cjoint

Publicité

Priorité au Logiciel Libre! Je soutiens l'April.

Publicité

Priorité au Logiciel Libre! Je soutiens l'April.

Format du document : text/plain

Prévisualisation

Rapport de ZHPDiag v2013.4.16.93 par Nicolas Coolman, Update du 16/04/2013
Run by thierry at 17/04/2013 23:34:02
State : Version � jour.
WhiteList : Disable
High Elevated Privileges : OK
UAC : Deactivate by program


---\\ Web Browser
MSIE: Internet Explorer v10.0.9200.16540
MFIE: Mozilla Firefox 20.0.1 v20.0.1 (Defaut)

---\\ Windows Product Information
~ Langage: Fran�ais
Windows 8 Business Edition, 64-bit (Build 9200)
Windows Server License Manager Script : OK
~ ion : Windows(R) Operating System, RETAIL channel
Windows ID Activation : OK
~ Windows Partial Key : QGJXV
Windows License : OK
~ Windows Remaining Initializations Number : 1000
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ System Protection
avast! Free Antivirus v8.0.1483.0
Malwarebytes Anti-Malware version 1.75.0.1300
Windows Defender W8

---\\ System Optimizer

---\\ Software Update
Adobe Flash Player 11 Plugin
Adobe Reader XI
Java 7 Update 21

---\\ System Information
~ Processor: Intel64 Family 6 Model 23 Stepping 10, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 4090 MB (68% free)
System Restore: Activ� (Enable)
System drive C: has 152 GB (81%) free of 186 GB

---\\ Logged in mode
~ Computer Name: PC-SALON
~ User Name: thierry
~ All Users Names: UpdatusUser, thierry, HomeGroupUser$, Administrateur,
~ Unselected Option: None
Logged in as Administrator

---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\thierry\AppData\Roaming\
~ %Desktop% : C:\Users\thierry\Desktop\
~ %Favorites% : C:\Users\thierry\Favorites\
~ %LocalAppData% : C:\Users\thierry\AppData\Local\
~ %StartMenu% : C:\Users\thierry\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 152 Go of 186 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 220 Go of 266 Go)
E:\ CD-ROM drive (Not Inserted)



---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Security Center: Scanned in 00mn 00s



---\\ Recherche particuli�re de fichiers g�n�riques
[MD5.E13A31D5254C25406A7946BDD9B06364] - (.Microsoft Corporation - Explorateur Windows.) (.11/10/2012 - 08:35:16.) -- C:\Windows\Explorer.exe [2380944]
[MD5.FE9AB232B56A12224E8A3F3F9878C9A3] - (.Microsoft Corporation - Application de d�marrage de Windows.) (.26/07/2012 - 04:08:50.) -- C:\Windows\System32\Wininit.exe [132608]
[MD5.753C0848AE7872A3F59663078A517293] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.21/02/2013 - 11:15:07.) -- C:\Windows\System32\wininet.dll [2240512]
[MD5.BCF2036A0DD579E47C008C133550283E] - (.Microsoft Corporation - Application d�ouverture de session Windows.) (.11/10/2012 - 06:46:58.) -- C:\Windows\System32\Winlogon.exe [517120]
[MD5.9448F5740A037EC0C18F0E9177232DD0] - (.Microsoft Corporation - Biblioth�que de licences.) (.26/07/2012 - 04:07:20.) -- C:\Windows\System32\sppcomapi.dll [273408]
[MD5.36D6A3201721558A8AFBCC09C2DA4C2C] - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) (.06/11/2012 - 04:53:44.) -- C:\Windows\system32\Drivers\AFD.sys [560640]
[MD5.A721FF570C2387E383BDDEA9632863C9] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.26/07/2012 - 06:00:48.) -- C:\Windows\system32\Drivers\atapi.sys [25840]
[MD5.990B1BABE6E81FB18E65A87EBEFB1772] - (.Microsoft Corporation - CD-ROM File System Driver.) (.26/07/2012 - 03:30:10.) -- C:\Windows\system32\Drivers\Cdfs.sys [108544]
[MD5.339BFF85D788268752DA8C9644B188EE] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.26/07/2012 - 03:26:36.) -- C:\Windows\system32\Drivers\Cdrom.sys [174080]
[MD5.09D9EB9E7898F8E6561473A20CC808B9] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.26/07/2012 - 03:26:53.) -- C:\Windows\system32\Drivers\DfsC.sys [118784]
[MD5.7D87B5B6C7188D553E11B59DC7F0B111] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.20/09/2012 - 07:08:44.) -- C:\Windows\system32\Drivers\HDAudBus.sys [71168]
[MD5.C9E9CBF73AFFBFE3E801EFB516787BA3] - (.Microsoft Corporation - Pilote de port i8042.) (.26/07/2012 - 03:28:51.) -- C:\Windows\system32\Drivers\i8042prt.sys [112640]
[MD5.3969B9C218DD3FAA9F4ED2FFC3651C02] - (.Microsoft Corporation - IP Network Address Translator.) (.26/07/2012 - 03:23:01.) -- C:\Windows\system32\Drivers\IpNat.sys [145920]
[MD5.93179D48066918323628CB016D8C94DC] - (.Microsoft Corporation - Minirdr SMB Windows NT.) (.05/02/2013 - 23:29:09.) -- C:\Windows\system32\Drivers\MRxSmb.sys [370688]
[MD5.7CEC25C682D319D484630B3952C31A11] - (.Microsoft Corporation - MBT Transport driver.) (.26/07/2012 - 03:24:28.) -- C:\Windows\system32\Drivers\netBT.sys [331776]
[MD5.76929F4A69E425911A63B407E26C2589] - (.Microsoft Corporation - Pilote du syst�me de fichiers NT.) (.02/02/2013 - 11:54:54.) -- C:\Windows\system32\Drivers\ntfs.sys [1933544]
[MD5.4563DAF8C6A740AD7F501E219BD10766] - (.Microsoft Corporation - Pilote de port parall�le.) (.26/07/2012 - 03:29:53.) -- C:\Windows\system32\Drivers\Parport.sys [105984]
[MD5.A14D625C5AEE5FFE0F47D1A1D419FAAE] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.26/07/2012 - 03:23:17.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [124928]
[MD5.B2A3AD74FF2E2FFA73AF2567108231B3] - (.Microsoft Corporation - Redirecteur de p�riph�rique de Microsoft RDP.) (.26/07/2012 - 03:25:18.) -- C:\Windows\system32\Drivers\rdpdr.sys [179712]
[MD5.73DC722CE5DF26D7638CE2446F2655C7] - (.Microsoft Corporation - TDI Translation Driver.) (.26/07/2012 - 06:26:47.) -- C:\Windows\system32\Drivers\tdx.sys [117248]
[MD5.2FB3CDFD5EAF4CD9D4AFAF96877D13AE] - (.Microsoft Corporation - Pilote de clich� instantan� du volume.) (.26/07/2012 - 05:57:09.) -- C:\Windows\system32\Drivers\volsnap.sys [332016]
~ Generic Processes: Scanned in 00mn 00s



---\\ Etat des fichiers cach�s (Cach�/Total)
~ Mes images (My Pictures) : 1/561
~ Mes Favoris (My Favorites) : 1/3
~ Mes Documents (My Documents) : 1/43
~ Mon Bureau (My Desktop) : 1/4
~ Menu demarrer (Programs) : 1/21
~ Hidden Files: Scanned in 00mn 00s



---\\ Processus lanc�s
[MD5.D1D5DAB39DCB4BE0359943738D87409B] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe [532040] [PID.2440]
[MD5.8EEFD0B92F46B6762A5EC41EF55F7043] - (.TomTom - System Tray application for TomTom HOME.) -- C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe [248208] [PID.3592]
[MD5.8651F84ECBE5687A6628F1062300608C] - (.CyberLink - DMREngine.) -- C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMR\PowerDVD12DMREngine.exe [501544] [PID.4900]
[MD5.A85FC1E02EBD2039A272DC6C22279DF3] - (.CyberLink Corp. - PowerDVD 12.) -- C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12Agent.exe [371256] [PID.4116]
[MD5.148C545849C1379A3D4448F5DE768E86] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe [4767304] [PID.4488]
[MD5.DC79F4167BF4067CC0F2C72E4E6040B3] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [6808576] [PID.2180]
~ Processes Running: Scanned in 00mn 01s



---\\ Google Chrome, D�marrage,Recherche,Extensions (G0,G1,G2)
C:\Users\thierry\AppData\Local\Google\Chrome\User Data\Default\Preferences
G1 - GCS: Preference [User Data\Default] None
~ Google Browser: Scanned in 00mn 00s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\thierry\AppData\Roaming\Mozilla\Firefox\Profiles\yzq4mcs8.default\prefs.js
M3 - MFPP: Plugins - [thierry] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\amazon-france.xml
M3 - MFPP: Plugins - [thierry] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\bing.xml
M3 - MFPP: Plugins - [thierry] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml
M3 - MFPP: Plugins - [thierry] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\eBay-france.xml
M3 - MFPP: Plugins - [thierry] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\google.xml
M3 - MFPP: Plugins - [thierry] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\wikipedia-fr.xml
M3 - MFPP: Plugins - [thierry] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\yahoo-france.xml
M0 - MFSP: prefs.js [thierry - yzq4mcs8.default] www.msn.fr
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF64_11_6_602_180.dll
P2 - FPN: [HKLM] [@ma-config.com/HardwareDetection] - (.Cybelsoft - Plugin NPAPI Ma-Config.com # win64 # 6.5.1.1.) -- C:\Program Files\ma-config.com\x64\nphardwaredetection.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.20125.0.) -- C:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll
P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Users\thierry\AppData\Local\Google\Update\1.3.21.135\npGoogleUpdate3.dll
P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Users\thierry\AppData\Local\Google\Update\1.3.21.135\npGoogleUpdate3.dll
~ Firefox Browser: 13 Scanned in 00mn 00s



---\\ Internet Explorer, D�marrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (10.00.9200.16384 (win8_rtm.120725-1247)) -- C:\Windows\SysWOW64\ieframe.dll
~ IE Browser: 10 Scanned in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s



---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File: Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 21



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: AcroIEHelperStub [64Bits] - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! WebRep [64Bits] - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - avast! WebRep Plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
~ BHO: 4 Scanned in 00mn 00s



---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: (no name) [64Bits] - [HKLM]{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} Cl� orpheline
~ Toolbar: Scanned in 00mn 00s



---\\ Applications d�marr�es par registre & par dossier (O4)
O4 - HKCU\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\thierry\AppData\Local\Google\Update\GoogleUpdate.exe
O4 - HKCU\..\Run: [TomTomHOME.exe] . (.TomTom - System Tray application for TomTom HOME.) -- C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe
O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKLM\..\Wow6432Node\Run: [PowerDVD12DMREngine] . (.CyberLink - DMREngine.) -- C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMR\PowerDVD12DMREngine.exe
O4 - HKLM\..\Wow6432Node\Run: [PowerDVD12Agent] . (.CyberLink Corp. - PowerDVD 12.) -- C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12Agent.exe
O4 - HKLM\..\Wow6432Node\Run: [avast] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastUI.exe
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
~ Application: Scanned in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - GS\Desktop: demarrage avanc�e.lnk . (.Microsoft Corporation - Outil d�arr�t et d�annotation Windows.) -- C:\Windows\System32\shutdown.exe
O4 - GS\Desktop: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Users\thierry\AppData\Local\Google\Chrome\Application\chrome.exe
O4 - GS\Desktop: Windows Defender - Raccourci.lnk - Cl� orpheline
~ Global Startup: Scanned in 00mn 00s



---\\ Invisibilit� de l'ic�ne d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ IE Control Panel: 1 Scanned in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d�affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur d�espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d�espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
~ Winsock: 6 Scanned in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{41151A94-7797-40A6-B96F-EA9CE5608ECE}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{41151A94-7797-40A6-B96F-EA9CE5608ECE}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
~ Domain: Scanned in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
~ Protocole Additionnel: Scanned in 00mn 00s



---\\ Cl� de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ SSODL: 1 Scanned in 00mn 00s



---\\ Liste des services NT non Microsoft et non d�sactiv�s (O23)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: avast! Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: CLHNServiceForPowerDVD12 (CLHNServiceForPowerDVD12) . (.CyberLink Corp. - CLHNServiceForPowerDVD12 Module.) - C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMP\CLHNServer\CLHNServiceForPowerDVD12.exe
O23 - Service: CyberLink PowerDVD 12 Media Server Monit (CyberLink PowerDVD 12 Media Server Monitor Service) . (.CyberLink - CyberLink Media Server Monitor Service.) - C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe
O23 - Service: CyberLink PowerDVD 12 Media Server Servi (CyberLink PowerDVD 12 Media Server Service) . (.CyberLink - CyberLink Media Server Service.) - C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: (MBAMScheduler) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 314.2.) - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) . (.NVIDIA Corporation - NVIDIA Settings Update Manager.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) . (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TomTomHOMEService (TomTomHOMEService) . (.TomTom - Windows Service for TomTom HOME.) - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
O23 - Service: Power Control [2013/03/30 22:16:37] ({329F96B6-DF1E-4328-BFDA-39EA953C1312}) . (.CyberLink Corp. - Pas de description.) - C:\Program Files (x86)\CyberLink\PowerDVD12\Common\NavFilter\000.fcl
~ Services: 14 Scanned in 00mn 26s



---\\ Enum�ration Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Desktop Component: 1 Scanned in 00mn 00s



---\\ BootExecute (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ BEX: 1 Scanned in 00mn 00s



---\\ T�ches planifi�es en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Adobe Flash Player Updater.job [1002]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1084]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1088]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1296241625-1542924555-43332839-1001Core.job [1052]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1296241625-1542924555-43332839-1001UA.job [1104]
[MD5.EA856F4A46320389D1899B2CAA7BF40F] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [253656]
[MD5.AB3C4A3667AEAD147F175721D8719B78] [APT] [avast! Emergency Update] (.AVAST Software.) -- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [250248]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [116648]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [116648]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskUserS-1-5-21-1296241625-1542924555-43332839-1001Core] (.Google Inc..) -- C:\Users\thierry\AppData\Local\Google\Update\GoogleUpdate.exe [116648]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskUserS-1-5-21-1296241625-1542924555-43332839-1001UA] (.Google Inc..) -- C:\Users\thierry\AppData\Local\Google\Update\GoogleUpdate.exe [116648]
~ Scheduled Task: 13 Scanned in 00mn 05s



---\\ Composants install�s (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\System32\mscories.dll
~ Active Setup: 9 Scanned in 00mn 00s



---\\ Pilotes lanc�s au d�marrage (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (aswRdr) . (.AVAST Software - avast! WFP Redirect Driver.) - C:\Windows\system32\Drivers\aswrdr2.sys
O41 - Driver: (BasicDisplay) . (.Microsoft Corporation - Microsoft Basic Display Driver.) - C:\Windows\system32\drivers\BasicDisplay.sys
O41 - Driver: (BasicRender) . (.Microsoft Corporation - Microsoft Basic Render Driver.) - C:\Windows\system32\drivers\BasicRender.sys
O41 - Driver: cdrom.inf (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys
O41 - Driver: C:\Windows\System32\cscsvc.dll (CSC) . (.Microsoft Corporation - Windows Client Side Caching Driver.) - C:\Windows\System32\drivers\csc.sys
O41 - Driver: C:\Windows\System32\drivers\dam.sys (dam) . (.Microsoft Corporation - DAM Kernel Driver.) - C:\Windows\System32\drivers\dam.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (Dfsc) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: mssmbios.inf (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: netnb.inf (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: npsvctrig.inf (npsvctrig) . (.Microsoft Corporation - Named pipe service triggers.) - C:\Windows\system32\drivers\npsvctrig.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\system32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-syst�me de mise en m�moire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys
O41 - Driver: C:\Windows\System32\drivers\vwififlt.sys (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\system32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\system32\DRIVERS\wanarp.sys
~ Drivers: 38 Scanned in 00mn 00s



---\\ Logiciels install�s (O42)
O42 - Logiciel: Adobe Flash Player 11 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Reader XI (11.0.02) - Fran�ais - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AB0000000001}
O42 - Logiciel: CyberLink PowerDVD 12 - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}
O42 - Logiciel: CyberLink PowerDVD 12 - (.CyberLink Corp..) [HKLM][64Bits] -- {B46BEA36-0B71-4A4E-AE41-87241643FA0A}
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKCU][64Bits] -- Google Chrome
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Google�Earth - (.Google.) [HKLM][64Bits] -- {468D22C0-8080-11E2-B86E-B8AC6F98CCE3}
O42 - Logiciel: Java 7 Update 21 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83217017FF}
O42 - Logiciel: Ma-Config.com (64 bits) - (.Cybelsoft.) [HKLM][64Bits] -- {01D87A70-4D13-4CBE-8944-A5AD37BE8D8E}
O42 - Logiciel: Malwarebytes Anti-Malware version 1.75.0.1300 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Mises � jour NVIDIA 1.12.12 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update
O42 - Logiciel: Mozilla Firefox 20.0.1 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 20.0.1 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService
O42 - Logiciel: NVIDIA Logiciel syst�me PhysX 9.12.1031 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX
O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM][64Bits] -- {8B922CF8-8A6C-41CE-A858-F1755D7F5D29}
O42 - Logiciel: NVIDIA Pilote 3D Vision 314.22 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision
O42 - Logiciel: NVIDIA Pilote audio HD : 1.3.23.1 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver
O42 - Logiciel: NVIDIA Pilote graphique 314.22 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver
O42 - Logiciel: NVIDIA Stereoscopic 3D Driver - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIAStereo
O42 - Logiciel: Qualcomm Atheros Client Installation Program - (.Qualcomm Atheros.) [HKLM][64Bits] -- {28006915-2739-4EBE-B5E8-49B25D32EB33}
O42 - Logiciel: Skype� 6.2 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}
O42 - Logiciel: Speccy - (.Piriform.) [HKLM][64Bits] -- Speccy
O42 - Logiciel: TomTom HOME - (.Nom de votre soci�t�.) [HKLM][64Bits] -- {EC5F4C1B-F838-4CB7-8561-8F809296428B}
O42 - Logiciel: TomTom HOME Visual Studio Merge Modules - (.TomTom International B.V..) [HKLM][64Bits] -- {8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}
O42 - Logiciel: avast! Free Antivirus v8.0.1483.0 - (.AVAST Software.) [HKLM][64Bits] -- avast
~ Logic: 62 Scanned in 00mn 00s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\Adobe]
[HKCU\Software\AppDataLow\Software\JavaSoft]
[HKCU\Software\AppDataLow]
[HKCU\Software\Avast Software]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Cyberlink]
[HKCU\Software\Google]
[HKCU\Software\IM Providers]
[HKCU\Software\JavaSoft]
[HKCU\Software\Lake]
[HKCU\Software\Macromedia]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\Mine]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\NVIDIA Corporation]
[HKCU\Software\Netscape]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\RegisteredApplications]
[HKCU\Software\Skype]
[HKCU\Software\Trolltech]
[HKCU\Software\Wow6432Node]
[HKCU\Software\ZebHelpProcess Helper]
[HKCU\Software\cybelsoft]
[HKLM\Software\AGEIA Technologies]
[HKLM\Software\ATI Technologies]
[HKLM\Software\Agere]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\IM Providers]
[HKLM\Software\Intel]
[HKLM\Software\Khronos]
[HKLM\Software\LSI]
[HKLM\Software\Macromedia]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\NVIDIA Corporation]
[HKLM\Software\ODBC]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\Wow6432Node\AGEIA Technologies]
[HKLM\Software\Wow6432Node\AVAST Software]
[HKLM\Software\Wow6432Node\Adobe]
[HKLM\Software\Wow6432Node\Atheros]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\CyberLink]
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\IM Providers]
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\JavaSoft]
[HKLM\Software\Wow6432Node\JreMetrics]
[HKLM\Software\Wow6432Node\Khronos]
[HKLM\Software\Wow6432Node\Lake]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware (Trial)]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\NVIDIA Corporation]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\Qualcomm Atheros]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\Skype]
[HKLM\Software\Wow6432Node\SuppHelpDir]
[HKLM\Software\Wow6432Node\cybelsoft]
[HKLM\Software\Wow6432Node\mozilla.org]
[HKLM\Software\Wow6432Node]
[HKLM\Software\cybelsoft]
~ Key Software: 111 Scanned in 00mn 00s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 27/02/2013 - 08:22:36 - [119,658] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 27/02/2013 - 20:07:20 - [0] ----D C:\Program Files (x86)\AGEIA Technologies
O43 - CFD: 17/04/2013 - 23:25:23 - [48,970] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 30/03/2013 - 23:15:06 - [281,547] ----D C:\Program Files (x86)\CyberLink
O43 - CFD: 02/03/2013 - 10:59:32 - [225,181] ----D C:\Program Files (x86)\Google
O43 - CFD: 30/03/2013 - 23:13:23 - [47,002] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 11/04/2013 - 21:59:20 - [4,621] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 17/04/2013 - 23:25:10 - [124,016] ----D C:\Program Files (x86)\Java
O43 - CFD: 15/04/2013 - 17:59:51 - [13,376] ----D C:\Program Files (x86)\Malwarebytes' Anti-Malware
O43 - CFD: 13/03/2013 - 00:13:55 - [40,835] ----D C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 26/07/2012 - 10:12:59 - [0,023] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 12/04/2013 - 18:02:53 - [46,181] ----D C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 12/04/2013 - 18:03:05 - [0,212] ----D C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 12/04/2013 - 18:28:15 - [99,798] ----D C:\Program Files (x86)\NVIDIA Corporation
O43 - CFD: 04/03/2013 - 00:21:30 - [0,036] ----D C:\Program Files (x86)\Qualcomm Atheros
O43 - CFD: 05/03/2013 - 11:18:24 - [17,137] R---D C:\Program Files (x86)\Skype
O43 - CFD: 16/04/2013 - 22:50:33 - [48,348] ----D C:\Program Files (x86)\TomTom HOME 2
O43 - CFD: 27/02/2013 - 23:45:09 - [0,021] ----D C:\Program Files (x86)\TomTom International B.V
O43 - CFD: 22/03/2013 - 23:07:33 - [0,951] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 26/07/2012 - 12:08:59 - [5,466] ----D C:\Program Files (x86)\Windows Mail
O43 - CFD: 27/02/2013 - 23:33:41 - [3,494] ----D C:\Program Files (x86)\Windows Media Player
O43 - CFD: 26/07/2012 - 10:13:01 - [0,209] ----D C:\Program Files (x86)\Windows Multimedia Platform
O43 - CFD: 26/07/2012 - 10:12:59 - [7,243] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 26/07/2012 - 12:08:59 - [5,226] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 26/07/2012 - 10:13:01 - [0,209] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 26/07/2012 - 10:12:59 - [0] -SH-D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 17/04/2013 - 23:34:07 - [16,223] ----D C:\Program Files (x86)\ZHPDiag
O43 - CFD: 27/02/2013 - 08:22:52 - [6,274] ----D C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 27/02/2013 - 23:11:04 - [0] ----D C:\Program Files (x86)\Common Files\CyberLink
O43 - CFD: 17/04/2013 - 23:25:23 - [1,189] ----D C:\Program Files (x86)\Common Files\Java
O43 - CFD: 27/02/2013 - 23:08:41 - [30,043] ----D C:\Program Files (x86)\Common Files\Microsoft Shared
O43 - CFD: 26/07/2012 - 10:13:01 - [0,003] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 05/03/2013 - 11:18:24 - [2,056] ----D C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 26/07/2012 - 12:08:59 - [9,406] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 31/03/2013 - 10:02:31 - [147,185] ----D C:\ProgramData\Adobe
O43 - CFD: 26/07/2012 - 09:22:08 - [0] --H-D C:\ProgramData\Application Data
O43 - CFD: 15/04/2013 - 17:50:46 - [5,165] ----D C:\ProgramData\AVAST Software
O43 - CFD: 26/02/2013 - 23:57:10 - [0] --H-D C:\ProgramData\Bureau
O43 - CFD: 30/03/2013 - 23:19:18 - [0,168] ----D C:\ProgramData\CyberLink
O43 - CFD: 26/07/2012 - 09:22:08 - [0] --H-D C:\ProgramData\Desktop
O43 - CFD: 26/07/2012 - 09:22:08 - [0] --H-D C:\ProgramData\Documents
O43 - CFD: 30/03/2013 - 23:13:23 - [0,277] ----D C:\ProgramData\install_clap
O43 - CFD: 03/03/2013 - 23:43:39 - [1,289] ----D C:\ProgramData\ma-config.com
O43 - CFD: 27/02/2013 - 22:59:03 - [15,861] ----D C:\ProgramData\Malwarebytes
O43 - CFD: 26/02/2013 - 23:57:10 - [0] --H-D C:\ProgramData\Menu D�marrer
O43 - CFD: 17/04/2013 - 22:33:54 - [519,565] -S--D C:\ProgramData\Microsoft
O43 - CFD: 26/02/2013 - 23:57:10 - [0] --H-D C:\ProgramData\Mod�les
O43 - CFD: 27/02/2013 - 00:51:03 - [0,013] ----D C:\ProgramData\Mozilla
O43 - CFD: 17/04/2013 - 22:20:08 - [3,610] ----D C:\ProgramData\NVIDIA
O43 - CFD: 12/04/2013 - 18:26:24 - [3,181] ----D C:\ProgramData\NVIDIA Corporation
O43 - CFD: 30/03/2013 - 23:16:31 - [0,000] ----D C:\ProgramData\PDVD
O43 - CFD: 27/02/2013 - 00:47:43 - [0,039] ----D C:\ProgramData\PRICache
O43 - CFD: 04/03/2013 - 00:21:19 - [0,023] ----D C:\ProgramData\Qualcomm Atheros
O43 - CFD: 26/07/2012 - 12:11:33 - [0,001] ----D C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 05/03/2013 - 11:18:27 - [19,689] ----D C:\ProgramData\Skype
O43 - CFD: 26/07/2012 - 09:22:08 - [0] --H-D C:\ProgramData\Start Menu
O43 - CFD: 28/02/2013 - 22:48:17 - [0,000] ----D C:\ProgramData\Sun
O43 - CFD: 30/03/2013 - 23:14:25 - [0,393] ----D C:\ProgramData\Temp
O43 - CFD: 26/07/2012 - 09:22:08 - [0] --H-D C:\ProgramData\Templates
O43 - CFD: 03/03/2013 - 20:11:55 - [0] ----D C:\ProgramData\TomTom
O43 - CFD: 30/03/2013 - 23:32:51 - [3,477] ----D C:\Users\thierry\AppData\Roaming\Adobe
O43 - CFD: 30/03/2013 - 23:19:47 - [0,002] ----D C:\Users\thierry\AppData\Roaming\CyberLink
O43 - CFD: 30/03/2013 - 22:15:24 - [0,000] ----D C:\Users\thierry\AppData\Roaming\dvdcss
O43 - CFD: 27/02/2013 - 08:20:55 - [0,004] ----D C:\Users\thierry\AppData\Roaming\Macromedia
O43 - CFD: 27/02/2013 - 22:59:18 - [0] ----D C:\Users\thierry\AppData\Roaming\Malwarebytes
O43 - CFD: 28/02/2013 - 22:17:47 - [1,832] -S--D C:\Users\thierry\AppData\Roaming\Microsoft
O43 - CFD: 27/02/2013 - 00:51:56 - [21,447] ----D C:\Users\thierry\AppData\Roaming\Mozilla
O43 - CFD: 05/03/2013 - 17:36:50 - [0,001] ----D C:\Users\thierry\AppData\Roaming\NVIDIA
O43 - CFD: 05/03/2013 - 11:27:01 - [2,841] ----D C:\Users\thierry\AppData\Roaming\Skype
O43 - CFD: 03/03/2013 - 20:11:51 - [4,407] ----D C:\Users\thierry\AppData\Roaming\TomTom
O43 - CFD: 30/03/2013 - 23:32:51 - [17,121] ----D C:\Users\thierry\AppData\Local\Adobe
O43 - CFD: 27/02/2013 - 00:00:37 - [0] ----D C:\Users\thierry\AppData\Local\Application Data
O43 - CFD: 30/03/2013 - 23:16:18 - [30,109] ----D C:\Users\thierry\AppData\Local\Cyberlink
O43 - CFD: 16/04/2013 - 22:49:46 - [52,332] ----D C:\Users\thierry\AppData\Local\Downloaded Installations
O43 - CFD: 27/02/2013 - 23:50:08 - [562,106] ----D C:\Users\thierry\AppData\Local\Google
O43 - CFD: 27/02/2013 - 00:00:37 - [0] ----D C:\Users\thierry\AppData\Local\Historique
O43 - CFD: 27/02/2013 - 08:25:23 - [0] ----D C:\Users\thierry\AppData\Local\Macromedia
O43 - CFD: 30/03/2013 - 23:16:35 - [0] ----D C:\Users\thierry\AppData\Local\MediaServer
O43 - CFD: 16/04/2013 - 22:01:52 - [0] ----D C:\Users\thierry\AppData\Local\MediaShow
O43 - CFD: 06/03/2013 - 16:06:57 - [199,626] ----D C:\Users\thierry\AppData\Local\Microsoft
O43 - CFD: 27/02/2013 - 00:51:49 - [343,617] ----D C:\Users\thierry\AppData\Local\Mozilla
O43 - CFD: 09/04/2013 - 15:25:58 - [366,050] ----D C:\Users\thierry\AppData\Local\Packages
O43 - CFD: 27/02/2013 - 22:58:47 - [0] ----D C:\Users\thierry\AppData\Local\Programs
O43 - CFD: 17/04/2013 - 23:33:40 - [85,156] ----D C:\Users\thierry\AppData\Local\Temp
O43 - CFD: 27/02/2013 - 00:00:37 - [0] ----D C:\Users\thierry\AppData\Local\Temporary Internet Files
O43 - CFD: 03/03/2013 - 20:11:51 - [1,902] ----D C:\Users\thierry\AppData\Local\TomTom
O43 - CFD: 27/02/2013 - 00:01:11 - [0] ----D C:\Users\thierry\AppData\Local\VirtualStore
O43 - CFD: 26/07/2012 - 10:13:00 - [0,004] R---D C:\Users\thierry\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 26/07/2012 - 10:13:00 - [0,001] R---D C:\Users\thierry\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 11/04/2013 - 21:50:44 - [0,000] R---D C:\Users\thierry\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 02/03/2013 - 18:50:37 - [0] ----D C:\Users\thierry\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 27/02/2013 - 08:31:19 - [0,002] ----D C:\Users\thierry\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 26/07/2012 - 10:13:00 - [0,000] ----D C:\Users\thierry\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 11/04/2013 - 21:50:44 - [0,000] R---D C:\Users\thierry\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 26/07/2012 - 10:13:00 - [0,005] R---D C:\Users\thierry\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
~ Program Folder: 95 Scanned in 00mn 01s



---\\ Derniers fichiers modifi�s ou cr�es sous Windows et System32 (O44)
O44 - LFC:[MD5.0D4C1B1F22E915107E466550589B56E5] - 17/04/2013 - 21:22:07 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.751BCDCF5231A47FDAAD8568F404A055] - 17/04/2013 - 10:09:30 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI [1703826]
O44 - LFC:[MD5.91660BB0CDBF360719877BFDA07455A4] - 17/04/2013 - 10:09:30 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat [124834]
O44 - LFC:[MD5.E51D17B21B0EFE8F03985849E82D23AD] - 17/04/2013 - 10:09:30 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat [147870]
O44 - LFC:[MD5.BD981C2EB396445C06ADA411DCA76660] - 17/04/2013 - 10:09:30 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat [674948]
O44 - LFC:[MD5.CD29009613476AD6448BFBC8DCAAAF0A] - 17/04/2013 - 10:09:30 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat [764558]
O44 - LFC:[MD5.751BCDCF5231A47FDAAD8568F404A055] - 17/04/2013 - 10:09:30 RSHAD . (...) -- C:\Windows\System32\PerfStringBackup.INI [1703826]
O44 - LFC:[MD5.91660BB0CDBF360719877BFDA07455A4] - 17/04/2013 - 10:09:30 RSHAD . (...) -- C:\Windows\System32\perfc009.dat [124834]
O44 - LFC:[MD5.E51D17B21B0EFE8F03985849E82D23AD] - 17/04/2013 - 10:09:30 RSHAD . (...) -- C:\Windows\System32\perfc00C.dat [147870]
O44 - LFC:[MD5.BD981C2EB396445C06ADA411DCA76660] - 17/04/2013 - 10:09:30 RSHAD . (...) -- C:\Windows\System32\perfh009.dat [674948]
O44 - LFC:[MD5.CD29009613476AD6448BFBC8DCAAAF0A] - 17/04/2013 - 10:09:30 RSHAD . (...) -- C:\Windows\System32\perfh00C.dat [764558]
O44 - LFC:[MD5.1B27DB85291469233109D947202C0A7C] - 16/04/2013 - 22:29:22 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1117156]
O44 - LFC:[MD5.B217378ED9A964E15346A67FEF609A17] - 15/04/2013 - 16:51:41 RSHAD . (.AVAST Software - avast! File System Access Blocking Driver.) -- C:\Windows\System32\Drivers\aswFsBlk.sys [33400]
O44 - LFC:[MD5.97D4D725BD32C965119E6C8E252F8C64] - 15/04/2013 - 16:51:41 RSHAD . (.AVAST Software - avast! self protection module.) -- C:\Windows\System32\Drivers\aswSP.sys [377920]
O44 - LFC:[MD5.D62C10D1829C65115111C160EA956260] - 15/04/2013 - 16:51:40 RSHAD . (.AVAST Software - avast! TDI Filter Driver.) -- C:\Windows\System32\Drivers\aswTdi.sys [68920]
O44 - LFC:[MD5.8F90459AFB7FD4557D935CE639EF6110] - 15/04/2013 - 16:51:40 RSHAD . (.AVAST Software - avast! WFP Redirect Driver.) -- C:\Windows\System32\Drivers\aswRdr2.sys [70992]
O44 - LFC:[MD5.DE6759B8D8E62BF0FFF2B05F05AFCEE6] - 15/04/2013 - 16:51:29 RSHAD . (...) -- C:\Windows\System32\Drivers\aswRvrt.sys [65336]
O44 - LFC:[MD5.7E44C2684A6CA779B9D07CB4BD3F649D] - 15/04/2013 - 16:51:29 RSHAD . (...) -- C:\Windows\System32\Drivers\aswVmm.sys [178624]
O44 - LFC:[MD5.E92635BB235B03ED03B17CBB59F77FA4] - 15/04/2013 - 16:51:29 RSHAD . (.AVAST Software - avast! File System Minifilter for Windows 2.) -- C:\Windows\System32\Drivers\aswMonFlt.sys [80816]
O44 - LFC:[MD5.AB8B4D3136D18A20777036E0F0CFC5E1] - 15/04/2013 - 16:51:29 RSHAD . (.AVAST Software - avast! Virtualization Driver.) -- C:\Windows\System32\Drivers\aswSnx.sys [1025808]
O44 - LFC:[MD5.DFA65F31129C35DA05767C8755DD183E] - 15/04/2013 - 16:51:28 ---A- . (.AVAST Software - avast! start-up scanner.) -- C:\Windows\SysNative\aswBoot.exe [287840]
O44 - LFC:[MD5.DFA65F31129C35DA05767C8755DD183E] - 15/04/2013 - 16:51:28 RSHAD . (.AVAST Software - avast! start-up scanner.) -- C:\Windows\System32\aswBoot.exe [287840]
O44 - LFC:[MD5.8C0E100191448D5C997C1D39F98EF4E9] - 15/04/2013 - 16:51:02 ---A- . (.AVAST Software - avast! Screen Saver stub.) -- C:\Windows\avastSS.scr [41664]
O44 - LFC:[MD5.D3CA3878F9FC8A5178F80528C61EDDB1] - 12/04/2013 - 17:27:28 ---A- . (...) -- C:\Windows\setupact.log [16115]
O44 - LFC:[MD5.1C3483E675E34DC08A9FB462EA8F8E4B] - 12/04/2013 - 17:27:06 ---A- . (.NVIDIA Corporation - NVIDIA Display Shell Extension.) -- C:\Windows\SysNative\nvshext.dll [63776]
O44 - LFC:[MD5.1C3483E675E34DC08A9FB462EA8F8E4B] - 12/04/2013 - 17:27:06 RSHAD . (.NVIDIA Corporation - NVIDIA Display Shell Extension.) -- C:\Windows\System32\nvshext.dll [63776]
O44 - LFC:[MD5.003C7E60ACF2C67CA369D3545820AB68] - 12/04/2013 - 17:27:05 ---A- . (.NVIDIA Corporation - NVIDIA Display Properties Extension.) -- C:\Windows\SysNative\nvcpl.dll [6398240]
O44 - LFC:[MD5.3B08F83939AA6C8DFA7B404A38BBE7B1] - 12/04/2013 - 17:27:05 ---A- . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 314.2.) -- C:\Windows\SysNative\nvsvc64.dll [3477280]
O44 - LFC:[MD5.086F0942C15B599700105B7E4155D9BB] - 12/04/2013 - 17:27:05 ---A- . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 314.2.) -- C:\Windows\SysNative\nvsvcr.dll [2555680]
O44 - LFC:[MD5.7335C3D78A7746D76D37F6722CC4A466] - 12/04/2013 - 17:27:05 ---A- . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 314.2.) -- C:\Windows\SysNative\nvvsvc.exe [877856]
O44 - LFC:[MD5.BCA85CD07A67716BE0C389DF0F448DA8] - 12/04/2013 - 17:27:05 ---A- . (.NVIDIA Corporation - NVIDIA Media Center Library.) -- C:\Windows\SysNative\nvmctray.dll [237856]
O44 - LFC:[MD5.003C7E60ACF2C67CA369D3545820AB68] - 12/04/2013 - 17:27:05 RSHAD . (.NVIDIA Corporation - NVIDIA Display Properties Extension.) -- C:\Windows\System32\nvcpl.dll [6398240]
O44 - LFC:[MD5.3B08F83939AA6C8DFA7B404A38BBE7B1] - 12/04/2013 - 17:27:05 RSHAD . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 314.2.) -- C:\Windows\System32\nvsvc64.dll [3477280]
O44 - LFC:[MD5.086F0942C15B599700105B7E4155D9BB] - 12/04/2013 - 17:27:05 RSHAD . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 314.2.) -- C:\Windows\System32\nvsvcr.dll [2555680]
O44 - LFC:[MD5.7335C3D78A7746D76D37F6722CC4A466] - 12/04/2013 - 17:27:05 RSHAD . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 314.2.) -- C:\Windows\System32\nvvsvc.exe [877856]
O44 - LFC:[MD5.BCA85CD07A67716BE0C389DF0F448DA8] - 12/04/2013 - 17:27:05 RSHAD . (.NVIDIA Corporation - NVIDIA Media Center Library.) -- C:\Windows\System32\nvmctray.dll [237856]
O44 - LFC:[MD5.C510655489B80726883CFE07ADCE8A27] - 12/04/2013 - 17:24:49 ---A- . (...) -- C:\Windows\SysNative\nvinfo.pb [17738]
O44 - LFC:[MD5.D91F44E53D0567021E1365B17AAE0B6E] - 12/04/2013 - 17:24:49 ---A- . (.NVIDIA Corporation - Display Driver Coinstaller.) -- C:\Windows\SysNative\nvdispco6431422.dll [1807136]
O44 - LFC:[MD5.C13247D88FB46AB8D82DF0843123BACF] - 12/04/2013 - 17:24:49 ---A- . (.NVIDIA Corporation - Generic Coinstaller.) -- C:\Windows\SysNative\nvdispgenco6431422.dll [1510176]
O44 - LFC:[MD5.58E78E795815ED6A37E0A5B1A0A86584] - 12/04/2013 - 17:24:49 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 314.22.) -- C:\Windows\SysNative\nvcuda.dll [9414456]
O44 - LFC:[MD5.0AB9983A17F42D268EDFCA723F8BA7CF] - 12/04/2013 - 17:24:49 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 314.22.) -- C:\Windows\SysNative\nvopencl.dll [7573816]
O44 - LFC:[MD5.58E78E795815ED6A37E0A5B1A0A86584] - 12/04/2013 - 17:24:49 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 314.22.) -- C:\Windows\System32\nvcuda.dll [9414456]
O44 - LFC:[MD5.0AB9983A17F42D268EDFCA723F8BA7CF] - 12/04/2013 - 17:24:49 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 314.22.) -- C:\Windows\System32\nvopencl.dll [7573816]
O44 - LFC:[MD5.0A76782D0E6A417DB4580EAF95E8D1BA] - 12/04/2013 - 17:24:49 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Video Decode API, Version 314.2.) -- C:\Windows\SysNative\nvcuvid.dll [2913056]
O44 - LFC:[MD5.0A76782D0E6A417DB4580EAF95E8D1BA] - 12/04/2013 - 17:24:49 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Video Decode API, Version 314.2.) -- C:\Windows\System32\nvcuvid.dll [2913056]
O44 - LFC:[MD5.9B8BB0BC07CD7CEEB2708F2F9C419BF1] - 12/04/2013 - 17:24:49 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Video Encoder, Version 314.22.) -- C:\Windows\SysNative\nvcuvenc.dll [2355488]
O44 - LFC:[MD5.9B8BB0BC07CD7CEEB2708F2F9C419BF1] - 12/04/2013 - 17:24:49 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Video Encoder, Version 314.22.) -- C:\Windows\System32\nvcuvenc.dll [2355488]
O44 - LFC:[MD5.B9FC1696EA463A3A1BB9F3A5C15C8138] - 12/04/2013 - 17:24:49 ---A- . (.NVIDIA Corporation - NVIDIA Compatible OpenGL ICD.) -- C:\Windows\SysNative\nvoglv64.dll [26956576]
O44 - LFC:[MD5.B7537FDC51AA764B78565061D305C8C9] - 12/04/2013 - 17:24:49 ---A- . (.NVIDIA Corporation - NVIDIA Compiler, Version 314.22.) -- C:\Windows\SysNative\nvcompiler.dll [25256736]
O44 - LFC:[MD5.B7537FDC51AA764B78565061D305C8C9] - 12/04/2013 - 17:24:49 ---A- . (.NVIDIA Corporation - NVIDIA Compiler, Version 314.22.) -- C:\Windows\System32\nvcompiler.dll [25256736]
O44 - LFC:[MD5.76DC33E5D44BC225207FC2E438988F3B] - 12/04/2013 - 17:24:49 ---A- . (.NVIDIA Corporation - NVIDIA D3D10 Driver, Version 314.22.) -- C:\Windows\SysNative\nvwgf2umx.dll [15508512]
O44 - LFC:[MD5.696A6B8C78FC1DDF4173FA92375E9AB1] - 12/04/2013 - 17:24:49 ---A- . (.NVIDIA Corporation - NVIDIA NVAPI Library, Version 314.22.) -- C:\Windows\SysNative\nvapi64.dll [2864144]
O44 - LFC:[MD5.EE87CC219215DB9FDBCB3B27120D89B7] - 12/04/2013 - 17:24:49 ---A- . (.NVIDIA Corporation - NVIDIA WDDM D3D Driver, Version 314.22.) -- C:\Windows\SysNative\nvd3dumx.dll [17990800]
O44 - LFC:[MD5.C510655489B80726883CFE07ADCE8A27] - 12/04/2013 - 17:24:49 RSHAD . (...) -- C:\Windows\System32\nvinfo.pb [17738]
O44 - LFC:[MD5.D91F44E53D0567021E1365B17AAE0B6E] - 12/04/2013 - 17:24:49 RSHAD . (.NVIDIA Corporation - Display Driver Coinstaller.) -- C:\Windows\System32\nvdispco6431422.dll [1807136]
O44 - LFC:[MD5.C13247D88FB46AB8D82DF0843123BACF] - 12/04/2013 - 17:24:49 RSHAD . (.NVIDIA Corporation - Generic Coinstaller.) -- C:\Windows\System32\nvdispgenco6431422.dll [1510176]
O44 - LFC:[MD5.B9FC1696EA463A3A1BB9F3A5C15C8138] - 12/04/2013 - 17:24:49 RSHAD . (.NVIDIA Corporation - NVIDIA Compatible OpenGL ICD.) -- C:\Windows\System32\nvoglv64.dll [26956576]
O44 - LFC:[MD5.76DC33E5D44BC225207FC2E438988F3B] - 12/04/2013 - 17:24:49 RSHAD . (.NVIDIA Corporation - NVIDIA D3D10 Driver, Version 314.22.) -- C:\Windows\System32\nvwgf2umx.dll [15508512]
O44 - LFC:[MD5.696A6B8C78FC1DDF4173FA92375E9AB1] - 12/04/2013 - 17:24:49 RSHAD . (.NVIDIA Corporation - NVIDIA NVAPI Library, Version 314.22.) -- C:\Windows\System32\nvapi64.dll [2864144]
O44 - LFC:[MD5.EE87CC219215DB9FDBCB3B27120D89B7] - 12/04/2013 - 17:24:49 RSHAD . (.NVIDIA Corporation - NVIDIA WDDM D3D Driver, Version 314.22.) -- C:\Windows\System32\nvd3dumx.dll [17990800]
O44 - LFC:[MD5.4EE399576F76D38C04745DB739BBC8C7] - 12/04/2013 - 17:24:47 RSHAD . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version.) -- C:\Windows\System32\Drivers\nvlddmkm.sys [11048736]
O44 - LFC:[MD5.605635936ED09425A04D695CE354C2E9] - 12/04/2013 - 09:22:50 ---A- . (...) -- C:\Windows\SysNative\FNTCACHE.DAT [281176]
O44 - LFC:[MD5.605635936ED09425A04D695CE354C2E9] - 12/04/2013 - 09:22:50 RSHAD . (...) -- C:\Windows\System32\FNTCACHE.DAT [281176]
O44 - LFC:[MD5.D5B800C7E730BDAFF36FE6FC64EB34A1] - 11/04/2013 - 20:57:09 ---A- . (.Microsoft Corporation - Outil de suppression de logiciels malveilla.) -- C:\Windows\SysNative\MRT.exe [72702784]
O44 - LFC:[MD5.D5B800C7E730BDAFF36FE6FC64EB34A1] - 11/04/2013 - 20:57:09 RSHAD . (.Microsoft Corporation - Outil de suppression de logiciels malveilla.) -- C:\Windows\System32\MRT.exe [72702784]
O44 - LFC:[MD5.394ECD933CD66BADF97EA85A183B9E1E] - 11/04/2013 - 20:56:38 ---A- . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysNative\mshtml.dll [19230208]
O44 - LFC:[MD5.394ECD933CD66BADF97EA85A183B9E1E] - 11/04/2013 - 20:56:38 ---A- . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll [19230208]
O44 - LFC:[MD5.D744D5B8145C2303B19A288AF695E9AD] - 11/04/2013 - 20:56:04 ---A- . (.Microsoft Corporation - Navigateur Internet.) -- C:\Windows\SysNative\ieframe.dll [15404544]
O44 - LFC:[MD5.D744D5B8145C2303B19A288AF695E9AD] - 11/04/2013 - 20:56:04 ---A- . (.Microsoft Corporation - Navigateur Internet.) -- C:\Windows\System32\ieframe.dll [15404544]
O44 - LFC:[MD5.DE3C3B1B4FA5FBF1F17BCD3B3AE1ED15] - 11/04/2013 - 20:56:03 ---A- . (.Microsoft Corporation - Microsoft (R) JScript.) -- C:\Windows\SysNative\jscript9.dll [3958784]
O44 - LFC:[MD5.DE3C3B1B4FA5FBF1F17BCD3B3AE1ED15] - 11/04/2013 - 20:56:03 ---A- . (.Microsoft Corporation - Microsoft (R) JScript.) -- C:\Windows\System32\jscript9.dll [3958784]
O44 - LFC:[MD5.753C0848AE7872A3F59663078A517293] - 11/04/2013 - 20:55:58 ---A- . (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\SysNative\wininet.dll [2240512]
O44 - LFC:[MD5.753C0848AE7872A3F59663078A517293] - 11/04/2013 - 20:55:58 ---A- . (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\System32\wininet.dll [2240512]
O44 - LFC:[MD5.85F1FE2D5EDBFD26066F5ABB9504A69C] - 11/04/2013 - 20:55:56 ---A- . (.Microsoft Corporation - Utilitaire � l�ex�cution pour Internet Expl.) -- C:\Windows\SysNative\iertutil.dll [2647040]
O44 - LFC:[MD5.85F1FE2D5EDBFD26066F5ABB9504A69C] - 11/04/2013 - 20:55:56 ---A- . (.Microsoft Corporation - Utilitaire � l�ex�cution pour Internet Expl.) -- C:\Windows\System32\iertutil.dll [2647040]
O44 - LFC:[MD5.11B62706B48F8D8F624F39C4F6E98B5C] - 11/04/2013 - 20:55:54 ---A- . (.Microsoft Corporation - Biblioth�que de th�mes Ux Microsoft.) -- C:\Windows\SysNative\uxtheme.dll [915968]
O44 - LFC:[MD5.11B62706B48F8D8F624F39C4F6E98B5C] - 11/04/2013 - 20:55:54 ---A- . (.Microsoft Corporation - Biblioth�que de th�mes Ux Microsoft.) -- C:\Windows\System32\uxtheme.dll [915968]
O44 - LFC:[MD5.29812E9971077BE3F8B9DC225CF9D454] - 11/04/2013 - 20:55:54 ---A- . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysNative\urlmon.dll [1365504]
O44 - LFC:[MD5.29812E9971077BE3F8B9DC225CF9D454] - 11/04/2013 - 20:55:54 ---A- . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll [1365504]
O44 - LFC:[MD5.8C1EFE99D4C9462EF2E10E7140B44D4A] - 11/04/2013 - 20:55:53 ---A- . (.Microsoft Corporation - Microsoft (R) JScript.) -- C:\Windows\SysNative\jscript.dll [855552]
O44 - LFC:[MD5.8C1EFE99D4C9462EF2E10E7140B44D4A] - 11/04/2013 - 20:55:53 ---A- . (.Microsoft Corporation - Microsoft (R) JScript.) -- C:\Windows\System32\jscript.dll [855552]
O44 - LFC:[MD5.268E23EAEDF3FAF87A7A87F0257C9E87] - 11/04/2013 - 20:55:51 ---A- . (.Microsoft Corporation - Microsoft Feeds Manager.) -- C:\Windows\SysNative\msfeeds.dll [603136]
O44 - LFC:[MD5.268E23EAEDF3FAF87A7A87F0257C9E87] - 11/04/2013 - 20:55:51 ---A- . (.Microsoft Corporation - Microsoft Feeds Manager.) -- C:\Windows\System32\msfeeds.dll [603136]
O44 - LFC:[MD5.A89103864B67CE1ED3BB5D48569D3D94] - 11/04/2013 - 20:55:50 ---A- . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\SysNative\ie4uinit.exe [51712]
O44 - LFC:[MD5.A89103864B67CE1ED3BB5D48569D3D94] - 11/04/2013 - 20:55:50 RSHAD . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe [51712]
O44 - LFC:[MD5.38BEBBC4CF9FE6566262F0037DF843BF] - 11/04/2013 - 20:55:49 ---A- . (.Microsoft Corporation - IE Sysprep Provider.) -- C:\Windows\SysNative\iesysprep.dll [136704]
O44 - LFC:[MD5.38BEBBC4CF9FE6566262F0037DF843BF] - 11/04/2013 - 20:55:49 ---A- . (.Microsoft Corporation - IE Sysprep Provider.) -- C:\Windows\System32\iesysprep.dll [136704]
O44 - LFC:[MD5.194125E7839D4902F2490A70049E8F78] - 11/04/2013 - 20:55:49 ---A- . (.Microsoft Corporation - JScript Proxy Auto-Configuration.) -- C:\Windows\SysNative\jsproxy.dll [53248]
O44 - LFC:[MD5.194125E7839D4902F2490A70049E8F78] - 11/04/2013 - 20:55:49 ---A- . (.Microsoft Corporation - JScript Proxy Auto-Configuration.) -- C:\Windows\System32\jsproxy.dll [53248]
O44 - LFC:[MD5.9E93469F299BBCB4ECD1378403C9B8CD] - 11/04/2013 - 20:54:06 ---A- . (.Microsoft Corporation - Pilote Win32 multi-utilisateurs.) -- C:\Windows\SysNative\win32k.sys [4041728]
O44 - LFC:[MD5.9E93469F299BBCB4ECD1378403C9B8CD] - 11/04/2013 - 20:54:06 RSHAD . (.Microsoft Corporation - Pilote Win32 multi-utilisateurs.) -- C:\Windows\System32\win32k.sys [4041728]
O44 - LFC:[MD5.299F354F0808017F6927B35C8FB6EFCD] - 11/04/2013 - 20:54:05 ---A- . (.Microsoft Corporation - NT Kernel & System.) -- C:\Windows\SysNative\ntoskrnl.exe [6991592]
O44 - LFC:[MD5.299F354F0808017F6927B35C8FB6EFCD] - 11/04/2013 - 20:54:05 RSHAD . (.Microsoft Corporation - NT Kernel & System.) -- C:\Windows\System32\ntoskrnl.exe [6991592]
O44 - LFC:[MD5.79CAB096514C381152F4306BC87A7B29] - 11/04/2013 - 20:53:29 ---A- . (.Microsoft Corporation - Moteur de r�initialisation Microsoft Window.) -- C:\Windows\SysNative\reseteng.dll [1011200]
O44 - LFC:[MD5.79CAB096514C381152F4306BC87A7B29] - 11/04/2013 - 20:53:29 RSHAD . (.Microsoft Corporation - Moteur de r�initialisation Microsoft Window.) -- C:\Windows\System32\reseteng.dll [1011200]
O44 - LFC:[MD5.79F95469604B77296346DE7DB463EA2A] - 11/04/2013 - 20:44:45 ---A- . (.Microsoft Corporation - Agent de mise � jour automatique Windows Up.) -- C:\Windows\SysNative\wuaueng.dll [3240448]
O44 - LFC:[MD5.79F95469604B77296346DE7DB463EA2A] - 11/04/2013 - 20:44:45 RSHAD . (.Microsoft Corporation - Agent de mise � jour automatique Windows Up.) -- C:\Windows\System32\wuaueng.dll [3240448]
O44 - LFC:[MD5.F162757540A3307AF777C056544AE871] - 11/04/2013 - 20:44:43 ---A- . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\SysNative\shell32.dll [19748864]
O44 - LFC:[MD5.F162757540A3307AF777C056544AE871] - 11/04/2013 - 20:44:43 ---A- . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll [19748864]
O44 - LFC:[MD5.5DF7FCCCCC71E230883DC30AF3FE0203] - 11/04/2013 - 20:44:42 ---A- . (.Microsoft Corporation - Software Protection Platform Plugins.) -- C:\Windows\SysNative\sppobjs.dll [1161728]
O44 - LFC:[MD5.5DF7FCCCCC71E230883DC30AF3FE0203] - 11/04/2013 - 20:44:42 RSHAD . (.Microsoft Corporation - Software Protection Platform Plugins.) -- C:\Windows\System32\sppobjs.dll [1161728]
O44 - LFC:[MD5.B6D52E2C38B49A156E58FF5B9C6CA8BE] - 11/04/2013 - 20:44:37 RSHAD . (.Microsoft Corporation - Pilote TCP/IP.) -- C:\Windows\System32\Drivers\tcpip.sys [2231528]
O44 - LFC:[MD5.6587EB86E32C49AC726817220390CFFE] - 11/04/2013 - 20:44:36 ---A- . (.Microsoft Corporation - Microsoft Windows Codecs Library.) -- C:\Windows\SysNative\WindowsCodecs.dll [1627648]
O44 - LFC:[MD5.6587EB86E32C49AC726817220390CFFE] - 11/04/2013 - 20:44:36 ---A- . (.Microsoft Corporation - Microsoft Windows Codecs Library.) -- C:\Windows\System32\WindowsCodecs.dll [1627648]
O44 - LFC:[MD5.3D1E4E187270B03BA28F8CF0C7C66C22] - 11/04/2013 - 20:44:35 ---A- . (.Microsoft Corporation - TWINUI.) -- C:\Windows\SysNative\twinui.dll [10116608]
O44 - LFC:[MD5.3D1E4E187270B03BA28F8CF0C7C66C22] - 11/04/2013 - 20:44:35 ---A- . (.Microsoft Corporation - TWINUI.) -- C:\Windows\System32\twinui.dll [10116608]
O44 - LFC:[MD5.0E8924B51839B0CC8AB4B9C456220683] - 11/04/2013 - 20:44:29 ---A- . (.Microsoft Corporation - Media Foundation ASF Source and Sink DLL.) -- C:\Windows\SysNative\mfasfsrcsnk.dll [1048576]
O44 - LFC:[MD5.0E8924B51839B0CC8AB4B9C456220683] - 11/04/2013 - 20:44:29 ---A- . (.Microsoft Corporation - Media Foundation ASF Source and Sink DLL.) -- C:\Windows\System32\mfasfsrcsnk.dll [1048576]
O44 - LFC:[MD5.C911D9E6BDE318D513D9168F947E1800] - 11/04/2013 - 20:44:28 ---A- . (.Microsoft Corporation - DLL du Gestionnaire de processus d�arri�re-.) -- C:\Windows\SysNative\ubpm.dll [328192]
O44 - LFC:[MD5.C911D9E6BDE318D513D9168F947E1800] - 11/04/2013 - 20:44:28 ---A- . (.Microsoft Corporation - DLL du Gestionnaire de processus d�arri�re-.) -- C:\Windows\System32\ubpm.dll [328192]
O44 - LFC:[MD5.01344DD46C95BC2A478B52AF07336F4A] - 11/04/2013 - 20:44:27 ---A- . (.Microsoft Corporation - Client ActiveX des services Bureau � distan.) -- C:\Windows\SysNative\mstscax.dll [5978624]
O44 - LFC:[MD5.01344DD46C95BC2A478B52AF07336F4A] - 11/04/2013 - 20:44:27 ---A- . (.Microsoft Corporation - Client ActiveX des services Bureau � distan.) -- C:\Windows\System32\mstscax.dll [5978624]
O44 - LFC:[MD5.C7E0C8B888B034D1A66840A5E34D61FC] - 11/04/2013 - 20:44:26 ---A- . (.Microsoft Corporation - BCP47 Language Classes.) -- C:\Windows\SysNative\BCP47Langs.dll [389120]
O44 - LFC:[MD5.C7E0C8B888B034D1A66840A5E34D61FC] - 11/04/2013 - 20:44:26 ---A- . (.Microsoft Corporation - BCP47 Language Classes.) -- C:\Windows\System32\BCP47Langs.dll [389120]
O44 - LFC:[MD5.110B70302AC6EC29FE013C5BB99BA559] - 11/04/2013 - 20:44:26 ---A- . (.Microsoft Corporation - WMPMDE DLL.) -- C:\Windows\SysNative\wmpmde.dll [1101824]
O44 - LFC:[MD5.9531E7D938912F315F8161B5DA5DAD13] - 11/04/2013 - 20:44:26 RSHAD . (.Microsoft Corporation - SCSI Class System Dll.) -- C:\Windows\System32\Drivers\Classpnp.sys [327912]
O44 - LFC:[MD5.110B70302AC6EC29FE013C5BB99BA559] - 11/04/2013 - 20:44:26 RSHAD . (.Microsoft Corporation - WMPMDE DLL.) -- C:\Windows\System32\wmpmde.dll [1101824]
O44 - LFC:[MD5.D608E0955BF3623B54CFA1A90FCA59FD] - 11/04/2013 - 20:44:24 ---A- . (.Microsoft Corporation - WinMDE DLL.) -- C:\Windows\SysNative\winmde.dll [1149952]
O44 - LFC:[MD5.D608E0955BF3623B54CFA1A90FCA59FD] - 11/04/2013 - 20:44:24 ---A- . (.Microsoft Corporation - WinMDE DLL.) -- C:\Windows\System32\winmde.dll [1149952]
O44 - LFC:[MD5.76E6465F3153FCA20F07928BBA62D7B8] - 11/04/2013 - 20:44:24 ---A- . (.Microsoft Corporation - Windows Globalization.) -- C:\Windows\SysNative\Windows.Globalization.dll [951808]
O44 - LFC:[MD5.76E6465F3153FCA20F07928BBA62D7B8] - 11/04/2013 - 20:44:24 ---A- . (.Microsoft Corporation - Windows Globalization.) -- C:\Windows\System32\Windows.Globalization.dll [951808]
O44 - LFC:[MD5.C15FF2B4C82792230CD9742253C68CF1] - 11/04/2013 - 20:44:23 ---A- . (.Microsoft Corporation - API du client Windows Update.) -- C:\Windows\SysNative\wuapi.dll [760320]
O44 - LFC:[MD5.C15FF2B4C82792230CD9742253C68CF1] - 11/04/2013 - 20:44:23 ---A- . (.Microsoft Corporation - API du client Windows Update.) -- C:\Windows\System32\wuapi.dll [760320]
O44 - LFC:[MD5.D10587D957CFED8CC3B9B3D017C69003] - 11/04/2013 - 20:44:23 ---A- . (.Microsoft Corporation - Windows Runtime OnlineId Authentication DLL.) -- C:\Windows\SysNative\Windows.Security.Authentication.OnlineId.dll [645120]
O44 - LFC:[MD5.D10587D957CFED8CC3B9B3D017C69003] - 11/04/2013 - 20:44:23 ---A- . (.Microsoft Corporation - Windows Runtime OnlineId Authentication DLL.) -- C:\Windows\System32\Windows.Security.Authentication.OnlineId.dll [645120]
O44 - LFC:[MD5.6FB88606C4A71E1BFAF97D63A676C673] - 11/04/2013 - 20:44:22 ---A- . (.Microsoft Corporation - Service Broker pour les �v�nements syst�me.) -- C:\Windows\SysNative\SystemEventsBrokerServer.dll [180224]
O44 - LFC:[MD5.6FB88606C4A71E1BFAF97D63A676C673] - 11/04/2013 - 20:44:22 RSHAD . (.Microsoft Corporation - Service Broker pour les �v�nements syst�me.) -- C:\Windows\System32\SystemEventsBrokerServer.dll [180224]
O44 - LFC:[MD5.F8E1CA7D41BC44662D7F8936A9588201] - 11/04/2013 - 20:44:21 ---A- . (.Microsoft Corporation - Interface utilisateur d�authentification Wi.) -- C:\Windows\SysNative\authui.dll [2302464]
O44 - LFC:[MD5.F8E1CA7D41BC44662D7F8936A9588201] - 11/04/2013 - 20:44:21 ---A- . (.Microsoft Corporation - Interface utilisateur d�authentification Wi.) -- C:\Windows\System32\authui.dll [2302464]
O44 - LFC:[MD5.4515B9E4140F04FB3907692DF89FCA87] - 11/04/2013 - 20:44:21 ---A- . (.Microsoft Corporation - Service Broker pour les �v�nements horaires.) -- C:\Windows\SysNative\TimeBrokerServer.dll [171008]
O44 - LFC:[MD5.36E2B5A5AC7688FFB3270F57103507D2] - 11/04/2013 - 20:44:21 RSHAD . (.Microsoft Corporation - FWP/IPsec Kernel-Mode API.) -- C:\Windows\System32\Drivers\FWPKCLNT.SYS [411880]
O44 - LFC:[MD5.091607B272C5E7BE2DCEF2D5463A407B] - 11/04/2013 - 20:44:21 RSHAD . (.Microsoft Corporation - Microsoft Storage Port Driver.) -- C:\Windows\System32\Drivers\storport.sys [332520]
O44 - LFC:[MD5.4515B9E4140F04FB3907692DF89FCA87] - 11/04/2013 - 20:44:21 RSHAD . (.Microsoft Corporation - Service Broker pour les �v�nements horaires.) -- C:\Windows\System32\TimeBrokerServer.dll [171008]
O44 - LFC:[MD5.D3CD3034E2292DBECCD3161DC29D8E07] - 11/04/2013 - 20:44:19 ---A- . (.Microsoft Corporation - Objets de configuration du r�seau.) -- C:\Windows\SysNative\netcfgx.dll [455168]
O44 - LFC:[MD5.D3CD3034E2292DBECCD3161DC29D8E07] - 11/04/2013 - 20:44:19 ---A- . (.Microsoft Corporation - Objets de configuration du r�seau.) -- C:\Windows\System32\netcfgx.dll [455168]
O44 - LFC:[MD5.BE611E28DD9AF75A6B904B55F5D6E6C3] - 11/04/2013 - 20:44:18 ---A- . (.Microsoft Corporation - DLL du moniteur de port d�impression dynami.) -- C:\Windows\SysNative\usbmon.dll [245248]
O44 - LFC:[MD5.116FBD7F3F98CB90680BCB5E5CBD0715] - 11/04/2013 - 20:44:18 ---A- . (.Microsoft Corporation - Synchronisation des param�tres.) -- C:\Windows\SysNative\SettingSync.dll [448512]
O44 - LFC:[MD5.116FBD7F3F98CB90680BCB5E5CBD0715] - 11/04/2013 - 20:44:18 ---A- . (.Microsoft Corporation - Synchronisation des param�tres.) -- C:\Windows\System32\SettingSync.dll [448512]
O44 - LFC:[MD5.3013658A4D327854BEEC4A08D9655194] - 11/04/2013 - 20:44:18 ---A- . (.Microsoft Corporation - �num�rateur d�appareil mobile.) -- C:\Windows\SysNative\wpdbusenum.dll [103936]
O44 - LFC:[MD5.BE611E28DD9AF75A6B904B55F5D6E6C3] - 11/04/2013 - 20:44:18 RSHAD . (.Microsoft Corporation - DLL du moniteur de port d�impression dynami.) -- C:\Windows\System32\usbmon.dll [245248]
O44 - LFC:[MD5.3013658A4D327854BEEC4A08D9655194] - 11/04/2013 - 20:44:18 RSHAD . (.Microsoft Corporation - �num�rateur d�appareil mobile.) -- C:\Windows\System32\wpdbusenum.dll [103936]
O44 - LFC:[MD5.5EE6D3195E6470DB22F480CCF5F5FF4A] - 11/04/2013 - 20:44:17 ---A- . (.Microsoft Corporation - ActiveX Interface Marshaling Library.) -- C:\Windows\SysNative\actxprxy.dll [2146304]
O44 - LFC:[MD5.5EE6D3195E6470DB22F480CCF5F5FF4A] - 11/04/2013 - 20:44:17 ---A- . (.Microsoft Corporation - ActiveX Interface Marshaling Library.) -- C:\Windows\System32\actxprxy.dll [2146304]
O44 - LFC:[MD5.500BE6B2E49883720D0AE8BB859ED7A3] - 11/04/2013 - 20:44:17 RSHAD . (.Microsoft Corporation - VHD Miniport Driver.) -- C:\Windows\System32\Drivers\vhdmp.sys [495336]
O44 - LFC:[MD5.A6B742C6B8CF9A37E0EF470DF890F74B] - 11/04/2013 - 20:44:15 ---A- . (.Microsoft Corporation - Driver Store API.) -- C:\Windows\SysNative\drvstore.dll [703488]
O44 - LFC:[MD5.A6B742C6B8CF9A37E0EF470DF890F74B] - 11/04/2013 - 20:44:15 ---A- . (.Microsoft Corporation - Driver Store API.) -- C:\Windows\System32\drvstore.dll [703488]
O44 - LFC:[MD5.3426BE7D0ED8888ACFE04BA6BB9AF83B] - 11/04/2013 - 20:44:15 ---A- . (.Microsoft Corporation - Processus h�te pour T�ches Windows.) -- C:\Windows\SysNative\taskhost.exe [77824]
O44 - LFC:[MD5.821D79C4602C5BF6C8183630D301638A] - 11/04/2013 - 20:44:15 ---A- . (.Microsoft Corporation - T�che d�analyse de l�int�grit� des donn�es.) -- C:\Windows\SysNative\discan.dll [150016]
O44 - LFC:[MD5.69A7C97D2FF3252039F18EB36B4AF76B] - 11/04/2013 - 20:44:15 ---A- . (.Microsoft Corporation - Windows Update client proxy stub.) -- C:\Windows\SysNative\wups.dll [43520]
O44 - LFC:[MD5.69A7C97D2FF3252039F18EB36B4AF76B] - 11/04/2013 - 20:44:15 ---A- . (.Microsoft Corporation - Windows Update client proxy stub.) -- C:\Windows\System32\wups.dll [43520]
O44 - LFC:[MD5.3426BE7D0ED8888ACFE04BA6BB9AF83B] - 11/04/2013 - 20:44:15 RSHAD . (.Microsoft Corporation - Processus h�te pour T�ches Windows.) -- C:\Windows\System32\taskhost.exe [77824]
O44 - LFC:[MD5.821D79C4602C5BF6C8183630D301638A] - 11/04/2013 - 20:44:15 RSHAD . (.Microsoft Corporation - T�che d�analyse de l�int�grit� des donn�es.) -- C:\Windows\System32\discan.dll [150016]
O44 - LFC:[MD5.739A739DCC5D02FE30EDEADEBD7B9898] - 11/04/2013 - 20:44:14 RSHAD . (.Microsoft Corporation - Storage Spaces Driver.) -- C:\Windows\System32\Drivers\spaceport.sys [283880]
O44 - LFC:[MD5.ED84544A18C02EE2DF436A94436168BA] - 11/04/2013 - 20:44:13 ---A- . (.Microsoft Corporation - Exp�rience utilisateur du client Windows Up.) -- C:\Windows\SysNative\wucltux.dll [1619968]
O44 - LFC:[MD5.25FD6AB608C7CFDEAAC24BA882AC4052] - 11/04/2013 - 20:44:13 ---A- . (.Microsoft Corporation - Ndis IM Platform MUX Notify Object.) -- C:\Windows\SysNative\NdisImPlatform.dll [117248]
O44 - LFC:[MD5.3C39BF7BBD73C3D862F5266D316D88D0] - 11/04/2013 - 20:44:13 ---A- . (.Microsoft Corporation - Windows Update.) -- C:\Windows\SysNative\wuauclt.exe [58288]
O44 - LFC:[MD5.ED84544A18C02EE2DF436A94436168BA] - 11/04/2013 - 20:44:13 RSHAD . (.Microsoft Corporation - Exp�rience utilisateur du client Windows Up.) -- C:\Windows\System32\wucltux.dll [1619968]
O44 - LFC:[MD5.25FD6AB608C7CFDEAAC24BA882AC4052] - 11/04/2013 - 20:44:13 RSHAD . (.Microsoft Corporation - Ndis IM Platform MUX Notify Object.) -- C:\Windows\System32\NdisImPlatform.dll [117248]
O44 - LFC:[MD5.047315E75392CEA447ACC86257824C16] - 11/04/2013 - 20:44:13 RSHAD . (.Microsoft Corporation - Pilote du bus num�rique s�curis� (SD).) -- C:\Windows\System32\Drivers\sdbus.sys [194792]
O44 - LFC:[MD5.7D0570A2C678116523BB4932A6D71020] - 11/04/2013 - 20:44:13 RSHAD . (.Microsoft Corporation - SD Crashdump Port Driver.) -- C:\Windows\System32\Drivers\dumpsd.sys [125160]
O44 - LFC:[MD5.11C0CF143D246E2F0E9BDBF17A0CC70B] - 11/04/2013 - 20:44:13 RSHAD . (.Microsoft Corporation - USB XHCI Driver.) -- C:\Windows\System32\Drivers\USBXHCI.SYS [337128]
O44 - LFC:[MD5.3C39BF7BBD73C3D862F5266D316D88D0] - 11/04/2013 - 20:44:13 RSHAD . (.Microsoft Corporation - Windows Update.) -- C:\Windows\System32\wuauclt.exe [58288]
O44 - LFC:[MD5.F5BB165DD4C8B784E06E3F0324150E0F] - 11/04/2013 - 20:44:12 ---A- . (.Microsoft Corporation - Panneau de configuration - Gestion de l�ali.) -- C:\Windows\SysNative\powercfg.cpl [156160]
O44 - LFC:[MD5.F5BB165DD4C8B784E06E3F0324150E0F] - 11/04/2013 - 20:44:12 ---A- . (.Microsoft Corporation - Panneau de configuration - Gestion de l�ali.) -- C:\Windows\System32\powercfg.cpl [156160]
O44 - LFC:[MD5.B240874B2CA0CD02E8CD11E140B14C57] - 11/04/2013 - 20:44:12 RSHAD . (.Microsoft Corporation - MS AHCI Storport Miniport Driver.) -- C:\Windows\System32\Drivers\storahci.sys [77544]
O44 - LFC:[MD5.6F0BFF80EE2A5BC841286A51F893CBAD] - 11/04/2013 - 20:44:12 RSHAD . (.Microsoft Corporation - Pilote de p�riph�rique TPM.) -- C:\Windows\System32\Drivers\tpm.sys [148712]
O44 - LFC:[MD5.0698DEDEAD6A00AD0D468C687D830FBF] - 11/04/2013 - 20:44:12 RSHAD . (.Microsoft Corporation - Power Dependency Coordinator Driver.) -- C:\Windows\System32\Drivers\pdc.sys [69864]
O44 - LFC:[MD5.50361572A98348A6E780FFE231B55D49] - 11/04/2013 - 20:44:11 ---A- . (.Microsoft Corporation - DeviceItem inproc devquery subsystem.) -- C:\Windows\SysNative\DevDispItemProvider.dll [49152]
O44 - LFC:[MD5.50361572A98348A6E780FFE231B55D49] - 11/04/2013 - 20:44:11 ---A- . (.Microsoft Corporation - DeviceItem inproc devquery subsystem.) -- C:\Windows\System32\DevDispItemProvider.dll [49152]
O44 - LFC:[MD5.3A014B98C45AA8C0E4ABF2AB764F9AAC] - 11/04/2013 - 20:44:11 ---A- . (.Microsoft Corporation - Function Discovery Printer Proxy Dll.) -- C:\Windows\SysNative\WSDPrintProxy.DLL [71168]
O44 - LFC:[MD5.0899BF12B2142213630D49E645B8A507] - 11/04/2013 - 20:44:11 ---A- . (.Microsoft Corporation - Processus h�te pour T�ches Windows.) -- C:\Windows\SysNative\taskhostex.exe [72192]
O44 - LFC:[MD5.EF9A6AA4956FCD2D0EECD48ECC54B303] - 11/04/2013 - 20:44:11 ---A- . (.Microsoft Corporation - Windows Update Modern WuApp.) -- C:\Windows\SysNative\WUSettingsProvider.dll [251904]
O44 - LFC:[MD5.3A014B98C45AA8C0E4ABF2AB764F9AAC] - 11/04/2013 - 20:44:11 RSHAD . (.Microsoft Corporation - Function Discovery Printer Proxy Dll.) -- C:\Windows\System32\WSDPrintProxy.DLL [71168]
O44 - LFC:[MD5.0899BF12B2142213630D49E645B8A507] - 11/04/2013 - 20:44:11 RSHAD . (.Microsoft Corporation - Processus h�te pour T�ches Windows.) -- C:\Windows\System32\taskhostex.exe [72192]
O44 - LFC:[MD5.EF9A6AA4956FCD2D0EECD48ECC54B303] - 11/04/2013 - 20:44:11 RSHAD . (.Microsoft Corporation - Windows Update Modern WuApp.) -- C:\Windows\System32\WUSettingsProvider.dll [251904]
O44 - LFC:[MD5.79CE97524CEC063C9A2750CCFE253847] - 11/04/2013 - 20:44:10 ---A- . (.Microsoft Corporation - Authentication Provider.) -- C:\Windows\SysNative\storewuauth.dll [173568]
O44 - LFC:[MD5.3AF11BF2AA45E222D5923E59596AC984] - 11/04/2013 - 20:44:10 ---A- . (.Microsoft Corporation - Setting Synchronization Information.) -- C:\Windows\SysNative\SettingSyncInfo.dll [128512]
O44 - LFC:[MD5.3AF11BF2AA45E222D5923E59596AC984] - 11/04/2013 - 20:44:10 ---A- . (.Microsoft Corporation - Setting Synchronization Information.) -- C:\Windows\System32\SettingSyncInfo.dll [128512]
O44 - LFC:[MD5.05677EEFA7E6AAF414F4C31FD9EBF2C0] - 11/04/2013 - 20:44:10 ---A- . (.Microsoft Corporation - Windows Update Vista Web Control.) -- C:\Windows\SysNative\wuwebv.dll [141824]
O44 - LFC:[MD5.05677EEFA7E6AAF414F4C31FD9EBF2C0] - 11/04/2013 - 20:44:10 ---A- . (.Microsoft Corporation - Windows Update Vista Web Control.) -- C:\Windows\System32\wuwebv.dll [141824]
O44 - LFC:[MD5.79CE97524CEC063C9A2750CCFE253847] - 11/04/2013 - 20:44:10 RSHAD . (.Microsoft Corporation - Authentication Provider.) -- C:\Windows\System32\storewuauth.dll [173568]
O44 - LFC:[MD5.E781EB5E43013C358B9A335103C2B9AE] - 11/04/2013 - 20:44:09 ---A- . (.Microsoft Corporation - Windows Update WUDriver Stub.) -- C:\Windows\SysNative\wudriver.dll [98304]
O44 - LFC:[MD5.E781EB5E43013C358B9A335103C2B9AE] - 11/04/2013 - 20:44:09 ---A- . (.Microsoft Corporation - Windows Update WUDriver Stub.) -- C:\Windows\System32\wudriver.dll [98304]
O44 - LFC:[MD5.C0ADEBED913295803B579ED288936CBB] - 11/04/2013 - 20:44:08 RSHAD . (.Microsoft Corporation - Pilote de filtre souris HID.) -- C:\Windows\System32\Drivers\mouhid.sys [26112]
O44 - LFC:[MD5.750082FFD280AD15DA524379CD863721] - 11/04/2013 - 20:44:07 ---A- . (.Microsoft Corporation - Windows Update Application Launcher.) -- C:\Windows\SysNative\wuapp.exe [39424]
O44 - LFC:[MD5.750082FFD280AD15DA524379CD863721] - 11/04/2013 - 20:44:07 ---A- . (.Microsoft Corporation - Windows Update Application Launcher.) -- C:\Windows\System32\wuapp.exe [39424]
O44 - LFC:[MD5.4FD2E5BDBBBAB094B65E76908F9FADB3] - 11/04/2013 - 20:44:05 ---A- . (...) -- C:\Windows\SysNative\ApnDatabase.xml [387867]
O44 - LFC:[MD5.4FD2E5BDBBBAB094B65E76908F9FADB3] - 11/04/2013 - 20:44:05 RSHAD . (...) -- C:\Windows\System32\ApnDatabase.xml [387867]
O44 - LFC:[MD5.EA8EAD3F5B762F889CC7F3966625B48B] - 11/04/2013 - 20:44:05 RSHAD . (.Microsoft Corporation - Monitor Driver.) -- C:\Windows\System32\Drivers\monitor.sys [30720]
O44 - LFC:[MD5.0BB97D43299910CBFBA59C461B99B910] - 04/04/2013 - 13:50:32 RSHAD . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\mbam.sys [25928]
~ Files: 190 Scanned in 00mn 09s



---\\ Derniers fichiers cr��s dans Windows Prefetcher (O45)
O45 - LFCP:[MD5.536AC36AF9F59868D21A750AF78813D0] - 03/04/2013 - 06:25:57 ---A- - C:\Windows\Prefetch\SNDVOL.EXE-276AC160.pf
O45 - LFCP:[MD5.FD3D4E01266F8B7B7EA546C5239AA29D] - 03/04/2013 - 22:11:38 ---A- - C:\Windows\Prefetch\MSINFO32.EXE-F283564F.pf
O45 - LFCP:[MD5.F775E92FA89209EBDA548FCB60DF988C] - 04/04/2013 - 06:06:48 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-AC7A5E42.pf
O45 - LFCP:[MD5.6380128D99AFE725BA1D8779A1103A4C] - 05/04/2013 - 21:09:46 ---A- - C:\Windows\Prefetch\ACRORD32.EXE-4E288B88.pf
O45 - LFCP:[MD5.4D9D8D5EB5131D5587572353F110586F] - 08/04/2013 - 14:38:37 ---A- - C:\Windows\Prefetch\BUBBLES.SCR-55ABA833.pf
O45 - LFCP:[MD5.0A12A8DEE8E1CB241E41623D792B8E72] - 08/04/2013 - 15:03:18 ---A- - C:\Windows\Prefetch\AgGlUAD_P_S-1-5-21-1296241625-1542924555-43332839-1001.db
O45 - LFCP:[MD5.4A8E38AD19DBA7835E692E76E2CFA7EA] - 08/04/2013 - 15:03:18 ---A- - C:\Windows\Prefetch\AgGlUAD_S-1-5-21-1296241625-1542924555-43332839-1001.db
O45 - LFCP:[MD5.909D2A20CAFA18EFF8B8C67E693EDF6F] - 09/04/2013 - 14:22:27 ---A- - C:\Windows\Prefetch\WWAHOST.EXE-14519E63.pf
O45 - LFCP:[MD5.AFAC5D1C69D667855AD2E4E6028ED5AD] - 09/04/2013 - 14:25:56 ---A- - C:\Windows\Prefetch\WWAHOST.EXE-5F7F692E.pf
O45 - LFCP:[MD5.F40F396DBB45284E65F8CF0613D2D846] - 09/04/2013 - 14:26:08 ---A- - C:\Windows\Prefetch\AUTHHOST.EXE-44C90B62.pf
O45 - LFCP:[MD5.365E405D99DD36A0F2179C6B57A7EF73] - 10/04/2013 - 22:38:54 ---A- - C:\Windows\Prefetch\SPECCY64.EXE-943BD3B0.pf
O45 - LFCP:[MD5.E80F21095A0D9C5CA3320577D4D317C1] - 11/04/2013 - 21:09:40 ---A- - C:\Windows\Prefetch\DFRGUI.EXE-9271D6BF.pf
O45 - LFCP:[MD5.8E31EFE067A9E4DE43DF06A7FFF03E66] - 11/04/2013 - 21:34:20 ---A- - C:\Windows\Prefetch\MBAM-SETUP.TMP-B5E915E7.pf
O45 - LFCP:[MD5.CC20D73B867F1B259CD774AD62FE4667] - 12/04/2013 - 17:03:15 ---A- - C:\Windows\Prefetch\MAINTENANCESERVICE_INSTALLER.-A809585F.pf
O45 - LFCP:[MD5.8C64836E8C702CC17DD1EFD9E6AAF819] - 12/04/2013 - 17:08:35 ---A- - C:\Windows\Prefetch\NVCPLUI.EXE-B2F25190.pf
O45 - LFCP:[MD5.CE07EFF8CB2F59FBC5D234FB960D3E93] - 12/04/2013 - 17:08:41 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-5BF466C6.pf
O45 - LFCP:[MD5.53F19D65E7F3B86AB6FC383FD5563A53] - 12/04/2013 - 17:23:09 ---A- - C:\Windows\Prefetch\314.22-NOTEBOOK-WIN8-WIN7-64B-B69D5900.pf
O45 - LFCP:[MD5.7CD3C48407E74EBB0D12838822774DAC] - 12/04/2013 - 17:23:57 ---A- - C:\Windows\Prefetch\SETUP.EXE-84CFDE48.pf
O45 - LFCP:[MD5.424D0DCE65E27D37E8272A6077098A46] - 12/04/2013 - 17:27:48 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-20E14441.pf
O45 - LFCP:[MD5.31B7C1F19297254CE30C3A0F1D0F5864] - 12/04/2013 - 17:29:20 ---A- - C:\Windows\Prefetch\MMC.EXE-787EFBBC.pf
O45 - LFCP:[MD5.DCD650A0B8E44384C2F831806E1761ED] - 12/04/2013 - 21:15:39 ---A- - C:\Windows\Prefetch\HELPPANE.EXE-5A92E3D5.pf
O45 - LFCP:[MD5.CC226D787888A025688404080CBABCD3] - 13/04/2013 - 10:01:52 ---A- - C:\Windows\Prefetch\WWAHOST.EXE-AF977791.pf
O45 - LFCP:[MD5.12BCA3ADD2FA960AAB5D36CDE4F408EF] - 13/04/2013 - 10:03:20 ---A- - C:\Windows\Prefetch\CHROME.EXE-BA620E71.pf
O45 - LFCP:[MD5.DAC53FC10BF7E7B56E59AEE137BB0BA8] - 13/04/2013 - 10:09:57 ---A- - C:\Windows\Prefetch\SDIAGNHOST.EXE-D8BC1DC6.pf
O45 - LFCP:[MD5.07479211DED55D7B888E83CC9A683C68] - 13/04/2013 - 10:10:08 ---A- - C:\Windows\Prefetch\dynreservedpri.db
O45 - LFCP:[MD5.539C2E27AD401F3E21AE9F07C390DA22] - 13/04/2013 - 10:10:16 ---A- - C:\Windows\Prefetch\W32TM.EXE-78C041DB.pf
O45 - LFCP:[MD5.0319630ED78F04F16DF5BAE9326F5414] - 13/04/2013 - 10:10:25 ---A- - C:\Windows\Prefetch\PING.EXE-167FE968.pf
O45 - LFCP:[MD5.17F83EA7EFC726FFB97354E5254643DE] - 14/04/2013 - 20:36:01 ---A- - C:\Windows\Prefetch\WERMGR.EXE-D948C216.pf
O45 - LFCP:[MD5.0C83A5BB6A74E537D983E6AA7B7E7837] - 14/04/2013 - 20:41:59 ---A- - C:\Windows\Prefetch\TAPTILES.EXE-CF8F536E.pf
O45 - LFCP:[MD5.F0BB3C80AFADF1E0CE3991AA940F0F79] - 14/04/2013 - 20:43:11 ---A- - C:\Windows\Prefetch\WWAHOST.EXE-9178D9A9.pf
O45 - LFCP:[MD5.E15F04C7303C293E16561A12876FA837] - 14/04/2013 - 20:45:54 ---A- - C:\Windows\Prefetch\WWAHOST.EXE-B9D0E781.pf
O45 - LFCP:[MD5.4111BB8692F604DB1AF2BC6A8258EB6F] - 15/04/2013 - 16:37:03 ---A- - C:\Windows\Prefetch\CTFMON.EXE-286F3259.pf
O45 - LFCP:[MD5.290F2CB40E9D972A5A02073FEDB79265] - 15/04/2013 - 16:40:20 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-50DEE1CF.pf
O45 - LFCP:[MD5.76D1E7DDB86B70CA192BFB7A44E84FC4] - 15/04/2013 - 16:42:40 ---A- - C:\Windows\Prefetch\ASWCLEAR.EXE-633E0EF3.pf
O45 - LFCP:[MD5.563F7FA9014A9B6437D34D9C19E36B8C] - 15/04/2013 - 16:42:43 ---A- - C:\Windows\Prefetch\BCDEDIT.EXE-EB47CDA5.pf
O45 - LFCP:[MD5.7A12C6255CF05C26B5F44A406F04C91D] - 15/04/2013 - 16:48:08 ---A- - C:\Windows\Prefetch\MSASCUI.EXE-4ED47FD9.pf
O45 - LFCP:[MD5.17A028D907182F8CE1D016FE4DE1F2A5] - 15/04/2013 - 16:49:42 ---A- - C:\Windows\Prefetch\AVAST-ANTIVIRUS-GRATUIT_AVAST-BFEC3AFB.pf
O45 - LFCP:[MD5.735618FAA2EE81BAC7D6B3217463B392] - 15/04/2013 - 16:49:52 ---A- - C:\Windows\Prefetch\AVAST.SETUP-5E49F32B.pf
O45 - LFCP:[MD5.67B336DB390879FF7722AAF26203EF47] - 15/04/2013 - 16:49:53 ---A- - C:\Windows\Prefetch\ASWOFFERTOOL.EXE-6B4F6ADC.pf
O45 - LFCP:[MD5.46FD85478A15C38517E50456DFCEF3BF] - 15/04/2013 - 16:51:26 ---A- - C:\Windows\Prefetch\INSTALL.EXE-BD147681.pf
O45 - LFCP:[MD5.F3EA37BFA90AE5ABEAFD73D0216CEB46] - 15/04/2013 - 16:51:26 ---A- - C:\Windows\Prefetch\VCREDIST_X86_SP1.EXE-9A7CACCD.pf
O45 - LFCP:[MD5.145CF65BDFD788AC2A4D56AFC9B081AE] - 15/04/2013 - 16:51:41 ---A- - C:\Windows\Prefetch\DRVINST.EXE-26FFA444.pf
O45 - LFCP:[MD5.F1060A20ACF97DABB67BA15FC36630D2] - 15/04/2013 - 16:51:47 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-8D368B00.pf
O45 - LFCP:[MD5.F2FEECC97E6BCDC93B82151885529914] - 15/04/2013 - 16:52:04 ---A- - C:\Windows\Prefetch\AVASTSVC.EXE-E895EC10.pf
O45 - LFCP:[MD5.4FD16DA8717436A25A66D8CA4EF8C600] - 15/04/2013 - 16:55:05 ---A- - C:\Windows\Prefetch\UNINS000.EXE-B2F9B9B1.pf
O45 - LFCP:[MD5.D64E7297A5CE29AFAC225503B24A5E60] - 15/04/2013 - 16:55:06 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-7242160E.pf
O45 - LFCP:[MD5.26AF513B8AFF0BA0D0E50295A0E90007] - 15/04/2013 - 16:55:07 ---A- - C:\Windows\Prefetch\_IU14D2N.TMP-137FB80F.pf
O45 - LFCP:[MD5.218B43231506F2B87FFD48EC4D44CEC5] - 15/04/2013 - 16:55:11 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-A1396DE2.pf
O45 - LFCP:[MD5.901B2B11E80ED991E3ED42AA5A0D808C] - 15/04/2013 - 16:58:38 ---A- - C:\Windows\Prefetch\MALWAREBYTES-ANTI-MALWARE_MAL-2CFE916B.pf
O45 - LFCP:[MD5.285B00BFF5AC87A7F9259A02ED065DB1] - 15/04/2013 - 16:58:40 ---A- - C:\Windows\Prefetch\MALWAREBYTES-ANTI-MALWARE_MAL-03B31734.pf
O45 - LFCP:[MD5.BFD82AB0AEF4C497EA54E5DB5B5F00BD] - 15/04/2013 - 16:59:42 ---A- - C:\Windows\Prefetch\MBAM-SETUP.EXE-0E733B33.pf
O45 - LFCP:[MD5.142C7904A3259D0B1AA08ABB25A77FD4] - 15/04/2013 - 16:59:43 ---A- - C:\Windows\Prefetch\MBAM-SETUP.TMP-756BB55D.pf
O45 - LFCP:[MD5.D3F3AC4FF3505BEB740588143AFACC76] - 15/04/2013 - 16:59:48 ---A- - C:\Windows\Prefetch\REGSVR32.EXE-E1DBB6D8.pf
O45 - LFCP:[MD5.5327C7F8A177A37769FBDBBEAADB6265] - 15/04/2013 - 17:06:03 ---A- - C:\Windows\Prefetch\ASWREGSVR.EXE-258A15D5.pf
O45 - LFCP:[MD5.515247463E12E0AA3B928C0C1F6991F3] - 15/04/2013 - 17:06:03 ---A- - C:\Windows\Prefetch\ASWREGSVR64.EXE-4668B667.pf
O45 - LFCP:[MD5.56919576CCB35BAF31798E71192A1072] - 15/04/2013 - 17:08:29 ---A- - C:\Windows\Prefetch\ASWOFFERTOOL.EXE-4EF92049.pf
O45 - LFCP:[MD5.D9D6910AC16A6B3B299C0221CB40BD3F] - 15/04/2013 - 17:09:43 ---A- - C:\Windows\Prefetch\MPCMDRUN.EXE-6520183E.pf
O45 - LFCP:[MD5.F55163301497A86B52255A1183C1519F] - 15/04/2013 - 22:04:01 ---A- - C:\Windows\Prefetch\BOOTIM.EXE-D61D2F34.pf
O45 - LFCP:[MD5.604F0A84379B7A409EC5E4521C969441] - 15/04/2013 - 22:05:05 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-6999291C.pf
O45 - LFCP:[MD5.EEA42D2BAAE37CC7E5B29B04284F9A13] - 15/04/2013 - 22:06:15 ---A- - C:\Windows\Prefetch\AgCx_SC5.db
O45 - LFCP:[MD5.BD580F492B385DFC22D8E7EE21430849] - 16/04/2013 - 20:46:36 ---A- - C:\Windows\Prefetch\USERINIT.EXE-7FD17ED1.pf
O45 - LFCP:[MD5.2BCA5FF00399D9D123636B0AEE1852DC] - 16/04/2013 - 20:46:51 ---A- - C:\Windows\Prefetch\EXPLORER.EXE-03C49D11.pf
O45 - LFCP:[MD5.177822202F01E503CFA56050E841A9CB] - 16/04/2013 - 20:47:45 ---A- - C:\Windows\Prefetch\AgCx_SC4.db
O45 - LFCP:[MD5.83080278E9EFDD1AEE7E871343EC8E4B] - 16/04/2013 - 20:48:50 ---A- - C:\Windows\Prefetch\REGSVR32.EXE-3290E8FC.pf
O45 - LFCP:[MD5.85E5D1EA55AA389F286979B4B3E063C6] - 16/04/2013 - 20:48:59 ---A- - C:\Windows\Prefetch\MBAM.EXE-125A28F9.pf
O45 - LFCP:[MD5.EE19E22FBE02C9148B904A53944C344B] - 16/04/2013 - 20:58:01 ---A- - C:\Windows\Prefetch\SYSTEMPROPERTIESPROTECTION.EX-9E926287.pf
O45 - LFCP:[MD5.3939249DD4E7CFA22976D1BA750BBE31] - 16/04/2013 - 20:58:08 ---A- - C:\Windows\Prefetch\RSTRUI.EXE-F76EBF17.pf
O45 - LFCP:[MD5.912AA7B06F70EB65A772DEC44D6AC8A6] - 16/04/2013 - 20:58:08 ---A- - C:\Windows\Prefetch\WBENGINE.EXE-86775975.pf
O45 - LFCP:[MD5.8BDC82FD255C6377C794886EA45E64BD] - 16/04/2013 - 20:58:27 ---A- - C:\Windows\Prefetch\VDSLDR.EXE-35269815.pf
O45 - LFCP:[MD5.62A2494F3AEE0D6282DA712EB3074407] - 16/04/2013 - 20:58:31 ---A- - C:\Windows\Prefetch\VDS.EXE-F11BF333.pf
O45 - LFCP:[MD5.D158066A9CC308A384C9577BA2C16A06] - 16/04/2013 - 20:59:18 ---A- - C:\Windows\Prefetch\PDVDLAUNCHPOLICY.EXE-583160E9.pf
O45 - LFCP:[MD5.89CDD7263CD75786B07285CA1A71027F] - 16/04/2013 - 20:59:33 ---A- - C:\Windows\Prefetch\POWERDVD12.EXE-E975140A.pf
O45 - LFCP:[MD5.DDA11A5E524E6E75E3A533395AA2469E] - 16/04/2013 - 20:59:37 ---A- - C:\Windows\Prefetch\POWERDVD12ML.EXE-F8AF273F.pf
O45 - LFCP:[MD5.1015B8DA42BFD36518892A5E3832A345] - 16/04/2013 - 20:59:40 ---A- - C:\Windows\Prefetch\POWERDVD.EXE-21EC29AF.pf
O45 - LFCP:[MD5.79801C0D1BE44C21FA7BD2BAD295C617] - 16/04/2013 - 20:59:50 ---A- - C:\Windows\Prefetch\CLUPDATER.EXE-1DA7EB57.pf
O45 - LFCP:[MD5.9FF9075F7D6E260326D0B85551BE2CFA] - 16/04/2013 - 21:02:01 ---A- - C:\Windows\Prefetch\SPLWOW64.EXE-853292E2.pf
O45 - LFCP:[MD5.E4C1DE5988FC6C23472C5ADBC376DF70] - 16/04/2013 - 21:04:14 ---A- - C:\Windows\Prefetch\ACTIVATE.EXE-F179E671.pf
O45 - LFCP:[MD5.AEF4C887383EFAB84EA4D0808A3967F9] - 16/04/2013 - 21:04:41 ---A- - C:\Windows\Prefetch\IEXPLORE.EXE-7A9337F2.pf
O45 - LFCP:[MD5.76E163B79028623A30D7D71334DE6DB9] - 16/04/2013 - 21:04:43 ---A- - C:\Windows\Prefetch\IEXPLORE.EXE-F4FB5D2F.pf
O45 - LFCP:[MD5.63FB44AD73CCF4E2083290CB74F225D3] - 16/04/2013 - 21:04:50 ---A- - C:\Windows\Prefetch\FLASHUTIL_ACTIVEX.EXE-4E6AE223.pf
O45 - LFCP:[MD5.130EC1C615C3F86C280B5F8C6A96936D] - 16/04/2013 - 21:34:22 ---A- - C:\Windows\Prefetch\FLASHPLAYERPLUGIN_11_6_602_18-54979347.pf
O45 - LFCP:[MD5.7DA13CD2D59939607812748205E08D6D] - 16/04/2013 - 21:49:10 ---A- - C:\Windows\Prefetch\V2_9_5_3093_WIN.EXE-E9970449.pf
O45 - LFCP:[MD5.FF878B8CE13F0F7C01BCC1421538EC60] - 16/04/2013 - 21:50:20 ---A- - C:\Windows\Prefetch\ISBEW64.EXE-B9560748.pf
O45 - LFCP:[MD5.9DB6A9C45CC1D5314A10F949117A4D78] - 16/04/2013 - 21:50:32 ---A- - C:\Windows\Prefetch\TASKKILL.EXE-3D8A2F61.pf
O45 - LFCP:[MD5.4E42D34DF0CEB0BDBD991885F843E962] - 16/04/2013 - 21:50:46 ---A- - C:\Windows\Prefetch\TOMTOMHOMESERVICE.EXE-11AC1C74.pf
O45 - LFCP:[MD5.49D61EE64C2F4258A76F3BBB253C96D2] - 16/04/2013 - 21:53:21 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-EE2FB4D9.pf
O45 - LFCP:[MD5.66C53610042D19EF68C4503846ECE225] - 16/04/2013 - 22:03:05 ---A- - C:\Windows\Prefetch\TOMTOMHOMERUNTIME.EXE-36C8A33E.pf
O45 - LFCP:[MD5.70CA8D9DE0AB95720F73914E30535574] - 16/04/2013 - 22:04:06 ---A- - C:\Windows\Prefetch\WUDFHOST.EXE-0D78D366.pf
O45 - LFCP:[MD5.DEBC49C03C01B6027B761B5FEE6BCEFC] - 16/04/2013 - 22:04:46 ---A- - C:\Windows\Prefetch\TIWORKER.EXE-D3BFD41F.pf
O45 - LFCP:[MD5.BA2A7917414BAF483358E958F1B53D03] - 16/04/2013 - 22:04:46 ---A- - C:\Windows\Prefetch\TRUSTEDINSTALLER.EXE-B018CCBF.pf
O45 - LFCP:[MD5.AE49E49AB8244B02EB12FE9C807D0AE6] - 16/04/2013 - 22:04:58 ---A- - C:\Windows\Prefetch\TOMTOMHOME.EXE-D4CDF857.pf
O45 - LFCP:[MD5.8AC1A37A367DCCBC7BF11B3EFC0083D8] - 16/04/2013 - 22:20:49 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-EA0A52C8.pf
O45 - LFCP:[MD5.1B8FB0805A58EFD566E66E28C8636A68] - 16/04/2013 - 22:20:59 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-465FAC7E.pf
O45 - LFCP:[MD5.0ABBF154FD42AF49008D6319B24A01B0] - 16/04/2013 - 22:21:00 ---A- - C:\Windows\Prefetch\NGEN.EXE-383F81D5.pf
O45 - LFCP:[MD5.71C49A3030B191B5A3D8227FA1721410] - 16/04/2013 - 22:21:05 ---A- - C:\Windows\Prefetch\NGENTASK.EXE-4DB88ADA.pf
O45 - LFCP:[MD5.D823293A165D121925A2CBACCEC90A3F] - 16/04/2013 - 22:21:06 ---A- - C:\Windows\Prefetch\NGENTASK.EXE-CD4E002C.pf
O45 - LFCP:[MD5.87EB59C86D96703A02CFE7E0CA5A942D] - 16/04/2013 - 22:21:08 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-9E940D77.pf
O45 - LFCP:[MD5.A26DC8BC20AABA0C6532D4360939E62B] - 16/04/2013 - 22:21:12 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-5511E724.pf
O45 - LFCP:[MD5.BAA73695D09899F7960E218B95CCC5B8] - 16/04/2013 - 22:21:13 ---A- - C:\Windows\Prefetch\NGEN.EXE-A8DBB043.pf
O45 - LFCP:[MD5.C111880BAEEB842AF72BCFDFAB3FC626] - 16/04/2013 - 22:21:24 ---A- - C:\Windows\Prefetch\MSCORSVW.EXE-D593A5D9.pf
O45 - LFCP:[MD5.D134814236A9AD80F257641419BC31BB] - 16/04/2013 - 22:21:32 ---A- - C:\Windows\Prefetch\Layout.ini
O45 - LFCP:[MD5.87631FD618767B7891C8DE04B4D3C276] - 16/04/2013 - 22:21:32 ---A- - C:\Windows\Prefetch\MSCORSVW.EXE-55FE3087.pf
O45 - LFCP:[MD5.3DF7965E660CCA5F2CD5713E47944547] - 16/04/2013 - 22:21:42 ---A- - C:\Windows\Prefetch\DEFRAG.EXE-22AD8A37.pf
O45 - LFCP:[MD5.3CEE4C6A973D6EBC3809A6B9FAAFCC19] - 16/04/2013 - 22:23:00 ---A- - C:\Windows\Prefetch\PLUGIN-CONTAINER.EXE-E510713D.pf
O45 - LFCP:[MD5.FB2BE3ED1C8875A447DB61F46D204C8E] - 17/04/2013 - 10:05:11 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-14FECFA1.pf
O45 - LFCP:[MD5.764110F7D3F22FA25D1B10080C4B9563] - 17/04/2013 - 10:05:11 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-A2BD634E.pf
O45 - LFCP:[MD5.B4D4F5D5659E5D76C6529BF8072426F9] - 17/04/2013 - 10:05:17 ---A- - C:\Windows\Prefetch\MOBSYNC.EXE-A02D9B49.pf
O45 - LFCP:[MD5.50D5B81EE72323F1898240106643AA7F] - 17/04/2013 - 10:07:17 ---A- - C:\Windows\Prefetch\TASKHOSTEX.EXE-7356AAC0.pf
O45 - LFCP:[MD5.700D3F22ED7590337559AB820EAB3526] - 17/04/2013 - 10:47:47 ---A- - C:\Windows\Prefetch\SMSS.EXE-81AD91F0.pf
O45 - LFCP:[MD5.828B029FEE6E6BE49808695A5307882F] - 17/04/2013 - 10:47:53 ---A- - C:\Windows\Prefetch\LOGONUI.EXE-E35F76FB.pf
O45 - LFCP:[MD5.1B763697659DE288373C34FC68F83853] - 17/04/2013 - 10:47:57 ---A- - C:\Windows\Prefetch\CSRSS.EXE-A7A2B218.pf
O45 - LFCP:[MD5.1CFB7C08E8855AD76997DBAC9AF2EA84] - 17/04/2013 - 10:48:02 ---A- - C:\Windows\Prefetch\WINLOGON.EXE-0D9AB72B.pf
O45 - LFCP:[MD5.0A5CD638C1994DD8EBE2B0D08200B62D] - 17/04/2013 - 10:48:04 ---A- - C:\Windows\Prefetch\DWM.EXE-F29FE9E2.pf
O45 - LFCP:[MD5.7928514D8E93993716657B74C30712DE] - 17/04/2013 - 10:48:12 ---A- - C:\Windows\Prefetch\NVVSVC.EXE-D5489D80.pf
O45 - LFCP:[MD5.984CF758D7C4EE698FDE37966287B775] - 17/04/2013 - 10:48:12 ---A- - C:\Windows\Prefetch\NVXDSYNC.EXE-7855AED2.pf
O45 - LFCP:[MD5.E43FC732806B7F1BED3D5FD01A581AA9] - 17/04/2013 - 20:26:58 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-F2C7AEBC.pf
O45 - LFCP:[MD5.9AF39801C079779A5CD00E9E5ECC7F6C] - 17/04/2013 - 20:28:54 ---A- - C:\Windows\Prefetch\AgCx_SC2.db
O45 - LFCP:[MD5.0004DC0261DA1FA90EF4CAB74287B600] - 17/04/2013 - 20:36:16 ---A- - C:\Windows\Prefetch\AgCx_SC1.db
O45 - LFCP:[MD5.39D7150876517C2E7A1F9905DD3B84C5] - 17/04/2013 - 20:36:16 ---A- - C:\Windows\Prefetch\AgCx_SC1.db.trx
O45 - LFCP:[MD5.327588844DF8F69AEB7C354EFA52DEC4] - 17/04/2013 - 21:00:25 ---A- - C:\Windows\Prefetch\MBAMGUI.EXE-9FF23AE2.pf
O45 - LFCP:[MD5.0612AAC22556436A26DD2F1568C87F57] - 17/04/2013 - 21:00:31 ---A- - C:\Windows\Prefetch\RUNTIMEBROKER.EXE-17E2786F.pf
O45 - LFCP:[MD5.B5566420E70762BBFCFEB22357E84313] - 17/04/2013 - 21:00:37 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-1B28B747.pf
O45 - LFCP:[MD5.6A18581C3ABF36E795729EE0E50926EB] - 17/04/2013 - 21:00:38 ---A- - C:\Windows\Prefetch\ADOBEARM.EXE-813E932C.pf
O45 - LFCP:[MD5.9B6F5E6E9D34BAB06E00B3CF0B82BFA0] - 17/04/2013 - 21:00:39 ---A- - C:\Windows\Prefetch\READER_SL.EXE-BC0A991D.pf
O45 - LFCP:[MD5.D78D14C4B7D348989B9968D141331930] - 17/04/2013 - 21:00:42 ---A- - C:\Windows\Prefetch\RUNONCE.EXE-E874B0D0.pf
O45 - LFCP:[MD5.A92EB4F7721BDBC07DEF35AC014534B6] - 17/04/2013 - 21:00:43 ---A- - C:\Windows\Prefetch\TOMTOMHOMERUNNER.EXE-E7A314C1.pf
O45 - LFCP:[MD5.2DCEE2B46C712C770A26629338722739] - 17/04/2013 - 21:00:47 ---A- - C:\Windows\Prefetch\JUSCHED.EXE-4B303C70.pf
O45 - LFCP:[MD5.431F3B74EA3C61AF04B079F38C1BFDD4] - 17/04/2013 - 21:00:50 ---A- - C:\Windows\Prefetch\AVASTEMUPDATE.EXE-0DD1597D.pf
O45 - LFCP:[MD5.BA29608438A9D318DB23093D22A7EC7F] - 17/04/2013 - 21:00:51 ---A- - C:\Windows\Prefetch\POWERDVD12DMRENGINE.EXE-CB26D423.pf
O45 - LFCP:[MD5.61A1009146F8E29B762493816341BE41] - 17/04/2013 - 21:00:55 ---A- - C:\Windows\Prefetch\AVAST.SETUP-50B30900.pf
O45 - LFCP:[MD5.822B634C07979AEC5E6E7B80D4151868] - 17/04/2013 - 21:00:55 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-6AA5D6C5.pf
O45 - LFCP:[MD5.3FF52158F11FD596ECD96AF3ACB23819] - 17/04/2013 - 21:00:56 ---A- - C:\Windows\Prefetch\AVASTUI.EXE-DC11C262.pf
O45 - LFCP:[MD5.DBAA6141B734AAA8A4E7DFB8B1584DD3] - 17/04/2013 - 21:00:57 ---A- - C:\Windows\Prefetch\POWERDVD12AGENT.EXE-9060659D.pf
O45 - LFCP:[MD5.A0C48381B96A3139CD8B1A66D3852296] - 17/04/2013 - 21:01:11 ---A- - C:\Windows\Prefetch\AVBUGREPORT.EXE-E4EA699E.pf
O45 - LFCP:[MD5.96C8E0BCF30607F6A8AC30F6BCE4A8C5] - 17/04/2013 - 21:01:24 ---A- - C:\Windows\Prefetch\MDSCHED.EXE-0EEA91CA.pf
O45 - LFCP:[MD5.D11809F864EFC9C41755C0DCBBF1E750] - 17/04/2013 - 21:01:40 ---A- - C:\Windows\Prefetch\PfSvPerfStats.bin
O45 - LFCP:[MD5.148940C87852ABCBCE734ADF79EA7631] - 17/04/2013 - 21:21:22 ---A- - C:\Windows\Prefetch\RELPOST.EXE-AC41CDAF.pf
O45 - LFCP:[MD5.53494C61C4F04EE296AB7B613F01BD72] - 17/04/2013 - 21:21:22 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-24EFAC77.pf
O45 - LFCP:[MD5.34CD27A28F8663574A3E8E53D8E8F7CD] - 17/04/2013 - 21:21:22 ---A- - C:\Windows\Prefetch\SEARCHINDEXER.EXE-EF8503D3.pf
O45 - LFCP:[MD5.7A3E743D79017D64CEC79094FE1A9C57] - 17/04/2013 - 21:21:22 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-DACB5D4F.pf
O45 - LFCP:[MD5.F88DE5325E1EF663FE7A868A7654E765] - 17/04/2013 - 21:21:22 ---A- - C:\Windows\Prefetch\THUMBNAILEXTRACTIONHOST.EXE-C3FB8861.pf
O45 - LFCP:[MD5.1435DCB67EC09D859982FE962F7757AA] - 17/04/2013 - 21:21:25 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-29D61DAB.pf
O45 - LFCP:[MD5.47EA079072EE56EE73456BA6EF77CEE6] - 17/04/2013 - 21:21:43 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-50AF0BCC.pf
O45 - LFCP:[MD5.7D8D824C0B7310DCA52F3E73DCD5AA0D] - 17/04/2013 - 21:21:48 ---A- - C:\Windows\Prefetch\MMC.EXE-6890E6C3.pf
O45 - LFCP:[MD5.F443926C898DD2A47CADD57E2914E087] - 17/04/2013 - 21:22:59 ---A- - C:\Windows\Prefetch\CLHNSERVICEFORPOWERDVD12.EXE-B1B313AD.pf
O45 - LFCP:[MD5.5F7231A890B060AE647C63EA9C2B08E1] - 17/04/2013 - 21:23:02 ---A- - C:\Windows\Prefetch\DAEMONU.EXE-6D6DBFB6.pf
O45 - LFCP:[MD5.41171F0E973D5A4D66C09F32E57B8D48] - 17/04/2013 - 21:23:05 ---A- - C:\Windows\Prefetch\WMPNETWK.EXE-13D172B9.pf
O45 - LFCP:[MD5.F4DBD3D4545AFA48D2446F759B082206] - 17/04/2013 - 21:24:42 ---A- - C:\Windows\Prefetch\WMIADAP.EXE-7D63BB4C.pf
O45 - LFCP:[MD5.56E1AF1CE33CEA11CE560FE670D44E93] - 17/04/2013 - 21:25:21 ---A- - C:\Windows\Prefetch\SETTINGSYNCHOST.EXE-DD400067.pf
O45 - LFCP:[MD5.B4631EAFCC9BAE2764004DC1183963A5] - 17/04/2013 - 21:26:42 ---A- - C:\Windows\Prefetch\FIREFOX.EXE-528BC649.pf
O45 - LFCP:[MD5.602FA53EED99DAD68CC5D6149B151D54] - 17/04/2013 - 21:29:40 ---A- - C:\Windows\Prefetch\CONTROL.EXE-5BCB0217.pf
O45 - LFCP:[MD5.4FEAD6EE35DD6268D968E20D7A69F187] - 17/04/2013 - 21:29:40 ---A- - C:\Windows\Prefetch\Op-EXPLORER.EXE-03C49D11-000000F5.pf
O45 - LFCP:[MD5.E8E378BF1A1B8B71F81D866688B69208] - 17/04/2013 - 21:29:52 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-C7028A70.pf
O45 - LFCP:[MD5.2346C3EFF4529F66591BA2C5667151B5] - 17/04/2013 - 21:29:57 ---A- - C:\Windows\Prefetch\WMIPRVSE.EXE-BB49B536.pf
O45 - LFCP:[MD5.A4FB9E11051F050C8BEB54B3C9F336E2] - 17/04/2013 - 21:35:14 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-985C34E6.pf
O45 - LFCP:[MD5.E49524DD528F2C98C79C04DF32C40F25] - 17/04/2013 - 21:35:23 ---A- - C:\Windows\Prefetch\MMC.EXE-5CD5E039.pf
O45 - LFCP:[MD5.4FAF1D87F60563F269D2837CE1373418] - 17/04/2013 - 21:35:42 ---A- - C:\Windows\Prefetch\WMIAPSRV.EXE-CF150EEA.pf
O45 - LFCP:[MD5.B2C227D6D8F9068097F04B3205E94C25] - 17/04/2013 - 21:40:01 ---A- - C:\Windows\Prefetch\GOOGLEUPDATE.EXE-05D121FC.pf
O45 - LFCP:[MD5.E051C6A9959C74E1BF6B60B7CF36E863] - 17/04/2013 - 21:40:49 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-B865F023.pf
O45 - LFCP:[MD5.C4870E3EC341C756A2B0FF7287FC543C] - 17/04/2013 - 21:40:58 ---A- - C:\Windows\Prefetch\MAHJONG.EXE-FEE93C59.pf
O45 - LFCP:[MD5.64A9062FCDBC78F1F29AF48B1D74C19D] - 17/04/2013 - 21:58:04 ---A- - C:\Windows\Prefetch\GOOGLEUPDATE.EXE-62E5E10F.pf
O45 - LFCP:[MD5.C060F4DEDDEE2BB86BF6627F07BF0712] - 17/04/2013 - 22:05:59 ---A- - C:\Windows\Prefetch\COMUPDATUS.EXE-403FA02A.pf
O45 - LFCP:[MD5.7F602FD1A61DC246C8441A269E923339] - 17/04/2013 - 22:13:38 ---A- - C:\Windows\Prefetch\WSHOST.EXE-05F0A3AF.pf
O45 - LFCP:[MD5.074858F2A6B25E6C33333BF395C917D8] - 17/04/2013 - 22:23:08 ---A- - C:\Windows\Prefetch\NVTRAY.EXE-981FA625.pf
O45 - LFCP:[MD5.1ECEDA87671DDFB389BF04E90B016F7E] - 17/04/2013 - 22:23:11 ---A- - C:\Windows\Prefetch\JAVAWS.EXE-596738CE.pf
O45 - LFCP:[MD5.68A0A51E250AA47CFB951B1FD42650A2] - 17/04/2013 - 22:23:20 ---A- - C:\Windows\Prefetch\JUCHECK.EXE-3F4853CB.pf
O45 - LFCP:[MD5.45BBF563E8C6F068E59B0B1E1F93C43D] - 17/04/2013 - 22:23:35 ---A- - C:\Windows\Prefetch\JRE-7U21-WINDOWS-I586-IFTW.EX-24ACB787.pf
O45 - LFCP:[MD5.16D3DA26F09C8CE24FB323A6DD7508A0] - 17/04/2013 - 22:24:01 ---A- - C:\Windows\Prefetch\MSICE1C.TMP-9D045B62.pf
O45 - LFCP:[MD5.241D5D5EA98232DDB36C9321EDD3D73A] - 17/04/2013 - 22:24:03 ---A- - C:\Windows\Prefetch\MSIEXEC.EXE-7D20CFB0.pf
O45 - LFCP:[MD5.382D5F60C8FB278C6AF74520C820CD55] - 17/04/2013 - 22:24:03 ---A- - C:\Windows\Prefetch\MSIEXEC.EXE-BAE57A74.pf
O45 - LFCP:[MD5.A1C4FBFEFE9822CAC90CA37DA7B2EE9C] - 17/04/2013 - 22:24:12 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-574A519D.pf
O45 - LFCP:[MD5.E9D535695487FD401B0AD54CC69CF3D1] - 17/04/2013 - 22:24:12 ---A- - C:\Windows\Prefetch\VSSVC.EXE-206E55B3.pf
O45 - LFCP:[MD5.0F78E67288264D77D57DFD4DBA5D85CB] - 17/04/2013 - 22:24:44 ---A- - C:\Windows\Prefetch\MSI758E.TMP-1EEB275B.pf
O45 - LFCP:[MD5.CD32BC4C5011F6FFB6147FC329173512] - 17/04/2013 - 22:24:45 ---A- - C:\Windows\Prefetch\CONHOST.EXE-F98A1078.pf
O45 - LFCP:[MD5.0044DB8925A55D04FA83EF986ACA154E] - 17/04/2013 - 22:24:45 ---A- - C:\Windows\Prefetch\SEARCHFILTERHOST.EXE-10E4267C.pf
O45 - LFCP:[MD5.995F03DA1EC6889D6CA679C8767D3EC1] - 17/04/2013 - 22:24:45 ---A- - C:\Windows\Prefetch\SEARCHPROTOCOLHOST.EXE-C6CFE2A8.pf
O45 - LFCP:[MD5.DA87313CC9424C73D31CC9317EB98EA2] - 17/04/2013 - 22:24:45 ---A- - C:\Windows\Prefetch\SRTASKS.EXE-29C2E869.pf
O45 - LFCP:[MD5.ED9CF919707E8F5DF2C8540E8FFCAA29] - 17/04/2013 - 22:24:46 ---A- - C:\Windows\Prefetch\JQS.EXE-02829BC8.pf
O45 - LFCP:[MD5.6269DF0198C791BB8D6AC24324FE4D65] - 17/04/2013 - 22:24:51 ---A- - C:\Windows\Prefetch\PATCHJRE.EXE-3DD8DF36.pf
O45 - LFCP:[MD5.90511F573AFE5E7777890254967A1F68] - 17/04/2013 - 22:25:11 ---A- - C:\Windows\Prefetch\JAVAW.EXE-9BCFFCC7.pf
O45 - LFCP:[MD5.4FFBAB47F9630E105C6597C331572F39] - 17/04/2013 - 22:25:24 ---A- - C:\Windows\Prefetch\JAUREG.EXE-E2D13B60.pf
O45 - LFCP:[MD5.A003F92D1F2281CDD4A4C4CAB320386A] - 17/04/2013 - 22:25:25 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-38926D07.pf
O45 - LFCP:[MD5.635D902A6FD38AB04B1E98859E091990] - 17/04/2013 - 22:25:29 ---A- - C:\Windows\Prefetch\OPENWITH.EXE-BA0DC300.pf
O45 - LFCP:[MD5.22FA50501BC7B3BEE93A057F5247AB85] - 17/04/2013 - 22:25:56 ---A- - C:\Windows\Prefetch\JP2LAUNCHER.EXE-2897E2F8.pf
O45 - LFCP:[MD5.83C8FC740CE8E5430B529C7BDC5952EC] - 17/04/2013 - 22:25:57 ---A- - C:\Windows\Prefetch\JAVA.EXE-4EF2C834.pf
O45 - LFCP:[MD5.08604D8169B0F97254119D81B45DE23A] - 17/04/2013 - 22:28:25 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-2C88A316.pf
O45 - LFCP:[MD5.0CA0DEF3B9D03BF985D8572C7DA7F861] - 17/04/2013 - 22:28:55 ---A- - C:\Windows\Prefetch\CONSENT.EXE-2D674CE4.pf
O45 - LFCP:[MD5.6FDBE2EE32CF2CF8F91C18F7BC376564] - 17/04/2013 - 22:29:03 ---A- - C:\Windows\Prefetch\AUDIODG.EXE-9848A323.pf
O45 - LFCP:[MD5.8991E49618851F19E8B21F08CED78967] - 17/04/2013 - 22:29:06 ---A- - C:\Windows\Prefetch\ZHPDIAG2.EXE-BBEAF9DE.pf
O45 - LFCP:[MD5.30FAB662F4F495728784E3E57B8993C5] - 17/04/2013 - 22:29:07 ---A- - C:\Windows\Prefetch\ZHPDIAG2.TMP-D5D3C0DE.pf
O45 - LFCP:[MD5.219780D31CB109C290C304F9252CA6F0] - 17/04/2013 - 22:29:15 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-210D3DBE.pf
O45 - LFCP:[MD5.B718DEFAD1FA7FCD9BF8B73B946871FF] - 17/04/2013 - 22:30:42 ---A- - C:\Windows\Prefetch\CMD.EXE-2EB3E6E2.pf
O45 - LFCP:[MD5.B81D75066E2F5CD48A7134D515D3E5A6] - 17/04/2013 - 22:30:50 ---A- - C:\Windows\Prefetch\SPPSVC.EXE-7B160CA5.pf
O45 - LFCP:[MD5.DC2B3893EB9F16871CDE8C14E0363296] - 17/04/2013 - 22:30:53 ---A- - C:\Windows\Prefetch\SUBINACL.EXE-D08B2113.pf
O45 - LFCP:[MD5.C531F2A31CA0AFB0FE2E1FA183EE219C] - 17/04/2013 - 22:31:25 ---A- - C:\Windows\Prefetch\AgGlGlobalHistory.db
O45 - LFCP:[MD5.F0757EFCDA0536B3CD0248F7AB4E8805] - 17/04/2013 - 22:31:25 ---A- - C:\Windows\Prefetch\AgRobust.db
O45 - LFCP:[MD5.7C44039FC7DBA4BA09B63601AADF3113] - 17/04/2013 - 22:31:26 ---A- - C:\Windows\Prefetch\AgGlFaultHistory.db
O45 - LFCP:[MD5.DD979115E5813F6C324EBE598E6940DE] - 17/04/2013 - 22:31:26 ---A- - C:\Windows\Prefetch\AgGlFgAppHistory.db
O45 - LFCP:[MD5.322050528414215EFBD39989DB571ADB] - 17/04/2013 - 22:31:50 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-5B401A7E.pf
O45 - LFCP:[MD5.7F6A896B3A7AF79A390A8039C7EB937B] - 17/04/2013 - 22:32:01 ---A- - C:\Windows\Prefetch\FLASHPLAYERUPDATESERVICE.EXE-E0E5E52F.pf
O45 - LFCP:[MD5.3C721ED9E57CD3B90CFFC7DA66E75369] - 17/04/2013 - 22:32:10 ---A- - C:\Windows\Prefetch\TASKENG.EXE-23205583.pf
O45 - LFCP:[MD5.B31C00B79C564BB4E796EDBD24ED8498] - 17/04/2013 - 22:33:26 ---A- - C:\Windows\Prefetch\WERFAULT.EXE-94CE7668.pf
O45 - LFCP:[MD5.B94C9EFCB2BE253A5EBBF5C9A1B15625] - 17/04/2013 - 22:33:51 ---A- - C:\Windows\Prefetch\ZHPHEP.EXE-5F2753B1.pf
O45 - LFCP:[MD5.5FE3A1497DB54E130802B97A52DA0385] - 17/04/2013 - 22:34:01 ---A- - C:\Windows\Prefetch\ZHPDIAG.EXE-C7289479.pf
O45 - LFCP:[MD5.3975B37855B8224B9B0CE32DA2707539] - 17/04/2013 - 22:34:05 ---A- - C:\Windows\Prefetch\CSCRIPT.EXE-E9FF6526.pf
O45 - LFCP:[MD5.BADECA5B0218B0C556B045824D42BC3B] - 17/04/2013 - 22:34:07 ---A- - C:\Windows\Prefetch\PV.EXE-D9D90B9C.pf
O45 - LFCP:[MD5.0A23B8761810E487C3AC59C57038AACB] - 17/04/2013 - 22:34:13 ---A- - C:\Windows\Prefetch\WMIPRVSE.EXE-0C8A533A.pf
O45 - LFCP:[MD5.11EB030CEFBF59347730C56E183E0019] - 17/04/2013 - 22:34:39 ---A- - C:\Windows\Prefetch\SCHTASKS.EXE-0AD36442.pf
O45 - LFCP:[MD5.C95387533CD0D749E7043D5161860CE3] - 25/03/2013 - 22:53:40 ---A- - C:\Windows\Prefetch\TAPTILES.EXE-3E2DC662.pf
O45 - LFCP:[MD5.F22D1E6D28BEDA04EE202D294D73D240] - 27/03/2013 - 23:30:30 ---A- - C:\Windows\Prefetch\WWAHOST.EXE-D35BF5AF.pf
O45 - LFCP:[MD5.1D34C80CC3B8E8128A1D02F80D43A138] - 29/03/2013 - 22:59:25 ---A- - C:\Windows\Prefetch\MAHJONG.EXE-5137F05B.pf
O45 - LFCP:[MD5.964E16B8A08E5D7E75E2E1AF3C7003B2] - 30/03/2013 - 20:42:51 ---A- - C:\Windows\Prefetch\WWAHOST.EXE-1076C419.pf
O45 - LFCP:[MD5.28F92391FBB36DB173145E7F82EE3901] - 30/03/2013 - 20:48:54 ---A- - C:\Windows\Prefetch\POWERDVD9.EXE-B177BBB6.pf
O45 - LFCP:[MD5.56D8CB069E519CDB2C5177F2ABBB23AC] - 30/03/2013 - 20:48:55 ---A- - C:\Windows\Prefetch\CLUPDATER.EXE-7F7A780D.pf
O45 - LFCP:[MD5.A5F6817D8B4C1B0BA4A1F42AD1DCA0DD] - 30/03/2013 - 20:51:05 ---A- - C:\Windows\Prefetch\SETUP.EXE-31DB8EA1.pf
O45 - LFCP:[MD5.45A2EBE882C6323F3D1E92D3A80831D3] - 30/03/2013 - 21:12:45 ---A- - C:\Windows\Prefetch\VLC-MEDIA-PLAYER_VLC_MEDIA_PL-DB8AE33F.pf
O45 - LFCP:[MD5.4ABA84388C42C25BDC96F693D58FADD9] - 30/03/2013 - 21:13:11 ---A- - C:\Windows\Prefetch\VLC-CACHE-GEN.EXE-B13F780B.pf
O45 - LFCP:[MD5.822C9FE0359B3B4A17911C5D5800FD60] - 30/03/2013 - 21:15:33 ---A- - C:\Windows\Prefetch\VLC.EXE-F1ED81B3.pf
O45 - LFCP:[MD5.1BB69DFCE4C1B3A2C6F22DC6B6D1F5C2] - 30/03/2013 - 21:18:51 ---A- - C:\Windows\Prefetch\REVOUNINSTALLER.EXE-3D1962E3.pf
O45 - LFCP:[MD5.5D7E229A2B17FC3BF208DBBDA79AFC6F] - 30/03/2013 - 21:46:09 ---A- - C:\Windows\Prefetch\AU_.EXE-BA7A3E0A.pf
O45 - LFCP:[MD5.0FD111FCA65F9E554C0F15BBB816F451] - 30/03/2013 - 21:51:46 ---A- - C:\Windows\Prefetch\SETUP__2011.EXE-CEB6AD3D.pf
O45 - LFCP:[MD5.768DCDDE993288D1C2941DF38332CA36] - 30/03/2013 - 21:51:50 ---A- - C:\Windows\Prefetch\CYBERLINK_POWERDVD_10.0.1714_-FB8F849F.pf
O45 - LFCP:[MD5.741DAEAB95A88840401BE06D587F7753] - 30/03/2013 - 22:13:08 ---A- - C:\Windows\Prefetch\POWERDVD-11_POWERDVD_12.0.909-0165C57F.pf
O45 - LFCP:[MD5.11D6073E9E863D69EDD3A4F81241A289] - 30/03/2013 - 22:13:22 ---A- - C:\Windows\Prefetch\SETUP.EXE-8A84142D.pf
O45 - LFCP:[MD5.32A7CEE73D189C5A6C2B71DD64ED8C0F] - 30/03/2013 - 22:14:36 ---A- - C:\Windows\Prefetch\VCREDIST_X86.EXE-EBD3933D.pf
O45 - LFCP:[MD5.38632A072C9048A6F266ACE4EAA11B12] - 30/03/2013 - 22:14:57 ---A- - C:\Windows\Prefetch\VCREDIST_X86.EXE-BA8DC23C.pf
O45 - LFCP:[MD5.A2700A637A22877897E7D4942DC2934F] - 30/03/2013 - 22:16:23 ---A- - C:\Windows\Prefetch\WIC_X86_ENU.EXE-441D34CC.pf
O45 - LFCP:[MD5.5D59157F348CBE40ED7F1E508CCBAE9C] - 30/03/2013 - 22:17:50 ---A- - C:\Windows\Prefetch\OLRSUBMISSION.EXE-1499665A.pf
O45 - LFCP:[MD5.03AD5AF5DB75C9742905F4879EE16BD5] - 30/03/2013 - 22:33:01 ---A- - C:\Windows\Prefetch\EULA.EXE-0C63FE43.pf
~ Prefetcher: 229 Scanned in 00mn 01s



---\\ D�ni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l��diteur de configuration de s�curit� Windows.) -- C:\Windows\System32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de s�curit� Kerberos.) -- C:\Windows\System32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Fournisseur de s�curit� TLS/SSL.) -- C:\Windows\System32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Live Security Package.) -- C:\Windows\System32\livessp.dll
~ LSA: 9 Scanned in 00mn 00s



---\\ Contr�le du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\BasicDisplay.sys . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\BasicRender.sys . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dxgkrnl.sys . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\FsDepends.sys . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\FsDepends.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris s�rie.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d�extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\BasicDisplay.sys . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\BasicRender.sys . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dxgkrnl.sys . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\FsDepends.sys . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\FsDepends.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (...) -- C:\Windows\System32\Drivers\rdpencdd.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris s�rie.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d�extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
~ CSB: 17 Scanned in 00mn 00s



---\\ Trojan Driver Search Data (HKLM) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
~ TDSD: 2 Scanned in 00mn 00s



---\\ Microsoft Control Security Providers (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
~ MSCP: 2 Scanned in 00mn 00s



---\\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableCursorSuppression"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
~ MWPS: 17 Scanned in 00mn 00s



---\\ Microsoft Windows Policies Explorer (O56)
O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1
~ MWPE Keys: 3 Scanned in 00mn 00s



---\\ Liste des Drivers Syst�me (O58)
O58 - SDL:[MD5.4F18D4C7EA14F11A7211F60D553C03DB] - 26/07/2012 - 06:00:49 ---A- . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\Windows\System32\Drivers\3ware.sys [106736]
O58 - SDL:[MD5.8A869761F8A024DD2EA77E155BFAABFF] - 18/11/2012 - 23:57:58 ----- . (.Qualcomm Atheros Communications, Inc. - Qualcomm Atheros Extensible Wireless LAN device driver.) -- C:\Windows\System32\athw8x.sys [3728384]
~ Drivers: Scanned in 00mn 00s



---\\ Derniers fichiers modifi�s ou cr�es (Utilisateur) (O61)
O61 - LFC: 14/04/2013 - 20:37:27 -S-A- C:\Users\thierry\AppData\Local\Packages\Microsoft.MicrosoftMahjong_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\MetaData\77EC63BDA74BD0D0E0426DC8F8008506 [290]
O61 - LFC: 14/04/2013 - 20:39:15 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52f58420f7f79ed1\120712-0049\Mail\1\1d000004\2000272e_1a717dd8968c88.eml [10532]
O61 - LFC: 14/04/2013 - 20:39:16 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52f58420f7f79ed1\120712-0049\Mail\1\1d000004\2000272d_d9d4404bfb80a1.eml [8700]
O61 - LFC: 14/04/2013 - 20:39:17 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52f58420f7f79ed1\120712-0049\Mail\1\1d000004\2000272c_b590ccac392f9.eml [30526]
O61 - LFC: 14/04/2013 - 20:39:19 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52f58420f7f79ed1\120712-0049\Mail\1\1d000004\2000272b_c5caa9ad763410.eml [34230]
O61 - LFC: 14/04/2013 - 20:39:20 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52f58420f7f79ed1\120712-0049\Mail\1\1d000004\2000272a_4ad19cf033ba97.eml [21691]
O61 - LFC: 14/04/2013 - 20:39:21 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52f58420f7f79ed1\120712-0049\Mail\1\1d000004\20002729_e8669cb4cd2036.eml [47044]
O61 - LFC: 14/04/2013 - 20:39:23 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52f58420f7f79ed1\120712-0049\Mail\1\1d000004\20002728_d48d80b73173f.eml [17960]
O61 - LFC: 14/04/2013 - 20:39:24 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52f58420f7f79ed1\120712-0049\Mail\1\1d000004\20002727_308b617391b8a.eml [7868]
O61 - LFC: 14/04/2013 - 20:39:25 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52f58420f7f79ed1\120712-0049\Mail\1\1d000004\20002726_bcf71ba7b9d828.eml [8095]
O61 - LFC: 14/04/2013 - 20:39:26 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52f58420f7f79ed1\120712-0049\Mail\1\1d000004\20002725_dbaeca885de9f6.eml [7617]
O61 - LFC: 14/04/2013 - 20:39:27 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52f58420f7f79ed1\120712-0049\Mail\1\1d000004\20002724_1d586864555746.eml [52016]
O61 - LFC: 14/04/2013 - 20:39:28 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52f58420f7f79ed1\120712-0049\Mail\1\1d000004\20002723_f3036dd9d8e561.eml [7305]
O61 - LFC: 14/04/2013 - 20:39:29 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52f58420f7f79ed1\120712-0049\Mail\1\1d000004\20002722_ef56f62ab525ea.eml [14155]
O61 - LFC: 14/04/2013 - 20:39:29 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52f58420f7f79ed1\120712-0049\Mail\1\1d000005\20002721_90853cbfe6b2d6.eml [4786]
O61 - LFC: 14/04/2013 - 20:39:30 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52f58420f7f79ed1\120712-0049\Mail\1\1d000005\2000271f_b3ff9859de0b42.eml [17310]
O61 - LFC: 14/04/2013 - 20:39:30 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52f58420f7f79ed1\120712-0049\Mail\1\1d000005\20002720_49c54da910ceeb.eml [17897]
O61 - LFC: 14/04/2013 - 20:39:31 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52f58420f7f79ed1\120712-0049\Mail\1\1d000005\2000271e_5e6024d987ddd1.eml [4171]
O61 - LFC: 14/04/2013 - 20:39:33 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52f58420f7f79ed1\120712-0049\Mail\1\1d000005\2000271d_c622b006fb11d1.eml [4462]
O61 - LFC: 14/04/2013 - 20:39:34 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52f58420f7f79ed1\120712-0049\Mail\1\1d000002\2000271b_f76fcab8af8b28.eml [30611]
O61 - LFC: 14/04/2013 - 20:39:34 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52f58420f7f79ed1\120712-0049\Mail\1\1d000005\2000271c_22baa8d3ec34ce.eml [9370]
O61 - LFC: 14/04/2013 - 20:39:37 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52f58420f7f79ed1\120712-0049\Mail\1\1d000002\20002717_8f6305e792905.eml [10848]
O61 - LFC: 14/04/2013 - 20:39:46 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52f58420f7f79ed1\120712-0049\Mail\1\1d000002\200023e8_193a8f8c5aaf8b.eml [10182]
O61 - LFC: 14/04/2013 - 20:41:59 -S-A- C:\Users\thierry\AppData\Local\Packages\Microsoft.Taptiles_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\MetaData\57C8EDB95DF3F0AD4EE2DC2B8CFD4157 [302]
O61 - LFC: 14/04/2013 - 20:42:02 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.Taptiles_8wekyb3d8bbwe\LocalState\Microsoft.Xbox\pop.bin [1232]
O61 - LFC: 14/04/2013 - 20:42:04 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.Taptiles_8wekyb3d8bbwe\LocalState\Microsoft.Xbox\2533274984905475\1\d5137c4d12d683a413fab37f34abec60b3a591344e18c51d5eb06f31432af476 [752]
O61 - LFC: 14/04/2013 - 20:42:04 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.Taptiles_8wekyb3d8bbwe\LocalState\Microsoft.Xbox\2533274984905475\3\2681def2605143e7a9607e5a02c13cca555e7e983b17412b4201bf4de440ec33 [7864]
O61 - LFC: 14/04/2013 - 20:42:06 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.Taptiles_8wekyb3d8bbwe\LocalState\Microsoft.Xbox\2533274984905475\3\d1e682b043be0368265652f7db01e889f3cad83494090baf6df75da90098b881 [3554]
O61 - LFC: 14/04/2013 - 20:42:07 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.Taptiles_8wekyb3d8bbwe\LocalState\Microsoft.Xbox\channel.dat [178]
O61 - LFC: 14/04/2013 - 20:43:02 -S-A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\Microsoft\CryptnetUrlCache\Content\AC9005F5466BD463DF06D711B370595F [1175]
O61 - LFC: 14/04/2013 - 20:43:02 -S-A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\Microsoft\CryptnetUrlCache\MetaData\57C8EDB95DF3F0AD4EE2DC2B8CFD4157 [302]
O61 - LFC: 14/04/2013 - 20:43:02 -S-A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\Microsoft\CryptnetUrlCache\MetaData\77EC63BDA74BD0D0E0426DC8F8008506 [290]
O61 - LFC: 14/04/2013 - 20:43:02 -S-A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\Microsoft\CryptnetUrlCache\MetaData\AC9005F5466BD463DF06D711B370595F [316]
O61 - LFC: 14/04/2013 - 20:43:04 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\L6QIVHU6\features18858875-863c-4fd8-8d1e-dfb65b3d2122[1].json [12499]
O61 - LFC: 14/04/2013 - 20:43:04 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\V6GPD1GX\ClientBISettings[3].js [525]
O61 - LFC: 14/04/2013 - 20:43:04 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\Microsoft\Windows Store\Cache\0\0-HomePageData-https???services.apps.microsoft.com?browse?6.2.9200-1?615?fr-FR_fr-FR.fr.it-IT.it?c?FR?cp?10005001?HomePageData?pt?x64?lf?1.dat [2692]
O61 - LFC: 14/04/2013 - 20:43:05 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\WYZKIFE1\trans_pixelCAAS9KC9.gif [44]
O61 - LFC: 14/04/2013 - 20:43:05 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\Microsoft\Windows Store\Cache\0\0-Featured-https???services.apps.microsoft.com?browse?6.2.9200-1?615?c?FR?Featured?10553315.dat [7056]
O61 - LFC: 14/04/2013 - 20:43:06 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\L6QIVHU6\4e1654d5-ad91-4e83-bb76-40f4d61e56ac[1].png [12875]
O61 - LFC: 14/04/2013 - 20:43:06 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\V6GPD1GX\9f9d409f-2038-4941-83f0-0d925c8d583a[1].png [7832]
O61 - LFC: 14/04/2013 - 20:43:07 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\L6QIVHU6\2c1bb1a5-1809-4b76-8026-f9878aaa7ade[1].png [33095]
O61 - LFC: 14/04/2013 - 20:43:07 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\V6GPD1GX\68727838-7b4d-4e6f-8828-46cb0e247970[1].png [270556]
O61 - LFC: 14/04/2013 - 20:43:07 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\V6GPD1GX\fb48dedb-b725-4401-b6dd-ee2cde5d5f78[1].png [39870]
O61 - LFC: 14/04/2013 - 20:43:07 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\WYZKIFE1\0ebfef2b-c6d4-4c53-b2e6-6eee9e60c1f4[1].png [74888]
O61 - LFC: 14/04/2013 - 20:43:07 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\WYZKIFE1\3dacc034-c2a6-40e2-9479-83cf9f4035ea[1].png [9910]
O61 - LFC: 14/04/2013 - 20:43:08 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\C3W8J7KM\1c59defc-1b33-4761-b0fe-594ecc8a6316[1].png [8564]
O61 - LFC: 14/04/2013 - 20:43:08 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\C3W8J7KM\2ce0fd48-a133-4539-94dd-339fdfd9b268[1].png [18037]
O61 - LFC: 14/04/2013 - 20:43:08 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\L6QIVHU6\c73c84f6-2f59-406b-92e8-880e6db795fd[1].png [8188]
O61 - LFC: 14/04/2013 - 20:43:08 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\L6QIVHU6\d57a36ad-feac-4b79-ad0f-f1d92cfc0174[1].png [22535]
O61 - LFC: 14/04/2013 - 20:43:08 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\V6GPD1GX\4161224b-23a8-4904-bb53-ec7627138edc[1].png [37869]
O61 - LFC: 14/04/2013 - 20:43:08 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\V6GPD1GX\92709d7a-2510-43b3-8d8c-c11085340c2c[1].png [275098]
O61 - LFC: 14/04/2013 - 20:43:08 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\V6GPD1GX\a1a20c3e-fc52-428d-a9dd-b6b716f9f8ba[1].png [72622]
O61 - LFC: 14/04/2013 - 20:43:08 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\WYZKIFE1\6a1cb373-bf59-4f91-b24a-8870c9041db4[1].png [12837]
O61 - LFC: 14/04/2013 - 20:43:08 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\WYZKIFE1\712511ad-2d7e-4d10-ba2b-0b00c3ad31b4[1].png [23368]
O61 - LFC: 14/04/2013 - 20:43:08 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\WYZKIFE1\d69c46d5-0af1-4e08-9c26-937a228a94f5[1].png [165480]
O61 - LFC: 14/04/2013 - 20:43:09 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\C3W8J7KM\1150de9a-9d17-4e30-9a43-e02e5fbbdc73[1].png [59158]
O61 - LFC: 14/04/2013 - 20:43:09 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\C3W8J7KM\3c0b493c-c5f5-4d00-af69-96b8a1ee737b[1].png [23607]
O61 - LFC: 14/04/2013 - 20:43:09 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\C3W8J7KM\96c70ac4-ad68-4fa7-8310-58d6218dff55[1].png [7986]
O61 - LFC: 14/04/2013 - 20:43:09 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\C3W8J7KM\a9b9cb7e-17f2-465a-b7b6-39ada6a9b0ec[1].png [42434]
O61 - LFC: 14/04/2013 - 20:43:09 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\C3W8J7KM\abb466c7-8382-4fda-a83a-abd1960bcab2[1].png [9374]
O61 - LFC: 14/04/2013 - 20:43:09 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\L6QIVHU6\033a433f-8960-41e0-a24d-7d3f203cfb6a[1].png [5210]
O61 - LFC: 14/04/2013 - 20:43:09 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\L6QIVHU6\30bb54b0-62f5-4769-a650-54568be69c86[1].png [9832]
O61 - LFC: 14/04/2013 - 20:43:09 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\L6QIVHU6\685603b8-a1aa-4b3f-98dd-ca4e30fd28a3[1].png [42506]
O61 - LFC: 14/04/2013 - 20:43:09 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\L6QIVHU6\6dfc7623-800e-4df0-964a-70e811476af7[1].png [9358]
O61 - LFC: 14/04/2013 - 20:43:09 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\L6QIVHU6\ba593033-9c3d-4f26-a657-a8fb9974dd46[1].png [40268]
O61 - LFC: 14/04/2013 - 20:43:09 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\L6QIVHU6\bd22f50a-f16d-45f7-ac3c-102678536189[1].png [6190]
O61 - LFC: 14/04/2013 - 20:43:09 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\V6GPD1GX\015a7476-43c9-413f-afa7-ae2c0edc8af8[1].png [41852]
O61 - LFC: 14/04/2013 - 20:43:09 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\V6GPD1GX\0236df46-9545-4d74-9706-407a6d4b862a[1].png [7502]
O61 - LFC: 14/04/2013 - 20:43:09 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\V6GPD1GX\5d48268a-907e-49a5-9162-212618366e72[1].png [29319]
O61 - LFC: 14/04/2013 - 20:43:09 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\V6GPD1GX\650877a4-09ba-4fe1-9faa-c38e9a8f717a[1].png [54538]
O61 - LFC: 14/04/2013 - 20:43:09 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\V6GPD1GX\b0490a7d-aa6f-420d-a209-db4a4b78c4c8[1].png [5053]
O61 - LFC: 14/04/2013 - 20:43:09 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\WYZKIFE1\023deeab-2b36-4a34-b1b6-d5f3220f31b3[1].png [12024]
O61 - LFC: 14/04/2013 - 20:43:09 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\WYZKIFE1\5f678cfb-e3dd-457f-9b90-da4f79f76184[1].png [11698]
O61 - LFC: 14/04/2013 - 20:43:09 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\WYZKIFE1\db877de4-16d6-475a-be1a-d3ea7e947f1e[1].png [24458]
O61 - LFC: 14/04/2013 - 20:43:09 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\WYZKIFE1\ef55ed42-d0cb-43a9-803e-b50968e6977b[1].png [8467]
O61 - LFC: 14/04/2013 - 20:43:09 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\WYZKIFE1\fdcbeedf-08e1-48cd-aae8-90c4cfdba3a4[1].png [69059]
O61 - LFC: 14/04/2013 - 20:43:10 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\C3W8J7KM\7a049b71-a62e-4245-9b1b-b21dd6d7f6c6[1].png [44621]
O61 - LFC: 14/04/2013 - 20:43:10 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\C3W8J7KM\b57925ac-cca3-4fbc-9f06-438a13054ba4[1].png [3782]
O61 - LFC: 14/04/2013 - 20:43:10 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\L6QIVHU6\2dfdf289-6dbb-4c51-b529-9997b26b567a[1].png [38799]
O61 - LFC: 14/04/2013 - 20:43:10 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\L6QIVHU6\424f2127-68ac-4953-a7bd-63d3423c2f03[1].png [138510]
O61 - LFC: 14/04/2013 - 20:43:10 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\L6QIVHU6\bb9ebc68-72b7-428b-8df7-927e8abcf0bf[1].png [8514]
O61 - LFC: 14/04/2013 - 20:43:10 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\V6GPD1GX\f3e9ee48-a58f-4248-9e85-f56e18d662f5[1].png [58035]
O61 - LFC: 14/04/2013 - 20:43:10 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\WYZKIFE1\16f1e984-a80d-45db-a68e-b932dd264aab[1].png [49972]
O61 - LFC: 14/04/2013 - 20:43:10 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\WYZKIFE1\71d15b59-5afd-4157-9b82-733c24cfd18b[1].png [157255]
O61 - LFC: 14/04/2013 - 20:43:10 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\WYZKIFE1\bd5440f9-74e4-44f1-97a2-a574283d527a[1].png [22135]
O61 - LFC: 14/04/2013 - 20:43:11 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\V6GPD1GX\trans_pixelCABQ3UYC.gif [44]
O61 - LFC: 14/04/2013 - 20:43:11 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\Microsoft\Windows Store\Cache\1\1-GetPurchasedList--52f58420f7f79ed1.dat [880]
O61 - LFC: 14/04/2013 - 20:43:32 -S-A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\Microsoft\CryptnetUrlCache\MetaData\F063BF7EF604434CBE00FF198F0D9B10 [334]
O61 - LFC: 14/04/2013 - 20:43:47 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\V6GPD1GX\trans_pixelCABS0ENV.gif [44]
O61 - LFC: 14/04/2013 - 20:43:47 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\Microsoft\Windows Store\Cache\5\5-https???wscont.apps.microsoft.com?winstore?6.2?615?WW?fr-fr?0?76?Topic.htm.dat [802]
O61 - LFC: 14/04/2013 - 20:43:48 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\C3W8J7KM\trans_pixelCA9SP1ZA.gif [44]
O61 - LFC: 14/04/2013 - 20:43:49 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\C3W8J7KM\Icon.5834[2].png [3009]
O61 - LFC: 14/04/2013 - 20:43:49 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\L6QIVHU6\Icon.5209[1].png [2772]
O61 - LFC: 14/04/2013 - 20:43:49 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\V6GPD1GX\Icon.107842[1].png [5961]
O61 - LFC: 14/04/2013 - 20:43:49 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\WYZKIFE1\Icon.107869[1].png [7431]
O61 - LFC: 14/04/2013 - 20:43:50 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\C3W8J7KM\Icon.110994[1].png [3980]
O61 - LFC: 14/04/2013 - 20:43:50 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\C3W8J7KM\Icon.5167[2].png [5505]
O61 - LFC: 14/04/2013 - 20:43:50 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\L6QIVHU6\Icon.102000[1].png [7116]
O61 - LFC: 14/04/2013 - 20:43:50 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\L6QIVHU6\Icon.32511[1].png [5891]
O61 - LFC: 14/04/2013 - 20:43:50 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\L6QIVHU6\Icon.32663[1].png [5849]
O61 - LFC: 14/04/2013 - 20:43:50 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\V6GPD1GX\Icon.109571[1].png [4345]
O61 - LFC: 14/04/2013 - 20:43:50 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\V6GPD1GX\Icon.32406[1].png [8110]
O61 - LFC: 14/04/2013 - 20:43:50 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\WYZKIFE1\Icon.47712[2].png [3777]
O61 - LFC: 14/04/2013 - 20:43:50 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\WYZKIFE1\Icon.5065[1].png [7225]
O61 - LFC: 14/04/2013 - 20:43:50 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\WYZKIFE1\Icon.78469[1].png [2202]
O61 - LFC: 14/04/2013 - 20:43:51 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\C3W8J7KM\Icon.102002[2].png [6108]
O61 - LFC: 14/04/2013 - 20:43:51 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\L6QIVHU6\Icon.92133[2].png [8162]
O61 - LFC: 14/04/2013 - 20:43:51 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\V6GPD1GX\Icon.28826[1].png [7664]
O61 - LFC: 14/04/2013 - 20:43:51 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\V6GPD1GX\Icon.73768[1].png [9332]
O61 - LFC: 14/04/2013 - 20:43:51 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\WYZKIFE1\Icon.5875[1].png [2583]
O61 - LFC: 14/04/2013 - 20:43:52 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\C3W8J7KM\Icon.48910[1].png [1315]
O61 - LFC: 14/04/2013 - 20:43:52 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\C3W8J7KM\Icon.70043[1].png [4595]
O61 - LFC: 14/04/2013 - 20:43:52 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\L6QIVHU6\Icon.81128[2].png [3707]
O61 - LFC: 14/04/2013 - 20:43:52 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\L6QIVHU6\Icon.86302[1].png [8840]
O61 - LFC: 14/04/2013 - 20:43:52 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\V6GPD1GX\Icon.114561[1].png [4561]
O61 - LFC: 14/04/2013 - 20:43:52 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\V6GPD1GX\Icon.45358[2].png [8721]
O61 - LFC: 14/04/2013 - 20:43:52 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\WYZKIFE1\Icon.120214[1].png [3038]
O61 - LFC: 14/04/2013 - 20:43:52 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\WYZKIFE1\Icon.64232[2].png [10423]
O61 - LFC: 14/04/2013 - 20:44:04 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\C3W8J7KM\trans_pixelCAV6QYDQ.gif [44]
O61 - LFC: 14/04/2013 - 20:44:08 -S-A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\MetaData\D725F3459E2275E9EA5871B92AD896D0 [242]
O61 - LFC: 14/04/2013 - 20:44:21 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\Settings\settings.dat [8192]
O61 - LFC: 14/04/2013 - 20:45:45 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\AC\INetCache\MSIMGSIZ.DAT [49120]
O61 - LFC: 14/04/2013 - 20:45:49 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\LocalState\Database\edb.chk [8192]
O61 - LFC: 14/04/2013 - 20:45:51 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\AC\INetCache\GY45CONE\Spotlight-Games[1].xml [4226]
O61 - LFC: 14/04/2013 - 20:45:52 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\AC\INetCache\2WFQM2PT\30b06a70-6657-429a-9ce1-02ef040d6262[1].jpg [34036]
O61 - LFC: 14/04/2013 - 20:45:52 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\AC\INetCache\2WFQM2PT\e115ea1b-2ad8-4b79-8fa9-7284751bb995[1].jpg [30024]
O61 - LFC: 14/04/2013 - 20:45:52 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\AC\INetCache\2WFQM2PT\e4276a23-c1a7-4c38-adde-d91af2f0423a[1].jpg [17225]
O61 - LFC: 14/04/2013 - 20:45:52 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\AC\INetCache\U49SVPNT\Featured-PCGames[1].xml [3760]
O61 - LFC: 14/04/2013 - 20:45:52 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\AC\INetCache\U49SVPNT\f6f2a833-f087-40a6-a46c-2329e5fc05fb[1].jpg [37000]
O61 - LFC: 14/04/2013 - 20:45:52 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\LocalState\ImageCache\20\3QY7NyoquhAzekiD23U3U2AHxmenYWEIkCEiaNHMqKI [17225]
O61 - LFC: 14/04/2013 - 20:45:52 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\LocalState\ImageCache\20\OYkZKqOkmQKjaJ3gvrLbvDZ3JT9VA5v8vZeJU2Zbq24 [30024]
O61 - LFC: 14/04/2013 - 20:45:52 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\LocalState\ImageCache\20\TXd7NVYOu39duHCzwVLqLDns2bUej9gRXW62EeUKM [34036]
O61 - LFC: 14/04/2013 - 20:45:52 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\LocalState\ImageCache\20\vWbXxqI7TswErfzFVBBdVi0QLGktYFsdPNKgc6SKw [37000]
O61 - LFC: 14/04/2013 - 20:45:53 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\AC\INetCache\GY45CONE\details[1].json [60772]
O61 - LFC: 14/04/2013 - 20:45:53 -S-A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\Content\AC9005F5466BD463DF06D711B370595F [1175]
O61 - LFC: 14/04/2013 - 20:45:53 -S-A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\Content\F063BF7EF604434CBE00FF198F0D9B10 [4363]
O61 - LFC: 14/04/2013 - 20:45:53 -S-A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\MetaData\77EC63BDA74BD0D0E0426DC8F8008506 [290]
O61 - LFC: 14/04/2013 - 20:45:53 -S-A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\MetaData\AC9005F5466BD463DF06D711B370595F [316]
O61 - LFC: 14/04/2013 - 20:45:53 -S-A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\MetaData\F063BF7EF604434CBE00FF198F0D9B10 [334]
O61 - LFC: 14/04/2013 - 20:45:54 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\AC\INetCache\U9WTQBX9\70a0422b-f4ee-4774-833f-1b9334880638[1].jpg [102783]
O61 - LFC: 14/04/2013 - 20:45:54 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\AC\INetCache\U9WTQBX9\d322cfac-0991-4540-be16-c94eb110732d[1].jpg [61098]
O61 - LFC: 14/04/2013 - 20:45:54 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\AC\INetCache\U9WTQBX9\e0a1495b-ce73-4339-8c71-5b6ebb403cbe[1].jpg [69473]
O61 - LFC: 14/04/2013 - 20:45:54 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\LocalState\ImageCache\20\KpeQx3uK4MpShwAPZ7iqBxNmXMxm1uhVq0g6iZChr8 [69473]
O61 - LFC: 14/04/2013 - 20:45:54 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\LocalState\ImageCache\20\lVpy3OCDWNCaSUS2RBot432MAFpQq7OHP75IYa1eI7Q [102783]
O61 - LFC: 14/04/2013 - 20:45:54 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\LocalState\ImageCache\20\m6w6QwctXmxp7pDjEfRCf5UlRCCIGTHBYm0gylw0Fc [61098]
O61 - LFC: 14/04/2013 - 20:45:55 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\AC\INetCache\U9WTQBX9\263a2748-656f-4b30-977e-2e4dd667bfcc[1].jpg [64856]
O61 - LFC: 14/04/2013 - 20:45:55 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\LocalState\ImageCache\20\VdbcRbFOmUUXfsHg3D730qha2C9FlWQFwkKzprijXs [64856]
O61 - LFC: 14/04/2013 - 20:45:55 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\LocalState\Microsoft.Xbox\A68993DA-A999-4290-8A4F-74237D5C9B73 [54]
O61 - LFC: 14/04/2013 - 20:45:57 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\LocalState\Microsoft.Xbox\channel.dat [184]
O61 - LFC: 14/04/2013 - 20:45:58 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\AC\INetCache\GY45CONE\0157a7ee-bedc-4a09-a424-9b482ad887a9[1].png [390334]
O61 - LFC: 14/04/2013 - 20:45:58 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\AC\INetCache\U9WTQBX9\20a54365-6384-40f1-8740-71e0e85c207a[1].jpg [61478]
O61 - LFC: 14/04/2013 - 20:45:58 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\LocalState\ImageCache\20\27NvWhlak5pXnovpjVC1I0cGi8HlLGUsjmP3FBfltLY [390334]
O61 - LFC: 14/04/2013 - 20:45:58 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\LocalState\ImageCache\20\oPk54rxIpyosvYctDyCCBoerNmfoZEoixJ4VAo64s [61478]
O61 - LFC: 14/04/2013 - 20:45:58 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\LocalState\Microsoft.Xbox\2533274984905475\24\59c70dc3f07dd0f30a87d5fc09bda0747f0d5964727ece73489efa027d735e64 [71]
O61 - LFC: 14/04/2013 - 20:45:59 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\LocalState\Microsoft.Xbox\2533274984905475\26\7cc83ceac897b8abe0cf850c353ba91f6f87bf0614a0d1a02515513e815e202c [70]
O61 - LFC: 14/04/2013 - 20:45:59 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\LocalState\Microsoft.Xbox\2533274984905475\2\ae9f98912142816c04ac4dd5d7f2992dbe78c3a9bf3330d0f4fe82a527c8128e [61]
O61 - LFC: 14/04/2013 - 20:46:00 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\AC\INetCache\GY45CONE\configuration[1].xml [328]
O61 - LFC: 14/04/2013 - 20:46:00 -S-A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\Content\D725F3459E2275E9EA5871B92AD896D0 [23602]
O61 - LFC: 14/04/2013 - 20:46:00 -S-A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\MetaData\D725F3459E2275E9EA5871B92AD896D0 [244]
O61 - LFC: 14/04/2013 - 20:46:01 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\AC\INetCache\2WFQM2PT\20001[1].png [2678]
O61 - LFC: 14/04/2013 - 20:46:01 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\AC\INetCache\U49SVPNT\avatar-body[1].png [23512]
O61 - LFC: 14/04/2013 - 20:46:01 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\AC\INetCache\U49SVPNT\manifest[1].json [69]
O61 - LFC: 14/04/2013 - 20:46:01 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\AC\INetCookies\7J8YAWJV.txt [71]
O61 - LFC: 14/04/2013 - 20:46:01 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\LocalState\ImageCache\20\UDQY6ya4aPhGdfljl0Ev0oUG2riiH0JNmx0J02DI [2678]
O61 - LFC: 14/04/2013 - 20:46:01 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\LocalState\Microsoft.Xbox\2533274984905475\28\82bab42ef85f45a8bbcf3f29e1fba2fcb1fa3477dff2417efd6f86b287f5f5e3 [111]
O61 - LFC: 14/04/2013 - 20:46:01 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\LocalState\Microsoft.Xbox\2533274984905475\8\06bf96e8ea9772a5c87e52f01cfeb7a1b3d44ec6a65084e77dbb109bb161ed95 [64]
O61 - LFC: 14/04/2013 - 20:46:02 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\AC\INetCache\U49SVPNT\player[1].xml [1155]
O61 - LFC: 14/04/2013 - 20:46:02 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\LocalState\ImageCache\20\rluPrODLx8HtmDt5JIjFNgMRt2y60BQXMv6zoHuK9oA [10070]
O61 - LFC: 14/04/2013 - 20:46:05 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\AC\INetCache\2WFQM2PT\microsoft.advertising.renderers.html5.image[1].js [32630]
O61 - LFC: 14/04/2013 - 20:46:05 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\AC\INetCache\GY45CONE\adsadclient31[1].htm [0]
O61 - LFC: 14/04/2013 - 20:46:06 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\AC\INetCache\GY45CONE\187[1].png [16532]
O61 - LFC: 14/04/2013 - 20:47:12 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\AC\INetCache\2WFQM2PT\details[1].json [8477]
O61 - LFC: 14/04/2013 - 20:47:12 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\AC\INetCache\U49SVPNT\browse[1].json [98]
O61 - LFC: 14/04/2013 - 20:47:12 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\LocalState\Microsoft.Xbox\2533274984905475-2533274984905475-7AEF9B09-B035-4AF4-BEC8-17CCBF7B822F [752]
O61 - LFC: 14/04/2013 - 20:47:12 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\LocalState\Microsoft.Xbox\2533274984905475\1\d5137c4d12d683a413fab37f34abec60b3a591344e18c51d5eb06f31432af476 [752]
O61 - LFC: 14/04/2013 - 20:47:12 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\LocalState\Microsoft.Xbox\2533274984905475\20\a91e2ea45898b690a09fbc70c53b779fc114840df04f2f3b788833b02754272f [826]
O61 - LFC: 14/04/2013 - 20:47:12 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\LocalState\Microsoft.Xbox\2533274984905475\5\257d522f1f76d3330ff66068399767363361189687e7e5c9376801c07956f474 [80]
O61 - LFC: 14/04/2013 - 20:47:13 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\AC\INetCache\2WFQM2PT\image[1].jpg [195882]
O61 - LFC: 14/04/2013 - 20:47:13 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\AC\INetCache\2WFQM2PT\inbox[1].json [69]
O61 - LFC: 14/04/2013 - 20:47:13 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\AC\INetCache\GY45CONE\1ICLiGJhbC9FCxt0GltSUkYxL2FjaC8wLzExAAAAAOfn5-tOnwo=[1].jpg [5094]
O61 - LFC: 14/04/2013 - 20:47:13 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\AC\INetCache\GY45CONE\xuid(2533274984905475)[1].json [234]
O61 - LFC: 14/04/2013 - 20:47:13 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\AC\INetCache\U49SVPNT\14CLiGJhbC9HCxt0GltSUkYxL2FjaC8wLzEzAAAAAOfn5-iPbiw=[1].jpg [4975]
O61 - LFC: 14/04/2013 - 20:47:13 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\AC\INetCache\U9WTQBX9\1oCLiGJhbC9GCxt0GltSUkYxL2FjaC8wLzEyAAAAAOfn5-lvlr8=[1].jpg [5473]
O61 - LFC: 14/04/2013 - 20:47:13 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\LocalState\ImageCache\20\D9gQi3UH2uq974aQ4y1YI8cuvMa7sAWahq9NnydH8 [195882]
O61 - LFC: 14/04/2013 - 20:47:13 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\LocalState\Microsoft.Xbox\2533274984905475-0-926D46D0-1A42-4ED4-BA42-D6DB0392BA63 [19]
O61 - LFC: 14/04/2013 - 20:47:13 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\LocalState\Microsoft.Xbox\2533274984905475-1297290225-E5A5F4E7-98C0-4D4A-8078-26F372C05C20 [1467]
O61 - LFC: 14/04/2013 - 20:47:13 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\LocalState\Microsoft.Xbox\2533274984905475-Gamerscore-1297290225-1-27EADC91-E438-41E6-BBFD-0D02891ADA2A [208]
O61 - LFC: 14/04/2013 - 20:47:13 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\LocalState\Microsoft.Xbox\2533274984905475\25\ef935e1ca15476daf028764299d14876ba8a956913477cc14677182ea5e31403 [67]
O61 - LFC: 14/04/2013 - 20:47:13 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\LocalState\Microsoft.Xbox\2533274984905475\3\a34f00ff1e432d59c1a01da0710c7d5b39700e2736e636811bf6e7d14da32717 [1184]
O61 - LFC: 14/04/2013 - 20:47:13 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\LocalState\Microsoft.Xbox\2533274984905475\4\262bfbd34ca72f0f2de2ab0489639a5772787327f42ddfb3fac3276388449305 [276]
O61 - LFC: 14/04/2013 - 20:47:13 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\LocalState\Microsoft.Xbox\2533274984905475\4\79475aad4374b49c679d00cb6a627e47eeff8300db3964fc36c18800aa41b821 [42]
O61 - LFC: 14/04/2013 - 20:47:13 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\LocalState\Microsoft.Xbox\2533274984905475\7\02a5a1af1842dd9e535210389a02cba008f1ad7c654ecce15e4e2b23ee6c7cc4 [111]
O61 - LFC: 14/04/2013 - 20:47:13 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\LocalState\Microsoft.Xbox\AchievementIcon\achiImage17.jpg [5094]
O61 - LFC: 14/04/2013 - 20:47:13 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\LocalState\Microsoft.Xbox\AchievementIcon\achiImage18.jpg [5473]
O61 - LFC: 14/04/2013 - 20:47:13 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\LocalState\Microsoft.Xbox\AchievementIcon\achiImage19.jpg [4975]
O61 - LFC: 14/04/2013 - 20:47:30 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\LocalState\Database\EntClientDb.edb [4734976]
O61 - LFC: 14/04/2013 - 20:47:30 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\LocalState\Microsoft.Xbox\ED2EAF28-7260-4872-A8BB-F9EA9189FD79.dat [20]
O61 - LFC: 14/04/2013 - 20:47:31 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\Settings\settings.dat [262144]
O61 - LFC: 14/04/2013 - 20:47:33 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\Microsoft\Windows Store\Cache\0\0-GetConsumer-https???services.apps.microsoft.com?Identity?Consumer.dat [286]
O61 - LFC: 14/04/2013 - 20:47:34 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\L6QIVHU6\trans_pixelCASR8ORM.gif [44]
O61 - LFC: 14/04/2013 - 20:47:58 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\WYZKIFE1\trans_pixelCANLMP9K.gif [44]
O61 - LFC: 14/04/2013 - 20:47:59 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\V6GPD1GX\trans_pixelCA78QCN5.gif [44]
O61 - LFC: 14/04/2013 - 20:48:08 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\C3W8J7KM\trans_pixelCA012EBM.gif [44]
O61 - LFC: 14/04/2013 - 20:48:08 ---A- C:\Users\thierry\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCookies\NVM42ICX.txt [371]
O61 - LFC: 14/04/2013 - 20:49:21 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.Taptiles_8wekyb3d8bbwe\LocalState\PPR.RelaxationMode.bin.ark [742]
O61 - LFC: 14/04/2013 - 20:49:41 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.Taptiles_8wekyb3d8bbwe\LocalState\DailyChallengeLog [2864]
O61 - LFC: 14/04/2013 - 20:50:26 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.MicrosoftMahjong_8wekyb3d8bbwe\LocalState\turtle.bin.ark [2537]
O61 - LFC: 14/04/2013 - 20:51:10 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.Taptiles_8wekyb3d8bbwe\LocalState\Microsoft.Xbox\2533274984905475-1297287736-E5A5F4E7-98C0-4D4A-8078-26F372C05C20 [9867]
O61 - LFC: 14/04/2013 - 20:51:10 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.Taptiles_8wekyb3d8bbwe\LocalState\Microsoft.Xbox\A68993DA-A999-4290-8A4F-74237D5C9B73 [54]
O61 - LFC: 14/04/2013 - 20:51:11 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.Taptiles_8wekyb3d8bbwe\LocalState\DinosaureVenus7.png [2678]
O61 - LFC: 14/04/2013 - 20:51:14 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.Taptiles_8wekyb3d8bbwe\AC\INetCache\B59JP4MV\avatarpic-l[2].png [3291]
O61 - LFC: 14/04/2013 - 21:00:59 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.Taptiles_8wekyb3d8bbwe\AC\INetCache\B59JP4MV\avatar-body[1].png [23512]
O61 - LFC: 14/04/2013 - 21:01:01 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.Taptiles_8wekyb3d8bbwe\LocalState\PPR.LastPuzzleModeSaved_GamePlayData.ark [481]
O61 - LFC: 14/04/2013 - 21:38:26 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.Taptiles_8wekyb3d8bbwe\AC\INetCache\REOFCCQ2\10ef4b1b-423e-48fb-a8c8-d3acd0d8db0b[1].dat [2097152]
O61 - LFC: 14/04/2013 - 21:47:10 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.Taptiles_8wekyb3d8bbwe\LocalState\PPR.OriginsMode.bin.ark [666]
O61 - LFC: 14/04/2013 - 21:47:13 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.Taptiles_8wekyb3d8bbwe\LocalState\Microsoft.Xbox\2533274984905475-2533274984905475-7AEF9B09-B035-4AF4-BEC8-17CCBF7B822F [752]
O61 - LFC: 14/04/2013 - 21:47:14 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.Taptiles_8wekyb3d8bbwe\LocalState\SyncedData.bin.ark [6808]
O61 - LFC: 14/04/2013 - 21:47:28 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.Taptiles_8wekyb3d8bbwe\AC\INetCache\REOFCCQ2\xuid(2533274984905475)[1].json [274]
O61 - LFC: 14/04/2013 - 21:47:28 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.Taptiles_8wekyb3d8bbwe\LocalState\Microsoft.Xbox\2533274984905475-0-926D46D0-1A42-4ED4-BA42-D6DB0392BA63 [19]
O61 - LFC: 14/04/2013 - 21:47:28 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.Taptiles_8wekyb3d8bbwe\LocalState\Microsoft.Xbox\2533274984905475-1-1297287736-1-27EADC91-E438-41E6-BBFD-0D02891ADA2A [216]
O61 - LFC: 14/04/2013 - 21:47:28 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.Taptiles_8wekyb3d8bbwe\LocalState\Microsoft.Xbox\2533274984905475\4\_845252124d0953169b035938ce51d3a0a68ab5890ced098c26bb48329dc44a6e [42]
O61 - LFC: 14/04/2013 - 21:47:28 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.Taptiles_8wekyb3d8bbwe\LocalState\Microsoft.Xbox\2533274984905475\4\b9b7b04c4b8a15f5db4128bad462d79c20420fe405aec8ee791309527ca530d3 [316]
O61 - LFC: 14/04/2013 - 21:47:29 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.Taptiles_8wekyb3d8bbwe\AC\INetCache\2PTLHBT9\xuid(2533274984905475)[1].json [270]
O61 - LFC: 14/04/2013 - 21:47:29 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.Taptiles_8wekyb3d8bbwe\LocalState\Microsoft.Xbox\2533274984905475-50-1297287736-1-27EADC91-E438-41E6-BBFD-0D02891ADA2A [212]
O61 - LFC: 14/04/2013 - 21:47:29 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.Taptiles_8wekyb3d8bbwe\LocalState\Microsoft.Xbox\2533274984905475\4\7a5898329558b3ac3b26fd5cd5bef7682e2cf1c1982f211175cc32f4958d3972 [312]
O61 - LFC: 14/04/2013 - 21:48:13 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.Taptiles_8wekyb3d8bbwe\LocalState\Microsoft.Xbox\ED2EAF28-7260-4872-A8BB-F9EA9189FD79.dat [20]
O61 - LFC: 14/04/2013 - 21:49:57 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.MicrosoftMahjong_8wekyb3d8bbwe\LocalState\DailyChallengeLog [6359]
O61 - LFC: 15/04/2013 - 06:00:03 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52f58420f7f79ed1\120712-0049\Mail\1\1d000002\20002776_b3da8f0c67875.eml [12453]
O61 - LFC: 15/04/2013 - 06:00:16 -S-A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\MetaData\AC9005F5466BD463DF06D711B370595F [316]
O61 - LFC: 15/04/2013 - 16:33:32 ---A- C:\Users\thierry\AppData\Local\Temp\chart_data.dat [20700]
O61 - LFC: 15/04/2013 - 16:48:30 -S-A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\Content\4309200C3DBAD0F6F0DFACE9165FD092 [727]
O61 - LFC: 15/04/2013 - 16:48:30 -S-A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\MetaData\4309200C3DBAD0F6F0DFACE9165FD092 [264]
O61 - LFC: 15/04/2013 - 16:48:31 -S-A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\Content\7D1F03728133589A90656A87E482B21F [21934]
O61 - LFC: 15/04/2013 - 16:48:31 -S-A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\Content\AFA2A5744430E65F42D3175FABFBE3E8 [19611]
O61 - LFC: 15/04/2013 - 16:48:31 -S-A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\MetaData\7D1F03728133589A90656A87E482B21F [256]
O61 - LFC: 15/04/2013 - 16:48:32 -S-A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\Content\E2EF7F0FB7284B9ACFD4F65D02218479 [772]
O61 - LFC: 15/04/2013 - 16:51:26 ---A- C:\Users\thierry\AppData\Local\Temp\dd_vcredistMSI2AD0.txt [384172]
O61 - LFC: 15/04/2013 - 16:51:26 ---A- C:\Users\thierry\AppData\Local\Temp\dd_vcredistUI2AD0.txt [11434]
O61 - LFC: 15/04/2013 - 16:57:38 -S-A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\MetaData\AFA2A5744430E65F42D3175FABFBE3E8 [222]
O61 - LFC: 15/04/2013 - 22:05:50 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52f58420f7f79ed1\120712-0049\Mail\1\1d000002\200028a5_61e4a177e146d.eml [10848]
O61 - LFC: 15/04/2013 - 22:26:21 -S-A- C:\Users\thierry\AppData\Local\Packages\Microsoft.MicrosoftMahjong_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\MetaData\AC9005F5466BD463DF06D711B370595F [316]
O61 - LFC: 16/04/2013 - 20:47:32 -S-A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\Content\57C8EDB95DF3F0AD4EE2DC2B8CFD4157 [6342]
O61 - LFC: 16/04/2013 - 20:49:46 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.MicrosoftMahjong_8wekyb3d8bbwe\Settings\settings.dat [8192]
O61 - LFC: 16/04/2013 - 20:50:17 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52f58420f7f79ed1\120712-0049\Mail\1\1d000002\20002913_90d164fa7fde9e.eml [34823]
O61 - LFC: 16/04/2013 - 20:50:32 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52f58420f7f79ed1\120712-0049\Mail\1\1d000002\20002710_d677ab12caf39.eml [3065]
O61 - LFC: 16/04/2013 - 20:54:04 -S-A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\MetaData\57C8EDB95DF3F0AD4EE2DC2B8CFD4157 [340]
O61 - LFC: 16/04/2013 - 21:00:48 ---A- C:\Users\thierry\AppData\Local\Cyberlink\PowerDVD12\DB1027\CLDB.db [229376]
O61 - LFC: 16/04/2013 - 21:00:52 ---A- C:\Users\thierry\AppData\Local\Cyberlink\PowerDVD12\DB1027\kthumb.db [3997696]
O61 - LFC: 16/04/2013 - 21:00:53 ---A- C:\Users\thierry\AppData\Local\Cyberlink\PowerDVD12\DB1027\kthumbs.db [3473408]
O61 - LFC: 16/04/2013 - 21:00:53 ---A- C:\Users\thierry\AppData\Local\Cyberlink\PowerDVD12\DB1027\kthumbss.db [1048576]
O61 - LFC: 16/04/2013 - 21:04:05 ---A- C:\Users\thierry\AppData\Local\Cyberlink\PowerDVD12\DB1027\log.0000000001 [10485760]
O61 - LFC: 16/04/2013 - 21:49:42 ---A- C:\Users\thierry\AppData\Local\Downloaded Installations\{7FEFF90C-31B9-4760-BD9A-F4E91429CD03}\1036.MST [137216]
O61 - LFC: 16/04/2013 - 21:49:45 ---A- C:\Users\thierry\AppData\Local\Downloaded Installations\{7FEFF90C-31B9-4760-BD9A-F4E91429CD03}\TomTom HOME.msi [27296256]
O61 - LFC: 16/04/2013 - 21:51:10 ---A- C:\Users\thierry\AppData\Roaming\TomTom\HOME\Profiles\2nto0dmz.default\extensions.cache [152]
O61 - LFC: 16/04/2013 - 21:51:10 ---A- C:\Users\thierry\AppData\Roaming\TomTom\HOME\Profiles\2nto0dmz.default\extensions.rdf [2376]
O61 - LFC: 16/04/2013 - 21:51:11 ---A- C:\Users\thierry\AppData\Roaming\TomTom\HOME\Profiles\2nto0dmz.default\compreg.dat [133463]
O61 - LFC: 16/04/2013 - 21:51:11 ---A- C:\Users\thierry\AppData\Roaming\TomTom\HOME\Profiles\2nto0dmz.default\xpti.dat [100989]
O61 - LFC: 16/04/2013 - 21:52:33 ---A- C:\Users\thierry\Documents\TomTom\HOME\Download\complete\ephemeris\QuickGPSfix-1\ephemeris.png [6788]
O61 - LFC: 16/04/2013 - 21:52:34 ---A- C:\Users\thierry\Documents\TomTom\HOME\Download\complete\ephemeris\QuickGPSfix-1\Ephemeris.cab [50565]
O61 - LFC: 16/04/2013 - 21:52:34 ---A- C:\Users\thierry\Documents\TomTom\HOME\Download\complete\ephemeris\QuickGPSfix-1\Ephemeris.toc [5711]
O61 - LFC: 16/04/2013 - 21:52:37 ---A- C:\Users\thierry\AppData\Local\Temp\TomTomMapPatches-2 [2825126]
O61 - LFC: 16/04/2013 - 21:52:41 ---A- C:\Users\thierry\AppData\Roaming\TomTom\HOME\Profiles\2nto0dmz.default\MapShareDownloadCache\MapCache1410004800.bin [1540183]
O61 - LFC: 16/04/2013 - 22:04:00 ---A- C:\Users\thierry\AppData\Local\TomTom\HOME\Profiles\2nto0dmz.default\XUL.mfl [540319]
O61 - LFC: 16/04/2013 - 22:04:02 ---A- C:\Users\thierry\AppData\Roaming\TomTom\HOME\Profiles\2nto0dmz.default\Resources\itemmetadata.tlvvoc.xml [5481]
O61 - LFC: 16/04/2013 - 22:04:29 ---A- C:\Users\thierry\AppData\Roaming\TomTom\HOME\Profiles\2nto0dmz.default\pluginreg.dat [7363]
O61 - LFC: 16/04/2013 - 22:05:07 ---A- C:\Users\thierry\Documents\TomTom\HOME\Download\complete\poi\Pack_Basic_des_Zones_de_Danger_Tomtomax-1\default_icon.png [2634]
O61 - LFC: 16/04/2013 - 22:05:07 ---A- C:\Users\thierry\Documents\TomTom\HOME\Download\complete\poi\Pack_Basic_des_Zones_de_Danger_Tomtomax-1\default_preview.png [16896]
O61 - LFC: 16/04/2013 - 22:05:10 ---A- C:\Users\thierry\Documents\TomTom\HOME\Download\complete\poi\Pack_Basic_des_Zones_de_Danger_Tomtomax-1\tomtomax_zones_danger_basic.toc [2545]
O61 - LFC: 16/04/2013 - 22:05:10 ---A- C:\Users\thierry\Documents\TomTom\HOME\Download\complete\poi\Pack_Basic_des_Zones_de_Danger_Tomtomax-1\tomtomax_zones_danger_basic.zip [240400]
O61 - LFC: 16/04/2013 - 22:05:46 ---A- C:\Users\thierry\AppData\Roaming\TomTom\HOME\Profiles\2nto0dmz.default\cookies.sqlite-journal [2576]
O61 - LFC: 16/04/2013 - 22:05:46 ---A- C:\Users\thierry\AppData\Roaming\TomTom\HOME\Profiles\2nto0dmz.default\webappsstore.sqlite [3072]
O61 - LFC: 16/04/2013 - 22:05:47 ---A- C:\Users\thierry\AppData\Roaming\TomTom\HOME\Profiles\2nto0dmz.default\cert8.db [65536]
O61 - LFC: 16/04/2013 - 22:05:47 ---A- C:\Users\thierry\AppData\Roaming\TomTom\HOME\Profiles\2nto0dmz.default\cookies.sqlite [2048]
O61 - LFC: 16/04/2013 - 22:05:47 ---A- C:\Users\thierry\AppData\Roaming\TomTom\HOME\Profiles\2nto0dmz.default\key3.db [16384]
O61 - LFC: 16/04/2013 - 22:05:47 ---A- C:\Users\thierry\AppData\Roaming\TomTom\HOME\Profiles\2nto0dmz.default\mimeTypes.rdf [251]
O61 - LFC: 16/04/2013 - 22:05:47 ---A- C:\Users\thierry\AppData\Roaming\TomTom\HOME\Profiles\2nto0dmz.default\places.sqlite-journal [0]
O61 - LFC: 16/04/2013 - 22:05:47 ---A- C:\Users\thierry\AppData\Roaming\TomTom\HOME\Profiles\2nto0dmz.default\prefs.js [7271]
O61 - LFC: 17/04/2013 - 10:06:08 -S-A- C:\Users\thierry\AppData\Local\Packages\Microsoft.MicrosoftMahjong_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\Content\E2EF7F0FB7284B9ACFD4F65D02218479 [772]
O61 - LFC: 17/04/2013 - 10:06:08 -S-A- C:\Users\thierry\AppData\Local\Packages\Microsoft.MicrosoftMahjong_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\MetaData\E2EF7F0FB7284B9ACFD4F65D02218479 [264]
O61 - LFC: 17/04/2013 - 10:06:09 -S-A- C:\Users\thierry\AppData\Local\Packages\Microsoft.MicrosoftMahjong_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\Content\F063BF7EF604434CBE00FF198F0D9B10 [4320]
O61 - LFC: 17/04/2013 - 10:06:09 -S-A- C:\Users\thierry\AppData\Local\Packages\Microsoft.MicrosoftMahjong_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\MetaData\F063BF7EF604434CBE00FF198F0D9B10 [330]
O61 - LFC: 17/04/2013 - 10:06:17 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.MicrosoftMahjong_8wekyb3d8bbwe\LocalState\Microsoft.Xbox\pop.bin [1240]
O61 - LFC: 17/04/2013 - 10:06:21 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.MicrosoftMahjong_8wekyb3d8bbwe\LocalState\Microsoft.Xbox\channel.dat [186]
O61 - LFC: 17/04/2013 - 10:06:22 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\AC\INetCookies\ZDNSGT5M.txt [318]
O61 - LFC: 17/04/2013 - 10:06:22 -S-A- C:\Users\thierry\AppData\Local\Packages\Microsoft.MicrosoftMahjong_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\Content\4309200C3DBAD0F6F0DFACE9165FD092 [727]
O61 - LFC: 17/04/2013 - 10:06:22 -S-A- C:\Users\thierry\AppData\Local\Packages\Microsoft.MicrosoftMahjong_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\MetaData\4309200C3DBAD0F6F0DFACE9165FD092 [264]
O61 - LFC: 17/04/2013 - 10:06:28 -S-A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\Content\F063BF7EF604434CBE00FF198F0D9B10 [4320]
O61 - LFC: 17/04/2013 - 10:06:28 -S-A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\MetaData\E2EF7F0FB7284B9ACFD4F65D02218479 [264]
O61 - LFC: 17/04/2013 - 10:06:28 -S-A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\MetaData\F063BF7EF604434CBE00FF198F0D9B10 [330]
O61 - LFC: 17/04/2013 - 10:08:10 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52f58420f7f79ed1\120712-0049\Mail\1\1d000004\2000297e_1a0c5cd19c27f3.eml [8184]
O61 - LFC: 17/04/2013 - 10:08:11 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52f58420f7f79ed1\120712-0049\Mail\1\1d000004\2000297d_d43e759020f3f5.eml [8700]
O61 - LFC: 17/04/2013 - 10:08:12 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52f58420f7f79ed1\120712-0049\Mail\1\1d000004\2000297c_e386daee6ed4c.eml [11125]
O61 - LFC: 17/04/2013 - 10:08:13 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52f58420f7f79ed1\120712-0049\Mail\1\1d000004\2000297b_bbe204c0da764d.eml [57289]
O61 - LFC: 17/04/2013 - 10:08:15 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52f58420f7f79ed1\120712-0049\Mail\1\1d000004\2000297a_5d988006920ac4.eml [33878]
O61 - LFC: 17/04/2013 - 10:08:16 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52f58420f7f79ed1\120712-0049\Mail\1\1d000004\20002979_5721f667b3515.eml [102784]
O61 - LFC: 17/04/2013 - 10:08:18 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52f58420f7f79ed1\120712-0049\Mail\1\1d000004\20002978_b2c971d16880fc.eml [79289]
O61 - LFC: 17/04/2013 - 10:08:20 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52f58420f7f79ed1\120712-0049\Mail\1\1d000004\20002977_83bef2c44d52fe.eml [47001]
O61 - LFC: 17/04/2013 - 10:08:21 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52f58420f7f79ed1\120712-0049\Mail\1\1d000004\20002976_ec47d12141ef3b.eml [25133]
O61 - LFC: 17/04/2013 - 10:08:23 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52f58420f7f79ed1\120712-0049\Mail\1\1d000004\20002974_6f4b2a4bf2adfa.eml [8094]
O61 - LFC: 17/04/2013 - 10:08:23 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52f58420f7f79ed1\120712-0049\Mail\1\1d000004\20002975_f8f9e80023eb7f.eml [28085]
O61 - LFC: 17/04/2013 - 10:08:24 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52f58420f7f79ed1\120712-0049\Mail\1\1d000002\20002973_62ac5adcb1adca.eml [113983]
O61 - LFC: 17/04/2013 - 10:08:27 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52f58420f7f79ed1\120712-0049\Mail\1\1d000002\20002972_ceb0a28a6f9736.eml [127262]
O61 - LFC: 17/04/2013 - 10:08:29 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52f58420f7f79ed1\120712-0049\Mail\1\1d000002\20002970_3fbb00e612fab4.eml [12422]
O61 - LFC: 17/04/2013 - 10:08:29 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52f58420f7f79ed1\120712-0049\Mail\1\1d000002\20002971_2000c905f617f7.eml [8277]
O61 - LFC: 17/04/2013 - 10:08:30 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52f58420f7f79ed1\120712-0049\Mail\1\1d000002\2000296f_d5e6e0b5f8df2.eml [91284]
O61 - LFC: 17/04/2013 - 10:08:32 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52f58420f7f79ed1\120712-0049\Mail\1\1d000002\2000296e_9c9291fd9ab1f0.eml [91381]
O61 - LFC: 17/04/2013 - 10:35:43 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52f58420f7f79ed1\120712-0049\Mail\1\1d000002\2000297f_1dee9e8ceae8b2.eml [3247]
O61 - LFC: 17/04/2013 - 21:01:38 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\LiveCommLast.etl [131072]
O61 - LFC: 17/04/2013 - 21:01:38 --HA- C:\Users\thierry\AppData\Local\IconCache.db [161568]
O61 - LFC: 17/04/2013 - 21:20:54 -SHA- C:\Users\thierry\AppData\Roaming\Microsoft\Protect\S-1-5-21-1296241625-1542924555-43332839-1001\ba108d07-c5b8-4543-b2ba-4ff21e3b70da [468]
O61 - LFC: 17/04/2013 - 21:21:00 ----- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\LiveComm.etl [131072]
O61 - LFC: 17/04/2013 - 21:21:07 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\LiveComm\52f58420f7f79ed1\120712-0049\DBStore\edb.chk [8192]
O61 - LFC: 17/04/2013 - 21:23:47 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.Taptiles_8wekyb3d8bbwe\Settings\settings.dat [8192]
O61 - LFC: 17/04/2013 - 21:23:58 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52f58420f7f79ed1\120712-0049\Mail\1\1d000004\200029e4_1732823e5c701e.eml [29510]
O61 - LFC: 17/04/2013 - 21:24:01 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52f58420f7f79ed1\120712-0049\Mail\1\1d000004\200029e3_1bebae877f8c3c.eml [42868]
O61 - LFC: 17/04/2013 - 21:24:02 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52f58420f7f79ed1\120712-0049\Mail\1\1d000004\200029e2_e5b09cd3b92cfa.eml [3758]
O61 - LFC: 17/04/2013 - 21:24:03 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52f58420f7f79ed1\120712-0049\Mail\1\1d000004\200029e1_7f7d1a9a822447.eml [21807]
O61 - LFC: 17/04/2013 - 21:24:04 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52f58420f7f79ed1\120712-0049\Mail\1\1d000004\200029e0_522a54e356df.eml [13631]
O61 - LFC: 17/04/2013 - 21:24:05 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52f58420f7f79ed1\120712-0049\Mail\1\1d000004\200029df_b79fc4f5fa77c4.eml [7421]
O61 - LFC: 17/04/2013 - 21:24:06 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52f58420f7f79ed1\120712-0049\Mail\1\1d000004\200029de_cc39f7c9b16e56.eml [14317]
O61 - LFC: 17/04/2013 - 21:24:07 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52f58420f7f79ed1\120712-0049\Mail\1\1d000004\200029dd_2f3cfa614b1f7.eml [34725]
O61 - LFC: 17/04/2013 - 21:24:09 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52f58420f7f79ed1\120712-0049\Mail\1\1d000002\200029dc_986086ca2122d0.eml [34639]
O61 - LFC: 17/04/2013 - 21:24:10 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52f58420f7f79ed1\120712-0049\Mail\1\1d000002\200029db_4fab749bef2ef.eml [15258]
O61 - LFC: 17/04/2013 - 21:24:11 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52f58420f7f79ed1\120712-0049\Mail\1\1d000002\200029da_aa5eb75e8d534f.eml [14898]
O61 - LFC: 17/04/2013 - 21:24:12 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52f58420f7f79ed1\120712-0049\Mail\1\1d000002\200029d9_1610578734ccb.eml [8297]
O61 - LFC: 17/04/2013 - 21:24:13 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52f58420f7f79ed1\120712-0049\Mail\1\1d000002\200029d8_e8be0bbba4d07a.eml [7419]
O61 - LFC: 17/04/2013 - 21:24:14 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52f58420f7f79ed1\120712-0049\Mail\1\1d000002\200029d7_14184d2970a6cb.eml [24716]
O61 - LFC: 17/04/2013 - 21:24:15 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52f58420f7f79ed1\120712-0049\Mail\1\1d000002\200029d6_456c818bc53299.eml [10181]
O61 - LFC: 17/04/2013 - 21:24:17 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52f58420f7f79ed1\120712-0049\Mail\1\1d000002\200029d4_e14267d5ee37f1.eml [40133]
O61 - LFC: 17/04/2013 - 21:24:17 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52f58420f7f79ed1\120712-0049\Mail\1\1d000002\200029d5_7535bb099d25da.eml [10848]
O61 - LFC: 17/04/2013 - 21:24:19 ---A- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\52f58420f7f79ed1\120712-0049\Mail\1\1d000002\200029d3_ac530d386956c0.eml [64003]
O61 - LFC: 17/04/2013 - 21:26:16 ---A- C:\Users\thierry\AppData\Roaming\Microsoft\MMC\eventvwr [139452]
O61 - LFC: 17/04/2013 - 21:36:11 ---A- C:\Users\thierry\AppData\Roaming\Microsoft\HTML Help\hh.dat [8634]
O61 - LFC: 17/04/2013 - 21:40:14 R---- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\LiveComm\52f58420f7f79ed1\120712-0049\Att\200029d9\modalit� agitateurs.pdf [755462]
O61 - LFC: 17/04/2013 - 21:40:16 R---- C:\Users\thierry\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\LiveComm\52f58420f7f79ed1\120712-0049\Att\200029d9\ATT00001 [239769]
O61 - LFC: 17/04/2013 - 21:41:05 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.MicrosoftMahjong_8wekyb3d8bbwe\LocalState\Microsoft.Xbox\A68993DA-A999-4290-8A4F-74237D5C9B73 [54]
O61 - LFC: 17/04/2013 - 21:41:07 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.MicrosoftMahjong_8wekyb3d8bbwe\LocalState\Microsoft.Xbox\2533274984905475\1\d5137c4d12d683a413fab37f34abec60b3a591344e18c51d5eb06f31432af476 [752]
O61 - LFC: 17/04/2013 - 21:41:07 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.MicrosoftMahjong_8wekyb3d8bbwe\LocalState\Microsoft.Xbox\2533274984905475\3\fb47d5e6f3a890211d0479f9e480a15587b1e21b6f865193d86079226d72b339 [1175]
O61 - LFC: 17/04/2013 - 21:41:08 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.MicrosoftMahjong_8wekyb3d8bbwe\LocalState\Microsoft.Xbox\2533274984905475-1297290225-E5A5F4E7-98C0-4D4A-8078-26F372C05C20 [1341]
O61 - LFC: 17/04/2013 - 21:41:08 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.MicrosoftMahjong_8wekyb3d8bbwe\LocalState\Microsoft.Xbox\2533274984905475\3\a34f00ff1e432d59c1a01da0710c7d5b39700e2736e636811bf6e7d14da32717 [1184]
O61 - LFC: 17/04/2013 - 21:41:08 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.MicrosoftMahjong_8wekyb3d8bbwe\LocalState\sentient.dat [376]
O61 - LFC: 17/04/2013 - 21:41:09 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.MicrosoftMahjong_8wekyb3d8bbwe\AC\INetCache\5PL2R93M\avatarpic-l[1].png [3291]
O61 - LFC: 17/04/2013 - 21:41:09 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.MicrosoftMahjong_8wekyb3d8bbwe\LocalState\DinosaureVenus7.png [2678]
O61 - LFC: 17/04/2013 - 21:41:43 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.MicrosoftMahjong_8wekyb3d8bbwe\AC\INetCache\OM3841OI\avatar-body[1].png [23512]
O61 - LFC: 17/04/2013 - 22:13:50 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.MicrosoftMahjong_8wekyb3d8bbwe\AC\INetCache\LNE07O5N\f68aa778-d3cd-4803-9516-0b88ba428f5a[1].dat [4390912]
O61 - LFC: 17/04/2013 - 22:17:48 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.MicrosoftMahjong_8wekyb3d8bbwe\LocalState\Microsoft.Xbox\2533274984905475-2533274984905475-7AEF9B09-B035-4AF4-BEC8-17CCBF7B822F [752]
O61 - LFC: 17/04/2013 - 22:21:16 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.MicrosoftMahjong_8wekyb3d8bbwe\LocalState\SyncedData.bin.ark [13999]
O61 - LFC: 17/04/2013 - 22:22:05 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.MicrosoftMahjong_8wekyb3d8bbwe\AC\INetCache\LNE07O5N\xuid(2533274984905475)[1].json [84]
O61 - LFC: 17/04/2013 - 22:22:05 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.MicrosoftMahjong_8wekyb3d8bbwe\AC\INetCache\OM3841OI\xuid(2533274984905475)[1].json [270]
O61 - LFC: 17/04/2013 - 22:22:05 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.MicrosoftMahjong_8wekyb3d8bbwe\LocalState\Microsoft.Xbox\2533274984905475-0-926D46D0-1A42-4ED4-BA42-D6DB0392BA63 [19]
O61 - LFC: 17/04/2013 - 22:22:05 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.MicrosoftMahjong_8wekyb3d8bbwe\LocalState\Microsoft.Xbox\2533274984905475-1-1297290225-1-27EADC91-E438-41E6-BBFD-0D02891ADA2A [73]
O61 - LFC: 17/04/2013 - 22:22:05 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.MicrosoftMahjong_8wekyb3d8bbwe\LocalState\Microsoft.Xbox\2533274984905475-50-1297290225-1-27EADC91-E438-41E6-BBFD-0D02891ADA2A [212]
O61 - LFC: 17/04/2013 - 22:22:05 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.MicrosoftMahjong_8wekyb3d8bbwe\LocalState\Microsoft.Xbox\2533274984905475\4\84e23562f83bc66e020efb3fa469e3ab6419027f2e5dbbecbd5fc1953b81d6df [126]
O61 - LFC: 17/04/2013 - 22:22:05 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.MicrosoftMahjong_8wekyb3d8bbwe\LocalState\Microsoft.Xbox\2533274984905475\4\_79475aad4374b49c679d00cb6a627e47eeff8300db3964fc36c18800aa41b821 [42]
O61 - LFC: 17/04/2013 - 22:22:05 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.MicrosoftMahjong_8wekyb3d8bbwe\LocalState\Microsoft.Xbox\2533274984905475\4\ae473d5e96f54cd7e1670bce41d7659c00d09a644ea56e119f8066ef29088e1e [312]
O61 - LFC: 17/04/2013 - 22:22:29 ---A- C:\Users\thierry\AppData\Local\Packages\Microsoft.MicrosoftMahjong_8wekyb3d8bbwe\LocalState\Microsoft.Xbox\ED2EAF28-7260-4872-A8BB-F9EA9189FD79.dat [20]
O61 - LFC: 17/04/2013 - 22:23:10 ---A- C:\Users\thierry\AppData\Local\Temp\au-descriptor-1.7.0_21-b11.xml [8818]
O61 - LFC: 17/04/2013 - 22:23:26 ---A- C:\Users\thierry\AppData\Local\Temp\jinstall.cfg [1154]
O61 - LFC: 17/04/2013 - 22:25:24 ---A- C:\Users\thierry\AppData\Local\Temp\AUCHECK_PARSER.txt [732]
O61 - LFC: 17/04/2013 - 22:27:35 ---A- C:\Users\thierry\Downloads\ZHPDiag2.exe [5574753]
~ 7 Fichiers temporaires (Temporary files)
~ Files: 360 Scanned in 01mn 08s



---\\ Liste des outils de nettoyage (O63)
O63 - Logiciel: ZHPDiag 2013 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
~ ADS: Scanned in 00mn 00s



---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d��v�nements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft � Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - �diteur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.bat> [HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> [HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKCR\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d��v�nements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> [HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.js> [HKCR\..\open\Command] (.Microsoft Corporation - Microsoft � Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> [HKCR\..\open\Command] (.Microsoft Corporation - �diteur du Registre.) -- C:\Windows\regedit.exe
~ FASS Keys: 19 Scanned in 00mn 00s



---\\ Start Menu Internet (O68)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
~ Keys: Scanned in 00mn 00s



---\\ Search Browser Infection (O69)
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com
~ Keys: Scanned in 00mn 00s



---\\ Recherche des services d�marr�s par Svchost (O83)
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Exp�rience d�application.) -- C:\Windows\System32\aelupsvc.dll [190976]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes � puce Microsoft.) -- C:\Windows\System32\certprop.dll [149504]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes � puce Microsoft.) -- C:\Windows\System32\certprop.dll [149504]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [309248]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de strat�gie de groupe.) -- C:\Windows\System32\gpsvc.dll [1366016]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [1071104]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de num�rotation automatique d�acc�s distant.) -- C:\Windows\System32\rasauto.dll [99840]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d�acc�s � distance.) -- C:\Windows\System32\rasmans.dll [358400]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d�interface dynamique.) -- C:\Windows\System32\mprdim.dll [107520]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d��v�nements syst�me (SENS).) -- C:\Windows\System32\sens.dll [62976]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l�application d�assistance � Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll [438784]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de t�l�phonie Microsoft� Windows(TM).) -- C:\Windows\System32\tapisrv.dll [305664]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise � jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll [3240448]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arri�re-plan.) -- C:\Windows\System32\qmgr.dll [826368]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [565760]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivit� IPv6 sur un r�seau IPv4..) -- C:\Windows\System32\iphlpsvc.dll [894464]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d�ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll [30720]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d�application.) -- C:\Windows\System32\appinfo.dll [69632]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de d�couverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [151552]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [105472]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de t�ches.) -- C:\Windows\System32\schedsvc.dll [1282560]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [219648]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multim�dias.) -- C:\Windows\System32\mmcss.dll [80896]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d�ordinateurs.) -- C:\Windows\System32\browser.dll [134144]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [209920]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau � distance.) -- C:\Windows\System32\sessenv.dll [291328]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux probl�mes.) -- C:\Windows\System32\wercplsupport.dll [84992]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des cl�s.) -- C:\Windows\System32\kmsvc.dll [97792]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [190976]
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft�.) -- C:\Windows\System32\wlidsvc.dll [1964544]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des th�mes Windows Shell.) -- C:\Windows\System32\themeservice.dll [47104]
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d�installation de p�riph�rique.) -- C:\Windows\System32\DeviceSetupManager.dll [207872]
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivit� r�seau Microsoft.) -- C:\Windows\System32\ncasvc.dll [161792]
O83 - Search Svchost Services: SystemEventsBroker (SystemEventsBroker) . (.Microsoft Corporation - Service Broker pour les �v�nements syst�me.) -- C:\Windows\System32\SystemEventsBrokerServer.dll [180224]
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll [187392]
~ Services: 35 Scanned in 00mn 00s



---\\ Recherche particuliere � la racine de certains dossiers (O84)
[MD5.4B8D8DDD043CBAA49FEB04CBE4C2169C] [SPRF][15/04/2013] (...) -- C:\Users\thierry\AppData\Local\Temp\chart_data.dat [20700]
[MD5.D4C28DF4DDF92C4D44D195A6E50AEB58] [SPRF][27/02/2013] (.Adobe Systems Incorporated - Adobe� Flash� Player Installer/Uninstaller 11.6 r602.) -- C:\Users\thierry\AppData\Local\Temp\fp_pl_pfs_installer-1.exe [16473456]
[MD5.D4C28DF4DDF92C4D44D195A6E50AEB58] [SPRF][26/02/2013] (.Adobe Systems Incorporated - Adobe� Flash� Player Installer/Uninstaller 11.6 r602.) -- C:\Users\thierry\AppData\Local\Temp\fp_pl_pfs_installer.exe [16473456]
[MD5.6C137D2BEF3CDD43F3AE2FD6705B9FED] [SPRF][05/04/2013] (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Users\thierry\AppData\Local\Temp\jre-7u21-windows-i586-iftw.exe [904104]
[MD5.DF500BF95E294C040292DCC37935E501] [SPRF][09/02/2013] (.NVIDIA Corporation - NVIDIA 3D Vision Control Panel 64bit API.) -- C:\Users\thierry\AppData\Local\Temp\nvSCPAPI64.dll [1315512]
[MD5.2868CBE6BAD735800A61BE54447C26F7] [SPRF][09/02/2013] (.NVIDIA Corporation - Stereoscpic 3D driver Installer API.) -- C:\Users\thierry\AppData\Local\Temp\nvStInst.exe [715040]
[MD5.EE9597B4AA13249E1B7F01346215A01B] [SPRF][30/03/2013] (.Amonetize - Installer.) -- C:\Users\thierry\AppData\Local\Temp\setup__2011.exe [152608]
~ Files: Scanned in 00mn 00s



---\\ Firewall Active Exception List (FirewallRules) (O87)
O87 - FAEL: "vm-monitoring-rpc" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "vm-monitoring-dcom" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMP-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMP-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "SNMPTRAP-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Interruption SNMP.) -- C:\Windows\system32\snmptrap.exe
O87 - FAEL: "SNMPTRAP-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Interruption SNMP.) -- C:\Windows\system32\snmptrap.exe
O87 - FAEL: "Wininit-Shutdown-In-Rule-TCP-RPC" | In - None - P6 - FALSE | .(.Microsoft Corporation - Application de d�marrage de Windows.) -- C:\Windows\system32\wininit.exe
O87 - FAEL: "Wininit-Shutdown-In-Rule-TCP-RPC-EPMapper" | In - None - P6 - FALSE | .(.Microsoft Corporation - Application de d�marrage de Windows.) -- C:\Windows\system32\wininit.exe
O87 - FAEL: "PNRPMNRS-PNRP-In-UDP" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PNRPMNRS-PNRP-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PNRPMNRS-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PNRPMNRS-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteFwAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteFwAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteFwAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteFwAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Netlogon-TCP-RPC-In" | In - None - P6 - FALSE | .(.Microsoft Corporation - Local Security Authority Process.) -- C:\Windows\System32\lsass.exe
O87 - FAEL: "WMI-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-WINMGMT-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-WINMGMT-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-ASYNC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) -- C:\Windows\system32\wbem\unsecapp.exe
O87 - FAEL: "WMI-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-WINMGMT-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-WINMGMT-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-ASYNC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) -- C:\Windows\system32\wbem\unsecapp.exe
O87 - FAEL: "MsiScsi-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MsiScsi-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MsiScsi-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MsiScsi-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "ProximityUxHost-Sharing-In-TCP-NoScope" | In - None - P6 - TRUE | .(.Microsoft Corporation - H�te UX de proximit�.) -- C:\Windows\system32\proximityuxhost.exe
O87 - FAEL: "ProximityUxHost-Sharing-Out-TCP-NoScope" | Out - None - P6 - TRUE | .(.Microsoft Corporation - H�te UX de proximit�.) -- C:\Windows\system32\proximityuxhost.exe
O87 - FAEL: "FPS-SpoolSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Application sous-syst�me spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "FPS-SpoolSvc-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Application sous-syst�me spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "FPS-LLMNR-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "FPS-LLMNR-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-UPnPHost-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-WSDEVNTS-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-WSDEVNT-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-UPnPHost-Out-TCP-Active" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-UPnP-Out-TCP-Active" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDPHOST-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-DAS-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Device Association Framework Provider Host.) -- C:\Windows\system32\dashost.exe
O87 - FAEL: "NETDIS-FDPHOST-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-WSDEVNTS-Out-TCP-Active" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-WSDEVNT-Out-TCP-Active" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-UPnP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-UPnPHost-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDPHOST-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-DAS-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Device Association Framework Provider Host.) -- C:\Windows\system32\dashost.exe
O87 - FAEL: "NETDIS-FDPHOST-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-WSDEVNTS-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-WSDEVNT-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-TCP3587-In" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-TCP3587-Out" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-UDP3540-In" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-UDP3540-Out" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-In-TCP-EdgeScope" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Assistance � distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Assistance � distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-In-EdgeScope" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-OUT" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-RAServer-In-TCP-NoScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur COM d�assistance � distance Windows.) -- C:\Windows\system32\raserver.exe
O87 - FAEL: "RemoteAssistance-RAServer-Out-TCP-NoScope-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur COM d�assistance � distance Windows.) -- C:\Windows\system32\raserver.exe
O87 - FAEL: "RemoteAssistance-DCOM-In-TCP-NoScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-In-TCP-EdgeScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Assistance � distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-Out-TCP-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Assistance � distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-SSDPSrv-In-UDP-Active" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-SSDPSrv-Out-UDP-Active" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-In-EdgeScope-Active" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-OUT-Active" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-KTMRM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-KTMRM-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-WMP-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-WMP-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-WMP-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-In-UDP-NoScope" |In - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-UDP-NoScope" |Out - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-QWave-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-WMP-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-WMP-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-WMP-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-In-UDP" |In - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-UDP" |Out - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-UPnP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PlayTo-In-UDP-NoScope" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-In-UDP-LocalSubnetScope" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-In-UDP-PlayToScope" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-Out-UDP-NoScope" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-Out-UDP-LocalSubnetScope" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-Out-UDP-PlayToScope" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-In-RTSP-NoScope" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-In-RTSP-LocalSubnetScope" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-In-RTSP-PlayToScope" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-SSDP-Discovery-PlayToScope" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PlayTo-QWave-In-UDP-PlayToScope" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PlayTo-QWave-Out-UDP-PlayToScope" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PlayTo-QWave-In-TCP-PlayToScope" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PlayTo-QWave-Out-TCP-PlayToScope" | Out - Public - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "TPMVSCMGR-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "TPMVSCMGR-Server-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - TPM Virtual Smart Card Manager DCOM Server.) -- C:\Windows\system32\RmtTpmVscMgrSvr.exe
O87 - FAEL: "TPMVSCMGR-Server-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - TPM Virtual Smart Card Manager DCOM Server.) -- C:\Windows\system32\RmtTpmVscMgrSvr.exe
O87 - FAEL: "TPMVSCMGR-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "TPMVSCMGR-Server-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - TPM Virtual Smart Card Manager DCOM Server.) -- C:\Windows\system32\RmtTpmVscMgrSvr.exe
O87 - FAEL: "TPMVSCMGR-Server-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - TPM Virtual Smart Card Manager DCOM Server.) -- C:\Windows\system32\RmtTpmVscMgrSvr.exe
O87 - FAEL: "Collab-P2PHost-In-TCP" |In - None - P6 - TRUE | .(...) -- C:\Windows\system32\p2phost.exe (.not file.)
O87 - FAEL: "Collab-P2PHost-Out-TCP" |Out - None - P6 - FALSE | .(...) -- C:\Windows\system32\p2phost.exe (.not file.)
O87 - FAEL: "Collab-P2PHost-WSD-In-UDP" |In - None - P17 - FALSE | .(...) -- C:\Windows\system32\p2phost.exe (.not file.)
O87 - FAEL: "Collab-P2PHost-WSD-Out-UDP" |Out - None - P17 - FALSE | .(...) -- C:\Windows\system32\p2phost.exe (.not file.)
O87 - FAEL: "Collab-PNRP-In-UDP" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Collab-PNRP-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Collab-PNRP-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Collab-PNRP-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteSvcAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contr�leur.) -- C:\Windows\system32\services.exe
O87 - FAEL: "RemoteSvcAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteSvcAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contr�leur.) -- C:\Windows\system32\services.exe
O87 - FAEL: "RemoteSvcAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PerfLogsAlerts-PLASrv-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Performance Logs and Alerts DCOM Server.) -- C:\Windows\system32\plasrv.exe
O87 - FAEL: "PerfLogsAlerts-DCOM-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PerfLogsAlerts-PLASrv-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Performance Logs and Alerts DCOM Server.) -- C:\Windows\system32\plasrv.exe
O87 - FAEL: "PerfLogsAlerts-DCOM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DHCP-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DHCP-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DHCPV6-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DHCPV6-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-Teredo-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-Teredo-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-IPHTTPS-Out" | Out - None - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-GP-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DNS-Out-UDP" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-GP-LSASS-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Local Security Authority Process.) -- C:\Windows\system32\lsass.exe
O87 - FAEL: "RVM-VDS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service de disque virtuel.) -- C:\Windows\system32\vds.exe
O87 - FAEL: "RVM-VDSLDR-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Virtual Disk Service Loader.) -- C:\Windows\system32\vdsldr.exe
O87 - FAEL: "RVM-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RVM-VDS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service de disque virtuel.) -- C:\Windows\system32\vds.exe
O87 - FAEL: "RVM-VDSLDR-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Virtual Disk Service Loader.) -- C:\Windows\system32\vdsldr.exe
O87 - FAEL: "RVM-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteTask-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteTask-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteTask-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteTask-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteDesktop-UserMode-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteDesktop-UserMode-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WPDMTP-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Windows Driver Foundation - Processus h�te de l�infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe
O87 - FAEL: "WPDMTP-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Windows Driver Foundation - Processus h�te de l�infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe
O87 - FAEL: "WPDMTP-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WPDMTP-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WPDMTP-UPnPHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WPDMTP-UPnP-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NetPres-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-WSD-In-UDP" |In - None - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-WSD-Out-UDP" |Out - None - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "SPPSVC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - KMS Connection Broker.) -- C:\Windows\system32\sppextcomobj.exe
O87 - FAEL: "SPPSVC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - KMS Connection Broker.) -- C:\Windows\system32\sppextcomobj.exe
O87 - FAEL: "Microsoft-Windows-PeerDist-WSD-In" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-PeerDist-WSD-Out" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-In-TCP" |In - None - P6 - FALSE | .(...) -- C:\Windows\ehome\ehshell.exe (.not file.)
O87 - FAEL: "MCX-Out-TCP" |Out - None - P6 - FALSE | .(...) -- C:\Windows\ehome\ehshell.exe (.not file.)
O87 - FAEL: "MCX-QWave-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-QWave-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-QWave-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-QWave-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-TERMSRV-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-In-UDP" |In - None - P17 - FALSE | .(...) -- C:\Windows\ehome\ehshell.exe (.not file.)
O87 - FAEL: "MCX-Out-UDP" |Out - None - P17 - FALSE | .(...) -- C:\Windows\ehome\ehshell.exe (.not file.)
O87 - FAEL: "MCX-MCX2SVC-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-Prov-Out-TCP" |Out - None - P6 - FALSE | .(...) -- C:\Windows\ehome\mcx2prov.exe (.not file.)
O87 - FAEL: "MCX-PlayTo-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-McrMgr-Out-TCP" |Out - None - P6 - FALSE | .(...) -- C:\Windows\ehome\mcrmgr.exe (.not file.)
O87 - FAEL: "MCX-PlayTo-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-FDPHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{4F5DC183-937D-4ECB-81FF-A64CE3CD90BD}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{20536F70-9EC0-4059-B0E8-41F7F5AA2262}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{C27DC7A3-D8DF-4958-83CF-2261CA1B96DC}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Application sous-syst�me spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "{18E46FF3-F819-4317-823A-B4DDDC874D48}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "{262FB17E-D84B-4466-BE55-1FBFAECC7C1F}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "{551F4C9D-801A-4C7A-97A9-DA717EF70C77}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "{1FC6F095-D72F-4597-AAD3-188A986D3F6C}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{EE3B5FFF-4AB0-43EB-9C64-F843002E36DC}" |Out - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{19A7FCF6-DF34-4256-81DC-318C01108A12}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{6E301C2C-CE89-4D0F-A37B-DC3DC67BA492}" |Out - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{B07E808D-3188-4AE9-960A-C456B566A57B}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{A7127FC7-B634-4FFA-B7D4-353EB0971BD7}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "{07B133FF-FABB-4269-9656-1A2B62C201D5}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "{56D86BD5-E68C-44CE-A4BC-340832DF2F3B}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "{B32C487F-4201-4144-9964-AD7E5635E1D9}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{DB7D5D72-AC5F-4772-97A7-E579BFBDDD0E}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{37ADB75F-C578-4201-9044-FBC607DE4B7E}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{F96D0A80-A0D3-477A-9D3D-7313685D3B06}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{ABCBC707-B23E-4A5E-937E-6BEC065C157B}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{BA9FD342-F862-4836-B94D-A19698826A3E}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{505D8CA7-2694-462B-B25C-DE10DDDD8BE7}" | In - Private - P6 - TRUE | .(.CybelSoft - Service de d�tection mat�riel.) -- C:\Program Files\ma-config.com\x64\maconfservice.exe
O87 - FAEL: "{69616DF4-5364-4BEA-BB1C-81618F2776E5}" | In - Private - P17 - TRUE | .(.CybelSoft - Service de d�tection mat�riel.) -- C:\Program Files\ma-config.com\x64\maconfservice.exe
O87 - FAEL: "{DFD9B0DE-4AEB-42D5-BE47-9D9BA00DFF70}" | In - None - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
O87 - FAEL: "{5E7F12C1-37C5-4C4D-B6A8-8DD06120BD69}" | In - None - P17 - TRUE | .(.CyberLink Corp. - PowerDVD 12.) -- C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12.exe
O87 - FAEL: "{65AA715D-129B-4C0D-8B47-A196CA6B1EE7}" | In - None - P17 - TRUE | .(.CyberLink - DMREngine.) -- C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMR\PowerDVD12DMREngine.exe
O87 - FAEL: "{B8CD7D96-3C81-46C3-8AD5-EBD0C8922CAD}" | In - None - P17 - TRUE | .(.CyberLink - CyberLink Media Server Service.) -- C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
O87 - FAEL: "{EA7F1AF1-AAA0-4C4B-8062-955118329FCE}" | In - None - P17 - TRUE | .(.CyberLink Corp. - PowerDVD 12.) -- C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12Agent.exe
O87 - FAEL: "{801B2DF0-E8BC-477A-8DAC-5D8AB3C25E7A}" | In - None - P17 - TRUE | .(.CyberLink Corp. - PowerDVD 12.) -- C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12ML.exe
O87 - FAEL: "{EC5DBD0F-BE8F-431F-87AF-4F65A5EB2188}" | In - None - P17 - TRUE | .(.CyberLink Corp. - CyberLink PowerDVD Cinema 12 Main Program.) -- C:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD Cinema\PowerDVDCinema12.exe
O87 - FAEL: "{DB7F5038-AEB7-41D6-A06F-1147ED6F0D46}" | In - Private - P6 - FALSE | .(.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O87 - FAEL: "{95BF03FB-6774-4330-BC90-A57346F711CD}" | In - Private - P17 - FALSE | .(.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
~ Firewall: 241 Scanned in 00mn 02s



---\\ Scan Additionnel (O88)
Database Version : v2.11560 - (16/04/2013)
Cl�s trouv�es (Keys found) : 3
Valeurs trouv�es (Values found) : 0
Dossiers trouv�s (Folders found) : 0
Fichiers trouv�s (Files found) : 0

[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}] =>Toolbar.Bing
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}] =>Toolbar.Bing
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}] =>Toolbar.Bing
~ Additionnel: Scanned in 00mn 20s



---\\ Product Upgrade Codes (O90)
O90 - PUC: "07A78D1031D4EBC498445ADA73EBD8E8" . (.Ma-Config.com (64 bits).) -- C:\Windows\Installer\{01D87A70-4D13-4CBE-8944-A5AD37BE8D8E}\maconfico
O90 - PUC: "0C22D86408082E118BE68BCAF689CC3E" . (.Google�Earth.) -- C:\Windows\Installer\{468D22C0-8080-11E2-B86E-B8AC6F98CCE3}\ARPPRODUCTICON.exe
O90 - PUC: "63AEB64B17B0E4A4EA1478426134AFA0" . (.PowerDVD.) -- C:\Windows\Installer\{B46BEA36-0B71-4A4E-AE41-87241643FA0A}\ARPPRODUCTICON.exe
O90 - PUC: "68AB67CA7DA76301B744BA0000000010" . (.Adobe Reader XI (11.0.02) - Fran�ais.) -- C:\Windows\Installer\{AC76BA86-7AD7-1036-7B44-AB0000000001}\SC_Reader.ico
O90 - PUC: "8FC229B8C6A8EC148A851F57D5F7D592" . (.NVIDIA PhysX.) -- C:\Windows\Installer\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}\icon.ico
O90 - PUC: "B1C4F5CE838F7BC45816F808296924B8" . (.TomTom HOME.) -- C:\Windows\Installer\{EC5F4C1B-F838-4CB7-8561-8F809296428B}\ARPPRODUCTICON.exe
O90 - PUC: "D7314F9862C648A4DB8BE2A5B47BE100" . (.Microsoft Silverlight.) -- C:\Windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ARPIcon
O90 - PUC: "E7FF67E4ABEA78C47B88DC745E24B5D9" . (.Skype� 6.2.) -- C:\Windows\Installer\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}\SkypeIcon.exe
~ Update Products: 17 Scanned in 00mn 00s



---\\ Etat g�n�ral des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SR - | Auto 18/12/2012 65192 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
SS - | Demand 13/03/2013 253656 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SR - | Auto 06/03/2013 45248 | (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
SR - | Auto 21/02/2012 87336 | (CLHNServiceForPowerDVD12) . (.CyberLink Corp..) - C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMP\CLHNServer\CLHNServiceForPowerDVD12.exe
SR - | Auto 21/02/2012 75048 | (CyberLink PowerDVD 12 Media Server Monitor Service) . (.CyberLink.) - C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe
SR - | Auto 21/02/2012 296232 | (CyberLink PowerDVD 12 Media Server Service) . (.CyberLink.) - C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
SS - | Auto 27/02/2013 116648 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 27/02/2013 116648 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 05/02/2013 428928 | (maconfservice) . (.CybelSoft.) - C:\Program Files\ma-config.com\x64\maconfservice.exe
SR - | Auto 04/04/2013 418376 | (MBAMScheduler) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
SR - | Auto 04/04/2013 701512 | (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
SS - | Demand 12/04/2013 115608 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
SR - | Auto 15/03/2013 877856 | (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe
SR - | Auto 15/03/2013 1266464 | (nvUpdatusService) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
SS - | Auto 07/02/2013 161384 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
SR - | Auto 14/03/2013 383264 | (Stereo Service) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
SR - | Auto 22/03/2013 93072 | (TomTomHOMEService) . (.TomTom.) - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
SR - | Auto 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe
SS - | Demand 20/09/2012 29696 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto 16/02/2012 146928 | ({329F96B6-DF1E-4328-BFDA-39EA953C1312}) . (.CyberLink Corp..) - C:\Program Files (x86)\CyberLink\PowerDVD12\Common\NavFilter\000.fcl
~ Services: Scanned in 00mn 01s



---\\ Recherche Master Boot Record Infection (MBR)(O80)
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
Run by thierry at 17/04/2013 23:39:15

device: opened successfully
user: error reading MBR

Disk trace:
error: Read Descripteur non valide
kernel: error reading MBR
~ MBR: 9 Scanned in 00mn 02s



---\\ Recherche Master Boot Record Infection (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by thierry at 17/04/2013 23:39:17

********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin
~ MBR: Scanned in 00mn 04s



End of the scan (1862 lines in 05mn 15s)(0)

Publicité

Soutenons La Quadrature du Net ! Soutenons La Quadrature du Net !

Signaler le contenu de ce document

Publicité

Soutenons La Quadrature du Net !