~ Rapport de ZHPDiag v2013.9.21.37 - Nicolas Coolman  (21/09/2013)
~ Lancé par cloclo (21/09/2013 15:48:06)
~ Adresse du Site Web http://nicolascoolman.webs.com
~ Traduit par Nicolas Coolman
~ Etat de la version : 
~ Liste blanche : Désactivée par l'utilisateur
~ Elévation des Privilèges : OK
~ User Account Control (UAC): Activate by user


---\\ Navigateurs Internet
MSIE: Internet Explorer v10.0.9200.16660
MFIE: Mozilla Firefox 24.0 (Defaut)
GCIE: Google Chrome v29.0.1547.76

---\\ Informations sur les produits Windows
~ Langage: Français
Windows 8 Home Premium Edition, 64-bit  (Build 9200)
Windows Server License Manager Script : OK
~ ion : Windows(R) Operating System, OEM_DM channel
Windows ID Activation : OK
~ Windows Partial Key : 8HRD6
Windows License : OK
~ Windows Remaining Initializations Number : 999
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ Logiciels de protection du système
Windows Defender W8

---\\ Logiciels d'optimisation du système

---\\ Logiciels de partage PeerToPeer

---\\ Surveillance de Logiciels
Adobe Flash Player 11 Plugin
Adobe Reader XI
Java 7 Update 40

---\\ Informations sur le système
~ Processor: Intel64 Family 6 Model 58 Stepping 9, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 6037 MB (59% free)
System Restore: Activé (Enable)
System drive C: has 747 GB (92%) free of 805 GB

---\\ Mode de connexion au système
~ Computer Name: CLOVIS
~ User Name: cloclo
~ All Users Names: cloclo, Administrateur, 
~ Unselected Option: None
Logged in as Administrator

---\\ Variables d'environnement
~ System Unit : C:\
~ %AppData% : C:\Users\cloclo\AppData\Roaming\
~ %Desktop% : C:\Users\cloclo\Desktop\
~ %Favorites% : C:\Users\cloclo\Favorites\
~ %LocalAppData% : C:\Users\cloclo\AppData\Local\
~ %StartMenu% : C:\Users\cloclo\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ Enumération des unités disques
B:\ Hard drive, Flash drive, Thumb drive (Free 98 Go of 98 Go)
C:\ Hard drive, Flash drive, Thumb drive (Free 747 Go of 805 Go)
D:\ CD-ROM drive (Not Inserted)



---\\ Etat du Centre de Sécurité Windows
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime :  OK
~ Security Center: 29 Scanned in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.99CDC7377F2E030AE1ABA26BAC00B60C] - (.Microsoft Corporation - Explorateur Windows.) (.02/10/2012 - 10:01:15.) -- C:\Windows\Explorer.exe [2380944]
[MD5.FE9AB232B56A12224E8A3F3F9878C9A3] - (.Microsoft Corporation - Application de démarrage de Windows.) (.26/07/2012 - 04:08:50.) -- C:\Windows\System32\Wininit.exe [132608]
[MD5.AC155DD9BD1E6D3B740826A4D1C68AAE] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.26/07/2013 - 06:13:37.) -- C:\Windows\System32\wininet.dll [2241024]
[MD5.1F84B5F8DBDFFD36DF143C61CE25F12A] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.20/09/2012 - 07:33:55.) -- C:\Windows\System32\Winlogon.exe [516608]
[MD5.9448F5740A037EC0C18F0E9177232DD0] - (.Microsoft Corporation - Bibliothèque de licences.) (.26/07/2012 - 04:07:20.) -- C:\Windows\System32\sppcomapi.dll [273408]
[MD5.9E975BDC89C83900B2C534C4E1B018F8] - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) (.26/07/2012 - 06:26:47.) -- C:\Windows\system32\Drivers\AFD.sys [561152]
[MD5.A721FF570C2387E383BDDEA9632863C9] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.26/07/2012 - 06:00:48.) -- C:\Windows\system32\Drivers\atapi.sys [25840]
[MD5.990B1BABE6E81FB18E65A87EBEFB1772] - (.Microsoft Corporation - CD-ROM File System Driver.) (.26/07/2012 - 03:30:10.) -- C:\Windows\system32\Drivers\Cdfs.sys [108544]
[MD5.339BFF85D788268752DA8C9644B188EE] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.26/07/2012 - 03:26:36.) -- C:\Windows\system32\Drivers\Cdrom.sys [174080]
[MD5.09D9EB9E7898F8E6561473A20CC808B9] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.26/07/2012 - 03:26:53.) -- C:\Windows\system32\Drivers\DfsC.sys [118784]
[MD5.7D87B5B6C7188D553E11B59DC7F0B111] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.20/09/2012 - 07:08:44.) -- C:\Windows\system32\Drivers\HDAudBus.sys [71168]
[MD5.C9E9CBF73AFFBFE3E801EFB516787BA3] - (.Microsoft Corporation - Pilote de port i8042.) (.26/07/2012 - 03:28:51.) -- C:\Windows\system32\Drivers\i8042prt.sys [112640]
[MD5.3969B9C218DD3FAA9F4ED2FFC3651C02] - (.Microsoft Corporation - IP Network Address Translator.) (.26/07/2012 - 03:23:01.) -- C:\Windows\system32\Drivers\IpNat.sys [145920]
[MD5.93179D48066918323628CB016D8C94DC] - (.Microsoft Corporation - Minirdr SMB Windows NT.) (.05/02/2013 - 23:29:09.) -- C:\Windows\system32\Drivers\MRxSmb.sys [370688]
[MD5.7CEC25C682D319D484630B3952C31A11] - (.Microsoft Corporation - MBT Transport driver.) (.26/07/2012 - 03:24:28.) -- C:\Windows\system32\Drivers\netBT.sys [331776]
[MD5.76929F4A69E425911A63B407E26C2589] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.02/02/2013 - 11:54:54.) -- C:\Windows\system32\Drivers\ntfs.sys [1933544]
[MD5.4563DAF8C6A740AD7F501E219BD10766] - (.Microsoft Corporation - Pilote de port parallèle.) (.26/07/2012 - 03:29:53.) -- C:\Windows\system32\Drivers\Parport.sys [105984]
[MD5.A14D625C5AEE5FFE0F47D1A1D419FAAE] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.26/07/2012 - 03:23:17.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [124928]
[MD5.B2A3AD74FF2E2FFA73AF2567108231B3] - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RDP.) (.26/07/2012 - 03:25:18.) -- C:\Windows\system32\Drivers\rdpdr.sys [179712]
[MD5.73DC722CE5DF26D7638CE2446F2655C7] - (.Microsoft Corporation - TDI Translation Driver.) (.26/07/2012 - 06:26:47.) -- C:\Windows\system32\Drivers\tdx.sys [117248]
[MD5.2FB3CDFD5EAF4CD9D4AFAF96877D13AE] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.26/07/2012 - 05:57:09.) -- C:\Windows\system32\Drivers\volsnap.sys [332016]
~ Generic Processes:  Scanned in 00mn 00s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 1/2237
~ Mes musiques (My Musics) : 1/1171
~ Mes Favoris (My Favorites) : 1/11
~ Mes Documents (My Documents) : 1/313
~ Mon Bureau (My Desktop) : 1/494
~ Menu demarrer (Programs) : 1/27
~ Hidden Files:  Scanned in 00mn 01s



---\\ Processus lancés
[MD5.0187BDAFBAFAF967BB91B4F2D8E33BC8] - (.Microsoft Corporation - Microsoft Office Excel.) -- C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.exe   [17891112] [PID.4348]
[MD5.A9182CE59CFC56F9C1DDE8B3C0AE8378] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe   [274840] [PID.4568]
[MD5.CEAA5817A65E914AA178B28F12359A46] - (.Microsoft Corporation - Microsoft Office Word.) -- C:\Program Files (x86)\Microsoft Office\Office12\WINWORD.exe   [347432] [PID.1180]
[MD5.12FD4EF8F2CBBF98E0A5CED88258DDF3] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe   [17816] [PID.5688]
[MD5.8D4AFD5F4955A52C39C8C424FE5516D9] - (.Adobe Systems, Inc. - Adobe Flash Player 11.8 r800.) -- C:\windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_8_800_168.exe   [1862024] [PID.6068]
[MD5.94A0298B5A333CA4CF2F3C9DF9AE16AC] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe   [7989760] [PID.4136]
~ Processes Running:  Scanned in 00mn 00s



---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Preferences
G1 - GCS: Preference [User Data\Default] None
G0 - GCSP: Preference [User Data\Default][HomePage] http://www.google.com
G0 - GCSP: Preference [User Data\Default] http://www.google.com
G2 - GCE: Preference [User Data\Default] [ahfgeienlihckogmohjhadlkjgocpleb] Store v.0.2 (Activé)
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Documents Google v.0.5 (Activé)
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Drive v.6.3 (Activé)
G2 - GCE: Preference [User Data\Default] [bhmmomiinigofkjcapegjjndpbikblnp] WOT v.1.4.13, (Activé)
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] YouTube v.4.2.6 (Activé)
G2 - GCE: Preference [User Data\Default] [cfhdojbkjhnklbpkdaibdccddilifddb] Adblock Plus v.1.5.5, (Activé)
G2 - GCE: Preference [User Data\Default] [cmedhionkhpnakcndndgjdbohmhepckk] Adblock for Youtube  v.2.4 (Activé)
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Recherche Google v.0.0.0.20 (Activé)
G2 - GCE: Preference [User Data\Default] [eemcgdkfndhakfknompkggombfjjjeno] Bookmark Manager v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [ennkphjdgehloodpbhlhldgbnhmacadg] Settings v.0.2 (Activé)
G2 - GCE: Preference [User Data\Default] [mfehgcgbbipciphmccgaenjidiccnmng] Cloud Print v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [mgndgikekgjfcpckkfioiadnlibdjbkf] Chrome v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Chrome In-App Payments service v.0.0.4.10 (Activé)
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Gmail v.7 (Activé)
~ Google Browser: 17 Scanned in 00mn 07s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions  (P2,M0,M1,M2,M3)
M2 - MFEP: prefs.js [cloclo - vnwrgdas.default\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}] [WOT] WOT v20130917 (..)
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\windows\system32\Macromed\Flash\NPSWF64_11_8_800_168.dll
~ Firefox Browser: 2 Scanned in 00mn 00s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://samsung13.msn.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://samsung13.msn.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (10.00.9200.16384 (win8_rtm.120725-1247)) -- C:\Windows\SysWOW64\ieframe.dll
~ IE Browser: 11 Scanned in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management:  Scanned in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys:  Scanned in 00mn 00s



---\\ Hosts file redirection (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File:  Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 21



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
~ BHO: 2 Scanned in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - GS\Desktop [Public]: HP Deskjet 1050 J410 series.lnk . (...)  -- C:\Program Files (x86)\HP\HP Deskjet 1050 J410 series\Bin\HP Deskjet 1050 J410 series.exe (.not file.)
O4 - GS\Desktop [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.)  -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe 
O4 - GS\Desktop [Public]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag Setup.)  -- C:\Program Files (x86)\ZHPDiag\ZHPhep.exe  =>.Nicolas Coolman
O4 - GS\Desktop [Public]: ZHPFix.lnk . (.Nicolas Coolman - ZHPDiag Setup.)  -- C:\Program Files (x86)\ZHPDiag\ZHPFix\ZHPhep.exe  =>.Nicolas Coolman
O4 - GS\Program [Public]: Adobe Reader XI.lnk . (...)  -- C:\windows\Installer\{AC76BA86-7AD7-1036-7B44-AB0000000001}\SC_Reader.ico 
O4 - GS\Program [Public]: Desktop.lnk - Clé orpheline
O4 - GS\Program [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.)  -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe 
O4 - GS\Program [Public]: Windows Store.lnk . (...)  -- C:\windows\WinStore\WinStore.htm 
O4 - GS\Program [Public]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag Setup.)  -- C:\Program Files (x86)\ZHPDiag\ZHPhep.exe  =>.Nicolas Coolman
O4 - GS\Accessories [Public]: Calculator.lnk . (.Microsoft Corporation - Calculatrice de Windows.)  -- C:\windows\system32\calc.exe  =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Math Input Panel.lnk . (...)  -- C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\mip.exe (.not file.)
O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.)  -- C:\windows\system32\mspaint.exe 
O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Connexion Bureau à distance.)  -- C:\windows\system32\mstsc.exe 
O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - Outil Capture d’écran.)  -- C:\windows\system32\SnippingTool.exe 
O4 - GS\Accessories [Public]: Sound Recorder.lnk . (.Microsoft Corporation - Magnétophone Windows.)  -- C:\windows\system32\SoundRecorder.exe  =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Steps Recorder.lnk . (.Microsoft Corporation - Enregistreur d’actions.)  -- C:\windows\system32\psr.exe 
O4 - GS\Accessories [Public]: Sticky Notes.lnk . (.Microsoft Corporation - Pense-bête.)  -- C:\windows\system32\StikyNot.exe  =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Fax and Scan.lnk . (.Microsoft Corporation - Microsoft  Windows Fax and Scan.)  -- C:\windows\system32\WFS.exe  =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.)  -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe  =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Application Windows Wordpad.)  -- C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe  =>.Microsoft Corporation
O4 - GS\Accessories [Public]: XPS Viewer.lnk . (.Microsoft Corporation - Visionneuse XPS.)  -- C:\windows\system32\xpsrchvw.exe 
O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Table des caractères.)  -- C:\windows\system32\charmap.exe  =>.Microsoft Corporation
O4 - GS\QuickLaunch [cloclo]: Google Chrome.lnk . (.Google Inc. - Google Chrome.)  -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe 
O4 - GS\QuickLaunch [cloclo]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.)  -- C:\Program Files (x86)\Internet Explorer\iexplore.exe 
O4 - GS\TaskBar [cloclo]: File Explorer.lnk . (...)  -- C:\Users\cloclo\AppData\Roaming\Microsoft\Windows\Libraries 
O4 - GS\TaskBar [cloclo]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.)  -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe 
O4 - GS\Program [cloclo]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.)  -- C:\Program Files (x86)\Internet Explorer\iexplore.exe 
O4 - GS\Program [cloclo]: RtkGUI.lnk . (...)  -- C:\Program Files (x86)\Realtek\Audio\HDA\RAVBg64.exe (.not file.)
O4 - GS\Accessories [cloclo]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.)  -- C:\windows\system32\notepad.exe  =>.Microsoft Corporation
O4 - GS\SendTo [cloclo]: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - Pas de description.)  -- C:\Windows\System32\fsquirt.exe 
O4 - GS\Desktop [cloclo]: FurMark.lnk . (.Geeks3D (www.geeks3d.com) - FurMark - swiss made GPU stress test and Op.)  -- C:\Program Files (x86)\Geeks3D\Benchmarks\FurMark_1.11.0\FurMark.exe 
~ Global Startup: 31 Scanned in 00mn 01s



---\\ Applications lancées au démarrage du sytème (O4)
O4 - HKLM\..\Run: [Logitech Download Assistant] . (.Logitech, Inc. - Logitech Download Assistant.) -- C:\Windows\System32\LogiLDA.dll 
O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe  =>.Realtek Semiconductor Corp
O4 - HKLM\..\Run: [RtHDVBg] . (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe 
O4 - HKLM\..\Run: [IAStorIcon] . (.Intel Corporation - Delayed launcher.) -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe 
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\windows\system32\igfxtray.exe 
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\windows\system32\hkcmd.exe 
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\windows\system32\igfxpers.exe 
O4 - HKLM\..\Wow6432Node\Run: [StartCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe  =>.Advanced Micro Devices, Inc
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe 
O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe  =>.Adobe Systems Incorporated
~ Application:  Scanned in 00mn 00s



---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ IE Control Panel: 1 Scanned in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\windows\system32\napinsp.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\windows\system32\NLAapi.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\windows\system32\mswsock.dll  =>.Microsoft Corporation
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\windows\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\windows\system32\wshbth.dll
~ Winsock: 7 Scanned in 00mn 00s



---\\ Site dans la Zone de confiance d'Internet Explorer (O15)
O15 - Trusted Zone: [HKCU\...\Domains] http.ma-config.com
O15 - Trusted Zone: [HKCU\...\Domains] http.touslesdrivers.com
~ IE Zone Confiance:  Scanned in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{D461AA2F-2A7E-431E-A9CF-441B37B3F240}: DhcpNameServer = 10.255.255.2
O17 - HKLM\System\CCS\Services\Tcpip\..\{D461AA2F-2A7E-431E-A9CF-441B37B3F240}: DhcpDomain = vetagro-sup.fr
O17 - HKLM\System\CS1\Services\Tcpip\..\{D461AA2F-2A7E-431E-A9CF-441B37B3F240}: DhcpNameServer = 10.255.255.2
O17 - HKLM\System\CS1\Services\Tcpip\..\{D461AA2F-2A7E-431E-A9CF-441B37B3F240}: DhcpDomain = vetagro-sup.fr
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.255.255.2
~ Domain:  Scanned in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll  =>.Microsoft Corporation
O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.dll  =>.Microsoft Corporation
~ Protocole Additionnel:  Scanned in 00mn 00s



---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
~ Winlogon:  Scanned in 00mn 00s



---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ SSODL: 1 Scanned in 00mn 00s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service:  (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\System32\atiesrxx.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe  =>.Google Inc
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) . (.Intel Corporation - IAStorDataSvc.) - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) Capability Licensing Service In (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation - Intel(R) Capability Licensing Service Inter.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) ME Service (Intel(R) ME Service) . (.Intel Corporation - Intel(R) ME Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host (jhi_service) . (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: Intel(R) Management and Security Applica (LMS) . (.Intel Corporation - Intel(R) Local Management Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: SW Update Service (SWUpdateService) . (.Samsung Electronics CO., LTD. - SW Update Agent.) - C:\Program Files (x86)\Samsung\SW Update\SWMAgent.exe
O23 - Service:  (WinDefend) . (...) - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (.not file.)
~ Services: 8 Scanned in 00mn 02s



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) -  (.not file.)
~ Desktop Component: 4 Scanned in 00mn 00s



---\\ Enumère les données de BootExecute (BEX) (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ BEX: 1 Scanned in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job   [1078]
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job   [1082]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe   [116648]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe   [116648]
[MD5.DF35A7BB8530611B8F8B3787396E6AB4] [APT] [ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d] (.Intel Corporation.) -- C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe   [233760]
[MD5.DF35A7BB8530611B8F8B3787396E6AB4] [APT] [ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon] (.Intel Corporation.) -- C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe   [233760]
~ Scheduled Task: 7 Scanned in 00mn 03s



---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll  =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll  =>.Microsoft Corporation
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\System32\mscories.dll
~ Active Setup: 9 Scanned in 00mn 00s



---\\ Pilotes lancés au démarrage du système (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (BasicDisplay) . (.Microsoft Corporation - Microsoft Basic Display Driver.) - C:\Windows\system32\drivers\BasicDisplay.sys
O41 - Driver: (BasicRender) . (.Microsoft Corporation - Microsoft Basic Render Driver.) - C:\Windows\system32\drivers\BasicRender.sys
O41 - Driver: cdrom.inf (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys
O41 - Driver: C:\Windows\System32\drivers\dam.sys (dam) . (.Microsoft Corporation - DAM Kernel Driver.) - C:\Windows\System32\drivers\dam.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (Dfsc) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: mssmbios.inf (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: netnb.inf (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: npsvctrig.inf (npsvctrig) . (.Microsoft Corporation - Named pipe service triggers.) - C:\Windows\system32\drivers\npsvctrig.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\system32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys
O41 - Driver: C:\Windows\System32\drivers\vwififlt.sys (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\system32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\system32\DRIVERS\wanarp.sys
~ Drivers: 34 Scanned in 00mn 00s



---\\ Logiciels installés (O42)
O42 - Logiciel: AMD Accelerated Video Transcoding - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {D2FC7F38-B16C-D360-C5CD-16F2A74F18DC}
O42 - Logiciel: AMD Catalyst Install Manager - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {959C941C-EA43-44DE-F18B-0849766AC19A}
O42 - Logiciel: AMD Wireless Display v3.0 - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {664152E7-4C8B-306E-70C4-F7871F039603}
O42 - Logiciel: Adobe Flash Player 11 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Reader XI (11.0.04) - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AB0000000001}
O42 - Logiciel: CPU Stress MT 1.0.4 - (.Foudge.) [HKLM][64Bits] -- CPU Stress MT_is1
O42 - Logiciel: Catalyst Control Center - Branding - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {59F0E916-7B87-4F09-888B-850F3F0700B5}
O42 - Logiciel: FileZilla Client 3.7.3 - (.Tim Kosse.) [HKLM][64Bits] -- FileZilla Client
O42 - Logiciel: Geeks3D FurMark 1.11.0 - (.Geeks3D.) [HKLM][64Bits] -- {2397CAD4-2263-4CD0-96BE-E43A980B9C9A}_is1
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: HP Deskjet 1050 J410 series Aide - (.Hewlett Packard.) [HKLM][64Bits] -- {5C90D8CF-F12A-41C6-9007-3B651A1F0D78}
O42 - Logiciel: Intel(R) Manageability Engine Firmware Recovery Agent - (.Intel Corporation.) [HKLM][64Bits] -- {A6C48A9F-694A-4234-B3AA-62590B668927}
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A}
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {409CB30E-E457-4008-9B1A-ED1B9EA21140}
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {93F692D4-0C4D-4EED-9BFE-657C1D5959FE}
O42 - Logiciel: Intel(R) SDK for OpenCL - CPU Only Runtime Package - (.Intel Corporation.) [HKLM][64Bits] -- {FCB3772C-B7D0-4933-B1A9-3707EBACC573}
O42 - Logiciel: Intel® Trusted Connect Service Client - (.Intel Corporation.) [HKLM][64Bits] -- {44B72151-611E-429D-9765-9BA093D7E48A}
O42 - Logiciel: Java 7 Update 40 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83217040FF}
O42 - Logiciel: Logiciel de base du périphérique HP Deskjet 1050 J410 series - (.Hewlett-Packard Co..) [HKLM][64Bits] -- {635F63A6-9FC8-4101-B109-00698C6F3A91}  =>.Hewlett-Packard Co
O42 - Logiciel: Ma-Config.com (64 bits) - (.Cybelsoft.) [HKLM][64Bits] -- {4073A644-D7C2-4ED6-87B1-A1BCD7F7836C}
O42 - Logiciel: Mozilla Firefox 24.0 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 24.0 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService
O42 - Logiciel: Package de pilotes Windows - Samsung Electronics Co. Ltd. (RadioHIDMini) HI - (.Samsung Electronics Co. Ltd..) [HKLM][64Bits] -- 9F04C462DAB591BDCCE784F77E4D4F1736010B92
O42 - Logiciel: Qualcomm Atheros Client Installation Program - (.Qualcomm Atheros.) [HKLM][64Bits] -- {28006915-2739-4EBE-B5E8-49B25D32EB33}
O42 - Logiciel: Realtek Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {5BC2B5AB-80DE-4E83-B8CF-426902051D0A}
O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Realtek PC Camera - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}
O42 - Logiciel: S Agent - (.Samsung Electronics CO., LTD..) [HKLM][64Bits] -- {860203FC-987D-4429-8A08-8332B21AD90E}
O42 - Logiciel: SW Update - (.Samsung Electronics CO., LTD..) [HKLM][64Bits] -- {F5B5BA56-8FEB-494B-84E6-C8DA9C2BEE50}
O42 - Logiciel: WhoCrashed 4.02 - (.Resplendence Software Projects Sp..) [HKLM][64Bits] -- WhoCrashed_is1
O42 - Logiciel: WinRAR 5.00 (32-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver
O42 - Logiciel: Windows 7 USB/DVD Download Tool - (.Microsoft Corporation.) [HKLM][64Bits] -- {CCF298AF-9CE1-4B26-B251-486E98A34789}
~ Logic: 72 Scanned in 00mn 00s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\ATI]
[HKCU\Software\Adobe]
[HKCU\Software\AppDataLow\Software\JavaSoft]
[HKCU\Software\AppDataLow]
[HKCU\Software\Aurigma]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Gabest]
[HKCU\Software\Google]
[HKCU\Software\HP]
[HKCU\Software\Intel]
[HKCU\Software\JavaSoft]
[HKCU\Software\LogiShrd]
[HKCU\Software\Macromedia]
[HKCU\Software\Mine]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\Netscape]
[HKCU\Software\ODBC]
[HKCU\Software\Policies]
[HKCU\Software\Realtek]
[HKCU\Software\RegisteredApplications]
[HKCU\Software\Resplendence Sp]
[HKCU\Software\Samsung]
[HKCU\Software\SecuROM]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinRAR]
[HKCU\Software\Wow6432Node]
[HKCU\Software\ZebHelpProcess Helper]
[HKLM\Software\AMD]
[HKLM\Software\ATI Technologies]
[HKLM\Software\ATI]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\DTS]
[HKLM\Software\Dolby]
[HKLM\Software\FileZilla 3]
[HKLM\Software\HP]
[HKLM\Software\Intel]
[HKLM\Software\Khronos]
[HKLM\Software\Knowles]
[HKLM\Software\Logishrd]
[HKLM\Software\Macromedia]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\NVIDIA Corporation]
[HKLM\Software\ODBC]
[HKLM\Software\Policies]
[HKLM\Software\RTLSetup]
[HKLM\Software\Realtek Semiconductor Corp.]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SRS Labs]
[HKLM\Software\Samsung]
[HKLM\Software\SonicFocus]
[HKLM\Software\Waves Audio]
[HKLM\Software\Wow6432Node\ATI Technologies]
[HKLM\Software\Wow6432Node\ATI]
[HKLM\Software\Wow6432Node\Adobe]
[HKLM\Software\Wow6432Node\Atheros]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\FileZilla 3]
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\Hewlett-Packard]
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\JavaSoft]
[HKLM\Software\Wow6432Node\JreMetrics]
[HKLM\Software\Wow6432Node\Khronos]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\MusicNet]
[HKLM\Software\Wow6432Node\Nuance]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\Qualcomm Atheros]
[HKLM\Software\Wow6432Node\Realtek Semiconductor Corp.]
[HKLM\Software\Wow6432Node\Realtek]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\Samsung]
[HKLM\Software\Wow6432Node\SuppHelpDir]
[HKLM\Software\Wow6432Node\WinRAR]
[HKLM\Software\Wow6432Node\mozilla.org]
[HKLM\Software\Wow6432Node]
[HKLM\Software\cybelsoft]
~ Key Software: 126 Scanned in 00mn 00s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 17/09/2013 - 13:20:56 - [120,795] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 12/09/2013 - 15:30:12 - [0,765] ----D C:\Program Files (x86)\AMD AVT
O43 - CFD: 09/09/2013 - 18:15:25 - [67,428] ----D C:\Program Files (x86)\ATI Technologies
O43 - CFD: 17/09/2013 - 13:20:56 - [275,654] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 10/09/2013 - 16:05:47 - [29,521] ----D C:\Program Files (x86)\CPU Stress MT
O43 - CFD: 09/09/2013 - 19:13:27 - [17,329] ----D C:\Program Files (x86)\FileZilla FTP Client
O43 - CFD: 09/09/2013 - 18:12:32 - [7,003] ----D C:\Program Files (x86)\Geeks3D
O43 - CFD: 09/09/2013 - 02:23:51 - [385,175] ----D C:\Program Files (x86)\Google
O43 - CFD: 19/09/2013 - 15:45:45 - [8,623] ----D C:\Program Files (x86)\HP
O43 - CFD: 18/09/2013 - 13:41:35 - [56,874] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 12/09/2013 - 15:37:19 - [198,957] ----D C:\Program Files (x86)\Intel
O43 - CFD: 09/09/2013 - 17:47:19 - [4,622] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 17/09/2013 - 00:30:00 - [120,999] ----D C:\Program Files (x86)\Java
O43 - CFD: 09/09/2013 - 12:43:41 - [332,585] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 09/09/2013 - 12:43:39 - [0,014] ----D C:\Program Files (x86)\Microsoft Visual Studio
O43 - CFD: 12/09/2013 - 13:36:00 - [3,032] ----D C:\Program Files (x86)\Microsoft Works
O43 - CFD: 09/09/2013 - 12:43:15 - [7,797] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 19/09/2013 - 10:48:13 - [48,679] ----D C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 19/09/2013 - 10:48:12 - [0,216] ----D C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 07/08/2012 - 14:22:54 - [0,025] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 25/01/2013 - 03:52:13 - [0,036] ----D C:\Program Files (x86)\Qualcomm Atheros
O43 - CFD: 12/09/2013 - 15:04:38 - [72,806] ----D C:\Program Files (x86)\Realtek
O43 - CFD: 07/08/2012 - 14:22:54 - [36,536] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 25/01/2013 - 03:52:36 - [21,957] ----D C:\Program Files (x86)\Samsung
O43 - CFD: 12/09/2013 - 15:05:41 - [0] --H-D C:\Program Files (x86)\Temp
O43 - CFD: 09/09/2013 - 17:50:27 - [1,038] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 09/09/2013 - 03:02:47 - [5,466] ----D C:\Program Files (x86)\Windows Mail
O43 - CFD: 09/09/2013 - 03:02:47 - [3,494] ----D C:\Program Files (x86)\Windows Media Player
O43 - CFD: 26/07/2012 - 10:13:01 - [0,209] ----D C:\Program Files (x86)\Windows Multimedia Platform
O43 - CFD: 26/07/2012 - 10:12:59 - [7,243] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 09/09/2013 - 17:47:32 - [5,226] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 26/07/2012 - 10:13:01 - [0,209] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 26/07/2012 - 10:12:59 - [0] -SH-D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 09/09/2013 - 20:03:28 - [4,837] ----D C:\Program Files (x86)\WinRAR
O43 - CFD: 21/09/2013 - 15:48:19 - [21,812] ----D C:\Program Files (x86)\ZHPDiag  =>.Nicolas Coolman
O43 - CFD: 17/09/2013 - 13:21:07 - [6,289] ----D C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 12/09/2013 - 15:30:12 - [2,230] ----D C:\Program Files (x86)\Common Files\ATI Technologies
O43 - CFD: 09/09/2013 - 12:43:39 - [0,089] ----D C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 12/09/2013 - 15:03:51 - [2,009] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 12/09/2013 - 15:08:18 - [0,223] ----D C:\Program Files (x86)\Common Files\Intel Corporation
O43 - CFD: 17/09/2013 - 00:31:22 - [1,191] ----D C:\Program Files (x86)\Common Files\Java
O43 - CFD: 12/09/2013 - 14:56:05 - [221,727] ----D C:\Program Files (x86)\Common Files\Microsoft Shared
O43 - CFD: 12/09/2013 - 14:55:56 - [0,189] ----D C:\Program Files (x86)\Common Files\postureAgent
O43 - CFD: 26/07/2012 - 10:13:01 - [0,003] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 11/09/2013 - 03:00:26 - [41,705] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 17/09/2013 - 13:43:51 - [147,431] ----D C:\ProgramData\Adobe
O43 - CFD: 12/09/2013 - 15:30:13 - [0] ----D C:\ProgramData\AMD
O43 - CFD: 26/07/2012 - 09:22:08 - [0] --H-D C:\ProgramData\Application Data
O43 - CFD: 08/09/2013 - 18:36:39 - [0] --H-D C:\ProgramData\Bureau
O43 - CFD: 26/07/2012 - 09:22:08 - [0] --H-D C:\ProgramData\Desktop
O43 - CFD: 26/07/2012 - 09:22:08 - [0] --H-D C:\ProgramData\Documents
O43 - CFD: 19/09/2013 - 15:45:57 - [7,094] ----D C:\ProgramData\HP
O43 - CFD: 12/09/2013 - 15:07:03 - [10,000] ----D C:\ProgramData\Intel
O43 - CFD: 09/09/2013 - 18:56:49 - [1,359] ----D C:\ProgramData\ma-config.com
O43 - CFD: 08/09/2013 - 18:36:40 - [0] --H-D C:\ProgramData\Menu Démarrer
O43 - CFD: 18/09/2013 - 13:00:39 - [1252,439] -S--D C:\ProgramData\Microsoft
O43 - CFD: 11/11/2013 - 23:47:55 - [0,063] ----D C:\ProgramData\Microsoft Help
O43 - CFD: 08/09/2013 - 18:36:40 - [0] --H-D C:\ProgramData\Modèles
O43 - CFD: 19/09/2013 - 10:48:12 - [0,000] ----D C:\ProgramData\Mozilla
O43 - CFD: 17/09/2013 - 00:32:32 - [0] ----D C:\ProgramData\Oracle
O43 - CFD: 12/09/2013 - 15:27:06 - [13,409] ----D C:\ProgramData\Package Cache
O43 - CFD: 09/09/2013 - 17:56:40 - [0,048] ----D C:\ProgramData\PRICache
O43 - CFD: 25/01/2013 - 03:52:04 - [0,021] ----D C:\ProgramData\Qualcomm Atheros
O43 - CFD: 25/01/2013 - 20:48:02 - [0,001] ----D C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 26/07/2012 - 09:22:08 - [0] --H-D C:\ProgramData\Start Menu
O43 - CFD: 17/09/2013 - 00:31:25 - [0,000] ----D C:\ProgramData\Sun
O43 - CFD: 26/07/2012 - 09:22:08 - [0] --H-D C:\ProgramData\Templates
O43 - CFD: 17/09/2013 - 13:42:15 - [1,183] ----D C:\Users\cloclo\AppData\Roaming\Adobe
O43 - CFD: 09/09/2013 - 18:24:37 - [0] ----D C:\Users\cloclo\AppData\Roaming\ATI
O43 - CFD: 09/09/2013 - 19:41:35 - [0,028] ----D C:\Users\cloclo\AppData\Roaming\driveridentifier
O43 - CFD: 12/09/2013 - 15:07:24 - [0,001] ----D C:\Users\cloclo\AppData\Roaming\Intel Corporation
O43 - CFD: 09/09/2013 - 02:20:49 - [0,004] ----D C:\Users\cloclo\AppData\Roaming\Macromedia
O43 - CFD: 20/09/2013 - 14:17:00 - [4,583] -S--D C:\Users\cloclo\AppData\Roaming\Microsoft
O43 - CFD: 19/09/2013 - 10:48:44 - [28,963] ----D C:\Users\cloclo\AppData\Roaming\Mozilla
O43 - CFD: 09/09/2013 - 19:45:43 - [0] ----D C:\Users\cloclo\AppData\Roaming\MusicNet
O43 - CFD: 18/09/2013 - 13:40:40 - [0,006] R-H-D C:\Users\cloclo\AppData\Roaming\SecuROM
O43 - CFD: 09/09/2013 - 20:03:56 - [0,000] ----D C:\Users\cloclo\AppData\Roaming\WinRAR
O43 - CFD: 19/09/2013 - 11:04:49 - [17,752] ----D C:\Users\cloclo\AppData\Local\Adobe
O43 - CFD: 08/09/2013 - 18:37:29 - [0] ----D C:\Users\cloclo\AppData\Local\Application Data
O43 - CFD: 11/09/2013 - 18:15:36 - [4,292] ----D C:\Users\cloclo\AppData\Local\Apps
O43 - CFD: 09/09/2013 - 18:24:37 - [0,055] ----D C:\Users\cloclo\AppData\Local\ATI
O43 - CFD: 09/09/2013 - 02:23:19 - [0] ----D C:\Users\cloclo\AppData\Local\Deployment
O43 - CFD: 10/09/2013 - 15:55:17 - [1,279] ----D C:\Users\cloclo\AppData\Local\Diagnostics
O43 - CFD: 09/09/2013 - 02:24:10 - [510,158] ----D C:\Users\cloclo\AppData\Local\Google
O43 - CFD: 08/09/2013 - 18:37:29 - [0] ----D C:\Users\cloclo\AppData\Local\Historique
O43 - CFD: 17/09/2013 - 13:39:27 - [0,024] ----D C:\Users\cloclo\AppData\Local\HP
O43 - CFD: 19/09/2013 - 11:05:07 - [0] ----D C:\Users\cloclo\AppData\Local\Macromedia
O43 - CFD: 19/09/2013 - 11:05:07 - [371,100] ----D C:\Users\cloclo\AppData\Local\Microsoft
O43 - CFD: 09/09/2013 - 12:41:12 - [0] ----D C:\Users\cloclo\AppData\Local\Microsoft Help
O43 - CFD: 20/09/2013 - 10:56:42 - [379,029] ----D C:\Users\cloclo\AppData\Local\Mozilla
O43 - CFD: 08/09/2013 - 21:23:42 - [81,331] ----D C:\Users\cloclo\AppData\Local\Packages
O43 - CFD: 09/09/2013 - 18:12:22 - [0] ----D C:\Users\cloclo\AppData\Local\Programs
O43 - CFD: 17/09/2013 - 13:24:08 - [0,000] ----D C:\Users\cloclo\AppData\Local\Samsung
O43 - CFD: 21/09/2013 - 15:47:41 - [278,841] ----D C:\Users\cloclo\AppData\Local\Temp
O43 - CFD: 08/09/2013 - 18:37:29 - [0] ----D C:\Users\cloclo\AppData\Local\Temporary Internet Files
O43 - CFD: 08/09/2013 - 21:22:33 - [0] ----D C:\Users\cloclo\AppData\Local\VirtualStore
O43 - CFD: 26/07/2012 - 10:13:00 - [0,004] R---D C:\Users\cloclo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 26/07/2012 - 10:13:00 - [0,001] R---D C:\Users\cloclo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 09/09/2013 - 17:56:52 - [0,000] R---D C:\Users\cloclo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 26/07/2012 - 10:13:00 - [0,000] ----D C:\Users\cloclo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 09/09/2013 - 17:56:52 - [0,000] R---D C:\Users\cloclo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 26/07/2012 - 10:13:00 - [0,005] R---D C:\Users\cloclo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 11/09/2013 - 18:15:37 - [0,003] ----D C:\Users\cloclo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows 7 USB DVD Download Tool
O43 - CFD: 09/09/2013 - 20:03:28 - [0,004] ----D C:\Users\cloclo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
~ Program Folder: 104 Scanned in 00mn 02s



---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.E2DB9E96C6D4F31134A607527051E0DB] - 21/09/2013 - 09:00:03 -S-A- . (...) -- C:\Windows\bootstat.dat   [67584]
O44 - LFC:[MD5.0E92D8C0ECA74B6D0A55ABAD53226113] - 18/09/2013 - 09:46:26 ---A- . (.Microsoft Corporation - XAPOFX.) -- C:\Windows\SysNative\XAPOFX1_0.dll   [68104]
O44 - LFC:[MD5.0E92D8C0ECA74B6D0A55ABAD53226113] - 18/09/2013 - 09:46:26 ---A- . (.Microsoft Corporation - XAPOFX.) -- C:\Windows\System32\XAPOFX1_0.dll   [68104]
O44 - LFC:[MD5.E9C0F926D7C9082A805F4FEF81DEEB30] - 18/09/2013 - 09:46:26 ---A- . (.Microsoft Corporation - XAudio2 Game Audio API.) -- C:\Windows\SysNative\XAudio2_1.dll   [511496]
O44 - LFC:[MD5.E9C0F926D7C9082A805F4FEF81DEEB30] - 18/09/2013 - 09:46:26 ---A- . (.Microsoft Corporation - XAudio2 Game Audio API.) -- C:\Windows\System32\XAudio2_1.dll   [511496]
O44 - LFC:[MD5.DE6004D16DBACD781ED4596C4FEA7D14] - 18/09/2013 - 09:46:25 ---A- . (.Microsoft Corporation - X3DAudio.) -- C:\Windows\SysNative\X3DAudio1_4.dll   [28168]
O44 - LFC:[MD5.DE6004D16DBACD781ED4596C4FEA7D14] - 18/09/2013 - 09:46:25 ---A- . (.Microsoft Corporation - X3DAudio.) -- C:\Windows\System32\X3DAudio1_4.dll   [28168]
O44 - LFC:[MD5.A2A098BF5A8C255A0090818AD8E87B0F] - 18/09/2013 - 09:46:25 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\SysNative\xactengine3_1.dll   [177672]
O44 - LFC:[MD5.A2A098BF5A8C255A0090818AD8E87B0F] - 18/09/2013 - 09:46:25 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\System32\xactengine3_1.dll   [177672]
O44 - LFC:[MD5.A7E59BB6FAC119FABB83F18BD72AA1D7] - 18/09/2013 - 09:46:24 ---A- . (.Microsoft Corporation - Microsoft Direct3D.) -- C:\Windows\SysNative\D3DCompiler_38.dll   [1941528]
O44 - LFC:[MD5.72CB653CECF4EA670E7F5A8D74358423] - 18/09/2013 - 09:46:24 ---A- . (.Microsoft Corporation - Microsoft Direct3D.) -- C:\Windows\SysNative\d3dx10_38.dll   [540688]
O44 - LFC:[MD5.A7E59BB6FAC119FABB83F18BD72AA1D7] - 18/09/2013 - 09:46:24 ---A- . (.Microsoft Corporation - Microsoft Direct3D.) -- C:\Windows\System32\D3DCompiler_38.dll   [1941528]
O44 - LFC:[MD5.72CB653CECF4EA670E7F5A8D74358423] - 18/09/2013 - 09:46:24 ---A- . (.Microsoft Corporation - Microsoft Direct3D.) -- C:\Windows\System32\d3dx10_38.dll   [540688]
O44 - LFC:[MD5.E5EC2AB7156A752F9614CDA4BE66EFE8] - 18/09/2013 - 09:46:24 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\SysNative\D3DX9_38.dll   [4991496]
O44 - LFC:[MD5.E5EC2AB7156A752F9614CDA4BE66EFE8] - 18/09/2013 - 09:46:24 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\System32\D3DX9_38.dll   [4991496]
O44 - LFC:[MD5.FD94B83C0160B53E6C81CB68E604AFE6] - 18/09/2013 - 09:46:23 ---A- . (...) -- C:\Windows\DirectX.log   [10047]
O44 - LFC:[MD5.29AF48F6C894328A58DEFDC560A70CF3] - 18/09/2013 - 09:46:23 ---A- . (.Microsoft Corporation - XAudio2 Game Audio API.) -- C:\Windows\SysNative\XAudio2_0.dll   [489480]
O44 - LFC:[MD5.29AF48F6C894328A58DEFDC560A70CF3] - 18/09/2013 - 09:46:23 ---A- . (.Microsoft Corporation - XAudio2 Game Audio API.) -- C:\Windows\System32\XAudio2_0.dll   [489480]
O44 - LFC:[MD5.A8B5370B7B61D3777D840DA1C64A1C2D] - 18/09/2013 - 09:46:22 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\SysNative\xactengine3_0.dll   [177672]
O44 - LFC:[MD5.A8B5370B7B61D3777D840DA1C64A1C2D] - 18/09/2013 - 09:46:22 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\System32\xactengine3_0.dll   [177672]
O44 - LFC:[MD5.C4C2ED69B18EE1C60026877FCC470FA7] - 18/09/2013 - 09:46:21 ---A- . (.Microsoft Corporation - X3DAudio.) -- C:\Windows\SysNative\X3DAudio1_3.dll   [28168]
O44 - LFC:[MD5.C4C2ED69B18EE1C60026877FCC470FA7] - 18/09/2013 - 09:46:21 ---A- . (.Microsoft Corporation - X3DAudio.) -- C:\Windows\System32\X3DAudio1_3.dll   [28168]
O44 - LFC:[MD5.31026CEA5AFA2798292179102C06FE40] - 18/09/2013 - 09:46:19 ---A- . (.Microsoft Corporation - Microsoft Direct3D.) -- C:\Windows\SysNative\D3DCompiler_37.dll   [1860120]
O44 - LFC:[MD5.A8C5688BBA00C1630550F26260AB5CAE] - 18/09/2013 - 09:46:19 ---A- . (.Microsoft Corporation - Microsoft Direct3D.) -- C:\Windows\SysNative\d3dx10_37.dll   [529424]
O44 - LFC:[MD5.31026CEA5AFA2798292179102C06FE40] - 18/09/2013 - 09:46:19 ---A- . (.Microsoft Corporation - Microsoft Direct3D.) -- C:\Windows\System32\D3DCompiler_37.dll   [1860120]
O44 - LFC:[MD5.A8C5688BBA00C1630550F26260AB5CAE] - 18/09/2013 - 09:46:19 ---A- . (.Microsoft Corporation - Microsoft Direct3D.) -- C:\Windows\System32\d3dx10_37.dll   [529424]
O44 - LFC:[MD5.8A10974DC6E1E42BDC635C2C2AFBD2CC] - 18/09/2013 - 09:46:19 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\SysNative\D3DX9_37.dll   [4910088]
O44 - LFC:[MD5.8A10974DC6E1E42BDC635C2C2AFBD2CC] - 18/09/2013 - 09:46:19 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\System32\D3DX9_37.dll   [4910088]
O44 - LFC:[MD5.BC78D5328541410510DDE06B9FA92024] - 18/09/2013 - 09:46:18 ---A- . (.Microsoft Corporation - X3DAudio.) -- C:\Windows\SysNative\X3DAudio1_2.dll   [21000]
O44 - LFC:[MD5.BC78D5328541410510DDE06B9FA92024] - 18/09/2013 - 09:46:18 ---A- . (.Microsoft Corporation - X3DAudio.) -- C:\Windows\System32\X3DAudio1_2.dll   [21000]
O44 - LFC:[MD5.E8932AF24786765859558CB79E385AC2] - 18/09/2013 - 09:46:18 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\SysNative\xactengine2_10.dll   [411656]
O44 - LFC:[MD5.E8932AF24786765859558CB79E385AC2] - 18/09/2013 - 09:46:18 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\System32\xactengine2_10.dll   [411656]
O44 - LFC:[MD5.7299DF5CF81135934740211D9A946737] - 18/09/2013 - 09:46:17 ---A- . (.Microsoft Corporation - Microsoft Direct3D.) -- C:\Windows\SysNative\D3DCompiler_36.dll   [2006552]
O44 - LFC:[MD5.570FDAE7041775DE0C67747BB7081939] - 18/09/2013 - 09:46:17 ---A- . (.Microsoft Corporation - Microsoft Direct3D.) -- C:\Windows\SysNative\d3dx10_36.dll   [508264]
O44 - LFC:[MD5.7299DF5CF81135934740211D9A946737] - 18/09/2013 - 09:46:17 ---A- . (.Microsoft Corporation - Microsoft Direct3D.) -- C:\Windows\System32\D3DCompiler_36.dll   [2006552]
O44 - LFC:[MD5.570FDAE7041775DE0C67747BB7081939] - 18/09/2013 - 09:46:17 ---A- . (.Microsoft Corporation - Microsoft Direct3D.) -- C:\Windows\System32\d3dx10_36.dll   [508264]
O44 - LFC:[MD5.BBB6C6833C30E323B41860D6DF61972D] - 18/09/2013 - 09:46:17 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\SysNative\d3dx9_36.dll   [5081608]
O44 - LFC:[MD5.BBB6C6833C30E323B41860D6DF61972D] - 18/09/2013 - 09:46:17 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\System32\d3dx9_36.dll   [5081608]
O44 - LFC:[MD5.A69C32C2BD01522A088D254342826866] - 18/09/2013 - 09:46:16 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\SysNative\xactengine2_9.dll   [411496]
O44 - LFC:[MD5.A69C32C2BD01522A088D254342826866] - 18/09/2013 - 09:46:16 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\System32\xactengine2_9.dll   [411496]
O44 - LFC:[MD5.B21427EDF0449E92000FF497DAAF89C9] - 18/09/2013 - 09:46:15 ---A- . (.Microsoft Corporation - Microsoft Direct3D.) -- C:\Windows\SysNative\D3DCompiler_35.dll   [1985904]
O44 - LFC:[MD5.84116AA94672D623B95217648AE5B5B9] - 18/09/2013 - 09:46:15 ---A- . (.Microsoft Corporation - Microsoft Direct3D.) -- C:\Windows\SysNative\d3dx10_35.dll   [508264]
O44 - LFC:[MD5.B21427EDF0449E92000FF497DAAF89C9] - 18/09/2013 - 09:46:15 ---A- . (.Microsoft Corporation - Microsoft Direct3D.) -- C:\Windows\System32\D3DCompiler_35.dll   [1985904]
O44 - LFC:[MD5.84116AA94672D623B95217648AE5B5B9] - 18/09/2013 - 09:46:15 ---A- . (.Microsoft Corporation - Microsoft Direct3D.) -- C:\Windows\System32\d3dx10_35.dll   [508264]
O44 - LFC:[MD5.1B3AF16A27D390096925576202A64037] - 18/09/2013 - 09:46:15 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\SysNative\d3dx9_35.dll   [5073256]
O44 - LFC:[MD5.1B3AF16A27D390096925576202A64037] - 18/09/2013 - 09:46:15 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\System32\d3dx9_35.dll   [5073256]
O44 - LFC:[MD5.9D9407F52B8E24E99358D9944B0D5FA3] - 18/09/2013 - 09:46:14 ---A- . (.Microsoft Corporation - Microsoft Direct3D.) -- C:\Windows\SysNative\D3DCompiler_34.dll   [1401200]
O44 - LFC:[MD5.1ED4E7A82BD5C7DEED082F00E63BB7A0] - 18/09/2013 - 09:46:14 ---A- . (.Microsoft Corporation - Microsoft Direct3D.) -- C:\Windows\SysNative\d3dx10_34.dll   [506728]
O44 - LFC:[MD5.9D9407F52B8E24E99358D9944B0D5FA3] - 18/09/2013 - 09:46:14 ---A- . (.Microsoft Corporation - Microsoft Direct3D.) -- C:\Windows\System32\D3DCompiler_34.dll   [1401200]
O44 - LFC:[MD5.1ED4E7A82BD5C7DEED082F00E63BB7A0] - 18/09/2013 - 09:46:14 ---A- . (.Microsoft Corporation - Microsoft Direct3D.) -- C:\Windows\System32\d3dx10_34.dll   [506728]
O44 - LFC:[MD5.FA485E76F94B7457767E372F47757733] - 18/09/2013 - 09:46:14 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\SysNative\xactengine2_8.dll   [409960]
O44 - LFC:[MD5.FA485E76F94B7457767E372F47757733] - 18/09/2013 - 09:46:14 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\System32\xactengine2_8.dll   [409960]
O44 - LFC:[MD5.AE5D5439525B4A4CBF206058D493685D] - 18/09/2013 - 09:46:13 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\SysNative\d3dx9_34.dll   [4496232]
O44 - LFC:[MD5.AE5D5439525B4A4CBF206058D493685D] - 18/09/2013 - 09:46:13 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\System32\d3dx9_34.dll   [4496232]
O44 - LFC:[MD5.BFB3091B167550EC6E6454813D3DB244] - 18/09/2013 - 09:46:12 ---A- . (.Microsoft Corporation - Microsoft Common Controller API.) -- C:\Windows\SysNative\xinput1_3.dll   [107368]
O44 - LFC:[MD5.BFB3091B167550EC6E6454813D3DB244] - 18/09/2013 - 09:46:12 ---A- . (.Microsoft Corporation - Microsoft Common Controller API.) -- C:\Windows\System32\xinput1_3.dll   [107368]
O44 - LFC:[MD5.3EBF620536A13CA343E52ECA4F0DE7F8] - 18/09/2013 - 09:45:09 ---A- . (.Microsoft Corporation - Microsoft Direct3D.) -- C:\Windows\SysNative\D3DCompiler_33.dll   [1400176]
O44 - LFC:[MD5.839C3921005BB41D441E3752C74F2292] - 18/09/2013 - 09:45:09 ---A- . (.Microsoft Corporation - Microsoft Direct3D.) -- C:\Windows\SysNative\d3dx10_33.dll   [506728]
O44 - LFC:[MD5.3EBF620536A13CA343E52ECA4F0DE7F8] - 18/09/2013 - 09:45:09 ---A- . (.Microsoft Corporation - Microsoft Direct3D.) -- C:\Windows\System32\D3DCompiler_33.dll   [1400176]
O44 - LFC:[MD5.839C3921005BB41D441E3752C74F2292] - 18/09/2013 - 09:45:09 ---A- . (.Microsoft Corporation - Microsoft Direct3D.) -- C:\Windows\System32\d3dx10_33.dll   [506728]
O44 - LFC:[MD5.3172C3CAC8EA7CA1B5D5AF6699C037D6] - 18/09/2013 - 09:45:09 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\SysNative\d3dx9_33.dll   [4494184]
O44 - LFC:[MD5.3172C3CAC8EA7CA1B5D5AF6699C037D6] - 18/09/2013 - 09:45:09 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\System32\d3dx9_33.dll   [4494184]
O44 - LFC:[MD5.489E5B8BB1BD1028FF1C798EAAEC65E4] - 18/09/2013 - 09:45:09 ---A- . (.Microsoft Corporation - X3DAudio.) -- C:\Windows\SysNative\x3daudio1_1.dll   [17688]
O44 - LFC:[MD5.489E5B8BB1BD1028FF1C798EAAEC65E4] - 18/09/2013 - 09:45:09 ---A- . (.Microsoft Corporation - X3DAudio.) -- C:\Windows\System32\x3daudio1_1.dll   [17688]
O44 - LFC:[MD5.8C970509E0AE10061E3ED6D51E34FEB9] - 18/09/2013 - 09:45:09 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\SysNative\xactengine2_7.dll   [403304]
O44 - LFC:[MD5.8C970509E0AE10061E3ED6D51E34FEB9] - 18/09/2013 - 09:45:09 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\System32\xactengine2_7.dll   [403304]
O44 - LFC:[MD5.4837A54574A6105D404A8560984B93DD] - 18/09/2013 - 09:45:08 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\SysNative\xactengine2_6.dll   [393576]
O44 - LFC:[MD5.4837A54574A6105D404A8560984B93DD] - 18/09/2013 - 09:45:08 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\System32\xactengine2_6.dll   [393576]
O44 - LFC:[MD5.8251826F04BA0822D08AD9B92C65A3D5] - 18/09/2013 - 09:45:07 ---A- . (.Microsoft Corporation - Microsoft Direct3D.) -- C:\Windows\SysNative\d3dx10.dll   [469264]
O44 - LFC:[MD5.8251826F04BA0822D08AD9B92C65A3D5] - 18/09/2013 - 09:45:07 ---A- . (.Microsoft Corporation - Microsoft Direct3D.) -- C:\Windows\System32\d3dx10.dll   [469264]
O44 - LFC:[MD5.A4DDFE5DC4E73D1FED9B1B3A3D885612] - 18/09/2013 - 09:45:07 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\SysNative\d3dx9_32.dll   [4398360]
O44 - LFC:[MD5.A4DDFE5DC4E73D1FED9B1B3A3D885612] - 18/09/2013 - 09:45:07 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\System32\d3dx9_32.dll   [4398360]
O44 - LFC:[MD5.398FF46FF7354FED2F0F1AECDB546866] - 18/09/2013 - 09:45:07 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\SysNative\xactengine2_5.dll   [390424]
O44 - LFC:[MD5.398FF46FF7354FED2F0F1AECDB546866] - 18/09/2013 - 09:45:07 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\System32\xactengine2_5.dll   [390424]
O44 - LFC:[MD5.FAAA0BB9CD2905B25334132E5BA093EB] - 18/09/2013 - 09:45:06 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\SysNative\d3dx9_31.dll   [3977496]
O44 - LFC:[MD5.FAAA0BB9CD2905B25334132E5BA093EB] - 18/09/2013 - 09:45:06 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\System32\d3dx9_31.dll   [3977496]
O44 - LFC:[MD5.58BB51253427A834A8807B9245CC5965] - 18/09/2013 - 09:45:06 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\SysNative\xactengine2_4.dll   [364824]
O44 - LFC:[MD5.58BB51253427A834A8807B9245CC5965] - 18/09/2013 - 09:45:06 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\System32\xactengine2_4.dll   [364824]
O44 - LFC:[MD5.06F15D3CB1AE0EAFA50F595B3FF8D9F5] - 18/09/2013 - 09:45:05 ---A- . (.Microsoft Corporation - Microsoft Common Controller API.) -- C:\Windows\SysNative\xinput1_2.dll   [83736]
O44 - LFC:[MD5.06F15D3CB1AE0EAFA50F595B3FF8D9F5] - 18/09/2013 - 09:45:05 ---A- . (.Microsoft Corporation - Microsoft Common Controller API.) -- C:\Windows\System32\xinput1_2.dll   [83736]
O44 - LFC:[MD5.0396D2A98B0CCD4419B572EBF618E81E] - 18/09/2013 - 09:45:05 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\SysNative\xactengine2_3.dll   [363288]
O44 - LFC:[MD5.0396D2A98B0CCD4419B572EBF618E81E] - 18/09/2013 - 09:45:05 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\System32\xactengine2_3.dll   [363288]
O44 - LFC:[MD5.6F9D3289D8B166E478AFFF9EFA92C42C] - 18/09/2013 - 09:45:04 ---A- . (.Microsoft Corporation - Microsoft Common Controller API.) -- C:\Windows\SysNative\xinput1_1.dll   [83664]
O44 - LFC:[MD5.6F9D3289D8B166E478AFFF9EFA92C42C] - 18/09/2013 - 09:45:04 ---A- . (.Microsoft Corporation - Microsoft Common Controller API.) -- C:\Windows\System32\xinput1_1.dll   [83664]
O44 - LFC:[MD5.DC5A914C34EB12056531777D4DD0F44E] - 18/09/2013 - 09:45:04 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\SysNative\xactengine2_2.dll   [354072]
O44 - LFC:[MD5.DC5A914C34EB12056531777D4DD0F44E] - 18/09/2013 - 09:45:04 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\System32\xactengine2_2.dll   [354072]
O44 - LFC:[MD5.0CC809422AB40974DFF8078392E4D507] - 18/09/2013 - 09:45:03 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\SysNative\xactengine2_1.dll   [352464]
O44 - LFC:[MD5.0CC809422AB40974DFF8078392E4D507] - 18/09/2013 - 09:45:03 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\System32\xactengine2_1.dll   [352464]
O44 - LFC:[MD5.E09A9CF383ACF4A28038561E62277377] - 18/09/2013 - 09:44:59 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\SysNative\d3dx9_30.dll   [3927248]
O44 - LFC:[MD5.E09A9CF383ACF4A28038561E62277377] - 18/09/2013 - 09:44:59 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\System32\d3dx9_30.dll   [3927248]
O44 - LFC:[MD5.F77D5AB654881E683CFF6650916C424E] - 18/09/2013 - 09:44:58 ---A- . (.Microsoft Corporation - X3DAudio.) -- C:\Windows\SysNative\x3daudio1_0.dll   [16592]
O44 - LFC:[MD5.F77D5AB654881E683CFF6650916C424E] - 18/09/2013 - 09:44:58 ---A- . (.Microsoft Corporation - X3DAudio.) -- C:\Windows\System32\x3daudio1_0.dll   [16592]
O44 - LFC:[MD5.CE5753F9A27837259EB52F3F47F39593] - 18/09/2013 - 09:44:58 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\SysNative\xactengine2_0.dll   [355536]
O44 - LFC:[MD5.CE5753F9A27837259EB52F3F47F39593] - 18/09/2013 - 09:44:58 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\System32\xactengine2_0.dll   [355536]
O44 - LFC:[MD5.88BAC8306D4EC79A82B1FFA17DC8CF4A] - 18/09/2013 - 09:44:57 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\SysNative\d3dx9_28.dll   [3815120]
O44 - LFC:[MD5.68B35CBDB4A8CC424718BBCC894FEEEA] - 18/09/2013 - 09:44:57 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\SysNative\d3dx9_29.dll   [3830992]
O44 - LFC:[MD5.88BAC8306D4EC79A82B1FFA17DC8CF4A] - 18/09/2013 - 09:44:57 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\System32\d3dx9_28.dll   [3815120]
O44 - LFC:[MD5.68B35CBDB4A8CC424718BBCC894FEEEA] - 18/09/2013 - 09:44:57 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\System32\d3dx9_29.dll   [3830992]
O44 - LFC:[MD5.4C56E7C5B2A61353E534C7D15D05856D] - 18/09/2013 - 09:44:56 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\SysNative\d3dx9_25.dll   [3823312]
O44 - LFC:[MD5.44F5C5E27D6825E4E62420BC29B8B533] - 18/09/2013 - 09:44:56 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\SysNative\d3dx9_26.dll   [3767504]
O44 - LFC:[MD5.914C3237E4D145A18DCD1D0D4C8659E1] - 18/09/2013 - 09:44:56 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\SysNative\d3dx9_27.dll   [3807440]
O44 - LFC:[MD5.4C56E7C5B2A61353E534C7D15D05856D] - 18/09/2013 - 09:44:56 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\System32\d3dx9_25.dll   [3823312]
O44 - LFC:[MD5.44F5C5E27D6825E4E62420BC29B8B533] - 18/09/2013 - 09:44:56 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\System32\d3dx9_26.dll   [3767504]
O44 - LFC:[MD5.914C3237E4D145A18DCD1D0D4C8659E1] - 18/09/2013 - 09:44:56 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\System32\d3dx9_27.dll   [3807440]
O44 - LFC:[MD5.B165DF72E13E6AF74D47013504319921] - 18/09/2013 - 09:44:55 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\SysNative\d3dx9_24.dll   [3544272]
O44 - LFC:[MD5.B165DF72E13E6AF74D47013504319921] - 18/09/2013 - 09:44:55 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\System32\d3dx9_24.dll   [3544272]
O44 - LFC:[MD5.D5195FA56FFFB14B47CF15DE9EDDB42C] - 17/09/2013 - 13:08:35 ---A- . (...) -- C:\Windows\setupact.log   [5305]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 17/09/2013 - 13:08:35 RSHAD . (...) -- C:\Windows\System32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf   [0]
O44 - LFC:[MD5.3691C239E4265027B11AB92D19B87942] - 14/09/2013 - 18:53:32 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI   [1796784]
O44 - LFC:[MD5.5C21D9B318BA93298B2A7080A3DC9A5B] - 14/09/2013 - 18:53:32 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat   [133150]
O44 - LFC:[MD5.9546ABA0DB49A0963FB665BD665A61E8] - 14/09/2013 - 18:53:32 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat   [156186]
O44 - LFC:[MD5.1E4C3D014AF79C15DD59ABDF15793068] - 14/09/2013 - 18:53:32 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat   [711282]
O44 - LFC:[MD5.007A98A9B3D382AB34A38C9C5B95E79A] - 14/09/2013 - 18:53:32 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat   [802016]
O44 - LFC:[MD5.3691C239E4265027B11AB92D19B87942] - 14/09/2013 - 18:53:32 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI   [1796784]
O44 - LFC:[MD5.5C21D9B318BA93298B2A7080A3DC9A5B] - 14/09/2013 - 18:53:32 RSHAD . (...) -- C:\Windows\System32\perfc009.dat   [133150]
O44 - LFC:[MD5.9546ABA0DB49A0963FB665BD665A61E8] - 14/09/2013 - 18:53:32 RSHAD . (...) -- C:\Windows\System32\perfc00C.dat   [156186]
O44 - LFC:[MD5.1E4C3D014AF79C15DD59ABDF15793068] - 14/09/2013 - 18:53:32 RSHAD . (...) -- C:\Windows\System32\perfh009.dat   [711282]
O44 - LFC:[MD5.007A98A9B3D382AB34A38C9C5B95E79A] - 14/09/2013 - 18:53:32 RSHAD . (...) -- C:\Windows\System32\perfh00C.dat   [802016]
O44 - LFC:[MD5.5D2A84F81C2FBA5DDB4C7299914115D7] - 12/09/2013 - 14:32:58 ---A- . (...) -- C:\Windows\SysNative\results.xml   [16890]
O44 - LFC:[MD5.5D2A84F81C2FBA5DDB4C7299914115D7] - 12/09/2013 - 14:32:58 RSHAD . (...) -- C:\Windows\System32\results.xml   [16890]
O44 - LFC:[MD5.2E75AEB52AE5B143743866D3CF70C664] - 12/09/2013 - 14:30:57 ---A- . (...) -- C:\Windows\WindowsUpdate.log   [1478609]
O44 - LFC:[MD5.A31B66E5D42956B66E6389BB84F54D16] - 12/09/2013 - 14:04:55 ---A- . (.Waves Audio Ltd. - General Library for Plug-Ins.) -- C:\Windows\SysNative\WavesGUILib64.dll   [2102040]
O44 - LFC:[MD5.A31B66E5D42956B66E6389BB84F54D16] - 12/09/2013 - 14:04:55 RSHAD . (.Waves Audio Ltd. - General Library for Plug-Ins.) -- C:\Windows\System32\WavesGUILib64.dll   [2102040]
O44 - LFC:[MD5.018D3D2478754AA411DE6DA6DE5F8F21] - 12/09/2013 - 14:04:54 ---A- . (.SRS Labs, Inc. - TruSurroundXT Module.) -- C:\Windows\SysNative\SRSTSX64.dll   [518896]
O44 - LFC:[MD5.2FCADCC14F8E540F6ADE4BF92BD8AEDD] - 12/09/2013 - 14:04:54 ---A- . (.SRS Labs, Inc. - WOW HD COM object for Windows.) -- C:\Windows\SysNative\SRSWOW64.dll   [155888]
O44 - LFC:[MD5.018D3D2478754AA411DE6DA6DE5F8F21] - 12/09/2013 - 14:04:54 RSHAD . (.SRS Labs, Inc. - TruSurroundXT Module.) -- C:\Windows\System32\SRSTSX64.dll   [518896]
O44 - LFC:[MD5.2FCADCC14F8E540F6ADE4BF92BD8AEDD] - 12/09/2013 - 14:04:54 RSHAD . (.SRS Labs, Inc. - WOW HD COM object for Windows.) -- C:\Windows\System32\SRSWOW64.dll   [155888]
O44 - LFC:[MD5.A88BE9A6C4E646A2B2A1BD3A7F4B58E7] - 12/09/2013 - 14:04:53 ---A- . (.SRS Labs, Inc. - COM object implementing SRS Headphone 360.) -- C:\Windows\SysNative\SRSHP64.dll   [198896]
O44 - LFC:[MD5.A028717B791416182959B325D5B40679] - 12/09/2013 - 14:04:53 ---A- . (.SRS Labs, Inc. - TruSurround HD and HD4 COM object for Windo.) -- C:\Windows\SysNative\SRSTSH64.dll   [211184]
O44 - LFC:[MD5.A88BE9A6C4E646A2B2A1BD3A7F4B58E7] - 12/09/2013 - 14:04:53 RSHAD . (.SRS Labs, Inc. - COM object implementing SRS Headphone 360.) -- C:\Windows\System32\SRSHP64.dll   [198896]
O44 - LFC:[MD5.A028717B791416182959B325D5B40679] - 12/09/2013 - 14:04:53 RSHAD . (.SRS Labs, Inc. - TruSurround HD and HD4 COM object for Windo.) -- C:\Windows\System32\SRSTSH64.dll   [211184]
O44 - LFC:[MD5.4280F32BFCDA07B2E76EE1589118CBBB] - 12/09/2013 - 14:04:51 ---A- . (.Sony Corporation - Sony SFSS APO.) -- C:\Windows\SysNative\SFSS_APO.dll   [914992]
O44 - LFC:[MD5.4280F32BFCDA07B2E76EE1589118CBBB] - 12/09/2013 - 14:04:51 RSHAD . (.Sony Corporation - Sony SFSS APO.) -- C:\Windows\System32\SFSS_APO.dll   [914992]
O44 - LFC:[MD5.17ABCAD44A75C635583A238ED6333357] - 12/09/2013 - 14:04:50 ---A- . (.Synopsys, Inc. - SFAPO.DLL.) -- C:\Windows\SysNative\SFAPO64.dll   [78688]
O44 - LFC:[MD5.2C25AF115BDDC05D9A84D26227A08E63] - 12/09/2013 - 14:04:50 ---A- . (.Synopsys, Inc. - SFCOM.DLL.) -- C:\Windows\SysNative\SFCOM64.dll   [81248]
O44 - LFC:[MD5.7B3E9344FB43D799C6462227A0E65877] - 12/09/2013 - 14:04:50 ---A- . (.Synopsys, Inc. - SFNHK.DLL.) -- C:\Windows\SysNative\SFNHK64.dll   [221024]
O44 - LFC:[MD5.B8381E8753AF1AD487F96279D6A62584] - 12/09/2013 - 14:04:50 RSHAD . (...) -- C:\Windows\System32\Drivers\rtvienna.dat   [3180264]
O44 - LFC:[MD5.17ABCAD44A75C635583A238ED6333357] - 12/09/2013 - 14:04:50 RSHAD . (.Synopsys, Inc. - SFAPO.DLL.) -- C:\Windows\System32\SFAPO64.dll   [78688]
O44 - LFC:[MD5.2C25AF115BDDC05D9A84D26227A08E63] - 12/09/2013 - 14:04:50 RSHAD . (.Synopsys, Inc. - SFCOM.DLL.) -- C:\Windows\System32\SFCOM64.dll   [81248]
O44 - LFC:[MD5.7B3E9344FB43D799C6462227A0E65877] - 12/09/2013 - 14:04:50 RSHAD . (.Synopsys, Inc. - SFNHK.DLL.) -- C:\Windows\System32\SFNHK64.dll   [221024]
O44 - LFC:[MD5.6E9F7D88B659DB7C120C8781251EE8A1] - 12/09/2013 - 14:04:49 ---A- . (.Realtek Semiconductor Corp. - Realtek HD Audio Control Panel.) -- C:\Windows\SysNative\RTSnMg64.cpl   [1659464]
O44 - LFC:[MD5.743DA1A3AA3C7387F016E9AF3460C137] - 12/09/2013 - 14:04:49 ---A- . (.Realtek Semiconductor Corp. - Realtek LFX/GFX DSP UI component for Window.) -- C:\Windows\SysNative\RtPgEx64.dll   [2797128]
O44 - LFC:[MD5.6E9F7D88B659DB7C120C8781251EE8A1] - 12/09/2013 - 14:04:49 RSHAD . (.Realtek Semiconductor Corp. - Realtek HD Audio Control Panel.) -- C:\Windows\System32\RTSnMg64.cpl   [1659464]
O44 - LFC:[MD5.743DA1A3AA3C7387F016E9AF3460C137] - 12/09/2013 - 14:04:49 RSHAD . (.Realtek Semiconductor Corp. - Realtek LFX/GFX DSP UI component for Window.) -- C:\Windows\System32\RtPgEx64.dll   [2797128]
O44 - LFC:[MD5.CA1D7D09854D305A64B100DC1400BA21] - 12/09/2013 - 14:04:48 ---A- . (.Realtek Semiconductor Corp. - RtlCPAPI Module.) -- C:\Windows\SysNative\RtlCPAPI64.dll   [331880]
O44 - LFC:[MD5.CCEDD47ABD068C58C8513DEB785093BB] - 12/09/2013 - 14:04:48 RSHAD . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\Drivers\RTKVHD64.sys   [3379272]
O44 - LFC:[MD5.CA1D7D09854D305A64B100DC1400BA21] - 12/09/2013 - 14:04:48 RSHAD . (.Realtek Semiconductor Corp. - RtlCPAPI Module.) -- C:\Windows\System32\RtlCPAPI64.dll   [331880]
O44 - LFC:[MD5.8814A281406553A2640D6A04702C63BD] - 12/09/2013 - 14:04:46 ---A- . (.Realtek Semiconductor Corp. - Realtek HD Audio Coinstaller.) -- C:\Windows\SysNative\RtkCoLDR64.dll   [14952]
O44 - LFC:[MD5.0805289E121F3E3C458C970B08314EB2] - 12/09/2013 - 14:04:46 ---A- . (.Realtek Semiconductor Corp. - RtkCfg.dll.) -- C:\Windows\SysNative\RtkCfg64.dll   [149608]
O44 - LFC:[MD5.8814A281406553A2640D6A04702C63BD] - 12/09/2013 - 14:04:46 RSHAD . (.Realtek Semiconductor Corp. - Realtek HD Audio Coinstaller.) -- C:\Windows\System32\RtkCoLDR64.dll   [14952]
O44 - LFC:[MD5.0805289E121F3E3C458C970B08314EB2] - 12/09/2013 - 14:04:46 RSHAD . (.Realtek Semiconductor Corp. - RtkCfg.dll.) -- C:\Windows\System32\RtkCfg64.dll   [149608]
O44 - LFC:[MD5.A6286A6C7A1BBFCBA17AA54384A21D1C] - 12/09/2013 - 14:04:45 ---A- . (.Dolby Laboratories, Inc. - Dolby PCEE3 COM DLL x64.) -- C:\Windows\SysNative\RTEED64A.dll   [204120]
O44 - LFC:[MD5.D0D0D82B7366E691275E433CD34F89B2] - 12/09/2013 - 14:04:45 ---A- . (.Dolby Laboratories, Inc. - Dolby PCEE3 Control Panel x64.) -- C:\Windows\SysNative\RTEEP64A.dll   [375128]
O44 - LFC:[MD5.6F4CD493196100EEF349D7132CECAFD9] - 12/09/2013 - 14:04:45 ---A- . (.Dolby Laboratories, Inc. - Dolby PCEE3 GFX APO x64.) -- C:\Windows\SysNative\RTEEG64A.dll   [78680]
O44 - LFC:[MD5.ECAEC5FBBBEF8612AF0A866AFA5F7EF2] - 12/09/2013 - 14:04:45 ---A- . (.Dolby Laboratories, Inc. - Dolby PCEE3 LFX APO x64.) -- C:\Windows\SysNative\RTEEL64A.dll   [101208]
O44 - LFC:[MD5.74904CE406304A765C656F51CD3462BD] - 12/09/2013 - 14:04:45 ---A- . (.Realtek Semiconductor Corp. - HDA driver COM file.) -- C:\Windows\SysNative\RtDataProc64.dll   [613448]
O44 - LFC:[MD5.BBEF019234B76ABBDD1FF33E8F245009] - 12/09/2013 - 14:04:45 ---A- . (.Realtek Semiconductor Corp. - Realtek APO API.) -- C:\Windows\SysNative\RtkApi64.dll   [991816]
O44 - LFC:[MD5.93FC6137A37838125D386CC06AF0D615] - 12/09/2013 - 14:04:45 ---A- . (.Realtek Semiconductor Corp. - Realtek(r) LFX/GFX DSP component.) -- C:\Windows\SysNative\RtkAPO64.dll   [3693128]
O44 - LFC:[MD5.A6286A6C7A1BBFCBA17AA54384A21D1C] - 12/09/2013 - 14:04:45 RSHAD . (.Dolby Laboratories, Inc. - Dolby PCEE3 COM DLL x64.) -- C:\Windows\System32\RTEED64A.dll   [204120]
O44 - LFC:[MD5.D0D0D82B7366E691275E433CD34F89B2] - 12/09/2013 - 14:04:45 RSHAD . (.Dolby Laboratories, Inc. - Dolby PCEE3 Control Panel x64.) -- C:\Windows\System32\RTEEP64A.dll   [375128]
O44 - LFC:[MD5.6F4CD493196100EEF349D7132CECAFD9] - 12/09/2013 - 14:04:45 RSHAD . (.Dolby Laboratories, Inc. - Dolby PCEE3 GFX APO x64.) -- C:\Windows\System32\RTEEG64A.dll   [78680]
O44 - LFC:[MD5.ECAEC5FBBBEF8612AF0A866AFA5F7EF2] - 12/09/2013 - 14:04:45 RSHAD . (.Dolby Laboratories, Inc. - Dolby PCEE3 LFX APO x64.) -- C:\Windows\System32\RTEEL64A.dll   [101208]
O44 - LFC:[MD5.74904CE406304A765C656F51CD3462BD] - 12/09/2013 - 14:04:45 RSHAD . (.Realtek Semiconductor Corp. - HDA driver COM file.) -- C:\Windows\System32\RtDataProc64.dll   [613448]
O44 - LFC:[MD5.BBEF019234B76ABBDD1FF33E8F245009] - 12/09/2013 - 14:04:45 RSHAD . (.Realtek Semiconductor Corp. - Realtek APO API.) -- C:\Windows\System32\RtkApi64.dll   [991816]
O44 - LFC:[MD5.93FC6137A37838125D386CC06AF0D615] - 12/09/2013 - 14:04:45 RSHAD . (.Realtek Semiconductor Corp. - Realtek(r) LFX/GFX DSP component.) -- C:\Windows\System32\RtkAPO64.dll   [3693128]
O44 - LFC:[MD5.E9D4A333DF15D06C68AC4BFB9B6581CB] - 12/09/2013 - 14:04:43 ---A- . (.Dolby Laboratories, Inc. - PCEE3 DAA Control Panel x64.) -- C:\Windows\SysNative\RP3DAA64.dll   [310104]
O44 - LFC:[MD5.B6FE01558CC03F3866C9AD0ED19261D8] - 12/09/2013 - 14:04:43 ---A- . (.Dolby Laboratories, Inc. - PCEE3 DHT Control Panel x64.) -- C:\Windows\SysNative\RP3DHT64.dll   [310104]
O44 - LFC:[MD5.C2E9CFE429FA37A1CD25DDE21B6F380A] - 12/09/2013 - 14:04:43 ---A- . (.Realtek Semiconductor Corp. - RTCOMDLL Module.) -- C:\Windows\SysNative\RTCOM64.dll   [1284680]
O44 - LFC:[MD5.AADAFDA81303668BE6ED82AA357564CE] - 12/09/2013 - 14:04:43 RSHAD . (...) -- C:\Windows\System32\Drivers\RTAIODAT.DAT   [449481]
O44 - LFC:[MD5.E9D4A333DF15D06C68AC4BFB9B6581CB] - 12/09/2013 - 14:04:43 RSHAD . (.Dolby Laboratories, Inc. - PCEE3 DAA Control Panel x64.) -- C:\Windows\System32\RP3DAA64.dll   [310104]
O44 - LFC:[MD5.B6FE01558CC03F3866C9AD0ED19261D8] - 12/09/2013 - 14:04:43 RSHAD . (.Dolby Laboratories, Inc. - PCEE3 DHT Control Panel x64.) -- C:\Windows\System32\RP3DHT64.dll   [310104]
O44 - LFC:[MD5.C2E9CFE429FA37A1CD25DDE21B6F380A] - 12/09/2013 - 14:04:43 RSHAD . (.Realtek Semiconductor Corp. - RTCOMDLL Module.) -- C:\Windows\System32\RTCOM64.dll   [1284680]
O44 - LFC:[MD5.8882AD10853E45402CABD3BAF48A7EFC] - 12/09/2013 - 14:04:42 ---A- . (.Dolby Laboratories - Dolby PCEE4 ASL Analog x64.) -- C:\Windows\SysNative\R4EEA64A.dll   [124176]
O44 - LFC:[MD5.0B5EF50E26CFD1E7BF01E32E053532B2] - 12/09/2013 - 14:04:42 ---A- . (.Dolby Laboratories - Dolby PCEE4 COM DLL x64.) -- C:\Windows\SysNative\R4EED64A.dll   [434960]
O44 - LFC:[MD5.03625A179B27362D3A90E3331AEBE95E] - 12/09/2013 - 14:04:42 ---A- . (.Dolby Laboratories - Dolby PCEE4 Control Panel x64.) -- C:\Windows\SysNative\R4EEP64A.dll   [7164176]
O44 - LFC:[MD5.01096663377134C41D618AF0E53A953E] - 12/09/2013 - 14:04:42 ---A- . (.Dolby Laboratories - Dolby PCEE4 GFX APO x64.) -- C:\Windows\SysNative\R4EEG64A.dll   [75024]
O44 - LFC:[MD5.D0EB28022A91A5C084E8A7DEBB08D8D2] - 12/09/2013 - 14:04:42 ---A- . (.Dolby Laboratories - Dolby PCEE4 LFX APO x64.) -- C:\Windows\SysNative\R4EEL64A.dll   [141584]
O44 - LFC:[MD5.606D74267E1C40F4CEE8C467F9A14602] - 12/09/2013 - 14:04:42 ---A- . (.Realtek Semiconductor Corp. - Realtek HD Audio Coinstaller Resource.) -- C:\Windows\SysNative\RCoRes64.dat   [21170176]
O44 - LFC:[MD5.FA829873C46F2894641C9635D4D7E81D] - 12/09/2013 - 14:04:42 ---A- . (.Realtek Semiconductor Corp. - Realtek HD Audio Coinstaller.) -- C:\Windows\SysNative\RCoInstII64.dll   [135240]
O44 - LFC:[MD5.8882AD10853E45402CABD3BAF48A7EFC] - 12/09/2013 - 14:04:42 RSHAD . (.Dolby Laboratories - Dolby PCEE4 ASL Analog x64.) -- C:\Windows\System32\R4EEA64A.dll   [124176]
O44 - LFC:[MD5.0B5EF50E26CFD1E7BF01E32E053532B2] - 12/09/2013 - 14:04:42 RSHAD . (.Dolby Laboratories - Dolby PCEE4 COM DLL x64.) -- C:\Windows\System32\R4EED64A.dll   [434960]
O44 - LFC:[MD5.03625A179B27362D3A90E3331AEBE95E] - 12/09/2013 - 14:04:42 RSHAD . (.Dolby Laboratories - Dolby PCEE4 Control Panel x64.) -- C:\Windows\System32\R4EEP64A.dll   [7164176]
O44 - LFC:[MD5.01096663377134C41D618AF0E53A953E] - 12/09/2013 - 14:04:42 RSHAD . (.Dolby Laboratories - Dolby PCEE4 GFX APO x64.) -- C:\Windows\System32\R4EEG64A.dll   [75024]
O44 - LFC:[MD5.D0EB28022A91A5C084E8A7DEBB08D8D2] - 12/09/2013 - 14:04:42 RSHAD . (.Dolby Laboratories - Dolby PCEE4 LFX APO x64.) -- C:\Windows\System32\R4EEL64A.dll   [141584]
O44 - LFC:[MD5.606D74267E1C40F4CEE8C467F9A14602] - 12/09/2013 - 14:04:42 RSHAD . (.Realtek Semiconductor Corp. - Realtek HD Audio Coinstaller Resource.) -- C:\Windows\System32\RCoRes64.dat   [21170176]
O44 - LFC:[MD5.FA829873C46F2894641C9635D4D7E81D] - 12/09/2013 - 14:04:42 RSHAD . (.Realtek Semiconductor Corp. - Realtek HD Audio Coinstaller.) -- C:\Windows\System32\RCoInstII64.dll   [135240]
O44 - LFC:[MD5.CA3BF9314E779D15A6B8584C91066A65] - 12/09/2013 - 14:04:41 ---A- . (.Waves Audio Ltd. - MaxxAudio APO Shell.) -- C:\Windows\SysNative\MaxxAudioAPOShell64.dll   [910104]
O44 - LFC:[MD5.8B5090790A44C446EEC4D8313C916562] - 12/09/2013 - 14:04:41 ---A- . (.Waves Audio Ltd. - MaxxVolumeSD APO.) -- C:\Windows\SysNative\MaxxVolumeSDAPO.dll   [394616]
O44 - LFC:[MD5.8966DE21EF37689E24A6B5EA197A4231] - 12/09/2013 - 14:04:41 ---A- . (.Waves Audio Ltd. - Pas de description.) -- C:\Windows\SysNative\MaxxAudioEQ64.dll   [2032408]
O44 - LFC:[MD5.24B0DA3F04609982B11244D41A8C08A1] - 12/09/2013 - 14:04:41 ---A- . (.Waves Audio Ltd. - Pas de description.) -- C:\Windows\SysNative\MaxxAudioRealtek64.dll   [14021912]
O44 - LFC:[MD5.CA3BF9314E779D15A6B8584C91066A65] - 12/09/2013 - 14:04:41 RSHAD . (.Waves Audio Ltd. - MaxxAudio APO Shell.) -- C:\Windows\System32\MaxxAudioAPOShell64.dll   [910104]
O44 - LFC:[MD5.8B5090790A44C446EEC4D8313C916562] - 12/09/2013 - 14:04:41 RSHAD . (.Waves Audio Ltd. - MaxxVolumeSD APO.) -- C:\Windows\System32\MaxxVolumeSDAPO.dll   [394616]
O44 - LFC:[MD5.8966DE21EF37689E24A6B5EA197A4231] - 12/09/2013 - 14:04:41 RSHAD . (.Waves Audio Ltd. - Pas de description.) -- C:\Windows\System32\MaxxAudioEQ64.dll   [2032408]
O44 - LFC:[MD5.24B0DA3F04609982B11244D41A8C08A1] - 12/09/2013 - 14:04:41 RSHAD . (.Waves Audio Ltd. - Pas de description.) -- C:\Windows\System32\MaxxAudioRealtek64.dll   [14021912]
O44 - LFC:[MD5.6F7D1601DA55BBE5C7A79E01E236D7B9] - 12/09/2013 - 14:04:40 ---A- . (.Knowles Acoustics - Knowles HD Audio APO.) -- C:\Windows\SysNative\KAAPORT64.dll   [603984]
O44 - LFC:[MD5.75616F8DB5C092A8A50AFEC273859DD7] - 12/09/2013 - 14:04:40 ---A- . (.Waves Audio Ltd. - MaxxAudio APO.) -- C:\Windows\SysNative\MaxxAudioAPO20.dll   [318808]
O44 - LFC:[MD5.2197EC81609C18CC8E7018B19EF452F4] - 12/09/2013 - 14:04:40 ---A- . (.Waves Audio Ltd. - MaxxAudio APO.) -- C:\Windows\SysNative\MaxxAudioAPO30.dll   [395208]
O44 - LFC:[MD5.6F7D1601DA55BBE5C7A79E01E236D7B9] - 12/09/2013 - 14:04:40 RSHAD . (.Knowles Acoustics - Knowles HD Audio APO.) -- C:\Windows\System32\KAAPORT64.dll   [603984]
O44 - LFC:[MD5.75616F8DB5C092A8A50AFEC273859DD7] - 12/09/2013 - 14:04:40 RSHAD . (.Waves Audio Ltd. - MaxxAudio APO.) -- C:\Windows\System32\MaxxAudioAPO20.dll   [318808]
O44 - LFC:[MD5.2197EC81609C18CC8E7018B19EF452F4] - 12/09/2013 - 14:04:40 RSHAD . (.Waves Audio Ltd. - MaxxAudio APO.) -- C:\Windows\System32\MaxxAudioAPO30.dll   [395208]
O44 - LFC:[MD5.F7C357462077156DC211AC2112FC8C53] - 12/09/2013 - 14:04:39 ---A- . (.DTS - DTS Surround Sensation Headphone COM DLL.) -- C:\Windows\SysNative\DTSS2HeadphoneDLL64.dll   [1568360]
O44 - LFC:[MD5.F132C08BD8C58579B400DFAA71F34CFB] - 12/09/2013 - 14:04:39 ---A- . (.DTS - DTS Surround Sensation Speaker COM DLL.) -- C:\Windows\SysNative\DTSS2SpeakerDLL64.dll   [1756264]
O44 - LFC:[MD5.9948969B2C1987B1D64789EFEB284A84] - 12/09/2013 - 14:04:39 ---A- . (.DTS - DTS Symmetry COM DLL.) -- C:\Windows\SysNative\DTSSymmetryDLL64.dll   [712296]
O44 - LFC:[MD5.DE32448E6B40141C80DAABFF6FBE1744] - 12/09/2013 - 14:04:39 ---A- . (.DTS - DTS Voice Clarity COM DLL.) -- C:\Windows\SysNative\DTSVoiceClarityDLL64.dll   [693352]
O44 - LFC:[MD5.898F694C5F3F94D2BC185EEF4E2E2499] - 12/09/2013 - 14:04:39 ---A- . (.Fortemedia Corporation - Fortemedia SAMSoft sAPO.) -- C:\Windows\SysNative\FMAPO64.dll   [2734624]
O44 - LFC:[MD5.F7C357462077156DC211AC2112FC8C53] - 12/09/2013 - 14:04:39 RSHAD . (.DTS - DTS Surround Sensation Headphone COM DLL.) -- C:\Windows\System32\DTSS2HeadphoneDLL64.dll   [1568360]
O44 - LFC:[MD5.F132C08BD8C58579B400DFAA71F34CFB] - 12/09/2013 - 14:04:39 RSHAD . (.DTS - DTS Surround Sensation Speaker COM DLL.) -- C:\Windows\System32\DTSS2SpeakerDLL64.dll   [1756264]
O44 - LFC:[MD5.9948969B2C1987B1D64789EFEB284A84] - 12/09/2013 - 14:04:39 RSHAD . (.DTS - DTS Symmetry COM DLL.) -- C:\Windows\System32\DTSSymmetryDLL64.dll   [712296]
O44 - LFC:[MD5.DE32448E6B40141C80DAABFF6FBE1744] - 12/09/2013 - 14:04:39 RSHAD . (.DTS - DTS Voice Clarity COM DLL.) -- C:\Windows\System32\DTSVoiceClarityDLL64.dll   [693352]
O44 - LFC:[MD5.898F694C5F3F94D2BC185EEF4E2E2499] - 12/09/2013 - 14:04:39 RSHAD . (.Fortemedia Corporation - Fortemedia SAMSoft sAPO.) -- C:\Windows\System32\FMAPO64.dll   [2734624]
O44 - LFC:[MD5.8356A6220F249C76CCDBA10B5FF49F88] - 12/09/2013 - 14:04:38 ---A- . (.Andrea Electronics Corporation - Capture Noise Filters (64-bit).) -- C:\Windows\SysNative\AERTAC64.dll   [208072]
O44 - LFC:[MD5.B3E9EA31E37EDCC1D54CE20504549ABE] - 12/09/2013 - 14:04:38 ---A- . (.Andrea Electronics Corporation - Render Noise Filters (64-bit).) -- C:\Windows\SysNative\AERTAR64.dll   [108640]
O44 - LFC:[MD5.8B5A737AD11EF45D9B1AEB4ED6884968] - 12/09/2013 - 14:04:38 ---A- . (.DTS - DTS Bass Enhancement COM DLL.) -- C:\Windows\SysNative\DTSBassEnhancementDLL64.dll   [728680]
O44 - LFC:[MD5.21B38D4D86A87909491F690883AE6D1E] - 12/09/2013 - 14:04:38 ---A- . (.DTS - DTS Boost COM DLL.) -- C:\Windows\SysNative\DTSBoostDLL64.dll   [1486952]
O44 - LFC:[MD5.BC0474E5476E5EA0D0E1AA5AC41E2061] - 12/09/2013 - 14:04:38 ---A- . (.DTS - DTS GFX APO.) -- C:\Windows\SysNative\DTSGFXAPO64.dll   [242792]
O44 - LFC:[MD5.3B8FB5376F5431C0101747D5138BCB9B] - 12/09/2013 - 14:04:38 ---A- . (.DTS - DTS GFX APO.) -- C:\Windows\SysNative\DTSGFXAPONS64.dll   [241768]
O44 - LFC:[MD5.FF31A2F57AAAB58DB78FCC961A58B206] - 12/09/2013 - 14:04:38 ---A- . (.DTS - DTS Gain Compensator COM DLL.) -- C:\Windows\SysNative\DTSGainCompensatorDLL64.dll   [428648]
O44 - LFC:[MD5.B3977C8BA77559F4F8752AE8EB724C87] - 12/09/2013 - 14:04:38 ---A- . (.DTS - DTS LFX APO.) -- C:\Windows\SysNative\DTSLFXAPO64.dll   [242792]
O44 - LFC:[MD5.192A03A21636D3775CEE4C049C3BEB2A] - 12/09/2013 - 14:04:38 ---A- . (.DTS - DTS Limiter COM DLL.) -- C:\Windows\SysNative\DTSLimiterDLL64.dll   [432744]
O44 - LFC:[MD5.2EF5442E8E7ED20F7634EEFB09640C8F] - 12/09/2013 - 14:04:38 ---A- . (.DTS - DTS NEO:PC COM DLL.) -- C:\Windows\SysNative\DTSNeoPCDLL64.dll   [491112]
O44 - LFC:[MD5.A797EED94B22B29D3974CB20B66BE6C6] - 12/09/2013 - 14:04:38 ---A- . (.Real Sound Lab SIA - CONEQ™ Media Suite APO GUI Library.) -- C:\Windows\SysNative\CONEQMSAPOGUILibrary.dll   [110592]
O44 - LFC:[MD5.8356A6220F249C76CCDBA10B5FF49F88] - 12/09/2013 - 14:04:38 RSHAD . (.Andrea Electronics Corporation - Capture Noise Filters (64-bit).) -- C:\Windows\System32\AERTAC64.dll   [208072]
O44 - LFC:[MD5.B3E9EA31E37EDCC1D54CE20504549ABE] - 12/09/2013 - 14:04:38 RSHAD . (.Andrea Electronics Corporation - Render Noise Filters (64-bit).) -- C:\Windows\System32\AERTAR64.dll   [108640]
O44 - LFC:[MD5.8B5A737AD11EF45D9B1AEB4ED6884968] - 12/09/2013 - 14:04:38 RSHAD . (.DTS - DTS Bass Enhancement COM DLL.) -- C:\Windows\System32\DTSBassEnhancementDLL64.dll   [728680]
O44 - LFC:[MD5.21B38D4D86A87909491F690883AE6D1E] - 12/09/2013 - 14:04:38 RSHAD . (.DTS - DTS Boost COM DLL.) -- C:\Windows\System32\DTSBoostDLL64.dll   [1486952]
O44 - LFC:[MD5.BC0474E5476E5EA0D0E1AA5AC41E2061] - 12/09/2013 - 14:04:38 RSHAD . (.DTS - DTS GFX APO.) -- C:\Windows\System32\DTSGFXAPO64.dll   [242792]
O44 - LFC:[MD5.3B8FB5376F5431C0101747D5138BCB9B] - 12/09/2013 - 14:04:38 RSHAD . (.DTS - DTS GFX APO.) -- C:\Windows\System32\DTSGFXAPONS64.dll   [241768]
O44 - LFC:[MD5.FF31A2F57AAAB58DB78FCC961A58B206] - 12/09/2013 - 14:04:38 RSHAD . (.DTS - DTS Gain Compensator COM DLL.) -- C:\Windows\System32\DTSGainCompensatorDLL64.dll   [428648]
O44 - LFC:[MD5.B3977C8BA77559F4F8752AE8EB724C87] - 12/09/2013 - 14:04:38 RSHAD . (.DTS - DTS LFX APO.) -- C:\Windows\System32\DTSLFXAPO64.dll   [242792]
O44 - LFC:[MD5.192A03A21636D3775CEE4C049C3BEB2A] - 12/09/2013 - 14:04:38 RSHAD . (.DTS - DTS Limiter COM DLL.) -- C:\Windows\System32\DTSLimiterDLL64.dll   [432744]
O44 - LFC:[MD5.2EF5442E8E7ED20F7634EEFB09640C8F] - 12/09/2013 - 14:04:38 RSHAD . (.DTS - DTS NEO:PC COM DLL.) -- C:\Windows\System32\DTSNeoPCDLL64.dll   [491112]
O44 - LFC:[MD5.A797EED94B22B29D3974CB20B66BE6C6] - 12/09/2013 - 14:04:38 RSHAD . (.Real Sound Lab SIA - CONEQ™ Media Suite APO GUI Library.) -- C:\Windows\System32\CONEQMSAPOGUILibrary.dll   [110592]
O44 - LFC:[MD5.AAE3FA6E8156E4577E1F0AC195F4F11E] - 12/09/2013 - 14:03:57 ---A- . (.Realtek Semiconductor Corp. - RtlExUpd DLL for setup utility function.) -- C:\Windows\RtlExUpd.dll   [2079816]
O44 - LFC:[MD5.DE5C0B680F7E44519E157D610106EF0A] - 12/09/2013 - 13:58:35 ---A- . (...) -- C:\IFRToolLog.txt   [5310]
O44 - LFC:[MD5.C4A7FD08DEE47949DF80142E8113780C] - 12/09/2013 - 13:56:28 RSHAD . (.Intel Corporation - Intel® Manageability Engine Firmware Dynami.) -- C:\Windows\System32\Drivers\IntelMEFWVer.dll   [8192]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 12/09/2013 - 13:55:56 RSHAD . (...) -- C:\Windows\System32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf   [0]
O44 - LFC:[MD5.D10864C1730172780C2D4BE633B9220A] - 12/09/2013 - 13:54:51 ---A- . (.Microsoft Corporation - WDF Coinstaller.) -- C:\Windows\SysNative\WdfCoInstaller01011.dll   [1795952]
O44 - LFC:[MD5.CFBDB416E1DC172327C099DB122FE15D] - 12/09/2013 - 13:54:51 RSHAD . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\Drivers\TeeDriverx64.sys   [99800]
O44 - LFC:[MD5.D10864C1730172780C2D4BE633B9220A] - 12/09/2013 - 13:54:51 RSHAD . (.Microsoft Corporation - WDF Coinstaller.) -- C:\Windows\System32\WdfCoInstaller01011.dll   [1795952]
O44 - LFC:[MD5.EB0CBB0D745EE7645553931EB104A3E8] - 12/09/2013 - 13:53:04 ---A- . (...) -- C:\Windows\win.ini   [450]
O44 - LFC:[MD5.1CBB8A7AA06307B7B235AF5F5DEF574F] - 12/09/2013 - 13:52:47 ---A- . (...) -- C:\Windows\SysNative\RTCM_Config.ini   [869]
O44 - LFC:[MD5.1CBB8A7AA06307B7B235AF5F5DEF574F] - 12/09/2013 - 13:52:47 RSHAD . (...) -- C:\Windows\System32\RTCM_Config.ini   [869]
O44 - LFC:[MD5.84DE89630E4C131C3A594100982F917B] - 12/09/2013 - 13:52:35 ---A- . (.Realtek - Realtek Camera Manager.) -- C:\Windows\SysNative\Realtek Camera Manager.cpl   [24498176]
O44 - LFC:[MD5.84DE89630E4C131C3A594100982F917B] - 12/09/2013 - 13:52:35 RSHAD . (.Realtek - Realtek Camera Manager.) -- C:\Windows\System32\Realtek Camera Manager.cpl   [24498176]
O44 - LFC:[MD5.B70E2D5DFF037DF4F8EE249AA4A0B869] - 12/09/2013 - 13:52:34 ---A- . (.Realtek Semiconductor Corp. - RTSUVCUninst MFC Application.) -- C:\Windows\RtCamU64.exe   [2339472]
O44 - LFC:[MD5.DE19C382951E52BAEC399E81855AC7C2] - 12/09/2013 - 13:52:34 ---A- . (.Realtek Semiconductor Corp. - Realtek Camera Man.) -- C:\Windows\RtsCM64.exe   [98960]
O44 - LFC:[MD5.7A12D33C97D8976FA51F6D1D81D0C160] - 12/09/2013 - 13:52:34 ---A- . (.Realtek Semiconductor Corp. - RtsUvcExt Driver Extension.) -- C:\Windows\SysNative\RtCamX64.dll   [358544]
O44 - LFC:[MD5.38F1942A79CCB2CAF570F3A4D2E9A272] - 12/09/2013 - 13:52:34 RSHAD . (.Realtek Semiconductor Corp. - Realtek UVC Driver for XP/Vista/Win7.) -- C:\Windows\System32\Drivers\rtsuvc.sys   [8228240]
O44 - LFC:[MD5.7A12D33C97D8976FA51F6D1D81D0C160] - 12/09/2013 - 13:52:34 RSHAD . (.Realtek Semiconductor Corp. - RtsUvcExt Driver Extension.) -- C:\Windows\System32\RtCamX64.dll   [358544]
O44 - LFC:[MD5.DB14E0E8EBB9C890656CAB0B84AE3D79] - 12/09/2013 - 12:45:09 ---A- . (...) -- C:\Windows\SysNative\FNTCACHE.DAT   [356608]
O44 - LFC:[MD5.DB14E0E8EBB9C890656CAB0B84AE3D79] - 12/09/2013 - 12:45:09 RSHAD . (...) -- C:\Windows\System32\FNTCACHE.DAT   [356608]
O44 - LFC:[MD5.67FC5B9D0957C4FBB37376DE49A2B170] - 11/09/2013 - 17:48:12 ---A- . (...) -- C:\Windows\diagerr.xml   [1890]
O44 - LFC:[MD5.D1D3E752C15A7065B177BEDDDD8CC7E2] - 11/09/2013 - 17:48:12 ---A- . (...) -- C:\Windows\diagwrn.xml   [2544]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 11/09/2013 - 17:38:29 ---A- . (...) -- C:\Windows\setuperr.log   [0]
O44 - LFC:[MD5.32DDD9C91224BE4BB4AB9DC96E4A9FBB] - 09/09/2013 - 19:04:58 RSHAD . (.Qualcomm Atheros - Qualcomm Atheros BtFilter Driver.) -- C:\Windows\System32\Drivers\btfilter.sys   [578792]
O44 - LFC:[MD5.2F185AB39092C9BB1808086A1A2A3B5A] - 09/09/2013 - 19:04:37 ---A- . (...) -- C:\Windows\DPINST.LOG   [5382]
O44 - LFC:[MD5.194ED3C117525613E701FF257882303E] - 09/09/2013 - 19:04:08 RSHAD . (.Windows (R) Win 7 DDK provider - HID Radio Switch mini driver for USB Fx2 De.) -- C:\Windows\System32\Drivers\RadioHIDMini.sys   [23408]
O44 - LFC:[MD5.DD9ECACE1C7FA7699940069B5B2539D4] - 09/09/2013 - 18:29:29 ---A- . (.Realtek Semiconductor Corporation - About Page.) -- C:\Windows\SysNative\RtNicProp64.dll   [74456]
O44 - LFC:[MD5.DD9ECACE1C7FA7699940069B5B2539D4] - 09/09/2013 - 18:29:29 RSHAD . (.Realtek Semiconductor Corporation - About Page.) -- C:\Windows\System32\RtNicProp64.dll   [74456]
O44 - LFC:[MD5.948D5E71CF9DB59961353A355EA45139] - 09/09/2013 - 18:29:28 RSHAD . (.Realtek - Realtek 8101E/8168/8169 NDIS 6.30 64-bit Dr.) -- C:\Windows\System32\Drivers\Rt630x64.sys   [816344]
O44 - LFC:[MD5.28B356BAB74470786867BF4DC261E17C] - 09/09/2013 - 18:14:09 RSHAD . (.Realtek Semiconductor Corp. - Realtek USB Mass Storage Driver for 2K/XP/V.) -- C:\Windows\System32\Drivers\RtsUVStor.sys   [329944]
O44 - LFC:[MD5.416326B6BAB9784277C42679459E06F5] - 09/09/2013 - 17:18:29 ---A- . (...) -- C:\Windows\PFRO.log   [3434]
O44 - LFC:[MD5.D0948D15C42B1E2F17A67223D27F9577] - 09/09/2013 - 17:15:21 ---A- . (.ATI Technologies, Inc. - atiedu64.) -- C:\Windows\SysNative\atiedu64.dll   [59392]
O44 - LFC:[MD5.D0948D15C42B1E2F17A67223D27F9577] - 09/09/2013 - 17:15:21 RSHAD . (.ATI Technologies, Inc. - atiedu64.) -- C:\Windows\System32\atiedu64.dll   [59392]
O44 - LFC:[MD5.C7ECEFD495A679284D0E9BC069F96246] - 09/09/2013 - 14:19:50 ---A- . (.Microsoft Corporation - Outil de suppression de logiciels malveilla.) -- C:\Windows\SysNative\MRT.exe   [79143768]
O44 - LFC:[MD5.C7ECEFD495A679284D0E9BC069F96246] - 09/09/2013 - 14:19:50 RSHAD . (.Microsoft Corporation - Outil de suppression de logiciels malveilla.) -- C:\Windows\System32\MRT.exe   [79143768]
O44 - LFC:[MD5.EFD3FD9742ACD4795DEEC4F2A5C826D8] - 09/09/2013 - 14:12:47 ----- . (.Microsoft Corporation - Microsoft Malware Protection Signature Upda.) -- C:\Windows\SysNative\MpSigStub.exe   [278800]
O44 - LFC:[MD5.EFD3FD9742ACD4795DEEC4F2A5C826D8] - 09/09/2013 - 14:12:47 RSHAD . (.Microsoft Corporation - Microsoft Malware Protection Signature Upda.) -- C:\Windows\System32\MpSigStub.exe   [278800]
O44 - LFC:[MD5.64C3C2FCFECC783279FBC51769673144] - 09/09/2013 - 14:04:14 ---A- . (.Microsoft Corporation - Microsoft Tripoli Query.) -- C:\Windows\SysNative\tquery.dll   [3552768]
O44 - LFC:[MD5.64C3C2FCFECC783279FBC51769673144] - 09/09/2013 - 14:04:14 ---A- . (.Microsoft Corporation - Microsoft Tripoli Query.) -- C:\Windows\System32\tquery.dll   [3552768]
O44 - LFC:[MD5.57EF2DC36D34092F79CD9F7F016359F3] - 09/09/2013 - 14:04:14 ---A- . (.Microsoft Corporation - Windows Media Player.) -- C:\Windows\SysNative\wmp.dll   [14267904]
O44 - LFC:[MD5.57EF2DC36D34092F79CD9F7F016359F3] - 09/09/2013 - 14:04:14 ---A- . (.Microsoft Corporation - Windows Media Player.) -- C:\Windows\System32\wmp.dll   [14267904]
O44 - LFC:[MD5.13FC1A4A3463E9DE1EF1881E8525EB56] - 09/09/2013 - 14:04:12 ---A- . (.Microsoft Corporation - Recherche intégrée Microsoft.) -- C:\Windows\SysNative\mssrch.dll   [2107904]
O44 - LFC:[MD5.13FC1A4A3463E9DE1EF1881E8525EB56] - 09/09/2013 - 14:04:12 ---A- . (.Microsoft Corporation - Recherche intégrée Microsoft.) -- C:\Windows\System32\mssrch.dll   [2107904]
O44 - LFC:[MD5.A05BA2FE3B3FFE1920F383E3E321D9A2] - 09/09/2013 - 14:04:08 ---A- . (.Microsoft Corporation - DLL Couche NT.) -- C:\Windows\SysNative\ntdll.dll   [1829408]
O44 - LFC:[MD5.A05BA2FE3B3FFE1920F383E3E321D9A2] - 09/09/2013 - 14:04:08 ---A- . (.Microsoft Corporation - DLL Couche NT.) -- C:\Windows\System32\ntdll.dll   [1829408]
O44 - LFC:[MD5.092115A536C478921DA3D24E29C06E3E] - 09/09/2013 - 14:04:06 ---A- . (.Microsoft Corporation - Media Foundation Audio Decoders.) -- C:\Windows\SysNative\MSAudDecMFT.dll   [1444864]
O44 - LFC:[MD5.092115A536C478921DA3D24E29C06E3E] - 09/09/2013 - 14:04:06 ---A- . (.Microsoft Corporation - Media Foundation Audio Decoders.) -- C:\Windows\System32\MSAudDecMFT.dll   [1444864]
O44 - LFC:[MD5.9FDAA6957F04A6D1917463B7CBBEF88A] - 09/09/2013 - 14:04:05 ---A- . (.Microsoft Corporation - Indexeur Microsoft Windows Search.) -- C:\Windows\SysNative\SearchIndexer.exe   [816128]
O44 - LFC:[MD5.9FDAA6957F04A6D1917463B7CBBEF88A] - 09/09/2013 - 14:04:05 ---A- . (.Microsoft Corporation - Indexeur Microsoft Windows Search.) -- C:\Windows\System32\SearchIndexer.exe   [816128]
O44 - LFC:[MD5.A7FA87716A1F39BECB5CDED4F03C73F7] - 09/09/2013 - 14:04:05 ---A- . (.Microsoft Corporation - Realtek Network Kernel Debug Extensibility.) -- C:\Windows\SysNative\kd_02_10ec.dll   [306952]
O44 - LFC:[MD5.810F30FF8490ED5ED510621DF10DE320] - 09/09/2013 - 14:04:05 ---A- . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\SysNative\audiosrv.dll   [785408]
O44 - LFC:[MD5.ED40ED9A65F3E79A8C43DD50C5FDADBF] - 09/09/2013 - 14:04:05 ---A- . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\SysNative\schedsvc.dll   [1285632]
O44 - LFC:[MD5.56218A571ECF8D55E0CDFF8DF2546CF1] - 09/09/2013 - 14:04:05 RSHAD . (.Microsoft Corporation - Pilote de serveur SMB 2.0.) -- C:\Windows\System32\Drivers\srv2.sys   [623104]
O44 - LFC:[MD5.A7FA87716A1F39BECB5CDED4F03C73F7] - 09/09/2013 - 14:04:05 RSHAD . (.Microsoft Corporation - Realtek Network Kernel Debug Extensibility.) -- C:\Windows\System32\kd_02_10ec.dll   [306952]
O44 - LFC:[MD5.810F30FF8490ED5ED510621DF10DE320] - 09/09/2013 - 14:04:05 RSHAD . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\audiosrv.dll   [785408]
O44 - LFC:[MD5.ED40ED9A65F3E79A8C43DD50C5FDADBF] - 09/09/2013 - 14:04:05 RSHAD . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll   [1285632]
O44 - LFC:[MD5.C82794F9B5AF314F7CACA6AF758C44A0] - 09/09/2013 - 14:04:04 ---A- . (.Microsoft Corporation - Fournisseur de sécurité TLS/SSL.) -- C:\Windows\SysNative\schannel.dll   [422400]
O44 - LFC:[MD5.C82794F9B5AF314F7CACA6AF758C44A0] - 09/09/2013 - 14:04:04 ---A- . (.Microsoft Corporation - Fournisseur de sécurité TLS/SSL.) -- C:\Windows\System32\schannel.dll   [422400]
O44 - LFC:[MD5.77DAB73F2AF988D07D72FD2DA0DC91FC] - 09/09/2013 - 14:04:04 ---A- . (.Microsoft Corporation - Microsoft Enhanced Cryptographic Provider.) -- C:\Windows\SysNative\rsaenh.dll   [298456]
O44 - LFC:[MD5.77DAB73F2AF988D07D72FD2DA0DC91FC] - 09/09/2013 - 14:04:04 ---A- . (.Microsoft Corporation - Microsoft Enhanced Cryptographic Provider.) -- C:\Windows\System32\rsaenh.dll   [298456]
O44 - LFC:[MD5.480FB2259449C49C630D4AC3EC1EB426] - 09/09/2013 - 14:04:04 ---A- . (.Microsoft Corporation - Microsoft Windows Search Protocol Host.) -- C:\Windows\SysNative\SearchProtocolHost.exe   [373760]
O44 - LFC:[MD5.480FB2259449C49C630D4AC3EC1EB426] - 09/09/2013 - 14:04:04 ---A- . (.Microsoft Corporation - Microsoft Windows Search Protocol Host.) -- C:\Windows\System32\SearchProtocolHost.exe   [373760]
O44 - LFC:[MD5.489B2DC75115A61769B9304FAEBC7D66] - 09/09/2013 - 14:04:04 ---A- . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\SysNative\kerberos.dll   [817152]
O44 - LFC:[MD5.489B2DC75115A61769B9304FAEBC7D66] - 09/09/2013 - 14:04:04 ---A- . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll   [817152]
O44 - LFC:[MD5.78DF3884149D09A3E703DDCA91BFFD84] - 09/09/2013 - 14:04:04 ---A- . (.Microsoft Corporation - Session audio.) -- C:\Windows\SysNative\AudioSes.dll   [446792]
O44 - LFC:[MD5.78DF3884149D09A3E703DDCA91BFFD84] - 09/09/2013 - 14:04:04 ---A- . (.Microsoft Corporation - Session audio.) -- C:\Windows\System32\AudioSes.dll   [446792]
O44 - LFC:[MD5.61FE70659CD43E07F94DA4DC31DEC493] - 09/09/2013 - 14:04:04 RSHAD . (.Microsoft Corporation - Protected Environment Authentication and Au.) -- C:\Windows\System32\Drivers\PEAuth.sys   [805376]
O44 - LFC:[MD5.6B8EDB9EC94DC2D1370C57564E853051] - 09/09/2013 - 14:04:03 ---A- . (.Microsoft Corporation - Audio Engine.) -- C:\Windows\SysNative\AudioEng.dll   [489576]
O44 - LFC:[MD5.6B8EDB9EC94DC2D1370C57564E853051] - 09/09/2013 - 14:04:03 ---A- . (.Microsoft Corporation - Audio Engine.) -- C:\Windows\System32\AudioEng.dll   [489576]
O44 - LFC:[MD5.A6D52417607B399790678AFB2B44CDF3] - 09/09/2013 - 14:04:03 ---A- . (.Microsoft Corporation - Composant de redirection du Gestionnaire de.) -- C:\Windows\SysNative\dwmredir.dll   [172544]
O44 - LFC:[MD5.7018F9EEEC3B5427046E6D761715BC54] - 09/09/2013 - 14:04:03 ---A- . (.Microsoft Corporation - DLL Windows.Networking.) -- C:\Windows\SysNative\Windows.Networking.dll   [595456]
O44 - LFC:[MD5.7018F9EEEC3B5427046E6D761715BC54] - 09/09/2013 - 14:04:03 ---A- . (.Microsoft Corporation - DLL Windows.Networking.) -- C:\Windows\System32\Windows.Networking.dll   [595456]
O44 - LFC:[MD5.58C0CA86362B32ABC87E39A99013C75A] - 09/09/2013 - 14:04:03 ---A- . (.Microsoft Corporation - Hôte de la fenêtre de la console.) -- C:\Windows\SysNative\conhost.exe   [367616]
O44 - LFC:[MD5.38069D6F774EB0B83A9301E5698B52CA] - 09/09/2013 - 14:04:03 ---A- . (.Microsoft Corporation - Microsoft Search Protocol Handler.) -- C:\Windows\SysNative\mssph.dll   [435200]
O44 - LFC:[MD5.38069D6F774EB0B83A9301E5698B52CA] - 09/09/2013 - 14:04:03 ---A- . (.Microsoft Corporation - Microsoft Search Protocol Handler.) -- C:\Windows\System32\mssph.dll   [435200]
O44 - LFC:[MD5.A6D52417607B399790678AFB2B44CDF3] - 09/09/2013 - 14:04:03 RSHAD . (.Microsoft Corporation - Composant de redirection du Gestionnaire de.) -- C:\Windows\System32\dwmredir.dll   [172544]
O44 - LFC:[MD5.58C0CA86362B32ABC87E39A99013C75A] - 09/09/2013 - 14:04:03 RSHAD . (.Microsoft Corporation - Hôte de la fenêtre de la console.) -- C:\Windows\System32\conhost.exe   [367616]
O44 - LFC:[MD5.09B2F3A41C6A8BFA22640826F70E9810] - 09/09/2013 - 14:04:02 ---A- . (.Microsoft Corporation - Isolation graphique de périphérique audio W.) -- C:\Windows\SysNative\audiodg.exe   [253544]
O44 - LFC:[MD5.09B2F3A41C6A8BFA22640826F70E9810] - 09/09/2013 - 14:04:02 RSHAD . (.Microsoft Corporation - Isolation graphique de périphérique audio W.) -- C:\Windows\System32\audiodg.exe   [253544]
O44 - LFC:[MD5.205162CCEBA17B54C6A7788C31726E95] - 09/09/2013 - 14:04:01 ---A- . (.Microsoft Corporation - Créateur de support de récupération.) -- C:\Windows\SysNative\RecoveryDrive.exe   [804352]
O44 - LFC:[MD5.AB279D4734BC508911C004F8D1011973] - 09/09/2013 - 14:04:01 ---A- . (.Microsoft Corporation - Cœur de la plateforme de notifications de t.) -- C:\Windows\SysNative\wpncore.dll   [456704]
O44 - LFC:[MD5.E1B0C213296FF324992BEF0E285BB623] - 09/09/2013 - 14:04:01 ---A- . (.Microsoft Corporation - OS Loader.) -- C:\Windows\SysNative\winload.efi   [1403784]
O44 - LFC:[MD5.205162CCEBA17B54C6A7788C31726E95] - 09/09/2013 - 14:04:01 RSHAD . (.Microsoft Corporation - Créateur de support de récupération.) -- C:\Windows\System32\RecoveryDrive.exe   [804352]
O44 - LFC:[MD5.AB279D4734BC508911C004F8D1011973] - 09/09/2013 - 14:04:01 RSHAD . (.Microsoft Corporation - Cœur de la plateforme de notifications de t.) -- C:\Windows\System32\wpncore.dll   [456704]
O44 - LFC:[MD5.E1B0C213296FF324992BEF0E285BB623] - 09/09/2013 - 14:04:01 RSHAD . (.Microsoft Corporation - OS Loader.) -- C:\Windows\System32\winload.efi   [1403784]
O44 - LFC:[MD5.14FC338B80CFF7E04215133B568D15C4] - 09/09/2013 - 14:04:01 RSHAD . (.Microsoft Corporation - Server Network driver.) -- C:\Windows\System32\Drivers\srvnet.sys   [247808]
O44 - LFC:[MD5.F2027911CBDC096576F0F1F81C790C1B] - 09/09/2013 - 14:04:00 ---A- . (.Microsoft Corporation - Media Foundation Media Engine DLL.) -- C:\Windows\SysNative\MFMediaEngine.dll   [468992]
O44 - LFC:[MD5.F2027911CBDC096576F0F1F81C790C1B] - 09/09/2013 - 14:04:00 ---A- . (.Microsoft Corporation - Media Foundation Media Engine DLL.) -- C:\Windows\System32\MFMediaEngine.dll   [468992]
O44 - LFC:[MD5.4E1F42D7616BB19253B99E85EDDA6E8C] - 09/09/2013 - 14:04:00 ---A- . (.Microsoft Corporation - OS Loader.) -- C:\Windows\SysNative\winload.exe   [1267424]
O44 - LFC:[MD5.3B002BD044161080F3A5235E79AE171E] - 09/09/2013 - 14:04:00 ---A- . (.Microsoft Corporation - Windows.Networking.BackgroundTransfer DLL.) -- C:\Windows\SysNative\Windows.Networking.BackgroundTransfer.dll   [391168]
O44 - LFC:[MD5.3B002BD044161080F3A5235E79AE171E] - 09/09/2013 - 14:04:00 ---A- . (.Microsoft Corporation - Windows.Networking.BackgroundTransfer DLL.) -- C:\Windows\System32\Windows.Networking.BackgroundTransfer.dll   [391168]
O44 - LFC:[MD5.4E1F42D7616BB19253B99E85EDDA6E8C] - 09/09/2013 - 14:04:00 RSHAD . (.Microsoft Corporation - OS Loader.) -- C:\Windows\System32\winload.exe   [1267424]
O44 - LFC:[MD5.22B9D38C6A69591811C10D4D1BF96AFE] - 09/09/2013 - 14:03:59 ---A- . (.Microsoft Corporation - Application de démarrage Reprise à partir d.) -- C:\Windows\SysNative\winresume.efi   [1217328]
O44 - LFC:[MD5.B7F4C0DEC76583C128D40579C36D6AA8] - 09/09/2013 - 14:03:59 ---A- . (.Microsoft Corporation - Application de démarrage Reprise à partir d.) -- C:\Windows\SysNative\winresume.exe   [1093880]
O44 - LFC:[MD5.46159633AA549E4D2CF6455B056CAB96] - 09/09/2013 - 14:03:59 ---A- . (.Microsoft Corporation - XPS to GDI Converter.) -- C:\Windows\SysNative\XpsGdiConverter.dll   [523264]
O44 - LFC:[MD5.46159633AA549E4D2CF6455B056CAB96] - 09/09/2013 - 14:03:59 ---A- . (.Microsoft Corporation - XPS to GDI Converter.) -- C:\Windows\System32\XpsGdiConverter.dll   [523264]
O44 - LFC:[MD5.22B9D38C6A69591811C10D4D1BF96AFE] - 09/09/2013 - 14:03:59 RSHAD . (.Microsoft Corporation - Application de démarrage Reprise à partir d.) -- C:\Windows\System32\winresume.efi   [1217328]
O44 - LFC:[MD5.B7F4C0DEC76583C128D40579C36D6AA8] - 09/09/2013 - 14:03:59 RSHAD . (.Microsoft Corporation - Application de démarrage Reprise à partir d.) -- C:\Windows\System32\winresume.exe   [1093880]
O44 - LFC:[MD5.5EE6D3195E6470DB22F480CCF5F5FF4A] - 09/09/2013 - 14:03:58 ---A- . (.Microsoft Corporation - ActiveX Interface Marshaling Library.) -- C:\Windows\SysNative\actxprxy.dll   [2146304]
O44 - LFC:[MD5.5EE6D3195E6470DB22F480CCF5F5FF4A] - 09/09/2013 - 14:03:58 ---A- . (.Microsoft Corporation - ActiveX Interface Marshaling Library.) -- C:\Windows\System32\actxprxy.dll   [2146304]
O44 - LFC:[MD5.365C6C6BC10201CC1080EB97A559BFC1] - 09/09/2013 - 14:03:58 ---A- . (.Microsoft Corporation - Code Integrity Module.) -- C:\Windows\SysNative\ci.dll   [503080]
O44 - LFC:[MD5.F0CFE7AA1100CDEF41ABA210C5610E85] - 09/09/2013 - 14:03:58 ---A- . (.Microsoft Corporation - Disk Management Snap-in Support Library.) -- C:\Windows\SysNative\dmvdsitf.dll   [196096]
O44 - LFC:[MD5.F0CFE7AA1100CDEF41ABA210C5610E85] - 09/09/2013 - 14:03:58 ---A- . (.Microsoft Corporation - Disk Management Snap-in Support Library.) -- C:\Windows\System32\dmvdsitf.dll   [196096]
O44 - LFC:[MD5.0B43D0E9E00CB4F98FC62AB2FA5D96F3] - 09/09/2013 - 14:03:58 ---A- . (.Microsoft Corporation - Moteur d’historique des fichiers.) -- C:\Windows\SysNative\fhengine.dll   [231936]
O44 - LFC:[MD5.29BCBB222ED7AE4B7F57AFF19A107BE5] - 09/09/2013 - 14:03:58 ---A- . (.Microsoft Corporation - XPS Rasterization Service Component.) -- C:\Windows\SysNative\XpsRasterService.dll   [228352]
O44 - LFC:[MD5.29BCBB222ED7AE4B7F57AFF19A107BE5] - 09/09/2013 - 14:03:58 ---A- . (.Microsoft Corporation - XPS Rasterization Service Component.) -- C:\Windows\System32\XpsRasterService.dll   [228352]
O44 - LFC:[MD5.365C6C6BC10201CC1080EB97A559BFC1] - 09/09/2013 - 14:03:58 RSHAD . (.Microsoft Corporation - Code Integrity Module.) -- C:\Windows\System32\ci.dll   [503080]
O44 - LFC:[MD5.0B43D0E9E00CB4F98FC62AB2FA5D96F3] - 09/09/2013 - 14:03:58 RSHAD . (.Microsoft Corporation - Moteur d’historique des fichiers.) -- C:\Windows\System32\fhengine.dll   [231936]
O44 - LFC:[MD5.BCD7A47EF587DC00DD61D12D9C2D1E44] - 09/09/2013 - 14:03:57 ---A- . (.Microsoft Corporation - Générateur de points de terminaison du serv.) -- C:\Windows\SysNative\AudioEndpointBuilder.dll   [169472]
O44 - LFC:[MD5.4C1C6E9BB02654EB38CD6DF4ACE6664B] - 09/09/2013 - 14:03:57 ---A- . (.Microsoft Corporation - Media Foundation ReadWrite DLL.) -- C:\Windows\SysNative\mfreadwrite.dll   [281088]
O44 - LFC:[MD5.4C1C6E9BB02654EB38CD6DF4ACE6664B] - 09/09/2013 - 14:03:57 ---A- . (.Microsoft Corporation - Media Foundation ReadWrite DLL.) -- C:\Windows\System32\mfreadwrite.dll   [281088]
O44 - LFC:[MD5.BCD7A47EF587DC00DD61D12D9C2D1E44] - 09/09/2013 - 14:03:57 RSHAD . (.Microsoft Corporation - Générateur de points de terminaison du serv.) -- C:\Windows\System32\AudioEndpointBuilder.dll   [169472]
O44 - LFC:[MD5.0698DEDEAD6A00AD0D468C687D830FBF] - 09/09/2013 - 14:03:57 RSHAD . (.Microsoft Corporation - Power Dependency Coordinator Driver.) -- C:\Windows\System32\Drivers\pdc.sys   [69864]
O44 - LFC:[MD5.6246774331042E74F7E1ADA504C24063] - 09/09/2013 - 14:03:56 ---A- . (.Microsoft Corporation - Audio Ks Endpoint.) -- C:\Windows\SysNative\AUDIOKSE.dll   [522640]
O44 - LFC:[MD5.6246774331042E74F7E1ADA504C24063] - 09/09/2013 - 14:03:56 ---A- . (.Microsoft Corporation - Audio Ks Endpoint.) -- C:\Windows\System32\AUDIOKSE.dll   [522640]
O44 - LFC:[MD5.5EAC1240B4699EC313C69FCADC5F457A] - 09/09/2013 - 14:03:56 ---A- . (.Microsoft Corporation - Microsoft Robocopy.) -- C:\Windows\SysNative\Robocopy.exe   [126464]
O44 - LFC:[MD5.5EAC1240B4699EC313C69FCADC5F457A] - 09/09/2013 - 14:03:56 ---A- . (.Microsoft Corporation - Microsoft Robocopy.) -- C:\Windows\System32\Robocopy.exe   [126464]
O44 - LFC:[MD5.3EA778FE9D9B56E67C0783A63C4B142E] - 09/09/2013 - 14:03:56 ---A- . (.Microsoft Corporation - Microsoft Windows Search Filter Host.) -- C:\Windows\SysNative\SearchFilterHost.exe   [197120]
O44 - LFC:[MD5.3EA778FE9D9B56E67C0783A63C4B142E] - 09/09/2013 - 14:03:56 ---A- . (.Microsoft Corporation - Microsoft Windows Search Filter Host.) -- C:\Windows\System32\SearchFilterHost.exe   [197120]
O44 - LFC:[MD5.61A9A710077526C9A7F068741540D96E] - 09/09/2013 - 14:03:56 ---A- . (.Microsoft Corporation - Virtual Machine Network Kernel Debugger.) -- C:\Windows\SysNative\kdvm.dll   [77960]
O44 - LFC:[MD5.5D072A59331A34C9BE621C7A55578562] - 09/09/2013 - 14:03:56 ---A- . (.Microsoft Corporation - iuilp.) -- C:\Windows\SysNative\iuilp.dll   [210432]
O44 - LFC:[MD5.61A9A710077526C9A7F068741540D96E] - 09/09/2013 - 14:03:56 RSHAD . (.Microsoft Corporation - Virtual Machine Network Kernel Debugger.) -- C:\Windows\System32\kdvm.dll   [77960]
O44 - LFC:[MD5.5D072A59331A34C9BE621C7A55578562] - 09/09/2013 - 14:03:56 RSHAD . (.Microsoft Corporation - iuilp.) -- C:\Windows\System32\iuilp.dll   [210432]
O44 - LFC:[MD5.E8801AF63EE3DEACA29F1F5526C35F53] - 09/09/2013 - 14:03:55 ---A- . (.Microsoft Corporation - Network Kernel Debugger.) -- C:\Windows\SysNative\kdnet.dll   [86280]
O44 - LFC:[MD5.012CFE7F0F95266F554EE3B91EE2128A] - 09/09/2013 - 14:03:55 ---A- . (.Microsoft Corporation - Service Centre de sécurité de Windows.) -- C:\Windows\SysNative\wscsvc.dll   [99840]
O44 - LFC:[MD5.61F6972FF9AC9A8D0B4D62076DC30051] - 09/09/2013 - 14:03:55 RSHAD . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) -- C:\Windows\System32\Drivers\wanarp.sys   [83456]
O44 - LFC:[MD5.E8801AF63EE3DEACA29F1F5526C35F53] - 09/09/2013 - 14:03:55 RSHAD . (.Microsoft Corporation - Network Kernel Debugger.) -- C:\Windows\System32\kdnet.dll   [86280]
O44 - LFC:[MD5.085F150D002B7F0153D3C06DDF33A143] - 09/09/2013 - 14:03:55 RSHAD . (.Microsoft Corporation - Pilote de miniport Bluetooth pour les périp.) -- C:\Windows\System32\Drivers\hidbth.sys   [95744]
O44 - LFC:[MD5.012CFE7F0F95266F554EE3B91EE2128A] - 09/09/2013 - 14:03:55 RSHAD . (.Microsoft Corporation - Service Centre de sécurité de Windows.) -- C:\Windows\System32\wscsvc.dll   [99840]
O44 - LFC:[MD5.D2EFA32998014927140E40054645CA4E] - 09/09/2013 - 14:03:54 ---A- . (.Microsoft Corporation - Application Activation de Windows du Pannea.) -- C:\Windows\SysNative\GenuineCenter.dll   [414720]
O44 - LFC:[MD5.8383D48F0A55703A613C339EF586C6AA] - 09/09/2013 - 14:03:54 ---A- . (.Microsoft Corporation - FM IFS Utility DLL.) -- C:\Windows\SysNative\fmifs.dll   [50176]
O44 - LFC:[MD5.8383D48F0A55703A613C339EF586C6AA] - 09/09/2013 - 14:03:54 ---A- . (.Microsoft Corporation - FM IFS Utility DLL.) -- C:\Windows\System32\fmifs.dll   [50176]
O44 - LFC:[MD5.31CAB21D19D8794854E037DEAABB499C] - 09/09/2013 - 14:03:54 ---A- . (.Microsoft Corporation - Plateforme de recherche Microsoft Vista.) -- C:\Windows\SysNative\mssvp.dll   [745984]
O44 - LFC:[MD5.31CAB21D19D8794854E037DEAABB499C] - 09/09/2013 - 14:03:54 ---A- . (.Microsoft Corporation - Plateforme de recherche Microsoft Vista.) -- C:\Windows\System32\mssvp.dll   [745984]
O44 - LFC:[MD5.D2EFA32998014927140E40054645CA4E] - 09/09/2013 - 14:03:54 RSHAD . (.Microsoft Corporation - Application Activation de Windows du Pannea.) -- C:\Windows\System32\GenuineCenter.dll   [414720]
O44 - LFC:[MD5.28619B6E5A37F71AE1145643949CFA60] - 09/09/2013 - 14:03:54 RSHAD . (.Microsoft Corporation - DirectX Graphics MMS.) -- C:\Windows\System32\Drivers\dxgmms1.sys   [303848]
O44 - LFC:[MD5.CC4A07E51D89575CAB6F4EB590D87CD4] - 09/09/2013 - 14:03:54 RSHAD . (.Microsoft Corporation - I2C HID Miniport Driver.) -- C:\Windows\System32\Drivers\hidi2c.sys   [39936]
O44 - LFC:[MD5.3730942D7DB2F8BB5F84542B7FF6F650] - 09/09/2013 - 14:03:54 RSHAD . (.Microsoft Corporation - NDIS Proxy.) -- C:\Windows\System32\Drivers\ndproxy.sys   [60416]
O44 - LFC:[MD5.248761DDFAB170B8A02684FF0378B71C] - 09/09/2013 - 14:03:53 ---A- . (.Microsoft Corporation - Connecteur Microsoft Search pour Outlook.) -- C:\Windows\SysNative\mssphtb.dll   [246272]
O44 - LFC:[MD5.248761DDFAB170B8A02684FF0378B71C] - 09/09/2013 - 14:03:53 ---A- . (.Microsoft Corporation - Connecteur Microsoft Search pour Outlook.) -- C:\Windows\System32\mssphtb.dll   [246272]
O44 - LFC:[MD5.E55A2C4497247F8CA09F1B2AAFAEDD3C] - 09/09/2013 - 14:03:53 ---A- . (.Microsoft Corporation - Microsoft Search Hooks.) -- C:\Windows\SysNative\msshooks.dll   [13824]
O44 - LFC:[MD5.E55A2C4497247F8CA09F1B2AAFAEDD3C] - 09/09/2013 - 14:03:53 ---A- . (.Microsoft Corporation - Microsoft Search Hooks.) -- C:\Windows\System32\msshooks.dll   [13824]
O44 - LFC:[MD5.3C77496ED7DB0D802427689F7E613777] - 09/09/2013 - 14:03:53 ---A- . (.Microsoft Corporation - Microsoft Search Proxy.) -- C:\Windows\SysNative\mssprxy.dll   [96256]
O44 - LFC:[MD5.3C77496ED7DB0D802427689F7E613777] - 09/09/2013 - 14:03:53 ---A- . (.Microsoft Corporation - Microsoft Search Proxy.) -- C:\Windows\System32\mssprxy.dll   [96256]
O44 - LFC:[MD5.0E2D8CE7A7A459256CBD5698F90D100A] - 09/09/2013 - 14:03:53 ---A- . (.Microsoft Corporation - PKM Perfmon Counter DLL.) -- C:\Windows\SysNative\msscntrs.dll   [65024]
O44 - LFC:[MD5.0E2D8CE7A7A459256CBD5698F90D100A] - 09/09/2013 - 14:03:53 ---A- . (.Microsoft Corporation - PKM Perfmon Counter DLL.) -- C:\Windows\System32\msscntrs.dll   [65024]
O44 - LFC:[MD5.0BE49FDEDDFA9D6DB4EEC362609058CD] - 09/09/2013 - 14:03:53 ---A- . (.Microsoft Corporation - mssitlb.) -- C:\Windows\SysNative\mssitlb.dll   [102400]
O44 - LFC:[MD5.0BE49FDEDDFA9D6DB4EEC362609058CD] - 09/09/2013 - 14:03:53 ---A- . (.Microsoft Corporation - mssitlb.) -- C:\Windows\System32\mssitlb.dll   [102400]
O44 - LFC:[MD5.FDA6525D9018812E4237ED5EEB29F5DA] - 09/09/2013 - 14:03:52 ---A- . (.Microsoft Corporation - Fichier DLL de ressources des fuseaux horai.) -- C:\Windows\SysNative\tzres.dll   [2048]
O44 - LFC:[MD5.FDA6525D9018812E4237ED5EEB29F5DA] - 09/09/2013 - 14:03:52 ---A- . (.Microsoft Corporation - Fichier DLL de ressources des fuseaux horai.) -- C:\Windows\System32\tzres.dll   [2048]
O44 - LFC:[MD5.96B47BA87187BB5052E07E4272715242] - 09/09/2013 - 14:03:52 ---A- . (.Microsoft Corporation - Media Foundation Crash Dump Encryption DLL.) -- C:\Windows\SysNative\EncDump.dll   [267264]
O44 - LFC:[MD5.96B47BA87187BB5052E07E4272715242] - 09/09/2013 - 14:03:52 RSHAD . (.Microsoft Corporation - Media Foundation Crash Dump Encryption DLL.) -- C:\Windows\System32\EncDump.dll   [267264]
O44 - LFC:[MD5.BE302BABE45EC05995F8DC66E37BBB3D] - 09/09/2013 - 14:02:59 ---A- . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\SysNative\wuaueng.dll   [3241472]
O44 - LFC:[MD5.BE302BABE45EC05995F8DC66E37BBB3D] - 09/09/2013 - 14:02:59 RSHAD . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\System32\wuaueng.dll   [3241472]
O44 - LFC:[MD5.FAEF235108578BF0F2BBBC8FE27400EE] - 09/09/2013 - 14:02:58 ---A- . (.Microsoft Corporation - Windows.UI.Xaml dll.) -- C:\Windows\SysNative\Windows.UI.Xaml.dll   [13644288]
O44 - LFC:[MD5.FAEF235108578BF0F2BBBC8FE27400EE] - 09/09/2013 - 14:02:58 ---A- . (.Microsoft Corporation - Windows.UI.Xaml dll.) -- C:\Windows\System32\Windows.UI.Xaml.dll   [13644288]
O44 - LFC:[MD5.CC27C114B013E719D196B144581750D4] - 09/09/2013 - 14:02:57 ---A- . (.Microsoft Corporation - TWINUI.) -- C:\Windows\SysNative\twinui.dll   [10116096]
O44 - LFC:[MD5.CC27C114B013E719D196B144581750D4] - 09/09/2013 - 14:02:57 ---A- . (.Microsoft Corporation - TWINUI.) -- C:\Windows\System32\twinui.dll   [10116096]
O44 - LFC:[MD5.D4F14AF64DC2DB6FB3FA23DA49B6050E] - 09/09/2013 - 14:02:52 ---A- . (.Microsoft Corporation - DLL du serveur de déploiement d’AppX.) -- C:\Windows\SysNative\AppXDeploymentServer.dll   [1131520]
O44 - LFC:[MD5.D4F14AF64DC2DB6FB3FA23DA49B6050E] - 09/09/2013 - 14:02:52 RSHAD . (.Microsoft Corporation - DLL du serveur de déploiement d’AppX.) -- C:\Windows\System32\AppXDeploymentServer.dll   [1131520]
O44 - LFC:[MD5.35A4FBBC6D422A873F3F21D1661C7177] - 09/09/2013 - 14:02:51 ---A- . (.Microsoft Corporation - DLL du Gestionnaire de processus d’arrière-.) -- C:\Windows\SysNative\ubpm.dll   [328192]
O44 - LFC:[MD5.35A4FBBC6D422A873F3F21D1661C7177] - 09/09/2013 - 14:02:51 ---A- . (.Microsoft Corporation - DLL du Gestionnaire de processus d’arrière-.) -- C:\Windows\System32\ubpm.dll   [328192]
O44 - LFC:[MD5.A06CB9269D29EE3D0F3F5630ABB660B8] - 09/09/2013 - 14:02:51 ---A- . (.Microsoft Corporation - Hôte de service Superfetch.) -- C:\Windows\SysNative\sysmain.dll   [1332736]
O44 - LFC:[MD5.D0C69E44BC1E1D4AD290FD84104623D8] - 09/09/2013 - 14:02:51 ---A- . (.Microsoft Corporation - Service de cliché instantané de volumes Mic.) -- C:\Windows\SysNative\VSSVC.exe   [1483776]
O44 - LFC:[MD5.A06CB9269D29EE3D0F3F5630ABB660B8] - 09/09/2013 - 14:02:51 RSHAD . (.Microsoft Corporation - Hôte de service Superfetch.) -- C:\Windows\System32\sysmain.dll   [1332736]
O44 - LFC:[MD5.CA03D642ACE58E1BA54E4B383F91CD69] - 09/09/2013 - 14:02:51 RSHAD . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) -- C:\Windows\System32\Drivers\rdbss.sys   [427520]
O44 - LFC:[MD5.D0C69E44BC1E1D4AD290FD84104623D8] - 09/09/2013 - 14:02:51 RSHAD . (.Microsoft Corporation - Service de cliché instantané de volumes Mic.) -- C:\Windows\System32\VSSVC.exe   [1483776]
O44 - LFC:[MD5.9C721812BC14EC27916E855C9870B646] - 09/09/2013 - 14:02:50 ---A- . (.Microsoft Corporation - API du client Windows Update.) -- C:\Windows\SysNative\wuapi.dll   [760320]
O44 - LFC:[MD5.9C721812BC14EC27916E855C9870B646] - 09/09/2013 - 14:02:50 ---A- . (.Microsoft Corporation - API du client Windows Update.) -- C:\Windows\System32\wuapi.dll   [760320]
O44 - LFC:[MD5.7ACA8A8C9180334B88C402F8FB5FC517] - 09/09/2013 - 14:02:50 ---A- . (.Microsoft Corporation - BCP47 Language Classes.) -- C:\Windows\SysNative\BCP47Langs.dll   [389120]
O44 - LFC:[MD5.7ACA8A8C9180334B88C402F8FB5FC517] - 09/09/2013 - 14:02:50 ---A- . (.Microsoft Corporation - BCP47 Language Classes.) -- C:\Windows\System32\BCP47Langs.dll   [389120]
O44 - LFC:[MD5.79FA9393C67EBBF92A56923592CF7A7C] - 09/09/2013 - 14:02:50 ---A- . (.Microsoft Corporation - Gestionnaire de listes de réseaux.) -- C:\Windows\SysNative\netprofmsvc.dll   [470528]
O44 - LFC:[MD5.585D836E19241C04E9A19AA90E7A6357] - 09/09/2013 - 14:02:50 ---A- . (.Microsoft Corporation - Interface utilisateur d’authentification Wi.) -- C:\Windows\SysNative\authui.dll   [2305024]
O44 - LFC:[MD5.585D836E19241C04E9A19AA90E7A6357] - 09/09/2013 - 14:02:50 ---A- . (.Microsoft Corporation - Interface utilisateur d’authentification Wi.) -- C:\Windows\System32\authui.dll   [2305024]
O44 - LFC:[MD5.79FA9393C67EBBF92A56923592CF7A7C] - 09/09/2013 - 14:02:50 RSHAD . (.Microsoft Corporation - Gestionnaire de listes de réseaux.) -- C:\Windows\System32\netprofmsvc.dll   [470528]
O44 - LFC:[MD5.D08298FFF5DEF1FBFCE01652B8D77A16] - 09/09/2013 - 14:02:49 ---A- . (.Microsoft Corporation - Expérience utilisateur du client Windows Up.) -- C:\Windows\SysNative\wucltux.dll   [1619968]
O44 - LFC:[MD5.43B20FC33366C5F867C9F05D03DA651F] - 09/09/2013 - 14:02:49 ---A- . (.Microsoft Corporation - Network List Manager.) -- C:\Windows\SysNative\netprofm.dll   [151552]
O44 - LFC:[MD5.43B20FC33366C5F867C9F05D03DA651F] - 09/09/2013 - 14:02:49 ---A- . (.Microsoft Corporation - Network List Manager.) -- C:\Windows\System32\netprofm.dll   [151552]
O44 - LFC:[MD5.D08298FFF5DEF1FBFCE01652B8D77A16] - 09/09/2013 - 14:02:49 RSHAD . (.Microsoft Corporation - Expérience utilisateur du client Windows Up.) -- C:\Windows\System32\wucltux.dll   [1619968]
O44 - LFC:[MD5.351EF211FC5DA078A02376D24E6829AF] - 09/09/2013 - 14:02:48 ---A- . (...) -- C:\Windows\SysNative\ApnDatabase.xml   [386646]
O44 - LFC:[MD5.BAC4C6E060303F461212DEEAD56C2B62] - 09/09/2013 - 14:02:48 ---A- . (.Microsoft - Système d’évaluation de l’âge russe.) -- C:\Windows\SysNative\rars.rs   [14848]
O44 - LFC:[MD5.BAC4C6E060303F461212DEEAD56C2B62] - 09/09/2013 - 14:02:48 ---A- . (.Microsoft - Système d’évaluation de l’âge russe.) -- C:\Windows\System32\rars.rs   [14848]
O44 - LFC:[MD5.D69E38C31AE78522BCC92212863C0193] - 09/09/2013 - 14:02:48 ---A- . (.Microsoft Corporation - DLL source et récepteur MPEG4 Media Foundat.) -- C:\Windows\SysNative\mfmp4srcsnk.dll   [560640]
O44 - LFC:[MD5.D69E38C31AE78522BCC92212863C0193] - 09/09/2013 - 14:02:48 ---A- . (.Microsoft Corporation - DLL source et récepteur MPEG4 Media Foundat.) -- C:\Windows\System32\mfmp4srcsnk.dll   [560640]
O44 - LFC:[MD5.EB183938C5E68E0707EDB1F5F84E5EF3] - 09/09/2013 - 14:02:48 ---A- . (.Microsoft Corporation - Windows Update Modern WuApp.) -- C:\Windows\SysNative\WUSettingsProvider.dll   [251904]
O44 - LFC:[MD5.351EF211FC5DA078A02376D24E6829AF] - 09/09/2013 - 14:02:48 RSHAD . (...) -- C:\Windows\System32\ApnDatabase.xml   [386646]
O44 - LFC:[MD5.EA040D4C6C94F315A85F3D0EAA884B37] - 09/09/2013 - 14:02:48 RSHAD . (.Microsoft Corporation - USB3 HUB Driver.) -- C:\Windows\System32\Drivers\USBHUB3.SYS   [446720]
O44 - LFC:[MD5.EB183938C5E68E0707EDB1F5F84E5EF3] - 09/09/2013 - 14:02:48 RSHAD . (.Microsoft Corporation - Windows Update Modern WuApp.) -- C:\Windows\System32\WUSettingsProvider.dll   [251904]
O44 - LFC:[MD5.B02E9E96AC9C0F23818FA4B1FDE914BE] - 09/09/2013 - 14:02:47 ---A- . (.Microsoft Corporation - AppX Deployment Extensions DLL.) -- C:\Windows\SysNative\AppXDeploymentExtensions.dll   [708096]
O44 - LFC:[MD5.956F4E14D161D068F9C42AF1FD286181] - 09/09/2013 - 14:02:47 ---A- . (.Microsoft Corporation - Assistant Connexion à des lecteurs ou des e.) -- C:\Windows\SysNative\netplwiz.dll   [169984]
O44 - LFC:[MD5.956F4E14D161D068F9C42AF1FD286181] - 09/09/2013 - 14:02:47 ---A- . (.Microsoft Corporation - Assistant Connexion à des lecteurs ou des e.) -- C:\Windows\System32\netplwiz.dll   [169984]
O44 - LFC:[MD5.7D727992D410C8387C45D3148468B28C] - 09/09/2013 - 14:02:47 ---A- . (.Microsoft Corporation - Loupe Microsoft.) -- C:\Windows\SysNative\Magnify.exe   [812544]
O44 - LFC:[MD5.7D727992D410C8387C45D3148468B28C] - 09/09/2013 - 14:02:47 ---A- . (.Microsoft Corporation - Loupe Microsoft.) -- C:\Windows\System32\Magnify.exe   [812544]
O44 - LFC:[MD5.E482BED932FFF4CA65099ED19A760574] - 09/09/2013 - 14:02:47 ---A- . (.Microsoft Corporation - Objet du service d’environnement Systray.) -- C:\Windows\SysNative\stobject.dll   [330240]
O44 - LFC:[MD5.E482BED932FFF4CA65099ED19A760574] - 09/09/2013 - 14:02:47 ---A- . (.Microsoft Corporation - Objet du service d’environnement Systray.) -- C:\Windows\System32\stobject.dll   [330240]
O44 - LFC:[MD5.8018DC4AA69B7B2159B4EBEC9833C67E] - 09/09/2013 - 14:02:47 ---A- . (.Microsoft Corporation - Process State Manager (PSM) Service.) -- C:\Windows\SysNative\psmsrv.dll   [93696]
O44 - LFC:[MD5.3426BE7D0ED8888ACFE04BA6BB9AF83B] - 09/09/2013 - 14:02:47 ---A- . (.Microsoft Corporation - Processus hôte pour Tâches Windows.) -- C:\Windows\SysNative\taskhost.exe   [77824]
O44 - LFC:[MD5.69A7C97D2FF3252039F18EB36B4AF76B] - 09/09/2013 - 14:02:47 ---A- . (.Microsoft Corporation - Windows Update client proxy stub.) -- C:\Windows\SysNative\wups.dll   [43520]
O44 - LFC:[MD5.69A7C97D2FF3252039F18EB36B4AF76B] - 09/09/2013 - 14:02:47 ---A- . (.Microsoft Corporation - Windows Update client proxy stub.) -- C:\Windows\System32\wups.dll   [43520]
O44 - LFC:[MD5.B02E9E96AC9C0F23818FA4B1FDE914BE] - 09/09/2013 - 14:02:47 RSHAD . (.Microsoft Corporation - AppX Deployment Extensions DLL.) -- C:\Windows\System32\AppXDeploymentExtensions.dll   [708096]
O44 - LFC:[MD5.AEB23CDC7F0AD52954CAE1F22CA839FE] - 09/09/2013 - 14:02:47 RSHAD . (.Microsoft Corporation - Hid Class Library.) -- C:\Windows\System32\Drivers\hidclass.sys   [83968]
O44 - LFC:[MD5.8018DC4AA69B7B2159B4EBEC9833C67E] - 09/09/2013 - 14:02:47 RSHAD . (.Microsoft Corporation - Process State Manager (PSM) Service.) -- C:\Windows\System32\psmsrv.dll   [93696]
O44 - LFC:[MD5.3426BE7D0ED8888ACFE04BA6BB9AF83B] - 09/09/2013 - 14:02:47 RSHAD . (.Microsoft Corporation - Processus hôte pour Tâches Windows.) -- C:\Windows\System32\taskhost.exe   [77824]
O44 - LFC:[MD5.FD3AF5575B99871BADB94E7699DBCE08] - 09/09/2013 - 14:02:47 RSHAD . (.Microsoft Corporation - Storage Spaces Driver.) -- C:\Windows\System32\Drivers\spaceport.sys   [284416]
O44 - LFC:[MD5.7C33D8B8A5EA2321B84A1B6653CBD0DB] - 09/09/2013 - 14:02:47 RSHAD . (.Microsoft Corporation - USB Controller Extension.) -- C:\Windows\System32\Drivers\UCX01000.SYS   [213248]
O44 - LFC:[MD5.D566F980C5932F34D226A5476C9BDE5E] - 09/09/2013 - 14:02:46 ---A- . (.Microsoft Corporation - DLL du Panneau de configuration.) -- C:\Windows\SysNative\intl.cpl   [419840]
O44 - LFC:[MD5.D566F980C5932F34D226A5476C9BDE5E] - 09/09/2013 - 14:02:46 ---A- . (.Microsoft Corporation - DLL du Panneau de configuration.) -- C:\Windows\System32\intl.cpl   [419840]
O44 - LFC:[MD5.969A5D1871D5CCBC2D90E7A9F509F962] - 09/09/2013 - 14:02:46 ---A- . (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\SysNative\DevicePairing.dll   [501760]
O44 - LFC:[MD5.969A5D1871D5CCBC2D90E7A9F509F962] - 09/09/2013 - 14:02:46 ---A- . (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\DevicePairing.dll   [501760]
O44 - LFC:[MD5.6544054D27A9531C6600E6D594B9DD79] - 09/09/2013 - 14:02:46 ---A- . (.Microsoft Corporation - Windows Update.) -- C:\Windows\SysNative\wuauclt.exe   [58312]
O44 - LFC:[MD5.11C0CF143D246E2F0E9BDBF17A0CC70B] - 09/09/2013 - 14:02:46 RSHAD . (.Microsoft Corporation - USB XHCI Driver.) -- C:\Windows\System32\Drivers\USBXHCI.SYS   [337128]
O44 - LFC:[MD5.6544054D27A9531C6600E6D594B9DD79] - 09/09/2013 - 14:02:46 RSHAD . (.Microsoft Corporation - Windows Update.) -- C:\Windows\System32\wuauclt.exe   [58312]
O44 - LFC:[MD5.EE020A38848B4ED6228A30CC8863364F] - 09/09/2013 - 14:02:45 ---A- . (.Microsoft Corporation - Authentication Provider.) -- C:\Windows\SysNative\storewuauth.dll   [173568]
O44 - LFC:[MD5.3123FDC79AC340B60618B03D3EBE6DD3] - 09/09/2013 - 14:02:45 ---A- . (.Microsoft Corporation - Microsoft AuthHost.) -- C:\Windows\SysNative\AuthHost.exe   [120736]
O44 - LFC:[MD5.0899BF12B2142213630D49E645B8A507] - 09/09/2013 - 14:02:45 ---A- . (.Microsoft Corporation - Processus hôte pour Tâches Windows.) -- C:\Windows\SysNative\taskhostex.exe   [72192]
O44 - LFC:[MD5.BCB4D840095140EC137CD2C57C23615C] - 09/09/2013 - 14:02:45 ---A- . (.Microsoft Corporation - Windows Background Broker Infrastructure.) -- C:\Windows\SysNative\biwinrt.dll   [122368]
O44 - LFC:[MD5.BCB4D840095140EC137CD2C57C23615C] - 09/09/2013 - 14:02:45 ---A- . (.Microsoft Corporation - Windows Background Broker Infrastructure.) -- C:\Windows\System32\biwinrt.dll   [122368]
O44 - LFC:[MD5.F9D935D60C397809FC6E1E0676F4AC6E] - 09/09/2013 - 14:02:45 ---A- . (.Microsoft Corporation - Windows Update Wu exports.) -- C:\Windows\SysNative\wuaext.dll   [17408]
O44 - LFC:[MD5.6CAF9601D1317E5115AF90E0298E174F] - 09/09/2013 - 14:02:45 ---A- . (.Microsoft Corporation - Windows Update client proxy stub 2.) -- C:\Windows\SysNative\wups2.dll   [48640]
O44 - LFC:[MD5.EE020A38848B4ED6228A30CC8863364F] - 09/09/2013 - 14:02:45 RSHAD . (.Microsoft Corporation - Authentication Provider.) -- C:\Windows\System32\storewuauth.dll   [173568]
O44 - LFC:[MD5.3123FDC79AC340B60618B03D3EBE6DD3] - 09/09/2013 - 14:02:45 RSHAD . (.Microsoft Corporation - Microsoft AuthHost.) -- C:\Windows\System32\AuthHost.exe   [120736]
O44 - LFC:[MD5.0899BF12B2142213630D49E645B8A507] - 09/09/2013 - 14:02:45 RSHAD . (.Microsoft Corporation - Processus hôte pour Tâches Windows.) -- C:\Windows\System32\taskhostex.exe   [72192]
O44 - LFC:[MD5.012C354B4AB48E9A7A657DF39E3A2073] - 09/09/2013 - 14:02:45 RSHAD . (.Microsoft Corporation - USB Miniport Driver for Input Devices.) -- C:\Windows\System32\Drivers\hidusb.sys   [27648]
O44 - LFC:[MD5.F9D935D60C397809FC6E1E0676F4AC6E] - 09/09/2013 - 14:02:45 RSHAD . (.Microsoft Corporation - Windows Update Wu exports.) -- C:\Windows\System32\wuaext.dll   [17408]
O44 - LFC:[MD5.6CAF9601D1317E5115AF90E0298E174F] - 09/09/2013 - 14:02:45 RSHAD . (.Microsoft Corporation - Windows Update client proxy stub 2.) -- C:\Windows\System32\wups2.dll   [48640]
O44 - LFC:[MD5.234321A7F733213DF6CCF8C4E55FD42E] - 09/09/2013 - 14:02:44 ---A- . (.Microsoft Corporation - Windows Update Vista Web Control.) -- C:\Windows\SysNative\wuwebv.dll   [141824]
O44 - LFC:[MD5.234321A7F733213DF6CCF8C4E55FD42E] - 09/09/2013 - 14:02:44 ---A- . (.Microsoft Corporation - Windows Update Vista Web Control.) -- C:\Windows\System32\wuwebv.dll   [141824]
O44 - LFC:[MD5.038FA1B55531E7020DB705B42FCCE373] - 09/09/2013 - 14:02:43 ---A- . (.Microsoft Corporation - Service d’infrastructure des tâches en arri.) -- C:\Windows\SysNative\bisrv.dll   [179712]
O44 - LFC:[MD5.EF814BA71248EFF9D6EA30BE085F0FC5] - 09/09/2013 - 14:02:43 ---A- . (.Microsoft Corporation - Windows Update Application Launcher.) -- C:\Windows\SysNative\wuapp.exe   [39424]
O44 - LFC:[MD5.EF814BA71248EFF9D6EA30BE085F0FC5] - 09/09/2013 - 14:02:43 ---A- . (.Microsoft Corporation - Windows Update Application Launcher.) -- C:\Windows\System32\wuapp.exe   [39424]
O44 - LFC:[MD5.6AB274647FBBB154FECCE5DB1280C81A] - 09/09/2013 - 14:02:43 ---A- . (.Microsoft Corporation - Windows Update WUDriver Stub.) -- C:\Windows\SysNative\wudriver.dll   [98304]
O44 - LFC:[MD5.6AB274647FBBB154FECCE5DB1280C81A] - 09/09/2013 - 14:02:43 ---A- . (.Microsoft Corporation - Windows Update WUDriver Stub.) -- C:\Windows\System32\wudriver.dll   [98304]
O44 - LFC:[MD5.038FA1B55531E7020DB705B42FCCE373] - 09/09/2013 - 14:02:43 RSHAD . (.Microsoft Corporation - Service d’infrastructure des tâches en arri.) -- C:\Windows\System32\bisrv.dll   [179712]
O44 - LFC:[MD5.E2D62B60E6E8C3A1902C1F312CB70C53] - 09/09/2013 - 14:02:42 ---A- . (.Microsoft Corporation - MUI Callback for font registry settings.) -- C:\Windows\SysNative\muifontsetup.dll   [17408]
O44 - LFC:[MD5.E2D62B60E6E8C3A1902C1F312CB70C53] - 09/09/2013 - 14:02:42 ---A- . (.Microsoft Corporation - MUI Callback for font registry settings.) -- C:\Windows\System32\muifontsetup.dll   [17408]
O44 - LFC:[MD5.7B013D1DB9D532C90B2A13C81A300362] - 09/09/2013 - 14:02:42 ---A- . (.Microsoft Corporation - Ressources de l’interface utilisateur parta.) -- C:\Windows\SysNative\wushareduxresources.dll   [99328]
O44 - LFC:[MD5.7B013D1DB9D532C90B2A13C81A300362] - 09/09/2013 - 14:02:42 RSHAD . (.Microsoft Corporation - Ressources de l’interface utilisateur parta.) -- C:\Windows\System32\wushareduxresources.dll   [99328]
O44 - LFC:[MD5.E47235E8DF26CA48DA189ACFD756329C] - 09/09/2013 - 14:02:20 ---A- . (.Microsoft Corporation - Auto Check Utility.) -- C:\Windows\SysNative\autochk.exe   [888320]
O44 - LFC:[MD5.E47235E8DF26CA48DA189ACFD756329C] - 09/09/2013 - 14:02:20 ---A- . (.Microsoft Corporation - Auto Check Utility.) -- C:\Windows\System32\autochk.exe   [888320]
O44 - LFC:[MD5.46CC344A94F7C6AAE35724A5CFCB8609] - 09/09/2013 - 14:02:20 ---A- . (.Microsoft Corporation - NTFS Utility DLL.) -- C:\Windows\SysNative\untfs.dll   [542208]
O44 - LFC:[MD5.46CC344A94F7C6AAE35724A5CFCB8609] - 09/09/2013 - 14:02:20 ---A- . (.Microsoft Corporation - NTFS Utility DLL.) -- C:\Windows\System32\untfs.dll   [542208]
O44 - LFC:[MD5.3EFAE47CC9169E22E58F0A689C00C984] - 09/09/2013 - 14:02:19 ---A- . (.Microsoft Corporation - Windows Briefcase Engine.) -- C:\Windows\SysNative\synceng.dll   [94208]
O44 - LFC:[MD5.3EFAE47CC9169E22E58F0A689C00C984] - 09/09/2013 - 14:02:19 ---A- . (.Microsoft Corporation - Windows Briefcase Engine.) -- C:\Windows\System32\synceng.dll   [94208]
O44 - LFC:[MD5.E1FF9D65E6B86F7EBB531AE36C5AF635] - 09/09/2013 - 14:02:18 ---A- . (.Microsoft Corporation - DLL du client API BASE Windows NT.) -- C:\Windows\SysNative\kernel32.dll   [1257472]
O44 - LFC:[MD5.E1FF9D65E6B86F7EBB531AE36C5AF635] - 09/09/2013 - 14:02:18 ---A- . (.Microsoft Corporation - DLL du client API BASE Windows NT.) -- C:\Windows\System32\kernel32.dll   [1257472]
O44 - LFC:[MD5.5DF7FCCCCC71E230883DC30AF3FE0203] - 09/09/2013 - 14:02:11 ---A- . (.Microsoft Corporation - Software Protection Platform Plugins.) -- C:\Windows\SysNative\sppobjs.dll   [1161728]
O44 - LFC:[MD5.5DF7FCCCCC71E230883DC30AF3FE0203] - 09/09/2013 - 14:02:11 RSHAD . (.Microsoft Corporation - Software Protection Platform Plugins.) -- C:\Windows\System32\sppobjs.dll   [1161728]
O44 - LFC:[MD5.6587EB86E32C49AC726817220390CFFE] - 09/09/2013 - 14:02:07 ---A- . (.Microsoft Corporation - Microsoft Windows Codecs Library.) -- C:\Windows\SysNative\WindowsCodecs.dll   [1627648]
O44 - LFC:[MD5.6587EB86E32C49AC726817220390CFFE] - 09/09/2013 - 14:02:07 ---A- . (.Microsoft Corporation - Microsoft Windows Codecs Library.) -- C:\Windows\System32\WindowsCodecs.dll   [1627648]
O44 - LFC:[MD5.01344DD46C95BC2A478B52AF07336F4A] - 09/09/2013 - 14:02:04 ---A- . (.Microsoft Corporation - Client ActiveX des services Bureau à distan.) -- C:\Windows\SysNative\mstscax.dll   [5978624]
O44 - LFC:[MD5.01344DD46C95BC2A478B52AF07336F4A] - 09/09/2013 - 14:02:04 ---A- . (.Microsoft Corporation - Client ActiveX des services Bureau à distan.) -- C:\Windows\System32\mstscax.dll   [5978624]
O44 - LFC:[MD5.0E8924B51839B0CC8AB4B9C456220683] - 09/09/2013 - 14:02:03 ---A- . (.Microsoft Corporation - Media Foundation ASF Source and Sink DLL.) -- C:\Windows\SysNative\mfasfsrcsnk.dll   [1048576]
O44 - LFC:[MD5.0E8924B51839B0CC8AB4B9C456220683] - 09/09/2013 - 14:02:03 ---A- . (.Microsoft Corporation - Media Foundation ASF Source and Sink DLL.) -- C:\Windows\System32\mfasfsrcsnk.dll   [1048576]
O44 - LFC:[MD5.110B70302AC6EC29FE013C5BB99BA559] - 09/09/2013 - 14:02:02 ---A- . (.Microsoft Corporation - WMPMDE DLL.) -- C:\Windows\SysNative\wmpmde.dll   [1101824]
O44 - LFC:[MD5.9531E7D938912F315F8161B5DA5DAD13] - 09/09/2013 - 14:02:02 RSHAD . (.Microsoft Corporation - SCSI Class System Dll.) -- C:\Windows\System32\Drivers\Classpnp.sys   [327912]
O44 - LFC:[MD5.110B70302AC6EC29FE013C5BB99BA559] - 09/09/2013 - 14:02:02 RSHAD . (.Microsoft Corporation - WMPMDE DLL.) -- C:\Windows\System32\wmpmde.dll   [1101824]
O44 - LFC:[MD5.D608E0955BF3623B54CFA1A90FCA59FD] - 09/09/2013 - 14:02:01 ---A- . (.Microsoft Corporation - WinMDE DLL.) -- C:\Windows\SysNative\winmde.dll   [1149952]
O44 - LFC:[MD5.D608E0955BF3623B54CFA1A90FCA59FD] - 09/09/2013 - 14:02:01 ---A- . (.Microsoft Corporation - WinMDE DLL.) -- C:\Windows\System32\winmde.dll   [1149952]
O44 - LFC:[MD5.76E6465F3153FCA20F07928BBA62D7B8] - 09/09/2013 - 14:02:01 ---A- . (.Microsoft Corporation - Windows Globalization.) -- C:\Windows\SysNative\Windows.Globalization.dll   [951808]
O44 - LFC:[MD5.76E6465F3153FCA20F07928BBA62D7B8] - 09/09/2013 - 14:02:01 ---A- . (.Microsoft Corporation - Windows Globalization.) -- C:\Windows\System32\Windows.Globalization.dll   [951808]
O44 - LFC:[MD5.D10587D957CFED8CC3B9B3D017C69003] - 09/09/2013 - 14:02:01 ---A- . (.Microsoft Corporation - Windows Runtime OnlineId Authentication DLL.) -- C:\Windows\SysNative\Windows.Security.Authentication.OnlineId.dll   [645120]
O44 - LFC:[MD5.D10587D957CFED8CC3B9B3D017C69003] - 09/09/2013 - 14:02:01 ---A- . (.Microsoft Corporation - Windows Runtime OnlineId Authentication DLL.) -- C:\Windows\System32\Windows.Security.Authentication.OnlineId.dll   [645120]
O44 - LFC:[MD5.4515B9E4140F04FB3907692DF89FCA87] - 09/09/2013 - 14:02:00 ---A- . (.Microsoft Corporation - Service Broker pour les événements horaires.) -- C:\Windows\SysNative\TimeBrokerServer.dll   [171008]
O44 - LFC:[MD5.6FB88606C4A71E1BFAF97D63A676C673] - 09/09/2013 - 14:02:00 ---A- . (.Microsoft Corporation - Service Broker pour les événements système.) -- C:\Windows\SysNative\SystemEventsBrokerServer.dll   [180224]
O44 - LFC:[MD5.091607B272C5E7BE2DCEF2D5463A407B] - 09/09/2013 - 14:02:00 RSHAD . (.Microsoft Corporation - Microsoft Storage Port Driver.) -- C:\Windows\System32\Drivers\storport.sys   [332520]
O44 - LFC:[MD5.4515B9E4140F04FB3907692DF89FCA87] - 09/09/2013 - 14:02:00 RSHAD . (.Microsoft Corporation - Service Broker pour les événements horaires.) -- C:\Windows\System32\TimeBrokerServer.dll   [171008]
O44 - LFC:[MD5.6FB88606C4A71E1BFAF97D63A676C673] - 09/09/2013 - 14:02:00 RSHAD . (.Microsoft Corporation - Service Broker pour les événements système.) -- C:\Windows\System32\SystemEventsBrokerServer.dll   [180224]
O44 - LFC:[MD5.13795CAA34239D97A7211E7F9D96E012] - 09/09/2013 - 14:01:59 RSHAD . (.Microsoft Corporation - Pilote de bus Bluetooth.) -- C:\Windows\System32\Drivers\bthport.sys   [1175040]
O44 - LFC:[MD5.BE611E28DD9AF75A6B904B55F5D6E6C3] - 09/09/2013 - 14:01:58 ---A- . (.Microsoft Corporation - DLL du moniteur de port d’impression dynami.) -- C:\Windows\SysNative\usbmon.dll   [245248]
O44 - LFC:[MD5.A6B742C6B8CF9A37E0EF470DF890F74B] - 09/09/2013 - 14:01:58 ---A- . (.Microsoft Corporation - Driver Store API.) -- C:\Windows\SysNative\drvstore.dll   [703488]
O44 - LFC:[MD5.A6B742C6B8CF9A37E0EF470DF890F74B] - 09/09/2013 - 14:01:58 ---A- . (.Microsoft Corporation - Driver Store API.) -- C:\Windows\System32\drvstore.dll   [703488]
O44 - LFC:[MD5.D3CD3034E2292DBECCD3161DC29D8E07] - 09/09/2013 - 14:01:58 ---A- . (.Microsoft Corporation - Objets de configuration du réseau.) -- C:\Windows\SysNative\netcfgx.dll   [455168]
O44 - LFC:[MD5.D3CD3034E2292DBECCD3161DC29D8E07] - 09/09/2013 - 14:01:58 ---A- . (.Microsoft Corporation - Objets de configuration du réseau.) -- C:\Windows\System32\netcfgx.dll   [455168]
O44 - LFC:[MD5.116FBD7F3F98CB90680BCB5E5CBD0715] - 09/09/2013 - 14:01:58 ---A- . (.Microsoft Corporation - Synchronisation des paramètres.) -- C:\Windows\SysNative\SettingSync.dll   [448512]
O44 - LFC:[MD5.116FBD7F3F98CB90680BCB5E5CBD0715] - 09/09/2013 - 14:01:58 ---A- . (.Microsoft Corporation - Synchronisation des paramètres.) -- C:\Windows\System32\SettingSync.dll   [448512]
O44 - LFC:[MD5.3013658A4D327854BEEC4A08D9655194] - 09/09/2013 - 14:01:58 ---A- . (.Microsoft Corporation - Énumérateur d’appareil mobile.) -- C:\Windows\SysNative\wpdbusenum.dll   [103936]
O44 - LFC:[MD5.BE611E28DD9AF75A6B904B55F5D6E6C3] - 09/09/2013 - 14:01:58 RSHAD . (.Microsoft Corporation - DLL du moniteur de port d’impression dynami.) -- C:\Windows\System32\usbmon.dll   [245248]
O44 - LFC:[MD5.3013658A4D327854BEEC4A08D9655194] - 09/09/2013 - 14:01:58 RSHAD . (.Microsoft Corporation - Énumérateur d’appareil mobile.) -- C:\Windows\System32\wpdbusenum.dll   [103936]
O44 - LFC:[MD5.047315E75392CEA447ACC86257824C16] - 09/09/2013 - 14:01:57 RSHAD . (.Microsoft Corporation - Pilote du bus numérique sécurisé (SD).) -- C:\Windows\System32\Drivers\sdbus.sys   [194792]
O44 - LFC:[MD5.500BE6B2E49883720D0AE8BB859ED7A3] - 09/09/2013 - 14:01:57 RSHAD . (.Microsoft Corporation - VHD Miniport Driver.) -- C:\Windows\System32\Drivers\vhdmp.sys   [495336]
O44 - LFC:[MD5.821D79C4602C5BF6C8183630D301638A] - 09/09/2013 - 14:01:56 ---A- . (.Microsoft Corporation - Tâche d’analyse de l’intégrité des données.) -- C:\Windows\SysNative\discan.dll   [150016]
O44 - LFC:[MD5.CCBFCABDFE2BC22F0645CEAADDB36004] - 09/09/2013 - 14:01:56 RSHAD . (.Microsoft Corporation - Bluetooth RFCOMM Driver.) -- C:\Windows\System32\Drivers\rfcomm.sys   [156672]
O44 - LFC:[MD5.7D0570A2C678116523BB4932A6D71020] - 09/09/2013 - 14:01:56 RSHAD . (.Microsoft Corporation - SD Crashdump Port Driver.) -- C:\Windows\System32\Drivers\dumpsd.sys   [125160]
O44 - LFC:[MD5.821D79C4602C5BF6C8183630D301638A] - 09/09/2013 - 14:01:56 RSHAD . (.Microsoft Corporation - Tâche d’analyse de l’intégrité des données.) -- C:\Windows\System32\discan.dll   [150016]
O44 - LFC:[MD5.50361572A98348A6E780FFE231B55D49] - 09/09/2013 - 14:01:55 ---A- . (.Microsoft Corporation - DeviceItem inproc devquery subsystem.) -- C:\Windows\SysNative\DevDispItemProvider.dll   [49152]
O44 - LFC:[MD5.50361572A98348A6E780FFE231B55D49] - 09/09/2013 - 14:01:55 ---A- . (.Microsoft Corporation - DeviceItem inproc devquery subsystem.) -- C:\Windows\System32\DevDispItemProvider.dll   [49152]
O44 - LFC:[MD5.25FD6AB608C7CFDEAAC24BA882AC4052] - 09/09/2013 - 14:01:55 ---A- . (.Microsoft Corporation - Ndis IM Platform MUX Notify Object.) -- C:\Windows\SysNative\NdisImPlatform.dll   [117248]
O44 - LFC:[MD5.B240874B2CA0CD02E8CD11E140B14C57] - 09/09/2013 - 14:01:55 RSHAD . (.Microsoft Corporation - MS AHCI Storport Miniport Driver.) -- C:\Windows\System32\Drivers\storahci.sys   [77544]
O44 - LFC:[MD5.25FD6AB608C7CFDEAAC24BA882AC4052] - 09/09/2013 - 14:01:55 RSHAD . (.Microsoft Corporation - Ndis IM Platform MUX Notify Object.) -- C:\Windows\System32\NdisImPlatform.dll   [117248]
O44 - LFC:[MD5.6F0BFF80EE2A5BC841286A51F893CBAD] - 09/09/2013 - 14:01:55 RSHAD . (.Microsoft Corporation - Pilote de périphérique TPM.) -- C:\Windows\System32\Drivers\tpm.sys   [148712]
O44 - LFC:[MD5.F5BB165DD4C8B784E06E3F0324150E0F] - 09/09/2013 - 14:01:54 ---A- . (.Microsoft Corporation - Panneau de configuration - Gestion de l’ali.) -- C:\Windows\SysNative\powercfg.cpl   [156160]
O44 - LFC:[MD5.F5BB165DD4C8B784E06E3F0324150E0F] - 09/09/2013 - 14:01:54 ---A- . (.Microsoft Corporation - Panneau de configuration - Gestion de l’ali.) -- C:\Windows\System32\powercfg.cpl   [156160]
O44 - LFC:[MD5.1F11A9A178E063B2A04C2903C4346B7F] - 09/09/2013 - 14:01:54 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\SysNative\fsquirt.exe   [240640]
O44 - LFC:[MD5.1F11A9A178E063B2A04C2903C4346B7F] - 09/09/2013 - 14:01:54 RSHAD . (.Microsoft Corporation - Pas de description.) -- C:\Windows\System32\fsquirt.exe   [240640]
O44 - LFC:[MD5.3A014B98C45AA8C0E4ABF2AB764F9AAC] - 09/09/2013 - 14:01:53 ---A- . (.Microsoft Corporation - Function Discovery Printer Proxy Dll.) -- C:\Windows\SysNative\WSDPrintProxy.DLL   [71168]
O44 - LFC:[MD5.3AF11BF2AA45E222D5923E59596AC984] - 09/09/2013 - 14:01:53 ---A- . (.Microsoft Corporation - Setting Synchronization Information.) -- C:\Windows\SysNative\SettingSyncInfo.dll   [128512]
O44 - LFC:[MD5.3AF11BF2AA45E222D5923E59596AC984] - 09/09/2013 - 14:01:53 ---A- . (.Microsoft Corporation - Setting Synchronization Information.) -- C:\Windows\System32\SettingSyncInfo.dll   [128512]
O44 - LFC:[MD5.3A014B98C45AA8C0E4ABF2AB764F9AAC] - 09/09/2013 - 14:01:53 RSHAD . (.Microsoft Corporation - Function Discovery Printer Proxy Dll.) -- C:\Windows\System32\WSDPrintProxy.DLL   [71168]
O44 - LFC:[MD5.C0ADEBED913295803B579ED288936CBB] - 09/09/2013 - 14:01:53 RSHAD . (.Microsoft Corporation - Pilote de filtre souris HID.) -- C:\Windows\System32\Drivers\mouhid.sys   [26112]
O44 - LFC:[MD5.EA8EAD3F5B762F889CC7F3966625B48B] - 09/09/2013 - 14:01:52 RSHAD . (.Microsoft Corporation - Monitor Driver.) -- C:\Windows\System32\Drivers\monitor.sys   [30720]
O44 - LFC:[MD5.1F715957F5236D30B6020A19A4271F6A] - 09/09/2013 - 14:01:52 RSHAD . (.Microsoft Corporation - Pilote de Miniport Bluetooth.) -- C:\Windows\System32\Drivers\BTHUSB.SYS   [74752]
O44 - LFC:[MD5.A8B20D852B07AE19A13B5D47EC4E4C3B] - 09/09/2013 - 14:01:51 RSHAD . (.Microsoft Corporation - Extension de bus Bluetooth.) -- C:\Windows\System32\Drivers\bthenum.sys   [51712]
O44 - LFC:[MD5.A60A4D9E975527F12A914F21431A345A] - 09/09/2013 - 14:01:37 ---A- . (.Microsoft Corporation - GDI Client DLL.) -- C:\Windows\SysNative\gdi32.dll   [1300992]
O44 - LFC:[MD5.A60A4D9E975527F12A914F21431A345A] - 09/09/2013 - 14:01:37 ---A- . (.Microsoft Corporation - GDI Client DLL.) -- C:\Windows\System32\gdi32.dll   [1300992]
O44 - LFC:[MD5.3607D60C08EDA0751FDA896A8DC56549] - 09/09/2013 - 14:01:17 ---A- . (.Microsoft Corporation - Microsoft® .NET Framework.) -- C:\Windows\SysNative\msvcr100_clr0400.dll   [17888]
O44 - LFC:[MD5.3607D60C08EDA0751FDA896A8DC56549] - 09/09/2013 - 14:01:17 ---A- . (.Microsoft Corporation - Microsoft® .NET Framework.) -- C:\Windows\System32\msvcr100_clr0400.dll   [17888]
O44 - LFC:[MD5.173FCB500DEC33373FA6DBA6EA8A11DA] - 09/09/2013 - 13:58:10 ---A- . (.Microsoft Corporation - Microsoft Management Console.) -- C:\Windows\SysNative\mmc.exe   [2094592]
O44 - LFC:[MD5.173FCB500DEC33373FA6DBA6EA8A11DA] - 09/09/2013 - 13:58:10 ---A- . (.Microsoft Corporation - Microsoft Management Console.) -- C:\Windows\System32\mmc.exe   [2094592]
O44 - LFC:[MD5.B330CE47FB74A6BE9A3FFFF4B3F64D9B] - 09/09/2013 - 13:58:10 ---A- . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\Windows\SysNative\wlidsvc.dll   [1964544]
O44 - LFC:[MD5.B330CE47FB74A6BE9A3FFFF4B3F64D9B] - 09/09/2013 - 13:58:10 RSHAD . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\Windows\System32\wlidsvc.dll   [1964544]
O44 - LFC:[MD5.F9D9FAA0E2460EDA807C32391E5B6DAE] - 09/09/2013 - 13:58:09 ---A- . (.Microsoft Corporation - DLL de MSCTF Server.) -- C:\Windows\SysNative\msctf.dll   [1120768]
O44 - LFC:[MD5.F9D9FAA0E2460EDA807C32391E5B6DAE] - 09/09/2013 - 13:58:09 ---A- . (.Microsoft Corporation - DLL de MSCTF Server.) -- C:\Windows\System32\msctf.dll   [1120768]
O44 - LFC:[MD5.7653DB77F0DB2A50392F015321E42E37] - 09/09/2013 - 13:58:05 ---A- . (.Microsoft Corporation - Installation de L’API Windows.) -- C:\Windows\SysNative\setupapi.dll   [1886208]
O44 - LFC:[MD5.7653DB77F0DB2A50392F015321E42E37] - 09/09/2013 - 13:58:05 ---A- . (.Microsoft Corporation - Installation de L’API Windows.) -- C:\Windows\System32\setupapi.dll   [1886208]
O44 - LFC:[MD5.A57BA284F5996FFD32DCDBC41A4657DB] - 09/09/2013 - 13:58:01 ---A- . (.Microsoft Corporation - Service du gestionnaire de session locale.) -- C:\Windows\SysNative\lsm.dll   [438272]
O44 - LFC:[MD5.60CAB7E74DCE70EE38B810E36756360D] - 09/09/2013 - 13:58:01 ---A- . (.Microsoft Corporation - Windows Media Runtime DLL.) -- C:\Windows\SysNative\Windows.Media.dll   [406016]
O44 - LFC:[MD5.60CAB7E74DCE70EE38B810E36756360D] - 09/09/2013 - 13:58:01 ---A- . (.Microsoft Corporation - Windows Media Runtime DLL.) -- C:\Windows\System32\Windows.Media.dll   [406016]
O44 - LFC:[MD5.C32A7A39B960A42BA9D4FBE47213CA03] - 09/09/2013 - 13:58:01 RSHAD . (.Microsoft Corporation - GPIO Button Driver.) -- C:\Windows\System32\Drivers\msgpiowin32.sys   [28904]
O44 - LFC:[MD5.C2504AA983B5D411F7D31402E8B57725] - 09/09/2013 - 13:58:01 RSHAD . (.Microsoft Corporation - High Definition Audio Function Driver.) -- C:\Windows\System32\Drivers\HdAudio.sys   [341504]
O44 - LFC:[MD5.A57BA284F5996FFD32DCDBC41A4657DB] - 09/09/2013 - 13:58:01 RSHAD . (.Microsoft Corporation - Service du gestionnaire de session locale.) -- C:\Windows\System32\lsm.dll   [438272]
O44 - LFC:[MD5.D6ACCF9F2EEEEA711C14EFD976E573F3] - 09/09/2013 - 13:58:00 RSHAD . (.Microsoft Corporation - Partition Management Driver.) -- C:\Windows\System32\Drivers\partmgr.sys   [91880]
O44 - LFC:[MD5.2ADC985B85A71BD7D99712EC0C24358B] - 09/09/2013 - 13:58:00 RSHAD . (.Microsoft Corporation - Runtime de l’infrastructure de pilotes en m.) -- C:\Windows\System32\Drivers\Wdf01000.sys   [785504]
O44 - LFC:[MD5.B852BB8E1D0902064346A09A7B32FC17] - 09/09/2013 - 13:57:59 ---A- . (.Microsoft Corporation - Moniteur de port d’imprimante WSD.) -- C:\Windows\SysNative\WSDMon.dll   [256000]
O44 - LFC:[MD5.C217B8D2E58C57A319B16125C3D4B69C] - 09/09/2013 - 13:57:59 ---A- . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\SysNative\iphlpsvc.dll   [894464]
O44 - LFC:[MD5.B852BB8E1D0902064346A09A7B32FC17] - 09/09/2013 - 13:57:59 RSHAD . (.Microsoft Corporation - Moniteur de port d’imprimante WSD.) -- C:\Windows\System32\WSDMon.dll   [256000]
O44 - LFC:[MD5.C217B8D2E58C57A319B16125C3D4B69C] - 09/09/2013 - 13:57:59 RSHAD . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll   [894464]
O44 - LFC:[MD5.644F1A561B82F670A7A9A613FA8C462B] - 09/09/2013 - 13:57:58 ---A- . (.Microsoft Corporation - DLL du service d’impression Internet.) -- C:\Windows\SysNative\inetpp.dll   [159232]
O44 - LFC:[MD5.644F1A561B82F670A7A9A613FA8C462B] - 09/09/2013 - 13:57:58 RSHAD . (.Microsoft Corporation - DLL du service d’impression Internet.) -- C:\Windows\System32\inetpp.dll   [159232]
O44 - LFC:[MD5.E57756F3A0B90E665FCE4527104C2D1D] - 09/09/2013 - 13:57:57 ---A- . (.Microsoft Corporation - Windows Media MPEG-4 S Video Decoder.) -- C:\Windows\SysNative\MP4SDECD.DLL   [666112]
O44 - LFC:[MD5.E57756F3A0B90E665FCE4527104C2D1D] - 09/09/2013 - 13:57:57 ---A- . (.Microsoft Corporation - Windows Media MPEG-4 S Video Decoder.) -- C:\Windows\System32\MP4SDECD.DLL   [666112]
O44 - LFC:[MD5.6927AFA68FBD3047A29C9B324272A783] - 09/09/2013 - 13:57:56 ---A- . (.Microsoft Corporation - Assistant Acquisition de photographies Wind.) -- C:\Windows\SysNative\wiaacmgr.exe   [95232]
O44 - LFC:[MD5.6927AFA68FBD3047A29C9B324272A783] - 09/09/2013 - 13:57:56 ---A- . (.Microsoft Corporation - Assistant Acquisition de photographies Wind.) -- C:\Windows\System32\wiaacmgr.exe   [95232]
O44 - LFC:[MD5.79FE8418CD57C9E2BDDC2FB0CC2BFB05] - 09/09/2013 - 13:57:56 ---A- . (.Microsoft Corporation - DLL Serveur SAM.) -- C:\Windows\SysNative\samsrv.dll   [728064]
O44 - LFC:[MD5.79FE8418CD57C9E2BDDC2FB0CC2BFB05] - 09/09/2013 - 13:57:56 RSHAD . (.Microsoft Corporation - DLL Serveur SAM.) -- C:\Windows\System32\samsrv.dll   [728064]
O44 - LFC:[MD5.8BD33FC2A78607E00D012D550C0E2E69] - 09/09/2013 - 13:57:55 ---A- . (.Microsoft Corporation - Service Broker pour les connexions réseau.) -- C:\Windows\SysNative\ncbservice.dll   [171520]
O44 - LFC:[MD5.8BD33FC2A78607E00D012D550C0E2E69] - 09/09/2013 - 13:57:55 RSHAD . (.Microsoft Corporation - Service Broker pour les connexions réseau.) -- C:\Windows\System32\ncbservice.dll   [171520]
O44 - LFC:[MD5.0E2BB2E43DCCE4ED986BF3B8641DFC08] - 09/09/2013 - 13:57:54 ---A- . (.Microsoft Corporation - AD Harvest Sites and Subnets Service.) -- C:\Windows\SysNative\adhsvc.dll   [62464]
O44 - LFC:[MD5.104BA949E64659ED6B8D23BA08299F55] - 09/09/2013 - 13:57:54 ---A- . (.Microsoft Corporation - Proxy Manager.) -- C:\Windows\SysNative\httpprxm.dll   [107520]
O44 - LFC:[MD5.0E2BB2E43DCCE4ED986BF3B8641DFC08] - 09/09/2013 - 13:57:54 RSHAD . (.Microsoft Corporation - AD Harvest Sites and Subnets Service.) -- C:\Windows\System32\adhsvc.dll   [62464]
O44 - LFC:[MD5.104BA949E64659ED6B8D23BA08299F55] - 09/09/2013 - 13:57:54 RSHAD . (.Microsoft Corporation - Proxy Manager.) -- C:\Windows\System32\httpprxm.dll   [107520]
O44 - LFC:[MD5.D87775F050DD29AADDF479F5C17E4200] - 09/09/2013 - 13:57:52 ---A- . (.Microsoft Corporation - AD harvest sites and subnets API.) -- C:\Windows\SysNative\adhapi.dll   [22528]
O44 - LFC:[MD5.722AD253B1F2697D9D5D0E5347952375] - 09/09/2013 - 13:57:52 ---A- . (.Microsoft Corporation - Keep alive provider API.) -- C:\Windows\SysNative\keepaliveprovider.dll   [15872]
O44 - LFC:[MD5.5AACB04BA3A0DB236EA8D510A66F5E26] - 09/09/2013 - 13:57:52 ---A- . (.Microsoft Corporation - Proxy Manager Provider RPC interface.) -- C:\Windows\SysNative\httpprxp.dll   [17920]
O44 - LFC:[MD5.D87775F050DD29AADDF479F5C17E4200] - 09/09/2013 - 13:57:52 RSHAD . (.Microsoft Corporation - AD harvest sites and subnets API.) -- C:\Windows\System32\adhapi.dll   [22528]
O44 - LFC:[MD5.722AD253B1F2697D9D5D0E5347952375] - 09/09/2013 - 13:57:52 RSHAD . (.Microsoft Corporation - Keep alive provider API.) -- C:\Windows\System32\keepaliveprovider.dll   [15872]
O44 - LFC:[MD5.5AACB04BA3A0DB236EA8D510A66F5E26] - 09/09/2013 - 13:57:52 RSHAD . (.Microsoft Corporation - Proxy Manager Provider RPC interface.) -- C:\Windows\System32\httpprxp.dll   [17920]
O44 - LFC:[MD5.6BDCC68E85A386414E4E028DEB768350] - 09/09/2013 - 13:57:23 ---A- . (.Microsoft Corporation - Runtime d’appel de procédure distante.) -- C:\Windows\SysNative\rpcrt4.dll   [1314816]
O44 - LFC:[MD5.6BDCC68E85A386414E4E028DEB768350] - 09/09/2013 - 13:57:23 ---A- . (.Microsoft Corporation - Runtime d’appel de procédure distante.) -- C:\Windows\System32\rpcrt4.dll   [1314816]
O44 - LFC:[MD5.3E57DE8477F6F851B43904B50B1816C5] - 09/09/2013 - 13:57:20 ---A- . (.Microsoft Corporation - Services de typographie Microsoft DirectX.) -- C:\Windows\SysNative\DWrite.dll   [1838080]
O44 - LFC:[MD5.3E57DE8477F6F851B43904B50B1816C5] - 09/09/2013 - 13:57:20 ---A- . (.Microsoft Corporation - Services de typographie Microsoft DirectX.) -- C:\Windows\System32\DWrite.dll   [1838080]
O44 - LFC:[MD5.59ADE56B6D7F9392ACBAD9641AE03CD4] - 09/09/2013 - 13:57:07 ---A- . (.Microsoft Corporation - NT Kernel & System.) -- C:\Windows\SysNative\ntoskrnl.exe   [6987528]
O44 - LFC:[MD5.59ADE56B6D7F9392ACBAD9641AE03CD4] - 09/09/2013 - 13:57:07 RSHAD . (.Microsoft Corporation - NT Kernel & System.) -- C:\Windows\System32\ntoskrnl.exe   [6987528]
O44 - LFC:[MD5.6D1B8A9A2C0BD4851D8AF1AB43E67AD9] - 09/09/2013 - 13:56:46 RSHAD . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys   [1455368]
O44 - LFC:[MD5.67AB74C4493C123D1E32F013222DA107] - 09/09/2013 - 13:56:45 ---A- . (.Microsoft Corporation - Décodeur vidéo Windows Media.) -- C:\Windows\SysNative\WMVDECOD.DLL   [2842112]
O44 - LFC:[MD5.67AB74C4493C123D1E32F013222DA107] - 09/09/2013 - 13:56:45 ---A- . (.Microsoft Corporation - Décodeur vidéo Windows Media.) -- C:\Windows\System32\WMVDECOD.DLL   [2842112]
O44 - LFC:[MD5.3C300826241468F59D7C0244B4D8B867] - 09/09/2013 - 13:56:35 ---A- . (.Microsoft Corporation - CertUtil.exe.) -- C:\Windows\SysNative\certutil.exe   [1255936]
O44 - LFC:[MD5.3C300826241468F59D7C0244B4D8B867] - 09/09/2013 - 13:56:35 ---A- . (.Microsoft Corporation - CertUtil.exe.) -- C:\Windows\System32\certutil.exe   [1255936]
O44 - LFC:[MD5.8D454387D12D4DB13805F4128DE8F117] - 09/09/2013 - 13:56:35 ---A- . (.Microsoft Corporation - Crypto Network Related API.) -- C:\Windows\SysNative\cryptnet.dll   [141312]
O44 - LFC:[MD5.8D454387D12D4DB13805F4128DE8F117] - 09/09/2013 - 13:56:35 ---A- . (.Microsoft Corporation - Crypto Network Related API.) -- C:\Windows\System32\cryptnet.dll   [141312]
O44 - LFC:[MD5.D3C93101F4031001F47D38E17C6BB28E] - 09/09/2013 - 13:56:28 ---A- . (.Microsoft Corporation - Assistant Compatibilité des programmes.) -- C:\Windows\SysNative\pcalua.exe   [13312]
O44 - LFC:[MD5.EBA655700A35328F4E61266DD35FB71F] - 09/09/2013 - 13:56:28 ---A- . (.Microsoft Corporation - Program Compatibility Assistant Diagnostic.) -- C:\Windows\SysNative\pcadm.dll   [31232]
O44 - LFC:[MD5.CA989A202F2A6A32D51F875265CA4FC0] - 09/09/2013 - 13:56:28 ---A- . (.Microsoft Corporation - Ressources d’événement de l’Assistant Compa.) -- C:\Windows\SysNative\pcaevts.dll   [11776]
O44 - LFC:[MD5.4811D9EC53649105A5A8BEA661B0F936] - 09/09/2013 - 13:56:28 ---A- . (.Microsoft Corporation - Service de l’Assistant Compatibilité des pr.) -- C:\Windows\SysNative\pcasvc.dll   [405504]
O44 - LFC:[MD5.D3C93101F4031001F47D38E17C6BB28E] - 09/09/2013 - 13:56:28 RSHAD . (.Microsoft Corporation - Assistant Compatibilité des programmes.) -- C:\Windows\System32\pcalua.exe   [13312]
O44 - LFC:[MD5.EBA655700A35328F4E61266DD35FB71F] - 09/09/2013 - 13:56:28 RSHAD . (.Microsoft Corporation - Program Compatibility Assistant Diagnostic.) -- C:\Windows\System32\pcadm.dll   [31232]
O44 - LFC:[MD5.CA989A202F2A6A32D51F875265CA4FC0] - 09/09/2013 - 13:56:28 RSHAD . (.Microsoft Corporation - Ressources d’événement de l’Assistant Compa.) -- C:\Windows\System32\pcaevts.dll   [11776]
O44 - LFC:[MD5.4811D9EC53649105A5A8BEA661B0F936] - 09/09/2013 - 13:56:28 RSHAD . (.Microsoft Corporation - Service de l’Assistant Compatibilité des pr.) -- C:\Windows\System32\pcasvc.dll   [405504]
O44 - LFC:[MD5.008207A8345B1A1551C360F1F8BC3420] - 09/09/2013 - 13:56:27 ---A- . (.Microsoft Corporation - MSXML 3.0.) -- C:\Windows\SysNative\msxml3.dll   [1836032]
O44 - LFC:[MD5.008207A8345B1A1551C360F1F8BC3420] - 09/09/2013 - 13:56:27 ---A- . (.Microsoft Corporation - MSXML 3.0.) -- C:\Windows\System32\msxml3.dll   [1836032]
O44 - LFC:[MD5.36E419B92BFBF76438B8C0C4DD28B9E6] - 09/09/2013 - 13:56:27 ---A- . (.Microsoft Corporation - MSXML 6.0.) -- C:\Windows\SysNative\msxml6.dll   [2361344]
O44 - LFC:[MD5.36E419B92BFBF76438B8C0C4DD28B9E6] - 09/09/2013 - 13:56:27 ---A- . (.Microsoft Corporation - MSXML 6.0.) -- C:\Windows\System32\msxml6.dll   [2361344]
O44 - LFC:[MD5.6C85CF01BEDFF87E696BD126BFD6B9C6] - 09/09/2013 - 13:56:26 ---A- . (.Microsoft Corporation - XML Resources.) -- C:\Windows\SysNative\msxml3r.dll   [2048]
O44 - LFC:[MD5.D43A3D71B6F16ACF2D6E895B5EE58827] - 09/09/2013 - 13:56:26 ---A- . (.Microsoft Corporation - XML Resources.) -- C:\Windows\SysNative\msxml6r.dll   [2048]
O44 - LFC:[MD5.6C85CF01BEDFF87E696BD126BFD6B9C6] - 09/09/2013 - 13:56:26 ---A- . (.Microsoft Corporation - XML Resources.) -- C:\Windows\System32\msxml3r.dll   [2048]
O44 - LFC:[MD5.D43A3D71B6F16ACF2D6E895B5EE58827] - 09/09/2013 - 13:56:26 ---A- . (.Microsoft Corporation - XML Resources.) -- C:\Windows\System32\msxml6r.dll   [2048]
O44 - LFC:[MD5.36E2B5A5AC7688FFB3270F57103507D2] - 09/09/2013 - 13:56:24 RSHAD . (.Microsoft Corporation - FWP/IPsec Kernel-Mode API.) -- C:\Windows\System32\Drivers\FWPKCLNT.SYS   [411880]
O44 - LFC:[MD5.1794C43A000A47D92B3304FC1E3E512A] - 09/09/2013 - 13:56:24 RSHAD . (.Microsoft Corporation - Pilote TCP/IP.) -- C:\Windows\System32\Drivers\tcpip.sys   [2233168]
O44 - LFC:[MD5.1A41F8B43EF1438BEE8F8F29A8BC0BC2] - 09/09/2013 - 13:56:21 ---A- . (.Microsoft Corporation - Microsoft DirectPlay.) -- C:\Windows\SysNative\dpnet.dll   [463872]
O44 - LFC:[MD5.1A41F8B43EF1438BEE8F8F29A8BC0BC2] - 09/09/2013 - 13:56:21 ---A- . (.Microsoft Corporation - Microsoft DirectPlay.) -- C:\Windows\System32\dpnet.dll   [463872]
O44 - LFC:[MD5.A6A31EEEBC2D3376B4B6E96397CCEBD8] - 09/09/2013 - 13:56:21 ---A- . (.Microsoft Corporation - Serveur Microsoft DirectPlay 8.) -- C:\Windows\SysNative\dpnsvr.exe   [34816]
O44 - LFC:[MD5.A6A31EEEBC2D3376B4B6E96397CCEBD8] - 09/09/2013 - 13:56:21 ---A- . (.Microsoft Corporation - Serveur Microsoft DirectPlay 8.) -- C:\Windows\System32\dpnsvr.exe   [34816]
O44 - LFC:[MD5.D4EF346DA9C78D97B6C5D5DF210E1BEE] - 09/09/2013 - 13:56:20 ---A- . (.Microsoft Corporation - Microsoft DirectPlay NAT Helper UPNP.) -- C:\Windows\SysNative\dpnhupnp.dll   [9216]
O44 - LFC:[MD5.D4EF346DA9C78D97B6C5D5DF210E1BEE] - 09/09/2013 - 13:56:20 ---A- . (.Microsoft Corporation - Microsoft DirectPlay NAT Helper UPNP.) -- C:\Windows\System32\dpnhupnp.dll   [9216]
O44 - LFC:[MD5.C78C7105A964B202D265CA3BF27BE3B6] - 09/09/2013 - 13:56:20 ---A- . (.Microsoft Corporation - Microsoft DirectPlay NAT Helper UPnP.) -- C:\Windows\SysNative\dpnathlp.dll   [67584]
O44 - LFC:[MD5.C78C7105A964B202D265CA3BF27BE3B6] - 09/09/2013 - 13:56:20 ---A- . (.Microsoft Corporation - Microsoft DirectPlay NAT Helper UPnP.) -- C:\Windows\System32\dpnathlp.dll   [67584]
O44 - LFC:[MD5.C59A382FA9751537EFD57EE70C4C0F76] - 09/09/2013 - 13:56:19 ---A- . (.Microsoft Corporation - Microsoft DirectPlay NAT Helper PAST.) -- C:\Windows\SysNative\dpnhpast.dll   [9216]
O44 - LFC:[MD5.C59A382FA9751537EFD57EE70C4C0F76] - 09/09/2013 - 13:56:19 ---A- . (.Microsoft Corporation - Microsoft DirectPlay NAT Helper PAST.) -- C:\Windows\System32\dpnhpast.dll   [9216]
O44 - LFC:[MD5.A5B395E459C1389816BDE0055D1BB64D] - 09/09/2013 - 13:56:19 ---A- . (.Microsoft Corporation - Microsoft DirectPlay8 Address.) -- C:\Windows\SysNative\dpnaddr.dll   [3584]
O44 - LFC:[MD5.A5B395E459C1389816BDE0055D1BB64D] - 09/09/2013 - 13:56:19 ---A- . (.Microsoft Corporation - Microsoft DirectPlay8 Address.) -- C:\Windows\System32\dpnaddr.dll   [3584]
O44 - LFC:[MD5.2527E7EBB0C7013EEDE58421E64002A1] - 09/09/2013 - 13:56:19 ---A- . (.Microsoft Corporation - Microsoft DirectPlay8 Lobby.) -- C:\Windows\SysNative\dpnlobby.dll   [4096]
O44 - LFC:[MD5.2527E7EBB0C7013EEDE58421E64002A1] - 09/09/2013 - 13:56:19 ---A- . (.Microsoft Corporation - Microsoft DirectPlay8 Lobby.) -- C:\Windows\System32\dpnlobby.dll   [4096]
O44 - LFC:[MD5.E4C853E60734B3F6067B7F17FC178E8E] - 09/09/2013 - 13:56:15 ---A- . (.Microsoft Corporation - Bibliothèque de thèmes Ux Microsoft.) -- C:\Windows\SysNative\uxtheme.dll   [915968]
O44 - LFC:[MD5.E4C853E60734B3F6067B7F17FC178E8E] - 09/09/2013 - 13:56:15 ---A- . (.Microsoft Corporation - Bibliothèque de thèmes Ux Microsoft.) -- C:\Windows\System32\uxtheme.dll   [915968]
O44 - LFC:[MD5.3A2FD42F11CD325A4ACAFE7FB0EEA83A] - 09/09/2013 - 13:56:15 ---A- . (.Microsoft Corporation - Microsoft® MSHTML Typelib.) -- C:\Windows\SysNative\mshtml.tlb   [2706432]
O44 - LFC:[MD5.3A2FD42F11CD325A4ACAFE7FB0EEA83A] - 09/09/2013 - 13:56:15 ---A- . (.Microsoft Corporation - Microsoft® MSHTML Typelib.) -- C:\Windows\System32\mshtml.tlb   [2706432]
O44 - LFC:[MD5.BBFE238B22F808C88AF039EF83BABAD6] - 09/09/2013 - 13:56:15 ---A- . (.Microsoft Corporation - Windows User Experience Session Initializat.) -- C:\Windows\SysNative\UXInit.dll   [53760]
O44 - LFC:[MD5.BBFE238B22F808C88AF039EF83BABAD6] - 09/09/2013 - 13:56:15 ---A- . (.Microsoft Corporation - Windows User Experience Session Initializat.) -- C:\Windows\System32\UXInit.dll   [53760]
O44 - LFC:[MD5.04DE09B1E287F6DC5C7FD655B6E84AB9] - 09/09/2013 - 13:56:12 ---A- . (.Microsoft Corporation - JScript Proxy Auto-Configuration.) -- C:\Windows\SysNative\jsproxy.dll   [53760]
O44 - LFC:[MD5.04DE09B1E287F6DC5C7FD655B6E84AB9] - 09/09/2013 - 13:56:12 ---A- . (.Microsoft Corporation - JScript Proxy Auto-Configuration.) -- C:\Windows\System32\jsproxy.dll   [53760]
O44 - LFC:[MD5.622C7C8D39609FCEACE3508715D48C7F] - 09/09/2013 - 13:56:12 ---A- . (.Microsoft Corporation - Traitement de RunOnce complet avec interfac.) -- C:\Windows\SysNative\iernonce.dll   [39936]
O44 - LFC:[MD5.622C7C8D39609FCEACE3508715D48C7F] - 09/09/2013 - 13:56:12 ---A- . (.Microsoft Corporation - Traitement de RunOnce complet avec interfac.) -- C:\Windows\System32\iernonce.dll   [39936]
O44 - LFC:[MD5.6C8BDC9F16943D626DFE8A987BCCFD20] - 09/09/2013 - 13:56:12 ---A- . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\SysNative\ie4uinit.exe   [51712]
O44 - LFC:[MD5.6C8BDC9F16943D626DFE8A987BCCFD20] - 09/09/2013 - 13:56:12 RSHAD . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe   [51712]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 09/09/2013 - 13:56:11 ---A- . (...) -- C:\Windows\ativpsrm.bin   [0]
O44 - LFC:[MD5.289C5E0A386E7B6CA9539D66D15E22CC] - 09/09/2013 - 13:56:11 ---A- . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysNative\urlmon.dll   [1365504]
O44 - LFC:[MD5.289C5E0A386E7B6CA9539D66D15E22CC] - 09/09/2013 - 13:56:11 ---A- . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll   [1365504]
O44 - LFC:[MD5.8C12653BEA781902AA60E4A855A55D5C] - 09/09/2013 - 13:56:11 ---A- . (.Microsoft Corporation - Microsoft Feeds Manager.) -- C:\Windows\SysNative\msfeeds.dll   [603136]
O44 - LFC:[MD5.8C12653BEA781902AA60E4A855A55D5C] - 09/09/2013 - 13:56:11 ---A- . (.Microsoft Corporation - Microsoft Feeds Manager.) -- C:\Windows\System32\msfeeds.dll   [603136]
O44 - LFC:[MD5.D8CC9A20C517A54678363C4C77B930A4] - 09/09/2013 - 13:56:10 ---A- . (.Microsoft Corporation - IE Sysprep Provider.) -- C:\Windows\SysNative\iesysprep.dll   [136704]
O44 - LFC:[MD5.D8CC9A20C517A54678363C4C77B930A4] - 09/09/2013 - 13:56:10 ---A- . (.Microsoft Corporation - IE Sysprep Provider.) -- C:\Windows\System32\iesysprep.dll   [136704]
O44 - LFC:[MD5.963B29E0EFB20D66436214DB7C43D7F7] - 09/09/2013 - 13:56:10 ---A- . (.Microsoft Corporation - IOD Version Map.) -- C:\Windows\SysNative\iesetup.dll   [67072]
O44 - LFC:[MD5.963B29E0EFB20D66436214DB7C43D7F7] - 09/09/2013 - 13:56:10 ---A- . (.Microsoft Corporation - IOD Version Map.) -- C:\Windows\System32\iesetup.dll   [67072]
O44 - LFC:[MD5.AC155DD9BD1E6D3B740826A4D1C68AAE] - 09/09/2013 - 13:56:09 ---A- . (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\SysNative\wininet.dll   [2241024]
O44 - LFC:[MD5.AC155DD9BD1E6D3B740826A4D1C68AAE] - 09/09/2013 - 13:56:09 ---A- . (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\System32\wininet.dll   [2241024]
O44 - LFC:[MD5.677A1C1B0F254EC918D84A7FE29274CA] - 09/09/2013 - 13:56:08 ---A- . (.Microsoft Corporation - Navigateur Internet.) -- C:\Windows\SysNative\ieframe.dll   [15405056]
O44 - LFC:[MD5.677A1C1B0F254EC918D84A7FE29274CA] - 09/09/2013 - 13:56:08 ---A- . (.Microsoft Corporation - Navigateur Internet.) -- C:\Windows\System32\ieframe.dll   [15405056]
O44 - LFC:[MD5.16FE878530FDFC9AB08B7FFC32335958] - 09/09/2013 - 13:56:05 ---A- . (.Microsoft Corporation - Microsoft (R) JScript.) -- C:\Windows\SysNative\jscript.dll   [855552]
O44 - LFC:[MD5.16FE878530FDFC9AB08B7FFC32335958] - 09/09/2013 - 13:56:05 ---A- . (.Microsoft Corporation - Microsoft (R) JScript.) -- C:\Windows\System32\jscript.dll   [855552]
O44 - LFC:[MD5.396889142BD839DB8A055A0BE0AD2F79] - 09/09/2013 - 13:56:04 ---A- . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysNative\mshtml.dll   [19239424]
O44 - LFC:[MD5.396889142BD839DB8A055A0BE0AD2F79] - 09/09/2013 - 13:56:04 ---A- . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll   [19239424]
O44 - LFC:[MD5.5A7FA01EEC393A3E0D0F3EBAA1FD959E] - 09/09/2013 - 13:55:53 ---A- . (.Microsoft Corporation - Microsoft (R) JScript.) -- C:\Windows\SysNative\jscript9.dll   [3958784]
O44 - LFC:[MD5.5A7FA01EEC393A3E0D0F3EBAA1FD959E] - 09/09/2013 - 13:55:53 ---A- . (.Microsoft Corporation - Microsoft (R) JScript.) -- C:\Windows\System32\jscript9.dll   [3958784]
O44 - LFC:[MD5.65546D87F7A78AB31841A536456CB94D] - 09/09/2013 - 13:55:53 ---A- . (.Microsoft Corporation - Utilitaire à l’exécution pour Internet Expl.) -- C:\Windows\SysNative\iertutil.dll   [2647040]
O44 - LFC:[MD5.65546D87F7A78AB31841A536456CB94D] - 09/09/2013 - 13:55:53 ---A- . (.Microsoft Corporation - Utilitaire à l’exécution pour Internet Expl.) -- C:\Windows\System32\iertutil.dll   [2647040]
O44 - LFC:[MD5.3E70676B18292EF37017E8895EBF9AC3] - 09/09/2013 - 13:55:27 ---A- . (.Microsoft Corporation - Édition DirectShow..) -- C:\Windows\SysNative\qedit.dll   [595968]
O44 - LFC:[MD5.3E70676B18292EF37017E8895EBF9AC3] - 09/09/2013 - 13:55:27 ---A- . (.Microsoft Corporation - Édition DirectShow..) -- C:\Windows\System32\qedit.dll   [595968]
O44 - LFC:[MD5.ABFDAD67A66A3A2E63A13A79D3D67203] - 09/09/2013 - 13:55:26 ---A- . (.Microsoft Corporation - Pilote Win32 multi-utilisateurs.) -- C:\Windows\SysNative\win32k.sys   [4036096]
O44 - LFC:[MD5.ABFDAD67A66A3A2E63A13A79D3D67203] - 09/09/2013 - 13:55:26 RSHAD . (.Microsoft Corporation - Pilote Win32 multi-utilisateurs.) -- C:\Windows\System32\win32k.sys   [4036096]
O44 - LFC:[MD5.910C8964A4F5212C50601BE31607A138] - 09/09/2013 - 13:55:14 ---A- . (.Microsoft Corporation - Extension de synchronisation d’itinérance W.) -- C:\Windows\SysNative\wlroamextension.dll   [543232]
O44 - LFC:[MD5.910C8964A4F5212C50601BE31607A138] - 09/09/2013 - 13:55:14 ---A- . (.Microsoft Corporation - Extension de synchronisation d’itinérance W.) -- C:\Windows\System32\wlroamextension.dll   [543232]
O44 - LFC:[MD5.0E0A4CDB1258FF435D96BA51AB329B7A] - 09/09/2013 - 13:55:14 ---A- . (.Microsoft Corporation - Windows DirectUser Engine.) -- C:\Windows\SysNative\duser.dll   [729600]
O44 - LFC:[MD5.0E0A4CDB1258FF435D96BA51AB329B7A] - 09/09/2013 - 13:55:14 ---A- . (.Microsoft Corporation - Windows DirectUser Engine.) -- C:\Windows\System32\duser.dll   [729600]
O44 - LFC:[MD5.03CFE4108D1DE16D6C59455B5C73319C] - 09/09/2013 - 13:55:14 RSHAD . (.Microsoft Corporation - Pilote NDIS 6.30.) -- C:\Windows\System32\Drivers\ndis.sys   [993512]
O44 - LFC:[MD5.76929F4A69E425911A63B407E26C2589] - 09/09/2013 - 13:55:14 RSHAD . (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\Windows\System32\Drivers\ntfs.sys   [1933544]
O44 - LFC:[MD5.6B48734D5856F32A8CACE40CD1AD9B33] - 09/09/2013 - 13:55:13 ---A- . (.Microsoft Corporation - Indicateur d’état de la connectivité réseau.) -- C:\Windows\SysNative\ncsi.dll   [385024]
O44 - LFC:[MD5.1E833CECF75535A4229363C6EB051576] - 09/09/2013 - 13:55:13 ---A- . (.Microsoft Corporation - Mbnapi.) -- C:\Windows\SysNative\WWanAPI.dll   [475136]
O44 - LFC:[MD5.1E833CECF75535A4229363C6EB051576] - 09/09/2013 - 13:55:13 ---A- . (.Microsoft Corporation - Mbnapi.) -- C:\Windows\System32\WWanAPI.dll   [475136]
O44 - LFC:[MD5.1BAF176DEB4E51E3304B21E96C92C2EE] - 09/09/2013 - 13:55:13 ---A- . (.Microsoft Corporation - Windows Networking Connectivity Runtime DLL.) -- C:\Windows\SysNative\Windows.Networking.Connectivity.dll   [293376]
O44 - LFC:[MD5.1BAF176DEB4E51E3304B21E96C92C2EE] - 09/09/2013 - 13:55:13 ---A- . (.Microsoft Corporation - Windows Networking Connectivity Runtime DLL.) -- C:\Windows\System32\Windows.Networking.Connectivity.dll   [293376]
O44 - LFC:[MD5.6B48734D5856F32A8CACE40CD1AD9B33] - 09/09/2013 - 13:55:13 RSHAD . (.Microsoft Corporation - Indicateur d’état de la connectivité réseau.) -- C:\Windows\System32\ncsi.dll   [385024]
O44 - LFC:[MD5.65486CEEC02392414ABBB0840D6C3551] - 09/09/2013 - 13:55:12 ---A- . (.Microsoft Corporation - Authentification de zone d’accès sans fil M.) -- C:\Windows\SysNative\hotspotauth.dll   [260096]
O44 - LFC:[MD5.65486CEEC02392414ABBB0840D6C3551] - 09/09/2013 - 13:55:12 RSHAD . (.Microsoft Corporation - Authentification de zone d’accès sans fil M.) -- C:\Windows\System32\hotspotauth.dll   [260096]
O44 - LFC:[MD5.ADBF89B8E0BB372FEFE2E4B84E1E20AE] - 09/09/2013 - 13:55:12 RSHAD . (.Microsoft Corporation - Default Hub Driver for USB.) -- C:\Windows\System32\Drivers\usbhub.sys   [496872]
O44 - LFC:[MD5.F17DEEAC7D51D44CF1BFF8DD4F0A2B6D] - 09/09/2013 - 13:55:11 RSHAD . (.Microsoft Corporation - HID de contrôle à distance audio/vidéo Blue.) -- C:\Windows\System32\Drivers\BthAvrcpTg.sys   [37632]
O44 - LFC:[MD5.36C27EA76685391BC5CAA1FA25E29FBF] - 09/09/2013 - 13:55:11 RSHAD . (.Microsoft Corporation - Kernel CSA Library.) -- C:\Windows\System32\Drivers\ks.sys   [297984]
O44 - LFC:[MD5.18EE8CBF1E7138A5D0B826678597B423] - 09/09/2013 - 13:55:09 ---A- . (.Microsoft Corporation - Terminer les processus.) -- C:\Windows\SysNative\taskkill.exe   [107520]
O44 - LFC:[MD5.18EE8CBF1E7138A5D0B826678597B423] - 09/09/2013 - 13:55:09 ---A- . (.Microsoft Corporation - Terminer les processus.) -- C:\Windows\System32\taskkill.exe   [107520]
O44 - LFC:[MD5.D43C6EBB5CD9373D4E463BCD77A4CCF0] - 09/09/2013 - 13:55:08 ---A- . (.Microsoft Corporation - Liste les tâches en cours d’exécution.) -- C:\Windows\SysNative\tasklist.exe   [102400]
O44 - LFC:[MD5.D43C6EBB5CD9373D4E463BCD77A4CCF0] - 09/09/2013 - 13:55:08 ---A- . (.Microsoft Corporation - Liste les tâches en cours d’exécution.) -- C:\Windows\System32\tasklist.exe   [102400]
O44 - LFC:[MD5.91106E9FFD5A2F1D23266962C84BD00D] - 09/09/2013 - 13:55:08 ---A- . (.Microsoft Corporation - Microsoft Windows Mobile Broadband SMS API.) -- C:\Windows\SysNative\mbsmsapi.dll   [225280]
O44 - LFC:[MD5.91106E9FFD5A2F1D23266962C84BD00D] - 09/09/2013 - 13:55:08 ---A- . (.Microsoft Corporation - Microsoft Windows Mobile Broadband SMS API.) -- C:\Windows\System32\mbsmsapi.dll   [225280]
O44 - LFC:[MD5.6B7979E7C1FFDCF917DD749EBCB2BD59] - 09/09/2013 - 13:55:06 RSHAD . (.Microsoft Corporation - Crash Dump Driver.) -- C:\Windows\System32\Drivers\crashdmp.sys   [61672]
O44 - LFC:[MD5.4205D34C3332FCE30C2BC88A2F5A6AF4] - 09/09/2013 - 13:55:05 ---A- . (.Microsoft Corporation - Programme d’installation de la classe de co.) -- C:\Windows\SysNative\wpd_ci.dll   [611840]
O44 - LFC:[MD5.5F70EBFC1F75B487DE79501E3CCBDB54] - 09/09/2013 - 13:55:05 ---A- . (.Microsoft Corporation - Service de rapport d’erreurs Windows.) -- C:\Windows\SysNative\wersvc.dll   [87552]
O44 - LFC:[MD5.4205D34C3332FCE30C2BC88A2F5A6AF4] - 09/09/2013 - 13:55:05 RSHAD . (.Microsoft Corporation - Programme d’installation de la classe de co.) -- C:\Windows\System32\wpd_ci.dll   [611840]
O44 - LFC:[MD5.5F70EBFC1F75B487DE79501E3CCBDB54] - 09/09/2013 - 13:55:05 RSHAD . (.Microsoft Corporation - Service de rapport d’erreurs Windows.) -- C:\Windows\System32\wersvc.dll   [87552]
O44 - LFC:[MD5.325F6179009B5A7F6118951A5BA422AB] - 09/09/2013 - 13:55:04 RSHAD . (.Microsoft Corporation - OHCI USB Miniport Driver.) -- C:\Windows\System32\Drivers\usbohci.sys   [27136]
O44 - LFC:[MD5.1CD7C6C5B2CA70AD9589FBE166CDBE61] - 09/09/2013 - 13:55:03 RSHAD . (.Microsoft Corporation - Microsoft Bluetooth Audio Multiprofile Mana.) -- C:\Windows\System32\Drivers\BtaMPM.sys   [18432]
O44 - LFC:[MD5.DCB4EBD928A6FB368BE6CAE522412DE1] - 09/09/2013 - 13:55:02 RSHAD . (.Microsoft Corporation - Minipilote HID mains libres Bluetooth.) -- C:\Windows\System32\Drivers\BthhfHid.sys   [29952]
O44 - LFC:[MD5.B6FCC2BB7D1044EA0FC4B573951BE8DC] - 09/09/2013 - 13:54:39 ---A- . (.Microsoft Corporation - Crypto API32.) -- C:\Windows\SysNative\crypt32.dll   [1889280]
O44 - LFC:[MD5.B6FCC2BB7D1044EA0FC4B573951BE8DC] - 09/09/2013 - 13:54:39 ---A- . (.Microsoft Corporation - Crypto API32.) -- C:\Windows\System32\crypt32.dll   [1889280]
O44 - LFC:[MD5.F68F697F5B4E74217159C38FFFD37964] - 09/09/2013 - 13:54:37 ---A- . (.Microsoft Corporation - Application Reputation APIs Dll.) -- C:\Windows\SysNative\apprepapi.dll   [124416]
O44 - LFC:[MD5.F68F697F5B4E74217159C38FFFD37964] - 09/09/2013 - 13:54:37 ---A- . (.Microsoft Corporation - Application Reputation APIs Dll.) -- C:\Windows\System32\apprepapi.dll   [124416]
O44 - LFC:[MD5.74466D77EE8588C04B95AE9DBC693EF8] - 09/09/2013 - 13:54:37 ---A- . (.Microsoft Corporation - Microsoft Trust Verification APIs.) -- C:\Windows\SysNative\wintrust.dll   [337408]
O44 - LFC:[MD5.74466D77EE8588C04B95AE9DBC693EF8] - 09/09/2013 - 13:54:37 ---A- . (.Microsoft Corporation - Microsoft Trust Verification APIs.) -- C:\Windows\System32\wintrust.dll   [337408]
O44 - LFC:[MD5.5CE2742F063731EC10C1B2EE386A2C08] - 09/09/2013 - 13:54:37 ---A- . (.Microsoft Corporation - Services de chiffrement.) -- C:\Windows\SysNative\cryptsvc.dll   [68096]
O44 - LFC:[MD5.5CE2742F063731EC10C1B2EE386A2C08] - 09/09/2013 - 13:54:37 RSHAD . (.Microsoft Corporation - Services de chiffrement.) -- C:\Windows\System32\cryptsvc.dll   [68096]
O44 - LFC:[MD5.E4E889A9CA3E8CCEE6FB5D1B4F94296F] - 09/09/2013 - 13:54:36 ---A- . (.Microsoft Corporation - Tâche AppRepSync.) -- C:\Windows\SysNative\apprepsync.dll   [98304]
O44 - LFC:[MD5.E4E889A9CA3E8CCEE6FB5D1B4F94296F] - 09/09/2013 - 13:54:36 ---A- . (.Microsoft Corporation - Tâche AppRepSync.) -- C:\Windows\System32\apprepsync.dll   [98304]
O44 - LFC:[MD5.4215C49E751ECA4BC42B3C10C8A55950] - 09/09/2013 - 13:54:25 ---A- . (.Microsoft Corporation - Microsoft SChannel Provider.) -- C:\Windows\SysNative\ncryptsslp.dll   [86016]
O44 - LFC:[MD5.4215C49E751ECA4BC42B3C10C8A55950] - 09/09/2013 - 13:54:25 ---A- . (.Microsoft Corporation - Microsoft SChannel Provider.) -- C:\Windows\System32\ncryptsslp.dll   [86016]
O44 - LFC:[MD5.5C7DD2E5759FFCCD2C7341C1B90F2B26] - 09/09/2013 - 13:54:24 RSHAD . (.Microsoft Corporation - Longhorn SMB 2.0 Redirector.) -- C:\Windows\System32\Drivers\mrxsmb20.sys   [215552]
O44 - LFC:[MD5.93179D48066918323628CB016D8C94DC] - 09/09/2013 - 13:54:24 RSHAD . (.Microsoft Corporation - Minirdr SMB Windows NT.) -- C:\Windows\System32\Drivers\mrxsmb.sys   [370688]
O44 - LFC:[MD5.93CF42531671EA4E24DA842B124FA269] - 09/09/2013 - 13:54:23 ---A- . (.Microsoft Corporation - Fournisseur d’impression de rendu côté clie.) -- C:\Windows\SysNative\win32spl.dll   [733184]
O44 - LFC:[MD5.93CF42531671EA4E24DA842B124FA269] - 09/09/2013 - 13:54:23 RSHAD . (.Microsoft Corporation - Fournisseur d’impression de rendu côté clie.) -- C:\Windows\System32\win32spl.dll   [733184]
O44 - LFC:[MD5.8542BEA78795403D705A21B83ABD589F] - 09/09/2013 - 13:54:22 ---A- . (.Microsoft Corporation - Microsoft GDI+.) -- C:\Windows\SysNative\GdiPlus.dll   [1690624]
O44 - LFC:[MD5.8542BEA78795403D705A21B83ABD589F] - 09/09/2013 - 13:54:22 ---A- . (.Microsoft Corporation - Microsoft GDI+.) -- C:\Windows\System32\GdiPlus.dll   [1690624]
O44 - LFC:[MD5.BDE6B6048E943717D0B5EED35A821150] - 09/09/2013 - 13:54:19 RSHAD . (.Microsoft Corporation - Remote NDIS USB Driver.) -- C:\Windows\System32\Drivers\usb8023.sys   [20992]
O44 - LFC:[MD5.DAFF45EACE818FA560BDA2E0672487F0] - 09/09/2013 - 13:54:18 ---A- . (.Adobe Systems Incorporated - Windows NT OpenType/Type 1 Font Driver.) -- C:\Windows\SysNative\atmfd.dll   [362496]
O44 - LFC:[MD5.DAFF45EACE818FA560BDA2E0672487F0] - 09/09/2013 - 13:54:18 ---A- . (.Adobe Systems Incorporated - Windows NT OpenType/Type 1 Font Driver.) -- C:\Windows\System32\atmfd.dll   [362496]
O44 - LFC:[MD5.6A8692468662C2780717FACA07269CA6] - 09/09/2013 - 13:54:17 ---A- . (.Adobe Systems - Windows NT OpenType/Type 1 API Library..) -- C:\Windows\SysNative\atmlib.dll   [46080]
O44 - LFC:[MD5.6A8692468662C2780717FACA07269CA6] - 09/09/2013 - 13:54:17 ---A- . (.Adobe Systems - Windows NT OpenType/Type 1 API Library..) -- C:\Windows\System32\atmlib.dll   [46080]
O44 - LFC:[MD5.2CAC5C2B89FEB2497D78DBC3F8D25C65] - 09/09/2013 - 13:54:17 ---A- . (.Microsoft Corporation - DCI Manager.) -- C:\Windows\SysNative\dciman32.dll   [14336]
O44 - LFC:[MD5.2CAC5C2B89FEB2497D78DBC3F8D25C65] - 09/09/2013 - 13:54:17 ---A- . (.Microsoft Corporation - DCI Manager.) -- C:\Windows\System32\dciman32.dll   [14336]
O44 - LFC:[MD5.D64A5E3C4656AB0A50363620B1A07D7D] - 09/09/2013 - 13:54:17 ---A- . (.Microsoft Corporation - Font Subsetting DLL.) -- C:\Windows\SysNative\fontsub.dll   [96256]
O44 - LFC:[MD5.D64A5E3C4656AB0A50363620B1A07D7D] - 09/09/2013 - 13:54:17 ---A- . (.Microsoft Corporation - Font Subsetting DLL.) -- C:\Windows\System32\fontsub.dll   [96256]
O44 - LFC:[MD5.CC81790E0A18535853C33BABBFF15D56] - 09/09/2013 - 13:54:17 ---A- . (.Microsoft Corporation - Language Pack.) -- C:\Windows\SysNative\lpk.dll   [3072]
O44 - LFC:[MD5.CC81790E0A18535853C33BABBFF15D56] - 09/09/2013 - 13:54:17 ---A- . (.Microsoft Corporation - Language Pack.) -- C:\Windows\System32\lpk.dll   [3072]
O44 - LFC:[MD5.F4A91D985EB9D1D2717D538F3424603C] - 09/09/2013 - 13:54:08 RSHAD . (.Microsoft Corporation - HTTP Pile du protocole.) -- C:\Windows\System32\Drivers\http.sys   [861184]
O44 - LFC:[MD5.4ECE7A1D8C2AE082CE7EF1A6C96BAE83] - 09/09/2013 - 13:53:33 ---A- . (.Microsoft Corporation - Dialogues communs de certificats Microsoft.) -- C:\Windows\SysNative\cryptdlg.dll   [30720]
O44 - LFC:[MD5.4ECE7A1D8C2AE082CE7EF1A6C96BAE83] - 09/09/2013 - 13:53:33 ---A- . (.Microsoft Corporation - Dialogues communs de certificats Microsoft.) -- C:\Windows\System32\cryptdlg.dll   [30720]
O44 - LFC:[MD5.F8E8AB38B693DD43A982F95B7A3158CC] - 09/09/2013 - 13:53:22 ---A- . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\SysNative\shell32.dll   [19758592]
O44 - LFC:[MD5.F8E8AB38B693DD43A982F95B7A3158CC] - 09/09/2013 - 13:53:22 ---A- . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll   [19758592]
O44 - LFC:[MD5.4FF1C0F2B66119DA7A48BC1F160892C5] - 09/09/2013 - 13:53:10 ---A- . (.Microsoft Corporation - Bibliothèque d’objets et de contrôles de do.) -- C:\Windows\SysNative\shdocvw.dll   [222208]
O44 - LFC:[MD5.4FF1C0F2B66119DA7A48BC1F160892C5] - 09/09/2013 - 13:53:10 ---A- . (.Microsoft Corporation - Bibliothèque d’objets et de contrôles de do.) -- C:\Windows\System32\shdocvw.dll   [222208]
O44 - LFC:[MD5.4F750B7EFCB6520AE01E01D082D7D476] - 09/09/2013 - 13:53:10 ---A- . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\SysNative\appinfo.dll   [70144]
O44 - LFC:[MD5.4F750B7EFCB6520AE01E01D082D7D476] - 09/09/2013 - 13:53:10 RSHAD . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll   [70144]
O44 - LFC:[MD5.5544F876B3932D3D6ED67656B28228CF] - 09/09/2013 - 13:53:09 ---A- . (.Microsoft Corporation - Interface utilisateur de consentement pour.) -- C:\Windows\SysNative\consent.exe   [112872]
O44 - LFC:[MD5.5544F876B3932D3D6ED67656B28228CF] - 09/09/2013 - 13:53:09 RSHAD . (.Microsoft Corporation - Interface utilisateur de consentement pour.) -- C:\Windows\System32\consent.exe   [112872]
O44 - LFC:[MD5.5F425D842DD6ADE9F95A51A0616AFAD7] - 09/09/2013 - 13:51:40 RSHAD . (.Microsoft Corporation - Microsoft antimalware file system filter dr.) -- C:\Windows\System32\Drivers\WdFilter.sys   [247216]
O44 - LFC:[MD5.FD47DF026B32969B8A68721A0243E8EE] - 09/09/2013 - 13:51:39 RSHAD . (.Microsoft Corporation - Microsoft antimalware boot driver.) -- C:\Windows\System32\Drivers\WdBoot.sys   [36288]
O44 - LFC:[MD5.56DA495DE9758984ADF855D4EA30D4A9] - 09/09/2013 - 13:51:20 ---A- . (.Microsoft Corporation - Moteur de stockage extensible pour Microsof.) -- C:\Windows\SysNative\esent.dll   [2851840]
O44 - LFC:[MD5.56DA495DE9758984ADF855D4EA30D4A9] - 09/09/2013 - 13:51:20 ---A- . (.Microsoft Corporation - Moteur de stockage extensible pour Microsof.) -- C:\Windows\System32\esent.dll   [2851840]
O44 - LFC:[MD5.13D62F90D06CDE48A5A68686F524940A] - 08/09/2013 - 17:52:35 ---A- . (.Microsoft Corporation - Exécuteur de file d’attente d’opérations pr.) -- C:\Windows\SysNative\poqexec.exe   [148480]
O44 - LFC:[MD5.13D62F90D06CDE48A5A68686F524940A] - 08/09/2013 - 17:52:35 ---A- . (.Microsoft Corporation - Exécuteur de file d’attente d’opérations pr.) -- C:\Windows\System32\poqexec.exe   [148480]
O44 - LFC:[MD5.19D7C8C2186B5D0230361D7BDBA3558D] - 08/09/2013 - 17:52:29 ---A- . (.Microsoft Corporation - CMI app Server plug-in.) -- C:\Windows\SysNative\appserverai.dll   [135680]
O44 - LFC:[MD5.6BA877DC84A42BB6EFCDD300D32DE230] - 08/09/2013 - 17:52:29 ---A- . (.Microsoft Corporation - CMI tsportal plug-in.) -- C:\Windows\SysNative\RDWebAI.dll   [126976]
O44 - LFC:[MD5.4A0B5BF31A5ACC06337EE07F907F14CB] - 08/09/2013 - 17:52:29 ---A- . (.Microsoft Corporation - CMI tssdis plug-in.) -- C:\Windows\SysNative\tssdisai.dll   [144384]
O44 - LFC:[MD5.6C164DB26B40E4EC1B60AAF87C8BCA63] - 08/09/2013 - 17:52:29 ---A- . (.Microsoft Corporation - CMI vmhost plug-in.) -- C:\Windows\SysNative\VmHostAI.dll   [122880]
O44 - LFC:[MD5.19D7C8C2186B5D0230361D7BDBA3558D] - 08/09/2013 - 17:52:29 RSHAD . (.Microsoft Corporation - CMI app Server plug-in.) -- C:\Windows\System32\appserverai.dll   [135680]
O44 - LFC:[MD5.6BA877DC84A42BB6EFCDD300D32DE230] - 08/09/2013 - 17:52:29 RSHAD . (.Microsoft Corporation - CMI tsportal plug-in.) -- C:\Windows\System32\RDWebAI.dll   [126976]
O44 - LFC:[MD5.4A0B5BF31A5ACC06337EE07F907F14CB] - 08/09/2013 - 17:52:29 RSHAD . (.Microsoft Corporation - CMI tssdis plug-in.) -- C:\Windows\System32\tssdisai.dll   [144384]
O44 - LFC:[MD5.6C164DB26B40E4EC1B60AAF87C8BCA63] - 08/09/2013 - 17:52:29 RSHAD . (.Microsoft Corporation - CMI vmhost plug-in.) -- C:\Windows\System32\VmHostAI.dll   [122880]
O44 - LFC:[MD5.6BF1792C79273D725C09CAEFD05073BB] - 08/09/2013 - 17:49:34 ---A- . (.Microsoft Corporation - DLL de l’agent de récupération Microsoft Wi.) -- C:\Windows\SysNative\ReAgent.dll   [443392]
O44 - LFC:[MD5.6BF1792C79273D725C09CAEFD05073BB] - 08/09/2013 - 17:49:34 ---A- . (.Microsoft Corporation - DLL de l’agent de récupération Microsoft Wi.) -- C:\Windows\System32\ReAgent.dll   [443392]
O44 - LFC:[MD5.DDE542A5BF575649F1B8D8C690A82B60] - 08/09/2013 - 17:49:34 ---A- . (.Microsoft Corporation - Microsoft Windows Reset Engine Mig Wrapper.) -- C:\Windows\SysNative\resetengmig.dll   [945152]
O44 - LFC:[MD5.79CAB096514C381152F4306BC87A7B29] - 08/09/2013 - 17:49:34 ---A- . (.Microsoft Corporation - Moteur de réinitialisation Microsoft Window.) -- C:\Windows\SysNative\reseteng.dll   [1011200]
O44 - LFC:[MD5.1E506405D7743C53E5C7E916AB40AA6A] - 08/09/2013 - 17:49:34 ---A- . (.Microsoft Corporation - Réinitialisation de Microsoft Windows.) -- C:\Windows\SysNative\sysreset.exe   [132096]
O44 - LFC:[MD5.DDE542A5BF575649F1B8D8C690A82B60] - 08/09/2013 - 17:49:34 RSHAD . (.Microsoft Corporation - Microsoft Windows Reset Engine Mig Wrapper.) -- C:\Windows\System32\resetengmig.dll   [945152]
O44 - LFC:[MD5.79CAB096514C381152F4306BC87A7B29] - 08/09/2013 - 17:49:34 RSHAD . (.Microsoft Corporation - Moteur de réinitialisation Microsoft Window.) -- C:\Windows\System32\reseteng.dll   [1011200]
O44 - LFC:[MD5.1E506405D7743C53E5C7E916AB40AA6A] - 08/09/2013 - 17:49:34 RSHAD . (.Microsoft Corporation - Réinitialisation de Microsoft Windows.) -- C:\Windows\System32\sysreset.exe   [132096]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 08/09/2013 - 17:37:19 RSHAD . (...) -- C:\Windows\System32\Drivers\Msft_User_WpdFs_01_11_00.Wdf   [0]
O44 - LFC:[MD5.A025A8EAFD38E1F2D5AA1072162F1D88] - 08/09/2013 - 12:09:06 ---A- . (...) -- C:\PhysicalDisk0_MBR.bin   [512]
~ Files: 754 Scanned in 00mn 37s



---\\ Derniers fichiers créés dans Windows Prefetcher (O45)
O45 - LFCP:[MD5.3546AFBFCD39639A576208F357C16EEE] - 08/09/2013 - 17:37:45 ---A- - C:\Windows\Prefetch\AgAppLaunch.db
O45 - LFCP:[MD5.2D2ED9329B6ABC3DD5EB57998E60F2DC] - 09/09/2013 - 01:19:26 ---A- - C:\Windows\Prefetch\AgCx_SC2.db
O45 - LFCP:[MD5.2E7F649EF8A66C171C93BAB73D7E007E] - 09/09/2013 - 01:23:31 ---A- - C:\Windows\Prefetch\GOOGLEUPDATE.EXE-3A5B154A.pf
O45 - LFCP:[MD5.E78FF84DB2C6DC7FCC6F81DCD610381B] - 09/09/2013 - 01:23:34 ---A- - C:\Windows\Prefetch\GOOGLEUPDATE.EXE-A408109F.pf
O45 - LFCP:[MD5.98C4677488628657CC5FEAC504A58906] - 09/09/2013 - 01:36:15 ---A- - C:\Windows\Prefetch\WORDPAD.EXE-505FE0CE.pf
O45 - LFCP:[MD5.4C97DE03942CF91AB8DE96CBF3237696] - 09/09/2013 - 17:08:58 ---A- - C:\Windows\Prefetch\SETUP.EXE-E589C2EE.pf
O45 - LFCP:[MD5.3E71EAC8F68F397CFC9D3BEB37C9B28F] - 09/09/2013 - 17:09:03 ---A- - C:\Windows\Prefetch\SETUP.EXE-E7E8467E.pf
O45 - LFCP:[MD5.22242C3B2FE91F3420F4D2B94D14C7CE] - 09/09/2013 - 17:12:32 ---A- - C:\Windows\Prefetch\FURMARK_1.11.0_SETUP.TMP-373E4846.pf
O45 - LFCP:[MD5.0706A10FD1E4416604430B9117E4AB9B] - 09/09/2013 - 17:12:32 ---A- - C:\Windows\Prefetch\FURMARK_1.11.0_SETUP.TMP-A2457D86.pf
O45 - LFCP:[MD5.CDB142119FDB316622C0C4473BDEF63E] - 09/09/2013 - 17:19:43 ---A- - C:\Windows\Prefetch\FURMARK.EXE-2CC8D67D.pf
O45 - LFCP:[MD5.256C9C8D043AA2096346DF2E75A4267C] - 09/09/2013 - 17:38:17 ---A- - C:\Windows\Prefetch\MMC.EXE-314379BA.pf
O45 - LFCP:[MD5.E71A01FFECBEB4F777BBB2BE3A2AA4EE] - 09/09/2013 - 17:49:11 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-474A58D7.pf
O45 - LFCP:[MD5.4BEA45C4645ACB1BCA35D738F286F6E0] - 09/09/2013 - 17:56:34 ---A- - C:\Windows\Prefetch\MACONFIG_WIN.EXE-768784CF.pf
O45 - LFCP:[MD5.C6B58906A919E246C8FC1E809D3C5992] - 09/09/2013 - 17:56:48 ---A- - C:\Windows\Prefetch\MCSETUP.EXE-9478C35F.pf
O45 - LFCP:[MD5.888BD5A4CE925D4C40CA00C21F40D660] - 09/09/2013 - 18:12:32 ---A- - C:\Windows\Prefetch\SFINSTALLER_SFFZ_FILEZILLA_89-4285C03E.pf
O45 - LFCP:[MD5.FBE0FCCD06BCC454D1B5427371FD9D4B] - 09/09/2013 - 18:12:47 ---A- - C:\Windows\Prefetch\FILEZILLA_3.7.3_WIN32-SETUP.E-ACA395E3.pf
O45 - LFCP:[MD5.4312BCC76F21F9A16ADCE4577E035774] - 09/09/2013 - 18:14:17 ---A- - C:\Windows\Prefetch\SETUP.EXE-3A315C05.pf
O45 - LFCP:[MD5.5DD4FB39566E3B6809F03E1F35AB98C6] - 09/09/2013 - 18:20:42 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-6D4B831F.pf
O45 - LFCP:[MD5.B29E11F2E8BDDD28E95662354B8D23C3] - 09/09/2013 - 18:20:45 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-F102F6EF.pf
O45 - LFCP:[MD5.3FD0D3A77F224C8DA5A5D9E39A655E7B] - 09/09/2013 - 18:29:25 ---A- - C:\Windows\Prefetch\SETUP.EXE-8797D0FB.pf
O45 - LFCP:[MD5.2D29AB45CEA1D859591A9D629EF3F8D5] - 09/09/2013 - 18:41:24 ---A- - C:\Windows\Prefetch\DRIVERIDENTIFIER_SETUP.TMP-46256FB6.pf
O45 - LFCP:[MD5.72DBD9804AA78D9913CE43E99BDC3F9F] - 09/09/2013 - 18:41:25 ---A- - C:\Windows\Prefetch\DRIVERIDENTIFIER_SETUP.TMP-C988EE89.pf
O45 - LFCP:[MD5.08742E2674D20C8BD54E5CAA52EF0FE0] - 09/09/2013 - 18:43:12 ---A- - C:\Windows\Prefetch\IMESHSETUP-R1483-W-BI.EXE-3F6592F1.pf  =>PUP.iMesh
O45 - LFCP:[MD5.CBB83572FBF95FBB8A8047934194A899] - 09/09/2013 - 18:44:16 ---A- - C:\Windows\Prefetch\IMESHSETUP-R1483-W-BI.EXE-753D83CA.pf  =>PUP.iMesh
O45 - LFCP:[MD5.B2B7A7F698BAE6EC5D8E045772708292] - 09/09/2013 - 18:45:47 ---A- - C:\Windows\Prefetch\IMESH.EXE-A8F333E4.pf  =>PUP.iMesh
O45 - LFCP:[MD5.31E9EE4C02EB427A62A8FDAD69A1AC54] - 09/09/2013 - 18:46:41 ---A- - C:\Windows\Prefetch\AU_.EXE-207C4163.pf
O45 - LFCP:[MD5.1009CED629EA03AEFDDC50E7290A513D] - 09/09/2013 - 18:48:15 ---A- - C:\Windows\Prefetch\SYSTEMPROPERTIESADVANCED.EXE-E62A92DA.pf
O45 - LFCP:[MD5.BDCC133E584E1551096209EA1EA9BDF0] - 09/09/2013 - 18:48:52 ---A- - C:\Windows\Prefetch\UNINS000.EXE-19D42A4F.pf
O45 - LFCP:[MD5.AA3E1D5F09CD8440A35B3890D9F85DB2] - 09/09/2013 - 18:56:50 ---A- - C:\Windows\Prefetch\DRIVERSDOWNLOADER_FOR_UT_USB_-2FC1AE6F.pf
O45 - LFCP:[MD5.36DD1E8D64A74018F7C45CC62C5423DA] - 09/09/2013 - 18:56:51 ---A- - C:\Windows\Prefetch\DRIVERSDOWNLOADER_FOR_UT_USB_-E687588A.pf
O45 - LFCP:[MD5.6CB59D96FD648A6ADE689DBA02139DA1] - 09/09/2013 - 19:03:29 ---A- - C:\Windows\Prefetch\UNINSTALL.EXE-F1EB78CC.pf
O45 - LFCP:[MD5.9909285E8382A9B487DBC101548BF2B9] - 09/09/2013 - 19:09:47 ---A- - C:\Windows\Prefetch\ADMINSERVICE.EXE-A36991D8.pf
O45 - LFCP:[MD5.1E4157753127F8808A8036DDD7CED5E7] - 10/09/2013 - 14:54:20 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-42819DE2.pf
O45 - LFCP:[MD5.1E1842C2F8C5739E29AD6D3A029797BB] - 10/09/2013 - 19:36:21 ---A- - C:\Windows\Prefetch\WWAHOST.EXE-37BED555.pf
O45 - LFCP:[MD5.8DD21CA48CBD5905DA27FA02DF0E7608] - 11/09/2013 - 12:05:57 ---A- - C:\Windows\Prefetch\MMLOADDRVPXDISCRETE.EXE-B74F9B91.pf
O45 - LFCP:[MD5.D13D2776952FF37D4ECB31C579EA330B] - 11/09/2013 - 17:21:32 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-5C221CA3.pf
O45 - LFCP:[MD5.49C84C1D5943F8E5BB56A04DE70A8F98] - 11/09/2013 - 17:38:39 ---A- - C:\Windows\Prefetch\SETUP.EXE-18EE533A.pf
O45 - LFCP:[MD5.91846E3986AC8854C846AF83C480D5AF] - 11/09/2013 - 17:38:39 ---A- - C:\Windows\Prefetch\SETUP.EXE-C0403BCA.pf
O45 - LFCP:[MD5.42AC9F53927EB60D4650A28FFA3C18CA] - 11/11/2013 - 19:20:20 ---A- - C:\Windows\Prefetch\AgCx_SC4.db
O45 - LFCP:[MD5.1DEB8F0F9B8E50EFB06A331174310434] - 11/11/2013 - 19:25:23 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-57FBFA8E.pf
O45 - LFCP:[MD5.C6B1831DD2B96998A74A879195AD2FCD] - 11/11/2013 - 19:25:44 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-F7024BA3.pf
O45 - LFCP:[MD5.AA605547D79890DE05A63751D44FEB20] - 11/11/2013 - 19:32:02 ---A- - C:\Windows\Prefetch\RUNTIMEBROKER.EXE-17E2786F.pf
O45 - LFCP:[MD5.26A6AA104F6524A7114FEADA9DABB8C7] - 11/11/2013 - 21:42:24 ---A- - C:\Windows\Prefetch\ZHPDIAG2.TMP-1FF17E6B.pf
O45 - LFCP:[MD5.190ADCE512C100A38C7F31D57049E372] - 11/11/2013 - 21:43:09 ---A- - C:\Windows\Prefetch\ZHPDIAG2.TMP-0B3EABEF.pf
O45 - LFCP:[MD5.E539E99E3983654DF50B7FFB4C125814] - 11/11/2013 - 21:54:26 ---A- - C:\Windows\Prefetch\NOTEPAD.EXE-B28CC291.pf
O45 - LFCP:[MD5.70697DF7E9ADA28ABEB50E2407FE3573] - 11/11/2013 - 22:05:54 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-7A28023E.pf
O45 - LFCP:[MD5.60CE5BFAF505A3E41536FBC0BE1E8E66] - 11/11/2013 - 22:09:52 ---A- - C:\Windows\Prefetch\SYSTEMSETTINGS.EXE-D8CC3B5E.pf
O45 - LFCP:[MD5.5941FB674B788EA84B6606606DFD13E9] - 11/11/2013 - 22:14:19 ---A- - C:\Windows\Prefetch\ZHPHEP.EXE-8162C2FA.pf
O45 - LFCP:[MD5.4B34F4788D9C8DD22034DDB811F8E81E] - 11/11/2013 - 22:14:27 ---A- - C:\Windows\Prefetch\ZHPFIX.EXE-AFDB3DAC.pf
O45 - LFCP:[MD5.CE5B09637FDE196B1293817DA08D3334] - 11/11/2013 - 22:14:50 ---A- - C:\Windows\Prefetch\NOTEPAD.EXE-F0516D55.pf
O45 - LFCP:[MD5.E3664DF155BE4E0AD35A5CF973E75294] - 11/11/2013 - 22:22:36 ---A- - C:\Windows\Prefetch\WERFAULT.EXE-94CE7668.pf
O45 - LFCP:[MD5.CCBCD5BEACEABDADFB979492B01A81B1] - 11/11/2013 - 22:53:59 ---A- - C:\Windows\Prefetch\Op-EXPLORER.EXE-03C49D11-000000F5.pf
O45 - LFCP:[MD5.9145F4EE4A4900C32A1C76666A567FA5] - 11/11/2013 - 22:54:27 ---A- - C:\Windows\Prefetch\HELPPANE.EXE-5A92E3D5.pf
O45 - LFCP:[MD5.3F739443AEDECEA819E8FD899B0F7C89] - 11/11/2013 - 22:56:10 ---A- - C:\Windows\Prefetch\USERACCOUNTCONTROLSETTINGS.EX-550E3008.pf
O45 - LFCP:[MD5.3B015B53CE83D910F39C8CB4D16AE080] - 11/11/2013 - 22:56:15 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-7FA90189.pf
O45 - LFCP:[MD5.65D6FA4FA39A46AC51B26FE9ECFC073C] - 11/11/2013 - 22:56:38 ---A- - C:\Windows\Prefetch\WUAUCLT.EXE-4A7CF88B.pf
O45 - LFCP:[MD5.5C453BA79522FCA0CE4306CE252848F5] - 11/11/2013 - 22:57:31 ---A- - C:\Windows\Prefetch\WINDOWSANYTIMEUPGRADEUI.EXE-D2ED5FB2.pf
O45 - LFCP:[MD5.7E3C7CC4A840A456568DCA0B3E06CD42] - 12/09/2013 - 06:38:33 ---A- - C:\Windows\Prefetch\WERFAULT.EXE-44194444.pf
O45 - LFCP:[MD5.1D4DAA736D1C7187034A710980AC267C] - 12/09/2013 - 09:30:10 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-5A443A2B.pf
O45 - LFCP:[MD5.DCECC5F59942CB9135B3FC36E7B27588] - 12/09/2013 - 13:43:14 ---A- - C:\Windows\Prefetch\MMC.EXE-17F9D1FC.pf
O45 - LFCP:[MD5.48E610D5E2734C2869C3100CB3ABF24A] - 12/09/2013 - 13:52:26 ---A- - C:\Windows\Prefetch\AUTORUN.EXE-78ADD542.pf
O45 - LFCP:[MD5.B305D6E94E9AA0C40030761E307D975D] - 12/09/2013 - 13:52:31 ---A- - C:\Windows\Prefetch\RTS_DELLMUP.EXE-0CB6E26E.pf
O45 - LFCP:[MD5.208F44F4DDCFEBAC566F44CFEEE7B97F] - 12/09/2013 - 13:53:04 ---A- - C:\Windows\Prefetch\AMCAPSETUP.EXE-D2F07CDF.pf
O45 - LFCP:[MD5.6C3688783498D847F31654814632422D] - 12/09/2013 - 13:54:39 ---A- - C:\Windows\Prefetch\MEI_ALLOS_1.5M_9.5.3.120_PV.E-DF12E03D.pf
O45 - LFCP:[MD5.D61E8CE19DEEFEC0265ABD25C7A6CAC8] - 12/09/2013 - 13:55:14 ---A- - C:\Windows\Prefetch\SETUP.EXE-2E2A1461.pf
O45 - LFCP:[MD5.89C6B85020C4BA5F0F05607E29E1879F] - 12/09/2013 - 13:56:08 ---A- - C:\Windows\Prefetch\VCREDIST_X86.EXE-CA3E044A.pf
O45 - LFCP:[MD5.354B60FAF071EADAB17ECDE6CBE79D7F] - 12/09/2013 - 14:02:55 ---A- - C:\Windows\Prefetch\VISTA_WIN7_WIN8_R271.EXE-8EF05B09.pf
O45 - LFCP:[MD5.5C6CD7D6D310DCC2BA2923F8D3E6CDE0] - 12/09/2013 - 14:04:01 ---A- - C:\Windows\Prefetch\SETUP.EXE-F924DFEC.pf
O45 - LFCP:[MD5.F50D4DE1006C4EDF31CCD9135691641E] - 12/09/2013 - 14:06:31 ---A- - C:\Windows\Prefetch\SETUPRST.EXE-8BB12F94.pf
O45 - LFCP:[MD5.072BFAE8053088BB6A5F03EAAB56D594] - 12/09/2013 - 14:14:20 ---A- - C:\Windows\Prefetch\WIN64_15319.EXE-F1489DF4.pf
O45 - LFCP:[MD5.73E4D60D367E2308B438F88166CA7420] - 12/09/2013 - 14:27:05 ---A- - C:\Windows\Prefetch\VCREDIST_X86.EXE-8A57243B.pf
O45 - LFCP:[MD5.3FCB382B3092E1BE4845C8B5D111AE7A] - 12/09/2013 - 14:28:02 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-A8F51E4E.pf
O45 - LFCP:[MD5.899075A5BEC3FB21E1BAFC8BE5CB6490] - 12/09/2013 - 14:38:26 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-EA3C98E4.pf
O45 - LFCP:[MD5.C1763376491D0F8509EEE6C078C614FC] - 12/09/2013 - 14:52:33 ---A- - C:\Windows\Prefetch\DFRGUI.EXE-9271D6BF.pf
O45 - LFCP:[MD5.8CADC4992744B01733BBBCF24A757731] - 13/09/2013 - 18:47:28 ---A- - C:\Windows\Prefetch\REGEDIT.EXE-246AC210.pf
O45 - LFCP:[MD5.C7E13663C1ECF1D8E8769DCB81E99B7A] - 14/09/2013 - 17:29:30 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-78DB46F8.pf
O45 - LFCP:[MD5.1490C01B8B6D545C043DC3A22F45AD44] - 14/09/2013 - 17:31:03 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-CE611D0A.pf
O45 - LFCP:[MD5.3A7ECBA41B893BFEF23A79888731D503] - 15/09/2013 - 17:07:33 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-BF7B5509.pf
O45 - LFCP:[MD5.3B8BD5C449F370E3DD7FA5BAA8A6B9AB] - 16/09/2013 - 23:29:02 ---A- - C:\Windows\Prefetch\CHROMEINSTALL-7U40.EXE-F765F9AC.pf
O45 - LFCP:[MD5.95AB65C826E366F716D1F6E23651D365] - 16/09/2013 - 23:33:10 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-03213A05.pf
O45 - LFCP:[MD5.C36CAE3FA2CC0C905C9274EA9D0F86CE] - 17/09/2013 - 12:14:52 ---A- - C:\Windows\Prefetch\GLCND.EXE-DD45F588.pf
O45 - LFCP:[MD5.66EB9A4122561D8877C9ED523F815573] - 17/09/2013 - 12:20:05 ---A- - C:\Windows\Prefetch\INSTALL_READER11_FR_GTBA_CHRA-D30EFDBE.pf
O45 - LFCP:[MD5.A5108E0EB577CC0F897D218A43D54A6B] - 17/09/2013 - 12:21:00 ---A- - C:\Windows\Prefetch\SETUP.EXE-8A9CE894.pf
O45 - LFCP:[MD5.7348982E4754C608E0A0D161E06CE82C] - 17/09/2013 - 12:21:11 ---A- - C:\Windows\Prefetch\DJ1050_J410_BASICX86_1313.EXE-B14A53A2.pf
O45 - LFCP:[MD5.AC2B03009988844D637FEABB4570A173] - 17/09/2013 - 12:24:09 ---A- - C:\Windows\Prefetch\SMANAGER.EXE-DCDBB0BC.pf
O45 - LFCP:[MD5.F251A5D67951E8B2F47C9AE08C1EA1C3] - 17/09/2013 - 12:33:12 ---A- - C:\Windows\Prefetch\DJ1050_J410_1313.EXE-E5BB1377.pf
O45 - LFCP:[MD5.3CF58AB5A731654DCD3DC57E16F35253] - 17/09/2013 - 12:33:41 ---A- - C:\Windows\Prefetch\HP-DQEX5.EXE-4ACE9E6A.pf
O45 - LFCP:[MD5.F276FE461E6EF4FD420F872E8BE3C334] - 17/09/2013 - 12:41:59 ---A- - C:\Windows\Prefetch\WINRAR.EXE-72513729.pf
O45 - LFCP:[MD5.543818532697EB7FE7CA2FAFACA2F437] - 17/09/2013 - 12:42:34 ---A- - C:\Windows\Prefetch\EULA.EXE-0C63FE43.pf
O45 - LFCP:[MD5.80356BCA410517F0AD20217EE9A03ECB] - 17/09/2013 - 16:29:08 ---A- - C:\Windows\Prefetch\SNIPPINGTOOL.EXE-74818B88.pf
O45 - LFCP:[MD5.0025D2308B17DA0137A6C8A88D6F76DF] - 18/09/2013 - 09:28:32 ---A- - C:\Windows\Prefetch\SETUP.EXE-F1FF1189.pf
O45 - LFCP:[MD5.8822F455716A75E16D762C721D408202] - 18/09/2013 - 09:43:10 ---A- - C:\Windows\Prefetch\VCREDI~3.EXE-D2A15A61.pf
O45 - LFCP:[MD5.B8E3AEF9FBEF1033D1BED3AAB9D50147] - 18/09/2013 - 09:43:14 ---A- - C:\Windows\Prefetch\MSIEXEC.EXE-BAE57A74.pf
O45 - LFCP:[MD5.64BEBF678962AA3F280C0A2E4157549F] - 18/09/2013 - 11:52:21 ---A- - C:\Windows\Prefetch\TASKMGR.EXE-39AABA37.pf
O45 - LFCP:[MD5.9F66A59450A6E395CED1490D1FC54474] - 18/09/2013 - 12:00:21 ---A- - C:\Windows\Prefetch\MMC.EXE-5B866D10.pf
O45 - LFCP:[MD5.E452E8DA645119F3434946293E8C5A0E] - 18/09/2013 - 12:07:12 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-28B5C009.pf
O45 - LFCP:[MD5.0C51882CB8A77FD0D8D8C9AE9C7126A8] - 18/09/2013 - 12:10:08 ---A- - C:\Windows\Prefetch\OPTIONALFEATURES.EXE-C0AF40DB.pf
O45 - LFCP:[MD5.A08E5B1F613ADD127981F608F1158D16] - 18/09/2013 - 12:16:27 ---A- - C:\Windows\Prefetch\PfSvPerfStats.bin
O45 - LFCP:[MD5.C1B455F14E93F38303AE1A809F87752D] - 18/09/2013 - 12:24:23 ---A- - C:\Windows\Prefetch\WHOCRASHEDSETUP.TMP-E742C913.pf
O45 - LFCP:[MD5.BC4EB6E88FB4B28E6BF839042E126D70] - 18/09/2013 - 12:24:37 ---A- - C:\Windows\Prefetch\WHOCRASHEDEX.EXE-D5655B39.pf
O45 - LFCP:[MD5.C1338A3B9E0B2D39CBF353AA305F8B71] - 18/09/2013 - 12:40:28 ---A- - C:\Windows\Prefetch\SETUP.EXE-CAEC86F9.pf
O45 - LFCP:[MD5.C4CA6B35B4E24C7C5B7EBB357ACFA1FA] - 18/09/2013 - 19:29:24 ---A- - C:\Windows\Prefetch\dynreservedpri.db
O45 - LFCP:[MD5.9DDE1EC29794135E322CAD8D5EDECA46] - 19/09/2013 - 09:46:43 ---A- - C:\Windows\Prefetch\EXPLORER.EXE-03C49D11.pf
O45 - LFCP:[MD5.EB4B50C31310E7246441C4B17DD8B6B1] - 19/09/2013 - 09:46:59 ---A- - C:\Windows\Prefetch\CHROME.EXE-CCF9F3F4.pf
O45 - LFCP:[MD5.52AB4BCEC7FDBCB9EB1EFBEA55E1B8F4] - 19/09/2013 - 09:47:45 ---A- - C:\Windows\Prefetch\AgCx_SC5.db
O45 - LFCP:[MD5.1748F9C60788BBDA3BA1D9137F098999] - 19/09/2013 - 09:47:47 ---A- - C:\Windows\Prefetch\FIREFOX SETUP STUB 24.0.EXE-09523B38.pf
O45 - LFCP:[MD5.4337B7F3EC9AE0B40E35DC49E0EC33DA] - 19/09/2013 - 09:47:48 ---A- - C:\Windows\Prefetch\SETUP-STUB.EXE-0BF7AACF.pf
O45 - LFCP:[MD5.FC8C74D1436FD7EE58573551C5F6ABC6] - 19/09/2013 - 09:48:12 ---A- - C:\Windows\Prefetch\MAINTENANCESERVICE_INSTALLER.-A809585F.pf
O45 - LFCP:[MD5.7F1FE3ABC0837B65510581D1757D7780] - 19/09/2013 - 10:04:16 ---A- - C:\Windows\Prefetch\INSTALL_FLASHPLAYER11X32_MSSD-98836EC4.pf
O45 - LFCP:[MD5.DB1B91523F8DA7CB3A592316587577E9] - 19/09/2013 - 10:04:37 ---A- - C:\Windows\Prefetch\CMD.EXE-CD245F9E.pf
O45 - LFCP:[MD5.C53E4B01846C748927C8232620C2A2B9] - 19/09/2013 - 10:06:11 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-4786A8B6.pf
O45 - LFCP:[MD5.7116299B2F674C8AAAA8264D4870FE6D] - 19/09/2013 - 11:00:53 ---A- - C:\Windows\Prefetch\RAVCPL64.EXE-C0BB540D.pf
O45 - LFCP:[MD5.CFCF614CAA1B9BF80ECB83FEC0CB7B64] - 19/09/2013 - 11:02:03 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-81787A9C.pf
O45 - LFCP:[MD5.9D29FB4492D5F6667E54E22667FDB856] - 19/09/2013 - 14:33:05 ---A- - C:\Windows\Prefetch\ACRORD32.EXE-4E288B88.pf
O45 - LFCP:[MD5.1A121CE4FDAD69196AD042E79381B5A6] - 19/09/2013 - 14:43:00 ---A- - C:\Windows\Prefetch\INSTANCEFINDERDLG.EXE-9215C32B.pf
O45 - LFCP:[MD5.0E9D8AF7405E121CE3D823C7A837BA1E] - 19/09/2013 - 14:43:09 ---A- - C:\Windows\Prefetch\HP DESKJET 1050 J410 SERIES.E-D585AC89.pf
O45 - LFCP:[MD5.5BD5FA3440A9D092EF2A5F86989971F3] - 19/09/2013 - 14:43:12 ---A- - C:\Windows\Prefetch\MSHTA.EXE-ED0DFDDF.pf
O45 - LFCP:[MD5.1C32EA82ACBB0F601E9446D2DAA3CB74] - 19/09/2013 - 14:45:09 ---A- - C:\Windows\Prefetch\TOOLBOX.EXE-9F67596A.pf
O45 - LFCP:[MD5.899FBB2FEC3DCFA208036F50B9990E51] - 19/09/2013 - 14:45:46 ---A- - C:\Windows\Prefetch\FILEEXTRACTOR.EXE-46CA6F40.pf
O45 - LFCP:[MD5.765D77B701F3C2ECB5F444E33DC12225] - 19/09/2013 - 14:45:52 ---A- - C:\Windows\Prefetch\HPPSDR.EXE-046988D7.pf
O45 - LFCP:[MD5.306DCA53AF053121D2B5B346832EBD79] - 19/09/2013 - 14:45:55 ---A- - C:\Windows\Prefetch\HPDIAGNOSTICCOREUI.EXE-934D8260.pf
O45 - LFCP:[MD5.E03DB9A2136B274847851C46D3B5B090] - 19/09/2013 - 14:46:45 ---A- - C:\Windows\Prefetch\SPOOLSV.EXE-AC422BB0.pf
O45 - LFCP:[MD5.30780FE091A9898DDE4278A30E49627A] - 19/09/2013 - 14:51:09 ---A- - C:\Windows\Prefetch\W32TM.EXE-78C041DB.pf
O45 - LFCP:[MD5.45E14789C9C67B0118B6A2088FB0AD23] - 19/09/2013 - 14:51:18 ---A- - C:\Windows\Prefetch\PING.EXE-167FE968.pf
O45 - LFCP:[MD5.9D8D2E9F9DA4FDBD3CCA73F763F68F1C] - 19/09/2013 - 14:52:12 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-534DDDA0.pf
O45 - LFCP:[MD5.345F73FEC7E6DD7D69C1E8DF4F8EC0E3] - 19/09/2013 - 15:53:06 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-AD168A8C.pf
O45 - LFCP:[MD5.FC7E1CB84F671FE286A1CB7EE9E9151D] - 19/09/2013 - 16:31:24 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-0E881CD2.pf
O45 - LFCP:[MD5.136C1FC1B0EED8780D0C634A814CDC2C] - 19/09/2013 - 16:34:59 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-8C5E4517.pf
O45 - LFCP:[MD5.0E2A137B095DC7788647584464D46CA6] - 19/09/2013 - 16:53:58 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-69B6023D.pf
O45 - LFCP:[MD5.E9195706ACBA5B61D316306926D2D0A9] - 19/09/2013 - 16:53:58 ---A- - C:\Windows\Prefetch\VSSVC.EXE-206E55B3.pf
O45 - LFCP:[MD5.5883E73DCB29F9CCE4D1094770AAF5D8] - 19/09/2013 - 16:54:20 ---A- - C:\Windows\Prefetch\TIWORKER.EXE-3391C7C7.pf
O45 - LFCP:[MD5.B872A41B8B087F2644E3D58970F965B0] - 19/09/2013 - 16:54:23 ---A- - C:\Windows\Prefetch\TRUSTEDINSTALLER.EXE-B018CCBF.pf
O45 - LFCP:[MD5.51E93344854BEF8861A34394B45AE814] - 20/09/2013 - 09:57:25 ---A- - C:\Windows\Prefetch\CONTROL.EXE-998FACDB.pf
O45 - LFCP:[MD5.1842CF570D5D6FD80B82C09B83A61733] - 20/09/2013 - 09:57:25 ---A- - C:\Windows\Prefetch\HELPER.EXE-FDD78328.pf
O45 - LFCP:[MD5.8CA6C7D4A42891AC33DBD950526CDF2F] - 20/09/2013 - 09:57:30 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-44BD5548.pf
O45 - LFCP:[MD5.A88EEB2FE87AE9E3ED7F287A70E82637] - 20/09/2013 - 10:22:05 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-65FD9DDE.pf
O45 - LFCP:[MD5.FF994DDFD15E04AC948F729BD038FF72] - 20/09/2013 - 10:28:27 ---A- - C:\Windows\Prefetch\SETUP.EXE-EB7D7BE3.pf
O45 - LFCP:[MD5.E744C5FF08C0BE4A45EB2C71EA926E43] - 20/09/2013 - 10:28:37 ---A- - C:\Windows\Prefetch\29.0.1547.76_29.0.1547.66_CHR-56AC16D2.pf
O45 - LFCP:[MD5.0821121F34F2805F7D41B89306CFAE7A] - 20/09/2013 - 10:28:37 ---A- - C:\Windows\Prefetch\SETUP.EXE-5D49C1B2.pf
O45 - LFCP:[MD5.E196E3DE95098FEB5A6093ADA0DC67B4] - 20/09/2013 - 12:17:05 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-F2EC6B1B.pf
O45 - LFCP:[MD5.D5CFD0ACC27EED54B0731C2DA5196C77] - 20/09/2013 - 12:21:17 ---A- - C:\Windows\Prefetch\DEFRAG.EXE-22AD8A37.pf
O45 - LFCP:[MD5.5D7C707EAD2BB9C4C7EE4822D4112215] - 20/09/2013 - 12:21:17 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-F68363C4.pf
O45 - LFCP:[MD5.8AE0171E26FF7357FBBE3122803D1F6A] - 20/09/2013 - 12:21:19 ---A- - C:\Windows\Prefetch\MSIEXEC.EXE-7D20CFB0.pf
O45 - LFCP:[MD5.F88B7994292F6FB3947F75DB30E5E6CE] - 20/09/2013 - 13:06:55 ---A- - C:\Windows\Prefetch\DSMUSERTASK.EXE-D4A83970.pf
O45 - LFCP:[MD5.1883C40D9CD3490CF63F54A39FA9927A] - 20/09/2013 - 13:57:08 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-129045E5.pf
O45 - LFCP:[MD5.C861E78A578EF1D87207C3C089D8976A] - 20/09/2013 - 13:57:09 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-5D09CA10.pf
O45 - LFCP:[MD5.63318A0E3405269F1623B08474FCC31E] - 20/09/2013 - 14:58:46 ---A- - C:\Windows\Prefetch\EXCEL.EXE-A8B924E9.pf
O45 - LFCP:[MD5.A9931A673F53BD2455D347313E262878] - 20/09/2013 - 16:34:20 ---A- - C:\Windows\Prefetch\WINWORD.EXE-4C6BDD9E.pf
O45 - LFCP:[MD5.C7691F4634DE2EE2D6E45644E2E3B2CA] - 20/09/2013 - 18:08:35 ---A- - C:\Windows\Prefetch\IGFXSRVC.EXE-F41E6E8E.pf
O45 - LFCP:[MD5.FF6C71E5E8CF3865086CF0FFD33E565B] - 20/09/2013 - 18:30:31 ---A- - C:\Windows\Prefetch\CALC.EXE-0FE8F3A9.pf
O45 - LFCP:[MD5.BC798243E68327A2DCAA63689CE56DE8] - 20/09/2013 - 23:38:44 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-D7C7C9D1.pf
O45 - LFCP:[MD5.3967274FD14265991F2A5DE338A111EA] - 20/09/2013 - 23:55:23 ---A- - C:\Windows\Prefetch\JAVA.EXE-4EF2C834.pf
O45 - LFCP:[MD5.C53E724746EABE8D4E7F3E269588FA2B] - 20/09/2013 - 23:55:23 ---A- - C:\Windows\Prefetch\JP2LAUNCHER.EXE-2897E2F8.pf
O45 - LFCP:[MD5.D75E16BCBFEF7ADDC9085B7B4A5DA641] - 21/09/2013 - 02:03:08 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-EBEFB068.pf
O45 - LFCP:[MD5.FE207D53A01552734038794B99106777] - 21/09/2013 - 02:03:08 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-29D61DAB.pf
O45 - LFCP:[MD5.D667476847CC9140A5B6B0A08A01F9B6] - 21/09/2013 - 02:03:17 ---A- - C:\Windows\Prefetch\TASKHOSTEX.EXE-7356AAC0.pf
O45 - LFCP:[MD5.E9E6A0093B9AB0DCE20C8E7AC5E727FE] - 21/09/2013 - 02:03:18 ---A- - C:\Windows\Prefetch\NGENTASK.EXE-CD4E002C.pf
O45 - LFCP:[MD5.72DA579E51BA727EC984DBFD23B82B62] - 21/09/2013 - 02:03:18 ---A- - C:\Windows\Prefetch\SETTINGSYNCHOST.EXE-DD400067.pf
O45 - LFCP:[MD5.540B185DC27A29D7675729849698E69F] - 21/09/2013 - 02:03:18 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-3C5D03F7.pf
O45 - LFCP:[MD5.51E96029EAAD6DBFE4503D10622EC05F] - 21/09/2013 - 02:03:20 ---A- - C:\Windows\Prefetch\MSCORSVW.EXE-55FE3087.pf
O45 - LFCP:[MD5.B44F3A3EE705B803D22E74C36C0C94F9] - 21/09/2013 - 02:03:20 ---A- - C:\Windows\Prefetch\NGEN.EXE-A8DBB043.pf
O45 - LFCP:[MD5.5507E3B791D812527EC4FD6F4E32BA7A] - 21/09/2013 - 02:03:23 ---A- - C:\Windows\Prefetch\MSCORSVW.EXE-D593A5D9.pf
O45 - LFCP:[MD5.B115E352DC67FD268F721D88ABE5F4E0] - 21/09/2013 - 02:03:23 ---A- - C:\Windows\Prefetch\NGEN.EXE-383F81D5.pf
O45 - LFCP:[MD5.6E680289D9C21AE1AC141FD783E1BE86] - 21/09/2013 - 02:04:34 ---A- - C:\Windows\Prefetch\NGENTASK.EXE-4DB88ADA.pf
O45 - LFCP:[MD5.4A745C1FB169C2105EAAB4F2B6DF3A16] - 21/09/2013 - 09:00:08 ---A- - C:\Windows\Prefetch\LOGONUI.EXE-E35F76FB.pf
O45 - LFCP:[MD5.EBB5945CAA50C5D4435816EFED7F5933] - 21/09/2013 - 09:00:13 ---A- - C:\Windows\Prefetch\AgCx_SC1.db.trx
O45 - LFCP:[MD5.5663576DF51FB9D50677B548B0CA9260] - 21/09/2013 - 09:00:35 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-00AD1665.pf
O45 - LFCP:[MD5.DD712C55BDA00517AC3615ABC9B02DFD] - 21/09/2013 - 09:00:45 ---A- - C:\Windows\Prefetch\FIREFOX.EXE-528BC649.pf
O45 - LFCP:[MD5.702D70D41FBFBDFABBCFD2EA26F99155] - 21/09/2013 - 09:01:13 ---A- - C:\Windows\Prefetch\AgCx_SC1.db
O45 - LFCP:[MD5.D1390BB67C5CBA14661562A7FAB576F4] - 21/09/2013 - 09:10:00 ---A- - C:\Windows\Prefetch\MPCMDRUN.EXE-6520183E.pf
O45 - LFCP:[MD5.5EA1A97161BAE8FE9F709A6D3887FBD0] - 21/09/2013 - 09:15:11 ---A- - C:\Windows\Prefetch\FLASHPLAYERPLUGIN_11_8_800_16-B0E978DF.pf
O45 - LFCP:[MD5.D1735108B5D63B36DB7150E25E2684E8] - 21/09/2013 - 09:15:11 ---A- - C:\Windows\Prefetch\PLUGIN-CONTAINER.EXE-E510713D.pf
O45 - LFCP:[MD5.A002DF235E6959A6BCB71491CB9C3661] - 21/09/2013 - 09:15:12 ---A- - C:\Windows\Prefetch\AUDIODG.EXE-9848A323.pf
O45 - LFCP:[MD5.E4D61346418AC6380C9F24750437800C] - 21/09/2013 - 09:53:36 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-05B3EDF6.pf
O45 - LFCP:[MD5.07DE8CCFE3C016CADB3F6DB9BA7CBEE9] - 21/09/2013 - 09:53:36 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-F2C7AEBC.pf
O45 - LFCP:[MD5.2179398A31F88F253A52963BC7F0A8E1] - 21/09/2013 - 10:48:26 ---A- - C:\Windows\Prefetch\SNDVOL.EXE-276AC160.pf
O45 - LFCP:[MD5.46304970FAB550AAE37568217DCC1D43] - 21/09/2013 - 11:02:38 ---A- - C:\Windows\Prefetch\Layout.ini
O45 - LFCP:[MD5.0302877123E6930B58B5E69E5F531EDF] - 21/09/2013 - 11:03:10 ---A- - C:\Windows\Prefetch\WMIPRVSE.EXE-BB49B536.pf
O45 - LFCP:[MD5.BD7929ED85B1A4794B3587A9058406F4] - 21/09/2013 - 12:34:41 ---A- - C:\Windows\Prefetch\AgGlUAD_P_S-1-5-21-2669165515-361187302-876288576-1001.db
O45 - LFCP:[MD5.D5CC4901D23009770B71AB7EC60CCC55] - 21/09/2013 - 12:34:41 ---A- - C:\Windows\Prefetch\AgGlUAD_S-1-5-21-2669165515-361187302-876288576-1001.db
O45 - LFCP:[MD5.AD4F3D4954C349D243098449D92C6302] - 21/09/2013 - 13:11:10 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-985C34E6.pf
O45 - LFCP:[MD5.89B9002AE93895984737CFCAA6392ABD] - 21/09/2013 - 13:41:06 ---A- - C:\Windows\Prefetch\AgGlGlobalHistory.db
O45 - LFCP:[MD5.BE1211AD58A8CDBBE74732AAEE1BEDE8] - 21/09/2013 - 13:41:06 ---A- - C:\Windows\Prefetch\AgRobust.db
O45 - LFCP:[MD5.CD300C825F1BB1AA084A3A73BC1A096A] - 21/09/2013 - 13:41:07 ---A- - C:\Windows\Prefetch\AgGlFaultHistory.db
O45 - LFCP:[MD5.F3A4ECEC11E0490E1F7FF7DF49B88F1A] - 21/09/2013 - 13:41:07 ---A- - C:\Windows\Prefetch\AgGlFgAppHistory.db
O45 - LFCP:[MD5.5D81D9B2E738F3FD3979879BD93F1C79] - 21/09/2013 - 14:28:00 ---A- - C:\Windows\Prefetch\GOOGLEUPDATE.EXE-62E5E10F.pf
O45 - LFCP:[MD5.AF7FC5853A2D1D20D6C157DD8548D97E] - 21/09/2013 - 14:28:10 ---A- - C:\Windows\Prefetch\TASKENG.EXE-23205583.pf
O45 - LFCP:[MD5.BB23945C9425BACEF1DA7BD98E00043D] - 21/09/2013 - 14:45:17 ---A- - C:\Windows\Prefetch\IEXPLORE.EXE-7A9337F2.pf
O45 - LFCP:[MD5.616B6F333F3167133337764D511B1ADB] - 21/09/2013 - 14:45:17 ---A- - C:\Windows\Prefetch\IEXPLORE.EXE-F4FB5D2F.pf
O45 - LFCP:[MD5.E7E4A67355673BA2A629E4FEBCD158A3] - 21/09/2013 - 14:45:17 ---A- - C:\Windows\Prefetch\OPENWITH.EXE-BA0DC300.pf
O45 - LFCP:[MD5.DAFC8D3DEAC8FDB515AFF29BA0065D98] - 21/09/2013 - 14:45:41 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-CE99ACA7.pf
O45 - LFCP:[MD5.024A6D86842E252CDCBD073F46974932] - 21/09/2013 - 14:47:19 ---A- - C:\Windows\Prefetch\SEARCHFILTERHOST.EXE-10E4267C.pf
O45 - LFCP:[MD5.CDAFCB58C4C669EF7E6BE2A67F84484C] - 21/09/2013 - 14:47:19 ---A- - C:\Windows\Prefetch\SEARCHPROTOCOLHOST.EXE-C6CFE2A8.pf
O45 - LFCP:[MD5.7E46029C5D3FE726FA61E1EC91337082] - 21/09/2013 - 14:47:23 ---A- - C:\Windows\Prefetch\CONSENT.EXE-2D674CE4.pf
O45 - LFCP:[MD5.7DFEDF163535F653469730169BFB32E4] - 21/09/2013 - 14:47:28 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-E6B64B6C.pf
O45 - LFCP:[MD5.A28C2CE4CD110AB10602DC827220EA7D] - 21/09/2013 - 14:47:33 ---A- - C:\Windows\Prefetch\ZHPDIAG2.EXE-7CDBC73F.pf
O45 - LFCP:[MD5.D058AA4B07A230D775E57C973EE94620] - 21/09/2013 - 14:47:33 ---A- - C:\Windows\Prefetch\ZHPDIAG2.TMP-12FCDCDC.pf
O45 - LFCP:[MD5.CC68E2637F3243FC050E089BD3F1AE32] - 21/09/2013 - 14:47:34 ---A- - C:\Windows\Prefetch\ZHPDIAG2.TMP-07208006.pf
O45 - LFCP:[MD5.955ECD0D159B40D58D094DAB362E92DE] - 21/09/2013 - 14:47:48 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-210D3DBE.pf
O45 - LFCP:[MD5.6F25E60717FD56206E072470AA860B43] - 21/09/2013 - 14:47:55 ---A- - C:\Windows\Prefetch\ZHPHEP.EXE-5F2753B1.pf
O45 - LFCP:[MD5.A4D0D9D59B634A066105AF2B456C3943] - 21/09/2013 - 14:48:05 ---A- - C:\Windows\Prefetch\ZHPDIAG.EXE-C7289479.pf
O45 - LFCP:[MD5.493EBCDB6A50F551FEFA6E7638E5AA27] - 21/09/2013 - 14:48:09 ---A- - C:\Windows\Prefetch\CONHOST.EXE-F98A1078.pf
O45 - LFCP:[MD5.D62621F45F8821D76874A48B83971097] - 21/09/2013 - 14:48:09 ---A- - C:\Windows\Prefetch\CSCRIPT.EXE-E9FF6526.pf
O45 - LFCP:[MD5.DEC5800B12A79FFC2BA60086D24B8FAE] - 21/09/2013 - 14:48:11 ---A- - C:\Windows\Prefetch\PV.EXE-D9D90B9C.pf
O45 - LFCP:[MD5.3DCD1B4EF4C582B30F5688BBE03D40C6] - 21/09/2013 - 14:48:16 ---A- - C:\Windows\Prefetch\WMIPRVSE.EXE-0C8A533A.pf
O45 - LFCP:[MD5.F23B745AC73A8B924C79DA322B877191] - 21/09/2013 - 14:48:17 ---A- - C:\Windows\Prefetch\SPPSVC.EXE-7B160CA5.pf
O45 - LFCP:[MD5.68ECC37C921B461C52E94F8EC5EB143A] - 21/09/2013 - 14:48:21 ---A- - C:\Windows\Prefetch\CMD.EXE-2EB3E6E2.pf
O45 - LFCP:[MD5.9830232105764060CA82042A9839C206] - 21/09/2013 - 14:48:21 ---A- - C:\Windows\Prefetch\SUBINACL.EXE-D08B2113.pf
O45 - LFCP:[MD5.56776CC462FCBB6C66616F8DAEE81220] - 21/09/2013 - 14:48:26 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-5A956D1E.pf
O45 - LFCP:[MD5.61D83A1FE3F444E15693ECA92B654817] - 21/09/2013 - 14:48:27 ---A- - C:\Windows\Prefetch\SCHTASKS.EXE-0AD36442.pf
O45 - LFCP:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 22/11/2149 - 21:56:52  - C:\Windows\Prefetch\ReadyBoot
~ Prefetcher: 211 Scanned in 00mn 00s



---\\ Déni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l’Éditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Fournisseur de sécurité TLS/SSL.) -- C:\Windows\System32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Live Security Package.) -- C:\Windows\System32\livessp.dll
~ LSA: 9 Scanned in 00mn 00s



---\\ Contrôle du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\BasicDisplay.sys . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\BasicRender.sys . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dxgkrnl.sys . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\FsDepends.sys . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\FsDepends.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\BasicDisplay.sys . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\BasicRender.sys . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dxgkrnl.sys . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\FsDepends.sys . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\FsDepends.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (...) -- C:\Windows\System32\Drivers\rdpencdd.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
~ CSB: 17 Scanned in 00mn 00s



---\\ Clé de registre Shell MountPoints2 (MPKS) (O51)
O51 - MPSK:{317cf4e9-9715-11e2-be89-806e6f6e6963}\AutoRun\command. (...) -- D:\autorun.exe (.not file.)
~ Keys:  Scanned in 00mn 00s



---\\ Recherche d'infection sur les pilotes (HKLM)(TDSD) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
~ TDSD: 2 Scanned in 00mn 00s



---\\ Enumération des clés de registre SecurityProviders (MCSP) (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
~ MSCP: 2 Scanned in 00mn 00s



---\\ Enumération des clés de registre PoliciesSystem (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=0
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableCursorSuppression"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
~ MWPS: 17 Scanned in 00mn 00s



---\\ Enumération des clés de registre PoliciesExplorer (MWPE) (O56)
O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1
~ MWPE Keys: 3 Scanned in 00mn 00s



---\\ Liste des pilotes du système (SDL) (O58)
O58 - SDL:[MD5.4F18D4C7EA14F11A7211F60D553C03DB] - 26/07/2012 - 06:00:49 ---A- . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\Windows\System32\Drivers\3ware.sys   [106736]
O58 - SDL:[MD5.221F28472FB210E2D4A7B4488BC798F9] - 18/09/2012 - 16:15:20 ---A- . (.Qualcomm Atheros Communications, Inc. - Qualcomm Atheros Extensible Wireless LAN device driver.) -- C:\Windows\System32\athw8x.sys   [3653632]
~ Drivers: 17 Scanned in 00mn 00s



---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)
O61 - LFC: 11/11/2013 - 20:46:25 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.google.fr_0.localstorage   [3072]
O61 - LFC: 11/11/2013 - 20:46:25 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.google.fr_0.localstorage-journal   [3608]
O61 - LFC: 11/11/2013 - 21:09:57 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_000008   [1048576]
O61 - LFC: 11/11/2013 - 21:09:59 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_000009   [1048576]
O61 - LFC: 11/11/2013 - 21:10:05 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_00000a   [1048576]
O61 - LFC: 11/11/2013 - 21:10:13 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_00000b   [1048576]
O61 - LFC: 11/11/2013 - 21:10:17 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_00000c   [628076]
O61 - LFC: 11/11/2013 - 21:10:26 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_00000d   [1048576]
O61 - LFC: 11/11/2013 - 21:10:29 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_00000e   [1048576]
O61 - LFC: 11/11/2013 - 21:10:33 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_00000f   [1048576]
O61 - LFC: 11/11/2013 - 21:10:42 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_000010   [1048576]
O61 - LFC: 11/11/2013 - 21:10:46 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_000011   [1048576]
O61 - LFC: 11/11/2013 - 21:10:59 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_000012   [1048576]
O61 - LFC: 11/11/2013 - 21:11:12 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_000013   [1048576]
O61 - LFC: 11/11/2013 - 21:11:21 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_000014   [1048576]
O61 - LFC: 11/11/2013 - 21:11:32 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_000015   [1048576]
O61 - LFC: 11/11/2013 - 21:11:40 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_000016   [1048576]
O61 - LFC: 11/11/2013 - 21:11:49 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_000017   [1048576]
O61 - LFC: 11/11/2013 - 21:12:01 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_000018   [1048576]
O61 - LFC: 11/11/2013 - 21:12:14 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_000019   [1048576]
O61 - LFC: 11/11/2013 - 21:12:26 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_00001a   [1048576]
O61 - LFC: 11/11/2013 - 21:12:38 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_00001b   [1048576]
O61 - LFC: 11/11/2013 - 21:12:49 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_00001c   [1048576]
O61 - LFC: 11/11/2013 - 21:13:02 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_00001d   [1048576]
O61 - LFC: 11/11/2013 - 21:13:13 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_00001e   [1048576]
O61 - LFC: 11/11/2013 - 21:13:23 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_00001f   [1048576]
O61 - LFC: 11/11/2013 - 21:13:23 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_000020   [1048576]
O61 - LFC: 11/11/2013 - 21:13:23 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_000021   [20142]
O61 - LFC: 11/11/2013 - 21:13:25 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_000022   [1048576]
O61 - LFC: 11/11/2013 - 21:13:28 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_000023   [1048576]
O61 - LFC: 11/11/2013 - 21:13:32 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_000024   [1048576]
O61 - LFC: 11/11/2013 - 21:13:37 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_000025   [1048576]
O61 - LFC: 11/11/2013 - 21:13:42 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_000026   [1048576]
O61 - LFC: 11/11/2013 - 21:13:45 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_000027   [1048576]
O61 - LFC: 11/11/2013 - 21:13:51 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_000028   [1048576]
O61 - LFC: 11/11/2013 - 21:13:59 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_000029   [1048576]
O61 - LFC: 11/11/2013 - 21:14:08 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_00002a   [1048576]
O61 - LFC: 11/11/2013 - 21:14:18 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_00002b   [1048576]
O61 - LFC: 11/11/2013 - 21:14:28 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_00002c   [1048576]
O61 - LFC: 11/11/2013 - 21:14:39 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_00002d   [1048576]
O61 - LFC: 11/11/2013 - 21:14:49 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_00002e   [1048576]
O61 - LFC: 11/11/2013 - 21:15:00 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_00002f   [1048576]
O61 - LFC: 11/11/2013 - 21:15:10 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_000030   [1048576]
O61 - LFC: 11/11/2013 - 21:15:26 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_000031   [1048576]
O61 - LFC: 11/11/2013 - 21:15:42 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_000032   [1048576]
O61 - LFC: 11/11/2013 - 21:15:57 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_000033   [1048576]
O61 - LFC: 11/11/2013 - 21:16:09 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_000034   [1048576]
O61 - LFC: 11/11/2013 - 21:16:21 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_000035   [1048576]
O61 - LFC: 11/11/2013 - 21:16:33 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_000036   [1048576]
O61 - LFC: 11/11/2013 - 21:16:46 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_000037   [1048576]
O61 - LFC: 11/11/2013 - 21:16:57 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_000038   [1048576]
O61 - LFC: 11/11/2013 - 21:17:09 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_000039   [1048576]
O61 - LFC: 11/11/2013 - 21:17:21 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_00003a   [1048576]
O61 - LFC: 11/11/2013 - 21:17:33 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_00003b   [1048576]
O61 - LFC: 11/11/2013 - 21:17:45 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_00003c   [1048576]
O61 - LFC: 11/11/2013 - 21:18:00 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_00003d   [1048576]
O61 - LFC: 11/11/2013 - 21:18:13 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_00003e   [1048576]
O61 - LFC: 11/11/2013 - 21:18:26 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_00003f   [1048576]
O61 - LFC: 11/11/2013 - 21:18:37 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_000040   [1048576]
O61 - LFC: 11/11/2013 - 21:18:54 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_000041   [1048576]
O61 - LFC: 11/11/2013 - 21:19:16 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_000042   [1048576]
O61 - LFC: 11/11/2013 - 21:19:28 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_000043   [1048576]
O61 - LFC: 11/11/2013 - 21:19:39 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_000044   [1048576]
O61 - LFC: 11/11/2013 - 21:19:51 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_000045   [1048576]
O61 - LFC: 11/11/2013 - 21:20:01 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_000046   [1048576]
O61 - LFC: 11/11/2013 - 21:20:11 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_000047   [1048576]
O61 - LFC: 11/11/2013 - 21:20:22 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_000048   [1048576]
O61 - LFC: 11/11/2013 - 21:20:32 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_000049   [1048576]
O61 - LFC: 11/11/2013 - 21:20:43 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_00004a   [1048576]
O61 - LFC: 11/11/2013 - 21:20:53 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_00004b   [1048576]
O61 - LFC: 11/11/2013 - 21:21:04 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_00004c   [1048576]
O61 - LFC: 11/11/2013 - 21:21:14 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_00004d   [1048576]
O61 - LFC: 11/11/2013 - 21:21:24 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_00004e   [1048576]
O61 - LFC: 11/11/2013 - 21:21:34 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_00004f   [1048576]
O61 - LFC: 11/11/2013 - 21:21:44 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_000050   [1048576]
O61 - LFC: 11/11/2013 - 21:21:55 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_000051   [1048576]
O61 - LFC: 11/11/2013 - 21:22:06 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_000052   [1048576]
O61 - LFC: 11/11/2013 - 21:22:16 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_000053   [1048576]
O61 - LFC: 11/11/2013 - 21:22:26 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_000054   [1048576]
O61 - LFC: 11/11/2013 - 21:22:37 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_000055   [1048576]
O61 - LFC: 11/11/2013 - 21:22:47 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_000056   [1048576]
O61 - LFC: 11/11/2013 - 21:22:53 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_000057   [564464]
O61 - LFC: 11/11/2013 - 22:54:05 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Temp\cloclo.bmp   [31832]
O61 - LFC: 11/11/2013 - 22:54:35 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Temp\Invité.bmp   [802870]
O61 - LFC: 11/11/2013 - 23:25:25 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Safe Browsing Cookies   [6144]
O61 - LFC: 11/11/2013 - 23:25:25 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Safe Browsing Cookies-journal   [4640]
O61 - LFC: 18/09/2013 - 08:47:59 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_apps.facebook.com_0.localstorage   [3072]
O61 - LFC: 18/09/2013 - 08:47:59 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_apps.facebook.com_0.localstorage-journal   [3608]
O61 - LFC: 18/09/2013 - 09:50:56 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_fr.wikipedia.org_0.localstorage   [3072]
O61 - LFC: 18/09/2013 - 09:50:56 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_fr.wikipedia.org_0.localstorage-journal   [3608]
O61 - LFC: 18/09/2013 - 11:11:21 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Temp\cd07b68d-24b6-47e4-a834-101b660565ab.dmp   [475535]
O61 - LFC: 18/09/2013 - 12:00:42 ---A- . (...) -- C:\Users\cloclo\AppData\Roaming\Microsoft\HTML Help\hh.dat   [8590]
O61 - LFC: 18/09/2013 - 12:04:00 ---A- . (...) -- C:\Users\cloclo\AppData\Roaming\Microsoft\MMC\services   [93550]
O61 - LFC: 18/09/2013 - 12:23:44 ---A- . (.Resplendence Software Projects Sp..) -- C:\Users\cloclo\Downloads\whocrashedSetup.exe   [2085248]
O61 - LFC: 18/09/2013 - 12:24:28 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Temp\rsptmp2228399296.html   [0]
O61 - LFC: 18/09/2013 - 12:40:40 ---A- . (.Sony DADC Austria AG.) -- C:\Users\cloclo\AppData\Local\Temp\drm_dyndata_7380009.dll   [204800]
O61 - LFC: 18/09/2013 - 12:40:41 ---A- . (...) -- C:\Users\cloclo\AppData\Roaming\SecuROM\UserData\readme.txt   [4652]
O61 - LFC: 18/09/2013 - 12:40:41 R---- . (...) -- C:\Users\cloclo\AppData\Roaming\SecuROM\UserData\securom_v7_01.dat   [444]
O61 - LFC: 18/09/2013 - 12:40:41 R-H-- . (...) -- C:\Users\cloclo\AppData\Roaming\SecuROM\UserData\securom_v7_01.bak   [444]
O61 - LFC: 18/09/2013 - 14:05:46 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\HAMEKQHD\macromedia.com\support\flashplayer\sys\#www.paypalobjects.com\settings.sol   [91]
O61 - LFC: 18/09/2013 - 15:17:05 ---A- . (...) -- C:\Users\cloclo\AppData\Roaming\Microsoft\UProof\ExcludeDictionaryGE0407.lex   [2]
O61 - LFC: 18/09/2013 - 16:09:33 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_cmedhionkhpnakcndndgjdbohmhepckk_0.localstorage   [3072]
O61 - LFC: 18/09/2013 - 16:09:33 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_cmedhionkhpnakcndndgjdbohmhepckk_0.localstorage-journal   [3608]
O61 - LFC: 18/09/2013 - 16:17:32 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\HAMEKQHD\macromedia.com\support\flashplayer\sys\#vp.videoplaza.tv\settings.sol   [86]
O61 - LFC: 18/09/2013 - 16:17:43 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.canalplus.fr_0.localstorage   [3072]
O61 - LFC: 18/09/2013 - 16:17:43 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.canalplus.fr_0.localstorage-journal   [3608]
O61 - LFC: 18/09/2013 - 16:17:50 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\HAMEKQHD\macromedia.com\##B9A0555D7A2D035A\00000001.sol   [192]
O61 - LFC: 18/09/2013 - 16:17:51 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\HAMEKQHD\fr-canalplus.cdn.videoplaza.tv\com.videoplaza.adplayer.sol   [132]
O61 - LFC: 18/09/2013 - 16:31:33 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.priceminister.com_0.localstorage   [5120]
O61 - LFC: 18/09/2013 - 16:31:33 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.priceminister.com_0.localstorage-journal   [5672]
O61 - LFC: 18/09/2013 - 16:32:00 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\HAMEKQHD\macromedia.com\support\flashplayer\sys\#secure-player.canal-plus.com\settings.sol   [98]
O61 - LFC: 18/09/2013 - 16:33:38 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\HAMEKQHD\fr-canalplus.cdn.videoplaza.tv\com.videoplaza.bootloader.sol   [121]
O61 - LFC: 18/09/2013 - 16:33:38 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\HAMEKQHD\macromedia.com\support\flashplayer\sys\#player.canalplus.fr\settings.sol   [89]
O61 - LFC: 18/09/2013 - 16:33:38 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\HAMEKQHD\player.canalplus.fr\site\flash\player.swf\HDCore.sol   [42]
O61 - LFC: 18/09/2013 - 16:33:38 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\HAMEKQHD\player.canalplus.fr\site\flash\player.swf\canalPlusPlayerEmbarque.sol   [140]
O61 - LFC: 18/09/2013 - 17:03:04 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\HAMEKQHD\macromedia.com\support\flashplayer\sys\#static-3.konbini.com\settings.sol   [90]
O61 - LFC: 18/09/2013 - 17:03:48 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\HAMEKQHD\static-3.konbini.com\DBA.sol   [126]
O61 - LFC: 18/09/2013 - 17:40:12 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\HAMEKQHD\macromedia.com\support\flashplayer\sys\#static1.spilcdn.com\settings.sol   [89]
O61 - LFC: 18/09/2013 - 17:40:40 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\HAMEKQHD\macromedia.com\support\flashplayer\sys\#www8.agame.com\settings.sol   [84]
O61 - LFC: 18/09/2013 - 17:45:17 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.jeux.fr_0.localstorage   [24576]
O61 - LFC: 18/09/2013 - 17:45:17 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.jeux.fr_0.localstorage-journal   [7736]
O61 - LFC: 18/09/2013 - 17:45:23 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\HAMEKQHD\macromedia.com\support\flashplayer\sys\#games.armorgames.com\settings.sol   [90]
O61 - LFC: 18/09/2013 - 17:45:23 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\HAMEKQHD\macromedia.com\support\flashplayer\sys\settings.sol   [896]
O61 - LFC: 18/09/2013 - 23:30:09 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\HAMEKQHD\www.debrideurstreaming.com\com.jeroenwijering.sol   [54]
O61 - LFC: 19/09/2013 - 00:15:52 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\data_0   [45056]
O61 - LFC: 19/09/2013 - 00:15:52 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\data_1   [270336]
O61 - LFC: 19/09/2013 - 00:15:55 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG.old   [148]
O61 - LFC: 19/09/2013 - 00:15:58 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Bookmarks.bak   [5679]
O61 - LFC: 19/09/2013 - 00:18:48 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\History Index 2013-11   [1155072]
O61 - LFC: 19/09/2013 - 00:21:56 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\File System\000\p\00\00000000   [1437135]
O61 - LFC: 19/09/2013 - 00:21:59 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Certificate Revocation Lists   [259047]
O61 - LFC: 19/09/2013 - 00:21:59 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Temp\CRX_75DAF8CB7768\crl-set   [1153]
O61 - LFC: 19/09/2013 - 00:21:59 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Temp\CRX_75DAF8CB7768\manifest.fingerprint   [12]
O61 - LFC: 19/09/2013 - 00:21:59 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Temp\CRX_75DAF8CB7768\manifest.json   [34]
O61 - LFC: 19/09/2013 - 00:22:01 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\File System\000\p\.usage   [24]
O61 - LFC: 19/09/2013 - 00:27:56 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_cfhdojbkjhnklbpkdaibdccddilifddb_0.localstorage   [3072]
O61 - LFC: 19/09/2013 - 00:27:56 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_cfhdojbkjhnklbpkdaibdccddilifddb_0.localstorage-journal   [3608]
O61 - LFC: 19/09/2013 - 00:30:43 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.youtube.com_0.localstorage   [63488]
O61 - LFC: 19/09/2013 - 00:30:43 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.youtube.com_0.localstorage-journal   [16384]
O61 - LFC: 19/09/2013 - 00:31:10 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Last Tabs   [139021]
O61 - LFC: 19/09/2013 - 00:31:11 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG.old   [267]
O61 - LFC: 19/09/2013 - 00:31:11 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\File System\000\p\Paths\LOG.old   [148]
O61 - LFC: 19/09/2013 - 00:31:11 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\LOG.old   [142]
O61 - LFC: 19/09/2013 - 00:31:11 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Last Session   [316196]
O61 - LFC: 19/09/2013 - 00:31:11 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG.old   [272]
O61 - LFC: 19/09/2013 - 00:31:17 --HA- . (...) -- C:\Users\cloclo\AppData\Local\IconCache.db   [82341]
O61 - LFC: 19/09/2013 - 09:46:49 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\CURRENT   [16]
O61 - LFC: 19/09/2013 - 09:46:49 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\MANIFEST-000157   [613]
O61 - LFC: 19/09/2013 - 09:46:58 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\MANIFEST-000317   [142]
O61 - LFC: 19/09/2013 - 09:46:59 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\CURRENT   [16]
O61 - LFC: 19/09/2013 - 09:47:00 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Extension State\CURRENT   [16]
O61 - LFC: 19/09/2013 - 09:47:00 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Extension State\MANIFEST-000223   [286]
O61 - LFC: 19/09/2013 - 09:47:00 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\File System\000\p\Paths\MANIFEST-000313   [88]
O61 - LFC: 19/09/2013 - 09:47:00 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Managed Mode Settings   [8]
O61 - LFC: 19/09/2013 - 09:47:01 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\File System\000\p\Paths\CURRENT   [16]
O61 - LFC: 19/09/2013 - 09:47:01 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\TransportSecurity   [1602]
O61 - LFC: 19/09/2013 - 09:47:03 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Web Data   [120832]
O61 - LFC: 19/09/2013 - 09:47:03 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal   [16384]
O61 - LFC: 19/09/2013 - 09:47:04 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Custom Dictionary.txt   [84]
O61 - LFC: 19/09/2013 - 09:47:04 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Custom Dictionary.txt.backup   [65]
O61 - LFC: 19/09/2013 - 09:47:05 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Bookmarks   [5679]
O61 - LFC: 19/09/2013 - 09:47:06 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Login Data   [55296]
O61 - LFC: 19/09/2013 - 09:47:06 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Login Data-journal   [14904]
O61 - LFC: 19/09/2013 - 09:47:09 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Top Sites   [647168]
O61 - LFC: 19/09/2013 - 09:47:09 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Top Sites-journal   [16384]
O61 - LFC: 19/09/2013 - 09:47:11 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG   [267]
O61 - LFC: 19/09/2013 - 09:47:11 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\File System\000\p\Paths\LOG   [148]
O61 - LFC: 19/09/2013 - 09:47:16 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor   [308224]
O61 - LFC: 19/09/2013 - 09:47:16 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor-journal   [16384]
O61 - LFC: 19/09/2013 - 09:47:16 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Shortcuts   [57344]
O61 - LFC: 19/09/2013 - 09:47:16 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Shortcuts-journal   [12824]
O61 - LFC: 19/09/2013 - 09:47:19 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_bhmmomiinigofkjcapegjjndpbikblnp_0.localstorage   [72704]
O61 - LFC: 19/09/2013 - 09:47:19 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_bhmmomiinigofkjcapegjjndpbikblnp_0.localstorage-journal   [16384]
O61 - LFC: 19/09/2013 - 09:47:27 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Favicons   [950272]
O61 - LFC: 19/09/2013 - 09:47:27 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Favicons-journal   [16384]
O61 - LFC: 19/09/2013 - 09:47:28 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\History Index 2013-09   [15511552]
O61 - LFC: 19/09/2013 - 09:47:28 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\History Index 2013-09-journal   [16384]
O61 - LFC: 19/09/2013 - 09:47:30 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\QuotaManager   [13312]
O61 - LFC: 19/09/2013 - 09:47:30 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\QuotaManager-journal   [8768]
O61 - LFC: 19/09/2013 - 09:47:32 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Cookies   [297984]
O61 - LFC: 19/09/2013 - 09:47:32 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Cookies-journal   [16384]
O61 - LFC: 19/09/2013 - 09:47:32 ---A- . (.Mozilla.) -- C:\Users\cloclo\Downloads\Firefox Setup Stub 24.0.exe   [281928]
O61 - LFC: 19/09/2013 - 09:47:33 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Extension Cookies   [6144]
O61 - LFC: 19/09/2013 - 09:47:33 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Extension Cookies-journal   [4640]
O61 - LFC: 19/09/2013 - 09:47:52 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Session Storage\CURRENT   [16]
O61 - LFC: 19/09/2013 - 09:47:52 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Session Storage\MANIFEST-000257   [206]
O61 - LFC: 19/09/2013 - 09:48:05 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Safe Browsing Download   [903128]
O61 - LFC: 19/09/2013 - 09:48:07 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Safe Browsing Bloom   [9131220]
O61 - LFC: 19/09/2013 - 09:48:07 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Safe Browsing Bloom Prefix Set   [1757088]
O61 - LFC: 19/09/2013 - 09:48:07 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Safe Browsing Csd Whitelist   [135236]
O61 - LFC: 19/09/2013 - 09:48:07 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Safe Browsing Download Whitelist   [19680]
O61 - LFC: 19/09/2013 - 09:48:07 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Safe Browsing Extension Blacklist   [6316]
O61 - LFC: 19/09/2013 - 09:49:24 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Current Session   [3858]
O61 - LFC: 19/09/2013 - 09:49:24 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Current Tabs   [2604]
O61 - LFC: 19/09/2013 - 09:49:24 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG   [148]
O61 - LFC: 19/09/2013 - 09:49:24 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\LOG   [148]
O61 - LFC: 19/09/2013 - 09:49:24 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_0   [45056]
O61 - LFC: 19/09/2013 - 09:49:24 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_1   [270336]
O61 - LFC: 19/09/2013 - 09:49:24 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\History   [1609728]
O61 - LFC: 19/09/2013 - 09:49:24 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache   [515702]
O61 - LFC: 19/09/2013 - 09:49:24 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\History-journal   [16384]
O61 - LFC: 19/09/2013 - 09:49:24 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Preferences   [203275]
O61 - LFC: 19/09/2013 - 09:49:24 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG   [270]
O61 - LFC: 19/09/2013 - 09:49:24 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Sync Data\SyncData.sqlite3   [1380352]
O61 - LFC: 19/09/2013 - 09:49:24 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Sync Data\SyncData.sqlite3-journal   [16384]
O61 - LFC: 19/09/2013 - 09:49:24 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Default\Visited Links   [131072]
O61 - LFC: 19/09/2013 - 09:49:24 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\Local State   [43771]
O61 - LFC: 19/09/2013 - 09:49:24 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Google\Chrome\User Data\chrome_shutdown_ms.txt   [4]
O61 - LFC: 19/09/2013 - 10:03:42 ---A- . (.Solid State Networks.) -- C:\Users\cloclo\AppData\Local\Temp\TicheoP2.exe.part   [1069288]
O61 - LFC: 19/09/2013 - 10:39:36 ---A- . (...) -- C:\Users\cloclo\AppData\Roaming\Adobe\Flash Player\AssetCache\8Z4YV4LS\8F903698240FE799F61EEDA8595181137B996156.swz   [186404]
O61 - LFC: 19/09/2013 - 10:39:36 ---A- . (...) -- C:\Users\cloclo\AppData\Roaming\Adobe\Flash Player\AssetCache\8Z4YV4LS\ABD49354324081CEBB8F60184CF5FEE81F0F9298.swz   [327044]
O61 - LFC: 19/09/2013 - 10:39:37 ---A- . (...) -- C:\Users\cloclo\AppData\Roaming\Adobe\Flash Player\AssetCache\8Z4YV4LS\4BAE91DBAEF0CEEC0FCE5505D96DDEA865EDBFC1.swz   [482555]
O61 - LFC: 19/09/2013 - 10:39:37 ---A- . (...) -- C:\Users\cloclo\AppData\Roaming\Adobe\Flash Player\AssetCache\8Z4YV4LS\98EECA3E014A0FA3C4C613006BDCEA12DA3BEACE.swz   [132753]
O61 - LFC: 19/09/2013 - 10:39:37 ---A- . (...) -- C:\Users\cloclo\AppData\Roaming\Adobe\Flash Player\AssetCache\8Z4YV4LS\cacheSize.txt   [8]
O61 - LFC: 19/09/2013 - 14:45:12 ---A- . (...) -- C:\Users\cloclo\Downloads\HPPSdr.exe   [6064264]
O61 - LFC: 19/09/2013 - 14:45:45 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Temp\7zS3589\logFile.txt   [58]
O61 - LFC: 19/09/2013 - 14:45:52 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Temp\7zS3589\HPPSdr.xml   [106]
O61 - LFC: 20/09/2013 - 09:56:27 ---A- . (...) -- C:\Users\cloclo\Downloads\tbed1368.pdf   [1755838]
O61 - LFC: 20/09/2013 - 13:14:24 ---A- . (...) -- C:\Users\cloclo\AppData\Roaming\Microsoft\Office\MSO1033.acl   [37814]
O61 - LFC: 20/09/2013 - 13:35:38 ---A- . (...) -- C:\Users\cloclo\AppData\Roaming\Microsoft\Office\Excel12.pip   [1544]
O61 - LFC: 20/09/2013 - 14:57:51 ---A- . (...) -- C:\Users\cloclo\AppData\Roaming\Microsoft\Office\Word12.pip   [1688]
O61 - LFC: 20/09/2013 - 14:57:51 ---A- . (...) -- C:\Users\cloclo\AppData\Roaming\Microsoft\Word\ListGal.dat   [13205]
O61 - LFC: 20/09/2013 - 14:58:36 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Temp\182441468.od   [134]
O61 - LFC: 20/09/2013 - 14:58:36 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Temp\CVRD5FC.tmp.cvr   [0]
O61 - LFC: 20/09/2013 - 14:58:37 ---A- . (...) -- C:\Users\cloclo\AppData\Roaming\Microsoft\Office\Recent\Docs thèse.LNK   [448]
O61 - LFC: 20/09/2013 - 14:58:37 ---A- . (...) -- C:\Users\cloclo\AppData\Roaming\Microsoft\Office\Recent\Réponses questionnaire.LNK   [702]
O61 - LFC: 20/09/2013 - 16:54:16 ---A- . (...) -- C:\Users\cloclo\AppData\Roaming\Microsoft\Office\Recent\EBAUCHE de rédaction du questionnaire (2).LNK   [1033]
O61 - LFC: 20/09/2013 - 17:32:00 ---A- . (...) -- C:\Users\cloclo\AppData\Local\GDIPFONTCACHEV1.DAT   [88704]
O61 - LFC: 20/09/2013 - 17:44:17 --HA- . (...) -- C:\Users\cloclo\AppData\Roaming\Microsoft\Document Building Blocks\1036\~$ilding Blocks.dotx   [162]
O61 - LFC: 20/09/2013 - 18:06:49 ---A- . (...) -- C:\Users\cloclo\AppData\Roaming\Microsoft\Office\Recent\EBAUCHE de rédaction du questionnaire.LNK   [1033]
O61 - LFC: 20/09/2013 - 18:06:49 ---A- . (...) -- C:\Users\cloclo\AppData\Roaming\Microsoft\Office\Recent\Rédaction questionnaire.LNK   [674]
O61 - LFC: 20/09/2013 - 18:06:49 ---A- . (...) -- C:\Users\cloclo\AppData\Roaming\Microsoft\Word\Enregistrement automatique deEBAUCHE de rédaction du questionnaire.asd   [39424]
O61 - LFC: 20/09/2013 - 18:06:57 ---A- . (...) -- C:\Users\cloclo\AppData\Roaming\Microsoft\Office\Recent\GAEC Freger .LNK   [756]
O61 - LFC: 20/09/2013 - 18:13:59 ---A- . (...) -- C:\Users\cloclo\AppData\Roaming\Microsoft\Office\Recent\Pisciculture de Venables.LNK   [823]
O61 - LFC: 20/09/2013 - 18:14:15 ---A- . (...) -- C:\Users\cloclo\AppData\Roaming\Microsoft\Office\Recent\pisciculture du val de loire.LNK   [847]
O61 - LFC: 20/09/2013 - 18:14:21 ---A- . (...) -- C:\Users\cloclo\AppData\Roaming\Microsoft\Office\Recent\Saupin pisciculture 00.LNK   [811]
O61 - LFC: 20/09/2013 - 18:21:42 ---A- . (...) -- C:\Users\cloclo\AppData\Roaming\Microsoft\Office\Recent\FUARTChristophe.LNK   [768]
O61 - LFC: 20/09/2013 - 18:22:29 ---A- . (...) -- C:\Users\cloclo\AppData\Roaming\Microsoft\Office\Recent\KOHLER.LNK   [715]
O61 - LFC: 20/09/2013 - 18:22:51 ---A- . (...) -- C:\Users\cloclo\AppData\Roaming\Microsoft\Office\Recent\LEJEANVREJérôme.LNK   [788]
O61 - LFC: 20/09/2013 - 18:22:59 ---A- . (...) -- C:\Users\cloclo\AppData\Roaming\Microsoft\Office\Recent\BOISSIERNicolas.LNK   [768]
O61 - LFC: 20/09/2013 - 18:25:19 ---A- . (...) -- C:\Users\cloclo\AppData\Roaming\Microsoft\Office\Recent\relotphilippe.LNK   [756]
O61 - LFC: 20/09/2013 - 18:26:37 ---A- . (...) -- C:\Users\cloclo\AppData\Roaming\Microsoft\Office\Recent\RAOUL-DUVALJean.LNK   [768]
O61 - LFC: 20/09/2013 - 18:26:40 ---A- . (...) -- C:\Users\cloclo\AppData\Roaming\Microsoft\Office\Recent\Questionnaire.LNK   [590]
O61 - LFC: 20/09/2013 - 18:26:40 ---A- . (...) -- C:\Users\cloclo\AppData\Roaming\Microsoft\Office\Recent\TONOLOSerge.LNK   [744]
O61 - LFC: 20/09/2013 - 18:26:40 --H-- . (...) -- C:\Users\cloclo\AppData\Roaming\Microsoft\Office\Recent\index.dat   [526]
O61 - LFC: 20/09/2013 - 18:59:15 --HA- . (...) -- C:\Users\cloclo\AppData\Roaming\Microsoft\Excel\~ar4FD9.xar   [27460]
O61 - LFC: 20/09/2013 - 23:38:32 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Temp\DSC_1780.JPG   [235836]
O61 - LFC: 21/09/2013 - 02:03:11 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Packages\AlloCin.AlloCin_rw1cw5z48aq2t\Settings\settings.dat   [8192]
O61 - LFC: 21/09/2013 - 02:03:11 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Packages\Bitcasa.BitcasaforSamsung_t064hbck1pfne\Settings\settings.dat   [8192]
O61 - LFC: 21/09/2013 - 02:03:12 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Packages\BrowserChoice_cw5n1h2txyewy\Settings\settings.dat   [8192]
O61 - LFC: 21/09/2013 - 02:03:12 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Packages\CyberLinkCorp.ss.SCamera_h7cwzt5medr84\Settings\settings.dat   [262144]
O61 - LFC: 21/09/2013 - 02:03:12 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Packages\CyberLinkCorp.ss.SGallery_h7cwzt5medr84\Settings\settings.dat   [8192]
O61 - LFC: 21/09/2013 - 02:03:12 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Packages\CyberLinkCorp.ss.SPlayer_h7cwzt5medr84\Settings\settings.dat   [8192]
O61 - LFC: 21/09/2013 - 02:03:13 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Packages\DailymotionSA.Dailymotion_6dqnvyezrysvy\Settings\settings.dat   [8192]
O61 - LFC: 21/09/2013 - 02:03:13 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Packages\Evernote.Evernote_q4d96b2w5wcc2\Settings\settings.dat   [8192]
O61 - LFC: 21/09/2013 - 02:03:14 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Packages\GAMELOFTSA.SharkDash_0pp20fcewvvtj\Settings\settings.dat   [8192]
O61 - LFC: 21/09/2013 - 02:03:14 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Packages\LAGARDEREACTIVEDIGITALSAS.Tl7ProgrammeTV_ya1j1agkxsss6\Settings\settings.dat   [8192]
O61 - LFC: 21/09/2013 - 02:03:14 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Packages\LeMonde.fr.LeMonde.fr_ygx8racfmy1da\Settings\settings.dat   [8192]
O61 - LFC: 21/09/2013 - 02:03:15 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Packages\MAGIX.MusicMakerJam_a2t3txkz9j1jw\Settings\settings.dat   [8192]
O61 - LFC: 21/09/2013 - 02:03:15 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Packages\Microsoft.Adera_8wekyb3d8bbwe\Settings\settings.dat   [8192]
O61 - LFC: 21/09/2013 - 02:03:16 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Packages\Microsoft.BingFinance_8wekyb3d8bbwe\Settings\settings.dat   [262144]
O61 - LFC: 21/09/2013 - 02:03:16 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Packages\Microsoft.BingMaps_8wekyb3d8bbwe\Settings\settings.dat   [8192]
O61 - LFC: 21/09/2013 - 02:03:16 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Packages\Microsoft.BingNews_8wekyb3d8bbwe\Settings\settings.dat   [8192]
O61 - LFC: 21/09/2013 - 02:03:17 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Packages\Microsoft.BingSports_8wekyb3d8bbwe\Settings\settings.dat   [8192]
O61 - LFC: 21/09/2013 - 02:03:17 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Packages\Microsoft.BingTravel_8wekyb3d8bbwe\Settings\settings.dat   [8192]
O61 - LFC: 21/09/2013 - 02:03:18 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Packages\Microsoft.BingWeather_8wekyb3d8bbwe\Settings\settings.dat   [8192]
O61 - LFC: 21/09/2013 - 02:03:19 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Packages\Microsoft.Bing_8wekyb3d8bbwe\Settings\settings.dat   [8192]
O61 - LFC: 21/09/2013 - 02:03:19 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Packages\Microsoft.Camera_8wekyb3d8bbwe\Settings\settings.dat   [8192]
O61 - LFC: 21/09/2013 - 02:03:20 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Packages\Microsoft.FreshPaint_8wekyb3d8bbwe\Settings\settings.dat   [8192]
O61 - LFC: 21/09/2013 - 02:03:20 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Packages\Microsoft.Media.PlayReadyClient_8wekyb3d8bbwe\Settings\settings.dat   [8192]
O61 - LFC: 21/09/2013 - 02:03:20 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Packages\microsoft.microsoftskydrive_8wekyb3d8bbwe\Settings\settings.dat   [8192]
O61 - LFC: 21/09/2013 - 02:03:21 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Packages\Microsoft.Reader_8wekyb3d8bbwe\Settings\settings.dat   [8192]
O61 - LFC: 21/09/2013 - 02:03:21 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Packages\Microsoft.SkypeApp_kzf8qxf38zg5c\Settings\settings.dat   [8192]
O61 - LFC: 21/09/2013 - 02:03:22 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Packages\Microsoft.Studios.PinballFx2_8wekyb3d8bbwe\Settings\settings.dat   [8192]
O61 - LFC: 21/09/2013 - 02:03:22 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Packages\Microsoft.VCLibs.110.00_8wekyb3d8bbwe\Settings\settings.dat   [8192]
O61 - LFC: 21/09/2013 - 02:03:22 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\Settings\settings.dat   [8192]
O61 - LFC: 21/09/2013 - 02:03:23 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Packages\Microsoft.WinJS.1.0_8wekyb3d8bbwe\Settings\settings.dat   [8192]
O61 - LFC: 21/09/2013 - 02:03:23 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\Settings\settings.dat   [8192]
O61 - LFC: 21/09/2013 - 02:03:23 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Packages\microsoft.windowsphotos_8wekyb3d8bbwe\Settings\settings.dat   [8192]
O61 - LFC: 21/09/2013 - 02:03:24 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Packages\Microsoft.ZuneMusic_8wekyb3d8bbwe\Settings\settings.dat   [8192]
O61 - LFC: 21/09/2013 - 02:03:24 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Packages\Microsoft.ZuneVideo_8wekyb3d8bbwe\Settings\settings.dat   [8192]
O61 - LFC: 21/09/2013 - 02:03:25 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Packages\MobilesRepublic.NewsRepublic_n7gnan3nvj0by\Settings\settings.dat   [8192]
O61 - LFC: 21/09/2013 - 02:03:25 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Packages\Relay.com.KiosqueRelay_jv2nsssf0v6jw\Settings\settings.dat   [8192]
O61 - LFC: 21/09/2013 - 02:03:25 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Packages\SymantecCorporation.NortonStudio_v68kp9n051hdp\Settings\settings.dat   [8192]
O61 - LFC: 21/09/2013 - 02:03:26 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Packages\WinStore_cw5n1h2txyewy\Settings\settings.dat   [8192]
O61 - LFC: 21/09/2013 - 02:03:26 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Packages\Zolmo.JamiesRecipes_40cj6885yhw56\Settings\settings.dat   [8192]
O61 - LFC: 21/09/2013 - 02:03:26 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Packages\windows.immersivecontrolpanel_cw5n1h2txyewy\Settings\settings.dat   [8192]
O61 - LFC: 21/09/2013 - 11:02:59 ---A- . (...) -- C:\Users\cloclo\AppData\Local\Temp\.challenge_plain   [344]
O61 - LFC: 21/09/2013 - 13:36:57 ---A- . (...) -- C:\Users\cloclo\AppData\Roaming\Adobe\Flash Player\AssetCache\8Z4YV4LS\4BAE91DBAEF0CEEC0FCE5505D96DDEA865EDBFC1.heu   [148]
O61 - LFC: 21/09/2013 - 13:36:57 ---A- . (...) -- C:\Users\cloclo\AppData\Roaming\Adobe\Flash Player\AssetCache\8Z4YV4LS\8F903698240FE799F61EEDA8595181137B996156.heu   [148]
O61 - LFC: 21/09/2013 - 13:36:57 ---A- . (...) -- C:\Users\cloclo\AppData\Roaming\Adobe\Flash Player\AssetCache\8Z4YV4LS\98EECA3E014A0FA3C4C613006BDCEA12DA3BEACE.heu   [148]
O61 - LFC: 21/09/2013 - 13:36:57 ---A- . (...) -- C:\Users\cloclo\AppData\Roaming\Adobe\Flash Player\AssetCache\8Z4YV4LS\ABD49354324081CEBB8F60184CF5FEE81F0F9298.heu   [148]
O61 - LFC: 21/09/2013 - 13:37:00 ---A- . (...) -- C:\Users\cloclo\AppData\Roaming\Adobe\Flash Player\NativeCache\Updater.directory   [0]
O61 - LFC: 21/09/2013 - 13:38:27 ---A- . (...) -- C:\Users\cloclo\AppData\Roaming\Adobe\Flash Player\NativeCache\NativeCache.directory   [0]
O61 - LFC: 21/09/2013 - 13:38:29 ---A- . (...) -- C:\Users\cloclo\AppData\Roaming\Adobe\Flash Player\APSPrivateData2\0\drm-plug-win-x86\CertStore.dat   [5009]
O61 - LFC: 21/09/2013 - 13:38:29 ---A- . (...) -- C:\Users\cloclo\AppData\Roaming\Adobe\Flash Player\APSPrivateData2\0\drm-plug-win-x86\CertStore.dat.lkg   [5009]
O61 - LFC: 21/09/2013 - 13:38:29 ---A- . (...) -- C:\Users\cloclo\AppData\Roaming\Adobe\Flash Player\APSPrivateData2\0\drm-plug-win-x86\GlobalStateStore.gs   [6289]
O61 - LFC: 21/09/2013 - 13:38:29 ---A- . (...) -- C:\Users\cloclo\AppData\Roaming\Adobe\Flash Player\APSPrivateData2\0\drm-plug-win-x86\GlobalStateStore.gs.lkg   [6289]
O61 - LFC: 21/09/2013 - 13:38:45 ---A- . (...) -- C:\Users\cloclo\AppData\Roaming\Adobe\Flash Player\APSPrivateData2\0\drm-plug-win-x86\2-71_IH1HzsypZJynA1fLcgleqI=\SHR0hCNlDT_Utdg_qjHQa-rpTvbM=.sss   [3530]
O61 - LFC: 21/09/2013 - 13:38:45 ---A- . (...) -- C:\Users\cloclo\AppData\Roaming\Adobe\Flash Player\APSPrivateData2\0\drm-plug-win-x86\2-71_IH1HzsypZJynA1fLcgleqI=\SHR0hCNlDT_Utdg_qjHQa-rpTvbM=.sss.lkg   [3530]
O61 - LFC: 21/09/2013 - 13:38:45 ---A- . (...) -- C:\Users\cloclo\AppData\Roaming\Adobe\Flash Player\APSPrivateData2\0\drm-plug-win-x86\MiscGlobalDataStore.mgd   [2017]
O61 - LFC: 21/09/2013 - 13:38:45 ---A- . (...) -- C:\Users\cloclo\AppData\Roaming\Adobe\Flash Player\APSPrivateData2\0\drm-plug-win-x86\MiscGlobalDataStore.mgd.lkg   [2017]
O61 - LFC: 21/09/2013 - 14:47:13 ---A- . (.Nicolas Coolman.) -- C:\Users\cloclo\Downloads\ZHPDiag2.exe   [6825039]  =>.Nicolas Coolman
~ 15 Fichiers temporaires (Temporary files)
~ Files: 303 Scanned in 01mn 53s



---\\ Liste des outils de désinfection (LATC) (O63)
O63 - Logiciel: ZHPDiag 2013 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1  =>.Nicolas Coolman
~ ADS:  Scanned in 00mn 00s



---\\ Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> <evtfile>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> <evtfile>[HKCR\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
~ FASS Keys: 19 Scanned in 00mn 00s



---\\ Menu de démarrage Internet (SMI) (O68)
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
~ Keys:  Scanned in 00mn 00s



---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69)
O69 - SBI: prefs.js [cloclo - vnwrgdas.default] user_pref("weboftrust.search.ask.display", "Ask.com Web Search");
~ Keys:  Scanned in 00mn 00s



---\\ Enumère les service demarrés par Svchost (SSS) (O83)
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll   [190976]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll   [149504]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll   [149504]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll   [309248]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll   [1366016]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll   [1071104]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’accès distant.) -- C:\Windows\System32\rasauto.dll   [99840]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d’accès à distance.) -- C:\Windows\System32\rasmans.dll   [358400]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll   [107520]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements système (SENS).) -- C:\Windows\System32\sens.dll   [62976]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll   [438784]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM).) -- C:\Windows\System32\tapisrv.dll   [305664]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll   [3241472]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\Windows\System32\qmgr.dll   [826368]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll   [565760]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur un réseau IPv4..) -- C:\Windows\System32\iphlpsvc.dll   [894464]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll   [30720]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll   [70144]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll   [151552]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll   [105472]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll   [1285632]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll   [219648]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédias.) -- C:\Windows\System32\mmcss.dll   [80896]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll   [134144]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll   [209920]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à distance.) -- C:\Windows\System32\sessenv.dll   [291328]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll   [84992]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\kmsvc.dll   [97792]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll   [190976]
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\Windows\System32\wlidsvc.dll   [1964544]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll   [47104]
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d’installation de périphérique.) -- C:\Windows\System32\DeviceSetupManager.dll   [207872]
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Microsoft.) -- C:\Windows\System32\ncasvc.dll   [161792]
O83 - Search Svchost Services: SystemEventsBroker (SystemEventsBroker) . (.Microsoft Corporation - Service Broker pour les événements système.) -- C:\Windows\System32\SystemEventsBrokerServer.dll   [180224]
~ Services: 34 Scanned in 00mn 00s



---\\ Recherche particulière à la racine du système (SPRF) (O84)
[MD5.E2169AD646E94984BDECFDDBA604C1C8] [SPRF][18/09/2013] (.Sony DADC Austria AG - SecuROM dynamic-data module.) -- C:\Users\cloclo\AppData\Local\Temp\drm_dyndata_7380009.dll   [204800]
[MD5.5A432A042DAE460ABE7199B758E8606C] [SPRF][28/10/2006] (.Microsoft Corporation - Office Source Engine.) -- C:\Users\cloclo\AppData\Local\Temp\ose00000.exe   [145184]
~ Files: 2 Scanned in 00mn 00s



---\\ Liste des exceptions du parefeu (FirewallRules) (O87)
O87 - FAEL: "vm-monitoring-rpc" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "vm-monitoring-dcom" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMP-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe  =>.Microsoft Corporation
O87 - FAEL: "WMP-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe  =>.Microsoft Corporation
O87 - FAEL: "WMP-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe  =>.Microsoft Corporation
O87 - FAEL: "SNMPTRAP-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Interruption SNMP.) -- C:\Windows\system32\snmptrap.exe
O87 - FAEL: "SNMPTRAP-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Interruption SNMP.) -- C:\Windows\system32\snmptrap.exe
O87 - FAEL: "Wininit-Shutdown-In-Rule-TCP-RPC" | In - None - P6 - FALSE | .(.Microsoft Corporation - Application de démarrage de Windows.) -- C:\Windows\system32\wininit.exe
O87 - FAEL: "Wininit-Shutdown-In-Rule-TCP-RPC-EPMapper" | In - None - P6 - FALSE | .(.Microsoft Corporation - Application de démarrage de Windows.) -- C:\Windows\system32\wininit.exe
O87 - FAEL: "PNRPMNRS-PNRP-In-UDP" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PNRPMNRS-PNRP-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PNRPMNRS-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PNRPMNRS-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteFwAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteFwAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteFwAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteFwAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Netlogon-TCP-RPC-In" | In - None - P6 - FALSE | .(.Microsoft Corporation - Local Security Authority Process.) -- C:\Windows\System32\lsass.exe
O87 - FAEL: "WMI-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-WINMGMT-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-WINMGMT-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-ASYNC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) -- C:\Windows\system32\wbem\unsecapp.exe
O87 - FAEL: "WMI-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-WINMGMT-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-WINMGMT-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-ASYNC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) -- C:\Windows\system32\wbem\unsecapp.exe
O87 - FAEL: "MsiScsi-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MsiScsi-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MsiScsi-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MsiScsi-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "ProximityUxHost-Sharing-In-TCP-NoScope" | In - None - P6 - TRUE | .(.Microsoft Corporation - Hôte UX de proximité.) -- C:\Windows\system32\proximityuxhost.exe
O87 - FAEL: "ProximityUxHost-Sharing-Out-TCP-NoScope" | Out - None - P6 - TRUE | .(.Microsoft Corporation - Hôte UX de proximité.) -- C:\Windows\system32\proximityuxhost.exe
O87 - FAEL: "FPS-SpoolSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "FPS-SpoolSvc-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "FPS-LLMNR-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "FPS-LLMNR-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-UPnPHost-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-WSDEVNTS-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-WSDEVNT-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-UPnPHost-Out-TCP-Active" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-UPnP-Out-TCP-Active" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDPHOST-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-DAS-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Device Association Framework Provider Host.) -- C:\Windows\system32\dashost.exe
O87 - FAEL: "NETDIS-FDPHOST-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-WSDEVNTS-Out-TCP-Active" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-WSDEVNT-Out-TCP-Active" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-UPnP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-UPnPHost-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDPHOST-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-DAS-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Device Association Framework Provider Host.) -- C:\Windows\system32\dashost.exe
O87 - FAEL: "NETDIS-FDPHOST-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-WSDEVNTS-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-WSDEVNT-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-TCP3587-In" | In - Private - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-TCP3587-Out" | Out - Private - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-UDP3540-In" | In - Private - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-UDP3540-Out" | Out - Private - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-In-TCP-EdgeScope" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-In-EdgeScope" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-OUT" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-RAServer-In-TCP-NoScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur COM d’assistance à distance Windows.) -- C:\Windows\system32\raserver.exe
O87 - FAEL: "RemoteAssistance-RAServer-Out-TCP-NoScope-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur COM d’assistance à distance Windows.) -- C:\Windows\system32\raserver.exe
O87 - FAEL: "RemoteAssistance-DCOM-In-TCP-NoScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-In-TCP-EdgeScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-Out-TCP-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-SSDPSrv-In-UDP-Active" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-SSDPSrv-Out-UDP-Active" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-In-EdgeScope-Active" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-OUT-Active" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-KTMRM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-KTMRM-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-WMP-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-In-UDP-NoScope" |In - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-UDP-NoScope" |Out - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-QWave-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-WMP-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-In-UDP" |In - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-UDP" |Out - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-UPnP-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PlayTo-In-UDP-NoScope" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-In-UDP-LocalSubnetScope" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-In-UDP-PlayToScope" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-Out-UDP-NoScope" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-Out-UDP-LocalSubnetScope" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-Out-UDP-PlayToScope" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-In-RTSP-NoScope" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-In-RTSP-LocalSubnetScope" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-In-RTSP-PlayToScope" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-SSDP-Discovery-PlayToScope" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PlayTo-QWave-In-UDP-PlayToScope" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PlayTo-QWave-Out-UDP-PlayToScope" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PlayTo-QWave-In-TCP-PlayToScope" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PlayTo-QWave-Out-TCP-PlayToScope" | Out - Public - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "TPMVSCMGR-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "TPMVSCMGR-Server-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - TPM Virtual Smart Card Manager DCOM Server.) -- C:\Windows\system32\RmtTpmVscMgrSvr.exe
O87 - FAEL: "TPMVSCMGR-Server-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - TPM Virtual Smart Card Manager DCOM Server.) -- C:\Windows\system32\RmtTpmVscMgrSvr.exe
O87 - FAEL: "TPMVSCMGR-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "TPMVSCMGR-Server-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - TPM Virtual Smart Card Manager DCOM Server.) -- C:\Windows\system32\RmtTpmVscMgrSvr.exe
O87 - FAEL: "TPMVSCMGR-Server-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - TPM Virtual Smart Card Manager DCOM Server.) -- C:\Windows\system32\RmtTpmVscMgrSvr.exe
O87 - FAEL: "Collab-P2PHost-In-TCP" |In - None - P6 - TRUE | .(...) -- C:\Windows\system32\p2phost.exe (.not file.)
O87 - FAEL: "Collab-P2PHost-Out-TCP" |Out - None - P6 - FALSE | .(...) -- C:\Windows\system32\p2phost.exe (.not file.)
O87 - FAEL: "Collab-P2PHost-WSD-In-UDP" |In - None - P17 - FALSE | .(...) -- C:\Windows\system32\p2phost.exe (.not file.)
O87 - FAEL: "Collab-P2PHost-WSD-Out-UDP" |Out - None - P17 - FALSE | .(...) -- C:\Windows\system32\p2phost.exe (.not file.)
O87 - FAEL: "Collab-PNRP-In-UDP" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Collab-PNRP-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Collab-PNRP-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Collab-PNRP-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteSvcAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe
O87 - FAEL: "RemoteSvcAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteSvcAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe
O87 - FAEL: "RemoteSvcAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PerfLogsAlerts-PLASrv-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Performance Logs and Alerts DCOM Server.) -- C:\Windows\system32\plasrv.exe
O87 - FAEL: "PerfLogsAlerts-DCOM-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PerfLogsAlerts-PLASrv-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Performance Logs and Alerts DCOM Server.) -- C:\Windows\system32\plasrv.exe
O87 - FAEL: "PerfLogsAlerts-DCOM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DHCP-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DHCP-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DHCPV6-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DHCPV6-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-Teredo-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-Teredo-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-IPHTTPS-Out" | Out - None - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-GP-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DNS-Out-UDP" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-GP-LSASS-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Local Security Authority Process.) -- C:\Windows\system32\lsass.exe
O87 - FAEL: "RVM-VDS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service de disque virtuel.) -- C:\Windows\system32\vds.exe
O87 - FAEL: "RVM-VDSLDR-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Virtual Disk Service Loader.) -- C:\Windows\system32\vdsldr.exe
O87 - FAEL: "RVM-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RVM-VDS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service de disque virtuel.) -- C:\Windows\system32\vds.exe
O87 - FAEL: "RVM-VDSLDR-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Virtual Disk Service Loader.) -- C:\Windows\system32\vdsldr.exe
O87 - FAEL: "RVM-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteTask-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteTask-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteTask-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteTask-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NetPres-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-WSD-In-UDP" |In - None - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-WSD-Out-UDP" |Out - None - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "WPDMTP-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe
O87 - FAEL: "WPDMTP-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe
O87 - FAEL: "WPDMTP-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WPDMTP-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WPDMTP-UPnPHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WPDMTP-UPnP-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-In-TCP" |In - None - P6 - FALSE | .(...) -- C:\Windows\ehome\ehshell.exe (.not file.)
O87 - FAEL: "MCX-Out-TCP" |Out - None - P6 - FALSE | .(...) -- C:\Windows\ehome\ehshell.exe (.not file.)
O87 - FAEL: "MCX-QWave-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-QWave-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-QWave-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-QWave-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-TERMSRV-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-In-UDP" |In - None - P17 - FALSE | .(...) -- C:\Windows\ehome\ehshell.exe (.not file.)
O87 - FAEL: "MCX-Out-UDP" |Out - None - P17 - FALSE | .(...) -- C:\Windows\ehome\ehshell.exe (.not file.)
O87 - FAEL: "MCX-MCX2SVC-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-Prov-Out-TCP" |Out - None - P6 - FALSE | .(...) -- C:\Windows\ehome\mcx2prov.exe (.not file.)
O87 - FAEL: "MCX-PlayTo-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-McrMgr-Out-TCP" |Out - None - P6 - FALSE | .(...) -- C:\Windows\ehome\mcrmgr.exe (.not file.)
O87 - FAEL: "MCX-PlayTo-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-FDPHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{140D0040-EA2F-4CD0-8AB8-7693E182819D}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Microsoft Office Outlook.) -- C:\Program Files (x86)\Microsoft Office\Office12\outlook.exe
O87 - FAEL: "{5F7EBE69-0B1F-49AA-87DD-C4BE62DE2CBB}" | In - Private - P6 - TRUE | .(.CybelSoft - Service de détection matériel.) -- C:\Program Files\ma-config.com\MaConfigAgent.exe
O87 - FAEL: "{DDF82955-CFBF-4B34-9AB2-7260B4A716E2}" | In - Private - P17 - TRUE | .(.CybelSoft - Service de détection matériel.) -- C:\Program Files\ma-config.com\MaConfigAgent.exe
O87 - FAEL: "TCP Query User{231EA1DB-92B7-4580-91D4-670EB4D437CC}C:\program files (x86)\java\jre7\bin\java.exe" | In - Private - P6 - TRUE | .(.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\program files (x86)\java\jre7\bin\java.exe
O87 - FAEL: "UDP Query User{55C97B19-034C-4ADA-851A-09BE81DA86DD}C:\program files (x86)\java\jre7\bin\java.exe" | In - Private - P17 - TRUE | .(.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\program files (x86)\java\jre7\bin\java.exe
O87 - FAEL: "{D03C28EF-EC62-4CD0-8E70-3AC80F4B9217}" | In - None - P17 - TRUE | .(.Hewlett-Packard Co. - USBSetup.exe.) -- C:\Program Files\HP\HP Deskjet 1050 J410 series\Bin\USBSetup.exe
O87 - FAEL: "{AF33C265-4080-4BA8-AB91-1D036FCC3AE0}" | In - Private - P6 - TRUE | .(.Hewlett-Packard - HP Print and Scan Doctor 4.0.) -- C:\Users\cloclo\AppData\Local\Temp\7zS3589\HPDiagnosticCoreUI.exe
O87 - FAEL: "{10E8B5A5-2069-4F4D-8994-865327F84DEB}" | In - Private - P17 - TRUE | .(.Hewlett-Packard - HP Print and Scan Doctor 4.0.) -- C:\Users\cloclo\AppData\Local\Temp\7zS3589\HPDiagnosticCoreUI.exe
~ Firewall: 212 Scanned in 00mn 02s



---\\ Enumère les codes produits des logiciels (PUC) (O90)
O90 - PUC: "09F9DF712817A08856F9BAEEF5E32C5C" . (.AMD Catalyst Control Center.) -- C:\windows\Installer\{17FD9F90-7182-880A-659F-ABEE5F3EC2C5}\ARPPRODUCTICON.exe
O90 - PUC: "0D733601F72574B9DA4CBB35A44059A3" . (.Catalyst Control Center InstallProxy.) -- C:\windows\Installer\{106337D0-527F-9B47-ADC4-BB534A04953A}\ARPPRODUCTICON.exe
O90 - PUC: "2F0EC4949596403D617184B4B95B0F36" . (.Catalyst Control Center Localization All.) -- C:\windows\Installer\{494CE0F2-6959-D304-1617-484B9BB5F063}\ARPPRODUCTICON.exe
O90 - PUC: "446A37042C7D6DE4781B1ACB7D7F38C6" . (.Ma-Config.com (64 bits).) -- C:\windows\Installer\{4073A644-D7C2-4ED6-87B1-A1BCD7F7836C}\maconfico
O90 - PUC: "44B872D3C65EC95CFC2F6E1BEF13BCFF" . (.ccc-utility64.) -- C:\windows\Installer\{3D278B44-E56C-C59C-CFF2-E6B1FE31CBFF}\ARPPRODUCTICON.exe
O90 - PUC: "619E0F9578B790F488B858F0F370005B" . (.Catalyst Control Center - Branding.) -- C:\windows\Installer\{59F0E916-7B87-4F09-888B-850F3F0700B5}\ARPPRODUCTICON.exe
O90 - PUC: "65AB5B5FBEF8B494486E8CADC9B2EE05" . (.SW Update.) -- C:\windows\Installer\{F5B5BA56-8FEB-494B-84E6-C8DA9C2BEE50}\_853F67D554F05449430E7E.exe
O90 - PUC: "68AB67CA7DA76301B744BA0000000010" . (.Adobe Reader XI (11.0.04) - Français.) -- C:\windows\Installer\{AC76BA86-7AD7-1036-7B44-AB0000000001}\SC_Reader.ico
O90 - PUC: "6A36F5368CF910141B900096C8F6A319" . (.Logiciel de base du périphérique HP Deskjet 1050 J410 series.) -- C:\windows\Installer\{635F63A6-9FC8-4101-B109-00698C6F3A91}\ARP_Icon  =>.Hewlett-Packard Co
O90 - PUC: "7E251466B8C4E603074C7F78F1306930" . (.AMD Wireless Display v3.0.) -- C:\windows\Installer\{664152E7-4C8B-306E-70C4-F7871F039603}\ARPPRODUCTICON.exe
O90 - PUC: "83F7CF2DC61B063D5CDC612F7AF481CD" . (.AMD Accelerated Video Transcoding.) -- C:\windows\Installer\{D2FC7F38-B16C-D360-C5CD-16F2A74F18DC}\ARPPRODUCTICON.exe
O90 - PUC: "C149C95934AEED441FB8809467A61CA9" . (.AMD Catalyst Install Manager.) -- C:\windows\Installer\{959C941C-EA43-44DE-F18B-0849766AC19A}\ARPPRODUCTICON.exe
O90 - PUC: "E3A2D11ADE278090D652F1402E004BBE" . (.Catalyst Control Center Graphics Previews Common.) -- C:\windows\Installer\{A11D2A3E-72ED-0908-6D25-1F04E200B4EB}\ARPPRODUCTICON.exe
O90 - PUC: "F9A84C6AA49643243BAA2695B0669872" . (.Intel(R) Manageability Engine Firmware Recovery Agent.) -- C:\windows\Installer\{A6C48A9F-694A-4234-B3AA-62590B668927}\AppIcon
O90 - PUC: "FC8D09C5A21F6C140970B356A1F1D087" . (.HP Deskjet 1050 J410 series Aide.) -- C:\windows\Installer\{5C90D8CF-F12A-41C6-9007-3B651A1F0D78}\ARP_Icon
~ Update Products: 68 Scanned in 00mn 00s



---\\ Recherche des packages WindowsInstaller (WIS) (O93) (NTFS)
~ WIS: 69 Scanned in 00mn 03s



---\\ Etat général des services not Microsoft (EGS) (SR=Running, SS=Stopped)
SS - | Disabled 05/09/2013 65640 |  (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
SR - | Auto 05/09/2013 239616 |  (AMD External Events Utility) . (.AMD.) - C:\Windows\System32\atiesrxx.exe
SS - | Demand 05/06/2013 279024 |  (cphs) . (.Intel Corporation.) - C:\Windows\SysWow64\IntelCpHeciSvc.exe
SS - | Auto 09/09/2013 116648 |  (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 09/09/2013 116648 |  (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SR - | Auto 07/08/2013 15720 |  (IAStorDataMgrSvc) . (.Intel Corporation.) - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
SS - | Demand 24/04/2012 169752 |  (ICCS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
SR - | Auto 13/02/2013 731648 |  (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe
SS - | Demand 13/02/2013 820184 |  (Intel(R) Capability Licensing Service TCP IP Interface) . (.Intel(R) Corporation.) - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
SR - | Auto 08/05/2013 131544 |  (Intel(R) ME Service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
SR - | Auto 08/05/2013 169432 |  (jhi_service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
SR - | Auto 08/05/2013 368600 |  (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
SS - | Demand 08/09/2013 2654544 |  (MaConfigAgent) . (.CybelSoft.) - C:\Program Files\ma-config.com\MaConfigAgent.exe
SS - | Demand 11/09/2013 118680 |  (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
SR - | Auto 21/12/2012 2878152 |  (SWUpdateService) . (.Samsung Electronics CO., LTD..) - C:\Program Files (x86)\Samsung\SW Update\SWMAgent.exe
SS - | Demand 10/07/1658 0 |  (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe
SS - | Demand 20/09/2012 29696 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
~ Services:  Scanned in 00mn 05s



---\\ Recherche d'infection sur le Master Boot Record (MBR)(O80)
Run by cloclo at 21/09/2013 15:51:20
~ OS 64 not supported by MBR tool
~ MBR: 0 Scanned in 00mn 00s



---\\ Recherche d'infection sur le Master Boot Record (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by cloclo at 21/09/2013 15:51:22

********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin
~ MBR:  Scanned in 00mn 02s



---\\ Scan Additionnel (O88)
Database Version : 12924 - (21/09/2013)
Clés trouvées (Keys found) : 0
Valeurs trouvées (Values found) : 0
Dossiers trouvés  (Folders found) : 0
Fichiers trouvés  (Files found) : 3

C:\Windows\Prefetch\IMESHSETUP-R1483-W-BI.EXE-3F6592F1.pf   =>PUP.iMesh^
C:\Windows\Prefetch\IMESHSETUP-R1483-W-BI.EXE-753D83CA.pf   =>PUP.iMesh^
C:\Windows\Prefetch\IMESH.EXE-A8F333E4.pf   =>PUP.iMesh^
~ Additionnel Scan: 167030 Items scanned in 00mn 12s



---\\ Récapitulatif des détections trouvées sur votre station
~ http://nicolascoolman.webs.com/apps/blog/show/28441146-pup-imesh   =>PUP.iMesh
~ MSI: 1 link(s) detected in 00mn 12s



End of the scan (2399 lines in 03mn 32s)(0)