~ Rapport de ZHPDiag v2014.1.2.5 - Nicolas Coolman (02/01/2014) ~ Lancé par yannick (07/01/2014 14:10:36) ~ Adresse du Site Web http://nicolascoolman.webs.com ~ Forums gratuits d'Assistance à la désinfection : http://nicolascoolman.webs.com/apps/links/ ~ Traduit par Nicolas Coolman ~ Etat de la version : ~ Liste blanche : Désactivée par l'utilisateur ~ Elévation des Privilèges : OK ~ User Account Control (UAC): Deactivate by program ---\\ Navigateurs Internet MSIE: Internet Explorer v11.0.9600.16476 MFIE: Mozilla Firefox 25.0.1 (Defaut) GCIE: Google Chrome v31.0.1650.57 ---\\ Informations sur les produits Windows ~ Langage: Français Windows 8.1, 64-bit (Build 9600) Windows Server License Manager Script : OK ~ ion : Windows(R) Operating System, OEM_DM channel Windows ID Activation : OK ~ Windows Partial Key : XKT7T Windows License : OK ~ Windows Remaining Initializations Number : 999 Software Protection Service (Protection logicielle) : OK Windows Automatic Updates : OK Windows Activation Technologies : OK ---\\ Logiciels de protection du système Malwarebytes Anti-Malware version 1.75.0.1300 Windows Defender W8 ---\\ Logiciels d'optimisation du système CCleaner v4.09 =>Piriform Ltd ---\\ Logiciels de partage PeerToPeer ---\\ Surveillance de Logiciels Adobe Flash Player 11 Plugin Adobe Reader XI Java 7 Update 45 Java 7 Update 45 ---\\ Informations sur le système ~ Processor: Intel64 Family 6 Model 58 Stepping 9, GenuineIntel ~ Operating System: 64 Bits Boot mode: Normal (Normal boot) Total RAM: 6010 MB (55% free) System Restore: Activé (Enable) System drive C: has 257 GB (56%) free of 452 GB ---\\ Mode de connexion au système ~ Computer Name: YANNICK ~ User Name: yannick ~ All Users Names: yanni_000, yannick_2, yannick, Administrateur, ~ Unselected Option: None Logged in as Administrator ---\\ Variables d'environnement ~ System Unit : C:\ ~ %AppZHP% : C:\Users\yannick\AppData\Roaming\ZHP\ ~ %AppData% : C:\Users\yannick\AppData\Roaming\ ~ %Desktop% : C:\Users\yannick\Desktop\ ~ %Favorites% : C:\Users\yannick\Favorites\ ~ %LocalAppData% : C:\Users\yannick\AppData\Local\ ~ %StartMenu% : C:\Users\yannick\AppData\Roaming\Microsoft\Windows\Start Menu\ ~ %Windir% : C:\Windows\ ~ %System% : C:\Windows\System32\ ---\\ Enumération des unités disques C: Hard drive, Flash drive, Thumb drive (Free 257 Go of 452 Go) D: CD-ROM drive (Not Inserted) ---\\ Etat du Centre de Sécurité Windows [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK [HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK ~ Security Center: 41 Scanned in 00mn 00s ---\\ Recherche particulière de fichiers génériques [MD5.63DC38C3E4564B2405D562855643ABA2] - (.Microsoft Corporation - Explorateur Windows.) (.22/10/2013 - 08:55:27.) -- C:\Windows\Explorer.exe [2328872] [MD5.48CFA7BE561A7BE144C29BB912055016] - (.Microsoft Corporation - Application de démarrage de Windows.) (.22/08/2013 - 10:58:29.) -- C:\Windows\System32\Wininit.exe [144384] [MD5.9B6678DB9C6A232C5A84D2FDFFF8B0E1] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.26/11/2013 - 08:07:57.) -- C:\Windows\System32\wininet.dll [2334208] [MD5.7C94FDA3809015B8F2208D2E1C221F17] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.22/08/2013 - 10:55:08.) -- C:\Windows\System32\Winlogon.exe [564736] [MD5.2F18065618E39AA2E656EE737B71E791] - (.Microsoft Corporation - Bibliothèque de licences.) (.22/08/2013 - 11:39:40.) -- C:\Windows\System32\sppcomapi.dll [447488] [MD5.239268BAB58EAE9A3FF4E08334C00451] - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) (.22/08/2013 - 14:25:35.) -- C:\Windows\system32\Drivers\AFD.sys [567296] [MD5.74B14192CF79A72F7536B27CB8814FBD] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.22/08/2013 - 13:43:41.) -- C:\Windows\system32\Drivers\atapi.sys [26464] [MD5.2FA6510E33F7DEFEC03658B74101A9B9] - (.Microsoft Corporation - CD-ROM File System Driver.) (.22/08/2013 - 12:40:15.) -- C:\Windows\system32\Drivers\Cdfs.sys [88576] [MD5.C6796EA22B513E3457514D92DCDB1A3D] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.22/08/2013 - 09:46:35.) -- C:\Windows\system32\Drivers\Cdrom.sys [164352] [MD5.5DB26D7E0216D0BF364A81D3829AD7B9] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.22/08/2013 - 12:38:00.) -- C:\Windows\system32\Drivers\DfsC.sys [134656] [MD5.03909BDBFF0DCACCABF2B2D4ADEE44DC] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.22/08/2013 - 12:38:38.) -- C:\Windows\system32\Drivers\HDAudBus.sys [78336] [MD5.84CFC5EFA97D0C965EDE1D56F116A541] - (.Microsoft Corporation - Pilote de port i8042.) (.22/08/2013 - 12:39:15.) -- C:\Windows\system32\Drivers\i8042prt.sys [107520] [MD5.E23D32BAF152FBE35F18C6A2AB8EF271] - (.Microsoft Corporation - IP Network Address Translator.) (.30/09/2013 - 05:14:00.) -- C:\Windows\system32\Drivers\IpNat.sys [141824] [MD5.6129EDB793A4255B1E2FB41773AC9D9A] - (.Microsoft Corporation - Minirdr SMB Windows NT.) (.30/09/2013 - 05:13:57.) -- C:\Windows\system32\Drivers\MRxSmb.sys [404992] [MD5.0217532E19A748F0E5D569307363D5FD] - (.Microsoft Corporation - MBT Transport driver.) (.22/08/2013 - 12:37:02.) -- C:\Windows\system32\Drivers\netBT.sys [282624] [MD5.4412D565C0278C401575E11072C7DCE3] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.22/08/2013 - 14:25:41.) -- C:\Windows\system32\Drivers\ntfs.sys [2011488] [MD5.764B1121867B2D9B31C491668AC72B2B] - (.Microsoft Corporation - Pilote de port parallèle.) (.22/08/2013 - 12:40:02.) -- C:\Windows\system32\Drivers\Parport.sys [94208] [MD5.BBB6272B7F46C4640A8CDB8A70C3450F] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.22/08/2013 - 12:35:51.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [120832] [MD5.680C1DAE268B6FB67FA21B389A8B79EF] - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RDP.) (.30/09/2013 - 04:59:53.) -- C:\Windows\system32\Drivers\rdpdr.sys [195584] [MD5.FFF28F9F6823EB1756C60F1649560BBF] - (.Microsoft Corporation - TDI Translation Driver.) (.22/08/2013 - 14:25:35.) -- C:\Windows\system32\Drivers\tdx.sys [107520] [MD5.9F9CE33B50611A1C61A46B8911E0B30B] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.22/08/2013 - 13:39:15.) -- C:\Windows\system32\Drivers\volsnap.sys [312160] ~ Generic Processes: Scanned in 00mn 00s ---\\ Etat des fichiers cachés (Caché/Total) ~ Mes images (My Pictures) : 1/17174 ~ Mes musiques (My Musics) : 1/13714 ~ Mes Videos (My Videos) : 2/67 ~ Mes Favoris (My Favorites) : 1/6 ~ Mes Documents (My Documents) : 2/26222 ~ Mon Bureau (My Desktop) : 2/71 ~ Menu demarrer (Programs) : 1/37 ~ Hidden Files: Scanned in 00mn 06s ---\\ Processus lancés [MD5.D1D5DAB39DCB4BE0359943738D87409B] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe [532040] [PID.8344] [MD5.17A89EF59FE3FFECFA608B6AD511F133] - (.Intel - Intel® Rapid Start Technology Manager.) -- C:\Program Files (x86)\Intel\irstrt\RapidStartConfig.exe [708648] [PID.6356] [MD5.2F03C763EE0DFB4DE56176737DEFB2E2] - (.Microsoft Corporation - Touch Keyboard and Handwriting Panel Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe [21184] [PID.4212] [MD5.9D8EE64F05FFCE71F410671F6FF0464F] - (.BitTorrent Inc. - µTorrent.) -- C:\Users\yannick\AppData\Roaming\uTorrent\uTorrent.exe [1142864] [PID.4992] =>P2P.BitTorrent [MD5.AB8420D9EFF346DDD72E9C985BE2FC5B] - (.Sony - Sony PC Companion.) -- C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [449248] [PID.4580] [MD5.0F6D06A88A88007AAEE5F0EE1ECE42E4] - (...) -- C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe [70880] [PID.11400] [MD5.1B0BED537BE3B788B1D8E9B94BB74846] - (.WIBU-SYSTEMS AG - CodeMeter Control Center.) -- C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeterCC.exe [8487288] [PID.7360] [MD5.139C3E683C64935D397A3A656D443E29] - (.CyberLink Corp. - PowerDVD RC Service.) -- C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [102928] [PID.708] [MD5.FA8FB2B33674A67A7BA5714C5B1D7AA0] - (.Tlapia - sysTPL.) -- C:\Program Files (x86)\sysTPL\sysTPL.exe [872560] [PID.8448] [MD5.63A2D767B9261B4F33F97BF88F2FB197] - (.Hewlett-Packard Co. - HP Digital Imaging Monitor.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe [276328] [PID.11624] [MD5.32BD04B415865C8BCAF77310CCCB8A10] - (.Dropbox, Inc. - Dropbox.) -- C:\Users\yannick\AppData\Roaming\Dropbox\bin\Dropbox.exe [30714312] [PID.2952] [MD5.D658AB1B55127D18DCFBCAC8CAAEA522] - (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe [49208] [PID.11076] [MD5.DCD78A37FB33BF0141A231109B052785] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392] [PID.9088] [MD5.589D21C4814EAFA5B04FA7A5BED7A90D] - (.NewSoft - Monitor Application.) -- C:\Program Files (x86)\NewSoft\Presto! PVR\Monitor.exe [157520] [PID.2076] [MD5.5B6E8E09BE6401A7E022F52FDFCB2FF8] - (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336] [PID.8520] [MD5.DA105F41C545F95FFBA28DC788199EA8] - (.F-Secure Corporation - SFR Cloud.) -- C:\Users\yannick\AppData\Local\F-Secure\SFR Cloud\Application\2.1.2236\SFR Cloud.exe [94760] [PID.4044] [MD5.2FB757B35C94B1C1C65BA35E4E7EC0F2] - (.Hewlett-Packard Co. - HP CUE Status Root.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe [174952] [PID.5092] [MD5.F9DFC08677FC9AC81DD5ACA5EE879E47] - (.Hewlett-Packard Co. - HP CUE Alert Popup Window Objects.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe [565096] [PID.9748] [MD5.B2F0B501A7C017F21C4B4417623895BD] - (.Hewlett-Packard - GPCore COM object.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe [367976] [PID.4548] [MD5.F419E9A607B79DAB0AC93119016E8342] - (.CyberLink - CyberLink MediaLibray Service.) -- C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111136] [PID.1296] [MD5.EFCFEAAEB723809D5CE51A3AF2B6EE22] - (.Intel Corporation - IAStorIcon.) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [285680] [PID.8984] [MD5.077D59BA0FD4007E841B6C670862B065] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [275568] [PID.1240] [MD5.E0B173F23D873286169995D66B9E3CDF] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe [18544] [PID.11572] [MD5.5D60EE718D0C708D69DFF4B3336B68BF] - (.Adobe Systems, Inc. - Adobe Flash Player 11.9 r900.) -- C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe [1862536] [PID.10260] [MD5.486BDC196F8914845302745A15310D62] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [8321024] [PID.11940] ~ Processes Running: Scanned in 00mn 01s ---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2) C:\Users\yannick\AppData\Local\Google\Chrome\User Data\Default\Preferences G0 - GCSP: Preference [User Data\Default][HomePage] http://www.google.com G0 - GCSP: Preference [User Data\Default] e_on_startup": ["http://www.google.com G1 - GCS: Preference [User Data\Default] http://www.bing.com G0 - GCSP: Preference [User Data\Default][HomePage] http://www.msn.com G0 - GCSP: Preference [User Data\Default] e_on_startup": ["http://www.msn.com ~ Google Browser: 5 Scanned in 00mn 00s ---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) C:\Users\yannick\AppData\Roaming\Mozilla\Firefox\Profiles\4d7k1vm9.default\prefs.js C:\Users\yannick\AppData\Roaming\Mozilla\Firefox\Profiles\iepeaivb.default\prefs.js M0 - MFSP: prefs.js [yannick - 4d7k1vm9.default] http://www.msn.com M2 - MFEP: prefs.js [yannick - 4d7k1vm9.default\donottrackplus@abine.com] [] DoNotTrackMe: Online Privacy Protection v3.1.1038 (..) M2 - MFEP: prefs.js [yannick - 4d7k1vm9.default\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}] [dwhelper] DownloadHelper v4.9.21 (..) M2 - MFEP: prefs.js [yannick - 4d7k1vm9.default\{d4e0dc9c-c356-438e-afbe-dca439f4399d}] [] Facebook Share Button v2.0 (..) P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll P2 - FPN: [HKLM] [@java.com/DTPlugin,version=10.45.2] - (.Oracle Corporation - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll P2 - FPN: [HKLM] [@java.com/JavaPlugin,version=10.45.2] - (.Oracle Corporation - Next Generation Java Plug-in 10.45.2 for Mozilla browsers.) -- C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.20913.0.) -- c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ~ Firefox Browser: 9 Scanned in 00mn 00s ---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://dell13.msn.com R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = http://www.google.com R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (11.00.9600.16412 (winblue_gdr.130925-1958)) -- C:\Windows\SysWOW64\ieframe.dll ~ IE Browser: 17 Scanned in 00mn 00s ---\\ Internet Explorer, Proxy Management (R5) R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:8877;https=127.0.0.1:8877 =>Hijacker.Proxy R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ~ Proxy management: Scanned in 00mn 00s ---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe, F2 - REG:system.ini: Shell=C:\Windows\explorer.exe F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe ~ Keys: Scanned in 00mn 00s ---\\ Hosts file redirection (O1) ~ Le fichier hosts est sain (The hosts file is clean). ~ Hosts File: Scanned in 00mn 00s ~ Nombre de lignes (Lines number): 21 ---\\ Browser Helper Objects de navigateur (O2) O2 - BHO: PDF Architect Helper [64Bits] - {3A2D5EBA-F86D-4BD3-A177-019765996711} . (.pdfforge GmbH - PDF Architect Helper.) -- C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\ssv.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll ~ BHO: 5 Scanned in 00mn 00s ---\\ Autres liens utilisateurs (O4) O4 - GS\Desktop [Public]: Advanced IP Scanner.lnk . (.Famatech Corp. - Advanced IP Scanner.) -- C:\Program Files (x86)\Advanced IP Scanner\advanced_ip_scanner.exe O4 - GS\Desktop [Public]: CCleaner.lnk . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>Piriform Ltd O4 - GS\Desktop [Public]: DMX-Workshop.lnk . (.Artistic Licence Holdings Ltd - Pas de description.) -- C:\Program Files (x86)\Artistic Licence\DMX-Workshop\DmxWorkshop.exe O4 - GS\Desktop [Public]: grandMA2 onPC 2.8.3.1.lnk . (...) -- C:\Program Files (x86)\MA Lighting Technologies\grandma\grandMA2 onPC 2.8.3.1\gma2onpc.exe O4 - GS\Desktop [Public]: Inkscape.lnk . (.inkscape.org - Inkscape.) -- C:\Program Files (x86)\Inkscape\inkscape.exe O4 - GS\Desktop [Public]: MagicQ PC.lnk . (...) -- C:\WINDOWS\Installer\{F35D3C6B-609A-4090-8531-C9F4FD889045}\magicq3.exe O4 - GS\Desktop [Public]: Malwarebytes Anti-Malware.lnk . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe O4 - GS\Desktop [Public]: MixPad - Mixeur de fichiers audio.lnk . (...) -- C:\Program Files (x86)\NCH Software\MixPad\mixpad.exe (.not file.) O4 - GS\Desktop [Public]: PDFCreator.lnk . (.pdfforge GmbH - PDFCreator.) -- C:\Program Files (x86)\PDFCreator\PDFCreator.exe O4 - GS\Desktop [Public]: Sony PC Companion 2.1.lnk . (.Sony - Sony PC Companion.) -- C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe O4 - GS\Desktop [Public]: WavePad - Logiciel d'édition audio.lnk . (...) -- C:\Program Files (x86)\NCH Software\WavePad\wavepad.exe (.not file.) O4 - GS\Program [Public]: Adobe Reader XI.lnk . (...) -- C:\Windows\Installer\{AC76BA86-7AD7-1036-7B44-AB0000000001}\SC_Reader.ico O4 - GS\Program [Public]: Apple Software Update.lnk . (...) -- C:\WINDOWS\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\AppleSoftwareUpdateIco.exe =>.Apple Inc O4 - GS\Program [Public]: Camera.lnk . (.Microsoft Corporation - Camera.) -- C:\WINDOWS\Camera\Camera.exe O4 - GS\Program [Public]: Desktop.lnk - Clé orpheline O4 - GS\Program [Public]: Enregistrement OCR I.R.I.S..lnk . (.I.R.I.S. Image Recognition Integarted Syste - Registration Wizard.) -- C:\Program Files (x86)\HP\Digital Imaging\DocProc\regipe.exe O4 - GS\Program [Public]: FileManager.lnk . (.Microsoft Corporation - SkyDrive.) -- C:\WINDOWS\FileManager\FileManager.exe O4 - GS\Program [Public]: GIMP 2.lnk . (.Spencer Kimball, Peter Mattis and the GIMP - GNU Image Manipulation Program.) -- C:\Program Files\GIMP 2\bin\gimp-2.8.exe O4 - GS\Program [Public]: Inkscape.lnk . (.inkscape.org - Inkscape.) -- C:\Program Files (x86)\Inkscape\inkscape.exe O4 - GS\Program [Public]: MixPad - Mixeur de fichiers audio.lnk . (...) -- C:\Program Files (x86)\NCH Software\MixPad\mixpad.exe (.not file.) O4 - GS\Program [Public]: Movie Maker.lnk . (.Microsoft Corporation - Movie Maker.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\MovieMaker.exe =>.Microsoft Corporation O4 - GS\Program [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe O4 - GS\Program [Public]: Photo Gallery.lnk . (.Microsoft Corporation - Photo Gallery.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe =>.Microsoft Corporation O4 - GS\Program [Public]: PhotosApp.lnk . (.Microsoft Corporation - Photos.) -- C:\WINDOWS\FileManager\PhotosApp.exe O4 - GS\Program [Public]: WavePad - Logiciel d'édition audio.lnk . (...) -- C:\Program Files (x86)\NCH Software\WavePad\wavepad.exe (.not file.) O4 - GS\Program [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O4 - GS\Program [Public]: Windows Store.lnk . (...) -- C:\WINDOWS\WinStore\WinStore.htm O4 - GS\Accessories [Public]: Calculator.lnk . (.Microsoft Corporation - Calculatrice de Windows.) -- C:\WINDOWS\system32\calc.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Math Input Panel.lnk . (...) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\mip.exe (.not file.) O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.) -- C:\WINDOWS\system32\mspaint.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Connexion Bureau à distance.) -- C:\WINDOWS\system32\mstsc.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - Outil Capture d’écran.) -- C:\WINDOWS\system32\SnippingTool.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Sound Recorder.lnk . (.Microsoft Corporation - Magnétophone Windows.) -- C:\WINDOWS\system32\SoundRecorder.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Steps Recorder.lnk . (.Microsoft Corporation - Enregistreur d’actions.) -- C:\WINDOWS\system32\psr.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Sticky Notes.lnk . (.Microsoft Corporation - Pense-bête.) -- C:\WINDOWS\system32\StikyNot.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Windows Fax and Scan.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) -- C:\WINDOWS\system32\WFS.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Application Windows Wordpad.) -- C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: XPS Viewer.lnk . (.Microsoft Corporation - Visionneuse XPS.) -- C:\WINDOWS\system32\xpsrchvw.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Table des caractères.) -- C:\WINDOWS\system32\charmap.exe =>.Microsoft Corporation O4 - GS\QuickLaunch [yanni_000]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe O4 - GS\TaskBar [yanni_000]: File Explorer.lnk - Clé orpheline O4 - GS\TaskBar [yanni_000]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe O4 - GS\TaskBar [yanni_000]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - GS\Program [yanni_000]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - GS\Accessories [yanni_000]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) -- C:\WINDOWS\system32\notepad.exe =>.Microsoft Corporation O4 - GS\Desktop [yanni_000]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe O4 - GS\QuickLaunch [yannick_2]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe O4 - GS\TaskBar [yannick_2]: File Explorer.lnk - Clé orpheline O4 - GS\TaskBar [yannick_2]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe O4 - GS\TaskBar [yannick_2]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - GS\Program [yannick_2]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - GS\Accessories [yannick_2]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) -- C:\WINDOWS\system32\notepad.exe =>.Microsoft Corporation O4 - GS\Desktop [yannick_2]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe O4 - GS\QuickLaunch [yannick]: DraftSight.lnk . (.Flexera Software LLC - InstallShield.) -- C:\WINDOWS\Installer\{8EB86B18-38DB-4A2D-8559-35B6D1EC3A0A}\NewShortcut31_F8E29BF1EB70468CB0249B43C7758D35.exe O4 - GS\QuickLaunch [yannick]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe O4 - GS\QuickLaunch [yannick]: Inkscape.lnk . (.inkscape.org - Inkscape.) -- C:\Program Files (x86)\Inkscape\inkscape.exe O4 - GS\QuickLaunch [yannick]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - GS\QuickLaunch [yannick]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) -- C:\Users\yannick\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent O4 - GS\TaskBar [yannick]: Centre de solutions HP.lnk . (.Hewlett-Packard Company - hpqdirec.exe.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\Hpqdirec.exe O4 - GS\TaskBar [yannick]: Dekla.lnk . (...) -- C:\Program Files (x86)\Dekla\Dekla.exe O4 - GS\TaskBar [yannick]: DraftSight x64.lnk . (.Flexera Software LLC - InstallShield.) -- C:\WINDOWS\Installer\{8EB86B18-38DB-4A2D-8559-35B6D1EC3A0A}\NewShortcut21_8693CCF9731C4DD9B4AEAE59063B04A4.exe O4 - GS\TaskBar [yannick]: Dropbox.lnk . (.Dropbox, Inc. - Dropbox.) -- C:\Users\yannick\AppData\Roaming\Dropbox\bin\Dropbox.exe =>.Dropbox O4 - GS\TaskBar [yannick]: File Explorer.lnk - Clé orpheline O4 - GS\TaskBar [yannick]: GIMP 2.lnk . (.Spencer Kimball, Peter Mattis and the GIMP - GNU Image Manipulation Program.) -- C:\Program Files\GIMP 2\bin\gimp-2.8.exe O4 - GS\TaskBar [yannick]: Google SketchUp 8.lnk . (.Google, Inc. - SketchUp Application.) -- C:\Program Files (x86)\Google\Google SketchUp 8\SketchUp.exe O4 - GS\TaskBar [yannick]: Google Earth.lnk . (.Google - Google Earth.) -- C:\Program Files (x86)\Google\Google Earth\client\googleearth.exe =>.Google Inc O4 - GS\TaskBar [yannick]: IDT PC Audio.lnk . (...) -- C:\Program Files (x86)\IDT\WDM\IDTNGUI.exe (.not file.) O4 - GS\TaskBar [yannick]: Inkscape.lnk . (.inkscape.org - Inkscape.) -- C:\Program Files (x86)\Inkscape\inkscape.exe O4 - GS\TaskBar [yannick]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - GS\TaskBar [yannick]: LibreOffice 4.0.lnk . (.The Document Foundation - LibreOffice.) -- C:\Program Files (x86)\LibreOffice 4.0\program\soffice.exe O4 - GS\TaskBar [yannick]: M-PC.lnk . (.Flexera Software LLC - InstallShield.) -- C:\WINDOWS\Installer\{4FC78987-197F-42F4-BA48-431E849C56F4}\SCMaxxyz_F710CC7652344D8C8FC7A792352C8CDE.exe O4 - GS\TaskBar [yannick]: Mixxx.lnk . (...) -- C:\Program Files (x86)\Mixxx\mixxx.exe O4 - GS\TaskBar [yannick]: Movie Maker.lnk . (.Microsoft Corporation - Movie Maker.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\MovieMaker.exe =>.Microsoft Corporation O4 - GS\TaskBar [yannick]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe O4 - GS\TaskBar [yannick]: Photo Gallery.lnk . (.Microsoft Corporation - Photo Gallery.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe =>.Microsoft Corporation O4 - GS\TaskBar [yannick]: PhotoFiltre 7.lnk . (.PhotoFiltre - PhotoFiltre 7.) -- C:\Program Files (x86)\PhotoFiltre 7\PhotoFiltre7.exe O4 - GS\TaskBar [yannick]: Presto! PVR.lnk . (.NewSoft Technology Corporation - Presto! PVR Application.) -- C:\Program Files (x86)\NewSoft\Presto! PVR\HPVR.exe O4 - GS\TaskBar [yannick]: QuickTime Player.lnk . (.Apple Inc. - QuickTime Player.) -- C:\Program Files (x86)\QuickTime\QuickTimePlayer.exe =>.Apple Inc O4 - GS\TaskBar [yannick]: SFR Cloud.lnk . (.F-Secure Corporation - SFR Cloud.) -- C:\Users\yannick\AppData\Local\F-Secure\SFR Cloud\Application\SFR Cloud.exe O4 - GS\Program [yannick]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - GS\Program [yannick]: SDS.lnk . (.BU - SDS.) -- C:\SDS3-2\SDS.exe O4 - GS\Program [yannick]: TCI.lnk . (.Microsoft - Tabcontrol avec bouton close.) -- C:\TCI4-4\TCI.exe O4 - GS\Accessories [yannick]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) -- C:\WINDOWS\system32\notepad.exe =>.Microsoft Corporation O4 - GS\SendTo [yannick]: Dropbox.lnk . (...) -- C:\Users\yannick\Dropbox O4 - GS\Desktop [yannick]: DessElec 2000.lnk . (.ARTools - DessElec 2000.) -- C:\Program Files (x86)\DessElec 2000\DessElec2k.exe O4 - GS\Desktop [yannick]: DMX PRO Manager.lnk . (...) -- C:\Program Files (x86)\ENTTEC\DMX PRO Manager\PRO-Manager.exe O4 - GS\Desktop [yannick]: ENTTEC RDM Responder.lnk . (...) -- C:\Program Files (x86)\ENTTEC\RDM Responder\Responder.exe O4 - GS\Desktop [yannick]: ENTTEC RDM Sniffer.lnk . (...) -- C:\Program Files (x86)\ENTTEC\RDM Sniffer\Sniffer.exe O4 - GS\Desktop [yannick]: inSSIDer 3.lnk . (...) -- C:\Users\yannick\AppData\Roaming\Microsoft\Installer\{A80CEA4E-74C1-4F9F-806B-E1D9AFC01768}\Icon.ico O4 - GS\Desktop [yannick]: LumiNet Monitor.lnk . (...) -- C:\Program Files (x86)\Luminex\LumiNet Monitor\LumiNetMonitor.exe O4 - GS\Desktop [yannick]: PDF Architect.lnk . (.pdfforge GmbH - PDF Architect Application.) -- C:\Program Files (x86)\PDF Architect\PDF Architect.exe O4 - GS\Desktop [yannick]: PRO Utility v2.lnk . (...) -- C:\Program Files (x86)\ENTTEC\DMX USB PRO\PRO_UTILITY.exe O4 - GS\Desktop [yannick]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag Setup.) -- C:\Program Files (x86)\ZHPDiag\ZHPhep.exe =>.Nicolas Coolman O4 - GS\Desktop [yannick]: ZHPFix.lnk . (.Nicolas Coolman - ZHPDiag Setup.) -- C:\Program Files (x86)\ZHPDiag\ZHPFix\ZHPhep.exe =>.Nicolas Coolman O4 - GS\Desktop [yannick]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) -- C:\Users\yannick\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent ~ Global Startup: 101 Scanned in 00mn 01s ---\\ Applications lancées au démarrage du sytème (O4) O4 - GS\Startup [Public]: CodeMeter Control Center.lnk . (.WIBU-SYSTEMS AG - CodeMeter Control Center.) -- C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeterCC.exe O4 - GS\Startup [Public]: HP Digital Imaging Monitor.lnk . (.Hewlett-Packard Co. - HP Digital Imaging Monitor.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe =>.Hewlett-Packard Co O4 - GS\Startup [yannick]: Dropbox.lnk . (.Dropbox, Inc. - Dropbox.) -- C:\Users\yannick\AppData\Roaming\Dropbox\bin\Dropbox.exe =>.Dropbox O4 - GS\Startup [yannick]: SFR Cloud.lnk . (.F-Secure Corporation - SFR Cloud.) -- C:\Users\yannick\AppData\Local\F-Secure\SFR Cloud\Application\SFR Cloud.exe O4 - HKLM\..\Run: [Logitech Download Assistant] . (.Logitech, Inc. - Logitech Download Assistant.) -- C:\Windows\System32\LogiLDA.dll O4 - HKLM\..\Run: [QuickSet] . (.Dell Inc. - QuickSet.) -- c:\Program Files\Dell\QuickSet\QuickSet.exe O4 - HKLM\..\Run: [IntelMyWiFiDashboard] . (.Intel® Corporation - Intel® My WiFi Dashboard Server.) -- C:\Program Files\Intel\CCDashboard\bin\CCDashServer.exe O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe (.not file.) O4 - HKLM\..\Run: [SysTrayApp] . (.IDT, Inc. - IDT PC Audio.) -- C:\Program Files\IDT\WDM\sttray64.exe O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\WINDOWS\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\WINDOWS\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\WINDOWS\system32\igfxpers.exe O4 - HKLM\..\Run: [BTMTrayAgent] . (.Motorola Solutions, Inc. - Bluetooth Shell Extension.) -- C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll O4 - HKCU\..\Run: [DellSystemDetect] . (...) -- C:\Users\yannick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell\Dell System Detect.appref-ms O4 - HKCU\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Users\yannick\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent O4 - HKCU\..\Run: [Sony PC Companion] . (.Sony - Sony PC Companion.) -- C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe O4 - HKLM\..\Wow6432Node\Run: [IAStorIcon] . (.Intel Corporation - Delayed launcher.) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe O4 - HKLM\..\Wow6432Node\Run: [RemoteControl10] . (.CyberLink Corp. - PowerDVD RC Service.) -- C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe O4 - HKLM\..\Wow6432Node\Run: [sysTPL] . (.Tlapia - sysTPL.) -- C:\Program Files (x86)\sysTPL\sysTPL.exe O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe =>.Adobe Systems Incorporated O4 - HKLM\..\Wow6432Node\Run: [HP Software Update] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe =>.Hewlett-Packard Co O4 - HKLM\..\Wow6432Node\Run: [APSDaemon] . (.Apple Inc. - Apple Push.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe O4 - HKLM\..\Wow6432Node\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files (x86)\QuickTime\QTTask.exe O4 - HKLM\..\Wow6432Node\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe O4 - HKLM\..\Wow6432Node\Run: [ChangeFilterMerit] . (.NewSoft - ChangeFilterMerit.) -- C:\Program Files (x86)\NewSoft\Presto! PVR\ChangeFilterMerit.exe O4 - HKLM\..\Wow6432Node\Run: [Presto! PVR Monitor] . (.NewSoft - Monitor Application.) -- C:\Program Files (x86)\NewSoft\Presto! PVR\Monitor.exe O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe =>.Oracle Corporation O4 - HKUS\S-1-5-21\..\Run: [resource] Clé orpheline O4 - HKUS\S-1-5-21\..\RunOnce: [resource] Clé orpheline O4 - HKUS\S-1-5-21-898469356-1706449233-3202299308-1001\..\Run: [DellSystemDetect] . (...) -- C:\Users\yannick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell\Dell System Detect.appref-ms O4 - HKUS\S-1-5-21-898469356-1706449233-3202299308-1001\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Users\yannick\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent O4 - HKUS\S-1-5-21-898469356-1706449233-3202299308-1001\..\Run: [Sony PC Companion] . (.Sony - Sony PC Companion.) -- C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe ~ Application: Scanned in 00mn 00s ---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5) O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no ~ IE Control Panel: 1 Scanned in 00mn 00s ---\\ Winsock hijacker (Layered Service Provider) (O10) O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\WINDOWS\system32\napinsp.dll O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\WINDOWS\system32\pnrpnsp.dll O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\WINDOWS\system32\pnrpnsp.dll O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\WINDOWS\system32\NLAapi.dll O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll =>.Microsoft Corporation O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll O10 - WLSP:\000000000007\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files (x86)\Bonjour\mdnsNSP.dll O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\WINDOWS\system32\wshbth.dll ~ Winsock: 8 Scanned in 00mn 00s ---\\ Site dans la Zone de confiance d'Internet Explorer (O15) O15 - Trusted Zone: [HKCU\...\Domains] *.dell.com ~ IE Zone Confiance: Scanned in 00mn 00s ---\\ Modification Domaine/Adresses DNS (O17) O17 - HKLM\System\CCS\Services\Tcpip\..\{199CF4DD-9D56-4F9A-8A28-5A195EF51344}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\..\{7E372F59-A187-4BD4-889C-D75B4EC348F8}: DhcpNameServer = 172.20.1.1 172.20.1.2 O17 - HKLM\System\CCS\Services\Tcpip\..\{7E372F59-A187-4BD4-889C-D75B4EC348F8}: DhcpDomain = magnum.fr O17 - HKLM\System\CS1\Services\Tcpip\..\{199CF4DD-9D56-4F9A-8A28-5A195EF51344}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CS1\Services\Tcpip\..\{7E372F59-A187-4BD4-889C-D75B4EC348F8}: DhcpNameServer = 172.20.1.1 172.20.1.2 O17 - HKLM\System\CS1\Services\Tcpip\..\{7E372F59-A187-4BD4-889C-D75B4EC348F8}: DhcpDomain = magnum.fr O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 ~ Domain: Scanned in 00mn 00s ---\\ Protocole additionnel (O18) O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (...) -- O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation ~ Protocole Additionnel: Scanned in 00mn 00s ---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20) O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll ~ Winlogon: Scanned in 00mn 00s ---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20) O20 - AppInit_DLLs: . (...) - C:\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC64Loader.dll (.not file.) =>Toolbar.Conduit ~ AppInit DLL: Scanned in 00mn 00s ---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21) O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Contrôleur de site Web.) -- C:\Windows\System32\webcheck.dll ~ SSODL: 1 Scanned in 00mn 00s ---\\ Liste des services NT non Microsoft et non désactivés (O23) O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Intel® Centrino® Wireless Bluetooth® + High Speed Service (AMPPALR3) . (.Intel Corporation - Intel® Centrino® Wireless Bluetooth® + High.) - C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: Bluetooth Device Monitor (Bluetooth Device Monitor) . (.Motorola Solutions, Inc. - Bluetooth Device Monitor.) - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe O23 - Service: Bluetooth OBEX Service (Bluetooth OBEX Service) . (.Motorola Solutions, Inc. - Bluetooth OBEX Service.) - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Sec (BTHSSecurityMgr) . (.Intel(R) Corporation - Intel(R) BlueTooth(R) HS Security Manager S.) - C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe O23 - Service: CodeMeter Runtime Server (CodeMeter.exe) . (.WIBU-SYSTEMS AG - CodeMeter Runtime Server.) - C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe O23 - Service: Dell Digital Delivery Service (DellDigitalDelivery) . (.Dell Products, LP. - Dell Digital Delivery Windows Service.) - c:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe O23 - Service: Dell Update Service (DellUpdate) . (.Dell Inc. - Dell Update Windows Service.) - C:\Program Files (x86)\Dell Update\DellUpService.exe O23 - Service: DraftSight API Service (DraftSight API Service) . (.Dassault Systèmes - DraftSight API Service.) - C:\Program Files\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) . (.Intel(R) Corporation - Intel(R) PROSet/Wireless Event Log Service.) - C:\Program Files\Intel\WiFi\bin\EvtEng.exe O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc O23 - Service: Technologie de stockage Intel(R) Rapid (IAStorDataMgrSvc) . (.Intel Corporation - IAStorDataSvc.) - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe O23 - Service: IconMan_R (IconMan_R) . (.Realsil Microelectronics Inc. - Realtek Card Reader Patch Tool..) - C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe O23 - Service: Intel(R) Capability Licensing Service Interface (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation - Intel(R) Capability Licensing Service Inter.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe O23 - Service: Intel(R) Wireless Bluetooth(R) 4.0 Radio Management (Intel(R) Wireless Bluetooth(R) 4.0 Radio Management) . (.Intel Corporation - Intel(R) Wireless Bluetooth(R) Radio Manage.) - C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe O23 - Service: Intel(R) Rapid Start Technology Service (irstrtsv) . (.Intel Corporation - Intel(R) Rapid Start Technology Service.) - C:\Windows\SysWOW64\irstrtsv.exe O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) . (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe O23 - Service: Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe O23 - Service: (MBAMScheduler) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe O23 - Service: PDF Architect Helper Service (PDF Architect Helper Service) . (.pdfforge GmbH - PDF Architect Helper Service.) - C:\Program Files (x86)\PDF Architect\HelperService.exe O23 - Service: PDF Architect Service (PDF Architect Service) . (.pdfforge GmbH - PDF Architect Conversion Service.) - C:\Program Files (x86)\PDF Architect\ConversionService.exe O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) . (.Intel(R) Corporation - Intel(R) PROSet/Wireless Registry Service.) - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) . (.Pas de propriétaire - RichVideo Module.) - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe O23 - Service: SoftThinks Agent Service (SftService) . (.SoftThinks SAS - SoftThinks Agent Service.) - C:\Program Files (x86)\Dell Backup and Recovery\sftservice.exe O23 - Service: C:\Windows\System32\stlang64.dll (STacSV) . (.IDT, Inc. - IDT PC Audio.) - C:\Program Files\IDT\WDM\STacSV64.exe O23 - Service: sysTPLMonitor (sysTPLMonitor.exe) . (.Tlapia - sysTPLMonitor.) - C:\Program Files (x86)\sysTPL\sysTPLMonitor.exe O23 - Service: sysTPLService (sysTPLService.exe) . (.Tlapia - sysTPLService.) - C:\Program Files (x86)\sysTPL\sysTPLService.exe O23 - Service: Intel(R) Management and Security Application User Notificat (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) . (.Intel® Corporation - Intel® PROSet/Wireless Zero Configure Servi.) - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe ~ Services: 32 Scanned in 00mn 04s ---\\ Enumération Active Desktop & MHTML Editor (O24) O24 - Default MHTML Editor: Last - .(...) - (.not file.) ~ Desktop Component: 4 Scanned in 00mn 00s ---\\ Enumère les données de BootExecute (BEX) (O34) O34 - HKLM BootExecute: (autocheck autochk *) - File not found ~ BEX: 1 Scanned in 00mn 00s ---\\ Tâches planifiées en automatique (O39) O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Adobe Flash Player Updater.job [1002] O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1082] O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1086] O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Synaptics TouchPad Enhancements.job [264] [MD5.1BA1AB4141A92EB34DA99F1249CA2D4D] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [257416] [MD5.F419E9A607B79DAB0AC93119016E8342] [APT] [CLMLSvc_P2G8] (.CyberLink.) -- C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111136] [MD5.2FC635380608BD0D1BF3FB4986676D05] [APT] [CLVDLauncher] (.CyberLink Corp..) -- C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [340000] [MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [116648] [MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [116648] [MD5.9EC647ACB1E33073EE50A7C55D662C9D] [APT] [IntelBootstrapCCDashServer] (.Intel® Corporation.) -- C:\Program Files\Intel\CCDashboard\bin\CCDashServer.exe [5010224] [MD5.17A89EF59FE3FFECFA608B6AD511F133] [APT] [Intel© Rapid Start Technology Manager] (.Intel.) -- C:\Program Files (x86)\Intel\irstrt\RapidStartConfig.exe [708648] [MD5.76BDB923D81DE1119D521C64589BA481] [APT] [PCDEventLauncher] (.PC-Doctor, Inc..) -- C:\Program Files\Dell Support Center\sessionchecker.exe [427088] [MD5.00000000000000000000000000000000] [APT] [{875722B1-99F9-460F-9A75-FA2087FBC850}] (...) -- C:\Users\yannick\AppData\Roaming\Reincubate\iPhone Backup Extractor\iPhoneBackupExtractor-uninstaller.exe (.not file.) [0] [MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [561984] ~ Scheduled Task: 15 Scanned in 00mn 03s ---\\ Composants installés (ActiveSetup Installed Components) (O40) O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll =>.Microsoft Corporation O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe =>.Microsoft Corporation O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\System32\mscories.dll ~ Active Setup: 9 Scanned in 00mn 00s ---\\ Pilotes lancés au démarrage du système (O41) O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) - C:\Windows\system32\drivers\afd.sys O41 - Driver: C:\Windows\System32\drivers\ahcache.sys (ahcache) . (.Microsoft Corporation - Application Compatibility Cache.) - C:\Windows\System32\DRIVERS\ahcache.sys O41 - Driver: (BasicDisplay) . (.Microsoft Corporation - Microsoft Basic Display Driver.) - C:\Windows\system32\drivers\BasicDisplay.sys O41 - Driver: (BasicRender) . (.Microsoft Corporation - Microsoft Basic Render Driver.) - C:\Windows\system32\drivers\BasicRender.sys O41 - Driver: cdrom.inf (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys O41 - Driver: (CLVirtualDrive) . (.CyberLink - It is a virtual device driver which could c.) - C:\Windows\system32\DRIVERS\CLVirtualDrive.sys O41 - Driver: C:\Windows\System32\drivers\dam.sys (dam) . (.Microsoft Corporation - DAM Kernel Driver.) - C:\Windows\System32\drivers\dam.sys O41 - Driver: C:\Windows\System32\wkssvc.dll (Dfsc) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys O41 - Driver: mssmbios.inf (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys O41 - Driver: netnb.inf (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys O41 - Driver: npsvctrig.inf (npsvctrig) . (.Microsoft Corporation - Named pipe service triggers.) - C:\Windows\system32\drivers\npsvctrig.sys O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\system32\DRIVERS\pacer.sys O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys O41 - Driver: C:\Windows\System32\drivers\vwififlt.sys (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\system32\DRIVERS\vwififlt.sys O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\system32\DRIVERS\wanarp.sys ~ Drivers: 36 Scanned in 00mn 00s ---\\ Logiciels installés (O42) O42 - Logiciel: 64 Bit HP CIO Components Installer - (.Hewlett-Packard.) [HKLM][64Bits] -- {377672F0-6B8A-467D-8DDC-79338BCCD531} O42 - Logiciel: Adobe Flash Player 11 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin O42 - Logiciel: Adobe Reader XI (11.0.05) - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AB0000000001} O42 - Logiciel: Advanced IP Scanner 2.3 - (.Famatech.) [HKLM][64Bits] -- {9FEFC480-C53D-47DB-A352-77839A925073} O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM][64Bits] -- {46F044A5-CE8B-4196-984E-5BD6525E361D} O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM][64Bits] -- {2EF5D87E-B7BD-458F-8428-E4D0B8B4E65C} O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE} =>.Apple Inc O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D} O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner =>Piriform Ltd O42 - Logiciel: ChamSys MagicQ PC - (.ChamSys Ltd.) [HKLM][64Bits] -- {F35D3C6B-609A-4090-8531-C9F4FD889045} O42 - Logiciel: CodeMeter Runtime Kit v5.00b - (.WIBU-SYSTEMS AG.) [HKLM][64Bits] -- {11BA59A6-23B0-4F80-9EC0-0075CA4CAD5E} O42 - Logiciel: CyberLink LabelPrint 2.5 - (.CyberLink Corp..) [HKLM][64Bits] -- {C59C179C-668D-49A9-B6EA-0121CCFC1243} O42 - Logiciel: CyberLink Media Suite 10 - (.CyberLink Corp..) [HKLM][64Bits] -- {1FBF6C24-C1fD-4101-A42B-0C564F9E8E79} O42 - Logiciel: CyberLink Media Suite Essentials - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7} O42 - Logiciel: CyberLink Power2Go 8 - (.CyberLink Corp..) [HKLM][64Bits] -- {2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2} O42 - Logiciel: CyberLink PowerDVD 10 - (.CyberLink Corp..) [HKLM][64Bits] -- {DEC235ED-58A4-4517-A278-C41E8DAEAB3B} O42 - Logiciel: CyberLink PowerDirector 10 - (.CyberLink Corp..) [HKLM][64Bits] -- {B0B4F6D2-F2AE-451A-9496-6F2F6A897B32} O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF} O42 - Logiciel: DMX-Workshop including Art-Net, sACN and KiNet drivers - (.Artistic Licence Holdings Ltd.) [HKLM][64Bits] -- {C0861C11-EB66-44B4-9C6C-6E328FA9F00B} O42 - Logiciel: DSC/AA Factory Installer - (.PC-Doctor, Inc..) [HKLM][64Bits] -- {F7A70D00-F283-45C8-B163-49EC365D7E27} O42 - Logiciel: Dekla 3.4 - (.Laurent Gleizes.) [HKLM][64Bits] -- Dekla O42 - Logiciel: Dell Backup and Recovery - (.Dell Inc..) [HKLM][64Bits] -- {0ED7EE95-6A97-47AA-AD73-152C08A15B04} O42 - Logiciel: Dell Backup and Recovery - Support Software - (.Dell Inc..) [HKLM][64Bits] -- {A9668246-FB70-4103-A1E3-66C9BC2EFB49} O42 - Logiciel: Dell Digital Delivery - (.Dell Products, LP.) [HKLM][64Bits] -- {B96348BD-6B0D-42E3-80B1-FA6718067BFE} O42 - Logiciel: Dell Support Center - (.PC-Doctor, Inc..) [HKLM][64Bits] -- PC-Doctor for Windows O42 - Logiciel: Dell System Detect - (.Dell.) [HKCU][64Bits] -- 9204f5692a8faf3b O42 - Logiciel: Dell Touchpad - (.Synaptics Incorporated.) [HKLM][64Bits] -- SynTPDeinstKey O42 - Logiciel: Dell Update - (.Dell Inc..) [HKLM][64Bits] -- {01A8252B-6CA2-4A9E-B87D-DAFCF5D611BA} O42 - Logiciel: DessElec 2000 v6.4.7 - (...) [HKLM][64Bits] -- DessElec 2000_is1 O42 - Logiciel: DraftSight x64 - (.Dassault Systèmes.) [HKLM][64Bits] -- {8EB86B18-38DB-4A2D-8559-35B6D1EC3A0A} O42 - Logiciel: Dropbox - (.Dropbox, Inc..) [HKCU][64Bits] -- Dropbox O42 - Logiciel: ENTTEC DMX USB PRO- Utility 2.2 - (.ENTTEC.) [HKLM][64Bits] -- ENTTEC DMX USB PRO- Utility O42 - Logiciel: ENTTEC RDM Responder 2.12 - (.ENTTEC.) [HKLM][64Bits] -- ENTTEC RDM Responder O42 - Logiciel: ENTTEC RDM Sniffer 1.85 - (.ENTTEC.) [HKLM][64Bits] -- ENTTEC RDM Sniffer O42 - Logiciel: FREEping - (...) [HKLM][64Bits] -- {D85480F4-F0BD-4F42-B936-4480E852EF9C} O42 - Logiciel: GIMP 2.8.10 - (.The GIMP Team.) [HKLM][64Bits] -- GIMP-2_is1 O42 - Logiciel: Galerie de photos - (.Microsoft Corporation.) [HKLM][64Bits] -- {446CC8CE-0E90-44F7-ADD0-774B243EF090} O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome O42 - Logiciel: Google SketchUp 8 - (.Google, Inc..) [HKLM][64Bits] -- {E3F4EA31-41D7-4789-9AC4-F26CDAF797BA} O42 - Logiciel: Google Earth - (.Google.) [HKLM][64Bits] -- {96AD3B61-EAE2-11E2-9E72-B8AC6F98CCE3} O42 - Logiciel: HP Customer Participation Program 14.0 - (.HP.) [HKLM][64Bits] -- HPExtendedCapabilities O42 - Logiciel: HP Imaging Device Functions 14.0 - (.HP.) [HKLM][64Bits] -- HP Imaging Device Functions O42 - Logiciel: HP Photosmart Officejet and Deskjet All-In-One Driver Software - (.HP.) [HKLM][64Bits] -- {6F5B70F0-EA6C-4A5B-BB16-8390BD66B251} =>.Hewlett-Packard Co O42 - Logiciel: HP Solution Center 14.0 - (.HP.) [HKLM][64Bits] -- HP Solution Center & Imaging Support Tools O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM][64Bits] -- {B0069CFA-5BB9-4C03-B1C6-89CE290E5AFE} O42 - Logiciel: Inkscape 0.48.4 - (...) [HKLM][64Bits] -- Inkscape O42 - Logiciel: Intel PROSet Wireless - (...) [HKLM][64Bits] -- ProInst O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A} O42 - Logiciel: Intel(R) My WiFi Dashboard - (.Intel Corporation.) [HKLM][64Bits] -- {1E741267-F54B-4b3a-A7B6-1D1A156E385E} O42 - Logiciel: Intel(R) PROSet/Wireless for Bluetooth(R) + High Speed - (.Intel Corporation.) [HKLM][64Bits] -- {E77289CF-12B9-4CAB-A49E-FEAE947F4D95} O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA} O42 - Logiciel: Intel(R) Rapid Start Technology - (.Intel Corporation.) [HKLM][64Bits] -- 3D073343-CEEB-4ce7-85AC-A69A7631B5D6 O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {3E29EE6C-963A-4aae-86C1-DC237C4A49FC} O42 - Logiciel: Intel® Trusted Connect Service Client - (.Intel Corporation.) [HKLM][64Bits] -- {F4404AFD-2EF3-40C1-8C09-29E5F3B6972B} O42 - Logiciel: Java 7 Update 45 (64-bit) - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F86417045FF} O42 - Logiciel: Java 7 Update 45 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83217045FF} O42 - Logiciel: LibreOffice 4.0 Help Pack (French) - (.The Document Foundation.) [HKLM][64Bits] -- {F1041618-3DB6-41D5-A701-C593F0850708} O42 - Logiciel: LibreOffice 4.0.6.2 - (.The Document Foundation.) [HKLM][64Bits] -- {85595843-720E-4344-8210-F1ACAE87B459} O42 - Logiciel: Logiciel Intel® PROSet/Wireless WiFi - (.Intel Corporation.) [HKLM][64Bits] -- {1593C708-5535-47A4-8C0F-F8D4BE2B4560} O42 - Logiciel: LumiNet Monitor 2.1.1 - (.LUMINEX Lighting Control Equipment.) [HKLM][64Bits] -- LumiNet Monitor O42 - Logiciel: MOBILI-TV - (.ESSENTIELB.) [HKLM][64Bits] -- {7FF90D04-A60F-42A0-8F78-88623F99DCAC} O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F} O42 - Logiciel: MSVCRT110 - (.Microsoft.) [HKLM][64Bits] -- {8E14DDC8-EA60-4E18-B3E3-1937104D5BDA} O42 - Logiciel: MSVCRT110_amd64 - (.Microsoft.) [HKLM][64Bits] -- {E9FA781F-3E80-4399-825A-AD3E11C28C77} O42 - Logiciel: Malwarebytes Anti-Malware version 1.75.0.1300 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes' Anti-Malware_is1 O42 - Logiciel: Martin Driver Package - (.Martin Professional A/S.) [HKLM][64Bits] -- {5A468992-C111-4250-9E80-DB446DD50DF7} O42 - Logiciel: Martin M-Series - (.Martin Professional A/S.) [HKLM][64Bits] -- {4FC78987-197F-42F4-BA48-431E849C56F4} O42 - Logiciel: Martin M-Series Manager 1.6.8.428 - (.Martin Professional A/S.) [HKLM][64Bits] -- Martin M-Series Manager_is1 O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} O42 - Logiciel: MixPad - Mixeur de fichiers audio - (.NCH Software.) [HKLM][64Bits] -- MixPad O42 - Logiciel: Mixxx 1.11.0 - (.The Mixxx Development Team.) [HKLM][64Bits] -- Mixxx (1.11.0) O42 - Logiciel: Mozilla Firefox 25.0.1 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 25.0.1 (x86 fr) O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService O42 - Logiciel: Mutual Public - (.Mutual Public.) [HKLM][64Bits] -- mutualpublic O42 - Logiciel: OCR Software by I.R.I.S. 14.0 - (.HP.) [HKLM][64Bits] -- HPOCR O42 - Logiciel: PDF Architect - (.pdfforge GmbH.) [HKLM][64Bits] -- {064A929A-4DE8-40CF-A901-BD40C14E4D25} O42 - Logiciel: PDFCreator - (.pdfforge.) [HKLM][64Bits] -- {0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D} O42 - Logiciel: PRO-Manager 2.12 - (...) [HKLM][64Bits] -- PRO-Manager O42 - Logiciel: PhotoFiltre 7 - (...) [HKCU][64Bits] -- PhotoFiltre 7 O42 - Logiciel: Presto! PVR - (.NewSoft.) [HKLM][64Bits] -- {BC0DCD27-345B-4013-A6E0-67EC92DF32C8} O42 - Logiciel: QuickEngine - (.Tlapia.) [HKLM][64Bits] -- QuickEngine 1.0.1 O42 - Logiciel: QuickEngine - (.Tlapia.) [HKLM][64Bits] -- {FE1FC5C3-6A09-4D3F-B084-6A5288AFE8F9} O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM][64Bits] -- {B67BAFBA-4C9F-48FA-9496-933E3B255044} O42 - Logiciel: Quickset64 - (.Dell Inc..) [HKLM][64Bits] -- {87CF757E-C1F1-4D22-865C-00C6950B5258} O42 - Logiciel: Realtek USB 2.0 Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {96AE7E41-E34E-47D0-AC07-1091A8127911} O42 - Logiciel: SFR Cloud - (.F-Secure Corporation.) [HKCU][64Bits] -- SFR Cloud O42 - Logiciel: Shared C Run-time for x64 - (.McAfee.) [HKLM][64Bits] -- {EF79C448-6946-4D71-8134-03407888C054} O42 - Logiciel: Shop for HP Supplies - (.HP.) [HKLM][64Bits] -- Shop for HP Supplies O42 - Logiciel: Software Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} =>Adware.Boxore O42 - Logiciel: Sony Mobile Update Engine - (.Sony Mobile Communications AB.) [HKLM][64Bits] -- Update Engine O42 - Logiciel: Sony PC Companion 2.10.181 - (.Sony.) [HKLM][64Bits] -- {F09EF8F2-0976-42C1-8D9D-8DF78337C6E3} O42 - Logiciel: WavePad - Logiciel d'édition audio - (.NCH Software.) [HKLM][64Bits] -- WavePad O42 - Logiciel: Windows Driver Package - FTDI CDM Driver Package - Bus/D2XX Driver (01/18/2 - (.FTDI.) [HKLM][64Bits] -- 9E24492CE9279512BD465F61DB8523641BB7BBFC O42 - Logiciel: Windows Driver Package - FTDI CDM Driver Package - VCP Driver (01/18/2013 2 - (.FTDI.) [HKLM][64Bits] -- E61B77ECE57113AE1CA028BC7A8AD6C137BD13DD O42 - Logiciel: fst_fr_10 - (.Freesofttoday.) [HKLM][64Bits] -- fst_fr_10_is1 =>Adware.FreeSoftToday O42 - Logiciel: grandMA2 onPC 2.8.3.1 - (...) [HKLM][64Bits] -- grandMA2 onPC 2.8.3.1 O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM][64Bits] -- {A04DCB25-7040-4935-A30D-8E0A893ABF2D} O42 - Logiciel: inSSIDer 3 - (.MetaGeek, LLC.) [HKLM][64Bits] -- {A80CEA4E-74C1-4F9F-806B-E1D9AFC01768} O42 - Logiciel: sysTPL - (.Tlapia.) [HKLM][64Bits] -- {4B74BC31-B353-4B8F-8CBE-DAB4FF326FF1} O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- uTorrent =>P2P.BitTorrent ~ Logic: 70 Scanned in 00mn 00s ---\\ HKCU & HKLM Software Keys [HKCU\Software\Adobe] [HKCU\Software\AppDataLow\Software\JavaSoft] [HKCU\Software\AppDataLow] [HKCU\Software\Apple Computer, Inc.] [HKCU\Software\Apple Inc.] [HKCU\Software\Artistic Licence] [HKCU\Software\BitTorrent] =>P2P.BitTorrent [HKCU\Software\Bugsplat] [HKCU\Software\Classes] [HKCU\Software\Clients] [HKCU\Software\CyberLink] [HKCU\Software\Dassault Systemes] [HKCU\Software\F-Secure] [HKCU\Software\Flash Player Pro] [HKCU\Software\Google] [HKCU\Software\HP] [HKCU\Software\Hewlett-Packard] [HKCU\Software\Intel] [HKCU\Software\JavaSoft] [HKCU\Software\Leadertech] [HKCU\Software\Licenses] [HKCU\Software\Local AppWizard-Generated Applications] [HKCU\Software\LogiShrd] [HKCU\Software\Luminex LCE] [HKCU\Software\MA Lighting Technologies] [HKCU\Software\Macromedia] [HKCU\Software\Malwarebytes' Anti-Malware] [HKCU\Software\MetaGeek, LLC] [HKCU\Software\MozillaPlugins] [HKCU\Software\Mozilla] [HKCU\Software\NCH Swift Sound] [HKCU\Software\Nemetschek] [HKCU\Software\Netscape] [HKCU\Software\PC-Doctor] [HKCU\Software\PDF Architect] [HKCU\Software\PDFCreator] [HKCU\Software\Piriform] [HKCU\Software\Policies] [HKCU\Software\R&D International NV] [HKCU\Software\RegisteredApplications] [HKCU\Software\Revenger inc.] [HKCU\Software\SWActivation] [HKCU\Software\Skype] [HKCU\Software\Softorino] [HKCU\Software\Software] [HKCU\Software\Sony] [HKCU\Software\Synaptics] [HKCU\Software\Tabuleiro.com] [HKCU\Software\TeleCharger] [HKCU\Software\The Document Foundation] [HKCU\Software\Tools4ever] [HKCU\Software\Trolltech] [HKCU\Software\VB and VBA Program Settings] [HKCU\Software\VectorWorks] [HKCU\Software\WIBU-SYSTEMS] [HKCU\Software\Waves Audio] [HKCU\Software\Wondershare] [HKCU\Software\Wow6432Node] [HKCU\Software\ZebHelpProcess Helper] [HKCU\Software\famatech] [HKCU\Software\iColorFolder] [HKCU\Software\sysTPL] [HKLM\Software\ATI Technologies] [HKLM\Software\Apple Computer, Inc.] [HKLM\Software\Apple Inc.] [HKLM\Software\Classes] [HKLM\Software\Clients] [HKLM\Software\Dassault Systemes] [HKLM\Software\Dell Computer Corporation] [HKLM\Software\Dell] [HKLM\Software\GEAR Software] [HKLM\Software\Google] [HKLM\Software\Hewlett-Packard] [HKLM\Software\IDT] [HKLM\Software\InstalledOptions] [HKLM\Software\Intel] [HKLM\Software\JavaSoft] [HKLM\Software\Khronos] [HKLM\Software\LFL] [HKLM\Software\LapLink] [HKLM\Software\Logishrd] [HKLM\Software\Macromedia] [HKLM\Software\MozillaPlugins] [HKLM\Software\Mozilla] [HKLM\Software\ODBC] [HKLM\Software\PC-Doctor] [HKLM\Software\Piriform] [HKLM\Software\Policies] [HKLM\Software\Realtek Semiconductor Corp.] [HKLM\Software\Realtek] [HKLM\Software\RegisteredApplications] [HKLM\Software\Skype] [HKLM\Software\Synaptics] [HKLM\Software\Volatile] [HKLM\Software\WIBU-SYSTEMS] [HKLM\Software\Waves Audio] [HKLM\Software\Wow6432Node\Adobe] [HKLM\Software\Wow6432Node\AdwCleaner] [HKLM\Software\Wow6432Node\Apple Computer, Inc.] [HKLM\Software\Wow6432Node\Apple Inc.] [HKLM\Software\Wow6432Node\Caphyon] [HKLM\Software\Wow6432Node\Classes] [HKLM\Software\Wow6432Node\Clients] [HKLM\Software\Wow6432Node\CyberLink] [HKLM\Software\Wow6432Node\Dell Inc.] [HKLM\Software\Wow6432Node\DellBackupandRecovery] [HKLM\Software\Wow6432Node\Dell] [HKLM\Software\Wow6432Node\ESSENTIELB] [HKLM\Software\Wow6432Node\Google] [HKLM\Software\Wow6432Node\Hewlett-Packard] [HKLM\Software\Wow6432Node\Intel] [HKLM\Software\Wow6432Node\JavaSoft] [HKLM\Software\Wow6432Node\JreMetrics] [HKLM\Software\Wow6432Node\Khronos] [HKLM\Software\Wow6432Node\Lake] [HKLM\Software\Wow6432Node\LibreOffice] [HKLM\Software\Wow6432Node\Luminex LCE] [HKLM\Software\Wow6432Node\MA Lighting Technologies] [HKLM\Software\Wow6432Node\Macromedia] [HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware (Trial)] [HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware] [HKLM\Software\Wow6432Node\Martin Professional A/S] [HKLM\Software\Wow6432Node\Martin Professional] [HKLM\Software\Wow6432Node\MicroQuill] [HKLM\Software\Wow6432Node\MozillaPlugins] [HKLM\Software\Wow6432Node\Mozilla] [HKLM\Software\Wow6432Node\NewSoft] [HKLM\Software\Wow6432Node\ODBC] [HKLM\Software\Wow6432Node\PC-Doctor] [HKLM\Software\Wow6432Node\PDFCreator] [HKLM\Software\Wow6432Node\Policies] [HKLM\Software\Wow6432Node\R&D International NV] [HKLM\Software\Wow6432Node\Realtek Semiconductor Corp.] [HKLM\Software\Wow6432Node\RegisteredApplications] [HKLM\Software\Wow6432Node\Revenger inc.] [HKLM\Software\Wow6432Node\SIEN SA] [HKLM\Software\Wow6432Node\SoftThinks] [HKLM\Software\Wow6432Node\Software] [HKLM\Software\Wow6432Node\Sony] [HKLM\Software\Wow6432Node\The Document Foundation] [HKLM\Software\Wow6432Node\Tools4ever] [HKLM\Software\Wow6432Node\VolDellBackupAndRecovery] [HKLM\Software\Wow6432Node\Volatile] [HKLM\Software\Wow6432Node\WIBU-SYSTEMS] [HKLM\Software\Wow6432Node\Wondershare] [HKLM\Software\Wow6432Node\Wow6432Node] [HKLM\Software\Wow6432Node\Yuan High-Tech] [HKLM\Software\Wow6432Node\famatech] [HKLM\Software\Wow6432Node\mozilla.org] [HKLM\Software\Wow6432Node\office] [HKLM\Software\Wow6432Node] [HKLM\Software\office] ~ Key Software: 327 Scanned in 00mn 00s ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) O43 - CFD: 28/10/2013 - 17:32:55 - [120,785] ----D C:\Program Files (x86)\Adobe O43 - CFD: 14/11/2013 - 15:51:19 - [17,214] ----D C:\Program Files (x86)\Advanced IP Scanner O43 - CFD: 12/12/2013 - 10:19:33 - [0] ----D C:\Program Files (x86)\Amazon O43 - CFD: 30/10/2013 - 00:14:12 - [2,316] ----D C:\Program Files (x86)\Apple Software Update =>.Apple Inc O43 - CFD: 28/11/2013 - 11:37:23 - [12,595] ----D C:\Program Files (x86)\Artistic Licence O43 - CFD: 31/10/2013 - 18:36:10 - [0,602] ----D C:\Program Files (x86)\Bonjour O43 - CFD: 30/10/2013 - 00:38:49 - [120,735] ----D C:\Program Files (x86)\Chamsys Ltd O43 - CFD: 16/06/2013 - 17:30:39 - [6,757] ----D C:\Program Files (x86)\Cisco O43 - CFD: 08/11/2013 - 18:13:27 - [28,160] ----D C:\Program Files (x86)\CodeMeter O43 - CFD: 21/12/2013 - 01:02:28 - [293,512] ----D C:\Program Files (x86)\Common Files O43 - CFD: 16/06/2013 - 17:42:34 - [1181,425] ----D C:\Program Files (x86)\CyberLink O43 - CFD: 11/12/2013 - 12:35:11 - [9,249] ----D C:\Program Files (x86)\Dekla O43 - CFD: 06/01/2014 - 22:13:47 - [483,222] ----D C:\Program Files (x86)\Dell Backup and Recovery O43 - CFD: 20/11/2013 - 09:19:44 - [4,957] ----D C:\Program Files (x86)\Dell Digital Delivery O43 - CFD: 26/12/2013 - 00:15:23 - [1,628] ----D C:\Program Files (x86)\Dell Update O43 - CFD: 15/12/2013 - 11:25:26 - [2,598] ----D C:\Program Files (x86)\DessElec 2000 O43 - CFD: 21/12/2013 - 01:02:24 - [3,972] --H-D C:\Program Files (x86)\Dr.Fone_Temp O43 - CFD: 28/10/2013 - 13:28:41 - [3,221] ----D C:\Program Files (x86)\enginesysTPL O43 - CFD: 28/11/2013 - 11:50:24 - [25,026] ----D C:\Program Files (x86)\ENTTEC O43 - CFD: 02/11/2013 - 15:07:29 - [4,407] ----D C:\Program Files (x86)\ESSENTIELB O43 - CFD: 02/11/2013 - 13:55:19 - [741,170] ----D C:\Program Files (x86)\Google O43 - CFD: 29/10/2013 - 17:26:30 - [271,015] ----D C:\Program Files (x86)\HP O43 - CFD: 20/11/2013 - 12:39:59 - [152,978] ----D C:\Program Files (x86)\Inkscape O43 - CFD: 22/12/2013 - 11:18:49 - [145,472] --H-D C:\Program Files (x86)\InstallShield Installation Information O43 - CFD: 30/12/2013 - 17:17:23 - [119,789] ----D C:\Program Files (x86)\Intel O43 - CFD: 12/12/2013 - 08:28:43 - [6,303] ----D C:\Program Files (x86)\Internet Explorer O43 - CFD: 20/11/2013 - 17:34:24 - [3,657] ----D C:\Program Files (x86)\IPChangerVer3_0_15 O43 - CFD: 31/10/2013 - 18:37:48 - [184,820] ----D C:\Program Files (x86)\iTunes O43 - CFD: 12/12/2013 - 10:43:04 - [122,743] ----D C:\Program Files (x86)\Java O43 - CFD: 28/10/2013 - 16:55:53 - [336,808] ----D C:\Program Files (x86)\LibreOffice 4.0 O43 - CFD: 02/11/2013 - 16:56:04 - [45,715] ----D C:\Program Files (x86)\Luminex O43 - CFD: 30/10/2013 - 02:21:09 - [17,231] ----D C:\Program Files (x86)\MA Lighting Technologies O43 - CFD: 30/10/2013 - 01:16:20 - [13,336] ----D C:\Program Files (x86)\Malwarebytes' Anti-Malware O43 - CFD: 08/11/2013 - 18:14:48 - [138,596] ----D C:\Program Files (x86)\Martin Professional O43 - CFD: 14/11/2013 - 15:37:33 - [10,655] ----D C:\Program Files (x86)\MetaGeek O43 - CFD: 01/01/2014 - 11:23:43 - [0] ----D C:\Program Files (x86)\Microsoft O43 - CFD: 31/12/2013 - 12:43:40 - [40,851] ----D C:\Program Files (x86)\Microsoft Silverlight O43 - CFD: 08/11/2013 - 18:12:20 - [0,864] ----D C:\Program Files (x86)\Microsoft SQL Server O43 - CFD: 16/06/2013 - 17:48:51 - [1,745] ----D C:\Program Files (x86)\Microsoft SQL Server Compact Edition O43 - CFD: 22/08/2013 - 16:36:30 - [0,023] ----D C:\Program Files (x86)\Microsoft.NET O43 - CFD: 13/12/2013 - 13:07:41 - [68,873] ----D C:\Program Files (x86)\Mixxx O43 - CFD: 20/11/2013 - 10:17:22 - [49,931] ----D C:\Program Files (x86)\Mozilla Firefox O43 - CFD: 20/11/2013 - 16:16:10 - [0,216] ----D C:\Program Files (x86)\Mozilla Maintenance Service O43 - CFD: 29/10/2013 - 00:57:04 - [0,025] ----D C:\Program Files (x86)\MSBuild O43 - CFD: 02/11/2013 - 15:13:09 - [16,971] ----D C:\Program Files (x86)\NewSoft O43 - CFD: 02/11/2013 - 13:43:39 - [94,922] ----D C:\Program Files (x86)\PDF Architect O43 - CFD: 12/12/2013 - 10:21:54 - [22,534] ----D C:\Program Files (x86)\PDFCreator O43 - CFD: 13/12/2013 - 09:52:22 - [7,939] ----D C:\Program Files (x86)\PhotoFiltre 7 O43 - CFD: 30/10/2013 - 00:15:29 - [73,545] ----D C:\Program Files (x86)\QuickTime O43 - CFD: 16/06/2013 - 17:29:14 - [27,996] ----D C:\Program Files (x86)\Realtek O43 - CFD: 29/10/2013 - 00:57:04 - [36,661] ----D C:\Program Files (x86)\Reference Assemblies O43 - CFD: 22/12/2013 - 11:18:49 - [131,172] ----D C:\Program Files (x86)\Sony O43 - CFD: 22/12/2013 - 11:21:28 - [145,901] ----D C:\Program Files (x86)\Sony Mobile O43 - CFD: 07/01/2014 - 14:07:14 - [4,084] ----D C:\Program Files (x86)\sysTPL O43 - CFD: 14/11/2013 - 15:29:01 - [0,420] ----D C:\Program Files (x86)\Tools4ever O43 - CFD: 30/10/2013 - 00:04:32 - [217,250] ----D C:\Program Files (x86)\Vectorworks 2014v O43 - CFD: 30/09/2013 - 05:18:05 - [1,011] ----D C:\Program Files (x86)\Windows Defender O43 - CFD: 16/06/2013 - 17:48:49 - [81,474] ----D C:\Program Files (x86)\Windows Live O43 - CFD: 09/12/2013 - 11:39:48 - [0] ----D C:\Program Files (x86)\Windows Live Mail to Mac Mail =>.Microsoft Corporation O43 - CFD: 30/09/2013 - 04:56:46 - [5,449] ----D C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation O43 - CFD: 29/10/2013 - 01:07:49 - [3,148] ----D C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation O43 - CFD: 22/08/2013 - 16:36:33 - [0,211] ----D C:\Program Files (x86)\Windows Multimedia Platform O43 - CFD: 22/08/2013 - 16:36:30 - [7,175] ----D C:\Program Files (x86)\Windows NT O43 - CFD: 30/09/2013 - 04:56:46 - [5,118] ----D C:\Program Files (x86)\Windows Photo Viewer O43 - CFD: 22/08/2013 - 16:36:33 - [0,211] ----D C:\Program Files (x86)\Windows Portable Devices O43 - CFD: 29/10/2013 - 01:07:49 - [0] -SH-D C:\Program Files (x86)\Windows Sidebar O43 - CFD: 22/08/2013 - 16:36:30 - [0] ----D C:\Program Files (x86)\WindowsPowerShell O43 - CFD: 21/12/2013 - 01:22:53 - [0] ----D C:\Program Files (x86)\Wondershare O43 - CFD: 07/01/2014 - 14:09:57 - [17,240] ----D C:\Program Files (x86)\ZHPDiag =>.Nicolas Coolman O43 - CFD: 28/10/2013 - 17:33:08 - [6,289] ----D C:\Program Files (x86)\Common Files\Adobe O43 - CFD: 31/10/2013 - 18:36:42 - [96,850] ----D C:\Program Files (x86)\Common Files\Apple O43 - CFD: 16/06/2013 - 17:38:50 - [0,092] ----D C:\Program Files (x86)\Common Files\CyberLink O43 - CFD: 29/10/2013 - 17:24:11 - [2,453] ----D C:\Program Files (x86)\Common Files\Hewlett-Packard O43 - CFD: 29/10/2013 - 17:24:28 - [1,348] ----D C:\Program Files (x86)\Common Files\HP O43 - CFD: 02/11/2013 - 14:52:18 - [5,178] ----D C:\Program Files (x86)\Common Files\InstallShield O43 - CFD: 28/10/2013 - 13:26:44 - [115,107] ----D C:\Program Files (x86)\Common Files\Intel O43 - CFD: 16/06/2013 - 17:40:05 - [0,204] ----D C:\Program Files (x86)\Common Files\Intel Corporation O43 - CFD: 12/12/2013 - 10:43:18 - [1,191] ----D C:\Program Files (x86)\Common Files\Java O43 - CFD: 29/10/2013 - 01:07:46 - [38,775] ----D C:\Program Files (x86)\Common Files\Microsoft Shared O43 - CFD: 02/11/2013 - 15:13:19 - [13,841] ----D C:\Program Files (x86)\Common Files\NewSoft O43 - CFD: 16/06/2013 - 17:27:14 - [0,185] ----D C:\Program Files (x86)\Common Files\postureAgent O43 - CFD: 22/08/2013 - 16:36:33 - [0,003] ----D C:\Program Files (x86)\Common Files\Services O43 - CFD: 30/09/2013 - 04:56:46 - [8,924] ----D C:\Program Files (x86)\Common Files\System O43 - CFD: 16/06/2013 - 17:47:38 - [0] ----D C:\Program Files (x86)\Common Files\Windows Live O43 - CFD: 21/12/2013 - 01:02:28 - [3,074] ----D C:\Program Files (x86)\Common Files\Wondershare O43 - CFD: 31/10/2013 - 18:37:54 - [2,774] ----D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69 O43 - CFD: 31/10/2013 - 18:13:51 - [147,431] ----D C:\ProgramData\Adobe O43 - CFD: 31/10/2013 - 18:35:56 - [57,337] ----D C:\ProgramData\Apple O43 - CFD: 31/10/2013 - 18:36:42 - [94,416] ----D C:\ProgramData\Apple Computer O43 - CFD: 22/08/2013 - 15:45:52 - [0] -SH-D C:\ProgramData\Application Data O43 - CFD: 28/10/2013 - 06:10:49 - [0] -SH-D C:\ProgramData\Bureau O43 - CFD: 16/06/2013 - 17:37:29 - [0,001] ----D C:\ProgramData\CLSK O43 - CFD: 08/11/2013 - 18:13:09 - [0] ----D C:\ProgramData\CodeMeter O43 - CFD: 02/01/2014 - 18:33:57 - [0,252] ----D C:\ProgramData\CyberLink O43 - CFD: 04/11/2013 - 17:16:46 - [1,023] ----D C:\ProgramData\Dassault Systemes O43 - CFD: 28/10/2013 - 06:15:51 - [-1700,276] ----D C:\ProgramData\Dell O43 - CFD: 22/08/2013 - 15:45:52 - [0] -SH-D C:\ProgramData\Desktop O43 - CFD: 22/08/2013 - 15:45:52 - [0] -SH-D C:\ProgramData\Documents O43 - CFD: 27/12/2013 - 10:10:30 - [0,001] ----D C:\ProgramData\F-Secure O43 - CFD: 02/11/2013 - 13:56:30 - [0] ----D C:\ProgramData\Google O43 - CFD: 29/10/2013 - 17:31:53 - [16,284] ----D C:\ProgramData\HP O43 - CFD: 29/10/2013 - 17:25:36 - [0,009] ----D C:\ProgramData\HP Product Assistant O43 - CFD: 16/06/2013 - 17:41:42 - [0,103] ----D C:\ProgramData\install_clap O43 - CFD: 16/06/2013 - 17:30:39 - [0,050] ----D C:\ProgramData\Intel O43 - CFD: 16/06/2013 - 17:30:28 - [0,001] ----D C:\ProgramData\Intel.sav O43 - CFD: 30/10/2013 - 02:21:14 - [156,149] ----D C:\ProgramData\MA Lighting Technologies O43 - CFD: 30/10/2013 - 01:16:13 - [6,988] ----D C:\ProgramData\Malwarebytes O43 - CFD: 08/11/2013 - 18:19:52 - [94,763] ----D C:\ProgramData\Martin Professional O43 - CFD: 28/10/2013 - 06:10:49 - [0] -SH-D C:\ProgramData\Menu Démarrer O43 - CFD: 01/01/2014 - 11:22:46 - [957,095] -S--D C:\ProgramData\Microsoft O43 - CFD: 28/10/2013 - 06:10:49 - [0] -SH-D C:\ProgramData\Modèles O43 - CFD: 28/10/2013 - 13:30:56 - [0,020] ----D C:\ProgramData\Mozilla O43 - CFD: 12/12/2013 - 10:43:18 - [0] ----D C:\ProgramData\Oracle O43 - CFD: 30/10/2013 - 00:03:54 - [13,464] ----D C:\ProgramData\Package Cache O43 - CFD: 16/06/2013 - 17:36:37 - [3,233] ----D C:\ProgramData\PC-Doctor for Windows O43 - CFD: 04/11/2013 - 15:52:07 - [59,360] ----D C:\ProgramData\PCDr O43 - CFD: 29/10/2013 - 01:07:53 - [0,039] ----D C:\ProgramData\PRICache O43 - CFD: 12/12/2013 - 10:50:00 - [0,001] ----D C:\ProgramData\regid.1991-06.com.microsoft O43 - CFD: 16/06/2013 - 17:31:07 - [0] ----D C:\ProgramData\Roaming O43 - CFD: 29/11/2013 - 14:31:03 - [0,013] ----D C:\ProgramData\softthinks O43 - CFD: 22/12/2013 - 11:18:49 - [4,551] ----D C:\ProgramData\Sony O43 - CFD: 22/12/2013 - 11:21:57 - [779,640] ----D C:\ProgramData\Sony Mobile O43 - CFD: 22/08/2013 - 15:45:52 - [0] -SH-D C:\ProgramData\Start Menu O43 - CFD: 12/12/2013 - 10:43:19 - [0] ----D C:\ProgramData\Sun O43 - CFD: 16/06/2013 - 17:42:34 - [2,096] ----D C:\ProgramData\Temp O43 - CFD: 22/08/2013 - 15:45:52 - [0] -SH-D C:\ProgramData\Templates O43 - CFD: 29/10/2013 - 17:30:41 - [0] ----D C:\ProgramData\WEBREG O43 - CFD: 21/12/2013 - 01:02:18 - [0,018] ----D C:\ProgramData\Wondershare O43 - CFD: 29/10/2013 - 23:14:00 - [1,992] ----D C:\Users\yannick\AppData\Roaming\Adobe O43 - CFD: 31/10/2013 - 18:40:43 - [326,803] ----D C:\Users\yannick\AppData\Roaming\Apple Computer O43 - CFD: 20/12/2013 - 19:29:53 - [0,002] ----D C:\Users\yannick\AppData\Roaming\CyberLink O43 - CFD: 04/11/2013 - 17:18:01 - [4,133] ----D C:\Users\yannick\AppData\Roaming\DraftSight O43 - CFD: 07/01/2014 - 14:07:25 - [73,589] ----D C:\Users\yannick\AppData\Roaming\Dropbox O43 - CFD: 27/12/2013 - 10:10:30 - [0] ----D C:\Users\yannick\AppData\Roaming\F-Secure O43 - CFD: 02/11/2013 - 20:33:16 - [0] ----D C:\Users\yannick\AppData\Roaming\FolderColorize O43 - CFD: 02/11/2013 - 13:56:30 - [0] ----D C:\Users\yannick\AppData\Roaming\Google O43 - CFD: 29/10/2013 - 17:35:20 - [0,194] ----D C:\Users\yannick\AppData\Roaming\HP O43 - CFD: 21/11/2013 - 12:10:13 - [0,003] ----D C:\Users\yannick\AppData\Roaming\HpUpdate O43 - CFD: 29/10/2013 - 01:17:37 - [0] ----D C:\Users\yannick\AppData\Roaming\Identities O43 - CFD: 02/11/2013 - 21:56:36 - [0,002] ----D C:\Users\yannick\AppData\Roaming\IDT O43 - CFD: 21/12/2013 - 01:41:23 - [0,022] ----D C:\Users\yannick\AppData\Roaming\inkscape O43 - CFD: 02/11/2013 - 15:07:12 - [0] ----D C:\Users\yannick\AppData\Roaming\InstallShield O43 - CFD: 28/10/2013 - 13:14:37 - [0,001] ----D C:\Users\yannick\AppData\Roaming\Intel O43 - CFD: 28/10/2013 - 13:17:17 - [0] ----D C:\Users\yannick\AppData\Roaming\Intel Corporation O43 - CFD: 28/10/2013 - 17:00:19 - [0,001] ----D C:\Users\yannick\AppData\Roaming\Leadertech O43 - CFD: 28/10/2013 - 16:58:16 - [2,279] ----D C:\Users\yannick\AppData\Roaming\LibreOffice O43 - CFD: 28/10/2013 - 13:15:21 - [0,004] ----D C:\Users\yannick\AppData\Roaming\Macromedia O43 - CFD: 30/10/2013 - 01:16:27 - [43,023] ----D C:\Users\yannick\AppData\Roaming\Malwarebytes O43 - CFD: 14/11/2013 - 15:37:35 - [2,025] -S--D C:\Users\yannick\AppData\Roaming\Microsoft O43 - CFD: 29/10/2013 - 12:20:37 - [57,499] ----D C:\Users\yannick\AppData\Roaming\Mozilla O43 - CFD: 30/10/2013 - 00:19:50 - [0,171] ----D C:\Users\yannick\AppData\Roaming\Nemetschek O43 - CFD: 29/10/2013 - 22:40:58 - [0,093] ----D C:\Users\yannick\AppData\Roaming\PCDr O43 - CFD: 02/11/2013 - 13:50:17 - [0,002] ----D C:\Users\yannick\AppData\Roaming\PDF Architect O43 - CFD: 13/12/2013 - 09:55:24 - [0,001] ----D C:\Users\yannick\AppData\Roaming\PhotoFiltre 7 O43 - CFD: 30/10/2013 - 00:50:45 - [0] ----D C:\Users\yannick\AppData\Roaming\PRO-Manager O43 - CFD: 23/12/2013 - 19:24:42 - [0] ----D C:\Users\yannick\AppData\Roaming\ProxySwap O43 - CFD: 21/12/2013 - 00:24:26 - [0] ----D C:\Users\yannick\AppData\Roaming\Reincubate O43 - CFD: 07/01/2014 - 14:07:15 - [3,924] ----D C:\Users\yannick\AppData\Roaming\uTorrent =>P2P.µTorrent O43 - CFD: 20/12/2013 - 19:34:04 - [0] ----D C:\Users\yannick\AppData\Roaming\WebApp O43 - CFD: 07/01/2014 - 14:10:52 - [11,185] ----D C:\Users\yannick\AppData\Roaming\ZHP =>.Nicolas Coolman O43 - CFD: 28/10/2013 - 21:17:05 - [0] ----D C:\Users\yannick\AppData\Local\Absolute_Software O43 - CFD: 29/11/2013 - 14:00:17 - [17,719] ----D C:\Users\yannick\AppData\Local\Adobe O43 - CFD: 30/10/2013 - 00:14:13 - [0] ----D C:\Users\yannick\AppData\Local\Apple O43 - CFD: 31/10/2013 - 18:38:07 - [15,465] ----D C:\Users\yannick\AppData\Local\Apple Computer O43 - CFD: 29/10/2013 - 01:06:22 - [0] -SH-D C:\Users\yannick\AppData\Local\Application Data O43 - CFD: 01/11/2013 - 18:54:25 - [7,171] ----D C:\Users\yannick\AppData\Local\Apps O43 - CFD: 04/11/2013 - 17:19:52 - [0] ----D C:\Users\yannick\AppData\Local\CrashRpt O43 - CFD: 20/12/2013 - 19:22:07 - [0,088] ----D C:\Users\yannick\AppData\Local\Cyberlink O43 - CFD: 11/12/2013 - 12:35:03 - [0,003] ----D C:\Users\yannick\AppData\Local\Dekla O43 - CFD: 07/01/2014 - 14:07:16 - [0] ----D C:\Users\yannick\AppData\Local\Deployment O43 - CFD: 26/12/2013 - 09:15:25 - [1,875] ----D C:\Users\yannick\AppData\Local\Diagnostics O43 - CFD: 08/11/2013 - 18:14:28 - [108,355] ----D C:\Users\yannick\AppData\Local\Downloaded Installations O43 - CFD: 12/12/2013 - 13:32:18 - [18,628] ----D C:\Users\yannick\AppData\Local\ElevatedDiagnostics O43 - CFD: 27/12/2013 - 10:08:15 - [85,633] ----D C:\Users\yannick\AppData\Local\F-Secure O43 - CFD: 13/12/2013 - 10:56:45 - [1,762] ----D C:\Users\yannick\AppData\Local\fontconfig O43 - CFD: 13/12/2013 - 10:56:43 - [0,001] ----D C:\Users\yannick\AppData\Local\gegl-0.2 O43 - CFD: 30/10/2013 - 23:51:16 - [4,607] ----D C:\Users\yannick\AppData\Local\Google O43 - CFD: 13/12/2013 - 10:58:29 - [0] ----D C:\Users\yannick\AppData\Local\gtk-2.0 O43 - CFD: 29/10/2013 - 01:06:22 - [0] -SH-D C:\Users\yannick\AppData\Local\Historique O43 - CFD: 29/10/2013 - 17:35:18 - [0,129] ----D C:\Users\yannick\AppData\Local\HP O43 - CFD: 27/11/2013 - 17:43:06 - [0,002] ----D C:\Users\yannick\AppData\Local\Intel_Corporation O43 - CFD: 14/11/2013 - 15:33:33 - [0,008] ----D C:\Users\yannick\AppData\Local\IsolatedStorage O43 - CFD: 13/12/2013 - 21:11:40 - [0] ----D C:\Users\yannick\AppData\Local\LogicCircuit O43 - CFD: 02/11/2013 - 10:04:17 - [0] ----D C:\Users\yannick\AppData\Local\Macromedia O43 - CFD: 08/11/2013 - 18:18:08 - [10,000] ----D C:\Users\yannick\AppData\Local\Martin Professional O43 - CFD: 14/11/2013 - 15:37:44 - [0,020] ----D C:\Users\yannick\AppData\Local\MetaGeek,_LLC O43 - CFD: 01/01/2014 - 11:23:43 - [741,858] ----D C:\Users\yannick\AppData\Local\Microsoft O43 - CFD: 20/11/2013 - 16:05:04 - [0] ----D C:\Users\yannick\AppData\Local\MigWiz O43 - CFD: 30/12/2013 - 16:51:04 - [19,204] ----D C:\Users\yannick\AppData\Local\Mixxx O43 - CFD: 28/10/2013 - 13:46:17 - [138,212] ----D C:\Users\yannick\AppData\Local\Mozilla O43 - CFD: 14/11/2013 - 15:33:34 - [0] -SH-D C:\Users\yannick\AppData\Local\ms-drivers O43 - CFD: 02/11/2013 - 15:21:16 - [2,110] ----D C:\Users\yannick\AppData\Local\Newsoft O43 - CFD: 31/12/2013 - 13:33:48 - [749,864] ----D C:\Users\yannick\AppData\Local\Packages O43 - CFD: 17/12/2013 - 14:29:15 - [0] ----D C:\Users\yannick\AppData\Local\PackageStaging O43 - CFD: 28/10/2013 - 13:15:40 - [0,039] ----D C:\Users\yannick\AppData\Local\Power2Go8 O43 - CFD: 28/11/2013 - 11:36:28 - [0] ----D C:\Users\yannick\AppData\Local\Programs O43 - CFD: 23/12/2013 - 19:24:42 - [0,001] ----D C:\Users\yannick\AppData\Local\ProxySwap O43 - CFD: 14/11/2013 - 14:53:11 - [0] ----D C:\Users\yannick\AppData\Local\softthinks O43 - CFD: 28/10/2013 - 13:48:31 - [0] ----D C:\Users\yannick\AppData\Local\Software O43 - CFD: 07/01/2014 - 14:07:29 - [247,015] ----D C:\Users\yannick\AppData\Local\Temp O43 - CFD: 29/10/2013 - 01:06:22 - [0] -SH-D C:\Users\yannick\AppData\Local\Temporary Internet Files O43 - CFD: 30/10/2013 - 00:40:21 - [56,918] ----D C:\Users\yannick\AppData\Local\VirtualStore O43 - CFD: 04/01/2014 - 20:45:16 - [0,047] ----D C:\Users\yannick\AppData\Local\Windows Live O43 - CFD: 21/12/2013 - 01:02:29 - [0] ----D C:\Users\yannick\AppData\Local\Wondershare O43 - CFD: 22/08/2013 - 16:36:32 - [0,004] R---D C:\Users\yannick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility O43 - CFD: 22/08/2013 - 16:36:32 - [0,001] R---D C:\Users\yannick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories O43 - CFD: 20/11/2013 - 12:17:18 - [0] R---D C:\Users\yannick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools O43 - CFD: 10/12/2013 - 17:11:36 - [0,003] ----D C:\Users\yannick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dekla O43 - CFD: 01/11/2013 - 18:54:48 - [0] ----D C:\Users\yannick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell O43 - CFD: 20/12/2013 - 11:57:31 - [0,002] ----D C:\Users\yannick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox O43 - CFD: 28/11/2013 - 11:50:24 - [0] ----D C:\Users\yannick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ENTTEC O43 - CFD: 20/11/2013 - 15:53:16 - [0,001] ----D C:\Users\yannick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FreeProxy O43 - CFD: 02/11/2013 - 16:56:04 - [0] ----D C:\Users\yannick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LumiNet Monitor O43 - CFD: 22/08/2013 - 16:36:32 - [0] ----D C:\Users\yannick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance O43 - CFD: 14/11/2013 - 15:37:35 - [0,003] ----D C:\Users\yannick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MetaGeek O43 - CFD: 13/12/2013 - 09:52:22 - [0] ----D C:\Users\yannick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PhotoFiltre 7 O43 - CFD: 27/12/2013 - 10:08:21 - [0,001] ----D C:\Users\yannick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SFR Cloud O43 - CFD: 27/12/2013 - 10:08:21 - [0,003] R---D C:\Users\yannick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup O43 - CFD: 29/10/2013 - 01:06:47 - [0,006] R---D C:\Users\yannick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools ~ Program Folder: 219 Scanned in 00mn 07s ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44) O44 - LFC:[MD5.F994D2F9EBD23B1941BD3D12FC1EABEC] - 02/01/2014 - 18:36:36 ---A- . (...) -- C:\Windows\setupact.log [2325] O44 - LFC:[MD5.BF619EAC0CDF3F68D496EA9344137E8B] - 03/01/2014 - 16:03:15 ---A- . (...) -- C:\PhysicalDisk0_MBR.bin [512] O44 - LFC:[MD5.D394B74290EA36CD02F433CCD0EA05B4] - 05/01/2014 - 22:33:45 ---A- . (...) -- C:\Windows\PFRO.log [26884] O44 - LFC:[MD5.512F29C8AB40D634B8BF6D598CFEBBE5] - 06/01/2014 - 22:11:44 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [1827432] O44 - LFC:[MD5.F7669B92D449B28FDA3A121452235607] - 06/01/2014 - 22:11:44 ---A- . (...) -- C:\Windows\System32\perfc009.dat [136128] O44 - LFC:[MD5.F3BAEF3DC02EFE06F1FBA32C937D9EE7] - 06/01/2014 - 22:11:44 ---A- . (...) -- C:\Windows\System32\perfc00C.dat [159948] O44 - LFC:[MD5.EBDF64763D4701C5DF23992579EBE6EF] - 06/01/2014 - 22:11:44 ---A- . (...) -- C:\Windows\System32\perfh009.dat [723514] O44 - LFC:[MD5.13C29AFE8DE573AA38F44924FE492555] - 06/01/2014 - 22:11:44 ---A- . (...) -- C:\Windows\System32\perfh00C.dat [813388] O44 - LFC:[MD5.A9D9C0DEBAECD97347CA16EE26CA6559] - 07/01/2014 - 13:10:58 -S-A- . (...) -- C:\Windows\bootstat.dat [67584] O44 - LFC:[MD5.B66AC7E36006EF51C6EA426BDE21845E] - 07/01/2014 - 14:07:43 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1262597] O44 - LFC:[MD5.243221CDE713BB6A24E833154B3678EC] - 26/12/2013 - 00:12:48 ---A- . (...) -- C:\Windows\System32\FNTCACHE.DAT [402808] O44 - LFC:[MD5.4A3E0C868F4A7EC09FAAE35D87EE40C1] - 30/12/2013 - 17:17:37 ---A- . (...) -- C:\Windows\setuperr.log [588] ~ Files: 12 Scanned in 00mn 08s ---\\ Derniers fichiers créés dans Windows Prefetcher (O45) O45 - LFCP:[MD5.E2F2C1B3394D100B092D573EB8637B65] - 01/01/2014 - 00:42:51 ---A- - C:\Windows\Prefetch\WWAHOST.EXE-9DB6744D.pf O45 - LFCP:[MD5.175CEE9235CDBC7C8F11781D0DB1A80E] - 01/01/2014 - 11:16:36 ---A- - C:\Windows\Prefetch\BINGDESKTOP.EXE-4BE11876.pf O45 - LFCP:[MD5.DCB927C3800128E93D09B1ED9B5D7EC1] - 01/01/2014 - 11:18:14 ---A- - C:\Windows\Prefetch\USERACCOUNTBROKER.EXE-37CDABD2.pf O45 - LFCP:[MD5.AC786654CB672E17CE26610583BB8CA0] - 01/01/2014 - 11:19:11 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-45C6A74D.pf O45 - LFCP:[MD5.0B661173D8666F614EB25834B20C0DA7] - 01/01/2014 - 11:22:47 ---A- - C:\Windows\Prefetch\MSIEXEC.EXE-A80B33F1.pf O45 - LFCP:[MD5.93E49297ACA1871CB4EE479B6669C788] - 01/01/2014 - 11:23:40 ---A- - C:\Windows\Prefetch\BDEXTHOST.EXE-0FC2691D.pf O45 - LFCP:[MD5.EAC1C583C50B15449E933840C15ADFEF] - 01/01/2014 - 13:15:17 ---A- - C:\Windows\Prefetch\MSPAINT.EXE-3E52379B.pf O45 - LFCP:[MD5.FD35EEDC4A4088FAD4217315380A4358] - 01/01/2014 - 14:09:42 ---A- - C:\Windows\Prefetch\RESTOREOPTIN.EXE-226A5B8D.pf O45 - LFCP:[MD5.850B0EDDCE8E98648003D359936910E6] - 01/01/2014 - 14:16:27 ---A- - C:\Windows\Prefetch\PfPre_1cb3008a.db O45 - LFCP:[MD5.DE3EA292C8EB6C77DE47EA45BAF3AEEA] - 02/01/2014 - 16:46:50 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-08B7A8A6.pf O45 - LFCP:[MD5.9843F41127C20213F2C825F96D162B3B] - 02/01/2014 - 16:46:50 ---A- - C:\Windows\Prefetch\USERACCOUNTCONTROLSETTINGS.EX-71FD94AD.pf O45 - LFCP:[MD5.E31B4CDD148B2C09DA2DBF57A0143E8D] - 02/01/2014 - 16:46:58 ---A- - C:\Windows\Prefetch\HELPPANE.EXE-886E0A92.pf O45 - LFCP:[MD5.B15134DCBED601946CEED06FD26B6FAD] - 02/01/2014 - 16:59:57 ---A- - C:\Windows\Prefetch\AVASTCLEAR.EXE-F5093DEA.pf O45 - LFCP:[MD5.1FA51CA538D903BCFA756E5656F95865] - 02/01/2014 - 17:09:50 ---A- - C:\Windows\Prefetch\TELELOISIRS.EXE-568E20FE.pf O45 - LFCP:[MD5.31952DBEBEB1F30A07DD868EC5992C84] - 02/01/2014 - 17:25:45 ---A- - C:\Windows\Prefetch\DBRUPDATE.EXE-471B1761.pf O45 - LFCP:[MD5.E5E05F98F5B0B9B25152642C075A1D6A] - 02/01/2014 - 18:14:52 ---A- - C:\Windows\Prefetch\SYSTEMPROPERTIESADVANCED.EXE-A4DBF9CF.pf O45 - LFCP:[MD5.8E44EB7077B6788B6A24C1CC74F7B004] - 02/01/2014 - 18:15:08 ---A- - C:\Windows\Prefetch\SYSTEMPROPERTIESREMOTE.EXE-E142FD85.pf O45 - LFCP:[MD5.968A832E09AE71EB6595393953D86CD8] - 02/01/2014 - 18:24:08 ---A- - C:\Windows\Prefetch\OPENWITH.EXE-E8CAB075.pf O45 - LFCP:[MD5.CDE3E1A483E97F69336951983766383E] - 02/01/2014 - 18:30:31 ---A- - C:\Windows\Prefetch\ISOVIEWER8.EXE-FC598BE5.pf O45 - LFCP:[MD5.965CB9AD61ABE182B4C0D45AF1EF1B37] - 02/01/2014 - 18:30:54 ---A- - C:\Windows\Prefetch\CLUPDATER.EXE-DD92BB66.pf O45 - LFCP:[MD5.8509A41CB1FDCB4FF728BD7A88A2FA20] - 02/01/2014 - 18:30:59 ---A- - C:\Windows\Prefetch\POWER2GO8.EXE-63A6A685.pf O45 - LFCP:[MD5.C63FAAA89CBF7D39516229E4B8173D9E] - 02/01/2014 - 18:43:19 ---A- - C:\Windows\Prefetch\RECOVERYDRIVE.EXE-E1793B9C.pf O45 - LFCP:[MD5.A64A820CC89617C6D9DC24998D713446] - 02/01/2014 - 21:37:03 ---A- - C:\Windows\Prefetch\WWAHOST.EXE-EFBDB32C.pf O45 - LFCP:[MD5.9CE2221467C88C66835B86F3ABBAFA84] - 03/01/2014 - 12:20:27 ---A- - C:\Windows\Prefetch\FLASHPLAYERAPP.EXE-BD0FC307.pf O45 - LFCP:[MD5.14E75C4E48836DC13FE9F98C168EBFE3] - 03/01/2014 - 12:20:59 ---A- - C:\Windows\Prefetch\MMC.EXE-6B787CD6.pf O45 - LFCP:[MD5.8B8067A41A9F4A61BF2C3C1BFA0DAAE2] - 03/01/2014 - 12:21:15 ---A- - C:\Windows\Prefetch\PERFMON.EXE-AAC092A2.pf O45 - LFCP:[MD5.49BDF868A8688BC8DED33A5C3A82FDAD] - 03/01/2014 - 12:23:03 ---A- - C:\Windows\Prefetch\MSCONFIG.EXE-C6893BAD.pf O45 - LFCP:[MD5.6029198FFC9191DD82C77180809CF865] - 03/01/2014 - 12:24:17 ---A- - C:\Windows\Prefetch\ODBCAD32.EXE-CF968019.pf O45 - LFCP:[MD5.C801DB3AC678AE39538FC9F6FC0926C6] - 03/01/2014 - 12:24:58 ---A- - C:\Windows\Prefetch\MSINFO32.EXE-214043C4.pf O45 - LFCP:[MD5.659B40D61BA8940113BC9F86F89395E3] - 03/01/2014 - 14:46:13 ---A- - C:\Windows\Prefetch\WWAHOST.EXE-97518BC8.pf O45 - LFCP:[MD5.CE4DF8807951E94A7C61B00396A8D3DC] - 03/01/2014 - 15:40:07 ---A- - C:\Windows\Prefetch\ZHPDIAG2.TMP-A8370368.pf O45 - LFCP:[MD5.A1F6795B65EFFA02657B864336BCEE72] - 03/01/2014 - 18:46:25 ---A- - C:\Windows\Prefetch\NOTEPAD.EXE-DD7726D2.pf O45 - LFCP:[MD5.F98EBEEDC5E57FE4ACBFAD1A3AD54160] - 03/01/2014 - 20:41:47 ---A- - C:\Windows\Prefetch\WWAHOST.EXE-6325996A.pf O45 - LFCP:[MD5.F5D6B9EC940F406F1652EAB6D2A8A403] - 03/01/2014 - 21:15:18 ---A- - C:\Windows\Prefetch\DELLSYSTEMDETECT.EXE-3A81514C.pf O45 - LFCP:[MD5.CB0B94297581830C43CE7D057F9B163E] - 04/01/2014 - 00:08:39 ---A- - C:\Windows\Prefetch\AMAZONFORWINDOWSWEBVIEW.EXE-5BFC6920.pf O45 - LFCP:[MD5.04D3DEA797CBE01AFDA3B2708EC31F82] - 04/01/2014 - 14:34:15 ---A- - C:\Windows\Prefetch\PHOTOSAPP.EXE-522B4C9D.pf O45 - LFCP:[MD5.5CC54FA32307DBD976523347389FB974] - 04/01/2014 - 20:45:07 ---A- - C:\Windows\Prefetch\WLXPHOTOGALLERY.EXE-883C96AE.pf O45 - LFCP:[MD5.6A2FAD4429B5157A737D1BDC55E861DF] - 05/01/2014 - 04:04:42 ---A- - C:\Windows\Prefetch\SNDVOL.EXE-0C79BE25.pf O45 - LFCP:[MD5.DA3185C2E6A16BE4D4198193A5CEDD1C] - 05/01/2014 - 04:41:52 ---A- - C:\Windows\Prefetch\IEXPLORE.EXE-EF9686EF.pf O45 - LFCP:[MD5.EA72A4FB7CDD33B6A86BF6878DFE0D8B] - 05/01/2014 - 04:42:15 ---A- - C:\Windows\Prefetch\IEXPLORE.EXE-49C2C2BC.pf O45 - LFCP:[MD5.9570562136AC713FD59B5B7B2AA05819] - 05/01/2014 - 16:30:27 ---A- - C:\Windows\Prefetch\CALC.EXE-DBDE74BE.pf O45 - LFCP:[MD5.B44DD9539087EB5EBB07CA7466267EC8] - 05/01/2014 - 20:07:48 ---A- - C:\Windows\Prefetch\AgGlUAD_P_S-1-5-21-898469356-1706449233-3202299308-1001.db O45 - LFCP:[MD5.8399FB55337362C73D6FBD4D4FB1CEA2] - 05/01/2014 - 20:07:48 ---A- - C:\Windows\Prefetch\AgGlUAD_S-1-5-21-898469356-1706449233-3202299308-1001.db O45 - LFCP:[MD5.346E3A04B6EC21EB2443E6A81841B6F3] - 05/01/2014 - 21:22:39 ---A- - C:\Windows\Prefetch\MBAM.EXE-DB76B65E.pf O45 - LFCP:[MD5.180A437FB20094B17389738611490128] - 05/01/2014 - 22:32:22 ---A- - C:\Windows\Prefetch\NOTEPAD.EXE-6402ADC8.pf O45 - LFCP:[MD5.A73EADF62B1F08EBC76E86C307A35037] - 05/01/2014 - 22:41:01 ---A- - C:\Windows\Prefetch\WWAHOST.EXE-8B038C5A.pf O45 - LFCP:[MD5.F9730E484BD1CF7959FA11EF9073D28F] - 06/01/2014 - 00:19:09 ---A- - C:\Windows\Prefetch\PLUGIN-HANG-UI.EXE-9BEE1828.pf O45 - LFCP:[MD5.42CB14AF54617869DB8561E62C551C17] - 06/01/2014 - 21:47:46 ---A- - C:\Windows\Prefetch\PDFCREATOR.EXE-19E3F09C.pf O45 - LFCP:[MD5.CBF8B49B8BEE0D785E96C0B21193BA70] - 06/01/2014 - 21:48:19 ---A- - C:\Windows\Prefetch\ACRORD32.EXE-0D099F9D.pf O45 - LFCP:[MD5.8CB24A0AA113CA7782A0E0A78C988281] - 06/01/2014 - 22:03:16 ---A- - C:\Windows\Prefetch\ADWCLEANER(1).EXE-3EA1BCB4.pf O45 - LFCP:[MD5.7C2E1738372DB59AEAF23E364886B318] - 06/01/2014 - 22:05:15 ---A- - C:\Windows\Prefetch\CMD.EXE-8E75B5BB.pf O45 - LFCP:[MD5.EA4E63B5E20C8BE2AB3FD801BE3C9536] - 06/01/2014 - 22:05:45 ---A- - C:\Windows\Prefetch\PfSvPerfStats.bin O45 - LFCP:[MD5.9D7DF08A3B1EE580F42F324DAE2FD204] - 06/01/2014 - 22:08:14 ---A- - C:\Windows\Prefetch\AgCx_SC4.db O45 - LFCP:[MD5.3C802D3712E0C864111650B94BB395AD] - 06/01/2014 - 22:09:43 ---A- - C:\Windows\Prefetch\NOTEPAD.EXE-9FB27C0E.pf O45 - LFCP:[MD5.98641581817709EFABA0BEDBEC03C575] - 06/01/2014 - 22:27:41 ---A- - C:\Windows\Prefetch\SCHTASKS.EXE-E8DB1F93.pf O45 - LFCP:[MD5.7C05C6A86DAA84BA75DCDDB067D648FE] - 07/01/2014 - 07:16:52 ---A- - C:\Windows\Prefetch\BACKUP.EXE-7312BDA5.pf O45 - LFCP:[MD5.094D9F3747584D552E7766C6FBC2C2D1] - 07/01/2014 - 07:16:52 ---A- - C:\Windows\Prefetch\WERMGR.EXE-BE57BEDB.pf O45 - LFCP:[MD5.08340B6193CDC68BF6CF8E152427B822] - 07/01/2014 - 07:16:53 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-3470DB6B.pf O45 - LFCP:[MD5.D8D44966BF1730E4886FB996188410E8] - 07/01/2014 - 07:17:22 ---A- - C:\Windows\Prefetch\TIWORKER.EXE-1F1ACB4B.pf O45 - LFCP:[MD5.144A52CF102B11A873D6694DE11D45A6] - 07/01/2014 - 07:17:22 ---A- - C:\Windows\Prefetch\TRUSTEDINSTALLER.EXE-E9C29A2C.pf O45 - LFCP:[MD5.B9B4B8FAD51300508C5083C500D757F3] - 07/01/2014 - 07:18:27 ---A- - C:\Windows\Prefetch\AM_DELTA_PATCH_1.165.1236.0.E-1CB4D967.pf O45 - LFCP:[MD5.6A06F6F99D26A83C8E273099D623061B] - 07/01/2014 - 07:18:27 ---A- - C:\Windows\Prefetch\MPSIGSTUB.EXE-3DA7FE0D.pf O45 - LFCP:[MD5.830388567E731BC2A1E24D59DDAD4E26] - 07/01/2014 - 07:18:27 ---A- - C:\Windows\Prefetch\WUAUCLT.EXE-37A2B208.pf O45 - LFCP:[MD5.A78051B6A4578E685F0499D798A004AA] - 07/01/2014 - 08:26:20 ---A- - C:\Windows\Prefetch\RUNONCE.EXE-D59A6A4D.pf O45 - LFCP:[MD5.2AD864B0E3D712C78AEB7C0B54A772AA] - 07/01/2014 - 08:26:25 ---A- - C:\Windows\Prefetch\IASTORICONLAUNCH.EXE-EF0849CE.pf O45 - LFCP:[MD5.0E5F5D61CEAD4D0492492EC953570074] - 07/01/2014 - 08:26:25 ---A- - C:\Windows\Prefetch\PDVD10SERV.EXE-62E5351A.pf O45 - LFCP:[MD5.C3097E8EE65E60F9B9AA943B0E98B5C2] - 07/01/2014 - 08:26:32 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-868353C9.pf O45 - LFCP:[MD5.6B30280DC12C25FF55E0FE215125B298] - 07/01/2014 - 08:26:34 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-D2AB110B.pf O45 - LFCP:[MD5.3956A22F06CEEF36AD83AB1D0F02259B] - 07/01/2014 - 08:28:43 ---A- - C:\Windows\Prefetch\WWAHOST.EXE-78788319.pf O45 - LFCP:[MD5.D312F5AC30B67BB671EBAF657524CDDE] - 07/01/2014 - 08:29:51 ---A- - C:\Windows\Prefetch\SKYDRIVE.EXE-3C7833DC.pf O45 - LFCP:[MD5.06D2E024834C28D2970124B84CE7E15A] - 07/01/2014 - 08:29:56 ---A- - C:\Windows\Prefetch\IGFXTRAY.EXE-507AEBDD.pf O45 - LFCP:[MD5.EFF2628EA5FE91330BCAD9778A175CED] - 07/01/2014 - 08:30:05 ---A- - C:\Windows\Prefetch\SFR CLOUD.EXE-6908578D.pf O45 - LFCP:[MD5.38EF61F2F8AEFD47269CA23335176975] - 07/01/2014 - 08:30:06 ---A- - C:\Windows\Prefetch\CHANGEFILTERMERIT.EXE-04971131.pf O45 - LFCP:[MD5.AA757BA08C3B77C7133DD52AA9A8F8F5] - 07/01/2014 - 08:30:06 ---A- - C:\Windows\Prefetch\IGFXPERS.EXE-B1848267.pf O45 - LFCP:[MD5.8FE36622A34090E89701135B12DB71BB] - 07/01/2014 - 08:30:06 ---A- - C:\Windows\Prefetch\IGFXSRVC.EXE-22DB5C03.pf O45 - LFCP:[MD5.1CDE54DB2BC1C51785D3583A0805AD63] - 07/01/2014 - 08:30:07 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-F8252068.pf O45 - LFCP:[MD5.E1676854E0923DC0848D699CFA58C375] - 07/01/2014 - 08:30:16 ---A- - C:\Windows\Prefetch\JUSCHED.EXE-C04F5CE5.pf O45 - LFCP:[MD5.964D3D1352E23B02148B7CE9CB536C60] - 07/01/2014 - 08:30:18 ---A- - C:\Windows\Prefetch\HPQGPC01.EXE-3DDF33CB.pf O45 - LFCP:[MD5.7755362C65B52B9DBA61B2DC00C30AE8] - 07/01/2014 - 08:31:19 ---A- - C:\Windows\Prefetch\JAVA.EXE-F26CFF01.pf O45 - LFCP:[MD5.0AD77D3867C9AACC5CFFD7F10B7D82AD] - 07/01/2014 - 08:32:51 ---A- - C:\Windows\Prefetch\SETHC.EXE-85CBA03A.pf O45 - LFCP:[MD5.6D1D53B39C0302B48408283752EB912B] - 07/01/2014 - 08:32:53 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-CE558BF9.pf O45 - LFCP:[MD5.7CA9797550F406C3D056E37E127940C3] - 07/01/2014 - 08:34:49 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-8BB7A98B.pf O45 - LFCP:[MD5.30BDE5C1B614367A507D61D4EB13F0ED] - 07/01/2014 - 08:44:54 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-E0D8D67B.pf O45 - LFCP:[MD5.C73279E6F64D5D07E2A5322117FC5408] - 07/01/2014 - 09:01:45 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-0544ABC9.pf O45 - LFCP:[MD5.6B43AC8B8F5A8E1B7BE651E02824931F] - 07/01/2014 - 09:02:03 ---A- - C:\Windows\Prefetch\NGENTASK.EXE-16D5183F.pf O45 - LFCP:[MD5.703DC799F76F8456DF8F8A401B12B5E9] - 07/01/2014 - 09:02:05 ---A- - C:\Windows\Prefetch\NGENTASK.EXE-8C2F1441.pf O45 - LFCP:[MD5.F332C9DC37056021CCB74E6E034F414E] - 07/01/2014 - 09:02:57 ---A- - C:\Windows\Prefetch\AUDIODG.EXE-856E5CA0.pf O45 - LFCP:[MD5.7612AA1151B534D41F8F160E3705163B] - 07/01/2014 - 09:12:58 ---A- - C:\Windows\Prefetch\NGEN.EXE-0729BF48.pf O45 - LFCP:[MD5.2CEC3C8EBCC743D2C2013F9152BC5FB2] - 07/01/2014 - 09:27:57 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-3E4D497D.pf O45 - LFCP:[MD5.264DA06A607511A48341FDF6A5146E88] - 07/01/2014 - 09:27:58 ---A- - C:\Windows\Prefetch\MSCORSVW.EXE-1F1ABDEC.pf O45 - LFCP:[MD5.161A84EB2CC4AD6CF486A1ACE8FC67D9] - 07/01/2014 - 09:27:58 ---A- - C:\Windows\Prefetch\NGEN.EXE-FD329D8A.pf O45 - LFCP:[MD5.FEA3F11385DEAE9B98111C45A21F778C] - 07/01/2014 - 09:27:59 ---A- - C:\Windows\Prefetch\MSCORSVW.EXE-9474B9EE.pf O45 - LFCP:[MD5.C1FD34A49F71378879B061635B32234E] - 07/01/2014 - 09:28:06 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-6B19F16C.pf O45 - LFCP:[MD5.B78D08F168BD48D9CC49594B8835AEF8] - 07/01/2014 - 09:28:07 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-809F464F.pf O45 - LFCP:[MD5.20F472F75638AA7A630FE4C10B2D560A] - 07/01/2014 - 10:13:25 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-E6983F98.pf O45 - LFCP:[MD5.D4BF126690137202838C152CC230CD8A] - 07/01/2014 - 10:27:38 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-8B25982C.pf O45 - LFCP:[MD5.6B06D751580C53EA7E04F4021ACBD0EC] - 07/01/2014 - 10:45:19 ---A- - C:\Windows\Prefetch\dynreservedpri.db O45 - LFCP:[MD5.881D0F7C66C7CB728314C4B7B51B39CB] - 07/01/2014 - 11:28:49 ---A- - C:\Windows\Prefetch\Layout.ini O45 - LFCP:[MD5.C6A49181A12D16C5F500FA9272B12A9C] - 07/01/2014 - 12:20:05 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-02803CC0.pf O45 - LFCP:[MD5.2E861A036B6786C5AE66DD46C1CAFEF9] - 07/01/2014 - 12:44:30 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-3D450A47.pf O45 - LFCP:[MD5.195A795777091C955DA54950CFB2FB5C] - 07/01/2014 - 12:58:04 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-9486B2E5.pf O45 - LFCP:[MD5.0D0FC8F69B83799B638BEE3AC4EAADBC] - 07/01/2014 - 13:00:00 ---A- - C:\Windows\Prefetch\UACLAUNCHER.EXE-79D91BFF.pf O45 - LFCP:[MD5.44F16B6E6327C55D88EE51C0AD1836C7] - 07/01/2014 - 13:05:42 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-1DA6794F.pf O45 - LFCP:[MD5.1914B7FD18680681994C3948E2A271A5] - 07/01/2014 - 13:11:04 ---A- - C:\Windows\Prefetch\AgCx_SC1.db.trx O45 - LFCP:[MD5.9E0B7D835684EFCEC53B27E6486202C3] - 07/01/2014 - 13:11:04 ---A- - C:\Windows\Prefetch\SYSTPLSERVICE.EXE-90144BEB.pf O45 - LFCP:[MD5.B1AA968179A8BECA2F9E6C6BA1ACE644] - 07/01/2014 - 13:11:05 ---A- - C:\Windows\Prefetch\VERIFY.EXE-7C156E23.pf O45 - LFCP:[MD5.71C180AB9EAF27EB504DC3200FA51FE1] - 07/01/2014 - 13:11:14 ---A- - C:\Windows\Prefetch\SFR CLOUD.EXE-B342D81D.pf O45 - LFCP:[MD5.22A57223D87E3310DA170777E48B509C] - 07/01/2014 - 13:11:41 ---A- - C:\Windows\Prefetch\AgCx_S3_S-1-5-21-898469356-1706449233-3202299308-1001.snp.db O45 - LFCP:[MD5.067D7CA4EFA667C7627FFCC9CD4FFB1E] - 07/01/2014 - 13:12:04 ---A- - C:\Windows\Prefetch\AgCx_SC1.db O45 - LFCP:[MD5.B90045CF733DACD8250447CED8BECCAD] - 07/01/2014 - 13:12:07 ---A- - C:\Windows\Prefetch\DELLUPTRAY.EXE-1887E72A.pf O45 - LFCP:[MD5.6C1163A8BE08C6E1ECF422E3531A40CC] - 07/01/2014 - 13:12:10 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-A23FC712.pf O45 - LFCP:[MD5.C56E379A919F0491A75EDF98797672C2] - 07/01/2014 - 13:13:15 ---A- - C:\Windows\Prefetch\WWAHOST.EXE-43319550.pf O45 - LFCP:[MD5.C93B062830B8A1B6258848E2A58C3FE8] - 07/01/2014 - 13:16:02 ---A- - C:\Windows\Prefetch\WWAHOST.EXE-66D0408D.pf O45 - LFCP:[MD5.7F01E6B3763A6F5B5B2BCC73F0C3A5BA] - 07/01/2014 - 13:16:59 ---A- - C:\Windows\Prefetch\AgCx_S2_S-1-5-21-898469356-1706449233-3202299308-1007.snp.db O45 - LFCP:[MD5.C109FC3447E69F78D01D26F357B3AC0A] - 07/01/2014 - 13:30:51 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-C719225B.pf O45 - LFCP:[MD5.D8908811B39E4A36EFC50776DF6DFE5F] - 07/01/2014 - 13:49:00 ---A- - C:\Windows\Prefetch\CSC.EXE-A20F0A04.pf O45 - LFCP:[MD5.CBA2F6BE6AF6EA965761BC49CC293F46] - 07/01/2014 - 13:49:00 ---A- - C:\Windows\Prefetch\CVTRES.EXE-556ABD1A.pf O45 - LFCP:[MD5.7DB22463EF491F402EA6776292DFADBF] - 07/01/2014 - 13:50:23 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-94BA8B53.pf O45 - LFCP:[MD5.9E69B8CBBBC9947DCFB0212D0335AB16] - 07/01/2014 - 13:52:00 ---A- - C:\Windows\Prefetch\GOOGLEUPDATE.EXE-B7AD469C.pf O45 - LFCP:[MD5.A52E4CCF4DEE462B5FE215CA7A7C79C7] - 07/01/2014 - 13:52:10 ---A- - C:\Windows\Prefetch\MSIEXEC.EXE-6A46892D.pf O45 - LFCP:[MD5.8D188A305180CCF956982EE8C9BF6161] - 07/01/2014 - 13:53:10 ---A- - C:\Windows\Prefetch\TASKENG.EXE-10460F00.pf O45 - LFCP:[MD5.D1E6D822AF09A247D554D37F89E6A967] - 07/01/2014 - 13:54:58 ---A- - C:\Windows\Prefetch\AgGlGlobalHistory.db O45 - LFCP:[MD5.5B130477BB750ABFD29BB1A94BE1EECE] - 07/01/2014 - 13:54:58 ---A- - C:\Windows\Prefetch\AgRobust.db O45 - LFCP:[MD5.C56CCF11D4F7E7CA2B26649947D44A88] - 07/01/2014 - 13:54:59 ---A- - C:\Windows\Prefetch\AgGlFaultHistory.db O45 - LFCP:[MD5.0B9A318D4DA120D0BC425E88E3EAECEB] - 07/01/2014 - 13:54:59 ---A- - C:\Windows\Prefetch\AgGlFgAppHistory.db O45 - LFCP:[MD5.E539D063190438E3EA80BD172D94E6C7] - 07/01/2014 - 13:56:20 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-21A95890.pf O45 - LFCP:[MD5.0098F0A177466F443769BA98BF6BA8F0] - 07/01/2014 - 13:56:29 ---A- - C:\Windows\Prefetch\WLXPGSS.SCR-9389D80F.pf O45 - LFCP:[MD5.480251B4D597FBC395BE1EB252E99F73] - 07/01/2014 - 14:00:29 ---A- - C:\Windows\Prefetch\WERFAULT.EXE-72D631B9.pf O45 - LFCP:[MD5.FF333DD133BAE175E0464F07B67181DD] - 07/01/2014 - 14:05:22 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-F3296876.pf O45 - LFCP:[MD5.BFFE3C1CD3EF9EA8915FB77ACFCEBE5C] - 07/01/2014 - 14:05:46 ---A- - C:\Windows\Prefetch\LOGONUI.EXE-D0853078.pf O45 - LFCP:[MD5.8357BF714CD9D0D4F390E75172F07B6E] - 07/01/2014 - 14:05:46 ---A- - C:\Windows\Prefetch\PfPre_1caf2339.db O45 - LFCP:[MD5.0291803ACCE194F86A80BC5D1C3B475E] - 07/01/2014 - 14:05:47 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-C187F7EE.pf O45 - LFCP:[MD5.6514D05E41E69A0E7A8C4AAF20634B94] - 07/01/2014 - 14:05:47 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-DEEDC8DB.pf O45 - LFCP:[MD5.1B81D41472A6035691ECD32B30330C08] - 07/01/2014 - 14:05:47 ---A- - C:\Windows\Prefetch\TASKHOSTEX.EXE-98FBADE5.pf O45 - LFCP:[MD5.21071C3BFE36B8BB149EF788E588413C] - 07/01/2014 - 14:05:50 ---A- - C:\Windows\Prefetch\SEARCHFILTERHOST.EXE-DDB228B1.pf O45 - LFCP:[MD5.B45D4A52740D5E0AC15A8727BBE083DB] - 07/01/2014 - 14:05:50 ---A- - C:\Windows\Prefetch\SEARCHPROTOCOLHOST.EXE-23DB6E8D.pf O45 - LFCP:[MD5.B59ECB63D818EA1EFED8EE6FA70A705D] - 07/01/2014 - 14:06:11 ---A- - C:\Windows\Prefetch\MBAMGUI.EXE-61969F2F.pf O45 - LFCP:[MD5.DDC2F5D3DB016CE61A1CB0F6A2856129] - 07/01/2014 - 14:06:12 ---A- - C:\Windows\Prefetch\MPCMDRUN.EXE-9DAF2683.pf O45 - LFCP:[MD5.794CFBFCD0E5FD01EB8FCEC44D276435] - 07/01/2014 - 14:06:13 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-F02989C3.pf O45 - LFCP:[MD5.1847E26786BE345A076C93C900EB7231] - 07/01/2014 - 14:06:16 ---A- - C:\Windows\Prefetch\WINSAT.EXE-8D63C195.pf O45 - LFCP:[MD5.B7A01B4C7D80D4D1B94BAC620C002722] - 07/01/2014 - 14:06:21 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-D247D88D.pf O45 - LFCP:[MD5.99B650F8F81EF378C9B9AF8FE72506AD] - 07/01/2014 - 14:06:21 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-58930B20.pf O45 - LFCP:[MD5.ED00F083FD9676837F6C688C1BF9FD3C] - 07/01/2014 - 14:06:22 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-255675EF.pf O45 - LFCP:[MD5.300314D7A50CE6873E0E76D60297274D] - 07/01/2014 - 14:06:30 ---A- - C:\Windows\Prefetch\WWAHOST.EXE-6407EB31.pf O45 - LFCP:[MD5.86B71FCD3CB11ED8EE8E952A4BE9BABE] - 07/01/2014 - 14:06:40 ---A- - C:\Windows\Prefetch\MAP.EXE-BC887D23.pf O45 - LFCP:[MD5.2D05E3A6F0757F19F8388EE0BE51B92D] - 07/01/2014 - 14:06:43 ---A- - C:\Windows\Prefetch\PfPre_1cb3c667.db O45 - LFCP:[MD5.F2A5F9B07C42751C596A3E048FA7A2F5] - 07/01/2014 - 14:06:43 ---A- - C:\Windows\Prefetch\SMSS.EXE-4DA31305.pf O45 - LFCP:[MD5.7BF3389D1B52B7A1EB36120648975A41] - 07/01/2014 - 14:06:53 ---A- - C:\Windows\Prefetch\CSRSS.EXE-5B81FB65.pf O45 - LFCP:[MD5.5CD5B252C88B5FA4202D337FC18F903A] - 07/01/2014 - 14:06:53 ---A- - C:\Windows\Prefetch\WINLOGON.EXE-3C57A4A0.pf O45 - LFCP:[MD5.F75DD23C3EFF0BBF0F447156D1683420] - 07/01/2014 - 14:06:54 ---A- - C:\Windows\Prefetch\DWM.EXE-B3F13FFF.pf O45 - LFCP:[MD5.23BC8D5D366FE2C9C07E50365005D2C8] - 07/01/2014 - 14:06:58 ---A- - C:\Windows\Prefetch\ATBROKER.EXE-BA4C6CF1.pf O45 - LFCP:[MD5.EC9603FE2AA86993A9CB57D3638FD472] - 07/01/2014 - 14:07:09 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-5B56DEB8.pf O45 - LFCP:[MD5.6247CCEC650A3EB670F940A9706C9A28] - 07/01/2014 - 14:07:09 ---A- - C:\Windows\Prefetch\EXPLORER.EXE-319FC3CE.pf O45 - LFCP:[MD5.5E726C1E47E2F69C7023E4B711B11E12] - 07/01/2014 - 14:07:09 ---A- - C:\Windows\Prefetch\RUNTIMEBROKER.EXE-EA73507C.pf O45 - LFCP:[MD5.B21110872D9747F14F4BDC6DC507C2FC] - 07/01/2014 - 14:07:09 ---A- - C:\Windows\Prefetch\USERINIT.EXE-AE8E6C46.pf O45 - LFCP:[MD5.3E0A9293688B25F40D66123651B43B0D] - 07/01/2014 - 14:07:13 ---A- - C:\Windows\Prefetch\SYNTPENH.EXE-D14AB7BA.pf O45 - LFCP:[MD5.33A32EC77F9AF575AAABA1E18C242E71] - 07/01/2014 - 14:07:15 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-BC25F26B.pf O45 - LFCP:[MD5.9D5154204EA6EE1F290FB94625BE35DF] - 07/01/2014 - 14:07:16 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-D3980B35.pf O45 - LFCP:[MD5.2FDF1B87E0F3FA50FC4CB9DE4CE5FA0B] - 07/01/2014 - 14:07:16 ---A- - C:\Windows\Prefetch\TABTIP32.EXE-CA57130C.pf O45 - LFCP:[MD5.523E0182937412ADBF409F0E4B414D8F] - 07/01/2014 - 14:07:17 ---A- - C:\Windows\Prefetch\FSQUIRT.EXE-834A90E5.pf O45 - LFCP:[MD5.D8F5D4758F5BD5CCC8ED491BBBAFD7E7] - 07/01/2014 - 14:07:19 ---A- - C:\Windows\Prefetch\SYSTEMSETTINGS.EXE-94FD71BB.pf O45 - LFCP:[MD5.818A8E77A99627D4F0B67D3943CA226A] - 07/01/2014 - 14:07:21 ---A- - C:\Windows\Prefetch\QUICKSET.EXE-3E575400.pf O45 - LFCP:[MD5.FC1A6673C69A1201169457E4F89CCDEC] - 07/01/2014 - 14:07:22 ---A- - C:\Windows\Prefetch\CCDASHSERVER.EXE-EA8EDB95.pf O45 - LFCP:[MD5.03C57A71CE8ECEA983E7574738E96B62] - 07/01/2014 - 14:07:22 ---A- - C:\Windows\Prefetch\QTTASK.EXE-8A497414.pf O45 - LFCP:[MD5.2A768FCB8D46538833C1D23C4773E4A4] - 07/01/2014 - 14:07:23 ---A- - C:\Windows\Prefetch\HKCMD.EXE-C9BBDB22.pf O45 - LFCP:[MD5.2C98A77087929C947DA2102E4B15A280] - 07/01/2014 - 14:07:23 ---A- - C:\Windows\Prefetch\STTRAY64.EXE-AADE2453.pf O45 - LFCP:[MD5.1B6DBCEDD74A36A04C991E6A982CA55C] - 07/01/2014 - 14:07:25 ---A- - C:\Windows\Prefetch\UTORRENT.EXE-998ACA73.pf =>P2P.µTorrent O45 - LFCP:[MD5.FAA213853CBF9D15B503E538786076EF] - 07/01/2014 - 14:07:27 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-405B7FBA.pf O45 - LFCP:[MD5.23354797BB7139CAB732D43D9C3B4E4F] - 07/01/2014 - 14:07:27 ---A- - C:\Windows\Prefetch\PCCOMPANION.EXE-5F24FAC4.pf O45 - LFCP:[MD5.D7D1936AB5832A042598C51298B35557] - 07/01/2014 - 14:07:27 ---A- - C:\Windows\Prefetch\PCCOMPANIONINFO.EXE-A7637D38.pf O45 - LFCP:[MD5.E094660C56B56A42A4B4EDC6408B1D86] - 07/01/2014 - 14:07:30 ---A- - C:\Windows\Prefetch\SYSTPL.EXE-AB783D76.pf O45 - LFCP:[MD5.61CFE95AA4A1C138D410FA9F5054C230] - 07/01/2014 - 14:07:32 ---A- - C:\Windows\Prefetch\CONSENT.EXE-1A8D0661.pf O45 - LFCP:[MD5.8D7A79A35A487FEFC8CDCAB835A938D4] - 07/01/2014 - 14:07:32 ---A- - C:\Windows\Prefetch\ITUNESHELPER.EXE-AAB96320.pf O45 - LFCP:[MD5.DAAB813E03D772D17289D31719634CE4] - 07/01/2014 - 14:07:33 ---A- - C:\Windows\Prefetch\MONITOR.EXE-22D4AEC0.pf O45 - LFCP:[MD5.9DEE4C314923C9DB4FA6882281D1384C] - 07/01/2014 - 14:07:36 ---A- - C:\Windows\Prefetch\HPQBAM08.EXE-067C24A4.pf O45 - LFCP:[MD5.C1A6B991A297CA4E59185E9A5FAB14F6] - 07/01/2014 - 14:07:36 ---A- - C:\Windows\Prefetch\HPQSTE08.EXE-3AB92048.pf O45 - LFCP:[MD5.B89D7BEAC5D8B3AB36E782BDB976DFDB] - 07/01/2014 - 14:07:37 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-6FC4F289.pf O45 - LFCP:[MD5.121A49160497CBEAD88DB314C79F95E9] - 07/01/2014 - 14:07:39 ---A- - C:\Windows\Prefetch\SYSTEMSETTINGSADMINFLOWS.EXE-74A466D1.pf O45 - LFCP:[MD5.6E8A1A515C784DAEA1BD3BF0122201D2] - 07/01/2014 - 14:07:49 ---A- - C:\Windows\Prefetch\WSHOST.EXE-EAFFA074.pf O45 - LFCP:[MD5.DAC2074B57908BA75DC41FFFC3B1CD99] - 07/01/2014 - 14:07:56 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-57A853C4.pf O45 - LFCP:[MD5.96F2DAEEC977584C1945635D0678B7B4] - 07/01/2014 - 14:07:59 ---A- - C:\Windows\Prefetch\FIREFOX.EXE-6F7B2AEE.pf O45 - LFCP:[MD5.03338E46DA1DFF3706A2155CC3DD04A9] - 07/01/2014 - 14:08:00 ---A- - C:\Windows\Prefetch\FLASHPLAYERUPDATESERVICE.EXE-C0A209AC.pf O45 - LFCP:[MD5.6CFA4B5B9B1E181AA13265898282F03B] - 07/01/2014 - 14:08:05 ---A- - C:\Windows\Prefetch\THUMBNAILEXTRACTIONHOST.EXE-38FED75E.pf O45 - LFCP:[MD5.A85BBDB1340FE530E11BCF852A1A1F3C] - 07/01/2014 - 14:08:15 ---A- - C:\Windows\Prefetch\Op-EXPLORER.EXE-319FC3CE-000000F5.pf O45 - LFCP:[MD5.6ADDC650D20BEA4D062845A8654F573A] - 07/01/2014 - 14:08:20 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-E618712D.pf O45 - LFCP:[MD5.DDE041141421DCD143988B8BF332C379] - 07/01/2014 - 14:08:29 ---A- - C:\Windows\Prefetch\IASTORICON.EXE-526B9CA7.pf O45 - LFCP:[MD5.721784C3CB688F43FBF13DE3156B9132] - 07/01/2014 - 14:08:36 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-652CF961.pf O45 - LFCP:[MD5.3784F70B4618E7C547D2E812088BAC20] - 07/01/2014 - 14:08:57 ---A- - C:\Windows\Prefetch\FLASHPLAYERPLUGIN_11_9_900_17-4B990BDB.pf O45 - LFCP:[MD5.E6B465DF44E5D457EDA306273AF92431] - 07/01/2014 - 14:08:57 ---A- - C:\Windows\Prefetch\PLUGIN-CONTAINER.EXE-5EC0925A.pf O45 - LFCP:[MD5.A3D57283CD3F6CBC95DAC4CF2F12188E] - 07/01/2014 - 14:09:55 ---A- - C:\Windows\Prefetch\TABTIP.EXE-1A8992A0.pf O45 - LFCP:[MD5.A3EEB6A3E6FEE6AD8E3052A5DD9920AF] - 07/01/2014 - 14:09:55 ---A- - C:\Windows\Prefetch\ZHPHEP.EXE-98D1211E.pf O45 - LFCP:[MD5.EF4600A575C25102C796FD3C975C4BF3] - 07/01/2014 - 14:10:05 ---A- - C:\Windows\Prefetch\ZHPDIAG.EXE-2434205E.pf O45 - LFCP:[MD5.EE0B9A6553494DE4D82C2C41EDCC7070] - 07/01/2014 - 14:10:08 ---A- - C:\Windows\Prefetch\SETTINGSYNCHOST.EXE-B94F1CA4.pf O45 - LFCP:[MD5.C5AEE93B6F1F22E523E3A96FF8BAD516] - 07/01/2014 - 14:10:38 ---A- - C:\Windows\Prefetch\CMD.EXE-F0053CFF.pf O45 - LFCP:[MD5.DA4CF12309E8B6CA7D759C666CAB6CD9] - 07/01/2014 - 14:10:38 ---A- - C:\Windows\Prefetch\CONHOST.EXE-E6AFC9F5.pf O45 - LFCP:[MD5.79BA11BD0B349D0F692BACF0177122CF] - 07/01/2014 - 14:10:38 ---A- - C:\Windows\Prefetch\CSCRIPT.EXE-D7251EA3.pf O45 - LFCP:[MD5.08B6B23E727A2DEC23CC07AEBCF615A6] - 07/01/2014 - 14:10:45 ---A- - C:\Windows\Prefetch\PV.EXE-AC69E3A9.pf O45 - LFCP:[MD5.1673567D6C3D6DA23A77B3D193FF1173] - 07/01/2014 - 14:10:46 ---A- - C:\Windows\Prefetch\SPPSVC.EXE-6025096A.pf O45 - LFCP:[MD5.9746DDACA52D6E1E6CF1EC8341D4B7E2] - 07/01/2014 - 14:10:46 ---A- - C:\Windows\Prefetch\WMIPRVSE.EXE-DF1B2B47.pf O45 - LFCP:[MD5.A38C41328F1EAB3A336696337103B262] - 07/01/2014 - 14:10:48 ---A- - C:\Windows\Prefetch\SUBINACL.EXE-634A3CB0.pf O45 - LFCP:[MD5.6849F87FFEDED468E321D5EB71C76625] - 07/01/2014 - 14:10:53 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-EBC7B73B.pf O45 - LFCP:[MD5.DFBFD07BD75AE2A6B03F6862A5702A1D] - 07/01/2014 - 14:10:56 ---A- - C:\Windows\Prefetch\SCHTASKS.EXE-399051B7.pf O45 - LFCP:[MD5.4B9EC881BFB744C3D19A6D639FF917AE] - 08/12/2013 - 20:35:32 ---A- - C:\Windows\Prefetch\HPVR.EXE-85183920.pf O45 - LFCP:[MD5.63144A2A5C296AA28860C2E6B44B08EF] - 09/12/2013 - 08:45:20 ---A- - C:\Windows\Prefetch\AgCx_SC5.db O45 - LFCP:[MD5.A683B94AEDF011E26520AADE70D775AB] - 09/12/2013 - 13:40:06 ---A- - C:\Windows\Prefetch\BUBBLES.SCR-42D161B0.pf O45 - LFCP:[MD5.16B8AC8F85A2F9DC0BBA7DFF8CFFF654] - 10/12/2013 - 15:20:49 ---A- - C:\Windows\Prefetch\FLASHPLAYERPLUGIN_11_9_900_15-A75F9E6B.pf O45 - LFCP:[MD5.CEB2AF5427FE3C76FBC8FED8D0A1D7F1] - 12/12/2013 - 10:17:07 ---A- - C:\Windows\Prefetch\SEARCH_PROTECT.EXE-BBD62A51.pf O45 - LFCP:[MD5.28E8B553013D65D2231FD2EAA638FBE3] - 12/12/2013 - 10:55:51 ---A- - C:\Windows\Prefetch\PHOTOSCREENSAVER.SCR-24BF5714.pf O45 - LFCP:[MD5.B98C537B094643A75F75FAC579841AB3] - 12/12/2013 - 13:17:13 ---A- - C:\Windows\Prefetch\LUMINETMONITOR.EXE-A44B0142.pf O45 - LFCP:[MD5.4CBEFC65D071FDB43BF0043D3B10A8A7] - 12/12/2013 - 13:40:31 ---A- - C:\Windows\Prefetch\MSDT.EXE-25EEF24B.pf O45 - LFCP:[MD5.319D86F5B35AB7481B988E4ACB1AA0F6] - 12/12/2013 - 15:37:00 ---A- - C:\Windows\Prefetch\MSDT.EXE-6D6497A7.pf O45 - LFCP:[MD5.964AC977BBC37E37A343687ABA460DA9] - 15/12/2013 - 10:25:47 ---A- - C:\Windows\Prefetch\IDTNGUI.EXE-1DA7663A.pf O45 - LFCP:[MD5.3C9549A36BD859464E3917C970729FAB] - 15/12/2013 - 23:53:21 ---A- - C:\Windows\Prefetch\DEKLA.EXE-76CE7612.pf O45 - LFCP:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 18/10/2150 - 16:08:27 ----D - C:\Windows\Prefetch\ReadyBoot O45 - LFCP:[MD5.FD81C656BBA786ED73697E0423907D69] - 20/12/2013 - 11:50:56 ---A- - C:\Windows\Prefetch\DROPBOX 2.4.10.EXE-67DD4F29.pf O45 - LFCP:[MD5.E04D94BACC135CC452AC688C0361DBF8] - 21/12/2013 - 00:30:11 ---A- - C:\Windows\Prefetch\AU_.EXE-2253A495.pf O45 - LFCP:[MD5.FF385A154BE57FFF0991D038D61781A4] - 21/12/2013 - 00:40:15 ---A- - C:\Windows\Prefetch\ITUNES.EXE-D47A18C8.pf O45 - LFCP:[MD5.C4026F246EDC7E204D3C9062CD7699E0] - 21/12/2013 - 00:46:48 ---A- - C:\Windows\Prefetch\OPENWITH.EXE-397FE299.pf O45 - LFCP:[MD5.7426F37C0172FF0955B4AC0540E2E101] - 21/12/2013 - 01:22:53 ---A- - C:\Windows\Prefetch\_IU14D2N.TMP-D4FF0AFA.pf O45 - LFCP:[MD5.1B60CAA3BDE3BC620EDC2F69B19F011C] - 22/12/2013 - 17:50:14 ---A- - C:\Windows\Prefetch\TASKMGR.EXE-26D073B4.pf O45 - LFCP:[MD5.503A53576242F0BFC5F8EF00916FE513] - 23/12/2013 - 15:34:03 ---A- - C:\Windows\Prefetch\TCI.EXE-0EC2B9D3.pf O45 - LFCP:[MD5.E3FFC3EB48A58E115F188BFC8DB67FF6] - 26/12/2013 - 00:11:21 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-7356B03A.pf O45 - LFCP:[MD5.2821EAC2903A225AEA175EF5978707D7] - 26/12/2013 - 08:50:01 ---A- - C:\Windows\Prefetch\MBLCTR.EXE-D8CEF783.pf O45 - LFCP:[MD5.E3271CD3D7967822EC701D270BA3D23C] - 27/12/2013 - 09:55:08 ---A- - C:\Windows\Prefetch\CCLEANER64.EXE-DE05DBE1.pf =>Piriform Ltd O45 - LFCP:[MD5.F6D8C2A90DF544A1E68A1B892A5847E7] - 30/12/2013 - 00:53:22 ---A- - C:\Windows\Prefetch\SOFTONICDOWNLOADER_POUR_WAVEP-47B5EB4C.pf =>Toolbar.Conduit O45 - LFCP:[MD5.F72F28C14DE083F63EC48082ADE07D61] - 30/12/2013 - 00:57:05 ---A- - C:\Windows\Prefetch\NCHSETUP.EXE-8D6BB3F9.pf O45 - LFCP:[MD5.937114C05BC6BE4A697849BBC0C077E3] - 30/12/2013 - 01:23:51 ---A- - C:\Windows\Prefetch\MIXPAD.EXE-84D7F00E.pf O45 - LFCP:[MD5.006F4609C374D96615101FB4A7188915] - 30/12/2013 - 01:45:25 ---A- - C:\Windows\Prefetch\WAVEPAD.EXE-38DC2FB8.pf O45 - LFCP:[MD5.2941B9A41CDD1F186DD6A529ACB667F9] - 30/12/2013 - 10:12:42 ---A- - C:\Windows\Prefetch\HPQDIREC.EXE-16856397.pf O45 - LFCP:[MD5.5BDD55540D2199E006CC6F1719FB6F86] - 30/12/2013 - 10:15:10 ---A- - C:\Windows\Prefetch\HPQKYGRP.EXE-FBE29A3D.pf O45 - LFCP:[MD5.9D49C86719D6C088C59BD56C2890C3B4] - 30/12/2013 - 10:15:28 ---A- - C:\Windows\Prefetch\HPISCNAPP.EXE-0A18D84D.pf O45 - LFCP:[MD5.6027C489D9EBB3CFB756C4DDBAAD8004] - 30/12/2013 - 10:37:47 ---A- - C:\Windows\Prefetch\SOFFICE.BIN-C9137136.pf O45 - LFCP:[MD5.B76B8D36A08DB10A35BADF21CCD1A2ED] - 30/12/2013 - 16:51:00 ---A- - C:\Windows\Prefetch\MIXXX.EXE-F1CBA864.pf O45 - LFCP:[MD5.2944AC2F5F562225B31A15CCBF8D54B0] - 30/12/2013 - 16:51:05 ---A- - C:\Windows\Prefetch\DFSVC.EXE-E544F6B8.pf O45 - LFCP:[MD5.191D524CCB83E0E4C7AD7BB6DD281568] - 30/12/2013 - 17:17:48 ---A- - C:\Windows\Prefetch\DSMUSERTASK.EXE-24160A4D.pf O45 - LFCP:[MD5.C9D0EB39F3834757D8BA45CCFF84894B] - 30/12/2013 - 17:25:01 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-CB9044FF.pf O45 - LFCP:[MD5.BC59325D881425353F4907033907631D] - 30/12/2013 - 17:45:04 ---A- - C:\Windows\Prefetch\SMARTSCREENSETTINGS.EXE-48A0A317.pf O45 - LFCP:[MD5.262D95F03F590990EFA36B37595A3E28] - 30/12/2013 - 19:12:51 ---A- - C:\Windows\Prefetch\WWAHOST.EXE-7E9E9326.pf O45 - LFCP:[MD5.7AE5C4BA3FDB1C5647FF207FCB8F518A] - 30/12/2013 - 19:15:48 ---A- - C:\Windows\Prefetch\WWAHOST.EXE-987A1FBC.pf O45 - LFCP:[MD5.44B81146687AFC277D7659716BDFD6AB] - 31/12/2013 - 11:53:34 ---A- - C:\Windows\Prefetch\WWAHOST.EXE-63259973.pf O45 - LFCP:[MD5.185BE83DC8D04C6FE141AD67AE90E937] - 31/12/2013 - 11:57:24 ---A- - C:\Windows\Prefetch\USERACCOUNTBROKER.EXE-4F1A7FDC.pf O45 - LFCP:[MD5.DC0D1466E1C01C73715C26D6ADB2B85D] - 31/12/2013 - 12:09:42 ---A- - C:\Windows\Prefetch\FILEMANAGER.EXE-E075A89C.pf O45 - LFCP:[MD5.F9131DAA423CBB47A10A658BD639A4C3] - 31/12/2013 - 12:10:37 ---A- - C:\Windows\Prefetch\PICKERHOST.EXE-299594AB.pf O45 - LFCP:[MD5.87206B924CE579085CAFFB5EF22DCBD5] - 31/12/2013 - 12:12:08 ---A- - C:\Windows\Prefetch\EBAY.COREAPP.EXE-C84FDEFA.pf =>Toolbar.eBay O45 - LFCP:[MD5.DFED6FE252C9E8785E4C5BFF114411A2] - 31/12/2013 - 12:17:38 ---A- - C:\Windows\Prefetch\WWAHOST.EXE-5A88606A.pf O45 - LFCP:[MD5.11B53830C0FEDFFCB91076816560442A] - 31/12/2013 - 12:23:16 ---A- - C:\Windows\Prefetch\AUTHHOST.EXE-7385F8D7.pf O45 - LFCP:[MD5.C095D46234720D9A59B8C786705DED97] - 31/12/2013 - 12:25:06 ---A- - C:\Windows\Prefetch\FADERPANEL.EXE-E27339B4.pf O45 - LFCP:[MD5.4A95093A98503CA79DF0FE92CBC20EF1] - 31/12/2013 - 12:34:17 ---A- - C:\Windows\Prefetch\SFR.TV.EXE-925978C4.pf O45 - LFCP:[MD5.B38382CE412D4F8CAFD2AE3CFEFED387] - 31/12/2013 - 13:24:39 ---A- - C:\Windows\Prefetch\WWAHOST.EXE-4282AEA9.pf O45 - LFCP:[MD5.9E7617C95A5029B89EC083C0C5EB7E4C] - 31/12/2013 - 16:51:34 ---A- - C:\Windows\Prefetch\WERFAULT.EXE-C38B63DD.pf O45 - LFCP:[MD5.A3A681F324D3A488392CFDDD525237F8] - 31/12/2013 - 17:38:32 ---A- - C:\Windows\Prefetch\WWAHOST.EXE-F20B08D7.pf O45 - LFCP:[MD5.BC7D8DF03EFC96BA30A4B0FA6A9A6242] - 31/12/2013 - 23:24:09 ---A- - C:\Windows\Prefetch\SOLITAIRE.EXE-B3A91567.pf ~ Prefetcher: 252 Scanned in 00mn 00s ---\\ Export de clé d'application autorisée (O47) O47 - AAKE:Key Export SP - "C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe" [Enabled] .(.WIBU-SYSTEMS AG.) -- C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe O47 - AAKE:Key Export DP - "C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe" [Enabled] .(.WIBU-SYSTEMS AG.) -- C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe ~ Keys Export: 2 Scanned in 00mn 00s ---\\ Déni du service (Local Security Authority) (O48) O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l’Éditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Fournisseur de sécurité TLS/SSL.) -- C:\Windows\System32\schannel.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Live Security Package.) -- C:\Windows\System32\livessp.dll ~ LSA: 9 Scanned in 00mn 00s ---\\ Contrôle du Safe Boot (CSB) (O49) O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\BasicDisplay.sys . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\BasicRender.sys . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dxgkrnl.sys . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\FsDepends.sys . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\FsDepends.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\BasicDisplay.sys . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\BasicRender.sys . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dxgkrnl.sys . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\FsDepends.sys . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\FsDepends.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (...) -- C:\Windows\System32\Drivers\rdpencdd.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys ~ CSB: 17 Scanned in 00mn 00s ---\\ Clé de registre Shell MountPoints2 (MPKS) (O51) O51 - MPSK:{cfc7d27f-68de-11e3-be8e-606c668cf44b}\AutoRun\command. (...) -- E:\Startme.exe (.not file.) ~ Keys: Scanned in 00mn 00s ---\\ Recherche d'infection sur les pilotes (HKLM)(TDSD) (O52) O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm ~ TDSD: 2 Scanned in 00mn 00s ---\\ Enumération des clés de registre SecurityProviders (MCSP) (O54) O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll ~ MSCP: 2 Scanned in 00mn 00s ---\\ Enumération des clés de registre PoliciesSystem (MWPS) (O55) O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1 O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1 O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5 O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0 O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0 O55 - MWPS:[HKLM\...\Policies\System] - "EnableCursorSuppression"=1 O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3 O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0 O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0 O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0 O55 - MWPS:[HKLM\...\Policies\System] - "DisableTaskMgr"=0 O55 - MWPS:[HKLM\...\Policies\System] - "DisableRegistryTools"=0 ~ MWPS: 19 Scanned in 00mn 00s ---\\ Enumération des clés de registre PoliciesExplorer (MWPE) (O56) O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoRun"=0 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoControlPanel"=0 ~ MWPE Keys: 5 Scanned in 00mn 00s ---\\ Liste des pilotes du système (SDL) (O58) O58 - SDL:[MD5.AD508A1A46EC21B740AB31C28EFDFDB1] - 22/08/2013 - 13:43:41 ---A- . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\Windows\System32\Drivers\3ware.sys [108896] O58 - SDL:[MD5.7C1FDF1B48298CBA7CE4BDD4978951AD] - 22/08/2013 - 13:43:41 ---A- . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS/SATA controller.) -- C:\Windows\System32\Drivers\adp80xx.sys [782176] O58 - SDL:[MD5.D2BF2F94A47D332814910FD47C6BBCD2] - 22/08/2013 - 13:43:41 ---A- . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\Windows\System32\Drivers\amdsata.sys [79200] O58 - SDL:[MD5.A8E04943C7BBA7219AA50400272C3C6E] - 22/08/2013 - 13:43:41 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows -.) -- C:\Windows\System32\Drivers\amdsbs.sys [259424] O58 - SDL:[MD5.CEA5F4F27CFC08E3A44D576811B35F50] - 22/08/2013 - 13:43:40 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\Drivers\amdxata.sys [25952] O58 - SDL:[MD5.0C3D62CB6B8F2B3CC42369BAC0F58AD5] - 13/09/2012 - 03:35:08 ---A- . (.Windows (R) Win 7 DDK provider - Intel® Centrino® Wireless Bluetooth® + High Speed Virtual Adapt.) -- C:\Windows\System32\Drivers\AmpPal.sys [162344] O58 - SDL:[MD5.65045784366F7EC5FB4E71BCF923187B] - 22/08/2013 - 13:43:41 ---A- . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\Drivers\arcsas.sys [114016] O58 - SDL:[MD5.C1ABB0F7E3BEA48A0417BDF6FF14AB21] - 13/08/2013 - 00:25:46 ---A- . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\Windows\System32\Drivers\bcmfn2.sys [17624] O58 - SDL:[MD5.4428C299BE7B9841ECFA82044B69FA6A] - 22/07/2013 - 18:56:48 ---A- . (.Motorola Solutions, Inc. - Bluetooth Auxiliary Driver.) -- C:\Windows\System32\Drivers\btmaux.sys [140600] O58 - SDL:[MD5.7B31A8A9DC95B3634D896FD0F2814F19] - 05/09/2013 - 16:37:40 ---A- . (.Motorola Solutions, Inc. - Bluetooth Filter Driver.) -- C:\Windows\System32\Drivers\btmhsf.sys [1390904] O58 - SDL:[MD5.A4A73F631FE2AA2826FBE4A399B04DEF] - 22/08/2013 - 13:43:41 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\Drivers\bxvbda.sys [531296] O58 - SDL:[MD5.075CCE75090786F124573A788C8656E6] - 25/06/2012 - 09:24:50 ---A- . (.CyberLink - It is a virtual device driver which could create multiple virtu.) -- C:\Windows\System32\Drivers\CLVirtualDrive.sys [92536] O58 - SDL:[MD5.27069CFFF29B7F04F4B1BB10154BE52B] - 25/09/2012 - 08:52:04 ---A- . (.Windows (R) Win 7 DDK provider - IEEE-1284.4-1999 Driver.) -- C:\Windows\System32\Drivers\Dot4.sys [151968] O58 - SDL:[MD5.0BD906A79F9CE3013F7D9D0AC45F9F9D] - 25/09/2012 - 08:52:04 ---A- . (.Windows (R) Win 7 DDK provider - IEEE-1284.4 Print Class Driver.) -- C:\Windows\System32\Drivers\Dot4Prt.sys [27040] O58 - SDL:[MD5.B7635A3DA81988DA27B5507750E0687C] - 14/08/2012 - 04:12:08 ---A- . (.DiBcom - MOD7700 AVSTREAM/BDA driver.) -- C:\Windows\System32\Drivers\dvb7700all.sys [778240] O58 - SDL:[MD5.114BCFDF367FF37C3F1B0A96AF542E4D] - 22/08/2013 - 13:43:45 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\Drivers\evbda.sys [3357024] O58 - SDL:[MD5.F16370F37CCA72ED2C21C230333C2C11] - 22/01/2013 - 14:25:52 ---A- . (.FTDI Ltd. - FTDIBUS USB Driver.) -- C:\Windows\System32\Drivers\ftdibus.sys [76648] O58 - SDL:[MD5.787BBE2466C36B2E36B4A41BB788E2A2] - 22/01/2013 - 14:25:42 ---A- . (.FTDI Ltd. - FTDIBUS Serial Device Driver.) -- C:\Windows\System32\Drivers\ftser2k.sys [85864] O58 - SDL:[MD5.8E98D21EE06192492A5671A6144D092F] - 21/08/2012 - 13:01:20 ---A- . (.GEAR Software Inc. - CD DVD Filter.) -- C:\Windows\System32\Drivers\GEARAspiWDM.sys [33240] O58 - SDL:[MD5.16C2A6BCDDA8952C2035DEC861492A19] - 22/12/2013 - 11:22:01 ---A- . (.Sony Ericsson Mobile Communications - SEMC USB Flash Driver Filter.) -- C:\Windows\System32\Drivers\ggflt.sys [14448] O58 - SDL:[MD5.6B503DF845EABF3457E49FBBDA26C10E] - 22/12/2013 - 11:22:01 ---A- . (.Sony Ericsson Mobile Communications - SEMC USB Flash Driver.) -- C:\Windows\System32\Drivers\ggsemc.sys [27760] O58 - SDL:[MD5.772A1DEEDFDBC244183B5C805D1B7D85] - 03/07/2012 - 00:16:02 ---A- . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\Drivers\HECIx64.sys [62784] O58 - SDL:[MD5.A6AACEA4C785789BDA5912AD1FEDA80D] - 22/08/2013 - 13:43:45 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\System32\Drivers\HpSAMD.sys [64352] O58 - SDL:[MD5.5D90E32E36CE5D4C535D17CE08AEAF05] - 30/07/2013 - 19:47:35 ---A- . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\Windows\System32\Drivers\iaLPSSi_GPIO.sys [24568] O58 - SDL:[MD5.DD05E7E80F52ADE9AEB292819920F32C] - 25/07/2013 - 20:05:39 ---A- . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\Windows\System32\Drivers\iaLPSSi_I2C.sys [99320] O58 - SDL:[MD5.E9139926D0E9F562060B6FAAF4A93BA1] - 05/03/2013 - 18:49:44 ---A- . (.Intel Corporation - Intel Rapid Storage Technology driver - x64.) -- C:\Windows\System32\Drivers\iaStorA.sys [653296] O58 - SDL:[MD5.08BFE413B0B4AA8DFA4B5684CE06D3DC] - 10/08/2013 - 01:39:30 ---A- . (.Intel Corporation - Intel Rapid Storage Technology driver (inbox) - x64.) -- C:\Windows\System32\Drivers\iaStorAV.sys [651248] O58 - SDL:[MD5.A2200C3033FA4EF249FC096A7A7D02A2] - 22/08/2013 - 13:43:45 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\Drivers\iaStorV.sys [412000] O58 - SDL:[MD5.23E22B130EFE5A225E279467BE146317] - 23/04/2013 - 13:24:26 ---A- . (.Intel Corporation - Intel(R) Centrino(R) Wireless (Bluetooth Adapter) Driver.) -- C:\Windows\System32\Drivers\iBtFltCoex.sys [69088] O58 - SDL:[MD5.4F6363C26B4A3DDBC9FAFCBA68602B01] - 21/12/2013 - 00:02:44 ---A- . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\Drivers\igdkmd64.sys [4216320] O58 - SDL:[MD5.F5495B38BFB9149925F54F65AB40EFBF] - 19/06/2012 - 17:40:50 ---A- . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\Windows\System32\Drivers\IntcDAud.sys [342528] O58 - SDL:[MD5.4011430BC9DA46ADFAE9915EFEC312FB] - 15/12/2013 - 00:34:54 ---A- . (.Intel Corporation - Intel® WiDi Solution.) -- C:\Windows\System32\Drivers\intelaud.sys [39320] O58 - SDL:[MD5.4D9B9A794F22415B8C3E0CCFBE61BC7A] - 21/07/2012 - 02:09:40 ---A- . (.Intel Corporation - Intel(R) Rapid Start Technology Driver.) -- C:\Windows\System32\Drivers\irstrtdv.sys [43800] O58 - SDL:[MD5.EE03564B7FAFE2E44EDA33D52E83B4A3] - 15/12/2013 - 00:34:54 ---A- . (.Intel Corporation - Intel® WiDi Solution.) -- C:\Windows\System32\Drivers\iwdbus.sys [27032] O58 - SDL:[MD5.50AECF8C21AB2A6428A6E1E10549D8E5] - 18/06/2013 - 15:44:59 ---A- . (.Qualcomm Atheros Co., Ltd. - Qualcomm Atheros Ar81xx series PCI-E Gigabit Ethernet Controlle.) -- C:\Windows\System32\Drivers\L1C63x64.sys [129224] O58 - SDL:[MD5.C755AE4635457AA2A11F79C0DF857ABC] - 22/08/2013 - 13:43:44 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas.sys [109408] O58 - SDL:[MD5.ADAC09CBE7A2040B7F68B5E5C9A75141] - 22/08/2013 - 13:43:45 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas2.sys [93536] O58 - SDL:[MD5.04D1274BB9BBCCF12BD12374002AA191] - 22/08/2013 - 13:43:44 ---A- . (.LSI Corporation - LSI SAS Gen3 Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas3.sys [81760] O58 - SDL:[MD5.327469EEF3833D0C584B7E88A76AEC0C] - 22/08/2013 - 13:43:45 ---A- . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sss.sys [82784] O58 - SDL:[MD5.0BB97D43299910CBFBA59C461B99B910] - 04/04/2013 - 14:50:32 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\mbam.sys [25928] O58 - SDL:[MD5.EB5C03A070F30D64A6DF80E53B22F53F] - 22/08/2013 - 13:43:45 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\Drivers\megasas.sys [56672] O58 - SDL:[MD5.F6F13533196DE7A582D422B0241E4363] - 22/08/2013 - 13:43:45 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\Drivers\megasr.sys [575840] O58 - SDL:[MD5.B8C35C94DCB2DFEAF03BB42131F2F77F] - 22/08/2013 - 13:43:49 ---A- . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\Windows\System32\Drivers\mvumis.sys [63840] O58 - SDL:[MD5.75B9B86878CC159FBC40C4F9202ADBE3] - 04/09/2013 - 18:03:50 ---A- . (.Intel Corporation - Intel® Wireless WiFi Link Driver.) -- C:\Windows\System32\Drivers\NETwew00.sys [3345376] O58 - SDL:[MD5.BC6B5942AFF25EBAF62DE43C3807EDF8] - 22/08/2013 - 13:43:31 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\Drivers\nvraid.sys [150368] O58 - SDL:[MD5.1F43ABFFAC3D6CA356851D517392966E] - 22/08/2013 - 13:43:32 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\Drivers\nvstor.sys [168288] O58 - SDL:[MD5.3208C73AE8E3B032DF1235B8F820CBBC] - 05/09/2012 - 05:49:42 ---A- . (.Realtek Semiconductor Corp. - Realtek Turbo Mode Filter Driver.) -- C:\Windows\System32\Drivers\rtcrfilt64.sys [19600] O58 - SDL:[MD5.46726EB52FDC7A141DE6780B09F3F729] - 05/09/2012 - 05:49:42 ---A- . (.Realtek Semiconductor Corp. - Realtek USB Mass Storage Driver for 2K/XP/Vista/Win7/Win8.) -- C:\Windows\System32\Drivers\RtsUVStor.sys [317584] O58 - SDL:[MD5.3EA8A16169C26AFBEB544E0E48421186] - 22/08/2013 - 16:35:09 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\System32\Drivers\secdrv.sys [23040] O58 - SDL:[MD5.2F518D13DD6F3053837FE606F1A2EA1F] - 22/08/2013 - 13:43:31 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid2.sys [44896] O58 - SDL:[MD5.1AC9A200A9C49C4508F04AAFFCA34A3F] - 22/08/2013 - 13:43:32 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid4.sys [81760] O58 - SDL:[MD5.A7CD1B0E0452B2E9C650EFDB466D40E7] - 08/09/2012 - 05:17:10 ---A- . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\Windows\System32\Drivers\Smb_driver_AMDASF.sys [41272] O58 - SDL:[MD5.D79951652C8C22C01996E6C2E29AD390] - 08/09/2012 - 05:17:12 ---A- . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\Windows\System32\Drivers\Smb_driver_Intel.sys [43832] O58 - SDL:[MD5.366DEA74BBA65B362BCCFC6FC2ADFD8B] - 22/08/2013 - 13:43:32 ---A- . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Windows x64.) -- C:\Windows\System32\Drivers\stexstor.sys [31072] O58 - SDL:[MD5.7E89F65EB250463EE8665CFE19566FC3] - 24/07/2012 - 11:59:00 ---A- . (.IDT, Inc. - IDT PC Audio.) -- C:\Windows\System32\Drivers\stwrt64.sys [540160] O58 - SDL:[MD5.276C0D79A6C62944B02A5502DB260AAF] - 08/09/2012 - 05:17:12 ---A- . (.Synaptics Incorporated - Synaptics Touchpad Driver.) -- C:\Windows\System32\Drivers\SynTP.sys [454968] O58 - SDL:[MD5.C9E9D59C0099A9FF51697E9306A44240] - 13/12/2012 - 14:50:36 ---A- . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\Windows\System32\Drivers\usbaapl64.sys [54784] O58 - SDL:[MD5.06D38968028E9AB19DE9B618C7B6D199] - 22/08/2013 - 13:43:34 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\viaide.sys [19808] O58 - SDL:[MD5.4539F45F9F4C9757A86A56C949421E07] - 22/08/2013 - 13:43:34 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\Drivers\vsmraid.sys [168800] O58 - SDL:[MD5.0849B7260F26FE05EA56DED0672E2F4B] - 22/08/2013 - 13:43:34 ---A- . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\Windows\System32\Drivers\VSTXRAID.SYS [305504] O58 - SDL:[MD5.9526479D23826789BA28A0381D18AA8D] - 10/01/2013 - 16:50:06 ---A- . (.Jungo - WinDriver Device Driver 11.20.) -- C:\Windows\System32\Drivers\windrvr6.sys [266752] O58 - SDL:[MD5.7B8D8F52675C0B699FA42DD235A4421C] - 30/07/2012 - 10:25:22 ---A- . (.FTDI Ltd. - FTD2XX USB Driver.) -- C:\Windows\SysWOW64\FTD2XX.sys [25596] ~ Drivers: 19 Scanned in 00mn 01s ---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61) O61 - LFC: 04/01/2014 - 14:11:37 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\Amazon.com.Amazon_343d40qqvtj1t\AC\Microsoft\CLR_v4.0\NativeImages\AmazonForWi3a7c204a#\3af4763eec1d6a87f8d30554ea77617e\AmazonForWindowsWebview.ni.exe [421888] O61 - LFC: 04/01/2014 - 14:11:37 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\Amazon.com.Amazon_343d40qqvtj1t\AC\Microsoft\CLR_v4.0\NativeImages\AmazonForWi3a7c204a#\3af4763eec1d6a87f8d30554ea77617e\AmazonForWindowsWebview.ni.exe.aux [5976] O61 - LFC: 04/01/2014 - 14:11:37 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\Amazon.com.Amazon_343d40qqvtj1t\AC\Microsoft\CLR_v4.0\NativeImages\BackgroundTasks\1febbb7fdfdabbc1e022f7daf35682ab\BackgroundTasks.ni.dll [176640] O61 - LFC: 04/01/2014 - 14:11:37 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\Amazon.com.Amazon_343d40qqvtj1t\AC\Microsoft\CLR_v4.0\NativeImages\BackgroundTasks\1febbb7fdfdabbc1e022f7daf35682ab\BackgroundTasks.ni.dll.aux [2420] O61 - LFC: 04/01/2014 - 14:11:39 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\FileManager_cw5n1h2txyewy\LocalState\PhotosSessionState.dat [316] O61 - LFC: 04/01/2014 - 14:12:44 ---A- . (...) -- C:\Users\yannick\AppData\Local\Windows Live\uxcore_WLXPhotoGalleryRepair_00.etl [8192] O61 - LFC: 04/01/2014 - 14:12:44 ---A- . (...) -- C:\Users\yannick\AppData\Local\Windows Live\uxcore_WLXPhotoGallery_00.etl [8192] O61 - LFC: 05/01/2014 - 14:11:39 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\FileManager_cw5n1h2txyewy\Settings\settings.dat [8192] O61 - LFC: 05/01/2014 - 14:11:39 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\Microsoft.BingFoodAndDrink_8wekyb3d8bbwe\Settings\settings.dat [262144] O61 - LFC: 05/01/2014 - 14:11:39 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\eBayInc.eBay_1618n3s9xq8tw\Settings\settings.dat [8192] =>Toolbar.eBay O61 - LFC: 05/01/2014 - 14:11:51 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\Microsoft.BingSports_8wekyb3d8bbwe\Settings\settings.dat [262144] O61 - LFC: 05/01/2014 - 14:11:52 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\Microsoft.Media.PlayReadyClient_8wekyb3d8bbwe\Settings\settings.dat [8192] O61 - LFC: 05/01/2014 - 14:11:53 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\Microsoft.MoCamera_cw5n1h2txyewy\Settings\settings.dat [8192] O61 - LFC: 05/01/2014 - 14:11:53 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\Microsoft.Reader_8wekyb3d8bbwe\Settings\settings.dat [8192] O61 - LFC: 05/01/2014 - 14:11:53 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\Microsoft.VCLibs.110.00_8wekyb3d8bbwe\Settings\settings.dat [8192] O61 - LFC: 05/01/2014 - 14:11:53 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\Microsoft.VCLibs.110_8wekyb3d8bbwe\Settings\settings.dat [8192] O61 - LFC: 05/01/2014 - 14:12:10 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\20002c9d_469ceae04b576f.eml [46277] =>.Microsoft Corporation O61 - LFC: 05/01/2014 - 14:12:10 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\20002e2b_79ea40ee9aa2ac.eml [7240] =>.Microsoft Corporation O61 - LFC: 05/01/2014 - 14:12:10 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\20002e34_77ce9b82ba69bb.eml [6208] =>.Microsoft Corporation O61 - LFC: 05/01/2014 - 14:12:10 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\20002e46_e950feca1e6d22.eml [2694] =>.Microsoft Corporation O61 - LFC: 05/01/2014 - 14:12:10 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\20002e50_5c8893eb27b8e8.eml [10759] =>.Microsoft Corporation O61 - LFC: 05/01/2014 - 14:12:10 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\20002e51_8421c0cbf5e38.eml [54063] =>.Microsoft Corporation O61 - LFC: 05/01/2014 - 14:12:10 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\20002e52_d0a69846b3a58a.eml [49568] =>.Microsoft Corporation O61 - LFC: 05/01/2014 - 14:12:10 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\20002e5c_8789cdb33fdeb4.eml [42330] =>.Microsoft Corporation O61 - LFC: 05/01/2014 - 14:12:10 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\20002e5f_d663ba356ca0a2.eml [49704] =>.Microsoft Corporation O61 - LFC: 05/01/2014 - 14:12:10 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\20002efc_4941ca28d9cf9b.eml [18906] =>.Microsoft Corporation O61 - LFC: 05/01/2014 - 14:12:10 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\20002f1a_fa1a5b6f6ed24a.eml [4364] =>.Microsoft Corporation O61 - LFC: 05/01/2014 - 14:12:10 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\20002f1b_4b735663eaba15.eml [25968] =>.Microsoft Corporation O61 - LFC: 05/01/2014 - 14:12:10 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\20002f1c_79647df149e93a.eml [8169] =>.Microsoft Corporation O61 - LFC: 05/01/2014 - 14:12:10 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\20002f1e_a0996915b41749.eml [6907] =>.Microsoft Corporation O61 - LFC: 05/01/2014 - 14:12:10 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\20002f1f_9f6c127ec261b.eml [9436] =>.Microsoft Corporation O61 - LFC: 05/01/2014 - 14:12:10 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\20002f20_87e6496ce72051.eml [7299] =>.Microsoft Corporation O61 - LFC: 05/01/2014 - 14:12:10 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\20002f21_236e67bcb2b79.eml [13461] =>.Microsoft Corporation O61 - LFC: 05/01/2014 - 14:12:10 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\20002f22_8f7419814a47db.eml [11524] =>.Microsoft Corporation O61 - LFC: 05/01/2014 - 14:12:10 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\20002f2a_b4dce4659cf5.eml [5669] =>.Microsoft Corporation O61 - LFC: 05/01/2014 - 14:12:10 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\20002f44_85dc5fc77ead0.eml [6054] =>.Microsoft Corporation O61 - LFC: 05/01/2014 - 14:12:10 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\20002f45_db8e819862644e.eml [49658] =>.Microsoft Corporation O61 - LFC: 05/01/2014 - 14:12:10 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\20002f46_559a6beb0f6f3.eml [56868] =>.Microsoft Corporation O61 - LFC: 05/01/2014 - 14:12:10 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\20002f47_318180919d00fb.eml [49102] =>.Microsoft Corporation O61 - LFC: 05/01/2014 - 14:12:10 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\20002f52_550364ef733.eml [48135] =>.Microsoft Corporation O61 - LFC: 05/01/2014 - 14:12:10 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\20002f53_f7ce10aba3f861.eml [47399] =>.Microsoft Corporation O61 - LFC: 05/01/2014 - 14:12:10 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\20002f54_d5b07f72389316.eml [40010] =>.Microsoft Corporation O61 - LFC: 05/01/2014 - 14:12:10 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\20002f58_8fa356922b8e65.eml [28838] =>.Microsoft Corporation O61 - LFC: 05/01/2014 - 14:12:10 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\20002f59_f3fdb2f74f1c7e.eml [40752] =>.Microsoft Corporation O61 - LFC: 05/01/2014 - 14:12:10 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\20002f5a_447f98a91478af.eml [36517] =>.Microsoft Corporation O61 - LFC: 05/01/2014 - 14:12:10 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\20002f61_3afaaed6f052dd.eml [17816] =>.Microsoft Corporation O61 - LFC: 05/01/2014 - 14:12:10 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\20002f62_b7e335b3c25022.eml [5970] =>.Microsoft Corporation O61 - LFC: 05/01/2014 - 14:12:10 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\20002fbf_3ae9deaa55705c.eml [814] =>.Microsoft Corporation O61 - LFC: 05/01/2014 - 14:12:10 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\20003023_662b584f8d2032.eml [60089] =>.Microsoft Corporation O61 - LFC: 05/01/2014 - 14:12:10 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\20003027_fb7f14562cd144.eml [95353] =>.Microsoft Corporation O61 - LFC: 05/01/2014 - 14:12:10 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\20003028_8aec53bafee5bf.eml [1536] =>.Microsoft Corporation O61 - LFC: 05/01/2014 - 14:12:10 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\2000302b_8a074474ccc2d9.eml [36787] =>.Microsoft Corporation O61 - LFC: 05/01/2014 - 14:12:10 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\2000302c_9ef74c1c28623f.eml [56983] =>.Microsoft Corporation O61 - LFC: 05/01/2014 - 14:12:10 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\2000302d_e51670f0ca679c.eml [9085] =>.Microsoft Corporation O61 - LFC: 05/01/2014 - 14:12:10 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\2000302e_22c617dbd9f7ed.eml [22807] =>.Microsoft Corporation O61 - LFC: 05/01/2014 - 14:12:10 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\2000302f_53f9a6e1eca695.eml [23903] =>.Microsoft Corporation O61 - LFC: 05/01/2014 - 14:12:10 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\20003088_2327be67243055.eml [4833] =>.Microsoft Corporation O61 - LFC: 05/01/2014 - 14:12:10 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\20003089_85db34811f1afb.eml [17769] =>.Microsoft Corporation O61 - LFC: 05/01/2014 - 14:12:10 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\2000308a_eb3b152393fd3.eml [17745] =>.Microsoft Corporation O61 - LFC: 05/01/2014 - 14:12:10 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\2000308b_3d80cd3f218a69.eml [814] =>.Microsoft Corporation O61 - LFC: 05/01/2014 - 14:12:21 R---- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\LiveComm\55f3aeef282b92d1\120712-0049\Att\20003028\DSC_0008.JPG [2177338] =>.Microsoft Corporation O61 - LFC: 05/01/2014 - 14:12:22 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\Microsoft.WinJS.1.0.RC_8wekyb3d8bbwe\Settings\settings.dat [8192] O61 - LFC: 05/01/2014 - 14:12:22 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\Microsoft.WinJS.1.0_8wekyb3d8bbwe\Settings\settings.dat [8192] O61 - LFC: 05/01/2014 - 14:12:23 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\Settings\settings.dat [8192] O61 - LFC: 05/01/2014 - 14:12:26 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\Microsoft.ZuneVideo_8wekyb3d8bbwe\Settings\settings.dat [262144] =>.Microsoft Corporation O61 - LFC: 05/01/2014 - 14:12:33 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\windows.immersivecontrolpanel_cw5n1h2txyewy\Settings\settings.dat [8192] O61 - LFC: 05/01/2014 - 14:12:40 ---A- . (...) -- C:\Users\yannick\AppData\Local\Temp\MDNS_LOG_15_09.txt [60774] O61 - LFC: 05/01/2014 - 14:12:42 ---A- . (...) -- C:\Users\yannick\AppData\Local\Temp\scoped_dir5736_14808\data_0 [45056] O61 - LFC: 05/01/2014 - 14:12:42 ---A- . (...) -- C:\Users\yannick\AppData\Local\Temp\scoped_dir5736_14808\data_1 [270336] O61 - LFC: 05/01/2014 - 14:12:42 ---A- . (...) -- C:\Users\yannick\AppData\Local\Temp\scoped_dir5736_14808\data_2 [1056768] O61 - LFC: 05/01/2014 - 14:12:42 ---A- . (...) -- C:\Users\yannick\AppData\Local\Temp\scoped_dir6312_4804\Cookies [6144] O61 - LFC: 05/01/2014 - 14:12:42 ---A- . (...) -- C:\Users\yannick\AppData\Local\Temp\scoped_dir6312_4804\Cookies-journal [1544] O61 - LFC: 05/01/2014 - 14:12:42 ---A- . (...) -- C:\Users\yannick\AppData\Local\Temp\scoped_dir6312_4804\data_3 [8192] O61 - LFC: 05/01/2014 - 14:12:42 ---A- . (...) -- C:\Users\yannick\AppData\Local\Temp\scoped_dir6312_4804\index [524656] O61 - LFC: 05/01/2014 - 14:12:43 ---A- . (...) -- C:\Users\yannick\AppData\Local\Temp\~DF4200277E501A2DBA.TMP [376832] O61 - LFC: 05/01/2014 - 14:15:08 ---A- . (...) -- C:\Users\yannick\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-2014-01-05 (21-22-45).txt [29090] O61 - LFC: 06/01/2014 - 14:11:34 ---A- . (...) -- C:\Users\yannick\AppData\Local\Google\Chrome\User Data\default\preferences [1644] O61 - LFC: 06/01/2014 - 14:11:37 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\Amazon.com.Amazon_343d40qqvtj1t\AC\INetCache\2BKFIJC4\Win8bunkbed_US_garminForerunner_bunkbed[1].png [426563] O61 - LFC: 06/01/2014 - 14:11:37 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\Amazon.com.Amazon_343d40qqvtj1t\AC\INetCache\A31QPMPT\prefetch[1].xml [706] O61 - LFC: 06/01/2014 - 14:11:37 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\Amazon.com.Amazon_343d40qqvtj1t\AC\INetCookies\VFPQP9X9.txt [323] O61 - LFC: 06/01/2014 - 14:11:37 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\Amazon.com.Amazon_343d40qqvtj1t\Settings\settings.dat [262144] O61 - LFC: 06/01/2014 - 14:11:39 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\Microsoft.BingFinance_8wekyb3d8bbwe\AC\INetCache\1787QFN9\ospcms[1].xml [2466] O61 - LFC: 06/01/2014 - 14:11:39 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\Microsoft.BingFinance_8wekyb3d8bbwe\AC\INetCache\5YOJA0BR\257179456[1].json [21683] O61 - LFC: 06/01/2014 - 14:11:39 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\Microsoft.BingFinance_8wekyb3d8bbwe\AC\INetCache\5YOJA0BR\today[1].json [39272] O61 - LFC: 06/01/2014 - 14:11:49 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\Microsoft.BingNews_8wekyb3d8bbwe\AC\INetCache\P513JWGR\ospcms[1].xml [3589] =>.Microsoft Corporation O61 - LFC: 06/01/2014 - 14:11:49 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\Microsoft.BingNews_8wekyb3d8bbwe\AC\INetCache\RWPVDIG2\257219566[1].json [16747] =>.Microsoft Corporation O61 - LFC: 06/01/2014 - 14:11:50 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\Microsoft.BingNews_8wekyb3d8bbwe\AC\INetCache\RWPVDIG2\today[1].json [331655] =>.Microsoft Corporation O61 - LFC: 06/01/2014 - 14:11:50 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\Microsoft.BingSports_8wekyb3d8bbwe\AC\INetCache\6YIBCALU\today[1].json [84435] O61 - LFC: 06/01/2014 - 14:11:50 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\Microsoft.BingSports_8wekyb3d8bbwe\AC\INetCache\7RBSQ9K8\257217858[1].json [18332] O61 - LFC: 06/01/2014 - 14:11:50 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\Microsoft.BingSports_8wekyb3d8bbwe\AC\INetCache\H1ALGEOP\ospcms[1].xml [3657] O61 - LFC: 06/01/2014 - 14:11:52 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\Microsoft.BingWeather_8wekyb3d8bbwe\LocalState\BootCache.json [55355] O61 - LFC: 06/01/2014 - 14:11:52 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\Microsoft.BingWeather_8wekyb3d8bbwe\LocalState\InstrumentationData.xml [1134] O61 - LFC: 06/01/2014 - 14:11:52 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\Microsoft.BingWeather_8wekyb3d8bbwe\RoamingState\Cache\cachePersonalDataCache\_CacheMetadata.bin [909] O61 - LFC: 06/01/2014 - 14:11:53 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\Microsoft.MicrosoftSolitaireCollection_8wekyb3d8bbwe\Settings\settings.dat [262144] O61 - LFC: 06/01/2014 - 14:11:55 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\bici\bi000005.sqm [99064] =>.Microsoft Corporation O61 - LFC: 06/01/2014 - 14:11:55 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\bici\bi000006.sqm [57816] =>.Microsoft Corporation O61 - LFC: 06/01/2014 - 14:11:55 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\bici\bi000007.sqm [29194] =>.Microsoft Corporation O61 - LFC: 06/01/2014 - 14:12:10 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\20003090_94bbdea4724ead.eml [12651] =>.Microsoft Corporation O61 - LFC: 06/01/2014 - 14:12:10 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\20003091_1213c98310b1c6.eml [22163] =>.Microsoft Corporation O61 - LFC: 06/01/2014 - 14:12:10 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\20003092_9139a8f5f2e49f.eml [22676] =>.Microsoft Corporation O61 - LFC: 06/01/2014 - 14:12:10 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\20003098_3f472c74a9c3ff.eml [18638] =>.Microsoft Corporation O61 - LFC: 06/01/2014 - 14:12:10 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\2000309d_349325d0ed548c.eml [8622] =>.Microsoft Corporation O61 - LFC: 06/01/2014 - 14:12:10 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\2000309e_b6ac019d5cadb.eml [3878] =>.Microsoft Corporation O61 - LFC: 06/01/2014 - 14:12:10 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\200030a0_30fe8d52900ac3.eml [26683] =>.Microsoft Corporation O61 - LFC: 06/01/2014 - 14:12:11 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\200030a1_3496e9eab987f2.eml [73843] =>.Microsoft Corporation O61 - LFC: 06/01/2014 - 14:12:11 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\200030a2_731689ee7a1285.eml [18459] =>.Microsoft Corporation O61 - LFC: 06/01/2014 - 14:12:11 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\200030a3_d016d4a6936fd6.eml [6641] =>.Microsoft Corporation O61 - LFC: 06/01/2014 - 14:12:11 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\200030a4_18b8eeaec66c1.eml [44705] =>.Microsoft Corporation O61 - LFC: 06/01/2014 - 14:12:11 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\200030a5_f3582bdd5abf3.eml [13953] =>.Microsoft Corporation O61 - LFC: 06/01/2014 - 14:12:11 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\200030a6_70fcedfbf2cded.eml [15776] =>.Microsoft Corporation O61 - LFC: 06/01/2014 - 14:12:11 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\200030a9_dd9da0d82549d6.eml [50028] =>.Microsoft Corporation O61 - LFC: 06/01/2014 - 14:12:11 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\200030ab_bb9efb34cdf142.eml [774] =>.Microsoft Corporation O61 - LFC: 06/01/2014 - 14:12:11 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\200030af_9a39a3cddd7ce3.eml [3407] =>.Microsoft Corporation O61 - LFC: 06/01/2014 - 14:12:11 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\200030b5_e78127724e2ba2.eml [4941] =>.Microsoft Corporation O61 - LFC: 06/01/2014 - 14:12:11 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\200030b6_24784a91c168e4.eml [23296] =>.Microsoft Corporation O61 - LFC: 06/01/2014 - 14:12:11 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\200030b7_ac3e99c874803f.eml [16292] =>.Microsoft Corporation O61 - LFC: 06/01/2014 - 14:12:11 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\200030b8_62df227c6520ad.eml [16097] =>.Microsoft Corporation O61 - LFC: 06/01/2014 - 14:12:11 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\200030b9_f76c7f44156c92.eml [16248] =>.Microsoft Corporation O61 - LFC: 06/01/2014 - 14:12:11 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\200030ba_a4b5e584b02d6e.eml [2671] =>.Microsoft Corporation O61 - LFC: 06/01/2014 - 14:12:21 R---- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\LiveComm\55f3aeef282b92d1\120712-0049\Att\200030a6\Moteurs et Poutres Accroche Levage.pdf [748016] =>.Microsoft Corporation O61 - LFC: 06/01/2014 - 14:12:22 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Microsoft.WindowsLive.Mail.etl [5242880] =>.Microsoft Corporation O61 - LFC: 06/01/2014 - 14:12:29 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\SFR.SFRTV_jnsztden2nca6\Settings\settings.dat [8192] O61 - LFC: 06/01/2014 - 14:12:40 ---A- . (...) -- C:\Users\yannick\AppData\Local\Temp\MDNS_LOG_34_24.txt [42856] O61 - LFC: 06/01/2014 - 14:12:40 ---A- . (...) -- C:\Users\yannick\AppData\Local\Temp\preferences [0] O61 - LFC: 06/01/2014 - 14:12:42 ---A- . (...) -- C:\Users\yannick\AppData\Local\Temp\scoped_dir4652_19532\Cookies [6144] O61 - LFC: 06/01/2014 - 14:12:42 ---A- . (...) -- C:\Users\yannick\AppData\Local\Temp\scoped_dir4652_19532\Cookies-journal [1544] O61 - LFC: 06/01/2014 - 14:12:42 ---A- . (...) -- C:\Users\yannick\AppData\Local\Temp\scoped_dir4652_19532\data_3 [8192] O61 - LFC: 06/01/2014 - 14:12:42 ---A- . (...) -- C:\Users\yannick\AppData\Local\Temp\scoped_dir4652_19532\index [524656] O61 - LFC: 06/01/2014 - 14:12:42 ---A- . (...) -- C:\Users\yannick\AppData\Local\Temp\scoped_dir6312_4804\data_0 [45056] O61 - LFC: 06/01/2014 - 14:12:42 ---A- . (...) -- C:\Users\yannick\AppData\Local\Temp\scoped_dir6312_4804\data_1 [270336] O61 - LFC: 06/01/2014 - 14:12:42 ---A- . (...) -- C:\Users\yannick\AppData\Local\Temp\scoped_dir6312_4804\data_2 [1056768] O61 - LFC: 06/01/2014 - 14:12:44 ---A- . (...) -- C:\Users\yannick\AppData\Roaming\Adobe\Acrobat\11.0\JSCache\GlobSettings [24] O61 - LFC: 06/01/2014 - 14:12:44 ---A- . (...) -- C:\Users\yannick\AppData\Roaming\Adobe\Acrobat\11.0\TMDocs.sav [36] O61 - LFC: 06/01/2014 - 14:12:44 ---A- . (...) -- C:\Users\yannick\AppData\Roaming\Adobe\Acrobat\11.0\TMGrpPrm.sav [54] O61 - LFC: 06/01/2014 - 14:12:44 ---A- . (...) -- C:\Users\yannick\AppData\Roaming\Adobe\Flash Player\NativeCache\Updater.directory [0] O61 - LFC: 06/01/2014 - 14:15:07 ---A- . (...) -- C:\Users\yannick\AppData\Roaming\Dropbox\shellext\l\52ca5aa0 [152] =>.Dropbox O61 - LFC: 06/01/2014 - 14:15:07 ---A- . (...) -- C:\Users\yannick\AppData\Roaming\Dropbox\shellext\l\52ca5ac8 [152] =>.Dropbox O61 - LFC: 06/01/2014 - 14:15:07 ---A- . (...) -- C:\Users\yannick\AppData\Roaming\Dropbox\shellext\l\52cb167c [152] =>.Dropbox O61 - LFC: 06/01/2014 - 14:15:07 ---A- . (...) -- C:\Users\yannick\AppData\Roaming\Dropbox\shellext\l\52cb1b05 [124] =>.Dropbox O61 - LFC: 06/01/2014 - 14:15:07 ---A- . (...) -- C:\Users\yannick\AppData\Roaming\Dropbox\shellext\l\52cb1b42 [136] =>.Dropbox O61 - LFC: 06/01/2014 - 14:15:07 ---A- . (...) -- C:\Users\yannick\AppData\Roaming\Dropbox\shellext\l\new_trace [0] =>.Dropbox O61 - LFC: 06/01/2014 - 14:21:31 ---A- . (...) -- C:\Users\yannick\Documents\PERSO\ASSEDIC\Declaration\pointage 2014\pointage 060janvier 14.pdf [199130] O61 - LFC: 06/01/2014 - 14:21:53 ---A- . (...) -- C:\Users\yannick\Downloads\adwcleaner(1).exe [1233962] O61 - LFC: 07/01/2014 - 14:11:31 ---A- . (...) -- C:\Users\yannick\AppData\Local\F-Secure\SFR Cloud\User Data\watchdog.db [39936] O61 - LFC: 07/01/2014 - 14:11:31 ---A- . (...) -- C:\Users\yannick\AppData\Local\F-Secure\SFR Cloud\User Data\watchdog.db-shm [32768] O61 - LFC: 07/01/2014 - 14:11:31 ---A- . (...) -- C:\Users\yannick\AppData\Local\F-Secure\SFR Cloud\User Data\watchdog.db-wal [32] O61 - LFC: 07/01/2014 - 14:11:34 --HA- . (...) -- C:\Users\yannick\AppData\Local\IconCache.db [69136] O61 - LFC: 07/01/2014 - 14:11:50 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\Microsoft.BingNews_8wekyb3d8bbwe\LocalState\BootCache.json [37240] =>.Microsoft Corporation O61 - LFC: 07/01/2014 - 14:11:50 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\Microsoft.BingNews_8wekyb3d8bbwe\LocalState\InstrumentationData.xml [1074] =>.Microsoft Corporation O61 - LFC: 07/01/2014 - 14:11:50 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\Microsoft.BingNews_8wekyb3d8bbwe\LocalState\ItemsAlreadyPrefetched-bingdaily.txt [3] =>.Microsoft Corporation O61 - LFC: 07/01/2014 - 14:11:50 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\Microsoft.BingNews_8wekyb3d8bbwe\LocalState\state\31256468-7623-11E2-8106-14916188709B.FR-FR [278614] =>.Microsoft Corporation O61 - LFC: 07/01/2014 - 14:11:50 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\Microsoft.BingNews_8wekyb3d8bbwe\RoamingState\Cache\cachePersonalDataCache\_CacheMetadata.bin [885] =>.Microsoft Corporation O61 - LFC: 07/01/2014 - 14:11:50 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\Microsoft.BingNews_8wekyb3d8bbwe\Settings\settings.dat [262144] =>.Microsoft Corporation O61 - LFC: 07/01/2014 - 14:11:52 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\Microsoft.BingWeather_8wekyb3d8bbwe\Settings\settings.dat [262144] O61 - LFC: 07/01/2014 - 14:11:55 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\AC\INetCookies\ISV2H46A.txt [318] =>.Microsoft Corporation O61 - LFC: 07/01/2014 - 14:11:55 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\bici\bi000000.sqm [71740] =>.Microsoft Corporation O61 - LFC: 07/01/2014 - 14:11:55 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\bici\bi000001.sqm [28534] =>.Microsoft Corporation O61 - LFC: 07/01/2014 - 14:11:55 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\bici\bi000008.sqm [5888] =>.Microsoft Corporation O61 - LFC: 07/01/2014 - 14:11:55 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\bici\bi000009.sqm [21382] =>.Microsoft Corporation O61 - LFC: 07/01/2014 - 14:11:55 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\bici\bi00000a.sqm [62824] =>.Microsoft Corporation O61 - LFC: 07/01/2014 - 14:11:55 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\bici\bi00000b.sqm [24628] =>.Microsoft Corporation O61 - LFC: 07/01/2014 - 14:11:55 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\bici\bi00000c.sqm [23344] =>.Microsoft Corporation O61 - LFC: 07/01/2014 - 14:11:55 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\bici\bi00000d.sqm [48758] =>.Microsoft Corporation O61 - LFC: 07/01/2014 - 14:11:55 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\bici\bi00000e.sqm [46028] =>.Microsoft Corporation O61 - LFC: 07/01/2014 - 14:12:11 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\200030ef_d388b13377b13.eml [17365] =>.Microsoft Corporation O61 - LFC: 07/01/2014 - 14:12:11 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\200030f0_4b1156457a3919.eml [22672] =>.Microsoft Corporation O61 - LFC: 07/01/2014 - 14:12:11 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\200030f1_cab108345b2787.eml [28385] =>.Microsoft Corporation O61 - LFC: 07/01/2014 - 14:12:11 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\200030f2_53b0754fb189ec.eml [21595] =>.Microsoft Corporation O61 - LFC: 07/01/2014 - 14:12:11 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\200030f3_47b4085b638128.eml [25516] =>.Microsoft Corporation O61 - LFC: 07/01/2014 - 14:12:11 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\200030f4_f46ccc1376e4c5.eml [23459] =>.Microsoft Corporation O61 - LFC: 07/01/2014 - 14:12:11 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\200030f5_cde8dc8f3b4897.eml [20831] =>.Microsoft Corporation O61 - LFC: 07/01/2014 - 14:12:11 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\200030f6_858efce265f096.eml [20831] =>.Microsoft Corporation O61 - LFC: 07/01/2014 - 14:12:11 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\200030f7_cccdefeaa63d41.eml [13442] =>.Microsoft Corporation O61 - LFC: 07/01/2014 - 14:12:11 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\200030fa_29eeaf0dbe7d2a.eml [16704] =>.Microsoft Corporation O61 - LFC: 07/01/2014 - 14:12:11 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\200030fb_5db9f94f5a5cf.eml [21736] =>.Microsoft Corporation O61 - LFC: 07/01/2014 - 14:12:11 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\200030fc_413f3c721f3d6f.eml [23018] =>.Microsoft Corporation O61 - LFC: 07/01/2014 - 14:12:11 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\200030fd_d83a63d52bc296.eml [22892] =>.Microsoft Corporation O61 - LFC: 07/01/2014 - 14:12:11 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\20003154_7ccd68b9faaea6.eml [8555] =>.Microsoft Corporation O61 - LFC: 07/01/2014 - 14:12:11 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\20003155_2a949321e85858.eml [18634] =>.Microsoft Corporation O61 - LFC: 07/01/2014 - 14:12:11 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\20003158_f39fdab61a1936.eml [26067] =>.Microsoft Corporation O61 - LFC: 07/01/2014 - 14:12:11 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\20003159_77eb8d0fff387d.eml [14199] =>.Microsoft Corporation O61 - LFC: 07/01/2014 - 14:12:11 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\2000315a_f353d604f94.eml [2565] =>.Microsoft Corporation O61 - LFC: 07/01/2014 - 14:12:11 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\20003162_e7d1f63b5b399.eml [11255] =>.Microsoft Corporation O61 - LFC: 07/01/2014 - 14:12:11 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\20003167_64d462bf255e4.eml [3931] =>.Microsoft Corporation O61 - LFC: 07/01/2014 - 14:12:11 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\20003168_246bf5d7941fb8.eml [28291] =>.Microsoft Corporation O61 - LFC: 07/01/2014 - 14:12:11 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\2000316c_3b5500bc73caff.eml [28275] =>.Microsoft Corporation O61 - LFC: 07/01/2014 - 14:12:11 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\2000316d_fbf87638313594.eml [23231] =>.Microsoft Corporation O61 - LFC: 07/01/2014 - 14:12:11 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\2000316e_406516939350f8.eml [9873] =>.Microsoft Corporation O61 - LFC: 07/01/2014 - 14:12:11 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\2000316f_c2f166f27bbcdf.eml [26535] =>.Microsoft Corporation O61 - LFC: 07/01/2014 - 14:12:11 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\20003170_4a4bddcff3323.eml [17370] =>.Microsoft Corporation O61 - LFC: 07/01/2014 - 14:12:11 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\20003171_299f9307b16b3c.eml [28247] =>.Microsoft Corporation O61 - LFC: 07/01/2014 - 14:12:11 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\20003172_7930a91b462b38.eml [26605] =>.Microsoft Corporation O61 - LFC: 07/01/2014 - 14:12:11 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\20003173_ac382369aa5d57.eml [26431] =>.Microsoft Corporation O61 - LFC: 07/01/2014 - 14:12:11 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\200031b7_9b507f35eaac3.eml [11303] =>.Microsoft Corporation O61 - LFC: 07/01/2014 - 14:12:11 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\Mail\14\200031b8_8109b015c600a2.eml [22500] =>.Microsoft Corporation O61 - LFC: 07/01/2014 - 14:12:15 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\55f3aeef282b92d1\120712-0049\People\Implicit\1e00038e_dde0a241afa873.appcontent-ms [1336] =>.Microsoft Corporation O61 - LFC: 07/01/2014 - 14:12:21 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\LiveComm\55f3aeef282b92d1\120712-0049\DBStore\edb.chk [8192] =>.Microsoft Corporation O61 - LFC: 07/01/2014 - 14:12:21 R---- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\LiveComm\55f3aeef282b92d1\120712-0049\Att\20003162\20140107110410393.pdf [977797] =>.Microsoft Corporation O61 - LFC: 07/01/2014 - 14:12:21 R---- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\LiveComm\55f3aeef282b92d1\120712-0049\Att\20003162\MELPO Note_Frais_Intermittents.xlsx [16721] =>.Microsoft Corporation O61 - LFC: 07/01/2014 - 14:12:22 ----- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\LiveComm.etl [131072] =>.Microsoft Corporation O61 - LFC: 07/01/2014 - 14:12:22 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\LiveCommLast.etl [5242880] =>.Microsoft Corporation O61 - LFC: 07/01/2014 - 14:12:40 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\WinStore_cw5n1h2txyewy\LocalState\LiveTile\1x-4cb31649-ca58-463a-bc09-c0cbc8cd7d65-AppTile.1.31763.72947.png [10040] =>.Microsoft Corporation O61 - LFC: 07/01/2014 - 14:12:40 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\WinStore_cw5n1h2txyewy\LocalState\LiveTile\1x-720e8eef-f1db-4202-aa85-add7fc88bfe0-AppTile.1.267529.268610.png [4244] =>.Microsoft Corporation O61 - LFC: 07/01/2014 - 14:12:40 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\WinStore_cw5n1h2txyewy\LocalState\LiveTile\1x-973c5ebc-fca8-4f7d-81ef-58e21e947645-AppTile.1.13423.14049.png [55690] =>.Microsoft Corporation O61 - LFC: 07/01/2014 - 14:12:40 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\WinStore_cw5n1h2txyewy\LocalState\LiveTile\1x-973c5ebc-fca8-4f7d-81ef-58e21e947645-Icon.13423.png [7125] =>.Microsoft Corporation O61 - LFC: 07/01/2014 - 14:12:40 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\WinStore_cw5n1h2txyewy\LocalState\LiveTile\1x-97815131-ae30-423c-8ae5-2be261a60564-Icon.254333.png [997] =>.Microsoft Corporation O61 - LFC: 07/01/2014 - 14:12:40 ---A- . (...) -- C:\Users\yannick\AppData\Local\Packages\WinStore_cw5n1h2txyewy\LocalState\LiveTile\1x-a9b518ed-1750-4b06-99a5-f756b1f95d43-Icon.13990.png [3541] =>.Microsoft Corporation O61 - LFC: 07/01/2014 - 14:12:40 ---A- . (...) -- C:\Users\yannick\AppData\Local\Temp\Invité.bmp [802870] O61 - LFC: 07/01/2014 - 14:12:40 ---A- . (...) -- C:\Users\yannick\AppData\Local\Temp\MDNS_LOG_07_17.txt [10072] O61 - LFC: 07/01/2014 - 14:12:40 ---A- . (...) -- C:\Users\yannick\AppData\Local\Temp\MDNS_LOG_07_35.txt [28428] O61 - LFC: 07/01/2014 - 14:12:40 ---A- . (...) -- C:\Users\yannick\AppData\Local\Temp\MDNS_LOG_30_00.txt [41189] O61 - LFC: 07/01/2014 - 14:12:42 ---A- . (...) -- C:\Users\yannick\AppData\Local\Temp\RedboxLog.txt [52314] O61 - LFC: 07/01/2014 - 14:12:42 ---A- . (...) -- C:\Users\yannick\AppData\Local\Temp\scoped_dir2952_10966\Cookies [6144] O61 - LFC: 07/01/2014 - 14:12:42 ---A- . (...) -- C:\Users\yannick\AppData\Local\Temp\scoped_dir2952_10966\Cookies-journal [1544] O61 - LFC: 07/01/2014 - 14:12:42 ---A- . (...) -- C:\Users\yannick\AppData\Local\Temp\scoped_dir4652_19532\data_0 [45056] O61 - LFC: 07/01/2014 - 14:12:42 ---A- . (...) -- C:\Users\yannick\AppData\Local\Temp\scoped_dir4652_19532\data_1 [270336] O61 - LFC: 07/01/2014 - 14:12:42 ---A- . (...) -- C:\Users\yannick\AppData\Local\Temp\scoped_dir4652_19532\data_2 [1056768] O61 - LFC: 07/01/2014 - 14:12:42 ---A- . (...) -- C:\Users\yannick\AppData\Local\Temp\scoped_dir6100_10413\Cookies [6144] O61 - LFC: 07/01/2014 - 14:12:42 ---A- . (...) -- C:\Users\yannick\AppData\Local\Temp\scoped_dir6100_10413\Cookies-journal [1544] O61 - LFC: 07/01/2014 - 14:12:42 ---A- . (...) -- C:\Users\yannick\AppData\Local\Temp\scoped_dir6100_10413\data_0 [45056] O61 - LFC: 07/01/2014 - 14:12:42 ---A- . (...) -- C:\Users\yannick\AppData\Local\Temp\scoped_dir6100_10413\data_1 [270336] O61 - LFC: 07/01/2014 - 14:12:42 ---A- . (...) -- C:\Users\yannick\AppData\Local\Temp\scoped_dir6100_10413\data_2 [1056768] O61 - LFC: 07/01/2014 - 14:12:42 ---A- . (...) -- C:\Users\yannick\AppData\Local\Temp\scoped_dir6100_10413\data_3 [8192] O61 - LFC: 07/01/2014 - 14:12:42 ---A- . (...) -- C:\Users\yannick\AppData\Local\Temp\scoped_dir6100_10413\index [524656] O61 - LFC: 07/01/2014 - 14:12:42 ---A- . (...) -- C:\Users\yannick\AppData\Local\Temp\yanni_000.bmp [31832] O61 - LFC: 07/01/2014 - 14:12:42 ---A- . (...) -- C:\Users\yannick\AppData\Local\Temp\yannick.bmp [31832] O61 - LFC: 07/01/2014 - 14:12:42 ---A- . (...) -- C:\Users\yannick\AppData\Local\Temp\yannick_2.bmp [802870] O61 - LFC: 07/01/2014 - 14:12:44 ---A- . (...) -- C:\Users\yannick\AppData\Local\Windows Live\uxcore_WLXPGSS_00.etl [8192] O61 - LFC: 07/01/2014 - 14:15:07 ---A- . (...) -- C:\Users\yannick\AppData\Roaming\Dropbox\PENDING_tauo_y [6144] =>.Dropbox O61 - LFC: 07/01/2014 - 14:15:07 ---A- . (...) -- C:\Users\yannick\AppData\Roaming\Dropbox\TO_HASH_vf7mne [5120] =>.Dropbox O61 - LFC: 07/01/2014 - 14:15:07 ---A- . (...) -- C:\Users\yannick\AppData\Roaming\Dropbox\UPDATED_2q63bf [6144] =>.Dropbox O61 - LFC: 07/01/2014 - 14:15:07 ---A- . (...) -- C:\Users\yannick\AppData\Roaming\Dropbox\config.dbx [5120] =>.Dropbox O61 - LFC: 07/01/2014 - 14:15:07 ---A- . (...) -- C:\Users\yannick\AppData\Roaming\Dropbox\filecache.dbx [514048] =>.Dropbox O61 - LFC: 07/01/2014 - 14:15:07 ---A- . (...) -- C:\Users\yannick\AppData\Roaming\Dropbox\host.db [73] =>.Dropbox O61 - LFC: 07/01/2014 - 14:15:07 ---A- . (...) -- C:\Users\yannick\AppData\Roaming\Dropbox\host.dbx [205] =>.Dropbox O61 - LFC: 07/01/2014 - 14:15:07 ---A- . (...) -- C:\Users\yannick\AppData\Roaming\Dropbox\notifications.dbx [2048] =>.Dropbox O61 - LFC: 07/01/2014 - 14:15:07 ---A- . (...) -- C:\Users\yannick\AppData\Roaming\Dropbox\photo.dbx [17408] =>.Dropbox O61 - LFC: 07/01/2014 - 14:15:07 ---A- . (...) -- C:\Users\yannick\AppData\Roaming\Dropbox\shellext\l\52cbace9 [124] =>.Dropbox O61 - LFC: 07/01/2014 - 14:15:07 ---A- . (...) -- C:\Users\yannick\AppData\Roaming\Dropbox\shellext\l\52cbfc25 [124] =>.Dropbox O61 - LFC: 07/01/2014 - 14:15:07 ---A- . (...) -- C:\Users\yannick\AppData\Roaming\Dropbox\unlink.db [248] =>.Dropbox O61 - LFC: 07/01/2014 - 14:15:07 ---A- . (...) -- C:\Users\yannick\AppData\Roaming\Intel\Wireless\WLANProfiles\Profiles.enc [48] O61 - LFC: 07/01/2014 - 14:15:08 ---A- . (...) -- C:\Users\yannick\AppData\Roaming\ZHP\Log.txt [36065] =>.Nicolas Coolman O61 - LFC: 07/01/2014 - 14:15:08 ---A- . (...) -- C:\Users\yannick\AppData\Roaming\ZHP\TestsZHPDiag.txt [2877] =>.Nicolas Coolman O61 - LFC: 07/01/2014 - 14:15:08 ---A- . (...) -- C:\Users\yannick\AppData\Roaming\uTorrent\dht.dat [4196] =>P2P.µTorrent O61 - LFC: 07/01/2014 - 14:15:08 ---A- . (...) -- C:\Users\yannick\AppData\Roaming\uTorrent\dht.dat.old [3910] =>P2P.µTorrent O61 - LFC: 07/01/2014 - 14:15:08 ---A- . (...) -- C:\Users\yannick\AppData\Roaming\uTorrent\dht_feed.dat [2] =>P2P.µTorrent O61 - LFC: 07/01/2014 - 14:15:08 ---A- . (...) -- C:\Users\yannick\AppData\Roaming\uTorrent\dht_feed.dat.old [2] =>P2P.µTorrent O61 - LFC: 07/01/2014 - 14:15:08 ---A- . (...) -- C:\Users\yannick\AppData\Roaming\uTorrent\dlimagecache\5108DF53CC447C7C85D4E98DC2487135DCD5C35B [1150] =>P2P.µTorrent O61 - LFC: 07/01/2014 - 14:15:08 ---A- . (...) -- C:\Users\yannick\AppData\Roaming\uTorrent\resume.dat [99] =>P2P.µTorrent O61 - LFC: 07/01/2014 - 14:15:08 ---A- . (...) -- C:\Users\yannick\AppData\Roaming\uTorrent\resume.dat.old [99] =>P2P.µTorrent O61 - LFC: 07/01/2014 - 14:15:08 ---A- . (...) -- C:\Users\yannick\AppData\Roaming\uTorrent\rss.dat [99] =>P2P.µTorrent O61 - LFC: 07/01/2014 - 14:15:08 ---A- . (...) -- C:\Users\yannick\AppData\Roaming\uTorrent\rss.dat.old [99] =>P2P.µTorrent O61 - LFC: 07/01/2014 - 14:15:08 ---A- . (...) -- C:\Users\yannick\AppData\Roaming\uTorrent\settings.dat [25604] =>P2P.µTorrent O61 - LFC: 07/01/2014 - 14:15:08 ---A- . (...) -- C:\Users\yannick\AppData\Roaming\uTorrent\settings.dat.old [25604] =>P2P.µTorrent O61 - LFC: 07/01/2014 - 14:15:08 ---A- . (...) -- C:\Users\yannick\AppData\Roaming\uTorrent\updates.dat [270] =>P2P.µTorrent O61 - LFC: 07/01/2014 - 14:15:08 -SHA- . (...) -- C:\Users\yannick\AppData\Roaming\Microsoft\Protect\S-1-5-21-898469356-1706449233-3202299308-1001\e1b8a87a-0bf3-4604-b35e-10f8d621e858 [468] ~ 38 Fichiers temporaires (Temporary files) ~ Files: 256 Scanned in 17mn 57s ---\\ Liste des outils de désinfection (LATC) (O63) O63 - Logiciel: ZHPDiag 2014 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman ~ ADS: Scanned in 00mn 00s ---\\ Associations Shell Spawning (O67) O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\System32\eventvwr.exe O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.exe O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe ~ FASS Keys: 11 Scanned in 00mn 00s ---\\ Menu de démarrage Internet (SMI) (O68) O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe ~ Keys: Scanned in 00mn 00s ---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69) O69 - SBI: SearchScopes [HKCU] FC3B8765CA134AE9A1BF383138D83A88 - (Mysearchdial) - http://start.mysearchdial.com =>Adware.MyWebSearch O69 - SBI: SearchScopes [HKCU] {FD184320-21A3-46E0-BE87-D4CDF47AA693} - (Bing) - http://www.bing.com ~ Keys: Scanned in 00mn 00s ---\\ Enumère les service demarrés par Svchost (SSS) (O83) O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [207360] O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [155136] O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [155136] O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [324608] O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [1311744] O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [1104384] O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur un réseau IPv4..) -- C:\Windows\System32\iphlpsvc.dll [903168] O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll [30720] O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [109568] O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [150528] O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [107008] O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [1212416] O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [220672] O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédias.) -- C:\Windows\System32\mmcss.dll [70656] O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [134144] O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [221184] O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à distance.) -- C:\Windows\System32\sessenv.dll [326656] O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [81408] O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\kmsvc.dll [97792] O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [336896] O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Service d’infrastructure de localisation Windows.) -- C:\Windows\System32\GeofenceMonitorService.dll [491520] O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\Windows\System32\wlidsvc.dll [1555456] O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [50688] O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d’installation de périphérique.) -- C:\Windows\System32\DeviceSetupManager.dll [201728] O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Microsoft.) -- C:\Windows\System32\ncasvc.dll [164352] O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’accès distant.) -- C:\Windows\System32\rasauto.dll [101376] O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d’accès à distance.) -- C:\Windows\System32\rasmans.dll [534016] O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [223744] O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements système (SENS).) -- C:\Windows\System32\sens.dll [71680] O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll [433664] O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM).) -- C:\Windows\System32\tapisrv.dll [306688] O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll [3532288] O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\Windows\System32\qmgr.dll [1017856] O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [629760] ~ Services: 34 Scanned in 00mn 00s ---\\ Recherche particulière à la racine du système (SPRF) (O84) [MD5.EAE608794598F96C0B836FD6147D26BF] [SPRF][30/12/2013] (...) -- C:\Users\yannick\AppData\Local\Temp\aacdec.exe [176128] [MD5.3AAA61F9B3D1A214A4EBFAB157658DC6] [SPRF][30/12/2013] (...) -- C:\Users\yannick\AppData\Local\Temp\defaultCache.reg [85258] [MD5.62E6A03FB35AC22801DC3822CAF433A1] [SPRF][30/12/2013] (.NCH Software - MixPad - Mixeur de fichiers audio.) -- C:\Users\yannick\AppData\Local\Temp\mpsetup.exe [976920] [MD5.F0A5B44B9B8A23E2F2950B346B5C7718] [SPRF][23/12/2013] (...) -- C:\Users\yannick\AppData\Local\Temp\Quarantine.exe [360051] [MD5.1006247A5D1349263F28A6AA7D8AB3A5] [SPRF][30/12/2013] (.NCH Software - WavePad - Logiciel d'édition audio.) -- C:\Users\yannick\Desktop\wpsetup460.exe [857144] ~ Files: 5 Scanned in 00mn 00s ---\\ Liste des exceptions du parefeu (FirewallRules) (O87) O87 - FAEL: "vm-monitoring-rpc" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "vm-monitoring-dcom" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMP-In-UDP" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMP-Out-UDP" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMP-Out-TCP" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "SNMPTRAP-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Interruption SNMP.) -- C:\Windows\system32\snmptrap.exe O87 - FAEL: "SNMPTRAP-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Interruption SNMP.) -- C:\Windows\system32\snmptrap.exe O87 - FAEL: "Wininit-Shutdown-In-Rule-TCP-RPC" | In - None - P6 - FALSE | .(.Microsoft Corporation - Application de démarrage de Windows.) -- C:\Windows\system32\wininit.exe O87 - FAEL: "Wininit-Shutdown-In-Rule-TCP-RPC-EPMapper" | In - None - P6 - FALSE | .(.Microsoft Corporation - Application de démarrage de Windows.) -- C:\Windows\system32\wininit.exe O87 - FAEL: "PNRPMNRS-PNRP-In-UDP" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "PNRPMNRS-PNRP-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "PNRPMNRS-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "PNRPMNRS-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MsiScsi-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MsiScsi-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MsiScsi-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MsiScsi-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "ProximityUxHost-Sharing-In-TCP-NoScope" | In - None - P6 - TRUE | .(.Microsoft Corporation - Hôte UX de proximité.) -- C:\Windows\system32\proximityuxhost.exe O87 - FAEL: "ProximityUxHost-Sharing-Out-TCP-NoScope" | Out - None - P6 - TRUE | .(.Microsoft Corporation - Hôte UX de proximité.) -- C:\Windows\system32\proximityuxhost.exe O87 - FAEL: "NETDIS-UPnPHost-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-WSDEVNTS-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-WSDEVNT-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-SSDPSrv-In-UDP-Active" | In - Private - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP-Active" | Out - Private - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-UPnPHost-Out-TCP-Active" | Out - Private - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-UPnP-Out-TCP-Active" | Out - Private - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-FDPHOST-In-UDP-Active" | In - Private - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-DAS-In-UDP-Active" | In - Private - P17 - FALSE | .(.Microsoft Corporation - Device Association Framework Provider Host.) -- C:\Windows\system32\dashost.exe O87 - FAEL: "NETDIS-FDPHOST-Out-UDP-Active" | Out - Private - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-LLMNR-In-UDP-Active" | In - Private - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-LLMNR-Out-UDP-Active" | Out - Private - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP-Active" | In - Private - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP-Active" | Out - Private - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-WSDEVNTS-Out-TCP-Active" | Out - Private - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-WSDEVNT-Out-TCP-Active" | Out - Private - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-UPnP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-UPnPHost-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-FDPHOST-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-DAS-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Device Association Framework Provider Host.) -- C:\Windows\system32\dashost.exe O87 - FAEL: "NETDIS-FDPHOST-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-LLMNR-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-LLMNR-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-WSDEVNTS-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-WSDEVNT-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "EventForwarder-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Event Forwarder.) -- C:\Windows\system32\NetEvtFwdr.exe O87 - FAEL: "EventForwarder-RPCSS-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteFwAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteFwAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteFwAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteFwAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "TPMVSCMGR-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "TPMVSCMGR-Server-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - TPM Virtual Smart Card Manager DCOM Server.) -- C:\Windows\system32\RmtTpmVscMgrSvr.exe O87 - FAEL: "TPMVSCMGR-Server-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - TPM Virtual Smart Card Manager DCOM Server.) -- C:\Windows\system32\RmtTpmVscMgrSvr.exe O87 - FAEL: "TPMVSCMGR-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "TPMVSCMGR-Server-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - TPM Virtual Smart Card Manager DCOM Server.) -- C:\Windows\system32\RmtTpmVscMgrSvr.exe O87 - FAEL: "TPMVSCMGR-Server-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - TPM Virtual Smart Card Manager DCOM Server.) -- C:\Windows\system32\RmtTpmVscMgrSvr.exe O87 - FAEL: "Netlogon-TCP-RPC-In" | In - None - P6 - FALSE | .(.Microsoft Corporation - Local Security Authority Process.) -- C:\Windows\System32\lsass.exe O87 - FAEL: "Collab-PNRP-In-UDP" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "Collab-PNRP-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "Collab-PNRP-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "Collab-PNRP-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WirelessDisplay-In-TCP" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes.) -- C:\Windows\system32\WUDFHost.exe O87 - FAEL: "WirelessDisplay-Out-TCP" | Out - Public - P6 - TRUE | .(.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes.) -- C:\Windows\system32\WUDFHost.exe O87 - FAEL: "WirelessDisplay-Out-UDP" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes.) -- C:\Windows\system32\WUDFHost.exe O87 - FAEL: "WMI-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMI-WINMGMT-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMI-WINMGMT-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMI-ASYNC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) -- C:\Windows\system32\wbem\unsecapp.exe O87 - FAEL: "WMI-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMI-WINMGMT-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMI-WINMGMT-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMI-ASYNC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) -- C:\Windows\system32\wbem\unsecapp.exe O87 - FAEL: "FPS-SpoolSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe O87 - FAEL: "FPS-SpoolSvc-In-TCP" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe O87 - FAEL: "FPS-LLMNR-In-UDP" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "FPS-LLMNR-Out-UDP" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-TCP3587-In" | In - Private - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-TCP3587-Out" | Out - Private - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-UDP3540-In" | In - Private - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-UDP3540-Out" | Out - Private - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteAssistance-In-TCP-EdgeScope" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe O87 - FAEL: "RemoteAssistance-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-In-EdgeScope" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-OUT" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteAssistance-RAServer-In-TCP-NoScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur COM d’assistance à distance Windows.) -- C:\Windows\system32\raserver.exe O87 - FAEL: "RemoteAssistance-RAServer-Out-TCP-NoScope-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur COM d’assistance à distance Windows.) -- C:\Windows\system32\raserver.exe O87 - FAEL: "RemoteAssistance-DCOM-In-TCP-NoScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteAssistance-In-TCP-EdgeScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe O87 - FAEL: "RemoteAssistance-Out-TCP-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe O87 - FAEL: "RemoteAssistance-SSDPSrv-In-UDP-Active" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteAssistance-SSDPSrv-Out-UDP-Active" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-In-EdgeScope-Active" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-OUT-Active" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MSDTC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe O87 - FAEL: "MSDTC-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe O87 - FAEL: "MSDTC-KTMRM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MSDTC-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MSDTC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe O87 - FAEL: "MSDTC-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe O87 - FAEL: "MSDTC-KTMRM-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MSDTC-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-QWave-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-QWave-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-QWave-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-QWave-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-WMP-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-WMP-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-WMP-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-In-UDP-NoScope" |In - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation O87 - FAEL: "WMPNSS-Out-UDP-NoScope" |Out - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation O87 - FAEL: "WMPNSS-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation O87 - FAEL: "WMPNSS-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation O87 - FAEL: "WMPNSS-QWave-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-QWave-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-QWave-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-QWave-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-WMP-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-WMP-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-WMP-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-In-UDP" |In - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation O87 - FAEL: "WMPNSS-Out-UDP" |Out - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation O87 - FAEL: "WMPNSS-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation O87 - FAEL: "WMPNSS-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation O87 - FAEL: "WMPNSS-UPnP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteEventLogSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteEventLogSvc-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteEventLogSvc-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteEventLogSvc-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteTask-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteTask-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteTask-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteTask-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RVM-VDS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service de disque virtuel.) -- C:\Windows\system32\vds.exe O87 - FAEL: "RVM-VDSLDR-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Virtual Disk Service Loader.) -- C:\Windows\system32\vdsldr.exe O87 - FAEL: "RVM-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RVM-VDS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service de disque virtuel.) -- C:\Windows\system32\vds.exe O87 - FAEL: "RVM-VDSLDR-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Virtual Disk Service Loader.) -- C:\Windows\system32\vdsldr.exe O87 - FAEL: "RVM-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "PlayTo-In-UDP-NoScope" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe O87 - FAEL: "PlayTo-In-UDP-LocalSubnetScope" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe O87 - FAEL: "PlayTo-In-UDP-PlayToScope" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe O87 - FAEL: "PlayTo-Out-UDP-NoScope" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe O87 - FAEL: "PlayTo-Out-UDP-LocalSubnetScope" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe O87 - FAEL: "PlayTo-Out-UDP-PlayToScope" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe O87 - FAEL: "PlayTo-In-RTSP-NoScope" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe O87 - FAEL: "PlayTo-In-RTSP-LocalSubnetScope" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe O87 - FAEL: "PlayTo-In-RTSP-PlayToScope" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe O87 - FAEL: "PlayTo-SSDP-Discovery-PlayToScope" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "PlayTo-QWave-In-UDP-PlayToScope" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "PlayTo-QWave-Out-UDP-PlayToScope" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "PlayTo-QWave-In-TCP-PlayToScope" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "PlayTo-QWave-Out-TCP-PlayToScope" | Out - Public - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WFDPRINT-DAFWSD-In-Active" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Device Association Framework Provider Host.) -- C:\Windows\system32\dashost.exe O87 - FAEL: "WFDPRINT-DAFWSD-Out-Active" | Out - Public - P6 - TRUE | .(.Microsoft Corporation - Device Association Framework Provider Host.) -- C:\Windows\system32\dashost.exe O87 - FAEL: "WFDPRINT-SPOOL-In-Active" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe O87 - FAEL: "WFDPRINT-SPOOL-Out-Active" | Out - Public - P6 - TRUE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe O87 - FAEL: "WFDPRINT-SCAN-In-Active" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WFDPRINT-SCAN-Out-Active" | Out - Public - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-DHCP-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-DHCP-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-DHCPV6-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-DHCPV6-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-Teredo-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-Teredo-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-IPHTTPS-Out" | Out - None - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-GP-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-DNS-Out-UDP" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-GP-LSASS-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Local Security Authority Process.) -- C:\Windows\system32\lsass.exe O87 - FAEL: "PerfLogsAlerts-PLASrv-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Performance Logs and Alerts DCOM Server.) -- C:\Windows\system32\plasrv.exe O87 - FAEL: "PerfLogsAlerts-DCOM-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "PerfLogsAlerts-PLASrv-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Performance Logs and Alerts DCOM Server.) -- C:\Windows\system32\plasrv.exe O87 - FAEL: "PerfLogsAlerts-DCOM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteSvcAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe O87 - FAEL: "RemoteSvcAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteSvcAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe O87 - FAEL: "RemoteSvcAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WPDMTP-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe O87 - FAEL: "WPDMTP-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe O87 - FAEL: "WPDMTP-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WPDMTP-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WPDMTP-UPnPHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WPDMTP-UPnP-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-QWave-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-QWave-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-QWave-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-QWave-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-TERMSRV-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-MCX2SVC-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-PlayTo-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-PlayTo-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-FDPHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "FPS-LLMNR-Out-UDP_1" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "FPS-LLMNR-In-UDP_1" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "FPS-SpoolSvc-In-TCP_1" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe O87 - FAEL: "WMP-Out-TCP_1" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMP-Out-UDP_1" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMP-In-UDP_1" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "{8249DB25-5339-40F8-BB06-545BEF8F382F}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Windows Live Communications Platform.) -- C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe O87 - FAEL: "{0EA86C88-D436-41E0-9ED1-CBCE9081508E}" | In - None - P17 - TRUE | .(.CyberLink Corp. - PowerDVD 10.0.) -- C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.exe O87 - FAEL: "{F7B81A7F-93ED-4F44-9BBD-F8500CA382E8}" | In - None - P17 - TRUE | .(.CyberLink Corp. - CyberLink PowerDVD Cinema 10 Main Program.) -- C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe O87 - FAEL: "{7FB455E6-7293-410D-ADE4-27819AD47454}" | In - None - P17 - TRUE | .(.CyberLink Corp. - PowerDirector 10.) -- C:\Program Files (x86)\CyberLink\PowerDirector10\PDR10.exe O87 - FAEL: "{4A218F9F-00F2-452F-A8AC-73647C109E41}" | Out - None - P17 - TRUE | .(.Intel® Corporation - Intel® My WiFi Dashboard.) -- C:\Program Files\Intel\CCDashboard\bin\CCDash.exe O87 - FAEL: "{65C10EE0-5075-430B-9A47-8FA31A3ED241}" | In - None - P17 - TRUE | .(.Intel® Corporation - Intel® My WiFi Dashboard.) -- C:\Program Files\Intel\CCDashboard\bin\CCDash.exe O87 - FAEL: "{8D9E4150-9570-4D14-81F4-7096F716C1B3}" | Out - None - P17 - TRUE | .(.Intel® Corporation - Intel® My WiFi Dashboard Server.) -- C:\Program Files\Intel\CCDashboard\bin\CCDashServer.exe O87 - FAEL: "{B38490B0-B9AE-456A-85B4-4EC66CE7A674}" | In - None - P17 - TRUE | .(.Intel® Corporation - Intel® My WiFi Dashboard Server.) -- C:\Program Files\Intel\CCDashboard\bin\CCDashServer.exe O87 - FAEL: "{D7D7ACD7-F674-4643-8012-7DDA8B20BB59}" | In - None - P17 - TRUE | .(.Pas de propriétaire - Wireless PAN DHCP and DNS Server.) -- C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe O87 - FAEL: "{7853C02B-D04E-4112-A802-091602FFD849}" | Out - Private - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{27B8EEA1-EFBF-453B-8C0E-F026D43FB021}" |Out - Private - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation O87 - FAEL: "{4D808440-EF2B-409E-820D-72D37BFF2F0B}" |In - Private - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation O87 - FAEL: "{9CB5213F-97E7-47B0-BC82-C662C1F8EF94}" |Out - Private - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation O87 - FAEL: "{915A8C66-37B5-4A07-AEB0-FCD273E64376}" |In - Private - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation O87 - FAEL: "{7C9E076C-4166-419D-AE01-835EC0F03496}" | Out - Private - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "{E149942F-82D9-4E53-AD6D-C49008211C85}" | Out - Private - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "{8E6D71FC-7D74-4AA6-A74E-A6A0447D3F34}" | In - Private - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "{93FC0D94-52DC-433A-9C1B-D586DE663000}" | Out - Private - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{FD9D17A7-3BE7-46F5-95E0-C90EBAE1FA6A}" | In - Private - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{CD958C2A-786A-43D3-9F75-514ED9575277}" | Out - Private - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{41A33ABB-518B-4044-AFE8-155574E79650}" | In - Private - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{5864000F-5518-4F7B-BAAC-34BECB27B988}" | Out - Private - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{50122E6E-F1D3-43DF-9FB7-530FA935BCFE}" | In - Private - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{F6B697A5-A64A-4658-A72D-A470DAF460DB}" | In - None - P17 - TRUE | .(.Hewlett-Packard - HP Update Client.) -- C:\Program Files (x86)\HP\hp software update\hpwucli.exe =>.Hewlett-Packard Co O87 - FAEL: "{8D9076EC-705A-40E1-9B0D-058DBEE37816}" | In - None - P17 - TRUE | .(.Apple Inc. - WebKit2WebProcess.exe.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe O87 - FAEL: "TCP Query User{0E1420F1-8C07-4795-9C26-094F4D61706C}C:\program files (x86)\chamsys ltd\magicq pc\mqqt.exe" | In - Private - P6 - TRUE | .(...) -- C:\program files (x86)\chamsys ltd\magicq pc\mqqt.exe O87 - FAEL: "UDP Query User{1B21C03A-ED2C-447C-B4A8-D1C6B347D3F4}C:\program files (x86)\chamsys ltd\magicq pc\mqqt.exe" | In - Private - P17 - TRUE | .(...) -- C:\program files (x86)\chamsys ltd\magicq pc\mqqt.exe O87 - FAEL: "{4B678350-34C3-4238-8E3A-F4AC56D8BA9E}" | In - Private - P6 - TRUE | .(.Pas de propriétaire - ENTTEC PRO Manager.) -- C:\Program Files (x86)\ENTTEC\DMX PRO Manager\PRO-Manager.exe O87 - FAEL: "{49D443B9-1CAE-4C5D-9207-2045A2A30539}" | In - Private - P17 - TRUE | .(.Pas de propriétaire - ENTTEC PRO Manager.) -- C:\Program Files (x86)\ENTTEC\DMX PRO Manager\PRO-Manager.exe O87 - FAEL: "TCP Query User{0F926DA5-7CB9-4CF9-8D3E-32FDFAD4AC4D}C:\program files (x86)\chamsys ltd\magicq pc\mqvis.exe" | In - Private - P6 - TRUE | .(...) -- C:\program files (x86)\chamsys ltd\magicq pc\mqvis.exe O87 - FAEL: "UDP Query User{91A5A60F-83D7-4566-AC1E-9D0B39FAF080}C:\program files (x86)\chamsys ltd\magicq pc\mqvis.exe" | In - Private - P17 - TRUE | .(...) -- C:\program files (x86)\chamsys ltd\magicq pc\mqvis.exe O87 - FAEL: "TCP Query User{B9D6E5D9-22F3-4923-8B52-C1CEED3D002D}C:\program files (x86)\ma lighting technologies\grandma\grandma2 onpc 2.8.3.1\gma2onpc.exe" | In - Private - P6 - TRUE | .(...) -- C:\program files (x86)\ma lighting technologies\grandma\grandma2 onpc 2.8.3.1\gma2onpc.exe O87 - FAEL: "UDP Query User{1808C8FD-CB5F-4CAE-A745-C9C2A221D369}C:\program files (x86)\ma lighting technologies\grandma\grandma2 onpc 2.8.3.1\gma2onpc.exe" | In - Private - P17 - TRUE | .(...) -- C:\program files (x86)\ma lighting technologies\grandma\grandma2 onpc 2.8.3.1\gma2onpc.exe O87 - FAEL: "{89867673-2733-442B-857C-6DCBA567723E}" | In - Private - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe O87 - FAEL: "{25194F6E-A89C-475C-AE2F-CAEF9C08A820}" | In - Private - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe O87 - FAEL: "{BD167DC1-5351-4215-8CF9-1553E1EED929}" | In - Private - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe O87 - FAEL: "{73E87C76-46E1-4E43-B8E8-497A2C499CAF}" | In - Private - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe O87 - FAEL: "{D8FAB9C6-D930-411B-816D-92B3DCCD6CDF}" | In - None - P17 - TRUE | .(.Apple Inc. - iTunes.) -- C:\Program Files (x86)\iTunes\iTunes.exe O87 - FAEL: "TCP Query User{49F14D71-FC80-432F-8136-E11E964EE3C5}C:\program files (x86)\enttec\dmx pro manager\pro-manager.exe" | In - Public - P6 - TRUE | .(.Pas de propriétaire - ENTTEC PRO Manager.) -- C:\program files (x86)\enttec\dmx pro manager\pro-manager.exe O87 - FAEL: "UDP Query User{01E62F41-6FF2-40F6-9A90-29011CA47614}C:\program files (x86)\enttec\dmx pro manager\pro-manager.exe" | In - Public - P17 - TRUE | .(.Pas de propriétaire - ENTTEC PRO Manager.) -- C:\program files (x86)\enttec\dmx pro manager\pro-manager.exe O87 - FAEL: "{531D8671-CF3A-4A62-A4E0-02D7DADC289E}" | In - None - P17 - TRUE | .(.WIBU-SYSTEMS AG - CodeMeter Runtime Server.) -- C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe O87 - FAEL: "{8460F6F3-1281-4F52-958C-5B351E2AC66C}" | In - Private - P6 - TRUE | .(.WIBU-SYSTEMS AG - CodeMeter Runtime Server.) -- C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe O87 - FAEL: "{85B63E6D-58C0-416B-A119-E12EAEDD0F25}" | In - Private - P17 - TRUE | .(.WIBU-SYSTEMS AG - CodeMeter Runtime Server.) -- C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe O87 - FAEL: "{5FA1A36B-B4C5-43F1-BFA6-2D7986F666A1}" | In - None - P17 - TRUE | .(.Martin Professional - Maxxyz DMX Distribution service.) -- C:\Program Files (x86)\Martin Professional\Maxxyz\Binaries\DMXSenderService.exe O87 - FAEL: "{B380883D-0A1F-49D0-A868-555F492BFE5C}" | In - None - P6 - TRUE | .(.R&D International NV - RDInternational.MAXNETRouter.Service.) -- C:\Program Files (x86)\Martin Professional\Maxxyz\Binaries\CITPService.exe O87 - FAEL: "{52B7232E-6ED6-494D-BE72-182193F154C4}" | In - None - P17 - TRUE | .(.R&D International NV - RDInternational.MAXNETRouter.Service.) -- C:\Program Files (x86)\Martin Professional\Maxxyz\Binaries\CITPService.exe O87 - FAEL: "{6DE5F7FA-A93D-4EF5-BC05-41612CA3FF18}" | In - None - P6 - TRUE | .(.R&D International NV - RDInternational.MAXNet.) -- C:\Program Files (x86)\Martin Professional\Maxxyz\Binaries\MAXNetService.exe O87 - FAEL: "{290BB515-15B1-4005-B4E5-28BF4FC5AA35}" | In - None - P17 - TRUE | .(.R&D International NV - RDInternational.MAXNet.) -- C:\Program Files (x86)\Martin Professional\Maxxyz\Binaries\MAXNetService.exe O87 - FAEL: "{750E1DF9-7A7B-4351-A5AB-D8C6623832FC}" | In - Public - P6 - TRUE | .(.WIBU-SYSTEMS AG - CodeMeter Runtime Server.) -- C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe O87 - FAEL: "{AC0DBF91-7A6C-4D73-9344-3AB7CE27E432}" | In - Public - P17 - TRUE | .(.WIBU-SYSTEMS AG - CodeMeter Runtime Server.) -- C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe O87 - FAEL: "TCP Query User{32098678-B253-475E-8DD9-1A99D6ECF19E}C:\program files (x86)\chamsys ltd\magicq pc\mqqt.exe" | In - Public - P6 - TRUE | .(...) -- C:\program files (x86)\chamsys ltd\magicq pc\mqqt.exe O87 - FAEL: "UDP Query User{3D2990C6-8D36-491D-BA64-4DB32DA6BF03}C:\program files (x86)\chamsys ltd\magicq pc\mqqt.exe" | In - Public - P17 - TRUE | .(...) -- C:\program files (x86)\chamsys ltd\magicq pc\mqqt.exe O87 - FAEL: "TCP Query User{A7292D32-6D82-47DD-A7B6-3044C72D2B58}C:\program files (x86)\luminex\luminet monitor\luminetmonitor.exe" | In - Public - P6 - TRUE | .(...) -- C:\program files (x86)\luminex\luminet monitor\luminetmonitor.exe O87 - FAEL: "UDP Query User{DACC01FF-2D50-44DB-9C57-62C620840398}C:\program files (x86)\luminex\luminet monitor\luminetmonitor.exe" | In - Public - P17 - TRUE | .(...) -- C:\program files (x86)\luminex\luminet monitor\luminetmonitor.exe O87 - FAEL: "TCP Query User{48589E45-CA9B-46B5-99F7-9D8E61EFF592}C:\program files (x86)\luminex\luminet monitor\luminetmonitor.exe" | In - Private - P6 - TRUE | .(...) -- C:\program files (x86)\luminex\luminet monitor\luminetmonitor.exe O87 - FAEL: "UDP Query User{B75FA4C2-D11A-4215-90AE-1B0101D79C19}C:\program files (x86)\luminex\luminet monitor\luminetmonitor.exe" | In - Private - P17 - TRUE | .(...) -- C:\program files (x86)\luminex\luminet monitor\luminetmonitor.exe O87 - FAEL: "TCP Query User{D9CBFCD3-B66C-4161-8502-D50F9B5AAB82}C:\program files (x86)\artistic licence\dmx-workshop\dmxworkshop.exe" | In - Public - P6 - TRUE | .(.Artistic Licence Holdings Ltd - Pas de description.) -- C:\program files (x86)\artistic licence\dmx-workshop\dmxworkshop.exe O87 - FAEL: "UDP Query User{573CD1B6-01F6-4EC0-BC84-2D6C42B09F00}C:\program files (x86)\artistic licence\dmx-workshop\dmxworkshop.exe" | In - Public - P17 - TRUE | .(.Artistic Licence Holdings Ltd - Pas de description.) -- C:\program files (x86)\artistic licence\dmx-workshop\dmxworkshop.exe O87 - FAEL: "TCP Query User{A9E21742-D7F2-4B14-A9B3-AB147E3A5B2D}C:\program files (x86)\artistic licence\dmx-workshop\sdk\binary\bwtest.exe" | In - Public - P6 - TRUE | .(.Artistic Licence Holdings - Pas de description.) -- C:\program files (x86)\artistic licence\dmx-workshop\sdk\binary\bwtest.exe O87 - FAEL: "UDP Query User{00470CBF-669A-414D-8EBD-1B786E5FB6BB}C:\program files (x86)\artistic licence\dmx-workshop\sdk\binary\bwtest.exe" | In - Public - P17 - TRUE | .(.Artistic Licence Holdings - Pas de description.) -- C:\program files (x86)\artistic licence\dmx-workshop\sdk\binary\bwtest.exe O87 - FAEL: "{40B599F5-D416-42EA-8B05-D00D01B308F1}" | In - None - P6 - TRUE | .(.BitTorrent Inc. - µTorrent.) -- C:\Users\yannick\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent O87 - FAEL: "{16D65C01-EF19-404B-B980-B7337F73DBF0}" | In - None - P17 - TRUE | .(.BitTorrent Inc. - µTorrent.) -- C:\Users\yannick\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent O87 - FAEL: "{4AF18947-0E15-468D-8F08-966CE974867F}" | In - Private - P6 - TRUE | .(.Dropbox, Inc. - Dropbox.) -- C:\Users\yannick\AppData\Roaming\Dropbox\bin\Dropbox.exe =>.Dropbox O87 - FAEL: "{A02C8AEB-BC70-481B-A452-EC55D5E3FCA0}" | In - Private - P17 - TRUE | .(.Dropbox, Inc. - Dropbox.) -- C:\Users\yannick\AppData\Roaming\Dropbox\bin\Dropbox.exe =>.Dropbox O87 - FAEL: "TCP Query User{FEE7AEA7-6613-4FB0-B242-58E73DA894CC}C:\users\yannick\appdata\roaming\dropbox\bin\dropbox.exe" | In - Public - P6 - TRUE | .(.Dropbox, Inc. - Dropbox.) -- C:\users\yannick\appdata\roaming\dropbox\bin\dropbox.exe =>.Dropbox O87 - FAEL: "UDP Query User{BB5C7542-EED8-4875-B290-946083CA4785}C:\users\yannick\appdata\roaming\dropbox\bin\dropbox.exe" | In - Public - P17 - TRUE | .(.Dropbox, Inc. - Dropbox.) -- C:\users\yannick\appdata\roaming\dropbox\bin\dropbox.exe =>.Dropbox O87 - FAEL: "{1248A220-6B13-4FB3-B406-1472B1C68E8F}" | In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe O87 - FAEL: "{BC9655E2-3517-4B49-9977-E7678FC517F8}" | In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe O87 - FAEL: "TCP Query User{ECB9810B-B19F-4EAC-97EA-FC85C4F26DE2}C:\program files (x86)\internet explorer\iexplore.exe" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Internet Explorer.) -- C:\program files (x86)\internet explorer\iexplore.exe O87 - FAEL: "UDP Query User{CEABAD44-650C-496F-A094-2BE8ACD04CC9}C:\program files (x86)\internet explorer\iexplore.exe" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Internet Explorer.) -- C:\program files (x86)\internet explorer\iexplore.exe O87 - FAEL: "TCP Query User{D3D98D76-FC68-4FF7-AF47-211E7423806B}C:\program files (x86)\artistic licence\dmx-workshop\sdk\examples\borland c++builder\fader panel\faderpanel.exe" | In - Private - P6 - TRUE | .(...) -- C:\program files (x86)\artistic licence\dmx-workshop\sdk\examples\borland c++builder\fader panel\faderpanel.exe O87 - FAEL: "UDP Query User{4B2E4EC8-30A6-462B-AF35-E81FE2240CE5}C:\program files (x86)\artistic licence\dmx-workshop\sdk\examples\borland c++builder\fader panel\faderpanel.exe" | In - Private - P17 - TRUE | .(...) -- C:\program files (x86)\artistic licence\dmx-workshop\sdk\examples\borland c++builder\fader panel\faderpanel.exe ~ Firewall: 277 Scanned in 00mn 03s ---\\ Enumère les codes produits des logiciels (PUC) (O90) O90 - PUC: "084CFEF9D35CBD743A257738A9290537" . (.Advanced IP Scanner 2.3.) -- C:\WINDOWS\Installer\{9FEFC480-C53D-47DB-A352-77839A925073}\MainExecutableIcon O90 - PUC: "098CCE33084C42149BB5AB630E521B02" . (.FrameFox Extensions 1.0.7.0.) -- C:\WINDOWS\Installer\{33ECC890-C480-4124-B95B-BA36E025B120}\FrameFox.ico =>PUP.FrameFox O90 - PUC: "11C1680C66BE4B44C9C6E623F89A0FB0" . (.DMX-Workshop including Art-Net, sACN and KiNet drivers.) -- C:\WINDOWS\Installer\{C0861C11-EB66-44B4-9C6C-6E328FA9F00B}\ARPPRODUCTICON.exe O90 - PUC: "13CB47B4353BF8B4C8EBAD4BFF23F61F" . (.sysTPL.) -- C:\Windows\Installer\{4B74BC31-B353-4B8F-8CBE-DAB4FF326FF1}\default_1.exe O90 - PUC: "16B3DA692EAE2E11E9278BCAF689CC3E" . (.Google Earth.) -- C:\WINDOWS\Installer\{96AD3B61-EAE2-11E2-9E72-B8AC6F98CCE3}\ARPPRODUCTICON.exe O90 - PUC: "19A620C6F04632A4B886505D98CCF681" . (.Microsoft SQL Server 2012 Express LocalDB .) -- C:\WINDOWS\Installer\{6C026A91-640F-4A23-8B68-05D589CC6F18}\ARPIco O90 - PUC: "1C006203FDB61DF43190419892CC3158" . (.Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology.) -- C:\WINDOWS\Installer\{302600C1-6BDF-4FD1-1309-148929CC1385}\IntelBluetoothICO O90 - PUC: "1D034B0FAA6BD374B960AAD30DF10D8B" . (.Microsoft SQL Server 2005 Compact Edition [ENU].) -- C:\Windows\Installer\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}\ProductIcon O90 - PUC: "299864A5111C0524E908BD44D65DD07F" . (.Martin Driver Package.) -- C:\WINDOWS\Installer\{5A468992-C111-4250-9E80-DB446DD50DF7}\ARPPRODUCTICON.exe O90 - PUC: "2A566D94A2C4E674A98BCF4C525F62CF" . (.Microsoft SQL Server 2012 Native Client .) -- C:\WINDOWS\Installer\{49D665A2-4C2A-476E-9AB8-FCC425F526FC}\ARPIco O90 - PUC: "2B0163E6D0340BE4183EB2758E9BEDD8" . (.Bonjour.) -- C:\WINDOWS\Installer\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}\Bonjour.ico O90 - PUC: "2D6F4B0BEA2FA1544969F6F2A698B723" . (.PowerDirector.) -- C:\Windows\Installer\{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}\ARPPRODUCTICON.exe O90 - PUC: "34859558E027443428011FCAEA784B95" . (.LibreOffice 4.0.6.2.) -- C:\Windows\Installer\{85595843-720E-4344-8210-F1ACAE87B459}\soffice.ico O90 - PUC: "3C5CF1EF90A6F3D40B48A62588FA8E9F" . (.QuickEngine.) -- C:\Windows\Installer\{FE1FC5C3-6A09-4D3F-B084-6A5288AFE8F9}\softwareinstaller.exe O90 - PUC: "42C6FBF1Df1C10144AB2C065F4E9E897" . (.Media Suite.) -- C:\Windows\Installer\{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}\ARPPRODUCTICON.exe O90 - PUC: "46B5A9879DD95AB419A50FCFA0B1B7EF" . (.Apple Software Update.) -- C:\WINDOWS\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\Installer.ico =>.Apple Inc O90 - PUC: "52BCD40A040753943AD0E8A098A3FBD2" . (.iTunes.) -- C:\WINDOWS\Installer\{A04DCB25-7040-4935-A30D-8E0A893ABF2D}\Installer.ico O90 - PUC: "5A440F64B8EC691489E4B56D25E563D1" . (.Apple Application Support.) -- C:\WINDOWS\Installer\{46F044A5-CE8B-4196-984E-5BD6525E361D}\WinInstall.ico O90 - PUC: "68AB67CA7DA76301B744BA0000000010" . (.Adobe Reader XI (11.0.05) - Français.) -- C:\Windows\Installer\{AC76BA86-7AD7-1036-7B44-AB0000000001}\SC_Reader.ico O90 - PUC: "6A95AB110B3208F4E90C0057ACC4DAE5" . (.CodeMeter Runtime Kit v5.00b.) -- C:\WINDOWS\Installer\{11BA59A6-23B0-4F80-9EC0-0075CA4CAD5E}\CodeMeter.ico O90 - PUC: "762147E1B45FA3B47A6BD1A151E683E5" . (.Intel(R) My WiFi Dashboard.) -- C:\Windows\Installer\{1E741267-F54B-4B3A-A7B6-1D1A156E385E}\ARPPRODUCTICON.exe O90 - PUC: "78987CF4F7914F24AB8434E148C9654F" . (.Martin M-Series.) -- C:\WINDOWS\Installer\{4FC78987-197F-42F4-BA48-431E849C56F4}\ARPPRODUCTICON.exe O90 - PUC: "807C395153554A74C8F08F4DEBB25406" . (.Logiciel Intel® PROSet/Wireless WiFi.) -- C:\Windows\Installer\{1593C708-5535-47A4-8C0F-F8D4BE2B4560}\ARPPRODUCTICON.exe O90 - PUC: "8161401F6BD35D147A105C390F587080" . (.LibreOffice 4.0 Help Pack (French).) -- C:\Windows\Installer\{F1041618-3DB6-41D5-A701-C593F0850708}\soffice.ico O90 - PUC: "81B68BE8BD83D2A45895536B1DCEA3A0" . (.DraftSight x64.) -- C:\WINDOWS\Installer\{8EB86B18-38DB-4A2D-8559-35B6D1EC3A0A}\ARPPRODUCTICON.exe O90 - PUC: "A929A4608ED4FC049A10DB041CE4D452" . (.PDF Architect.) -- C:\WINDOWS\Installer\{064A929A-4DE8-40CF-A901-BD40C14E4D25}\main_icon O90 - PUC: "ABFAB76BF9C4AF84496939E3B3520544" . (.QuickTime.) -- C:\WINDOWS\Installer\{B67BAFBA-4C9F-48FA-9496-933E3B255044}\Installer.ico O90 - PUC: "B2528A102AC6E9A48BD7ADCF5F6D11AB" . (.Dell Update.) -- C:\WINDOWS\Installer\{01A8252B-6CA2-4A9E-B87D-DAFCF5D611BA}\dnd.ico O90 - PUC: "C971C95CD8669A946BAE1012CCCF2134" . (.LabelPrint.) -- C:\Windows\Installer\{C59C179C-668D-49A9-B6EA-0121CCFC1243}\ARPPRODUCTICON.exe O90 - PUC: "D7314F9862C648A4DB8BE2A5B47BE100" . (.Microsoft Silverlight.) -- c:\WINDOWS\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ARPIcon O90 - PUC: "D84D78A2FDF3df1479DC1A3E07FEFF2E" . (.Power2Go.) -- C:\Windows\Installer\{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}\ARPPRODUCTICON.exe O90 - PUC: "DB84369BD0B63E24081BAF768160B7EF" . (.Dell Digital Delivery.) -- c:\WINDOWS\Installer\{B96348BD-6B0D-42E3-80B1-FA6718067BFE}\cloud.ico O90 - PUC: "DE532CED4A8571542A874CE1D8EABAB3" . (.PowerDVD.) -- C:\Windows\Installer\{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}\ARPPRODUCTICON.exe O90 - PUC: "E757FC781F1C22D468C5006C59B02585" . (.Quickset64.) -- c:\Windows\Installer\{87CF757E-C1F1-4D22-865C-00C6950B5258}\ARPPRODUCTICON.exe O90 - PUC: "E78D5FE2DB7BF85448824E0D8B4B6EC5" . (.Apple Mobile Device Support.) -- C:\WINDOWS\Installer\{2EF5D87E-B7BD-458F-8428-E4D0B8B4E65C}\Installer.ico O90 - PUC: "FC98277E9B21BAC44AE9EFEA49F7D459" . (.Intel(R) PROSet/Wireless for Bluetooth(R) + High Speed.) -- C:\Windows\Installer\{E77289CF-12B9-4CAB-A49E-FEAE947F4D95}\IntelBluetoothICO ~ Update Products: 102 Scanned in 00mn 00s ---\\ Enumère les données de la clé NameSpace (MNS) (O92) O92 - MNS: - {1CF1260C-4DD0-4ebb-811F-33C572699FDE} O92 - MNS: - {374DE290-123F-4565-9164-39C4925E467B} O92 - MNS: - {3ADD1653-EB32-4cb0-BBD7-DFA0ABB5ACCA} O92 - MNS: - {A0953C92-50DC-43bf-BE83-3742FED03C9C} O92 - MNS: - {A8CDFF1C-4878-43be-B5FD-F8091C1C60D0} O92 - MNS: - {B4BFCC3A-DB2C-424C-B029-7FE99A87C641} ~ MNS: 6 Scanned in 00mn 00s ---\\ Recherche des packages WindowsInstaller (WIS) (O93) (NTFS) [MD5.E2A6908C31747CD2A1872C2B5D3A6F1A] [WIS][30/10/2013] (.Chris Kennedy - MagicQ PC.) -- C:\Windows\Installer\127dd5.msi [52548096] [MD5.CB70C99DC9309AAD6841A8F5A28E2607] [WIS][12/05/2012] (.Google, Inc. - Google SketchUp 8 Installer.) -- C:\Windows\Installer\15e06c.msi [50302976] [MD5.3F17243E130D7E45AB7A55C0B8EBB54F] [WIS][14/05/2013] (.WIBU-SYSTEMS AG - CodeMeter Runtime Installer.) -- C:\Windows\Installer\1889fee6.msi [7122944] [MD5.B7F2BBE41C4237194FAE0DFD4B726033] [WIS][08/11/2013] (.Martin Professional A/S - DriverPackage.) -- C:\Windows\Installer\1889feea.msi [6242816] [MD5.C1361F3DBE5AA5A138ACE187909A161E] [WIS][08/11/2013] (.Martin Professional A/S - Mx.) -- C:\Windows\Installer\1889ff1e.msi [107375616] [MD5.A7A4DB0BD34B5B482EF199F6E1A17A1A] [WIS][28/10/2013] (.Tlapia - sysTPL.) -- C:\Windows\Installer\1be668.msi [1860608] [MD5.BFAFAA611B419E750AE402BF48185E13] [WIS][09/10/2013] (.Tlapia - QuickEngine.) -- C:\Windows\Installer\1be66c.msi [962560] [MD5.1317C67C874E14AEC2B0430C4EA820E5] [WIS][28/11/2013] (.Artistic Licence - DMX-Workshop & Art-Net 3 Suite.) -- C:\Windows\Installer\2832830c.msi [7487488] [MD5.4E56C59FF00561F735156B5EBC4B9840] [WIS][14/11/2013] (.MetaGeek, LLC - inSSIDer 3.) -- C:\Windows\Installer\2ba217.msi [6639616] [MD5.09C0A82DBFE03EA3371A73609D678285] [WIS][28/10/2013] (.The Software Group - Software Update Helper.) -- C:\Windows\Installer\2e882e.msi [45056] =>Adware.Boxore [MD5.C133F19570415BEC44B8403A15BD4E9A] [WIS][29/04/2011] (.Builds the Destinations MSI - Builds the Destinations MSI.) -- C:\Windows\Installer\37abec3.msi [523776] [MD5.B9541D65059FF98549B0E887B6B7D908] [WIS][05/09/2013] (.Dassault Systemes - Dassault Systemes DWG document editor.) -- C:\Windows\Installer\3bdef66.msi [9402768] [MD5.758633B2268060FF2393156652F9E2FB] [WIS][01/07/2013] (.Famatech - Advanced IP Scanner.) -- C:\Windows\Installer\3c1c8f.msi [5947392] [MD5.BE826B897C243DFF4DE51FAC4B8B728D] [WIS][14/02/2013] (.PC-Doctor, Inc. - DSC/AA Factory Installer.) -- C:\Windows\Installer\7996f.msi [286720] [MD5.5FF2B0F7835519063800D9F2DB535131] [WIS][20/11/2013] (.QwertyBox Team - FrameFox Extensions 1.0.7.0 Setup.) -- C:\Windows\Installer\c62ef7.msi [417792] =>PUP.FrameFox [MD5.5DE888E9D265586DE818D263542C5632] [WIS][02/11/2013] (.pdfforge GmbH - PDF Architect Installer.) -- C:\Windows\Installer\dda75.msi [51445760] ~ WIS: 103 Scanned in 00mn 13s ---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) SS - | Demand 10/12/2013 257416 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe SS - | Demand 21/12/2013 279000 | (cphs) . (.Intel Corporation.) - C:\Windows\SysWow64\IntelCpHeciSvc.exe SS - | Demand 18/09/2013 1273208 | (DMXGenerator) . (...) - C:\Program Files (x86)\Martin Professional\Maxxyz\Binaries\GeneratorService.exe SS - | Demand 18/09/2013 1274744 | (DMXSender) . (.Martin Professional.) - C:\Program Files (x86)\Martin Professional\Maxxyz\Binaries\DMXSenderService.exe SS - | Demand 04/11/2013 1431888 | (FLEXnet Licensing Service 64) . (.Flexera Software, Inc..) - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe SS - | Auto 30/10/2013 116648 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe SS - | Demand 30/10/2013 116648 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe SS - | Demand 18/09/2013 504704 | (MaxExtMidi) . (...) - C:\Program Files (x86)\Martin Professional\Maxxyz\Binaries\MaxExtMidiService.exe SS - | Demand 18/09/2013 18288 | (MAXNETCITPService) . (.R&D International NV.) - C:\Program Files (x86)\Martin Professional\Maxxyz\Binaries\CITPService.exe SS - | Demand 18/09/2013 24440 | (MAXNetService) . (.R&D International NV.) - C:\Program Files (x86)\Martin Professional\Maxxyz\Binaries\MAXNetService.exe SS - | Demand 18/09/2013 2485112 | (MaxxyzConsole) . (.R&D International NV.) - C:\Program Files (x86)\Martin Professional\Maxxyz\Binaries\MaxxyzConsole.exe SS - | Demand 18/09/2013 549240 | (MaxxyzSharedMemManager) . (...) - C:\Program Files (x86)\Martin Professional\Maxxyz\Binaries\MaxMemManager.exe SS - | Demand 20/11/2013 119408 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe SS - | Demand 18/09/2013 1972072 | (MxMemory) . (.R&D International NV.) - C:\Program Files (x86)\Martin Professional\Maxxyz\Binaries\MxMemory.exe SS - | Demand 24/09/2012 272176 | (MyWiFiDHCPDNS) . (...) - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe SS - | Auto 22/08/2013 37768 | C:\Windows\System32\HPZinw12.dll (Net Driver HPZ12) . (.Hewlett-Packard.) - C:\Windows\System32\svchost.exe SS - | Demand 04/02/2013 155824 | (Sony PC Companion) . (.Avanquest Software.) - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe SS - | Auto 10/07/1658 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation SS - | Auto 22/08/2013 37768 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe SR - | Auto 05/09/2013 65640 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe SR - | Auto 13/09/2012 731688 | (AMPPALR3) . (.Intel Corporation.) - C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe SR - | Auto 07/09/2013 55624 | (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe SR - | Auto 26/08/2013 1137016 | (Bluetooth Device Monitor) . (.Motorola Solutions, Inc..) - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe SR - | Auto 26/08/2013 1157496 | (Bluetooth OBEX Service) . (.Motorola Solutions, Inc..) - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe SR - | Auto 30/08/2011 462184 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe SR - | Auto 15/08/2012 135984 | (BTHSSecurityMgr) . (.Intel(R) Corporation.) - C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe SR - | Auto 14/05/2013 2926456 | (CodeMeter.exe) . (.WIBU-SYSTEMS AG.) - C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe SR - | Auto 12/11/2013 196616 | (DellDigitalDelivery) . (.Dell Products, LP..) - c:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe SR - | Auto 12/12/2013 147960 | (DellUpdate) . (.Dell Inc..) - C:\Program Files (x86)\Dell Update\DellUpService.exe SR - | Auto 30/08/2013 123392 | (DraftSight API Service) . (.Dassault Systèmes.) - C:\Program Files\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe SR - | Auto 24/09/2012 617776 | (EvtEng) . (.Intel(R) Corporation.) - C:\Program Files\Intel\WiFi\bin\EvtEng.exe SR - | Demand 22/08/2013 37768 | C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll (hpqcxs08) . (.Hewlett-Packard Co..) - C:\Windows\System32\svchost.exe SR - | Auto 22/08/2013 37768 | C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll (hpqddsvc) . (.Hewlett-Packard Co..) - C:\Windows\System32\svchost.exe SR - | Auto 22/08/2013 37768 | C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.dll (HPSLPSVC) . (.Hewlett-Packard Co..) - C:\Windows\System32\svchost.exe SR - | Auto 05/03/2013 15344 | (IAStorDataMgrSvc) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe SR - | Auto 08/09/2012 2464400 | (IconMan_R) . (.Realsil Microelectronics Inc..) - C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe SR - | Auto 20/04/2012 635104 | (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe SR - | Auto 18/09/2013 157128 | (Intel(R) Wireless Bluetooth(R) 4.0 Radio Management) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe SR - | Demand 23/10/2013 641352 | (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe SR - | Auto 20/07/2012 193576 | (irstrtsv) . (.Intel Corporation.) - C:\Windows\SysWOW64\irstrtsv.exe SR - | Auto 25/06/2012 166720 | (jhi_service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe SR - | Auto 17/07/2012 277824 | (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe SR - | Auto 04/04/2013 418376 | (MBAMScheduler) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe SR - | Auto 04/04/2013 701512 | (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe SR - | Auto 08/04/2013 1320496 | (PDF Architect Helper Service) . (.pdfforge GmbH.) - C:\Program Files (x86)\PDF Architect\HelperService.exe SR - | Auto 08/04/2013 799280 | (PDF Architect Service) . (.pdfforge GmbH.) - C:\Program Files (x86)\PDF Architect\ConversionService.exe SR - | Auto 22/08/2013 37768 | C:\Windows\System32\HPZipm12.dll (Pml Driver HPZ12) . (.Hewlett-Packard.) - C:\Windows\System32\svchost.exe SR - | Auto 24/09/2012 149296 | (RegSrvc) . (.Intel(R) Corporation.) - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe SR - | Auto 25/04/2012 254512 | (RichVideo) . (...) - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe SR - | Auto 10/10/2013 1915408 | (SftService) . (.SoftThinks SAS.) - C:\Program Files (x86)\Dell Backup and Recovery\sftservice.exe SR - | Auto 24/07/2012 321536 | (STacSV) . (.IDT, Inc..) - C:\Program Files\IDT\WDM\STacSV64.exe SR - | Auto 10/12/2013 395888 | (sysTPLMonitor.exe) . (.Tlapia.) - C:\Program Files (x86)\sysTPL\sysTPLMonitor.exe SR - | Auto 10/12/2013 394352 | (sysTPLService.exe) . (.Tlapia.) - C:\Program Files (x86)\sysTPL\sysTPLService.exe SR - | Auto 17/07/2012 365376 | (UNS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe SR - | Demand 10/07/1658 0 | (WdNisSvc) . (...) - C:\Program Files (x86)\Windows Defender\NisSrv.exe SR - | Auto 10/07/1658 0 | (WinDefend) . (...) - C:\Program Files (x86)\Windows Defender\MsMpEng.exe SR - | Auto 24/09/2012 1153840 | (ZeroConfigService) . (.Intel® Corporation.) - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe ~ Services: Scanned in 00mn 15s ---\\ Recherche d'infection sur le Master Boot Record (MBR)(O80) Run by yannick at 07/01/2014 14:29:59 ~ OS 64 not supported by MBR tool ~ MBR: 0 Scanned in 00mn 00s ---\\ Recherche d'infection sur le Master Boot Record (MBRCheck)(O80) Written by ad13, http://ad13.geekstog Run by yannick at 07/01/2014 14:30:01 ********* Dump file Name ********* C:\PhysicalDisk0_MBR.bin ~ MBR: Scanned in 00mn 02s ---\\ Scan Additionnel (O88) Database Version : 13018 - (02/01/2014) Clés trouvées (Keys found) : 10 Valeurs trouvées (Values found) : 3 Dossiers trouvés (Folders found) : 2 Fichiers trouvés (Files found) : 4 [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\fst_fr_10_is1] =>Adware.FreeSoftToday^ [HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\uTorrent] =>P2P.BitTorrent^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\1C875DDE39636004CA8CDAEC335B4160] =>Adware.PredictAd [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375] =>PUP.Tarma [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5] =>PUP.Tarma [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\38D5CDD0A851B3940A43CC50ABBA251C] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AAC05EAA51DC78A41A1DCE3B31038584] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BA71D41F6CC0B6247B05D473850A8AEA] =>Adware.Boxore^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA0054A5AB3EFFE4CB5660E44A1E7DCC] =>Adware.Boxore^ [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:uTorrent =>P2P.BitTorrent^ C:\Users\yannick\AppData\Roaming\uTorrent =>P2P.µTorrent^ C:\Users\yannick\AppData\Local\Software =>Adware.Boxore C:\Users\yannick\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent^ [HKCU\Software\BitTorrent] =>P2P.BitTorrent^ C:\Windows\Installer\2e882e.msi =>Adware.Boxore^ C:\Windows\Installer\c62ef7.msi =>PUP.FrameFox^ ~ Additionnel Scan: 377955 Items scanned in 00mn 17s ---\\ Récapitulatif des détections trouvées sur votre station ~ http://nicolascoolman.webs.com/apps/blog/show/27232411-hijacker-proxy =>Hijacker.Proxy ~ http://nicolascoolman.webs.com/apps/blog/show/29507721-toolbar-conduit =>Toolbar.Conduit ~ http://nicolascoolman.webs.com/apps/blog/show/26626977-adware-boxore =>Adware.Boxore ~ http://nicolascoolman.webs.com/apps/blog/show/33340107-adware-freesofttoday =>Adware.FreeSoftToday ~ http://nicolascoolman.webs.com/apps/blog/show/27146838-adware-mywebsearch =>Adware.MyWebSearch ~ http://nicolascoolman.webs.com/apps/blog/show/32789922-pup-framefox =>PUP.FrameFox ~ http://nicolascoolman.webs.com/apps/blog/show/27229962-adware-predictad =>Adware.PredictAd ~ http://nicolascoolman.webs.com/apps/blog/show/29637859-toolbar-tarma =>PUP.Tarma ~ MSI: 8 link(s) detected in 00mn 17s End of the scan (2299 lines in 19mn 46s)(0)