cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ Rapport de ZHPDiag v2015.5.25.52 - Nicolas Coolman (25/05/2015)
~ Lancé par Mohammed lahlou (27/05/2015 02:18:25)
~ Facebook : https://www.facebook.com/nicolascoolman1
~ Adresse du Forum http://forum.nicolascoolman.fr
~ Traduit par Nicolas Coolman
~ Etat de la version : Version à jour.
~ Liste blanche : Désactivée par l'utilisateur
~ Elévation des Privilèges : OK
~ User Account Control (UAC): Activate by user


---\\ Navigateurs Internet
MSIE: Internet Explorer v11.0.9600.17801
MFIE: Mozilla Firefox 38.0.1

---\\ Informations sur les produits Windows
~ Langage: Français
Windows Server License Manager Script : OK

---\\ Logiciels de protection du système
ESET NOD32 Antivirus v8.0.312.3
Malwarebytes Anti-Malware version 2.1.6.1022
Windows Defender W8 (Deactivate)

---\\ Logiciels d'optimisation du système
CCleaner v5.05

---\\ Logiciels de partage PeerToPeer

---\\ Surveillance de Logiciels

---\\ Informations sur le système
~ Processor: Intel64 Family 6 Model 69 Stepping 1, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 7879 MB (66% free)
System Restore: Activé (Enable)
System drive C: has 64 GB (43%) free of 148 GB

---\\ Mode de connexion au système
~ Computer Name: LENOVO
~ User Name: Mohammed lahlou
~ All Users Names: Mohammed lahlou, HomeGroupUser$, Guest, Administrator,
~ Unselected Option: None
Logged in as Administrator

---\\ Variables d'environnement
~ System Unit : C:\
~ %AppZHP% : C:\Users\Mohammed lahlou\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\Mohammed lahlou\AppData\Roaming\
~ %Desktop% : C:\Users\Mohammed lahlou\Desktop\
~ %Favorites% : C:\Users\Mohammed lahlou\Favorites\
~ %LocalAppData% : C:\Users\Mohammed lahlou\AppData\Local\
~ %StartMenu% : C:\Users\Mohammed lahlou\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ Enumération des unités disques
C: Hard drive, Flash drive, Thumb drive (Free 64 Go of 148 Go)
E: Hard drive, Flash drive, Thumb drive (Free 11 Go of 19 Go)
F: CD-ROM drive (Not Inserted)



---\\ Etat du Centre de Sécurité Windows
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: Modified =>Hijacker.Application
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Security Center: 46 Scanned in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.C10A66189DC8C090E7C84873EDCEBC88] - (.Microsoft Corporation - Windows Explorer.) (.28/01/2015 - 00:47:12.) -- C:\Windows\Explorer.exe [2501368]
[MD5.A570A64292214C43E0BA50E6A72A6380] - (.Microsoft Corporation - Windows Start-Up Application.) (.29/10/2014 - 02:25:54.) -- C:\Windows\System32\Wininit.exe [145920]
[MD5.F0289B3A341429117696F0279DA977B6] - (.Microsoft Corporation - Internet Extensions for Win32.) (.21/04/2015 - 16:27:25.) -- C:\Windows\System32\wininet.dll [2352128]
[MD5.EC498BAE1F0D3E0E401C963F8D76C437] - (.Microsoft Corporation - Windows Logon Application.) (.29/10/2014 - 02:22:52.) -- C:\Windows\System32\Winlogon.exe [572416]
[MD5.AFCAB4DC692CCE37E283B00E2D7B438F] - (.Microsoft Corporation - Software Licensing Library.) (.21/12/2013 - 09:54:07.) -- C:\Windows\System32\sppcomapi.dll [447488]
[MD5.374E27295F0A9DCAA8FC96370F9BEEA5] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.30/05/2014 - 04:03:03.) -- C:\Windows\system32\Drivers\AFD.sys [563200]
[MD5.74B14192CF79A72F7536B27CB8814FBD] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.22/08/2013 - 13:43:41.) -- C:\Windows\system32\Drivers\atapi.sys [26464]
[MD5.2FA6510E33F7DEFEC03658B74101A9B9] - (.Microsoft Corporation - CD-ROM File System Driver.) (.22/08/2013 - 12:40:15.) -- C:\Windows\system32\Drivers\Cdfs.sys [88576]
[MD5.C6796EA22B513E3457514D92DCDB1A3D] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.22/08/2013 - 09:46:35.) -- C:\Windows\system32\Drivers\Cdrom.sys [164352]
[MD5.A03F362C5557E238CBFA914689C77248] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.06/03/2014 - 10:22:50.) -- C:\Windows\system32\Drivers\DfsC.sys [134144]
[MD5.D4B7ED39C7900384D9E5C1283F1E7926] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.24/07/2014 - 12:45:39.) -- C:\Windows\system32\Drivers\HDAudBus.sys [76800]
[MD5.49EE0AE9E5B64FFBBD06D55C4984B598] - (.Microsoft Corporation - i8042 Port Driver.) (.04/11/2014 - 07:54:54.) -- C:\Windows\system32\Drivers\i8042prt.sys [108544]
[MD5.B7342B3C58E91107F6E946A93D9D4EFD] - (.Microsoft Corporation - IP Network Address Translator.) (.27/11/2013 - 13:02:29.) -- C:\Windows\system32\Drivers\IpNat.sys [142848]
[MD5.31233271EDE50D1BBB220F78AFA60486] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.08/10/2014 - 08:32:10.) -- C:\Windows\system32\Drivers\MRxSmb.sys [405504]
[MD5.0217532E19A748F0E5D569307363D5FD] - (.Microsoft Corporation - MBT Transport driver.) (.22/08/2013 - 12:37:02.) -- C:\Windows\system32\Drivers\netBT.sys [282624]
[MD5.7F68063A5A0461E02BC860CE0E6BFDDC] - (.Microsoft Corporation - NT File System Driver.) (.15/10/2014 - 09:32:37.) -- C:\Windows\system32\Drivers\ntfs.sys [2025792]
[MD5.764B1121867B2D9B31C491668AC72B2B] - (.Microsoft Corporation - Parallel Port Driver.) (.22/08/2013 - 12:40:02.) -- C:\Windows\system32\Drivers\Parport.sys [94208]
[MD5.1BD3022FD6E450B00DE560265638FD2A] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.08/11/2014 - 04:58:31.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [112640]
[MD5.680C1DAE268B6FB67FA21B389A8B79EF] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.30/09/2013 - 04:54:34.) -- C:\Windows\system32\Drivers\rdpdr.sys [195584]
[MD5.FFF28F9F6823EB1756C60F1649560BBF] - (.Microsoft Corporation - TDI Translation Driver.) (.22/08/2013 - 14:25:35.) -- C:\Windows\system32\Drivers\tdx.sys [107520]
[MD5.64CA2B4A49A8EAF495E435623ECCE7DB] - (.Microsoft Corporation - Volume Shadow Copy Driver.) (.19/06/2014 - 03:13:36.) -- C:\Windows\system32\Drivers\volsnap.sys [310080]
~ Generic Processes: Scanned in 00mn 00s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 2/4
~ Mes Favoris (My Favorites) : 1/4
~ Mes Documents (My Documents) : 2/99
~ Mon Bureau (My Desktop) : 2/1665
~ Menu demarrer (Programs) : 1/51
~ Hidden Files: Scanned in 00mn 00s



---\\ Processus lancés
[MD5.A75AE3B84B6423CE6A088E80A2BC23C2] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe [31280256] [PID.4248]
[MD5.B005BBCDB8C701596249634CE39C8707] - (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe [3898960] [PID.5468]
[MD5.E9C6EF9437ECB30911488F9313AD821A] - (.Tonec Inc. - Internet Download Manager agent for click m.) -- C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe [269848] [PID.5512]
[MD5.44A9229022A519ED45294A1934C05EEC] - (.Flux Software LLC - f.lux.) -- C:\Users\Mohammed lahlou\AppData\Local\FluxSoftware\Flux\flux.exe [1017224] [PID.5608]
[MD5.D60061E39F7B0514915E19342335D5EF] - (.Vladonai Software (http://www.vladonai.com) - AllMyNotes Organizer.) -- C:\Program Files (x86)\AllMyNotes Organizer\AllMyNotes.exe [3272304] [PID.5892]
[MD5.E57E2B81EF0463738007CF89664F78CD] - (.Skillbrains - Lightshot.) -- C:\Program Files (x86)\Skillbrains\lightshot\5.2.1.1\Lightshot.exe [477184] [PID.5532] =>PUP.SkillBrains
[MD5.A019D278E5BB5ECBF5CF15537B6C2765] - (.Malwarebytes Corporation - Malwarebytes Anti-Exploit.) -- C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae.exe [2618680] [PID.5588]
[MD5.C4EF32C1C0473392EF4204890AF8E457] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896] [PID.5776]
[MD5.F6B0935B23E3C5B54DF33D3C180CA063] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [8211968] [PID.2656]
~ Processes Running: Scanned in 00mn 00s



---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\Mohammed lahlou\AppData\Local\Google\Chrome\User Data\Default\Preferences

---\\ Liste des dossiers d'extension Google Chrome
G2 - EXT: C:\Users\Mohammed lahlou\AppData\Local\Google\Chrome\User Data\Default\Extensions\bpgpffljkgjmijjdmjbdppndoojdgboe [Facebook Secret Emoticons]
G2 - EXT: C:\Users\Mohammed lahlou\AppData\Local\Google\Chrome\User Data\Default\Extensions\epbfmioobedknooiakdehepogalbgkng [__MSG_appName__]
G2 - EXT: C:\Users\Mohammed lahlou\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcbommkclmclpchllfjekcdonpmejbdp [__MSG_about_ext_name__]
G2 - EXT: C:\Users\Mohammed lahlou\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [__MSG_appName__]
G2 - EXT: C:\Users\Mohammed lahlou\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik [Bookmark Manager]
G2 - EXT: C:\Users\Mohammed lahlou\AppData\Local\Google\Chrome\User Data\Default\Extensions\hkdlcejbjnnmjgajjjfenejacioiimpp [Facebook Emoticons]
G2 - EXT: C:\Users\Mohammed lahlou\AppData\Local\Google\Chrome\User Data\Default\Extensions\illbbfoihflomkbpcaaakhijinbnejom [90`s Games]
G2 - EXT: C:\Users\Mohammed lahlou\AppData\Local\Google\Chrome\User Data\Default\Extensions\klbibkeccnjlkjkiokjodocebajanakg [The Great Suspender]
G2 - EXT: C:\Users\Mohammed lahlou\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [Chrome Hotword Shared Module]
G2 - EXT: C:\Users\Mohammed lahlou\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfbgimoladefibpklnfmkpknadbklade [Webcam Toy]
G2 - EXT: C:\Users\Mohammed lahlou\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [Ghostery]
G2 - EXT: C:\Users\Mohammed lahlou\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [IDM Integration Module]
G2 - EXT: C:\Users\Mohammed lahlou\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [__MSG_APP_NAME__]
G2 - EXT: C:\Users\Mohammed lahlou\AppData\Local\Google\Chrome\User Data\Default\Extensions\nnckehldicaciogcbchegobnafnjkcne [__MSG_name__]
G2 - EXT: C:\Users\Mohammed lahlou\AppData\Local\Google\Chrome\User Data\Default\Extensions\oakhnpcgdembaopakdnfkejfcaeipeik [Mata]
~ Google Lines Browser: 30 Scanned in 00mn 00s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
M2 - MFEP: RegExtension {F74D5734-46F5-4B16-96F0-1E7FBF41B750} . (...) -- C:\Program Files (x86)\Lenovo\Password Manager\PWM Firefox Extension\2.0b12 (.not file.)
M2 - MFEP: Extension [Mohammed lahlou - loup5yht.default] eagleget_ffext@eagleget.com.xpi
P2 - FPN:Firefox Plugin Navigator . (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\amazondotcom.xml
P2 - FPN:Firefox Plugin Navigator . (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\bing.xml
P2 - FPN:Firefox Plugin Navigator . (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\ddg.xml
P2 - FPN:Firefox Plugin Navigator . (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\eBay.xml
P2 - FPN:Firefox Plugin Navigator . (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\google.xml
P2 - FPN:Firefox Plugin Navigator . (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\twitter.xml
P2 - FPN:Firefox Plugin Navigator . (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\wikipedia.xml
P2 - FPN:Firefox Plugin Navigator . (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\yahoo.xml
P2 - FPN: [HKLM] [@videolan.org/vlc,version=2.2.1] - (.VideoLAN - VLC media player Web Plugin.) -- C:\Program Files\VideoLAN\VLC\npvlc.dll =>.VideoLAN
P2 - FPN: [HKCU] [eagleget.com/EagleGet32] - (.EagleGet - EagleGet Free Downloader Plugin.) -- C:\Program Files (x86)\EagleGet\npEagleget.dll
P2 - FPN: [HKCU] [eagleget.com/EagleGet64_x86_64] - (.EagleGet - EagleGet Free Downloader Plugin.) -- C:\Program Files (x86)\EagleGet\npEagleget64.dll
~ Firefox Browser: 21 Scanned in 00mn 00s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
~ IE Browser: 13 Scanned in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
~ Proxy management: Scanned in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s



---\\ Hosts file redirection (O1)
~ Le fichier hôte est sain (The hosts file is clean) (21)
~ Hosts File: Scanned in 00mn 00s



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: IDM Helper [64Bits] - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Internet Download Manager, Tonec Inc. - IDM Browser Helper Object.) -- C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll
O2 - BHO: bteagleget.com [64Bits] - {1E871FF8-029C-4732-8AA7-39E3D3872057} . (.EagleGet.com - IEGrab.) -- C:\Program Files (x86)\EagleGet\eagleSniffer.dll
O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll
O2 - BHO: ShopperProBHO [64Bits] - {A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C} Clé orpheline =>PUP.ShopperPro
~ BHO: 6 Scanned in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - GS\QuickLaunch [Mohammed lahlou]: BitTorrent.lnk . (.BitTorrent Inc. - BitTorrent.) -- C:\Users\Mohammed lahlou\AppData\Roaming\BitTorrent\BitTorrent.exe =>P2P.BitTorrent
O4 - GS\Desktop [Mohammed lahlou]: BitTorrent.lnk . (.BitTorrent Inc. - BitTorrent.) -- C:\Users\Mohammed lahlou\AppData\Roaming\BitTorrent\BitTorrent.exe =>P2P.BitTorrent
~ Global Startup: 2 Scanned in 00mn 02s



---\\ Applications lancées au démarrage du système (O4)
O4 - HKLM\..\Run: [LenovoOptMouseUpdate] . (.Lenovo Group Limited - External Application Support for Optical Mo.) -- C:\Program Files\Lenovo\HOTKEY\extapsup.exe
O4 - HKLM\..\Run: [BTMTrayAgent] . (.Motorola Solutions, Inc. - Bluetooth Shell Extension.) -- C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll
O4 - HKLM\..\Run: [egui] . (.ESET - ESET Main GUI.) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
O4 - HKLM\..\Run: [Shield] . (.Horizon Datasys, Inc. - Shield Tray.) -- C:\Program Files\Shield\shdtray.exe
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe
O4 - HKCU\..\Run: [f.lux] . (.Flux Software LLC - f.lux.) -- C:\Users\Mohammed lahlou\AppData\Local\FluxSoftware\Flux\flux.exe
O4 - HKCU\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Ltd
O4 - HKCU\..\Run: [BitTorrent] . (.BitTorrent Inc. - BitTorrent.) -- C:\Users\Mohammed lahlou\AppData\Roaming\BitTorrent\BitTorrent.exe =>P2P.BitTorrent
O4 - HKCU\..\Run: [EagleGet] . (.EagleGet.com - EagleGet Free Downloader.) -- C:\Program Files (x86)\EagleGet\Eagleget.exe
O4 - HKCU\..\Run: [AllMyNotes] . (.Vladonai Software (http://www.vladonai.com) - AllMyNotes Organizer.) -- C:\Program Files (x86)\AllMyNotes Organizer\AllMyNotes.exe
O4 - HKCU\..\Run: [AshSnap] . (.Ashampoo Media GmbH & Co. KG - Ashampoo Snap.) -- C:\Program Files (x86)\Ashampoo\Ashampoo Snap 2015\ashsnap.exe
O4 - HKLM\..\Wow6432Node\Run: [IMSS] . (.Intel Corporation - PIcon startup utility.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe
O4 - HKLM\..\Wow6432Node\Run: [Integrated Camera_Monitor] . (.SunplusIT, Inc. - BACK Monitor Application.) -- C:\Program Files (x86)\Integrated Camera\monitor.exe
O4 - HKLM\..\Wow6432Node\Run: [BlueStacks Agent] . (.BlueStack Systems, Inc. - BlueStacks Agent.) -- C:\Program Files (x86)\BlueStacks\HD-Agent.exe
O4 - HKLM\..\Wow6432Node\Run: [Lightshot] . (.Pas de propriétaire - Starter Module.) -- C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe =>PUP.SkillBrains
O4 - HKLM\..\Wow6432Node\Run: [vmware-tray.exe] . (.VMware, Inc. - VMware Tray Process.) -- C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe =>.VMware, Inc
O4 - HKLM\..\Wow6432Node\Run: [Malwarebytes Anti-Exploit] . (.Malwarebytes Corporation - Malwarebytes Anti-Exploit.) -- C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae.exe
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe =>.Oracle Corporation
O4 - HKUS\S-1-5-21-3922337667-1688596270-1699952560-1001\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O4 - HKUS\S-1-5-21-3922337667-1688596270-1699952560-1001\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe
O4 - HKUS\S-1-5-21-3922337667-1688596270-1699952560-1001\..\Run: [f.lux] . (.Flux Software LLC - f.lux.) -- C:\Users\Mohammed lahlou\AppData\Local\FluxSoftware\Flux\flux.exe
O4 - HKUS\S-1-5-21-3922337667-1688596270-1699952560-1001\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Ltd
O4 - HKUS\S-1-5-21-3922337667-1688596270-1699952560-1001\..\Run: [BitTorrent] . (.BitTorrent Inc. - BitTorrent.) -- C:\Users\Mohammed lahlou\AppData\Roaming\BitTorrent\BitTorrent.exe =>P2P.BitTorrent
O4 - HKUS\S-1-5-21-3922337667-1688596270-1699952560-1001\..\Run: [EagleGet] . (.EagleGet.com - EagleGet Free Downloader.) -- C:\Program Files (x86)\EagleGet\Eagleget.exe
O4 - HKUS\S-1-5-21-3922337667-1688596270-1699952560-1001\..\Run: [AllMyNotes] . (.Vladonai Software (http://www.vladonai.com) - AllMyNotes Organizer.) -- C:\Program Files (x86)\AllMyNotes Organizer\AllMyNotes.exe
O4 - HKUS\S-1-5-21-3922337667-1688596270-1699952560-1001\..\Run: [AshSnap] . (.Ashampoo Media GmbH & Co. KG - Ashampoo Snap.) -- C:\Program Files (x86)\Ashampoo\Ashampoo Snap 2015\ashsnap.exe
~ Application: Scanned in 00mn 00s



---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ IE Control Panel: 1 Scanned in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - E-mail Naming Shim Provider.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - PNRP Name Space Provider.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - PNRP Name Space Provider.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Microsoft Windows Sockets 2.0 Service Provider.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\Windows\system32\wshbth.dll
~ Winsock: 7 Scanned in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{DB4CE3A2-8E2C-4FB2-9346-15922966D0A5}: NameServer = 8.8.8.8,8.8.4.4 =>.Google DNS Redirections
O17 - HKLM\System\CCS\Services\Tcpip\..\{DB4CE3A2-8E2C-4FB2-9346-15922966D0A5}: DhcpNameServer = 192.168.1.1 0.0.0.0
O17 - HKLM\System\CS1\Services\Tcpip\..\{DB4CE3A2-8E2C-4FB2-9346-15922966D0A5}: NameServer = 8.8.8.8,8.8.4.4 =>.Google DNS Redirections
O17 - HKLM\System\CS1\Services\Tcpip\..\{DB4CE3A2-8E2C-4FB2-9346-15922966D0A5}: DhcpNameServer = 192.168.1.1 0.0.0.0
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 0.0.0.0
~ Domain: Scanned in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\System32\mshtml.dll
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation
~ Protocole Additionnel: Scanned in 00mn 00s



---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ SSODL: 1 Scanned in 00mn 00s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Bluetooth Device Monitor (Bluetooth Device Monitor) . (.Motorola Solutions, Inc. - Bluetooth Device Monitor.) - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: ESET Service (ekrn) . (.ESET - ESET Service.) - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) . (.Intel(R) Corporation - Intel(R) PROSet/Wireless Event Log Service.) - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Google Installer.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: oem15.inf (IBMPMSVC) . (.Lenovo. - Lenovo Power Management Service.) - C:\Windows\System32\ibmpmsvc.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) . (.Intel Corporation - igfxCUIService Module.) - C:\Windows\System32\igfxCUIService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) . (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: Lenovo Microphone Mute (LENOVO.MICMUTE) . (.Lenovo Group Limited - Microphone Mute Controll Service for ThinkP.) - C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe
O23 - Service: Lenovo Auto Scroll (Lenovo.VIRTSCRLSVC) . (.Lenovo Group Limited - Auto Scroll Start Service.) - C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe
O23 - Service: Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation - Intel(R) Local Management Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Malwarebytes Anti-Exploit Service (MbaeSvc) . (.Malwarebytes Corporation - Malwarebytes Anti-Exploit Service.) - C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-svc.exe
O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) . (.Intel(R) Corporation - Intel(R) PROSet/Wireless Registry Service.) - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: ShdServ (ShdServ) . (.Horizon Datasys, Inc. - Shield COM Service.) - C:\Program Files\Shield\shdserv.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: Lenovo Hotkey Client Loader (TPHKLOAD) . (.Lenovo Group Limited - ThinkPad Message Client Loader.) - C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe
O23 - Service: VMware Authorization Service (VMAuthdService) . (.VMware, Inc. - VMware Authorization Service.) - C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe =>.VMware, Inc
O23 - Service: VMware DHCP Service (VMnetDHCP) . (.VMware, Inc. - VMware VMnet DHCP service.) - C:\Windows\SysWOW64\vmnetdhcp.exe
O23 - Service: VMware USB Arbitration Service (VMUSBArbService) . (.VMware, Inc. - VMware USB Arbitration Service.) - C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe
O23 - Service: VMware NAT Service (VMware NAT Service) . (.VMware, Inc. - VMware NAT Service.) - C:\Windows\SysWOW64\vmnat.exe
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) . (.Intel® Corporation - Intel® PROSet/Wireless Zero Configure Servi.) - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
~ Services: 21 Scanned in 00mn 17s



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Desktop Component: 4 Scanned in 00mn 00s



---\\ Enumère les données de BootExecute (BEX) (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ BEX: 1 Scanned in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
[MD5.00000000000000000000000000000000] [APT] [A4RIUp5izslwO12FSzTvd] (...) -- C:\Users\Mohammed lahlou\AppData\Roaming\A4RIUp5izslwO12FSzTvd.exe (.not file.) [0]
[MD5.1F014EA12ECB13C909DA9395E9CD3D18] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [6278424]
[MD5.E1B44A75947137F4143308D566889837] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848]
[MD5.E1B44A75947137F4143308D566889837] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848]
[MD5.00000000000000000000000000000000] [APT] [Kdnc4qA5uOc5bco941YBTg0] (...) -- C:\Users\Mohammed lahlou\AppData\Roaming\Kdnc4qA5uOc5bco941YBTg0.exe (.not file.) [0]
[MD5.91C5915EF8BD19092D66798BCE72C18F] [APT] [Process Lasso Core Engine Only] (.Bitsum LLC.) -- C:\Program Files\Process Lasso\processgovernor.exe [462632]
[MD5.34359B13209E1B30CB4602A130C90208] [APT] [Process Lasso Management Console (GUI)] (.Bitsum LLC.) -- C:\Program Files\Process Lasso\processlasso.exe [1159976]
[MD5.22A51D48817F0309C0D008E80F5BAA16] [APT] [Synaptics TouchPad Enhancements] (.Synaptics Incorporated.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2823848]
[MD5.70D6EA378844CC762C57FA4B8AC63764] [APT] [update-S-1-5-21-3922337667-1688596270-1699952560-1001] (...) -- C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [105728] =>PUP.SkillBrains
[MD5.70D6EA378844CC762C57FA4B8AC63764] [APT] [update-sys] (...) -- C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [105728] =>PUP.SkillBrains
[MD5.358B4B29563CA4A712F4EC01FEAC18F0] [APT] [TVSUUpdateTask] (...) -- C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1576944]
O39 - APT: A4RIUp5izslwO12FSzTvd - (...) -- C:\Windows\Tasks\A4RIUp5izslwO12FSzTvd.job [1068]
O39 - APT: A4RIUp5izslwO12FSzTvd - (...) -- C:\Windows\System32\Tasks\A4RIUp5izslwO12FSzTvd [1068]
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1086]
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [1086]
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1090]
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [1090]
O39 - APT: Kdnc4qA5uOc5bco941YBTg0 - (...) -- C:\Windows\Tasks\Kdnc4qA5uOc5bco941YBTg0.job [1072]
O39 - APT: Kdnc4qA5uOc5bco941YBTg0 - (...) -- C:\Windows\System32\Tasks\Kdnc4qA5uOc5bco941YBTg0 [1072]
O39 - APT: update-S-1-5-21-3922337667-1688596270-1699952560-1001 - (...) -- C:\Windows\Tasks\update-S-1-5-21-3922337667-1688596270-1699952560-1001.job [422]
O39 - APT: update-S-1-5-21-3922337667-1688596270-1699952560-1001 - (...) -- C:\Windows\System32\Tasks\update-S-1-5-21-3922337667-1688596270-1699952560-1001 [422]
O39 - APT: update-sys - (...) -- C:\Windows\Tasks\update-sys.job [422]
O39 - APT: update-sys - (...) -- C:\Windows\System32\Tasks\update-sys [422]
~ Scheduled Task: 20 Scanned in 00mn 08s



---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Resources.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll =>.Microsoft Corporation
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - Windows Theme API.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe =>.Microsoft Corporation
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Microsoft Internet Explorer FTP Folder Shell Extension.) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Windows Media Player Resources.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Disable SSL3 [64Bits] - {7D715857-A67C-4C2F-A929-038448584D63} . (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - Windows Shell Common Dll.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\System32\mscories.dll
~ Active Setup: 10 Scanned in 00mn 00s



---\\ Pilotes lancés au démarrage du système (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: C:\Windows\System32\drivers\ahcache.sys (ahcache) . (.Microsoft Corporation - Application Compatibility Cache.) - C:\Windows\System32\DRIVERS\ahcache.sys
O41 - Driver: (BasicDisplay) . (.Microsoft Corporation - Microsoft Basic Display Driver.) - C:\Windows\system32\drivers\BasicDisplay.sys
O41 - Driver: (BasicRender) . (.Microsoft Corporation - Microsoft Basic Render Driver.) - C:\Windows\system32\drivers\BasicRender.sys
O41 - Driver: cdrom.inf (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys
O41 - Driver: C:\Windows\System32\cscsvc.dll (CSC) . (.Microsoft Corporation - Windows Client Side Caching Driver.) - C:\Windows\System32\drivers\csc.sys
O41 - Driver: C:\Windows\System32\drivers\dam.sys (dam) . (.Microsoft Corporation - DAM Kernel Driver.) - C:\Windows\System32\drivers\dam.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (Dfsc) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: (eamonm) . (.ESET - Amon monitor.) - C:\Windows\System32\DRIVERS\eamonm.sys
O41 - Driver: (ehdrv) . (.ESET - ESET Helper driver.) - C:\Windows\system32\DRIVERS\ehdrv.sys
O41 - Driver: (ESProtectionDriver) . (...) - C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.sys
O41 - Driver: (ISODrive) . (.EZB Systems, Inc. - ISO DVD/CD-ROM Device Driver.) - C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys
O41 - Driver: mssmbios.inf (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: netnb.inf (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: npsvctrig.inf (npsvctrig) . (.Microsoft Corporation - Named pipe service triggers.) - C:\Windows\system32\drivers\npsvctrig.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - QoS Packet Scheduler.) - C:\Windows\system32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: oem22.inf (Serial) . (.Microsoft Corporation - Serial Device Driver.) - C:\Windows\system32\drivers\serial.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys
O41 - Driver: (VBoxDrv) . (.Oracle Corporation - VirtualBox Support Driver.) - C:\Windows\system32\DRIVERS\VBoxDrv.sys
O41 - Driver: (VBoxUSBMon) . (.Oracle Corporation - VirtualBox USB Monitor Driver.) - C:\Windows\system32\DRIVERS\VBoxUSBMon.sys
O41 - Driver: C:\Windows\System32\drivers\vwififlt.sys (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\system32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\system32\DRIVERS\wanarp.sys
O41 - Driver: Windows Socket 2.0 Non-IFS Service Provider Support Environment (ws2ifsl) . (.Microsoft Corporation - Winsock2 IFS Layer.) - C:\Windows\system32\drivers\ws2ifsl.sys
~ Drivers: 52 Scanned in 00mn 00s



---\\ Logiciels installés (O42)
O42 - Logiciel: Alcor Micro Smart Card Reader Driver - (.Alcor Micro Corp..) [HKLM][64Bits] -- SZCCID
O42 - Logiciel: Alcor Micro Smart Card Reader Driver - (.Alcor Micro Corp..) [HKLM][64Bits] -- {F24F876B-7D71-4BD6-88E9-614D3BB84237}
O42 - Logiciel: AllMyNotes Organizer - (.Vladonai Software.) [HKLM][64Bits] -- AllMyNotes Organizer
O42 - Logiciel: Ashampoo Snap 2015 v.8.0.2 - (.Ashampoo GmbH & Co. KG.) [HKLM][64Bits] -- {C92AB6F1-6B53-D1C2-2FB5-925649039D84}_is1
O42 - Logiciel: BitTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- BitTorrent =>P2P.BitTorrent
O42 - Logiciel: BlueStacks App Player - (.BlueStack Systems, Inc..) [HKLM][64Bits] -- BlueStacks App Player
O42 - Logiciel: BlueStacks Notification Center - (.BlueStack Systems, Inc..) [HKLM][64Bits] -- {79809712-A577-4B8C-A9FC-51945690C7DC}
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner
O42 - Logiciel: Camtasia Studio 8 - (.TechSmith Corporation.) [HKLM][64Bits] -- {904AC0F0-F69E-467E-A719-B083940F608A}
O42 - Logiciel: DriverIdentifier 4.2.8 - (.DriverIdentifier.) [HKLM][64Bits] -- {40A3E5DB-5EF8-4F04-BF3E-7AB87C4AE85A}_is1
O42 - Logiciel: Dropbox - (.Dropbox, Inc..) [HKCU][64Bits] -- Dropbox
O42 - Logiciel: ESET NOD32 Antivirus - (.ESET, spol s r. o..) [HKLM][64Bits] -- {81B3EC0D-FA50-4485-87A7-14A39C4CB96A}
O42 - Logiciel: EagleGet version 2.0.3.8 - (.EagleGet.) [HKLM][64Bits] -- {F6D8142A-B30B-454B-9EE0-08A7B997DFE4}_is1
O42 - Logiciel: EasyBCD 1.7.2 - (.NeoSmart Technologies.) [HKLM][64Bits] -- EasyBCD
O42 - Logiciel: FileZilla Client 3.11.0 - (.Tim Kosse.) [HKLM][64Bits] -- FileZilla Client
O42 - Logiciel: GTK2-Runtime - (...) [HKLM][64Bits] -- GTK2-Runtime
O42 - Logiciel: Geany 1.24 - (.The Geany developer team.) [HKLM][64Bits] -- Geany
O42 - Logiciel: Google Chrome - (.Google, Inc..) [HKLM][64Bits] -- {E3964939-B22A-35A3-B149-477BD630B3B6}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA}
O42 - Logiciel: Integrated Camera - (.SunplusIT.) [HKLM][64Bits] -- Sunplus SPUVCb
O42 - Logiciel: Intel Collaborative Processor Performance Control - (.Intel Corporation.) [HKLM][64Bits] -- 0E7DAF70-FB54-4B91-B192-7E771C25AEEB
O42 - Logiciel: Intel(R) ME UninstallLegacy - (.Intel Corporation.) [HKLM][64Bits] -- {120C8B2B-15F7-49DF-BCC1-28FAC155D993}
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {1CEAC85D-2590-4760-800F-8DE5E91F3700}
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {3F6E103B-605F-47B9-8986-8F6A1675B225}
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {BA433C39-B767-43C2-ABE1-8AC5D0CE8257}
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {C16626CE-1F38-4D57-819A-03EFFF5B9DF9}
O42 - Logiciel: Intel(R) Network Connections Drivers - (.Intel.) [HKLM][64Bits] -- PROSet
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}
O42 - Logiciel: Intel® PROSet/Wireless Software - (.Intel Corporation.) [HKLM][64Bits] -- {313c06de-4aa7-4a1f-930a-f10f80380426}
O42 - Logiciel: Intel® PROSet/Wireless WiFi Software - (.Intel Corporation.) [HKLM][64Bits] -- {F27A944C-C95A-4DB7-BC8A-AEFD9B1B5E40}
O42 - Logiciel: Intel® Trusted Connect Service Client - (.Intel Corporation.) [HKLM][64Bits] -- {1B444AF9-1DBE-4884-8F35-969BEFCF69A8}
O42 - Logiciel: Internet Download Manager - (.Tonec Inc..) [HKLM][64Bits] -- Internet Download Manager
O42 - Logiciel: Java 8 Update 45 - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83218045F0}
O42 - Logiciel: Lenovo Auto Scroll Utility - (...) [HKLM][64Bits] -- LenovoAutoScrollUtility
O42 - Logiciel: Lenovo Power Management Driver - (...) [HKLM][64Bits] -- Power Management Driver
O42 - Logiciel: Lenovo System Update - (.Lenovo.) [HKLM][64Bits] -- {25C64847-B900-48AD-A164-1B4F9B774650}
O42 - Logiciel: Lightshot-5.2.1.1 - (.Skillbrains.) [HKLM][64Bits] -- {30A5B3C9-2084-4063-A32A-628A98DE512B}_is1 =>PUP.SkillBrains
O42 - Logiciel: Malwarebytes Anti-Exploit version 1.06.1.1019 - (.Malwarebytes.) [HKLM][64Bits] -- Malwarebytes Anti-Exploit_is1
O42 - Logiciel: Malwarebytes Anti-Malware version 2.1.6.1022 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes Anti-Malware_is1
O42 - Logiciel: Metric Collection SDK - (.Lenovo Group Limited.) [HKLM][64Bits] -- {DDAA788F-52E6-44EA-ADB8-92837B11BF26}
O42 - Logiciel: Metric Collection SDK 35 - (.Lenovo Group Limited.) [HKLM][64Bits] -- {C2B5B5B0-2545-4E94-B4BA-548D4BF0B196}
O42 - Logiciel: Mobile Broadband Drivers - (.Ericsson AB.) [HKLM][64Bits] -- {68D0E8C7-E4F8-424E-A6D6-97A06A323FFE}
O42 - Logiciel: Mozilla Firefox 38.0.1 (x86 en-US) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 38.0.1 (x86 en-US)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService
O42 - Logiciel: Mozilla Thunderbird 31.7.0 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Thunderbird 31.7.0 (x86 fr) =>.Mozilla Corporation
O42 - Logiciel: NirSoft IPNetInfo - (...) [HKLM][64Bits] -- NirSoft IPNetInfo
O42 - Logiciel: NirSoft Wireless Network Watcher - (...) [HKLM][64Bits] -- NirSoft Wireless Network Watcher
O42 - Logiciel: Notepad++ - (.Notepad++ Team.) [HKLM][64Bits] -- Notepad++
O42 - Logiciel: On Screen Display - (...) [HKLM][64Bits] -- OnScreenDisplay
O42 - Logiciel: Oracle VM VirtualBox 4.3.28 - (.Oracle Corporation.) [HKLM][64Bits] -- {E8BB81BC-E67C-4750-84EE-128DA5A7ADA5}
O42 - Logiciel: Photoshop CS4 Me-portable 11 - (.Mrelhlawany.com.) [HKLM][64Bits] -- Photoshop CS4 Me-portable 11
O42 - Logiciel: Process Hacker 2.35 (r5898) - (.wj32.) [HKLM][64Bits] -- Process_Hacker2_is1
O42 - Logiciel: Process Lasso - (.Bitsum.) [HKLM][64Bits] -- ProcessLasso
O42 - Logiciel: Python 2.7.9 - (.Python Software Foundation.) [HKLM][64Bits] -- {79F081BF-7454-43DB-BD8F-9EE596813232}
O42 - Logiciel: Realtek Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {5BC2B5AB-80DE-4E83-B8CF-426902051D0A}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Reboot Restore Rx - (.Horizon Datasys, Inc..) [HKLM][64Bits] -- Shield
O42 - Logiciel: Skype™ 7.4 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}
O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM][64Bits] -- SynTPDeinstKey
O42 - Logiciel: UltraISO Premium V9.62 - (...) [HKLM][64Bits] -- UltraISO_is1
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player =>.VideoLAN
O42 - Logiciel: VMware Workstation - (.VMware, Inc.) [HKLM][64Bits] -- VMware_Workstation =>.VMware, Inc
O42 - Logiciel: VMware Workstation - (.VMware, Inc..) [HKLM][64Bits] -- {0D94F75A-0EA6-4951-B3AF-B145FA9E05C6} =>.VMware, Inc
O42 - Logiciel: Vega 1.0 - (.Subgraph.) [HKLM][64Bits] -- Vega
O42 - Logiciel: WinRAR 5.21 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver
O42 - Logiciel: XAMPP - (.Bitnami.) [HKLM][64Bits] -- xampp
O42 - Logiciel: f.lux - (...) [HKCU][64Bits] -- Flux
O42 - Logiciel: tools-freebsd - (.VMware, Inc..) [HKLM][64Bits] -- {003BFBBD-6C67-419E-A24D-0DCAFC3A5249}
O42 - Logiciel: tools-linux - (.VMware, Inc..) [HKLM][64Bits] -- {D102611A-6466-4101-A51D-51069303AC65}
O42 - Logiciel: tools-netware - (.VMware, Inc..) [HKLM][64Bits] -- {197597A7-AD33-4898-9D8E-73066818B464}
O42 - Logiciel: tools-solaris - (.VMware, Inc..) [HKLM][64Bits] -- {AB1C87CB-1807-4CF0-B4C2-CEE14C18CDB4}
O42 - Logiciel: tools-winPre2k - (.VMware, Inc..) [HKLM][64Bits] -- {AE0F62A7-A1A2-407F-9F4C-48939BD9AD8D}
O42 - Logiciel: tools-windows - (.VMware, Inc..) [HKLM][64Bits] -- {FFD9383C-01D5-4897-A954-43AF599AED30}
~ Logic: 66 Scanned in 00mn 00s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\A4RIUp5izslwO12FSzTvd]
[HKCU\Software\Adobe]
[HKCU\Software\Air Globe] =>Adware.AirGlobe
[HKCU\Software\AppDataLow\Software\Crossrider] =>PUP.CrossRider
[HKCU\Software\AppDataLow\Software\JavaSoft]
[HKCU\Software\AppDataLow\Software\ThinPrint]
[HKCU\Software\AppDataLow]
[HKCU\Software\ArenaHD] =>PUP.CrossRider
[HKCU\Software\Ashampoo]
[HKCU\Software\Chromium]
[HKCU\Software\CinemaPlus-3.2cV17.05-nv-ie] =>PUP.CrossRider
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\DownloadManager]
[HKCU\Software\ESET]
[HKCU\Software\EagleGet]
[HKCU\Software\EasyBoot Systems]
[HKCU\Software\Ge-Force-nv-ie] =>PUP.CrossRider
[HKCU\Software\Google]
[HKCU\Software\HighDefAction] =>PUP.CrossRider
[HKCU\Software\IBM]
[HKCU\Software\IM Providers]
[HKCU\Software\Intel]
[HKCU\Software\JavaSoft]
[HKCU\Software\Kdnc4qA5uOc5bco941YBTg0]
[HKCU\Software\Lenovo]
[HKCU\Software\Macromedia]
[HKCU\Software\MainConcept]
[HKCU\Software\Michael Herf]
[HKCU\Software\Mine]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\OB]
[HKCU\Software\Opera Software]
[HKCU\Software\Oracle]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\Popcorn Time]
[HKCU\Software\ProcessLasso]
[HKCU\Software\Realtek]
[HKCU\Software\RegisteredApplications]
[HKCU\Software\SavePass 1.1-nv-ie] =>PUP.CrossRider
[HKCU\Software\Sense-nv-ie] =>PUP.CrossRider
[HKCU\Software\SimonTatham]
[HKCU\Software\SkillBrains] =>PUP.SkillBrains
[HKCU\Software\Skype]
[HKCU\Software\Sunplus SPUVCb]
[HKCU\Software\Synaptics]
[HKCU\Software\Sysinternals]
[HKCU\Software\TechSmith]
[HKCU\Software\Trolltech]
[HKCU\Software\VMware, Inc.]
[HKCU\Software\Vladonai]
[HKCU\Software\WinRAR]
[HKCU\Software\Wow6432Node]
[HKCU\Software\YorkNewCin] =>PUP.CrossRider
[HKCU\Software\ZebHelpProcess Helper]
[HKCU\Software\globalUpdate] =>PUP.GlobalUpdate
[HKLM\Software\ArenaHD] =>PUP.CrossRider
[HKLM\Software\BlueStacks]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\DTS]
[HKLM\Software\Dolby]
[HKLM\Software\ESET]
[HKLM\Software\Ericsson AB]
[HKLM\Software\FileZilla 3]
[HKLM\Software\Google]
[HKLM\Software\HighDefAction] =>PUP.CrossRider
[HKLM\Software\IBM]
[HKLM\Software\IM Providers]
[HKLM\Software\InstalledOptions]
[HKLM\Software\Intel]
[HKLM\Software\Khronos]
[HKLM\Software\Knowles]
[HKLM\Software\Lenovo]
[HKLM\Software\Macromedia]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\NeoSmart Technologies]
[HKLM\Software\Nuance]
[HKLM\Software\ODBC]
[HKLM\Software\Oracle]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\ProcessLasso]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SRS Labs]
[HKLM\Software\ShopperPro] =>PUP.ShopperPro
[HKLM\Software\SonicFocus]
[HKLM\Software\Sunplus SPUVCb]
[HKLM\Software\Synaptics]
[HKLM\Software\VMware, Inc.]
[HKLM\Software\VideoLAN]
[HKLM\Software\WinRAR]
[HKLM\Software\Wow6432Node\Adobe]
[HKLM\Software\Wow6432Node\Air Globe] =>Adware.AirGlobe
[HKLM\Software\Wow6432Node\AllMyNotes]
[HKLM\Software\Wow6432Node\AppDataLow]
[HKLM\Software\Wow6432Node\ArenaHD] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Ashampoo]
[HKLM\Software\Wow6432Node\BlueStacks]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\ESET]
[HKLM\Software\Wow6432Node\EagleGet]
[HKLM\Software\Wow6432Node\EasyBoot Systems]
[HKLM\Software\Wow6432Node\Ericsson AB]
[HKLM\Software\Wow6432Node\Faronics]
[HKLM\Software\Wow6432Node\FileZilla 3]
[HKLM\Software\Wow6432Node\GTK]
[HKLM\Software\Wow6432Node\GlobalUpdate] =>PUP.GlobalUpdate
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\HighDefAction] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\IBM]
[HKLM\Software\Wow6432Node\IM Providers]
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\JavaSoft]
[HKLM\Software\Wow6432Node\JreMetrics]
[HKLM\Software\Wow6432Node\Khronos]
[HKLM\Software\Wow6432Node\Lenovo]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\Malwarebytes Anti-Exploit]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\NeoSmart Technologies]
[HKLM\Software\Wow6432Node\Nuance]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\Opera Software]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\Python]
[HKLM\Software\Wow6432Node\Realtek Semiconductor Corp.]
[HKLM\Software\Wow6432Node\Realtek]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\Skillbrains] =>PUP.SkillBrains
[HKLM\Software\Wow6432Node\Skype]
[HKLM\Software\Wow6432Node\TechSmith]
[HKLM\Software\Wow6432Node\ThinPrint]
[HKLM\Software\Wow6432Node\VMware, Inc.]
[HKLM\Software\Wow6432Node\Wow6432Node]
[HKLM\Software\Wow6432Node\YorkNewCin] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\mozilla.org]
[HKLM\Software\Wow6432Node]
[HKLM\Software\YTDownloader] =>PUP.YTDownloader
[HKLM\Software\YorkNewCin] =>PUP.CrossRider
~ Key Software: 297 Scanned in 00mn 00s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 20/05/2015 - 02:42:34 - [0] ----D C:\Program Files (x86)\a611c9d9-fd97-45be-82c1-d0c0d606dee6
O43 - CFD: 20/05/2015 - 02:40:09 - [] ----D C:\Program Files (x86)\Air Globe =>Adware.AirGlobe
O43 - CFD: 20/05/2015 - 02:43:07 - [] ----D C:\Program Files (x86)\AlcorMicro
O43 - CFD: 20/05/2015 - 02:39:12 - [] ----D C:\Program Files (x86)\AlcorMicroData
O43 - CFD: 24/05/2015 - 13:18:44 - [] ----D C:\Program Files (x86)\AllMyNotes Organizer
O43 - CFD: 25/05/2015 - 15:43:09 - [] ----D C:\Program Files (x86)\Ashampoo
O43 - CFD: 20/05/2015 - 18:51:41 - [] ----D C:\Program Files (x86)\BlueStacks
O43 - CFD: 21/05/2015 - 21:18:19 - [] ----D C:\Program Files (x86)\Cisco
O43 - CFD: 25/05/2015 - 20:46:53 - [] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 20/05/2015 - 00:24:13 - [] ----D C:\Program Files (x86)\Driver Identifier
O43 - CFD: 22/05/2015 - 17:46:46 - [] ----D C:\Program Files (x86)\EagleGet
O43 - CFD: 24/05/2015 - 03:05:43 - [] ----D C:\Program Files (x86)\Faronics
O43 - CFD: 22/05/2015 - 00:21:27 - [] ----D C:\Program Files (x86)\FileZilla FTP Client
O43 - CFD: 23/05/2015 - 16:29:15 - [] ----D C:\Program Files (x86)\Geany
O43 - CFD: 20/05/2015 - 14:41:04 - [] ----D C:\Program Files (x86)\globalUpdate =>PUP.GlobalUpdate
O43 - CFD: 20/05/2015 - 00:44:48 - [] ----D C:\Program Files (x86)\Google
O43 - CFD: 23/05/2015 - 16:26:43 - [] ----D C:\Program Files (x86)\GTK2-Runtime
O43 - CFD: 20/05/2015 - 01:52:35 - [] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 20/05/2015 - 01:44:59 - [] ----D C:\Program Files (x86)\Integrated Camera
O43 - CFD: 21/05/2015 - 21:18:19 - [] ----D C:\Program Files (x86)\Intel
O43 - CFD: 20/05/2015 - 00:48:02 - [] ----D C:\Program Files (x86)\Internet Download Manager
O43 - CFD: 21/05/2015 - 20:57:32 - [] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 25/05/2015 - 20:45:36 - [] ----D C:\Program Files (x86)\Java
O43 - CFD: 22/05/2015 - 02:36:08 - [] ----D C:\Program Files (x86)\Lenovo
O43 - CFD: 23/05/2015 - 00:50:52 - [] ----D C:\Program Files (x86)\Malwarebytes Anti-Exploit
O43 - CFD: 20/05/2015 - 00:51:57 - [] ----D C:\Program Files (x86)\Malwarebytes Anti-Malware
O43 - CFD: 20/05/2015 - 12:11:02 - [] ----D C:\Program Files (x86)\Microsoft Toolkit Final
O43 - CFD: 22/08/2013 - 17:36:30 - [] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 20/05/2015 - 00:34:28 - [] ----D C:\Program Files (x86)\Mobile Broadband Drivers
O43 - CFD: 20/05/2015 - 00:42:43 - [] ----D C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 22/05/2015 - 14:32:21 - [] ----D C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 22/05/2015 - 13:54:09 - [] ----D C:\Program Files (x86)\Mozilla Thunderbird =>.Mozilla Corporation
O43 - CFD: 25/05/2015 - 14:30:14 - [] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 25/05/2015 - 14:24:17 - [] ----D C:\Program Files (x86)\NeoSmart Technologies
O43 - CFD: 23/05/2015 - 01:56:50 - [] ----D C:\Program Files (x86)\NirSoft
O43 - CFD: 22/05/2015 - 00:00:41 - [] ----D C:\Program Files (x86)\Notepad++
O43 - CFD: 20/05/2015 - 02:43:24 - [] ----D C:\Program Files (x86)\Opera
O43 - CFD: 20/05/2015 - 11:52:57 - [] ----D C:\Program Files (x86)\QuickTime
O43 - CFD: 20/05/2015 - 01:52:36 - [] ----D C:\Program Files (x86)\Realtek
O43 - CFD: 25/05/2015 - 14:30:14 - [] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 21/05/2015 - 21:23:30 - [] ----D C:\Program Files (x86)\Skillbrains =>PUP.SkillBrains
O43 - CFD: 20/05/2015 - 00:47:45 - [] R---D C:\Program Files (x86)\Skype
O43 - CFD: 20/05/2015 - 11:52:13 - [] ----D C:\Program Files (x86)\TechSmith
O43 - CFD: 20/05/2015 - 01:54:30 - [0] --H-D C:\Program Files (x86)\Temp
O43 - CFD: 22/05/2015 - 16:41:35 - [] ----D C:\Program Files (x86)\UltraISO
O43 - CFD: 25/05/2015 - 20:59:26 - [] ----D C:\Program Files (x86)\Vega
O43 - CFD: 22/05/2015 - 18:15:43 - [] ----D C:\Program Files (x86)\VMware
O43 - CFD: 21/05/2015 - 20:57:40 - [] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 21/05/2015 - 20:56:20 - [] ----D C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation
O43 - CFD: 21/05/2015 - 20:56:20 - [] ----D C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 21/05/2015 - 20:56:20 - [] ----D C:\Program Files (x86)\Windows Multimedia Platform
O43 - CFD: 22/08/2013 - 17:36:30 - [] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 21/05/2015 - 20:56:19 - [] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 21/05/2015 - 20:56:20 - [] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 22/08/2013 - 17:36:30 - [] -SH-D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 22/08/2013 - 17:36:30 - [] ----D C:\Program Files (x86)\WindowsPowerShell
O43 - CFD: 27/05/2015 - 02:17:52 - [] ----D C:\Program Files (x86)\ZHPDiag =>.Nicolas Coolman
O43 - CFD: 20/05/2015 - 20:36:36 - [] ----D C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 22/05/2015 - 17:46:45 - [] ----D C:\Program Files (x86)\Common Files\EagleGet
O43 - CFD: 22/05/2015 - 16:41:35 - [] ----D C:\Program Files (x86)\Common Files\EZB Systems
O43 - CFD: 20/05/2015 - 01:52:28 - [] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 20/05/2015 - 00:41:25 - [] ----D C:\Program Files (x86)\Common Files\Intel
O43 - CFD: 25/05/2015 - 20:46:53 - [] ----D C:\Program Files (x86)\Common Files\Java
O43 - CFD: 22/05/2015 - 18:15:03 - [] ----D C:\Program Files (x86)\Common Files\Microsoft Shared
O43 - CFD: 20/05/2015 - 01:40:01 - [] ----D C:\Program Files (x86)\Common Files\PostureAgent
O43 - CFD: 22/08/2013 - 17:36:33 - [] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 20/05/2015 - 00:47:45 - [] ----D C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 21/05/2015 - 20:56:19 - [] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 20/05/2015 - 11:52:38 - [] ----D C:\Program Files (x86)\Common Files\TechSmith Shared
O43 - CFD: 22/05/2015 - 18:15:43 - [] ----D C:\Program Files (x86)\Common Files\VMware
O43 - CFD: 22/08/2013 - 16:45:52 - [] -SH-D C:\ProgramData\Application Data
O43 - CFD: 25/05/2015 - 15:43:16 - [] ----D C:\ProgramData\Ashampoo
O43 - CFD: 20/05/2015 - 18:51:45 - [] ----D C:\ProgramData\BlueStacks
O43 - CFD: 21/05/2015 - 12:45:38 - [] ----D C:\ProgramData\BlueStacksSetup
O43 - CFD: 22/08/2013 - 16:45:52 - [] -SH-D C:\ProgramData\Desktop
O43 - CFD: 22/08/2013 - 16:45:52 - [] -SH-D C:\ProgramData\Documents
O43 - CFD: 22/05/2015 - 17:46:45 - [] ----D C:\ProgramData\EagleGet
O43 - CFD: 20/05/2015 - 20:14:26 - [] ----D C:\ProgramData\ESET
O43 - CFD: 20/05/2015 - 00:47:58 - [0] ----D C:\ProgramData\IDM
O43 - CFD: 21/05/2015 - 21:18:54 - [] ----D C:\ProgramData\Intel
O43 - CFD: 20/05/2015 - 02:00:42 - [] ----D C:\ProgramData\Lenovo
O43 - CFD: 20/05/2015 - 00:51:29 - [] ----D C:\ProgramData\Malwarebytes
O43 - CFD: 27/05/2015 - 02:18:45 - [] ----D C:\ProgramData\Malwarebytes Anti-Exploit
O43 - CFD: 21/05/2015 - 20:56:06 - [] -S--D C:\ProgramData\Microsoft
O43 - CFD: 20/05/2015 - 00:42:48 - [] ----D C:\ProgramData\Mozilla
O43 - CFD: 21/05/2015 - 23:02:44 - [] ----D C:\ProgramData\Oracle
O43 - CFD: 21/05/2015 - 21:19:02 - [] ----D C:\ProgramData\Package Cache
O43 - CFD: 20/05/2015 - 13:01:28 - [0] ----D C:\ProgramData\ProcessLasso
O43 - CFD: 21/05/2015 - 20:56:19 - [] ----D C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 20/05/2015 - 11:52:59 - [] ----D C:\ProgramData\regid.1995-08.com.techsmith
O43 - CFD: 20/05/2015 - 02:03:26 - [] ----D C:\ProgramData\Roaming
O43 - CFD: 20/05/2015 - 00:47:36 - [] ----D C:\ProgramData\Skype
O43 - CFD: 22/08/2013 - 16:45:52 - [] -SH-D C:\ProgramData\Start Menu
O43 - CFD: 21/05/2015 - 23:03:54 - [] ----D C:\ProgramData\Sun
O43 - CFD: 20/05/2015 - 00:36:55 - [] ----D C:\ProgramData\SZCCID
O43 - CFD: 20/05/2015 - 11:52:13 - [] ----D C:\ProgramData\TechSmith
O43 - CFD: 22/08/2013 - 16:45:52 - [] -SH-D C:\ProgramData\Templates
O43 - CFD: 27/05/2015 - 02:08:54 - [] ----D C:\ProgramData\VMware
O43 - CFD: 21/05/2015 - 20:57:32 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 21/05/2015 - 20:57:41 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 21/05/2015 - 21:43:00 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 25/05/2015 - 15:43:53 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo
O43 - CFD: 20/05/2015 - 18:51:41 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks
O43 - CFD: 20/05/2015 - 02:47:08 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
O43 - CFD: 20/05/2015 - 00:24:13 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Identifier
O43 - CFD: 22/05/2015 - 17:46:47 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EagleGet
O43 - CFD: 20/05/2015 - 20:14:26 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
O43 - CFD: 22/05/2015 - 00:21:23 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
O43 - CFD: 23/05/2015 - 16:29:15 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Geany
O43 - CFD: 20/05/2015 - 00:45:13 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 23/05/2015 - 16:26:43 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GTK2 Runtime
O43 - CFD: 22/05/2015 - 02:34:24 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
O43 - CFD: 20/05/2015 - 00:47:56 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
O43 - CFD: 25/05/2015 - 20:46:40 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
O43 - CFD: 22/05/2015 - 02:35:12 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
O43 - CFD: 22/05/2015 - 02:36:09 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo ThinkVantage Tools
O43 - CFD: 21/05/2015 - 21:23:28 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lightshot
O43 - CFD: 22/08/2013 - 17:36:33 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 23/05/2015 - 00:50:54 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Exploit
O43 - CFD: 20/05/2015 - 00:52:10 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
O43 - CFD: 25/05/2015 - 14:31:25 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NeoSmart Technologies
O43 - CFD: 22/05/2015 - 00:00:36 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
O43 - CFD: 25/05/2015 - 23:11:14 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox
O43 - CFD: 20/05/2015 - 03:25:01 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Process Hacker 2
O43 - CFD: 20/05/2015 - 13:01:25 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Process Lasso
O43 - CFD: 20/05/2015 - 00:46:27 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Python 2.7
O43 - CFD: 20/05/2015 - 00:47:46 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
O43 - CFD: 22/08/2013 - 17:36:33 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp
O43 - CFD: 21/05/2015 - 20:57:32 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 30/09/2013 - 05:54:53 - [0] R-H-D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 20/05/2015 - 11:53:00 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TechSmith
O43 - CFD: 22/05/2015 - 16:41:37 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UltraISO
O43 - CFD: 25/05/2015 - 19:35:22 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vega
O43 - CFD: 20/05/2015 - 00:47:12 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
O43 - CFD: 22/05/2015 - 18:16:45 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VMware
O43 - CFD: 20/05/2015 - 00:46:33 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 23/05/2015 - 19:49:27 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XAMPP
O43 - CFD: 27/05/2015 - 02:17:52 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP =>.Nicolas Coolman
O43 - CFD: 20/05/2015 - 20:42:56 - [] ----D C:\Users\Mohammed lahlou\AppData\Roaming\Adobe
O43 - CFD: 24/05/2015 - 03:05:06 - [] ----D C:\Users\Mohammed lahlou\AppData\Roaming\BitTorrent =>P2P.BitTorrent
O43 - CFD: 25/05/2015 - 14:36:53 - [] ----D C:\Users\Mohammed lahlou\AppData\Roaming\DMCache
O43 - CFD: 20/05/2015 - 00:24:19 - [] ----D C:\Users\Mohammed lahlou\AppData\Roaming\driveridentifier
O43 - CFD: 23/05/2015 - 14:15:33 - [] ----D C:\Users\Mohammed lahlou\AppData\Roaming\Dropbox
O43 - CFD: 22/05/2015 - 17:46:46 - [] ----D C:\Users\Mohammed lahlou\AppData\Roaming\EagleGet
O43 - CFD: 23/05/2015 - 19:28:23 - [] ----D C:\Users\Mohammed lahlou\AppData\Roaming\FileZilla
O43 - CFD: 23/05/2015 - 16:49:06 - [] ----D C:\Users\Mohammed lahlou\AppData\Roaming\geany
O43 - CFD: 23/05/2015 - 18:56:06 - [] ----D C:\Users\Mohammed lahlou\AppData\Roaming\gtk-2.0
O43 - CFD: 21/05/2015 - 21:03:39 - [] ----D C:\Users\Mohammed lahlou\AppData\Roaming\Identities
O43 - CFD: 24/05/2015 - 03:14:20 - [] ----D C:\Users\Mohammed lahlou\AppData\Roaming\IDM
O43 - CFD: 20/05/2015 - 02:03:34 - [] ----D C:\Users\Mohammed lahlou\AppData\Roaming\Intel
O43 - CFD: 20/05/2015 - 02:08:55 - [] ----D C:\Users\Mohammed lahlou\AppData\Roaming\Lenovo
O43 - CFD: 20/05/2015 - 16:25:44 - [] ----D C:\Users\Mohammed lahlou\AppData\Roaming\Macromedia
O43 - CFD: 20/05/2015 - 12:02:22 - [] -S--D C:\Users\Mohammed lahlou\AppData\Roaming\Microsoft
O43 - CFD: 20/05/2015 - 01:24:09 - [] ----D C:\Users\Mohammed lahlou\AppData\Roaming\Mozilla
O43 - CFD: 22/05/2015 - 13:02:43 - [] ----D C:\Users\Mohammed lahlou\AppData\Roaming\Notepad++
O43 - CFD: 20/05/2015 - 02:33:22 - [] ----D C:\Users\Mohammed lahlou\AppData\Roaming\Opera Software
O43 - CFD: 20/05/2015 - 03:26:16 - [] ----D C:\Users\Mohammed lahlou\AppData\Roaming\Process Hacker 2
O43 - CFD: 20/05/2015 - 13:01:19 - [] ----D C:\Users\Mohammed lahlou\AppData\Roaming\ProcessLasso
O43 - CFD: 27/05/2015 - 02:14:31 - [] ----D C:\Users\Mohammed lahlou\AppData\Roaming\Skype
O43 - CFD: 20/05/2015 - 12:02:47 - [] ----D C:\Users\Mohammed lahlou\AppData\Roaming\TechSmith
O43 - CFD: 22/05/2015 - 13:54:43 - [] ----D C:\Users\Mohammed lahlou\AppData\Roaming\Thunderbird =>.Mozilla Corporation
O43 - CFD: 25/05/2015 - 22:54:36 - [] ----D C:\Users\Mohammed lahlou\AppData\Roaming\vlc
O43 - CFD: 25/05/2015 - 23:09:15 - [] ----D C:\Users\Mohammed lahlou\AppData\Roaming\VMware
O43 - CFD: 20/05/2015 - 03:00:12 - [] ----D C:\Users\Mohammed lahlou\AppData\Roaming\WinRAR
O43 - CFD: 27/05/2015 - 02:18:51 - [] ----D C:\Users\Mohammed lahlou\AppData\Roaming\ZHP =>.Nicolas Coolman
O43 - CFD: 20/05/2015 - 20:42:51 - [] ----D C:\Users\Mohammed lahlou\AppData\Local\Adobe
O43 - CFD: 19/05/2015 - 15:21:52 - [] -SH-D C:\Users\Mohammed lahlou\AppData\Local\Application Data
O43 - CFD: 20/05/2015 - 18:50:50 - [] ----D C:\Users\Mohammed lahlou\AppData\Local\Bluestacks
O43 - CFD: 20/05/2015 - 02:35:21 - [] ----D C:\Users\Mohammed lahlou\AppData\Local\BrowserHelper =>PUP.BrowserHelper
O43 - CFD: 25/05/2015 - 18:50:07 - [] ----D C:\Users\Mohammed lahlou\AppData\Local\CrashDumps
O43 - CFD: 20/05/2015 - 02:33:42 - [] ----D C:\Users\Mohammed lahlou\AppData\Local\CrashRpt
O43 - CFD: 20/05/2015 - 19:35:02 - [] ----D C:\Users\Mohammed lahlou\AppData\Local\Diagnostics
O43 - CFD: 20/05/2015 - 03:10:19 - [] ----D C:\Users\Mohammed lahlou\AppData\Local\Downloaded Installations
O43 - CFD: 22/05/2015 - 13:09:46 - [] -SH-D C:\Users\Mohammed lahlou\AppData\Local\EmieBrowserModeList
O43 - CFD: 21/05/2015 - 14:52:28 - [] -SH-D C:\Users\Mohammed lahlou\AppData\Local\EmieSiteList
O43 - CFD: 21/05/2015 - 14:52:28 - [] -SH-D C:\Users\Mohammed lahlou\AppData\Local\EmieUserList
O43 - CFD: 20/05/2015 - 18:46:36 - [] ----D C:\Users\Mohammed lahlou\AppData\Local\ESET
O43 - CFD: 20/05/2015 - 00:53:51 - [] ----D C:\Users\Mohammed lahlou\AppData\Local\FluxSoftware
O43 - CFD: 20/05/2015 - 02:32:13 - [] ----D C:\Users\Mohammed lahlou\AppData\Local\globalUpdate =>PUP.GlobalUpdate
O43 - CFD: 20/05/2015 - 00:50:23 - [] ----D C:\Users\Mohammed lahlou\AppData\Local\Google
O43 - CFD: 19/05/2015 - 15:21:52 - [] -SH-D C:\Users\Mohammed lahlou\AppData\Local\History
O43 - CFD: 20/05/2015 - 03:21:46 - [] ----D C:\Users\Mohammed lahlou\AppData\Local\Intel_Corporation
O43 - CFD: 20/05/2015 - 03:10:27 - [] ----D C:\Users\Mohammed lahlou\AppData\Local\Lenovo
O43 - CFD: 25/05/2015 - 20:38:11 - [] ----D C:\Users\Mohammed lahlou\AppData\Local\Microsoft
O43 - CFD: 20/05/2015 - 16:27:16 - [] ----D C:\Users\Mohammed lahlou\AppData\Local\Microsoft_Corporation
O43 - CFD: 20/05/2015 - 01:24:06 - [] ----D C:\Users\Mohammed lahlou\AppData\Local\Mozilla
O43 - CFD: 20/05/2015 - 02:33:23 - [] ----D C:\Users\Mohammed lahlou\AppData\Local\Opera Software
O43 - CFD: 25/05/2015 - 15:58:54 - [] ----D C:\Users\Mohammed lahlou\AppData\Local\Packages
O43 - CFD: 25/05/2015 - 16:06:59 - [] ----D C:\Users\Mohammed lahlou\AppData\Local\Popcorn Time
O43 - CFD: 25/05/2015 - 22:45:42 - [] ----D C:\Users\Mohammed lahlou\AppData\Local\Popcorn-Time
O43 - CFD: 20/05/2015 - 15:43:02 - [] ----D C:\Users\Mohammed lahlou\AppData\Local\PopcornTimeDesktop
O43 - CFD: 20/05/2015 - 00:24:08 - [] ----D C:\Users\Mohammed lahlou\AppData\Local\Programs
O43 - CFD: 20/05/2015 - 02:05:09 - [] ----D C:\Users\Mohammed lahlou\AppData\Local\Skype
O43 - CFD: 20/05/2015 - 12:01:57 - [] ----D C:\Users\Mohammed lahlou\AppData\Local\TechSmith
O43 - CFD: 27/05/2015 - 02:18:05 - [] ----D C:\Users\Mohammed lahlou\AppData\Local\Temp
O43 - CFD: 19/05/2015 - 15:21:52 - [] -SH-D C:\Users\Mohammed lahlou\AppData\Local\Temporary Internet Files
O43 - CFD: 22/05/2015 - 13:54:43 - [] ----D C:\Users\Mohammed lahlou\AppData\Local\Thunderbird =>.Mozilla Corporation
O43 - CFD: 20/05/2015 - 01:02:43 - [] ----D C:\Users\Mohammed lahlou\AppData\Local\Tvsukernel
O43 - CFD: 20/05/2015 - 15:43:04 - [] ----D C:\Users\Mohammed lahlou\AppData\Local\VirtualStore
O43 - CFD: 22/05/2015 - 21:41:32 - [] ----D C:\Users\Mohammed lahlou\AppData\Local\Vivaldi
O43 - CFD: 25/05/2015 - 22:50:40 - [] ----D C:\Users\Mohammed lahlou\AppData\Local\VMware
O43 - CFD: 22/08/2013 - 17:36:32 - [] R---D C:\Users\Mohammed lahlou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 22/08/2013 - 17:36:32 - [] R---D C:\Users\Mohammed lahlou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 27/05/2015 - 02:08:55 - [] R---D C:\Users\Mohammed lahlou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 24/05/2015 - 13:18:26 - [] ----D C:\Users\Mohammed lahlou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AllMyNotes Organizer
O43 - CFD: 20/05/2015 - 03:06:01 - [] ----D C:\Users\Mohammed lahlou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps
O43 - CFD: 20/05/2015 - 00:50:43 - [] ----D C:\Users\Mohammed lahlou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
O43 - CFD: 20/05/2015 - 00:53:54 - [] ----D C:\Users\Mohammed lahlou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Flux
O43 - CFD: 23/05/2015 - 16:26:43 - [] ----D C:\Users\Mohammed lahlou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GTK2 Runtime
O43 - CFD: 20/05/2015 - 00:47:56 - [] ----D C:\Users\Mohammed lahlou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
O43 - CFD: 22/08/2013 - 17:36:32 - [] ----D C:\Users\Mohammed lahlou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 23/05/2015 - 01:56:51 - [] ----D C:\Users\Mohammed lahlou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NirSoft IPNetInfo
O43 - CFD: 22/05/2015 - 21:38:11 - [] ----D C:\Users\Mohammed lahlou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NirSoft Wireless Network Watcher
O43 - CFD: 22/05/2015 - 00:00:36 - [0] ----D C:\Users\Mohammed lahlou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++
O43 - CFD: 25/05/2015 - 16:05:05 - [] ----D C:\Users\Mohammed lahlou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Popcorn Time
O43 - CFD: 27/05/2015 - 02:08:55 - [] R---D C:\Users\Mohammed lahlou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 22/08/2013 - 17:36:32 - [] R---D C:\Users\Mohammed lahlou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 25/05/2015 - 20:58:55 - [0] ----D C:\Users\Mohammed lahlou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Vega
O43 - CFD: 20/05/2015 - 00:46:33 - [] ----D C:\Users\Mohammed lahlou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
~ Program Folder: 219 Scanned in 00mn 00s



---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.0967B5B9EE571C2B410A3D467CF8D4C1] - 12/05/2015 - 06:27:04 ---A- . (.Lenovo. - Installer for ThinkPad PM Driver.) -- C:\Windows\System32\tpinspm.dll [42472]
O44 - LFC:[MD5.16DB32FC521B6D9D44C7E99EC0F8E8BA] - 12/05/2015 - 06:27:04 ---A- . (.Lenovo. - Lenovo Power Management Driver.) -- C:\Windows\System32\Drivers\ibmpmdrv.sys [63464]
O44 - LFC:[MD5.FF05933FB73440B1443BBB4114E1EFA3] - 12/05/2015 - 06:27:04 ---A- . (.Lenovo. - Lenovo Power Management Service.) -- C:\Windows\System32\ibmpmsvc.exe [102376]
O44 - LFC:[MD5.F8D4CDD9BE8C9D864D008349C0E10F13] - 12/05/2015 - 06:27:04 ---A- . (.Lenovo. - Twist Screen Auto Rotation.) -- C:\Windows\System32\ibmpmctl.exe [74728]
O44 - LFC:[MD5.7CDC34CA5866B14A7C35B7AB3C0520B7] - 13/05/2015 - 16:10:22 ---A- . (.Oracle Corporation - VirtualBox Bridged Networking Driver Notify.) -- C:\Windows\System32\VBoxNetFltNobj.dll [204264]
O44 - LFC:[MD5.C9232E8BC7DE065C88586A6A8089C94E] - 13/05/2015 - 16:10:24 ---A- . (.Oracle Corporation - VirtualBox Bridged Networking Driver.) -- C:\Windows\System32\Drivers\VBoxNetFlt.sys [156360]
O44 - LFC:[MD5.348A3A2F65CFF137440127A98C307102] - 13/05/2015 - 16:10:24 ---A- . (.Oracle Corporation - VirtualBox Host-Only Network Adapter Driver.) -- C:\Windows\System32\Drivers\VBoxNetAdp.sys [141440]
O44 - LFC:[MD5.79B223A37527EF773621F656310CE525] - 13/05/2015 - 16:10:24 ---A- . (.Oracle Corporation - VirtualBox USB Monitor Driver.) -- C:\Windows\System32\Drivers\VBoxUSBMon.sys [128592]
O44 - LFC:[MD5.774E0B5708EC5F8FE3FAE063AD741D1E] - 13/05/2015 - 16:11:36 ---A- . (.Oracle Corporation - VirtualBox Support Driver.) -- C:\Windows\System32\Drivers\VBoxDrv.sys [922704]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 19/05/2015 - 14:20:11 --HA- . (...) -- C:\Windows\System32\Drivers\Msft_User_WpdFs_01_11_00.Wdf [0]
O44 - LFC:[MD5.76E7E3A49322A305FA8762D6A9AFF1B5] - 19/05/2015 - 14:20:24 ---A- . (...) -- C:\Windows\System32\license.rtf [620]
O44 - LFC:[MD5.FC47928D02D476F6D4FB395AFBA54217] - 19/05/2015 - 23:33:42 ---A- . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\Windows\System32\Drivers\Smb_driver_Intel.sys [32936]
O44 - LFC:[MD5.D25AD65DA9BBDA03A7117DDD93502F4F] - 19/05/2015 - 23:33:46 ---A- . (.Synaptics Incorporated - SynCOM.) -- C:\Windows\System32\SynCOM.dll [746664]
O44 - LFC:[MD5.9D09CD71A2A7C9D85B93F40DEBB7AE93] - 19/05/2015 - 23:33:48 ---A- . (.Synaptics Incorporated - SynTPAPI.) -- C:\Windows\System32\SynTPAPI.dll [254632]
O44 - LFC:[MD5.6102053179C053534B839E93B1DBAF51] - 19/05/2015 - 23:33:48 ---A- . (.Synaptics Incorporated - Synaptics Pointing Device Driver Co-Install.) -- C:\Windows\System32\SynTPCo20.dll [208040]
O44 - LFC:[MD5.30204C9C4675C28D2474218130F8FC84] - 19/05/2015 - 23:33:48 ---A- . (.Synaptics Incorporated - Synaptics Touchpad Win64 Driver.) -- C:\Windows\System32\Drivers\SynTP.sys [567464]
O44 - LFC:[MD5.D10864C1730172780C2D4BE633B9220A] - 19/05/2015 - 23:33:51 ---A- . (.Microsoft Corporation - WDF Coinstaller.) -- C:\Windows\System32\WdfCoInstaller01011.dll [1795952]
O44 - LFC:[MD5.1CA5765B7583A8A048ACAD023086B9DB] - 19/05/2015 - 23:34:28 R---- . (...) -- C:\Windows\ConnectionProfiles.dat [35890]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 19/05/2015 - 23:35:13 --HA- . (...) -- C:\Windows\System32\Drivers\Msft_Kernel_SynTP_01011.Wdf [0]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 19/05/2015 - 23:35:16 --HA- . (...) -- C:\Windows\System32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf [0]
O44 - LFC:[MD5.F50B2E914B62CE536692FEDD7C81B0D1] - 19/05/2015 - 23:36:23 ---A- . (.Intel Corporation - Intel Collaborative Processor Performance C.) -- C:\Windows\System32\Drivers\IntelPcc.sys [77992]
O44 - LFC:[MD5.FF8695FE22D065941867566BC680BEDB] - 19/05/2015 - 23:36:58 ---A- . (...) -- C:\Windows\hbcikrnl.ini [248]
O44 - LFC:[MD5.90BB0FDC95B7C5FA87B54C0E9CB45845] - 19/05/2015 - 23:41:36 ---A- . (.Khronos Group - OpenCL Client DLL.) -- C:\Windows\System32\OpenCL.DLL [82432]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 19/05/2015 - 23:45:02 --HA- . (...) -- C:\Windows\System32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf [0]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 19/05/2015 - 23:47:41 --HA- . (...) -- C:\Windows\System32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf [0]
O44 - LFC:[MD5.8E9027FC3F65F41B9607D02D608FCFCD] - 19/05/2015 - 23:51:29 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\mbam.sys [25816]
O44 - LFC:[MD5.C85D13A4C918CB2BD9C461BB5BF068CB] - 19/05/2015 - 23:51:29 ---A- . (.Malwarebytes Corporation - Malwarebytes Chameleon Protection Driver.) -- C:\Windows\System32\Drivers\mbamchameleon.sys [107736]
O44 - LFC:[MD5.451F099000928C9B1E6AD3A0548C007C] - 19/05/2015 - 23:51:29 ---A- . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\Windows\System32\Drivers\mwac.sys [64216]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 20/05/2015 - 00:38:32 --HA- . (...) -- C:\Windows\System32\Drivers\Msft_Kernel_btmhsf_01011.Wdf [0]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 20/05/2015 - 00:38:36 --HA- . (...) -- C:\Windows\System32\Drivers\Msft_Kernel_btmaux_01009.Wdf [0]
O44 - LFC:[MD5.8BE099617DA18FE085A40D47FC156B1B] - 20/05/2015 - 00:40:51 ---A- . (.Intel Corporation - Intel Rapid Storage Technology driver - x64.) -- C:\Windows\System32\Drivers\iaStorA.sys [632168]
O44 - LFC:[MD5.D1255851605A6FBFC5D740152D7FEEA3] - 20/05/2015 - 00:41:50 ---A- . (.Realsil Semiconductor Corporation - RTS PCIE READER Driver.) -- C:\Windows\System32\Drivers\RtsPer.sys [423128]
O44 - LFC:[MD5.FFC77870402F6DDD5BB8172C6A55DFB3] - 20/05/2015 - 00:52:33 ---A- . (.Realtek Semiconductor Corp. - RtlExUpd DLL for setup utility function.) -- C:\Windows\RtlExUpd.dll [2080472]
O44 - LFC:[MD5.2CBDC11690656A1A2D03EC65AE2BCE68] - 20/05/2015 - 00:52:36 ---A- . (.Andrea Electronics Corporation - Capture Noise Filters (64-bit).) -- C:\Windows\System32\AERTAC64.dll [209096]
O44 - LFC:[MD5.B3E9EA31E37EDCC1D54CE20504549ABE] - 20/05/2015 - 00:52:36 ---A- . (.Andrea Electronics Corporation - Render Noise Filters (64-bit).) -- C:\Windows\System32\AERTAR64.dll [108640]
O44 - LFC:[MD5.6E14F444A2506049EEC25CB5EDFE0905] - 20/05/2015 - 00:52:36 ---A- . (.Real Sound Lab SIA - CONEQ™ Media Suite APO GUI Library.) -- C:\Windows\System32\CONEQMSAPOGUILibrary.dll [113576]
O44 - LFC:[MD5.8B5A737AD11EF45D9B1AEB4ED6884968] - 20/05/2015 - 00:52:37 ---A- . (.DTS - DTS Bass Enhancement COM DLL.) -- C:\Windows\System32\DTSBassEnhancementDLL64.dll [728680]
O44 - LFC:[MD5.B827E0AE582ACD641F0B2B052773A5CA] - 20/05/2015 - 00:52:37 ---A- . (.Dolby Laboratories - Dolby DS1PC Control Panel x86.) -- C:\Windows\System32\DDPP64A.dll [6217904]
O44 - LFC:[MD5.82DF29C6D5571BFA69429563F0AED677] - 20/05/2015 - 00:52:37 ---A- . (.Dolby Laboratories - Dolby Digital Plus API x86.) -- C:\Windows\System32\DDPA64.dll [260272]
O44 - LFC:[MD5.A1C8F811777EFA1B6BD82B226016CF2D] - 20/05/2015 - 00:52:37 ---A- . (.Dolby Laboratories - Dolby Digital Plus APO x86.) -- C:\Windows\System32\DDPO64A.dll [313520]
O44 - LFC:[MD5.FAC24F4CC63235D9533DD6605E5EE6F0] - 20/05/2015 - 00:52:37 ---A- . (.Dolby Laboratories - Dolby Digital Plus COM DLL x86.) -- C:\Windows\System32\DDPD64A.dll [1938608]
O44 - LFC:[MD5.21B38D4D86A87909491F690883AE6D1E] - 20/05/2015 - 00:52:38 ---A- . (.DTS - DTS Boost COM DLL.) -- C:\Windows\System32\DTSBoostDLL64.dll [1486952]
O44 - LFC:[MD5.BC0474E5476E5EA0D0E1AA5AC41E2061] - 20/05/2015 - 00:52:38 ---A- . (.DTS - DTS GFX APO.) -- C:\Windows\System32\DTSGFXAPO64.dll [242792]
O44 - LFC:[MD5.3B8FB5376F5431C0101747D5138BCB9B] - 20/05/2015 - 00:52:38 ---A- . (.DTS - DTS GFX APO.) -- C:\Windows\System32\DTSGFXAPONS64.dll [241768]
O44 - LFC:[MD5.FF31A2F57AAAB58DB78FCC961A58B206] - 20/05/2015 - 00:52:38 ---A- . (.DTS - DTS Gain Compensator COM DLL.) -- C:\Windows\System32\DTSGainCompensatorDLL64.dll [428648]
O44 - LFC:[MD5.B3977C8BA77559F4F8752AE8EB724C87] - 20/05/2015 - 00:52:38 ---A- . (.DTS - DTS LFX APO.) -- C:\Windows\System32\DTSLFXAPO64.dll [242792]
O44 - LFC:[MD5.192A03A21636D3775CEE4C049C3BEB2A] - 20/05/2015 - 00:52:38 ---A- . (.DTS - DTS Limiter COM DLL.) -- C:\Windows\System32\DTSLimiterDLL64.dll [432744]
O44 - LFC:[MD5.2EF5442E8E7ED20F7634EEFB09640C8F] - 20/05/2015 - 00:52:38 ---A- . (.DTS - DTS NEO:PC COM DLL.) -- C:\Windows\System32\DTSNeoPCDLL64.dll [491112]
O44 - LFC:[MD5.F7C357462077156DC211AC2112FC8C53] - 20/05/2015 - 00:52:38 ---A- . (.DTS - DTS Surround Sensation Headphone COM DLL.) -- C:\Windows\System32\DTSS2HeadphoneDLL64.dll [1568360]
O44 - LFC:[MD5.F132C08BD8C58579B400DFAA71F34CFB] - 20/05/2015 - 00:52:38 ---A- . (.DTS - DTS Surround Sensation Speaker COM DLL.) -- C:\Windows\System32\DTSS2SpeakerDLL64.dll [1756264]
O44 - LFC:[MD5.37B8A8089ECED77F6CEAF74917C5D12B] - 20/05/2015 - 00:52:39 ---A- . (.DTS - DTS GFX APO.) -- C:\Windows\System32\DTSU2PGFX64.dll [487360]
O44 - LFC:[MD5.8AE860D92752CFA136979B1FF797FFDC] - 20/05/2015 - 00:52:39 ---A- . (.DTS - DTS LFX APO.) -- C:\Windows\System32\DTSU2PLFX64.dll [501184]
O44 - LFC:[MD5.A9B98F96FBE514ADEABD20B2BD132172] - 20/05/2015 - 00:52:39 ---A- . (.DTS - DTS LFX APO.) -- C:\Windows\System32\DTSU2PREC64.dll [415680]
O44 - LFC:[MD5.9948969B2C1987B1D64789EFEB284A84] - 20/05/2015 - 00:52:39 ---A- . (.DTS - DTS Symmetry COM DLL.) -- C:\Windows\System32\DTSSymmetryDLL64.dll [712296]
O44 - LFC:[MD5.DE32448E6B40141C80DAABFF6FBE1744] - 20/05/2015 - 00:52:39 ---A- . (.DTS - DTS Voice Clarity COM DLL.) -- C:\Windows\System32\DTSVoiceClarityDLL64.dll [693352]
O44 - LFC:[MD5.D42713208E6847C2854963B81BC8AF2E] - 20/05/2015 - 00:52:39 ---A- . (.Fortemedia Corporation - Fortemedia SAMSoft sAPO.) -- C:\Windows\System32\FMAPO64.dll [2770976]
O44 - LFC:[MD5.6F7D1601DA55BBE5C7A79E01E236D7B9] - 20/05/2015 - 00:52:40 ---A- . (.Knowles Acoustics - Knowles HD Audio APO.) -- C:\Windows\System32\KAAPORT64.dll [603984]
O44 - LFC:[MD5.8882AD10853E45402CABD3BAF48A7EFC] - 20/05/2015 - 00:52:46 ---A- . (.Dolby Laboratories - Dolby PCEE4 ASL Analog x64.) -- C:\Windows\System32\R4EEA64A.dll [124176]
O44 - LFC:[MD5.0B5EF50E26CFD1E7BF01E32E053532B2] - 20/05/2015 - 00:52:46 ---A- . (.Dolby Laboratories - Dolby PCEE4 COM DLL x64.) -- C:\Windows\System32\R4EED64A.dll [434960]
O44 - LFC:[MD5.03625A179B27362D3A90E3331AEBE95E] - 20/05/2015 - 00:52:46 ---A- . (.Dolby Laboratories - Dolby PCEE4 Control Panel x64.) -- C:\Windows\System32\R4EEP64A.dll [7164176]
O44 - LFC:[MD5.01096663377134C41D618AF0E53A953E] - 20/05/2015 - 00:52:46 ---A- . (.Dolby Laboratories - Dolby PCEE4 GFX APO x64.) -- C:\Windows\System32\R4EEG64A.dll [75024]
O44 - LFC:[MD5.D0EB28022A91A5C084E8A7DEBB08D8D2] - 20/05/2015 - 00:52:46 ---A- . (.Dolby Laboratories - Dolby PCEE4 LFX APO x64.) -- C:\Windows\System32\R4EEL64A.dll [141584]
O44 - LFC:[MD5.D51EC39D81EC77E7F852FC43AFCFC929] - 20/05/2015 - 00:52:47 ---A- . (.Realtek Semiconductor Corp. - Realtek HD Audio Coinstaller Resource.) -- C:\Windows\System32\RCoRes64.dat [56684544]
O44 - LFC:[MD5.16A1860AC2243825895DD150C79A5A7E] - 20/05/2015 - 00:52:47 ---A- . (.Realtek Semiconductor Corp. - Realtek HD Audio Coinstaller.) -- C:\Windows\System32\RCoInstII64.dll [947928]
O44 - LFC:[MD5.E9D4A333DF15D06C68AC4BFB9B6581CB] - 20/05/2015 - 00:52:48 ---A- . (.Dolby Laboratories, Inc. - PCEE3 DAA Control Panel x64.) -- C:\Windows\System32\RP3DAA64.dll [310104]
O44 - LFC:[MD5.CAC02E951108A92C26669262129BF3B5] - 20/05/2015 - 00:52:49 ---A- . (...) -- C:\Windows\System32\Drivers\RTAIODAT.DAT [837014]
O44 - LFC:[MD5.B6FE01558CC03F3866C9AD0ED19261D8] - 20/05/2015 - 00:52:49 ---A- . (.Dolby Laboratories, Inc. - PCEE3 DHT Control Panel x64.) -- C:\Windows\System32\RP3DHT64.dll [310104]
O44 - LFC:[MD5.14034C2BA3D17139EEC0CB1D4D213DA6] - 20/05/2015 - 00:52:49 ---A- . (.Realtek Semiconductor Corp. - RTCOMDLL Module.) -- C:\Windows\System32\RTCOM64.dll [1286872]
O44 - LFC:[MD5.A6286A6C7A1BBFCBA17AA54384A21D1C] - 20/05/2015 - 00:52:50 ---A- . (.Dolby Laboratories, Inc. - Dolby PCEE3 COM DLL x64.) -- C:\Windows\System32\RTEED64A.dll [204120]
O44 - LFC:[MD5.D0D0D82B7366E691275E433CD34F89B2] - 20/05/2015 - 00:52:50 ---A- . (.Dolby Laboratories, Inc. - Dolby PCEE3 Control Panel x64.) -- C:\Windows\System32\RTEEP64A.dll [375128]
O44 - LFC:[MD5.6F4CD493196100EEF349D7132CECAFD9] - 20/05/2015 - 00:52:50 ---A- . (.Dolby Laboratories, Inc. - Dolby PCEE3 GFX APO x64.) -- C:\Windows\System32\RTEEG64A.dll [78680]
O44 - LFC:[MD5.ECAEC5FBBBEF8612AF0A866AFA5F7EF2] - 20/05/2015 - 00:52:50 ---A- . (.Dolby Laboratories, Inc. - Dolby PCEE3 LFX APO x64.) -- C:\Windows\System32\RTEEL64A.dll [101208]
O44 - LFC:[MD5.1C7CDC7BFD0566430E9C6A9817543CE3] - 20/05/2015 - 00:52:50 ---A- . (.Realtek Semiconductor Corp. - Realtek APO API.) -- C:\Windows\System32\RtkApi64.dll [1019608]
O44 - LFC:[MD5.1990515D2E623BB8747441F923E80DED] - 20/05/2015 - 00:52:50 ---A- . (.Realtek Semiconductor Corp. - Realtek(r) LFX/GFX DSP component.) -- C:\Windows\System32\RtkAPO64.dll [2794200]
O44 - LFC:[MD5.8814A281406553A2640D6A04702C63BD] - 20/05/2015 - 00:52:51 ---A- . (.Realtek Semiconductor Corp. - Realtek HD Audio Coinstaller.) -- C:\Windows\System32\RtkCoLDR64.dll [14952]
O44 - LFC:[MD5.70DD225646BF84233E18890583E57EFB] - 20/05/2015 - 00:52:51 ---A- . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\Drivers\RTKVHD64.sys [3882456]
O44 - LFC:[MD5.0805289E121F3E3C458C970B08314EB2] - 20/05/2015 - 00:52:51 ---A- . (.Realtek Semiconductor Corp. - RtkCfg.dll.) -- C:\Windows\System32\RtkCfg64.dll [149608]
O44 - LFC:[MD5.CA1D7D09854D305A64B100DC1400BA21] - 20/05/2015 - 00:52:52 ---A- . (.Realtek Semiconductor Corp. - RtlCPAPI Module.) -- C:\Windows\System32\RtlCPAPI64.dll [331880]
O44 - LFC:[MD5.F0D94C5786977B4C44A914683DEBAA9A] - 20/05/2015 - 00:52:55 ---A- . (.Realtek Semiconductor Corp. - Realtek HD Audio Control Panel.) -- C:\Windows\System32\RTSnMg64.cpl [1958616]
O44 - LFC:[MD5.68FCB7C35190EF1475FC132783AC659D] - 20/05/2015 - 00:52:55 ---A- . (.Realtek Semiconductor Corp. - Realtek LFX/GFX DSP UI component for Window.) -- C:\Windows\System32\RtPgEx64.dll [2831576]
O44 - LFC:[MD5.17ABCAD44A75C635583A238ED6333357] - 20/05/2015 - 00:52:55 ---A- . (.Synopsys, Inc. - SFAPO.DLL.) -- C:\Windows\System32\SFAPO64.dll [78688]
O44 - LFC:[MD5.9FF3A1CA250D6795A70FF8D1A11326A6] - 20/05/2015 - 00:52:56 ---A- . (.Sony Corporation - Sony SFSS APO.) -- C:\Windows\System32\SFSS_APO.dll [220776]
O44 - LFC:[MD5.2C25AF115BDDC05D9A84D26227A08E63] - 20/05/2015 - 00:52:56 ---A- . (.Synopsys, Inc. - SFCOM.DLL.) -- C:\Windows\System32\SFCOM64.dll [81248]
O44 - LFC:[MD5.7B3E9344FB43D799C6462227A0E65877] - 20/05/2015 - 00:52:56 ---A- . (.Synopsys, Inc. - SFNHK.DLL.) -- C:\Windows\System32\SFNHK64.dll [221024]
O44 - LFC:[MD5.A88BE9A6C4E646A2B2A1BD3A7F4B58E7] - 20/05/2015 - 00:52:59 ---A- . (.SRS Labs, Inc. - COM object implementing SRS Headphone 360.) -- C:\Windows\System32\SRSHP64.dll [198896]
O44 - LFC:[MD5.A028717B791416182959B325D5B40679] - 20/05/2015 - 00:52:59 ---A- . (.SRS Labs, Inc. - TruSurround HD and HD4 COM object for Windo.) -- C:\Windows\System32\SRSTSH64.dll [211184]
O44 - LFC:[MD5.018D3D2478754AA411DE6DA6DE5F8F21] - 20/05/2015 - 00:52:59 ---A- . (.SRS Labs, Inc. - TruSurroundXT Module.) -- C:\Windows\System32\SRSTSX64.dll [518896]
O44 - LFC:[MD5.2FCADCC14F8E540F6ADE4BF92BD8AEDD] - 20/05/2015 - 00:52:59 ---A- . (.SRS Labs, Inc. - WOW HD COM object for Windows.) -- C:\Windows\System32\SRSWOW64.dll [155888]
O44 - LFC:[MD5.C082B23A77E89D5AA0329777FF34A0DE] - 20/05/2015 - 00:53:00 ---A- . (.TOSHIBA CORPORATION. - Tepeq APO.) -- C:\Windows\System32\tepeqapo64.dll [65944]
O44 - LFC:[MD5.95F25E2D41AACCB8956F8E3C6740E377] - 20/05/2015 - 00:53:00 ---A- . (.TOSHIBA Corporation - TOSHIBA Audio Enhancement APO x64.) -- C:\Windows\System32\tadefxapo.dll [148416]
O44 - LFC:[MD5.1A3586235C5DEF0C05F2F0C711E94376] - 20/05/2015 - 00:53:00 ---A- . (.TOSHIBA Corporation - TOSHIBA Audio Enhancement APO.) -- C:\Windows\System32\tadefxapo264.dll [836544]
O44 - LFC:[MD5.7380AE45CFA24369A7305520897142B8] - 20/05/2015 - 00:53:00 ---A- . (.TOSHIBA Corporation - TOSHIBA Audio Enhancement x64.) -- C:\Windows\System32\tosade.dll [1361336]
O44 - LFC:[MD5.63EAAE0EFD2DD5D840B7FE3DAB60C2CB] - 20/05/2015 - 00:53:01 ---A- . (.Waves Audio Ltd. - General Library for Plug-Ins.) -- C:\Windows\System32\WavesGUILib64.dll [2101848]
O44 - LFC:[MD5.A58BFDBD03BF80CD0BEF573F3015BAE4] - 20/05/2015 - 00:54:23 ---A- . (...) -- C:\Windows\System32\Drivers\RTEQEX0.DAT [520]
O44 - LFC:[MD5.60BC206EEC1A20CAF2796AE29A74CBEE] - 20/05/2015 - 00:54:23 ---A- . (...) -- C:\Windows\System32\Drivers\RTKHDRC.DAT [852]
O44 - LFC:[MD5.7D6321F90B21BBB5D1B0CD1747A43989] - 20/05/2015 - 00:54:23 ---A- . (...) -- C:\Windows\System32\Drivers\RTMICEQ0.DAT [712]
O44 - LFC:[MD5.BAED21D7A760DE0156164A667C4D8466] - 20/05/2015 - 00:54:23 ---A- . (...) -- C:\Windows\System32\Drivers\SAMSFPA.DAT [4736]
O44 - LFC:[MD5.1C6A7FDD94529B28BEE78317DE9B8A10] - 20/05/2015 - 00:55:22 ---A- . (...) -- C:\Windows\System32\e1d64x64.din [3130]
O44 - LFC:[MD5.C4F62CD86BC5DA12233B6032BE824E22] - 20/05/2015 - 00:55:22 ---A- . (.Intel Corporation - Intel(R) Gigabit Adapter Event-Log Message.) -- C:\Windows\System32\e1dmsg.dll [73512]
O44 - LFC:[MD5.C0231996228B12FE12FF845341C59E39] - 20/05/2015 - 00:55:22 ---A- . (.Intel Corporation - Intel(R) Gigabit Adapter NDIS 6.x driver.) -- C:\Windows\System32\Drivers\e1d64x64.sys [394520]
O44 - LFC:[MD5.0BD0040999429E77C02912F052B4A8DC] - 20/05/2015 - 00:55:22 ---A- . (.Intel Corporation - Intel(R) Network Interface Card CoInstaller.) -- C:\Windows\System32\NicCo4.dll [125728]
O44 - LFC:[MD5.34822352E070BAFAC6002BA4D3A04DDC] - 20/05/2015 - 00:55:22 ---A- . (.Intel Corporation - Intel(R) Network Interface Card CoInstaller.) -- C:\Windows\System32\NicInstD.dll [85808]
O44 - LFC:[MD5.30993ED87C833BB38DB9C12DC69FAE62] - 20/05/2015 - 00:56:05 ---A- . (.Intel Corporation - Intel (R) Network Connections Driver Uninst.) -- C:\Windows\System32\PROUnstl.exe [403256]
O44 - LFC:[MD5.8C3D0C73A0850A0EE62DF9EC36DBDE80] - 20/05/2015 - 00:56:07 ----- . (...) -- C:\Windows\System32\SetupBD.din [1904]
O44 - LFC:[MD5.6AD96F00348B5D3F807170DAD8068209] - 20/05/2015 - 01:00:41 ---A- . (...) -- C:\Windows\launchpw.cmd [146]
O44 - LFC:[MD5.0055B62657CE7561F68136FB1E54AFAC] - 20/05/2015 - 01:04:51 ---A- . (...) -- C:\Windows\System32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat [401]
O44 - LFC:[MD5.AFCAB4DC692CCE37E283B00E2D7B438F] - 20/05/2015 - 01:21:28 ---A- . (.Microsoft Corporation - Software Licensing Library.) -- C:\Windows\System32\sppcomapi.dll [447488]
O44 - LFC:[MD5.C993A0B97BECD3AAF5158E3869878465] - 20/05/2015 - 01:21:32 ---A- . (.Microsoft Corporation - Microsoft Software Protection Platform Serv.) -- C:\Windows\System32\sppsvc.exe [6353960]
O44 - LFC:[MD5.E4A75F7BA48F4281405C782E3DB9F828] - 20/05/2015 - 01:21:43 ---A- . (.Microsoft Corporation - Primitive Operations Queue Executor.) -- C:\Windows\System32\poqexec.exe [146432]
O44 - LFC:[MD5.94C59DD02BC7EA0E421055B9946CA861] - 20/05/2015 - 01:23:29 ---A- . (.Microsoft Corporation - Microsoft® MSHTML Typelib.) -- C:\Windows\System32\mshtml.tlb [2724864]
O44 - LFC:[MD5.E77092C38028EB0A5C461B3436E0A6D5] - 20/05/2015 - 01:23:30 ---A- . (.Microsoft Corporation - IE ETW Collector Service Resources.) -- C:\Windows\System32\ieetwcollectorres.dll [4096]
O44 - LFC:[MD5.0044B31F93946D5D41982314381FE431] - 20/05/2015 - 01:25:04 ---A- . (.Microsoft Corporation - Serial Class Extension V2.) -- C:\Windows\System32\Drivers\SerCx2.sys [146776]
O44 - LFC:[MD5.6B06E2D11E604BE2B1A406C4CB3B90DE] - 20/05/2015 - 01:25:39 ---A- . (.Microsoft Corporation - Microsoft NVM Express Storport Miniport Dri.) -- C:\Windows\System32\Drivers\stornvme.sys [57176]
O44 - LFC:[MD5.1C89EF529DB7DCA98E801EFDCC8437DE] - 20/05/2015 - 01:26:46 ---A- . (.Microsoft Corporation - Microsoft Bluetooth Audio Multiprofile Mana.) -- C:\Windows\System32\Drivers\BtaMPM.sys [19456]
O44 - LFC:[MD5.B7342B3C58E91107F6E946A93D9D4EFD] - 20/05/2015 - 01:26:48 ---A- . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys [142848]
O44 - LFC:[MD5.A1A5E79C0D1352AFDC08328A623DA051] - 20/05/2015 - 01:27:14 ---A- . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) -- C:\Windows\System32\Drivers\rdbss.sys [408576]
O44 - LFC:[MD5.8752CC895B972F48D82F9ADB3D96E351] - 20/05/2015 - 01:28:47 ----- . (.Microsoft Corporation - Microsoft Malware Protection Signature Upda.) -- C:\Windows\System32\MpSigStub.exe [295552]
O44 - LFC:[MD5.65D9D98DBFF574BA9B68F76F0BB1630E] - 20/05/2015 - 01:34:37 ---A- . (.Microsoft Corporation - Microsoft Windows Malicious Software Remova.) -- C:\Windows\System32\MRT.exe [140425016]
O44 - LFC:[MD5.E103EDA05C3787F76104A1BECF537352] - 20/05/2015 - 01:38:03 ---A- . (...) -- C:\Windows\win.ini [194]
O44 - LFC:[MD5.0BBE196EED750C18E5D4B3CB55EB097C] - 20/05/2015 - 02:04:27 ---A- . (...) -- C:\Windows\System32\Drivers\INETMON.sys [25800]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 20/05/2015 - 02:04:27 --HA- . (...) -- C:\Windows\System32\Drivers\Msft_Kernel_INETMON_01011.Wdf [0]
O44 - LFC:[MD5.8A63A03AE53A58DCD77C31B5DD1D591A] - 20/05/2015 - 02:04:41 ---A- . (...) -- C:\Windows\System32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat [118]
O44 - LFC:[MD5.ABB7341766902F5AAB45E15F34D19E15] - 20/05/2015 - 13:25:12 ---A- . (.Microsoft Corporation - Hid Class Library.) -- C:\Windows\System32\Drivers\hidclass.sys [111616]
O44 - LFC:[MD5.3E28B99198B514DFEB152EACF913025E] - 20/05/2015 - 13:25:12 ---A- . (.Microsoft Corporation - Longhorn SMB Downlevel SubRdr.) -- C:\Windows\System32\Drivers\mrxsmb10.sys [283648]
O44 - LFC:[MD5.41CF802064F72E55F50CA0A221FD36D4] - 20/05/2015 - 13:25:13 ---A- . (.Microsoft Corporation - TCP/IP Registry Compatibility Driver.) -- C:\Windows\System32\Drivers\tcpipreg.sys [49152]
O44 - LFC:[MD5.8DB8EAB9D0C6A5DF0BDCADEA239220B4] - 20/05/2015 - 13:25:13 ---A- . (.Microsoft Corporation - USB Miniport Driver for Input Devices.) -- C:\Windows\System32\Drivers\hidusb.sys [33280]
O44 - LFC:[MD5.A03F362C5557E238CBFA914689C77248] - 20/05/2015 - 13:25:14 ---A- . (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\Drivers\dfsc.sys [134144]
O44 - LFC:[MD5.7FC5667DF73D4B04AA457CC3A4180E09] - 20/05/2015 - 13:25:19 ---A- . (.Microsoft Corporation - Windows Overlay Filter.) -- C:\Windows\System32\Drivers\wof.sys [157016]
O44 - LFC:[MD5.E7B53AF004BEE5112F787A6E5B04D737] - 20/05/2015 - 13:50:49 ---A- . (...) -- C:\Windows\System32\connectedsearch-results.searchconnector-ms [11109]
O44 - LFC:[MD5.797DE44BF9DF0231E9D39E3FA7B5898E] - 20/05/2015 - 13:50:49 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\ext-ms-win-ntuser-private-l1-1-0.dll [3584]
O44 - LFC:[MD5.22E1B49330D76F27FD0A13AD16A16A56] - 20/05/2015 - 13:50:49 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\ext-ms-win-ntuser-private-l1-1-1.dll [8192]
O44 - LFC:[MD5.F1DB86EA935C13CDFF27AB957297136A] - 20/05/2015 - 13:50:50 ---A- . (...) -- C:\Windows\System32\connectedsearch-suggestions.searchconnector-ms [7762]
O44 - LFC:[MD5.1FDF29F970E2E843B4DC5D0626D0EDD5] - 20/05/2015 - 13:50:50 ---A- . (...) -- C:\Windows\System32\connectedsearch-zeroinput.searchconnector-ms [7130]
O44 - LFC:[MD5.19A6B3C62F673903C75B46279C20E10B] - 20/05/2015 - 13:50:50 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\ext-ms-win-kernel32-package-l1-1-1.dll [3584]
O44 - LFC:[MD5.499CFCE4CCA7CC4D3FA07251C86A8641] - 20/05/2015 - 13:50:50 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\ext-ms-win-session-winsta-l1-1-0.dll [5632]
O44 - LFC:[MD5.DE461B86C05946D10E519F512D09E389] - 20/05/2015 - 13:50:51 ---A- . (...) -- C:\Windows\System32\RacRules.xml [100197]
O44 - LFC:[MD5.09CBB2EE26F9273FB3163DC939FB1C65] - 20/05/2015 - 13:50:55 ---A- . (.Microsoft Corporation - JP Japanese Keyboard Layout for Fujitsu FMV.) -- C:\Windows\System32\f3ahvoas.dll [41472]
O44 - LFC:[MD5.119E0F7A71775A5CFB208B036ECE35E1] - 20/05/2015 - 13:50:57 ---A- . (...) -- C:\Windows\System32\WimBootCompress.ini [2255]
O44 - LFC:[MD5.9CC0003FB8ED3763B977B43F1012FF63] - 20/05/2015 - 13:50:57 ---A- . (.Microsoft Corporation - Watchdog Driver.) -- C:\Windows\System32\Drivers\watchdog.sys [54272]
O44 - LFC:[MD5.E2936E745B84FB5B631E1CB0BCA9B71B] - 20/05/2015 - 13:50:58 ---A- . (.Microsoft Corporation - Add features to Windows Results.) -- C:\Windows\System32\WindowsAnytimeUpgradeResults.exe [92160]
O44 - LFC:[MD5.7D4688ECFA4F61023A23B50F17AB5689] - 20/05/2015 - 13:50:58 ---A- . (.Microsoft Corporation - Compatibility module of SysPrep.) -- C:\Windows\System32\spcompat.dll [94720]
O44 - LFC:[MD5.A8A7758F4E4043D48A75BD61F0FD5E70] - 20/05/2015 - 13:50:58 ---A- . (.Microsoft Corporation - Migration System Isolation Layer.) -- C:\Windows\System32\migisol.dll [127488]
O44 - LFC:[MD5.387A1E98BE548E4F199343CBA01E9D6D] - 20/05/2015 - 13:50:59 ---A- . (.Microsoft Corporation - Auto Check Utility.) -- C:\Windows\System32\autochk.exe [890880]
O44 - LFC:[MD5.424C9777CB8507A6358BC142B7917143] - 20/05/2015 - 13:50:59 ---A- . (.Microsoft Corporation - Auto File System Format Utility.) -- C:\Windows\System32\autofmt.exe [874496]
O44 - LFC:[MD5.61A1C2641321A6B89A2B41C5D481EF48] - 20/05/2015 - 13:51:04 ---A- . (.Microsoft Corporation - Bitlocker Drive Encryption Crashdump Filter.) -- C:\Windows\System32\Drivers\dumpfve.sys [71888]
O44 - LFC:[MD5.1EA5BDB37498D5E317920822648A2B49] - 20/05/2015 - 13:51:05 ---A- . (.Microsoft Corporation - Microsoft-Windows-Kernel-Power-Events Resou.) -- C:\Windows\System32\microsoft-windows-kernel-power-events.dll [128512]
O44 - LFC:[MD5.D04D884242F02CC02E9264A4DBF532DB] - 20/05/2015 - 13:51:05 ---A- . (.Microsoft Corporation - Wow64 Console and Win32 API Logging.) -- C:\Windows\System32\wow64win.dll [413184]
O44 - LFC:[MD5.D30C67473A2E229662D21F27EAA9AAA5] - 20/05/2015 - 13:51:06 ---A- . (.Microsoft Corporation - Bluetooth LE Bus Enumerator.) -- C:\Windows\System32\Drivers\BthLEEnum.sys [226304]
O44 - LFC:[MD5.0B1E929D11A8E358106955603FAC65E8] - 20/05/2015 - 13:51:06 ---A- . (.Microsoft Corporation - SD Storage Class Driver.) -- C:\Windows\System32\Drivers\sdstor.sys [79192]
O44 - LFC:[MD5.38A82F4EE8C416A6744B6D30381ED768] - 20/05/2015 - 13:51:07 ---A- . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys [33280]
O44 - LFC:[MD5.BCFD8B149B3ADF92D0DB1E909CAF0265] - 20/05/2015 - 13:51:08 ---A- . (.Microsoft Corporation - FileInfo Filter Driver.) -- C:\Windows\System32\Drivers\fileinfo.sys [79192]
O44 - LFC:[MD5.D8564418BAC13776E43DB5F6B4FA775E] - 20/05/2015 - 13:51:09 ---A- . (.Microsoft Corporation - Windows Session Manager.) -- C:\Windows\System32\smss.exe [142576]
O44 - LFC:[MD5.DDEE191AB32DFC22C6465002ECDF5EE4] - 20/05/2015 - 13:51:10 ---A- . (.Microsoft Corporation - LUA File Virtualization Filter Driver.) -- C:\Windows\System32\Drivers\luafv.sys [124416]
O44 - LFC:[MD5.0ECEE590F2E2EF969FB74A6FC583A1E6] - 20/05/2015 - 13:51:10 ---A- . (.Microsoft Corporation - Protected Environment Authentication and Au.) -- C:\Windows\System32\Drivers\PEAuth.sys [663040]
O44 - LFC:[MD5.8188CB2B8EB82BF56D10E40994860B6B] - 20/05/2015 - 13:51:13 ---A- . (.Microsoft Corporation - In Proc server for managed servers in the W.) -- C:\Windows\System32\clrhost.dll [14848]
O44 - LFC:[MD5.C1D7228D5743995256A17D8225FDC704] - 20/05/2015 - 13:51:14 ---A- . (.Microsoft Corporation - Software Licensing Client Dll.) -- C:\Windows\System32\sppc.dll [123904]
O44 - LFC:[MD5.91F8F05881459330D83259A070D3642E] - 20/05/2015 - 13:51:18 ---A- . (.Microsoft Corporation - Dism Image Servicing Utility.) -- C:\Windows\System32\Dism.exe [275456]
O44 - LFC:[MD5.B1C2856F8199A9386C22E8325BC34D87] - 20/05/2015 - 13:51:18 ---A- . (.Microsoft Corporation - Software Licensing Client Dll.) -- C:\Windows\System32\slc.dll [156672]
O44 - LFC:[MD5.39C288E39B7B02614F997FB2077575ED] - 20/05/2015 - 13:51:19 ---A- . (.Microsoft Corporation - Software Protection Platform Windows Plugin.) -- C:\Windows\System32\sppwinob.dll [244848]
O44 - LFC:[MD5.A4A3542D65C180AFDC41B8A824C6CD40] - 20/05/2015 - 13:51:21 ---A- . (.Microsoft Corporation - DISM API Framework.) -- C:\Windows\System32\DismApi.dll [653312]
O44 - LFC:[MD5.DCF2510E0745720E543E84F5E921FCC0] - 20/05/2015 - 13:51:22 ---A- . (...) -- C:\Windows\System32\dfpinc.dat [262335]
O44 - LFC:[MD5.A26AEC49F318FEE141DDDB2C5F99B3E6] - 20/05/2015 - 13:51:23 ---A- . (.Microsoft Corporation - ReadyBoost Driver.) -- C:\Windows\System32\Drivers\rdyboost.sys [249688]
O44 - LFC:[MD5.FFFCC3C3ED6886A95D3C0E1B49C652BA] - 20/05/2015 - 13:53:11 ---A- . (...) -- C:\Windows\System32\systemsf.ebd [139600]
O44 - LFC:[MD5.9B8BE8DDC0D9CD6A4D2182196ABE99E2] - 20/05/2015 - 19:04:07 ---A- . (.Microsoft Corporation - Device Inventory Library.) -- C:\Windows\System32\devinv.dll [419328]
O44 - LFC:[MD5.813906D7D0A35CB7158C45E6568FA3DD] - 20/05/2015 - 19:04:07 ---A- . (.Microsoft Corporation - Program Compatibility Data Updater.) -- C:\Windows\System32\aepdu.dll [227328]
O44 - LFC:[MD5.EE5ED8E6998D7E686F614BA8D876829B] - 20/05/2015 - 19:04:08 ---A- . (.Microsoft Corporation - Application Experience Program Cache.) -- C:\Windows\System32\aepic.dll [192000]
O44 - LFC:[MD5.150416EB645442AB9AF3ECC0AA183A92] - 20/05/2015 - 19:04:08 ---A- . (.Microsoft Corporation - Application Experience Program Inventory Co.) -- C:\Windows\System32\aeinv.dll [1111552]
O44 - LFC:[MD5.7F6FF3CFCE8A174BA6635FC1617E0F02] - 20/05/2015 - 19:04:08 ---A- . (.Microsoft Corporation - Compatibility Appraiser.) -- C:\Windows\System32\appraiser.dll [957440]
O44 - LFC:[MD5.BA93F0E6B27510746864DA8D26DD3852] - 20/05/2015 - 19:04:08 ---A- . (.Microsoft Corporation - Compatibility Upgrade Migration Host.) -- C:\Windows\System32\acmigration.dll [30720]
O44 - LFC:[MD5.1588D38241818380E156613D29C1C303] - 20/05/2015 - 19:04:08 ---A- . (.Microsoft Corporation - General Telemetry.) -- C:\Windows\System32\generaltel.dll [726528]
O44 - LFC:[MD5.1C6716A453FEB8DB6EE7A05E02CF5C6A] - 20/05/2015 - 19:04:08 ---A- . (.Microsoft Corporation - Inventory Agent.) -- C:\Windows\System32\invagent.dll [769024]
O44 - LFC:[MD5.8BB7548307EE6147137993A410D64387] - 20/05/2015 - 19:04:57 ---A- . (.Microsoft Corporation - Microsoft® C Runtime Library.) -- C:\Windows\System32\msvcr120_clr0400.dll [869544]
O44 - LFC:[MD5.35FAB05339F7083611B12ED7143AFA81] - 20/05/2015 - 19:05:04 ---A- . (.Microsoft Corporation - Authentication Provider.) -- C:\Windows\System32\storewuauth.dll [200192]
O44 - LFC:[MD5.3BAAE060A97C0F9AD48AFE3330B577E5] - 20/05/2015 - 19:05:04 ---A- . (.Microsoft Corporation - Windows Setup UI.) -- C:\Windows\System32\WinSetupUI.dll [267264]
O44 - LFC:[MD5.BF5F10811E8249075D48153E8766184D] - 20/05/2015 - 19:05:04 ---A- . (.Microsoft Corporation - Windows Update Application Launcher.) -- C:\Windows\System32\wuapp.exe [35840]
O44 - LFC:[MD5.47C04EEA5C1C3D27744E123F3AF25E57] - 20/05/2015 - 19:05:04 ---A- . (.Microsoft Corporation - Windows Update Client API.) -- C:\Windows\System32\wuapi.dll [891392]
O44 - LFC:[MD5.8DE0A3EC9024DC2AF1DE8BDCE4AEA2C6] - 20/05/2015 - 19:05:04 ---A- . (.Microsoft Corporation - Windows Update Client User Experience.) -- C:\Windows\System32\wucltux.dll [2373632]
O44 - LFC:[MD5.49B0AE13918B1456C1EFB284E4DC52D1] - 20/05/2015 - 19:05:04 ---A- . (.Microsoft Corporation - Windows Update Modern WuApp.) -- C:\Windows\System32\WUSettingsProvider.dll [408064]
O44 - LFC:[MD5.4C6D7A1AA4EB4DA0382484ECF38040A7] - 20/05/2015 - 19:05:04 ---A- . (.Microsoft Corporation - Windows Update Vista Web Control.) -- C:\Windows\System32\wuwebv.dll [140288]
O44 - LFC:[MD5.A6B426B5502174F2FDC5D2CA174E6B6C] - 20/05/2015 - 19:05:04 ---A- . (.Microsoft Corporation - Windows Update WUDriver Stub.) -- C:\Windows\System32\wudriver.dll [95744]
O44 - LFC:[MD5.4A112AD7D9C7289FE9945D05E97019D0] - 20/05/2015 - 19:05:04 ---A- . (.Microsoft Corporation - Windows Update Wu exports.) -- C:\Windows\System32\wuaext.dll [17408]
O44 - LFC:[MD5.DDFFE37C690F8D0AB05309C11AE8A740] - 20/05/2015 - 19:05:04 ---A- . (.Microsoft Corporation - Windows Update client proxy stub 2.) -- C:\Windows\System32\wups2.dll [52224]
O44 - LFC:[MD5.A6D023786B16C2C6FEC235A69F60A5B2] - 20/05/2015 - 19:05:04 ---A- . (.Microsoft Corporation - Windows Update client proxy stub for intern.) -- C:\Windows\System32\wu.upgrade.ps.dll [15360]
O44 - LFC:[MD5.1EB1732C67D40598222103776F7AF829] - 20/05/2015 - 19:05:04 ---A- . (.Microsoft Corporation - Windows Update client proxy stub.) -- C:\Windows\System32\wups.dll [66048]
O44 - LFC:[MD5.A40A005B63E305A0509A69A604659944] - 20/05/2015 - 19:05:04 ---A- . (.Microsoft Corporation - Windows Update.) -- C:\Windows\System32\wuauclt.exe [133256]
O44 - LFC:[MD5.5F3D70B19BCAC985DA90F22CA2FF45E4] - 20/05/2015 - 19:05:05 ---A- . (.Microsoft Corporation - Windows Update Agent.) -- C:\Windows\System32\wuaueng.dll [3678720]
O44 - LFC:[MD5.2CBD6D22499EB13A2666F62EF33D00E2] - 20/05/2015 - 19:07:10 ---A- . (...) -- C:\Windows\System32\ieuinit.inf [16303]
O44 - LFC:[MD5.CDC8A85EB301A8CBE55A81A1D55AF5E5] - 20/05/2015 - 19:07:10 ---A- . (.Microsoft Corporation - ADVPACK.) -- C:\Windows\System32\IEAdvpack.dll [132096]
O44 - LFC:[MD5.1C393E42928BF55B3796E732B678CD5B] - 20/05/2015 - 19:07:10 ---A- . (.Microsoft Corporation - DAC for Trident DOM.) -- C:\Windows\System32\MshtmlDac.dll [88064]
O44 - LFC:[MD5.6A7F8D139610E5F3F158182778EF9275] - 20/05/2015 - 19:07:10 ---A- . (.Microsoft Corporation - Extended RunOnce processing with UI.) -- C:\Windows\System32\iernonce.dll [34304]
O44 - LFC:[MD5.A7F53772ECAE2F44B455D14F71179940] - 20/05/2015 - 19:07:10 ---A- . (.Microsoft Corporation - IE ETW Collector Proxy Stub Resources.) -- C:\Windows\System32\ieetwproxystub.dll [48640]
O44 - LFC:[MD5.6096209CB47D61499C3608B9C25B073C] - 20/05/2015 - 19:07:10 ---A- . (.Microsoft Corporation - IE PNG plugin image decoder.) -- C:\Windows\System32\pngfilt.dll [64512]
O44 - LFC:[MD5.161BC2E883A8D8759A4DCF2A85AF9128] - 20/05/2015 - 19:07:10 ---A- . (.Microsoft Corporation - IE plugin image decoder support DLL.) -- C:\Windows\System32\imgutil.dll [51200]
O44 - LFC:[MD5.E99E2E88BFE584184AE92B1F8995CE93] - 20/05/2015 - 19:07:10 ---A- . (.Microsoft Corporation - IOD Version Map.) -- C:\Windows\System32\iesetup.dll [66560]
O44 - LFC:[MD5.F54E1190251EB245183BF16D6C315613] - 20/05/2015 - 19:07:10 ---A- . (.Microsoft Corporation - Internet Shortcut Shell Extension DLL.) -- C:\Windows\System32\url.dll [237568]
O44 - LFC:[MD5.F79E5258AF040A8AD83C7C1273A071C3] - 20/05/2015 - 19:07:10 ---A- . (.Microsoft Corporation - JScript Proxy Auto-Configuration.) -- C:\Windows\System32\jsproxy.dll [54784]
O44 - LFC:[MD5.A3871DED5ED88F59C0D1396761708F81] - 20/05/2015 - 19:07:10 ---A- . (.Microsoft Corporation - Microsoft (R) HTML Application host.) -- C:\Windows\System32\mshta.exe [13824]
O44 - LFC:[MD5.66585D645C4E23A0FD5124BD714AE020] - 20/05/2015 - 19:07:10 ---A- . (.Microsoft Corporation - Microsoft Feeds Synchronization.) -- C:\Windows\System32\msfeedssync.exe [12800]
O44 - LFC:[MD5.1921A72BF1273BED72E569EF1F1A0611] - 20/05/2015 - 19:07:10 ---A- . (.Microsoft Corporation - Microsoft® HTML Editing Component.) -- C:\Windows\System32\mshtmled.dll [92160]
O44 - LFC:[MD5.D66D11191B48007179B0A77DC0717267] - 20/05/2015 - 19:07:10 ---A- . (.Microsoft Corporation - Microsoft® License Manager DLL.) -- C:\Windows\System32\licmgr10.dll [33280]
O44 - LFC:[MD5.DD8FD33C108F14681A410067AB21DDF3] - 20/05/2015 - 19:07:10 ---A- . (.Microsoft Corporation - Object Control Viewer.) -- C:\Windows\System32\occache.dll [152064]
O44 - LFC:[MD5.4B9C652BD0FD95A9E6123913C35519D6] - 20/05/2015 - 19:07:10 ---A- . (.Microsoft Corporation - Win32 Cabinet Self-Extractor.) -- C:\Windows\System32\wextract.exe [143872]
O44 - LFC:[MD5.CA2F3153EF3BCB0BD3A8984C933DF604] - 20/05/2015 - 19:07:10 ---A- . (.Microsoft Corporation - Wizard.) -- C:\Windows\System32\iexpress.exe [167424]
O44 - LFC:[MD5.1C3C54FA2D620DF3093F356A56EC5957] - 20/05/2015 - 19:07:11 ---A- . (.Microsoft Corporation - IE 7.0 Unattended Install Utility.) -- C:\Windows\System32\ieUnatt.exe [144384]
O44 - LFC:[MD5.E40D3696BE4852956669C285038B37A6] - 20/05/2015 - 19:07:11 ---A- . (.Microsoft Corporation - IE ETW Collector Service.) -- C:\Windows\System32\ieetwcollector.exe [114688]
O44 - LFC:[MD5.5EDC6AF7589B65C89CB1154B3377D0C4] - 20/05/2015 - 19:07:11 ---A- . (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe [720384]
O44 - LFC:[MD5.8AE1AC97407CD82D8389390C21430579] - 20/05/2015 - 19:07:11 ---A- . (.Microsoft Corporation - IE Sysprep Provider.) -- C:\Windows\System32\iesysprep.dll [111616]
O44 - LFC:[MD5.673582881DAC4B27E9368BC8834507DD] - 20/05/2015 - 19:07:11 ---A- . (.Microsoft Corporation - IEAK branding.) -- C:\Windows\System32\iedkcs32.dll [374272]
O44 - LFC:[MD5.8541124139D68239B1EDE3E490367A6C] - 20/05/2015 - 19:07:11 ---A- . (.Microsoft Corporation - Install engine.) -- C:\Windows\System32\inseng.dll [107520]
O44 - LFC:[MD5.AB8DF81AC1BF4546C3102469B840009E] - 20/05/2015 - 19:07:11 ---A- . (.Microsoft Corporation - Internet Explorer Peer Objects.) -- C:\Windows\System32\iepeers.dll [145408]
O44 - LFC:[MD5.3721721151DB49457B0FD35E0C04594C] - 20/05/2015 - 19:07:11 ---A- . (.Microsoft Corporation - Internet Ratings and Local User Management.) -- C:\Windows\System32\msrating.dll [199680]
O44 - LFC:[MD5.85E97591864F3125C5B08FB44E0E8078] - 20/05/2015 - 19:07:11 ---A- . (.Microsoft Corporation - Microsoft Feeds Background Sync.) -- C:\Windows\System32\msfeedsbs.dll [60416]
O44 - LFC:[MD5.C1D6BD834E69E8F77C8B4DDFCEE073F6] - 20/05/2015 - 19:07:11 ---A- . (.Microsoft Corporation - Microsoft HTML Converter.) -- C:\Windows\System32\html.iec [417792]
O44 - LFC:[MD5.F0A53129AE95A895EC8C4DC36E1797A2] - 20/05/2015 - 19:07:11 ---A- . (.Microsoft Corporation - Microsoft Office 2000 component.) -- C:\Windows\System32\hlink.dll [108544]
O44 - LFC:[MD5.00FB2FB8C27C834CF575BC415B80F995] - 20/05/2015 - 19:07:11 ---A- . (.Microsoft Corporation - TDC ActiveX Control.) -- C:\Windows\System32\tdc.ocx [87552]
O44 - LFC:[MD5.0D2B130C7B5BCEC85D7A789A4338F9B7] - 20/05/2015 - 19:07:11 ---A- . (.Microsoft Corporation - Web Site Monitor.) -- C:\Windows\System32\webcheck.dll [262144]
O44 - LFC:[MD5.F918BE3C5ACA0B6485D725CC1A5348DC] - 20/05/2015 - 19:07:12 ---A- . (.Microsoft Corporation - Internet Control Panel.) -- C:\Windows\System32\inetcpl.cpl [2125824]
O44 - LFC:[MD5.B85ECB91C88F6E74045061B7F7DDEFA2] - 20/05/2015 - 19:07:12 ---A- . (.Microsoft Corporation - Microsoft ® VBScript.) -- C:\Windows\System32\vbscript.dll [584192]
O44 - LFC:[MD5.1D610F215769E4FF56C7B1847DE4B86D] - 20/05/2015 - 19:07:13 ---A- . (.Microsoft Corporation - Internet Explorer UI Engine.) -- C:\Windows\System32\ieui.dll [633856]
O44 - LFC:[MD5.E20B5098C8707B2CF0858024568234FF] - 20/05/2015 - 19:07:13 ---A- . (.Microsoft Corporation - Microsoft Feeds Manager.) -- C:\Windows\System32\msfeeds.dll [801280]
O44 - LFC:[MD5.49B1935F131A44CD29857D6900CB643F] - 20/05/2015 - 19:07:13 ---A- . (.Microsoft Corporation - Microsoft SmartScreen Filter.) -- C:\Windows\System32\ieapfltr.dll [800768]
O44 - LFC:[MD5.A9190899A35431CF8ABBEF5E1BB0C8F9] - 20/05/2015 - 19:07:13 ---A- . (.Microsoft Corporation - Microsoft ® JScript Diagnostics.) -- C:\Windows\System32\jscript9diag.dll [814080]
O44 - LFC:[MD5.63061A0826839DE8F5B4713976C99F1B] - 20/05/2015 - 19:07:13 ---A- . (.Microsoft Corporation - Microsoft ® JScript.) -- C:\Windows\System32\jscript.dll [816640]
O44 - LFC:[MD5.14673D16D433373898FE3006C5A01157] - 20/05/2015 - 19:07:14 ---A- . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll [1032704]
O44 - LFC:[MD5.ED4EB5A0CDD251A17B946C515CB94D70] - 20/05/2015 - 19:07:14 ---A- . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\System32\urlmon.dll [1547264]
O44 - LFC:[MD5.E061B5A1D0F9BBACA41149201ADF4A3B] - 20/05/2015 - 19:07:17 ---A- . (.Microsoft Corporation - Internet Browser.) -- C:\Windows\System32\ieframe.dll [14401536]
O44 - LFC:[MD5.843D063E75B19188759CBEC82828BCB1] - 20/05/2015 - 19:07:17 ---A- . (.Microsoft Corporation - Run time utility for Internet Explorer.) -- C:\Windows\System32\iertutil.dll [2885120]
O44 - LFC:[MD5.C010D371BC7FE8ECC01EFE5E92D8E996] - 20/05/2015 - 19:07:20 ---A- . (.Microsoft Corporation - ActiveX Interface Marshaling Library.) -- C:\Windows\System32\actxprxy.dll [2865152]
O44 - LFC:[MD5.F0289B3A341429117696F0279DA977B6] - 20/05/2015 - 19:07:25 ---A- . (.Microsoft Corporation - Internet Extensions for Win32.) -- C:\Windows\System32\wininet.dll [2352128]
O44 - LFC:[MD5.C31D57F7A58FACDA2671075CEBA75199] - 20/05/2015 - 19:07:25 ---A- . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\System32\mshtml.dll [24971776]
O44 - LFC:[MD5.79A4C71CD8B610DE9F66B72B5654C450] - 20/05/2015 - 19:07:26 ---A- . (.Microsoft Corporation - Microsoft ® JScript.) -- C:\Windows\System32\jscript9.dll [6025728]
O44 - LFC:[MD5.C9AB2198141844D3DF96B4552CE9D5AB] - 20/05/2015 - 19:07:27 ---A- . (.Microsoft Corporation - JavaScript Performance Collection Agent.) -- C:\Windows\System32\JavaScriptCollectionAgent.dll [77824]
O44 - LFC:[MD5.F91E83532107E8B0A1819DB2D96366CB] - 20/05/2015 - 19:07:31 ---A- . (.Microsoft Corporation - Microsoft Windows MRM.) -- C:\Windows\System32\MrmCoreR.dll [1090048]
O44 - LFC:[MD5.6F237EE5DDA34EAF3D9C79D4A283E250] - 20/05/2015 - 19:07:32 ---A- . (.Microsoft Corporation - Audio Engine.) -- C:\Windows\System32\AudioEng.dll [482872]
O44 - LFC:[MD5.A41B72F81B389786805CC4D5767B5FBC] - 20/05/2015 - 19:07:32 ---A- . (.Microsoft Corporation - Code Integrity Module (Test).) -- C:\Windows\System32\ci.dll [531616]
O44 - LFC:[MD5.41C501FD9D42F3F04A8532C73E09F356] - 20/05/2015 - 19:07:32 ---A- . (.Microsoft Corporation - Media Foundation Crash Dump Encryption DLL.) -- C:\Windows\System32\EncDump.dll [108944]
O44 - LFC:[MD5.D1E3B8D9130C70F6A3D4FDB52373FF34] - 20/05/2015 - 19:07:32 ---A- . (.Microsoft Corporation - WER Diagnostic Controller.) -- C:\Windows\System32\werdiagcontroller.dll [37888]
O44 - LFC:[MD5.770BAA636F3B61DA7E414421444F84FD] - 20/05/2015 - 19:07:32 ---A- . (.Microsoft Corporation - Windows Audio Device Graph Isolation.) -- C:\Windows\System32\audiodg.exe [272248]
O44 - LFC:[MD5.8779FDAE68BC948B0FE152E758CC8DA7] - 20/05/2015 - 19:07:32 ---A- . (.Microsoft Corporation - Windows Audio Endpoint Builder.) -- C:\Windows\System32\AudioEndpointBuilder.dll [229888]
O44 - LFC:[MD5.C10A66189DC8C090E7C84873EDCEBC88] - 20/05/2015 - 19:07:32 ---A- . (.Microsoft Corporation - Windows Explorer.) -- C:\Windows\explorer.exe [2501368]
O44 - LFC:[MD5.9404704666256045F5BA9B290953B4D0] - 20/05/2015 - 19:07:32 ---A- . (.Microsoft Corporation - Windows Fault Reporting.) -- C:\Windows\System32\WerFaultSecure.exe [38264]
O44 - LFC:[MD5.6DCD12586353DC6307AC781045CA13A4] - 20/05/2015 - 19:07:32 ---A- . (.Microsoft Corporation - Windows Problem Reporting.) -- C:\Windows\System32\WerFault.exe [465320]
O44 - LFC:[MD5.0BCDEB035B9346D3C3C6C8BB1AA7F38C] - 20/05/2015 - 19:07:32 ---A- . (.Microsoft Corporation - Windows Problem Reporting.) -- C:\Windows\System32\wermgr.exe [139984]
O44 - LFC:[MD5.2C354FA91EF605007FD11BB89EED2266] - 20/05/2015 - 19:07:32 ---A- . (.Microsoft Corporation - Windows User Mode Crash Reporting DLL.) -- C:\Windows\System32\Faultrep.dll [413248]
O44 - LFC:[MD5.E24D3259769A0218FE19BB306821C2E5] - 20/05/2015 - 19:07:33 ---A- . (.Microsoft Corporation - Audio Ks Endpoint.) -- C:\Windows\System32\AUDIOKSE.dll [394120]
O44 - LFC:[MD5.428F083690D7AAA012338FD5A0663EE3] - 20/05/2015 - 19:07:33 ---A- . (.Microsoft Corporation - Audio Session.) -- C:\Windows\System32\AudioSes.dll [500016]
O44 - LFC:[MD5.61EA45A645854FE81D8A924E2D93DFFE] - 20/05/2015 - 19:07:33 ---A- . (.Microsoft Corporation - Windows Audio Service.) -- C:\Windows\System32\audiosrv.dll [911360]
O44 - LFC:[MD5.8EBC741DDE9409038262E2F317ED7CCE] - 20/05/2015 - 19:07:33 ---A- . (.Microsoft Corporation - Windows Error Reporting DLL.) -- C:\Windows\System32\wer.dll [535640]
O44 - LFC:[MD5.A118E7EBCA9EE4BDA788647C0A093743] - 20/05/2015 - 19:07:33 ---A- . (.Microsoft Corporation - Windows Portable Device Shell Extension Aut.) -- C:\Windows\System32\WPDShextAutoplay.exe [31232]
O44 - LFC:[MD5.8AC3C01B450BAF88E2C5809B08B35A3B] - 20/05/2015 - 19:07:33 ---A- . (.Microsoft Corporation - Windows Portable Device Shell Service Objec.) -- C:\Windows\System32\WPDShServiceObj.dll [110080]
O44 - LFC:[MD5.0BB6089A1AEE468209FE22E29E6B87BD] - 20/05/2015 - 19:07:34 ---A- . (.Microsoft Corporation - Portable Devices Shell Extension.) -- C:\Windows\System32\wpdshext.dll [2067968]
O44 - LFC:[MD5.8EB7E70C2D348FE2476A2E3F2D585E3D] - 20/05/2015 - 19:07:35 ---A- . (.Microsoft Corporation - Common Log File System Driver.) -- C:\Windows\System32\Drivers\clfs.sys [377152]
O44 - LFC:[MD5.EFC011253AE4F21DE600907AD9F0263D] - 20/05/2015 - 19:07:35 ---A- . (.Microsoft Corporation - Common Log Marshalling Win32 DLL.) -- C:\Windows\System32\clfsw32.dll [75264]
O44 - LFC:[MD5.6334135544739B49C776DFE0B6F0FA9F] - 20/05/2015 - 19:07:35 ---A- . (.Microsoft Corporation - Windows Media Photo Codec.) -- C:\Windows\System32\WMPhoto.dll [402432]
O44 - LFC:[MD5.5E5AB950693F2C6D6ACBEE3A74697ED7] - 20/05/2015 - 19:07:37 ---A- . (.Microsoft Corporation - Kernel Cryptography, Next Generation.) -- C:\Windows\System32\Drivers\cng.sys [561928]
O44 - LFC:[MD5.15C8C65CEA018C02EA0F648448C491C5] - 20/05/2015 - 19:07:37 ---A- . (.Microsoft Corporation - Kernel Security Support Provider Interface.) -- C:\Windows\System32\Drivers\ksecpkg.sys [177984]
O44 - LFC:[MD5.CBB2FE432D81825C174A65DCE538A610] - 20/05/2015 - 19:07:37 ---A- . (.Microsoft Corporation - LSA Server DLL.) -- C:\Windows\System32\lsasrv.dll [1441792]
O44 - LFC:[MD5.2DDC7AE2C753033E5EC95F3358358043] - 20/05/2015 - 19:07:37 ---A- . (.Microsoft Corporation - Microsoft® Active Directory Certificate Ser.) -- C:\Windows\System32\certcli.dll [445440]
O44 - LFC:[MD5.A40E52EB03C793735C916FC2C58A015F] - 20/05/2015 - 19:07:37 ---A- . (.Microsoft Corporation - Security Audit Events DLL.) -- C:\Windows\System32\msaudite.dll [154112]
O44 - LFC:[MD5.8E0AA77F379DEA510D8AC00102C8D509] - 20/05/2015 - 19:07:37 ---A- . (.Microsoft Corporation - Security Audit Schema DLL.) -- C:\Windows\System32\adtschema.dll [736768]
O44 - LFC:[MD5.E87F8EC00FEEF700E61F6989D88A8BC2] - 20/05/2015 - 19:07:38 ---A- . (.Microsoft Corporation - Kerberos Security Package.) -- C:\Windows\System32\kerberos.dll [991232]
O44 - LFC:[MD5.55E39907F34D14E0794DD17C915795E5] - 20/05/2015 - 19:08:06 ---A- . (.Microsoft Corporation - LockScreenContent Server.) -- C:\Windows\System32\LockScreenContentServer.exe [46456]
O44 - LFC:[MD5.B9109627AA19B15BA4BFA5255AAECBF2] - 20/05/2015 - 19:08:06 ---A- . (.Microsoft Corporation - Windows Shell Common Dll.) -- C:\Windows\System32\shell32.dll [22291584]
O44 - LFC:[MD5.E87A6D3B8FECD5B93BC0CFBB48C27970] - 20/05/2015 - 19:08:07 ---A- . (.Microsoft Corporation - HTTP Protocol Stack.) -- C:\Windows\System32\Drivers\http.sys [991552]
O44 - LFC:[MD5.5A1F895338418DF8C1D31E590DC1BAA5] - 20/05/2015 - 19:08:07 ---A- . (.Microsoft Corporation - Microsoft Windows Codecs Library.) -- C:\Windows\System32\WindowsCodecs.dll [1763352]
O44 - LFC:[MD5.95E295FD19F80B3AD33629B5AEFEC9C7] - 20/05/2015 - 19:08:08 ---A- . (.Microsoft Corporation - SD Crashdump Port Driver.) -- C:\Windows\System32\Drivers\dumpsd.sys [154432]
O44 - LFC:[MD5.C54B6B2170BF628FD42F799A66956D75] - 20/05/2015 - 19:08:08 ---A- . (.Microsoft Corporation - SecureDigital Bus Driver.) -- C:\Windows\System32\Drivers\sdbus.sys [239424]
O44 - LFC:[MD5.4E32C419A8B3CC19FCD2CACDEF1BD492] - 20/05/2015 - 19:08:09 ---A- . (.Microsoft Corporation - EAP Generic UI.) -- C:\Windows\System32\eappgnui.dll [102912]
O44 - LFC:[MD5.992A0252586D9D946535DDBBEF9AB7D5] - 20/05/2015 - 19:08:09 ---A- . (.Microsoft Corporation - Eap Peer Config.) -- C:\Windows\System32\eappcfg.dll [346112]
O44 - LFC:[MD5.EB04CD238FE3D5A3DB900561E3AFDE37] - 20/05/2015 - 19:08:09 ---A- . (.Microsoft Corporation - Microsoft EAPHost Peer Client DLL.) -- C:\Windows\System32\eappprxy.dll [70656]
O44 - LFC:[MD5.62F00DA98A4ABDA58254DB936C1D2D73] - 20/05/2015 - 19:08:09 ---A- . (.Microsoft Corporation - Microsoft EAPHost Peer service.) -- C:\Windows\System32\eapphost.dll [339456]
O44 - LFC:[MD5.4644F62E41B054A1787225D1210108B2] - 20/05/2015 - 19:08:09 ---A- . (.Microsoft Corporation - Microsoft ThirdPartyEapDispatcher.) -- C:\Windows\System32\eapp3hst.dll [331776]
O44 - LFC:[MD5.FE11972797DED38CA55E88BD3579F6A2] - 20/05/2015 - 19:08:11 ---A- . (.Microsoft Corporation - Network Connectivity Status Indicator.) -- C:\Windows\System32\ncsi.dll [360448]
O44 - LFC:[MD5.6319232C1CE39AC35316CF51910EEEB5] - 20/05/2015 - 19:08:11 ---A- . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\System32\nlaapi.dll [86016]
O44 - LFC:[MD5.E94EB2A95D7D016E119C4D6868788831] - 20/05/2015 - 19:08:11 ---A- . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\System32\nlasvc.dll [391680]
O44 - LFC:[MD5.48BA326A3DBA5B5BEB5F2777F4618696] - 20/05/2015 - 19:08:30 ---A- . (.Microsoft Corporation - EHCI eUSB Miniport Driver.) -- C:\Windows\System32\Drivers\usbehci.sys [89944]
O44 - LFC:[MD5.08DCA300264238F9AE941302321F3D54] - 20/05/2015 - 19:08:30 ---A- . (.Microsoft Corporation - Hardware Abstraction Layer DLL.) -- C:\Windows\System32\hal.dll [423768]
O44 - LFC:[MD5.064260B3A5868AC894A4943543BC7AB7] - 20/05/2015 - 19:08:30 ---A- . (.Microsoft Corporation - UHCI USB Miniport Driver.) -- C:\Windows\System32\Drivers\usbuhci.sys [37376]
O44 - LFC:[MD5.D79920BE4E6683D3AB50F71457A4F6C6] - 20/05/2015 - 19:08:30 ---A- . (.Microsoft Corporation - Universal Serial Bus Driver.) -- C:\Windows\System32\Drivers\usbd.sys [27480]
O44 - LFC:[MD5.FE0ADF5028EB8C1339B66B3AEDE3FEF9] - 20/05/2015 - 19:08:31 ---A- . (.Microsoft Corporation - USB 1.1 & 2.0 Port Driver.) -- C:\Windows\System32\Drivers\usbport.sys [440664]
O44 - LFC:[MD5.3C4653F3C7F743310E890560FD1EE5C9] - 20/05/2015 - 19:08:43 ---A- . (.Microsoft Corporation - Application Compatibility Client Library.) -- C:\Windows\System32\apphelp.dll [564224]
O44 - LFC:[MD5.952D277678FC177CA8549B92A01C4C2C] - 20/05/2015 - 19:08:43 ---A- . (.Microsoft Corporation - Application Compatibility Database Installe.) -- C:\Windows\System32\sdbinst.exe [24576]
O44 - LFC:[MD5.33A15320AA8B29A75E3EC52507DA046C] - 20/05/2015 - 19:08:43 ---A- . (.Microsoft Corporation - Shim Engine DLL.) -- C:\Windows\System32\shimeng.dll [7168]
O44 - LFC:[MD5.BC8A79C625568DDB7DCA49D0C2741A64] - 20/05/2015 - 19:08:44 ---A- . (.Microsoft Corporation - Microsoft RDP Video Miniport driver.) -- C:\Windows\System32\Drivers\rdpvideominiport.sys [27456]
O44 - LFC:[MD5.6F7FBAA80AC7C8E2DDA7572423D4B913] - 20/05/2015 - 19:08:44 ---A- . (.Microsoft Corporation - Microsoft RemoteFX VM Transport.) -- C:\Windows\System32\rfxvmt.dll [40448]
O44 - LFC:[MD5.66F962AE94FF268070ED2325DAEE88BA] - 20/05/2015 - 19:08:44 ---A- . (.Microsoft Corporation - UMRDP Display Driver.) -- C:\Windows\System32\rdpudd.dll [131584]
O44 - LFC:[MD5.EA10446D574CB8A20D913BF500E34192] - 20/05/2015 - 19:08:45 ---A- . (.Microsoft Corporation - TS RDPCore DLL.) -- C:\Windows\System32\rdpcorets.dll [3547648]
O44 - LFC:[MD5.92360C5E0D86B027377381E867BD055A] - 20/05/2015 - 19:08:50 ---A- . (.Microsoft Corporation - Unified Background Process Manager DLL.) -- C:\Windows\System32\ubpm.dll [203264]
O44 - LFC:[MD5.053EF531F55B508343BB3CA91386C1C7] - 20/05/2015 - 19:09:02 ---A- . (.Microsoft Corporation - DPAPI Server.) -- C:\Windows\System32\dpapisrv.dll [186368]
O44 - LFC:[MD5.68DF7D160987CF3E0A03A64E5A8F087D] - 20/05/2015 - 19:09:05 ---A- . (.Microsoft Corporation - Windows Authentication UI.) -- C:\Windows\System32\authui.dll [2773504]
O44 - LFC:[MD5.613438C2C3D899F50719B6878579C66D] - 20/05/2015 - 19:09:06 ---A- . (.Microsoft Corporation - Device Center Storage Context Menu Handler.) -- C:\Windows\System32\StorageContextHandler.dll [75264]
O44 - LFC:[MD5.4F1E63E8FF7108E04303DB1D7AD3E6E6] - 20/05/2015 - 19:09:11 ---A- . (.Microsoft Corporation - This tool collects Windows Store log files.) -- C:\Windows\System32\WSCollect.exe [84992]
O44 - LFC:[MD5.93C5704CDB20EEB121CE3BEEE796ABDC] - 20/05/2015 - 19:09:11 ---A- . (.Microsoft Corporation - This tool resets the Windows Store without.) -- C:\Windows\System32\WSReset.exe [79872]
O44 - LFC:[MD5.40CBEB7C0051036CBC1C243A025F206D] - 20/05/2015 - 19:09:11 ---A- . (.Microsoft Corporation - WSShared DLL.) -- C:\Windows\System32\WSShared.dll [971776]
O44 - LFC:[MD5.04C3768D1526DFB927B7A216BF4D9162] - 20/05/2015 - 19:09:11 ---A- . (.Microsoft Corporation - Windows Store Runtime DLL.) -- C:\Windows\System32\Windows.ApplicationModel.Store.dll [315392]
O44 - LFC:[MD5.F24E439730260FB90CCA982C67574FED] - 20/05/2015 - 19:09:11 ---A- . (.Microsoft Corporation - Windows Store Testing Framework Runtime DLL.) -- C:\Windows\System32\Windows.ApplicationModel.Store.TestingFramework.dll [274944]
O44 - LFC:[MD5.A750229C96A406EE123F43916053F142] - 20/05/2015 - 19:09:13 ---A- . (.Microsoft Corporation - Microsoft SLR Error Reporting Helper.) -- C:\Windows\System32\mrt_map.dll [86688]
O44 - LFC:[MD5.D178F55D53B9A10FFBDC134C95517846] - 20/05/2015 - 19:09:13 ---A- . (.Microsoft Corporation - System Language Runtime.) -- C:\Windows\System32\mrt100.dll [28320]
O44 - LFC:[MD5.BA0ED854110D45E5D4A46BD250BAF4E0] - 20/05/2015 - 19:09:16 ---A- . (.Microsoft Corporation - Software Protection Platform Plugins.) -- C:\Windows\System32\sppobjs.dll [1487976]
O44 - LFC:[MD5.0F5DF8F08C138D9E1DE88984FEAA1B96] - 20/05/2015 - 19:09:18 ---A- . (.Microsoft Corporation - Event Logging Service.) -- C:\Windows\System32\wevtsvc.dll [1696256]
O44 - LFC:[MD5.60629FA01E0CAE23DA527DFA5ECAD5C7] - 20/05/2015 - 19:09:23 ---A- . (.Microsoft Corporation - MFCDLL Shared Library - Retail Version.) -- C:\Windows\System32\mfc42.dll [1464832]
O44 - LFC:[MD5.20433FD8C8F460567DE93F472A4D749F] - 20/05/2015 - 19:09:24 ---A- . (.Microsoft Corporation - MFCDLL Shared Library - Retail Version.) -- C:\Windows\System32\mfc42u.dll [1488896]
O44 - LFC:[MD5.81CB7FF2FF19D639FD75B6B992BABC43] - 20/05/2015 - 19:09:26 ---A- . (.Microsoft Corporation - Direct3D HLSL Compiler.) -- C:\Windows\System32\D3DCompiler_47.dll [4298240]
O44 - LFC:[MD5.ECB062B9A1B9A6AA42EEE92B1F0894AA] - 20/05/2015 - 19:09:26 ---A- . (.Microsoft Corporation - Framebuffer Display Driver.) -- C:\Windows\System32\workerdd.dll [14336]
O44 - LFC:[MD5.31E9837295401C2470027AF7DD75C4D2] - 20/05/2015 - 19:09:26 ---A- . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll [259072]
O44 - LFC:[MD5.E0C7813A97CA7947FF5C18A8F3B61A45] - 20/05/2015 - 19:09:26 ---A- . (.Microsoft Corporation - Services and Controller app.) -- C:\Windows\System32\services.exe [410128]
O44 - LFC:[MD5.D0CA07F5FF2002A912916319048648F2] - 20/05/2015 - 19:09:26 ---A- . (.Microsoft Corporation - atlthunk.dll.) -- C:\Windows\System32\atlthunk.dll [48128]
O44 - LFC:[MD5.9A7A7E45DAED2E8C2816716D8D28236A] - 20/05/2015 - 19:09:27 ---A- . (.Microsoft Corporation - Local Session Manager Service.) -- C:\Windows\System32\lsm.dll [780800]
O44 - LFC:[MD5.BC9E947C4B1E166CE2237871CAA4BDC0] - 20/05/2015 - 19:09:42 ---A- . (.Microsoft Corporation - 16-bit Emulation on NT64.) -- C:\Windows\System32\ntvdm64.dll [16896]
O44 - LFC:[MD5.DB2A64D1A82226DCEFF4076725BD5577] - 20/05/2015 - 19:09:42 ---A- . (.Microsoft Corporation - AMD64 Wow64 CPU.) -- C:\Windows\System32\wow64cpu.dll [13312]
O44 - LFC:[MD5.A0C2872067EDF862C598C92B38D5AF50] - 20/05/2015 - 19:09:42 ---A- . (.Microsoft Corporation - Command line performance monitor.) -- C:\Windows\System32\typeperf.exe [46592]
O44 - LFC:[MD5.1112970566CA785571CBB0399E61CECB] - 20/05/2015 - 19:09:42 ---A- . (.Microsoft Corporation - Disk Performance Configuration Utility.) -- C:\Windows\System32\diskperf.exe [19968]
O44 - LFC:[MD5.9E23ACF90477AA76857130FD01EAE09B] - 20/05/2015 - 19:09:42 ---A- . (.Microsoft Corporation - Event Trace Helper Library.) -- C:\Windows\System32\tdh.dll [950784]
O44 - LFC:[MD5.168ECAC2C72695D6F827050BE5386206] - 20/05/2015 - 19:09:42 ---A- . (.Microsoft Corporation - Event Trace Report Tool.) -- C:\Windows\System32\tracerpt.exe [411648]
O44 - LFC:[MD5.50C5F7952F821EED8253BDC4203DECDB] - 20/05/2015 - 19:09:42 ---A- . (.Microsoft Corporation - Host for SCM/SDDL/LSA Lookup APIs.) -- C:\Windows\System32\sechost.dll [360480]
O44 - LFC:[MD5.D2451F8CF7EAA14531E3731C06D6D27E] - 20/05/2015 - 19:09:42 ---A- . (.Microsoft Corporation - Microsoft-Windows-System-Events Resources.) -- C:\Windows\System32\microsoft-windows-system-events.dll [246272]
O44 - LFC:[MD5.18F7A5A02CB66AC3E08B3B5DCD5BDBF4] - 20/05/2015 - 19:09:42 ---A- . (.Microsoft Corporation - NT Layer DLL.) -- C:\Windows\System32\ntdll.dll [1733952]
O44 - LFC:[MD5.38C62F948C56566FBF3444180BA31D24] - 20/05/2015 - 19:09:42 ---A- . (.Microsoft Corporation - Performance Log Utility.) -- C:\Windows\System32\logman.exe [110592]
O44 - LFC:[MD5.B086A07457B6E0FA73EF7D16992123E8] - 20/05/2015 - 19:09:42 ---A- . (.Microsoft Corporation - Performance Relogging Utility.) -- C:\Windows\System32\relog.exe [43008]
O44 - LFC:[MD5.AF4309E729C1943908E1E10DAEE42413] - 20/05/2015 - 19:09:42 ---A- . (.Microsoft Corporation - Win32 Emulation on NT64.) -- C:\Windows\System32\wow64.dll [285184]
O44 - LFC:[MD5.7DB50C244AE8F15D62AD044B84824B69] - 20/05/2015 - 19:09:43 ---A- . (.Microsoft Corporation - NT Kernel & System.) -- C:\Windows\System32\ntoskrnl.exe [7476032]
O44 - LFC:[MD5.C61EAF8E1E4B2F62BA4FDF457440B2C6] - 20/05/2015 - 19:09:43 ---A- . (.Microsoft Corporation - UDF File System Driver.) -- C:\Windows\System32\Drivers\udfs.sys [316416]
O44 - LFC:[MD5.DB32958F0E704EFBF7F15161A569E39F] - 20/05/2015 - 19:09:43 ---A- . (.Microsoft Corporation - Windows NT WebDav Minirdr.) -- C:\Windows\System32\Drivers\mrxdav.sys [140800]
O44 - LFC:[MD5.2FC11DF7FF6420AC4F633F23B0EC9D41] - 20/05/2015 - 19:17:36 ---A- . (.Microsoft Corporation - Windows Services Instrumentation Module.) -- C:\Windows\System32\winbici.dll [120832]
O44 - LFC:[MD5.A9D94877A84A09094755163C193C8791] - 20/05/2015 - 19:17:40 ---A- . (.Microsoft Corporation - Bulk File Operations Host Process.) -- C:\Windows\System32\BulkOperationHost.exe [88064]
O44 - LFC:[MD5.389DD7D7AA19E8BC0B8E6F18F9967C49] - 20/05/2015 - 19:17:40 ---A- . (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Windows\System32\SkyDriveShell.dll [291840]
O44 - LFC:[MD5.1104A31260CCF4318C884E0AE6C513BF] - 20/05/2015 - 19:17:52 ---A- . (.Microsoft Corporation - Bluetooth Bus Extender.) -- C:\Windows\System32\Drivers\bthenum.sys [53248]
O44 - LFC:[MD5.42F88B57CAE42FC10059C887B3FCFCEA] - 20/05/2015 - 19:17:52 ---A- . (.Microsoft Corporation - Bluetooth Miniport Driver for HID Devices.) -- C:\Windows\System32\Drivers\hidbth.sys [97792]
O44 - LFC:[MD5.DC66AE45816614D2999DCD3834DCCC4E] - 20/05/2015 - 19:17:52 ---A- . (.Microsoft Corporation - Bluetooth RFCOMM Driver.) -- C:\Windows\System32\Drivers\rfcomm.sys [167424]
O44 - LFC:[MD5.B023C38663271E79FC2A9B63F6FE6417] - 20/05/2015 - 19:17:55 ---A- . (.Microsoft Corporation - Photo Metadata Handler.) -- C:\Windows\System32\PhotoMetadataHandler.dll [445440]
O44 - LFC:[MD5.4829F2EFACF23F63D6D85B7F1084FB70] - 20/05/2015 - 19:19:27 ---A- . (.Microsoft Corporation - Microsoft DirectX Typography Services.) -- C:\Windows\System32\DWrite.dll [1996800]
O44 - LFC:[MD5.6C068E7207F183FF3647E45D2599E80C] - 20/05/2015 - 19:19:27 ---A- . (.Microsoft Corporation - Windows Font Cache Service.) -- C:\Windows\System32\FntCache.dll [1387008]
O44 - LFC:[MD5.7719BBE3BDA2171FF0955171D9460D26] - 20/05/2015 - 19:19:28 ---A- . (.Microsoft Corporation - Multi-User Win32 Driver.) -- C:\Windows\System32\win32k.sys [4180480]
O44 - LFC:[MD5.29A888F3136B2643E22113B5422B46F9] - 20/05/2015 - 19:19:31 ---A- . (.Microsoft Corporation - Microsoft Remote Desktop Services Web Proxy.) -- C:\Windows\System32\TSWbPrxy.exe [87040]
O44 - LFC:[MD5.8442CC9A31FC381255B98D615E49EF82] - 20/05/2015 - 19:19:43 ---A- . (.Microsoft Corporation - Screen Reader Helper DLL.) -- C:\Windows\System32\SRH.dll [2162176]
O44 - LFC:[MD5.7F586D08E965FA00EE085319EF5BBAF1] - 20/05/2015 - 19:19:44 ---A- . (.Microsoft Corporation - Client Side Rendering Print Provider.) -- C:\Windows\System32\win32spl.dll [864256]
O44 - LFC:[MD5.D4A564BABFF82F56E68835FBFDA7AB00] - 20/05/2015 - 19:28:56 ---A- . (...) -- C:\Windows\System32\locale.nls [513488]
O44 - LFC:[MD5.6D3A2565E01B3E4B0F1BEDB0D4B00B3F] - 20/05/2015 - 19:28:56 ---A- . (.Microsoft Corporation - Network Driver Interface Specification (NDI.) -- C:\Windows\System32\Drivers\ndis.sys [1113920]
O44 - LFC:[MD5.62E3FCC2789CA52AA8A59122FDFCE26E] - 20/05/2015 - 19:28:59 ---A- . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\System32\schannel.dll [429568]
O44 - LFC:[MD5.DF55E2D7D045BA1A2C43029DEDF0B59D] - 20/05/2015 - 19:29:01 ---A- . (.Microsoft Corporation - Photo Printing Wizard.) -- C:\Windows\System32\photowiz.dll [347136]
O44 - LFC:[MD5.161156327265FB02A820506B98DA7A07] - 20/05/2015 - 19:29:02 ---A- . (.Microsoft Corporation - Windows Image Helper.) -- C:\Windows\System32\dbghelp.dll [1491456]
O44 - LFC:[MD5.85012538999DC5628E67B7579FF5034F] - 20/05/2015 - 19:29:03 ---A- . (.Adobe Systems - Windows NT OpenType/Type 1 API Library..) -- C:\Windows\System32\atmlib.dll [44032]
O44 - LFC:[MD5.BBBE2BA24785E3A7ED1FF706B01C7770] - 20/05/2015 - 19:29:03 ---A- . (.Adobe Systems Incorporated - Windows NT OpenType/Type 1 Font Driver.) -- C:\Windows\System32\atmfd.dll [358912]
O44 - LFC:[MD5.48CC2698381AA1F6FBE0D78507281B40] - 20/05/2015 - 19:29:03 ---A- . (.Microsoft Corporation - Windows Symbolic Debugger Engine.) -- C:\Windows\System32\dbgeng.dll [4417536]
O44 - LFC:[MD5.7E36F0698777668A09DD316E59807E0E] - 20/05/2015 - 19:29:04 ---A- . (.Microsoft Corporation - WinRT Windows Inking DLL.) -- C:\Windows\System32\Windows.UI.Input.Inking.dll [172544]
O44 - LFC:[MD5.FE14D249D39368CA62D8DA6BC94AC694] - 20/05/2015 - 19:29:10 ---A- . (.Microsoft Corporation - Application Compatibility Cache.) -- C:\Windows\System32\Drivers\ahcache.sys [80384]
O44 - LFC:[MD5.A709D50BD3125B53283220BA44B78690] - 20/05/2015 - 19:29:13 ---A- . (.Microsoft Corporation - System Settings Database Implementation.) -- C:\Windows\System32\SystemSettingsDatabase.dll [116736]
O44 - LFC:[MD5.4658D596725A71521971054D3AF1DCD0] - 20/05/2015 - 19:29:13 ---A- . (.Microsoft Corporation - System Settings Handlers Implementation.) -- C:\Windows\System32\SettingsHandlers.dll [2819584]
O44 - LFC:[MD5.F8A442ABBAB56529B625DB9D916EA46A] - 20/05/2015 - 19:29:13 ---A- . (.Microsoft Corporation - Windows Security Configuration Editor Engin.) -- C:\Windows\System32\scesrv.dll [538624]
O44 - LFC:[MD5.3E9BB985DF2FF26CCE840DE1D24E9381] - 20/05/2015 - 19:33:24 ---A- . (.Microsoft Corporation - MSCTF Server DLL.) -- C:\Windows\System32\msctf.dll [1385256]
O44 - LFC:[MD5.3DB29814EA5A2091425200B58E25BA15] - 20/05/2015 - 19:33:32 ---A- . (.Microsoft Corporation - Microsoft DWM Core Library.) -- C:\Windows\System32\dwmcore.dll [2256896]
O44 - LFC:[MD5.6835D94FDAAB39E008E8490BD3E88CA3] - 20/05/2015 - 19:33:39 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\System32\oleaut32.dll [788680]
O44 - LFC:[MD5.19424364D8C03B990C4281BE53963FD0] - 20/05/2015 - 19:33:39 ---A- . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [225280]
O44 - LFC:[MD5.272A62B660A48AEF366F8A1836CED19F] - 20/05/2015 - 19:33:40 ---A- . (.Microsoft Corporation - Bluetooth Hands-Free Audio and Call Control.) -- C:\Windows\System32\Drivers\bthhfenum.sys [57856]
O44 - LFC:[MD5.EEB76824DC14283A010CAE4E2B5AB852] - 20/05/2015 - 19:34:08 ---A- . (.Microsoft Corporation - SHCORE.) -- C:\Windows\System32\SHCore.dll [723072]
O44 - LFC:[MD5.95B0179BDA907252025DEEA183699FB3] - 20/05/2015 - 19:34:44 ---A- . (.Microsoft Corporation - USB3 HUB Driver.) -- C:\Windows\System32\Drivers\USBHUB3.SYS [467776]
O44 - LFC:[MD5.F5BA843DE3475B8D7FD5AFC21857A7C1] - 20/05/2015 - 19:36:21 ---A- . (.Microsoft Corporation - Crypto API32.) -- C:\Windows\System32\crypt32.dll [1970432]
O44 - LFC:[MD5.72BEE6C5173218A8846D31DF68D2AE4F] - 20/05/2015 - 19:36:22 ---A- . (.Microsoft Corporation - File Risk Estimation.) -- C:\Windows\System32\winshfhc.dll [14848]
O44 - LFC:[MD5.9F4DF0043965808973023A9B51A11136] - 20/05/2015 - 19:36:23 ---A- . (.Microsoft Corporation - Microsoft Network Realtime Inspection Drive.) -- C:\Windows\System32\Drivers\WdNisDrv.sys [114496]
O44 - LFC:[MD5.1751F6B031ADAC34724511057D2E455D] - 20/05/2015 - 19:36:23 ---A- . (.Microsoft Corporation - Microsoft antimalware boot driver.) -- C:\Windows\System32\Drivers\WdBoot.sys [44024]
O44 - LFC:[MD5.D296D0F0DB2CD1504F90405603664493] - 20/05/2015 - 19:36:23 ---A- . (.Microsoft Corporation - Microsoft antimalware file system filter dr.) -- C:\Windows\System32\Drivers\WdFilter.sys [264000]
O44 - LFC:[MD5.D82C445E3D484F31CD2638A4338E5FD9] - 20/05/2015 - 19:36:25 ---A- . (.Microsoft Corporation - Windows Calculator.) -- C:\Windows\System32\calc.exe [933888]
O44 - LFC:[MD5.83AEDC4636606B145851723AE7385781] - 20/05/2015 - 19:36:26 ---A- . (.Microsoft Corporation - Device Setup Status Provider Dll.) -- C:\Windows\System32\DeviceSetupStatusProvider.dll [34304]
O44 - LFC:[MD5.111011F4D527CE443544F7574E599BD9] - 20/05/2015 - 19:58:11 ---A- . (...) -- C:\Windows\System32\KeyboardFilterShim.sdb [2412]
O44 - LFC:[MD5.B7CC32E00C5C5152D221DF182827F58E] - 20/05/2015 - 19:58:22 ---A- . (...) -- C:\Windows\System32\srms.dat [50745]
O44 - LFC:[MD5.68270DE9415C8F8139242D38417B49BE] - 20/05/2015 - 19:58:24 ---A- . (.Microsoft Corporation - Tatar Keyboard Layout.) -- C:\Windows\System32\KBDTT102.DLL [7168]
O44 - LFC:[MD5.3E1F222E78B25B921C1130EB1B9370FE] - 20/05/2015 - 19:58:25 ---A- . (.Microsoft Corporation - Language Pack.) -- C:\Windows\System32\lpk.dll [3072]
O44 - LFC:[MD5.5236C37D6B9CF508723D173C91F8E725] - 20/05/2015 - 19:58:25 ---A- . (.Microsoft Corporation - Windows Socket2 NameSpace DLL.) -- C:\Windows\System32\rnr20.dll [2560]
O44 - LFC:[MD5.36A23B2EABEC9B1087FD08EB81DE0E41] - 20/05/2015 - 19:58:26 ---A- . (.Microsoft Corporation - WMI DC and DP functionality.) -- C:\Windows\System32\wmi.dll [5632]
O44 - LFC:[MD5.192137B232443DEDC2CCC10EDAB1A2EB] - 20/05/2015 - 19:58:26 ---A- . (.Microsoft Corporation - Windows Socket 2.0 Helper for Windows NT.) -- C:\Windows\System32\ws2help.dll [4608]
O44 - LFC:[MD5.1CA1B4BAA4F76CCA6C952D8EDA9B1320] - 20/05/2015 - 19:58:27 ---A- . (.Microsoft Corporation - Microsoft English Natural Language Server D.) -- C:\Windows\System32\NlsLexicons0009.dll [2628608]
O44 - LFC:[MD5.B337B1F1E82A83E20A1743E008E25C0F] - 20/05/2015 - 19:58:41 ---A- . (.Microsoft Corporation - RAS Automatic Connection Driver.) -- C:\Windows\System32\Drivers\rasacd.sys [17408]
O44 - LFC:[MD5.9746BA79DE0CA5EB5104406A9ED62D01] - 20/05/2015 - 19:58:42 ---A- . (.Microsoft Corporation - Legacy Non-Pnp Modem Device Driver.) -- C:\Windows\System32\Drivers\rootmdm.sys [11776]
O44 - LFC:[MD5.20185BEB7512EDE4EFECDFA148AC9F99] - 20/05/2015 - 19:58:42 ---A- . (.Microsoft Corporation - Remote Desktop Generic USB Driver.) -- C:\Windows\System32\Drivers\TsUsbGD.sys [29696]
O44 - LFC:[MD5.0139248F6B95CF0D837B5B46A2722D40] - 20/05/2015 - 19:58:42 ---A- . (.Microsoft Corporation - USB Consumer IR Driver for eHome.) -- C:\Windows\System32\Drivers\usbcir.sys [98304]
O44 - LFC:[MD5.3083926D1CC5B56EA0786527B557DD1B] - 20/05/2015 - 19:58:42 ---A- . (.Microsoft Corporation - Windows Network Data Usage Monitoring Drive.) -- C:\Windows\System32\Drivers\Ndu.sys [103424]
O44 - LFC:[MD5.08EA90955AED2D959EE67DF6EDF0E2B6] - 20/05/2015 - 19:58:43 ---A- . (.Microsoft Corporation - Bluetooth Miniport Driver.) -- C:\Windows\System32\Drivers\BTHUSB.SYS [81920]
O44 - LFC:[MD5.8CECC8DA55F3274181FD1EA28AD76664] - 20/05/2015 - 19:58:43 ---A- . (.Microsoft Corporation - Microsoft NDIS Packet Capture Filter Driver.) -- C:\Windows\System32\Drivers\ndiscap.sys [43008]
O44 - LFC:[MD5.83868EB2924E6BC21A54337C65D614D1] - 20/05/2015 - 19:58:43 ---A- . (.Microsoft Corporation - Microsoft Quality Windows Audio Video Exper.) -- C:\Windows\System32\Drivers\qwavedrv.sys [47104]
O44 - LFC:[MD5.6FA58B6E5A6C85C6D890C2D450736F09] - 20/05/2015 - 19:58:43 ---A- . (.Microsoft Corporation - Windows Wireless LAN 802.11 Client Side Hel.) -- C:\Windows\System32\wlanhlp.dll [11264]
O44 - LFC:[MD5.51B3AC0560848CD6D65AC2033E293113] - 20/05/2015 - 19:58:44 ---A- . (.Microsoft Corporation - Microsoft Link-Layer Discovery Protocol Dri.) -- C:\Windows\System32\Drivers\mslldp.sys [66560]
O44 - LFC:[MD5.D7A41959BB3A8510F1BAC36F5CEC1874] - 20/05/2015 - 19:58:45 ---A- . (.Microsoft Corporation - Reliable Multicast Transport.) -- C:\Windows\System32\Drivers\rmcast.sys [144384]
O44 - LFC:[MD5.7B6B5DF83779FFC5AEE46AC05B2FB767] - 20/05/2015 - 19:58:45 ---A- . (.Microsoft Corporation - Windows Device User Experience Resource Fil.) -- C:\Windows\System32\DeviceUxRes.dll [13312]
O44 - LFC:[MD5.370286F9453BD0394B93F90181C9D661] - 20/05/2015 - 19:58:45 ---A- . (.Microsoft Corporation - Windows Firewall Control Panel DLL Launchin.) -- C:\Windows\System32\Firewall.cpl [6656]
O44 - LFC:[MD5.997E5E28492F02036E5C7BA6DB66ABDC] - 20/05/2015 - 19:58:46 ---A- . (.Microsoft Corporation - Tatar (Legacy) Keyboard Layout.) -- C:\Windows\System32\KBDTAT.DLL [7168]
O44 - LFC:[MD5.F20911ADA7459708723EFDB6ED536ACD] - 20/05/2015 - 19:58:47 ---A- . (.Microsoft Corporation - Microsoft Windows Media Component Removal F.) -- C:\Windows\System32\dxmasf.dll [6144]
O44 - LFC:[MD5.F20911ADA7459708723EFDB6ED536ACD] - 20/05/2015 - 19:58:47 ---A- . (.Microsoft Corporation - Microsoft Windows Media Component Removal F.) -- C:\Windows\System32\msdxm.ocx [6144]
O44 - LFC:[MD5.72B15A5170905938D0D07DD1B797E7C7] - 20/05/2015 - 19:58:47 ---A- . (.Microsoft Corporation - Microsoft® File Server Resource Manager Com.) -- C:\Windows\System32\srm.dll [279552]
O44 - LFC:[MD5.9573B5F9E58C9E52E3A16BF0C57D8AB3] - 20/05/2015 - 19:58:47 ---A- . (.Microsoft Corporation - Unicode Normalization DLL.) -- C:\Windows\System32\normaliz.dll [4096]
O44 - LFC:[MD5.26CC7BD48573B6C29A1B2C8641B5B6E3] - 20/05/2015 - 19:58:51 ---A- . (.Microsoft Corporation - ISCII Code Page Translation DLL.) -- C:\Windows\System32\C_ISCII.DLL [13312]
O44 - LFC:[MD5.730CAAE1A4BB10506DFEE1C1664E1D7C] - 20/05/2015 - 19:58:53 ---A- . (.Microsoft Corporation - Deprecated Protected Storage COM interfaces.) -- C:\Windows\System32\pstorec.dll [15360]
O44 - LFC:[MD5.3EF607D1F62DE2173BBB3A44E3A33627] - 20/05/2015 - 19:58:53 ---A- . (.Microsoft Corporation - Remote Procedure Call Name Service Client.) -- C:\Windows\System32\RpcNs4.dll [9216]
O44 - LFC:[MD5.213906DCD26DCA9FEC61413296B05AEC] - 20/05/2015 - 19:59:01 ---A- . (.Microsoft Corporation - Getting Started.) -- C:\Windows\System32\OobeFldr.dll [630784]
O44 - LFC:[MD5.13BEA6C882D4D877A5A85CA149C86BC1] - 20/05/2015 - 19:59:05 ---A- . (.Microsoft Corporation - Microsoft Smart Card Reader Filter Driver.) -- C:\Windows\System32\Drivers\scfilter.sys [40960]
O44 - LFC:[MD5.BF74E4594E98D95B3F59323870884071] - 20/05/2015 - 19:59:09 ---A- . (.Microsoft Corporation - Desktop Activity Broker API.) -- C:\Windows\System32\dabapi.dll [13312]
O44 - LFC:[MD5.C73263A6CCEF7E2447633AA0060E21F3] - 20/05/2015 - 19:59:09 ---A- . (.Microsoft Corporation - Uniscribe Unicode script processor.) -- C:\Windows\System32\usp10.dll [77312]
O44 - LFC:[MD5.3ED978ACFAFAC6E755CE29D15CE53260] - 20/05/2015 - 19:59:11 ---A- . (.Microsoft Corporation - MCI driver for waveform audio.) -- C:\Windows\System32\mciwave.dll [28672]
O44 - LFC:[MD5.5496D67E9B7A3EF4D50CA027F7294C4B] - 20/05/2015 - 19:59:12 ---A- . (.Microsoft Corporation - Winsock2 Helper DLL (TL/IPv4).) -- C:\Windows\System32\WSHTCPIP.DLL [12288]
O44 - LFC:[MD5.0AC5A816A01D0115588D4B997842780E] - 20/05/2015 - 19:59:13 ---A- . (.Microsoft Corporation - Bashkir Keyboard Layout.) -- C:\Windows\System32\KBDBASH.DLL [7168]
O44 - LFC:[MD5.454A0735E836FBC31C064FED6C120B46] - 20/05/2015 - 19:59:13 ---A- . (.Microsoft Corporation - Russia(Typewriter) Keyboard Layout.) -- C:\Windows\System32\KBDRU1.DLL [7168]
O44 - LFC:[MD5.3429360674DA1E70F638924A6D5985CC] - 20/05/2015 - 19:59:13 ---A- . (.Microsoft Corporation - Sakha - Russia Keyboard Layout.) -- C:\Windows\System32\KBDYAK.DLL [7168]
O44 - LFC:[MD5.D78AB660D17CBC2DE9B04BE9CCED7DB3] - 20/05/2015 - 19:59:14 ---A- . (.Microsoft Corporation - COM proxy server for lpksetup.exe.) -- C:\Windows\System32\lpksetupproxyserv.dll [9216]
O44 - LFC:[MD5.89218DF55881B8AEFF5BCD0C09B4A1AB] - 20/05/2015 - 19:59:14 ---A- . (.Microsoft Corporation - INF Default Install.) -- C:\Windows\System32\InfDefaultInstall.exe [11776]
O44 - LFC:[MD5.1125F84D9C7607467F91216ACF858CAE] - 20/05/2015 - 19:59:14 ---A- . (.Microsoft Corporation - Remote Desktop USB Redirection GP Extension.) -- C:\Windows\System32\TsUsbRedirectionGroupPolicyExtension.dll [12800]
O44 - LFC:[MD5.6A9650BDC13F1A770F20E7B99D29EE3D] - 20/05/2015 - 19:59:14 ---A- . (.Microsoft Corporation - Russian Keyboard Layout.) -- C:\Windows\System32\KBDRU.DLL [6656]
O44 - LFC:[MD5.B4823A79481558F86B20B903C86EA416] - 20/05/2015 - 19:59:14 ---A- . (.Microsoft Corporation - Winsock2 Helper DLL (TL/IPv6).) -- C:\Windows\System32\wship6.dll [12288]
O44 - LFC:[MD5.19DC9AF6F90EBBFC90C8D2CF6579FB48] - 20/05/2015 - 19:59:15 ---A- . (.Microsoft Corporation - APPX Streaming Data Source COM Proxy/Stub D.) -- C:\Windows\System32\AppxStreamingDataSourcePS.dll [12800]
O44 - LFC:[MD5.2133012833EA933BC3D1B8EA70CA280F] - 20/05/2015 - 19:59:15 ---A- . (.Microsoft Corporation - TCPIP Network Setup Plugin.) -- C:\Windows\System32\TcpipSetup.dll [10240]
O44 - LFC:[MD5.445F2DA96BB942A9A560695C01DFD2C5] - 20/05/2015 - 19:59:15 ---A- . (.Microsoft Corporation - Windows KTM Win32 Client DLL.) -- C:\Windows\System32\ktmw32.dll [24576]
O44 - LFC:[MD5.B82B7029510BBAB1387C0BD5687B5242] - 20/05/2015 - 19:59:15 ---A- . (.Microsoft Corporation - Wizard Framework.) -- C:\Windows\System32\AuthFWWizFwk.dll [114176]
O44 - LFC:[MD5.370662416C82F0380E19417148012B96] - 20/05/2015 - 19:59:16 ---A- . (.Microsoft Corporation - EFS UI Application.) -- C:\Windows\System32\efsui.exe [13312]
O44 - LFC:[MD5.93FFBE46D87BFFC00F5384A6174697AC] - 20/05/2015 - 19:59:16 ---A- . (.Microsoft Corporation - Hostname APP.) -- C:\Windows\System32\HOSTNAME.EXE [13312]
O44 - LFC:[MD5.159AA669E388C20271A648B885D72735] - 20/05/2015 - 19:59:16 ---A- . (.Microsoft Corporation - Systray .exe stub.) -- C:\Windows\System32\systray.exe [10240]
O44 - LFC:[MD5.62780C7480B036D0F38CE3E1B94A5CE0] - 20/05/2015 - 19:59:17 ---A- . (.Microsoft Corporation - COM+.) -- C:\Windows\System32\dcomcnfg.exe [10752]
O44 - LFC:[MD5.9F1D7D1689A3ED0B49E124CAA1C3FEA7] - 20/05/2015 - 19:59:18 ---A- . (.Microsoft Corporation - TCP/IP Route Command.) -- C:\Windows\System32\ROUTE.EXE [23040]
O44 - LFC:[MD5.2F2FFD789E57A77E0869E5E321602D13] - 20/05/2015 - 19:59:18 ---A- . (.Microsoft Corporation - TCP/IP Traceroute Command.) -- C:\Windows\System32\TRACERT.EXE [17408]
O44 - LFC:[MD5.9929D83891B1C86F4E12C0C90BD8632E] - 20/05/2015 - 19:59:20 ---A- . (.Microsoft Corporation - CTF Loader.) -- C:\Windows\System32\ctfmon.exe [10240]
O44 - LFC:[MD5.31FEBAD8EACE62F58813BC640C07CE38] - 20/05/2015 - 19:59:20 ---A- . (.Microsoft Corporation - TCPIP Finger Command.) -- C:\Windows\System32\finger.exe [15360]
O44 - LFC:[MD5.50856FEA062AABFC1EC05A06CB94C9A0] - 20/05/2015 - 19:59:21 ---A- . (.Microsoft Corporation - Command Line Help Utility.) -- C:\Windows\System32\help.exe [11264]
O44 - LFC:[MD5.598BDA17AFB1663F3B3A5C13EC61405E] - 20/05/2015 - 19:59:21 ---A- . (.Microsoft Corporation - Microsoft® Windows(TM) Telephony Administra.) -- C:\Windows\System32\tcmsetup.exe [15872]
O44 - LFC:[MD5.712213259DF0ADDF74500DD49E4F5983] - 20/05/2015 - 19:59:21 ---A- . (.Microsoft Corporation - Microsoft® Windows(TM) Telephony Unattend A.) -- C:\Windows\System32\TapiUnattend.exe [14336]
O44 - LFC:[MD5.EC0B096A9297C03C9D4B3053B4351C48] - 20/05/2015 - 19:59:21 ---A- . (.Microsoft Corporation - Mount Volume Utility.) -- C:\Windows\System32\mountvol.exe [17408]
O44 - LFC:[MD5.3F4811D92D68006E636245486A8D92B9] - 20/05/2015 - 19:59:23 ---A- . (.Microsoft Corporation - BitLocker Drive Encryption Wizard.) -- C:\Windows\System32\BitLockerWizard.exe [101888]
O44 - LFC:[MD5.9F4A6D072BF84183E96E8B4D6D536D73] - 20/05/2015 - 19:59:23 ---A- . (.Microsoft Corporation - BitLocker Drive Encryption Wizard.) -- C:\Windows\System32\BitLockerWizardElev.exe [101888]
O44 - LFC:[MD5.D0571F48B3365A6BF6F492A06E0AEF99] - 20/05/2015 - 19:59:23 ---A- . (.Microsoft Corporation - Location Activity.) -- C:\Windows\System32\LocationNotifications.exe [86528]
O44 - LFC:[MD5.7C3C5FF1C2C0ECD92BDAC31E2FC9AA77] - 20/05/2015 - 19:59:23 ---A- . (.Microsoft Corporation - Query Process Utility.) -- C:\Windows\System32\qprocess.exe [27136]
O44 - LFC:[MD5.0CFB9E2EDFB29B3C9C71D7C703D09457] - 20/05/2015 - 19:59:23 ---A- . (.Microsoft Corporation - Query Remote Desktop Session Host Server Ut.) -- C:\Windows\System32\qappsrv.exe [23552]
O44 - LFC:[MD5.D0EB0DF8C603BBA084351A92732B1CBE] - 20/05/2015 - 19:59:23 ---A- . (.Microsoft Corporation - SNMP Trap.) -- C:\Windows\System32\snmptrap.exe [14848]
O44 - LFC:[MD5.8B4E256F72C64974F37AB30328EDDBEB] - 20/05/2015 - 19:59:23 ---A- . (.Microsoft Corporation - Session Disconnection Utility.) -- C:\Windows\System32\tsdiscon.exe [22528]
O44 - LFC:[MD5.6B07C78F5310954DAF9A1962B5E49F6D] - 20/05/2015 - 19:59:23 ---A- . (.Microsoft Corporation - dvdplay placeholder Application.) -- C:\Windows\System32\dvdplay.exe [11776]
O44 - LFC:[MD5.E45A23EFB7B187809372521D2C9FE1F7] - 20/05/2015 - 19:59:24 ---A- . (.Microsoft Corporation - COM Surrogate.) -- C:\Windows\System32\dllhst3g.exe [9216]
O44 - LFC:[MD5.AF8C9AC9DD8A1D671411225768D44060] - 20/05/2015 - 19:59:24 ---A- . (.Microsoft Corporation - Change Logon Utility.) -- C:\Windows\System32\chglogon.exe [22016]
O44 - LFC:[MD5.6D5428EAF349D43890CB88528FF29DEB] - 20/05/2015 - 19:59:24 ---A- . (.Microsoft Corporation - Change port Utility.) -- C:\Windows\System32\chgport.exe [24064]
O44 - LFC:[MD5.F524DD2F93678DAD7B07461776210107] - 20/05/2015 - 19:59:24 ---A- . (.Microsoft Corporation - Corrupted File Recovery Client.) -- C:\Windows\System32\cofire.exe [23040]
O44 - LFC:[MD5.5220C126A3E9A7D225AF5E49DBD7C994] - 20/05/2015 - 19:59:24 ---A- . (.Microsoft Corporation - Credential Manager Command Line Utility.) -- C:\Windows\System32\cmdkey.exe [16896]
O44 - LFC:[MD5.864379396733031C99B64550358CAEBD] - 20/05/2015 - 19:59:24 ---A- . (.Microsoft Corporation - ProQuota.) -- C:\Windows\System32\proquota.exe [32256]
O44 - LFC:[MD5.B8D1105A898B94F01EAFCE98E9C6F9D0] - 20/05/2015 - 19:59:24 ---A- . (.Microsoft Corporation - Session Logoff Utility.) -- C:\Windows\System32\logoff.exe [21504]
O44 - LFC:[MD5.AC40CEEC8AAE25F83B7836938AA9EFB9] - 20/05/2015 - 19:59:25 ---A- . (.Microsoft Corporation - Change INI File Mapping Utility.) -- C:\Windows\System32\chgusr.exe [21504]
O44 - LFC:[MD5.4ADC30525A7BA315E3A2B5386D61294E] - 20/05/2015 - 19:59:25 ---A- . (.Microsoft Corporation - Message Utility.) -- C:\Windows\System32\msg.exe [25600]
O44 - LFC:[MD5.2BAD78953FE53A8369D53289118CDFB0] - 20/05/2015 - 19:59:25 ---A- . (.Microsoft Corporation - MultiUser Query Utility.) -- C:\Windows\System32\query.exe [16384]
O44 - LFC:[MD5.713D305CED2068A9CD1AB38F28348ADB] - 20/05/2015 - 19:59:25 ---A- . (.Microsoft Corporation - Query Session Utility.) -- C:\Windows\System32\qwinsta.exe [28672]
O44 - LFC:[MD5.E848C527736B577F535C6750401AF2D5] - 20/05/2015 - 19:59:25 ---A- . (.Microsoft Corporation - Query User Utility.) -- C:\Windows\System32\quser.exe [24576]
O44 - LFC:[MD5.368AD808891952AA58C8B4F31F38E76C] - 20/05/2015 - 19:59:25 ---A- . (.Microsoft Corporation - Remote Desktop Services Change Utility.) -- C:\Windows\System32\change.exe [16896]
O44 - LFC:[MD5.81E8B19A3D44C4F2B0BFB615182E03B2] - 20/05/2015 - 19:59:25 ---A- . (.Microsoft Corporation - Remote Desktop Services End Process Utility.) -- C:\Windows\System32\tskill.exe [23552]
O44 - LFC:[MD5.112B15C842E08391DF6D46C959E83F07] - 20/05/2015 - 19:59:25 ---A- . (.Microsoft Corporation - Remote Desktop Services Reset Utility.) -- C:\Windows\System32\reset.exe [16896]
O44 - LFC:[MD5.89D49A9488E418E7E982BDC7A0B83547] - 20/05/2015 - 19:59:25 ---A- . (.Microsoft Corporation - Reset Session Utility.) -- C:\Windows\System32\rwinsta.exe [22016]
O44 - LFC:[MD5.074538506BFAE9C0087C246AB3C59218] - 20/05/2015 - 19:59:25 ---A- . (.Microsoft Corporation - Session Connection Utility.) -- C:\Windows\System32\tscon.exe [22016]
O44 - LFC:[MD5.9ACC1BEAE4D314964EFBEC910279D9CA] - 20/05/2015 - 19:59:25 ---A- . (.Microsoft Corporation - boot immersive menus.) -- C:\Windows\System32\bootim.exe [13824]
O44 - LFC:[MD5.6708EE1F564796A19B814CA9359FB20B] - 20/05/2015 - 19:59:26 ---A- . (.Microsoft Corporation - Advanced System Settings.) -- C:\Windows\System32\SystemPropertiesAdvanced.exe [82944]
O44 - LFC:[MD5.C6198A7B68C3999E938076FE5515E732] - 20/05/2015 - 19:59:26 ---A- . (.Microsoft Corporation - Change Computer Performance Settings.) -- C:\Windows\System32\SystemPropertiesPerformance.exe [82944]
O44 - LFC:[MD5.401DC1A773377617AF023215DBCBE78B] - 20/05/2015 - 19:59:26 ---A- . (.Microsoft Corporation - Change Computer Settings.) -- C:\Windows\System32\SystemPropertiesComputerName.exe [82944]
O44 - LFC:[MD5.1B38BD96F39130B8A3911035240011F4] - 20/05/2015 - 19:59:26 ---A- . (.Microsoft Corporation - Change Data Execution Prevention Settings.) -- C:\Windows\System32\SystemPropertiesDataExecutionPrevention.exe [82944]
O44 - LFC:[MD5.68F19DB5C6A27D3B52A3240877554E7D] - 20/05/2015 - 19:59:26 ---A- . (.Microsoft Corporation - Device Properties.) -- C:\Windows\System32\DeviceProperties.exe [93184]
O44 - LFC:[MD5.E0A90CC0420D0E4055AD1AA2409861AA] - 20/05/2015 - 19:59:26 ---A- . (.Microsoft Corporation - Hardware Settings.) -- C:\Windows\System32\SystemPropertiesHardware.exe [82944]
O44 - LFC:[MD5.4FE4D9783A1CCFF8902D3A6FC82CF2FA] - 20/05/2015 - 19:59:26 ---A- . (.Microsoft Corporation - Microsoft PnP Utility - Tool to add, delete.) -- C:\Windows\System32\PnPutil.exe [20992]
O44 - LFC:[MD5.6C6E586C858BFE1DE453921F67AA9206] - 20/05/2015 - 19:59:26 ---A- . (.Microsoft Corporation - Resource Monitor.) -- C:\Windows\System32\resmon.exe [109568]
O44 - LFC:[MD5.0466E5B7B3734D2FFE0367D04878CF97] - 20/05/2015 - 19:59:26 ---A- . (.Microsoft Corporation - Restart Manager LUA Restart Client.) -- C:\Windows\System32\RmClient.exe [17408]
O44 - LFC:[MD5.7D61FDA771B0ED6BCB75F270E34C605E] - 20/05/2015 - 19:59:26 ---A- . (.Microsoft Corporation - Run As Utility.) -- C:\Windows\System32\runas.exe [19968]
O44 - LFC:[MD5.16E9483CD0C84D39E83C2645E51F598B] - 20/05/2015 - 19:59:26 ---A- . (.Microsoft Corporation - System Protection Settings.) -- C:\Windows\System32\SystemPropertiesProtection.exe [82944]
O44 - LFC:[MD5.381E3758C7687DA1A55DD4221E5B9E6C] - 20/05/2015 - 19:59:26 ---A- . (.Microsoft Corporation - System Remote Settings.) -- C:\Windows\System32\SystemPropertiesRemote.exe [82944]
O44 - LFC:[MD5.6B9CCB9388EDFD7FE8CC384772A1A977] - 20/05/2015 - 19:59:26 ---A- . (.Microsoft Corporation - Task Manager Launcher.) -- C:\Windows\System32\LaunchTM.exe [183808]
O44 - LFC:[MD5.32A50A283BBB1E3A84007E4B22A56427] - 20/05/2015 - 19:59:27 ---A- . (.Microsoft Corporation - Automatic Maintenance.) -- C:\Windows\System32\MSchedExe.exe [82944]
O44 - LFC:[MD5.B150A33D1CFAE63B7951C4FEBDF40FBC] - 20/05/2015 - 19:59:27 ---A- . (.Microsoft Corporation - Blank Screen Saver.) -- C:\Windows\System32\scrnsave.scr [11776]
O44 - LFC:[MD5.191CC72472C3246B81593D95543C67EF] - 20/05/2015 - 19:59:27 ---A- . (.Microsoft Corporation - Load PerfMon Counters.) -- C:\Windows\System32\lodctr.exe [50688]
O44 - LFC:[MD5.867A4DA632BD0D6F6F44173A2A879095] - 20/05/2015 - 19:59:27 ---A- . (.Microsoft Corporation - MCI driver for MIDI sequencer.) -- C:\Windows\System32\mciseq.dll [28672]
O44 - LFC:[MD5.1FCE45CF94DA9CD4D28B25FFFC1E684F] - 20/05/2015 - 19:59:27 ---A- . (.Microsoft Corporation - Microsoft Color Control Panel.) -- C:\Windows\System32\colorcpl.exe [87040]
O44 - LFC:[MD5.73E19BE0E0ECD88616B5762F621B0226] - 20/05/2015 - 19:59:27 ---A- . (.Microsoft Corporation - Windows Write.) -- C:\Windows\System32\write.exe [11264]
O44 - LFC:[MD5.73E19BE0E0ECD88616B5762F621B0226] - 20/05/2015 - 19:59:27 ---A- . (.Microsoft Corporation - Windows Write.) -- C:\Windows\write.exe [11264]
O44 - LFC:[MD5.FF6992748128289C840A403A5F6B9129] - 20/05/2015 - 19:59:28 ---A- . (.Microsoft Corporation - Filter Manager Control Program.) -- C:\Windows\System32\fltMC.exe [27136]
O44 - LFC:[MD5.FDC0DD1E4D8AD8189FC5227F15AA7C30] - 20/05/2015 - 19:59:28 ---A- . (.Microsoft Corporation - Multicast Information.) -- C:\Windows\System32\MRINFO.EXE [16384]
O44 - LFC:[MD5.A737B433ABAF3F2DCB2BD7B4CC582B26] - 20/05/2015 - 19:59:28 ---A- . (.Microsoft Corporation - Rpc Locator.) -- C:\Windows\System32\Locator.exe [10240]
O44 - LFC:[MD5.517D31BB7C8673F5F3F992656028FD48] - 20/05/2015 - 19:59:28 ---A- . (.Microsoft Corporation - Run a legacy CPL elevated.) -- C:\Windows\System32\RunLegacyCPLElevated.exe [60416]
O44 - LFC:[MD5.2067AF0531ACD5D28BD49DB30DF109CE] - 20/05/2015 - 19:59:28 ---A- . (.Microsoft Corporation - Russian - Mnemonic Keyboard Layout.) -- C:\Windows\System32\KBDRUM.DLL [8192]
O44 - LFC:[MD5.BA28994D2A6FD17473605CEA855001BF] - 20/05/2015 - 19:59:28 ---A- . (.Microsoft Corporation - Unload PerfMon Counters.) -- C:\Windows\System32\unlodctr.exe [41984]
O44 - LFC:[MD5.79412A11FA4E7F16B7BEA6270941ABED] - 20/05/2015 - 19:59:28 ---A- . (.Microsoft Corporation - Vault cmdline Program.) -- C:\Windows\System32\VaultCmd.exe [26112]
O44 - LFC:[MD5.9D0D1BDA064C1376ABDA7FFFF213168F] - 20/05/2015 - 19:59:28 ---A- . (.Microsoft Corporation - Wallpaper Host Process.) -- C:\Windows\System32\WallpaperHost.exe [10240]
O44 - LFC:[MD5.FCB04C83D9B0810CA08A63F72B59831B] - 20/05/2015 - 19:59:29 ---A- . (.Microsoft Corporation - File Signature Verification.) -- C:\Windows\System32\sigverif.exe [73728]
O44 - LFC:[MD5.1AFE32EA863BF62C266B6BC0718EE965] - 20/05/2015 - 19:59:29 ---A- . (.Microsoft Corporation - Performance Logs and Alerts DCOM Server.) -- C:\Windows\System32\plasrv.exe [9728]
O44 - LFC:[MD5.1BDAC8ED76F662E2A595D9F6685CC1D6] - 20/05/2015 - 19:59:29 ---A- . (.Microsoft Corporation - Program Compatibility Assistant.) -- C:\Windows\System32\pcalua.exe [13312]
O44 - LFC:[MD5.C18B586CA8F414A47D9CBA263361692B] - 20/05/2015 - 19:59:29 ---A- . (.Microsoft Corporation - Set Program Access and Computer Defaults Co.) -- C:\Windows\System32\ComputerDefaults.exe [37888]
O44 - LFC:[MD5.BD139D1EC36BFD525F62A52B547B3692] - 20/05/2015 - 19:59:29 ---A- . (.Microsoft Corporation - Version Reporter Applet.) -- C:\Windows\System32\winver.exe [57856]
O44 - LFC:[MD5.DF5A15858040E96FC31A76D406A28633] - 20/05/2015 - 19:59:29 ---A- . (.Microsoft Corporation - Windows Features.) -- C:\Windows\System32\OptionalFeatures.exe [99328]
O44 - LFC:[MD5.9FEC2291F505591E72571E0323E4F152] - 20/05/2015 - 19:59:30 ---A- . (.Microsoft Corporation - Microsoft Windows Phone Dialer.) -- C:\Windows\System32\dialer.exe [36864]
O44 - LFC:[MD5.87DBA4A4C0E38CBE75C305324DEF4106] - 20/05/2015 - 19:59:30 ---A- . (.Microsoft Corporation - Microsoft Windows Resource Leak Diagnostic.) -- C:\Windows\System32\rdrleakdiag.exe [39936]
O44 - LFC:[MD5.1C5E88A498787708B6FF97BDE45C1681] - 20/05/2015 - 19:59:30 ---A- . (.Microsoft Corporation - Microsoft.WindowsFirewall.SnapIn.) -- C:\Windows\System32\AuthFWSnapin.dll [5120000]
O44 - LFC:[MD5.395075C20E663FC622981C9EE3DD5AC4] - 20/05/2015 - 19:59:31 ---A- . (.Microsoft Corporation - Registry Initializer.) -- C:\Windows\System32\regini.exe [45568]
O44 - LFC:[MD5.518F842EA8449A89448D6754A4AA8AD9] - 20/05/2015 - 19:59:31 ---A- . (.Microsoft Corporation - iSCSI Discovery tool.) -- C:\Windows\System32\iscsicli.exe [151552]
O44 - LFC:[MD5.78CE8CDC02FFBA84FE890D48B10A7E49] - 20/05/2015 - 19:59:32 ---A- . (.Microsoft Corporation - Advanced User Accounts Control Panel.) -- C:\Windows\System32\Netplwiz.exe [27648]
O44 - LFC:[MD5.1B360B9D73831941D84302DF009742C0] - 20/05/2015 - 19:59:32 ---A- . (.Microsoft Corporation - Bluetooth Uninstall Device Task.) -- C:\Windows\System32\bthudtask.exe [37888]
O44 - LFC:[MD5.D2CDE111F1F7EF8BA469CF980A1A13BA] - 20/05/2015 - 19:59:32 ---A- . (.Microsoft Corporation - Control ACLs Program.) -- C:\Windows\System32\cacls.exe [31744]
O44 - LFC:[MD5.0429264498AA64D342CA4B24ED9705B1] - 20/05/2015 - 19:59:32 ---A- . (.Microsoft Corporation - Device Setup Manager User Task Handler.) -- C:\Windows\System32\DsmUserTask.exe [13312]
O44 - LFC:[MD5.506659C0225E2D8C2513238424AF9ADF] - 20/05/2015 - 19:59:32 ---A- . (.Microsoft Corporation - Windows Features on Demand UX.) -- C:\Windows\System32\Fondue.exe [99328]
O44 - LFC:[MD5.335C38783B3F1B383ECAC17DB3705895] - 20/05/2015 - 19:59:32 ---A- . (.Microsoft Corporation - Windows Winhlp32 Stub.) -- C:\Windows\winhlp32.exe [9728]
O44 - LFC:[MD5.2F0F021AB3A8153FC6CB2AF4F82682F1] - 20/05/2015 - 19:59:33 ---A- . (.Microsoft Corporation - ODBC Administrator.) -- C:\Windows\System32\odbcad32.exe [74240]
O44 - LFC:[MD5.766590EDFC63D1B4632900D7C8659763] - 20/05/2015 - 19:59:34 ---A- . (.Microsoft Corporation - Exchange ActiveSync Invoker Proxy Stub.) -- C:\Windows\System32\easinvoker.proxystub.dll [27648]
O44 - LFC:[MD5.C263337C2301AAFC68243A9A2A006621] - 20/05/2015 - 19:59:34 ---A- . (.Microsoft Corporation - SmartScreenSettings.) -- C:\Windows\System32\SmartScreenSettings.exe [219136]
O44 - LFC:[MD5.1837AFF2AACD137665FCE87E7BA40285] - 20/05/2015 - 19:59:35 ---A- . (.Microsoft Corporation - ActiveX Installer Service.) -- C:\Windows\System32\AxInstUI.exe [59904]
O44 - LFC:[MD5.2B507018D3511DB1EB9601C5B5D0F2E8] - 20/05/2015 - 19:59:35 ---A- . (.Microsoft Corporation - Credential Backup and Restore Wizard.) -- C:\Windows\System32\credwiz.exe [36864]
O44 - LFC:[MD5.B934411DFE7DEACFA95A1255A48133C9] - 20/05/2015 - 19:59:35 ---A- . (.Microsoft Corporation - Microsoft® HTML Help Executable.) -- C:\Windows\hh.exe [17408]
O44 - LFC:[MD5.A6D787E82E91934818C7A1843449CA24] - 20/05/2015 - 19:59:35 ---A- . (.Microsoft Corporation - Multiple Provider Router Extension DLL.) -- C:\Windows\System32\mprext.dll [13312]
O44 - LFC:[MD5.1A81668402876DBDE84C5E111C8D4A78] - 20/05/2015 - 19:59:35 ---A- . (.Microsoft Corporation - SQL Client Configuration Utility EXE.) -- C:\Windows\System32\cliconfg.exe [30208]
O44 - LFC:[MD5.A95AF76C156AEECB1219517C297311B3] - 20/05/2015 - 19:59:35 ---A- . (.Microsoft Corporation - Security Init.) -- C:\Windows\System32\secinit.exe [16384]
O44 - LFC:[MD5.13FF9DF02AA0ABC415CC1AD0BD679BF7] - 20/05/2015 - 19:59:35 ---A- . (.Microsoft Corporation - Windows Runtime CallButtonsServer ProxyStub.) -- C:\Windows\System32\CallButtons.ProxyStub.dll [23552]
O44 - LFC:[MD5.2015EBDEABD2B3C4C7535290D1A34CFF] - 20/05/2015 - 19:59:36 ---A- . (.Microsoft Corporation - Background Task Host.) -- C:\Windows\System32\backgroundTaskHost.exe [10240]
O44 - LFC:[MD5.3FD537782456E540DFB29A7C03D0FC0F] - 20/05/2015 - 19:59:36 ---A- . (.Microsoft Corporation - Printer driver software installation.) -- C:\Windows\System32\ntprint.exe [62976]
O44 - LFC:[MD5.2E3CC13FAFF5D67AF3BB953FFE488C60] - 20/05/2015 - 19:59:36 ---A- . (.Microsoft Corporation - SetupAPI 32-bit Surrogate.) -- C:\Windows\System32\wowreg32.exe [16896]
O44 - LFC:[MD5.606D8C7BDF86378F0E1C19B1AA479543] - 20/05/2015 - 19:59:36 ---A- . (.Microsoft Corporation - TCP/IP Services Application.) -- C:\Windows\System32\TCPSVCS.EXE [11776]
O44 - LFC:[MD5.675E9195D914813DAA426CDA5E1E7A5B] - 20/05/2015 - 19:59:36 ---A- . (.Microsoft Corporation - Windows Time Zone Utility.) -- C:\Windows\System32\tzutil.exe [61440]
O44 - LFC:[MD5.CDF8D88B46FC4FA140B5F8B8B06192ED] - 20/05/2015 - 19:59:37 ---A- . (.Microsoft Corporation - Change Printing Settings.) -- C:\Windows\System32\printui.exe [62976]
O44 - LFC:[MD5.AE604CF7BF5FC3309464397C58AFCD0B] - 20/05/2015 - 19:59:37 ---A- . (.Microsoft Corporation - Display Control Panel.) -- C:\Windows\System32\DpiScaling.exe [77824]
O44 - LFC:[MD5.C6052399A215658DD211A24780A4F122] - 20/05/2015 - 19:59:37 ---A- . (.Microsoft Corporation - Microsoft Fax Unattend Setup Program.) -- C:\Windows\System32\FXSUNATD.exe [18944]
O44 - LFC:[MD5.DCEF208FB5CF6F04349BCAC2F2499B29] - 20/05/2015 - 19:59:37 ---A- . (.Microsoft Corporation - Microsoft iSCSI Initiator Configuration Too.) -- C:\Windows\System32\iscsicpl.exe [121856]
O44 - LFC:[MD5.D80FE2134C39963F5F39C97BA1A88748] - 20/05/2015 - 19:59:37 ---A- . (.Microsoft Corporation - Microsoft\fsavailux.) -- C:\Windows\System32\fsavailux.exe [16384]
O44 - LFC:[MD5.7D200761E7EECD04371977E8A5D263E2] - 20/05/2015 - 19:59:37 ---A- . (.Microsoft Corporation - Remote Access Command Line Dial UI.) -- C:\Windows\System32\rasdial.exe [18944]
O44 - LFC:[MD5.1EE7875E0D26B013CB6C421382E403DF] - 20/05/2015 - 19:59:38 ---A- . (.Microsoft Corporation - DPAPI Key Migration Wizard.) -- C:\Windows\System32\dpapimig.exe [75264]
O44 - LFC:[MD5.C2DE962066B9E0ED3E8FF2B90E89FE51] - 20/05/2015 - 19:59:38 ---A- . (.Microsoft Corporation - MSCAT32 Forwarder DLL.) -- C:\Windows\System32\mscat32.dll [11264]
O44 - LFC:[MD5.281E0EEEC9A435CC336A2964EDD07591] - 20/05/2015 - 19:59:38 ---A- . (.Microsoft Corporation - MSSIP32 Forwarder DLL.) -- C:\Windows\System32\mssip32.dll [9216]
O44 - LFC:[MD5.DABA1C095A77AB2DE2EC6FC5B543DA74] - 20/05/2015 - 19:59:38 ---A- . (.Microsoft Corporation - Softpub Forwarder DLL.) -- C:\Windows\System32\softpub.dll [10240]
O44 - LFC:[MD5.C674D241A95C227D667221CCBEE5764E] - 20/05/2015 - 19:59:39 ---A- . (.Microsoft Corporation - MIG wini32 resources.) -- C:\Windows\System32\miguiresource.dll [183296]
O44 - LFC:[MD5.9E1253F4529EE2222E2729346993A201] - 20/05/2015 - 19:59:39 ---A- . (.Microsoft Corporation - MountPointManager Sysprep Plugin.) -- C:\Windows\System32\spmpm.dll [10752]
O44 - LFC:[MD5.40AED82C10BBD3F71DE5F0D8DCCC83D9] - 20/05/2015 - 19:59:39 ---A- . (.Microsoft Corporation - PANOSE(tm) Font Mapper.) -- C:\Windows\System32\panmap.dll [13824]
O44 - LFC:[MD5.BEC6E16287000A0AD054672EE8B23442] - 20/05/2015 - 19:59:39 ---A- . (.Microsoft Corporation - Windows.Devices.Custom Interface Proxy.) -- C:\Windows\System32\Windows.Devices.Custom.ps.dll [19456]
O44 - LFC:[MD5.518EFEBEE0786097257C462EE2DB79E8] - 20/05/2015 - 19:59:40 ---A- . (.Microsoft Corporation - Autochk Proxy DLL.) -- C:\Windows\System32\acproxy.dll [12288]
O44 - LFC:[MD5.0464030A3293F289612E6C24D173C11C] - 20/05/2015 - 19:59:40 ---A- . (.Microsoft Corporation - Event Viewer Snapin Launcher.) -- C:\Windows\System32\eventvwr.exe [82944]
O44 - LFC:[MD5.07DE29D2F4F4A08B2B15E32C4ABC09D4] - 20/05/2015 - 19:59:40 ---A- . (.Microsoft Corporation - Processor Class Installer.) -- C:\Windows\System32\procinst.dll [10752]
O44 - LFC:[MD5.AE25F20E4A6669CE566E0F56E6632C34] - 20/05/2015 - 19:59:41 ---A- . (.Microsoft Corporation - AppID Certificate Store Verification Task.) -- C:\Windows\System32\appidcertstorecheck.exe [17920]
O44 - LFC:[MD5.3946E1F132212BFADB09C5D7FB223C5A] - 20/05/2015 - 19:59:41 ---A- . (.Microsoft Corporation - Network List Manager Sysprep Module.) -- C:\Windows\System32\nlmsprep.dll [14848]
O44 - LFC:[MD5.6E526D98586932C27F9C7C12F35B1BF2] - 20/05/2015 - 19:59:41 ---A- . (.Microsoft Corporation - USB Consumer IR Driver coinstaller for eHom.) -- C:\Windows\System32\CIRCoInst.dll [10752]
O44 - LFC:[MD5.19F4DF69876DA7E9C4965351560FE6B7] - 20/05/2015 - 19:59:41 ---A- . (.Microsoft Corporation - WPC Filtering Service.) -- C:\Windows\System32\wpcsvc.dll [12288]
O44 - LFC:[MD5.A7306DE1102631E8BAC0D06E86B19C2E] - 20/05/2015 - 19:59:41 ---A- . (.Microsoft Corporation - WinSAT Sysprep Plugin.) -- C:\Windows\System32\spwinsat.dll [14336]
O44 - LFC:[MD5.7A1837927F8EE10DE7B0B4C12F2D9DDF] - 20/05/2015 - 19:59:41 ---A- . (.Microsoft Corporation - Windows Extension library for raschap.) -- C:\Windows\System32\raschapext.dll [12800]
O44 - LFC:[MD5.51D9259F3CC3E91DEABEB9465B10AF40] - 20/05/2015 - 19:59:42 ---A- . (.Microsoft Corporation - Microsoft® Account Dynamic Link Library.) -- C:\Windows\System32\msidcrl40.dll [14336]
O44 - LFC:[MD5.FF01E0764DDF7D7542D8D452DE331567] - 20/05/2015 - 19:59:42 ---A- . (.Microsoft Corporation - Net Sysprep Plugin.) -- C:\Windows\System32\spnet.dll [11264]
O44 - LFC:[MD5.AF4086E980631AF0C357CD6B07E738F3] - 20/05/2015 - 19:59:43 ---A- . (.Microsoft Corporation - GB18030 DBCS-Unicode Conversion DLL.) -- C:\Windows\System32\C_G18030.DLL [224768]
O44 - LFC:[MD5.E68EB513965E8C0BF6610E01C5DB36CD] - 20/05/2015 - 19:59:43 ---A- . (.Microsoft Corporation - Microsoft® Windows(TM) Telephony Sysprep Wo.) -- C:\Windows\System32\TapiSysprep.dll [12800]
O44 - LFC:[MD5.7F777F4DA64328EFF3220C96A10347C4] - 20/05/2015 - 19:59:43 ---A- . (.Microsoft Corporation - Screen Reader.) -- C:\Windows\System32\Narrator.exe [96256]
O44 - LFC:[MD5.B651118FBDD866A403194B51CB711CFC] - 20/05/2015 - 19:59:43 ---A- . (.Microsoft Corporation - Unicode name Dll for UCE.) -- C:\Windows\System32\getuname.dll [9728]
O44 - LFC:[MD5.5830AF67F157A9BE1DB1F3C313FC59D7] - 20/05/2015 - 19:59:43 ---A- . (.Microsoft Corporation - Windows Extension library for rastls.) -- C:\Windows\System32\rastlsext.dll [12288]
O44 - LFC:[MD5.607F178311565D71AF9638A6D19D729C] - 20/05/2015 - 19:59:43 ---A- . (.Microsoft Corporation - Windows Logon User Interface Host.) -- C:\Windows\System32\LogonUI.exe [12288]
O44 - LFC:[MD5.9C7B22494AA128C1C7CD103891C999CA] - 20/05/2015 - 19:59:43 ---A- . (.Microsoft Corporation - Windows Media Player System Preparation DLL.) -- C:\Windows\System32\spwmp.dll [10240]
O44 - LFC:[MD5.B70D25AE45B525FBF318327DA3CAF615] - 20/05/2015 - 19:59:43 ---A- . (.Microsoft Corporation - Windows NT Multiple Provider Notification A.) -- C:\Windows\System32\mpnotify.exe [18432]
O44 - LFC:[MD5.4D54E13DF7598803F1C163F1E4792ABE] - 20/05/2015 - 19:59:43 ---A- . (.Microsoft Corporation - Windows Remote Desktop Services Performance.) -- C:\Windows\System32\perfts.dll [15872]
O44 - LFC:[MD5.2E540516C82815D50BE19C42B33DC7BF] - 20/05/2015 - 19:59:44 ---A- . (.Microsoft Corporation - DDOI Interface Proxy.) -- C:\Windows\System32\DDOIProxy.dll [33792]
O44 - LFC:[MD5.2A4D44837372411478C3A06F6A1DE064] - 20/05/2015 - 19:59:44 ---A- . (.Microsoft Corporation - Kernel Transaction Management Utility.) -- C:\Windows\System32\ktmutil.exe [16896]
O44 - LFC:[MD5.AA87CA7D8B8F0CE554F22C13BA52E2E8] - 20/05/2015 - 19:59:44 ---A- . (.Microsoft Corporation - Language cleanup Sysprep action.) -- C:\Windows\System32\LangCleanupSysprepAction.dll [14848]
O44 - LFC:[MD5.45136B5D2B7FFF6D64ECFAF5D74A1EDE] - 20/05/2015 - 19:59:44 ---A- . (.Microsoft Corporation - MSI Windows Error Reporting.) -- C:\Windows\System32\msiwer.dll [11776]
O44 - LFC:[MD5.42FF4975D032CAE558AE4BB8448F6E5A] - 20/05/2015 - 19:59:44 ---A- . (.Microsoft Corporation - NetBIOS interface driver.) -- C:\Windows\System32\Drivers\netbios.sys [48128]
O44 - LFC:[MD5.C2A9A135522766D90CC15E0623A43EF1] - 20/05/2015 - 19:59:44 ---A- . (.Microsoft Corporation - Proximity WinRT API PAL.) -- C:\Windows\System32\ProximityRtapiPal.dll [13824]
O44 - LFC:[MD5.7E0747E14D521886DA629168BBA22531] - 20/05/2015 - 19:59:44 ---A- . (.Microsoft Corporation - Secure Digital Host Controller Class Instal.) -- C:\Windows\System32\sdhcinst.dll [35328]
O44 - LFC:[MD5.D17A4A6B819C2787C4262C5B5F652627] - 20/05/2015 - 19:59:44 ---A- . (.Microsoft Corporation - Windows NET Device Class Co-Installer for W.) -- C:\Windows\System32\wlaninst.dll [22528]
O44 - LFC:[MD5.877438F2B9D707B697285C0DEF252D12] - 20/05/2015 - 19:59:45 ---A- . (.Microsoft Corporation - Application Compatibility Help Module.) -- C:\Windows\System32\Apphlpdm.dll [34304]
O44 - LFC:[MD5.217F9CD66FB8E375CBFD48F5D01FDA3F] - 20/05/2015 - 19:59:45 ---A- . (.Microsoft Corporation - ISO-2022 Code Page Translation DLL.) -- C:\Windows\System32\C_IS2022.DLL [14848]
O44 - LFC:[MD5.A3F446F1E2B8C6ECE56F608FB32B8DC6] - 20/05/2015 - 19:59:45 ---A- . (.Microsoft Corporation - Registry Console Tool.) -- C:\Windows\System32\reg.exe [73216]
O44 - LFC:[MD5.97FE25D7BEF50046D84FDE5EF6D16245] - 20/05/2015 - 19:59:45 ---A- . (.Microsoft Corporation - Registry Editor Utility.) -- C:\Windows\System32\regedt32.exe [10752]
O44 - LFC:[MD5.DA66E801F6A77E5FD1EFDA4EFAB3660F] - 20/05/2015 - 19:59:45 ---A- . (.Microsoft Corporation - SAM Lock Tool.) -- C:\Windows\System32\syskey.exe [33280]
O44 - LFC:[MD5.61B17B1719DC1E4496EC0596C6DC0143] - 20/05/2015 - 19:59:45 ---A- . (.Microsoft Corporation - Sort Utility.) -- C:\Windows\System32\sort.exe [24064]
O44 - LFC:[MD5.21AEC31831AF0F9AF9B6FB699330A1B0] - 20/05/2015 - 19:59:45 ---A- . (.Microsoft Corporation - Startup scan task DLL.) -- C:\Windows\System32\Startupscan.dll [17408]
O44 - LFC:[MD5.1E21878DCA35097734BA5A04BD16415F] - 20/05/2015 - 19:59:45 ---A- . (.Microsoft Corporation - Time Date Control UI Language Change plugin.) -- C:\Windows\System32\TimeDateMUICallback.dll [11264]
O44 - LFC:[MD5.D04AFE1AA6C2325E1F0D0F107798A36C] - 20/05/2015 - 19:59:45 ---A- . (.Microsoft Corporation - Windows Driver Foundation - User-mode Platf.) -- C:\Windows\System32\WUDFCoinstaller.dll [47616]
O44 - LFC:[MD5.8BEB750554252C984D1DC0F6AF053A33] - 20/05/2015 - 19:59:45 ---A- . (.Microsoft Corporation - iSCSI Extension DLL.) -- C:\Windows\System32\iscsied.dll [11264]
O44 - LFC:[MD5.F5FF5E1B6BB0FAE13F396AEA79EF3079] - 20/05/2015 - 19:59:46 ---A- . (.Microsoft Corporation - BdeSysprep.) -- C:\Windows\System32\BdeSysprep.dll [10752]
O44 - LFC:[MD5.97E1CB438AD6208D2243CF43B6C380E9] - 20/05/2015 - 19:59:46 ---A- . (.Microsoft Corporation - COM+.) -- C:\Windows\System32\mtxex.dll [9216]
O44 - LFC:[MD5.9CEE8395B3EBC0CC33D0FA54DC65CC61] - 20/05/2015 - 19:59:46 ---A- . (.Microsoft Corporation - Clip - copies the data into clipboard.) -- C:\Windows\System32\clip.exe [29696]
O44 - LFC:[MD5.107A98C9FE7EFF7ED1F62CFCD4F1A347] - 20/05/2015 - 19:59:46 ---A- . (.Microsoft Corporation - GDIEXT Client DLL.) -- C:\Windows\System32\msimg32.dll [7680]
O44 - LFC:[MD5.CDEAD1D1D2EFB57AC5D4682A28E2EDA7] - 20/05/2015 - 19:59:46 ---A- . (.Microsoft Corporation - Local Monitor UI DLL.) -- C:\Windows\System32\localui.dll [17920]
O44 - LFC:[MD5.BF97467F3969E386056CD674FEE2ED29] - 20/05/2015 - 19:59:46 ---A- . (.Microsoft Corporation - Microsoft On-Screen Keyboard Support Utilit.) -- C:\Windows\System32\OskSupport.dll [10240]
O44 - LFC:[MD5.B58F8A113667162E2909149BCCBF6C65] - 20/05/2015 - 19:59:46 ---A- . (.Microsoft Corporation - Microsoft Windows Tethering IE Provider DLL.) -- C:\Windows\System32\TetheringIeProvider.dll [11776]
O44 - LFC:[MD5.235D6AE52DC93053D75492949382862D] - 20/05/2015 - 19:59:46 ---A- . (.Microsoft Corporation - Microsoft® Group Policy Update Utility.) -- C:\Windows\System32\gpupdate.exe [18432]
O44 - LFC:[MD5.9C2F99AF4C8B86EF62D7424CC4521375] - 20/05/2015 - 19:59:46 ---A- . (.Microsoft Corporation - TxF Win32 DLL.) -- C:\Windows\System32\txfw32.dll [12288]
O44 - LFC:[MD5.159CD198D3B64240F5B6BB5C164D0DB7] - 20/05/2015 - 19:59:46 ---A- . (.Microsoft Corporation - USB Performance Objects DLL.) -- C:\Windows\System32\usbperf.dll [13824]
O44 - LFC:[MD5.C026C439F06C673B5AD44D2A9ACABDD7] - 20/05/2015 - 19:59:47 ---A- . (.Microsoft Corporation - AutoWorkplace Native Library.) -- C:\Windows\System32\AutoWorkplaceN.dll [9216]
O44 - LFC:[MD5.2D9A442C84F7D61C3B1A47218DFD68BA] - 20/05/2015 - 19:59:47 ---A- . (.Microsoft Corporation - Class-Installer DLL for Smart Cards.) -- C:\Windows\System32\sccls.dll [66048]
O44 - LFC:[MD5.06DF718F1A6437C91FABB590107D93F2] - 20/05/2015 - 19:59:47 ---A- . (.Microsoft Corporation - IP Routing Protocol Priority DLL.) -- C:\Windows\System32\iprtprio.dll [11264]
O44 - LFC:[MD5.38C54F24CC8DC4331B7E662D5B661A53] - 20/05/2015 - 19:59:47 ---A- . (.Microsoft Corporation - Microsoft Component Category Manager Librar.) -- C:\Windows\System32\comcat.dll [9216]
O44 - LFC:[MD5.E8027D01C969FF11FCA53C1D97F84FA0] - 20/05/2015 - 19:59:47 ---A- . (.Microsoft Corporation - Microsoft Text Frame Work Service IME.) -- C:\Windows\System32\msctfime.ime [9728]
O44 - LFC:[MD5.FC03E618A555F750CF8B3619B2DDEEF6] - 20/05/2015 - 19:59:47 ---A- . (.Microsoft Corporation - Netbios Windows Sockets Helper DLL.) -- C:\Windows\System32\wshnetbs.dll [13824]
O44 - LFC:[MD5.6730509BE1EACC85E86064FDF475BF48] - 20/05/2015 - 19:59:47 ---A- . (.Microsoft Corporation - Shell Folder Service.) -- C:\Windows\System32\shfolder.dll [9216]
O44 - LFC:[MD5.32CC3327291D2F9E5DC124E6AE27AA93] - 20/05/2015 - 19:59:47 ---A- . (.Microsoft Corporation - Uninstall Interface.) -- C:\Windows\System32\osuninst.dll [8704]
O44 - LFC:[MD5.DA5544530858E12C52F34F711A9DD23C] - 20/05/2015 - 19:59:47 ---A- . (.Microsoft Corporation - Windows NT System Setup.) -- C:\Windows\System32\syssetup.dll [17920]
O44 - LFC:[MD5.E4B3425316E1B413523551E4CE50CF82] - 20/05/2015 - 19:59:48 ---A- . (.Microsoft Corporation - Event Create - Creates a custom event in an.) -- C:\Windows\System32\eventcreate.exe [39936]
O44 - LFC:[MD5.00FE3FD06EC34B3A70BA782A95606454] - 20/05/2015 - 19:59:48 ---A- . (.Microsoft Corporation - ForFiles - Executes a command on selected f.) -- C:\Windows\System32\forfiles.exe [49152]
O44 - LFC:[MD5.02747F881A6CBD36E52F2381811C1589] - 20/05/2015 - 19:59:48 ---A- . (.Microsoft Corporation - GPTExt.) -- C:\Windows\System32\gptext.dll [23552]
O44 - LFC:[MD5.A6D6F5549C24CDB89D6DB4BD4B64D2BF] - 20/05/2015 - 19:59:48 ---A- . (.Microsoft Corporation - Infrared Class Coinstaller.) -- C:\Windows\System32\irclass.dll [19456]
O44 - LFC:[MD5.9642E924A34E1E445C3104E02B6DEF84] - 20/05/2015 - 19:59:48 ---A- . (.Microsoft Corporation - MUI Callback for Language pack cleanup.) -- C:\Windows\System32\MUILanguageCleanup.dll [14848]
O44 - LFC:[MD5.85403157201F48E19492ACCA7B69BFE2] - 20/05/2015 - 19:59:48 ---A- . (.Microsoft Corporation - MUI Callback for font registry settings.) -- C:\Windows\System32\muifontsetup.dll [17920]
O44 - LFC:[MD5.6A8010817BAA0769D30C00714784004B] - 20/05/2015 - 19:59:48 ---A- . (.Microsoft Corporation - Media class co-installer.) -- C:\Windows\System32\mmcico.dll [14336]
O44 - LFC:[MD5.1BBCF328F7FBB3158E672AAA8516C590] - 20/05/2015 - 19:59:48 ---A- . (.Microsoft Corporation - Microsoft® CAB File Extract Utility.) -- C:\Windows\System32\extrac32.exe [34304]
O44 - LFC:[MD5.605D50790AC14A02169A0A0014A91B32] - 20/05/2015 - 19:59:48 ---A- . (.Microsoft Corporation - Multi-Protocol Router Service Messages DLL.) -- C:\Windows\System32\mprmsg.dll [114688]
O44 - LFC:[MD5.721EF66E7A5A68190F24C72A4D1C6E69] - 20/05/2015 - 19:59:48 ---A- . (.Microsoft Corporation - Net shell helper DLL for winHttp.) -- C:\Windows\System32\whhelper.dll [13824]
O44 - LFC:[MD5.0FC7F5FE29C4F3D1A4C693426B128C25] - 20/05/2015 - 19:59:48 ---A- . (.Microsoft Corporation - System Class Installer Library.) -- C:\Windows\System32\sysclass.dll [155136]
O44 - LFC:[MD5.A41659711F3B9B48AFBA65BCD5C8C4E2] - 20/05/2015 - 19:59:48 ---A- . (.Microsoft Corporation - TCP/IP Ping Command.) -- C:\Windows\System32\PING.EXE [20992]
O44 - LFC:[MD5.8BD41891EA45BA4653B3A3799784DA31] - 20/05/2015 - 19:59:48 ---A- . (.Microsoft Corporation - timeout - pauses command processing.) -- C:\Windows\System32\timeout.exe [30208]
O44 - LFC:[MD5.14F02676427640AE5694A3E7FB739681] - 20/05/2015 - 19:59:49 ---A- . (.Microsoft Corporation - Add Hardware Wizard.) -- C:\Windows\System32\hdwwiz.exe [64512]
O44 - LFC:[MD5.5078D50A9D570C72E95D4CD689F28879] - 20/05/2015 - 19:59:49 ---A- . (.Microsoft Corporation - Offers the user a choice.) -- C:\Windows\System32\choice.exe [33792]
O44 - LFC:[MD5.79218B0E1EDEC26B81C55621A71E89D9] - 20/05/2015 - 19:59:49 ---A- . (.Microsoft Corporation - Remote Desktop Session Host Server Connecti.) -- C:\Windows\System32\rdpcfgex.dll [10752]
O44 - LFC:[MD5.C5A99C678D5A3A71B1FF758D5D732E29] - 20/05/2015 - 19:59:49 ---A- . (.Microsoft Corporation - Sort Version Windows 6.0.) -- C:\Windows\System32\SortWindows6Compat.dll [71168]
O44 - LFC:[MD5.126667322403F8EDBD911EE706506D56] - 20/05/2015 - 19:59:49 ---A- . (.Microsoft Corporation - Where - Lists location of files.) -- C:\Windows\System32\where.exe [39936]
O44 - LFC:[MD5.B1B8991F131A144D9BA496C458F35468] - 20/05/2015 - 19:59:50 ---A- . (.Microsoft Corporation - Microsoft Custom Dictionary Registration To.) -- C:\Windows\System32\hwrreg.exe [184320]
O44 - LFC:[MD5.AD23811EFE4E77E3C8E250775DDC80BE] - 20/05/2015 - 19:59:50 ---A- . (.Microsoft Corporation - SortWindows61 Dll.) -- C:\Windows\System32\SortWindows61.dll [49664]
O44 - LFC:[MD5.EFA270516E196E1AD265171BA43630E6] - 20/05/2015 - 19:59:50 ---A- . (.Microsoft Corporation - Sysprep cleanup dll for CAPI.) -- C:\Windows\System32\capisp.dll [22016]
O44 - LFC:[MD5.3286BDFBE32C205ABE62BC07DE4F7419] - 20/05/2015 - 19:59:50 ---A- . (.Microsoft Corporation - waitfor - wait/send a signal over a network.) -- C:\Windows\System32\waitfor.exe [39424]
O44 - LFC:[MD5.5DD6082DA56FCC36267561CA31BA305C] - 20/05/2015 - 19:59:52 ---A- . (.Microsoft Corporation - Access Control List Editor.) -- C:\Windows\System32\acledit.dll [10240]
O44 - LFC:[MD5.CDF45E11F712B813F4FF24FA70DFA20F] - 20/05/2015 - 19:59:54 ---A- . (.Microsoft Corporation - Column List Box.) -- C:\Windows\System32\clb.dll [17920]
O44 - LFC:[MD5.AFFC70A9960847DF3B7260B4D1FD4570] - 20/05/2015 - 19:59:54 ---A- . (.Microsoft Corporation - Media class installer.) -- C:\Windows\System32\mmci.dll [73216]
O44 - LFC:[MD5.266673840A236731D88D7E7F254E67D6] - 20/05/2015 - 19:59:54 ---A- . (.Microsoft Corporation - Sort Version Server 2003.) -- C:\Windows\System32\SortServer2003Compat.dll [45568]
O44 - LFC:[MD5.5E9C91D729546A562A49E706903622F6] - 20/05/2015 - 19:59:54 ---A- . (.Microsoft Corporation - WinLogon Software SAS Library.) -- C:\Windows\System32\sas.dll [13312]
O44 - LFC:[MD5.27E8D6913C4D9AB524F546C6B7B4CF87] - 20/05/2015 - 19:59:55 ---A- . (.Microsoft Corporation - Internet Print Client DLL.) -- C:\Windows\System32\inetppui.dll [22528]
O44 - LFC:[MD5.437B8B28C6FA094A7849FFA52B325772] - 20/05/2015 - 19:59:55 ---A- . (.Microsoft Corporation - Microsoft Windows Fault Tolerant Heap Diagn.) -- C:\Windows\System32\fthsvc.dll [65024]
O44 - LFC:[MD5.04E3597043DA8AB494CC2D76A4810A22] - 20/05/2015 - 19:59:55 ---A- . (.Microsoft Corporation - SysPrep module for Resetting Data Drive ACL.) -- C:\Windows\System32\DDACLSys.dll [18432]
O44 - LFC:[MD5.4B605DF70C49B6B9D65652879ACAEE32] - 20/05/2015 - 19:59:55 ---A- . (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe [115712]
O44 - LFC:[MD5.7E9C4C2A74B8C779DAD786CA1C1DAF6B] - 20/05/2015 - 19:59:56 ---A- . (.Microsoft Corporation - Active Accessibility Event Hooks Library.) -- C:\Windows\System32\oleacchooks.dll [12288]
O44 - LFC:[MD5.9E5EBDFB2950293759FD5607E2A8BA23] - 20/05/2015 - 19:59:56 ---A- . (.Microsoft Corporation - Eap Third Party Surrogate Host.) -- C:\Windows\System32\Eap3Host.exe [12800]
O44 - LFC:[MD5.C729DEA1888B1B047F51844BA5BD875F] - 20/05/2015 - 19:59:56 ---A- . (.Microsoft Corporation - Query or reset the computer's SPN attribute.) -- C:\Windows\System32\setspn.exe [26624]
O44 - LFC:[MD5.9B8B5487536052919900017EF778A88B] - 20/05/2015 - 19:59:56 ---A- . (.Microsoft Corporation - Windows Font Viewer.) -- C:\Windows\System32\fontview.exe [110080]
O44 - LFC:[MD5.415DD71628795197F7AFC176CBADC74E] - 20/05/2015 - 19:59:57 ---A- . (.Microsoft Corporation - AppID Driver.) -- C:\Windows\System32\Drivers\appid.sys [82944]
O44 - LFC:[MD5.DAAB9E92FE565874FD678806843E449F] - 20/05/2015 - 19:59:57 ---A- . (.Microsoft Corporation - RPC Netshell Helper.) -- C:\Windows\System32\rpcnsh.dll [32256]
O44 - LFC:[MD5.5879F8AF38CC1FF52C4E6DF1385B70AE] - 20/05/2015 - 19:59:57 ---A- . (.Microsoft Corporation - Telephony Control Panel.) -- C:\Windows\System32\telephon.cpl [109056]
O44 - LFC:[MD5.71BFFC184E59B5B761243A3045230D13] - 20/05/2015 - 19:59:57 ---A- . (.Microsoft Corporation - Toshiba Video Codec.) -- C:\Windows\System32\tsbyuv.dll [15872]
O44 - LFC:[MD5.98C01385C6838F0572B3D549F54B875C] - 20/05/2015 - 19:59:57 ---A- . (.Microsoft Corporation - Windows Sockets Helper DLL for PGM.) -- C:\Windows\System32\wshrm.dll [17920]
O44 - LFC:[MD5.725CF081FFF84BE7C95E0958E21338E2] - 20/05/2015 - 19:59:58 ---A- . (.Microsoft Corporation - Certificate Enrollment Control.) -- C:\Windows\System32\CertEnrollCtrl.exe [55296]
O44 - LFC:[MD5.BF379376C124B19A7535CBA8EA179802] - 20/05/2015 - 19:59:58 ---A- . (.Microsoft Corporation - IP Configuration Utility.) -- C:\Windows\System32\ipconfig.exe [34816]
O44 - LFC:[MD5.7D05F608EB53E6DB5EFD36101784E3AE] - 20/05/2015 - 19:59:58 ---A- . (.Microsoft Corporation - WinLogon IPC Client.) -- C:\Windows\System32\wmsgapi.dll [16896]
O44 - LFC:[MD5.DE074ECCF61F37B1C3259AC2209A07EF] - 20/05/2015 - 19:59:58 ---A- . (.Microsoft Corporation - Windows Security Configuration Editor Comma.) -- C:\Windows\System32\SecEdit.exe [39424]
O44 - LFC:[MD5.A84E7D4D88AD047BD3C983472286599E] - 20/05/2015 - 19:59:58 ---A- . (.Microsoft Corporation - system Events Broker Client Library.) -- C:\Windows\System32\SystemEventsBrokerClient.dll [18432]
O44 - LFC:[MD5.6AA84C8E1D8AC44BEE7F0015D6412B41] - 20/05/2015 - 19:59:59 ---A- . (.Microsoft Corporation - Shell Browser UI Library.) -- C:\Windows\System32\browseui.dll [13824]
O44 - LFC:[MD5.08BB02194B3B34D480BA91E7860FA7F6] - 20/05/2015 - 20:00:00 ---A- . (.Microsoft Corporation - Application System Resource Usage Monitor (.) -- C:\Windows\System32\appsruprov.dll [34816]
O44 - LFC:[MD5.5B49CC654ADC1CE20F2756FB61C1E3A4] - 20/05/2015 - 20:00:00 ---A- . (.Microsoft Corporation - BitLocker Access Agent Update Utility.) -- C:\Windows\System32\baaupdate.exe [112128]
O44 - LFC:[MD5.7A6F2FE0D0A4CD4C3FCAE36126AFA98D] - 20/05/2015 - 20:00:00 ---A- . (.Microsoft Corporation - Filter Library.) -- C:\Windows\System32\fltLib.dll [19968]
O44 - LFC:[MD5.CF3EBF1EA45205C51E270226BDBFBB44] - 20/05/2015 - 20:00:00 ---A- . (.Microsoft Corporation - HTTP netsh DLL.) -- C:\Windows\System32\nshhttp.dll [38400]
O44 - LFC:[MD5.269A81ED694A82B2238BE3980E75D5FF] - 20/05/2015 - 20:00:00 ---A- . (.Microsoft Corporation - SENS Connectivity API DLL.) -- C:\Windows\System32\SensApi.dll [13824]
O44 - LFC:[MD5.0CF8DB862ECF7B8E362390C1EC08A335] - 20/05/2015 - 20:00:00 ---A- . (.Microsoft Corporation - Serial Port Property Pages.) -- C:\Windows\System32\serialui.dll [17920]
O44 - LFC:[MD5.D4DCE03870314D3354F3501F9DDD4123] - 20/05/2015 - 20:00:00 ---A- . (.Microsoft Corporation - Virtual NDIS6.3 Miniport.) -- C:\Windows\System32\Drivers\netvsc63.sys [87040]
O44 - LFC:[MD5.875A3B04369EFBE2FEA37A4A546C767F] - 20/05/2015 - 20:00:01 ---A- . (.Microsoft Corporation - Bluetooth Provider Proxy Dll.) -- C:\Windows\System32\fdBthProxy.dll [13824]
O44 - LFC:[MD5.4BD12408EB79073F0A7054EC30F8E0DB] - 20/05/2015 - 20:00:01 ---A- . (.Microsoft Corporation - Network DDE Share Management APIs.) -- C:\Windows\System32\nddeapi.dll [10752]
O44 - LFC:[MD5.561A678EFA21BF3EDBEC07C057BF0302] - 20/05/2015 - 20:00:01 ---A- . (.Microsoft Corporation - Support exe for Internet Printing.) -- C:\Windows\System32\wpnpinst.exe [21504]
O44 - LFC:[MD5.526664F025A2072F316D1E3B7FCBE532] - 20/05/2015 - 20:00:01 ---A- . (.Microsoft Corporation - Windows Socket 32-Bit DLL.) -- C:\Windows\System32\wsock32.dll [17408]
O44 - LFC:[MD5.B647D6F0A7647484D8D78F0B0C520546] - 20/05/2015 - 20:00:02 ---A- . (.Microsoft Corporation - Background Intelligent Transfer Service 2.0.) -- C:\Windows\System32\bitsprx3.dll [14336]
O44 - LFC:[MD5.D39675189C5972A42629A3A82A6DA7E9] - 20/05/2015 - 20:00:02 ---A- . (.Microsoft Corporation - Device driver software installation.) -- C:\Windows\System32\ndadmin.exe [74752]
O44 - LFC:[MD5.DE22103C6944EA06502E545AC83963B7] - 20/05/2015 - 20:00:02 ---A- . (.Microsoft Corporation - Microsoft DirectX Graphics WDI Handler.) -- C:\Windows\System32\dxgwdi.dll [17920]
O44 - LFC:[MD5.673BE41017F8808B62DC6EBE8A01BACA] - 20/05/2015 - 20:00:02 ---A- . (.Microsoft Corporation - Nls Downlevel DLL.) -- C:\Windows\System32\Nlsdl.dll [33792]
O44 - LFC:[MD5.C0CC9E1A8AA53A2E7BBEA3BEB0ED5281] - 20/05/2015 - 20:00:02 ---A- . (.Microsoft Corporation - Recover Files Utility.) -- C:\Windows\System32\recover.exe [13312]
O44 - LFC:[MD5.377CC9DAE7227D875154579C7BAA6625] - 20/05/2015 - 20:00:02 ---A- . (.Microsoft Corporation - Windows Memory Diagnostics Tool.) -- C:\Windows\System32\MdSched.exe [91648]
O44 - LFC:[MD5.9C34D9E76EB2C0235F09D7DDD07E3387] - 20/05/2015 - 20:00:02 ---A- . (.Microsoft Corporation - Wrapper Dll for Richedit 1.0.) -- C:\Windows\System32\riched32.dll [9728]
O44 - LFC:[MD5.7C9EE0CD620492A7D6C1886D72728B2C] - 20/05/2015 - 20:00:02 ---A- . (.Microsoft Corporation - winrssrv.) -- C:\Windows\System32\winrssrv.dll [14336]
O44 - LFC:[MD5.07F644EA076CBF629D029E62ABD1A2EA] - 20/05/2015 - 20:00:03 ---A- . (.Microsoft Corporation - Microsoft® Windows(TM) Telephony Performanc.) -- C:\Windows\System32\tapiperf.dll [11776]
O44 - LFC:[MD5.9E5764BD04261D836A6AF3A32FBD6CCF] - 20/05/2015 - 20:00:03 ---A- . (.Microsoft Corporation - Session0 Viewer Window Hook DLL.) -- C:\Windows\System32\WlS0WndH.dll [11776]
O44 - LFC:[MD5.1860B87CCBAE7D0337F8AB15DDBBEE7E] - 20/05/2015 - 20:00:03 ---A- . (.Microsoft Corporation - XNA Common Controller.) -- C:\Windows\System32\XInput9_1_0.dll [10240]
O44 - LFC:[MD5.D3974592572C81D7DAB11FBAD00F7873] - 20/05/2015 - 20:00:04 ---A- . (.Microsoft Corporation - File Compress Utility.) -- C:\Windows\System32\compact.exe [20480]
O44 - LFC:[MD5.2DE0C63DC47ECF87897799DC8E5C68FB] - 20/05/2015 - 20:00:04 ---A- . (.Microsoft Corporation - NetBT Unattend Generic Command.) -- C:\Windows\System32\netbtugc.exe [25088]
O44 - LFC:[MD5.4701FF3527EA3CD8934B52C9D94EDA1E] - 20/05/2015 - 20:00:04 ---A- . (.Microsoft Corporation - Remote Desktop Generic USB Driver Coinstall.) -- C:\Windows\System32\TsUsbGDCoInstaller.dll [45056]
O44 - LFC:[MD5.19B9C1D1476A757BB2AA7FA17E7993A5] - 20/05/2015 - 20:00:05 ---A- . (.Microsoft Corporation - PNPX Association Dll.) -- C:\Windows\System32\PNPXAssocPrx.dll [57344]
O44 - LFC:[MD5.601679C218E707954A86A693DB9A5326] - 20/05/2015 - 20:00:05 ---A- . (.Microsoft Corporation - UserAccountControlSettings.) -- C:\Windows\System32\UserAccountControlSettings.exe [220160]
O44 - LFC:[MD5.99C5BCB570304D3BB4360DC58C02363A] - 20/05/2015 - 20:00:05 ---A- . (.Microsoft Corporation - Windows Security Center ISV Proxy Stub.) -- C:\Windows\System32\wscproxystub.dll [14848]
O44 - LFC:[MD5.430CC031D2B393A9A200249BA9C5BE6B] - 20/05/2015 - 20:00:05 ---A- . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\Windows\System32\wshirda.dll [14336]
O44 - LFC:[MD5.271A1F913F57A7A62F671A0063309B45] - 20/05/2015 - 20:00:06 ---A- . (.Microsoft Corporation - 32-bit to 16-bit Metafile Conversion DLL.) -- C:\Windows\System32\mf3216.dll [57344]
O44 - LFC:[MD5.4DC1D76E049F0FDFDB23339901722915] - 20/05/2015 - 20:00:06 ---A- . (.Microsoft Corporation - Data Protection API.) -- C:\Windows\System32\dpapi.dll [15360]
O44 - LFC:[MD5.E395BE02F80A79A6CF973BA38DBB8135] - 20/05/2015 - 20:00:06 ---A- . (.Microsoft Corporation - Microsoft\Spot Verifier.) -- C:\Windows\System32\svsvc.dll [13312]
O44 - LFC:[MD5.92E0CB20CF7D1165A91F10DF20B9B251] - 20/05/2015 - 20:00:06 ---A- . (.Microsoft Corporation - Windows Media Logagent Proxy.) -- C:\Windows\System32\LAPRXY.DLL [13312]
O44 - LFC:[MD5.3C447F4447185CDE3441E9ABC156475A] - 20/05/2015 - 20:00:07 ---A- . (.Microsoft Corporation - Performance Counters.) -- C:\Windows\System32\perfctrs.dll [46080]
O44 - LFC:[MD5.A3BC66518D3D0AF83560035AB925DC3A] - 20/05/2015 - 20:00:07 ---A- . (.Microsoft Corporation - Windows Media CodecDSP Proxy Stub Dll.) -- C:\Windows\System32\wmcodecdspps.dll [13312]
O44 - LFC:[MD5.510CC0172A99C70601E68C88BBBBCB4E] - 20/05/2015 - 20:00:08 ---A- . (.Microsoft Corporation - DHCP Client Monitor Dll.) -- C:\Windows\System32\dhcpcmonitor.dll [14336]
O44 - LFC:[MD5.74C87BC96C447BB9A76C71769F8024C5] - 20/05/2015 - 20:00:08 ---A- . (.Microsoft Corporation - Intel Indeo(R) Video YUV Codec.) -- C:\Windows\System32\iyuv_32.dll [52736]
O44 - LFC:[MD5.AAD2C2B3F7C534F501C9D0874A02338C] - 20/05/2015 - 20:00:08 ---A- . (.Microsoft Corporation - Microsoft® FmIfs Proxy Library.) -- C:\Windows\System32\cfmifsproxy.dll [14848]
O44 - LFC:[MD5.EC95C22F5FE67A90B5BF5169612812F4] - 20/05/2015 - 20:00:08 ---A- . (.Microsoft Corporation - Program Compatibility Assistant User Interf.) -- C:\Windows\System32\pcaui.exe [19456]
O44 - LFC:[MD5.3C84DCCE5B322F745A75CA8BA3A0F6B3] - 20/05/2015 - 20:00:08 ---A- . (.Microsoft Corporation - Storage Management Provider (SMP) host serv.) -- C:\Windows\System32\smphost.dll [13312]
O44 - LFC:[MD5.C62521E768AE51233ADAC0AEC558C2BE] - 20/05/2015 - 20:00:08 ---A- . (.Microsoft Corporation - Task Scheduler Proxy.) -- C:\Windows\System32\TSChannel.dll [15872]
O44 - LFC:[MD5.2456C3CE7524564C80ACEDA8D8935F8B] - 20/05/2015 - 20:00:08 ---A- . (.Microsoft Corporation - WinInit Utility Extension DLL.) -- C:\Windows\System32\wininitext.dll [22528]
O44 - LFC:[MD5.5F66DCD1D7AF9523239804CEDF8D06EA] - 20/05/2015 - 20:00:09 ---A- . (.Microsoft Corporation - Background Intelligent Transfer Service 2.5.) -- C:\Windows\System32\bitsprx4.dll [13824]
O44 - LFC:[MD5.2295E434D34B402837D0F009340B4B4F] - 20/05/2015 - 20:00:09 ---A- . (.Microsoft Corporation - Network Connections Control-Panel Stub.) -- C:\Windows\System32\ncpa.cpl [102400]
O44 - LFC:[MD5.375548B82629F9630F3F2BD86EFAEA8A] - 20/05/2015 - 20:00:11 ---A- . (.Microsoft Corporation - Background Intelligent Transfer Service 5.0.) -- C:\Windows\System32\bitsprx7.dll [15360]
O44 - LFC:[MD5.A07518C439BD2AB6238B39D1367C9FD7] - 20/05/2015 - 20:00:11 ---A- . (.Microsoft Corporation - DS Authorization for Services.) -- C:\Windows\System32\dsauth.dll [37888]
O44 - LFC:[MD5.ADCAA1A801398178EBFE38447D5A24E0] - 20/05/2015 - 20:00:11 ---A- . (.Microsoft Corporation - Digitizer to Monitor Mapping Tool.) -- C:\Windows\System32\MultiDigiMon.exe [53248]
O44 - LFC:[MD5.08A49D52123188E146F24DA67ABCE2A6] - 20/05/2015 - 20:00:11 ---A- . (.Microsoft Corporation - Disk Copy Utility.) -- C:\Windows\System32\diskcopy.com [13312]
O44 - LFC:[MD5.12B1859A18714E137AC6FA78E291D1D5] - 20/05/2015 - 20:00:11 ---A- . (.Microsoft Corporation - Microsoft Windows Resource Exhaustion Resol.) -- C:\Windows\System32\radarrs.dll [68608]
O44 - LFC:[MD5.68F20411E1239B5FED92367007EF0E2C] - 20/05/2015 - 20:00:13 ---A- . (.Microsoft Corporation - Background Intelligent Transfer Service Pro.) -- C:\Windows\System32\bitsprx2.dll [14336]
O44 - LFC:[MD5.FEEC5958876E5D14BC4A3B9CC8CE8F1B] - 20/05/2015 - 20:00:13 ---A- . (.Microsoft Corporation - DNS extension DLL.) -- C:\Windows\System32\dnsext.dll [13824]
O44 - LFC:[MD5.7280EADB18D45F7066062A1388CBFF4B] - 20/05/2015 - 20:00:13 ---A- . (.Microsoft Corporation - Remote Access Dialer.) -- C:\Windows\System32\rasautou.exe [18944]
O44 - LFC:[MD5.7B11ACA8BF3B44F0B4E49319D346F813] - 20/05/2015 - 20:00:14 ---A- . (.Microsoft Corporation - AD harvest sites and subnets API.) -- C:\Windows\System32\adhapi.dll [23040]
O44 - LFC:[MD5.EEB17A67E5E0070C8D3292E7CF634677] - 20/05/2015 - 20:00:15 ---A- . (.Microsoft Corporation - VM Application Health Monitor proxy dll.) -- C:\Windows\System32\VmApplicationHealthMonitorProxy.dll [13312]
O44 - LFC:[MD5.F4D753649E12A8F4BBE4A1C649DD7103] - 20/05/2015 - 20:00:16 ---A- . (.Microsoft Corporation - Device Pairing Proxy Dll.) -- C:\Windows\System32\DevicePairingProxy.dll [24576]
O44 - LFC:[MD5.0C5CAE850203A6C51541F132F23EACCC] - 20/05/2015 - 20:00:16 ---A- . (.Microsoft Corporation - File History Service Control Library.) -- C:\Windows\System32\fhsvcctl.dll [20992]
O44 - LFC:[MD5.64101E00F84F295BBABA1953525E7C3D] - 20/05/2015 - 20:00:16 ---A- . (.Microsoft Corporation - Proxystub for sync host.) -- C:\Windows\System32\SyncHostps.dll [14336]
O44 - LFC:[MD5.AADC9A8194CDEC4908A8DFD82FD75D9F] - 20/05/2015 - 20:00:16 ---A- . (.Microsoft Corporation - Windows Memory Diagnostic.) -- C:\Windows\System32\MdRes.exe [86016]
O44 - LFC:[MD5.B22309C2A40807962EB63C0386C2ADB8] - 20/05/2015 - 20:00:16 ---A- . (.Microsoft Corporation - wsmplpxy.) -- C:\Windows\System32\wsmplpxy.dll [15872]
O44 - LFC:[MD5.5763667A3BA160B6E8FD3E2412A32F90] - 20/05/2015 - 20:00:17 ---A- . (.Microsoft Corporation - Microsoft Direct3D OS Thunk Layer.) -- C:\Windows\System32\d3d8thk.dll [13824]
O44 - LFC:[MD5.4D7DB9C2DCED9C634B8C27B87926F0FC] - 20/05/2015 - 20:00:18 ---A- . (.Microsoft Corporation - AppContainer Network Isolation Diagnostic T.) -- C:\Windows\System32\CheckNetIsolation.exe [28160]
O44 - LFC:[MD5.1F190BF6FFA45A6722EF24B2B999E909] - 20/05/2015 - 20:00:18 ---A- . (.Microsoft Corporation - Microsoft Network Connectivity Assistant AP.) -- C:\Windows\System32\NcaApi.dll [25088]
O44 - LFC:[MD5.08A38F6B46F08F0DF57E0F6BAFF71430] - 20/05/2015 - 20:00:18 ---A- . (.Microsoft Corporation - OPK Sysprep Plugin.) -- C:\Windows\System32\spopk.dll [20480]
O44 - LFC:[MD5.8DCD54AC2A61430159CD59D0C198B8D5] - 20/05/2015 - 20:00:19 ---A- . (.Microsoft Corporation - Corrupted File Recovery Diagnostic Module.) -- C:\Windows\System32\cofiredm.dll [32256]
O44 - LFC:[MD5.07E048FDABBC13419F9EF1B548F90289] - 20/05/2015 - 20:00:19 ---A- . (.Microsoft Corporation - Power Troubleshooter.) -- C:\Windows\System32\pots.dll [31744]
O44 - LFC:[MD5.F5998AAD29CE5028045F49B521F59427] - 20/05/2015 - 20:00:19 ---A- . (.Microsoft Corporation - RemoveDeviceElevated Proxy Dll.) -- C:\Windows\System32\RemoveDeviceElevated.dll [13824]
O44 - LFC:[MD5.84A7CBB781FD1D02E8F1CC5E428BF321] - 20/05/2015 - 20:00:19 ---A- . (.Microsoft Corporation - TCP/IP NetBios Information.) -- C:\Windows\System32\nbtstat.exe [20480]
O44 - LFC:[MD5.D9BD70E07C06B932880E771C906271CD] - 20/05/2015 - 20:00:19 ---A- . (.Microsoft Corporation - User Idle Monitor.) -- C:\Windows\System32\msidle.dll [11264]
O44 - LFC:[MD5.3FF6556704FF0823532BDFD2DD74AB47] - 20/05/2015 - 20:00:20 ---A- . (.Microsoft Corporation - CoInstaller: NET.) -- C:\Windows\System32\nci.dll [26624]
O44 - LFC:[MD5.655FF7582CA25825D8D3282C159273DC] - 20/05/2015 - 20:00:20 ---A- . (.Microsoft Corporation - Name Resolution Proxy (NRP) RPC interface.) -- C:\Windows\System32\nrpsrv.dll [16896]
O44 - LFC:[MD5.70717A5421E7756874E3994D14B6FBB0] - 20/05/2015 - 20:00:20 ---A- . (.Microsoft Corporation - winrs.) -- C:\Windows\System32\winrs.exe [47616]
O44 - LFC:[MD5.C91D7A9A547CF426D2A28A7ADF8C2172] - 20/05/2015 - 20:00:21 ---A- . (.Microsoft Corporation - Change CodePage Utility.) -- C:\Windows\System32\chcp.com [13824]
O44 - LFC:[MD5.CFDE553A358ADA7F73A48421BD2BDBF4] - 20/05/2015 - 20:00:21 ---A- . (.Microsoft Corporation - Eject Device.) -- C:\Windows\System32\DeviceEject.exe [25600]
O44 - LFC:[MD5.A867F0F978EE64C87FADC3B100869EE4] - 20/05/2015 - 20:00:21 ---A- . (.Microsoft Corporation - Interactive services detection.) -- C:\Windows\System32\UI0Detect.exe [41984]
O44 - LFC:[MD5.734FD2739115803079187DA1B29F06A3] - 20/05/2015 - 20:00:21 ---A- . (.Microsoft Corporation - Windows NET Device Class Co-Installer for W.) -- C:\Windows\System32\wwaninst.dll [20992]
O44 - LFC:[MD5.900A8401BA28C02790BC6C5132192BC2] - 20/05/2015 - 20:00:22 ---A- . (.Microsoft Corporation - Microsoft SNMP Manager API (uses WinSNMP).) -- C:\Windows\System32\mgmtapi.dll [22528]
O44 - LFC:[MD5.1E66AE4CBB934C7EDF1CC4FB3E1EB084] - 20/05/2015 - 20:00:22 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\System32\icacls.exe [36864]
O44 - LFC:[MD5.29E1081C033B6FEC192639C9787D95A0] - 20/05/2015 - 20:00:22 ---A- . (.Microsoft Corporation - Winsock Net shell helper DLL for winsock.) -- C:\Windows\System32\wshelper.dll [20480]
O44 - LFC:[MD5.7AD19764FD892418A8AE69A0D05130EE] - 20/05/2015 - 20:00:23 ---A- . (.Microsoft Corporation - Microsoft UYVY Video Decompressor.) -- C:\Windows\System32\msyuv.dll [26624]
O44 - LFC:[MD5.7F5BF311834A2EB374CA820738DF45DF] - 20/05/2015 - 20:00:23 ---A- . (.Microsoft Corporation - Network List Manager Public Proxy.) -- C:\Windows\System32\nlmproxy.dll [30208]
O44 - LFC:[MD5.B4804CA5C860C8210FB894D882E7D33E] - 20/05/2015 - 20:00:23 ---A- . (.Microsoft Corporation - Takes ownership of a file.) -- C:\Windows\System32\takeown.exe [61440]
O44 - LFC:[MD5.29F54432DE5D4EA2E562C0B3C1206EA0] - 20/05/2015 - 20:00:23 ---A- . (.Microsoft Corporation - Windows Overlay File System Filter user mod.) -- C:\Windows\System32\WofUtil.dll [18432]
O44 - LFC:[MD5.53BC366750428053AF6BCE174BE021A6] - 20/05/2015 - 20:00:24 ---A- . (.Microsoft Corporation - Digitizer Calibration Tool.) -- C:\Windows\System32\tabcal.exe [82944]
O44 - LFC:[MD5.E9FD4A6792EEE69E19B31CF6EF836151] - 20/05/2015 - 20:00:24 ---A- . (.Microsoft Corporation - Microsoft Monitor Class Installer.) -- C:\Windows\System32\montr_ci.dll [21504]
O44 - LFC:[MD5.F2B71E641493E7D6C5388F1D8B91FC75] - 20/05/2015 - 20:00:24 ---A- . (.Microsoft Corporation - Microsoft® Drive Optimizer Proxy Library.) -- C:\Windows\System32\defragproxy.dll [20992]
O44 - LFC:[MD5.16CEFFB99DE54807E1F66190E0E06D51] - 20/05/2015 - 20:00:24 ---A- . (.Microsoft Corporation - RDP Session Agent Proxy Stub.) -- C:\Windows\System32\RdpSaPs.dll [14848]
O44 - LFC:[MD5.6E0D360CEF71DBB879D982F53E3AF6F4] - 20/05/2015 - 20:00:24 ---A- . (.Microsoft Corporation - Web Authentication Host Proxy.) -- C:\Windows\System32\AuthHostProxy.dll [19456]
O44 - LFC:[MD5.E3523D8044C44940382A5CAF9BC12147] - 20/05/2015 - 20:00:25 ---A- . (.Microsoft Corporation - Background Intelligent Transfer Service 4.0.) -- C:\Windows\System32\bitsprx6.dll [14848]
O44 - LFC:[MD5.E2FC257CD338FB62D5F2444AE55AF728] - 20/05/2015 - 20:00:25 ---A- . (.Microsoft Corporation - DAV Helper DLL.) -- C:\Windows\System32\davhlpr.dll [25600]
O44 - LFC:[MD5.1FBBFD446ABA011C16B37641B275426E] - 20/05/2015 - 20:00:25 ---A- . (.Microsoft Corporation - Device driver software installation.) -- C:\Windows\System32\newdev.exe [76288]
O44 - LFC:[MD5.FC6C32F14C18C340092B5DDAA947FAED] - 20/05/2015 - 20:00:25 ---A- . (.Microsoft Corporation - Windows Network Service Performance Objects.) -- C:\Windows\System32\perfnet.dll [25088]
O44 - LFC:[MD5.E4B5828D71051B5EA3071E230AC9E4D2] - 20/05/2015 - 20:00:25 ---A- . (.Microsoft Corporation - nslookup.) -- C:\Windows\System32\nslookup.exe [86016]
O44 - LFC:[MD5.723755CB0045BA754BCBC983B1CC87BE] - 20/05/2015 - 20:00:26 ---A- . (.Microsoft Corporation - BitLocker Drive Encryption: Drive Preparati.) -- C:\Windows\System32\BdeHdCfg.exe [130560]
O44 - LFC:[MD5.53DB12E7BDF705E6BF72E3D0A4D05B7E] - 20/05/2015 - 20:00:26 ---A- . (.Microsoft Corporation - Computer Chooser Dialog.) -- C:\Windows\System32\tpmcompc.dll [43520]
O44 - LFC:[MD5.0710D7C87485460C39F6057E7EB82EE4] - 20/05/2015 - 20:00:26 ---A- . (.Microsoft Corporation - Network List Manager Proxy.) -- C:\Windows\System32\npmproxy.dll [37888]
O44 - LFC:[MD5.AC30242DED58BE42A8FA6CDB45C94072] - 20/05/2015 - 20:00:26 ---A- . (.Microsoft Corporation - Service Reporting API.) -- C:\Windows\System32\osbaseln.dll [26112]
O44 - LFC:[MD5.10CCDCF44F491EE3F4F1F191E7260847] - 20/05/2015 - 20:00:26 ---A- . (.Microsoft Corporation - Windows System Process Performance Objects.) -- C:\Windows\System32\perfproc.dll [41472]
O44 - LFC:[MD5.637FEA8C329140F22FDCD9F32B326D7A] - 20/05/2015 - 20:00:27 ---A- . (.Microsoft Corporation - Disk Management DCOM Interface Stub.) -- C:\Windows\System32\dmintf.dll [62464]
O44 - LFC:[MD5.48ABDE9DEC9E868B0283F418D3D03461] - 20/05/2015 - 20:00:27 ---A- . (.Microsoft Corporation - NetBIOS Interface Library.) -- C:\Windows\System32\netbios.dll [17920]
O44 - LFC:[MD5.F901AE1AFC8876252024C6971E2F7064] - 20/05/2015 - 20:00:27 ---A- . (.Microsoft Corporation - Network Diagnostic Engine Proxy/Stub.) -- C:\Windows\System32\ndproxystub.dll [22528]
O44 - LFC:[MD5.062DDCA8B2CC2B9EF0A4E27FAA0CCD32] - 20/05/2015 - 20:00:27 ---A- . (.Microsoft Corporation - Setx - Sets environment variables.) -- C:\Windows\System32\setx.exe [54784]
O44 - LFC:[MD5.387CA7E60013F085E17DA7C7C77CFA8B] - 20/05/2015 - 20:00:27 ---A- . (.Microsoft Corporation - UPnP Device Host Container.) -- C:\Windows\System32\upnpcont.exe [24576]
O44 - LFC:[MD5.504202E90E3D7E444A83289AFDDA6E8C] - 20/05/2015 - 20:00:27 ---A- . (.Microsoft Corporation - cmd.exe Extension DLL.) -- C:\Windows\System32\cmdext.dll [12800]
O44 - LFC:[MD5.F290346254D803B6A9D59F4DF95F8F95] - 20/05/2015 - 20:00:28 ---A- . (.Microsoft Corporation - Keep alive provider API.) -- C:\Windows\System32\keepaliveprovider.dll [15360]
O44 - LFC:[MD5.54DCF2D16B1231CC020A52408BC94013] - 20/05/2015 - 20:00:28 ---A- . (.Microsoft Corporation - Microsoft Virtual Smart Card Manager Proxy/.) -- C:\Windows\System32\VscMgrPS.dll [18432]
O44 - LFC:[MD5.C1632F66AF50121552FBC051572A6EA4] - 20/05/2015 - 20:00:28 ---A- . (.Microsoft Corporation - Microsoft® Block Level Backup proxy/stub.) -- C:\Windows\System32\blb_ps.dll [30208]
O44 - LFC:[MD5.A963FCA77A716166E2E95E40E092B0F9] - 20/05/2015 - 20:00:28 ---A- . (.Microsoft Corporation - PlugPlay Troubleshooter.) -- C:\Windows\System32\pnpts.dll [14336]
O44 - LFC:[MD5.42836578879671B57C0F3D5BBE5CC9AE] - 20/05/2015 - 20:00:28 ---A- . (.Microsoft Corporation - Windows.Devices.Background Interface Proxy.) -- C:\Windows\System32\Windows.Devices.Background.ps.dll [17408]
O44 - LFC:[MD5.7D22E2A946234C776A6E61201322E3CA] - 20/05/2015 - 20:00:29 ---A- . (.Microsoft Corporation - BitLocker Certificates Library.) -- C:\Windows\System32\fvecerts.dll [25600]
O44 - LFC:[MD5.3F674D941D9C65FB4702B1A737C92688] - 20/05/2015 - 20:00:29 ---A- . (.Microsoft Corporation - Program Compatibility Assistant Client Modu.) -- C:\Windows\System32\pcacli.dll [25088]
O44 - LFC:[MD5.66295F1AA15E326A530514C72E83A46E] - 20/05/2015 - 20:00:29 ---A- . (.Microsoft Corporation - Program Compatibility Troubleshooter Invoke.) -- C:\Windows\System32\pcwrun.exe [15360]
O44 - LFC:[MD5.5FD22B915C232378E567160D641CC9F2] - 20/05/2015 - 20:00:29 ---A- . (.Microsoft Corporation - Schedule service command line interface.) -- C:\Windows\System32\at.exe [29184]
O44 - LFC:[MD5.EFAEFCEF213DF8E9E7AA529CD90D9478] - 20/05/2015 - 20:00:30 ---A- . (.Microsoft Corporation - Default Device Manager.) -- C:\Windows\System32\DefaultDeviceManager.dll [11264]
O44 - LFC:[MD5.042AE3B5D7DDD4537EA37D29A815A30B] - 20/05/2015 - 20:00:30 ---A- . (.Microsoft Corporation - Disk Label Utility.) -- C:\Windows\System32\label.exe [16384]
O44 - LFC:[MD5.78972233BF0AE51BDED1CCFBA1EE29A8] - 20/05/2015 - 20:00:30 ---A- . (.Microsoft Corporation - Infrared Monitor.) -- C:\Windows\System32\irmon.dll [24576]
O44 - LFC:[MD5.6C903068A12FE3B31DBDE57782728119] - 20/05/2015 - 20:00:30 ---A- . (.Microsoft Corporation - Proxy Manager Provider RPC interface.) -- C:\Windows\System32\httpprxp.dll [18944]
O44 - LFC:[MD5.A758B9E1E91D3BD57228950602D2FF74] - 20/05/2015 - 20:00:30 ---A- . (.Microsoft Corporation - Tool for managing the Kerberos ticket cache.) -- C:\Windows\System32\klist.exe [35328]
O44 - LFC:[MD5.7778BE28F1E1BECCE229CF63183F0BBA] - 20/05/2015 - 20:00:30 ---A- . (.Microsoft Corporation - Windows Journal Port Monitor DLL.) -- C:\Windows\System32\jnwmon.dll [26112]
O44 - LFC:[MD5.E5911A9C6E34C6E0DE13E0BD4364CE5F] - 20/05/2015 - 20:00:31 ---A- . (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll [22528]
O44 - LFC:[MD5.EFCD1B250FCF76563CA2DB15CDF9A9B6] - 20/05/2015 - 20:00:31 ---A- . (.Microsoft Corporation - Extension CLSID Verification Host.) -- C:\Windows\System32\verclsid.exe [13312]
O44 - LFC:[MD5.D1CE7731BB116E9690A754EE03304332] - 20/05/2015 - 20:00:31 ---A- . (.Microsoft Corporation - Single-Instance Store Backup Support Functi.) -- C:\Windows\System32\sisbkup.dll [24064]
O44 - LFC:[MD5.9BD18AA35AF15B17DED2E74F89C9EB28] - 20/05/2015 - 20:00:31 ---A- . (.Microsoft Corporation - WorkspaceRuntime ProxyStub DLL.) -- C:\Windows\System32\wksprtPS.dll [18944]
O44 - LFC:[MD5.0D956A586A9EF46EC3030EE91949882A] - 20/05/2015 - 20:00:32 ---A- . (.Microsoft Corporation - Task Scheduler Interfaces Proxy.) -- C:\Windows\System32\TaskSchdPS.dll [62464]
O44 - LFC:[MD5.B021ED3CF7518BE1145ABB6392919972] - 20/05/2015 - 20:00:33 ---A- . (.Microsoft Corporation - TCP/IP PathPing Command.) -- C:\Windows\System32\PATHPING.EXE [18432]
O44 - LFC:[MD5.1954A62E535B7C8E6D254420ED4C9DDD] - 20/05/2015 - 20:00:33 ---A- . (.Microsoft Corporation - Unimodem Tranform Module.) -- C:\Windows\System32\umdmxfrm.dll [21504]
O44 - LFC:[MD5.940101268E177B0CAE9C79F241CB5D25] - 20/05/2015 - 20:00:33 ---A- . (.Microsoft Corporation - Windows Firewall Remote APIs Server.) -- C:\Windows\System32\FwRemoteSvr.dll [92160]
O44 - LFC:[MD5.ACC149B05735B392E26C6AC58A54EF63] - 20/05/2015 - 20:00:34 ---A- . (.Microsoft Corporation - Extensible Storage Engine Performance Monit.) -- C:\Windows\System32\esentprf.dll [65536]
O44 - LFC:[MD5.A41C98124F9C226E76D7E7C326C04474] - 20/05/2015 - 20:00:34 ---A- . (.Microsoft Corporation - Microsoft RLE Compressor.) -- C:\Windows\System32\msrle32.dll [16896]
O44 - LFC:[MD5.8086ED517C61ECF98843047449B9A7C2] - 20/05/2015 - 20:00:34 ---A- . (.Microsoft Corporation - Microsoft Remote Desktop Session Host Serve.) -- C:\Windows\System32\drprov.dll [27648]
O44 - LFC:[MD5.AFE68E6B6C96635893FA693F7772C491] - 20/05/2015 - 20:00:34 ---A- . (.Microsoft Corporation - Windows Disk Performance Objects DLL.) -- C:\Windows\System32\perfdisk.dll [39424]
O44 - LFC:[MD5.14A31066234B04914BCE47F0A9EFF7A1] - 20/05/2015 - 20:00:34 ---A- . (.Microsoft Corporation - Windows USB Driver User Library.) -- C:\Windows\System32\winusb.dll [25088]
O44 - LFC:[MD5.46BB31DFD046D8C881EC878836972276] - 20/05/2015 - 20:00:36 ---A- . (.Microsoft Corporation - Microsoft Color Matching System User Interf.) -- C:\Windows\System32\icmui.dll [26624]
O44 - LFC:[MD5.1368D363230AF9C11724F21AC8E5E483] - 20/05/2015 - 20:00:38 ---A- . (.Microsoft Corporation - Remote Access AutoDial Helper.) -- C:\Windows\System32\rasadhlp.dll [17408]
O44 - LFC:[MD5.0954D5FA83B8DB9106A1B88856354590] - 20/05/2015 - 20:00:39 ---A- . (.Microsoft Corporation - Named Pipes Net DLL for SQL Clients.) -- C:\Windows\System32\dbnmpntw.dll [23040]
O44 - LFC:[MD5.702D9B0C494D91FA4E5C2078294A99F3] - 20/05/2015 - 20:00:39 ---A- . (.Microsoft Corporation - Subst Utility.) -- C:\Windows\System32\subst.exe [15872]
O44 - LFC:[MD5.EA2A473AE0C5601D6CC1EC8D8DD0BF2C] - 20/05/2015 - 20:00:40 ---A- . (.Microsoft Corporation - Device Pairing Application.) -- C:\Windows\System32\DevicePairingWizard.exe [65536]
O44 - LFC:[MD5.F42C6452741B08C85B461A0C4D5C0100] - 20/05/2015 - 20:00:40 ---A- . (.Microsoft Corporation - EFS Service.) -- C:\Windows\System32\efssvc.dll [41472]
O44 - LFC:[MD5.99F2485F0AA3BC7CFD417A63786CA234] - 20/05/2015 - 20:00:40 ---A- . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\Register-CimProvider.exe [14848]
O44 - LFC:[MD5.119858E9514F113A7291D33E93B50D3D] - 20/05/2015 - 20:00:41 ---A- . (.Microsoft Corporation - Microsoft Custom Dictionary Compiler.) -- C:\Windows\System32\hwrcomp.exe [41472]
O44 - LFC:[MD5.AA545B73C171685F4CDF22DC9B600241] - 20/05/2015 - 20:00:41 ---A- . (.Microsoft Corporation - Microsoft MIB-II subagent.) -- C:\Windows\System32\inetmib1.dll [66560]
O44 - LFC:[MD5.5C131534A3EA4A461A793FB507A8004F] - 20/05/2015 - 20:00:41 ---A- . (.Microsoft Corporation - Userinit Logon Application.) -- C:\Windows\System32\userinit.exe [26112]
O44 - LFC:[MD5.FC9D656EB4DDA7D986B3B83151EE2E13] - 20/05/2015 - 20:00:42 ---A- . (.Microsoft Corporation - Microsoft Key Distribution Service Provider.) -- C:\Windows\System32\KdsCli.dll [82944]
O44 - LFC:[MD5.9DCFF9945F4AB99DE774E1B658D3AB66] - 20/05/2015 - 20:00:42 ---A- . (.Microsoft Corporation - Scheduler Service Client DLL.) -- C:\Windows\System32\schedcli.dll [24576]
O44 - LFC:[MD5.A45F5AC9D8069D0EC66E3CA73103073B] - 20/05/2015 - 20:00:42 ---A- . (.Microsoft Corporation - Storage Services.) -- C:\Windows\System32\StorSvc.dll [20480]
O44 - LFC:[MD5.DFC49B633C1EBC55CD29170E5BE2966A] - 20/05/2015 - 20:00:43 ---A- . (.Microsoft Corporation - Hyper-V Integration Components Coinstaller.) -- C:\Windows\System32\VmdCoinstall.dll [66560]
O44 - LFC:[MD5.B4C763FA090D345EF24ACE7ADA0285CE] - 20/05/2015 - 20:00:43 ---A- . (.Microsoft Corporation - Kerberos Setup tool.) -- C:\Windows\System32\ksetup.exe [36352]
O44 - LFC:[MD5.0AA80010E37F8F8546CDD6D725D79A28] - 20/05/2015 - 20:00:43 ---A- . (.Microsoft Corporation - Windows Shutdown and Annotation Tool.) -- C:\Windows\System32\shutdown.exe [34304]
O44 - LFC:[MD5.B8FF6495BED1076B1A33EF76409DBA97] - 20/05/2015 - 20:00:45 ---A- . (.Microsoft Corporation - ODBC Driver Configuration Program.) -- C:\Windows\System32\odbcconf.exe [25600]
O44 - LFC:[MD5.E3A0D6FDD5B3DC06BF0E25BCAAA2D384] - 20/05/2015 - 20:00:46 ---A- . (.Microsoft Corporation - Microsoft Windows sync infrastructure proxy.) -- C:\Windows\System32\SyncInfrastructureps.dll [39424]
O44 - LFC:[MD5.EAD75CF884B80FB13E8BC7E83165A637] - 20/05/2015 - 20:00:46 ---A- . (.Microsoft Corporation - Microsoft® FSRM internal proxy/stub.) -- C:\Windows\System32\srm_ps.dll [32256]
O44 - LFC:[MD5.6C9660D8DD7CD2EFA84266829A986F52] - 20/05/2015 - 20:00:46 ---A- . (.Microsoft Corporation - RPC Ping Utility.) -- C:\Windows\System32\RpcPing.exe [29696]
O44 - LFC:[MD5.F0D9EAAC5D9D0BD738102D57D17602F3] - 20/05/2015 - 20:00:46 ---A- . (.Microsoft Corporation - Virtual Disk API DLL.) -- C:\Windows\System32\virtdisk.dll [38912]
O44 - LFC:[MD5.ED68BDB398987FD2561F4248649A2482] - 20/05/2015 - 20:00:47 ---A- . (.Microsoft Corporation - DHCPv6 Client.) -- C:\Windows\System32\dhcpcsvc6.dll [66048]
O44 - LFC:[MD5.DEBE096744FF8FCD2CD0F55AE8A28642] - 20/05/2015 - 20:00:47 ---A- . (.Microsoft Corporation - Device Experience Platform Proxy\Stub DLL.) -- C:\Windows\System32\dxpps.dll [41984]
O44 - LFC:[MD5.EA5229CCA58B37B684E2FECCE745A2AC] - 20/05/2015 - 20:00:48 ---A- . (.Microsoft Corporation - COM+ Configuration Catalog Server Proxy/Stu.) -- C:\Windows\System32\catsrvps.dll [53248]
O44 - LFC:[MD5.585C88828C443C132A16E15E122BCFF2] - 20/05/2015 - 20:00:48 ---A- . (.Microsoft Corporation - Microsoft Fax Print Monitor.) -- C:\Windows\System32\FXSMON.dll [42496]
O44 - LFC:[MD5.A604594E87A5D43EE025655E3EF7AC11] - 20/05/2015 - 20:00:48 ---A- . (.Microsoft Corporation - Microsoft MIDI Mapper.) -- C:\Windows\System32\midimap.dll [23552]
O44 - LFC:[MD5.D3625290790CEBEE8E5900F56B5E8D6B] - 20/05/2015 - 20:00:48 ---A- . (.Microsoft Corporation - Microsoft Sync Center.) -- C:\Windows\System32\mobsync.exe [86528]
O44 - LFC:[MD5.6F6518D6077E1D3B34A96E73B0674C6C] - 20/05/2015 - 20:00:48 ---A- . (.Microsoft Corporation - Offline Files Temporary Shim.) -- C:\Windows\System32\cscdll.dll [30720]
O44 - LFC:[MD5.DC0B0CE6F0CADBBCE3BE8E6E799D9A79] - 20/05/2015 - 20:00:48 ---A- . (.Microsoft Corporation - Windows Connection Manager Client API.) -- C:\Windows\System32\wcmapi.dll [35328]
O44 - LFC:[MD5.BB995DA169340BB4B6B07BE715B2F528] - 20/05/2015 - 20:00:48 ---A- . (.Microsoft Corporation - iSCSI Initiator Control Panel Applet.) -- C:\Windows\System32\iscsicpl.dll [227840]
O44 - LFC:[MD5.1C1056CF4C92377F515DACB76B358A25] - 20/05/2015 - 20:00:49 ---A- . (.Microsoft Corporation - Downlevel DLL.) -- C:\Windows\System32\idndl.dll [36864]
O44 - LFC:[MD5.E2241FF1146EDAE044ECD438D9ABA8C6] - 20/05/2015 - 20:00:49 ---A- . (.Microsoft Corporation - PDH UI.) -- C:\Windows\System32\pdhui.dll [56320]
O44 - LFC:[MD5.4762AD9664B769EEFF83D67CEAF0FF7A] - 20/05/2015 - 20:00:49 ---A- . (.Microsoft Corporation - Sleep Study Troubleshooter.) -- C:\Windows\System32\slpts.dll [16384]
O44 - LFC:[MD5.78A1800674AC11E52A1C5B57A6B0FAEE] - 20/05/2015 - 20:00:49 ---A- . (.Microsoft Corporation - Windows Progman Group Converter.) -- C:\Windows\System32\grpconv.exe [18944]
O44 - LFC:[MD5.6E8D038D7A6A0408280A3812E10355F9] - 20/05/2015 - 20:00:50 ---A- . (.Microsoft Corporation - Background Intelligent Transfer Service 3.0.) -- C:\Windows\System32\bitsprx5.dll [35328]
O44 - LFC:[MD5.733B68BE10125275664761C421711334] - 20/05/2015 - 20:00:50 ---A- . (.Microsoft Corporation - BootCfg - Lists or changes the boot setting.) -- C:\Windows\System32\bootcfg.exe [87552]
O44 - LFC:[MD5.BFFD361F6129F4273F9B16F3D4D5D119] - 20/05/2015 - 20:00:50 ---A- . (.Microsoft Corporation - File Transfer Program.) -- C:\Windows\System32\ftp.exe [53760]
O44 - LFC:[MD5.DCE062E44E49C46CC8276256799F20F1] - 20/05/2015 - 20:00:50 ---A- . (.Microsoft Corporation - Microsoft Fax TIFF library.) -- C:\Windows\System32\FXSTIFF.dll [411648]
O44 - LFC:[MD5.3D95BD3198561F0B72357CE711C6FEFF] - 20/05/2015 - 20:00:50 ---A- . (.Microsoft Corporation - Network Connectivity Statistics Provider fo.) -- C:\Windows\System32\ncuprov.dll [25600]
O44 - LFC:[MD5.F30F81323BE91515DAB58D454F1451FE] - 20/05/2015 - 20:00:50 ---A- . (.Microsoft Corporation - WINS RPC LIBRARY.) -- C:\Windows\System32\WINSRPC.DLL [25600]
O44 - LFC:[MD5.BE989AFF77124F92A6DD5B67C672F2F5] - 20/05/2015 - 20:00:51 ---A- . (.Microsoft Corporation - DVDUpgrd.) -- C:\Windows\System32\dvdupgrd.exe [26624]
O44 - LFC:[MD5.588E31ED4A896F24E63729FB894055CB] - 20/05/2015 - 20:00:51 ---A- . (.Microsoft Corporation - Device Association Client DLL.) -- C:\Windows\System32\deviceassociation.dll [38912]
O44 - LFC:[MD5.11354BDEF875ECD012D49305BDF79778] - 20/05/2015 - 20:00:51 ---A- . (.Microsoft Corporation - Server Service Core DLL.) -- C:\Windows\System32\sscoreext.dll [12288]
O44 - LFC:[MD5.36F3D918666EC63F7032234264C94A3C] - 20/05/2015 - 20:00:51 ---A- . (.Microsoft Corporation - WinLogon Utility Extension DLL.) -- C:\Windows\System32\winlogonext.dll [86016]
O44 - LFC:[MD5.6F38A0AC015ED0C0D8B0195DAF2759F7] - 20/05/2015 - 20:00:51 ---A- . (.Microsoft Corporation - Windows NT Remote Access Perfmon Counter dl.) -- C:\Windows\System32\rasctrs.dll [18944]
O44 - LFC:[MD5.A7CB0F73E498AF39248EF351248549BC] - 20/05/2015 - 20:00:52 ---A- . (.Microsoft Corporation - Microsoft Common Certificate Dialogs.) -- C:\Windows\System32\cryptdlg.dll [31232]
O44 - LFC:[MD5.D5C199A151863D36D83EF9F355B0107D] - 20/05/2015 - 20:00:52 ---A- . (.Microsoft Corporation - Microsoft File Patch Application API.) -- C:\Windows\System32\mspatcha.dll [46080]
O44 - LFC:[MD5.FA03DB4B4B00E597070590577E668571] - 20/05/2015 - 20:00:52 ---A- . (.Microsoft Corporation - Microsoft® Logon Server Test Utility.) -- C:\Windows\System32\nltest.exe [468992]
O44 - LFC:[MD5.E5B4A9018F7271540ECF77BC984F3C46] - 20/05/2015 - 20:00:52 ---A- . (.Microsoft Corporation - SNMP Utility Library.) -- C:\Windows\System32\snmpapi.dll [32256]
O44 - LFC:[MD5.1CFE3A91EDFC2BE3524FAB423BAC86DB] - 20/05/2015 - 20:00:52 ---A- . (.Microsoft Corporation - SQL Client Configuration Utility DLL.) -- C:\Windows\System32\cliconfg.dll [86528]
O44 - LFC:[MD5.03624871AACA779A07E4DB0670DDCBE1] - 20/05/2015 - 20:00:52 ---A- . (.Microsoft Corporation - TCP/IP Netstat Command.) -- C:\Windows\System32\NETSTAT.EXE [39424]
O44 - LFC:[MD5.95A9AE865DF8227C58B2F9697AF90EE5] - 20/05/2015 - 20:00:52 ---A- . (.Microsoft Corporation - Windows Connect Now - WCN EAP PEER Proxy.) -- C:\Windows\System32\WcnEapPeerProxy.dll [27648]
O44 - LFC:[MD5.7B775D7DBB208EDA6E62C78C3ACD238A] - 20/05/2015 - 20:00:53 ---A- . (.Microsoft Corporation - Classic System Events Broker Client Library.) -- C:\Windows\System32\CSystemEventsBrokerClient.dll [20480]
O44 - LFC:[MD5.728F97CD4946C2A6D63A78759A2B5D5C] - 20/05/2015 - 20:00:53 ---A- . (.Microsoft Corporation - DNSCache Unattend Generic Command.) -- C:\Windows\System32\dnscacheugc.exe [31232]
O44 - LFC:[MD5.4946EEFDBC08E0BAD98033137502FAA6] - 20/05/2015 - 20:00:53 ---A- . (.Microsoft Corporation - Scripted Diagnostics Native Host.) -- C:\Windows\System32\sdiagnhost.exe [24576]
O44 - LFC:[MD5.4D4E2A2FE9C824733C7A53F2E5454AFF] - 20/05/2015 - 20:00:54 ---A- . (.Microsoft Corporation - Microsoft® Volume Shadow Copy Service proxy.) -- C:\Windows\System32\vss_ps.dll [67072]
O44 - LFC:[MD5.47D4D4F09ED171496EDCA24E46D09B57] - 20/05/2015 - 20:00:54 ---A- . (.Microsoft Corporation - Time Broker Client Library.) -- C:\Windows\System32\TimeBrokerClient.dll [22016]
O44 - LFC:[MD5.4DC2886CD072216A4EEDF03B99C5FAAC] - 20/05/2015 - 20:00:55 ---A- . (.Microsoft Corporation - Adaptive SQM WDI Plugin.) -- C:\Windows\System32\wdiasqmmodule.dll [40960]
O44 - LFC:[MD5.7AFDBA07926BE8AB1770CF59A35FF0B7] - 20/05/2015 - 20:00:55 ---A- . (.Microsoft Corporation - Service Control Manager Configuration Tool.) -- C:\Windows\System32\sc.exe [68608]
O44 - LFC:[MD5.6E3381152091034DD1773C7B5D0B85E5] - 20/05/2015 - 20:00:56 ---A- . (.Microsoft Corporation - DCI Manager.) -- C:\Windows\System32\dciman32.dll [14848]
O44 - LFC:[MD5.72E8238EBFE77174DEC62929C9706511] - 20/05/2015 - 20:00:56 ---A- . (.Microsoft Corporation - Microsoft Display Class Installer.) -- C:\Windows\System32\dispci.dll [57856]
O44 - LFC:[MD5.EFA2C9F6F96E7C7DC4DA1442D34CFDA4] - 20/05/2015 - 20:00:56 ---A- . (.Microsoft Corporation - Netio Unattend Generic Command.) -- C:\Windows\System32\netiougc.exe [27136]
O44 - LFC:[MD5.AB7E798E7C19DD3F84D2C7639EE98B56] - 20/05/2015 - 20:00:57 ---A- . (.Microsoft Corporation - NetVsc Protocol Driver Coinstaller.) -- C:\Windows\System32\NetVscCoinstall.dll [67072]
O44 - LFC:[MD5.066922220C31F5853D403FAA6A3AFA32] - 20/05/2015 - 20:00:57 ---A- . (.Microsoft Corporation - Windows Extension library for EAP TTLS.) -- C:\Windows\System32\TtlsExt.dll [16384]
O44 - LFC:[MD5.33878D6F769C59433399FB01E10A1BD2] - 20/05/2015 - 20:00:58 ---A- . (.Microsoft Corporation - BCD Sysprep Plugin.) -- C:\Windows\System32\spbcd.dll [83456]
O44 - LFC:[MD5.27C001813F245EF30E09D6806D62EA74] - 20/05/2015 - 20:00:58 ---A- . (.Microsoft Corporation - MUI Callback for Bcd.) -- C:\Windows\System32\setbcdlocale.dll [68608]
O44 - LFC:[MD5.F3EB1B91E8A6D87C6AC4C2406EE4277C] - 20/05/2015 - 20:00:58 ---A- . (.Microsoft Corporation - Microsoft Platform Key Storage Provider for.) -- C:\Windows\System32\PCPKsp.dll [60928]
O44 - LFC:[MD5.35D862696765DA4DCF72388B550D7601] - 20/05/2015 - 20:00:58 ---A- . (.Microsoft Corporation - Microsoft ® DispEx.) -- C:\Windows\System32\dispex.dll [28672]
O44 - LFC:[MD5.B08C73E04BE074BF0EE89F299031D1C7] - 20/05/2015 - 20:00:58 ---A- . (.Microsoft Corporation - Network object shell UI.) -- C:\Windows\System32\ntlanui2.dll [18944]
O44 - LFC:[MD5.DAB4691AAB4D770D23C137CE6A3D57E5] - 20/05/2015 - 20:00:58 ---A- . (.Microsoft Corporation - ODBC Driver Manager Trace.) -- C:\Windows\System32\odbctrac.dll [162816]
O44 - LFC:[MD5.61DD85210B3F307C1190735C3DE1518C] - 20/05/2015 - 20:00:58 ---A- . (.Microsoft Corporation - Windows Shell Obsolete APIs.) -- C:\Windows\System32\shunimpl.dll [20992]
O44 - LFC:[MD5.CA5D390F43FAE4A05517E040057AE020] - 20/05/2015 - 20:00:59 ---A- . (.Microsoft Corporation - Background Broker Infrastructure Client Lib.) -- C:\Windows\System32\bi.dll [24064]
O44 - LFC:[MD5.EA85B5093DF7B5C3E80362B053740AE2] - 20/05/2015 - 20:00:59 ---A- . (.Microsoft Corporation - Human Interface Device Service.) -- C:\Windows\System32\hidserv.dll [33792]
O44 - LFC:[MD5.970AB61AF44555F83111968882B3B6A4] - 20/05/2015 - 20:00:59 ---A- . (.Microsoft Corporation - Microsoft Windows Recovery Agent.) -- C:\Windows\System32\ReAgentc.exe [25600]
O44 - LFC:[MD5.BAC624F5A2F5DF9A6E0378E56919A136] - 20/05/2015 - 20:00:59 ---A- . (.Microsoft Corporation - PnP unattend action.) -- C:\Windows\System32\PnPUnattend.exe [60416]
O44 - LFC:[MD5.D2662670EC30BE527E9A08BE588239CA] - 20/05/2015 - 20:00:59 ---A- . (.Microsoft Corporation - User-mode Power Service Extensions.) -- C:\Windows\System32\umpoext.dll [45056]
O44 - LFC:[MD5.2997EE0BF165E39469EE1C9C46715311] - 20/05/2015 - 20:00:59 ---A- . (.Microsoft Corporation - VPN IKE API's.) -- C:\Windows\System32\vpnikeapi.dll [36864]
O44 - LFC:[MD5.3E4E5C2FC5AE32C61E26D6CBF6EF1A9F] - 20/05/2015 - 20:00:59 ---A- . (.Microsoft Corporation - WMI Client API.) -- C:\Windows\System32\wmiclnt.dll [38400]
O44 - LFC:[MD5.536AC44F045C611A13AAA3D6EE32241A] - 20/05/2015 - 20:00:59 ---A- . (.Microsoft Corporation - Windows Installer Configuration API Stub.) -- C:\Windows\System32\msiltcfg.dll [20992]
O44 - LFC:[MD5.DDB8BC2064B9952D8EDA3D3534646A3C] - 20/05/2015 - 20:01:00 ---A- . (.Microsoft Corporation - CHxReadingStringIME.) -- C:\Windows\System32\CHxReadingStringIME.dll [12800]
O44 - LFC:[MD5.56CC3DEC116A9F39AE30D508B43B0904] - 20/05/2015 - 20:01:00 ---A- . (.Microsoft Corporation - Control Panel Console Applet.) -- C:\Windows\System32\console.dll [80896]
O44 - LFC:[MD5.9F9EB0FF33E8D683C6BD84B0862E27D7] - 20/05/2015 - 20:01:00 ---A- . (.Microsoft Corporation - MUI unattend action.) -- C:\Windows\System32\MuiUnattend.exe [77312]
O44 - LFC:[MD5.344C6F4F59238683