Rapport de ZHPDiag v1.3.5.145 par Nicolas Coolman, Update du 28/02/2013
Run by Deu at 02/03/2013 23:43:04
State : Version à jour.
High Elevated Privileges : OK
UAC : Activate by user


---\\ Web Browser
MSIE: Internet Explorer v9.0.8112.16421
MFIE: Mozilla Firefox 19.0 v19.0 (Defaut)
GCIE: Google Chrome v25.0.1364.97
OBIE: Wacom WebTabletPlugin for Internet Explorer and Netscape v2.0.0.1
OBIE: Wacom WebTabletPlugin for Netscape v1.1.0.10

---\\ Windows Product Information
~ Langage: Français
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)
Windows Server License Manager Script : OK
~ Windows(R) 7, RETAIL channel
Windows ID Activation : OK
~ Windows Partial Key : V6MKC
Windows License : OK
~ Windows Remaining Initializations Number : 4
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ System Information
~ Processor: Intel64 Family 6 Model 23 Stepping 10, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 4094 MB (52% free)
System Restore: Activé (Enable)
System drive C: has 139 GB (19%) free of 698 GB

---\\ Logged in mode
~ Computer Name: TITI-PC
~ User Name: Deu
~ All Users Names: Thierry, Laura, Jeanett, HomeGroupUser$, Deu, Adriana, Administrateur, 
~ Unselected Option: None
Logged in as Administrator

---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\Deu\AppData\Roaming\
~ %Desktop% : C:\Users\Deu\Desktop\
~ %Favorites% : C:\Users\Deu\Favorites\
~ %LocalAppData% : C:\Users\Deu\AppData\Local\
~ %StartMenu% : C:\Users\Deu\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ DOS/Devices
A:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
C:\ Hard drive, Flash drive, Thumb drive (Free 139 Go of 698 Go)
D:\ CD-ROM drive (Free 0 Go of 4 Go)



---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime :  OK
~ Scan Security Center in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.25/02/2011 - 07:19:30.) -- C:\Windows\Explorer.exe [2871808]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\System32\Wininit.exe [129024]
[MD5.435E9C764E1EF70058580996452BE6A2] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.09/01/2013 - 02:12:03.) -- C:\Windows\System32\wininet.dll [1392128]
[MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.20/11/2010 - 14:25:30.) -- C:\Windows\System32\Winlogon.exe [390656]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) (.20/11/2010 - 14:27:26.) -- C:\Windows\System32\sppcomapi.dll [232448]
[MD5.1C7857B62DE5994A75B054A9FD4C3825] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.28/12/2011 - 04:59:24.) -- C:\Windows\system32\Drivers\AFD.sys [498688]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.20/11/2010 - 10:19:21.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.20/11/2010 - 10:26:32.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.20/11/2010 - 11:43:43.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.27/04/2011 - 03:40:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [158208]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.20/11/2010 - 10:23:20.) -- C:\Windows\system32\Drivers\netBT.sys [261632]
[MD5.E453ACF4E7D44E5530B5D5F2B9CA8563] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.31/08/2012 - 19:19:35.) -- C:\Windows\system32\Drivers\ntfs.sys [1659760]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.20/11/2010 - 11:52:35.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.20/11/2010 - 10:21:56.) -- C:\Windows\system32\Drivers\tdx.sys [119296]
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.20/11/2010 - 14:34:02.) -- C:\Windows\system32\Drivers\volsnap.sys [295808]
~ Scan Generic Processes in 00mn 00s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes musiques (My Musics) : 1/2
~ Mes Favoris (My Favorites) : 1/31
~ Mes Documents (My Documents) : 1/5
~ Mon Bureau (My Desktop) : 1/7
~ Menu demarrer (Programs) : 1/25
~ Scan Hidden Files in 00mn 00s



---\\ Processus lancés
[MD5.7853D2AB445C10F97610B2B05FA4CF0A] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe   [512360] [PID.6560]
[MD5.9A8568C7642B79F43DCEB0BDF9F49050] - (.Druide informatique inc. - Gestionnaire Antidote.) -- C:\Program Files (x86)\Druide\Antidote\Gestionnaire Antidote.exe   [542136] [PID.5608]
[MD5.ECF45E3FC8C63E44ED45D38A8672E7F1] - (.Hewlett-Packard Co. - HP Digital Imaging Monitor.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe   [275768] [PID.4060]
[MD5.A041821F04B20FAF4CFA0F1672C285C5] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe   [4767304] [PID.4112]
[MD5.38EDAFB8F705F30DC6596024C1B88A40] - (.SMART Technologies - SMART Board Service.) -- C:\Program Files (x86)\SMART Technologies\Education Software\SMARTBoardService.exe   [2219416] [PID.3200]
[MD5.D3B8125190295C08028FEE6295E3EEE1] - (.SMART Technologies ULC - SMART Board Tools.) -- C:\Program Files (x86)\SMART Technologies\Education Software\SMARTBoardTools.exe   [10132336] [PID.6720]
[MD5.E538EF5F87D35F344A1AC6A609093AA0] - (.SMART Technologies - SMARTInk.) -- C:\Program Files (x86)\SMART Technologies\Education Software\SMARTInk.exe   [98200] [PID.4888]
[MD5.02A1459E1958232C19C2F6EB82B5AAA7] - (.Pas de propriétaire - BambooDock back-end application.) -- C:\Program Files (x86)\Bamboo Dock\BambooCore.exe   [646232] [PID.4992]
[MD5.82B0EEBD0F1DB72132B4793DC689D576] - (.Joyent, Inc - Evented I/O for V8 JavaScript.) -- C:\Program Files (x86)\SMART Technologies\Education Software\sbsdk-server\SBWDKService.exe   [5282200] [PID.5576]
[MD5.EC52999D0D2E374981C0D033748AF2A6] - (.SMART Technologies - SMARTInk-SBSDKProxy.) -- C:\Program Files (x86)\SMART Technologies\Education Software\Office\SMARTInk-SBSDKProxy.exe   [32152] [PID.5360]
[MD5.D0D99257DDDCDDBE998AF7CA14E85BD0] - (.Hewlett-Packard Co. - HP CUE Status Root.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe   [168960] [PID.2192]
[MD5.CFA72CFBEF5C4A812CE09F97C8536858] - (.SMART Technologies - SMARTInkPrivilegedAccess.) -- C:\Program Files (x86)\SMART Technologies\Education Software\SMARTInkPrivilegedAccess.exe   [126872] [PID.4844]
[MD5.2DC64A3446C8C6E020E781456B46573D] - (.Microsoft Corporation - Tablet PC Input Panel Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe   [10240] [PID.4756]
[MD5.B57DB3640DF3480E5C001AF15CC42C03] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe   [5715968] [PID.5904]
[MD5.AEF6E1DE647339C4990586D1DE427BBB] - (.AVAST Software - avast! Service.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe   [45248] [PID.1468]
[MD5.3927397AC60D943DAF8808AFFED582B7] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe   [65192] [PID.1772]
[MD5.1ACAA67676E9E7BDA5E0C41B6E0DECAF] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe   [398184] [PID.472]
[MD5.916B8954AC3E06DC9E898AFFB41F3FB6] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe   [682344] [PID.2232]
[MD5.388AE59FE75F1B959DFA0900923C61BB] - (.Skype Technologies S.A. - Skype C2C Service.) -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe   [3064000] [PID.2384]
[MD5.1DE1D0212E626BB97F422A76EB6F9918] - (.SMART Technologies - SMART Helper Service For Windows.) -- C:\Program Files (x86)\SMART Technologies\Education Software\SMARTHelperService.exe   [582552] [PID.2460]
[MD5.9843F58DF3E2908D1FED4DF4B8747E51] - (.Hewlett-Packard Co. - HP CUE Alert Popup Window Objects.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe   [559104] [PID.6836]
[MD5.883008A9B5BFF94A153D99DBA54CB5C1] - (.Hewlett-Packard - GPCore COM object.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe   [362496] [PID.6516]
~ Scan Processes Running in 00mn 00s



---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Preferences
G1 - GCS: Preference [User Data\Default] None
~ Scan Google Browser in 00mn 00s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions  (P2,M0,M1,M2,M3)
C:\Users\Deu\AppData\Roaming\Mozilla\Firefox\Profiles\zmfhc89t.default\prefs.js
M3 - MFPP: Plugins - [Deu] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\amazon-france.xml
M3 - MFPP: Plugins - [Deu] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\bing.xml
M3 - MFPP: Plugins - [Deu] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml
M3 - MFPP: Plugins - [Deu] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\eBay-france.xml
M3 - MFPP: Plugins - [Deu] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\google.xml
M3 - MFPP: Plugins - [Deu] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\wikipedia-fr.xml
M3 - MFPP: Plugins - [Deu] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\yahoo-france.xml
M0 - MFSP: prefs.js [Deu - zmfhc89t.default] www.google.fr
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - np-mswmp.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\np-mswmp.dll
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - Office Plugin for Netscape Navigator.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\NPOFF12.DLL
P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 10.1.6.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nppdf32.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF64_11_6_602_171.dll
P2 - FPN: [HKLM] [@ma-config.com/HardwareDetection] - (.Cybelsoft - Plugin NPAPI Ma-Config.com # win64 # 5.2.2.0.) -- C:\Program Files\ma-config.com\x64\nphardwaredetection.dll
P2 - FPN: [HKLM] [@microsoft.com/GENUINE] - (.Microsoft Corporation - Windows Activation Technologies Plugin for Mozilla.) -- C:\Windows\system32\Wat\npWatWeb.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.10411.0.) -- c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll
~ Scan Firefox Browser in 00mn 00s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (9.00.8112.16421 (WIN7_IE9_RTM.110308-0330)) -- C:\Windows\SysWOW64\ieframe.dll
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
~ Scan IE Browser in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Scan Proxy management in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Scan Keys in 00mn 00s



---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Scan Hosts File in 00mn 00s
~ Nombre de lignes (Lines number): 21



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: HP Print Enhancer [64Bits] - {0347C33E-8762-4905-BF09-768834316C61} . (.Hewlett-Packard Co. - HP Smart Web Printing add-on for Internet E.) -- C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: AcroIEHelperStub [64Bits] - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: SMART Notebook Download Utility [64Bits] - {67BCF957-85FC-4036-8DC4-D4D80E00A77B} . (.SMART Technologies ULC. - Notebook Download Plugin.) -- C:\Program Files (x86)\SMART Technologies\Education Software\Win32\NotebookPlugin.dll
O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll
O2 - BHO: avast! WebRep [64Bits] - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - avast! WebRep Plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper [64Bits] - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} . (.Microsoft Corporation - Windows Live Messenger Companion Core.) -- C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O2 - BHO: SkypeIEPluginBHO [64Bits] - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} . (.Skype Technologies S.A. - Skype Click to Call for Internet Explorer.) -- C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll
O2 - BHO: HP Smart BHO Class [64Bits] - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} . (.Hewlett-Packard Co. - HP Smart Web Printing add-on for Internet E.) -- C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
~ Scan BHO in 00mn 00s



---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: (no name) [64Bits] - [HKLM]{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} Clé orpheline
~ Scan Toolbar in 00mn 00s



---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Wow6432Node\Run: [avast] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastUI.exe 
O4 - HKLM\..\Wow6432Node\Run: [SMART Board Service] . (.SMART Technologies - SMART Board Service.) -- C:\Program Files (x86)\SMART Technologies\Education Software\SMARTBoardService.exe 
O4 - HKLM\..\Wow6432Node\Run: [SMART Board Tools] . (.SMART Technologies ULC - SMART Board Tools.) -- C:\Program Files (x86)\SMART Technologies\Education Software\SMARTBoardTools.exe 
O4 - HKLM\..\Wow6432Node\Run: [SMART Ink] . (.SMART Technologies - SMARTInk.) -- C:\Program Files (x86)\SMART Technologies\Education Software\SMARTInk.exe 
O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe 
O4 - HKLM\..\Wow6432Node\Run: [BambooCore] . (.Pas de propriétaire - BambooDock back-end application.) -- C:\Program Files (x86)\Bamboo Dock\BambooCore.exe 
O4 - HKLM\..\Wow6432Node\Run: [sbsdk-server] . (.SMART Technologies - Node Launcher.) -- C:\Program Files (x86)\SMART Technologies\Education Software\sbsdk-server\NodeLauncher.exe 
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe 
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe 
O4 - HKUS\S-1-5-21-2914263168-274741686-3412035744-1010-2914263168-274741686-3412035744-1005\..\Run: [Gestionnaire Antidote.exe] Clé orpheline 
O4 - HKUS\S-1-5-21-2914263168-274741686-3412035744-1010-2914263168-274741686-3412035744-1005\..\Run: [KSS] Clé orpheline 
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe 
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe 
~ Scan Application in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - GS\TaskBar: Internet Explorer.lnk . (.Microsoft Corporation.)  -- C:\Program Files (x86)\Internet Explorer\iexplore.exe 
O4 - GS\TaskBar: Mozilla Firefox.lnk . (.Mozilla Corporation.)  -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe 
O4 - GS\TaskBar: Windows Explorer.lnk . (.Microsoft Corporation.)  -- C:\Windows\explorer.exe 
O4 - GS\TaskBar: Windows Media Player.lnk . (.Microsoft Corporation.)  -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe 
O4 - GS\Programs: Internet Explorer (64-bit).lnk . (.Microsoft Corporation.)  -- C:\Program Files (x86)\Internet Explorer\iexplore.exe 
O4 - GS\Programs: Internet Explorer.lnk . (.Microsoft Corporation.)  -- C:\Program Files (x86)\Internet Explorer\iexplore.exe 
O4 - GS\QuickLaunch: Easy Audio Cutter.lnk . (.Koyote Soft.)  -- C:\Program Files (x86)\Free Audio Pack\Easy Audio Cutter\AudioCutter.exe 
O4 - GS\QuickLaunch: Free CD Ripper.lnk . (.Koyote Soft.)  -- C:\Program Files (x86)\Free Audio Pack\Free CD Ripper\FreeCDRipper.exe 
O4 - GS\QuickLaunch: Free Mp3 Wma Converter.lnk . (.Koyote Soft.)  -- C:\Program Files (x86)\Free Audio Pack\FreeConverter\FreeConverter.exe 
O4 - GS\QuickLaunch: Google Chrome.lnk . (.Google Inc..)  -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe 
O4 - GS\QuickLaunch: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.)  -- C:\Program Files (x86)\Internet Explorer\iexplore.exe 
O4 - GS\QuickLaunch: Memoir'44 Online.lnk . (.Days of Wonder.)  -- C:\Program Files (x86)\Memoir'44 Online\Memoir'44 Online.exe 
O4 - GS\QuickLaunch: Microsoft Office Outlook.lnk . (.Microsoft Corporation.)  -- C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.exe 
O4 - GS\Accessories: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation.)  -- C:\Program Files (x86)\Internet Explorer\iexplore.exe 
O4 - GS\Accessories: Private Character Editor.lnk . (.Microsoft Corporation.)  -- C:\Windows\system32\eudcedit.exe 
O4 - GS\Desktop: chrome.exe.lnk . (...)  -- C:\Users\Deu\Videos\chrome-win32\chrome-win32\chrome.exe (.not file.)
O4 - GS\Desktop: Drakensang Online.lnk . (...)  -- C:\Program Files (x86)\Drakensang Online\thinclient.exe
O4 - GS\Desktop: Panneau de configuration - Raccourci.lnk - Clé orpheline
O4 - GS\TaskBar: Google Chrome.lnk . (.Google Inc..)  -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe 
O4 - GS\Desktop: 'Folding@Home'.lnk - Clé orpheline
O4 - GS\Desktop: Base-Etiquettes.lnk . (.ZeKi Productions.)  -- C:\Program Files\Base-Etiquettes\Base-Etiquettes.exe 
O4 - Global Startup: C:\Users\Laura\Desktop\Cake Mania - Lights Camera Action.lnk 2.exe . (.Oberon Media Inc..)  -- C:\Users\Laura\Desktop\Cake Mania - Lights Camera Action.lnk 2.exe
O4 - GS\Desktop: Cake Mania - Lights, Camera, Action!(TM).lnk . (...)  -- C:\Games\Cake Mania - Lights, Camera, Action!(TM)\CakeMania5.exe (.not file.)
O4 - GS\Desktop: Google Chrome.lnk . (.Google Inc..)  -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe 
O4 - GS\Desktop: Internet Explorer.lnk . (.Microsoft Corporation.)  -- C:\Program Files (x86)\Internet Explorer\iexplore.exe 
O4 - GS\Desktop: PhotoFiltre.lnk . (.Antonio Da Cruz.)  -- C:\Program Files (x86)\PhotoFiltre\PhotoFiltre.exe 
O4 - GS\Desktop: Base-Etiquettes.lnk . (...)  -- C:\Program Files (x86)\Base-Etiquettes\Base-Etiquettes.exe (.not file.)
O4 - GS\Desktop: Gimp Pack Mode.lnk . (...)  -- C:\Program Files (x86)\Gimp Pack Mode\bin\gimp-2.6.exe
O4 - GS\Desktop: Microsoft Office Outlook 2007.lnk . (...)  -- C:\Windows\Installer\{91120000-0014-0000-0000-0000000FF1CE}\outicon.exe
O4 - GS\Desktop: Plus de jeux sur Yahoo!.lnk - Clé orpheline
O4 - GS\QuickLaunch: DRM Converter.lnk . (.Sound.)  -- C:\Program Files (x86)\DRM Converter\DrmConverter.exe 
O4 - GS\QuickLaunch: Easy Audio Cutter.lnk . (.Koyote Soft.)  -- C:\Program Files (x86)\Free mp3 Wma Converter\Easy Audio Cutter\AudioCutter.exe 
O4 - GS\QuickLaunch: Free CD Ripper.lnk . (.Koyote Soft.)  -- C:\Program Files (x86)\Free mp3 Wma Converter\Free CD Ripper\FreeCDRipper.exe 
O4 - GS\QuickLaunch: Free Mp3 Wma Converter.lnk . (.Koyote Soft.)  -- C:\Program Files (x86)\Free mp3 Wma Converter\FreeConverter\FreeConverter.exe 
O4 - GS\Desktop: Audials 10.lnk . (.Audials AG.)  -- C:\Program Files (x86)\Audials\Audials 10\AudialsStarter.exe 
O4 - GS\Desktop: Easy Audio Cutter.lnk . (.Koyote Soft.)  -- C:\Program Files (x86)\Free mp3 Wma Converter\Easy Audio Cutter\AudioCutter.exe 
O4 - GS\Desktop: Free Mp3 Wma Converter.lnk . (.Koyote Soft.)  -- C:\Program Files (x86)\Free mp3 Wma Converter\FreeConverter\FreeConverter.exe 
~ Scan Global Startup in 00mn 00s



---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ Scan IE Control Panel in 00mn 00s



---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: Skype Click to Call [64Bits] - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} . (...) -- c:\program files (x86)\skype\toolbars\internet explorer x64\icon.ico
~ Scan IE Extra Buttons in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files (x86)\Bonjour\mdnsNSP.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll
O10 - WLSP:\000000000009\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll
~ Scan Winsock in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{E584D185-B45A-4FC9-BF27-C9D899146E32}: DhcpNameServer = 192.168.0.254
O17 - HKLM\System\CS1\Services\Tcpip\..\{E584D185-B45A-4FC9-BF27-C9D899146E32}: DhcpNameServer = 192.168.0.254
O17 - HKLM\System\CS2\Services\Tcpip\..\{E584D185-B45A-4FC9-BF27-C9D899146E32}: DhcpNameServer = 192.168.0.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.254
~ Scan Domain in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (...) -- 
O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.dll
~ Scan Protocole Additionnel in 00mn 00s



---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ Scan SSODL in 00mn 00s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service:  (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\System32\atiesrxx.exe
O23 - Service: avast! Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Dragon Age: Origins - Application de mis (DAUpdaterSvc) . (.BioWare - DAUpdaterSvc.Service.) - C:\Program Files (x86)\Dragon Age\bin_ship\DAUpdaterSvc.Service.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service:  (MBAMScheduler) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service:  (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Skype C2C Service (Skype C2C Service) . (.Skype Technologies S.A. - Skype C2C Service.) - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: SMART Helper Service (SMARTHelperService) . (.SMART Technologies - SMART Helper Service For Windows.) - C:\Program Files (x86)\SMART Technologies\Education Software\SMARTHelperService.exe
O23 - Service: TabletServicePen (TabletServicePen) . (.Wacom Technology, Corp. - Tablet Service for consumer driver.) - C:\Program Files\Tablet\Pen\Pen_Tablet.exe
O23 - Service: Wacom Consumer Touch Service (TouchServicePen) . (.Wacom Technology, Corp. - Touch Service.) - C:\Program Files\Tablet\Pen\Pen_TouchService.exe
O23 - Service:  (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
~ Scan Services in 00mn 07s



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) -  (.not file.)
~ Scan Desktop Component in 00mn 00s



---\\ BootExecute (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (sdnclean64.exe) - File not found
~ Scan Keys in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\Adobe Flash Player Updater.job
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[MD5.9942DC4CC265CDA00486504444EF521D] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
[MD5.5447AF432CDA61159ADDE218C468FFD9] [APT] [AdobeAAMUpdater-1.0-Titi-PC-Laura] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
[MD5.5447AF432CDA61159ADDE218C468FFD9] [APT] [AdobeAAMUpdater-1.0-Titi-PC-Thierry] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
[MD5.74C470D8FA1FB9C025ECBF7964FD1A59] [APT] [avast! Emergency Update] (.AVAST Software.) -- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
[MD5.9CE3B11704038F711481ACD6BD9A9A5A] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
[MD5.12916E0642E92561C98B18A2A2D01B14] [APT] [Java Update Scheduler] (.Sun Microsystems, Inc..) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
[MD5.3CB07566302BCEEB898DE270A0BEC175] [APT] [Programme de mise … jour en ligne de Adobe] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
[MD5.21293443961A4E2597453EE7A9347F22] [APT] [Programme de mise … jour en ligne de HP.] (.Hewlett-Packard.) -- C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
[MD5.00000000000000000000000000000000] [APT] [RunAsStdUser Task] (...) -- C:\Program Files (x86)\iWin Games\iWinGames.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{14B4646D-2CE4-4B97-BA80-443AB08854BC}] (...) -- C:\Users\Deu\Desktop\WCIS_PCDrv_US_1_01_02_0729.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{274E07CC-3FD6-4464-A20D-4BC6FBC57A8A}] (...) -- C:\Program Files (x86)\ZebHelpProcess\ZHPHep.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{66A45CA6-9C97-4D30-B0FA-02522A14A574}] (...) -- C:\Users\Deu\Desktop\IVT.BlueSoleil.v6.4.249.0.Incl.Keymaker-EMBRACE\IVT.BlueSoleil.v6.4.249.0.Incl.Keymaker-EMBRACE\install\setup.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{98EAA0BD-177E-4899-8999-063F6039619A}] (...) -- C:\Users\Deu\Downloads\LCCM_0530_PCDRV_LA_1_02_02.exe (.not file.)
[MD5.497F27E279C0F921E2130BB89C1CB5CA] [APT] [{AC18C920-D866-4356-9DD7-E5B8999A1AAB}] (.Skype Technologies S.A..) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
[MD5.00000000000000000000000000000000] [APT] [{C94516EC-9805-40BF-83DB-76E17526662D}] (...) -- c:\users\Deu\appdata\local\lollipop\lolipop.bat (.not file.)
[MD5.BCFBF8244EFB0ADC7C68F551A821B577] [APT] [{D4C9E462-7CE1-4A1E-B466-233011E51CBA}] (.@why de whynot.) -- C:\Program Files\Conquist\Data\Unist.exe
[MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe
~ Scan Scheduled Task in 00mn 01s



---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Internet Explorer [64Bits] - >{26923b43-4d38-484f-9b9e-de460746276c} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
~ Scan Active Setup in 00mn 00s



---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver:  (aswRdr) . (.AVAST Software - avast! WFP Redirect Driver.) - C:\Windows\system32\Drivers\aswrdr2.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\System32\DRIVERS\blbdrive.sys
O41 - Driver:  (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys
O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver:  (ElbyCDIO) . (.Elaborate Bytes AG - ElbyCD Windows x64 I/O driver.) - C:\Windows\System32\Drivers\ElbyCDIO.sys
O41 - Driver:  (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver:  (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\System32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\System32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver:  (Serial) . (.Microsoft Corporation - Pilote de périphérique série.) - C:\Windows\System32\DRIVERS\serial.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver:  (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver:  (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys
~ Scan Drivers in 00mn 00s



---\\ Logiciels installés (O42)
O42 - Logiciel: 64 Bit HP CIO Components Installer - (.Hewlett-Packard.) [HKLM][64Bits] -- {55D55008-E5F6-47D6-B16F-B2A40D4D145F}
O42 - Logiciel: 7-Zip 9.20 - (.Pas de propriétaire.) [HKLM][64Bits] -- 7-Zip
O42 - Logiciel: AMD APP SDK Runtime - (.Advanced Micro Devices Inc..) [HKLM][64Bits] -- {503F672D-6C84-448A-8F8F-4BC35AC83441}
O42 - Logiciel: AMD Accelerated Video Transcoding - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {119B2F5A-2A06-DB96-FF28-992EC2A10BDF}
O42 - Logiciel: AMD Catalyst Install Manager - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {5831C6D6-309D-DBB5-14F7-FEE57086CEE7}
O42 - Logiciel: AMD Drag and Drop Transcoding - (.ATI Technologies Inc..) [HKLM][64Bits] -- {495ADF2E-6DDD-7C45-E02A-F9B4AF6F2175}
O42 - Logiciel: AMD Media Foundation Decoders - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {63CE6C32-1EB3-4C51-89FC-9FD96A661A9C}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {5AF4B3C4-C393-48D7-AC7E-8E7615579548}
O42 - Logiciel: Adobe Community Help - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
O42 - Logiciel: Adobe Community Help - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7}
O42 - Logiciel: Adobe Flash Player 11 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 11 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Reader X (10.1.6) - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AA1000000001}
O42 - Logiciel: Adobe Shockwave Player 11.6 - (.Adobe Systems, Inc..) [HKLM][64Bits] -- Adobe Shockwave Player
O42 - Logiciel: Advertising Center - (.Nero AG.) [HKLM][64Bits] -- {B2EC4A38-B545-4A00-8214-13FE0E915E6D}
O42 - Logiciel: Age of Conan : Hyborian Adventures - (.Funcom.) [HKLM][64Bits] -- Age of Conan_is1
O42 - Logiciel: Antidote RX v6 - (.Druide informatique inc..) [HKLM][64Bits] -- {A474EA56-5DBD-4181-8230-806A4762EA7F}
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM][64Bits] -- {B2D328BE-45AD-4D92-96F9-2151490A203E}
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM][64Bits] -- {328CC232-CFDC-468B-A214-2E21300E4CB5}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}
O42 - Logiciel: Audacity 1.3.14 (Unicode) - (.Audacity Team.) [HKLM][64Bits] -- Audacity 1.3 Beta (Unicode)_is1
O42 - Logiciel: Audacity 2.0.2 - (.Audacity Team.) [HKLM][64Bits] -- Audacity_is1
O42 - Logiciel: Bamboo - (.Wacom Technology Corp..) [HKLM][64Bits] -- Pen Tablet Driver
O42 - Logiciel: Bamboo Dock - (.Wacom Co., Ltd..) [HKLM][64Bits] -- Bamboo Dock
O42 - Logiciel: Bamboo Dock - (.Wacom Europe GmbH.) [HKLM][64Bits] -- wacomid-desktop-launcher.DCFD4B89A63EE70BC162777F06D4B93B6397AEC7.1
O42 - Logiciel: Bamboo Dock - (.Wacom Europe GmbH.) [HKLM][64Bits] -- {3AF8C37F-696E-871C-0851-CDE980FD665E}
O42 - Logiciel: Barbie Video Girl Driver - (.Mattel.) [HKLM][64Bits] -- {9E615F8B-F0E7-4BA6-87B1-718F4F004731}
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {B91110FB-33B4-468B-90C2-4D5E8AE3FAE1}
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner
O42 - Logiciel: CDBurnerXP - (.CDBurnerXP.) [HKLM][64Bits] -- {7E265513-8CDA-4631-B696-F40D983F3B07}_is1
O42 - Logiciel: Catalyst Control Center - Branding - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {03D4C700-2BFE-43E0-A0B4-9512B43C5B9F}
O42 - Logiciel: CloneCD - (.SlySoft.) [HKLM][64Bits] -- CloneCD
O42 - Logiciel: Complément Messenger - (.Microsoft Corporation.) [HKLM][64Bits] -- {6E5324C1-84FC-4F76-9A3A-C65E07F80EE6}
O42 - Logiciel: Conquist - (.Pas de propriétaire.) [HKLM][64Bits] -- Conquist
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: DRM Converter 4.4.1 - (.cyan soft ltd.) [HKLM][64Bits] -- DRM Converter_is1
O42 - Logiciel: Dawn of War - Dark Crusade - (.THQ.) [HKLM][64Bits] -- {FF39FC01-819B-42E4-AE49-1968AF12DDD4}
O42 - Logiciel: Dawn of War - Soulstorm - (.THQ.) [HKLM][64Bits] -- {20533183-D42D-4261-A125-956736FBEA8C}
O42 - Logiciel: DeviceManager - (.eInstruction.) [HKLM][64Bits] -- DeviceManager
O42 - Logiciel: Dragon Age II - (.Electronic Arts, Inc..) [HKLM][64Bits] -- {F2E23139-3404-4E3C-9855-7724415D62A5}
O42 - Logiciel: Dragon Age: Origins - (.Electronic Arts, Inc..) [HKLM][64Bits] -- {AEC81925-9C76-4707-84A9-40696C613ED3}
O42 - Logiciel: Drakensang Online - (.Pas de propriétaire.) [HKLM][64Bits] -- Drakensang Online
O42 - Logiciel: EA Shared Game Component: Activation - (.Electronic Arts.) [HKLM][64Bits] -- com.ea.Activation.919CACB699904AC5D41B606703500DD39747C02D.1
O42 - Logiciel: EA Shared Game Component: Activation - (.Electronic Arts.) [HKLM][64Bits] -- {D08A5DFE-F0C2-74FC-DD56-A3B371E9344D}
O42 - Logiciel: Fable - The Lost Chapters - (.Microsoft Game Studios.) [HKLM][64Bits] -- InstallShield_{C3C9EB3D-24FA-4462-B784-0EC6AAFCD2DD}
O42 - Logiciel: Fallout 3 - (.Bethesda Softworks.) [HKLM][64Bits] -- {974C4B12-4D02-4879-85E0-61C95CC63E9E}
O42 - Logiciel: FileZilla Client 3.3.4.1 - (.Pas de propriétaire.) [HKLM][64Bits] -- FileZilla Client
O42 - Logiciel: Free Mp3 Wma Converter V 2.2 - (.Koyote Soft.) [HKLM][64Bits] -- Free Mp3 Wma Converter_is1
O42 - Logiciel: GIMP 2.6.11 - (.The GIMP Team.) [HKLM][64Bits] -- WinGimp-2.0_is1
O42 - Logiciel: Gimp Pack Mode 2.6.2 - (.Association Mode.) [HKLM][64Bits] -- Gimp Pack Mode_is1
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Graines de Génie Cm1 - (.Mindscape.) [HKLM][64Bits] -- {A5C5A5B8-5E85-4FCF-822F-8EC770E9CE1D}
O42 - Logiciel: HP Customer Participation Program 13.0 - (.HP.) [HKLM][64Bits] -- HPExtendedCapabilities
O42 - Logiciel: HP Imaging Device Functions 13.0 - (.HP.) [HKLM][64Bits] -- HP Imaging Device Functions
O42 - Logiciel: HP Photosmart C4600 All-In-One Driver Software 13.0 Rel .5 - (.HP.) [HKLM][64Bits] -- {44C81D1A-0520-49BB-B510-98B8DD414EA1}
O42 - Logiciel: HP Print Projects 1.0 - (.HP.) [HKLM][64Bits] -- HP Print Projects
O42 - Logiciel: HP Smart Web Printing 4.5 - (.HP.) [HKLM][64Bits] -- HP Smart Web Printing
O42 - Logiciel: HP Solution Center 13.0 - (.HP.) [HKLM][64Bits] -- HP Solution Center & Imaging Support Tools
O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM][64Bits] -- {7059BDA7-E1DB-442C-B7A1-6144596720A4}
O42 - Logiciel: Hercules Classic Link - (.Hercules.) [HKLM][64Bits] -- {B1549CC1-EB81-4E7C-9C7C-8B97CD9FD37A}
O42 - Logiciel: Internet Explorer (Enable DEP) - (.Pas de propriétaire.) [HKLM][64Bits] -- {a9264802-8a7a-40fe-a135-5c6d204aed7a}.sdb
O42 - Logiciel: Interwrite Workspace Content - (.eInstruction.) [HKLM][64Bits] -- {81BAF04C-52D6-44ED-A516-DA12E97886FB}
O42 - Logiciel: Interwrite Workspace Language Packs - (.Nom de votre société.) [HKLM][64Bits] -- {30406163-5B22-4C6D-9EAD-236EDA4E04A1}
O42 - Logiciel: Java 7 Update 15 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83217015FF}
O42 - Logiciel: Java(TM) 6 Update 22 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83216022F0}
O42 - Logiciel: Java(TM) 6 Update 39 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83216039FF}
O42 - Logiciel: JavaFX 2.1.1 - (.Oracle Corporation.) [HKLM][64Bits] -- {1111706F-666A-4037-7777-211328764D10}
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}
O42 - Logiciel: LAME v3.98.3 for Audacity - (.Pas de propriétaire.) [HKLM][64Bits] -- LAME for Audacity_is1
O42 - Logiciel: Le Seigneur des Anneaux Online v03.02.04.8010 - (.Codemasters.) [HKLM][64Bits] -- 4f6dcc3b-179d-4b1b-80f0-b6083a0b3ce6_is1
O42 - Logiciel: Les Sims™ 3 - (.Electronic Arts.) [HKLM][64Bits] -- {C05D8CDB-417D-4335-A38C-A0659EDFD6B8}
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: Ma-Config.com (64 bits) - (.Cybelsoft.) [HKLM][64Bits] -- {812489B5-A2A9-474B-9BE7-55410E0E1DB4}
O42 - Logiciel: Malwarebytes Anti-Malware version 1.70.0.1100 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: Mass Effect - (.Metaboli.) [HKLM][64Bits] -- Mass Effect_is1
O42 - Logiciel: Mass Effect 2 - (.Electronic Arts.) [HKLM][64Bits] -- {75D84EF7-0D8C-4E70-B3FA-7B42A5D4E0EB}
O42 - Logiciel: Memoir'44 Online 1.2.0 - (.Days of Wonder.) [HKLM][64Bits] -- 3939-6471-8727-9409
O42 - Logiciel: Mesh Runtime - (.Microsoft Corporation.) [HKLM][64Bits] -- {8C6D6116-B724-4810-8F2D-D047E6B7D68E}
O42 - Logiciel: Microsoft Antimalware Service FR-FR Language Pack - (.Microsoft Corporation.) [HKLM][64Bits] -- {32E9C1A5-0FDA-4483-987D-DBABF9CC1DD8}
O42 - Logiciel: Microsoft Games for Windows - LIVE Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {F2508213-9989-4E85-A078-72BE483917EF}
O42 - Logiciel: Microsoft Games for Windows Marketplace - (.Microsoft Corporation.) [HKLM][64Bits] -- {4CB0307C-565E-4441-86BE-0DF2E4FB828C}
O42 - Logiciel: Microsoft Security Client FR-FR Language Pack - (.Microsoft Corporation.) [HKLM][64Bits] -- {DC911ADF-7B60-40F2-A112-FB1EB6402D07}
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Microsoft WSE 3.0 Runtime - (.Microsoft Corp..) [HKLM][64Bits] -- {E3E71D07-CD27-46CB-8448-16D4FB29AA13}
O42 - Logiciel: Mozilla Firefox 19.0 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 19.0 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService
O42 - Logiciel: Multiplication - (.IAMANYS.) [HKLM][64Bits] -- {09D2C433-2866-4F06-BAC5-14DD0DF9791A}_is1
O42 - Logiciel: MyScript Notes 3 1.1 - (.Vision Objects.) [HKLM][64Bits] -- MyScript Studio 1.1_is1
O42 - Logiciel: MyScript Studio en_US pack 1.1 - (.Vision Objects.) [HKLM][64Bits] -- MyScript Studio en_US pack 1.1_is1
O42 - Logiciel: MyScript Studio es_ES pack 1.1 - (.Vision Objects.) [HKLM][64Bits] -- MyScript Studio es_ES pack 1.1_is1
O42 - Logiciel: MyScript Studio es_MX pack 1.1 - (.Vision Objects.) [HKLM][64Bits] -- MyScript Studio es_MX pack 1.1_is1
O42 - Logiciel: MyScript Studio fr_FR pack 1.1 - (.Vision Objects.) [HKLM][64Bits] -- MyScript Studio fr_FR pack 1.1_is1
O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM][64Bits] -- {C5C1C0F0-D62F-4DBF-81D4-D7EF397C228B}
O42 - Logiciel: Nero 9 Lite - (.Nero AG.) [HKLM][64Bits] -- {a92dd923-dbbc-4f5b-acb2-0c89a79efb20}
O42 - Logiciel: Nero ControlCenter - (.Nero AG.) [HKLM][64Bits] -- {BD5CA0DA-71AD-43DA-B19E-6EEE0C9ADC9A}
O42 - Logiciel: Nero Installer - (.Nero AG.) [HKLM][64Bits] -- {E8A80433-302B-4FF1-815D-FCC8EAC482FF}
O42 - Logiciel: Nero Online Upgrade - (.Nero AG.) [HKLM][64Bits] -- {C81A2FE0-3574-00A9-CED4-BDAA334CBE8E}
O42 - Logiciel: Nero StartSmart - (.Nero AG.) [HKLM][64Bits] -- {7748AC8C-18E3-43BB-959B-088FAEA16FB2}
O42 - Logiciel: OpenOffice.org 3.3 - (.OpenOffice.org.) [HKLM][64Bits] -- {05653DE1-6567-40C6-B930-39D399B64369}
O42 - Logiciel: Origin - (.Electronic Arts, Inc..) [HKLM][64Bits] -- Origin
O42 - Logiciel: PeaZip 3.0 - (.Giorgio Tani.) [HKLM][64Bits] -- {5A2BC38A-406C-4A5B-BF45-6991F9A05325}_is1
O42 - Logiciel: PhotoFiltre - (.Pas de propriétaire.) [HKLM][64Bits] -- PhotoFiltre
O42 - Logiciel: PlayReady PC Runtime amd64 - (.Microsoft Corporation.) [HKLM][64Bits] -- {BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}
O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM][64Bits] -- {3D9892BB-A751-4E48-ADC8-E4289956CE1D}
O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Response - (.eInstruction.) [HKLM][64Bits] -- {3EE39BDB-56F5-349B-58FE-2CD831DF6CB8}
O42 - Logiciel: SMART Common Files - (.SMART Technologies ULC.) [HKLM][64Bits] -- {ED2455F7-6AA6-4D3C-85E9-A72297DD7051}
O42 - Logiciel: SMART French Language Pack - (.SMART Technologies ULC.) [HKLM][64Bits] -- {015BE11B-72BE-44C4-99BA-36CA831757E4}
O42 - Logiciel: SMART Ink - (.SMART Technologies ULC.) [HKLM][64Bits] -- {4A1F2472-6164-43FA-9D2F-B35E71A8DF32}
O42 - Logiciel: SMART Notebook - (.SMART Technologies ULC.) [HKLM][64Bits] -- {AFE024C7-7CA7-4C8E-90EE-D877C7CD96A3}
O42 - Logiciel: SMART Product Drivers - (.SMART Technologies ULC.) [HKLM][64Bits] -- {E3189F44-F7BD-4F96-B756-A0AEFAF61D3A}
O42 - Logiciel: SMART Product Update - (.SMART Technologies ULC.) [HKLM][64Bits] -- {8D4B716A-0ABE-4238-9090-D208E5F57A5E}
O42 - Logiciel: Shop for HP Supplies - (.HP.) [HKLM][64Bits] -- Shop for HP Supplies
O42 - Logiciel: Sibelius Scorch (ActiveX Only) - (.Sibelius Software.) [HKLM][64Bits] -- {868291A4-229E-4795-B0B0-E60E87AF53CD}
O42 - Logiciel: Sid Meier's Civilization 4 - (.Firaxis Games.) [HKLM][64Bits] -- {CFBCE791-2D53-4FCE-B3FB-D6E01F4112E8}
O42 - Logiciel: Skype Click to Call - (.Skype Technologies S.A..) [HKLM][64Bits] -- {B6CF2967-C81E-40C0-9815-C05774FEF120}
O42 - Logiciel: Skype™ 6.1 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}
O42 - Logiciel: StarCraft II - (.Blizzard Entertainment.) [HKLM][64Bits] -- StarCraft II
O42 - Logiciel: Steam - (.Valve Corporation.) [HKLM][64Bits] -- {048298C9-A4D3-490B-9FF9-AB023A9238F3}
O42 - Logiciel: System Requirements Lab CYRI - (.Husdawg, LLC.) [HKLM][64Bits] -- {943A8D28-80D6-41DC-AE94-81FEB42041BF}
O42 - Logiciel: The Witcher 2: Bonus Content - (.Pas de propriétaire.) [HKLM][64Bits] -- Steam App 20930
O42 - Logiciel: The Witcher 2: Enhanced Edition - (.CD Projekt RED.) [HKLM][64Bits] -- Steam App 20920
O42 - Logiciel: The Witcher Enhanced Edition - (.CD Projekt Red.) [HKLM][64Bits] -- {F138762F-5A1F-4CF0-A5E1-1588EF6088A4}
O42 - Logiciel: VC80CRTRedist - 8.0.50727.6195 - (.DivX, Inc.) [HKLM][64Bits] -- {933B4015-4618-4716-A828-5289FC03165F}
O42 - Logiciel: VLC media player 1.1.11 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player
O42 - Logiciel: Warhammer 40,000: Dawn Of War - Gold Edition - (.THQ.) [HKLM][64Bits] -- {D0B36BAF-3E9D-423E-8821-ED238C18DB0A}
O42 - Logiciel: WebTablet FB Plugin - (.Wacom Technology Corp..) [HKLM][64Bits] -- Wacom WebTabletPlugin for Internet Explorer and Netscape
O42 - Logiciel: WebTablet IE Plugin - (.Wacom Technology Corp..) [HKLM][64Bits] -- Wacom WebTabletPlugin for IE
O42 - Logiciel: WebTablet Netscape Plugin - (.Wacom Technology Corp..) [HKLM][64Bits] -- Wacom WebTabletPlugin for Netscape
O42 - Logiciel: Webgameplay setup version 1.0 - (.Pas de propriétaire.) [HKLM][64Bits] -- {D18B6445-B54B-4348-97F7-D9A0109AC41F}_is1
O42 - Logiciel: Windows Media Player 64-bit Plug-in Fix - (.Pas de propriétaire.) [HKLM][64Bits] -- {00a8ce68-cb2e-4652-aecd-c05c0d9d53a7}.sdb
O42 - Logiciel: Windows Media Player Firefox Plugin - (.Microsoft Corp.) [HKLM][64Bits] -- {69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}
O42 - Logiciel: Windows Media Player Plus! 2.1 - (.BM-productions.) [HKLM][64Bits] -- {67E4EF06-E0D6-42E0-A2BA-67199B0143FB}_is1
O42 - Logiciel: avast! Free Antivirus v8.0.1482.0 - (.AVAST Software.) [HKLM][64Bits] -- avast
O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM][64Bits] -- {23B45E10-0CA5-43E9-BD6D-C2BD6CBE11AC}
O42 - Logiciel: neroxml - (.Nero AG.) [HKLM][64Bits] -- {56C049BE-79E9-4502-BEA7-9754A3E60F9B}
O42 - Logiciel: swMSM - (.Adobe Systems, Inc.) [HKLM][64Bits] -- {612C34C7-5E90-47D8-9B5C-0F717DD82726}

---\\ HKCU & HKLM Software Keys
[HKCU\Software\ATI]
[HKCU\Software\AVAST Software]
[HKCU\Software\Adobe]
[HKCU\Software\AppDataLow\Software\JavaSoft]
[HKCU\Software\AppDataLow\Software\Microsoft]
[HKCU\Software\AppDataLow\Software\iGraal]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Audacity]
[HKCU\Software\BM-productions]
[HKCU\Software\Borland]
[HKCU\Software\Canneverbe Limited]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\DRM Converter]
[HKCU\Software\FreeCDRIP]
[HKCU\Software\Google]
[HKCU\Software\HP]
[HKCU\Software\Hewlett-Packard]
[HKCU\Software\IM Providers]
[HKCU\Software\JavaSoft]
[HKCU\Software\Macromedia]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\Mindscape]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\Nero]
[HKCU\Software\Netscape]
[HKCU\Software\ODBC]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\RapidSolution]
[HKCU\Software\SMART Technologies Inc.]
[HKCU\Software\SMART Technologies]
[HKCU\Software\Safer Networking Limited]
[HKCU\Software\Skype]
[HKCU\Software\Trolltech]
[HKCU\Software\Usbfix]
[HKCU\Software\Wow6432Node]
[HKCU\Software\ZebHelpProcess Helper]
[HKLM\Software\AMD]
[HKLM\Software\ATI Technologies]
[HKLM\Software\ATI]
[HKLM\Software\AVS4YOU]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Borland]
[HKLM\Software\BrowserChoice]
[HKLM\Software\Canneverbe Limited]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Creative Tech]
[HKLM\Software\DivX]
[HKLM\Software\FileZilla 3]
[HKLM\Software\GEAR Software]
[HKLM\Software\Hercules]
[HKLM\Software\Hewlett-Packard]
[HKLM\Software\IM Providers]
[HKLM\Software\Intel]
[HKLM\Software\Khronos]
[HKLM\Software\Macromedia]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\ODBC]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\RTLSetup]
[HKLM\Software\RapidSolution]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SQ]
[HKLM\Software\SRS Labs]
[HKLM\Software\Safer Networking Limited]
[HKLM\Software\Sonic]
[HKLM\Software\Sony Creative Software]
[HKLM\Software\TuneUp]
[HKLM\Software\Volatile]
[HKLM\Software\Wacom]
[HKLM\Software\Waves Audio]
[HKLM\Software\Wow6432Node\685D6D1C-D73A-4F37-B7E5E53660311DDB]
[HKLM\Software\Wow6432Node\AGEIA Technologies]
[HKLM\Software\Wow6432Node\AMD]
[HKLM\Software\Wow6432Node\APLI-AGIPA]
[HKLM\Software\Wow6432Node\ATI Technologies]
[HKLM\Software\Wow6432Node\ATI]
[HKLM\Software\Wow6432Node\AVAST Software]
[HKLM\Software\Wow6432Node\AVS4YOU]
[HKLM\Software\Wow6432Node\Adobe]
[HKLM\Software\Wow6432Node\AdwCleaner]
[HKLM\Software\Wow6432Node\AppDataLow]
[HKLM\Software\Wow6432Node\Apple Computer, Inc.]
[HKLM\Software\Wow6432Node\Apple Inc.]
[HKLM\Software\Wow6432Node\BM-productions]
[HKLM\Software\Wow6432Node\Bethesda Softworks]
[HKLM\Software\Wow6432Node\Big Fish Games]
[HKLM\Software\Wow6432Node\BioWare]
[HKLM\Software\Wow6432Node\Blizzard Entertainment]
[HKLM\Software\Wow6432Node\Boonty]
[HKLM\Software\Wow6432Node\Borland]
[HKLM\Software\Wow6432Node\CD Projekt Red]
[HKLM\Software\Wow6432Node\CDDB]
[HKLM\Software\Wow6432Node\Caphyon]
[HKLM\Software\Wow6432Node\Cisco]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\Creative Tech]
[HKLM\Software\Wow6432Node\DRM Converter]
[HKLM\Software\Wow6432Node\DTP]
[HKLM\Software\Wow6432Node\DivXNetworks]
[HKLM\Software\Wow6432Node\DivX]
[HKLM\Software\Wow6432Node\Druide informatique inc.]
[HKLM\Software\Wow6432Node\EA Games]
[HKLM\Software\Wow6432Node\Electronic Arts]
[HKLM\Software\Wow6432Node\FileZilla 3]
[HKLM\Software\Wow6432Node\Firaxis Games]
[HKLM\Software\Wow6432Node\Funcom]
[HKLM\Software\Wow6432Node\GIMP_Back_Mode]
[HKLM\Software\Wow6432Node\GTCO CalComp]
[HKLM\Software\Wow6432Node\GameInstaller]
[HKLM\Software\Wow6432Node\Garmin]
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\Hercules]
[HKLM\Software\Wow6432Node\Hewlett-Packard]
[HKLM\Software\Wow6432Node\ICE]
[HKLM\Software\Wow6432Node\IM Providers]
[HKLM\Software\Wow6432Node\InstallShield]
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\JavaSoft]
[HKLM\Software\Wow6432Node\JreMetrics]
[HKLM\Software\Wow6432Node\KasperskyLab]
[HKLM\Software\Wow6432Node\Khronos]
[HKLM\Software\Wow6432Node\Lame for Audacity]
[HKLM\Software\Wow6432Node\Licenses]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\Macrovision]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware (Trial)]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware]
[HKLM\Software\Wow6432Node\Mattel]
[HKLM\Software\Wow6432Node\Metaboli]
[HKLM\Software\Wow6432Node\MimarSinan]
[HKLM\Software\Wow6432Node\Mindscape]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\MusicNet]
[HKLM\Software\Wow6432Node\National Instruments]
[HKLM\Software\Wow6432Node\Nero]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\OpenOffice.org]
[HKLM\Software\Wow6432Node\Oracle]
[HKLM\Software\Wow6432Node\PeaZip]
[HKLM\Software\Wow6432Node\PeaZip_additional]
[HKLM\Software\Wow6432Node\PixArt]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\RapidSolution]
[HKLM\Software\Wow6432Node\Realtek Semiconductor Corp.]
[HKLM\Software\Wow6432Node\Realtek]
[HKLM\Software\Wow6432Node\ReflexiveArcade]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\SMART Technologies Inc.]
[HKLM\Software\Wow6432Node\SMART Technologies]
[HKLM\Software\Wow6432Node\SOFTWIN]
[HKLM\Software\Wow6432Node\Safer Networking Limited]
[HKLM\Software\Wow6432Node\SecureDigitalServices]
[HKLM\Software\Wow6432Node\Sims]
[HKLM\Software\Wow6432Node\Skype]
[HKLM\Software\Wow6432Node\SlySoft]
[HKLM\Software\Wow6432Node\Sony Creative Software]
[HKLM\Software\Wow6432Node\Sony Media Software]
[HKLM\Software\Wow6432Node\SweetIM]
[HKLM\Software\Wow6432Node\Symantec]
[HKLM\Software\Wow6432Node\THQ]
[HKLM\Software\Wow6432Node\Trymedia Systems]
[HKLM\Software\Wow6432Node\TuneUp]
[HKLM\Software\Wow6432Node\Turbine]
[HKLM\Software\Wow6432Node\Valve]
[HKLM\Software\Wow6432Node\VideoLAN]
[HKLM\Software\Wow6432Node\Vision Objects]
[HKLM\Software\Wow6432Node\Volatile]
[HKLM\Software\Wow6432Node\Wacom]
[HKLM\Software\Wow6432Node\WidCommUpdate]
[HKLM\Software\Wow6432Node\WinKernelTimeServiceIWN]
[HKLM\Software\Wow6432Node\Windows]
[HKLM\Software\Wow6432Node\Yahoo]
[HKLM\Software\Wow6432Node\cybelsoft]
[HKLM\Software\Wow6432Node\eInstruction]
[HKLM\Software\Wow6432Node\ej-technologies]
[HKLM\Software\Wow6432Node\iMeshSRTB]
[HKLM\Software\Wow6432Node\iWinArcade]
[HKLM\Software\Wow6432Node\mozilla.org]
[HKLM\Software\Wow6432Node]
[HKLM\Software\cybelsoft]
~ Scan Softwares in 00mn 00s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 17/08/2011 - 19:21:14 - [3,348] ----D C:\Program Files (x86)\7-Zip
O43 - CFD: 23/02/2013 - 16:53:51 - [161,497] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 16/04/2011 - 05:02:07 - [117,667] ----D C:\Program Files (x86)\AGEIA Technologies
O43 - CFD: 06/05/2012 - 08:03:04 - [2,145] ----D C:\Program Files (x86)\AMD APP
O43 - CFD: 06/05/2012 - 08:03:13 - [0,378] ----D C:\Program Files (x86)\AMD AVT
O43 - CFD: 26/07/2010 - 11:02:42 - [0] ----D C:\Program Files (x86)\APLI-AGIPA
O43 - CFD: 20/05/2012 - 10:47:13 - [2,316] ----D C:\Program Files (x86)\Apple Software Update
O43 - CFD: 18/07/2011 - 18:52:22 - [62,872] ----D C:\Program Files (x86)\ATI Technologies
O43 - CFD: 20/10/2012 - 13:28:56 - [43,789] ----D C:\Program Files (x86)\Audacity
O43 - CFD: 16/01/2012 - 22:54:51 - [41,154] ----D C:\Program Files (x86)\Audacity 1.3 Beta (Unicode)
O43 - CFD: 01/03/2013 - 13:47:54 - [313,896] ----D C:\Program Files (x86)\Audials
O43 - CFD: 04/02/2011 - 00:39:10 - [0] ----D C:\Program Files (x86)\AVS4YOU
O43 - CFD: 25/09/2012 - 18:45:07 - [43,098] ----D C:\Program Files (x86)\Bamboo Dock
O43 - CFD: 07/12/2010 - 22:22:10 - [-1307,259] ----D C:\Program Files (x86)\Bethesda Softworks
O43 - CFD: 10/07/2010 - 20:54:02 - [0,589] ----D C:\Program Files (x86)\Bonjour
O43 - CFD: 26/10/2010 - 02:51:14 - [0,009] ----D C:\Program Files (x86)\BoontyGames
O43 - CFD: 04/11/2010 - 06:41:01 - [1342,132] ----D C:\Program Files (x86)\Codemasters
O43 - CFD: 02/03/2013 - 21:41:48 - [787,287] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 02/03/2011 - 13:34:45 - [2,215] ----D C:\Program Files (x86)\Creative
O43 - CFD: 14/11/2011 - 23:21:51 - [19,846] ----D C:\Program Files (x86)\Delivery
O43 - CFD: 24/10/2012 - 19:52:01 - [2,431] ----D C:\Program Files (x86)\DivX
O43 - CFD: 15/08/2010 - 12:59:52 - [1637,995] ----D C:\Program Files (x86)\Dragon Age
O43 - CFD: 14/04/2011 - 00:20:19 - [230,903] ----D C:\Program Files (x86)\Dragon Age 2
O43 - CFD: 25/10/2012 - 21:28:00 - [25,522] ----D C:\Program Files (x86)\Drakensang Online
O43 - CFD: 02/03/2013 - 12:24:27 - [85,367] ----D C:\Program Files (x86)\DRM Converter
O43 - CFD: 28/02/2010 - 22:25:29 - [142,906] ----D C:\Program Files (x86)\Druide
O43 - CFD: 27/08/2011 - 22:21:50 - [1558,368] ----D C:\Program Files (x86)\eInstruction
O43 - CFD: 06/06/2011 - 22:10:58 - [1687,035] ----D C:\Program Files (x86)\Electronic Arts
O43 - CFD: 06/11/2010 - 09:16:17 - [15,237] ----D C:\Program Files (x86)\FileZilla FTP Client
O43 - CFD: 02/09/2010 - 20:49:08 - [1488,448] ----D C:\Program Files (x86)\Firaxis Games
O43 - CFD: 04/02/2011 - 00:42:08 - [22,228] ----D C:\Program Files (x86)\Free Audio Pack
O43 - CFD: 01/03/2013 - 13:38:28 - [25,856] ----D C:\Program Files (x86)\Free mp3 Wma Converter
O43 - CFD: 18/07/2011 - 11:22:14 - [-1391,464] ----D C:\Program Files (x86)\Funcom
O43 - CFD: 25/02/2013 - 19:00:14 - [870,447] ----D C:\Program Files (x86)\GdgFRCM1
O43 - CFD: 12/01/2011 - 13:39:06 - [157,243] ----D C:\Program Files (x86)\Gimp Pack Mode
O43 - CFD: 20/07/2011 - 17:33:50 - [107,900] ----D C:\Program Files (x86)\GIMP-2.0
O43 - CFD: 24/10/2012 - 20:25:26 - [354,393] ----D C:\Program Files (x86)\Google
O43 - CFD: 02/03/2011 - 14:09:24 - [3,716] ----D C:\Program Files (x86)\Hercules
O43 - CFD: 31/10/2011 - 14:06:36 - [4,303] ----D C:\Program Files (x86)\Horaire PC
O43 - CFD: 28/09/2010 - 06:28:42 - [185,473] ----D C:\Program Files (x86)\HP
O43 - CFD: 09/12/2012 - 09:11:03 - [0] ----D C:\Program Files (x86)\iMesh Applications
O43 - CFD: 25/02/2013 - 18:56:19 - [87,044] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 04/04/2011 - 21:58:25 - [0,092] ----D C:\Program Files (x86)\Intel
O43 - CFD: 14/02/2013 - 06:32:43 - [6,244] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 25/07/2010 - 21:01:17 - [120,215] ----D C:\Program Files (x86)\iTunes
O43 - CFD: 26/10/2010 - 02:52:19 - [0] ----D C:\Program Files (x86)\iWin.com
O43 - CFD: 24/02/2013 - 13:06:35 - [295,763] ----D C:\Program Files (x86)\Java
O43 - CFD: 16/01/2012 - 22:58:08 - [1,180] ----D C:\Program Files (x86)\Lame For Audacity
O43 - CFD: 01/01/2013 - 12:08:55 - [12,328] ----D C:\Program Files (x86)\Malwarebytes' Anti-Malware
O43 - CFD: 02/05/2010 - 06:23:43 - [660,809] ----D C:\Program Files (x86)\Mass Effect
O43 - CFD: 02/12/2012 - 23:54:27 - [146,619] ----D C:\Program Files (x86)\Memoir'44 Online
O43 - CFD: 07/09/2010 - 21:12:49 - [0,502] ----D C:\Program Files (x86)\Microsoft
O43 - CFD: 26/01/2011 - 23:09:42 - [0] ----D C:\Program Files (x86)\Microsoft Antimalware
O43 - CFD: 04/03/2011 - 18:00:49 - [-1364,082] ----D C:\Program Files (x86)\Microsoft Games
O43 - CFD: 06/05/2011 - 09:06:25 - [8,929] ----D C:\Program Files (x86)\Microsoft Games for Windows - LIVE
O43 - CFD: 30/06/2011 - 23:20:01 - [543,260] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 21/10/2012 - 21:18:31 - [40,838] ----D C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 05/09/2010 - 11:28:00 - [1,745] ----D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 27/02/2010 - 21:36:24 - [0,014] ----D C:\Program Files (x86)\Microsoft Visual Studio
O43 - CFD: 28/02/2010 - 22:59:52 - [3,554] ----D C:\Program Files (x86)\Microsoft Works
O43 - CFD: 25/02/2011 - 18:51:03 - [0,934] ----D C:\Program Files (x86)\Microsoft WSE
O43 - CFD: 27/09/2010 - 23:46:15 - [7,797] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 02/03/2013 - 22:07:27 - [67,541] ----D C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 02/03/2013 - 22:07:30 - [0,212] ----D C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 14/07/2009 - 06:32:38 - [0,025] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 20/05/2010 - 06:24:09 - [0] ----D C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 01/03/2012 - 22:44:58 - [12,572] ----D C:\Program Files (x86)\Multiplication
O43 - CFD: 19/06/2012 - 21:25:58 - [11,757] ----D C:\Program Files (x86)\National Instruments
O43 - CFD: 19/05/2010 - 23:09:57 - [47,498] ----D C:\Program Files (x86)\Nero
O43 - CFD: 20/03/2011 - 23:06:44 - [353,458] ----D C:\Program Files (x86)\OpenOffice.org 3
O43 - CFD: 13/08/2012 - 22:10:36 - [33,207] ----D C:\Program Files (x86)\Oracle
O43 - CFD: 27/08/2012 - 23:22:35 - [127,829] ----D C:\Program Files (x86)\Origin
O43 - CFD: 06/06/2011 - 22:11:03 - [0] ----D C:\Program Files (x86)\Origin Games
O43 - CFD: 26/11/2011 - 11:19:10 - [0] ----D C:\Program Files (x86)\Pando Networks
O43 - CFD: 15/10/2010 - 19:54:25 - [20,500] ----D C:\Program Files (x86)\Pcsx2
O43 - CFD: 27/03/2010 - 19:26:41 - [9,606] ----D C:\Program Files (x86)\PeaZip
O43 - CFD: 12/05/2010 - 10:03:19 - [3,388] ----D C:\Program Files (x86)\PhotoFiltre
O43 - CFD: 10/07/2010 - 20:54:50 - [72,850] ----D C:\Program Files (x86)\QuickTime
O43 - CFD: 26/10/2010 - 02:51:56 - [2,008] ----D C:\Program Files (x86)\RealArcade
O43 - CFD: 04/04/2011 - 21:52:57 - [5,561] ----D C:\Program Files (x86)\Realtek
O43 - CFD: 14/07/2009 - 06:32:38 - [37,357] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 02/11/2010 - 11:04:54 - [0,036] ----D C:\Program Files (x86)\ReflexiveArcade
O43 - CFD: 26/10/2010 - 02:51:23 - [0] ----D C:\Program Files (x86)\Sandlot Games
O43 - CFD: 03/06/2011 - 18:39:27 - [19,424] ----D C:\Program Files (x86)\Sibelius Software
O43 - CFD: 30/01/2013 - 13:46:46 - [49,116] R---D C:\Program Files (x86)\Skype
O43 - CFD: 19/05/2010 - 23:25:14 - [4,753] ----D C:\Program Files (x86)\SlySoft
O43 - CFD: 26/01/2012 - 23:11:36 - [326,478] ----D C:\Program Files (x86)\SMART Technologies
O43 - CFD: 02/03/2013 - 19:54:09 - [1,294] ----D C:\Program Files (x86)\Spybot - Search & Destroy 2
O43 - CFD: 12/01/2011 - 23:49:42 - [1134,923] ----D C:\Program Files (x86)\StarCraft II
O43 - CFD: 20/01/2013 - 12:28:29 - [-1426,441] ----D C:\Program Files (x86)\Steam
O43 - CFD: 13/05/2012 - 22:07:13 - [0,470] ----D C:\Program Files (x86)\SystemRequirementsLab
O43 - CFD: 25/09/2012 - 18:39:16 - [2,984] ----D C:\Program Files (x86)\TabletPlugins
O43 - CFD: 04/04/2011 - 21:54:01 - [0] --H-D C:\Program Files (x86)\Temp
O43 - CFD: 14/03/2010 - 23:15:01 - [1064,807] ----D C:\Program Files (x86)\The Witcher Enhanced Edition
O43 - CFD: 17/02/2012 - 11:54:10 - [-175,359] ----D C:\Program Files (x86)\THQ
O43 - CFD: 04/07/2011 - 06:08:51 - [0,902] ----D C:\Program Files (x86)\Turbine
O43 - CFD: 14/07/2009 - 05:57:06 - [0] --H-D C:\Program Files (x86)\Uninstall Information
O43 - CFD: 02/11/2010 - 01:06:28 - [80,965] ----D C:\Program Files (x86)\VideoLAN
O43 - CFD: 06/09/2010 - 06:41:17 - [84,918] ----D C:\Program Files (x86)\Vision Objects
O43 - CFD: 17/02/2013 - 14:29:24 - [14,956] ----D C:\Program Files (x86)\Webgameplay setup
O43 - CFD: 04/05/2010 - 19:59:13 - [1,194] ----D C:\Program Files (x86)\WiimoteWhiteboard
O43 - CFD: 14/07/2009 - 16:24:08 - [0,500] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 29/06/2012 - 12:09:45 - [173,287] ----D C:\Program Files (x86)\Windows Live
O43 - CFD: 03/06/2011 - 14:08:05 - [5,895] ----D C:\Program Files (x86)\Windows Mail
O43 - CFD: 21/05/2012 - 23:24:50 - [4,885] ----D C:\Program Files (x86)\Windows Media Player
O43 - CFD: 21/05/2012 - 23:24:50 - [2,362] ----D C:\Program Files (x86)\Windows Media Player Plus!
O43 - CFD: 14/07/2009 - 06:32:38 - [11,632] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 03/06/2011 - 14:08:05 - [4,213] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 03/06/2011 - 14:08:05 - [0,181] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 03/06/2011 - 14:08:05 - [6,209] ----D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 02/03/2013 - 23:43:14 - [15,173] ----D C:\Program Files (x86)\ZHPDiag
O43 - CFD: 23/02/2013 - 16:55:04 - [97,671] ----D C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 01/03/2013 - 18:15:45 - [44,229] ----D C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 25/07/2010 - 21:00:55 - [92,258] ----D C:\Program Files (x86)\Common Files\Apple
O43 - CFD: 08/08/2010 - 08:58:47 - [0,000] ----D C:\Program Files (x86)\Common Files\ArcSoft
O43 - CFD: 18/07/2011 - 18:53:43 - [2,712] ----D C:\Program Files (x86)\Common Files\ATI Technologies
O43 - CFD: 04/02/2011 - 00:34:28 - [28,927] ----D C:\Program Files (x86)\Common Files\AVSMedia
O43 - CFD: 16/04/2011 - 05:03:43 - [1,822] ----D C:\Program Files (x86)\Common Files\BioWare
O43 - CFD: 26/11/2011 - 09:23:32 - [1,472] ----D C:\Program Files (x86)\Common Files\Bitdefender
O43 - CFD: 07/01/2011 - 19:24:58 - [1,042] ----D C:\Program Files (x86)\Common Files\Blizzard Entertainment
O43 - CFD: 08/10/2010 - 19:01:54 - [0,066] ----D C:\Program Files (x86)\Common Files\BOONTY Shared
O43 - CFD: 02/03/2013 - 21:41:48 - [7,320] ----D C:\Program Files (x86)\Common Files\Borland Shared
O43 - CFD: 27/02/2010 - 21:36:24 - [0,089] ----D C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 27/07/2010 - 19:29:25 - [0,951] ----D C:\Program Files (x86)\Common Files\Hewlett-Packard
O43 - CFD: 27/07/2010 - 19:30:32 - [1,733] ----D C:\Program Files (x86)\Common Files\HP
O43 - CFD: 02/09/2010 - 20:48:37 - [11,370] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 09/09/2012 - 08:26:02 - [1,184] ----D C:\Program Files (x86)\Common Files\Java
O43 - CFD: 19/06/2012 - 21:21:30 - [0,997] ----D C:\Program Files (x86)\Common Files\Macrovision Shared
O43 - CFD: 18/11/2012 - 12:07:19 - [230,798] ----D C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 19/05/2010 - 23:10:17 - [38,354] ----D C:\Program Files (x86)\Common Files\Nero
O43 - CFD: 01/10/2010 - 19:01:25 - [0,338] ----D C:\Program Files (x86)\Common Files\Oberon Media
O43 - CFD: 24/10/2012 - 19:51:56 - [0,438] ----D C:\Program Files (x86)\Common Files\PX Storage Engine
O43 - CFD: 14/07/2009 - 04:20:08 - [0,003] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 30/01/2013 - 13:46:46 - [2,056] ----D C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 25/12/2012 - 15:05:20 - [106,893] ----D C:\Program Files (x86)\Common Files\SMART Technologies
O43 - CFD: 14/07/2009 - 04:20:08 - [39,200] ----D C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 22/12/2012 - 14:48:30 - [0,516] ----D C:\Program Files (x86)\Common Files\Steam
O43 - CFD: 21/09/2011 - 23:28:33 - [0] ----D C:\Program Files (x86)\Common Files\Symantec Shared
O43 - CFD: 09/11/2011 - 10:41:27 - [42,254] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 05/09/2010 - 11:21:17 - [0] ----D C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 16/04/2011 - 05:02:14 - [32,593] ----D C:\Program Files (x86)\Common Files\Wise Installation Wizard
O43 - CFD: 01/03/2013 - 12:15:31 - [575,813] ----D C:\ProgramData\Adobe
O43 - CFD: 06/05/2012 - 08:03:14 - [0,216] ----D C:\ProgramData\AMD
O43 - CFD: 14/01/2011 - 22:07:07 - [28,021] ----D C:\ProgramData\Apple
O43 - CFD: 10/07/2010 - 20:55:39 - [82,470] ----D C:\ProgramData\Apple Computer
O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Application Data
O43 - CFD: 08/08/2010 - 08:38:18 - [0,007] --H-D C:\ProgramData\ArcSoft
O43 - CFD: 06/05/2012 - 08:03:17 - [0,000] ----D C:\ProgramData\ATI
O43 - CFD: 28/05/2012 - 11:25:27 - [55,384] ----D C:\ProgramData\AVAST Software
O43 - CFD: 10/07/2010 - 22:03:57 - [0] ----D C:\ProgramData\AVS4YOU
O43 - CFD: 15/08/2010 - 12:50:31 - [0,230] ----D C:\ProgramData\BioWare
O43 - CFD: 07/01/2011 - 23:42:03 - [149,300] ----D C:\ProgramData\Blizzard Entertainment
O43 - CFD: 26/07/2010 - 11:01:41 - [0] ----D C:\ProgramData\Bluetooth
O43 - CFD: 08/10/2010 - 19:01:58 - [0,006] ----D C:\ProgramData\BOONTY
O43 - CFD: 27/02/2010 - 17:27:11 - [0] --H-D C:\ProgramData\Bureau
O43 - CFD: 30/03/2011 - 22:34:47 - [0] ----D C:\ProgramData\Canneverbe Limited
O43 - CFD: 01/03/2010 - 22:32:19 - [0,153] --H-D C:\ProgramData\CanonBJ
O43 - CFD: 28/05/2012 - 11:32:48 - [0,000] --H-D C:\ProgramData\Common Files
O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Desktop
O43 - CFD: 24/10/2012 - 19:52:03 - [1,477] ----D C:\ProgramData\DivX
O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Documents
O43 - CFD: 19/06/2012 - 21:27:43 - [239,320] ----D C:\ProgramData\Downloaded Installations
O43 - CFD: 13/04/2011 - 22:45:15 - [205,466] ----D C:\ProgramData\EA Core
O43 - CFD: 25/09/2011 - 16:59:03 - [0] ----D C:\ProgramData\Easybits GO
O43 - CFD: 06/06/2011 - 22:10:54 - [0,142] ----D C:\ProgramData\Electronic Arts
O43 - CFD: 27/02/2010 - 17:27:11 - [0] --H-D C:\ProgramData\Favoris
O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Favorites
O43 - CFD: 19/06/2012 - 21:26:36 - [0,024] ----D C:\ProgramData\FLEXnet
O43 - CFD: 28/11/2011 - 22:36:17 - [0,024] ----D C:\ProgramData\GameXN
O43 - CFD: 24/10/2012 - 19:53:55 - [0] ----D C:\ProgramData\Google
O43 - CFD: 30/08/2010 - 21:12:27 - [28,905] ----D C:\ProgramData\HP
O43 - CFD: 27/07/2010 - 19:31:48 - [0,009] ----D C:\ProgramData\HP Product Assistant
O43 - CFD: 18/05/2012 - 20:29:08 - [0,096] ----D C:\ProgramData\iWin Games
O43 - CFD: 23/02/2013 - 08:52:56 - [0] ----D C:\ProgramData\LAT 2.0 - FR
O43 - CFD: 26/11/2011 - 09:06:25 - [1,210] ----D C:\ProgramData\ma-config.com
O43 - CFD: 05/04/2012 - 22:46:30 - [32,710] ----D C:\ProgramData\Malwarebytes
O43 - CFD: 18/07/2011 - 11:22:18 - [0,004] ----D C:\ProgramData\Media Center Programs
O43 - CFD: 27/02/2010 - 17:27:11 - [0] --H-D C:\ProgramData\Menu Démarrer
O43 - CFD: 02/03/2013 - 19:51:45 - [718,068] -S--D C:\ProgramData\Microsoft
O43 - CFD: 13/02/2013 - 22:38:26 - [0,061] ----D C:\ProgramData\Microsoft Help
O43 - CFD: 27/02/2010 - 17:27:11 - [0] --H-D C:\ProgramData\Modèles
O43 - CFD: 10/05/2012 - 18:22:44 - [0,034] ----D C:\ProgramData\Mozilla
O43 - CFD: 19/05/2010 - 23:09:28 - [2,204] ----D C:\ProgramData\Nero
O43 - CFD: 18/05/2012 - 18:46:42 - [0,000] ----D C:\ProgramData\Norton
O43 - CFD: 21/09/2011 - 22:33:08 - [0,170] ----D C:\ProgramData\NortonInstaller
O43 - CFD: 18/05/2012 - 20:29:11 - [0,002] ----D C:\ProgramData\Oberon Media
O43 - CFD: 27/08/2012 - 23:23:12 - [7,106] ----D C:\ProgramData\Origin
O43 - CFD: 24/10/2010 - 09:18:25 - [0] ----D C:\ProgramData\PlayFirst
O43 - CFD: 01/03/2013 - 13:47:58 - [42,017] ----D C:\ProgramData\RapidSolution
O43 - CFD: 18/12/2010 - 12:46:22 - [0,002] ----D C:\ProgramData\regid.1986-12.com.adobe
O43 - CFD: 18/05/2012 - 20:29:11 - [0,029] ----D C:\ProgramData\SafeNet Sentinel
O43 - CFD: 30/01/2013 - 13:46:50 - [116,078] ----D C:\ProgramData\Skype
O43 - CFD: 19/06/2012 - 21:23:55 - [312,202] ----D C:\ProgramData\SMART Technologies
O43 - CFD: 08/08/2010 - 09:03:57 - [0,000] ----D C:\ProgramData\Sony
O43 - CFD: 17/02/2013 - 09:19:24 - [0,391] ----D C:\ProgramData\Spybot - Search & Destroy
O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Start Menu
O43 - CFD: 10/03/2010 - 12:18:31 - [0,000] ----D C:\ProgramData\Sun
O43 - CFD: 21/09/2011 - 23:44:54 - [0,000] ----D C:\ProgramData\Symantec
O43 - CFD: 28/01/2012 - 17:07:33 - [3,229] ----D C:\ProgramData\SYSTEMAX Software Development
O43 - CFD: 19/01/2011 - 12:16:14 - [0] ---AD C:\ProgramData\TEMP
O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Templates
O43 - CFD: 28/05/2012 - 18:04:41 - [1,576] ----D C:\ProgramData\TuneUp Software
O43 - CFD: 06/09/2010 - 06:41:17 - [0,001] ----D C:\ProgramData\Vision Objects
O43 - CFD: 25/09/2012 - 18:47:56 - [28,018] ----D C:\ProgramData\Wacom
O43 - CFD: 27/07/2010 - 20:16:28 - [0,000] ----D C:\ProgramData\WEBREG
O43 - CFD: 02/10/2010 - 10:05:48 - [0] ----D C:\ProgramData\Zylom
O43 - CFD: 02/03/2011 - 17:07:50 - [17,595] -SH-D C:\ProgramData\{24036256-BFDB-4CD3-BE8A-A3D6160F2E16}
O43 - CFD: 27/11/2011 - 15:47:02 - [22,945] -SH-D C:\ProgramData\{32364CEA-7855-4A3C-B674-53D8E9B97936}
O43 - CFD: 10/07/2010 - 20:55:56 - [0,852] ----D C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001}
O43 - CFD: 01/03/2013 - 18:16:30 - [0,000] ----D C:\Users\Deu\AppData\Roaming\Adobe
O43 - CFD: 26/07/2010 - 12:59:45 - [0,000] ----D C:\Users\Deu\AppData\Roaming\Apple Computer
O43 - CFD: 01/03/2013 - 13:36:23 - [0,001] ----D C:\Users\Deu\AppData\Roaming\Audacity
O43 - CFD: 01/03/2013 - 18:30:38 - [0,001] ----D C:\Users\Deu\AppData\Roaming\Canneverbe Limited
O43 - CFD: 01/03/2013 - 13:38:35 - [0,000] ----D C:\Users\Deu\AppData\Roaming\FreeAudioPack
O43 - CFD: 01/03/2013 - 18:28:35 - [0,000] ----D C:\Users\Deu\AppData\Roaming\FreeCDRipper
O43 - CFD: 05/01/2013 - 17:14:28 - [0,054] ----D C:\Users\Deu\AppData\Roaming\HP
O43 - CFD: 18/12/2012 - 06:52:49 - [0] ----D C:\Users\Deu\AppData\Roaming\Identities
O43 - CFD: 18/12/2010 - 12:38:48 - [0,055] ----D C:\Users\Deu\AppData\Roaming\Macromedia
O43 - CFD: 01/01/2013 - 12:09:04 - [2,174] ----D C:\Users\Deu\AppData\Roaming\Malwarebytes
O43 - CFD: 14/07/2009 - 16:35:05 - [0] ----D C:\Users\Deu\AppData\Roaming\Media Center Programs
O43 - CFD: 02/03/2013 - 22:22:57 - [2,876] -S--D C:\Users\Deu\AppData\Roaming\Microsoft
O43 - CFD: 12/01/2013 - 18:12:17 - [18,101] ----D C:\Users\Deu\AppData\Roaming\Mozilla
O43 - CFD: 01/03/2013 - 14:16:25 - [0,035] ----D C:\Users\Deu\AppData\Roaming\Nero
O43 - CFD: 17/02/2013 - 09:03:31 - [0,178] ----D C:\Users\Deu\AppData\Roaming\SMART Technologies
O43 - CFD: 25/12/2012 - 15:09:13 - [0,004] ----D C:\Users\Deu\AppData\Roaming\SMART Technologies Inc
O43 - CFD: 29/12/2012 - 23:16:51 - [0,074] ----D C:\Users\Deu\AppData\Roaming\vlc
O43 - CFD: 18/12/2012 - 06:54:16 - [0,000] ----D C:\Users\Deu\AppData\Roaming\Wacom
O43 - CFD: 18/12/2012 - 06:52:54 - [0,005] ----D C:\Users\Deu\AppData\Roaming\WTablet
O43 - CFD: 25/02/2013 - 23:03:26 - [9,253] ----D C:\Users\Deu\AppData\Local\Adobe
O43 - CFD: 26/07/2010 - 12:59:45 - [0,000] ----D C:\Users\Deu\AppData\Local\Apple Computer
O43 - CFD: 18/12/2012 - 06:52:40 - [0] ----D C:\Users\Deu\AppData\Local\Application Data
O43 - CFD: 17/02/2013 - 08:07:32 - [0,002] ----D C:\Users\Deu\AppData\Local\ApplicationHistory
O43 - CFD: 17/02/2013 - 13:40:10 - [0] ----D C:\Users\Deu\AppData\Local\Apps
O43 - CFD: 17/02/2013 - 13:40:33 - [0,563] ----D C:\Users\Deu\AppData\Local\assembly
O43 - CFD: 01/03/2013 - 13:48:59 - [0] ----D C:\Users\Deu\AppData\Local\CrashRpt
O43 - CFD: 02/03/2013 - 22:23:00 - [0] ----D C:\Users\Deu\AppData\Local\Deployment
O43 - CFD: 25/12/2012 - 01:59:45 - [76,618] ----D C:\Users\Deu\AppData\Local\Downloaded Installations
O43 - CFD: 17/02/2013 - 21:57:38 - [28,720] ----D C:\Users\Deu\AppData\Local\Google
O43 - CFD: 18/12/2012 - 06:52:40 - [0] ----D C:\Users\Deu\AppData\Local\Historique
O43 - CFD: 20/01/2013 - 11:11:27 - [0] ----D C:\Users\Deu\AppData\Local\Macromedia
O43 - CFD: 01/03/2013 - 14:01:43 - [36,982] ----D C:\Users\Deu\AppData\Local\Microsoft
O43 - CFD: 27/02/2010 - 23:48:16 - [0] ----D C:\Users\Deu\AppData\Local\Microsoft Help
O43 - CFD: 12/01/2013 - 18:12:08 - [7,185] ----D C:\Users\Deu\AppData\Local\Mozilla
O43 - CFD: 01/01/2013 - 12:08:40 - [0] ----D C:\Users\Deu\AppData\Local\Programs
O43 - CFD: 01/03/2013 - 13:50:43 - [12,033] ----D C:\Users\Deu\AppData\Local\RapidSolution
O43 - CFD: 17/02/2013 - 09:03:20 - [0,022] ----D C:\Users\Deu\AppData\Local\SMART Technologies
O43 - CFD: 25/12/2012 - 15:09:13 - [4,074] ----D C:\Users\Deu\AppData\Local\SMART Technologies Inc
O43 - CFD: 02/03/2013 - 23:14:49 - [6,162] ----D C:\Users\Deu\AppData\Local\Temp
O43 - CFD: 18/12/2012 - 06:52:40 - [0] ----D C:\Users\Deu\AppData\Local\Temporary Internet Files
O43 - CFD: 25/02/2013 - 19:02:39 - [0,431] ----D C:\Users\Deu\AppData\Local\VirtualStore
O43 - CFD: 14/07/2009 - 05:54:32 - [0,014] R---D C:\Users\Deu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 18/12/2012 - 06:53:13 - [0,000] R---D C:\Users\Deu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 23/02/2013 - 17:15:27 - [0,000] ----D C:\Users\Deu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 14/07/2009 - 05:49:38 - [0,001] R---D C:\Users\Deu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 19/01/2013 - 11:02:05 - [0,000] R---D C:\Users\Deu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
~ Scan Program Folder in 00mn 04s



---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.F44A59BED8B23023E4A4A2B2D767588D] - 02/03/2013 - 23:14:51 ---A- . (...) -- C:\PhysicalDisk0_MBR.bin   [512]
O44 - LFC:[MD5.223F13A3FF86D7B8B6B78AAB9E00776C] - 02/03/2013 - 22:21:23 ---A- . (...) -- C:\Windows\WindowsUpdate.log   [1116646]
O44 - LFC:[MD5.A108D473BB4EAF715BE354EF313F63EF] - 02/03/2013 - 21:53:09 ---A- . (...) -- C:\UsbFix [Scan 2] TITI-PC.txt   [5058]
O44 - LFC:[MD5.B5A5521E4774814CC8E9977505169D5D] - 02/03/2013 - 21:52:39 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI   [1698642]
O44 - LFC:[MD5.68A19304080717246FB34E91EA657CA2] - 02/03/2013 - 21:52:39 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat   [125968]
O44 - LFC:[MD5.6BD039290E5ACB8C7CDB3F46425A440A] - 02/03/2013 - 21:52:39 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat   [154542]
O44 - LFC:[MD5.131BC8E0CAE2F285E03DCFCA598D1302] - 02/03/2013 - 21:52:39 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat   [663838]
O44 - LFC:[MD5.0F0624F474728BBE427C2A7A79D0BC6E] - 02/03/2013 - 21:52:39 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat   [757892]
O44 - LFC:[MD5.B5A5521E4774814CC8E9977505169D5D] - 02/03/2013 - 21:52:39 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI   [1698642]
O44 - LFC:[MD5.0714B3010086ACB0AD562E150F82A1EE] - 02/03/2013 - 21:46:49 ---A- . (...) -- C:\PDOXUSRS.NET   [13030]
O44 - LFC:[MD5.C27B5C21060088EE9CB6E5D50A7EEC6E] - 02/03/2013 - 21:28:27 -S-A- . (...) -- C:\Windows\bootstat.dat   [67584]
O44 - LFC:[MD5.745FA3C8F615259E38E7D2ADB615749B] - 02/03/2013 - 21:27:19 ---A- . (...) -- C:\AdwCleaner[S4].txt   [2411]
O44 - LFC:[MD5.DEA904D3062C969708BF208751855C78] - 02/03/2013 - 21:26:38 ---A- . (...) -- C:\AdwCleaner[R4].txt   [2349]
O44 - LFC:[MD5.33BBFBB16946E12321F73CCEC7FD87FA] - 02/03/2013 - 21:22:32 ---A- . (...) -- C:\AdwCleaner[S3].txt   [5562]
O44 - LFC:[MD5.F39909A5848EB1C800B576FB0156B4F7] - 02/03/2013 - 21:21:20 ---A- . (...) -- C:\AdwCleaner[R3].txt   [5627]
O44 - LFC:[MD5.89FCD919CDD3AC855BB717BC080CE838] - 28/02/2013 - 09:36:07 ---A- . (.AVAST Software - avast! Screen Saver stub.) -- C:\Windows\avastSS.scr   [41664]
O44 - LFC:[MD5.9E990EA9C021A9D482614E2B9E83995D] - 28/02/2013 - 09:35:43 ---A- . (.AVAST Software - avast! start-up scanner.) -- C:\Windows\SysNative\aswBoot.exe   [287840]
O44 - LFC:[MD5.9E990EA9C021A9D482614E2B9E83995D] - 28/02/2013 - 09:35:43 ---A- . (.AVAST Software - avast! start-up scanner.) -- C:\Windows\System32\aswBoot.exe   [287840]
O44 - LFC:[MD5.EEADFE190F0AAA3B4E0C70C9660AE2D1] - 26/02/2013 - 09:10:56  . (.AVAST Software - avast! start-up scanner.) -- C:\Windows\System32\DrmCAudio.cat   [287840]
O44 - LFC:[MD5.EEADFE190F0AAA3B4E0C70C9660AE2D1] - 26/02/2013 - 09:10:56 ---A- . (...) -- C:\Windows\SysNative\DrmCAudio.cat   [8417]
O44 - LFC:[MD5.1D83092C995660EB7C14B13502879C16] - 26/02/2013 - 09:10:52  . (.AVAST Software - avast! start-up scanner.) -- C:\Windows\System32\DrmCAudio.sys   [287840]
O44 - LFC:[MD5.1D83092C995660EB7C14B13502879C16] - 26/02/2013 - 09:10:52 ---A- . (.Windows (R) Win 7 DDK provider - Support Device.) -- C:\Windows\SysNative\DrmCAudio.sys   [34528]
O44 - LFC:[MD5.917C54C7F44A5AB829A19726F608F2CC] - 26/02/2013 - 09:10:44  . (.AVAST Software - avast! start-up scanner.) -- C:\Windows\System32\DrmCAudio.inf   [287840]
O44 - LFC:[MD5.917C54C7F44A5AB829A19726F608F2CC] - 26/02/2013 - 09:10:44 ---A- . (...) -- C:\Windows\SysNative\DrmCAudio.inf   [19099]
O44 - LFC:[MD5.FE870042D1938A426A143550D3272EBD] - 25/02/2013 - 23:09:09  . (.AVAST Software - avast! start-up scanner.) -- C:\Windows\System32\FNTCACHE.DAT   [287840]
O44 - LFC:[MD5.FE870042D1938A426A143550D3272EBD] - 25/02/2013 - 23:09:09 ---A- . (...) -- C:\Windows\SysNative\FNTCACHE.DAT   [5039800]
~ Scan Files in 00mn 02s



---\\ Derniers fichiers créés dans Windows Prefetcher (O45)
O45 - LFCP:[MD5.E4630311A781BA744958A4E4241D4B9D] - 01/03/2013 - 12:49:45 ---A- - C:\Windows\Prefetch\AgCx_S3_S-1-5-21-2914263168-274741686-3412035744-1005.snp.db
O45 - LFCP:[MD5.C42E519B8E2FD1961AD36DBF9BF91B6E] - 01/03/2013 - 16:59:46 ---A- - C:\Windows\Prefetch\AgGlUAD_P_S-1-5-21-2914263168-274741686-3412035744-1003.db
O45 - LFCP:[MD5.A83FDECD57B70E5891CF93F8919FEA07] - 01/03/2013 - 16:59:46 ---A- - C:\Windows\Prefetch\AgGlUAD_S-1-5-21-2914263168-274741686-3412035744-1003.db
O45 - LFCP:[MD5.2AC8964D39F91CDB4B3D160934DABFC5] - 01/03/2013 - 18:57:42 ---A- - C:\Windows\Prefetch\AgCx_S5_S-1-5-21-2914263168-274741686-3412035744-1010.snp.db
O45 - LFCP:[MD5.A65E66FB3CDC950A318E0E0893D3591E] - 01/03/2013 - 19:01:21 ---A- - C:\Windows\Prefetch\AgCx_S6_S-1-5-21-2914263168-274741686-3412035744-1003.snp.db
O45 - LFCP:[MD5.6F8446844EEA72F00583C326BB4C1D04] - 01/03/2013 - 20:00:02 ---A- - C:\Windows\Prefetch\AgCx_S7_S-1-5-21-2914263168-274741686-3412035744-1009.snp.db
O45 - LFCP:[MD5.39D1124FAABDE4458E9A9C0B38998099] - 01/03/2013 - 20:04:06 ---A- - C:\Windows\Prefetch\AgGlUAD_P_S-1-5-21-2914263168-274741686-3412035744-1009.db
O45 - LFCP:[MD5.A5483D678A775E5C18AA7AFBA359EDD9] - 01/03/2013 - 20:04:06 ---A- - C:\Windows\Prefetch\AgGlUAD_S-1-5-21-2914263168-274741686-3412035744-1009.db
O45 - LFCP:[MD5.E14B91B4336455367650C45A6147D481] - 02/03/2013 - 11:53:04 ---A- - C:\Windows\Prefetch\AgCx_SC4.db
O45 - LFCP:[MD5.F8E4998A5B011C90331A1303084015D5] - 02/03/2013 - 15:00:01 ---A- - C:\Windows\Prefetch\AgCx_S5_S-1-5-21-2914263168-274741686-3412035744-1004.snp.db
O45 - LFCP:[MD5.05C28630F6E1D7DAAD78F1D63305CFB4] - 02/03/2013 - 15:32:37 ---A- - C:\Windows\Prefetch\AgCx_S6_S-1-5-21-2914263168-274741686-3412035744-1005.snp.db
O45 - LFCP:[MD5.46EC0C1937E67A120869DA3651FEF35C] - 02/03/2013 - 15:36:22 ---A- - C:\Windows\Prefetch\AgCx_S7_S-1-5-21-2914263168-274741686-3412035744-1003.snp.db
O45 - LFCP:[MD5.8EF49F9C407A08047F388A687D7E7790] - 02/03/2013 - 16:08:13 ---A- - C:\Windows\Prefetch\DEFRAG.EXE-588F90AD.pf
O45 - LFCP:[MD5.EF4E5AD9641BC17FA2440372CE7196B8] - 02/03/2013 - 16:08:13 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-7AC6742A.pf
O45 - LFCP:[MD5.8645258B376D2D0AEFC8540574E8D73A] - 02/03/2013 - 19:19:57 ---A- - C:\Windows\Prefetch\VERCLSID.EXE-7C52E31C.pf
O45 - LFCP:[MD5.623C4E669E833E8323AF6BC0C4D69B2B] - 02/03/2013 - 19:24:27 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-70B4EB2D.pf
O45 - LFCP:[MD5.10FEAF8CAA5B8D3C256CAB6A05768574] - 02/03/2013 - 19:28:05 ---A- - C:\Windows\Prefetch\AgGlUAD_P_S-1-5-21-2914263168-274741686-3412035744-1005.db
O45 - LFCP:[MD5.2EFA2EAB960CCB14C5BE6ED12BE54C05] - 02/03/2013 - 19:28:05 ---A- - C:\Windows\Prefetch\AgGlUAD_S-1-5-21-2914263168-274741686-3412035744-1005.db
O45 - LFCP:[MD5.BE02A0E57B2B0C9DB3B0433872DD98F0] - 02/03/2013 - 19:50:00 ---A- - C:\Windows\Prefetch\MSIEXEC.EXE-A2D55CB6.pf
O45 - LFCP:[MD5.9795738E42D9BA4360BF7400E9ED4608] - 02/03/2013 - 19:50:25 ---A- - C:\Windows\Prefetch\KSS.EXE-46FC6818.pf
O45 - LFCP:[MD5.DF0067E1D6B62BC0430A8F50486699DF] - 02/03/2013 - 19:50:26 ---A- - C:\Windows\Prefetch\MSIEXEC.EXE-E09A077A.pf
O45 - LFCP:[MD5.D5A4AA2A52D9DF1B30668C844B953D40] - 02/03/2013 - 19:51:32 ---A- - C:\Windows\Prefetch\UNINS000.EXE-B98D9BF8.pf
O45 - LFCP:[MD5.C0C718EDC2C46336E26B9FBD65BACB1B] - 02/03/2013 - 19:56:52 ---A- - C:\Windows\Prefetch\SEARCHINDEXER.EXE-4A6353B9.pf
O45 - LFCP:[MD5.D642AEEC72EC632C4B051660F849CB02] - 02/03/2013 - 20:02:35 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-C2B8534F.pf
O45 - LFCP:[MD5.5416BDF105EA8414776CCF6531BBA91B] - 02/03/2013 - 20:03:32 ---A- - C:\Windows\Prefetch\MSNMSGR.EXE-D22CE80C.pf
O45 - LFCP:[MD5.D5CEC467CAC4F5B4B55C012A9935FAF3] - 02/03/2013 - 20:03:37 ---A- - C:\Windows\Prefetch\SMARTINK-SBSDKPROXY.EXE-E7B2480A.pf
O45 - LFCP:[MD5.547ABF73300F6ABB77B817F9C15EFE66] - 02/03/2013 - 20:05:09 ---A- - C:\Windows\Prefetch\HPSWP_CLIPBOOK.EXE-9027841F.pf
O45 - LFCP:[MD5.33A3CEA6BEB0F9D0DB4EB8374B880669] - 02/03/2013 - 20:05:15 ---A- - C:\Windows\Prefetch\COMPANIONUSER.EXE-C2435D5F.pf
O45 - LFCP:[MD5.1289E8195A76DDEEAB690265B2E2CBF8] - 02/03/2013 - 20:05:54 ---A- - C:\Windows\Prefetch\FLASHUTIL32_11_6_602_171_ACTI-6D707EA7.pf
O45 - LFCP:[MD5.66EB2629B7AD7181814F09247117808E] - 02/03/2013 - 20:59:46 ---A- - C:\Windows\Prefetch\Layout.ini
O45 - LFCP:[MD5.0CC896DF5721BB17F95E1A732D89F97A] - 02/03/2013 - 21:00:01 ---A- - C:\Windows\Prefetch\AgCx_S2_S-1-5-21-2914263168-274741686-3412035744-1004.snp.db
O45 - LFCP:[MD5.536A0C152AF1648706457943CEAB1BE5] - 02/03/2013 - 21:03:27 ---A- - C:\Windows\Prefetch\AgGlUAD_P_S-1-5-21-2914263168-274741686-3412035744-1004.db
O45 - LFCP:[MD5.CA0329CAA6064EAAEB8AF7E140315485] - 02/03/2013 - 21:03:27 ---A- - C:\Windows\Prefetch\AgGlUAD_S-1-5-21-2914263168-274741686-3412035744-1004.db
O45 - LFCP:[MD5.CFF24A0C8AD7988987E2CA56C0B50960] - 02/03/2013 - 21:05:30 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-ACA0E6F3.pf
O45 - LFCP:[MD5.9D8AC92DB456139B5CCC85AA90606DE9] - 02/03/2013 - 21:06:03 ---A- - C:\Windows\Prefetch\UNINST.EXE-8003F1D6.pf
O45 - LFCP:[MD5.A2DAB49ABABE3020B2F1C91AC61ACBF5] - 02/03/2013 - 21:07:25 ---A- - C:\Windows\Prefetch\UNINSTALL.EXE-65C35EF3.pf
O45 - LFCP:[MD5.B249BABA321A64C55252C61F7481E33C] - 02/03/2013 - 21:07:41 ---A- - C:\Windows\Prefetch\IGRAALHELPER.EXE-3C901C71.pf
O45 - LFCP:[MD5.777B9555FD49DDD104AADA1CEB392090] - 02/03/2013 - 21:08:12 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-788D19E9.pf
O45 - LFCP:[MD5.913AACCC7C241F911EAC03E8767765AC] - 02/03/2013 - 21:08:12 ---A- - C:\Windows\Prefetch\SETD70E.TMP-830DEEE6.pf
O45 - LFCP:[MD5.0940E891799E759213272D6E3D6C0C4A] - 02/03/2013 - 21:08:13 ---A- - C:\Windows\Prefetch\ISBEW64.EXE-F28C4665.pf
O45 - LFCP:[MD5.91AEB155404C7D0EBD6DD2029308BCDD] - 02/03/2013 - 21:08:44 ---A- - C:\Windows\Prefetch\UNIST.EXE-443491D1.pf
O45 - LFCP:[MD5.11F1A71F863ABF45516DA805D6F9DF3B] - 02/03/2013 - 21:08:54 ---A- - C:\Windows\Prefetch\UNINST.EXE-6BE70816.pf
O45 - LFCP:[MD5.04669B85923969461E65CF3C1F2BB0DE] - 02/03/2013 - 21:09:48 ---A- - C:\Windows\Prefetch\ATTRIB.EXE-73917FEA.pf
O45 - LFCP:[MD5.46C14533FFDEEB9954610776A97A9314] - 02/03/2013 - 21:09:48 ---A- - C:\Windows\Prefetch\ZGWIN32LAUNCHHELPER.EXE-D5E0D4AC.pf
O45 - LFCP:[MD5.6F3368BF7F4461619D6E04D95EE2815F] - 02/03/2013 - 21:09:49 ---A- - C:\Windows\Prefetch\WIN64_32_X64.EXE-B51BC4F2.pf
O45 - LFCP:[MD5.EF0895B24E0E15BD6A452968F6058B10] - 02/03/2013 - 21:09:50 ---A- - C:\Windows\Prefetch\JAVA.EXE-DED70476.pf
O45 - LFCP:[MD5.04307233B6973F021F64569BCE4C9307] - 02/03/2013 - 21:09:53 ---A- - C:\Windows\Prefetch\JAVA.EXE-17024495.pf
O45 - LFCP:[MD5.D58918680FA17F5C040281A1382C5B69] - 02/03/2013 - 21:09:53 ---A- - C:\Windows\Prefetch\JAVAW.EXE-CA69601E.pf
O45 - LFCP:[MD5.4911A31F28208F0C4AC7AA7D444E2AC5] - 02/03/2013 - 21:09:53 ---A- - C:\Windows\Prefetch\UNINSTALL_DEVICEMANAGER.EXE-7B99FA29.pf
O45 - LFCP:[MD5.A1006092E6F1426819C9FB09F6956A22] - 02/03/2013 - 21:09:54 ---A- - C:\Windows\Prefetch\JAVA.EXE-07FE5A9A.pf
O45 - LFCP:[MD5.993CDA4AC6CA3D63F9A5FA26A7D853A9] - 02/03/2013 - 21:09:54 ---A- - C:\Windows\Prefetch\JAVA.EXE-873AF69D.pf
O45 - LFCP:[MD5.8EA5A96237F5954DEE47E70D7C05E003] - 02/03/2013 - 21:09:55 ---A- - C:\Windows\Prefetch\DMKILL.EXE-9D3DE92E.pf
O45 - LFCP:[MD5.F74315A0687A282EDBFA91FF9AF54407] - 02/03/2013 - 21:09:55 ---A- - C:\Windows\Prefetch\SHUTDOWNDM.EXE-3DBA997E.pf
O45 - LFCP:[MD5.6573EA493BB9AF21C56A44FC8D0F2790] - 02/03/2013 - 21:09:57 ---A- - C:\Windows\Prefetch\DMKILL.EXE-66A13F24.pf
O45 - LFCP:[MD5.955D751034ED82C4172EBF3D8A87508B] - 02/03/2013 - 21:09:58 ---A- - C:\Windows\Prefetch\CLEANUPUTILITY.EXE-AE42CF71.pf
O45 - LFCP:[MD5.9AC6F5F28BEE356C06CD29C19C997D75] - 02/03/2013 - 21:10:23 ---A- - C:\Windows\Prefetch\REMOVE.EXE-B0011185.pf
O45 - LFCP:[MD5.9F26DCF0EC9D2B73EBC4A37916CFE822] - 02/03/2013 - 21:12:31 ---A- - C:\Windows\Prefetch\CMD.EXE-4A81B364.pf
O45 - LFCP:[MD5.0486FDF2BA145112FACEBE336BB6421C] - 02/03/2013 - 21:13:22 ---A- - C:\Windows\Prefetch\SSVAGENT.EXE-CAF775EC.pf
O45 - LFCP:[MD5.A27778F4D19E0119407E9A32D226AD1F] - 02/03/2013 - 21:18:47 ---A- - C:\Windows\Prefetch\HH.EXE-0A439DDA.pf
O45 - LFCP:[MD5.E86DC22FCFD1C6D1E59E205A7870B325] - 02/03/2013 - 21:22:16 ---A- - C:\Windows\Prefetch\UPDATER.EXE-58AE5631.pf
O45 - LFCP:[MD5.BFB716A30571A2DF3CC24E24725723AD] - 02/03/2013 - 21:25:31 ---A- - C:\Windows\Prefetch\SMARTBOARDTOOLS.EXE-AA7A32E7.pf
O45 - LFCP:[MD5.2341295C09F060E31709579CA70F8930] - 02/03/2013 - 21:25:50 ---A- - C:\Windows\Prefetch\SMARTINKPRIVILEGEDACCESS.EXE-B1FA3E1D.pf
O45 - LFCP:[MD5.F5DE29DA961E6062F89377EEBA3463CB] - 02/03/2013 - 21:25:52 ---A- - C:\Windows\Prefetch\WMPNSCFG.EXE-FC0D39BF.pf
O45 - LFCP:[MD5.9B5CB510040171A6456F1F441B15905D] - 02/03/2013 - 21:26:00 ---A- - C:\Windows\Prefetch\WMPNETWK.EXE-D9F2A96F.pf
O45 - LFCP:[MD5.984EA2047E4AFC7D62131F3421AE2F7C] - 02/03/2013 - 21:26:13 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-C871F054.pf
O45 - LFCP:[MD5.0F79E0B125DE5BE1017A8BD1BE4978D1] - 02/03/2013 - 21:26:24 ---A- - C:\Windows\Prefetch\ADWCLEANER.EXE-683192FB.pf
O45 - LFCP:[MD5.CA1DB0D425A461D2F96568B01CE27653] - 02/03/2013 - 21:27:37 ---A- - C:\Windows\Prefetch\PfSvPerfStats.bin
O45 - LFCP:[MD5.61074D9CFC20DAAED80DD9AF2DEA567E] - 02/03/2013 - 21:30:33 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-40DD444D.pf
O45 - LFCP:[MD5.35DFACCBED6856144C77CFB884BC0AD3] - 02/03/2013 - 21:30:44 ---A- - C:\Windows\Prefetch\MSCORSVW.EXE-C3C515BD.pf
O45 - LFCP:[MD5.7BF0A80D0FDBB4AA183BBE77B877733B] - 02/03/2013 - 21:30:45 ---A- - C:\Windows\Prefetch\MSCORSVW.EXE-57D17DAF.pf
O45 - LFCP:[MD5.1698FD00120CE6F654194145A6DE297D] - 02/03/2013 - 21:30:55 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-05F624AB.pf
O45 - LFCP:[MD5.30F6505FE3B000DE65FB6F4E8FAB2A5C] - 02/03/2013 - 21:37:19 ---A- - C:\Windows\Prefetch\CONTROL.EXE-817F8F1D.pf
O45 - LFCP:[MD5.99DE11E9527543E9FD7BF4BEC2F8C71A] - 02/03/2013 - 21:39:01 ---A- - C:\Windows\Prefetch\UNINS000.EXE-F777E8AD.pf
O45 - LFCP:[MD5.79067EFAA685DF902C046178272D06C4] - 02/03/2013 - 21:47:10 ---A- - C:\Windows\Prefetch\_IU14D2N.TMP-0BA02758.pf
O45 - LFCP:[MD5.91370CD75854A9A3AE95F422212EA381] - 02/03/2013 - 21:50:38 ---A- - C:\Windows\Prefetch\MBAM.EXE-80210E2F.pf
O45 - LFCP:[MD5.03FDD805B1C9833622A07ED0A656DFE5] - 02/03/2013 - 21:50:42 ---A- - C:\Windows\Prefetch\NOTEPAD.EXE-D8414F97.pf
O45 - LFCP:[MD5.07EA104D75504299EB1628900C530311] - 02/03/2013 - 21:52:16 ---A- - C:\Windows\Prefetch\CHROME.EXE-D999B1BA.pf
O45 - LFCP:[MD5.CE66A5EF367513BEF245BB8E7F80959E] - 02/03/2013 - 21:52:18 ---A- - C:\Windows\Prefetch\WMIADAP.EXE-F8DFDFA2.pf
O45 - LFCP:[MD5.3F4627A02160B0825526302475B82799] - 02/03/2013 - 21:52:28 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-87432CEE.pf
O45 - LFCP:[MD5.6EBF16C1FDAD01898AF0F9E1D1BE5F04] - 02/03/2013 - 21:53:03 ---A- - C:\Windows\Prefetch\WSCRIPT.EXE-9093C9D0.pf
O45 - LFCP:[MD5.0A551BA1648E525F1C19CA05EDAC35AA] - 02/03/2013 - 21:58:49 ---A- - C:\Windows\Prefetch\SNDVOL.EXE-5D4CC7D6.pf
O45 - LFCP:[MD5.508C09F95958CE5EC7A2CEC94A85CD10] - 02/03/2013 - 21:59:38 ---A- - C:\Windows\Prefetch\AgCx_S1_S-1-5-21-2914263168-274741686-3412035744-1010.snp.db
O45 - LFCP:[MD5.3E9E661F1E03ED07A3C1C146CD9B24F4] - 02/03/2013 - 22:00:14 ---A- - C:\Windows\Prefetch\ADOBEARM.EXE-7105D3A2.pf
O45 - LFCP:[MD5.7E912C10AAE361904A8D3F0A7A8E2F7F] - 02/03/2013 - 22:00:19 ---A- - C:\Windows\Prefetch\BAMBOOCORE.EXE-2F61DC2B.pf
O45 - LFCP:[MD5.E1488AC2F883C7287D02B625A2053A06] - 02/03/2013 - 22:03:21 ---A- - C:\Windows\Prefetch\HPQSTE08.EXE-DF637819.pf
O45 - LFCP:[MD5.3ED05CEC698ACF0B9F809B5714DC8C3E] - 02/03/2013 - 22:03:59 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-97F6A314.pf
O45 - LFCP:[MD5.9B7168D99C0588F7A7A2147973479D72] - 02/03/2013 - 22:04:00 ---A- - C:\Windows\Prefetch\AU_.EXE-665E2F33.pf
O45 - LFCP:[MD5.2913240C369C4BBEEE5FD5E532A5891B] - 02/03/2013 - 22:04:21 ---A- - C:\Windows\Prefetch\IEXPLORE.EXE-4B6C9213.pf
O45 - LFCP:[MD5.3C0BDE7EE013515877E427EAD2523D02] - 02/03/2013 - 22:07:28 ---A- - C:\Windows\Prefetch\REGSVR32.EXE-D5170E12.pf
O45 - LFCP:[MD5.2E4A51774B62BB33DF70B0A5EBC0F52E] - 02/03/2013 - 22:13:14 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-ECB71776.pf
O45 - LFCP:[MD5.10C9EB026FA29F4ABF2EC209BE8FCD8A] - 02/03/2013 - 22:21:09 ---A- - C:\Windows\Prefetch\TRUSTEDINSTALLER.EXE-3CC531E5.pf
O45 - LFCP:[MD5.E8C9E4BDCC839440668FB0FA148ACB80] - 02/03/2013 - 22:24:49 ---A- - C:\Windows\Prefetch\HARVESTER.EXE-0E0B3A0A.pf
O45 - LFCP:[MD5.A0570228ED20CC9B71227C48B74942C5] - 02/03/2013 - 22:24:53 ---A- - C:\Windows\Prefetch\READER_SL.EXE-B1C62096.pf
O45 - LFCP:[MD5.DD4C0FF15184C0BC7A175EACBDD7D87A] - 02/03/2013 - 22:24:53 ---A- - C:\Windows\Prefetch\SMARTINK.EXE-0FE556A4.pf
O45 - LFCP:[MD5.7473068170615A717A3DD9E3C874DCDF] - 02/03/2013 - 22:25:00 ---A- - C:\Windows\Prefetch\HPQBAM08.EXE-AB267C75.pf
O45 - LFCP:[MD5.9E8197F118123B1E09571F0399765A3E] - 02/03/2013 - 22:26:25 ---A- - C:\Windows\Prefetch\AgCx_S4_S-1-5-21-2914263168-274741686-3412035744-1005.snp.db
O45 - LFCP:[MD5.64780AF7267695CCE93D86D36048B32E] - 02/03/2013 - 22:27:39 ---A- - C:\Windows\Prefetch\AgCx_S3_S-1-5-21-2914263168-274741686-3412035744-1010.snp.db
O45 - LFCP:[MD5.24FDE96B606CEE5D52F7E57A3DB02B2D] - 02/03/2013 - 22:29:10 ---A- - C:\Windows\Prefetch\AgCx_SC3_CCB290D5DDD2C5A2.db
O45 - LFCP:[MD5.2928E79BBA7502F4F2E191A5FE833102] - 02/03/2013 - 22:29:42 ---A- - C:\Windows\Prefetch\WMIPRVSE.EXE-1628051C.pf
O45 - LFCP:[MD5.F26CAD7652628E7BC4A0E687ADF4491C] - 02/03/2013 - 22:57:00 ---A- - C:\Windows\Prefetch\FLASHPLAYERUPDATESERVICE.EXE-216D9C35.pf
O45 - LFCP:[MD5.4577B234EC57BE865D8E7D88B97B147E] - 02/03/2013 - 22:59:43 ---A- - C:\Windows\Prefetch\LOGONUI.EXE-09140401.pf
O45 - LFCP:[MD5.BCAAAC0B2CA2D478014F1DF9FA80A533] - 02/03/2013 - 22:59:44 ---A- - C:\Windows\Prefetch\TABTIP32.EXE-339F79E5.pf
O45 - LFCP:[MD5.29471FF6708A659D85777D4379EFEF88] - 02/03/2013 - 22:59:50 ---A- - C:\Windows\Prefetch\SMSS.EXE-E9C28FC6.pf
O45 - LFCP:[MD5.9786B76A99636F0D16650FE9CF787EC8] - 02/03/2013 - 22:59:50 ---A- - C:\Windows\Prefetch\TABTIP.EXE-D59C65B9.pf
O45 - LFCP:[MD5.6BFFF5F97C3C3A1D404DB140A0D78FCA] - 02/03/2013 - 23:00:00 ---A- - C:\Windows\Prefetch\CSRSS.EXE-3FE41F7E.pf
O45 - LFCP:[MD5.60B6865DF0CABA8DC4DDF5EEE5032D3F] - 02/03/2013 - 23:00:01 ---A- - C:\Windows\Prefetch\ATIECLXX.EXE-48B31DFA.pf
O45 - LFCP:[MD5.BE3AD66A496F7D1B290FF819A9D2B98A] - 02/03/2013 - 23:00:01 ---A- - C:\Windows\Prefetch\WINLOGON.EXE-B020DC41.pf
O45 - LFCP:[MD5.726E0CED1D72FC3D664AEA75C844DF23] - 02/03/2013 - 23:00:09 ---A- - C:\Windows\Prefetch\PEN_TABLET.EXE-B93314D3.pf
O45 - LFCP:[MD5.B2DF9C53D3B3C8620B8260E70541A442] - 02/03/2013 - 23:00:09 ---A- - C:\Windows\Prefetch\PEN_TOUCHUSER.EXE-9BAF7741.pf
O45 - LFCP:[MD5.E27609A527996AF2D3FB963C1B0AC36D] - 02/03/2013 - 23:00:09 ---A- - C:\Windows\Prefetch\WISPTIS.EXE-595A3677.pf
O45 - LFCP:[MD5.009FAD2B1C776B55C712AE115044FA6E] - 02/03/2013 - 23:00:12 ---A- - C:\Windows\Prefetch\MBAMGUI.EXE-1CA97248.pf
O45 - LFCP:[MD5.CF26DD5CDA1E2C231E4D23AF61FA1FB6] - 02/03/2013 - 23:00:20 ---A- - C:\Windows\Prefetch\PEN_TABLETUSER.EXE-BC3CD9DE.pf
O45 - LFCP:[MD5.F3A669A1D691C2EF44685D5BFC18926D] - 02/03/2013 - 23:00:35 ---A- - C:\Windows\Prefetch\ATBROKER.EXE-2E15A492.pf
O45 - LFCP:[MD5.427DACB0DC12CC34386E6D4DEB339013] - 02/03/2013 - 23:00:37 ---A- - C:\Windows\Prefetch\RUNONCE.EXE-0E293DD6.pf
O45 - LFCP:[MD5.DA4A9EBA3862E6622FED873B6A14D0B8] - 02/03/2013 - 23:00:45 ---A- - C:\Windows\Prefetch\DWM.EXE-6FFD3DA8.pf
O45 - LFCP:[MD5.8F7AD6AB4CE2D6823DA615F99B4A7C36] - 02/03/2013 - 23:00:45 ---A- - C:\Windows\Prefetch\EXPLORER.EXE-A80E4F97.pf
O45 - LFCP:[MD5.9E5F959E0A8DDF4E1CD76A161B377E0C] - 02/03/2013 - 23:00:45 ---A- - C:\Windows\Prefetch\USERINIT.EXE-2257A3E7.pf
O45 - LFCP:[MD5.32A28C1FAF0EE6F29DB2D32CC2F3E7AA] - 02/03/2013 - 23:00:48 ---A- - C:\Windows\Prefetch\AVASTUI.EXE-56B29A08.pf
O45 - LFCP:[MD5.A2FB6577A819E487D985449578AE4605] - 02/03/2013 - 23:00:48 ---A- - C:\Windows\Prefetch\GESTIONNAIRE ANTIDOTE.EXE-293C32EE.pf
O45 - LFCP:[MD5.EF0D9D17C822096F458E801AED40BA5D] - 02/03/2013 - 23:00:48 ---A- - C:\Windows\Prefetch\HPQTRA08.EXE-0584DF50.pf
O45 - LFCP:[MD5.55520E1701BFBD5784B8521AE40435CB] - 02/03/2013 - 23:00:48 ---A- - C:\Windows\Prefetch\SMARTBOARDSERVICE.EXE-BF2AA46F.pf
O45 - LFCP:[MD5.857C7B1ADEA27E12D5A547BE666543FA] - 02/03/2013 - 23:00:55 ---A- - C:\Windows\Prefetch\HPQGPC01.EXE-E2898B9C.pf
O45 - LFCP:[MD5.6428333D566E7C7E06D3AF4C87E05306] - 02/03/2013 - 23:01:09 ---A- - C:\Windows\Prefetch\WLRMDR.EXE-C2B47318.pf
O45 - LFCP:[MD5.967CA50054106BFF75070983DADBC64F] - 02/03/2013 - 23:01:30 ---A- - C:\Windows\Prefetch\AgCx_SC3_0002DD19516CE995.db
O45 - LFCP:[MD5.6F8896805091AAF68C099829A97123BF] - 02/03/2013 - 23:02:44 ---A- - C:\Windows\Prefetch\AVASTEMUPDATE.EXE-6EF4B603.pf
O45 - LFCP:[MD5.5D6A66119349ED155B7F82A58EE4A8A2] - 02/03/2013 - 23:06:57 ---A- - C:\Windows\Prefetch\FIREFOX.EXE-18ACFCFF.pf
O45 - LFCP:[MD5.62F9E2CC6BEF5A25EF3AC9474133EA50] - 02/03/2013 - 23:06:59 ---A- - C:\Windows\Prefetch\OUTLOOK.EXE-1DD230C3.pf
O45 - LFCP:[MD5.EEE7DD4439C764B8C87EA55F1DE8EA99] - 02/03/2013 - 23:07:00 ---A- - C:\Windows\Prefetch\SEARCHPROTOCOLHOST.EXE-42E1CDC2.pf
O45 - LFCP:[MD5.1B88B28CEE0FCF368129BFDB74C3CBCB] - 02/03/2013 - 23:10:30 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-7238F31D.pf
O45 - LFCP:[MD5.E8CFC6843837F40336E26D1AD7CF3318] - 02/03/2013 - 23:12:27 ---A- - C:\Windows\Prefetch\MPCMDRUN.EXE-F401FBB4.pf
O45 - LFCP:[MD5.B990C1E5EF4ECBFFEE5BC23E6795DF85] - 02/03/2013 - 23:15:13 ---A- - C:\Windows\Prefetch\AgRobust.db
O45 - LFCP:[MD5.77FA81D806CC43678EBB7C1932518B01] - 02/03/2013 - 23:15:14 ---A- - C:\Windows\Prefetch\AgGlFaultHistory.db
O45 - LFCP:[MD5.F9C415F413A5DE4B6459072DFB533930] - 02/03/2013 - 23:15:14 ---A- - C:\Windows\Prefetch\AgGlFgAppHistory.db
O45 - LFCP:[MD5.CB94E8B98E0ADC9F5365BE75268B0E59] - 02/03/2013 - 23:15:14 ---A- - C:\Windows\Prefetch\AgGlGlobalHistory.db
O45 - LFCP:[MD5.E6BA4830EB69335507D5EAF57E8BD2B3] - 02/03/2013 - 23:15:48 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-E7777CC4.pf
O45 - LFCP:[MD5.731AA89C121EB4E7F7800ED005D37F6D] - 02/03/2013 - 23:23:00 ---A- - C:\Windows\Prefetch\GOOGLEUPDATE.EXE-B95715F5.pf
O45 - LFCP:[MD5.66BCE777C8E07072330472C1571C17F6] - 02/03/2013 - 23:23:10 ---A- - C:\Windows\Prefetch\TASKENG.EXE-48D4E289.pf
O45 - LFCP:[MD5.E8CB6C8262CA056CC9005AD1C29B2B45] - 02/03/2013 - 23:26:25 ---A- - C:\Windows\Prefetch\SEARCHFILTERHOST.EXE-77482212.pf
O45 - LFCP:[MD5.02769785171010DF7D52E26CD058F64A] - 02/03/2013 - 23:26:25 ---A- - C:\Windows\Prefetch\SEARCHPROTOCOLHOST.EXE-0CB8CADE.pf
O45 - LFCP:[MD5.36E424949209898FD71F7F08D9EECFD2] - 02/03/2013 - 23:26:41 ---A- - C:\Windows\Prefetch\AUDIODG.EXE-BDFD3029.pf
O45 - LFCP:[MD5.D4524A67687832C3B39EF290795BF9B7] - 02/03/2013 - 23:28:39 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-76936ED5.pf
O45 - LFCP:[MD5.6AA85C6022E46326F028B72CBA77A276] - 02/03/2013 - 23:36:13 ---A- - C:\Windows\Prefetch\FLASHPLAYERPLUGIN_11_6_602_17-9E007675.pf
O45 - LFCP:[MD5.4B569E79E3F2FCB5603D03DB930EEDDD] - 02/03/2013 - 23:36:13 ---A- - C:\Windows\Prefetch\PLUGIN-CONTAINER.EXE-F1B02F03.pf
O45 - LFCP:[MD5.3CF18EF2F226CC7FBC9543D1A5819021] - 02/03/2013 - 23:38:50 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-5E46FA0D.pf
O45 - LFCP:[MD5.C45E24F71929214FD4A32F8E59519CF7] - 02/03/2013 - 23:39:45 ---A- - C:\Windows\Prefetch\SPPSVC.EXE-B0F8131B.pf
O45 - LFCP:[MD5.9300C42A6EADA8A8712ACA5E345516A8] - 02/03/2013 - 23:41:44 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-80F4A784.pf
O45 - LFCP:[MD5.1ADCDD44B3DD3DD0F44C417F403EEA98] - 02/03/2013 - 23:42:32 ---A- - C:\Windows\Prefetch\WERFAULT.EXE-37549B7E.pf
O45 - LFCP:[MD5.DCC40C9EDAFA2D03D7A098659B8340AE] - 02/03/2013 - 23:42:45 ---A- - C:\Windows\Prefetch\CONSENT.EXE-531BD9EA.pf
O45 - LFCP:[MD5.68E7CC486358BE44DDB51EEB3827B999] - 02/03/2013 - 23:42:50 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-766398D2.pf
O45 - LFCP:[MD5.3D8A763605AC4147114254A6EC5D7C70] - 02/03/2013 - 23:42:58 ---A- - C:\Windows\Prefetch\ZHPDIAG.EXE-0D117CAF.pf
O45 - LFCP:[MD5.558CB2AE7B3E8C4549E1F05050B684FA] - 02/03/2013 - 23:43:07 ---A- - C:\Windows\Prefetch\CMD.EXE-AC113AA8.pf
O45 - LFCP:[MD5.03B6656AF5A8B35C0253368211848F86] - 02/03/2013 - 23:43:07 ---A- - C:\Windows\Prefetch\CONHOST.EXE-1F3E9D7E.pf
O45 - LFCP:[MD5.0D75F6A5C128108C692C1A60FF7C44C2] - 02/03/2013 - 23:43:07 ---A- - C:\Windows\Prefetch\CSCRIPT.EXE-0FB3F22C.pf
O45 - LFCP:[MD5.F25C869CA67254A651F78C27E27AB2FD] - 02/03/2013 - 23:43:13 ---A- - C:\Windows\Prefetch\PV.EXE-34B75B82.pf
O45 - LFCP:[MD5.D6BE9D1E7F6FA06C5576C370DC26DD45] - 02/03/2013 - 23:43:15 ---A- - C:\Windows\Prefetch\WMIPRVSE.EXE-6768A320.pf
O45 - LFCP:[MD5.F9ECB04E6B3E5FACF67556C87CAE1530] - 02/03/2013 - 23:43:23 ---A- - C:\Windows\Prefetch\SCHTASKS.EXE-AD598958.pf
O45 - LFCP:[MD5.02927494A1B0193C5B62E47E99F56A21] - 03/02/2013 - 13:28:34 ---A- - C:\Windows\Prefetch\AgCx_S7_S-1-5-21-2914263168-274741686-3412035744-1005.snp.db
O45 - LFCP:[MD5.2F4843DCED3CF87893D7503EF49B1CB9] - 06/02/2013 - 10:00:01 ---A- - C:\Windows\Prefetch\AgCx_S3_S-1-5-21-2914263168-274741686-3412035744-1009.snp.db
O45 - LFCP:[MD5.0EDEFF1C71239326A8B2AFBCAAC67105] - 13/02/2013 - 16:00:01 ---A- - C:\Windows\Prefetch\AgCx_S2_S-1-5-21-2914263168-274741686-3412035744-1009.snp.db
O45 - LFCP:[MD5.2C2823BEE04F53E51DD44905D43F63C5] - 15/02/2013 - 19:00:01 ---A- - C:\Windows\Prefetch\AgCx_S9_S-1-5-21-2914263168-274741686-3412035744-1009.snp.db
O45 - LFCP:[MD5.63CD11F06881512CDA441206845F5ABD] - 16/02/2013 - 12:14:28 ---A- - C:\Windows\Prefetch\AgCx_S5_S-1-5-21-2914263168-274741686-3412035744-1005.snp.db
O45 - LFCP:[MD5.1862674FBAC38B69E567DE9C37A5648A] - 16/02/2013 - 14:13:28 ---A- - C:\Windows\Prefetch\AgCx_S7_S-1-5-21-2914263168-274741686-3412035744-1004.snp.db
O45 - LFCP:[MD5.D4640B216376EF4336CBEFA6E0D386CD] - 17/02/2013 - 20:01:51 ---A- - C:\Windows\Prefetch\AgCx_S2_S-1-5-21-2914263168-274741686-3412035744-1010.snp.db
O45 - LFCP:[MD5.049A8FEEE02ED9E0F9F4B1E42FB7456F] - 19/02/2013 - 19:00:01 ---A- - C:\Windows\Prefetch\AgCx_S9_S-1-5-21-2914263168-274741686-3412035744-1004.snp.db
O45 - LFCP:[MD5.E1AB068F3774A3B1955899F6783857AC] - 22/02/2013 - 20:00:01 ---A- - C:\Windows\Prefetch\AgCx_S11_S-1-5-21-2914263168-274741686-3412035744-1004.snp.db
O45 - LFCP:[MD5.B8F7DF0C267061C2368FF27EF51B3313] - 23/02/2013 - 17:15:45 ---A- - C:\Windows\Prefetch\AgCx_S4_S-1-5-21-2914263168-274741686-3412035744-1010.snp.db
O45 - LFCP:[MD5.8EECFCF21E0D08120795D6588FF98B03] - 24/02/2013 - 10:00:01 ---A- - C:\Windows\Prefetch\AgCx_S4_S-1-5-21-2914263168-274741686-3412035744-1004.snp.db
O45 - LFCP:[MD5.7F104F566F810CB392162CAD39CFC054] - 24/02/2013 - 13:05:32 ---A- - C:\Windows\Prefetch\AgGlUAD_P_S-1-5-21-2914263168-274741686-3412035744-1010.db
O45 - LFCP:[MD5.B4ACFE3E45CC72BEFCB56C9B2A4D5E00] - 24/02/2013 - 13:05:32 ---A- - C:\Windows\Prefetch\AgGlUAD_S-1-5-21-2914263168-274741686-3412035744-1010.db
O45 - LFCP:[MD5.10F2943FD1DB6163BB632286AEC91B42] - 24/02/2013 - 18:30:06 ---A- - C:\Windows\Prefetch\AgCx_S9_S-1-5-21-2914263168-274741686-3412035744-1003.snp.db
O45 - LFCP:[MD5.4538F6B4532B68634373AFAE82C467B1] - 24/02/2013 - 19:26:49 ---A- - C:\Windows\Prefetch\AgCx_S10_S-1-5-21-2914263168-274741686-3412035744-1005.snp.db
O45 - LFCP:[MD5.016EA5FCDA8BAA3FEA832090C9D49F56] - 25/02/2013 - 08:35:45 ---A- - C:\Windows\Prefetch\NTOSBOOT-B00DFAAD.pf
O45 - LFCP:[MD5.022BD77486ACE8A40FA51D911E097B83] - 25/02/2013 - 11:00:01 ---A- - C:\Windows\Prefetch\AgCx_S4_S-1-5-21-2914263168-274741686-3412035744-1009.snp.db
O45 - LFCP:[MD5.21B6E73FA3849E269455612CF7BC0102] - 25/02/2013 - 11:03:24 ---A- - C:\Windows\Prefetch\AgCx_SC3_E2FFC8968653FF8F.db
O45 - LFCP:[MD5.1D210EFF34B4B147C1FA8A6F8137B278] - 25/02/2013 - 12:00:01 ---A- - C:\Windows\Prefetch\AgCx_S6_S-1-5-21-2914263168-274741686-3412035744-1009.snp.db
O45 - LFCP:[MD5.A79E5BE61E000A2CB3F932414F3A18EB] - 25/02/2013 - 14:06:14 ---A- - C:\Windows\Prefetch\AgCx_SC3_BB417537C0859956.db
O45 - LFCP:[MD5.D5E805E7F9FD99F6676074E7C30AE72F] - 25/02/2013 - 18:32:43 ---A- - C:\Windows\Prefetch\AgCx_S1_S-1-5-21-2914263168-274741686-3412035744-1003.snp.db
O45 - LFCP:[MD5.B0333D00D2D796E4EC2D410485DD3207] - 25/02/2013 - 19:07:34 ---A- - C:\Windows\Prefetch\AgCx_S9_S-1-5-21-2914263168-274741686-3412035744-1010.snp.db
O45 - LFCP:[MD5.3C6456643E685CE8B338C6DE9A07B3F9] - 25/02/2013 - 20:58:20 ---A- - C:\Windows\Prefetch\AgCx_S8_S-1-5-21-2914263168-274741686-3412035744-1005.snp.db
O45 - LFCP:[MD5.8B1E0601CDD9A9A4512DE6D397BA8000] - 25/02/2013 - 23:02:35 ---A- - C:\Windows\Prefetch\AgCx_S10_S-1-5-21-2914263168-274741686-3412035744-1004.snp.db
O45 - LFCP:[MD5.9720F6FC4A64A04132AB274CBCF23336] - 26/02/2013 - 12:00:00 ---A- - C:\Windows\Prefetch\AgCx_S3_S-1-5-21-2914263168-274741686-3412035744-1004.snp.db
O45 - LFCP:[MD5.C8D43D5ED588133E5B8C664E3423253E] - 26/02/2013 - 16:46:50 ---A- - C:\Windows\Prefetch\AgCx_S7_S-1-5-21-2914263168-274741686-3412035744-1010.snp.db
O45 - LFCP:[MD5.0C151181CD6D672669B55C8228DA2472] - 26/02/2013 - 18:51:29 ---A- - C:\Windows\Prefetch\AgCx_S1_S-1-5-21-2914263168-274741686-3412035744-1005.snp.db
O45 - LFCP:[MD5.05DB1354CF8C82190DDA1566E60D97D5] - 27/02/2013 - 21:00:00 ---A- - C:\Windows\Prefetch\AgCx_S8_S-1-5-21-2914263168-274741686-3412035744-1004.snp.db
O45 - LFCP:[MD5.55E52A6168781AD173879843ABA80BE0] - 28/02/2013 - 21:02:31 ---A- - C:\Windows\Prefetch\AgCx_SC3_E4C1C658100467A8.db
O45 - LFCP:[MD5.D7C41CDF63DBD48080FEF4FF53AC5409] - 31/01/2013 - 22:47:34 ---A- - C:\Windows\Prefetch\AgCx_S5_S-1-5-21-2914263168-274741686-3412035744-1003.snp.db
~ Scan Prefetcher in 00mn 01s



---\\ Déni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l’Éditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\System32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corp. - LiveSSP.) -- C:\Windows\System32\livessp.dll
~ Scan Keys in 00mn 00s



---\\ Contrôle du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\System32\Drivers\rdpencdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
~ Scan CSB in 00mn 00s



---\\ MountPoints2 Shell Key (O51) (None)

---\\ Trojan Driver Search Data (HKLM) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
~ Scan Keys in 00mn 00s



---\\ ShareTools MSconfig StartupReg (O53)
O53 - SMSR:HKLM\...\startupreg\SMART Board Service  [Key] . (.SMART Technologies - SMART Board Service.) -- C:\Program Files (x86)\SMART Technologies\Education Software\SMARTBoardService.exe
O53 - SMSR:HKLM\...\startupreg\SMART Board Tools  [Key] . (.SMART Technologies ULC - SMART Board Tools.) -- C:\Program Files (x86)\SMART Technologies\Education Software\SMARTBoardTools.exe
~ Scan SMSR Keys in 00mn 00s



---\\ Microsoft Control Security Providers (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
~ Scan Keys in 00mn 00s



---\\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "HideFastUserSwitching"=0
O55 - MWPS:[HKCU\...\Policies\System] - "LogonHoursAction"=2
O55 - MWPS:[HKCU\...\Policies\System] - "DontDisplayLogonHoursWarnings"=1
~ Scan Keys in 00mn 00s



---\\ Microsoft Windows Policies Explorer (O56)
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=0
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveAutoRun"=3
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDriveAutoRun"=3
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDriveTypeAutoRun"=0
~ Scan Keys in 00mn 00s



---\\ Liste des Drivers Système (O58)
O58 - SDL:[MD5.2F6B34B83843F0C5118B63AC634F5BF4] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys   [491088]
O58 - SDL:[MD5.1D83092C995660EB7C14B13502879C16] - 26/02/2013 - 09:10:52 ---A- . (.Windows (R) Win 7 DDK provider - Support Device.) -- C:\Windows\System32\DrmCAudio.sys   [34528]
O58 - SDL:[MD5.9387A484D31209D7FC3F795A787294DB] - 16/02/2007 - 01:57:06 ---A- . (.SlySoft, Inc. - ElbyCDIO Filter Driver.) -- C:\Windows\SysWOW64\drivers\ElbyCDFL.sys   [40648]
~ Scan Drivers in 00mn 00s



---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)
O61 - LFC: 01/03/2013 - 13:35:28 ---A- C:\Users\Deu\AppData\Roaming\Audacity\plugins.cfg   [0]
O61 - LFC: 01/03/2013 - 13:36:23 ---A- C:\Users\Deu\AppData\Roaming\Audacity\audacity.cfg   [1182]
O61 - LFC: 01/03/2013 - 13:36:56 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\YQJ6YEDU\macromedia.com\support\flashplayer\sys\#player.ooyala.com\settings.sol   [87]
O61 - LFC: 01/03/2013 - 13:36:57 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\YQJ6YEDU\player.ooyala.com\auth_id.sol   [40]
O61 - LFC: 01/03/2013 - 13:36:58 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\YQJ6YEDU\macromedia.com\support\flashplayer\sys\#extras.ooyala.com\settings.sol   [87]
O61 - LFC: 01/03/2013 - 13:36:58 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\YQJ6YEDU\macromedia.com\support\flashplayer\sys\#fr-advideum.cdn.videoplaza.tv\settings.sol   [99]
O61 - LFC: 01/03/2013 - 13:36:58 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\YQJ6YEDU\macromedia.com\support\flashplayer\sys\settings.sol   [468]
O61 - LFC: 01/03/2013 - 13:36:58 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\YQJ6YEDU\player.ooyala.com\auth.sol   [70]
O61 - LFC: 01/03/2013 - 13:36:59 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\YQJ6YEDU\fr-advideum.cdn.videoplaza.tv\com.videoplaza.adplayer.sol   [113]
O61 - LFC: 01/03/2013 - 13:37:41 ---A- C:\Users\Deu\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-2013-03-01 (13-37-38).txt   [2232]
O61 - LFC: 01/03/2013 - 13:40:07 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\YQJ6YEDU\player.ooyala.com\perf.sol   [126]
O61 - LFC: 01/03/2013 - 13:41:34 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\YQJ6YEDU\fr-advideum.cdn.videoplaza.tv\com.videoplaza.bootloader.sol   [122]
O61 - LFC: 01/03/2013 - 13:41:34 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\YQJ6YEDU\player.ooyala.com\auth2.sol   [571]
O61 - LFC: 01/03/2013 - 13:43:24 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Origin Bound Certs   [15360]
O61 - LFC: 01/03/2013 - 13:45:16 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Bookmarks   [1116]
O61 - LFC: 01/03/2013 - 13:45:16 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Bookmarks.bak   [1116]
O61 - LFC: 01/03/2013 - 13:45:58 ---A- C:\Users\Deu\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-2013-03-01 (13-45-54).txt   [2232]
O61 - LFC: 01/03/2013 - 13:46:30 ---A- C:\Users\Deu\AppData\Local\RapidSolution\Audials_2013\Log\setup\Log_ice_20130301_134623_1508.txt   [3252]
O61 - LFC: 01/03/2013 - 13:48:57 ---A- C:\Users\Deu\AppData\Local\RapidSolution\Audials_2013\Log\setup\SF_20130301_134857_184.txt   [1986]
O61 - LFC: 01/03/2013 - 13:50:37 ---A- C:\Users\Deu\AppData\Local\RapidSolution\Audials_2013\Log\RSDriverManager_log.txt   [5538]
O61 - LFC: 01/03/2013 - 13:50:48 ---A- C:\Users\Deu\AppData\Local\RapidSolution\Audials_2013\Log\FingerPrint\Common_20130301_135043.txt   [2]
O61 - LFC: 01/03/2013 - 13:50:48 ---A- C:\Users\Deu\AppData\Local\RapidSolution\Audials_2013\Log\FingerPrint\Error_20130301_135043.txt   [2]
O61 - LFC: 01/03/2013 - 13:50:48 ---A- C:\Users\Deu\AppData\Local\RapidSolution\Audials_2013\Log\FingerPrint\Warning_20130301_135043.txt   [2]
O61 - LFC: 01/03/2013 - 13:50:50 ---A- C:\Users\Deu\AppData\Local\RapidSolution\Audials_2013\Log\log.txt.2   [12123]
O61 - LFC: 01/03/2013 - 13:50:50 ---A- C:\Users\Deu\AppData\Local\RapidSolution\Audials_2013\Log\profile.txt.2   [9722]
O61 - LFC: 01/03/2013 - 13:50:58 ---A- C:\Users\Deu\AppData\Local\RapidSolution\Audials_2013\Log\FingerPrint\Common_20130301_135055.txt   [2]
O61 - LFC: 01/03/2013 - 13:50:58 ---A- C:\Users\Deu\AppData\Local\RapidSolution\Audials_2013\Log\FingerPrint\Error_20130301_135055.txt   [2]
O61 - LFC: 01/03/2013 - 13:50:58 ---A- C:\Users\Deu\AppData\Local\RapidSolution\Audials_2013\Log\FingerPrint\Warning_20130301_135055.txt   [2]
O61 - LFC: 01/03/2013 - 13:51:06 ---A- C:\Users\Deu\AppData\Local\RapidSolution\Audials_2013\PostProcessing\Autotag\General\allmusic.dll   [183296]
O61 - LFC: 01/03/2013 - 13:51:08 ---A- C:\Users\Deu\AppData\Local\RapidSolution\Audials_2013\PluginsManager\DLLs\Box.dll   [508416]
O61 - LFC: 01/03/2013 - 13:51:08 ---A- C:\Users\Deu\AppData\Local\RapidSolution\Audials_2013\PostProcessing\Autotag\General\amazon.dll   [276992]
O61 - LFC: 01/03/2013 - 13:51:08 ---A- C:\Users\Deu\AppData\Local\RapidSolution\Audials_2013\PostProcessing\Autotag\General\itop.dll   [184320]
O61 - LFC: 01/03/2013 - 13:51:09 ---A- C:\Users\Deu\AppData\Local\RapidSolution\Audials_2013\PluginsManager\DLLs\ComputerBILD.dll   [455680]
O61 - LFC: 01/03/2013 - 13:51:09 ---A- C:\Users\Deu\AppData\Local\RapidSolution\Audials_2013\PostProcessing\Autotag\General\musicbrainz.dll   [250880]
O61 - LFC: 01/03/2013 - 13:51:10 ---A- C:\Users\Deu\AppData\Local\RapidSolution\Audials_2013\PostProcessing\Autotag\General\sonymusic.dll   [183808]
O61 - LFC: 01/03/2013 - 13:51:10 ---A- C:\Users\Deu\AppData\Local\RapidSolution\Audials_2013\PostProcessing\Autotag\General\yahoomusic.dll   [231424]
O61 - LFC: 01/03/2013 - 13:51:11 ---A- C:\Users\Deu\AppData\Local\RapidSolution\Audials_2013\PluginsManager\DLLs\Dropbox.dll   [659968]
O61 - LFC: 01/03/2013 - 13:51:11 ---A- C:\Users\Deu\AppData\Local\RapidSolution\Audials_2013\PostProcessing\Autotag\Lyrics\LyricsDemon.dll   [186880]
O61 - LFC: 01/03/2013 - 13:51:12 ---A- C:\Users\Deu\AppData\Local\RapidSolution\Audials_2013\PostProcessing\Autotag\Lyrics\LyricsFreak.dll   [181760]
O61 - LFC: 01/03/2013 - 13:51:13 ---A- C:\Users\Deu\AppData\Local\RapidSolution\Audials_2013\PluginsManager\DLLs\GooglePlay.dll   [527872]
O61 - LFC: 01/03/2013 - 13:51:13 ---A- C:\Users\Deu\AppData\Local\RapidSolution\Audials_2013\PostProcessing\Autotag\Lyrics\LyricWiki.dll   [183808]
O61 - LFC: 01/03/2013 - 13:51:13 ---A- C:\Users\Deu\AppData\Local\RapidSolution\Audials_2013\PostProcessing\Autotag\Lyrics\LyricsKeeper.dll   [185344]
O61 - LFC: 01/03/2013 - 13:51:14 ---A- C:\Users\Deu\AppData\Local\RapidSolution\Audials_2013\PluginsManager\DLLs\ITHit.WebDAV.Client.dll   [135168]
O61 - LFC: 01/03/2013 - 13:51:14 ---A- C:\Users\Deu\AppData\Local\RapidSolution\Audials_2013\PostProcessing\Autotag\Lyrics\MetroLyrics.dll   [182272]
O61 - LFC: 01/03/2013 - 13:51:15 ---A- C:\Users\Deu\AppData\Local\RapidSolution\Audials_2013\PluginsManager\DLLs\SoundCloud.dll   [279040]
O61 - LFC: 01/03/2013 - 13:51:16 ---A- C:\Users\Deu\AppData\Local\RapidSolution\Audials_2013\PluginsManager\DLLs\SkyDrive.dll   [462336]
O61 - LFC: 01/03/2013 - 13:51:18 ---A- C:\Users\Deu\AppData\Local\RapidSolution\Audials_2013\PluginsManager\DLLs\Strato.dll   [431616]
O61 - LFC: 01/03/2013 - 13:51:19 ---A- C:\Users\Deu\AppData\Local\RapidSolution\Audials_2013\PluginsManager\DLLs\Tangle.dll   [347648]
O61 - LFC: 01/03/2013 - 13:51:21 ---A- C:\Users\Deu\AppData\Local\RapidSolution\Audials_2013\PluginsManager\DLLs\OAuth.dll   [15360]
O61 - LFC: 01/03/2013 - 13:51:21 ---A- C:\Users\Deu\AppData\Local\RapidSolution\Audials_2013\PluginsManager\DLLs\TOnline.dll   [349696]
O61 - LFC: 01/03/2013 - 13:51:23 ---A- C:\Users\Deu\AppData\Local\RapidSolution\Audials_2013\PluginsManager\DLLs\Veoh.dll   [353792]
O61 - LFC: 01/03/2013 - 13:51:24 ---A- C:\Users\Deu\AppData\Local\RapidSolution\Audials_2013\PluginsManager\DLLs\Vimeo.dll   [348160]
O61 - LFC: 01/03/2013 - 13:51:26 ---A- C:\Users\Deu\AppData\Local\RapidSolution\Audials_2013\PluginsManager\DLLs\WebDAV.dll   [411648]
O61 - LFC: 01/03/2013 - 13:51:27 ---A- C:\Users\Deu\AppData\Local\RapidSolution\Audials_2013\PluginsManager\DLLs\YouTube.dll   [448000]
O61 - LFC: 01/03/2013 - 13:51:29 ---A- C:\Users\Deu\AppData\Local\RapidSolution\Audials_2013\PluginsManager\DLLs\YouTubeDisco.dll   [440832]
O61 - LFC: 01/03/2013 - 13:51:30 ---A- C:\Users\Deu\AppData\Local\RapidSolution\Audials_2013\PluginsManager\UserPlugins.xml   [55]
O61 - LFC: 01/03/2013 - 13:51:47 ---A- C:\Users\Deu\AppData\Local\RapidSolution\Audials_2013\Log\setup\Log_ice_20130301_134621_440.txt   [489186]
O61 - LFC: 01/03/2013 - 13:56:09 ---A- C:\Users\Deu\AppData\Local\RapidSolution\Audials_2013\Log\AudialsPlayer_log.txt   [1414]
O61 - LFC: 01/03/2013 - 13:59:33 ---A- C:\Users\Deu\AppData\Local\RapidSolution\Audials_2013\Log\errors.txt.1   [3322]
O61 - LFC: 01/03/2013 - 13:59:33 ---A- C:\Users\Deu\AppData\Local\RapidSolution\Audials_2013\Log\log.txt.1   [290318]
O61 - LFC: 01/03/2013 - 13:59:33 ---A- C:\Users\Deu\AppData\Local\RapidSolution\Audials_2013\Log\profile.txt.1   [172632]
O61 - LFC: 01/03/2013 - 14:01:46 ---A- C:\Users\Deu\Music\Playlists\Party Shuffle.wpl   [3757]
O61 - LFC: 01/03/2013 - 14:03:25 ---A- C:\Users\Deu\AppData\Roaming\Microsoft\eHome\mcl_images\115eadf1-41c4-471b-8fe5-7a52b91bfe75.png   [25072]
O61 - LFC: 01/03/2013 - 14:03:25 ---A- C:\Users\Deu\AppData\Roaming\Microsoft\eHome\mcl_images\13fcbfa9-499d-417c-95bb-71df7980beb5.png   [23187]
O61 - LFC: 01/03/2013 - 14:03:25 ---A- C:\Users\Deu\AppData\Roaming\Microsoft\eHome\mcl_images\4c0bd684-763b-44f1-9e67-78fee0a58174-thumb.png   [107911]
O61 - LFC: 01/03/2013 - 14:03:25 ---A- C:\Users\Deu\AppData\Roaming\Microsoft\eHome\mcl_images\6b51fba8-28d5-45d4-bee8-a9715f724d39.png   [16833]
O61 - LFC: 01/03/2013 - 14:03:25 ---A- C:\Users\Deu\AppData\Roaming\Microsoft\eHome\mcl_images\a3fbee7f-12c1-4a54-8c21-6db8a58e5ff0-thumb.png   [69862]
O61 - LFC: 01/03/2013 - 14:03:25 ---A- C:\Users\Deu\AppData\Roaming\Microsoft\eHome\mcl_images\c99561f0-bec8-4af4-9926-40bb79d34b07.png   [28452]
O61 - LFC: 01/03/2013 - 14:03:25 ---A- C:\Users\Deu\AppData\Roaming\Microsoft\eHome\mcl_images\fbc92d3f-8d42-41f5-8650-a434937862e7-thumb.png   [124579]
O61 - LFC: 01/03/2013 - 14:03:26 ---A- C:\Users\Deu\AppData\Roaming\Microsoft\eHome\mcl_images\1f3bd1b5-7323-4ec0-a518-47ff6b1ddc46.png   [24162]
O61 - LFC: 01/03/2013 - 14:03:26 ---A- C:\Users\Deu\AppData\Roaming\Microsoft\eHome\mcl_images\4f6dcc3b-179d-4b1b-80f0-b6083a0b3ce6-thumb.png   [96407]
O61 - LFC: 01/03/2013 - 14:03:26 ---A- C:\Users\Deu\AppData\Roaming\Microsoft\eHome\mcl_images\6797afb4-38cb-4297-b3e7-08c8bbe21971.png   [96407]
O61 - LFC: 01/03/2013 - 14:03:26 ---A- C:\Users\Deu\AppData\Roaming\Microsoft\eHome\mcl_images\76ca43a7-7878-4c7b-bc8b-be0cab71ace8.png   [55045]
O61 - LFC: 01/03/2013 - 14:03:26 ---A- C:\Users\Deu\AppData\Roaming\Microsoft\eHome\mcl_images\9fd01086-8e00-4ae7-a714-28d2b4a8497f-thumb.png   [115392]
O61 - LFC: 01/03/2013 - 14:03:26 ---A- C:\Users\Deu\AppData\Roaming\Microsoft\eHome\mcl_images\dd4b1666-aa76-4979-9130-ec9d6f8fe52e.png   [23491]
O61 - LFC: 01/03/2013 - 14:13:33 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\popup.html   [5820]
O61 - LFC: 01/03/2013 - 14:13:34 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\_locales\be\messages.json   [5431]
O61 - LFC: 01/03/2013 - 14:13:34 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\_locales\ur\messages.json   [5085]
O61 - LFC: 01/03/2013 - 14:13:34 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\avast_logo.png   [1796]
O61 - LFC: 01/03/2013 - 14:13:34 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\background-body.jpg   [523]
O61 - LFC: 01/03/2013 - 14:13:34 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\background-right-bottom.jpg   [637]
O61 - LFC: 01/03/2013 - 14:13:34 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\background-right-top.jpg   [634]
O61 - LFC: 01/03/2013 - 14:13:34 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\background-sitecorrect.png   [54751]
O61 - LFC: 01/03/2013 - 14:13:34 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\close.png   [1156]
O61 - LFC: 01/03/2013 - 14:13:34 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\disabled.png   [626]
O61 - LFC: 01/03/2013 - 14:13:34 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\grey.png   [1763]
O61 - LFC: 01/03/2013 - 14:13:34 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\horizontal-line-white.jpg   [743]
O61 - LFC: 01/03/2013 - 14:13:34 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\horizontal-line.jpg   [1032]
O61 - LFC: 01/03/2013 - 14:13:34 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icon_incorrect.png   [4733]
O61 - LFC: 01/03/2013 - 14:13:34 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\corporate-small-disable.png   [2087]
O61 - LFC: 01/03/2013 - 14:13:34 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\corporate-small-selected.png   [1939]
O61 - LFC: 01/03/2013 - 14:13:34 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\corporate.png   [3215]
O61 - LFC: 01/03/2013 - 14:13:34 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\drugs-small-disable.png   [2265]
O61 - LFC: 01/03/2013 - 14:13:34 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\drugs-small-selected.png   [2263]
O61 - LFC: 01/03/2013 - 14:13:34 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\drugs.png   [5828]
O61 - LFC: 01/03/2013 - 14:13:34 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\gambling-small-disable.png   [2303]
O61 - LFC: 01/03/2013 - 14:13:34 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\gambling-small-selected.png   [2155]
O61 - LFC: 01/03/2013 - 14:13:34 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\gambling.png   [4773]
O61 - LFC: 01/03/2013 - 14:13:34 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\green-1.png   [3829]
O61 - LFC: 01/03/2013 - 14:13:34 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\green-2.png   [3549]
O61 - LFC: 01/03/2013 - 14:13:34 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\green-3.png   [3075]
O61 - LFC: 01/03/2013 - 14:13:34 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\green-hover.png   [1593]
O61 - LFC: 01/03/2013 - 14:13:34 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\green-selected.png   [2977]
O61 - LFC: 01/03/2013 - 14:13:34 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\green.png   [1590]
O61 - LFC: 01/03/2013 - 14:13:34 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\green1-16.png   [1416]
O61 - LFC: 01/03/2013 - 14:13:34 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\green1-small.png   [1408]
O61 - LFC: 01/03/2013 - 14:13:34 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\green2-16.png   [1430]
O61 - LFC: 01/03/2013 - 14:13:34 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\green2-small.png   [1426]
O61 - LFC: 01/03/2013 - 14:13:34 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\green3-16.png   [1406]
O61 - LFC: 01/03/2013 - 14:13:34 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\logo.jpg   [4975]
O61 - LFC: 01/03/2013 - 14:13:34 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\vertical-line.jpg   [504]
O61 - LFC: 01/03/2013 - 14:13:35 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\green3-small.png   [1396]
O61 - LFC: 01/03/2013 - 14:13:35 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\grey-0.png   [3955]
O61 - LFC: 01/03/2013 - 14:13:35 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\grey-3.png   [3110]
O61 - LFC: 01/03/2013 - 14:13:35 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\grey-small.png   [1433]
O61 - LFC: 01/03/2013 - 14:13:35 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\grey3-16.png   [1451]
O61 - LFC: 01/03/2013 - 14:13:35 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\illegal-small-disable.png   [2318]
O61 - LFC: 01/03/2013 - 14:13:35 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\illegal-small-selected.png   [2320]
O61 - LFC: 01/03/2013 - 14:13:35 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\illegal.png   [6501]
O61 - LFC: 01/03/2013 - 14:13:35 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\it-small-disable.png   [2139]
O61 - LFC: 01/03/2013 - 14:13:35 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\it-small-selected.png   [1957]
O61 - LFC: 01/03/2013 - 14:13:35 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\it.png   [3884]
O61 - LFC: 01/03/2013 - 14:13:35 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\limet-hover.png   [1300]
O61 - LFC: 01/03/2013 - 14:13:35 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\limet-selected.png   [2791]
O61 - LFC: 01/03/2013 - 14:13:35 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\limet.png   [1298]
O61 - LFC: 01/03/2013 - 14:13:35 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\line-dark-horizontal.png   [1810]
O61 - LFC: 01/03/2013 - 14:13:35 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\line-light-horizontal.png   [1787]
O61 - LFC: 01/03/2013 - 14:13:35 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\logo128.jpg   [3601]
O61 - LFC: 01/03/2013 - 14:13:35 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\logo256.jpg   [8456]
O61 - LFC: 01/03/2013 - 14:13:35 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\logo48.jpg   [1391]
O61 - LFC: 01/03/2013 - 14:13:35 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\logo64.jpg   [1769]
O61 - LFC: 01/03/2013 - 14:13:35 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\news-small-disable.png   [2057]
O61 - LFC: 01/03/2013 - 14:13:35 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\news-small-selected.png   [1961]
O61 - LFC: 01/03/2013 - 14:13:35 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\news.png   [3762]
O61 - LFC: 01/03/2013 - 14:13:35 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\orange-hover.png   [1303]
O61 - LFC: 01/03/2013 - 14:13:35 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\orange-selected.png   [2788]
O61 - LFC: 01/03/2013 - 14:13:35 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\orange.png   [1304]
O61 - LFC: 01/03/2013 - 14:13:35 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\orange1-16.png   [1389]
O61 - LFC: 01/03/2013 - 14:13:35 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\orange2-16.png   [1406]
O61 - LFC: 01/03/2013 - 14:13:35 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\orange3-16.png   [1363]
O61 - LFC: 01/03/2013 - 14:13:35 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\pornography-small-disable.png   [2124]
O61 - LFC: 01/03/2013 - 14:13:35 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\pornography-small-selected.png   [1984]
O61 - LFC: 01/03/2013 - 14:13:35 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\pornography.png   [4104]
O61 - LFC: 01/03/2013 - 14:13:35 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\red-1.png   [3741]
O61 - LFC: 01/03/2013 - 14:13:35 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\red-2.png   [3479]
O61 - LFC: 01/03/2013 - 14:13:35 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\red-3.png   [2716]
O61 - LFC: 01/03/2013 - 14:13:35 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\red-hover.png   [1549]
O61 - LFC: 01/03/2013 - 14:13:35 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\red-selected.png   [2939]
O61 - LFC: 01/03/2013 - 14:13:35 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\red.png   [1552]
O61 - LFC: 01/03/2013 - 14:13:35 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\red1-16.png   [1376]
O61 - LFC: 01/03/2013 - 14:13:35 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\red1-small.png   [1367]
O61 - LFC: 01/03/2013 - 14:13:35 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\red2-16.png   [1386]
O61 - LFC: 01/03/2013 - 14:13:35 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\red2-small.png   [1377]
O61 - LFC: 01/03/2013 - 14:13:35 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\red3-16.png   [1361]
O61 - LFC: 01/03/2013 - 14:13:35 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\red3-small.png   [1352]
O61 - LFC: 01/03/2013 - 14:13:36 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\libs\avastwrc.js   [21020]
O61 - LFC: 01/03/2013 - 14:13:36 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\libs\dateFormat.js   [3751]
O61 - LFC: 01/03/2013 - 14:13:36 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\libs\jquery-1.5.2.js   [219227]
O61 - LFC: 01/03/2013 - 14:13:36 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\libs\jquery.1.8.js   [92556]
O61 - LFC: 01/03/2013 - 14:13:36 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\libs\jquery.js   [190963]
O61 - LFC: 01/03/2013 - 14:13:36 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\libs\pbj.js   [8166]
O61 - LFC: 01/03/2013 - 14:13:36 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\libs\protobuf.js   [59857]
O61 - LFC: 01/03/2013 - 14:13:36 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\libs\query.js   [45956]
O61 - LFC: 01/03/2013 - 14:13:36 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\libs\wrc_gpb.js   [18260]
O61 - LFC: 01/03/2013 - 14:13:36 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\scripts\anchor.js   [22643]
O61 - LFC: 01/03/2013 - 14:13:36 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\scripts\background.js   [30990]
O61 - LFC: 01/03/2013 - 14:13:36 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\scripts\jquery.js   [190963]
O61 - LFC: 01/03/2013 - 14:13:36 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\scripts\pbj.js   [8166]
O61 - LFC: 01/03/2013 - 14:13:36 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\scripts\popup.js   [10992]
O61 - LFC: 01/03/2013 - 14:13:36 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\scripts\protobuf.js   [59851]
O61 - LFC: 01/03/2013 - 14:13:36 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\scripts\ratings.js   [20607]
O61 - LFC: 01/03/2013 - 14:13:36 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\scripts\test_rules.js   [10189]
O61 - LFC: 01/03/2013 - 14:13:36 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\scripts\warnDlg.js   [26475]
O61 - LFC: 01/03/2013 - 14:13:36 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\scripts\wrc_gpb.js   [3544]
O61 - LFC: 01/03/2013 - 14:13:36 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\css\anchor.css   [139]
O61 - LFC: 01/03/2013 - 14:13:36 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\css\popup.css   [10292]
O61 - LFC: 01/03/2013 - 14:13:36 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\shopping-small-disable.png   [2122]
O61 - LFC: 01/03/2013 - 14:13:36 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\shopping-small-selected.png   [2075]
O61 - LFC: 01/03/2013 - 14:13:36 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\shopping.png   [5208]
O61 - LFC: 01/03/2013 - 14:13:36 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\social-small-disable.png   [2235]
O61 - LFC: 01/03/2013 - 14:13:36 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\social-small-selected.png   [2147]
O61 - LFC: 01/03/2013 - 14:13:36 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\social.png   [5147]
O61 - LFC: 01/03/2013 - 14:13:36 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\violence-small-disable.png   [2245]
O61 - LFC: 01/03/2013 - 14:13:36 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\violence-small-selected.png   [2109]
O61 - LFC: 01/03/2013 - 14:13:36 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\violence.png   [4866]
O61 - LFC: 01/03/2013 - 14:13:36 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\weapons-small-disable.png   [2245]
O61 - LFC: 01/03/2013 - 14:13:36 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\weapons-small-selected.png   [2109]
O61 - LFC: 01/03/2013 - 14:13:36 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\weapons.png   [6701]
O61 - LFC: 01/03/2013 - 14:13:36 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\yellow-1.png   [3818]
O61 - LFC: 01/03/2013 - 14:13:36 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\yellow-2.png   [3525]
O61 - LFC: 01/03/2013 - 14:13:36 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\yellow-3.png   [2697]
O61 - LFC: 01/03/2013 - 14:13:36 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\yellow-hover.png   [1304]
O61 - LFC: 01/03/2013 - 14:13:36 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\yellow-selected.png   [2782]
O61 - LFC: 01/03/2013 - 14:13:36 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\yellow.png   [1304]
O61 - LFC: 01/03/2013 - 14:13:36 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\yellow1-16.png   [1337]
O61 - LFC: 01/03/2013 - 14:13:36 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\yellow1-small.png   [1379]
O61 - LFC: 01/03/2013 - 14:13:36 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\yellow2-16.png   [1345]
O61 - LFC: 01/03/2013 - 14:13:36 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\yellow2-small.png   [1395]
O61 - LFC: 01/03/2013 - 14:13:36 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\yellow3-16.png   [1302]
O61 - LFC: 01/03/2013 - 14:13:36 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\yellow3-small.png   [1363]
O61 - LFC: 01/03/2013 - 14:13:37 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\_locales\ar\messages.json   [10153]
O61 - LFC: 01/03/2013 - 14:13:37 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\_locales\bg\messages.json   [10140]
O61 - LFC: 01/03/2013 - 14:13:37 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\_locales\bn\messages.json   [10607]
O61 - LFC: 01/03/2013 - 14:13:37 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\_locales\ca\messages.json   [4769]
O61 - LFC: 01/03/2013 - 14:13:37 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\_locales\cs\messages.json   [5275]
O61 - LFC: 01/03/2013 - 14:13:37 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\_locales\da\messages.json   [4605]
O61 - LFC: 01/03/2013 - 14:13:37 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\_locales\de\messages.json   [4735]
O61 - LFC: 01/03/2013 - 14:13:37 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\_locales\el\messages.json   [10662]
O61 - LFC: 01/03/2013 - 14:13:37 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\_locales\en\messages.json   [4607]
O61 - LFC: 01/03/2013 - 14:13:37 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\_locales\en_GB\messages.json   [4607]
O61 - LFC: 01/03/2013 - 14:13:37 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\_locales\es\messages.json   [4734]
O61 - LFC: 01/03/2013 - 14:13:37 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\_locales\et\messages.json   [4620]
O61 - LFC: 01/03/2013 - 14:13:37 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\_locales\fa\messages.json   [8761]
O61 - LFC: 01/03/2013 - 14:13:37 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\_locales\fi\messages.json   [4889]
O61 - LFC: 01/03/2013 - 14:13:37 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\_locales\fr\messages.json   [4843]
O61 - LFC: 01/03/2013 - 14:13:37 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\_locales\he\messages.json   [8683]
O61 - LFC: 01/03/2013 - 14:13:37 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\_locales\hi\messages.json   [10046]
O61 - LFC: 01/03/2013 - 14:13:37 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\_locales\hr\messages.json   [4556]
O61 - LFC: 01/03/2013 - 14:13:37 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\_locales\hu\messages.json   [5349]
O61 - LFC: 01/03/2013 - 14:13:37 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\_locales\id\messages.json   [4525]
O61 - LFC: 01/03/2013 - 14:13:37 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\_locales\it\messages.json   [4516]
O61 - LFC: 01/03/2013 - 14:13:37 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\_locales\ja\messages.json   [7668]
O61 - LFC: 01/03/2013 - 14:13:37 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\_locales\ko\messages.json   [6375]
O61 - LFC: 01/03/2013 - 14:13:37 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\_locales\lv\messages.json   [5236]
O61 - LFC: 01/03/2013 - 14:13:37 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\_locales\ms\messages.json   [4503]
O61 - LFC: 01/03/2013 - 14:13:37 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\_locales\nb\messages.json   [4633]
O61 - LFC: 01/03/2013 - 14:13:37 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\_locales\nl\messages.json   [4569]
O61 - LFC: 01/03/2013 - 14:13:37 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\_locales\pl\messages.json   [4978]
O61 - LFC: 01/03/2013 - 14:13:37 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\_locales\pt_BR\messages.json   [4804]
O61 - LFC: 01/03/2013 - 14:13:37 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\_locales\pt_PT\messages.json   [4627]
O61 - LFC: 01/03/2013 - 14:13:37 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\_locales\ro\messages.json   [4914]
O61 - LFC: 01/03/2013 - 14:13:37 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\_locales\ru\messages.json   [11327]
O61 - LFC: 01/03/2013 - 14:13:37 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\_locales\sk\messages.json   [5106]
O61 - LFC: 01/03/2013 - 14:13:37 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\_locales\sl\messages.json   [4578]
O61 - LFC: 01/03/2013 - 14:13:37 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\_locales\sr\messages.json   [4547]
O61 - LFC: 01/03/2013 - 14:13:37 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\_locales\sv\messages.json   [4821]
O61 - LFC: 01/03/2013 - 14:13:37 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\_locales\th\messages.json   [10495]
O61 - LFC: 01/03/2013 - 14:13:37 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\_locales\tr\messages.json   [4912]
O61 - LFC: 01/03/2013 - 14:13:37 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\_locales\uk\messages.json   [11186]
O61 - LFC: 01/03/2013 - 14:13:37 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\_locales\vi\messages.json   [6350]
O61 - LFC: 01/03/2013 - 14:13:37 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\_locales\zh_CN\messages.json   [5418]
O61 - LFC: 01/03/2013 - 14:13:37 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\_locales\zh_TW\messages.json   [5749]
O61 - LFC: 01/03/2013 - 14:13:37 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\manifest.json   [5271]
O61 - LFC: 01/03/2013 - 14:13:37 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\green3-24.png   [722]
O61 - LFC: 01/03/2013 - 14:13:37 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\8.0.1482_0\skin\images\icons\grey0-16.png   [537]
O61 - LFC: 01/03/2013 - 14:16:25 ---A- C:\Users\Deu\AppData\Roaming\Nero\OnlineServices\1registrationinfo.xml   [240]
O61 - LFC: 01/03/2013 - 14:16:31 ---A- C:\Users\Deu\AppData\Roaming\Nero\OnlineServices\FeedManager\Feeds.db   [27648]
O61 - LFC: 01/03/2013 - 14:17:19 ---A- C:\Users\Deu\AppData\Roaming\Nero\Nero 9\Nero StartSmart\NSSExternalInfoCache.xml   [2840]
O61 - LFC: 01/03/2013 - 14:17:19 ---A- C:\Users\Deu\AppData\Roaming\Nero\Nero 9\Nero StartSmart\NSSOptions.xml   [5404]
O61 - LFC: 01/03/2013 - 14:17:19 ---A- C:\Users\Deu\AppData\Roaming\Nero\Nero 9\Nero StartSmart\QLApps.xml   [126]
O61 - LFC: 01/03/2013 - 18:16:30 ---A- C:\Users\Deu\AppData\Roaming\Adobe\AIR\eulaAccepted   [1]
O61 - LFC: 01/03/2013 - 18:16:32 ---A- C:\Users\Deu\AppData\Roaming\Adobe\AIR\Updater\lastUpdateCheck   [34]
O61 - LFC: 01/03/2013 - 18:32:23 ---A- C:\Users\Deu\AppData\Roaming\Microsoft\CLR Security Config\v2.0.50727.312\security.config.cch   [1548]
O61 - LFC: 01/03/2013 - 18:38:52 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extension State\000016.sst   [222]
O61 - LFC: 01/03/2013 - 18:45:57 ---A- C:\Users\Deu\AppData\Local\RapidSolution\Audials_2013\Log\FingerPrint\Common_20130301_184557.txt   [2]
O61 - LFC: 01/03/2013 - 18:45:57 ---A- C:\Users\Deu\AppData\Local\RapidSolution\Audials_2013\Log\FingerPrint\Error_20130301_184557.txt   [2]
O61 - LFC: 01/03/2013 - 18:45:57 ---A- C:\Users\Deu\AppData\Local\RapidSolution\Audials_2013\Log\FingerPrint\Warning_20130301_184557.txt   [2]
O61 - LFC: 01/03/2013 - 18:46:05 ---A- C:\Users\Deu\AppData\Local\RapidSolution\Audials_2013\PostProcessing\Autotag\Sources.xml   [1499]
O61 - LFC: 01/03/2013 - 18:46:25 ---A- C:\Users\Deu\AppData\Local\RapidSolution\Audials_2013\Log\errors.txt   [1657]
O61 - LFC: 01/03/2013 - 18:46:43 ---A- C:\Users\Deu\AppData\Local\RapidSolution\Audials_2013\audials_modules.txt   [12815]
O61 - LFC: 01/03/2013 - 18:46:46 ---A- C:\Users\Deu\AppData\Local\RapidSolution\Audials_2013\MetaWeb\cache.xml   [17]
O61 - LFC: 01/03/2013 - 18:46:46 ---A- C:\Users\Deu\AppData\Local\RapidSolution\Audials_2013\MusicOrganizer\modb   [33792]
O61 - LFC: 01/03/2013 - 18:46:49 ---A- C:\Users\Deu\AppData\Local\RapidSolution\Audials_2013\AudialsSync\d602f7b3-e9a9-40c0-ae17-233721950c06_devices.txt   [1655]
O61 - LFC: 01/03/2013 - 18:46:49 ---A- C:\Users\Deu\AppData\Local\RapidSolution\Audials_2013\AudialsSync\d602f7b3-e9a9-40c0-ae17-233721950c06_namingrules.txt   [25724]
O61 - LFC: 01/03/2013 - 18:46:49 ---A- C:\Users\Deu\AppData\Local\RapidSolution\Audials_2013\AudialsSync\d602f7b3-e9a9-40c0-ae17-233721950c06_playlistentries.txt   [5]
O61 - LFC: 01/03/2013 - 18:46:49 ---A- C:\Users\Deu\AppData\Local\RapidSolution\Audials_2013\AudialsSync\d602f7b3-e9a9-40c0-ae17-233721950c06_playlists.txt   [5]
O61 - LFC: 01/03/2013 - 18:46:50 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\no\messages.json   [195]
O61 - LFC: 01/03/2013 - 18:46:50 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\main.html   [92]
O61 - LFC: 01/03/2013 - 18:46:50 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\main.js   [98]
O61 - LFC: 01/03/2013 - 18:46:50 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\manifest.json   [724]
O61 - LFC: 01/03/2013 - 18:46:50 ---A- C:\Users\Deu\AppData\Local\RapidSolution\Audials_2013\Log\log.txt   [61965]
O61 - LFC: 01/03/2013 - 18:46:50 ---A- C:\Users\Deu\AppData\Local\RapidSolution\Audials_2013\Log\profile.txt   [145268]
O61 - LFC: 01/03/2013 - 18:46:50 ---A- C:\Users\Deu\AppData\Local\RapidSolution\Audials_2013\Log\sql_log.txt   [18363]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\ar\messages.json   [374]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\bg\messages.json   [428]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\ca\messages.json   [207]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\cs\messages.json   [230]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\da\messages.json   [216]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\de\messages.json   [217]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\el\messages.json   [416]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\en_GB\messages.json   [208]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\en_US\messages.json   [209]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\es\messages.json   [206]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\es_419\messages.json   [206]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\et\messages.json   [216]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\fi\messages.json   [216]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\fil\messages.json   [219]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\fr\messages.json   [224]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\he\messages.json   [293]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\hi\messages.json   [375]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\hu\messages.json   [251]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\id\messages.json   [209]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\it\messages.json   [213]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\ja\messages.json   [263]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\ko\messages.json   [254]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\lt\messages.json   [234]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\lv\messages.json   [232]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\ms\messages.json   [207]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\nl\messages.json   [217]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\pl\messages.json   [217]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\pt_BR\messages.json   [206]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\pt_PT\messages.json   [208]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\ro\messages.json   [225]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\ru\messages.json   [434]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\sk\messages.json   [225]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\sl\messages.json   [218]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\sr\messages.json   [380]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\sv\messages.json   [214]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\th\messages.json   [329]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\tr\messages.json   [243]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\uk\messages.json   [428]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\vi\messages.json   [252]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\zh_CN\messages.json   [233]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\zh_TW\messages.json   [233]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\icon_128.png   [3009]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\icon_16.png   [143]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\128.png   [7654]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\ar\messages.json   [422]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\bg\messages.json   [559]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\ca\messages.json   [265]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\cs\messages.json   [283]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\da\messages.json   [251]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\de\messages.json   [256]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\el\messages.json   [565]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\en_GB\messages.json   [249]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\en_US\messages.json   [249]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\es\messages.json   [259]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\es_419\messages.json   [259]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\et\messages.json   [259]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\eu\messages.json   [243]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\fi\messages.json   [277]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\fil\messages.json   [260]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\fr\messages.json   [260]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\he\messages.json   [438]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\hi\messages.json   [492]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\hr\messages.json   [263]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\hu\messages.json   [276]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\id\messages.json   [261]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\it\messages.json   [258]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\ja\messages.json   [395]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\ko\messages.json   [365]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\lt\messages.json   [309]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\lv\messages.json   [262]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\ms\messages.json   [254]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\nl\messages.json   [250]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\no\messages.json   [218]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\pl\messages.json   [261]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\pt_BR\messages.json   [250]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\pt_PT\messages.json   [272]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\ro\messages.json   [309]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\ru\messages.json   [614]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\sk\messages.json   [293]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\sl\messages.json   [268]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\sr\messages.json   [467]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\sv\messages.json   [261]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\th\messages.json   [521]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\tr\messages.json   [302]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\uk\messages.json   [657]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\vi\messages.json   [321]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\zh_CN\messages.json   [360]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\zh_TW\messages.json   [348]
O61 - LFC: 01/03/2013 - 18:46:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\manifest.json   [996]
O61 - LFC: 02/03/2013 - 19:51:06 ---A- C:\Users\Deu\AppData\Local\Temp\MSI87759.LOG   [4456012]
O61 - LFC: 02/03/2013 - 20:02:43 RSHA- C:\Users\Deu\ntuser.pol   [664]
O61 - LFC: 02/03/2013 - 21:18:47 ---A- C:\Users\Deu\AppData\Roaming\Microsoft\HTML Help\hh.dat   [8590]
O61 - LFC: 02/03/2013 - 21:37:40 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extension State\000019.sst   [386]
O61 - LFC: 02/03/2013 - 21:40:53 ---A- C:\Users\Deu\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-2013-03-02 (21-40-45).txt   [2238]
O61 - LFC: 02/03/2013 - 21:48:59 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Archived History   [57344]
O61 - LFC: 02/03/2013 - 21:48:59 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Archived History-journal   [512]
O61 - LFC: 02/03/2013 - 21:49:00 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Top Sites   [20480]
O61 - LFC: 02/03/2013 - 21:49:00 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Top Sites-journal   [12824]
O61 - LFC: 02/03/2013 - 21:49:01 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\File System\000\p\Paths\LOG.old   [145]
O61 - LFC: 02/03/2013 - 21:49:01 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\LOG.old   [145]
O61 - LFC: 02/03/2013 - 21:49:05 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG.old   [145]
O61 - LFC: 02/03/2013 - 21:49:06 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Shortcuts   [12288]
O61 - LFC: 02/03/2013 - 21:49:06 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Shortcuts-journal   [12824]
O61 - LFC: 02/03/2013 - 21:49:11 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG.old   [261]
O61 - LFC: 02/03/2013 - 21:49:59 ---A- C:\Users\Deu\Downloads\UsbFix.exe   [1015546]
O61 - LFC: 02/03/2013 - 21:50:20 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Favicons   [43008]
O61 - LFC: 02/03/2013 - 21:50:20 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Favicons-journal   [12848]
O61 - LFC: 02/03/2013 - 21:50:20 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\History Index 2013-03   [61440]
O61 - LFC: 02/03/2013 - 21:50:21 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\TransportSecurity   [8]
O61 - LFC: 02/03/2013 - 21:50:21 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Visited Links   [131072]
O61 - LFC: 02/03/2013 - 21:50:35 ---A- C:\Users\Deu\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-2013-03-02 (21-50-32).txt   [2206]
O61 - LFC: 02/03/2013 - 21:51:34 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Last Session   [211316]
O61 - LFC: 02/03/2013 - 21:51:34 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Last Tabs   [67918]
O61 - LFC: 02/03/2013 - 21:52:17 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\CURRENT   [16]
O61 - LFC: 02/03/2013 - 21:52:17 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\MANIFEST-000027   [140]
O61 - LFC: 02/03/2013 - 21:52:17 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor   [20480]
O61 - LFC: 02/03/2013 - 21:52:17 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Web Data   [75776]
O61 - LFC: 02/03/2013 - 21:52:17 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal   [4624]
O61 - LFC: 02/03/2013 - 21:52:18 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\File System\000\p\Paths\CURRENT   [16]
O61 - LFC: 02/03/2013 - 21:52:18 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\File System\000\p\Paths\MANIFEST-000027   [86]
O61 - LFC: 02/03/2013 - 21:52:18 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor-journal   [10832]
O61 - LFC: 02/03/2013 - 21:52:19 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\File System\000\p\Paths\LOG   [145]
O61 - LFC: 02/03/2013 - 21:52:19 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\LOG   [145]
O61 - LFC: 02/03/2013 - 21:52:21 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extension State\CURRENT   [16]
O61 - LFC: 02/03/2013 - 21:52:21 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extension State\MANIFEST-000023   [506]
O61 - LFC: 02/03/2013 - 21:52:23 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG   [145]
O61 - LFC: 02/03/2013 - 21:52:26 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Managed Mode Settings   [8]
O61 - LFC: 02/03/2013 - 21:52:33 ---A- C:\Users\Deu\AppData\Local\Temp\~DFD41F60CDBA67146B.TMP   [65536]
O61 - LFC: 02/03/2013 - 21:52:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Cookies   [12288]
O61 - LFC: 02/03/2013 - 21:52:51 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Cookies-journal   [5672]
O61 - LFC: 02/03/2013 - 21:53:17 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Session Storage\000029.sst   [144]
O61 - LFC: 02/03/2013 - 21:53:17 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Session Storage\CURRENT   [16]
O61 - LFC: 02/03/2013 - 21:53:17 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG   [768]
O61 - LFC: 02/03/2013 - 21:53:17 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Session Storage\MANIFEST-000026   [378]
O61 - LFC: 02/03/2013 - 21:56:23 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Safe Browsing Download   [1734940]
O61 - LFC: 02/03/2013 - 21:56:25 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Safe Browsing Bloom   [8266032]
O61 - LFC: 02/03/2013 - 21:56:25 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Safe Browsing Bloom Prefix Set   [1475702]
O61 - LFC: 02/03/2013 - 21:56:25 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Safe Browsing Csd Whitelist   [134512]
O61 - LFC: 02/03/2013 - 21:56:25 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Safe Browsing Download Whitelist   [19852]
O61 - LFC: 02/03/2013 - 21:56:53 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Safe Browsing Cookies   [6144]
O61 - LFC: 02/03/2013 - 21:56:53 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Safe Browsing Cookies-journal   [2576]
O61 - LFC: 02/03/2013 - 21:58:18 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\File System\000\p\.usage   [24]
O61 - LFC: 02/03/2013 - 21:58:18 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\File System\000\p\00\00000000   [785336]
O61 - LFC: 02/03/2013 - 21:58:21 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Certificate Revocation Lists   [263966]
O61 - LFC: 02/03/2013 - 21:58:21 ---A- C:\Users\Deu\AppData\Local\Temp\CRX_75DAF8CB7768\crl-set   [1941]
O61 - LFC: 02/03/2013 - 21:58:21 ---A- C:\Users\Deu\AppData\Local\Temp\CRX_75DAF8CB7768\manifest.json   [34]
O61 - LFC: 02/03/2013 - 21:58:37 ---A- C:\Users\Deu\AppData\Local\Temp\wmplog00.sqm   [1686]
O61 - LFC: 02/03/2013 - 21:58:48 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\QuotaManager   [13312]
O61 - LFC: 02/03/2013 - 21:58:48 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\QuotaManager-journal   [4640]
O61 - LFC: 02/03/2013 - 21:59:30 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Current Session   [1385]
O61 - LFC: 02/03/2013 - 21:59:30 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Current Tabs   [1105]
O61 - LFC: 02/03/2013 - 21:59:30 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\History   [98304]
O61 - LFC: 02/03/2013 - 21:59:30 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache   [3048]
O61 - LFC: 02/03/2013 - 21:59:30 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\History-journal   [16384]
O61 - LFC: 02/03/2013 - 21:59:30 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Local State   [23575]
O61 - LFC: 02/03/2013 - 21:59:31 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\Default\Preferences   [87288]
O61 - LFC: 02/03/2013 - 21:59:31 ---A- C:\Users\Deu\AppData\Local\Google\Chrome\User Data\chrome_shutdown_ms.txt   [4]
O61 - LFC: 02/03/2013 - 22:03:07 ---A- C:\Users\Deu\AppData\Roaming\Wacom\bambooAuth.key   [228]
O61 - LFC: 02/03/2013 - 22:03:10 ---A- C:\Users\Deu\AppData\Local\Temp\qtsingleapp-harves-a098-3-lockfile   [0]
O61 - LFC: 02/03/2013 - 22:03:18 ---A- C:\Users\Deu\AppData\Local\Temp\RedboxLog.txt   [2910]
O61 - LFC: 02/03/2013 - 22:03:49 ---A- C:\Users\Deu\AppData\Local\Temp\~nsu.tmp\Au_.exe   [499440]
O61 - LFC: 02/03/2013 - 22:07:01 ---A- C:\Users\Deu\Downloads\Firefox Setup 19.0.exe   [20722920]
O61 - LFC: 02/03/2013 - 22:19:57 ---A- C:\Users\Deu\Searches\Pense-bête (Pense-bête Windows).searchconnector-ms   [940]
O61 - LFC: 02/03/2013 - 22:20:03 ---A- C:\Users\Deu\AppData\Roaming\Microsoft\Sticky Notes\StickyNotes.snt   [2560]
O61 - LFC: 02/03/2013 - 22:23:00 ---A- C:\Users\Deu\AppData\Local\assembly\dl3\4Z4M9NMP.18Y\A005JHA0.DJE\54d4e00b\00dbe8fc_c6b2cd01\SMARTInk-Excel-All.DLL   [40344]
O61 - LFC: 02/03/2013 - 22:23:00 ---A- C:\Users\Deu\AppData\Local\assembly\dl3\4Z4M9NMP.18Y\A005JHA0.DJE\687aa711\00dbe8fc_c6b2cd01\SMARTInkBase.DLL   [92568]
O61 - LFC: 02/03/2013 - 22:23:00 ---A- C:\Users\Deu\AppData\Local\assembly\dl3\4Z4M9NMP.18Y\A005JHA0.DJE\7da5911f\00e99429_01c7ca01\Microsoft.Office.Tools.Common.v4.0.Utilities.DLL   [32664]
O61 - LFC: 02/03/2013 - 22:23:00 ---A- C:\Users\Deu\AppData\Local\assembly\dl3\4Z4M9NMP.18Y\A005JHA0.DJE\f089b5b7\00dbe8fc_c6b2cd01\SBSDKUtilities.DLL   [94104]
O61 - LFC: 02/03/2013 - 22:23:01 ---A- C:\Users\Deu\AppData\Local\assembly\dl3\4Z4M9NMP.18Y\A005JHA0.DJE\595f763f\00aeb7fb_c6b2cd01\SBSDKProxyCommon.DLL   [12184]
O61 - LFC: 02/03/2013 - 22:23:34 ---A- C:\Users\Deu\AppData\Roaming\Microsoft\Office\Recent\p.LNK   [1004]
O61 - LFC: 02/03/2013 - 22:23:51 ---A- C:\Users\Deu\AppData\Local\Temp\msohtmlclip1\01\clip_colorschememapping.xml   [314]
O61 - LFC: 02/03/2013 - 22:23:51 ---A- C:\Users\Deu\AppData\Local\Temp\msohtmlclip1\01\clip_themedata.thmx   [3086]
O61 - LFC: 02/03/2013 - 22:27:20 ---A- C:\Users\Deu\AppData\Roaming\Microsoft\Office\Recent\Mes documents.LNK   [888]
O61 - LFC: 02/03/2013 - 22:27:20 ---A- C:\Users\Deu\AppData\Roaming\Microsoft\Office\Recent\SOS ANTIVIRUS.LNK   [1055]
O61 - LFC: 02/03/2013 - 22:27:20 ---A- C:\Users\Deu\Documents\SOS ANTIVIRUS.docx   [9902]
O61 - LFC: 02/03/2013 - 22:27:20 --H-- C:\Users\Deu\AppData\Roaming\Microsoft\Office\Recent\index.dat   [77]
O61 - LFC: 02/03/2013 - 22:27:24 ---A- C:\Users\Deu\AppData\Roaming\Microsoft\Office\Word12.pip   [1684]
O61 - LFC: 02/03/2013 - 22:27:30 ---A- C:\Users\Deu\AppData\Local\assembly\dl3\4Z4M9NMP.18Y\A005JHA0.DJE\d2651d9a\00bf9aee_c6b2cd01\SMARTInkComms.DLL   [23960]
O61 - LFC: 02/03/2013 - 22:27:30 ---A- C:\Users\Deu\AppData\Roaming\Microsoft\Office\Excel12.pip   [1544]
O61 - LFC: 02/03/2013 - 22:27:48 ---A- C:\Users\Deu\AppData\Roaming\WTablet\PenTouch.xml   [4021]
O61 - LFC: 02/03/2013 - 23:00:13 ---A- C:\Users\Deu\AppData\Roaming\WTablet\Pen_Tablet.dat   [1286]
O61 - LFC: 02/03/2013 - 23:00:17 --HA- C:\Users\Deu\AppData\Local\IconCache.db   [3776577]
O61 - LFC: 02/03/2013 - 23:00:18 ---A- C:\Users\Deu\AppData\Roaming\SMART Technologies\SMART Board Drivers\ContextTools.xml   [27078]
O61 - LFC: 02/03/2013 - 23:00:18 ---A- C:\Users\Deu\AppData\Roaming\SMART Technologies\SMART Board Drivers\FloatingToolsSmall.xml   [9085]
O61 - LFC: 02/03/2013 - 23:27:12 ---A- C:\Users\Deu\Documents\ZHPDiag.Txt   [150064]
~ Scan Files in 00mn 01s



---\\ Liste des outils de nettoyage (O63)
O63 - Logiciel: UsbFix By El Desaparecido - (.El Desaparecido - SosVirus.org.) [HKLM] -- Usbfix
O63 - Logiciel: ZHPDiag 1.3.5 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
~ Scan ADS in 00mn 00s



---\\ Liste des services Legacy (O64)
O64 - Services: CurCS - 06/04/2012 - C:\Windows\System32\DRIVERS\atikmdag.sys (amdkmdag)  .(.Advanced Micro Devices, Inc. - ATI Radeon Kernel Mode Driver.) - LEGACY_AMDKMDAG
O64 - Services: CurCS - 28/02/2013 - C:\Windows\System32\Drivers\aswFsBlk.sys (aswFsBlk)  .(.AVAST Software - avast! File System Access Blocking Driver.) - LEGACY_ASWFSBLK
O64 - Services: CurCS - 28/02/2013 - C:\Windows\system32\drivers\aswMonFlt.sys (aswMonFlt)  .(.AVAST Software - avast! File System Minifilter for Windows 2.) - LEGACY_ASWMONFLT
O64 - Services: CurCS - 28/02/2013 - C:\Windows\system32\Drivers\aswrdr2.sys (aswRdr)  .(.AVAST Software - avast! WFP Redirect Driver.) - LEGACY_ASWRDR
O64 - Services: CurCS - 28/02/2013 - C:\Windows\System32\Drivers\aswSnx.sys (aswSnx)  .(.AVAST Software - avast! Virtualization Driver.) - LEGACY_ASWSNX
O64 - Services: CurCS - 28/02/2013 - C:\Windows\System32\Drivers\aswSP.sys (aswSP)  .(.AVAST Software - avast! self protection module.) - LEGACY_ASWSP
O64 - Services: CurCS - 28/02/2013 - C:\Windows\System32\Drivers\aswTdi.sys (aswTdi)  .(.AVAST Software - avast! TDI Filter Driver.) - LEGACY_ASWTDI
O64 - Services: CurCS - 14/03/2010 - C:\Windows\System32\DRIVERS\atksgt.sys - atksgt (atksgt)  .(...) - LEGACY_ATKSGT
O64 - Services: CurCS - 21/07/2011 - C:\Program Files\ma-config.com\Drivers\driverhardwarev2x64.sys (driverhardwarev2x64)  .(.CybelSoft - Driver NT Ma-Config.com.) - LEGACY_DRIVERHARDWAREV2X64
O64 - Services: CurCS - 07/08/2007 - C:\Windows\System32\Drivers\ElbyCDIO.sys (ElbyCDIO)  .(.Elaborate Bytes AG - ElbyCD Windows x64 I/O driver.) - LEGACY_ELBYCDIO
O64 - Services: CurCS - 14/03/2010 - C:\Windows\System32\DRIVERS\lirsgt.sys - lirsgt (lirsgt)  .(...) - LEGACY_LIRSGT
O64 - Services: CurCS - 14/12/2012 - C:\Windows\system32\drivers\mbam.sys (MBAMProtector)  .(.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - LEGACY_MBAMPROTECTOR
O64 - Services: CurCS - 10/06/2009 - C:\Windows\System32\Drivers\secdrv.sys (secdrv)  .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV
~ Scan Services in 00mn 00s



---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> <evtfile>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\IEXPLORE.exe
O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> <evtfile>[HKCR\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
~ Scan Keys in 00mn 00s



---\\ Start Menu Internet (O68)
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
~ Scan Keys in 00mn 00s



---\\ Search Browser Infection (O69)
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKCU] {5CC1632F-7A51-43CD-B7DC-9AC2D5AAC8E8} - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKUS\.DEFAULT] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKUS\S-1-5-18] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com
~ Scan Keys in 00mn 00s



---\\ Recherche des services démarrés par Svchost (O83)
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll   [72192]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll   [80384]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll   [80384]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll   [236032]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll   [777728]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll   [853504]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll   [679424]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’accès distant.) -- C:\Windows\System32\rasauto.dll   [99328]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll   [344064]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll   [97792]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements système (SENS).) -- C:\Windows\System32\sens.dll   [64512]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll   [359424]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM).) -- C:\Windows\System32\tapisrv.dll   [316928]
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du serveur hôte de session Burea.) -- C:\Windows\System32\termsrv.dll   [680960]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\Windows\system32\wuaueng.dll   [2428952]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\Windows\System32\qmgr.dll   [849920]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll   [370688]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur un réseau IPv4..) -- C:\Windows\System32\iphlpsvc.dll   [569344]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll   [30720]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll   [70656]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll   [156672]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédias.) -- C:\Windows\System32\mmcss.dll   [67584]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll   [242688]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à distance.) -- C:\Windows\System32\sessenv.dll   [121856]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll   [136704]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll   [111104]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll   [1110016]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\kmsvc.dll   [90624]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll   [84480]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll   [209920]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll   [44544]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll   [100864]
~ Scan Services in 00mn 00s



---\\ Recherche particuliere à la racine de certains dossiers (O84)
[MD5.C5A55F0CCDC70589FB7324338AE7F34C] [SPRF][26/11/2011] (...) -- C:\ProgramData\1322295852.bdinstall.bin   [244239]
[MD5.258AC5D0434D99310A2C16B79FD742FA] [SPRF][28/11/2011] (...) -- C:\ProgramData\1322516322.bdinstall.bin   [102544]
[MD5.7364AC8A46739A39EAF03FEEC0C44248] [SPRF][10/10/2010] (...) -- C:\ProgramData\ezsidmv.dat   [56]
[MD5.0887BF1468CFFD7907EBE2396482CFBD] [SPRF][17/02/2013] (...) -- C:\Users\Deu\AppData\Local\fusioncache.dat   [91]
[MD5.6D69000BB6FFD6585C9F49720205EB78] [SPRF][02/03/2013] (...) -- C:\Users\Deu\Desktop\AdwCleaner.exe   [594019]
[MD5.53DDA20538126954A415C797BC0A63C7] [SPRF][29/06/2012] (.Adobe Systems, Inc. - Adobe Flash Player 10.1 r52.) -- C:\Users\Deu\Desktop\WebGameplay.exe   [5484987]
[MD5.18075B2C9F0F300BEE209744A8BEC353] [SPRF][05/01/2009] (...) -- C:\Windows\Downloaded Program Files\bdcore.dll   [32]
[MD5.61FB16B6016BCC9AA42E02F787DC87FC] [SPRF][26/01/2010] (.Adobe Systems Incorporated - Adobe® Flash® Player ActiveX Installer.) -- C:\Windows\Downloaded Program Files\FP_AX_CAB_INSTALLER.exe   [1955384]
[MD5.2B1C4C87EB20ADDBA59DCA975E28DFFB] [SPRF][05/01/2009] (...) -- C:\Windows\Downloaded Program Files\ipsupd.dll   [741376]
[MD5.18075B2C9F0F300BEE209744A8BEC353] [SPRF][05/01/2009] (...) -- C:\Windows\Downloaded Program Files\libfn.dll   [32]
[MD5.CC2CF44DB093645AF539D6F70C411827] [SPRF][12/05/2009] (.Microsoft Corp - Microsoft Support Diagnostic Tool Control.) -- C:\Windows\Downloaded Program Files\MSDcode.dll   [560544]
[MD5.2A8C7CA8B40CA320BF88D0FF92DA7CF8] [SPRF][04/04/2012] (.Bitdefender LLC - Bitdefender QuickScan.) -- C:\Windows\Downloaded Program Files\qsax.dll   [710304]
[MD5.B68F4650184AE3C121EADFF50EFC7276] [SPRF][15/09/2009] (.Google, Inc. - Photo Uploader.) -- C:\Windows\Downloaded Program Files\UploaderX.dll   [1001032]
~ Scan Files in 00mn 00s



---\\ Firewall Active Exception List (FirewallRules) (O87)
O87 - FAEL: "WMPNSS-In-UDP-NoScope" |In - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-UDP-NoScope" |Out - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-UDP" |In - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-UDP" |Out - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{D964C99D-673F-4B6A-BCF1-4F209ED4DBA2}" |Out - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{C6150B11-3F50-4D28-9DE7-CA1C54BF24F4}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{5DAAE5AE-1E67-4261-8D5E-3AAAF1A0E03C}" |Out - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{C78CDDBC-863D-4821-BE7E-1818E04D5DF2}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{2F731915-BAB3-4B40-9494-E83B675C2155}" | In - Private - P6 - TRUE | .(.BioWare - Launcher Application.) -- C:\Program Files (x86)\Mass Effect\MassEffectLauncher.exe
O87 - FAEL: "{8E3D50BF-465F-4E74-9BC6-4F9B8B060143}" | In - Private - P17 - TRUE | .(.BioWare - Launcher Application.) -- C:\Program Files (x86)\Mass Effect\MassEffectLauncher.exe
O87 - FAEL: "{610605F9-509B-463E-B1D4-15512808FCFA}" | In - Private - P6 - TRUE | .(.BioWare - Mass Effect.) -- C:\Program Files (x86)\Mass Effect\Binaries\MassEffect.exe
O87 - FAEL: "{03223BAD-4E3A-4B3C-A4CE-4D886CFCD7E5}" | In - Private - P17 - TRUE | .(.BioWare - Mass Effect.) -- C:\Program Files (x86)\Mass Effect\Binaries\MassEffect.exe
O87 - FAEL: "{0247CE78-5930-4A23-985F-D1B52D6D2C4C}" | In - Private - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O87 - FAEL: "{F2274038-AC15-49DA-9363-39943362FD26}" | In - Private - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O87 - FAEL: "{C47643EE-5FF2-4F51-A267-7B5832D73C60}" | In - Private - P6 - TRUE | .(.Apple Inc. - iTunes.) -- C:\Program Files (x86)\iTunes\iTunes.exe
O87 - FAEL: "{4909D8BB-9180-415B-9479-CCCE040F2C13}" | In - Private - P17 - TRUE | .(.Apple Inc. - iTunes.) -- C:\Program Files (x86)\iTunes\iTunes.exe
O87 - FAEL: "{8538285B-E9C8-4B18-BB38-DC7D109E9DDB}" | In - None - P17 - TRUE | .(.Hewlett-Packard - HP Software Update Client.) -- C:\Program Files (x86)\HP\hp software update\hpwucli.exe
O87 - FAEL: "{1DF637F4-02F6-49B5-896D-3445158B822D}" | In - Private - P6 - TRUE | .(.BioWare - Dragon Age: ??????.) -- C:\Program Files (x86)\Dragon Age\bin_ship\daorigins.exe
O87 - FAEL: "{14869D6F-2E81-4C9C-B2DE-4D32FBCE2B20}" | In - Private - P17 - TRUE | .(.BioWare - Dragon Age: ??????.) -- C:\Program Files (x86)\Dragon Age\bin_ship\daorigins.exe
O87 - FAEL: "{32B7DD00-8035-4EF4-9F3F-ADC88DD086DD}" | In - Private - P6 - TRUE | .(.BioWare - Launcher Application.) -- C:\Program Files (x86)\Dragon Age\DAOriginsLauncher.exe
O87 - FAEL: "{BB1E2D70-E9E5-4A85-AFA5-9410E7BF9DFD}" | In - Private - P17 - TRUE | .(.BioWare - Launcher Application.) -- C:\Program Files (x86)\Dragon Age\DAOriginsLauncher.exe
O87 - FAEL: "{6C0E441F-1D3B-44A4-A376-25B43E74CB8D}" | In - Private - P6 - TRUE | .(.Firaxis Games - Sid Meier's Civilization 4.) -- C:\Program Files (x86)\Firaxis Games\Sid Meier's Civilization 4\Civilization4.exe
O87 - FAEL: "{A6993B94-FE5B-44E6-9E37-AB374C237628}" | In - Private - P17 - TRUE | .(.Firaxis Games - Sid Meier's Civilization 4.) -- C:\Program Files (x86)\Firaxis Games\Sid Meier's Civilization 4\Civilization4.exe
O87 - FAEL: "{163D5C25-7247-4410-8667-29DA0B4D45FC}" | In - None - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
O87 - FAEL: "{AB31CC5B-58F9-4E0A-9315-452327DE1013}" | In - Private - P6 - TRUE | .(.BioWare - DAUpdaterSvc.Service.) -- C:\Program Files (x86)\Dragon Age\bin_ship\daupdatersvc.service.exe
O87 - FAEL: "{ACECBAE4-4642-41C3-ACA6-B55BF2F0E6A7}" | In - Private - P17 - TRUE | .(.BioWare - DAUpdaterSvc.Service.) -- C:\Program Files (x86)\Dragon Age\bin_ship\daupdatersvc.service.exe
O87 - FAEL: "TCP Query User{FFE57F5C-108B-461C-8608-836B13098AC8}C:\program files (x86)\codemasters\le seigneur des anneaux online\lotroclient.exe" | In - Private - P6 - TRUE | .(.Turbine, Inc..) -- C:\program files (x86)\codemasters\le seigneur des anneaux online\lotroclient.exe
O87 - FAEL: "UDP Query User{08CF904D-1763-4B1A-A060-F991BD38477F}C:\program files (x86)\codemasters\le seigneur des anneaux online\lotroclient.exe" | In - Private - P17 - TRUE | .(.Turbine, Inc..) -- C:\program files (x86)\codemasters\le seigneur des anneaux online\lotroclient.exe
O87 - FAEL: "TCP Query User{26AB9FD0-3AD8-4B10-B74C-7828D39ACB61}C:\users\thierry\videos\starcraft_2_eu_fr-fr.exe" | In - Private - P6 - TRUE | .(.Blizzard Entertainment - Blizzard Downloader.) -- C:\users\thierry\videos\starcraft_2_eu_fr-fr.exe
O87 - FAEL: "UDP Query User{45320EC7-F159-413C-A9A2-83940588930C}C:\users\thierry\videos\starcraft_2_eu_fr-fr.exe" | In - Private - P17 - TRUE | .(.Blizzard Entertainment - Blizzard Downloader.) -- C:\users\thierry\videos\starcraft_2_eu_fr-fr.exe
O87 - FAEL: "{971996C7-6D91-456D-A321-B4318FE1CDF7}" | In - Private - P6 - TRUE | .(.Blizzard Entertainment - Blizzard Launcher.) -- C:\Program Files (x86)\StarCraft II\StarCraft II.exe
O87 - FAEL: "{BD517E22-EAA6-4070-84B3-10E371CF84DD}" | In - Private - P17 - TRUE | .(.Blizzard Entertainment - Blizzard Launcher.) -- C:\Program Files (x86)\StarCraft II\StarCraft II.exe
O87 - FAEL: "TCP Query User{FF6EAAF4-23A7-4BCE-808E-E1FD94B60066}C:\program files (x86)\starcraft ii\versions\base16939\sc2.exe" | In - Private - P6 - TRUE | .(.Blizzard Entertainment, Inc..) -- C:\program files (x86)\starcraft ii\versions\base16939\sc2.exe
O87 - FAEL: "UDP Query User{867D7B13-44A4-46C6-A57B-F96B9BB71B5C}C:\program files (x86)\starcraft ii\versions\base16939\sc2.exe" | In - Private - P17 - TRUE | .(.Blizzard Entertainment, Inc..) -- C:\program files (x86)\starcraft ii\versions\base16939\sc2.exe
O87 - FAEL: "TCP Query User{BF0C8548-51C9-4570-B352-33B84A96C4A9}C:\program files (x86)\starcraft ii\support\blizzarddownloader.exe" | In - Private - P6 - TRUE | .(.Blizzard Entertainment.) -- C:\program files (x86)\starcraft ii\support\blizzarddownloader.exe
O87 - FAEL: "UDP Query User{29FF4281-BFFB-41C8-87BD-C3AEB56059F1}C:\program files (x86)\starcraft ii\support\blizzarddownloader.exe" | In - Private - P17 - TRUE | .(.Blizzard Entertainment.) -- C:\program files (x86)\starcraft ii\support\blizzarddownloader.exe
O87 - FAEL: "TCP Query User{4CFF86D4-FDFC-4655-9282-49A8D88AE457}C:\program files (x86)\starcraft ii\versions\base17326\sc2.exe" | In - Private - P6 - TRUE | .(.Blizzard Entertainment, Inc..) -- C:\program files (x86)\starcraft ii\versions\base17326\sc2.exe
O87 - FAEL: "UDP Query User{90052AA4-A1B1-475D-A457-2C039E0AC85D}C:\program files (x86)\starcraft ii\versions\base17326\sc2.exe" | In - Private - P17 - TRUE | .(.Blizzard Entertainment, Inc..) -- C:\program files (x86)\starcraft ii\versions\base17326\sc2.exe
O87 - FAEL: "TCP Query User{9B7B4109-2730-4360-9D87-939C49E85F4B}D:\fscommand\updater.exe" |In - Private - P6 - TRUE | .(...) -- D:\fscommand\updater.exe (.not file.)
O87 - FAEL: "UDP Query User{4A406F02-F324-4091-ACC7-63AC70DE7498}D:\fscommand\updater.exe" |In - Private - P17 - TRUE | .(...) -- D:\fscommand\updater.exe (.not file.)
O87 - FAEL: "{223C6D9E-0CA9-4C9B-924B-7FD2B391951F}" | In - Domain - P6 - TRUE | .(.BioWare - Dragon Age II.) -- C:\Program Files (x86)\Dragon Age 2\bin_ship\DragonAge2.exe
O87 - FAEL: "{CFC0D305-7190-4933-99DB-415A0D6EA948}" | In - Domain - P17 - TRUE | .(.BioWare - Dragon Age II.) -- C:\Program Files (x86)\Dragon Age 2\bin_ship\DragonAge2.exe
O87 - FAEL: "{168C0B18-922D-4F62-AA52-25E1AA5F7137}" | In - Domain - P6 - TRUE | .(.BioWare - Launcher Application.) -- C:\Program Files (x86)\Dragon Age 2\DragonAge2Launcher.exe
O87 - FAEL: "{DDC4A3C6-7B5B-4B60-A121-82651E18C9D2}" | In - Domain - P17 - TRUE | .(.BioWare - Launcher Application.) -- C:\Program Files (x86)\Dragon Age 2\DragonAge2Launcher.exe
O87 - FAEL: "{934C7A61-52D3-4227-B59E-BFF348194193}" | In - Private - P6 - TRUE | .(.BioWare - Launcher Application.) -- C:\Program Files (x86)\Electronic Arts\Mass Effect™ 2 Digital Deluxe Edition\MassEffect2Launcher.exe
O87 - FAEL: "{2A9EB221-9E81-44BF-8916-D2ECB571EB71}" | In - Private - P17 - TRUE | .(.BioWare - Launcher Application.) -- C:\Program Files (x86)\Electronic Arts\Mass Effect™ 2 Digital Deluxe Edition\MassEffect2Launcher.exe
O87 - FAEL: "TCP Query User{E0211F1B-F487-45F7-B595-050D854BFB7B}C:\program files (x86)\electronic arts\mass effect™ 2 digital deluxe edition\binaries\eacoreserver.exe" | In - Private - P6 - TRUE | .(.Electronic Arts.) -- C:\program files (x86)\electronic arts\mass effect™ 2 digital deluxe edition\binaries\eacoreserver.exe
O87 - FAEL: "UDP Query User{01CBA2D1-C1D3-4A35-A1BA-9CF083AB236F}C:\program files (x86)\electronic arts\mass effect™ 2 digital deluxe edition\binaries\eacoreserver.exe" | In - Private - P17 - TRUE | .(.Electronic Arts.) -- C:\program files (x86)\electronic arts\mass effect™ 2 digital deluxe edition\binaries\eacoreserver.exe
O87 - FAEL: "TCP Query User{A2D7EE94-75BA-49EA-8212-D07335300DD9}C:\program files (x86)\electronic arts\mass effect™ 2 digital deluxe edition\binaries\masseffect2.exe" | In - Private - P6 - TRUE | .(.BioWare.) -- C:\program files (x86)\electronic arts\mass effect™ 2 digital deluxe edition\binaries\masseffect2.exe
O87 - FAEL: "UDP Query User{035E789B-1D71-4C28-9241-8DFA27567F56}C:\program files (x86)\electronic arts\mass effect™ 2 digital deluxe edition\binaries\masseffect2.exe" | In - Private - P17 - TRUE | .(.BioWare.) -- C:\program files (x86)\electronic arts\mass effect™ 2 digital deluxe edition\binaries\masseffect2.exe
O87 - FAEL: "TCP Query User{8AA78F17-B7A0-4709-A2FF-DF0B1F7A528F}C:\program files (x86)\turbine\ddo unlimited\dndclient.exe" |In - Private - P6 - TRUE | .(...) -- C:\program files (x86)\turbine\ddo unlimited\dndclient.exe (.not file.)
O87 - FAEL: "UDP Query User{0EAE1088-C89E-420F-9BEB-29C3CF4AE721}C:\program files (x86)\turbine\ddo unlimited\dndclient.exe" |In - Private - P17 - TRUE | .(...) -- C:\program files (x86)\turbine\ddo unlimited\dndclient.exe (.not file.)
O87 - FAEL: "TCP Query User{A19A98F6-7318-4FE4-B532-5B45D99CAC50}C:\program files (x86)\funcom\age of conan\conanpatcher.exe" | In - Public - P6 - TRUE | .(.Funcom.) -- C:\program files (x86)\funcom\age of conan\conanpatcher.exe
O87 - FAEL: "UDP Query User{ADEFD0FE-22DF-47CF-BECE-FC4949169565}C:\program files (x86)\funcom\age of conan\conanpatcher.exe" | In - Public - P17 - TRUE | .(.Funcom.) -- C:\program files (x86)\funcom\age of conan\conanpatcher.exe
O87 - FAEL: "TCP Query User{B154EDCF-E02D-4C12-877C-36D3252795D2}C:\program files (x86)\funcom\age of conan\ageofconan.exe" | In - Public - P6 - TRUE | .(.Funcom.) -- C:\program files (x86)\funcom\age of conan\ageofconan.exe
O87 - FAEL: "UDP Query User{70F21165-B0CB-4187-9570-4FA11230D3FB}C:\program files (x86)\funcom\age of conan\ageofconan.exe" | In - Public - P17 - TRUE | .(.Funcom.) -- C:\program files (x86)\funcom\age of conan\ageofconan.exe
O87 - FAEL: "TCP Query User{3A053995-21FA-458A-BC03-F6179455B9B9}C:\program files (x86)\funcom\age of conan\conanpatcher.exe" | In - Private - P6 - TRUE | .(.Funcom.) -- C:\program files (x86)\funcom\age of conan\conanpatcher.exe
O87 - FAEL: "UDP Query User{69E2A000-4C93-46B1-A2CD-DEFE97BD69A7}C:\program files (x86)\funcom\age of conan\conanpatcher.exe" | In - Private - P17 - TRUE | .(.Funcom.) -- C:\program files (x86)\funcom\age of conan\conanpatcher.exe
O87 - FAEL: "TCP Query User{E5A05F31-F214-4A4B-800C-644182EEF0B2}C:\program files (x86)\funcom\age of conan\ageofconan.exe" | In - Private - P6 - TRUE | .(.Funcom.) -- C:\program files (x86)\funcom\age of conan\ageofconan.exe
O87 - FAEL: "UDP Query User{6725C88E-9352-407D-BDC1-60DBC67F026B}C:\program files (x86)\funcom\age of conan\ageofconan.exe" | In - Private - P17 - TRUE | .(.Funcom.) -- C:\program files (x86)\funcom\age of conan\ageofconan.exe
O87 - FAEL: "TCP Query User{D3D7C051-BEF3-4382-BD3D-C16B04470481}C:\program files (x86)\einstruction\response\_jvm\bin\java.exe" | In - Public - P6 - TRUE | .(.Sun Microsystems, Inc..) -- C:\program files (x86)\einstruction\response\_jvm\bin\java.exe
O87 - FAEL: "UDP Query User{C37D1EC4-2DE5-4C83-A299-BC41D6BA369E}C:\program files (x86)\einstruction\response\_jvm\bin\java.exe" | In - Public - P17 - TRUE | .(.Sun Microsystems, Inc..) -- C:\program files (x86)\einstruction\response\_jvm\bin\java.exe
O87 - FAEL: "{5EEBB76B-5545-4826-A49C-30CB8E869208}" | In - Public - P6 - TRUE | .(.eInstruction Corporation - Launcher Application.) -- C:\Program Files (x86)\eInstruction\Device Manager\Launch.exe
O87 - FAEL: "{433FE866-7B99-43B3-AC87-12CE31528319}" | In - Public - P17 - TRUE | .(.eInstruction Corporation - Launcher Application.) -- C:\Program Files (x86)\eInstruction\Device Manager\Launch.exe
O87 - FAEL: "{6D973718-4ED0-455D-A391-657E683A6092}" | In - Public - P6 - TRUE | .(.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\eInstruction\Device Manager\jre\bin\java.exe
O87 - FAEL: "{14FE249A-FF48-4E9F-8021-09FDE461833F}" | In - Public - P17 - TRUE | .(.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\eInstruction\Device Manager\jre\bin\java.exe
O87 - FAEL: "{EAA12AB2-5FF6-44F4-8943-F4AA88E30AC8}" | In - Public - P6 - TRUE | .(.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\eInstruction\Device Manager\jre\bin\javaw.exe
O87 - FAEL: "{4F22AE6F-214E-4155-B74F-26111FAAD41F}" | In - Public - P17 - TRUE | .(.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\eInstruction\Device Manager\jre\bin\javaw.exe
O87 - FAEL: "TCP Query User{EEFF95CF-A637-4D75-B2D3-3492CA513036}C:\program files (x86)\einstruction\device manager\launch.exe" | In - Private - P6 - TRUE | .(.eInstruction Corporation.) -- C:\program files (x86)\einstruction\device manager\launch.exe
O87 - FAEL: "UDP Query User{55661564-9708-4271-81E7-2097780204C7}C:\program files (x86)\einstruction\device manager\launch.exe" | In - Private - P17 - TRUE | .(.eInstruction Corporation.) -- C:\program files (x86)\einstruction\device manager\launch.exe
O87 - FAEL: "TCP Query User{AE76A29C-D826-4184-AF37-F11975B6F4A0}C:\program files (x86)\funcom\age of conan\ageofconandx10.exe" | In - Private - P6 - TRUE | .(.Funcom.) -- C:\program files (x86)\funcom\age of conan\ageofconandx10.exe
O87 - FAEL: "UDP Query User{C8165213-9A84-40D1-8770-F64BB050591A}C:\program files (x86)\funcom\age of conan\ageofconandx10.exe" | In - Private - P17 - TRUE | .(.Funcom.) -- C:\program files (x86)\funcom\age of conan\ageofconandx10.exe
O87 - FAEL: "TCP Query User{B3E82592-3985-4A3F-840E-4D6B2812F298}C:\program files (x86)\einstruction\response\_jvm\bin\java.exe" | In - Private - P6 - TRUE | .(.Sun Microsystems, Inc..) -- C:\program files (x86)\einstruction\response\_jvm\bin\java.exe
O87 - FAEL: "UDP Query User{765F9B98-37A5-4C54-979B-67CBE5CA0F68}C:\program files (x86)\einstruction\response\_jvm\bin\java.exe" | In - Private - P17 - TRUE | .(.Sun Microsystems, Inc..) -- C:\program files (x86)\einstruction\response\_jvm\bin\java.exe
O87 - FAEL: "{08FC256D-07DD-4F0B-8926-257A10C45780}" | In - Private - P6 - TRUE | .(.CybelSoft - Service de détection matériel.) -- C:\Program Files\ma-config.com\x64\maconfservice.exe
O87 - FAEL: "{65752119-E0E4-496B-AC5C-9D7F31AFD4EA}" | In - Private - P17 - TRUE | .(.CybelSoft - Service de détection matériel.) -- C:\Program Files\ma-config.com\x64\maconfservice.exe
O87 - FAEL: "TCP Query User{1013C7F8-A494-4933-B9EF-84EE6B877A3E}C:\program files (x86)\thq\dawn of war\w40k.exe" | In - Public - P6 - TRUE | .(.THQ Canada Inc. - Pas de description.) -- C:\program files (x86)\thq\dawn of war\w40k.exe
O87 - FAEL: "UDP Query User{3327B9C1-1AD7-42ED-8833-003206C2B746}C:\program files (x86)\thq\dawn of war\w40k.exe" | In - Public - P17 - TRUE | .(.THQ Canada Inc. - Pas de description.) -- C:\program files (x86)\thq\dawn of war\w40k.exe
O87 - FAEL: "TCP Query User{7F5E1EAA-D369-4175-ABBF-C33C2664B17A}C:\program files (x86)\thq\dawn of war\w40kwa.exe" | In - Public - P6 - TRUE | .(.THQ Canada Inc. - Pas de description.) -- C:\program files (x86)\thq\dawn of war\w40kwa.exe
O87 - FAEL: "UDP Query User{63B654B5-3E0F-484C-AC3F-EA7C87F90621}C:\program files (x86)\thq\dawn of war\w40kwa.exe" | In - Public - P17 - TRUE | .(.THQ Canada Inc. - Pas de description.) -- C:\program files (x86)\thq\dawn of war\w40kwa.exe
O87 - FAEL: "TCP Query User{A441B642-D3F2-4DF3-A322-779D968F39C3}C:\program files (x86)\thq\dawn of war - dark crusade\darkcrusade.exe" | In - Public - P6 - TRUE | .(.THQ Canada Inc..) -- C:\program files (x86)\thq\dawn of war - dark crusade\darkcrusade.exe
O87 - FAEL: "UDP Query User{2CE47336-0A0D-43F3-AE6A-C25778143CBC}C:\program files (x86)\thq\dawn of war - dark crusade\darkcrusade.exe" | In - Public - P17 - TRUE | .(.THQ Canada Inc..) -- C:\program files (x86)\thq\dawn of war - dark crusade\darkcrusade.exe
O87 - FAEL: "TCP Query User{CC3EC178-7B02-424B-9CB4-45CC22E4D93F}C:\program files (x86)\thq\dawn of war - soulstorm\soulstorm.exe" | In - Public - P6 - TRUE | .(.THQ Canada Inc..) -- C:\program files (x86)\thq\dawn of war - soulstorm\soulstorm.exe
O87 - FAEL: "UDP Query User{72E2B311-0B34-4112-9B4C-345586CE3CD7}C:\program files (x86)\thq\dawn of war - soulstorm\soulstorm.exe" | In - Public - P17 - TRUE | .(.THQ Canada Inc..) -- C:\program files (x86)\thq\dawn of war - soulstorm\soulstorm.exe
O87 - FAEL: "TCP Query User{11CA0E00-4CBC-4217-A86A-1003BDFC67F3}C:\program files (x86)\thq\dawn of war - soulstorm\soulstorm.exe" | In - Private - P6 - TRUE | .(.THQ Canada Inc..) -- C:\program files (x86)\thq\dawn of war - soulstorm\soulstorm.exe
O87 - FAEL: "UDP Query User{9A5E2F27-5807-4365-B000-383C8AF5FBEA}C:\program files (x86)\thq\dawn of war - soulstorm\soulstorm.exe" | In - Private - P17 - TRUE | .(.THQ Canada Inc..) -- C:\program files (x86)\thq\dawn of war - soulstorm\soulstorm.exe
O87 - FAEL: "TCP Query User{37E4C533-9132-4179-8C19-FF2E6627CAAB}C:\program files (x86)\thq\dawn of war - dark crusade\darkcrusade.exe" | In - Private - P6 - TRUE | .(.THQ Canada Inc..) -- C:\program files (x86)\thq\dawn of war - dark crusade\darkcrusade.exe
O87 - FAEL: "UDP Query User{0BFB7E06-20FE-4D29-A524-F94C871D27A3}C:\program files (x86)\thq\dawn of war - dark crusade\darkcrusade.exe" | In - Private - P17 - TRUE | .(.THQ Canada Inc..) -- C:\program files (x86)\thq\dawn of war - dark crusade\darkcrusade.exe
O87 - FAEL: "{734594A3-9292-4754-9DAC-DF1D42F4B6C6}" | In - Private - P6 - TRUE | .(.Valve Corporation - Steam.) -- C:\Program Files (x86)\Steam\Steam.exe
O87 - FAEL: "{3EF83C6E-4FD9-43E1-B9AD-96D9E8960BF3}" | In - Private - P17 - TRUE | .(.Valve Corporation - Steam.) -- C:\Program Files (x86)\Steam\Steam.exe
O87 - FAEL: "{D5451CA0-5EBB-4590-A9DB-AD53C31CA56B}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Steam\SteamApps\common\the witcher 2\BonusContent\launch.bat (.not file.)
O87 - FAEL: "{4CBCDC59-0947-49FE-9530-D829873E78BC}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Steam\SteamApps\common\the witcher 2\BonusContent\launch.bat (.not file.)
O87 - FAEL: "TCP Query User{086FD2A1-F110-48C4-9D94-F6134C01FDE1}C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe" | In - Private - P6 - TRUE | .(...) -- C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe
O87 - FAEL: "UDP Query User{F6CD746F-25BC-4F58-A88F-5896865B682A}C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe" | In - Private - P17 - TRUE | .(...) -- C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe
O87 - FAEL: "{6FCBB3DB-5619-49E3-BA43-4268E7E4F3BA}" |In - Private - P6 - TRUE | .(...) -- C:\Users\Thierry\AppData\Local\Temp\DSOClient\dlcache\app.n3app (.not file.)
O87 - FAEL: "{226E0EB7-F2AF-4B68-8414-2E8AE19F0C8E}" |In - Private - P17 - TRUE | .(...) -- C:\Users\Thierry\AppData\Local\Temp\DSOClient\dlcache\app.n3app (.not file.)
O87 - FAEL: "{BB8D440A-8254-4092-BFEC-4C60CC427CB5}" | In - Private - P6 - TRUE | .(.CD Projekt RED - The Witcher 2 Launcher Application.) -- C:\Program Files (x86)\Steam\SteamApps\common\the witcher 2\Launcher.exe
O87 - FAEL: "{E2A8175C-1291-4322-B46C-DA0BC9212B26}" | In - Private - P17 - TRUE | .(.CD Projekt RED - The Witcher 2 Launcher Application.) -- C:\Program Files (x86)\Steam\SteamApps\common\the witcher 2\Launcher.exe
O87 - FAEL: "{1604DBD4-01A3-4642-800D-6A3B092FB1AA}" | In - Private - P6 - TRUE | .(.SMART Technologies - SMART Display Controller Program.) -- C:\Program Files (x86)\SMART Technologies\Education Software\UCGui.exe
O87 - FAEL: "{1065006F-C41E-4224-83E7-B84C0C734B80}" | In - Private - P17 - TRUE | .(.SMART Technologies - SMART Display Controller Program.) -- C:\Program Files (x86)\SMART Technologies\Education Software\UCGui.exe
O87 - FAEL: "{9D31B3AC-8DB5-455F-9B31-8E2E5BE71F7D}" | In - Private - P6 - TRUE | .(.SMART Technologies - SMART SNMP Agent.) -- C:\Program Files (x86)\SMART Technologies\Education Software\SMARTSNMPAgent.exe
O87 - FAEL: "{07CE7E8C-A23D-42E0-97E2-1EBA51A6BB82}" | In - Private - P17 - TRUE | .(.SMART Technologies - SMART SNMP Agent.) -- C:\Program Files (x86)\SMART Technologies\Education Software\SMARTSNMPAgent.exe
O87 - FAEL: "{17347B6E-DB7F-4D70-8794-5DD7E7857979}" | In - Private - P6 - TRUE | .(.SMART Technologies - SMART Display Controller Service.) -- C:\Program Files (x86)\SMART Technologies\Education Software\UCService.exe
O87 - FAEL: "{9A5D9D32-0206-4DB3-AF05-DB4620FBA071}" | In - Private - P17 - TRUE | .(.SMART Technologies - SMART Display Controller Service.) -- C:\Program Files (x86)\SMART Technologies\Education Software\UCService.exe
O87 - FAEL: "{ABE93C24-03BE-470A-A1D5-8E20A14A8A6D}" | In - Private - P6 - TRUE | .(.SMART Technologies - Vantage Service.) -- C:\Program Files (x86)\SMART Technologies\Education Software\VantageService.exe
O87 - FAEL: "{45595723-65E9-438A-8015-113B9D116DD7}" | In - Private - P17 - TRUE | .(.SMART Technologies - Vantage Service.) -- C:\Program Files (x86)\SMART Technologies\Education Software\VantageService.exe
O87 - FAEL: "{B6E7D963-03CF-464E-9907-7AC86A183D8A}" | In - Domain - P17 - TRUE | .(.Audials AG - Audials.) -- C:\Program Files (x86)\Audials\Audials 10\Audials.exe
~ Scan Firewall in 00mn 00s



---\\ Scan Additionnel (O88)
Database Version : v2.11005 - (28/02/2013)
Clés trouvées (Keys found) : 27
Valeurs trouvées (Values found) : 0
Dossiers trouvés  (Folders found) : 2
Fichiers trouvés  (Files found) : 0

[HKLM\Software\Classes\Interface\{3f607e46-0d3c-4442-b1de-de7fa4768f5c}]   =>Adware.RecordNRip
[HKLM\Software\Wow6432Node\Classes\Interface\{3f607e46-0d3c-4442-b1de-de7fa4768f5c}]   =>Adware.RecordNRip
[HKLM\Software\Classes\TypeLib\{93e3d79c-0786-48ff-9329-93bc9f6dc2b3}]   =>Adware.RecordNRip
[HKLM\Software\Classes\Interface\{fe0273d1-99df-4ac0-87d5-1371c6271785}]   =>Adware.RecordNRip
[HKLM\Software\Wow6432Node\Classes\Interface\{fe0273d1-99df-4ac0-87d5-1371c6271785}]   =>Adware.RecordNRip
[HKLM\Software\Classes\Interface\{6deee498-08cc-43f0-bca0-dbb5a25c9501}]   =>Trojan.FakeAlert
[HKLM\Software\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}]   =>Toolbar.Agent
[HKLM\Software\Microsoft\Internet Explorer\extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}]   =>Toolbar.Agent
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}]   =>Toolbar.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]   =>Toolbar.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]   =>Toolbar.Agent
[HKLM\Software\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]   =>Toolbar.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]   =>Toolbar.Agent
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]   =>Toolbar.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\CC94835868BCA58489B0D79DE655BCB1]   =>PUP.Dealio
[HKLM\Software\Classes\Installer\Features\D82C50F59AED6DA47AA360145789E8BA]   =>PUP.Dealio
[HKLM\Software\Classes\Installer\Products\D82C50F59AED6DA47AA360145789E8BA]   =>PUP.Dealio
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\D82C50F59AED6DA47AA360145789E8BA]   =>PUP.Dealio
[HKLM\Software\Wow6432Node\Classes\Installer\Features\D82C50F59AED6DA47AA360145789E8BA]   =>PUP.Dealio
[HKLM\Software\Wow6432Node\Classes\Installer\Products\D82C50F59AED6DA47AA360145789E8BA]   =>PUP.Dealio
[HKLM\Software\Wow6432Node\SweetIM]   =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Microsoft\Tracing\offerbox_RASAPI32]   =>PUP.OfferBox
[HKLM\Software\Wow6432Node\Microsoft\Tracing\offerbox_RASMANCS]   =>PUP.OfferBox
[HKLM\Software\Wow6432Node\iMeshSRTB]   =>PUP.iMesh
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]   =>Toolbar.Bing
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]   =>Toolbar.Bing
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]   =>Toolbar.Bing
C:\Program Files (x86)\iMesh Applications   =>PUP.iMesh
C:\Program Files (x86)\Webgameplay setup   =>Toolbar.Agent
~ Scan Additionnel in 00mn 20s



---\\ Recherche détournement de DNS routeur (O89) (None)

---\\ Product Upgrade Codes (O90)
O90 - PUC: "007C4D30EFB20E340A4B59214BC3B5F9" . (.Catalyst Control Center - Branding.) -- C:\Windows\Installer\{03D4C700-2BFE-43E0-A0B4-9512B43C5B9F}\ARPPRODUCTICON.exe
O90 - PUC: "01E54B325AC09E34DBD62CDBC6EB11CA" . (.iTunes.) -- C:\Windows\Installer\{23B45E10-0CA5-43E9-BD6D-C2BD6CBE11AC}\Installer.ico
O90 - PUC: "076CFAAAB965F2A4284B2449E5D03EFE" . (.Windows Live Writer.) -- C:\Windows\Installer\{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}\ApplicationIcon.ico
O90 - PUC: "11F12B5E3396B0E42AC597363E0CD711" . (.Windows Live Messenger.) -- C:\Windows\Installer\{E5B21F11-6933-4E0B-A25C-7963E3C07D11}\MsblIco.Exe
O90 - PUC: "121E2D80A6F7BE3479DF26B944094330" . (.Microsoft_VC90_CRT_x86.) -- C:\Windows\Installer\{08D2E121-7F6A-43EB-97FD-629B44903403}\ARPPRODUCTICON.exe
O90 - PUC: "19DA96544F74E9D4F89C17E73CD2A71E" . (.Microsoft_VC80_CRT_x86_x64.) -- C:\Windows\Installer\{4569AD91-47F4-4D9E-8FC9-717EC32D7AE1}\ARPPRODUCTICON.exe
O90 - PUC: "1C4235E6CF4867F4A9A36CE5708FE06E" . (.Complément Messenger.) -- C:\Windows\Installer\{6E5324C1-84FC-4F76-9A3A-C65E07F80EE6}\CompanionIcon
O90 - PUC: "1D034B0FAA6BD374B960AAD30DF10D8B" . (.Microsoft SQL Server 2005 Compact Edition [ENU].) -- C:\Windows\Installer\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}\ProductIcon
O90 - PUC: "1D8877331D34F0A97978DD00BD15D214" . (.Catalyst Control Center Localization All.) -- C:\Windows\Installer\{337788D1-43D1-9A0F-9787-DD00DB512D41}\ARPPRODUCTICON.exe
O90 - PUC: "1ED3565076566C049B03933D996B3496" . (.OpenOffice.org 3.3.) -- C:\Windows\Installer\{05653DE1-6567-40C6-B930-39D399B64369}\soffice.ico
O90 - PUC: "20B91A1DE71869244AB57058F37DD475" . (.Microsoft_VC80_MFC_x86.) -- C:\Windows\Installer\{D1A19B02-817E-4296-A45B-07853FD74D57}\ARPPRODUCTICON.exe
O90 - PUC: "232CC823CDFCB8642A41E21203E0C45B" . (.Apple Mobile Device Support.) -- C:\Windows\Installer\{328CC232-CFDC-468B-A214-2E21300E4CB5}\Installer.ico
O90 - PUC: "23C6EC363BE115C498CFF99DA666A1C9" . (.AMD Media Foundation Decoders.) -- C:\Windows\Installer\{63CE6C32-1EB3-4C51-89FC-9FD96A661A9C}\ARPPRODUCTICON.exe
O90 - PUC: "25BBB29DFF28DE24A8C3E460F249A47B" . (.Microsoft_VC80_MFCLOC_x86.) -- C:\Windows\Installer\{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}\ARPPRODUCTICON.exe
O90 - PUC: "2742F1A44616AF34D9F23BE5178AFD23" . (.SMART Ink.) -- C:\Windows\Installer\{4A1F2472-6164-43FA-9D2F-B35E71A8DF32}\ARPPRODUCTICON.exe
O90 - PUC: "3128052F989958E40A8727EB849371FE" . (.Microsoft Games for Windows - LIVE Redistributable.) -- C:\Windows\Installer\{F2508213-9989-4E85-A078-72BE483917EF}\GameForWindowsLiveRedist.exe
O90 - PUC: "3FFC7FD7A30EEF149A0D67FCB35BF04B" . (.Audials.) -- C:\Windows\Installer\{7DF7CFF3-E03A-41FE-A9D0-76CF3BB50FB4}\AudialsOne_installer.exe
O90 - PUC: "4026D8E2656D5538E13D9288CA25BEF0" . (.ccc-utility64.) -- C:\Windows\Installer\{2E8D6204-D656-8355-1ED3-2988AC52EB0F}\ARPPRODUCTICON.exe
O90 - PUC: "44F9813EDB7F69F47B650AEAAF6FD1A3" . (.SMART Product Drivers.) -- C:\Windows\Installer\{E3189F44-F7BD-4F96-B756-A0AEFAF61D3A}\ARPPRODUCTICON.exe
O90 - PUC: "46B5A9879DD95AB419A50FCFA0B1B7EF" . (.Apple Software Update.) -- C:\Windows\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\Installer.ico
O90 - PUC: "4E9B274AFFA0B7F42BD56FF4E829A8BA" . (.Microsoft_VC90_MFC_x86_x64.) -- C:\Windows\Installer\{A472B9E4-0AFF-4F7B-B25D-F64F8E928AAB}\ARPPRODUCTICON.exe
O90 - PUC: "5B9842189A2AB474B97E5514E0E0D14B" . (.Ma-Config.com (64 bits).) -- C:\Windows\Installer\{812489B5-A2A9-474B-9BE7-55410E0E1DB4}\maconfico
O90 - PUC: "5DAB1C8C6E456414DA70A3A83D56963C" . (.Microsoft_VC80_MFC_x86_x64.) -- C:\Windows\Installer\{C8C1BAD5-54E6-4146-AD07-3A8AD36569C3}\ARPPRODUCTICON.exe
O90 - PUC: "68AB67CA7DA76301B744AA0100000010" . (.Adobe Reader X (10.1.6) - Français.) -- C:\Windows\Installer\{AC76BA86-7AD7-1036-7B44-AA1000000001}\SC_Reader.ico
O90 - PUC: "6D6C1385D9035BBD417FEF5E0768EC7E" . (.AMD Catalyst Install Manager.) -- C:\Windows\Installer\{5831C6D6-309D-DBB5-14F7-FEE57086CEE7}\ARPPRODUCTICON.exe
O90 - PUC: "7692FC6BE18C0C0489510C7547EF1F02" . (.Skype Click to Call.) -- C:\Windows\Installer\{B6CF2967-C81E-40C0-9815-C05774FEF120}\IconUninstallIco
O90 - PUC: "7C420EFA7AC7E8C409EE8D777CDC693A" . (.SMART Notebook.) -- C:\Windows\Installer\{AFE024C7-7CA7-4C8E-90EE-D877C7CD96A3}\ARPPRODUCTICON.exe
O90 - PUC: "7C43C21609E58D74B9C5F017D78D7262" . (.swMSM.) -- C:\Windows\Installer\{612C34C7-5E90-47D8-9B5C-0F717DD82726}\ARPPRODUCTICON.exe
O90 - PUC: "7CEBB04F4A2C00A4B942A750A5C22526" . (.Microsoft Office Live Add-in 1.5.) -- C:\Windows\Installer\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}\ProductIcon
O90 - PUC: "811CF9E1D156439479EB5EC3EAC5D754" . (.Microsoft_VC80_MFCLOC_x86_x64.) -- C:\Windows\Installer\{1E9FC118-651D-4934-97BE-E53CAE5C7D45}\ARPPRODUCTICON.exe
O90 - PUC: "846172B4BC3413DDFF427E0BD6E37EA2" . (.Catalyst Control Center InstallProxy.) -- C:\Windows\Installer\{4B271648-43CB-DD31-FF24-E7B06D3EE72A}\ARPPRODUCTICON.exe
O90 - PUC: "8F7463F0D15ECCF48826A9D8C0A5FC52" . (.Microsoft_VC80_ATL_x86.) -- C:\Windows\Installer\{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}\ARPPRODUCTICON.exe
O90 - PUC: "907018673D7AD86419761A87C0E167C6" . (.Windows Live FolderShare.) -- C:\Windows\Installer\{76810709-A7D3-468D-9167-A1780C1E766C}\FolderShare48x48.ico
O90 - PUC: "91785D291CBB3CC40AB8659C8E48CCC2" . (.Microsoft_VC80_CRT_x86.) -- C:\Windows\Installer\{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}\ARPPRODUCTICON.exe
O90 - PUC: "A5F2B91160A269BDFF8299E22C1AB0FD" . (.AMD Accelerated Video Transcoding.) -- C:\Windows\Installer\{119B2F5A-2A06-DB96-FF28-992EC2A10BDF}\ARPPRODUCTICON.exe
O90 - PUC: "A617B4D8EBA0832409092D805E5FA7E5" . (.SMART Product Update.) -- C:\Windows\Installer\{8D4B716A-0ABE-4238-9090-D208E5F57A5E}\ARPPRODUCTICON.exe
O90 - PUC: "B11EB510EB274C4499AB63AC3871754E" . (.SMART French Language Pack.) -- C:\Windows\Installer\{015BE11B-72BE-44C4-99BA-36CA831757E4}\ARPPRODUCTICON.exe
O90 - PUC: "B5DEF536D6C2EB94786EA7F6DC22CBA5" . (.Microsoft_VC90_MFC_x86.) -- C:\Windows\Installer\{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}\ARPPRODUCTICON.exe
O90 - PUC: "B850D529A465A3444B2BE7096C34E255" . (.Microsoft_VC80_ATL_x86_x64.) -- C:\Windows\Installer\{925D058B-564A-443A-B4B2-7E90C6432E55}\ARPPRODUCTICON.exe
O90 - PUC: "BB2989D3157A84E4DA8C4E829965ECD1" . (.QuickTime.) -- C:\Windows\Installer\{3D9892BB-A751-4E48-ADC8-E4289956CE1D}\Installer.ico
O90 - PUC: "BF01119B4B33B864092CD4E5A83EAF1E" . (.Bonjour.) -- C:\Windows\Installer\{B91110FB-33B4-468B-90C2-4D5E8AE3FAE1}\Bonjour.ico
O90 - PUC: "C4EA445D2514B5228A7976658C89B641" . (.Catalyst Control Center.) -- C:\Windows\Installer\{D544AE4C-4152-225B-A897-6756C8986B14}\ARPPRODUCTICON.exe
O90 - PUC: "C7030BC4E565144468EBD02F4EBF28C8" . (.Microsoft Games for Windows Marketplace.) -- C:\Windows\Installer\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}\GameForWindowsLiveDash.exe
O90 - PUC: "C7937558D24AF684793B2ABC2C735239" . (.Microsoft_VC90_ATL_x86_x64.) -- C:\Windows\Installer\{8557397C-A42D-486F-97B3-A2CBC2372593}\ARPPRODUCTICON.exe
O90 - PUC: "D0AC3A29DC55D5C4AB59C562002CF062" . (.Microsoft_VC90_CRT_x86_x64.) -- C:\Windows\Installer\{92A3CA0D-55CD-4C5D-BA95-5C2600C20F26}\ARPPRODUCTICON.exe
O90 - PUC: "D276F30548C6A844F8F8B43CA58C4314" . (.AMD APP SDK Runtime.) -- C:\Windows\Installer\{503F672D-6C84-448A-8F8F-4BC35AC83441}\ARPPRODUCTICON.exe
O90 - PUC: "D3BE9C3CAF4226447B48E06CAACF2DDD" . (.Fable - The Lost Chapters.) -- C:\Windows\Installer\{C3C9EB3D-24FA-4462-B784-0EC6AAFCD2DD}\ARPPRODUCTICON.exe
O90 - PUC: "D7314F9862C648A4DB8BE2A5B47BE100" . (.Microsoft Silverlight.) -- c:\Windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ARPIcon
O90 - PUC: "D82C50F59AED6DA47AA360145789E8BA" . (.Search Settings v1.2.3.) -- C:\Windows\Installer\{5F05C28D-DEA9-4AD6-A73A-064175988EAB}\ARPPRODUCTICON.exe
O90 - PUC: "E2FDA594DDD654C70EA29F4BFAF61257" . (.AMD Drag and Drop Transcoding.) -- C:\Windows\Installer\{495ADF2E-6DDD-7C45-E02A-F9B4AF6F2175}\ARPPRODUCTICON.exe
O90 - PUC: "E7FF67E4ABEA78C47B88DC745E24B5D9" . (.Skype™ 6.1.) -- C:\Windows\Installer\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}\SkypeIcon.exe
O90 - PUC: "E873E3303DA65DA4DBBEBC6DB91340C6" . (.Microsoft_VC90_ATL_x86.) -- C:\Windows\Installer\{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}\ARPPRODUCTICON.exe
O90 - PUC: "EB823D2BDA5429D4699F121594A002E3" . (.Apple Application Support.) -- C:\Windows\Installer\{B2D328BE-45AD-4D92-96F9-2151490A203E}\WinInstall.ico
O90 - PUC: "F6071111A6667304777712318267D401" . (.JavaFX 2.1.1.) -- C:\Windows\Installer\{1111706F-666A-4037-7777-211328764D10}\javaIcon.ico
O90 - PUC: "FA2F91E85417ED153E5977929A739437" . (.Catalyst Control Center Graphics Previews Common.) -- C:\Windows\Installer\{8E19F2AF-7145-51DE-E395-7729A9374973}\ARPPRODUCTICON.exe
~ Scan Files in 00mn 00s



---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SR - | Auto 18/12/2012 65192 |  (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
SS - | Demand 01/03/2013 251248 |  (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SR - | Auto 06/04/2012 236544 |  (AMD External Events Utility) . (.AMD.) - C:\Windows\System32\atiesrxx.exe
SS - | Disabled 10/06/2010 144176 |  (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
SR - | Auto 28/02/2013 45248 |  (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
SS - | Disabled 18/05/2010 345376 |  (Bonjour Service) . (.Apple Inc..) - C:\Program Files (x86)\Bonjour\mDNSResponder.exe
SS - | Disabled 08/10/2010 69120 |  (Boonty Games) . (.BOONTY.) - C:\Program Files (x86)\Common Files\BOONTY Shared\Service\Boonty.exe
SR - | Auto 15/12/2009 25832 |  (DAUpdaterSvc) . (.BioWare.) - C:\Program Files (x86)\Dragon Age\bin_ship\DAUpdaterSvc.Service.exe
SS - | Demand 19/06/2012 1044816 |  (FLEXnet Licensing Service) . (.Flexera Software, Inc..) - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
SS - | Demand  404192 |  (GSService) . (...) - C:\Windows\SysWOW64\GSService.exe
SS - | Auto 29/09/2010 136176 |  (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 29/09/2010 136176 |  (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SR - | Demand 14/07/2009 27136 | C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll (hpqcxs08) . (.Hewlett-Packard Co..) - C:\Windows\System32\svchost.exe
SR - | Auto 14/07/2009 27136 | C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll (hpqddsvc) . (.Hewlett-Packard Co..) - C:\Windows\System32\svchost.exe
SS - | Demand 22/10/2004 73728 |  (IDriverT) . (.Macrovision Corporation.) - C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
SS - | Demand 21/07/2010 654112 |  (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe
SS - | Demand 25/11/2011 427640 |  (maconfservice) . (.CybelSoft.) - C:\Program Files\ma-config.com\x64\maconfservice.exe
SR - | Auto 14/12/2012 398184 |  (MBAMScheduler) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
SR - | Auto 14/12/2012 682344 |  (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
SS - | Demand 16/02/2013 115608 |  (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
SR - | Auto 14/07/2009 27136 | C:\Windows\system32\HPZinw12.dll (Net Driver HPZ12) . (.Hewlett-Packard.) - C:\Windows\System32\svchost.exe
SR - | Auto 14/07/2009 27136 | C:\Windows\system32\HPZipm12.dll (Pml Driver HPZ12) . (.Hewlett-Packard.) - C:\Windows\System32\svchost.exe
SR - | Auto 02/10/2012 3064000 |  (Skype C2C Service) . (.Skype Technologies S.A..) - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
SS - | Auto 08/01/2013 161536 |  (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
SR - | Auto 17/10/2012 582552 |  (SMARTHelperService) . (.SMART Technologies.) - C:\Program Files (x86)\SMART Technologies\Education Software\SMARTHelperService.exe
SS - | Demand 17/12/2012 541168 |  (Steam Client Service) . (.Valve Corporation.) - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
SR - | Auto 08/09/2011 6583160 |  (TabletServicePen) . (.Wacom Technology, Corp..) - C:\Program Files\Tablet\Pen\Pen_Tablet.exe
SR - | Auto 08/09/2011 528760 |  (TouchServicePen) . (.Wacom Technology, Corp..) - C:\Program Files\Tablet\Pen\Pen_TouchService.exe
SR - | Auto 14/07/2009 27136 | C:\Program Files (x86)\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto  0 |  (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe
SR - | Auto 14/07/2009 27136 | C:\Windows\system32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
~ Scan Services in 00mn 00s



---\\ Recherche Master Boot Record Infection (MBR)(O80)
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
Run by Deu at 02/03/2013 23:46:31

device: opened successfully
user: error reading MBR 

Disk trace:
error: Read  Descripteur non valide
kernel: error reading MBR 
~ Scan MBR in 00mn 02s



---\\ Recherche Master Boot Record Infection (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by Deu at 02/03/2013 23:46:33

********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin
~ Scan MBR in 00mn 04s



End of the scan (2222 lines in 03mn 28s)(0)