 - LFCP:[MD5.374B84BC2D4946DE63D40086191C408B] - 12/02/2014 - 11:02:13 ---A- - C:\Windows\Prefetch\AgGlUAD_S-1-5-21-2821401529-3189236867-1356594552-1000.db
O45 - LFCP:[MD5.D8FE36A0FF3E6D54630EC819AEA4EAA5] - 12/02/2014 - 11:10:10 ---A- - C:\Windows\Prefetch\AUDIODG.EXE-D0D776AC.pf
O45 - LFCP:[MD5.076EAF445A092B58304B67EB384A472F] - 12/02/2014 - 11:10:47 ---A- - C:\Windows\Prefetch\ADWCLEANER_3-018_FR_430277.EX-2B1CCB00.pf
O45 - LFCP:[MD5.2297E1ACC8CA5D9C6E91B92303DE11E1] - 12/02/2014 - 11:12:00 ---A- - C:\Windows\Prefetch\FLASHPLAYERUPDATESERVICE.EXE-41B177B8.pf
O45 - LFCP:[MD5.E2B4D775074B8B32FB793764D7C3E6F8] - 12/02/2014 - 11:12:10 ---A- - C:\Windows\Prefetch\TASKENG.EXE-5BAF290C.pf
O45 - LFCP:[MD5.B51C42C2331170865BA46AA52B0A8892] - 12/02/2014 - 11:13:16 ---A- - C:\Windows\Prefetch\NOTEPAD.EXE-EB1B961A.pf
O45 - LFCP:[MD5.F03266542FBC62AE71E5C7BEBFE1B692] - 12/02/2014 - 11:13:23 ---A- - C:\Windows\Prefetch\CMD.EXE-89305D47.pf
O45 - LFCP:[MD5.4F143F2585690FD53E5F939F71C538E4] - 12/02/2014 - 11:13:23 ---A- - C:\Windows\Prefetch\REG.EXE-26976709.pf
O45 - LFCP:[MD5.255101C3D901E1EF878938AEF1CEB8BD] - 12/02/2014 - 11:14:49 ---A- - C:\Windows\Prefetch\IMLPP.EXE-0A75031C.pf
O45 - LFCP:[MD5.6F16831E5DE1FDEB90BD49F0FADD24A4] - 12/02/2014 - 11:14:57 ---A- - C:\Windows\Prefetch\WMPNSCFG.EXE-DF1DD51A.pf
O45 - LFCP:[MD5.727844D1CB7D7821182ED79DF7B007F9] - 12/02/2014 - 11:14:58 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-437C05A8.pf
O45 - LFCP:[MD5.01C69DD28A9842872CE914B6CF4E6047] - 12/02/2014 - 11:15:07 ---A- - C:\Windows\Prefetch\ICCPROXY.EXE-A083892C.pf
O45 - LFCP:[MD5.82D309FDDD225C1C671BE227C6DCB505] - 12/02/2014 - 11:15:07 ---A- - C:\Windows\Prefetch\IGFXSRVC.EXE-67E7A62F.pf
O45 - LFCP:[MD5.5140761E543076EA4406575CF66393FD] - 12/02/2014 - 11:15:07 ---A- - C:\Windows\Prefetch\WMPNETWK.EXE-BD0344CA.pf
O45 - LFCP:[MD5.EBA7526C3CB8723AAAC7E0875DDC12BF] - 12/02/2014 - 11:15:08 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-4D8DA32A.pf
O45 - LFCP:[MD5.FB4249190B35037E344EC97F9304CF09] - 12/02/2014 - 11:15:19 ---A- - C:\Windows\Prefetch\IASTORICON.EXE-3837E228.pf
O45 - LFCP:[MD5.E40CE6357F8B2891FF6ACB0139FE737B] - 12/02/2014 - 11:15:52 ---A- - C:\Windows\Prefetch\FLASHUTIL64_12_0_0_44_ACTIVEX-D5F54A81.pf
O45 - LFCP:[MD5.34EB5DAFDA9886DC248E6BA13E36D672] - 12/02/2014 - 11:16:14 ---A- - C:\Windows\Prefetch\CONSENT.EXE-65F6206D.pf
O45 - LFCP:[MD5.DFE48EDF9CA9987FB5CEBECE55B69248] - 12/02/2014 - 11:16:19 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-893DDF55.pf
O45 - LFCP:[MD5.4724BA5D6E99AD3E75272FF91B582E97] - 12/02/2014 - 11:16:24 ---A- - C:\Windows\Prefetch\ADWCLEANER_3-018_FR_430277.EX-A956EAB1.pf
O45 - LFCP:[MD5.F98819953ED8856287AAA2D0E2CA99FB] - 12/02/2014 - 11:16:57 ---A- - C:\Windows\Prefetch\MSCORSVW.EXE-98F0699A.pf
O45 - LFCP:[MD5.D529B6B959F65A65C8C26C97755CC744] - 12/02/2014 - 11:16:57 ---A- - C:\Windows\Prefetch\MSCORSVW.EXE-FAA88858.pf
O45 - LFCP:[MD5.DB965EDE574112741A2D9A41449A0CA7] - 12/02/2014 - 11:17:59 ---A- - C:\Windows\Prefetch\IDRIVER.EXE-3C0325E1.pf
O45 - LFCP:[MD5.C70AE18E94EDC1CE5E8BF99CAB802503] - 12/02/2014 - 11:17:59 ---A- - C:\Windows\Prefetch\MSIEXEC.EXE-B5AFA339.pf
O45 - LFCP:[MD5.0FA90E50903B4DD31236C37CB0FF9E20] - 12/02/2014 - 11:18:19 ---A- - C:\Windows\Prefetch\WMIADAP.EXE-369DF1CD.pf
O45 - LFCP:[MD5.B53BF38DF38F964D82B570996DB82F60] - 12/02/2014 - 11:19:14 ---A- - C:\Windows\Prefetch\AVGDIAGEX.EXE-BC24A887.pf
O45 - LFCP:[MD5.018E80BB2C37F8E10398BA2138F9ECA1] - 12/02/2014 - 11:19:20 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-F59CA9BD.pf
O45 - LFCP:[MD5.2E72EE75261872B9F9BBF16B42695323] - 12/02/2014 - 11:19:35 ---A- - C:\Windows\Prefetch\IMNOTFY.EXE-36EF4378.pf
O45 - LFCP:[MD5.D78D34AEFC26093C19AE042C825F2518] - 12/02/2014 - 11:19:37 ---A- - C:\Windows\Prefetch\AVGCSRVA.EXE-1B1A4748.pf
O45 - LFCP:[MD5.1D71C179FEFBF799E30916A8F59704DD] - 12/02/2014 - 11:19:50 ---A- - C:\Windows\Prefetch\SC.EXE-BC6DAF49.pf
O45 - LFCP:[MD5.A37ED0709E90F4FFE31A6B29706C11B0] - 12/02/2014 - 11:19:52 ---A- - C:\Windows\Prefetch\HDUPDRVISTA64.EXE-D292A8F6.pf
O45 - LFCP:[MD5.B3F03D59F9E056DDD22546718067520B] - 12/02/2014 - 11:19:52 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-AFD98684.pf
O45 - LFCP:[MD5.5815929934D326703ED573D4E028FE69] - 12/02/2014 - 11:19:53 ---A- - C:\Windows\Prefetch\MAXXAUDIOCONTROL64.EXE-FE2F0556.pf
O45 - LFCP:[MD5.C831E5A3EDB589B19005220ED065A94F] - 12/02/2014 - 11:19:57 ---A- - C:\Windows\Prefetch\MSIEXEC.EXE-F3744DFD.pf
O45 - LFCP:[MD5.9ECED25BC8D6D30561F674A8A5217767] - 12/02/2014 - 11:20:02 ---A- - C:\Windows\Prefetch\DINOTIFY.EXE-06EB7C61.pf
O45 - LFCP:[MD5.A6F7248D9C164D742AEE37AAD0F3AA32] - 12/02/2014 - 11:20:02 ---A- - C:\Windows\Prefetch\DRVINST.EXE-5F8E77CD.pf
O45 - LFCP:[MD5.422F0D81186BF82EA771454E485734C8] - 12/02/2014 - 11:20:02 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-B2DC2C53.pf
O45 - LFCP:[MD5.DFA21EBAA34DEA63F443174E8D47D33A] - 12/02/2014 - 11:20:07 ---A- - C:\Windows\Prefetch\TRUSTEDINSTALLER.EXE-031B6478.pf
O45 - LFCP:[MD5.3D171E385F1AED5C33FF39CF96B26E4A] - 12/02/2014 - 11:20:07 ---A- - C:\Windows\Prefetch\WMIPRVSE.EXE-43972D0F.pf
O45 - LFCP:[MD5.882EF39D81CBD51721F79BA949A1238E] - 12/02/2014 - 11:20:10 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-C5C55E89.pf
O45 - LFCP:[MD5.101ABAA951C2489065F13D43E8D02DA5] - 12/02/2014 - 11:20:17 ---A- - C:\Windows\Prefetch\SNDVOL.EXE-783DCB11.pf
O45 - LFCP:[MD5.53996265212B733AD0C61AF5D7148DFE] - 12/02/2014 - 11:20:32 ---A- - C:\Windows\Prefetch\CCLEANER64.EXE-AACDD30D.pf  =>Piriform Ltd
O45 - LFCP:[MD5.7D6C093A3FABB3AAB72F865D19FD637E] - 12/02/2014 - 11:20:59 ---A- - C:\Windows\Prefetch\INTEGRATOR.EXE-3DC35AAA.pf
O45 - LFCP:[MD5.E1F17D311858E4C359CC8F857811CC27] - 12/02/2014 - 11:21:17 ---A- - C:\Windows\Prefetch\MEMFILESSERVICE.EXE-5EE97C96.pf
O45 - LFCP:[MD5.E74CD498A8E0361C38C0628DD1E1A0BF] - 12/02/2014 - 11:21:17 ---A- - C:\Windows\Prefetch\WIN64SHELLLINK.EXE-53190163.pf
O45 - LFCP:[MD5.D6E495A5132746CB87FC563A937587FE] - 12/02/2014 - 11:22:09 ---A- - C:\Windows\Prefetch\VLC_MEDIA_PLAYER_(64BIT)_V2.1-FDB465BF.pf
O45 - LFCP:[MD5.B8ABB1D8275BC1143EDA1186A677B637] - 12/02/2014 - 11:22:54 ---A- - C:\Windows\Prefetch\VLC-CACHE-GEN.EXE-D7CD65D9.pf
O45 - LFCP:[MD5.C64FD62D278BF13B03B0055D45BB418F] - 12/02/2014 - 11:22:55 ---A- - C:\Windows\Prefetch\REGSVR32.EXE-55A4EE79.pf
O45 - LFCP:[MD5.78A0EEF2150168153719658DEEC359C0] - 12/02/2014 - 11:22:55 ---A- - C:\Windows\Prefetch\REGSVR32.EXE-A65A209D.pf
O45 - LFCP:[MD5.0C0CC8256B5285184CCDB199F8A86FF1] - 12/02/2014 - 11:23:17 ---A- - C:\Windows\Prefetch\SEARCHFILTERHOST.EXE-AA7A1FDD.pf
O45 - LFCP:[MD5.FC13EC4747114B180D542E7A659DD8F7] - 12/02/2014 - 11:23:17 ---A- - C:\Windows\Prefetch\SEARCHPROTOCOLHOST.EXE-AFAD3EF9.pf
O45 - LFCP:[MD5.6599378AEA9663957D08B694B8A1A05E] - 12/02/2014 - 11:23:34 ---A- - C:\Windows\Prefetch\DROPBOX_V2.6.8.EXE-5BA1C111.pf
O45 - LFCP:[MD5.98553DD0F06DC3711AE7F8BECAD9029B] - 12/02/2014 - 11:24:10 ---A- - C:\Windows\Prefetch\NETSH.EXE-19B647C9.pf
O45 - LFCP:[MD5.FE23654D37B2488AB2A237D9949CE047] - 12/02/2014 - 11:24:31 ---A- - C:\Windows\Prefetch\IEXPLORE.EXE-1B894AFB.pf
O45 - LFCP:[MD5.37BF79A69EC3693876EF35B37F61116E] - 12/02/2014 - 11:24:31 ---A- - C:\Windows\Prefetch\IEXPLORE.EXE-F6A52C86.pf
O45 - LFCP:[MD5.FC1ADDA24FC5B5C5B1D9C306D263988F] - 12/02/2014 - 11:24:33 ---A- - C:\Windows\Prefetch\SOFTWAREUPDATE.EXE-EECADFDD.pf
O45 - LFCP:[MD5.58420A6E9B7B9515FC2AAB544F0B7BA3] - 12/02/2014 - 11:24:52 ---A- - C:\Windows\Prefetch\IMBPP.EXE-00796B0A.pf
O45 - LFCP:[MD5.8FC6D00C0268511C810A5C243986B07E] - 12/02/2014 - 11:25:04 ---A- - C:\Windows\Prefetch\WUAUCLT.EXE-830BCC14.pf
O45 - LFCP:[MD5.FCC4D65B265446CCE2F32667541769E7] - 12/02/2014 - 11:25:06 ---A- - C:\Windows\Prefetch\WERMGR.EXE-2A1BCBC7.pf
O45 - LFCP:[MD5.AB3D2E0E781EC95B12EB543EA86D40C1] - 12/02/2014 - 11:25:07 ---A- - C:\Windows\Prefetch\AgRobust.db
O45 - LFCP:[MD5.9632160DC9F2F064547C8EBE7B8C765E] - 12/02/2014 - 11:25:07 ---A- - C:\Windows\Prefetch\PfSvPerfStats.bin
O45 - LFCP:[MD5.9B8276D8120F2F536780A9B62971CCD1] - 12/02/2014 - 11:25:07 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-8FD92526.pf
O45 - LFCP:[MD5.B956DC897682502555AA6CB8EFC9826A] - 12/02/2014 - 11:25:07 ---A- - C:\Windows\Prefetch\VSSVC.EXE-04D079CC.pf
O45 - LFCP:[MD5.55F7D4A926398F0A6CF26C90C7E5DAAD] - 12/02/2014 - 11:25:08 ---A- - C:\Windows\Prefetch\AgGlFaultHistory.db
O45 - LFCP:[MD5.14E3225A91E95C4AF19F75E8E345B3C2] - 12/02/2014 - 11:25:08 ---A- - C:\Windows\Prefetch\AgGlFgAppHistory.db
O45 - LFCP:[MD5.A822D7FE609B69C0D93FC1F613AA6CBD] - 12/02/2014 - 11:25:08 ---A- - C:\Windows\Prefetch\AgGlGlobalHistory.db
O45 - LFCP:[MD5.68D34217D58652CF052D52BC1084D98D] - 12/02/2014 - 11:28:01 ---A- - C:\Windows\Prefetch\CONHOST.EXE-3218E401.pf
O45 - LFCP:[MD5.B896BFD44C14A3682392E68B2E12E831] - 12/02/2014 - 11:28:01 ---A- - C:\Windows\Prefetch\FIXCFG.EXE-AE8AA332.pf
O45 - LFCP:[MD5.191F1B0E0B33F27A614C6FBE5D9A42F0] - 12/02/2014 - 11:30:15 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-BBB8B3DE.pf
O45 - LFCP:[MD5.FED457C92BC9FC4DBDC9B2CC2760E0F1] - 12/02/2014 - 11:30:26 ---A- - C:\Windows\Prefetch\LOGONUI.EXE-1BEE4A84.pf
O45 - LFCP:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 16/11/2174 - 13:44:25 ----D - C:\Windows\Prefetch\ReadyBoot
O45 - LFCP:[MD5.4E55420891B8A865AD0B3836E26AD54B] - 17/01/2014 - 13:03:24 ---A- - C:\Windows\Prefetch\AgAppLaunch.db
O45 - LFCP:[MD5.B7781B37771EF3F38572680490CC96E2] - 17/01/2014 - 13:09:40 ---A- - C:\Windows\Prefetch\AgCx_SC4.db
~ Prefetcher: 142 Scanned in 00mn 00s



---\\ Déni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l’Éditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\System32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll
~ LSA: 8 Scanned in 00mn 00s



---\\ Contrôle du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\System32\Drivers\rdpencdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
~ CSB: 13 Scanned in 00mn 00s



---\\ Clé de registre Shell MountPoints2 (MPKS) (O51)
O51 - MPSK:{b9b52327-7f6f-11e3-9630-e5c8e97a6c29}\AutoRun\command. (...) -- I:\WD SmartWare.exe (.not file.)
~ Keys:  Scanned in 00mn 00s



---\\ Recherche d'infection sur les pilotes (HKLM)(TDSD) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
~ TDSD: 2 Scanned in 00mn 00s



---\\ Enumération des clés de registre SecurityProviders (MCSP) (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
~ MSCP: 2 Scanned in 00mn 00s



---\\ Enumération des clés de registre PoliciesSystem (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
~ MWPS: 16 Scanned in 00mn 00s



---\\ Enumération des clés de registre PoliciesExplorer (MWPE) (O56)
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0
~ MWPE Keys: 3 Scanned in 00mn 00s



---\\ Liste des pilotes du système (SDL) (O58)
O58 - SDL:[MD5.64EDD3F59DB321947969FDF1DD747323] - 14/07/2009 - 01:06:38 ---A- . (.Microsoft Corporation - 1394 Bus Device Driver.) -- C:\Windows\System32\Drivers\1394bus.sys   [68096]
O58 - SDL:[MD5.A87D604AEA360176311474C87A63BB88] - 21/11/2010 - 04:23:47 ---A- . (.Microsoft Corporation - 1394 OpenHCI Port Driver.) -- C:\Windows\System32\Drivers\1394ohci.sys   [229888]
O58 - SDL:[MD5.E0A8525A951ADDB4655BC2068566407D] - 14/07/2009 - 01:06:43 ---A- . (.Microsoft Corporation - 61883 Device Class.) -- C:\Windows\System32\Drivers\61883.sys   [60288]
O58 - SDL:[MD5.D81D9E70B8A6DD14D42D7B4EFA65D5F2] - 21/11/2010 - 04:23:47 ---A- . (.Microsoft Corporation - Pilote ACPI pour NT.) -- C:\Windows\System32\Drivers\acpi.sys   [334208]
O58 - SDL:[MD5.99F8E788246D495CE3794D7E7821D2CA] - 21/11/2010 - 04:23:47 ---A- . (.Microsoft Corporation - ACPI Power Metering Driver.) -- C:\Windows\System32\Drivers\acpipmi.sys   [12800]
O58 - SDL:[MD5.2F6B34B83843F0C5118B63AC634F5BF4] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys   [491088]
O58 - SDL:[MD5.597F78224EE9224EA1A13D6350CED962] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\Drivers\adpahci.sys   [339536]
O58 - SDL:[MD5.E109549C90F62FB570B9540C4B148E54] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\Drivers\adpu320.sys   [182864]
O58 - SDL:[MD5.79059559E89D06E8B80CE2944BE20228] - 28/09/2013 - 02:09:10 ---A- . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\Windows\System32\Drivers\afd.sys   [497152]
O58 - SDL:[MD5.7ECFF9B22276B73F43A99A15A6094E90] - 14/07/2009 - 01:10:24 ---A- . (.Microsoft Corporation - RAS Agile Vpn Miniport Call Manager.) -- C:\Windows\System32\Drivers\agilevpn.sys   [60416]
O58 - SDL:[MD5.608C14DBA7299D8CB6ED035A68A15799] - 14/07/2009 - 02:52:21 ---A- . (.Microsoft Corporation - Filtre AGP 440 NT.) -- C:\Windows\System32\Drivers\AGP440.sys   [61008]
O58 - SDL:[MD5.5812713A477A3AD7363C7438CA2EE038] - 14/07/2009 - 02:52:21 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\Drivers\aliide.sys   [15440]
O58 - SDL:[MD5.1FF8B4431C353CE385C875F194924C0C] - 14/07/2009 - 02:52:21 ---A- . (.Microsoft Corporation - Pilote IDE AMD.) -- C:\Windows\System32\Drivers\amdide.sys   [15440]
O58 - SDL:[MD5.7024F087CFF1833A806193EF9D22CDA9] - 14/07/2009 - 00:19:25 ---A- . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\Drivers\amdk8.sys   [64512]
O58 - SDL:[MD5.1E56388B3FE0D031C44144EB8C4D6217] - 14/07/2009 - 00:19:25 ---A- . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\Drivers\amdppm.sys   [60928]
O58 - SDL:[MD5.D4121AE6D0C0E7E13AA221AA57EF2D49] - 11/03/2011 - 07:41:12 ---A- . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\Drivers\amdsata.sys   [107904]
O58 - SDL:[MD5.F67F933E79241ED32FF46A4F29B5120B] - 14/07/2009 - 02:52:20 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows -.) -- C:\Windows\System32\Drivers\amdsbs.sys   [194128]
O58 - SDL:[MD5.540DAF1CEA6094886D72126FD7C33048] - 11/03/2011 - 07:41:12 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\Drivers\amdxata.sys   [27008]
O58 - SDL:[MD5.89A69C3F2F319B43379399547526D952] - 21/11/2010 - 04:24:25 ---A- . (.Microsoft Corporation - AppID Driver.) -- C:\Windows\System32\Drivers\appid.sys   [61440]
O58 - SDL:[MD5.C484F8CEB1717C540242531DB7845C4E] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\Drivers\arc.sys   [87632]
O58 - SDL:[MD5.019AF6924AEFE7839F61C830227FE79C] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\Drivers\arcsas.sys   [97856]
O58 - SDL:[MD5.769765CE2CC62867468CEA93969B2242] - 14/07/2009 - 01:10:13 ---A- . (.Microsoft Corporation - MS Remote Access serial network driver.) -- C:\Windows\System32\Drivers\asyncmac.sys   [23040]
O58 - SDL:[MD5.02062C0B390B7729EDC9E69C680A6F3C] - 14/07/2009 - 02:52:21 ---A- . (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\Drivers\atapi.sys   [24128]
O58 - SDL:[MD5.059F00DEF82BF41E433B7ED465847726] - 05/08/2013 - 03:25:45 ---A- . (.Microsoft Corporation - ATAPI Driver Extension.) -- C:\Windows\System32\Drivers\ataport.sys   [155584]
O58 - SDL:[MD5.16FABE84916623D0607E4A975544032C] - 14/07/2009 - 01:06:43 ---A- . (.Microsoft Corporation - AVC Driver.) -- C:\Windows\System32\Drivers\avc.sys   [48768]
O58 - SDL:[MD5.155F536D6181508929F4FE177F4167CE] - 14/07/2009 - 01:06:40 ---A- . (.Microsoft Corporation - Microsoft WDM AVC Streaming filter driver.) -- C:\Windows\System32\Drivers\avcstrm.sys   [17664]
O58 - SDL:[MD5.27CA53E91543B800E16129BCEC3247AD] - 05/11/2013 - 21:55:48 ---A- . (.AVG Technologies CZ, s.r.o. - AVG File Vault Driver.) -- C:\Windows\System32\Drivers\avgdiska.sys   [150808]
O58 - SDL:[MD5.57250DDDE2523115D0927DBBA745F9FA] - 04/11/2013 - 21:52:42 ---A- . (.AVG Technologies CZ, s.r.o. - IDS Application Activity Monitor Driver..) -- C:\Windows\System32\Drivers\avgidsdrivera.sys   [240920]
O58 - SDL:[MD5.19AD820FC44AA71EDD1BC70B6E3F36B0] - 24/10/2013 - 22:25:58 ---A- . (.AVG Technologies CZ, s.r.o. - IDS Application Activity Monitor Helper Driver..) -- C:\Windows\System32\Drivers\avgidsha.sys   [194872]
O58 - SDL:[MD5.4BE8BB177B4C2BC3564845EF6D1073F1] - 31/10/2013 - 23:00:18 ---A- . (.AVG Technologies CZ, s.r.o. - AVG AVI Loader Driver.) -- C:\Windows\System32\Drivers\avgldx64.sys   [212280]
O58 - SDL:[MD5.D3772CC086FB81F76B5A82C85E1C7C8E] - 31/10/2013 - 22:49:46 ---A- . (.AVG Technologies CZ, s.r.o. - AVG Logging Driver.) -- C:\Windows\System32\Drivers\avgloga.sys   [294712]
O58 - SDL:[MD5.A0BCE5DC2C1F1EE5C1CA19A33375AC23] - 01/10/2013 - 00:52:08 ---A- . (.AVG Technologies CZ, s.r.o. - AVG Resident Shield Minifilter Driver.) -- C:\Windows\System32\Drivers\avgmfx64.sys   [123704]
O58 - SDL:[MD5.12FAAF366975B2BF2E93F1866C0E480D] - 10/09/2013 - 00:43:02 ---A- . (.AVG Technologies CZ, s.r.o. - AVG Anti-Rootkit Driver.) -- C:\Windows\System32\Drivers\avgrkx64.sys   [31544]
O58 - SDL:[MD5.4E364FABBD147F59E5D524C9EA86D772] - 01/08/2013 - 16:07:06 ---A- . (.AVG Technologies CZ, s.r.o. - AVG Network connection watcher.) -- C:\Windows\System32\Drivers\avgtdia.sys   [251192]
O58 - SDL:[MD5.B5ACE6968304A3900EEB1EBFD9622DF2] - 10/06/2009 - 21:34:23 ---A- . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver..) -- C:\Windows\System32\Drivers\b57nd60a.sys   [270848]
O58 - SDL:[MD5.F4DE2AE7A9E1BADAC70BC71EA2C17612] - 14/07/2009 - 02:52:21 ---A- . (.Microsoft Corporation - Battery Class Driver.) -- C:\Windows\System32\Drivers\battc.sys   [28240]
O58 - SDL:[MD5.16A47CE2DECC9B099349A5F840654746] - 14/07/2009 - 01:00:13 ---A- . (.Microsoft Corporation - BEEP Driver.) -- C:\Windows\System32\Drivers\beep.sys   [6656]
O58 - SDL:[MD5.61583EE3C3A17003C4ACD0475646B4D3] - 14/07/2009 - 00:35:59 ---A- . (.Microsoft Corporation - BLB Drive Driver.) -- C:\Windows\System32\Drivers\blbdrive.sys   [45056]
O58 - SDL:[MD5.6C02A83164F5CC0A262F4199F0871CF5] - 23/02/2011 - 05:55:04 ---A- . (.Microsoft Corporation - NT Lan Manager Datagram Receiver Driver.) -- C:\Windows\System32\Drivers\bowser.sys   [90624]
O58 - SDL:[MD5.F09EEE9EDC320B5E1501F749FDE686C8] - 10/06/2009 - 21:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\System32\Drivers\BrFiltLo.sys   [18432]
O58 - SDL:[MD5.B114D3098E9BDB8BEA8B053685831BE6] - 10/06/2009 - 21:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\System32\Drivers\BrFiltUp.sys   [8704]
O58 - SDL:[MD5.5C2F352A4E961D72518261257AAE204B] - 14/07/2009 - 02:01:48 ---A- . (.Microsoft Corporation - MAC Bridge Driver.) -- C:\Windows\System32\Drivers\bridge.sys   [95232]
O58 - SDL:[MD5.43BEA8D483BF1870F018E2D02E06A5BD] - 14/07/2009 - 02:19:07 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\Drivers\BrSerId.sys   [286720]
O58 - SDL:[MD5.A6ECA2151B08A09CACECA35C07F05B42] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\Drivers\BrSerWdm.sys   [47104]
O58 - SDL:[MD5.B79968002C277E869CF38BD22CD61524] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\Drivers\BrUsbMdm.sys   [14976]
O58 - SDL:[MD5.A87528880231C54E75EA7A44943B38BF] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\Drivers\BrUsbSer.sys   [14720]
O58 - SDL:[MD5.9DA669F11D1F894AB4EB69BF546A42E8] - 14/07/2009 - 01:06:52 ---A- . (.Microsoft Corporation - Bluetooth Communications Driver.) -- C:\Windows\System32\Drivers\bthmodem.sys   [72192]
O58 - SDL:[MD5.3E5B191307609F7514148C6832BB0842] - 10/06/2009 - 21:34:28 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\Drivers\bxvbda.sys   [468480]
O58 - SDL:[MD5.B8BD2BB284668C84865658C77574381A] - 14/07/2009 - 00:19:47 ---A- . (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\Drivers\cdfs.sys   [92160]
O58 - SDL:[MD5.F036CE71586E93D94DAB220D7BDF4416] - 21/11/2010 - 04:23:47 ---A- . (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\Drivers\cdrom.sys   [147456]
O58 - SDL:[MD5.D7CD5C4E1B71FA62050515314CFB52CF] - 14/07/2009 - 01:06:34 ---A- . (.Microsoft Corporation - Consumer IR Class Driver for eHome.) -- C:\Windows\System32\Drivers\circlass.sys   [45568]
O58 - SDL:[MD5.ACFAD0B512226C7A83C7CB09FD55A9AD] - 21/11/2010 - 04:24:24 ---A- . (.Microsoft Corporation - SCSI Class System Dll.) -- C:\Windows\System32\Drivers\Classpnp.sys   [179072]
O58 - SDL:[MD5.0840155D0BDDF1190F84A663C284BD33] - 14/07/2009 - 00:31:03 ---A- . (.Microsoft Corporation - Control Method Battery Driver.) -- C:\Windows\System32\Drivers\CmBatt.sys   [17664]
O58 - SDL:[MD5.E19D3F095812725D88F9001985B94EDD] - 14/07/2009 - 02:52:31 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\cmdide.sys   [17488]
O58 - SDL:[MD5.EBF28856F69CF094A902F884CF989706] - 04/07/2013 - 13:18:29 ---A- . (.Microsoft Corporation - Kernel Cryptography, Next Generation.) -- C:\Windows\System32\Drivers\cng.sys   [458712]
O58 - SDL:[MD5.102DE219C3F61415F964C88E9085AD14] - 14/07/2009 - 02:52:31 ---A- . (.Microsoft Corporation - Composite Battery Driver.) -- C:\Windows\System32\Drivers\compbatt.sys   [21584]
O58 - SDL:[MD5.03EDB043586CCEBA243D689BDDA370A8] - 21/11/2010 - 04:23:47 ---A- . (.Microsoft Corporation - Multi-Transport Composite Bus Enumerator.) -- C:\Windows\System32\Drivers\CompositeBus.sys   [38912]
O58 - SDL:[MD5.3E588B60EC061686BA05D33574A344C6] - 14/07/2009 - 02:47:48 ---A- . (.Microsoft Corporation - Crash Dump Driver.) -- C:\Windows\System32\Drivers\crashdmp.sys   [39504]
O58 - SDL:[MD5.1C827878A998C18847245FE1F34EE597] - 14/07/2009 - 02:47:48 ---A- . (.Microsoft Corporation - Disk Block Verification Filter Driver.) -- C:\Windows\System32\Drivers\crcdisk.sys   [24144]
O58 - SDL:[MD5.54DA3DFD29ED9F1619B6F53F3CE55E49] - 21/11/2010 - 04:24:41 ---A- . (.Microsoft Corporation - Windows Client Side Caching Driver.) -- C:\Windows\System32\Drivers\csc.sys   [514560]
O58 - SDL:[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - 21/11/2010 - 04:24:32 ---A- . (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\Drivers\dfsc.sys   [102400]
O58 - SDL:[MD5.13096B05847EC78F0977F2C0F79E9AB3] - 14/07/2009 - 00:37:18 ---A- . (.Microsoft Corporation - System Indexer/Cache Driver.) -- C:\Windows\System32\Drivers\discache.sys   [40448]
O58 - SDL:[MD5.9819EEE8B5EA3784EC4AF3B137A5244C] - 14/07/2009 - 02:47:48 ---A- . (.Microsoft Corporation - PnP Disk Driver.) -- C:\Windows\System32\Drivers\disk.sys   [73280]
O58 - SDL:[MD5.9BBD8B5855BC6578957F82341F9CDE5A] - 22/04/2011 - 23:15:29 ---A- . (.Microsoft Corporation - Crash Dump Disk Driver.) -- C:\Windows\System32\Drivers\Diskdump.sys   [27520]
O58 - SDL:[MD5.5DB085A8A6600BE6401F2B24EECB5415] - 21/11/2010 - 04:23:48 ---A- . (.Microsoft Corporation - Dynamic Memory.) -- C:\Windows\System32\Drivers\dmvsc.sys   [71168]
O58 - SDL:[MD5.E0D3CD5841E5C7BE7B94BA946AF1E498] - 04/10/2013 - 03:16:30 ---A- . (.Microsoft Corporation - Microsoft Trusted Audio Drivers.) -- C:\Windows\System32\Drivers\drmk.sys   [116736]
O58 - SDL:[MD5.9B19F34400D24DF84C858A421C205754] - 14/07/2009 - 01:06:16 ---A- . (.Microsoft Corporation - Microsoft Trusted Audio Drivers.) -- C:\Windows\System32\Drivers\drmkaud.sys   [5632]
O58 - SDL:[MD5.839B5FE3D48E9F35B22C21A3D5103F6C] - 14/07/2009 - 02:47:48 ---A- . (.Microsoft Corporation - ATAPI Dump Driver.) -- C:\Windows\System32\Drivers\Dumpata.sys   [28736]
O58 - SDL:[MD5.814DB88F2641691575A455CF25354098] - 14/07/2009 - 02:43:14 ---A- . (.Microsoft Corporation - Bitlocker Drive Encryption Crashdump Filter.) -- C:\Windows\System32\Drivers\dumpfve.sys   [55128]
O58 - SDL:[MD5.BF24D6F2ED97FE830BFD52B246F98E67] - 14/07/2009 - 00:38:28 ---A- . (.Microsoft Corporation - DirectX API Driver.) -- C:\Windows\System32\Drivers\dxapi.sys   [16896]
O58 - SDL:[MD5.FEDE0629ECB23650D48989517D4914DA] - 14/07/2009 - 00:38:28 ---A- . (.Microsoft Corporation - DirectX Graphics Driver.) -- C:\Windows\System32\Drivers\dxg.sys   [98816]
O58 - SDL:[MD5.88612F1CE3BF42256913BF6E61C70D52] - 01/08/2013 - 13:09:36 ---A- . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys   [983488]
O58 - SDL:[MD5.1F04CFB79DD5FB7694468CE3FB3DCC31] - 10/04/2013 - 07:01:54 ---A- . (.Microsoft Corporation - DirectX Graphics MMS.) -- C:\Windows\System32\Drivers\dxgmms1.sys   [265064]
O58 - SDL:[MD5.0E5DA5369A0FCAEA12456DD852545184] - 14/07/2009 - 02:47:48 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\System32\Drivers\elxstor.sys   [530496]
O58 - SDL:[MD5.34A3C54752046E79A126E15C51DB409B] - 14/07/2009 - 00:31:04 ---A- . (.Microsoft Corporation - Error Device Driver.) -- C:\Windows\System32\Drivers\errdev.sys   [9728]
O58 - SDL:[MD5.FD291A75ECAF197F07BD2040C2A7322A] - 17/07/2013 - 14:23:50 ---A- . (.Etron Technology Inc - Etron eXtensible Hub Driver..) -- C:\Windows\System32\Drivers\EtronHub3.sys   [65408]
O58 - SDL:[MD5.DDE9068F9BAC0210195F217AA39B9276] - 17/07/2013 - 14:23:46 ---A- . (.Etron Technology Inc - Etron eXtensible Host Controller Driver..) -- C:\Windows\System32\Drivers\EtronXHCI.sys   [94208]
O58 - SDL:[MD5.DC5D737F51BE844D8C82C695EB17372F] - 10/06/2009 - 21:34:33 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\Drivers\evbda.sys   [3286016]
O58 - SDL:[MD5.A510C654EC00C1E9BDD91EEB3A59823B] - 14/07/2009 - 00:23:29 ---A- . (.Microsoft Corporation - Microsoft Extended FAT File System.) -- C:\Windows\System32\Drivers\exfat.sys   [195072]
O58 - SDL:[MD5.0ADC83218B66A6DB380C330836F3E36D] - 14/07/2009 - 00:23:29 ---A- . (.Microsoft Corporation - Fast FAT File System Driver.) -- C:\Windows\System32\Drivers\fastfat.sys   [204800]
O58 - SDL:[MD5.D765D19CD8EF61F650C384F62FAC00AB] - 14/07/2009 - 01:00:54 ---A- . (.Microsoft Corporation - Floppy Disk Controller Driver.) -- C:\Windows\System32\Drivers\fdc.sys   [29696]
O58 - SDL:[MD5.655661BE46B5F5F3FD454E2C3095B930] - 14/07/2009 - 02:47:48 ---A- . (.Microsoft Corporation - FileInfo Filter Driver.) -- C:\Windows\System32\Drivers\fileinfo.sys   [70224]
O58 - SDL:[MD5.5F671AB5BC87EEA04EC38A6CD5962A47] - 14/07/2009 - 00:25:40 ---A- . (.Microsoft Corporation - File Trace Filter Driver.) -- C:\Windows\System32\Drivers\filetrace.sys   [34304]
O58 - SDL:[MD5.C172A0F53008EAEB8EA33FE10E177AF5] - 14/07/2009 - 01:00:54 ---A- . (.Microsoft Corporation - Floppy Driver.) -- C:\Windows\System32\Drivers\flpydisk.sys   [24576]
O58 - SDL:[MD5.DA6B67270FD9DB3697B20FCE94950741] - 21/11/2010 - 04:24:00 ---A- . (.Microsoft Corporation - Gestionnaire de filtres de système de fichiers Microsoft.) -- C:\Windows\System32\Drivers\fltMgr.sys   [289664]
O58 - SDL:[MD5.D43703496149971890703B4B1B723EAC] - 14/07/2009 - 02:47:49 ---A- . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\fsdepends.sys   [55376]
O58 - SDL:[MD5.6BD9295CC032DD3077C671FCCF579A7B] - 01/03/2012 - 07:46:16 ---A- . (.Microsoft Corporation - File System Recognizer Driver.) -- C:\Windows\System32\Drivers\fs_rec.sys   [23408]
O58 - SDL:[MD5.8F6322049018354F45F05A2FD2D4E5E0] - 24/01/2013 - 07:01:01 ---A- . (.Microsoft Corporation - BitLocker Drive Encryption Driver.) -- C:\Windows\System32\Drivers\fvevol.sys   [223752]
O58 - SDL:[MD5.41C67E4205C606A103DEC8651D0B6FE6] - 03/01/2013 - 07:00:42 ---A- . (.Microsoft Corporation - FWP/IPsec Kernel-Mode API.) -- C:\Windows\System32\Drivers\FWPKCLNT.SYS   [288088]
O58 - SDL:[MD5.8C778D335C9D272CFD3298AB02ABE3B6] - 14/07/2009 - 02:47:48 ---A- . (.Microsoft Corporation - Filtre AGPv3.0 générique Microsoft pour plateformes de processe.) -- C:\Windows\System32\Drivers\GAGP30KX.SYS   [65088]
O58 - SDL:[MD5.F2523EF6460FC42405B12248338AB2F0] - 10/06/2009 - 21:31:59 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\System32\Drivers\hcw85cir.sys   [31232]
O58 - SDL:[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - 21/11/2010 - 04:23:47 ---A- . (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\Drivers\hdaudbus.sys   [122368]
O58 - SDL:[MD5.975761C778E33CD22498059B91E7373A] - 21/11/2010 - 04:23:47 ---A- . (.Microsoft Corporation - High Definition Audio Function Driver.) -- C:\Windows\System32\Drivers\HdAudio.sys   [350208]
O58 - SDL:[MD5.772A1DEEDFDBC244183B5C805D1B7D85] - 17/07/2012 - 18:12:08 ---A- . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\Drivers\HECIx64.sys   [62784]
O58 - SDL:[MD5.78E86380454A7B10A5EB255DC44A355F] - 14/07/2009 - 00:31:06 ---A- . (.Microsoft Corporation - Hid Battery Driver.) -- C:\Windows\System32\Drivers\hidbatt.sys   [26624]
O58 - SDL:[MD5.7FD2A313F7AFE5C4DAB14798C48DD104] - 14/07/2009 - 01:06:52 ---A- . (.Microsoft Corporation - Pilote de miniport Bluetooth pour les périphériques HID.) -- C:\Windows\System32\Drivers\hidbth.sys   [100864]
O58 - SDL:[MD5.597C3699384E53CC59587ED50CCE5CA2] - 03/07/2013 - 05:05:05 ---A- . (.Microsoft Corporation - Hid Class Library.) -- C:\Windows\System32\Drivers\hidclass.sys   [76800]
O58 - SDL:[MD5.0A77D29F311B88CFAE3B13F9C1A73825] - 14/07/2009 - 01:06:23 ---A- . (.Microsoft Corporation - Infrared Miniport Driver for Input Devices.) -- C:\Windows\System32\Drivers\hidir.sys   [46592]
O58 - SDL:[MD5.856E76B3641746ABBC2946BED1372098] - 03/07/2013 - 05:05:04 ---A- . (.Microsoft Corporation - Hid Parsing Library.) -- C:\Windows\System32\Drivers\hidparse.sys   [32896]
O58 - SDL:[MD5.9592090A7E2B61CD582B612B6DF70536] - 21/11/2010 - 04:23:47 ---A- . (.Microsoft Corporation - USB Miniport Driver for Input Devices.) -- C:\Windows\System32\Drivers\hidusb.sys   [30208]
O58 - SDL:[MD5.39D2ABCD392F3D8A6DCE7B60AE7B8EFC] - 21/11/2010 - 04:23:47 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\System32\Drivers\HpSAMD.sys   [78720]
O58 - SDL:[MD5.0EA7DE1ACB728DD5A369FD742D6EEE28] - 21/11/2010 - 04:23:55 ---A- . (.Microsoft Corporation - HTTP Pile du protocole.) -- C:\Windows\System32\Drivers\http.sys   [753664]
O58 - SDL:[MD5.A5462BD6884960C9DC85ED49D34FF392] - 21/11/2010 - 04:24:24 ---A- . (.Microsoft Corporation - Hardware Policy Driver.) -- C:\Windows\System32\Drivers\hwpolicy.sys   [14720]
O58 - SDL:[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - 14/07/2009 - 00:19:57 ---A- . (.Microsoft Corporation - Pilote de port i8042.) -- C:\Windows\System32\Drivers\i8042prt.sys   [105472]
O58 - SDL:[MD5.25555186E4FBDF0E30A5DBFC9B9A73F9] - 21/11/2013 - 08:31:28 ---A- . (.Intel Corporation - Intel Rapid Storage Technology driver - x64.) -- C:\Windows\System32\Drivers\iaStorA.sys   [632168]
O58 - SDL:[MD5.10E79E366FA255318F5D1D0ED07F947D] - 21/11/2013 - 08:31:28 ---A- . (.Intel Corporation - Intel Rapid Storage Technology Filter driver - x64.) -- C:\Windows\System32\Drivers\iaStorF.sys   [28008]
O58 - SDL:[MD5.AAAF44DB3BD0B9D1FB6969B23ECC8366] - 11/03/2011 - 07:41:26 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\Drivers\iaStorV.sys   [410496]
O58 - SDL:[MD5.4EB6ABBF5D78E65A418BA71EF3ACE251] - 28/10/2013 - 14:06:26 ---A- . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\Drivers\igdkmd64.sys   [4195840]
O58 - SDL:[MD5.5C18831C61933628F5BB0EA2675B9D21] - 14/07/2009 - 02:48:04 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\Drivers\iirsp.sys   [44112]
O58 - SDL:[MD5.B375D8686E1BD2B79C0F00E3868A8C3B] - 28/10/2013 - 14:13:24 ---A- . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\Windows\System32\Drivers\IntcDAud.sys   [449496]
O58 - SDL:[MD5.F00F20E70C6EC3AA366910083A0518AA] - 14/07/2009 - 02:48:04 ---A- . (.Microsoft Corporation - Intel PCI IDE Driver.) -- C:\Windows\System32\Drivers\intelide.sys   [16960]
O58 - SDL:[MD5.ADA036632C664CAA754079041CF1F8C1] - 14/07/2009 - 00:19:25 ---A- . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\Drivers\intelppm.sys   [62464]
O58 - SDL:[MD5.C9F0E1BD74365A8771590E9008D22AB6] - 21/11/2010 - 04:24:27 ---A- . (.Microsoft Corporation - IP FILTER DRIVER.) -- C:\Windows\System32\Drivers\ipfltdrv.sys   [82944]
O58 - SDL:[MD5.0FC1AEA580957AA8817B8F305D18CA3A] - 21/11/2010 - 04:23:48 ---A- . (.Microsoft Corporation - PILOT IPMI WMI.) -- C:\Windows\System32\Drivers\IPMIDrv.sys   [78848]
O58 - SDL:[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - 14/07/2009 - 01:10:03 ---A- . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys   [116224]
O58 - SDL:[MD5.05360B1EA5A2ABF620D1D96EBD8BD8F1] - 14/07/2009 - 01:09:02 ---A- . (.Microsoft Corporation - IRDA Protocol Driver.) -- C:\Windows\System32\Drivers\irda.sys   [120320]
O58 - SDL:[MD5.3ABF5E7213EB28966D55D58B515D5CE9] - 14/07/2009 - 01:08:59 ---A- . (.Microsoft Corporation - Infra-Red Bus Enumerator.) -- C:\Windows\System32\Drivers\irenum.sys   [17920]
O58 - SDL:[MD5.2F7B28DC3E1183E5EB418DF55C204F38] - 14/07/2009 - 02:48:04 ---A- . (.Microsoft Corporation - Pilote de bus PNP ISA.) -- C:\Windows\System32\Drivers\isapnp.sys   [20544]
O58 - SDL:[MD5.68CF5515B176527523ED379915350AE3] - 18/07/2013 - 01:43:40 ---A- . (.Intel Corporation - Intel(R) USB 3.0 Host Controller Switch Driver.) -- C:\Windows\System32\Drivers\iusb3hcs.sys   [20464]
O58 - SDL:[MD5.EE522B28633D275BFE12EF70F4936E37] - 18/07/2013 - 01:43:40 ---A- . (.Intel Corporation - Intel(R) USB 3.0 Hub Driver.) -- C:\Windows\System32\Drivers\iusb3hub.sys   [358896]
O58 - SDL:[MD5.69AB13996A97F8168538F98FB832A86B] - 18/07/2013 - 01:43:40 ---A- . (.Intel Corporation - Intel(R) USB 3.0 eXtensible Host Controller Driver.) -- C:\Windows\System32\Drivers\iusb3xhc.sys   [795632]
O58 - SDL:[MD5.BC02336F1CBA7DCC7D1213BB588A68A5] - 14/07/2009 - 02:48:04 ---A- . (.Microsoft Corporation - Pilote de la classe Clavier.) -- C:\Windows\System32\Drivers\kbdclass.sys   [50768]
O58 - SDL:[MD5.0705EFF5B42A9DB58548EEC3B26BB484] - 21/11/2010 - 04:23:47 ---A- . (.Microsoft Corporation - Pilote de filtre clavier HID.) -- C:\Windows\System32\Drivers\kbdhid.sys   [33280]
O58 - SDL:[MD5.24FBF5CC5C04150073C315A7C83521EE] - 21/11/2010 - 04:24:16 ---A- . (.Microsoft Corporation - Kernel CSA Library.) -- C:\Windows\System32\Drivers\ks.sys   [243712]
O58 - SDL:[MD5.8F489706472F7E9A06BAAA198703FA64] - 25/09/2013 - 03:26:40 ---A- . (.Microsoft Corporation - Kernel Security Support Provider Interface.) -- C:\Windows\System32\Drivers\ksecdd.sys   [95680]
O58 - SDL:[MD5.868A2CAAB12EFC7A021682BCA0EEC54C] - 25/09/2013 - 03:26:40 ---A- . (.Microsoft Corporation - Kernel Security Support Provider Interface Packages.) -- C:\Windows\System32\Drivers\ksecpkg.sys   [154560]
O58 - SDL:[MD5.6869281E78CB31A43E969F06B57347C4] - 14/07/2009 - 01:00:19 ---A- . (.Microsoft Corporation - Kernel Streaming WOW Thunk Service.) -- C:\Windows\System32\Drivers\ksthunk.sys   [20992]
O58 - SDL:[MD5.7867CACBF7B23AD04F5D18657BF15FA2] - 18/07/2013 - 06:54:52 ---A- . (.Qualcomm Atheros Co., Ltd. - Qualcomm Atheros Ar81xx series PCI-E Gigabit Ethernet Controlle.) -- C:\Windows\System32\Drivers\L1C62x64.sys   [129224]
O58 - SDL:[MD5.1538831CF8AD2979A04C423779465827] - 14/07/2009 - 01:08:51 ---A- . (.Microsoft Corporation - Link-Layer Topology Mapper I/O Driver.) -- C:\Windows\System32\Drivers\lltdio.sys   [60928]
O58 - SDL:[MD5.1A93E54EB0ECE102495A51266DCDB6A6] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_fc.sys   [114752]
O58 - SDL:[MD5.1047184A9FDC8BDBFF857175875EE810] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas.sys   [106560]
O58 - SDL:[MD5.30F5C0DE1EE8B5BC9306C1F0E4A75F93] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas2.sys   [65600]
O58 - SDL:[MD5.0504EACAFF0D3C8AED161C4B0D369D4A] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_scsi.sys   [115776]
O58 - SDL:[MD5.43D0F98E1D56CCDDB0D5254CFF7B356E] - 14/07/2009 - 00:26:13 ---A- . (.Microsoft Corporation - Pilote de filtre de virtualisation de fichier LUA.) -- C:\Windows\System32\Drivers\luafv.sys   [113152]
O58 - SDL:[MD5.024DA28053D57E9E32BEE52600576BBB] - 23/09/2005 - 22:18:34 ---A- . (.Pinnacle Systems GmbH - Pinnacle Marvin Discrete Bus Enumerator.) -- C:\Windows\System32\Drivers\MarvinBus64.sys   [261120]
O58 - SDL:[MD5.3C9F072F9DCA856B9FB7A20CBD4281AC] - 14/07/2009 - 01:01:06 ---A- . (.Microsoft Corporation - Medium changer class driver.) -- C:\Windows\System32\Drivers\mcd.sys   [22016]
O58 - SDL:[MD5.A55805F747C6EDB6A9080D7C633BD0F4] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for.) -- C:\Windows\System32\Drivers\megasas.sys   [35392]
O58 - SDL:[MD5.BAF74CE0072480C3B6B7C13B2A94D6B3] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\Drivers\MegaSR.sys   [284736]
O58 - SDL:[MD5.800BA92F7010378B09F9ED9270F07137] - 14/07/2009 - 01:10:48 ---A- . (.Microsoft Corporation - Pilote de périphérique modem.) -- C:\Windows\System32\Drivers\modem.sys   [40448]
O58 - SDL:[MD5.B03D591DC7DA45ECE20B3B467E6AADAA] - 14/07/2009 - 00:38:52 ---A- . (.Microsoft Corporation - Monitor Driver.) -- C:\Windows\System32\Drivers\monitor.sys   [30208]
O58 - SDL:[MD5.7D27EA49F3C1F687D357E77A470AEA99] - 14/07/2009 - 02:48:27 ---A- . (.Microsoft Corporation - Pilote de la classe Souris.) -- C:\Windows\System32\Drivers\mouclass.sys   [49216]
O58 - SDL:[MD5.D3BF052C40B0C4166D9FD86A4288C1E6] - 14/07/2009 - 01:00:20 ---A- . (.Microsoft Corporation - Pilote de filtre souris HID.) -- C:\Windows\System32\Drivers\mouhid.sys   [31232]
O58 - SDL:[MD5.32E7A3D591D671A6DF2DB515A5CBE0FA] - 21/11/2010 - 04:23:53 ---A- . (.Microsoft Corporation - Gestionnaire des points de montage.) -- C:\Windows\System32\Drivers\mountmgr.sys   [94592]
O58 - SDL:[MD5.A44B420D30BD56E145D6A2BC8768EC58] - 21/11/2010 - 04:23:47 ---A- . (.Microsoft Corporation - Pilote du bus de prise en charge des chemins d’accès multiples.) -- C:\Windows\System32\Drivers\mpio.sys   [155008]
O58 - SDL:[MD5.6C38C9E45AE0EA2FA5E551F2ED5E978F] - 14/07/2009 - 01:08:25 ---A- . (.Microsoft Corporation - Microsoft Protection Service Driver.) -- C:\Windows\System32\Drivers\mpsdrv.sys   [77312]
O58 - SDL:[MD5.1A4F75E63C9FB84B85DFFC6B63FD5404] - 04/07/2013 - 11:11:35 ---A- . (.Microsoft Corporation - Windows NT WebDav Minirdr.) -- C:\Windows\System32\Drivers\mrxdav.sys   [140800]
O58 - SDL:[MD5.A5D9106A73DC88564C825D317CAC68AC] - 27/04/2011 - 03:40:40 ---A- . (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\Windows\System32\Drivers\mrxsmb.sys   [158208]
O58 - SDL:[MD5.D711B3C1D5F42C0C2415687BE09FC163] - 09/07/2011 - 03:46:28 ---A- . (.Microsoft Corporation - Longhorn SMB Downlevel SubRdr.) -- C:\Windows\System32\Drivers\mrxsmb10.sys   [288768]
O58 - SDL:[MD5.9423E9D355C8D303E76B8CFBD8A5C30C] - 27/04/2011 - 03:39:37 ---A- . (.Microsoft Corporation - Longhorn SMB 2.0 Redirector.) -- C:\Windows\System32\Drivers\mrxsmb20.sys   [128000]
O58 - SDL:[MD5.C25F0BAFA182CBCA2DD3C851C2E75796] - 21/11/2010 - 04:23:47 ---A- . (.Microsoft Corporation - MS AHCI 1.0 Standard Driver.) -- C:\Windows\System32\Drivers\msahci.sys   [31104]
O58 - SDL:[MD5.DB801A638D011B9633829EB6F663C900] - 21/11/2010 - 04:23:47 ---A- . (.Microsoft Corporation - Module spécifique de périphériques Microsoft.) -- C:\Windows\System32\Drivers\msdsm.sys   [140672]
O58 - SDL:[MD5.72949A24D37A20A54B3D4D3DADBB55E9] - 14/07/2009 - 01:06:42 ---A- . (.Microsoft Corporation - Microsoft DV Camera and VCR Driver.) -- C:\Windows\System32\Drivers\msdv.sys   [61440]
O58 - SDL:[MD5.AA3FB40E17CE1388FA1BEDAB50EA8F96] - 14/07/2009 - 00:19:47 ---A- . (.Microsoft Corporation - Mailslot driver.) -- C:\Windows\System32\Drivers\msfs.sys   [26112]
O58 - SDL:[MD5.F9D215A46A8B9753F61767FA72A20326] - 14/07/2009 - 01:06:24 ---A- . (.Microsoft Corporation - Pass-through HID to KMDF Filter Driver.) -- C:\Windows\System32\Drivers\mshidkmdf.sys   [8192]
O58 - SDL:[MD5.D916874BBD4F8B07BFB7FA9B3CCAE29D] - 14/07/2009 - 02:48:27 ---A- . (.Microsoft Corporation - ISA Driver.) -- C:\Windows\System32\Drivers\msisadrv.sys   [15424]
O58 - SDL:[MD5.D931D7309DEB2317035B07C9F9E6B0BD] - 21/11/2010 - 04:23:48 ---A- . (.Microsoft Corporation - Microsoft iSCSI Initiator Driver.) -- C:\Windows\System32\Drivers\msiscsi.sys   [273792]
O58 - SDL:[MD5.49CCF2C4FEA34FFAD8B1B59D49439366] - 14/07/2009 - 01:00:18 ---A- . (.Microsoft Corporation - MS KS Server.) -- C:\Windows\System32\Drivers\mskssrv.sys   [11136]
O58 - SDL:[MD5.BDD71ACE35A232104DDD349EE70E1AB3] - 14/07/2009 - 01:00:17 ---A- . (.Microsoft Corporation - MS Proxy Clock.) -- C:\Windows\System32\Drivers\mspclock.sys   [7168]
O58 - SDL:[MD5.4ED981241DB27C3383D72092B618A1D0] - 14/07/2009 - 01:00:17 ---A- . (.Microsoft Corporation - MS Proxy Quality Manager.) -- C:\Windows\System32\Drivers\mspqm.sys   [6784]
O58 - SDL:[MD5.759A9EEB0FA9ED79DA1FB7D4EF78866D] - 21/11/2010 - 04:24:15 ---A- . (.Microsoft Corporation - Kernel Remote Procedure Call Provider.) -- C:\Windows\System32\Drivers\msrpc.sys   [366976]
O58 - SDL:[MD5.0EED230E37515A0EAEE3C2E1BC97B288] - 14/07/2009 - 02:48:27 ---A- . (.Microsoft Corporation - System Management BIOS Driver.) -- C:\Windows\System32\Drivers\mssmbios.sys   [32320]
O58 - SDL:[MD5.2E66F9ECB30B4221A318C92AC2250779] - 14/07/2009 - 01:00:17 ---A- . (.Microsoft Corporation - WDM Tee/Communication Transform Filter.) -- C:\Windows\System32\Drivers\mstee.sys   [8064]
O58 - SDL:[MD5.7EA404308934E675BFFDE8EDF0757BCD] - 14/07/2009 - 01:02:08 ---A- . (.Microsoft Corporation - Pilote HID multipoint Microsoft.) -- C:\Windows\System32\Drivers\MTConfig.sys   [15360]
O58 - SDL:[MD5.F9A18612FD3526FE473C1BDA678D61C8] - 14/07/2009 - 02:48:27 ---A- . (.Microsoft Corporation - Multiple UNC Provider Driver.) -- C:\Windows\System32\Drivers\mup.sys   [60496]
O58 - SDL:[MD5.760E38053BF56E501D562B70AD796B88] - 22/08/2012 - 19:12:40 ---A- . (.Microsoft Corporation - Pilote NDIS 6.20.) -- C:\Windows\System32\Drivers\ndis.sys   [950128]
O58 - SDL:[MD5.9F9A1F53AAD7DA4D6FEF5BB73AB811AC] - 14/07/2009 - 01:08:13 ---A- . (.Microsoft Corporation - NDIS Packet Capture Filter Driver.) -- C:\Windows\System32\Drivers\ndiscap.sys   [35328]
O58 - SDL:[MD5.30639C932D9FEF22B31268FE25A1B6E5] - 14/07/2009 - 01:10:00 ---A- . (.Microsoft Corporation - NDIS 3.0 connection wrapper driver.) -- C:\Windows\System32\Drivers\ndistapi.sys   [24064]
O58 - SDL:[MD5.136185F9FB2CC61E573E676AA5402356] - 21/11/2010 - 04:24:32 ---A- . (.Microsoft Corporation - Pilote d’E/S du mode utilisateur NDIS.) -- C:\Windows\System32\Drivers\ndisuio.sys   [56832]
O58 - SDL:[MD5.53F7305169863F0A2BDDC49E116C2E11] - 21/11/2010 - 04:24:08 ---A- . (.Microsoft Corporation - MS PPP Framing Driver (Strong Encryption).) -- C:\Windows\System32\Drivers\ndiswan.sys   [164352]
O58 - SDL:[MD5.015C0D8E0E0421B4CFD48CFFE2825879] - 21/11/2010 - 04:24:14 ---A- . (.Microsoft Corporation - NDIS Proxy.) -- C:\Windows\System32\Drivers\ndproxy.sys   [57856]
O58 - SDL:[MD5.86743D9F5D2B1048062B14B1D84501C4] - 14/07/2009 - 01:09:26 ---A- . (.Microsoft Corporation - NetBIOS interface driver.) -- C:\Windows\System32\Drivers\netbios.sys   [44544]
O58 - SDL:[MD5.09594D1089C523423B32A4229263F068] - 21/11/2010 - 04:23:51 ---A- . (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\Drivers\netbt.sys   [261632]
O58 - SDL:[MD5.3555BA97171CD153118F73FDCCC8BFDE] - 26/11/2013 - 12:40:00 ---A- . (.Microsoft Corporation - Network I/O Subsystem.) -- C:\Windows\System32\Drivers\netio.sys   [376768]
O58 - SDL:[MD5.77889813BE4D166CDAB78DDBA990DA92] - 14/07/2009 - 02:48:26 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\Drivers\nfrd960.sys   [51264]
O58 - SDL:[MD5.1E4C4AB5C9B8DD13179BBDC75A2A01F7] - 14/07/2009 - 00:19:48 ---A- . (.Microsoft Corporation - NPFS Driver.) -- C:\Windows\System32\Drivers\npfs.sys   [44032]
O58 - SDL:[MD5.E7F5AE18AF4168178A642A9247C63001] - 14/07/2009 - 00:21:02 ---A- . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys   [24576]
O58 - SDL:[MD5.B98F8C6E31CD07B2E6F71F7F648E38C0] - 12/04/2013 - 15:45:08 ---A- . (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\Windows\System32\Drivers\ntfs.sys   [1656680]
O58 - SDL:[MD5.9899284589F75FA8724FF3D16AED75C1] - 14/07/2009 - 00:19:38 ---A- . (.Microsoft Corporation - NULL Driver.) -- C:\Windows\System32\Drivers\null.sys   [6144]
O58 - SDL:[MD5.0A92CB65770442ED0DC44834632F66AD] - 11/03/2011 - 07:41:34 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\Drivers\nvraid.sys   [148352]
O58 - SDL:[MD5.DAB0E87525C10052BF65F06152F37E4A] - 11/03/2011 - 07:41:34 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\Drivers\nvstor.sys   [166272]
O58 - SDL:[MD5.270D7CD42D6E3979F6DD0146650F0E05] - 14/07/2009 - 02:48:26 ---A- . (.Microsoft Corporation - Filtre AGP NForce NT.) -- C:\Windows\System32\Drivers\NV_AGP.SYS   [122960]
O58 - SDL:[MD5.1EA3749C4114DB3E3161156FFFFA6B33] - 14/07/2009 - 01:07:23 ---A- . (.Microsoft Corporation - Pilote de miniport WiFi natif.) -- C:\Windows\System32\Drivers\nwifi.sys   [318976]
O58 - SDL:[MD5.3589478E4B22CE21B41FA1BFC0B8B8A0] - 14/07/2009 - 01:06:45 ---A- . (.Microsoft Corporation - 1394 OpenHCI Port Driver.) -- C:\Windows\System32\Drivers\ohci1394.sys   [72832]
O58 - SDL:[MD5.0557CF5A2556BD58E26384169D72438D] - 21/11/2010 - 04:24:08 ---A- . (.Microsoft Corporation - Planificateur de paquets QoS.) -- C:\Windows\System32\Drivers\pacer.sys   [131584]
O58 - SDL:[MD5.0086431C29C35BE1DBC43F52CC273887] - 14/07/2009 - 01:00:41 ---A- . (.Microsoft Corporation - Pilote de port parallèle.) -- C:\Windows\System32\Drivers\parport.sys   [97280]
O58 - SDL:[MD5.E9766131EEADE40A27DC27D2D68FBA9C] - 17/03/2012 - 08:58:57 ---A- . (.Microsoft Corporation - Partition Management Driver.) -- C:\Windows\System32\Drivers\partmgr.sys   [75120]
O58 - SDL:[MD5.94575C0571D1462A0F70BDE6BD6EE6B3] - 21/11/2010 - 04:23:47 ---A- . (.Microsoft Corporation - Énumérateur Plug-and-Play PCI pour NT.) -- C:\Windows\System32\Drivers\pci.sys   [184704]
O58 - SDL:[MD5.B5B8B5EF2E5CB34DF8DCF8831E3534FA] - 14/07/2009 - 02:45:45 ---A- . (.Microsoft Corporation - Generic PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\pciide.sys   [12352]
O58 - SDL:[MD5.144497DAA145BA0F7BE896064146C058] - 14/07/2009 - 02:45:46 ---A- . (.Microsoft Corporation - PCI IDE Bus Driver Extension.) -- C:\Windows\System32\Drivers\pciidex.sys   [48720]
O58 - SDL:[MD5.B2E81D4E87CE48589F98CB8C05B01F2F] - 14/07/2009 - 02:45:45 ---A- . (.Microsoft Corporation - Pilote de bus PCMCIA.) -- C:\Windows\System32\Drivers\pcmcia.sys   [220752]
O58 - SDL:[MD5.D6B9C2E1A11A3A4B26A182FFEF18F603] - 14/07/2009 - 02:45:45 ---A- . (.Microsoft Corporation - Performance Counters for Windows Driver.) -- C:\Windows\System32\Drivers\pcw.sys   [50768]
O58 - SDL:[MD5.68769C3356B3BE5D1C732C97B9A80D6E] - 14/07/2009 - 02:01:19 ---A- . (.Microsoft Corporation - Protected Environment Authentication and Authorization Export D.) -- C:\Windows\System32\Drivers\PEAuth.sys   [651264]
O58 - SDL:[MD5.1E0B4CBBA91C6B041A14ECC2186F7E24] - 04/10/2013 - 02:36:04 ---A- . (.Microsoft Corporation - Port Class (Class Driver for Port/Miniport Devices).) -- C:\Windows\System32\Drivers\portcls.sys   [230400]
O58 - SDL:[MD5.0D922E23C041EFB1C3FAC2A6F943C9BF] - 14/07/2009 - 00:19:25 ---A- . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\Drivers\processr.sys   [60416]
O58 - SDL:[MD5.A53A15A11EBFD21077463EE2C7AFEEF0] - 14/07/2009 - 02:45:46 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\Drivers\ql2300.sys   [1524816]
O58 - SDL:[MD5.4F6D12B51DE1AAEFF7DC58C4D75423C8] - 14/07/2009 - 02:45:45 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\Drivers\ql40xx.sys   [128592]
O58 - SDL:[MD5.76707BB36430888D9CE9D705398ADB6C] - 14/07/2009 - 01:09:48 ---A- . (.Microsoft Corporation - Pilote du support de Microsoft Quality Windows Audio Video Expe.) -- C:\Windows\System32\Drivers\qwavedrv.sys   [46592]
O58 - SDL:[MD5.5A0DA8AD5762FA2D91678A8A01311704] - 14/07/2009 - 01:10:09 ---A- . (.Microsoft Corporation - RAS Automatic Connection Driver.) -- C:\Windows\System32\Drivers\rasacd.sys   [14848]
O58 - SDL:[MD5.471815800AE33E6F1C32FB1B97C490CA] - 21/11/2010 - 04:24:33 ---A- . (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\Drivers\rasl2tp.sys   [129536]
O58 - SDL:[MD5.855C9B1CD4756C5E9A2AA58A15F58C25] - 14/07/2009 - 01:10:17 ---A- . (.Microsoft Corporation - RAS PPPoE mini-port/call-manager driver.) -- C:\Windows\System32\Drivers\raspppoe.sys   [92672]
O58 - SDL:[MD5.F92A2C41117A11A00BE01CA01A7FCDE9] - 21/11/2010 - 04:24:33 ---A- . (.Microsoft Corporation - Peer-to-Peer Tunneling Protocol.) -- C:\Windows\System32\Drivers\raspptp.sys   [111104]
O58 - SDL:[MD5.E8B1E447B008D07FF47D016C2B0EEECB] - 14/07/2009 - 01:10:25 ---A- . (.Microsoft Corporation - RAS SSTP Miniport Call Manager.) -- C:\Windows\System32\Drivers\rassstp.sys   [83968]
O58 - SDL:[MD5.77F665941019A1594D887A74F301FA2F] - 21/11/2010 - 04:24:08 ---A- . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire tampon de lecteur red.) -- C:\Windows\System32\Drivers\rdbss.sys   [309248]
O58 - SDL:[MD5.302DA2A0539F2CF54D7C6CC30C1F2D8D] - 14/07/2009 - 01:17:46 ---A- . (.Microsoft Corporation - Microsoft RDP Bus Device driver.) -- C:\Windows\System32\Drivers\rdpbus.sys   [24064]
O58 - SDL:[MD5.CEA6CC257FC9B7715F1C2B4849286D24] - 14/07/2009 - 01:16:34 ---A- . (.Microsoft Corporation - RDP Miniport.) -- C:\Windows\System32\Drivers\RDPCDD.sys   [7680]
O58 - SDL:[MD5.1B6163C503398B23FF8B939C67747683] - 21/11/2010 - 04:25:07 ---A- . (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\Windows\System32\Drivers\rdpdr.sys   [165888]
O58 - SDL:[MD5.BB5971A4F00659529A5C44831AF22365] - 14/07/2009 - 01:16:34 ---A- . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\System32\Drivers\RDPENCDD.sys   [7680]
O58 - SDL:[MD5.216F3FA57533D98E1F74DED70113177A] - 14/07/2009 - 01:16:35 ---A- . (.Microsoft Corporation - RDP Reflector Driver Miniport.) -- C:\Windows\System32\Drivers\RDPREFMP.sys   [8192]
O58 - SDL:[MD5.70CBA1A0C98600A2AA1863479B35CB90] - 21/11/2010 - 04:24:43 ---A- . (.Microsoft Corporation - Microsoft RDP Video Miniport driver.) -- C:\Windows\System32\Drivers\rdpvideominiport.sys   [20992]
O58 - SDL:[MD5.E61608AA35E98999AF9AAEEEA6114B0A] - 28/04/2012 - 04:55:21 ---A- . (.Microsoft Corporation - Pilote de pile RDP Terminal.) -- C:\Windows\System32\Drivers\rdpwd.sys   [210944]
O58 - SDL:[MD5.34ED295FA0121C241BFEF24764FC4520] - 21/11/2010 - 04:24:33 ---A- . (.Microsoft Corporation - ReadyBoost Driver.) -- C:\Windows\System32\Drivers\rdyboost.sys   [213888]
O58 - SDL:[MD5.CAF88D6573D21CD2AA27001DDBFDC74D] - 21/11/2010 - 04:24:15 ---A- . (.Microsoft Corporation - Reliable Multicast Transport.) -- C:\Windows\System32\Drivers\rmcast.sys   [146432]
O58 - SDL:[MD5.0E01641D96889BDEB22DE12D30575B08] - 04/07/2012 - 21:26:03 ---A- . (.Microsoft Corporation - Remote NDIS Miniport.) -- C:\Windows\System32\Drivers\RNDISMP.sys   [41472]
O58 - SDL:[MD5.388D3DD1A6457280F3BADBA9F3ACD6B1] - 14/07/2009 - 01:10:47 ---A- . (.Microsoft Corporation - Legacy Non-Pnp Modem Device Driver.) -- C:\Windows\System32\Drivers\rootmdm.sys   [11264]
O58 - SDL:[MD5.DDC86E4F8E7456261E637E3552E804FF] - 14/07/2009 - 01:08:51 ---A- . (.Microsoft Corporation - Link-Layer Topology Responder Driver for NDIS 6.) -- C:\Windows\System32\Drivers\rspndr.sys   [76800]
O58 - SDL:[MD5.AC03AF3329579FFFB455AA2DAABBE22B] - 21/11/2010 - 04:23:47 ---A- . (.Microsoft Corporation - SBP-2 Protocol Driver.) -- C:\Windows\System32\Drivers\sbp2port.sys   [103808]
O58 - SDL:[MD5.253F38D0D7074C02FF8DEB9836C97D2B] - 21/11/2010 - 04:24:09 ---A- . (.Microsoft Corporation - Pilote de filtre de lecteur de carte à puce Microsoft.) -- C:\Windows\System32\Drivers\scfilter.sys   [29696]
O58 - SDL:[MD5.1B1E264203D4EF9D3DA1987AD70355AB] - 21/11/2010 - 04:24:00 ---A- . (.Microsoft Corporation - SCSI Port Driver.) -- C:\Windows\System32\Drivers\scsiport.sys   [171392]
O58 - SDL:[MD5.3EA8A16169C26AFBEB544E0E48421186] - 10/06/2009 - 21:37:19 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\System32\Drivers\secdrv.sys   [23040]
O58 - SDL:[MD5.CB624C0035412AF0DEBEC78C41F5CA1B] - 14/07/2009 - 01:00:33 ---A- . (.Microsoft Corporation - Serial Port Enumerator.) -- C:\Windows\System32\Drivers\serenum.sys   [23552]
O58 - SDL:[MD5.C1D8E28B2C2ADFAEC4BA89E9FDA69BD6] - 14/07/2009 - 01:00:40 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\Drivers\serial.sys   [94208]
O58 - SDL:[MD5.1C545A7D0691CC4A027396535691C3E3] - 14/07/2009 - 01:00:20 ---A- . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys   [26624]
O58 - SDL:[MD5.A554811BCD09279536440C964AE35BBF] - 14/07/2009 - 01:01:01 ---A- . (.Microsoft Corporation - Small Form Factor Disk Driver.) -- C:\Windows\System32\Drivers\sffdisk.sys   [14336]
O58 - SDL:[MD5.FF414F0BAEFEBA59BC6C04B3DB0B87BF] - 14/07/2009 - 01:01:03 ---A- . (.Microsoft Corporation - Small Form Factor MMC Protocol Driver.) -- C:\Windows\System32\Drivers\sffp_mmc.sys   [13824]
O58 - SDL:[MD5.DD85B78243A19B59F0637DCF284DA63C] - 21/11/2010 - 04:23:47 ---A- . (.Microsoft Corporation - Small Form Factor SD Protocol Driver.) -- C:\Windows\System32\Drivers\sffp_sd.sys   [14336]
O58 - SDL:[MD5.A9D601643A1647211A1EE2EC4E433FF4] - 14/07/2009 - 01:01:02 ---A- . (.Microsoft Corporation - SCSI Floppy Driver.) -- C:\Windows\System32\Drivers\sfloppy.sys   [16896]
O58 - SDL:[MD5.843CAF1E5FDE1FFD5FF768F23A51E2E1] - 14/07/2009 - 02:45:45 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid2.sys   [43584]
O58 - SDL:[MD5.6A6C106D42E9FFFF8B9FCB4F754F6DA4] - 14/07/2009 - 02:45:46 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid4.sys   [80464]
O58 - SDL:[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - 14/07/2009 - 01:09:09 ---A- . (.Microsoft Corporation - SMB Transport driver.) -- C:\Windows\System32\Drivers\smb.sys   [93184]
O58 - SDL:[MD5.A80348BA03E96C70852959655CA3E084] - 14/07/2009 - 01:00:35 ---A- . (.Microsoft Corporation - Smart Card Driver Library.) -- C:\Windows\System32\Drivers\smclib.sys   [20992]
O58 - SDL:[MD5.B9E31E5CACDFE584F34F730A677803F9] - 14/07/2009 - 02:45:55 ---A- . (.Microsoft Corporation - loader for security processor.) -- C:\Windows\System32\Drivers\spldr.sys   [19008]
O58 - SDL:[MD5.FFF95479C7AB1550F0750A5D01744211] - 10/06/2009 - 21:48:43 ---A- . (.Microsoft Corporation - security processor.) -- C:\Windows\System32\Drivers\spsys.sys   [426496]
O58 - SDL:[MD5.441FBA48BFF01FDB9D5969EBC1838F0B] - 29/04/2011 - 04:06:10 ---A- . (.Microsoft Corporation - Server driver.) -- C:\Windows\System32\Drivers\srv.sys   [467456]
O58 - SDL:[MD5.B4ADEBBF5E3677CCE9651E0F01F7CC28] - 29/04/2011 - 04:05:49 ---A- . (.Microsoft Corporation - Smb 2.0 Server driver.) -- C:\Windows\System32\Drivers\srv2.sys   [410112]
O58 - SDL:[MD5.27E461F0BE5BFF5FC737328F749538C3] - 29/04/2011 - 04:05:37 ---A- . (.Microsoft Corporation - Server Network driver.) -- C:\Windows\System32\Drivers\srvnet.sys   [168448]
O58 - SDL:[MD5.F3817967ED533D08327DC73BC4D5542A] - 14/07/2009 - 02:45:55 ---A- . (.Promise Technology - Promise  SuperTrak EX Series Driver for Windows.) -- C:\Windows\System32\Drivers\stexstor.sys   [24656]
O58 - SDL:[MD5.19CB37AC38B802BE9C441D094521A29A] - 11/03/2011 - 07:41:37 ---A- . (.Microsoft Corporation - Microsoft Storage Port Driver.) -- C:\Windows\System32\Drivers\storport.sys   [189824]
O58 - SDL:[MD5.D34E4943D5AC096C8EDEEBFD80D76E23] - 21/11/2010 - 04:23:48 ---A- . (.Microsoft Corporation - Storage VSC Driver.) -- C:\Windows\System32\Drivers\storvsc.sys   [34688]
O58 - SDL:[MD5.001CC10FA5E71AE1119115E126C8750D] - 14/07/2009 - 01:06:18 ---A- . (.Microsoft Corporation - WDM CODEC Class Device Driver 2.0.) -- C:\Windows\System32\Drivers\stream.sys   [68864]
O58 - SDL:[MD5.D01EC09B6711A5F8E7E6564A4D0FBC90] - 14/07/2009 - 02:45:55 ---A- . (.Microsoft Corporation - Plug and Play Software Device Enumerator.) -- C:\Windows\System32\Drivers\swenum.sys   [12496]
O58 - SDL:[MD5.C3A39C4079305480972D29C44B868C78] - 21/11/2010 - 04:23:48 ---A- . (.Microsoft Corporation - Synthetic 3D SMT Support Driver.) -- C:\Windows\System32\Drivers\Synth3dVsc.sys   [88960]
O58 - SDL:[MD5.6E316C01CBA8B785FE495F5CC4F48C6F] - 14/07/2009 - 01:01:04 ---A- . (.Microsoft Corporation - SCSI Tape Class Driver.) -- C:\Windows\System32\Drivers\tape.sys   [29184]
O58 - SDL:[MD5.40AF23633D197905F03AB5628C558C51] - 08/09/2013 - 03:30:37 ---A- . (.Microsoft Corporation - Pilote TCP/IP.) -- C:\Windows\System32\Drivers\tcpip.sys   [1903552]
O58 - SDL:[MD5.1B16D0BD9841794A6E0CDE0CEF744ABC] - 03/10/2012 - 17:07:26 ---A- . (.Microsoft Corporation - TCP/IP Registry Compatibility Driver.) -- C:\Windows\System32\Drivers\tcpipreg.sys   [45568]
O58 - SDL:[MD5.6F020A220388ECA0AB6062DC27BD16B6] - 21/11/2010 - 04:24:01 ---A- . (.Microsoft Corporation - TDI Wrapper.) -- C:\Windows\System32\Drivers\tdi.sys   [26624]
O58 - SDL:[MD5.3371D21011695B16333A3934340C4E7C] - 14/07/2009 - 01:16:32 ---A- . (.Microsoft Corporation - Named Pipe Transport Driver.) -- C:\Windows\System32\Drivers\tdpipe.sys   [15872]
O58 - SDL:[MD5.51C5ECEB1CDEE2468A1748BE550CFBC8] - 17/02/2012 - 05:57:32 ---A- . (.Microsoft Corporation - TCP Transport Driver.) -- C:\Windows\System32\Drivers\tdtcp.sys   [23552]
O58 - SDL:[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - 21/11/2010 - 04:24:32 ---A- . (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\Drivers\tdx.sys   [119296]
O58 - SDL:[MD5.561E7E1F06895D78DE991E01DD0FB6E5] - 21/11/2010 - 04:23:47 ---A- . (.Microsoft Corporation - Remote Desktop Server Driver.) -- C:\Windows\System32\Drivers\termdd.sys   [63360]
O58 - SDL:[MD5.2B5BDFF688EC9871D7EC5837833374E9] - 21/11/2010 - 04:23:48 ---A- . (.Microsoft Corporation - Terminal Server Input Driver.) -- C:\Windows\System32\Drivers\terminpt.sys   [34816]
O58 - SDL:[MD5.4CE278FC9671BA81A138D70823FCAA09] - 15/06/2013 - 05:32:16 ---A- . (.Microsoft Corporation - TS Security Filter Driver.) -- C:\Windows\System32\Drivers\tssecsrv.sys   [39936]
O58 - SDL:[MD5.D11C783E3EF9A3C52C0EBE83CC5000E9] - 21/11/2010 - 04:24:33 ---A- . (.Microsoft Corporation - Pilote de filtre pour concentrateur USB du Bureau à distance.) -- C:\Windows\System32\Drivers\TsUsbFlt.sys   [59392]
O58 - SDL:[MD5.9CC2CCAE8A84820EAECB886D477CBCB8] - 21/11/2010 - 04:23:47 ---A- . (.Microsoft Corporation - Remote Desktop Generic USB Driver.) -- C:\Windows\System32\Drivers\TsUsbGD.sys   [31232]
O58 - SDL:[MD5.E1748D04AE40118B62BC18AC86032192] - 21/11/2010 - 04:23:48 ---A- . (.Microsoft Corporation - Concentrateur USB du Bureau à distance.) -- C:\Windows\System32\Drivers\tsusbhub.sys   [117248]
O58 - SDL:[MD5.3566A8DAAFA27AF944F5D705EAA64894] - 21/11/2010 - 04:24:15 ---A- . (.Microsoft Corporation - Pilote d’interface de tunnel Microsoft.) -- C:\Windows\System32\Drivers\tunnel.sys   [125440]
O58 - SDL:[MD5.B4DD609BD7E282BFC683CEC7EAAAAD67] - 14/07/2009 - 02:45:55 ---A- . (.Microsoft Corporation - Filtre MS AGPv3.5.) -- C:\Windows\System32\Drivers\UAGP35.SYS   [64080]
O58 - SDL:[MD5.FF4232A1A64012BAA1FD97C7B67DF593] - 21/11/2010 - 04:23:55 ---A- . (.Microsoft Corporation - UDF File System Driver.) -- C:\Windows\System32\Drivers\udfs.sys   [328192]
O58 - SDL:[MD5.4BFE1BC28391222894CBF1E7D0E42320] - 14/07/2009 - 02:45:55 ---A- . (.Microsoft Corporation - Filtre ULi AGPv3.0 pour plateformes à processeur K8/9.) -- C:\Windows\System32\Drivers\ULIAGPKX.SYS   [64592]
O58 - SDL:[MD5.DC54A574663A895C8763AF0FA1FF7561] - 21/11/2010 - 04:23:47 ---A- . (.Microsoft Corporation - User-Mode Bus Enumerator.) -- C:\Windows\System32\Drivers\umbus.sys   [48640]
O58 - SDL:[MD5.B2E8E8CB557B156DA5493BBDDCC1474D] - 14/07/2009 - 01:06:52 ---A- . (.Microsoft Corporation - Generic pass-through driver.) -- C:\Windows\System32\Drivers\umpass.sys   [9728]
O58 - SDL:[MD5.92B3172E8C14C1444682F510843A9988] - 12/02/2013 - 05:12:05 ---A- . (.Microsoft Corporation - Remote NDIS USB Driver.) -- C:\Windows\System32\Drivers\usb8023.sys   [19968]
O58 - SDL:[MD5.292A8E03B3FCE04E39B5BE9B14132030] - 21/11/2010 - 04:24:11 ---A- . (.Microsoft Corporation - Universal Serial Bus Camera Driver.) -- C:\Windows\System32\Drivers\USBCAMD2.sys   [32896]
O58 - SDL:[MD5.DCA68B0943D6FA415F0C56C92158A83A] - 27/11/2013 - 02:41:15 ---A- . (.Microsoft Corporation - USB Common Class Generic Parent Driver.) -- C:\Windows\System32\Drivers\usbccgp.sys   [99840]
O58 - SDL:[MD5.80B0F7D5CCF86CEB5D402EAAF61FEC31] - 12/07/2013 - 11:41:12 ---A- . (.Microsoft Corporation - USB Consumer IR Driver for eHome.) -- C:\Windows\System32\Drivers\usbcir.sys   [100864]
O58 - SDL:[MD5.FFA06EF43987ED0DD42AD59B260C0C78] - 27/11/2013 - 02:41:03 ---A- . (.Microsoft Corporation - Universal Serial Bus Driver.) -- C:\Windows\System32\Drivers\usbd.sys   [7808]
O58 - SDL:[MD5.18A85013A3E0F7E1755365D287443965] - 27/11/2013 - 02:41:11 ---A- . (.Microsoft Corporation - EHCI eUSB Miniport Driver.) -- C:\Windows\System32\Drivers\usbehci.sys   [53248]
O58 - SDL:[MD5.8D1196CFBB223621F2C67D45710F25BA] - 27/11/2013 - 02:41:37 ---A- . (.Microsoft Corporation - Default Hub Driver for USB.) -- C:\Windows\System32\Drivers\usbhub.sys   [343040]
O58 - SDL:[MD5.58E546BBAF87664FC57E0F6081E4F609] - 14/07/2009 - 01:06:30 ---A- . (.Microsoft Corporation - OHCI USB Miniport Driver.) -- C:\Windows\System32\Drivers\usbohci.sys   [25600]
O58 - SDL:[MD5.12FEB33791920678F8433701C822BCFD] - 27/11/2013 - 02:41:11 ---A- . (.Microsoft Corporation - Pilote de port USB 1.1 & 2.0.) -- C:\Windows\System32\Drivers\usbport.sys   [325120]
O58 - SDL:[MD5.73188F58FB384E75C4063D29413CEE3D] - 14/07/2009 - 01:38:18 ---A- . (.Microsoft Corporation - USB Printer driver.) -- C:\Windows\System32\Drivers\usbprint.sys   [25088]
O58 - SDL:[MD5.C3EC945DEC43C00E2AD4C98DDDD064C7] - 21/11/2010 - 04:24:39 ---A- . (.Microsoft Corporation - Gestionnaire de stratégie de redirection USB Windows.) -- C:\Windows\System32\Drivers\usbrpm.sys   [31744]
O58 - SDL:[MD5.9661DA76B4531B2DA272ECCE25A8AF24] - 03/07/2013 - 05:40:12 ---A- . (.Microsoft Corporation - USB Scanner Driver.) -- C:\Windows\System32\Drivers\usbscan.sys   [42496]
O58 - SDL:[MD5.FED648B01349A3C8395A5169DB5FB7D6] - 11/03/2011 - 05:37:16 ---A- . (.Microsoft Corporation - USB Mass Storage Class Driver.) -- C:\Windows\System32\Drivers\USBSTOR.SYS   [91648]
O58 - SDL:[MD5.81FB2216D3A60D1284455D511797DB3D] - 14/07/2009 - 01:06:27 ---A- . (.Microsoft Corporation - UHCI USB Miniport Driver.) -- C:\Windows\System32\Drivers\usbuhci.sys   [30720]
O58 - SDL:[MD5.C5C876CCFC083FF3B128F933823E87BD] - 14/07/2009 - 02:45:55 ---A- . (.Microsoft Corporation - Énumérateur racine de lecteur virtuel.) -- C:\Windows\System32\Drivers\vdrvroot.sys   [36432]
O58 - SDL:[MD5.53E92A310193CB3C03BEA963DE7D9CFC] - 14/07/2009 - 00:38:47 ---A- . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys   [29184]
O58 - SDL:[MD5.DA4DA3F5E02943C2DC8C6ED875DE68DD] - 14/07/2009 - 00:38:47 ---A- . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vgapnp.sys   [29184]
O58 - SDL:[MD5.2CE2DF28C83AEAF30084E1B1EB253CBB] - 21/11/2010 - 04:23:47 ---A- . (.Microsoft Corporation - VHD Miniport Driver.) -- C:\Windows\System32\Drivers\vhdmp.sys   [215936]
O58 - SDL:[MD5.0AE6B10B700689681A9892E67EE7B00B] - 22/10/2012 - 18:09:58 ---A- . (.VIA Technologies, Inc. - VIA High Definition Audio Function Driver.) -- C:\Windows\System32\Drivers\viahduaa.sys   [2206864]
O58 - SDL:[MD5.E5689D93FFE4E5D66C0178761240DD54] - 14/07/2009 - 02:45:55 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\viaide.sys   [17488]
O58 - SDL:[MD5.E7353D59C9842BC7299FAEB7E7E09340] - 14/07/2009 - 00:38:51 ---A- . (.Microsoft Corporation - Video Port Driver.) -- C:\Windows\System32\Drivers\videoprt.sys   [129024]
O58 - SDL:[MD5.86EA3E79AE350FEA5331A1303054005F] - 21/11/2010 - 04:23:48 ---A- . (.Microsoft Corporation - Virtual Machine Bus.) -- C:\Windows\System32\Drivers\vmbus.sys   [199552]
O58 - SDL:[MD5.7DE90B48F210D29649380545DB45A187] - 21/11/2010 - 04:23:48 ---A- . (.Microsoft Corporation - Microsoft VMBus HID Miniport.) -- C:\Windows\System32\Drivers\VMBusHID.sys   [21760]
O58 - SDL:[MD5.754C8BF43F0DD4B54865F174A62761E9] - 31/07/2009 - 11:40:34 ---A- . (.Creative Technology Ltd. - Creative Audio Driver.) -- C:\Windows\System32\Drivers\VMfilt64.sys   [25600]
O58 - SDL:[MD5.E60C0A09F997826C7627B244195AB581] - 21/11/2010 - 04:23:48 ---A- . (.Microsoft Corporation - Microsoft S3 Emulated Device Cap Driver.) -- C:\Windows\System32\Drivers\vms3cap.sys   [6656]
O58 - SDL:[MD5.7785DC213270D2FC066538DAF94087E7] - 21/11/2010 - 04:23:48 ---A- . (.Microsoft Corporation - Virtual Storage Filter Driver.) -- C:\Windows\System32\Drivers\vmstorfl.sys   [46464]
O58 - SDL:[MD5.D2AAFD421940F640B407AEFAAEBD91B0] - 21/11/2010 - 04:23:47 ---A- . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys   [71552]
O58 - SDL:[MD5.A255814907C89BE58B79EF2F189B843B] - 21/11/2010 - 04:24:15 ---A- . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys   [363392]
O58 - SDL:[MD5.0D08D2F3B3FF84E433346669B5E0F639] - 21/11/2010 - 04:23:47 ---A- . (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\Windows\System32\Drivers\volsnap.sys   [295808]
O58 - SDL:[MD5.5E2016EA6EBACA03C04FEAC5F330D997] - 14/07/2009 - 02:45:55 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\Drivers\vsmraid.sys   [161872]
O58 - SDL:[MD5.36D4720B72B5C5D9CB2B9C29E9DF67A1] - 14/07/2009 - 01:07:21 ---A- . (.Microsoft Corporation - Pilote de bus WiFi virtuel.) -- C:\Windows\System32\Drivers\vwifibus.sys   [24576]
O58 - SDL:[MD5.6A3D66263414FF0D6FA754C646612F3F] - 14/07/2009 - 01:07:22 ---A- . (.Microsoft Corporation - Virtual WiFi Filter Driver.) -- C:\Windows\System32\Drivers\vwififlt.sys   [59904]
O58 - SDL:[MD5.6A638FC4BFDDC4D9B186C28C91BD1A01] - 14/07/2009 - 01:07:28 ---A- . (.Microsoft Corporation - Virtual WiFi Miniport Driver.) -- C:\Windows\System32\Drivers\vwifimp.sys   [17920]
O58 - SDL:[MD5.4E9440F4F152A7B944CB1663D3935A3E] - 14/07/2009 - 01:02:07 ---A- . (.Microsoft Corporation - Wacom Serial Pen Tablet HID Driver.) -- C:\Windows\System32\Drivers\wacompen.sys   [27776]
O58 - SDL:[MD5.356AFD78A6ED4457169241AC3965230C] - 21/11/2010 - 04:24:11 ---A- . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) -- C:\Windows\System32\Drivers\wanarp.sys   [88576]
O58 - SDL:[MD5.FC438D1430B28618E2D0C7C332A710AD] - 14/07/2009 - 00:37:35 ---A- . (.Microsoft Corporation - Watchdog Driver.) -- C:\Windows\System32\Drivers\watchdog.sys   [42496]
O58 - SDL:[MD5.72889E16FF12BA0F235467D6091B17DC] - 14/07/2009 - 02:45:55 ---A- . (.Microsoft Corporation - Microsoft Watchdog Timer Driver.) -- C:\Windows\System32\Drivers\wd.sys   [21056]
O58 - SDL:[MD5.E2C933EDBC389386EBE6D2BA953F43D8] - 25/06/2013 - 23:55:52 ---A- . (.Microsoft Corporation - Runtime de l’infrastructure de pilotes en mode noyau.) -- C:\Windows\System32\Drivers\Wdf01000.sys   [785624]
O58 - SDL:[MD5.AEA0A67275CFBA0E463E00C6E9A1DDAE] - 28/11/2012 - 23:56:52 ---A- . (.Microsoft Corporation - Kernel Mode Driver Framework Loader.) -- C:\Windows\System32\Drivers\WdfLdr.sys   [54376]
O58 - SDL:[MD5.611B23304BF067451A9FDEE01FBDD725] - 14/07/2009 - 01:09:26 ---A- . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) -- C:\Windows\System32\Drivers\wfplwf.sys   [12800]
O58 - SDL:[MD5.05ECAEC3E4529A7153B3136CEB49F0EC] - 14/07/2009 - 02:45:56 ---A- . (.Microsoft Corporation - Wim file system Driver.) -- C:\Windows\System32\Drivers\wimmount.sys   [22096]
O58 - SDL:[MD5.B4A1002206F6810EABC027DBBCE3B737] - 21/11/2010 - 04:23:48 ---A- . (.Microsoft Corporation - Windows Hypervisor Interface Driver.) -- C:\Windows\System32\Drivers\winhv.sys   [52096]
O58 - SDL:[MD5.F6FF8944478594D0E414D3F048F0D778] - 14/07/2009 - 00:31:02 ---A- . (.Microsoft Corporation - Windows Management Interface for ACPI.) -- C:\Windows\System32\Drivers\wmiacpi.sys   [14336]
O58 - SDL:[MD5.FC146F46872D4C5B529B89A5131FD1E6] - 14/07/2009 - 02:45:55 ---A- . (.Microsoft Corporation - WMILIB WMI support library Dll.) -- C:\Windows\System32\Drivers\wmilib.sys   [16464]
O58 - SDL:[MD5.6BCC1D7D2FD2453957C5479A32364E52] - 14/07/2009 - 01:10:33 ---A- . (.Microsoft Corporation - Couche IFS Winsock2.) -- C:\Windows\System32\Drivers\ws2ifsl.sys   [21504]
O58 - SDL:[MD5.AB886378EEB55C6C75B4F2D14B6C869F] - 26/07/2012 - 03:26:45 ---A- . (.Microsoft Corporation - Windows Driver Foundation - User-mode Driver Framework Platform.) -- C:\Windows\System32\Drivers\WUDFPf.sys   [87040]
O58 - SDL:[MD5.DDA4CAF29D8C0A297F886BFE561E6659] - 26/07/2012 - 03:26:06 ---A- . (.Microsoft Corporation - Windows Driver Foundation - User-mode Driver Framework Reflecto.) -- C:\Windows\System32\Drivers\WUDFRd.sys   [198656]
O58 - SDL:[MD5.FE1EC06F2253F691FE36217C592A0206] - 14/07/2009 - 02:52:31 ---A- . (.Microsoft Corporation - Common Log File System Driver.) -- C:\Windows\System32\clfs.sys   [367696]
O58 - SDL:[MD5.F2BF71FCEAB8FB8A691408C478E2FF4C] - 26/11/2013 - 11:32:56 ---A- . (.Microsoft Corporation - Pilote Win32 multi-utilisateurs.) -- C:\Windows\System32\win32k.sys   [3156480]
O58 - SDL:[MD5.49697C2C761ACB5C0DE99CC8FE93E95B] - 21/08/2013 - 16:49:02 ---A- . (.CACE Technologies - npf.sys (NT5/6 AMD64) Kernel Driver.) -- C:\Windows\SysWOW64\drivers\npf_devolo.sys   [34048]
O58 - SDL:[MD5.5CF95B35E59E2A38023836FFF31BE64C] - 14/07/2009 - 02:19:10 ---A- . (.Microsoft Corporation - Wim file system Driver.) -- C:\Windows\SysWOW64\drivers\wimmount.sys   [19008]
~ Drivers: 16 Scanned in 00mn 01s



---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)
O61 - LFC: 09/02/2014 - 13:49:32 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Avg2014\log\avgcore.log.1   [131194]
O61 - LFC: 09/02/2014 - 13:49:32 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Avg2014\log\avgdecider.log.2   [65552]
O61 - LFC: 09/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Google\Picasa2Albums\frexcludefolders.txt   [83]
O61 - LFC: 09/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Google\Picasa2Albums\watchedfolders.txt   [66]
O61 - LFC: 09/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Google\Picasa2\db3\albumdata_category.pmp   [1096]
O61 - LFC: 09/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Google\Picasa2\db3\albumdata_date.pmp   [2172]
O61 - LFC: 09/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Google\Picasa2\db3\albumdata_description.pmp   [365]
O61 - LFC: 09/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Google\Picasa2\db3\albumdata_location.pmp   [289]
O61 - LFC: 09/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Google\Picasa2\db3\albumdata_music.pmp   [289]
O61 - LFC: 09/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Google\Picasa2\db3\albumdata_name.pmp   [5503]
O61 - LFC: 09/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Google\Picasa2\db3\albumdata_token.pmp   [10346]
O61 - LFC: 09/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Google\Picasa2\db3\albumdata_uid.pmp   [8673]
O61 - LFC: 09/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Google\Picasa2\db3\albums_0.db   [1642220]
O61 - LFC: 09/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Google\Picasa2\db3\albums_index.db   [3236]
O61 - LFC: 09/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Google\Picasa2\db3\bigthumbs_0.db   [408337264]
O61 - LFC: 09/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Google\Picasa2\db3\bigthumbs_index.db   [492800]
O61 - LFC: 09/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Google\Picasa2\db3\catdata_catpri.pmp   [30]
O61 - LFC: 09/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Google\Picasa2\db3\catdata_state.pmp   [31]
O61 - LFC: 09/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Google\Picasa2\db3\facetags.txt   [0]
O61 - LFC: 09/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Google\Picasa2\db3\facetemplatesV2_0.db   [29408440]
O61 - LFC: 09/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Google\Picasa2\db3\facetemplatesV2_index.db   [492800]
O61 - LFC: 09/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Google\Picasa2\db3\imagedata_crop64.pmp   [328540]
O61 - LFC: 09/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Google\Picasa2\db3\imagedata_deferredface.pmp   [19148]
O61 - LFC: 09/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Google\Picasa2\db3\imagedata_facequality.pmp   [164280]
O61 - LFC: 09/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Google\Picasa2\db3\imagedata_facerect.pmp   [328540]
O61 - LFC: 09/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Google\Picasa2\db3\imagedata_facerectdata.pmp   [2255588]
O61 - LFC: 09/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Google\Picasa2\db3\imagedata_filetype.pmp   [164280]
O61 - LFC: 09/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Google\Picasa2\db3\imagedata_height.pmp   [164280]
O61 - LFC: 09/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Google\Picasa2\db3\imagedata_originslow.pmp   [153532]
O61 - LFC: 09/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Google\Picasa2\db3\imagedata_personalbumid.pmp   [97752]
O61 - LFC: 09/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Google\Picasa2\db3\imagedata_rotate.pmp   [46704]
O61 - LFC: 09/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Google\Picasa2\db3\imagedata_tagdate.pmp   [195484]
O61 - LFC: 09/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Google\Picasa2\db3\imagedata_width.pmp   [164280]
O61 - LFC: 09/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Google\Picasa2\db3\previews_0.db   [692118319]
O61 - LFC: 09/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Google\Picasa2\db3\previews_index.db   [387176]
O61 - LFC: 09/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Google\Picasa2\db3\repository.dat   [204]
O61 - LFC: 09/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Google\Picasa2\db3\saverlist.txt   [0]
O61 - LFC: 09/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Google\Picasa2\db3\scanlist.txt   [48]
O61 - LFC: 09/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Google\Picasa2\db3\starlist.txt   [171]
O61 - LFC: 09/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Google\Picasa2\db3\tags.txt   [0]
O61 - LFC: 09/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Google\Picasa2\db3\thumbindex.db   [1460967]
O61 - LFC: 09/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Google\Picasa2\db3\thumbs2_0.db   [86368118]
O61 - LFC: 09/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Google\Picasa2\db3\thumbs2_index.db   [492800]
O61 - LFC: 09/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Google\Picasa2\db3\thumbs_0.db   [232654316]
O61 - LFC: 09/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Google\Picasa2\db3\thumbs_index.db   [492800]
O61 - LFC: 09/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Google\Picasa2\db3\usernames.dat   [8]
O61 - LFC: 09/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Google\Picasa2\db3\wordhash.dat   [1438412]
O61 - LFC: 09/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Google\Picasa2\ioqueue\albumsafe.ioq   [0]
O61 - LFC: 09/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Google\Picasa2\ioqueue\filesafe.ioq   [0]
O61 - LFC: 09/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Google\Picasa2\ioqueue\slingshot.ioq   [0]
O61 - LFC: 09/02/2014 - 13:49:34 R--A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Identities\{7353FEB3-18DA-4622-8331-3176739AFB0F}\Message Store\Attachments\Fsc2014-052563.pdf   [22365]
O61 - LFC: 09/02/2014 - 13:49:37 R--A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Identities\{7353FEB3-18DA-4622-8331-3176739AFB0F}\Message Store\Attachments\{60CB933C-3EF5-43DC-ADD0-A7F7BEBD6D0F}\Fsc2014-052563.pdf   [22368]
O61 - LFC: 09/02/2014 - 13:49:38 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Runtime\Message\2DDC8325-AA95-4FCA-AE54-BC5872BE87B6.htm   [46832]
O61 - LFC: 09/02/2014 - 13:49:38 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Runtime\Message\728C41C7-1FE1-4392-8981-37CEF5C3CB77.htm   [46832]
O61 - LFC: 09/02/2014 - 13:49:38 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Runtime\Message\AA052478-B18C-475C-A4F7-02CA53179ACF.htm   [46832]
O61 - LFC: 09/02/2014 - 13:49:38 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Runtime\Message\D09B223A-2BC9-4DC7-A133-B400B1228274.htm   [46832]
O61 - LFC: 09/02/2014 - 13:49:38 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Runtime\Message\F6368631-2D9A-4200-A95F-7FF148E7F79C.htm   [46832]
O61 - LFC: 09/02/2014 - 13:49:39 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\l\52f74564   [21504]  =>.Dropbox
O61 - LFC: 09/02/2014 - 13:49:39 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\l\52f7472f   [23056]  =>.Dropbox
O61 - LFC: 09/02/2014 - 13:49:39 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\l\52f755ff   [16128]  =>.Dropbox
O61 - LFC: 09/02/2014 - 13:49:39 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\l\52f7581b   [176]  =>.Dropbox
O61 - LFC: 09/02/2014 - 13:49:39 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\l\52f75827   [23440]  =>.Dropbox
O61 - LFC: 09/02/2014 - 13:49:39 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\l\52f77bfa   [68096]  =>.Dropbox
O61 - LFC: 09/02/2014 - 13:49:39 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\l\52f7f3cf   [16960]  =>.Dropbox
O61 - LFC: 09/02/2014 - 13:49:39 ---A- . (.Microsoft Corporation.) -- C:\Users\Roger sous sol\AppData\Local\Temp\is-D3FSR.tmp\_isetup\_shfoldr.dll   [23312]
O61 - LFC: 09/02/2014 - 13:49:39 ---A- . (.Uniblue Systems Limited.) -- C:\Users\Roger sous sol\AppData\Local\Temp\is-D3FSR.tmp\SpeedUpMyPC-standalone-setup.exe   [18919608] =>Rogue.SpeedUpMyPC
O61 - LFC: 09/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52f74562   [124]  =>.Dropbox
O61 - LFC: 09/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52f74565   [148]  =>.Dropbox
O61 - LFC: 09/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52f7459d   [156]  =>.Dropbox
O61 - LFC: 09/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52f7472c   [124]  =>.Dropbox
O61 - LFC: 09/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52f7472f   [148]  =>.Dropbox
O61 - LFC: 09/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52f75100   [152]  =>.Dropbox
O61 - LFC: 09/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52f755fc   [124]  =>.Dropbox
O61 - LFC: 09/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52f75600   [148]  =>.Dropbox
O61 - LFC: 09/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52f75825   [124]  =>.Dropbox
O61 - LFC: 09/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52f75997   [148]  =>.Dropbox
O61 - LFC: 09/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52f77bf7   [124]  =>.Dropbox
O61 - LFC: 09/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52f77bfa   [148]  =>.Dropbox
O61 - LFC: 09/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52f77c91   [156]  =>.Dropbox
O61 - LFC: 09/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52f7d74c   [152]  =>.Dropbox
O61 - LFC: 09/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52f7d75c   [124]  =>.Dropbox
O61 - LFC: 09/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52f7f3cd   [124]  =>.Dropbox
O61 - LFC: 09/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52f7f3d0   [148]  =>.Dropbox
O61 - LFC: 09/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52f7f5b1   [152]  =>.Dropbox
O61 - LFC: 09/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\GlarySoft\Glary Utilities 4\Backups\41679.932303240741   [125]
O61 - LFC: 09/02/2014 - 13:49:41 ---A- . (...) -- C:\Users\Roger sous sol\Dropbox\.dropbox.cache\2014-02-10\Conseil pédagogique   29 janvier (deleted 0ed2f8c3270c745e7b256ed5024f60a6).docx   [47444]
O61 - LFC: 09/02/2014 - 13:49:41 ---A- . (...) -- C:\Users\Roger sous sol\Dropbox\.dropbox.cache\2014-02-10\planning provisoire examen avril 2014 (deleted 41d4b2c6326248a1d6cec3b87babde58).xlsx   [16309]
O61 - LFC: 09/02/2014 - 13:49:42 ---A- . (...) -- C:\Users\Roger sous sol\Dropbox\Comptabilité\Contrats des professeurs\Contrat Alexandre CoulonCDI2.docx   [51901]
O61 - LFC: 09/02/2014 - 13:49:43 ---A- . (...) -- C:\Users\Roger sous sol\Dropbox\EMD - Direction 2012\Education nationale\intervention  scolaire salon du livre\HORAIRE école (1).xlsx   [13769]
O61 - LFC: 09/02/2014 - 13:49:43 ---A- . (...) -- C:\Users\Roger sous sol\Dropbox\EMD - Direction 2012\Education nationale\intervention  scolaire salon du livre\HORAIRE école.xlsx   [13769]
O61 - LFC: 09/02/2014 - 13:49:43 ---A- . (...) -- C:\Users\Roger sous sol\Dropbox\EMD - Direction 2012\Profs\CV\CV Anaïs FRANCK.pdf   [170164]
O61 - LFC: 09/02/2014 - 13:49:45 ---A- . (...) -- C:\Users\Roger sous sol\Dropbox\EMD - Direction 2012\rythmes scolaires\Proposition EMD rythmes scolaires.docx   [69705]
O61 - LFC: 09/02/2014 - 13:49:45 ---A- . (...) -- C:\Users\Roger sous sol\Dropbox\EMD - Direction 2012\rythmes scolaires\planning.xlsx   [11157]
O61 - LFC: 10/02/2014 - 13:49:33 R--A- . (.Valued Acer Customer.) -- C:\Users\Roger sous sol\AppData\Local\IM\Identities\{7353FEB3-18DA-4622-8331-3176739AFB0F}\Message Store\Attachments\Assemblée Générale 14 février 2014 compta.ppt   [845824]
O61 - LFC: 10/02/2014 - 13:49:37 R--A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Identities\{7353FEB3-18DA-4622-8331-3176739AFB0F}\Message Store\Attachments\{B4639D64-14D8-4122-B9A4-05F3726F8D99}\LOGO.pdf   [42674]
O61 - LFC: 10/02/2014 - 13:49:38 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Runtime\Message\782B3201-32CD-4BB3-875B-D8A699152F6C.htm   [46832]
O61 - LFC: 10/02/2014 - 13:49:39 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Temp\{20D4A895-748C-4D88-871C-FDB1695B0169}\_ISUSER.DLL   [106496]
O61 - LFC: 10/02/2014 - 13:49:39 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\l\52f86f3e   [27616]  =>.Dropbox
O61 - LFC: 10/02/2014 - 13:49:39 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\l\52f89c41   [100784]  =>.Dropbox
O61 - LFC: 10/02/2014 - 13:49:39 ---A- . (.InstallShield Software Corporation.) -- C:\Users\Roger sous sol\AppData\Local\Temp\{20D4A895-748C-4D88-871C-FDB1695B0169}\ISRT.DLL   [335872]
O61 - LFC: 10/02/2014 - 13:49:39 ---A- . (.InstallShield Software Corporation.) -- C:\Users\Roger sous sol\AppData\Local\Temp\{20D4A895-748C-4D88-871C-FDB1695B0169}\_ISRES.DLL   [290816]
O61 - LFC: 10/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52f86f3b   [124]  =>.Dropbox
O61 - LFC: 10/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52f86f3e   [148]  =>.Dropbox
O61 - LFC: 10/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52f87035   [152]  =>.Dropbox
O61 - LFC: 10/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52f876e4   [156]  =>.Dropbox
O61 - LFC: 10/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52f88cec   [124]  =>.Dropbox
O61 - LFC: 10/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52f88cef   [148]  =>.Dropbox
O61 - LFC: 10/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52f89c3e   [124]  =>.Dropbox
O61 - LFC: 10/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52f89c41   [148]  =>.Dropbox
O61 - LFC: 10/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52f8be17   [156]  =>.Dropbox
O61 - LFC: 10/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52f91150   [152]  =>.Dropbox
O61 - LFC: 10/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52f917d2   [156]  =>.Dropbox
O61 - LFC: 10/02/2014 - 13:49:41 ---A- . (...) -- C:\Users\Roger sous sol\Dropbox\.dropbox.cache\2014-02-10\Conseil pédagogique   29 janvier (deleted 4d4e5dda270031818d16c919b2c83dab).docx   [47285]
O61 - LFC: 10/02/2014 - 13:49:41 ---A- . (...) -- C:\Users\Roger sous sol\Dropbox\.dropbox.cache\2014-02-10\Elèves 2013 2014 (deleted 6d697a4d592ceb963e58d814055ad589).xlsx   [208332]
O61 - LFC: 10/02/2014 - 13:49:41 ---A- . (...) -- C:\Users\Roger sous sol\Dropbox\.dropbox.cache\2014-02-10\Tableau récap participants MENGEN (deleted b60a0923267392cc51486808b7531aa2).xlsx   [100035]
O61 - LFC: 10/02/2014 - 13:49:41 ---A- . (...) -- C:\Users\Roger sous sol\Dropbox\.dropbox.cache\2014-02-10\Tableau récap participants MENGEN (deleted c9f98cf0797e0a53858d9925f9d20787).xlsx   [100065]
O61 - LFC: 10/02/2014 - 13:49:41 ---A- . (...) -- C:\Users\Roger sous sol\Dropbox\.dropbox.cache\2014-02-10\planning provisoire examen avril 2014 (deleted 054895a541238d6b887c6e22c28dad3c).xlsx   [17809]
O61 - LFC: 10/02/2014 - 13:49:41 ---A- . (...) -- C:\Users\Roger sous sol\Dropbox\.dropbox.cache\2014-02-10\planning provisoire examen avril 2014 (deleted 47968c982d2c72fe5fa4dc7fe0c18b46).xlsx   [17811]
O61 - LFC: 10/02/2014 - 13:49:41 ---A- . (...) -- C:\Users\Roger sous sol\Dropbox\.dropbox.cache\2014-02-11\Tableau récap participants MENGEN (deleted bb5b7e743ff9b986ee8b72ac7c3d56e6).xlsx   [100097]
O61 - LFC: 10/02/2014 - 13:49:41 ---A- . (...) -- C:\Users\Roger sous sol\Dropbox\.dropbox.cache\2014-02-11\tableau RESERVATION AG ET SAINT VALENTIN (deleted f40bdbbe75d9ed0f82f35d16b93008d8).xlsx   [10859]
O61 - LFC: 10/02/2014 - 13:49:41 ---A- . (...) -- C:\Users\Roger sous sol\Dropbox\.dropbox.cache\2014-02-12\Elèves 2013 2014 (deleted e82b4efb220c163710f71a9adc3967a4).xlsx   [208390]
O61 - LFC: 10/02/2014 - 13:49:42 ---A- . (...) -- C:\Users\Roger sous sol\Dropbox\Comptabilité\BudgetEMD.xlsx   [38800]
O61 - LFC: 10/02/2014 - 13:49:42 ---A- . (...) -- C:\Users\Roger sous sol\Dropbox\Comptabilité\bilanEMD.xlsx   [533872]
O61 - LFC: 10/02/2014 - 13:49:43 ---A- . (.SCEA WILZER JAGER.) -- C:\Users\Roger sous sol\Dropbox\EMD - Direction 2012\partenariat Mengen\LETTRE Mr LE MAIRE pour le bus.doc   [117248]
O61 - LFC: 10/02/2014 - 13:49:44 ---A- . (...) -- C:\Users\Roger sous sol\Dropbox\EMD - Direction 2012\rentrée 2013\EXAMEN\planning provisoire examen avril 2014.xlsx   [16544]
O61 - LFC: 10/02/2014 - 13:49:45 ---A- . (...) -- C:\Users\Roger sous sol\Dropbox\EMD - Direction 2012\rentrée 2013\TABLEAU Livres FM.xlsx   [16203]
O61 - LFC: 11/02/2014 - 13:49:32 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Avg2014\log\avgdecider.log.1   [65606]
O61 - LFC: 11/02/2014 - 13:49:32 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Avg2014\log\avgui.log.2   [131099]
O61 - LFC: 11/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\GDIPFONTCACHEV1.DAT   [140592]
O61 - LFC: 11/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Identities\{7353FEB3-18DA-4622-8331-3176739AFB0F}\AddressBook\AddrBook.db3.bak   [234496]
O61 - LFC: 11/02/2014 - 13:49:34 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Identities\{7353FEB3-18DA-4622-8331-3176739AFB0F}\Message Store\Attachments\Facture sales lentz.jpg_thumb.bmp   [24174]
O61 - LFC: 11/02/2014 - 13:49:34 R--A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Identities\{7353FEB3-18DA-4622-8331-3176739AFB0F}\Message Store\Attachments\CONCERTS 2013-2014.pdf   [197790]
O61 - LFC: 11/02/2014 - 13:49:34 R--A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Identities\{7353FEB3-18DA-4622-8331-3176739AFB0F}\Message Store\Attachments\Calendrier 2013-2014.pdf   [55875]
O61 - LFC: 11/02/2014 - 13:49:34 R--A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Identities\{7353FEB3-18DA-4622-8331-3176739AFB0F}\Message Store\Attachments\Conseil pédagogique   29 janvier.docx   [47547]
O61 - LFC: 11/02/2014 - 13:49:36 R--A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Identities\{7353FEB3-18DA-4622-8331-3176739AFB0F}\Message Store\Attachments\planning provisoire examen avril 2014.xlsx   [17811]
O61 - LFC: 11/02/2014 - 13:49:36 R--A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Identities\{7353FEB3-18DA-4622-8331-3176739AFB0F}\Message Store\Attachments\{10112818-2EC5-464F-AE63-FAB1BE43ABA0}\CONCERTS 2013-2014.pdf   [197790]
O61 - LFC: 11/02/2014 - 13:49:37 ----- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Identities\{7353FEB3-18DA-4622-8331-3176739AFB0F}\Message Store\DOODLE_Gomelange.imm   [69648]
O61 - LFC: 11/02/2014 - 13:49:37 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Identities\{7353FEB3-18DA-4622-8331-3176739AFB0F}\Message Store\Drafts.imm   [50828]
O61 - LFC: 11/02/2014 - 13:49:37 R--A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Identities\{7353FEB3-18DA-4622-8331-3176739AFB0F}\Message Store\Attachments\{15C2DBDC-68AF-4D37-9DCC-13B49EFEFDC1}\Calendrier 2013-2014.pdf   [55875]
O61 - LFC: 11/02/2014 - 13:49:37 R--A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Identities\{7353FEB3-18DA-4622-8331-3176739AFB0F}\Message Store\Attachments\{5ED97F60-2533-4B61-B145-34FE0A421BD9}\Conseil pédagogique   29 janvier.docx   [47547]
O61 - LFC: 11/02/2014 - 13:49:37 R--A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Identities\{7353FEB3-18DA-4622-8331-3176739AFB0F}\Message Store\Attachments\{C1FF6386-2095-455B-BE84-7C78831044ED}\planning provisoire examen avril 2014.xlsx   [17811]
O61 - LFC: 11/02/2014 - 13:49:38 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Runtime\Message\0B5B153E-FEDD-4CFB-8993-35899781E347.htm   [46832]
O61 - LFC: 11/02/2014 - 13:49:38 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Runtime\Message\6309A26E-A1D3-4879-B117-CED0E2924401.htm   [46832]
O61 - LFC: 11/02/2014 - 13:49:38 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Runtime\Message\{01AD1126-BA3C-4FF6-B518-C2F2377C56B6}\Show\noScriptHtmlStrWithoutSource_Prev_warn_7.htm   [14090]
O61 - LFC: 11/02/2014 - 13:49:38 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Runtime\Message\{196380D9-1840-4D18-8E97-634B49BAD553}\Show\noScriptHtmlStrWithoutSource_Prev_warn_7.htm   [44450]
O61 - LFC: 11/02/2014 - 13:49:38 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Runtime\Message\{34699374-96BD-4997-9502-8E411AAC91A9}\Show\noScriptHtmlStrWithoutSource_Prev_warn_7.htm   [21724]
O61 - LFC: 11/02/2014 - 13:49:38 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Runtime\Message\{352BB68A-2A17-478E-8324-0A51B8C23241}\Show\noScriptHtmlStrWithoutSource_Prev_warn_7.htm   [15946]
O61 - LFC: 11/02/2014 - 13:49:38 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Runtime\Message\{391BC8F2-C203-41F2-A8C5-A8768B1E2426}\Show\noScriptHtmlStrWithoutSource_Prev_9.htm   [10890]
O61 - LFC: 11/02/2014 - 13:49:38 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Runtime\Message\{64BD7BFE-1881-4C84-95A6-6A4C67FCAE02}\Show\logo1.png   [12436]
O61 - LFC: 11/02/2014 - 13:49:38 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Runtime\Message\{64BD7BFE-1881-4C84-95A6-6A4C67FCAE02}\Show\noScriptHtmlStrWithoutSource_Prev_7.htm   [6444]
O61 - LFC: 11/02/2014 - 13:49:38 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Runtime\Message\{7EB14FCF-C8C6-453D-935A-F986B9F8D7F9}\Show\noScriptHtmlStrWithoutSource_Prev_warn_7.htm   [10662]
O61 - LFC: 11/02/2014 - 13:49:38 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Runtime\Message\{7FC1F114-57EB-4FA7-B422-D4184834C78E}\Show\ATT2.htm   [268]
O61 - LFC: 11/02/2014 - 13:49:38 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Runtime\Message\{7FC1F114-57EB-4FA7-B422-D4184834C78E}\Show\noScriptHtmlStrWithoutSource_Prev_7.htm   [19212]
O61 - LFC: 11/02/2014 - 13:49:38 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Runtime\Message\{84D9C7D3-308A-4306-81BF-2942610CBD79}\Show\noScriptHtmlStrWithoutSource_Prev_7.htm   [2996]
O61 - LFC: 11/02/2014 - 13:49:38 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Runtime\Message\{88CF6B75-E938-4A87-A1A6-F27F039EBE48}\Show\textPartPrev.html   [2148]
O61 - LFC: 11/02/2014 - 13:49:38 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Runtime\Message\{A76D6132-F034-4396-BEE1-9C5AEF68CD13}\Show\textPartPrev.html   [1402]
O61 - LFC: 11/02/2014 - 13:49:38 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Runtime\Message\{C27B2060-3CCA-40BE-97F1-4BD0E35FBD98}\Show\noScriptHtmlStrWithoutSource_Prev_warn_7.htm   [14084]
O61 - LFC: 11/02/2014 - 13:49:38 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Runtime\Message\{C78831A6-5A2A-47FC-942E-99239EFE88C4}\Show\noScriptHtmlStrWithoutSource_Prev_warn_7.htm   [15950]
O61 - LFC: 11/02/2014 - 13:49:38 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Runtime\Message\{E297830C-62B6-4ED5-A0D0-076398F0D097}\Show\noScriptHtmlStrWithoutSource_Prev_7.htm   [3544]
O61 - LFC: 11/02/2014 - 13:49:38 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Runtime\Message\{F1E9FFD9-E1AC-4DB8-94BF-1B89256297A9}\Show\noScriptHtmlStrWithoutSource_Prev_warn_7.htm   [20846]
O61 - LFC: 11/02/2014 - 13:49:38 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Runtime\Message\{F25BF80A-E0E8-4D56-9921-75BEF1380251}\Show\noScriptHtmlStrWithoutSource_Prev_warn_7.htm   [74884]
O61 - LFC: 11/02/2014 - 13:49:39 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Temp\IM\imv12BC.htm   [78]
O61 - LFC: 11/02/2014 - 13:49:39 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Temp\IM\imv5A6E.htm   [78]
O61 - LFC: 11/02/2014 - 13:49:39 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Temp\IM\imv6BDE.htm   [78]
O61 - LFC: 11/02/2014 - 13:49:39 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Temp\IM\imv7042.htm   [78]
O61 - LFC: 11/02/2014 - 13:49:39 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Temp\IM\imv7931.htm   [78]
O61 - LFC: 11/02/2014 - 13:49:39 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Temp\IM\imv8ADF.htm   [78]
O61 - LFC: 11/02/2014 - 13:49:39 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Temp\IM\imvB454.htm   [78]
O61 - LFC: 11/02/2014 - 13:49:39 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Temp\IM\imvDFEC.htm   [78]
O61 - LFC: 11/02/2014 - 13:49:39 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Temp\IM\imvE53B.htm   [78]
O61 - LFC: 11/02/2014 - 13:49:39 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Temp\IM\imvE999.htm   [78]
O61 - LFC: 11/02/2014 - 13:49:39 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Adobe\Acrobat\11.0\JSCache\GlobSettings   [24]
O61 - LFC: 11/02/2014 - 13:49:39 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Adobe\Acrobat\11.0\TMDocs.sav   [36]
O61 - LFC: 11/02/2014 - 13:49:39 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Adobe\Acrobat\11.0\TMGrpPrm.sav   [54]
O61 - LFC: 11/02/2014 - 13:49:39 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\l\52f9bf95   [32512]  =>.Dropbox
O61 - LFC: 11/02/2014 - 13:49:39 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\l\52f9dc16   [15600]  =>.Dropbox
O61 - LFC: 11/02/2014 - 13:49:39 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\l\52f9e069   [14672]  =>.Dropbox
O61 - LFC: 11/02/2014 - 13:49:39 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\l\52f9eb5c   [14768]  =>.Dropbox
O61 - LFC: 11/02/2014 - 13:49:39 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\l\52f9f255   [15648]  =>.Dropbox
O61 - LFC: 11/02/2014 - 13:49:39 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\l\52fa04d4   [85904]  =>.Dropbox
O61 - LFC: 11/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\l\52fa89cb   [15664]  =>.Dropbox
O61 - LFC: 11/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52f9bf92   [124]  =>.Dropbox
O61 - LFC: 11/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52f9bf96   [148]  =>.Dropbox
O61 - LFC: 11/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52f9d4b4   [152]  =>.Dropbox
O61 - LFC: 11/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52f9daf7   [156]  =>.Dropbox
O61 - LFC: 11/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52f9dc13   [124]  =>.Dropbox
O61 - LFC: 11/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52f9dc16   [148]  =>.Dropbox
O61 - LFC: 11/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52f9e066   [124]  =>.Dropbox
O61 - LFC: 11/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52f9e06a   [148]  =>.Dropbox
O61 - LFC: 11/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52f9e0f0   [152]  =>.Dropbox
O61 - LFC: 11/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52f9e7e6   [152]  =>.Dropbox
O61 - LFC: 11/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52f9eb59   [124]  =>.Dropbox
O61 - LFC: 11/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52f9eb5d   [148]  =>.Dropbox
O61 - LFC: 11/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52f9f252   [124]  =>.Dropbox
O61 - LFC: 11/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52f9f256   [148]  =>.Dropbox
O61 - LFC: 11/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52f9fa0c   [152]  =>.Dropbox
O61 - LFC: 11/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52fa04d1   [124]  =>.Dropbox
O61 - LFC: 11/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52fa04d5   [148]  =>.Dropbox
O61 - LFC: 11/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52fa18d3   [156]  =>.Dropbox
O61 - LFC: 11/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52fa344c   [124]  =>.Dropbox
O61 - LFC: 11/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52fa43ad   [152]  =>.Dropbox
O61 - LFC: 11/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52fa44aa   [152]  =>.Dropbox
O61 - LFC: 11/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52fa56f0   [152]  =>.Dropbox
O61 - LFC: 11/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52fa7a6e   [156]  =>.Dropbox
O61 - LFC: 11/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52fa89c7   [124]  =>.Dropbox
O61 - LFC: 11/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52fa89cb   [148]  =>.Dropbox
O61 - LFC: 11/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\Documents\Pinnacle Studio\My Projects\EMD Elise\OBJ\C8D102CF\000004\05.VFO   [13048]
O61 - LFC: 11/02/2014 - 13:49:41 ---A- . (...) -- C:\Users\Roger sous sol\Dropbox\.dropbox.cache\2014-02-11\Tableau récap participants MENGEN (deleted 6ff388a9d09f3052b58d6388aebff921).xlsx   [100107]
O61 - LFC: 11/02/2014 - 13:49:41 ---A- . (...) -- C:\Users\Roger sous sol\Dropbox\.dropbox.cache\2014-02-11\Tableau récap participants MENGEN (deleted 8488117b2aa441dd2327b3c40dd6150e).xlsx   [100115]
O61 - LFC: 11/02/2014 - 13:49:41 ---A- . (...) -- C:\Users\Roger sous sol\Dropbox\.dropbox.cache\2014-02-11\Tableau récap participants MENGEN (deleted 94af82e9f8b1545bf480c8cf224ccdae).xlsx   [100191]
O61 - LFC: 11/02/2014 - 13:49:41 ---A- . (...) -- C:\Users\Roger sous sol\Dropbox\.dropbox.cache\2014-02-11\Tableau récap participants MENGEN (deleted a3db8431bd28dc1cd2d4edf8852e4cb8).xlsx   [100148]
O61 - LFC: 11/02/2014 - 13:49:41 ---A- . (...) -- C:\Users\Roger sous sol\Dropbox\.dropbox.cache\2014-02-11\Tableau récap participants MENGEN (deleted d39efb2b36e1cb8b1ef5c5d470a1f822).xlsx   [100138]
O61 - LFC: 11/02/2014 - 13:49:41 ---A- . (...) -- C:\Users\Roger sous sol\Dropbox\.dropbox.cache\2014-02-11\tableau RESERVATION AG ET SAINT VALENTIN (deleted 1519d9766fd63a32ecd12f7572764904).xlsx   [10954]
O61 - LFC: 11/02/2014 - 13:49:41 ---A- . (...) -- C:\Users\Roger sous sol\Dropbox\.dropbox.cache\2014-02-11\tableau RESERVATION AG ET SAINT VALENTIN (deleted 5f64bd10a66a6fe0752752b971992092).xlsx   [10950]
O61 - LFC: 11/02/2014 - 13:49:41 ---A- . (...) -- C:\Users\Roger sous sol\Dropbox\.dropbox.cache\2014-02-11\tableau RESERVATION AG ET SAINT VALENTIN (deleted bb8111c7e53514c2a15d0821aec6c177).xlsx   [10914]
O61 - LFC: 11/02/2014 - 13:49:41 ---A- . (...) -- C:\Users\Roger sous sol\Dropbox\.dropbox.cache\2014-02-12\Tableau récap participants MENGEN (deleted 022a445e9a803db714a63e9b6f12a4ab).xlsx   [100363]
O61 - LFC: 11/02/2014 - 13:49:41 ---A- . (...) -- C:\Users\Roger sous sol\Dropbox\.dropbox.cache\2014-02-12\Tableau récap participants MENGEN (deleted 9ff3b7d29082d2e55f9a0bed768c8dc7).xlsx   [100335]
O61 - LFC: 11/02/2014 - 13:49:41 ---A- . (...) -- C:\Users\Roger sous sol\Dropbox\.dropbox.cache\2014-02-12\tableau RESERVATION AG ET SAINT VALENTIN (deleted 6bedfdc622fddf795de5092c04136842).xlsx   [10986]
O61 - LFC: 11/02/2014 - 13:49:41 ---A- . (...) -- C:\Users\Roger sous sol\Dropbox\.dropbox.cache\2014-02-12\tableau RESERVATION AG ET SAINT VALENTIN (deleted e38ebd15ffa5ce5a89f40f27d0ba143e).xlsx   [11475]
O61 - LFC: 11/02/2014 - 13:49:41 ---A- . (.95R0004.) -- C:\Users\Roger sous sol\Dropbox\.dropbox.cache\2014-02-11\Calendrier 2013-2014 (deleted 4a4aab299dbe678e2d8abb48800a231f).xls   [50688]
O61 - LFC: 11/02/2014 - 13:49:42 ---A- . (...) -- C:\Users\Roger sous sol\Dropbox\EMD - Direction 2012\AG\Assemblée Générale Extraordinaire.pptx   [312032]
O61 - LFC: 11/02/2014 - 13:49:42 ---A- . (...) -- C:\Users\Roger sous sol\Dropbox\EMD - Direction 2012\AG\statuts revus 2014.pdf   [339819]
O61 - LFC: 11/02/2014 - 13:49:42 ---A- . (.Valued Acer Customer.) -- C:\Users\Roger sous sol\Dropbox\EMD - Direction 2012\AG\Assemblée Générale 14 février 2014.ppt   [2488320]
O61 - LFC: 11/02/2014 - 13:49:43 ---A- . (...) -- C:\Users\Roger sous sol\Dropbox\EMD - Direction 2012\CONCERT et SPECTACLE\CONCERTS 2013-2014.docx   [36175]
O61 - LFC: 11/02/2014 - 13:49:43 ---A- . (...) -- C:\Users\Roger sous sol\Dropbox\EMD - Direction 2012\CONCERT et SPECTACLE\CONCERTS 2013-2014.pdf   [197790]
O61 - LFC: 11/02/2014 - 13:49:43 ---A- . (.SCEA WILZER-JAGER.) -- C:\Users\Roger sous sol\Dropbox\EMD - Direction 2012\Documents administratifs\comité coordonnées.xls   [286208]
O61 - LFC: 11/02/2014 - 13:49:44 ---A- . (...) -- C:\Users\Roger sous sol\Dropbox\EMD - Direction 2012\rentrée 2013\Calendrier 2013-2014.pdf   [55875]
O61 - LFC: 11/02/2014 - 13:49:44 ---A- . (.95R0004.) -- C:\Users\Roger sous sol\Dropbox\EMD - Direction 2012\rentrée 2013\Calendrier 2013-2014.xls   [50688]
O61 - LFC: 11/02/2014 - 13:49:46 ---A- . (...) -- C:\Users\Roger sous sol\Videos\EMD Elise\Capture.scn   [419]
O61 - LFC: 12/02/2014 - 13:49:32 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Avg2014\log\avgcfg.log.1   [65613]
O61 - LFC: 12/02/2014 - 13:49:32 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Avg2014\log\avgui.log.1   [131214]
O61 - LFC: 12/02/2014 - 13:49:32 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Avg2014\log\lng.log.1   [65619]
O61 - LFC: 12/02/2014 - 13:49:33 ----- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Identities\{7353FEB3-18DA-4622-8331-3176739AFB0F}\Message Store\ASTUCES.imm   [2925217]
O61 - LFC: 12/02/2014 - 13:49:33 ----- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Identities\{7353FEB3-18DA-4622-8331-3176739AFB0F}\imsl.dat   [4054]
O61 - LFC: 12/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\ElevatedDiagnostics\460911090\2014021210.000\NetworkDiagnostics.0.debugreport.xml   [71908]
O61 - LFC: 12/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\ElevatedDiagnostics\460911090\2014021210.000\NetworkDiagnostics.1.debugreport.xml   [69789]
O61 - LFC: 12/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\ElevatedDiagnostics\460911090\2014021210.000\ResultReport.xml   [38062]
O61 - LFC: 12/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\ElevatedDiagnostics\460911090\2014021210.000\results.xml   [256]
O61 - LFC: 12/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\ElevatedDiagnostics\460911090\2014021210.000\results.xsl   [49097]
O61 - LFC: 12/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\ElevatedDiagnostics\460911090\latest.cab   [22000]
O61 - LFC: 12/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Identities\{7353FEB3-18DA-4622-8331-3176739AFB0F}\43F49947-A721-422E-9FF7-122CCF96D2E4_data.bak   [6082]
O61 - LFC: 12/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Identities\{7353FEB3-18DA-4622-8331-3176739AFB0F}\43F49947-A721-422E-9FF7-122CCF96D2E4_data.msg   [6082]
O61 - LFC: 12/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Identities\{7353FEB3-18DA-4622-8331-3176739AFB0F}\AccountsOrder.dat   [80]
O61 - LFC: 12/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Identities\{7353FEB3-18DA-4622-8331-3176739AFB0F}\AddressBook\AddrBook.db3   [234496]
O61 - LFC: 12/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Identities\{7353FEB3-18DA-4622-8331-3176739AFB0F}\F06AF419-CD9A-4080-9403-1229C28B678C_data.bak   [3250]
O61 - LFC: 12/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Identities\{7353FEB3-18DA-4622-8331-3176739AFB0F}\F06AF419-CD9A-4080-9403-1229C28B678C_data.msg   [3250]
O61 - LFC: 12/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Identities\{7353FEB3-18DA-4622-8331-3176739AFB0F}\IMSys\{09839FAD-7FFF-417F-9614-D1B5C38A7C08}\101\incredicenter_v2.bmp   [5348]
O61 - LFC: 12/02/2014 - 13:49:33 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\content.xml   [63493]
O61 - LFC: 12/02/2014 - 13:49:33 R--A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Identities\{7353FEB3-18DA-4622-8331-3176739AFB0F}\Message Store\Attachments\arrettravail7fevrier.pdf   [597967]
O61 - LFC: 12/02/2014 - 13:49:34 R--A- . (.Madame.) -- C:\Users\Roger sous sol\AppData\Local\IM\Identities\{7353FEB3-18DA-4622-8331-3176739AFB0F}\Message Store\Attachments\Bonasavoir.pps   [316416]
O61 - LFC: 12/02/2014 - 13:49:37 ----- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Identities\{7353FEB3-18DA-4622-8331-3176739AFB0F}\Message Store\Deleted Items.imm   [5834068]
O61 - LFC: 12/02/2014 - 13:49:37 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Identities\{7353FEB3-18DA-4622-8331-3176739AFB0F}\Message Store\Containers.db   [60263424]
O61 - LFC: 12/02/2014 - 13:49:37 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Identities\{7353FEB3-18DA-4622-8331-3176739AFB0F}\Message Store\IndexB\history.ix   [997021]
O61 - LFC: 12/02/2014 - 13:49:37 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Identities\{7353FEB3-18DA-4622-8331-3176739AFB0F}\Message Store\IndexB\imit.dat   [141312]
O61 - LFC: 12/02/2014 - 13:49:37 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Identities\{7353FEB3-18DA-4622-8331-3176739AFB0F}\Message Store\IndexB\index_d_1.ix   [7274496]
O61 - LFC: 12/02/2014 - 13:49:37 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Identities\{7353FEB3-18DA-4622-8331-3176739AFB0F}\Message Store\IndexB\index_di_1.ix   [262144]
O61 - LFC: 12/02/2014 - 13:49:37 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Identities\{7353FEB3-18DA-4622-8331-3176739AFB0F}\Message Store\IndexB\index_i_11598.ix   [47086]
O61 - LFC: 12/02/2014 - 13:49:37 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Identities\{7353FEB3-18DA-4622-8331-3176739AFB0F}\Message Store\IndexB\index_k_11598.ix   [131072]
O61 - LFC: 12/02/2014 - 13:49:37 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Identities\{7353FEB3-18DA-4622-8331-3176739AFB0F}\Message Store\IndexB\index_kl_1.ix   [30859264]
O61 - LFC: 12/02/2014 - 13:49:37 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Identities\{7353FEB3-18DA-4622-8331-3176739AFB0F}\Message Store\IndexB\index_klh_11598.ix   [14402]
O61 - LFC: 12/02/2014 - 13:49:37 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Identities\{7353FEB3-18DA-4622-8331-3176739AFB0F}\Message Store\IndexB\index_r_1.ix   [58144756]
O61 - LFC: 12/02/2014 - 13:49:37 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Identities\{7353FEB3-18DA-4622-8331-3176739AFB0F}\Message Store\IndexB\index_v.ix   [308]
O61 - LFC: 12/02/2014 - 13:49:37 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Identities\{7353FEB3-18DA-4622-8331-3176739AFB0F}\Message Store\IndexB\indexlog.dat   [2773]
O61 - LFC: 12/02/2014 - 13:49:37 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Identities\{7353FEB3-18DA-4622-8331-3176739AFB0F}\Message Store\IndexH\history.ix   [958692]
O61 - LFC: 12/02/2014 - 13:49:37 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Identities\{7353FEB3-18DA-4622-8331-3176739AFB0F}\Message Store\IndexH\imit.dat   [46080]
O61 - LFC: 12/02/2014 - 13:49:37 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Identities\{7353FEB3-18DA-4622-8331-3176739AFB0F}\Message Store\IndexH\index_d_1.ix   [10813440]
O61 - LFC: 12/02/2014 - 13:49:37 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Identities\{7353FEB3-18DA-4622-8331-3176739AFB0F}\Message Store\IndexH\index_di_1.ix   [393216]
O61 - LFC: 12/02/2014 - 13:49:37 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Identities\{7353FEB3-18DA-4622-8331-3176739AFB0F}\Message Store\IndexH\index_i_57067.ix   [229007]
O61 - LFC: 12/02/2014 - 13:49:37 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Identities\{7353FEB3-18DA-4622-8331-3176739AFB0F}\Message Store\IndexH\index_k_57067.ix   [131072]
O61 - LFC: 12/02/2014 - 13:49:37 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Identities\{7353FEB3-18DA-4622-8331-3176739AFB0F}\Message Store\IndexH\index_kl_1.ix   [19152896]
O61 - LFC: 12/02/2014 - 13:49:37 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Identities\{7353FEB3-18DA-4622-8331-3176739AFB0F}\Message Store\IndexH\index_klh_57067.ix   [2842]
O61 - LFC: 12/02/2014 - 13:49:37 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Identities\{7353FEB3-18DA-4622-8331-3176739AFB0F}\Message Store\IndexH\index_r_1.ix   [23177461]
O61 - LFC: 12/02/2014 - 13:49:37 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Identities\{7353FEB3-18DA-4622-8331-3176739AFB0F}\Message Store\IndexH\index_v.ix   [309]
O61 - LFC: 12/02/2014 - 13:49:37 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Identities\{7353FEB3-18DA-4622-8331-3176739AFB0F}\Message Store\IndexH\indexlog.dat   [2682]
O61 - LFC: 12/02/2014 - 13:49:38 ----- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Runtime\Message\{B52A5A40-0F19-4718-AF8B-48A7C0BD0955}\Show\noScriptHtmlStrWithoutSource_Prev_warn_7.htm   [123088]
O61 - LFC: 12/02/2014 - 13:49:38 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Runtime\Message\A2546189-E973-46E2-80B7-2EAAC17BE3D9.htm   [46832]
O61 - LFC: 12/02/2014 - 13:49:38 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Runtime\Message\E0FC8954-67B0-449A-9EE0-C69345A19C3B.htm   [46832]
O61 - LFC: 12/02/2014 - 13:49:38 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Runtime\Message\{037D761A-C05E-412B-A017-A2325E430362}\Show\logo1.png   [12436]
O61 - LFC: 12/02/2014 - 13:49:38 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Runtime\Message\{037D761A-C05E-412B-A017-A2325E430362}\Show\noScriptHtmlStrWithoutSource_Prev_7.htm   [6498]
O61 - LFC: 12/02/2014 - 13:49:38 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Runtime\Message\{34699374-96BD-4997-9502-8E411AAC91A9}\Show\noScriptHtmlStrWithoutSource_Prev_warn_9.htm   [10890]
O61 - LFC: 12/02/2014 - 13:49:38 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Runtime\Message\{4532415A-E0EC-42EE-AE43-E4D3CAF926AC}\Show\noScriptHtmlStrWithoutSource_Prev_9.htm   [10890]
O61 - LFC: 12/02/2014 - 13:49:38 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Runtime\Message\{5104284B-4026-4AF7-9C5D-0E9F1A72DF3C}\Show\ATT1.htm   [268]
O61 - LFC: 12/02/2014 - 13:49:38 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Runtime\Message\{5104284B-4026-4AF7-9C5D-0E9F1A72DF3C}\Show\noScriptHtmlStrWithoutSource_Prev_7.htm   [6892]
O61 - LFC: 12/02/2014 - 13:49:38 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Runtime\Message\{578D414B-EFE8-472E-8CD8-510AC7700DC6}\Show\noScriptHtmlStrWithoutSource_Prev_warn_7.htm   [85138]
O61 - LFC: 12/02/2014 - 13:49:38 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Runtime\Message\{5BBB6C43-469E-4A58-B8F0-2F370EE5284C}\Show\noScriptHtmlStrWithoutSource_Prev_warn_7.htm   [31260]
O61 - LFC: 12/02/2014 - 13:49:38 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Runtime\Message\{5C589F4E-6996-4D4D-8380-C4D763E28664}\Show\noScriptHtmlStrWithoutSource_Prev_9.htm   [10890]
O61 - LFC: 12/02/2014 - 13:49:38 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Runtime\Message\{B984463C-1302-4AA1-B209-8DEB99C2B10D}\Show\noScriptHtmlStrWithoutSource_Prev_warn_7.htm   [44084]
O61 - LFC: 12/02/2014 - 13:49:38 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Runtime\Message\{DD21B2B9-D5F2-4C57-9F19-4B88F8449C5C}\Show\noScriptHtmlStrWithoutSource_Prev_9.htm   [10890]
O61 - LFC: 12/02/2014 - 13:49:38 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Runtime\Message\{EFE870D7-3A1D-466D-A452-B5014F89A02C}\Show\ATT1.htm   [268]
O61 - LFC: 12/02/2014 - 13:49:38 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\IM\Runtime\Message\{EFE870D7-3A1D-466D-A452-B5014F89A02C}\Show\noScriptHtmlStrWithoutSource_Prev_7.htm   [4064]
O61 - LFC: 12/02/2014 - 13:49:39 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Temp\IM\imv21D4.htm   [78]
O61 - LFC: 12/02/2014 - 13:49:39 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Temp\IM\imv320A.htm   [78]
O61 - LFC: 12/02/2014 - 13:49:39 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Temp\IM\imv39C4.htm   [78]
O61 - LFC: 12/02/2014 - 13:49:39 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Temp\IM\imv3CE0.htm   [78]
O61 - LFC: 12/02/2014 - 13:49:39 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Temp\IM\imv4BBE.htm   [78]
O61 - LFC: 12/02/2014 - 13:49:39 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Temp\IM\imv4D97.htm   [78]
O61 - LFC: 12/02/2014 - 13:49:39 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Temp\IM\imv6A19.htm   [78]
O61 - LFC: 12/02/2014 - 13:49:39 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Temp\IM\imv9722.htm   [78]
O61 - LFC: 12/02/2014 - 13:49:39 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Temp\IM\imv9C03.htm   [78]
O61 - LFC: 12/02/2014 - 13:49:39 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Temp\IM\imvAAA4.htm   [78]
O61 - LFC: 12/02/2014 - 13:49:39 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Temp\IM\imvB4A5.htm   [78]
O61 - LFC: 12/02/2014 - 13:49:39 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Temp\IM\imvB645.htm   [78]
O61 - LFC: 12/02/2014 - 13:49:39 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Temp\IM\imvBAAE.htm   [78]
O61 - LFC: 12/02/2014 - 13:49:39 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Temp\IM\imvDF1A.htm   [78]
O61 - LFC: 12/02/2014 - 13:49:39 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Temp\Skype\DbTemp\temp-BexytZhIfa2zegvuP3gnRsE0   [0]
O61 - LFC: 12/02/2014 - 13:49:39 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Temp\Skype\DbTemp\temp-XyqnTHBzdLspPt3H7KR1PpHg   [0]
O61 - LFC: 12/02/2014 - 13:49:39 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpnynng7.dll   [41984]
O61 - LFC: 12/02/2014 - 13:49:39 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpnynng7.lck   [0]
O61 - LFC: 12/02/2014 - 13:49:39 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Temp\~gu3-ver.dat   [106]
O61 - LFC: 12/02/2014 - 13:49:39 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Local\Temp\~upgrade.dat   [1094]
O61 - LFC: 12/02/2014 - 13:49:39 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\AVG2014\cfgall\userawacs.cfg   [32334]
O61 - LFC: 12/02/2014 - 13:49:39 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\aggregation.dbx   [6144]  =>.Dropbox
O61 - LFC: 12/02/2014 - 13:49:39 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\config.dbx   [16384]  =>.Dropbox
O61 - LFC: 12/02/2014 - 13:49:39 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\deleted.dbx   [53248]  =>.Dropbox
O61 - LFC: 12/02/2014 - 13:49:39 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\filecache.dbx   [1800192]  =>.Dropbox
O61 - LFC: 12/02/2014 - 13:49:39 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\host.db   [85]  =>.Dropbox
O61 - LFC: 12/02/2014 - 13:49:39 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\host.dbx   [217]  =>.Dropbox
O61 - LFC: 12/02/2014 - 13:49:39 R--A- . (.Madame.) -- C:\Users\Roger sous sol\AppData\Local\Temp\IM\Bonasavoir.pps   [316416]
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\PENDING_ugpabi   [6144]  =>.Dropbox
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\TO_HASH_seuwwe   [0]  =>.Dropbox
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\UPDATED_t1oknn   [6144]  =>.Dropbox
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\l\52fb1098   [23200]  =>.Dropbox
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\l\52fb4bc1   [1072]  =>.Dropbox
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\l\52fb4bc3   [1024]  =>.Dropbox
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\l\52fb4bc7   [1232]  =>.Dropbox
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\l\52fb4bc9   [1216]  =>.Dropbox
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\l\52fb4bcb   [15248]  =>.Dropbox
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\notifications.dbx   [2048]  =>.Dropbox
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\photo.dbx   [17408]  =>.Dropbox
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52fb1095   [124]  =>.Dropbox
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52fb1099   [148]  =>.Dropbox
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52fb10ca   [156]  =>.Dropbox
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52fb1bd5   [124]  =>.Dropbox
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52fb1bdd   [148]  =>.Dropbox
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52fb1c3e   [152]  =>.Dropbox
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52fb1c79   [152]  =>.Dropbox
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52fb2354   [156]  =>.Dropbox
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52fb45c3   [124]  =>.Dropbox
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52fb46ff   [152]  =>.Dropbox
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52fb47f5   [152]  =>.Dropbox
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52fb4971   [124]  =>.Dropbox
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52fb4978   [148]  =>.Dropbox
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52fb4c36   [124]  =>.Dropbox
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52fb4d0e   [124]  =>.Dropbox
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52fb4dab   [124]  =>.Dropbox
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52fb4e4f   [124]  =>.Dropbox
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52fb5068   [124]  =>.Dropbox
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52fb50c7   [124]  =>.Dropbox
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52fb5113   [124]  =>.Dropbox
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52fb511b   [136]  =>.Dropbox
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52fb5205   [124]  =>.Dropbox
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52fb5208   [148]  =>.Dropbox
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52fb521a   [156]  =>.Dropbox
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52fb58f0   [124]  =>.Dropbox
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52fb58f3   [148]  =>.Dropbox
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52fb58f6   [156]  =>.Dropbox
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\shellext\l\52fb6a64   [152]  =>.Dropbox
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\sigstore.dbx   [5624832]  =>.Dropbox
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\unlink.db   [264]  =>.Dropbox
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\GlarySoft\Glary Utilities 4\Backups\41682.473078703704   [90]
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Microsoft\Office\Excel12.pip   [1544]
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Microsoft\Office\PowerP12.pip   [1468]
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Skype\live#3arogerpetitot\bistats.db   [143360]
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Skype\live#3arogerpetitot\bistats.db-journal   [45656]
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Skype\live#3arogerpetitot\config.xml   [12612]
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Skype\live#3arogerpetitot\dc.db   [106496]
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Skype\live#3arogerpetitot\eas.db   [147456]
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Skype\live#3arogerpetitot\httpfe\cookies.dat   [2]
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Skype\live#3arogerpetitot\keyval.db   [61440]
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Skype\live#3arogerpetitot\keyval.db-journal   [41552]
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Skype\live#3arogerpetitot\main.db   [716800]
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Skype\live#3arogerpetitot\main.db-journal   [181088]
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Skype\live#3arogerpetitot\mmanager\mediacache.ldb   [40]
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Skype\live#3arogerpetitot\msn.db   [49152]
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Skype\live#3arogerpetitot\msn.db-journal   [37448]
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Skype\live#3arogerpetitot\qikdb\qik_main.db   [32768]
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Skype\live#3arogerpetitot\simcache\streamlist   [44]
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Skype\live#3arogerpetitot\statistics.db   [53248]
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Skype\live#3arogerpetitot\thmanager\thumbcache.ldb   [40]
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Skype\shared.xml   [89459]
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Skype\shared_dynco\dc.db   [2551808]
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Skype\shared_dynco\dc.db-journal   [1297376]
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\ZHP\Log.txt   [16465]  =>.Nicolas Coolman
O61 - LFC: 12/02/2014 - 13:49:40 ---A- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\ZHP\TestsZHPDiag.txt   [3081]  =>.Nicolas Coolman
O61 - LFC: 12/02/2014 - 13:49:40 --H-- . (...) -- C:\Users\Roger sous sol\AppData\Roaming\Microsoft\Office\Recent\index.dat   [90]
O61 - LFC: 12/02/2014 - 13:49:43 ---A- . (...) -- C:\Users\Roger sous sol\Dropbox\EMD - Direction 2012\CONCERT et SPECTACLE\14 février 2014\tableau RESERVATION AG ET SAINT VALENTIN.xlsx   [11478]
O61 - LFC: 12/02/2014 - 13:49:43 ---A- . (...) -- C:\Users\Roger sous sol\Dropbox\EMD - Direction 2012\Elèves 2013 2014.xlsx   [209109]
O61 - LFC: 12/02/2014 - 13:49:43 ---A- . (...) -- C:\Users\Roger sous sol\Dropbox\EMD - Direction 2012\partenariat Mengen\Tableau récap participants MENGEN.xlsx   [100354]
~ 36 Fichiers temporaires (Temporary files)
~ Files: 388 Scanned in 00mn 13s



---\\ Liste des outils de désinfection (LATC) (O63)
O63 - Logiciel: ZHPDiag 2014 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1  =>.Nicolas Coolman
~ ADS:  Scanned in 00mn 00s



---\\ Liste les services legacy du registre (LALS) (O64)
O64 - Services: CurCS - 28/09/2013 - C:\Windows\system32\drivers\afd.sys (AFD)  .(.Microsoft Corporation - Ancillary Function Driver for WinSock.) - LEGACY_AFD
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\atapi.sys (atapi)  .(.Microsoft Corporation - ATAPI IDE Miniport Driver.) - LEGACY_ATAPI
O64 - Services: CurCS - 05/11/2013 - C:\Windows\System32\DRIVERS\avgdiska.sys (Avgdiska)  .(.AVG Technologies CZ, s.r.o. - AVG File Vault Driver.) - LEGACY_AVGDISKA
O64 - Services: CurCS - 04/11/2013 - C:\Windows\System32\DRIVERS\avgidsdrivera.sys (AVGIDSDriver)  .(.AVG Technologies CZ, s.r.o. - IDS Application Activity Monitor Driver..) - LEGACY_AVGIDSDRIVER
O64 - Services: CurCS - 24/10/2013 - C:\Windows\System32\DRIVERS\avgidsha.sys (AVGIDSHA)  .(.AVG Technologies CZ, s.r.o. - IDS Application Activity Monitor Helper Dri.) - LEGACY_AVGIDSHA
O64 - Services: CurCS - 31/10/2013 - C:\Windows\System32\DRIVERS\avgldx64.sys (Avgldx64)  .(.AVG Technologies CZ, s.r.o. - AVG AVI Loader Driver.) - LEGACY_AVGLDX64
O64 - Services: CurCS - 31/10/2013 - C:\Windows\System32\DRIVERS\avgloga.sys (Avgloga)  .(.AVG Technologies CZ, s.r.o. - AVG Logging Driver.) - LEGACY_AVGLOGA
O64 - Services: CurCS - 01/10/2013 - C:\Windows\System32\DRIVERS\avgmfx64.sys (Avgmfx64)  .(.AVG Technologies CZ, s.r.o. - AVG Resident Shield Minifilter Driver.) - LEGACY_AVGMFX64
O64 - Services: CurCS - 10/09/2013 - C:\Windows\System32\DRIVERS\avgrkx64.sys (Avgrkx64)  .(.AVG Technologies CZ, s.r.o. - AVG Anti-Rootkit Driver.) - LEGACY_AVGRKX64
O64 - Services: CurCS - 01/08/2013 - C:\Windows\System32\DRIVERS\avgtdia.sys (Avgtdia)  .(.AVG Technologies CZ, s.r.o. - AVG Network connection watcher.) - LEGACY_AVGTDIA
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\Drivers\Beep.sys (Beep)  .(.Microsoft Corporation - BEEP Driver.) - LEGACY_BEEP
O64 - Services: CurCS - 04/07/2012 - C:\Windows\system32\browser.dll (bowser)  .(.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) - LEGACY_BOWSER
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\clfs.sys (CLFS)  .(.Microsoft Corporation - Common Log File System Driver.) - LEGACY_CLFS
O64 - Services: CurCS - 04/07/2013 - C:\Windows\System32\Drivers\cng.sys (CNG)  .(.Microsoft Corporation - Kernel Cryptography, Next Generation.) - LEGACY_CNG
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\cscsvc.dll (CSC)  .(.Microsoft Corporation - DLL du service CSC.) - LEGACY_CSC
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\drivers\dfsc.sys (DfsC)  .(.Microsoft Corporation - DFS Namespace Client Driver.) - LEGACY_DFSC
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\discache.sys (discache)  .(.Microsoft Corporation - System Indexer/Cache Driver.) - LEGACY_DISCACHE
O64 - Services: CurCS - 01/08/2013 - C:\Windows\system32\drivers\dxgkrnl.sys (DXGKrnl)  .(.Microsoft Corporation - DirectX Graphics Kernel.) - LEGACY_DXGKRNL
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\fileinfo.sys (FileInfo)  .(.Microsoft Corporation - FileInfo Filter Driver.) - LEGACY_FILEINFO
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\drivers\fltmgr.sys (FltMgr)  .(.Microsoft Corporation - Gestionnaire de filtres de système de fichi.) - LEGACY_FLTMGR
O64 - Services: CurCS - 24/01/2013 - C:\Windows\system32\drivers\fvevol.sys (fvevol)  .(.Microsoft Corporation - BitLocker Drive Encryption Driver.) - LEGACY_FVEVOL
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\drivers\http.sys (HTTP)  .(.Microsoft Corporation - HTTP Pile du protocole.) - LEGACY_HTTP
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\drivers\hwpolicy.sys (hwpolicy)  .(.Microsoft Corporation - Hardware Policy Driver.) - LEGACY_HWPOLICY
O64 - Services: CurCS - 25/09/2013 - C:\Windows\System32\Drivers\ksecdd.sys (KSecDD)  .(.Microsoft Corporation - Kernel Security Support Provider Interface.) - LEGACY_KSECDD
O64 - Services: CurCS - 25/09/2013 - C:\Windows\System32\Drivers\ksecpkg.sys (KSecPkg)  .(.Microsoft Corporation - Kernel Security Support Provider Interface.) - LEGACY_KSECPKG
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\lltdio.sys (lltdio)  .(.Microsoft Corporation - Link-Layer Topology Mapper I/O Driver.) - LEGACY_LLTDIO
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\luafv.sys (luafv)  .(.Microsoft Corporation - Pilote de filtre de virtualisation de fichi.) - LEGACY_LUAFV
O64 - Services: CurCS - 23/10/2013 - C:\Program Files\ma-config.com\Drivers\ma-config_amd64.sys (ma-config_amd64)  .(.CybelSoft - Driver NT Ma-Config.com.) - LEGACY_MA-CONFIG_AMD64
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\drivers\mountmgr.sys (mountmgr)  .(.Microsoft Corporation - Gestionnaire des points de montage.) - LEGACY_MOUNTMGR
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\FirewallAPI.dll (mpsdrv)  .(.Microsoft Corporation - API du Pare-feu Windows.) - LEGACY_MPSDRV
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\wkssvc.dll (mrxsmb)  .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\wkssvc.dll (mrxsmb10)  .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB10
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\wkssvc.dll (mrxsmb20)  .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB20
O64 - Services: CurCS - 21/11/2010 - C:\Windows\System32\drivers\msahci.sys (msahci)  .(.Microsoft Corporation - MS AHCI 1.0 Standard Driver.) - LEGACY_MSAHCI
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\msisadrv.sys (msisadrv)  .(.Microsoft Corporation - ISA Driver.) - LEGACY_MSISADRV
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\mup.sys (Mup)  .(.Microsoft Corporation - Multiple UNC Provider Driver.) - LEGACY_MUP
O64 - Services: CurCS - 22/08/2012 - C:\Windows\system32\drivers\ndis.sys (NDIS)  .(.Microsoft Corporation - Pilote NDIS 6.20.) - LEGACY_NDIS
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\netbios.sys (NetBIOS)  .(.Microsoft Corporation - NetBIOS interface driver.) - LEGACY_NETBIOS
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\drivers\netbt.sys (NetBT)  .(.Microsoft Corporation - MBT Transport driver.) - LEGACY_NETBT
O64 - Services: CurCS - 21/08/2013 - C:\Windows\sysWOW64\drivers\npf_devolo.sys (NPF_devolo)  .(.CACE Technologies - npf.sys (NT5/6 AMD64) Kernel Driver.) - LEGACY_NPF_DEVOLO
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy)  .(.Microsoft Corporation - NSI Proxy.) - LEGACY_NSIPROXY
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\pcw.sys (pcw)  .(.Microsoft Corporation - Performance Counters for Windows Driver.) - LEGACY_PCW
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\peauth.sys (PEAUTH)  .(.Microsoft Corporation - Protected Environment Authentication and Au.) - LEGACY_PEAUTH
O64 - Services: CurCS - 21/11/2010 - C:\Windows\System32\drivers\pacer.sys (Psched)  .(.Microsoft Corporation - Planificateur de paquets QoS.) - LEGACY_PSCHED
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\wkssvc.dll (rdbss)  .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_RDBSS
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD)  .(.Microsoft Corporation - RDP Miniport.) - LEGACY_RDPCDD
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD)  .(.Microsoft Corporation - RDP Encoder Miniport.) - LEGACY_RDPENCDD
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP)  .(.Microsoft Corporation - RDP Reflector Driver Miniport.) - LEGACY_RDPREFMP
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\rspndr.sys (rspndr)  .(.Microsoft Corporation - Link-Layer Topology Responder Driver for ND.) - LEGACY_RSPNDR
O64 - Services: CurCS - 10/06/2009 - C:\Windows\System32\Drivers\secdrv.sys (secdrv)  .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\Drivers\spldr.sys (spldr)  .(.Microsoft Corporation - loader for security processor.) - LEGACY_SPLDR
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\srvsvc.dll (srv)  .(.Microsoft Corporation - DLL du service Serveur.) - LEGACY_SRV
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\srvsvc.dll (srv2)  .(.Microsoft Corporation - DLL du service Serveur.) - LEGACY_SRV2
O64 - Services: CurCS - 29/04/2011 - C:\Windows\System32\DRIVERS\srvnet.sys (srvnet)  .(.Microsoft Corporation - Server Network driver.) - LEGACY_SRVNET
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\vmstorfltres.dll (storflt)  .(.Microsoft Corporation - Fichier DLL de ressources du filtre de stoc.) - LEGACY_STORFLT
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\tcpipcfg.dll (Tcpip)  .(.Microsoft Corporation - Objets de configuration du réseau.) - LEGACY_TCPIP
O64 - Services: CurCS - 03/10/2012 - C:\Windows\System32\drivers\tcpipreg.sys (tcpipreg)  .(.Microsoft Corporation - TCP/IP Registry Compatibility Driver.) - LEGACY_TCPIPREG
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\tcpipcfg.dll (tdx)  .(.Microsoft Corporation - Objets de configuration du réseau.) - LEGACY_TDX
O64 - Services: CurCS - 01/07/2010 - C:\Program Files\Unlocker\UnlockerDriver5.sys (UnlockerDriver5) .(...) - LEGACY_UNLOCKERDRIVER5
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\vga.sys (VgaSave)  .(.Microsoft Corporation - VGA/Super VGA Video Driver.) - LEGACY_VGASAVE
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\drivers\volmgrx.sys (volmgrx)  .(.Microsoft Corporation - Pilote d’extension du gestionnaire de volum.) - LEGACY_VOLMGRX
O64 - Services: CurCS - 21/11/2010 - C:\Windows\System32\drivers\volsnap.sys (volsnap)  .(.Microsoft Corporation - Pilote de cliché instantané du volume.) - LEGACY_VOLSNAP
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\rascfg.dll (Wanarpv6)  .(.Microsoft Corporation - Objets de configuration RAS.) - LEGACY_WANARPV6
O64 - Services: CurCS - 25/06/2013 - C:\Windows\System32\drivers\Wdf01000.sys (Wdf01000)  .(.Microsoft Corporation - Runtime de l’infrastructure de pilotes en m.) - LEGACY_WDF01000
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\wfplwf.sys (WfpLwf)  .(.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - LEGACY_WFPLWF
~ Legacy: 76 Scanned in 00mn 00s



---\\ Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe  =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> <evtfile>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.scr> <scrfile>[HKLM\..\open\Command] (...) -- "%1" /S
~ FASS Keys: 10 Scanned in 00mn 00s



---\\ Menu de démarrage Internet (SMI) (O68)
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
~ Keys:  Scanned in 00mn 00s



---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69)
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKCU] {44275A1D-337D-49F3-AE5C-3A3FE4C5034E} - (Google) - http://www.google.com
O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Goo) - http://www.google.com
~ Keys:  Scanned in 00mn 00s



---\\ Enumère les service demarrés par Svchost (SSS) (O83)
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll   [72192]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll   [80384]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll   [80384]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll   [236032]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll   [777728]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll   [859648]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll   [679424]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’accès distant.) -- C:\Windows\System32\rasauto.dll   [99328]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll   [344064]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll   [97792]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements système (SENS).) -- C:\Windows\System32\sens.dll   [64512]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll   [359424]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM).) -- C:\Windows\System32\tapisrv.dll   [316928]
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du serveur hôte de session Burea.) -- C:\Windows\System32\termsrv.dll   [680960]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll   [2428952]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\Windows\System32\qmgr.dll   [849920]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll   [370688]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur un réseau IPv4..) -- C:\Windows\System32\iphlpsvc.dll   [569344]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll   [30720]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll   [70144]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll   [156672]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédias.) -- C:\Windows\System32\mmcss.dll   [67584]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll   [242688]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à distance.) -- C:\Windows\System32\sessenv.dll   [121856]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll   [136704]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll   [111104]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll   [1110016]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\kmsvc.dll   [90624]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll   [84480]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll   [209920]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll   [44544]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll   [100864]
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll   [193536]

~ Services: 33 Scanned in 00mn 00s



---\\ Liste des exceptions du parefeu (FirewallRules) (O87)
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-OUT-Active" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-In-EdgeScope-Active" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "RemoteAssistance-SSDPSrv-Out-TCP-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "RemoteAssistance-SSDPSrv-In-TCP-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "RemoteAssistance-SSDPSrv-Out-UDP-Active" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "RemoteAssistance-SSDPSrv-In-UDP-Active" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "RemoteAssistance-Out-TCP-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-In-TCP-EdgeScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-DCOM-In-TCP-NoScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "RemoteAssistance-RAServer-Out-TCP-NoScope-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur COM d’assistance à distance Windows.) -- C:\Windows\system32\raserver.exe
O87 - FAEL: "RemoteAssistance-RAServer-In-TCP-NoScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur COM d’assistance à distance Windows.) -- C:\Windows\system32\raserver.exe
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-OUT" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-In-EdgeScope" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "RemoteAssistance-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-In-TCP-EdgeScope" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteFwAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "RemoteFwAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "RemoteFwAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "RemoteFwAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "RemoteEventLogSvc-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "RemoteEventLogSvc-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "RemoteEventLogSvc-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "RemoteEventLogSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "MSDTC-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "MSDTC-KTMRM-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "MSDTC-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "MSDTC-KTMRM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "MSDTC-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "RemoteTask-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "RemoteTask-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "RemoteTask-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "RemoteTask-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "RemoteSvcAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "RemoteSvcAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe
O87 - FAEL: "RemoteSvcAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "RemoteSvcAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "NETDIS-LLMNR-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "NETDIS-LLMNR-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "NETDIS-FDPHOST-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "NETDIS-FDPHOST-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "NETDIS-UPnP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "NETDIS-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "NETDIS-LLMNR-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "NETDIS-LLMNR-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "NETDIS-FDPHOST-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "NETDIS-FDPHOST-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "NETDIS-UPnP-Out-TCP-Active" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "NETDIS-SSDPSrv-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "WMI-ASYNC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) -- C:\Windows\system32\wbem\unsecapp.exe
O87 - FAEL: "WMI-WINMGMT-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "WMI-WINMGMT-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "WMI-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "WMI-ASYNC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) -- C:\Windows\system32\wbem\unsecapp.exe
O87 - FAEL: "WMI-WINMGMT-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "WMI-WINMGMT-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "WMI-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "MsiScsi-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "MsiScsi-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "MsiScsi-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "MsiScsi-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "PerfLogsAlerts-DCOM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "PerfLogsAlerts-PLASrv-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Performance Logs and Alerts DCOM Server.) -- C:\Windows\system32\plasrv.exe
O87 - FAEL: "PerfLogsAlerts-DCOM-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "PerfLogsAlerts-PLASrv-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Performance Logs and Alerts DCOM Server.) -- C:\Windows\system32\plasrv.exe
O87 - FAEL: "CoreNet-GP-LSASS-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Local Security Authority Process.) -- C:\Windows\system32\lsass.exe
O87 - FAEL: "CoreNet-DNS-Out-UDP" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "CoreNet-GP-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "CoreNet-IPHTTPS-Out" | Out - None - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "CoreNet-Teredo-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "CoreNet-Teredo-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "CoreNet-DHCPV6-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "CoreNet-DHCPV6-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "CoreNet-DHCP-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "CoreNet-DHCP-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "FPS-LLMNR-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "FPS-LLMNR-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "FPS-SpoolSvc-In-TCP" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "FPS-SpoolSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "Collab-PNRP-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "Collab-PNRP-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "Collab-PNRP-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "Collab-PNRP-In-UDP" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "Collab-P2PHost-WSD-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "Collab-P2PHost-WSD-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "Collab-P2PHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "Collab-P2PHost-In-TCP" | In - None - P6 - TRUE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "RVM-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "RVM-VDSLDR-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Virtual Disk Service Loader.) -- C:\Windows\system32\vdsldr.exe
O87 - FAEL: "RVM-VDS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service de disque virtuel.) -- C:\Windows\system32\vds.exe
O87 - FAEL: "RVM-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "RVM-VDSLDR-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Virtual Disk Service Loader.) -- C:\Windows\system32\vdsldr.exe
O87 - FAEL: "RVM-VDS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service de disque virtuel.) -- C:\Windows\system32\vds.exe
O87 - FAEL: "PNRPMNRS-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "PNRPMNRS-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "PNRPMNRS-PNRP-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "PNRPMNRS-PNRP-In-UDP" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-UDP3540-Out" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-UDP3540-In" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-TCP3587-Out" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-TCP3587-In" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-UPnP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-Out-UDP" |Out - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-In-UDP" |In - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-Out-UDP-NoScope" |Out - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-In-UDP-NoScope" |In - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "WMP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe  =>.Microsoft Corporation
O87 - FAEL: "WMP-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe  =>.Microsoft Corporation
O87 - FAEL: "WMP-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe  =>.Microsoft Corporation
O87 - FAEL: "SNMPTRAP-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Interruption SNMP.) -- C:\Windows\system32\snmptrap.exe
O87 - FAEL: "SNMPTRAP-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Interruption SNMP.) -- C:\Windows\system32\snmptrap.exe
O87 - FAEL: "MCX-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "MCX-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "MCX-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe  =>.Microsoft Corporation
O87 - FAEL: "MCX-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe  =>.Microsoft Corporation
O87 - FAEL: "MCX-QWave-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "MCX-QWave-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "MCX-QWave-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "MCX-QWave-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "MCX-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe  =>.Microsoft Corporation
O87 - FAEL: "MCX-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe  =>.Microsoft Corporation
O87 - FAEL: "MCX-MCX2SVC-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "MCX-Prov-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - MCX2 Provisioning library.) -- C:\Windows\ehome\mcx2prov.exe
O87 - FAEL: "MCX-PlayTo-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "MCX-McrMgr-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Media Center Extender Manager.) -- C:\Windows\ehome\mcrmgr.exe
O87 - FAEL: "MCX-PlayTo-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "MCX-FDPHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "Microsoft-Windows-PeerDist-WSD-In" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "Microsoft-Windows-PeerDist-WSD-Out" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "WPDMTP-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe
O87 - FAEL: "WPDMTP-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe
O87 - FAEL: "WPDMTP-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "WPDMTP-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "WPDMTP-UPnPHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "WPDMTP-UPnP-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "NetPres-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe  =>.Microsoft Corporation
O87 - FAEL: "NetPres-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe  =>.Microsoft Corporation
O87 - FAEL: "NetPres-WSD-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe  =>.Microsoft Corporation
O87 - FAEL: "NetPres-WSD-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe  =>.Microsoft Corporation
O87 - FAEL: "NetPres-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe  =>.Microsoft Corporation
O87 - FAEL: "NetPres-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe  =>.Microsoft Corporation
O87 - FAEL: "RemoteDesktop-UserMode-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "{AA6301CA-0F18-4961-BE7E-DE0045FAC437}" | In - Private - P6 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG Online Shield Service.) -- C:\Program Files (x86)\AVG\AVG2014\avgnsa.exe
O87 - FAEL: "{CE7FF3AC-B8FC-4223-AA5C-80A09AD7A531}" | In - Private - P17 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG Online Shield Service.) -- C:\Program Files (x86)\AVG\AVG2014\avgnsa.exe
O87 - FAEL: "{8A9FD893-388C-4413-A0BD-6BA4E325CAFA}" | In - Private - P6 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG Diagnostics.) -- C:\Program Files (x86)\AVG\AVG2014\avgdiagex.exe
O87 - FAEL: "{438C19AF-1B55-4F64-A704-33D6ED6ADB26}" | In - Private - P17 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG Diagnostics.) -- C:\Program Files (x86)\AVG\AVG2014\avgdiagex.exe
O87 - FAEL: "{36CB6E5B-476F-4E9D-80A3-12C2C5CECC6A}" | In - Private - P6 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG Installer Application.) -- C:\Program Files (x86)\AVG\AVG2014\avgmfapx.exe
O87 - FAEL: "{6743C5BC-2DCF-48E8-8ACC-F641033B34BB}" | In - Private - P17 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG Installer Application.) -- C:\Program Files (x86)\AVG\AVG2014\avgmfapx.exe
O87 - FAEL: "{15665CAD-80A2-4D83-9244-3E1ADD83F321}" | In - Private - P6 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG E-mail Scanner.) -- C:\Program Files (x86)\AVG\AVG2014\avgemca.exe
O87 - FAEL: "{786C251D-5463-4235-A8D0-C96209AC2231}" | In - Private - P17 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG E-mail Scanner.) -- C:\Program Files (x86)\AVG\AVG2014\avgemca.exe
O87 - FAEL: "{3A326B93-C615-4D70-8F3D-9E8AB940BE98}" | In - Private - P6 - TRUE | .(.Pinnacle Systems - Render Manager.) -- C:\Program Files (x86)\Pinnacle\Studio 15\Programs\RM.exe
O87 - FAEL: "{2420264B-467F-4391-B0A7-0D73E17C8253}" | In - Private - P17 - TRUE | .(.Pinnacle Systems - Render Manager.) -- C:\Program Files (x86)\Pinnacle\Studio 15\Programs\RM.exe
O87 - FAEL: "{0F733FAE-C95A-4084-A77D-CB4C91FFA5D2}" | In - Private - P6 - TRUE | .(.Pinnacle Systems - Studio program file.) -- C:\Program Files (x86)\Pinnacle\Studio 15\Programs\Studio.exe
O87 - FAEL: "{07FE12EF-3254-4B33-9965-E05EFDA93F70}" | In - Private - P17 - TRUE | .(.Pinnacle Systems - Studio program file.) -- C:\Program Files (x86)\Pinnacle\Studio 15\Programs\Studio.exe
O87 - FAEL: "{96103345-1474-48E8-A1AE-F4F989ADAFBC}" | In - Private - P6 - TRUE | .(.Pinnacle Systems - umi.) -- C:\Program Files (x86)\Pinnacle\Studio 15\Programs\umi.exe
O87 - FAEL: "{891A4F7A-71FF-43E9-99EF-9CB2C854DBD7}" | In - Private - P17 - TRUE | .(.Pinnacle Systems - umi.) -- C:\Program Files (x86)\Pinnacle\Studio 15\Programs\umi.exe
O87 - FAEL: "{EC827C1D-F4AE-4106-BD69-110FA5E3EBF7}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Microsoft Office Outlook.) -- C:\Program Files (x86)\Microsoft Office\Office12\outlook.exe  =>.Microsoft Corporation
O87 - FAEL: "{AAD9B691-EB24-43E5-996C-41C9F58B781A}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Microsoft Office Groove.) -- C:\Program Files (x86)\Microsoft Office\Office12\GROOVE.exe
O87 - FAEL: "{81DEE01E-F977-4972-97EC-86F306690921}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Microsoft Office Groove.) -- C:\Program Files (x86)\Microsoft Office\Office12\GROOVE.exe
O87 - FAEL: "{939AA96B-7356-42AB-84C8-9D49E83AA00E}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Microsoft Office OneNote.) -- C:\Program Files (x86)\Microsoft Office\Office12\ONENOTE.exe
O87 - FAEL: "{3A014A62-FECF-40D4-AFF3-CE375BC66294}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Microsoft Office OneNote.) -- C:\Program Files (x86)\Microsoft Office\Office12\ONENOTE.exe
O87 - FAEL: "{3F8F9CEE-C300-4106-94A9-E030EB2C4B72}" | In - None - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe  =>.Skype Technologies S.A.
O87 - FAEL: "{ADF34157-7F90-4255-8D53-1A9260E178AE}" | In - Private - P6 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe
O87 - FAEL: "{C6192D3E-7E29-4CBC-8759-853DB1C17BDD}" | In - Private - P17 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe
O87 - FAEL: "{C783032F-7086-4FF5-90A6-BD4322791787}" | In - Private - P6 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Tray Application.) -- C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe
O87 - FAEL: "{D6C59F51-C52B-46C6-BF74-C3E50805100C}" | In - Private - P17 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Tray Application.) -- C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe
O87 - FAEL: "{52107703-E603-457E-8F60-31EB0CA0BD94}" | In - Private - P6 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Content Importer.) -- C:\Program Files (x86)\IncrediMail\Bin\ImpCnt.exe
O87 - FAEL: "{57758B2D-ED5A-4CF6-9A39-F9DC3DD5AB36}" | In - Private - P17 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Content Importer.) -- C:\Program Files (x86)\IncrediMail\Bin\ImpCnt.exe
O87 - FAEL: "{B80DFFFC-C884-4C1F-BEC4-274F4B9A8CAD}" | In - Private - P6 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Content Importer.) -- C:\Program Files (x86)\IncrediMail\Bin\ImpCnt.exe
O87 - FAEL: "{F9DC4503-C956-4064-8F35-9B346DED051E}" | In - Private - P17 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Content Importer.) -- C:\Program Files (x86)\IncrediMail\Bin\ImpCnt.exe
O87 - FAEL: "{7E2D60CC-2550-4D4F-84ED-36B94A15E032}" | In - Private - P6 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Content Importer.) -- C:\Program Files (x86)\IncrediMail\Bin\ImpCnt.exe
O87 - FAEL: "{4819BB44-8C9B-419A-A4DA-3EFD7329BD34}" | In - Private - P6 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Content Importer.) -- C:\Program Files (x86)\IncrediMail\Bin\ImpCnt.exe
O87 - FAEL: "{44C9664D-A613-49D3-AA32-FC7F64517761}" | In - Private - P17 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Content Importer.) -- C:\Program Files (x86)\IncrediMail\Bin\ImpCnt.exe
O87 - FAEL: "{753228AC-24B1-44FE-BA0C-96876CFCF7F5}" | In - Private - P6 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Content Importer.) -- C:\Program Files (x86)\IncrediMail\Bin\ImpCnt.exe
O87 - FAEL: "{C1F45EC3-5609-47A5-867C-04662BDAC7A8}" | In - Private - P17 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Content Importer.) -- C:\Program Files (x86)\IncrediMail\Bin\ImpCnt.exe
O87 - FAEL: "{4B4ABE5F-F0B5-466D-8BF2-8D481C2B14D4}" | In - Private - P17 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Content Importer.) -- C:\Program Files (x86)\IncrediMail\Bin\ImpCnt.exe
O87 - FAEL: "{CD04919D-BA4B-4EE3-B8C5-0D10446FA7A3}" | In - Private - P17 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Content Importer.) -- C:\Program Files (x86)\IncrediMail\Bin\ImpCnt.exe
O87 - FAEL: "{82B1504C-D092-467B-A0E9-419DB09EF924}" | In - Private - P6 - TRUE | .(.Dropbox, Inc. - Dropbox.) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\bin\Dropbox.exe  =>.Dropbox
O87 - FAEL: "{93E592CA-CCA3-4FE4-9454-88046A79B297}" | In - Private - P17 - TRUE | .(.Dropbox, Inc. - Dropbox.) -- C:\Users\Roger sous sol\AppData\Roaming\Dropbox\bin\Dropbox.exe  =>.Dropbox
O87 - FAEL: "TCP Query User{6BC84328-2D51-4DBE-8B5B-7FAAD0674810}C:\program files (x86)\devolo\informer\devinf.exe" | In - Private - P6 - TRUE | .(.devolo AG - devolo Informer.) -- C:\program files (x86)\devolo\informer\devinf.exe
O87 - FAEL: "UDP Query User{70798E54-FEB9-45B4-84EB-7ACF0242D93C}C:\program files (x86)\devolo\informer\devinf.exe" | In - Private - P17 - TRUE | .(.devolo AG - devolo Informer.) -- C:\program files (x86)\devolo\informer\devinf.exe
O87 - FAEL: "{B50E4DA6-92C7-48A4-B2EA-7B5C49E4E78E}" | In - None - P6 - TRUE | .(.devolo AG - devolo Network Service.) -- C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
O87 - FAEL: "{CC345540-6ECB-4B7C-A157-6F0D43C0A2F2}" | In - None - P17 - TRUE | .(.devolo AG - devolo Network Service.) -- C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
O87 - FAEL: "TCP Query User{B680D3FF-D256-43A9-8E3F-6B580D1EB4B6}C:\users\roger sous sol\appdata\roaming\dropbox\bin\dropbox.exe" | In - Public - P6 - TRUE | .(.Dropbox, Inc. - Dropbox.) -- C:\users\roger sous sol\appdata\roaming\dropbox\bin\dropbox.exe  =>.Dropbox
O87 - FAEL: "UDP Query User{9E7B38EF-2CCC-4EFD-BB86-6661CE2E74A8}C:\users\roger sous sol\appdata\roaming\dropbox\bin\dropbox.exe" | In - Public - P17 - TRUE | .(.Dropbox, Inc. - Dropbox.) -- C:\users\roger sous sol\appdata\roaming\dropbox\bin\dropbox.exe  =>.Dropbox
O87 - FAEL: "TCP Query User{CF6CFB8E-9201-4D0B-9B34-7D2DDB5E23E0}F:\il-2 sturmovik 1946\il2fb.exe" | In - Private - P6 - TRUE | .(...) -- F:\il-2 sturmovik 1946\il2fb.exe
O87 - FAEL: "UDP Query User{27475813-7826-4E4D-8A5D-D951568F95ED}F:\il-2 sturmovik 1946\il2fb.exe" | In - Private - P17 - TRUE | .(...) -- F:\il-2 sturmovik 1946\il2fb.exe
O87 - FAEL: "{708517B7-11F8-44AF-9E34-D0130061B337}" | In - None - P6 - FALSE | .(.Microsoft Corporation - SMSvcHost.exe.) -- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
O87 - FAEL: "{1F57F2A6-18B5-4F5C-94A7-641355A8B0F1}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "{F643753A-8822-4495-BF53-2AA00774ADA9}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "{0D713415-7AC2-4E56-833D-B9C50B72E106}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "{DF2AA5B2-52D4-4D65-93DC-E08139C21F26}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe  =>.Microsoft Corporation
O87 - FAEL: "{F8BC64A4-FE10-4805-9A16-C39A5636E341}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe  =>.Microsoft Corporation
O87 - FAEL: "{CB8F78A4-3A79-4982-86E7-2A868D89C66F}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe  =>.Microsoft Corporation
O87 - FAEL: "{31BB00CB-2D3F-48BA-8FB7-C4378EE847B8}" | In - Private - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "{31BA4731-59BF-4E91-A1B3-5056C2F61F4B}" | Out - Private - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "{00787FBB-CD03-4849-9A25-A604DF9F9F35}" | In - Private - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "{BD2FBA4A-6EF4-416D-8943-9323926AA353}" | Out - Private - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "{596A7204-01C8-413C-8197-18C0A6B2E617}" | In - Private - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "{FAC0DE4F-71FA-4F1F-88DE-00AF85F681AA}" | Out - Private - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "{4BCA5C2B-F64A-4FF9-9340-440934B198FD}" | In - Private - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe  =>.Microsoft Corporation
O87 - FAEL: "{19810A87-45F7-4AA3-8B02-30642C9C719B}" | Out - Private - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe  =>.Microsoft Corporation
O87 - FAEL: "{D9876552-EF29-457F-A562-0B0EE541C715}" | Out - Private - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe  =>.Microsoft Corporation
O87 - FAEL: "{499058F5-102C-4304-BBCC-4D7AB371A8B0}" |In - Private - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)  =>.Microsoft Corporation
O87 - FAEL: "{9CFB83B6-9B9C-4217-9275-DCE26AEA5E28}" |Out - Private - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)  =>.Microsoft Corporation
O87 - FAEL: "{5E1DDA5E-5417-4A84-8086-AED93C6655E9}" |In - Private - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)  =>.Microsoft Corporation
O87 - FAEL: "{06FFC726-1A45-4651-B64B-DABF1883DA66}" |Out - Private - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)  =>.Microsoft Corporation
O87 - FAEL: "{92F628C2-E31C-4C8B-B656-51CE36615434}" | Out - Private - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "{5332AFFE-8F0F-421D-A651-33E0B888D613}" | In - Private - P6 - TRUE | .(.CybelSoft - Service de détection matériel.) -- C:\Program Files\ma-config.com\MaConfigAgent.exe
O87 - FAEL: "{28CBF830-1A3D-4F11-B836-36D684258B58}" | In - Private - P17 - TRUE | .(.CybelSoft - Service de détection matériel.) -- C:\Program Files\ma-config.com\MaConfigAgent.exe
O87 - FAEL: "{4F95ACF8-283F-468D-84AA-C94E38F79329}" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
O87 - FAEL: "{BE9EA647-8126-4F11-A491-F081F9AAC7A5}" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe  =>.Microsoft Corporation
~ Firewall: 240 Scanned in 00mn 01s



---\\ Enumère les codes produits des logiciels (PUC) (O90)
O90 - PUC: "0296961D4979CBB4A803A78867D35E2A" . (.ABBYY FineReader 5.0 Sprint.) -- C:\Windows\Installer\{D1696920-9794-4BBC-8A30-7A88763DE5A2}\Fine5.exe
O90 - PUC: "206E263152693D245BF7DC9A2DF6D98A" . (.Pinnacle Studio 15.) -- C:\Windows\Installer\{1362E602-9625-42D3-B57F-CDA9D26F9DA8}\Studio.exe
O90 - PUC: "36F42FFC386A20245862F3A9773A0B8E" . (.Ma-Config.com (64 bits).) -- C:\Windows\Installer\{CFF24F63-A683-4202-8526-3F9A77A3B0E8}\maconfico
O90 - PUC: "41DC8ECD5FBF46449B4A1EE87453647C" . (.Assistant de connexion Windows Live.) -- C:\Windows\Installer\{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}\prodicon.ico
O90 - PUC: "49C22FC2963140C4A9F54ACBD6195B80" . (.IncrediMail.) -- C:\Windows\Installer\{2CF22C94-1369-4C04-9A5F-A4BC6D91B508}\ARPPRODUCTICON.exe
O90 - PUC: "4BA27099597D5D44D9563E9C8F23C279" . (.TomTom HOME.) -- C:\Windows\Installer\{99072AB4-D795-44D5-9D65-E3C9F8322C97}\ARPPRODUCTICON.exe
O90 - PUC: "68267DD57EB949849A099E509EA18C81" . (.Windows Live Mail.) -- C:\Windows\Installer\{5DD76286-9BE7-4894-A990-E905E91AC818}\wlmail.exe  =>.Microsoft Corporation
O90 - PUC: "68AB67CA7DA746454382090000000040" . (.Spelling Dictionaries Support For Adobe Reader 9.) -- C:\Windows\Installer\{AC76BA86-7AD7-5464-3428-900000000004}\ARPPRODUCTICON.exe
O90 - PUC: "68AB67CA7DA76301B744BA0000000010" . (.Adobe Reader XI (11.0.06) - Français.) -- C:\Windows\Installer\{AC76BA86-7AD7-1036-7B44-AB0000000001}\SC_Reader.ico
O90 - PUC: "9F2FDFE0D6387BE43AD230B83D1FBFA2" . (.Security Update for CAPICOM (KB931906).) -- C:\Windows\Installer\{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}\folder.ico
O90 - PUC: "B7F006FA7A769D84ABB3F09FF7539F07" . (.ABBYY FineReader 6.0 Professional.) -- C:\Windows\Installer\{AF600F7B-67A7-48D9-BA3B-0FF97F35F970}\FR.exe
O90 - PUC: "C837BBFD8D175CD48B2D6DC57386E072" . (.Etron USB3.0 Host Controller.) -- C:\Windows\Installer\{DFBB738C-71D8-4DC5-B8D2-D65C37680E27}\ARPPRODUCTICON.exe
O90 - PUC: "D7314F9862C648A4DB8BE2A5B47BE100" . (.Microsoft Silverlight.) -- C:\Windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ARPIcon
O90 - PUC: "DDB6C50237B7ED245850A990F3532A83" . (.Outil de téléchargement Windows Live.) -- C:\Windows\Installer\{205C6BDD-7B73-42DE-8505-9A093F35A238}\RichUpload.ico
O90 - PUC: "E7FF67E4ABEA78C47B88DC745E24B5D9" . (.Skype™ 6.11.) -- C:\Windows\Installer\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}\SkypeIcon.exe
~ Update Products: 76 Scanned in 00mn 00s



---\\ Recherche des packages WindowsInstaller (WIS) (O93) (NTFS)
[MD5.C84C35B3ED26F11A04F50874B40AA5E8] [WIS][17/01/2014] (.IncrediMail - IncrediMail.) -- C:\Windows\Installer\2b21b6.msi   [2687488]
[MD5.A3AEEC9A9B6984F2E22B90FDC9A23AB8] [WIS][17/01/2014] (.Skype Technologies S.A. - Skype.) -- C:\Windows\Installer\3e8c0.msi   [24993792]
[MD5.3B8AB4297DFDF188CF1A25292A66C8FA] [WIS][31/01/2014] (.Etron Technology - Blank Project Template.) -- C:\Windows\Installer\73835f.msi   [10777088]
[MD5.2589E7386649DDA2BE397CCD1FF3DDA4] [WIS][10/05/2011] (.VIA Technologies, Inc. - VIA Universal Setup Program.) -- C:\Windows\Installer\7aae2.msi   [2744376]
~ WIS: 77 Scanned in 00mn 02s



---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SS - | Demand 15/11/2013 279024 |  (cphs) . (.Intel Corporation.) - C:\Windows\SysWow64\IntelCpHeciSvc.exe
SS - | Demand 06/01/2014 136120 |  (gusvc) . (.Google.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
SS - | Auto 23/10/2013 172192 |  (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
SS - | Demand 14/07/2009 27136 | C:\Program Files (x86)\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe

SR - | Auto 21/12/2013 65432 |  (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
SR - | Auto 11/11/2013 3478544 |  (AVGIDSAgent) . (.AVG Technologies CZ, s.r.o..) - C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe
SR - | Auto 24/09/2013 348008 |  (avgwd) . (.AVG Technologies CZ, s.r.o..) - C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
SR - | Auto 10/07/1658 0 |  (C-DillaCdaC11BA) . (.C-Dilla Ltd.) - C:\Windows\system32\drivers\CDAC11BA.exe
SR - | Auto 27/08/2013 3526136 |  (DevoloNetworkService) . (.devolo AG.) - C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
SR - | Auto 21/11/2013 15720 |  (IAStorDataMgrSvc) . (.Intel Corporation.) - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
SR - | Demand 24/04/2012 169752 |  (ICCS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
SR - | Auto 20/01/2014 2818896 |  (MaConfigAgent) . (.CybelSoft.) - C:\Program Files\ma-config.com\MaConfigAgent.exe
SR - | Auto 27/08/2013 93072 |  (TomTomHOMEService) . (.TomTom.) - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
SR - | Auto 22/10/2012 27768 |  (VIAKaraokeService) . (.VIA Technologies, Inc..) - C:\Windows\System32\viakaraokesrv.exe
SR - | Auto 10/07/1658 0 |  (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe  =>.Microsoft Corporation
SR - | Auto 14/07/2009 27136 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe

~ Services:  Scanned in 00mn 02s



---\\ Recherche d'infection sur le Master Boot Record (MBR)(O80)
Run by Roger sous sol at 12/02/2014 13:50:07
~ OS 64 not supported by MBR tool

~ MBR: 0 Scanned in 00mn 00s



---\\ Recherche d'infection sur le Master Boot Record (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by Roger sous sol at 12/02/2014 13:50:09

********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin

~ MBR:  Scanned in 00mn 02s



---\\ Scan Additionnel (O88)
Database Version : 13030 - (10/02/2014)
Clés trouvées (Keys found) : 1
Valeurs trouvées (Values found) : 0
Dossiers trouvés  (Folders found) : 0
Fichiers trouvés  (Files found) : 0

[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]   =>Trojan.Trojan.FindFDSearch^
~ Additionnel Scan: 228417 Items scanned in 00mn 09s



---\\ Récapitulatif des détections trouvées sur votre station
~ http://nicolascoolman.webs.com/apps/blog/show/34817643-trojan-findfdsearch   =>Trojan.FindFDSearch
~ http://nicolascoolman.webs.com/apps/blog/show/33047509-rogue-speedupmypc   =>Rogue.SpeedUpMyPC
~ MSI: 2 link(s) detected in 00mn 09s



End of the scan (2221 lines in 01mn 02s)(0)