~ Rapport de ZHPDiag v2013.8.20.29 - Nicolas Coolman  (20/08/2013)
~ Lancé par Thor (21/08/2013 02:56:00)
~ Adresse du Site Web http://nicolascoolman.webs.com
~ Traduit par Nicolas Coolman
~ Etat de la version : Version à jour.
~ Liste blanche : Désactivée par l'utilisateur
~ Elévation des Privilèges : OK
~ User Account Control (UAC): Activate by user


---\\ Navigateurs Internet
MSIE: Internet Explorer v10.0.9200.16660
MFIE: Mozilla Firefox 23.0.1 (Defaut)

---\\ Informations sur les produits Windows
~ Langage: Français
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)
Windows Server License Manager Script : OK
~ Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : 7QJB7
Windows License : OK
~ Windows Remaining Initializations Number : 2
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ Logiciels de protection du système
avast! Free Antivirus v8.0.1489.0
Malwarebytes Anti-Malware version 1.75.0.1300
ZoneAlarm Firewall v11.0.768.000
ZoneAlarm Free Firewall v11.0.768.000
ZoneAlarm Security v11.0.768.000
Windows Defender W7

---\\ Logiciels d'optimisation du système
CCleaner v4.04  =>Piriform Ltd

---\\ Logiciels de partage PeerToPeer

---\\ Surveillance de Logiciels
Adobe Flash Player 11 Plugin
Adobe Reader XI
Java 7 Update 25

---\\ Informations sur le système
~ Processor: AMD64 Family 20 Model 2 Stepping 0, AuthenticAMD
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3817 MB (70% free)
System Restore: Activé (Enable)
System drive C: has 529 GB (91%) free of 580 GB

---\\ Mode de connexion au système
~ Computer Name: STEPH-PC
~ User Name: Thor
~ All Users Names: Thor, Paulo, Administrateur, 
~ Unselected Option: None
Logged in as Administrator

---\\ Variables d'environnement
~ System Unit : C:\
~ %AppData% : C:\Users\Thor\AppData\Roaming\
~ %Desktop% : C:\Users\Thor\Desktop\
~ %Favorites% : C:\Users\Thor\Favorites\
~ %LocalAppData% : C:\Users\Thor\AppData\Local\
~ %StartMenu% : C:\Users\Thor\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ Enumération des unités disques
C:\ Hard drive, Flash drive, Thumb drive (Free 529 Go of 580 Go)
D:\ CD-ROM drive (Not Inserted)



---\\ Etat du Centre de Sécurité Windows
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime :  OK
~ Security Center: 29 Scanned in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.14/07/2011 - 06:30:29.) -- C:\Windows\Explorer.exe [2871808]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\System32\Wininit.exe [129024]
[MD5.AC155DD9BD1E6D3B740826A4D1C68AAE] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.20/08/2013 - 01:51:49.) -- C:\Windows\System32\wininet.dll [2241024]
[MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.21/11/2010 - 04:24:29.) -- C:\Windows\System32\Winlogon.exe [390656]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) (.21/11/2010 - 04:24:16.) -- C:\Windows\System32\sppcomapi.dll [232448]
[MD5.1C7857B62DE5994A75B054A9FD4C3825] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.28/12/2011 - 04:59:24.) -- C:\Windows\system32\Drivers\AFD.sys [498688]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.21/11/2010 - 04:23:47.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.21/11/2010 - 04:24:32.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.21/11/2010 - 04:23:47.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.14/07/2011 - 06:33:59.) -- C:\Windows\system32\Drivers\MRxSmb.sys [158208]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.21/11/2010 - 04:23:51.) -- C:\Windows\system32\Drivers\netBT.sys [261632]
[MD5.B98F8C6E31CD07B2E6F71F7F648E38C0] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.12/04/2013 - 15:45:08.) -- C:\Windows\system32\Drivers\ntfs.sys [1656680]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.21/11/2010 - 04:24:33.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.21/11/2010 - 04:24:32.) -- C:\Windows\system32\Drivers\tdx.sys [119296]
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.21/11/2010 - 04:23:47.) -- C:\Windows\system32\Drivers\volsnap.sys [295808]
~ Generic Processes:  Scanned in 00mn 01s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes Favoris (My Favorites) : 1/17
~ Mes Documents (My Documents) : 1/3
~ Mon Bureau (My Desktop) : 1/2
~ Menu demarrer (Programs) : 1/26
~ Hidden Files:  Scanned in 00mn 00s



---\\ Processus lancés au démarrage du système
[MD5.D1D5DAB39DCB4BE0359943738D87409B] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe   [532040] [PID.2124]
[MD5.474D72C90FEE1DDF4581CD87D660A667] - (.Check Point Software Technologies LTD - ZoneAlarm.) -- C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe   [73832] [PID.2940]
[MD5.3F11B20D12D89365D7721BDC860CE5F0] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe   [4858968] [PID.3312]
[MD5.70C884779005698988DA6FB93D9B8DFA] - (.QFX Software Corporation - KeyScrambler.) -- C:\Program Files (x86)\KeyScrambler\KeyScrambler.exe   [508048] [PID.2192]
[MD5.D00EA3CBEB3E81CD14BB7A9EA9396FD7] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe   [7851008] [PID.3848]
[MD5.0FD615FE9E1C17720063CE4F82F96A7B] - (.Check Point Software Technologies LTD - TrueVector Service.) -- C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe   [2445304] [PID.1384]
[MD5.28D6701C710AD7BA3CB95E75F8F1A9AA] - (.AVAST Software - avast! Service.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe   [46808] [PID.1684]
[MD5.1474F121C3DF1232D3E7239C03691EE6] - (.Adobe Systems Incorporated - Adobe Photoshop Elements 9.0 (component).) -- C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe   [169408] [PID.1936]
[MD5.ADDA5E1951B90D3D23C56D3CF0622ADC] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe   [65640] [PID.2008]
[MD5.9DD3A22F804697606C2B7FF9E912FF6B] - (.Dritek System Inc. - Dritek WMI Service.) -- C:\Program Files (x86)\Launch Manager\dsiwmis.exe   [353360] [PID.1248]
[MD5.C9B2D1D3F86FD3673EF847DEF73B6F9E] - (.Acer Incorporated - Global Registration Service.) -- C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe   [36456] [PID.1604]
[MD5.B705C7097F9A0EC941D02DCE7C7D426C] - (.Acer Incorporated - Updater Service.) -- C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe   [244624] [PID.1700]
[MD5.EBD35BDCE49B94EB247213610094F399] - (.Check Point Software Technologies, Ltd. - ZAPrivacyService.) -- C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZAPrivacyService.exe   [54160] [PID.2024]
[MD5.E0E4A1F81A7D69C595A8A9DDAD084C19] - (.Nero AG - NeroUpdate.) -- C:\Program Files (x86)\Nero\Update\NASvc.exe   [769432] [PID.3604]
[MD5.65085456FD9A74D7F1A999520C299ECB] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe   [418376] [PID.2468]
[MD5.E0D7732F2D2E24B2DB3F67B6750295B8] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe   [701512] [PID.3824]
[MD5.21ACFD2B4BF6C0F4D9080A437E400E88] - (.Dritek System Inc. - Launch Manager utility process.) -- C:\Program Files (x86)\Launch Manager\LMutilps32.exe   [418896] [PID.2792]
~ Processes Running:  Scanned in 00mn 02s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions  (P2,M0,M1,M2,M3)
C:\Users\Thor\AppData\Roaming\Mozilla\Firefox\Profiles\zzdadus9.default\prefs.js
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_94.dll
P2 - FPN: [HKLM] [@java.com/DTPlugin,version=10.25.2] - (.Oracle Corporation - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Windows\system32\npDeployJava1.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.20513.0.) -- c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll
~ Firefox Browser: 3 Scanned in 00mn 01s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://packardbell.msn.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://packardbell.msn.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (10.00.9200.16521 (win8_gdr_soc_ie.130216-2100)) -- C:\Windows\SysWOW64\ieframe.dll
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
~ IE Browser: 15 Scanned in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management:  Scanned in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys:  Scanned in 00mn 00s



---\\ Hosts file redirection (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File:  Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 21



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security [64Bits] - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - IE Webrep plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll  =>Toolbar.Avast
O2 - BHO: Windows Live ID Sign-in Helper [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Bing Bar Helper [64Bits] - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} . (...) -- "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (.not file.)  =>Toolbar.Bing
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: (no name) [64Bits] - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} Clé orpheline
~ BHO: 7 Scanned in 00mn 00s



---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: (no name) [64Bits] - [HKLM]{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} Clé orpheline
~ Toolbar:  Scanned in 00mn 00s



---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe (.not file.) 
O4 - HKLM\..\Run: [Power Management] . (.Acer Incorporated - ePowerTray.) -- C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe 
O4 - HKCU\..\RunOnce: [Report] . (...) -- \AdwCleaner\AdwCleaner[S0].txt 
O4 - HKLM\..\Wow6432Node\Run: [ZoneAlarm] . (.Check Point Software Technologies LTD - ZoneAlarm.) -- C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe 
O4 - HKLM\..\Wow6432Node\Run: [avast] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastUI.exe 
O4 - HKLM\..\Wow6432Node\Run: [KeyScrambler] . (.QFX Software Corporation - KeyScrambler.) -- C:\Program Files (x86)\KeyScrambler\keyscrambler.exe 
O4 - HKLM\..\Wow6432Node\RunOnce: [Malwarebytes Anti-Malware] . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe 
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe 
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe 
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe 
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe 
~ Application:  Scanned in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - GS\TaskBar: avast! Free Antivirus.lnk . (.AVAST Software - avast! Antivirus.)  -- C:\Program Files\AVAST Software\Avast\AvastUI.exe 
O4 - GS\TaskBar: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.)  -- C:\Program Files (x86)\Internet Explorer\iexplore.exe 
O4 - GS\TaskBar: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.)  -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe 
O4 - GS\TaskBar: Sticky Notes.lnk . (.Microsoft Corporation - Pense-bête.)  -- C:\Windows\system32\StikyNot.exe 
O4 - GS\TaskBar: Welcome Center.lnk . (.Acer Incorporated - Welcome Center.)  -- C:\Program Files (x86)\Packard Bell\Welcome Center\OEMWelcomeCenter.exe 
O4 - GS\TaskBar: Windows Defender User Interface.lnk . (...)  -- C:\Program Files (x86)\Windows Defender\MSASCui.exe (.not file.)
O4 - GS\TaskBar: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.)  -- C:\Windows\explorer.exe 
O4 - GS\TaskBar: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.)  -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe 
O4 - GS\Programs: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.)  -- C:\Program Files (x86)\Internet Explorer\iexplore.exe 
O4 - GS\QuickLaunch: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.)  -- C:\Program Files (x86)\Internet Explorer\iexplore.exe 
O4 - GS\Accessories: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.)  -- C:\Program Files (x86)\Internet Explorer\iexplore.exe 
O4 - GS\Accessories: Private Character Editor.lnk . (.Microsoft Corporation - Éditeur de caractères privés.)  -- C:\Windows\system32\eudcedit.exe 
O4 - GS\SendTo: Evernote.lnk . (.Evernote Corp., 333 W Evelyn Ave. Mountain - Evernote.)  -- C:\Program Files (x86)\Evernote\Evernote\Evernote.exe 
O4 - GS\SendTo: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft  Windows Fax and Scan.)  -- C:\Windows\system32\WFS.exe 
O4 - GS\SendTo: Skype.lnk . (.Skype Technologies S.A. - Skype.)  -- C:\Program Files (x86)\Skype\Phone\Skype.exe 
O4 - GS\TaskBar: Snipping Tool.lnk . (.Microsoft Corporation - Outil Capture.)  -- C:\Windows\system32\SnippingTool.exe 
~ Global Startup:  Scanned in 00mn 01s



---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ IE Control Panel: 1 Scanned in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll
O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll
~ Winsock: 8 Scanned in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{04729356-E924-4DA2-A525-80D273F1095C}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{04729356-E924-4DA2-A525-80D273F1095C}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{04729356-E924-4DA2-A525-80D273F1095C}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
~ Domain:  Scanned in 00mn 00s



---\\ Titr_HJT34=Protocole additionnel (O18)
O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (...) -- 
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
~ Protocole Additionnel:  Scanned in 00mn 00s



---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ SSODL: 1 Scanned in 00mn 00s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Adobe Active File Monitor V9 (AdobeActiveFileMonitor9.0) . (.Adobe Systems Incorporated - Adobe Photoshop Elements 9.0 (component).) - C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service:  (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\System32\atiesrxx.exe
O23 - Service: avast! Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Dritek WMI Service (DsiWMIService) . (.Dritek System Inc. - Dritek WMI Service.) - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: ePower Service (ePowerSvc) . (.Acer Incorporated - ePowerSvc.) - C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe
O23 - Service: GREGService (GREGService) . (.Acer Incorporated - Global Registration Service.) - C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe
O23 - Service: Live Updater Service (Live Updater Service) . (.Acer Incorporated - Updater Service.) - C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe
O23 - Service:  (MBAMScheduler) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service:  (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service:  (NAUpdate) . (.Nero AG - NeroUpdate.) - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: TrueVector Internet Monitor (vsmon) . (.Check Point Software Technologies LTD - TrueVector Service.) - C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
O23 - Service: ZoneAlarm Privacy Service (ZAPrivacyService) . (.Check Point Software Technologies, Ltd. - ZAPrivacyService.) - C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZAPrivacyService.exe
~ Services: 14 Scanned in 00mn 44s



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) -  (.not file.)
~ Desktop Component: 4 Scanned in 00mn 00s



---\\ Enumère les données de BootExecute (BEX) (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ BEX: 1 Scanned in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\Adobe Flash Player Updater.job   [1002]
[MD5.476BB014F3F68C0C15EDDD5B444DA8FF] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe   [257416]
[MD5.5CE2C1433B9B634591F0A1C4C1203A0B] [APT] [avast! Emergency Update] (.AVAST Software.) -- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe   [251784]
[MD5.E62ED5A7A2F21C5F377F924A33E12792] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe   [3643160]  =>Piriform Ltd
[MD5.BD97D50D72A9DFABD7307EEF6EBD54A0] [APT] [NBAgent] (.Nero AG.) -- C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe   [1409424]
[MD5.591B723B34DF63A0730B2CC2B102AE66] [APT] [Burn Notification] (.Acer.) -- C:\Program Files\Packard Bell\Packard Bell Recovery Management\NotificationCenter\Notification.exe   [816520]
~ Scheduled Task: 8 Scanned in 00mn 09s



---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Internet Explorer [64Bits] - {2D46B6DC-2207-486B-B523-A557E6D54B47} . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\system32\cmd.exe
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
~ Active Setup: 10 Scanned in 00mn 00s



---\\ Pilotes lancés au démarrage du système (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver:  (aswRdr) . (.AVAST Software - avast! WFP Redirect Driver.) - C:\Windows\system32\Drivers\aswrdr2.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\system32\drivers\blbdrive.sys
O41 - Driver:  (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver:  (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver:  (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\System32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\System32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver:  (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver:  (Vsdatant) . (.Check Point Software Technologies LTD - ZoneAlarm Firewalling Driver.) - C:\Windows\System32\DRIVERS\vsdatant.sys
O41 - Driver:  (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver:  (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys
~ Drivers: 66 Scanned in 00mn 01s



---\\ Logiciels installés (O42)
O42 - Logiciel: AMD APP SDK Runtime - (.Advanced Micro Devices Inc..) [HKLM][64Bits] -- {503F672D-6C84-448A-8F8F-4BC35AC83441}
O42 - Logiciel: AMD Media Foundation Decoders - (.ATI Technologies Inc..) [HKLM][64Bits] -- {2E12FEB9-11CD-5B44-D51B-0837225A6594}
O42 - Logiciel: ATI Catalyst Install Manager - (.ATI Technologies, Inc..) [HKLM][64Bits] -- {3605D89A-BD66-F5C5-779B-BE9110B41077}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {0A5B39D2-7ED6-4779-BCC9-37F381139DB3}
O42 - Logiciel: Adobe Community Help - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
O42 - Logiciel: Adobe Community Help - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {F302F4F0-588D-6501-1ACF-BE3FDCC9135D}
O42 - Logiciel: Adobe Flash Player 11 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 11 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Photoshop Elements 9 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Photoshop Elements 9
O42 - Logiciel: Adobe Premiere Elements 9 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- PremElem90
O42 - Logiciel: Adobe Premiere Elements 9 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {EB9955F8-467C-47FC-90F8-12CD5DF684C3}
O42 - Logiciel: Adobe Reader XI (11.0.03) - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AB0000000001}
O42 - Logiciel: Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver - (.Atheros Communications Inc..) [HKLM][64Bits] -- {3108C217-BE83-42E4-AE9E-A56A2A92E549}
O42 - Logiciel: Bing Bar - (.Microsoft Corporation.) [HKLM][64Bits] -- {C28D96C0-6A90-459E-A077-A6706F4EC0FC}  =>Toolbar.Bing
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner  =>Piriform Ltd
O42 - Logiciel: Catalyst Control Center - Branding - (.ATI.) [HKLM][64Bits] -- {1895E5C2-A9F8-4757-AD7B-0E9EA8BA1C46}
O42 - Logiciel: Crazy Chicken Kart 2 - (.WildTangent.) [HKLM][64Bits] -- WTA-f28d9b06-5fc1-4551-b596-f0674ab446af
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: Elements 9 Organizer - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {433EACD8-4747-4A6A-826A-FFA9F39B0D40}
O42 - Logiciel: Elements STI Installer - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {25175695-4B20-4298-9F34-C2C57CD277B3}
O42 - Logiciel: Elements STI Installer - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {E2AE009D-37E5-4724-A6B8-0ED6A6BA4F68}
O42 - Logiciel: Evernote v. 4.5.1 - (.Evernote Corp..) [HKLM][64Bits] -- {28921580-E4BB-11E0-9FD7-1CC1DEF07CBE}
O42 - Logiciel: FATE - (.WildTangent.) [HKLM][64Bits] -- WTA-a2a95b20-7474-4438-aa52-90ccc19e7884
O42 - Logiciel: Final Drive: Nitro - (.WildTangent.) [HKLM][64Bits] -- WTA-3c399698-0220-4089-b6bc-291f160286de
O42 - Logiciel: Identity Card - (.Packard Bell.) [HKLM][64Bits] -- Identity Card
O42 - Logiciel: Insaniquarium Deluxe - (.WildTangent.) [HKLM][64Bits] -- WTA-395a00b7-5a28-49db-b182-63f9f5db4d39
O42 - Logiciel: Java 7 Update 25 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83217025FF}
O42 - Logiciel: Jewel Quest Solitaire - (.WildTangent.) [HKLM][64Bits] -- WTA-4bf43000-7aca-4632-909f-179705a26850
O42 - Logiciel: John Deere Drive Green - (.WildTangent.) [HKLM][64Bits] -- WTA-49a0db41-dbb3-406e-a5cb-56971d266bbe
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}
O42 - Logiciel: KeyScrambler - (.QFX Software Corporation.) [HKLM][64Bits] -- KeyScrambler
O42 - Logiciel: Launch Manager - (.Packard Bell.) [HKLM][64Bits] -- LManager
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: Malwarebytes Anti-Malware version 1.75.0.1300 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: Mesh Runtime - (.Microsoft Corporation.) [HKLM][64Bits] -- {8C6D6116-B724-4810-8F2D-D047E6B7D68E}
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Mozilla Firefox 23.0.1 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 23.0.1 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService
O42 - Logiciel: Mystery of Mortlake Mansion - (.WildTangent.) [HKLM][64Bits] -- WTA-fb938efe-c8d6-47d7-954f-f8ef8abb70f5
O42 - Logiciel: Nero BackItUp 10 - (.Nero AG.) [HKLM][64Bits] -- {68AB6930-5BFF-4FF6-923B-516A91984FE6}
O42 - Logiciel: Nero BackItUp 10 Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {08C8666B-C502-4AB3-B4CB-D74AC42D14FE}
O42 - Logiciel: Nero Control Center 10 - (.Nero AG.) [HKLM][64Bits] -- {6DFB899F-17A2-48F0-A533-ED8D6866CF38}
O42 - Logiciel: Nero ControlCenter 10 Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {523B2B1B-D8DB-4B41-90FF-C4D799E2758A}
O42 - Logiciel: Nero Core Components 10 - (.Nero AG.) [HKLM][64Bits] -- {2436F2A8-4B7E-4B6C-AE4E-604C84AA6A4F}
O42 - Logiciel: Nero DiscSpeed 10 - (.Nero AG.) [HKLM][64Bits] -- {34490F4E-48D0-492E-8249-B48BECF0537C}
O42 - Logiciel: Nero DiscSpeed 10 Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {C18A0418-442A-4186-AF98-D08F5054A2FC}
O42 - Logiciel: Nero Express 10 - (.Nero AG.) [HKLM][64Bits] -- {70550193-1C22-445C-8FA4-564E155DB1A7}
O42 - Logiciel: Nero Express 10 Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {33643918-7957-4839-92C7-EA96CB621A98}
O42 - Logiciel: Nero Multimedia Suite 10 Essentials - (.Nero AG.) [HKLM][64Bits] -- {62BF4BD3-B1F6-4FA2-8388-CC0647ACBF86}
O42 - Logiciel: Nero Multimedia Suite 10 Essentials - (.Nero AG.) [HKLM][64Bits] -- {68AFA3A7-9265-4ABD-994A-ACA413E3715C}
O42 - Logiciel: Nero RescueAgent 10 - (.Nero AG.) [HKLM][64Bits] -- {E337E787-CF61-4B7B-B84F-509202A54023}
O42 - Logiciel: Nero RescueAgent 10 Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {92E25238-61A3-4ACD-A407-3C480EEF47A7}
O42 - Logiciel: Nero StartSmart 10 - (.Nero AG.) [HKLM][64Bits] -- {F61D489E-6C44-49AC-AD02-7DA8ACA73A65}
O42 - Logiciel: Nero StartSmart 10 Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {F6117F9C-ADB5-4590-9BE4-12C7BEC28702}
O42 - Logiciel: Nero Update - (.Nero AG.) [HKLM][64Bits] -- {65BB0407-4CC8-4DC7-952E-3EEFDF05602A}
O42 - Logiciel: Packard Bell Games - (.WildTangent.) [HKLM][64Bits] -- WildTangent packardbell Master Uninstall
O42 - Logiciel: Packard Bell Power Management - (.Packard Bell.) [HKLM][64Bits] -- {3DB0448D-AD82-4923-B305-D001E521A964}
O42 - Logiciel: Packard Bell Recovery Management - (.Packard Bell.) [HKLM][64Bits] -- {7F811A54-5A09-4579-90E1-C93498E230D9}
O42 - Logiciel: Packard Bell Registration - (.Packard Bell.) [HKLM][64Bits] -- Packard Bell Registration
O42 - Logiciel: Packard Bell ScreenSaver - (.Packard Bell .) [HKLM][64Bits] -- Packard Bell Screensaver
O42 - Logiciel: Packard Bell Social Networks - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{64EF903E-D00A-414C-94A4-FBA368FFCDC9}
O42 - Logiciel: Packard Bell Social Networks - (.CyberLink Corp..) [HKLM][64Bits] -- {64EF903E-D00A-414C-94A4-FBA368FFCDC9}
O42 - Logiciel: Packard Bell Updater - (.Packard Bell.) [HKLM][64Bits] -- {EE171732-BEB4-4576-887D-CB62727F01CA}
O42 - Logiciel: Penguins! - (.WildTangent.) [HKLM][64Bits] -- WTA-e1350def-3198-4a31-a998-bd958ed1013b
O42 - Logiciel: Plants vs. Zombies - Game of the Year - (.WildTangent.) [HKLM][64Bits] -- WTA-00e9b429-2c52-4d94-9fa1-2a184d2985a8
O42 - Logiciel: Polar Bowler - (.WildTangent.) [HKLM][64Bits] -- WTA-28f6e5ec-e2fe-4510-a2eb-88d720fcb082
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Realtek USB 2.0 Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {96AE7E41-E34E-47D0-AC07-1091A8127911}
O42 - Logiciel: Revo Uninstaller 1.95 - (.VS Revo Group.) [HKLM][64Bits] -- Revo Uninstaller
O42 - Logiciel: Skype™ 6.6 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}
O42 - Logiciel: Slingo Deluxe - (.WildTangent.) [HKLM][64Bits] -- WTA-6865e4f9-ba63-4827-87d9-ffff8964df7d
O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM][64Bits] -- SynTPDeinstKey
O42 - Logiciel: Torchlight - (.WildTangent.) [HKLM][64Bits] -- WTA-83007eb6-1b93-4e5e-99da-a88ea91fa3d8
O42 - Logiciel: Update Installer for WildTangent Games App - (.WildTangent.) [HKLM][64Bits] -- {2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App
O42 - Logiciel: Video Web Camera - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{A0382E3C-7384-429A-9BFA-AF5888E5A193}
O42 - Logiciel: Video Web Camera - (.CyberLink Corp..) [HKLM][64Bits] -- {A0382E3C-7384-429A-9BFA-AF5888E5A193}
O42 - Logiciel: Virtual Villagers 4 - The Tree of Life - (.WildTangent.) [HKLM][64Bits] -- WTA-60a52c40-a9f8-4a61-9846-ae16df1e2936
O42 - Logiciel: Wedding Dash - (.WildTangent.) [HKLM][64Bits] -- WTA-4ae5f5af-a71f-4190-bace-cb6e11941f9c
O42 - Logiciel: Welcome Center - (.Packard Bell.) [HKLM][64Bits] -- Packard Bell Welcome Center
O42 - Logiciel: WildTangent Games App (Packard Bell Games) - (.WildTangent.) [HKLM][64Bits] -- {70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-packardbell
O42 - Logiciel: ZoneAlarm Firewall - (.Check Point Software Technologies Ltd..) [HKLM][64Bits] -- {D4FB136D-2802-4578-A023-E7243BD0D7D5}
O42 - Logiciel: ZoneAlarm Free Firewall - (.Check Point.) [HKLM][64Bits] -- ZoneAlarm Free Firewall
O42 - Logiciel: ZoneAlarm Security - (.Check Point Software Technologies Ltd..) [HKLM][64Bits] -- {C47B36EC-0639-4462-A9CE-7809CF2F6100}
O42 - Logiciel: avast! Free Antivirus v8.0.1489.0 - (.AVAST Software.) [HKLM][64Bits] -- avast
O42 - Logiciel: eBay Worldwide - (.OEM.) [HKLM][64Bits] -- {D3E5A972-9A15-427D-AE78-8181A5FD943C}
~ Logic: 153 Scanned in 00mn 02s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\ATI]
[HKCU\Software\AVAST Software]
[HKCU\Software\Acer]
[HKCU\Software\Adobe]
[HKCU\Software\AppDataLow]
[HKCU\Software\CheckPoint]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Cyberlink]
[HKCU\Software\Dritek]
[HKCU\Software\Evernote]
[HKCU\Software\IM Providers]
[HKCU\Software\Local AppWizard-Generated Applications]
[HKCU\Software\Macromedia]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\Mozilla]
[HKCU\Software\Nero]
[HKCU\Software\Netscape]
[HKCU\Software\OEM]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\QFX Software]
[HKCU\Software\Realtek]
[HKCU\Software\Skype]
[HKCU\Software\Symantec]
[HKCU\Software\Synaptics]
[HKCU\Software\VSRevoGroup]
[HKCU\Software\Wow6432Node]
[HKCU\Software\ZebHelpProcess Helper]
[HKCU\Software\Zone Labs]
[HKLM\Software\AMD]
[HKLM\Software\ATI Technologies]
[HKLM\Software\ATI]
[HKLM\Software\Acer]
[HKLM\Software\CBSTEST]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Cyberlink]
[HKLM\Software\DTS]
[HKLM\Software\Dolby]
[HKLM\Software\IM Providers]
[HKLM\Software\InstalledOptions]
[HKLM\Software\Intel]
[HKLM\Software\Khronos]
[HKLM\Software\Knowles]
[HKLM\Software\Macromedia]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\Norton]
[HKLM\Software\ODBC]
[HKLM\Software\OEM]
[HKLM\Software\OOBEOffer]
[HKLM\Software\OemSetup]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\Realtek Semiconductor Corp.]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SRS Labs]
[HKLM\Software\SonicFocus]
[HKLM\Software\Sonic]
[HKLM\Software\Synaptics]
[HKLM\Software\Waves Audio]
[HKLM\Software\Wow6432Node\AMD]
[HKLM\Software\Wow6432Node\ATI Technologies]
[HKLM\Software\Wow6432Node\ATI]
[HKLM\Software\Wow6432Node\AVAST Software]
[HKLM\Software\Wow6432Node\Adobe]
[HKLM\Software\Wow6432Node\AdwCleaner]
[HKLM\Software\Wow6432Node\Atheros Communications Inc.]
[HKLM\Software\Wow6432Node\CheckPoint]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\CyberLink]
[HKLM\Software\Wow6432Node\Dritek]
[HKLM\Software\Wow6432Node\Evernote]
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\IM Providers]
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\JavaSoft]
[HKLM\Software\Wow6432Node\JreMetrics]
[HKLM\Software\Wow6432Node\KasperskyLab]
[HKLM\Software\Wow6432Node\Khronos]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware (Trial)]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\Nero]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\OEM]
[HKLM\Software\Wow6432Node\Packard Bell]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\QFX Software]
[HKLM\Software\Wow6432Node\Realtek Semiconductor Corp.]
[HKLM\Software\Wow6432Node\Realtek]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\Skype]
[HKLM\Software\Wow6432Node\Sonic]
[HKLM\Software\Wow6432Node\SymNRT]
[HKLM\Software\Wow6432Node\Symantec]
[HKLM\Software\Wow6432Node\WildTangent]
[HKLM\Software\Wow6432Node\Wow6432Node]
[HKLM\Software\Wow6432Node\Zone Labs]
[HKLM\Software\Wow6432Node\mozilla.org]
[HKLM\Software\Wow6432Node]
~ Key Software: 172 Scanned in 00mn 02s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 20/08/2013 - 09:10:28 - [-2005,372] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 19/08/2013 - 18:02:43 - [2,338] ----D C:\Program Files (x86)\AMD APP
O43 - CFD: 19/08/2013 - 18:02:15 - [66,934] ----D C:\Program Files (x86)\ATI Technologies
O43 - CFD: 19/08/2013 - 20:22:48 - [35,870] ----D C:\Program Files (x86)\CheckPoint
O43 - CFD: 20/08/2013 - 16:25:07 - [880,665] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 12/10/2011 - 10:28:58 - [151,629] ----D C:\Program Files (x86)\Evernote
O43 - CFD: 20/08/2013 - 10:15:21 - [57,418] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 20/08/2013 - 04:51:37 - [4,886] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 20/08/2013 - 16:22:06 - [122,487] ----D C:\Program Files (x86)\Java
O43 - CFD: 20/08/2013 - 04:32:10 - [3,870] ----D C:\Program Files (x86)\KeyScrambler
O43 - CFD: 19/08/2013 - 17:58:24 - [8,896] ----D C:\Program Files (x86)\Launch Manager
O43 - CFD: 21/08/2013 - 01:49:55 - [13,265] ----D C:\Program Files (x86)\Malwarebytes' Anti-Malware
O43 - CFD: 19/08/2013 - 18:12:18 - [19,933] ----D C:\Program Files (x86)\Microsoft
O43 - CFD: 19/08/2013 - 18:26:05 - [6,126] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 20/08/2013 - 02:42:01 - [40,851] ----D C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 12/10/2011 - 10:51:17 - [1,745] ----D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 12/10/2011 - 11:05:26 - [0,015] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 20/08/2013 - 14:32:12 - [47,919] ----D C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 20/08/2013 - 16:04:26 - [0,215] ----D C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 14/07/2009 - 07:32:38 - [0,025] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 20/08/2013 - 03:09:18 - [0] ----D C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 12/10/2011 - 11:12:31 - [456,208] ----D C:\Program Files (x86)\Nero
O43 - CFD: 19/08/2013 - 19:57:04 - [0,105] ----D C:\Program Files (x86)\OEM
O43 - CFD: 19/08/2013 - 18:31:46 - [63,684] ----D C:\Program Files (x86)\Packard Bell
O43 - CFD: 20/08/2013 - 18:24:51 - [252,691] ----D C:\Program Files (x86)\Packard Bell Games
O43 - CFD: 19/08/2013 - 18:06:14 - [13,771] ----D C:\Program Files (x86)\Realtek
O43 - CFD: 14/07/2009 - 07:32:38 - [37,357] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 19/08/2013 - 23:16:21 - [19,224] R---D C:\Program Files (x86)\Skype
O43 - CFD: 19/08/2013 - 18:13:47 - [33,186] ----D C:\Program Files (x86)\Social Networks
O43 - CFD: 19/08/2013 - 18:07:08 - [0] --H-D C:\Program Files (x86)\Temp
O43 - CFD: 14/07/2009 - 06:57:06 - [0] --H-D C:\Program Files (x86)\Uninstall Information
O43 - CFD: 20/08/2013 - 09:44:30 - [40,402] ----D C:\Program Files (x86)\Video Web Camera
O43 - CFD: 20/08/2013 - 16:29:39 - [6,519] ----D C:\Program Files (x86)\VS Revo Group
O43 - CFD: 12/10/2011 - 09:59:21 - [9,837] ----D C:\Program Files (x86)\WildTangent Games
O43 - CFD: 20/08/2013 - 01:56:22 - [0,500] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 12/10/2011 - 10:58:21 - [503,988] ----D C:\Program Files (x86)\Windows Live
O43 - CFD: 20/08/2013 - 03:42:58 - [5,895] ----D C:\Program Files (x86)\Windows Mail
O43 - CFD: 20/08/2013 - 03:42:57 - [4,791] ----D C:\Program Files (x86)\Windows Media Player
O43 - CFD: 14/07/2009 - 07:32:38 - [11,632] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 20/08/2013 - 03:42:57 - [4,213] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 21/11/2010 - 05:31:38 - [0,181] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 20/08/2013 - 03:42:58 - [5,717] ----D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 21/08/2013 - 02:56:56 - [16,493] ----D C:\Program Files (x86)\ZHPDiag
O43 - CFD: 20/08/2013 - 09:11:11 - [746,930] ----D C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 19/08/2013 - 22:50:54 - [45,858] ----D C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 19/08/2013 - 18:02:39 - [0,229] ----D C:\Program Files (x86)\Common Files\ATI Technologies
O43 - CFD: 19/08/2013 - 18:06:06 - [2,009] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 20/08/2013 - 16:25:07 - [1,189] ----D C:\Program Files (x86)\Common Files\Java
O43 - CFD: 12/10/2011 - 10:33:27 - [20,268] ----D C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 12/10/2011 - 11:11:44 - [8,612] ----D C:\Program Files (x86)\Common Files\Nero
O43 - CFD: 19/08/2013 - 18:23:04 - [4,340] ----D C:\Program Files (x86)\Common Files\PX Storage Engine
O43 - CFD: 14/07/2009 - 05:20:08 - [0,003] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 19/08/2013 - 23:16:21 - [1,904] ----D C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 19/08/2013 - 18:15:01 - [0,356] ----D C:\Program Files (x86)\Common Files\Sonic Shared
O43 - CFD: 14/07/2009 - 05:20:08 - [39,200] ----D C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 20/08/2013 - 04:51:45 - [9,767] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 12/10/2011 - 10:31:58 - [0] ----D C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 20/08/2013 - 16:56:00 - [-1966,321] ----D C:\ProgramData\Adobe
O43 - CFD: 19/08/2013 - 19:56:17 - [0] --H-D C:\ProgramData\Application Data
O43 - CFD: 19/08/2013 - 18:03:50 - [0] ----D C:\ProgramData\ATI
O43 - CFD: 19/08/2013 - 20:27:55 - [20,393] ----D C:\ProgramData\AVAST Software
O43 - CFD: 19/08/2013 - 19:56:17 - [0] --H-D C:\ProgramData\Bureau
O43 - CFD: 19/08/2013 - 20:21:08 - [17,848] ----D C:\ProgramData\CheckPoint
O43 - CFD: 19/08/2013 - 18:13:47 - [0,000] ----D C:\ProgramData\CLSK
O43 - CFD: 20/08/2013 - 00:11:17 - [0,011] ----D C:\ProgramData\CyberLink
O43 - CFD: 19/08/2013 - 19:56:17 - [0] --H-D C:\ProgramData\Documents
O43 - CFD: 12/10/2011 - 10:28:26 - [0] ----D C:\ProgramData\Evernote
O43 - CFD: 19/08/2013 - 19:56:17 - [0] --H-D C:\ProgramData\Favoris
O43 - CFD: 19/08/2013 - 18:13:46 - [0,011] ----D C:\ProgramData\install_clap
O43 - CFD: 20/08/2013 - 17:55:06 - [6,749] ----D C:\ProgramData\Malwarebytes
O43 - CFD: 19/08/2013 - 19:56:17 - [0] --H-D C:\ProgramData\Menu Démarrer
O43 - CFD: 20/08/2013 - 16:49:10 - [1459,423] -S--D C:\ProgramData\Microsoft
O43 - CFD: 19/08/2013 - 19:56:17 - [0] --H-D C:\ProgramData\Modèles
O43 - CFD: 20/08/2013 - 01:26:27 - [0,007] ----D C:\ProgramData\Mozilla
O43 - CFD: 12/10/2011 - 11:12:33 - [3,725] ----D C:\ProgramData\Nero
O43 - CFD: 20/08/2013 - 02:00:48 - [0,014] ----D C:\ProgramData\Norton
O43 - CFD: 12/10/2011 - 11:18:22 - [22,285] ----D C:\ProgramData\NortonInstaller
O43 - CFD: 19/08/2013 - 21:18:37 - [6,311] ----D C:\ProgramData\oem
O43 - CFD: 12/10/2011 - 10:31:09 - [0,021] ----D C:\ProgramData\Packard Bell
O43 - CFD: 20/08/2013 - 05:27:47 - [0,000] ----D C:\ProgramData\QFX Software
O43 - CFD: 19/08/2013 - 23:16:41 - [39,290] ----D C:\ProgramData\Skype
O43 - CFD: 20/08/2013 - 07:22:57 - [0,000] ----D C:\ProgramData\Sun
O43 - CFD: 20/08/2013 - 09:41:53 - [0,718] ----D C:\ProgramData\Temp
O43 - CFD: 20/08/2013 - 17:53:43 - [1259,551] ----D C:\ProgramData\WildTangent
O43 - CFD: 20/08/2013 - 01:50:04 - [17,351] ----D C:\Users\Thor\AppData\Roaming\Adobe
O43 - CFD: 19/08/2013 - 19:59:18 - [0] ----D C:\Users\Thor\AppData\Roaming\Identities
O43 - CFD: 12/10/2011 - 11:22:01 - [0,056] ----D C:\Users\Thor\AppData\Roaming\Macromedia
O43 - CFD: 20/08/2013 - 17:55:22 - [0,012] ----D C:\Users\Thor\AppData\Roaming\Malwarebytes
O43 - CFD: 21/11/2010 - 09:16:41 - [0] ----D C:\Users\Thor\AppData\Roaming\Media Center Programs
O43 - CFD: 20/08/2013 - 16:49:01 - [0,882] -S--D C:\Users\Thor\AppData\Roaming\Microsoft
O43 - CFD: 20/08/2013 - 01:27:18 - [21,287] ----D C:\Users\Thor\AppData\Roaming\Mozilla
O43 - CFD: 20/08/2013 - 09:57:27 - [0,026] ----D C:\Users\Thor\AppData\Roaming\Nero
O43 - CFD: 20/08/2013 - 09:49:19 - [0,000] ----D C:\Users\Thor\AppData\Roaming\QFX Software
O43 - CFD: 19/08/2013 - 20:00:08 - [0,001] ----D C:\Users\Thor\AppData\Roaming\Screensaver
O43 - CFD: 19/08/2013 - 23:17:41 - [1,236] ----D C:\Users\Thor\AppData\Roaming\Skype
O43 - CFD: 20/08/2013 - 00:10:44 - [0,001] ----D C:\Users\Thor\AppData\Roaming\SNS
O43 - CFD: 20/08/2013 - 16:41:20 - [29,573] ----D C:\Users\Thor\AppData\Local\Adobe
O43 - CFD: 19/08/2013 - 19:56:36 - [0] ----D C:\Users\Thor\AppData\Local\Application Data
O43 - CFD: 19/08/2013 - 21:38:14 - [0,117] ----D C:\Users\Thor\AppData\Local\ElevatedDiagnostics
O43 - CFD: 19/08/2013 - 23:27:55 - [0,001] ----D C:\Users\Thor\AppData\Local\Evernote
O43 - CFD: 19/08/2013 - 19:56:36 - [0] ----D C:\Users\Thor\AppData\Local\Historique
O43 - CFD: 20/08/2013 - 18:45:54 - [57,309] ----D C:\Users\Thor\AppData\Local\Microsoft
O43 - CFD: 20/08/2013 - 01:26:56 - [21,516] ----D C:\Users\Thor\AppData\Local\Mozilla
O43 - CFD: 20/08/2013 - 17:54:40 - [0] ----D C:\Users\Thor\AppData\Local\Programs
O43 - CFD: 21/08/2013 - 02:53:58 - [212,418] ----D C:\Users\Thor\AppData\Local\Temp
O43 - CFD: 19/08/2013 - 19:56:36 - [0] ----D C:\Users\Thor\AppData\Local\Temporary Internet Files
O43 - CFD: 19/08/2013 - 19:59:12 - [0] ----D C:\Users\Thor\AppData\Local\VirtualStore
O43 - CFD: 14/07/2009 - 06:54:32 - [0,014] R---D C:\Users\Thor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 20/08/2013 - 09:48:00 - [0,000] R---D C:\Users\Thor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 14/07/2009 - 06:49:38 - [0,001] R---D C:\Users\Thor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 20/08/2013 - 16:29:43 - [0,005] ----D C:\Users\Thor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
O43 - CFD: 20/08/2013 - 09:48:00 - [0,000] R---D C:\Users\Thor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
~ Program Folder: 112 Scanned in 00mn 33s



---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.0BB97D43299910CBFBA59C461B99B910] - 21/08/2013 - 00:49:44 RSHAD . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\mbam.sys   [25928]
O44 - LFC:[MD5.428F8336F1654B939306217A06A2FCBC] - 21/08/2013 - 00:44:54 ---A- . (...) -- C:\Windows\WindowsUpdate.log   [1584582]
O44 - LFC:[MD5.1A54BE1A6027847A5BEF90F5E1773CDE] - 21/08/2013 - 00:41:29 ---A- . (...) -- C:\Windows\setupact.log   [34525]
O44 - LFC:[MD5.19302544505E8E1731F7F9D11E20E2D9] - 21/08/2013 - 00:41:26 -S-A- . (...) -- C:\Windows\bootstat.dat   [67584]
O44 - LFC:[MD5.3E949E17338CEE080FD694E2A1228E68] - 20/08/2013 - 22:22:29 ---A- . (...) -- C:\AdwCleaner[S1].txt   [1528]
O44 - LFC:[MD5.0A175FE132C56B0D26E146C04C3CFC82] - 20/08/2013 - 22:20:25 ---A- . (...) -- C:\AdwCleaner[R1].txt   [1461]
O44 - LFC:[MD5.3F3BBA97B0F73FED55BE27BE9202472F] - 20/08/2013 - 18:14:39 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI   [1549700]
O44 - LFC:[MD5.5358851E2D3840F572632BAA4D3AE22E] - 20/08/2013 - 18:14:39 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat   [106388]
O44 - LFC:[MD5.92BE89F32BAF815AE304B821E6CA906B] - 20/08/2013 - 18:14:39 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat   [130754]
O44 - LFC:[MD5.57B3D9A42CCB67C49EF41AB66C46F017] - 20/08/2013 - 18:14:39 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat   [616008]
O44 - LFC:[MD5.FBB34BC87AD1CD1F9AF062F2059A2526] - 20/08/2013 - 18:14:39 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat   [704480]
O44 - LFC:[MD5.3F3BBA97B0F73FED55BE27BE9202472F] - 20/08/2013 - 18:14:39 RSHAD . (...) -- C:\Windows\System32\PerfStringBackup.INI   [1549700]
O44 - LFC:[MD5.5358851E2D3840F572632BAA4D3AE22E] - 20/08/2013 - 18:14:39 RSHAD . (...) -- C:\Windows\System32\perfc009.dat   [106388]
O44 - LFC:[MD5.92BE89F32BAF815AE304B821E6CA906B] - 20/08/2013 - 18:14:39 RSHAD . (...) -- C:\Windows\System32\perfc00C.dat   [130754]
O44 - LFC:[MD5.57B3D9A42CCB67C49EF41AB66C46F017] - 20/08/2013 - 18:14:39 RSHAD . (...) -- C:\Windows\System32\perfh009.dat   [616008]
O44 - LFC:[MD5.FBB34BC87AD1CD1F9AF062F2059A2526] - 20/08/2013 - 18:14:39 RSHAD . (...) -- C:\Windows\System32\perfh00C.dat   [704480]
O44 - LFC:[MD5.C19DCA1024135D5485E25AB1047F77BC] - 20/08/2013 - 09:19:18 ---A- . (.Microsoft Corporation - NT Kernel & System.) -- C:\Windows\SysNative\ntoskrnl.exe   [5550528]
O44 - LFC:[MD5.C19DCA1024135D5485E25AB1047F77BC] - 20/08/2013 - 09:19:18 ---A- . (.Microsoft Corporation - NT Kernel & System.) -- C:\Windows\System32\ntoskrnl.exe   [5550528]
O44 - LFC:[MD5.8E45DD84F8F786B2DB94AD95225B9246] - 20/08/2013 - 09:19:17 ---A- . (.Microsoft Corporation - DLL Couche NT.) -- C:\Windows\SysNative\ntdll.dll   [1732032]
O44 - LFC:[MD5.8E45DD84F8F786B2DB94AD95225B9246] - 20/08/2013 - 09:19:17 ---A- . (.Microsoft Corporation - DLL Couche NT.) -- C:\Windows\System32\ntdll.dll   [1732032]
O44 - LFC:[MD5.D6180FBBADA79BC28E5FD8187EBE7F64] - 20/08/2013 - 09:19:15 ---A- . (.Microsoft Corporation - Win32 Emulation on NT64.) -- C:\Windows\SysNative\wow64.dll   [243712]
O44 - LFC:[MD5.D6180FBBADA79BC28E5FD8187EBE7F64] - 20/08/2013 - 09:19:15 RSHAD . (.Microsoft Corporation - Win32 Emulation on NT64.) -- C:\Windows\System32\wow64.dll   [243712]
O44 - LFC:[MD5.3192843472DAC23FBCC2D6F22E83D12A] - 20/08/2013 - 08:45:57 ---A- . (...) -- C:\Windows\PFRO.log   [786726]
O44 - LFC:[MD5.86E7D5CB10B98C012AFC40BAC6D917BF] - 20/08/2013 - 08:19:48 ---A- . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Windows\SysNative\deployJava1.dll   [972712]
O44 - LFC:[MD5.86E7D5CB10B98C012AFC40BAC6D917BF] - 20/08/2013 - 08:19:48 ---A- . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Windows\System32\deployJava1.dll   [972712]
O44 - LFC:[MD5.8156DEC66C32902394BD258E742FD50E] - 20/08/2013 - 08:19:48 ---A- . (.Oracle Corporation - NPRuntime Script Plug-in Library for Java(T.) -- C:\Windows\SysNative\npDeployJava1.dll   [1093032]
O44 - LFC:[MD5.8156DEC66C32902394BD258E742FD50E] - 20/08/2013 - 08:19:48 ---A- . (.Oracle Corporation - NPRuntime Script Plug-in Library for Java(T.) -- C:\Windows\System32\npDeployJava1.dll   [1093032]
O44 - LFC:[MD5.783BEB99743BACB9586CCB70356449C5] - 20/08/2013 - 03:32:24 RSHAD . (.QFX Software Corporation - KeyScrambler Keyboard Encryption Driver.) -- C:\Windows\System32\Drivers\keyscrambler.sys   [222200]
O44 - LFC:[MD5.07BA000B2E67565BDF112C35171865A5] - 20/08/2013 - 02:42:26 ---A- . (...) -- C:\Windows\SysNative\perfd00C.dat   [38160]
O44 - LFC:[MD5.04F6C9757DB75FF27C427E5B31DDB289] - 20/08/2013 - 02:42:26 ---A- . (...) -- C:\Windows\SysNative\perfi00C.dat   [344522]
O44 - LFC:[MD5.07BA000B2E67565BDF112C35171865A5] - 20/08/2013 - 02:42:26 RSHAD . (...) -- C:\Windows\System32\perfd00C.dat   [38160]
O44 - LFC:[MD5.04F6C9757DB75FF27C427E5B31DDB289] - 20/08/2013 - 02:42:26 RSHAD . (...) -- C:\Windows\System32\perfi00C.dat   [344522]
O44 - LFC:[MD5.6FBB766EB79F9EED3684194EEAF838DF] - 20/08/2013 - 02:33:12 ---A- . (...) -- C:\Windows\ChangeLang_Done.tag   [11453]
O44 - LFC:[MD5.889DEACC4DD006554C0D8F6F68635D37] - 20/08/2013 - 02:22:05 ---A- . (...) -- C:\Windows\msxml4-KB973688-enu.LOG   [297048]
O44 - LFC:[MD5.445B5721D873B8D313B9C8D42C3AAAD2] - 20/08/2013 - 02:15:03 ---A- . (...) -- C:\Windows\msxml4-KB954430-enu.LOG   [299716]
O44 - LFC:[MD5.BBE46A802CDBF1400FC0C3017CF95154] - 20/08/2013 - 02:08:58 ---A- . (...) -- C:\Windows\IE10_main.log   [9659]
O44 - LFC:[MD5.1FF56AC32B38A94C3C88497BD6E00C96] - 20/08/2013 - 01:51:49 ---A- . (...) -- C:\Windows\SysNative\ieuinit.inf   [25185]
O44 - LFC:[MD5.1FF56AC32B38A94C3C88497BD6E00C96] - 20/08/2013 - 01:51:49 ---A- . (...) -- C:\Windows\System32\ieuinit.inf   [25185]
O44 - LFC:[MD5.40738329209CBE2C9B48F7E30F7C1414] - 20/08/2013 - 01:51:49 ---A- . (.Microsoft Corporation - Auto-extracteur de fichier CAB Win32.) -- C:\Windows\SysNative\wextract.exe   [144896]
O44 - LFC:[MD5.40738329209CBE2C9B48F7E30F7C1414] - 20/08/2013 - 01:51:49 ---A- . (.Microsoft Corporation - Auto-extracteur de fichier CAB Win32.) -- C:\Windows\System32\wextract.exe   [144896]
O44 - LFC:[MD5.BC0D4AFBE94D8E1F81C8926D805C3366] - 20/08/2013 - 01:51:49 ---A- . (.Microsoft Corporation - Contrôleur de site Web.) -- C:\Windows\SysNative\webcheck.dll   [247296]
O44 - LFC:[MD5.BC0D4AFBE94D8E1F81C8926D805C3366] - 20/08/2013 - 01:51:49 ---A- . (.Microsoft Corporation - Contrôleur de site Web.) -- C:\Windows\System32\webcheck.dll   [247296]
O44 - LFC:[MD5.D8DD5CBB9668EEE98915EA49C72F78FA] - 20/08/2013 - 01:51:49 ---A- . (.Microsoft Corporation - Convertisseur Microsoft HTML.) -- C:\Windows\SysNative\html.iec   [441856]
O44 - LFC:[MD5.D8DD5CBB9668EEE98915EA49C72F78FA] - 20/08/2013 - 01:51:49 ---A- . (.Microsoft Corporation - Convertisseur Microsoft HTML.) -- C:\Windows\System32\html.iec   [441856]
O44 - LFC:[MD5.EC08E38751854C5B8899139B7DD29FF9] - 20/08/2013 - 01:51:49 ---A- . (.Microsoft Corporation - DLL de gestion d'utilisateur local et de co.) -- C:\Windows\SysNative\msrating.dll   [197120]
O44 - LFC:[MD5.EC08E38751854C5B8899139B7DD29FF9] - 20/08/2013 - 01:51:49 ---A- . (.Microsoft Corporation - DLL de gestion d'utilisateur local et de co.) -- C:\Windows\System32\msrating.dll   [197120]
O44 - LFC:[MD5.D8076F8A3C34064582035AE6696DC34A] - 20/08/2013 - 01:51:49 ---A- . (.Microsoft Corporation - DLL du Gestionnaire de licences Microsoft®.) -- C:\Windows\SysNative\licmgr10.dll   [27648]
O44 - LFC:[MD5.D8076F8A3C34064582035AE6696DC34A] - 20/08/2013 - 01:51:49 ---A- . (.Microsoft Corporation - DLL du Gestionnaire de licences Microsoft®.) -- C:\Windows\System32\licmgr10.dll   [27648]
O44 - LFC:[MD5.3531FA12A76A32ECECD972196775DF7C] - 20/08/2013 - 01:51:49 ---A- . (.Microsoft Corporation - ELS Hyphenation Service.) -- C:\Windows\SysNative\elshyph.dll   [226304]
O44 - LFC:[MD5.3531FA12A76A32ECECD972196775DF7C] - 20/08/2013 - 01:51:49 ---A- . (.Microsoft Corporation - ELS Hyphenation Service.) -- C:\Windows\System32\elshyph.dll   [226304]
O44 - LFC:[MD5.AC155DD9BD1E6D3B740826A4D1C68AAE] - 20/08/2013 - 01:51:49 ---A- . (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\SysNative\wininet.dll   [2241024]
O44 - LFC:[MD5.AC155DD9BD1E6D3B740826A4D1C68AAE] - 20/08/2013 - 01:51:49 ---A- . (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\System32\wininet.dll   [2241024]
O44 - LFC:[MD5.289C5E0A386E7B6CA9539D66D15E22CC] - 20/08/2013 - 01:51:49 ---A- . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysNative\urlmon.dll   [1365504]
O44 - LFC:[MD5.289C5E0A386E7B6CA9539D66D15E22CC] - 20/08/2013 - 01:51:49 ---A- . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll   [1365504]
O44 - LFC:[MD5.963B29E0EFB20D66436214DB7C43D7F7] - 20/08/2013 - 01:51:49 ---A- . (.Microsoft Corporation - IOD Version Map.) -- C:\Windows\SysNative\iesetup.dll   [67072]
O44 - LFC:[MD5.963B29E0EFB20D66436214DB7C43D7F7] - 20/08/2013 - 01:51:49 ---A- . (.Microsoft Corporation - IOD Version Map.) -- C:\Windows\System32\iesetup.dll   [67072]
O44 - LFC:[MD5.402D797A7905DC3C6FE11E75CD5252EB] - 20/08/2013 - 01:51:49 ---A- . (.Microsoft Corporation - Internet Shortcut Shell Extension DLL.) -- C:\Windows\SysNative\url.dll   [235008]
O44 - LFC:[MD5.402D797A7905DC3C6FE11E75CD5252EB] - 20/08/2013 - 01:51:49 ---A- . (.Microsoft Corporation - Internet Shortcut Shell Extension DLL.) -- C:\Windows\System32\url.dll   [235008]
O44 - LFC:[MD5.04DE09B1E287F6DC5C7FD655B6E84AB9] - 20/08/2013 - 01:51:49 ---A- . (.Microsoft Corporation - JScript Proxy Auto-Configuration.) -- C:\Windows\SysNative\jsproxy.dll   [53760]
O44 - LFC:[MD5.04DE09B1E287F6DC5C7FD655B6E84AB9] - 20/08/2013 - 01:51:49 ---A- . (.Microsoft Corporation - JScript Proxy Auto-Configuration.) -- C:\Windows\System32\jsproxy.dll   [53760]
O44 - LFC:[MD5.E1055A7FAD39F1F7C44F6152044056EA] - 20/08/2013 - 01:51:49 ---A- . (.Microsoft Corporation - Microsoft (R) HTML Media DLL.) -- C:\Windows\SysNative\mshtmlmedia.dll   [905728]
O44 - LFC:[MD5.E1055A7FAD39F1F7C44F6152044056EA] - 20/08/2013 - 01:51:49 ---A- . (.Microsoft Corporation - Microsoft (R) HTML Media DLL.) -- C:\Windows\System32\mshtmlmedia.dll   [905728]
O44 - LFC:[MD5.8C12653BEA781902AA60E4A855A55D5C] - 20/08/2013 - 01:51:49 ---A- . (.Microsoft Corporation - Microsoft Feeds Manager.) -- C:\Windows\SysNative\msfeeds.dll   [603136]
O44 - LFC:[MD5.8C12653BEA781902AA60E4A855A55D5C] - 20/08/2013 - 01:51:49 ---A- . (.Microsoft Corporation - Microsoft Feeds Manager.) -- C:\Windows\System32\msfeeds.dll   [603136]
O44 - LFC:[MD5.23556D116D5FB93395B2A648EEB24251] - 20/08/2013 - 01:51:49 ---A- . (.Microsoft Corporation - Microsoft Information Card IE Helper.) -- C:\Windows\SysNative\icardie.dll   [81408]
O44 - LFC:[MD5.23556D116D5FB93395B2A648EEB24251] - 20/08/2013 - 01:51:49 ---A- . (.Microsoft Corporation - Microsoft Information Card IE Helper.) -- C:\Windows\System32\icardie.dll   [81408]
O44 - LFC:[MD5.112183DF91C9BAECB498E4A86ECDE598] - 20/08/2013 - 01:51:49 ---A- . (.Microsoft Corporation - Microsoft Line Services library file.) -- C:\Windows\SysNative\msls31.dll   [216064]
O44 - LFC:[MD5.112183DF91C9BAECB498E4A86ECDE598] - 20/08/2013 - 01:51:49 ---A- . (.Microsoft Corporation - Microsoft Line Services library file.) -- C:\Windows\System32\msls31.dll   [216064]
O44 - LFC:[MD5.8C3D32A4A46326031309A43C52539D7F] - 20/08/2013 - 01:51:49 ---A- . (.Microsoft Corporation - Microsoft SmartScreen Filter Data File.) -- C:\Windows\SysNative\ieapfltr.dat   [1400416]
O44 - LFC:[MD5.8C3D32A4A46326031309A43C52539D7F] - 20/08/2013 - 01:51:49 ---A- . (.Microsoft Corporation - Microsoft SmartScreen Filter Data File.) -- C:\Windows\System32\ieapfltr.dat   [1400416]
O44 - LFC:[MD5.1456EECCB5CF6B91513200F95D61706E] - 20/08/2013 - 01:51:49 ---A- . (.Microsoft Corporation - Microsoft SmartScreen Filter.) -- C:\Windows\SysNative\ieapfltr.dll   [762368]
O44 - LFC:[MD5.1456EECCB5CF6B91513200F95D61706E] - 20/08/2013 - 01:51:49 ---A- . (.Microsoft Corporation - Microsoft SmartScreen Filter.) -- C:\Windows\System32\ieapfltr.dll   [762368]
O44 - LFC:[MD5.5051BB40FFB2BA4870C0A059CA03294F] - 20/08/2013 - 01:51:49 ---A- . (.Microsoft Corporation - Microsoft Spell Checking Facility.) -- C:\Windows\SysNative\MsSpellCheckingFacility.exe   [1054720]
O44 - LFC:[MD5.4CFBEC37E4FAD530E623E1541E1EA958] - 20/08/2013 - 01:51:49 ---A- . (.Microsoft Corporation - Microsoft ® VBScript.) -- C:\Windows\SysNative\vbscript.dll   [599552]
O44 - LFC:[MD5.4CFBEC37E4FAD530E623E1541E1EA958] - 20/08/2013 - 01:51:49 ---A- . (.Microsoft Corporation - Microsoft ® VBScript.) -- C:\Windows\System32\vbscript.dll   [599552]
O44 - LFC:[MD5.2AAE2B8FED8390879C2369FC63F7001F] - 20/08/2013 - 01:51:49 ---A- . (.Microsoft Corporation - Microsoft® HTML Editing Component.) -- C:\Windows\SysNative\mshtmled.dll   [97280]
O44 - LFC:[MD5.2AAE2B8FED8390879C2369FC63F7001F] - 20/08/2013 - 01:51:49 ---A- . (.Microsoft Corporation - Microsoft® HTML Editing Component.) -- C:\Windows\System32\mshtmled.dll   [97280]
O44 - LFC:[MD5.3A2FD42F11CD325A4ACAFE7FB0EEA83A] - 20/08/2013 - 01:51:49 ---A- . (.Microsoft Corporation - Microsoft® MSHTML Typelib.) -- C:\Windows\SysNative\mshtml.tlb   [2706432]
O44 - LFC:[MD5.3A2FD42F11CD325A4ACAFE7FB0EEA83A] - 20/08/2013 - 01:51:49 ---A- . (.Microsoft Corporation - Microsoft® MSHTML Typelib.) -- C:\Windows\System32\mshtml.tlb   [2706432]
O44 - LFC:[MD5.4E426A67C46379B75A5E671B46FC07F6] - 20/08/2013 - 01:51:49 ---A- . (.Microsoft Corporation - Moteur d'installation.) -- C:\Windows\SysNative\inseng.dll   [102912]
O44 - LFC:[MD5.4E426A67C46379B75A5E671B46FC07F6] - 20/08/2013 - 01:51:49 ---A- . (.Microsoft Corporation - Moteur d'installation.) -- C:\Windows\System32\inseng.dll   [102912]
O44 - LFC:[MD5.61FD8E6D361E223F86D27933CE55973B] - 20/08/2013 - 01:51:49 ---A- . (.Microsoft Corporation - Outil d’installation sans assistance d’IE 7.) -- C:\Windows\SysNative\ieUnatt.exe   [173568]
O44 - LFC:[MD5.61FD8E6D361E223F86D27933CE55973B] - 20/08/2013 - 01:51:49 ---A- . (.Microsoft Corporation - Outil d’installation sans assistance d’IE 7.) -- C:\Windows\System32\ieUnatt.exe   [173568]
O44 - LFC:[MD5.ADE73A865A5F136E84F49BB6B1627C6E] - 20/08/2013 - 01:51:49 ---A- . (.Microsoft Corporation - Panneau de configuration Internet.) -- C:\Windows\SysNative\inetcpl.cpl   [1509376]
O44 - LFC:[MD5.ADE73A865A5F136E84F49BB6B1627C6E] - 20/08/2013 - 01:51:49 ---A- . (.Microsoft Corporation - Panneau de configuration Internet.) -- C:\Windows\System32\inetcpl.cpl   [1509376]
O44 - LFC:[MD5.D0F66CFAED5B85543216EF526D380B8B] - 20/08/2013 - 01:51:49 ---A- . (.Microsoft Corporation - Personnalisation d’IEAK.) -- C:\Windows\SysNative\iedkcs32.dll   [270848]
O44 - LFC:[MD5.D0F66CFAED5B85543216EF526D380B8B] - 20/08/2013 - 01:51:49 ---A- . (.Microsoft Corporation - Personnalisation d’IEAK.) -- C:\Windows\System32\iedkcs32.dll   [270848]
O44 - LFC:[MD5.28C2F8C7DBE11AA3DA041D35F4E59481] - 20/08/2013 - 01:51:49 ---A- . (.Microsoft Corporation - Registers custom PKEYs for IE.) -- C:\Windows\SysNative\RegisterIEPKEYs.exe   [89600]
O44 - LFC:[MD5.28C2F8C7DBE11AA3DA041D35F4E59481] - 20/08/2013 - 01:51:49 ---A- . (.Microsoft Corporation - Registers custom PKEYs for IE.) -- C:\Windows\System32\RegisterIEPKEYs.exe   [89600]
O44 - LFC:[MD5.65546D87F7A78AB31841A536456CB94D] - 20/08/2013 - 01:51:49 ---A- . (.Microsoft Corporation - Run time utility for Internet Explorer.) -- C:\Windows\SysNative\iertutil.dll   [2647040]
O44 - LFC:[MD5.65546D87F7A78AB31841A536456CB94D] - 20/08/2013 - 01:51:49 ---A- . (.Microsoft Corporation - Run time utility for Internet Explorer.) -- C:\Windows\System32\iertutil.dll   [2647040]
O44 - LFC:[MD5.622C7C8D39609FCEACE3508715D48C7F] - 20/08/2013 - 01:51:49 ---A- . (.Microsoft Corporation - Traitement de RunOnce complet avec interfac.) -- C:\Windows\SysNative\iernonce.dll   [39936]
O44 - LFC:[MD5.622C7C8D39609FCEACE3508715D48C7F] - 20/08/2013 - 01:51:49 ---A- . (.Microsoft Corporation - Traitement de RunOnce complet avec interfac.) -- C:\Windows\System32\iernonce.dll   [39936]
O44 - LFC:[MD5.6C8BDC9F16943D626DFE8A987BCCFD20] - 20/08/2013 - 01:51:49 ---A- . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\SysNative\ie4uinit.exe   [51712]
O44 - LFC:[MD5.396889142BD839DB8A055A0BE0AD2F79] - 20/08/2013 - 01:51:49 ---A- . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysNative\mshtml.dll   [19239424]
O44 - LFC:[MD5.396889142BD839DB8A055A0BE0AD2F79] - 20/08/2013 - 01:51:49 ---A- . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll   [19239424]
O44 - LFC:[MD5.D9C10A4A0B3411146E6FC8936B079934] - 20/08/2013 - 01:51:49 ---A- . (.Microsoft Corporation - Wizard.) -- C:\Windows\SysNative\iexpress.exe   [167424]
O44 - LFC:[MD5.D9C10A4A0B3411146E6FC8936B079934] - 20/08/2013 - 01:51:49 ---A- . (.Microsoft Corporation - Wizard.) -- C:\Windows\System32\iexpress.exe   [167424]
O44 - LFC:[MD5.5051BB40FFB2BA4870C0A059CA03294F] - 20/08/2013 - 01:51:49 RSHAD . (.Microsoft Corporation - Microsoft Spell Checking Facility.) -- C:\Windows\System32\MsSpellCheckingFacility.exe   [1054720]
O44 - LFC:[MD5.6C8BDC9F16943D626DFE8A987BCCFD20] - 20/08/2013 - 01:51:49 RSHAD . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe   [51712]
O44 - LFC:[MD5.E965529C43D25F2BDA77D705098BF777] - 20/08/2013 - 01:51:48 ---A- . (.Microsoft Corporation - ADVPACK.) -- C:\Windows\SysNative\IEAdvpack.dll   [135680]
O44 - LFC:[MD5.E965529C43D25F2BDA77D705098BF777] - 20/08/2013 - 01:51:48 ---A- . (.Microsoft Corporation - ADVPACK.) -- C:\Windows\System32\IEAdvpack.dll   [135680]
O44 - LFC:[MD5.942E110384668EEFF44751A02EDDF5E4] - 20/08/2013 - 01:51:48 ---A- . (.Microsoft Corporation - DLL de ressource du composant d'édition HTM.) -- C:\Windows\SysNative\mshtmler.dll   [48640]
O44 - LFC:[MD5.942E110384668EEFF44751A02EDDF5E4] - 20/08/2013 - 01:51:48 ---A- . (.Microsoft Corporation - DLL de ressource du composant d'édition HTM.) -- C:\Windows\System32\mshtmler.dll   [48640]
O44 - LFC:[MD5.658E8FEC79A4AB5BFDE032627B5C9667] - 20/08/2013 - 01:51:48 ---A- . (.Microsoft Corporation - Hôte des applications HTML de Microsoft(R).) -- C:\Windows\SysNative\mshta.exe   [13824]
O44 - LFC:[MD5.658E8FEC79A4AB5BFDE032627B5C9667] - 20/08/2013 - 01:51:48 ---A- . (.Microsoft Corporation - Hôte des applications HTML de Microsoft(R).) -- C:\Windows\System32\mshta.exe   [13824]
O44 - LFC:[MD5.C2F21E3059AFF5E616F3E361D9FA10CD] - 20/08/2013 - 01:51:48 ---A- . (.Microsoft Corporation - IE PNG plugin image decoder.) -- C:\Windows\SysNative\pngfilt.dll   [62976]
O44 - LFC:[MD5.C2F21E3059AFF5E616F3E361D9FA10CD] - 20/08/2013 - 01:51:48 ---A- . (.Microsoft Corporation - IE PNG plugin image decoder.) -- C:\Windows\System32\pngfilt.dll   [62976]
O44 - LFC:[MD5.D8CC9A20C517A54678363C4C77B930A4] - 20/08/2013 - 01:51:48 ---A- . (.Microsoft Corporation - IE Sysprep Provider.) -- C:\Windows\SysNative\iesysprep.dll   [136704]
O44 - LFC:[MD5.D8CC9A20C517A54678363C4C77B930A4] - 20/08/2013 - 01:51:48 ---A- . (.Microsoft Corporation - IE Sysprep Provider.) -- C:\Windows\System32\iesysprep.dll   [136704]
O44 - LFC:[MD5.5B15164486C66B76699E1CD2CD2F3A2A] - 20/08/2013 - 01:51:48 ---A- . (.Microsoft Corporation - IE plugin image decoder support DLL.) -- C:\Windows\SysNative\imgutil.dll   [51200]
O44 - LFC:[MD5.5B15164486C66B76699E1CD2CD2F3A2A] - 20/08/2013 - 01:51:48 ---A- . (.Microsoft Corporation - IE plugin image decoder support DLL.) -- C:\Windows\System32\imgutil.dll   [51200]
O44 - LFC:[MD5.16FE878530FDFC9AB08B7FFC32335958] - 20/08/2013 - 01:51:48 ---A- . (.Microsoft Corporation - Microsoft (R) JScript.) -- C:\Windows\SysNative\jscript.dll   [855552]
O44 - LFC:[MD5.5A7FA01EEC393A3E0D0F3EBAA1FD959E] - 20/08/2013 - 01:51:48 ---A- . (.Microsoft Corporation - Microsoft (R) JScript.) -- C:\Windows\SysNative\jscript9.dll   [3958784]
O44 - LFC:[MD5.16FE878530FDFC9AB08B7FFC32335958] - 20/08/2013 - 01:51:48 ---A- . (.Microsoft Corporation - Microsoft (R) JScript.) -- C:\Windows\System32\jscript.dll   [855552]
O44 - LFC:[MD5.5A7FA01EEC393A3E0D0F3EBAA1FD959E] - 20/08/2013 - 01:51:48 ---A- . (.Microsoft Corporation - Microsoft (R) JScript.) -- C:\Windows\System32\jscript9.dll   [3958784]
O44 - LFC:[MD5.82D602EBBBA6D08E4691F32269FD3494] - 20/08/2013 - 01:51:48 ---A- . (.Microsoft Corporation - Microsoft Feeds Synchronization.) -- C:\Windows\SysNative\msfeedssync.exe   [12800]
O44 - LFC:[MD5.82D602EBBBA6D08E4691F32269FD3494] - 20/08/2013 - 01:51:48 ---A- . (.Microsoft Corporation - Microsoft Feeds Synchronization.) -- C:\Windows\System32\msfeedssync.exe   [12800]
O44 - LFC:[MD5.69F5E016A98CE1908DB08382F2ACF882] - 20/08/2013 - 01:51:48 ---A- . (.Microsoft Corporation - Moteur de l’interface utilisateur d’Interne.) -- C:\Windows\SysNative\ieui.dll   [526336]
O44 - LFC:[MD5.69F5E016A98CE1908DB08382F2ACF882] - 20/08/2013 - 01:51:48 ---A- . (.Microsoft Corporation - Moteur de l’interface utilisateur d’Interne.) -- C:\Windows\System32\ieui.dll   [526336]
O44 - LFC:[MD5.677A1C1B0F254EC918D84A7FE29274CA] - 20/08/2013 - 01:51:48 ---A- . (.Microsoft Corporation - Navigateur Internet.) -- C:\Windows\SysNative\ieframe.dll   [15405056]
O44 - LFC:[MD5.677A1C1B0F254EC918D84A7FE29274CA] - 20/08/2013 - 01:51:48 ---A- . (.Microsoft Corporation - Navigateur Internet.) -- C:\Windows\System32\ieframe.dll   [15405056]
O44 - LFC:[MD5.D0D4CE6C6CE87269A34A184356475D17] - 20/08/2013 - 01:51:48 ---A- . (.Microsoft Corporation - Object Control Viewer.) -- C:\Windows\SysNative\occache.dll   [149504]
O44 - LFC:[MD5.D0D4CE6C6CE87269A34A184356475D17] - 20/08/2013 - 01:51:48 ---A- . (.Microsoft Corporation - Object Control Viewer.) -- C:\Windows\System32\occache.dll   [149504]
O44 - LFC:[MD5.18A94D6E9D27D169D38DAB91F6A97518] - 20/08/2013 - 01:51:48 ---A- . (.Microsoft Corporation - Objets homologues Internet Explorer.) -- C:\Windows\SysNative\iepeers.dll   [136192]
O44 - LFC:[MD5.18A94D6E9D27D169D38DAB91F6A97518] - 20/08/2013 - 01:51:48 ---A- . (.Microsoft Corporation - Objets homologues Internet Explorer.) -- C:\Windows\System32\iepeers.dll   [136192]
O44 - LFC:[MD5.F651D95B5043EFC20A6108A853553984] - 20/08/2013 - 01:51:48 ---A- . (.Microsoft Corporation - Sets the date that IE was installed.) -- C:\Windows\SysNative\SetIEInstalledDate.exe   [92160]
O44 - LFC:[MD5.F651D95B5043EFC20A6108A853553984] - 20/08/2013 - 01:51:48 ---A- . (.Microsoft Corporation - Sets the date that IE was installed.) -- C:\Windows\System32\SetIEInstalledDate.exe   [92160]
O44 - LFC:[MD5.63CAE56FE4215F98FEB0188748A99378] - 20/08/2013 - 01:51:48 ---A- . (.Microsoft Corporation - Synchronisation en arrière-plan des flux Mi.) -- C:\Windows\SysNative\msfeedsbs.dll   [52224]
O44 - LFC:[MD5.63CAE56FE4215F98FEB0188748A99378] - 20/08/2013 - 01:51:48 ---A- . (.Microsoft Corporation - Synchronisation en arrière-plan des flux Mi.) -- C:\Windows\System32\msfeedsbs.dll   [52224]
O44 - LFC:[MD5.440104AEB9DAF8AC9842080AE59740FA] - 20/08/2013 - 01:51:48 ---A- . (.Microsoft Corporation - TDC ActiveX Control.) -- C:\Windows\SysNative\tdc.ocx   [77312]
O44 - LFC:[MD5.440104AEB9DAF8AC9842080AE59740FA] - 20/08/2013 - 01:51:48 ---A- . (.Microsoft Corporation - TDC ActiveX Control.) -- C:\Windows\System32\tdc.ocx   [77312]
O44 - LFC:[MD5.3D7BB6DD7A87B3E36E44CA94444247A8] - 20/08/2013 - 01:32:58 ---A- . (.Microsoft Corporation - Microsoft Windows Codecs Library.) -- C:\Windows\SysNative\WindowsCodecs.dll   [1424384]
O44 - LFC:[MD5.3D7BB6DD7A87B3E36E44CA94444247A8] - 20/08/2013 - 01:32:58 ---A- . (.Microsoft Corporation - Microsoft Windows Codecs Library.) -- C:\Windows\System32\WindowsCodecs.dll   [1424384]
O44 - LFC:[MD5.DD85F00EC31F77315AE992B7B0411D65] - 20/08/2013 - 01:22:10 ---A- . (.Microsoft Corporation - Services de typographie Microsoft DirectX.) -- C:\Windows\SysNative\DWrite.dll   [1643520]
O44 - LFC:[MD5.DD85F00EC31F77315AE992B7B0411D65] - 20/08/2013 - 01:22:10 ---A- . (.Microsoft Corporation - Services de typographie Microsoft DirectX.) -- C:\Windows\System32\DWrite.dll   [1643520]
O44 - LFC:[MD5.8CDC770B9BC30A0B1EBC0C2029CEAB97] - 20/08/2013 - 01:01:19 ---A- . (...) -- C:\Windows\SysNative\FNTCACHE.DAT   [274712]
O44 - LFC:[MD5.8CDC770B9BC30A0B1EBC0C2029CEAB97] - 20/08/2013 - 01:01:19 RSHAD . (...) -- C:\Windows\System32\FNTCACHE.DAT   [274712]
O44 - LFC:[MD5.933222B19FF3E7EA5F65517EA1F7D57E] - 20/08/2013 - 00:16:54 RSHAD . (...) -- C:\Windows\System32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf   [3]
O44 - LFC:[MD5.51DFBD18A435BAEC1F71A692373ECE4F] - 20/08/2013 - 00:16:40 ---A- . (.Microsoft Corporation - Kernel Mode Driver Framework Resource.) -- C:\Windows\SysNative\Wdfres.dll   [9728]
O44 - LFC:[MD5.AEA0A67275CFBA0E463E00C6E9A1DDAE] - 20/08/2013 - 00:16:40 RSHAD . (.Microsoft Corporation - Kernel Mode Driver Framework Loader.) -- C:\Windows\System32\Drivers\WdfLdr.sys   [54376]
O44 - LFC:[MD5.51DFBD18A435BAEC1F71A692373ECE4F] - 20/08/2013 - 00:16:40 RSHAD . (.Microsoft Corporation - Kernel Mode Driver Framework Resource.) -- C:\Windows\System32\Wdfres.dll   [9728]
O44 - LFC:[MD5.442783E2CB0DA19873B7A63833FF4CB4] - 20/08/2013 - 00:16:40 RSHAD . (.Microsoft Corporation - Runtime de l’infrastructure de pilotes en m.) -- C:\Windows\System32\Drivers\Wdf01000.sys   [785512]
O44 - LFC:[MD5.7B619C36F84720CB6AB77031B6F4FA60] - 19/08/2013 - 23:34:27 ---A- . (.Microsoft Corporation - Extension de stratégie de groupe pour la re.) -- C:\Windows\SysNative\TsUsbRedirectionGroupPolicyExtension.dll   [13312]
O44 - LFC:[MD5.E9A0777DCA9148157E0EF9B71D7DE353] - 19/08/2013 - 23:34:27 ---A- . (.Microsoft Corporation - Remote Desktop Protocol Group Policy Extens.) -- C:\Windows\SysNative\RdpGroupPolicyExtension.dll   [15360]
O44 - LFC:[MD5.0E894692EB8579703FB1EC8AB6908571] - 19/08/2013 - 23:34:27 ---A- . (.Microsoft Corporation - Remote Desktop USB Redirection GP Extension.) -- C:\Windows\SysNative\TsUsbRedirectionGroupPolicyControl.exe   [13312]
O44 - LFC:[MD5.7B619C36F84720CB6AB77031B6F4FA60] - 19/08/2013 - 23:34:27 RSHAD . (.Microsoft Corporation - Extension de stratégie de groupe pour la re.) -- C:\Windows\System32\TsUsbRedirectionGroupPolicyExtension.dll   [13312]
O44 - LFC:[MD5.E9A0777DCA9148157E0EF9B71D7DE353] - 19/08/2013 - 23:34:27 RSHAD . (.Microsoft Corporation - Remote Desktop Protocol Group Policy Extens.) -- C:\Windows\System32\RdpGroupPolicyExtension.dll   [15360]
O44 - LFC:[MD5.0E894692EB8579703FB1EC8AB6908571] - 19/08/2013 - 23:34:27 RSHAD . (.Microsoft Corporation - Remote Desktop USB Redirection GP Extension.) -- C:\Windows\System32\TsUsbRedirectionGroupPolicyControl.exe   [13312]
O44 - LFC:[MD5.313F68E1A3E6345A4F47A36B07062F34] - 19/08/2013 - 23:34:19 RSHAD . (.Microsoft Corporation - Microsoft RDP Video Miniport driver.) -- C:\Windows\System32\Drivers\rdpvideominiport.sys   [19456]
O44 - LFC:[MD5.17C6B51CBCCDED95B3CC14E22791F85E] - 19/08/2013 - 23:34:19 RSHAD . (.Microsoft Corporation - Pilote de filtre pour concentrateur USB du.) -- C:\Windows\System32\Drivers\TsUsbFlt.sys   [57856]
O44 - LFC:[MD5.AD64450A4ABE076F5CB34CC08EEACB07] - 19/08/2013 - 23:34:19 RSHAD . (.Microsoft Corporation - Remote Desktop Generic USB Driver.) -- C:\Windows\System32\Drivers\TsUsbGD.sys   [30208]
O44 - LFC:[MD5.09112DADA82F4700F833C2E40DFB59FC] - 19/08/2013 - 23:34:11 ---A- . (.Microsoft Corporation - WorkspaceRuntime ProxyStub DLL.) -- C:\Windows\SysNative\wksprtPS.dll   [18432]
O44 - LFC:[MD5.09112DADA82F4700F833C2E40DFB59FC] - 19/08/2013 - 23:34:11 ---A- . (.Microsoft Corporation - WorkspaceRuntime ProxyStub DLL.) -- C:\Windows\System32\wksprtPS.dll   [18432]
O44 - LFC:[MD5.E98E2152251EB2576714B2CCE01555DC] - 19/08/2013 - 23:34:10 ---A- . (.Microsoft Corporation - Client de contrainte de quarantaine de la p.) -- C:\Windows\SysNative\tsgqec.dll   [44032]
O44 - LFC:[MD5.E98E2152251EB2576714B2CCE01555DC] - 19/08/2013 - 23:34:10 ---A- . (.Microsoft Corporation - Client de contrainte de quarantaine de la p.) -- C:\Windows\System32\tsgqec.dll   [44032]
O44 - LFC:[MD5.9EB297848DAACF111C36B6048EFF5AEA] - 19/08/2013 - 23:34:10 ---A- . (.Microsoft Corporation - Co-installateur de pilote USB générique du.) -- C:\Windows\SysNative\TsUsbGDCoInstaller.dll   [43520]
O44 - LFC:[MD5.9EB297848DAACF111C36B6048EFF5AEA] - 19/08/2013 - 23:34:10 RSHAD . (.Microsoft Corporation - Co-installateur de pilote USB générique du.) -- C:\Windows\System32\TsUsbGDCoInstaller.dll   [43520]
O44 - LFC:[MD5.87E8244DCB33A7A0836C66389B8874B6] - 19/08/2013 - 23:34:09 ---A- . (.Microsoft Corporation - Client avec accès à distance.) -- C:\Windows\SysNative\aaclient.dll   [322560]
O44 - LFC:[MD5.87E8244DCB33A7A0836C66389B8874B6] - 19/08/2013 - 23:34:09 ---A- . (.Microsoft Corporation - Client avec accès à distance.) -- C:\Windows\System32\aaclient.dll   [322560]
O44 - LFC:[MD5.F059D17612BF074443C01FCCC8D5C905] - 19/08/2013 - 23:34:09 ---A- . (.Microsoft Corporation - Microsoft Remote Desktop Services Web Acces.) -- C:\Windows\SysNative\MsRdpWebAccess.dll   [54272]
O44 - LFC:[MD5.F059D17612BF074443C01FCCC8D5C905] - 19/08/2013 - 23:34:09 ---A- . (.Microsoft Corporation - Microsoft Remote Desktop Services Web Acces.) -- C:\Windows\System32\MsRdpWebAccess.dll   [54272]
O44 - LFC:[MD5.AE8535663AA64318D174CD7CA44ED947] - 19/08/2013 - 23:34:09 ---A- . (.Microsoft Corporation - Microsoft Remote Desktop Services Web Proxy.) -- C:\Windows\SysNative\TSWbPrxy.exe   [62976]
O44 - LFC:[MD5.D346E07D62E3D4BEAB040939744EC31B] - 19/08/2013 - 23:34:09 ---A- . (.Microsoft Corporation - Point de terminaison audio RDP.) -- C:\Windows\SysNative\rdpendp_winip.dll   [228864]
O44 - LFC:[MD5.D346E07D62E3D4BEAB040939744EC31B] - 19/08/2013 - 23:34:09 ---A- . (.Microsoft Corporation - Point de terminaison audio RDP.) -- C:\Windows\System32\rdpendp_winip.dll   [228864]
O44 - LFC:[MD5.AD4D0AEDB5993EDA31EB80A54EDBC344] - 19/08/2013 - 23:34:09 ---A- . (.Microsoft Corporation - UMRDP Display Driver.) -- C:\Windows\SysNative\rdpudd.dll   [243200]
O44 - LFC:[MD5.AE8535663AA64318D174CD7CA44ED947] - 19/08/2013 - 23:34:09 RSHAD . (.Microsoft Corporation - Microsoft Remote Desktop Services Web Proxy.) -- C:\Windows\System32\TSWbPrxy.exe   [62976]
O44 - LFC:[MD5.AD4D0AEDB5993EDA31EB80A54EDBC344] - 19/08/2013 - 23:34:09 RSHAD . (.Microsoft Corporation - UMRDP Display Driver.) -- C:\Windows\System32\rdpudd.dll   [243200]
O44 - LFC:[MD5.98C04A60A10777D99B569636C55FE91C] - 19/08/2013 - 23:34:08 ---A- . (.Microsoft Corporation - Connexion Bureau à distance.) -- C:\Windows\SysNative\mstsc.exe   [1123840]
O44 - LFC:[MD5.98C04A60A10777D99B569636C55FE91C] - 19/08/2013 - 23:34:08 ---A- . (.Microsoft Corporation - Connexion Bureau à distance.) -- C:\Windows\System32\mstsc.exe   [1123840]
O44 - LFC:[MD5.6846ECABF7034DD97EE1DE38F1DA16B4] - 19/08/2013 - 23:34:08 ---A- . (.Microsoft Corporation - Runtime de connexion RemoteApp et Bureau à.) -- C:\Windows\SysNative\wksprt.exe   [384000]
O44 - LFC:[MD5.6846ECABF7034DD97EE1DE38F1DA16B4] - 19/08/2013 - 23:34:08 RSHAD . (.Microsoft Corporation - Runtime de connexion RemoteApp et Bureau à.) -- C:\Windows\System32\wksprt.exe   [384000]
O44 - LFC:[MD5.8F69EE5E0EB0779DC3E90DFD8D8E8683] - 19/08/2013 - 23:34:07 ---A- . (.Microsoft Corporation - DLL RDPCore TS.) -- C:\Windows\SysNative\rdpcorets.dll   [3174912]
O44 - LFC:[MD5.8F69EE5E0EB0779DC3E90DFD8D8E8683] - 19/08/2013 - 23:34:07 RSHAD . (.Microsoft Corporation - DLL RDPCore TS.) -- C:\Windows\System32\rdpcorets.dll   [3174912]
O44 - LFC:[MD5.FF16B21E5C0C46A70B2CD4F65B87D9F1] - 19/08/2013 - 23:34:04 ---A- . (.Microsoft Corporation - Client ActiveX des services Bureau à distan.) -- C:\Windows\SysNative\mstscax.dll   [5773824]
O44 - LFC:[MD5.FF16B21E5C0C46A70B2CD4F65B87D9F1] - 19/08/2013 - 23:34:04 ---A- . (.Microsoft Corporation - Client ActiveX des services Bureau à distan.) -- C:\Windows\System32\mstscax.dll   [5773824]
O44 - LFC:[MD5.19AEF9DE6A175C85DFF87C0ED0AB5386] - 19/08/2013 - 23:17:24 ---A- . (.Microsoft Corporation - Outil de suppression de logiciels malveilla.) -- C:\Windows\SysNative\MRT.exe   [78161360]
O44 - LFC:[MD5.19AEF9DE6A175C85DFF87C0ED0AB5386] - 19/08/2013 - 23:17:24 RSHAD . (.Microsoft Corporation - Outil de suppression de logiciels malveilla.) -- C:\Windows\System32\MRT.exe   [78161360]
O44 - LFC:[MD5.2ED72B3F76C9368ABC01464DA64DB7AE] - 19/08/2013 - 22:24:27 ---A- . (.Adobe Systems - Windows NT OpenType/Type 1 API Library..) -- C:\Windows\SysNative\atmlib.dll   [46080]
O44 - LFC:[MD5.2ED72B3F76C9368ABC01464DA64DB7AE] - 19/08/2013 - 22:24:27 ---A- . (.Adobe Systems - Windows NT OpenType/Type 1 API Library..) -- C:\Windows\System32\atmlib.dll   [46080]
O44 - LFC:[MD5.CB2ABB2DA1E9C977302A78D86D4AE3B0] - 19/08/2013 - 22:24:26 ---A- . (.Adobe Systems Incorporated - Windows NT OpenType/Type 1 Font Driver.) -- C:\Windows\SysNative\atmfd.dll   [367616]
O44 - LFC:[MD5.CB2ABB2DA1E9C977302A78D86D4AE3B0] - 19/08/2013 - 22:24:26 ---A- . (.Adobe Systems Incorporated - Windows NT OpenType/Type 1 Font Driver.) -- C:\Windows\System32\atmfd.dll   [367616]
O44 - LFC:[MD5.AB886378EEB55C6C75B4F2D14B6C869F] - 19/08/2013 - 22:20:29 RSHAD . (.Microsoft Corporation - Windows Driver Foundation - User-mode Drive.) -- C:\Windows\System32\Drivers\WUDFPf.sys   [87040]
O44 - LFC:[MD5.DDA4CAF29D8C0A297F886BFE561E6659] - 19/08/2013 - 22:20:29 RSHAD . (.Microsoft Corporation - Windows Driver Foundation - User-mode Drive.) -- C:\Windows\System32\Drivers\WUDFRd.sys   [198656]
O44 - LFC:[MD5.B20F051B03A966392364C83F009F7D17] - 19/08/2013 - 22:20:26 ---A- . (.Microsoft Corporation - Windows Driver Foundation - Service d’infra.) -- C:\Windows\SysNative\WUDFSvc.dll   [84992]
O44 - LFC:[MD5.B20F051B03A966392364C83F009F7D17] - 19/08/2013 - 22:20:26 RSHAD . (.Microsoft Corporation - Windows Driver Foundation - Service d’infra.) -- C:\Windows\System32\WUDFSvc.dll   [84992]
O44 - LFC:[MD5.B1DF2D87DC8BF6072699AC8301B37796] - 19/08/2013 - 22:20:25 ---A- . (.Microsoft Corporation - Windows Driver Foundation - Bibliothèque de.) -- C:\Windows\SysNative\WUDFPlatform.dll   [194048]
O44 - LFC:[MD5.B1DF2D87DC8BF6072699AC8301B37796] - 19/08/2013 - 22:20:25 RSHAD . (.Microsoft Corporation - Windows Driver Foundation - Bibliothèque de.) -- C:\Windows\System32\WUDFPlatform.dll   [194048]
O44 - LFC:[MD5.F1617F1014D51987D517A4C37A7C733B] - 19/08/2013 - 22:20:18 ---A- . (.Microsoft Corporation - Windows Driver Foundation - User-mode Platf.) -- C:\Windows\SysNative\WUDFCoinstaller.dll   [45056]
O44 - LFC:[MD5.F1617F1014D51987D517A4C37A7C733B] - 19/08/2013 - 22:20:18 RSHAD . (.Microsoft Corporation - Windows Driver Foundation - User-mode Platf.) -- C:\Windows\System32\WUDFCoinstaller.dll   [45056]
O44 - LFC:[MD5.8ABFE00F213F2571498F1B8FD7939A98] - 19/08/2013 - 22:20:17 ---A- . (.Microsoft Corporation - Windows Driver Foundation - Processus hôte.) -- C:\Windows\SysNative\WUDFHost.exe   [229888]
O44 - LFC:[MD5.8ABFE00F213F2571498F1B8FD7939A98] - 19/08/2013 - 22:20:17 RSHAD . (.Microsoft Corporation - Windows Driver Foundation - Processus hôte.) -- C:\Windows\System32\WUDFHost.exe   [229888]
O44 - LFC:[MD5.25AE683DCB4AE7E6F1B193A0CB9DB35F] - 19/08/2013 - 22:20:16 ---A- . (.Microsoft Corporation - WDF:UMDF Framework Library.) -- C:\Windows\SysNative\WUDFx.dll   [744448]
O44 - LFC:[MD5.25AE683DCB4AE7E6F1B193A0CB9DB35F] - 19/08/2013 - 22:20:16 RSHAD . (.Microsoft Corporation - WDF:UMDF Framework Library.) -- C:\Windows\System32\WUDFx.dll   [744448]
O44 - LFC:[MD5.933222B19FF3E7EA5F65517EA1F7D57E] - 19/08/2013 - 22:20:14 RSHAD . (...) -- C:\Windows\System32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf   [3]
O44 - LFC:[MD5.E8EEA503870CB6A6DC4E09A2433DF33E] - 19/08/2013 - 21:45:43 ---A- . (.Microsoft Corporation - Microsoft DTV-DVD Video Decoder.) -- C:\Windows\SysNative\msmpeg2vdec.dll   [2776576]
O44 - LFC:[MD5.E8EEA503870CB6A6DC4E09A2433DF33E] - 19/08/2013 - 21:45:43 ---A- . (.Microsoft Corporation - Microsoft DTV-DVD Video Decoder.) -- C:\Windows\System32\msmpeg2vdec.dll   [2776576]
O44 - LFC:[MD5.04CB7C8FDC6D9640DD82A527208F72C4] - 19/08/2013 - 21:45:42 ---A- . (.Microsoft Corporation - Windows Animation Manager.) -- C:\Windows\SysNative\UIAnimation.dll   [221184]
O44 - LFC:[MD5.04CB7C8FDC6D9640DD82A527208F72C4] - 19/08/2013 - 21:45:42 ---A- . (.Microsoft Corporation - Windows Animation Manager.) -- C:\Windows\System32\UIAnimation.dll   [221184]
O44 - LFC:[MD5.893E8C1E4A1263EDDB1A6922D0E32201] - 19/08/2013 - 21:45:19 ---A- . (.Microsoft Corporation - Codec pour photographie Windows Media Photo.) -- C:\Windows\SysNative\WMPhoto.dll   [465920]
O44 - LFC:[MD5.893E8C1E4A1263EDDB1A6922D0E32201] - 19/08/2013 - 21:45:19 ---A- . (.Microsoft Corporation - Codec pour photographie Windows Media Photo.) -- C:\Windows\System32\WMPhoto.dll   [465920]
O44 - LFC:[MD5.9AE80F6A66B30E3ED8CDF858CF28B11B] - 19/08/2013 - 21:45:00 ---A- . (.Microsoft Corporation - Direct3D 10.1 Runtime.) -- C:\Windows\SysNative\d3d10_1.dll   [194560]
O44 - LFC:[MD5.9AE80F6A66B30E3ED8CDF858CF28B11B] - 19/08/2013 - 21:45:00 ---A- . (.Microsoft Corporation - Direct3D 10.1 Runtime.) -- C:\Windows\System32\d3d10_1.dll   [194560]
O44 - LFC:[MD5.F49E92B50CED5C9F1725D3C0329FD933] - 19/08/2013 - 21:45:00 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\SysNative\api-ms-win-downlevel-advapi32-l1-1-0.dll   [10752]
O44 - LFC:[MD5.F5CEF064C7E6D95DA86B9D064A56A969] - 19/08/2013 - 21:45:00 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\SysNative\api-ms-win-downlevel-advapi32-l2-1-0.dll   [3584]
O44 - LFC:[MD5.64A4AB126E24FD3F58EBE64852773DB5] - 19/08/2013 - 21:45:00 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\SysNative\api-ms-win-downlevel-normaliz-l1-1-0.dll   [2560]
O44 - LFC:[MD5.AFC3DB5C6EB8CA8017DDB81D6C0AD02A] - 19/08/2013 - 21:45:00 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\SysNative\api-ms-win-downlevel-shlwapi-l1-1-0.dll   [9728]
O44 - LFC:[MD5.F49E92B50CED5C9F1725D3C0329FD933] - 19/08/2013 - 21:45:00 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll   [10752]
O44 - LFC:[MD5.F5CEF064C7E6D95DA86B9D064A56A969] - 19/08/2013 - 21:45:00 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll   [3584]
O44 - LFC:[MD5.64A4AB126E24FD3F58EBE64852773DB5] - 19/08/2013 - 21:45:00 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll   [2560]
O44 - LFC:[MD5.AFC3DB5C6EB8CA8017DDB81D6C0AD02A] - 19/08/2013 - 21:45:00 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll   [9728]
O44 - LFC:[MD5.C498EF41B93986BCBD483597573EB96D] - 19/08/2013 - 21:44:58 ---A- . (.Microsoft Corporation - Direct3D 10 Rasterizer.) -- C:\Windows\SysNative\d3d10warp.dll   [2565120]
O44 - LFC:[MD5.C498EF41B93986BCBD483597573EB96D] - 19/08/2013 - 21:44:58 ---A- . (.Microsoft Corporation - Direct3D 10 Rasterizer.) -- C:\Windows\System32\d3d10warp.dll   [2565120]
O44 - LFC:[MD5.6F623BD09CBB4C3F97374F12976E5EA5] - 19/08/2013 - 21:44:58 ---A- . (.Microsoft Corporation - XPS to GDI Converter.) -- C:\Windows\SysNative\XpsGdiConverter.dll   [522752]
O44 - LFC:[MD5.6F623BD09CBB4C3F97374F12976E5EA5] - 19/08/2013 - 21:44:58 ---A- . (.Microsoft Corporation - XPS to GDI Converter.) -- C:\Windows\System32\XpsGdiConverter.dll   [522752]
O44 - LFC:[MD5.0E6FBF19D9DFBB77316C23DF91F8A101] - 19/08/2013 - 21:44:57 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\SysNative\api-ms-win-downlevel-ole32-l1-1-0.dll   [5632]
O44 - LFC:[MD5.9108540E866F75C7AF2B91DD921A8091] - 19/08/2013 - 21:44:57 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\SysNative\api-ms-win-downlevel-shell32-l1-1-0.dll   [3072]
O44 - LFC:[MD5.72723D3E4781BADC62C3180C137E7B23] - 19/08/2013 - 21:44:57 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\SysNative\api-ms-win-downlevel-user32-l1-1-0.dll   [4096]
O44 - LFC:[MD5.9094039A00485F71C4DE64BF51F64C46] - 19/08/2013 - 21:44:57 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\SysNative\api-ms-win-downlevel-version-l1-1-0.dll   [3072]
O44 - LFC:[MD5.0E6FBF19D9DFBB77316C23DF91F8A101] - 19/08/2013 - 21:44:57 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll   [5632]
O44 - LFC:[MD5.9108540E866F75C7AF2B91DD921A8091] - 19/08/2013 - 21:44:57 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll   [3072]
O44 - LFC:[MD5.72723D3E4781BADC62C3180C137E7B23] - 19/08/2013 - 21:44:57 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll   [4096]
O44 - LFC:[MD5.9094039A00485F71C4DE64BF51F64C46] - 19/08/2013 - 21:44:57 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll   [3072]
O44 - LFC:[MD5.8DFB5752FCE145A6B295093C0A8BE131] - 19/08/2013 - 21:44:56 ---A- . (.Microsoft Corporation - DirectX Graphics Infrastructure.) -- C:\Windows\SysNative\dxgi.dll   [363008]
O44 - LFC:[MD5.8DFB5752FCE145A6B295093C0A8BE131] - 19/08/2013 - 21:44:56 ---A- . (.Microsoft Corporation - DirectX Graphics Infrastructure.) -- C:\Windows\System32\dxgi.dll   [363008]
O44 - LFC:[MD5.FB4045578F5180BDB1963AB352B78548] - 19/08/2013 - 21:44:56 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\SysNative\api-ms-win-downlevel-shlwapi-l2-1-0.dll   [5632]
O44 - LFC:[MD5.FB4045578F5180BDB1963AB352B78548] - 19/08/2013 - 21:44:56 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll   [5632]
O44 - LFC:[MD5.AFB73882AE41E1629A63E6713FE30FB9] - 19/08/2013 - 21:44:55 ---A- . (.Microsoft Corporation - Direct3D 10 Runtime.) -- C:\Windows\SysNative\d3d10core.dll   [296960]
O44 - LFC:[MD5.AFB73882AE41E1629A63E6713FE30FB9] - 19/08/2013 - 21:44:55 ---A- . (.Microsoft Corporation - Direct3D 10 Runtime.) -- C:\Windows\System32\d3d10core.dll   [296960]
O44 - LFC:[MD5.3834316FE8A653227282196525E07DFE] - 19/08/2013 - 21:44:55 ---A- . (.Microsoft Corporation - Direct3D 10 to Direct3D9 Translation Runtim.) -- C:\Windows\SysNative\d3d10level9.dll   [648192]
O44 - LFC:[MD5.3834316FE8A653227282196525E07DFE] - 19/08/2013 - 21:44:55 ---A- . (.Microsoft Corporation - Direct3D 10 to Direct3D9 Translation Runtim.) -- C:\Windows\System32\d3d10level9.dll   [648192]
O44 - LFC:[MD5.63F72417CA38D8FC8F53709649B589E3] - 19/08/2013 - 21:44:55 ---A- . (.Microsoft Corporation - Direct3D 10.1 Runtime.) -- C:\Windows\SysNative\d3d10_1core.dll   [333312]
O44 - LFC:[MD5.63F72417CA38D8FC8F53709649B589E3] - 19/08/2013 - 21:44:55 ---A- . (.Microsoft Corporation - Direct3D 10.1 Runtime.) -- C:\Windows\System32\d3d10_1core.dll   [333312]
O44 - LFC:[MD5.B2CA1AC17E78D986B22FD6C2261CD84F] - 19/08/2013 - 21:44:53 ---A- . (.Microsoft Corporation - Direct3D 10 Runtime.) -- C:\Windows\SysNative\d3d10.dll   [1238528]
O44 - LFC:[MD5.B2CA1AC17E78D986B22FD6C2261CD84F] - 19/08/2013 - 21:44:53 ---A- . (.Microsoft Corporation - Direct3D 10 Runtime.) -- C:\Windows\System32\d3d10.dll   [1238528]
O44 - LFC:[MD5.FA428BDBCFAB9DC3D58F0BD2CCD50EA2] - 19/08/2013 - 21:44:52 ---A- . (.Microsoft Corporation - XPS Printing DLL.) -- C:\Windows\SysNative\XpsPrint.dll   [1682432]
O44 - LFC:[MD5.FA428BDBCFAB9DC3D58F0BD2CCD50EA2] - 19/08/2013 - 21:44:52 ---A- . (.Microsoft Corporation - XPS Printing DLL.) -- C:\Windows\System32\XpsPrint.dll   [1682432]
O44 - LFC:[MD5.F1C19F0AA151B90A7416FA1D50DDB582] - 19/08/2013 - 21:44:51 ---A- . (.Microsoft Corporation - Microsoft Windows Codecs Extended Library.) -- C:\Windows\SysNative\WindowsCodecsExt.dll   [245248]
O44 - LFC:[MD5.F1C19F0AA151B90A7416FA1D50DDB582] - 19/08/2013 - 21:44:51 ---A- . (.Microsoft Corporation - Microsoft Windows Codecs Extended Library.) -- C:\Windows\System32\WindowsCodecsExt.dll   [245248]
O44 - LFC:[MD5.C4C183E6551084039EC862DA1C945E3D] - 19/08/2013 - 21:44:51 ---A- . (.Microsoft Corporation - Service de cache de police Windows.) -- C:\Windows\SysNative\FntCache.dll   [1175552]
O44 - LFC:[MD5.C4C183E6551084039EC862DA1C945E3D] - 19/08/2013 - 21:44:51 RSHAD . (.Microsoft Corporation - Service de cache de police Windows.) -- C:\Windows\System32\FntCache.dll   [1175552]
O44 - LFC:[MD5.7E8A672B7B06A6EB11960C22E0360C59] - 19/08/2013 - 21:44:49 ---A- . (.Microsoft Corporation - Bibliothèque Microsoft D2D.) -- C:\Windows\SysNative\d2d1.dll   [3928064]
O44 - LFC:[MD5.7E8A672B7B06A6EB11960C22E0360C59] - 19/08/2013 - 21:44:49 ---A- . (.Microsoft Corporation - Bibliothèque Microsoft D2D.) -- C:\Windows\System32\d2d1.dll   [3928064]
O44 - LFC:[MD5.6BD9295CC032DD3077C671FCCF579A7B] - 19/08/2013 - 21:27:31 RSHAD . (.Microsoft Corporation - File System Recognizer Driver.) -- C:\Windows\System32\Drivers\fs_rec.sys   [23408]
O44 - LFC:[MD5.A1BE6A720D02E37F72E9CD89AE9CB3CF] - 19/08/2013 - 21:27:30 ---A- . (.Microsoft Corporation - Windows NT Image Helper.) -- C:\Windows\SysNative\imagehlp.dll   [81408]
O44 - LFC:[MD5.A1BE6A720D02E37F72E9CD89AE9CB3CF] - 19/08/2013 - 21:27:30 ---A- . (.Microsoft Corporation - Windows NT Image Helper.) -- C:\Windows\System32\imagehlp.dll   [81408]
O44 - LFC:[MD5.C00DB14550E4BD49737F311C644E45FF] - 19/08/2013 - 21:27:28 ---A- . (.Microsoft Corporation - WMI DC and DP functionality.) -- C:\Windows\SysNative\wmi.dll   [5120]
O44 - LFC:[MD5.C00DB14550E4BD49737F311C644E45FF] - 19/08/2013 - 21:27:28 ---A- . (.Microsoft Corporation - WMI DC and DP functionality.) -- C:\Windows\System32\wmi.dll   [5120]
O44 - LFC:[MD5.1BFC94665BCA35F9001ADC7BFB167C63] - 19/08/2013 - 20:57:08 ---A- . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\SysNative\shell32.dll   [14172672]
O44 - LFC:[MD5.1BFC94665BCA35F9001ADC7BFB167C63] - 19/08/2013 - 20:57:08 ---A- . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll   [14172672]
O44 - LFC:[MD5.3EF480BFED1B5947A32585E30A58D4ED] - 19/08/2013 - 20:57:03 ---A- . (.Microsoft Corporation - Interface utilisateur d’authentification Wi.) -- C:\Windows\SysNative\authui.dll   [1930752]
O44 - LFC:[MD5.3EF480BFED1B5947A32585E30A58D4ED] - 19/08/2013 - 20:57:03 ---A- . (.Microsoft Corporation - Interface utilisateur d’authentification Wi.) -- C:\Windows\System32\authui.dll   [1930752]
O44 - LFC:[MD5.22A0AE97360C1B146FDD9AA55AC0E989] - 19/08/2013 - 20:57:02 ---A- . (.Microsoft Corporation - Bibliothèque d’objets et de contrôles de do.) -- C:\Windows\SysNative\shdocvw.dll   [197120]
O44 - LFC:[MD5.22A0AE97360C1B146FDD9AA55AC0E989] - 19/08/2013 - 20:57:02 ---A- . (.Microsoft Corporation - Bibliothèque d’objets et de contrôles de do.) -- C:\Windows\System32\shdocvw.dll   [197120]
O44 - LFC:[MD5.E948D1D42DC68923ABD75EEB5BCCD1D3] - 19/08/2013 - 20:57:02 ---A- . (.Microsoft Corporation - Interface utilisateur de consentement pour.) -- C:\Windows\SysNative\consent.exe   [111448]
O44 - LFC:[MD5.E948D1D42DC68923ABD75EEB5BCCD1D3] - 19/08/2013 - 20:57:02 RSHAD . (.Microsoft Corporation - Interface utilisateur de consentement pour.) -- C:\Windows\System32\consent.exe   [111448]
O44 - LFC:[MD5.9D2A2369AB4B08A4905FE72DB104498F] - 19/08/2013 - 20:57:01 ---A- . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\SysNative\appinfo.dll   [70144]
O44 - LFC:[MD5.9D2A2369AB4B08A4905FE72DB104498F] - 19/08/2013 - 20:57:01 RSHAD . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll   [70144]
O44 - LFC:[MD5.D29200AB0B37B7293C6942EAF755295E] - 19/08/2013 - 20:51:03 ---A- . (.Microsoft Corporation - Windows Media Video Decoder.) -- C:\Windows\SysNative\WMVDECOD.DLL   [1888768]
O44 - LFC:[MD5.D29200AB0B37B7293C6942EAF755295E] - 19/08/2013 - 20:51:03 ---A- . (.Microsoft Corporation - Windows Media Video Decoder.) -- C:\Windows\System32\WMVDECOD.DLL   [1888768]
O44 - LFC:[MD5.1153AC6E133AA849853DFD407B086B80] - 19/08/2013 - 20:49:34 ---A- . (...) -- C:\Windows\SysNative\locale.nls   [420064]
O44 - LFC:[MD5.1153AC6E133AA849853DFD407B086B80] - 19/08/2013 - 20:49:34 ---A- . (...) -- C:\Windows\System32\locale.nls   [420064]
O44 - LFC:[MD5.1F56F209585F350A5666E3CC7931FD67] - 19/08/2013 - 20:49:34 ---A- . (.Microsoft Corporation - DLL du client API BASE Windows NT.) -- C:\Windows\SysNative\KernelBase.dll   [424448]
O44 - LFC:[MD5.1F56F209585F350A5666E3CC7931FD67] - 19/08/2013 - 20:49:34 ---A- . (.Microsoft Corporation - DLL du client API BASE Windows NT.) -- C:\Windows\System32\KernelBase.dll   [424448]
O44 - LFC:[MD5.65C113214F7B05820F6D8A65B1485196] - 19/08/2013 - 20:49:33 ---A- . (.Microsoft Corporation - DLL du client API BASE Windows NT.) -- C:\Windows\SysNative\kernel32.dll   [1161216]
O44 - LFC:[MD5.65C113214F7B05820F6D8A65B1485196] - 19/08/2013 - 20:49:33 ---A- . (.Microsoft Corporation - DLL du client API BASE Windows NT.) -- C:\Windows\System32\kernel32.dll   [1161216]
O44 - LFC:[MD5.1BCDB508143B517F21BBDAC10F5777BF] - 19/08/2013 - 20:49:33 ---A- . (.Microsoft Corporation - Hôte de la fenêtre de la console.) -- C:\Windows\SysNative\conhost.exe   [338432]
O44 - LFC:[MD5.1BCDB508143B517F21BBDAC10F5777BF] - 19/08/2013 - 20:49:33 RSHAD . (.Microsoft Corporation - Hôte de la fenêtre de la console.) -- C:\Windows\System32\conhost.exe   [338432]
O44 - LFC:[MD5.3EE3AA76D8AB6D5644C4C8F34471CEB3] - 19/08/2013 - 20:49:27 ---A- . (.Microsoft Corporation - AMD64 Wow64 CPU.) -- C:\Windows\SysNative\wow64cpu.dll   [13312]
O44 - LFC:[MD5.5674E21E82CFBEA36DDAD5DB285D6DBC] - 19/08/2013 - 20:49:27 ---A- . (.Microsoft Corporation - Wow64 Console and Win32 API Logging.) -- C:\Windows\SysNative\wow64win.dll   [362496]
O44 - LFC:[MD5.BA69FBB4BFC88BA6AA8EB5A285393A72] - 19/08/2013 - 20:49:27 ---A- . (.Microsoft Corporation - Émulation 16 bits sur NT64.) -- C:\Windows\SysNative\ntvdm64.dll   [16384]
O44 - LFC:[MD5.BA69FBB4BFC88BA6AA8EB5A285393A72] - 19/08/2013 - 20:49:27 ---A- . (.Microsoft Corporation - Émulation 16 bits sur NT64.) -- C:\Windows\System32\ntvdm64.dll   [16384]
O44 - LFC:[MD5.85CA2D43A8AE1761E3DE0E9A657314B4] - 19/08/2013 - 20:49:27 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\SysNative\api-ms-win-core-string-l1-1-0.dll   [3072]
O44 - LFC:[MD5.E82825F3FB23C6489DFCC329FE6C5CE1] - 19/08/2013 - 20:49:27 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\SysNative\api-ms-win-core-threadpool-l1-1-0.dll   [4608]
O44 - LFC:[MD5.B9289D66E4022137A60D940EF00F884C] - 19/08/2013 - 20:49:27 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\SysNative\api-ms-win-core-util-l1-1-0.dll   [3072]
O44 - LFC:[MD5.FCBCF5BC3A92E2851434A628D3C00348] - 19/08/2013 - 20:49:27 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\SysNative\api-ms-win-core-xstate-l1-1-0.dll   [3072]
O44 - LFC:[MD5.85CA2D43A8AE1761E3DE0E9A657314B4] - 19/08/2013 - 20:49:27 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-core-string-l1-1-0.dll   [3072]
O44 - LFC:[MD5.E82825F3FB23C6489DFCC329FE6C5CE1] - 19/08/2013 - 20:49:27 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-core-threadpool-l1-1-0.dll   [4608]
O44 - LFC:[MD5.B9289D66E4022137A60D940EF00F884C] - 19/08/2013 - 20:49:27 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-core-util-l1-1-0.dll   [3072]
O44 - LFC:[MD5.FCBCF5BC3A92E2851434A628D3C00348] - 19/08/2013 - 20:49:27 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-core-xstate-l1-1-0.dll   [3072]
O44 - LFC:[MD5.3EE3AA76D8AB6D5644C4C8F34471CEB3] - 19/08/2013 - 20:49:27 RSHAD . (.Microsoft Corporation - AMD64 Wow64 CPU.) -- C:\Windows\System32\wow64cpu.dll   [13312]
O44 - LFC:[MD5.5674E21E82CFBEA36DDAD5DB285D6DBC] - 19/08/2013 - 20:49:27 RSHAD . (.Microsoft Corporation - Wow64 Console and Win32 API Logging.) -- C:\Windows\System32\wow64win.dll   [362496]
O44 - LFC:[MD5.5B5290C57E2EA6C14C9779F0A0BEBCDD] - 19/08/2013 - 20:49:26 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\SysNative\api-ms-win-core-namedpipe-l1-1-0.dll   [3584]
O44 - LFC:[MD5.02444B2D06BD920BBA9BB1C044AA742E] - 19/08/2013 - 20:49:26 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\SysNative\api-ms-win-core-processenvironment-l1-1-0.dll   [3584]
O44 - LFC:[MD5.663D508DAE5E0C12B9B9440C71E27BE2] - 19/08/2013 - 20:49:26 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\SysNative\api-ms-win-core-processthreads-l1-1-0.dll   [4608]
O44 - LFC:[MD5.33DFC092CC058E89D2D259159D938E7C] - 19/08/2013 - 20:49:26 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\SysNative\api-ms-win-core-profile-l1-1-0.dll   [3072]
O44 - LFC:[MD5.2DC9B836D0799BD9A6AA1FD9BE988C10] - 19/08/2013 - 20:49:26 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\SysNative\api-ms-win-core-rtlsupport-l1-1-0.dll   [3584]
O44 - LFC:[MD5.E3BE74E14F56EE93688B106E099B1515] - 19/08/2013 - 20:49:26 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\SysNative\api-ms-win-core-synch-l1-1-0.dll   [4096]
O44 - LFC:[MD5.D4F66FAE16F9C041ABC3E72A962E93C1] - 19/08/2013 - 20:49:26 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\SysNative\api-ms-win-core-sysinfo-l1-1-0.dll   [4096]
O44 - LFC:[MD5.5B5290C57E2EA6C14C9779F0A0BEBCDD] - 19/08/2013 - 20:49:26 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-core-namedpipe-l1-1-0.dll   [3584]
O44 - LFC:[MD5.02444B2D06BD920BBA9BB1C044AA742E] - 19/08/2013 - 20:49:26 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-core-processenvironment-l1-1-0.dll   [3584]
O44 - LFC:[MD5.663D508DAE5E0C12B9B9440C71E27BE2] - 19/08/2013 - 20:49:26 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-core-processthreads-l1-1-0.dll   [4608]
O44 - LFC:[MD5.33DFC092CC058E89D2D259159D938E7C] - 19/08/2013 - 20:49:26 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-core-profile-l1-1-0.dll   [3072]
O44 - LFC:[MD5.2DC9B836D0799BD9A6AA1FD9BE988C10] - 19/08/2013 - 20:49:26 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-core-rtlsupport-l1-1-0.dll   [3584]
O44 - LFC:[MD5.E3BE74E14F56EE93688B106E099B1515] - 19/08/2013 - 20:49:26 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-core-synch-l1-1-0.dll   [4096]
O44 - LFC:[MD5.D4F66FAE16F9C041ABC3E72A962E93C1] - 19/08/2013 - 20:49:26 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-core-sysinfo-l1-1-0.dll   [4096]
O44 - LFC:[MD5.EDFBC649FC6D1E05A839F61ED5395D65] - 19/08/2013 - 20:49:25 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\SysNative\api-ms-win-core-fibers-l1-1-0.dll   [3072]
O44 - LFC:[MD5.17F5FEA9A69F0517655BB3FEE7D41A3D] - 19/08/2013 - 20:49:25 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\SysNative\api-ms-win-core-file-l1-1-0.dll   [5120]
O44 - LFC:[MD5.BFB4C3C823AA44F87B5FCB95C60CE2B6] - 19/08/2013 - 20:49:25 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\SysNative\api-ms-win-core-handle-l1-1-0.dll   [3072]
O44 - LFC:[MD5.AA1A831C8D8F179A7C7AF0A157EFD4B2] - 19/08/2013 - 20:49:25 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\SysNative\api-ms-win-core-heap-l1-1-0.dll   [3584]
O44 - LFC:[MD5.078BB0471CF8DFBFC4C2B2ED81CE0AFE] - 19/08/2013 - 20:49:25 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\SysNative\api-ms-win-core-interlocked-l1-1-0.dll   [3072]
O44 - LFC:[MD5.E7A63E3B5BC8967291C3B91B5DA6FD5D] - 19/08/2013 - 20:49:25 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\SysNative\api-ms-win-core-io-l1-1-0.dll   [3072]
O44 - LFC:[MD5.719902F335E2165D08B3698D9EB5E355] - 19/08/2013 - 20:49:25 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\SysNative\api-ms-win-core-libraryloader-l1-1-0.dll   [3584]
O44 - LFC:[MD5.2EBEAB925FC6CE494E5E0F3378E4B1AC] - 19/08/2013 - 20:49:25 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\SysNative\api-ms-win-core-localregistry-l1-1-0.dll   [4096]
O44 - LFC:[MD5.F2BCDE94AE8588D3F464E5D1D375B786] - 19/08/2013 - 20:49:25 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\SysNative\api-ms-win-core-memory-l1-1-0.dll   [3584]
O44 - LFC:[MD5.293DCB3CC4662610166F26A5175B43C7] - 19/08/2013 - 20:49:25 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\SysNative\api-ms-win-core-misc-l1-1-0.dll   [3584]
O44 - LFC:[MD5.EDFBC649FC6D1E05A839F61ED5395D65] - 19/08/2013 - 20:49:25 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-core-fibers-l1-1-0.dll   [3072]
O44 - LFC:[MD5.17F5FEA9A69F0517655BB3FEE7D41A3D] - 19/08/2013 - 20:49:25 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-core-file-l1-1-0.dll   [5120]
O44 - LFC:[MD5.BFB4C3C823AA44F87B5FCB95C60CE2B6] - 19/08/2013 - 20:49:25 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-core-handle-l1-1-0.dll   [3072]
O44 - LFC:[MD5.AA1A831C8D8F179A7C7AF0A157EFD4B2] - 19/08/2013 - 20:49:25 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-core-heap-l1-1-0.dll   [3584]
O44 - LFC:[MD5.078BB0471CF8DFBFC4C2B2ED81CE0AFE] - 19/08/2013 - 20:49:25 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-core-interlocked-l1-1-0.dll   [3072]
O44 - LFC:[MD5.E7A63E3B5BC8967291C3B91B5DA6FD5D] - 19/08/2013 - 20:49:25 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-core-io-l1-1-0.dll   [3072]
O44 - LFC:[MD5.719902F335E2165D08B3698D9EB5E355] - 19/08/2013 - 20:49:25 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll   [3584]
O44 - LFC:[MD5.2EBEAB925FC6CE494E5E0F3378E4B1AC] - 19/08/2013 - 20:49:25 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-core-localregistry-l1-1-0.dll   [4096]
O44 - LFC:[MD5.F2BCDE94AE8588D3F464E5D1D375B786] - 19/08/2013 - 20:49:25 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-core-memory-l1-1-0.dll   [3584]
O44 - LFC:[MD5.293DCB3CC4662610166F26A5175B43C7] - 19/08/2013 - 20:49:25 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-core-misc-l1-1-0.dll   [3584]
O44 - LFC:[MD5.B990A3815075B0939D808D696479F6A6] - 19/08/2013 - 20:49:24 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\SysNative\api-ms-win-core-console-l1-1-0.dll   [3072]
O44 - LFC:[MD5.C19D34EB0FEC0CE0A0E066485F2ECA8A] - 19/08/2013 - 20:49:24 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\SysNative\api-ms-win-core-datetime-l1-1-0.dll   [3072]
O44 - LFC:[MD5.2B4E40E430C949A309F8FDE8A236791F] - 19/08/2013 - 20:49:24 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\SysNative\api-ms-win-core-debug-l1-1-0.dll   [3072]
O44 - LFC:[MD5.657B9AE87F35B1FCE160F7DF17253CC4] - 19/08/2013 - 20:49:24 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\SysNative\api-ms-win-core-delayload-l1-1-0.dll   [3072]
O44 - LFC:[MD5.22C1ACA768F01951070F022C6D027162] - 19/08/2013 - 20:49:24 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\SysNative\api-ms-win-core-errorhandling-l1-1-0.dll   [3072]
O44 - LFC:[MD5.3BB4066B59F83682B9573C1DC2CA7104] - 19/08/2013 - 20:49:24 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\SysNative\api-ms-win-core-localization-l1-1-0.dll   [4096]
O44 - LFC:[MD5.0196BAEED4879B4B09F7557C1F31CB28] - 19/08/2013 - 20:49:24 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\SysNative\api-ms-win-security-base-l1-1-0.dll   [6144]
O44 - LFC:[MD5.B990A3815075B0939D808D696479F6A6] - 19/08/2013 - 20:49:24 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-core-console-l1-1-0.dll   [3072]
O44 - LFC:[MD5.C19D34EB0FEC0CE0A0E066485F2ECA8A] - 19/08/2013 - 20:49:24 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-core-datetime-l1-1-0.dll   [3072]
O44 - LFC:[MD5.2B4E40E430C949A309F8FDE8A236791F] - 19/08/2013 - 20:49:24 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-core-debug-l1-1-0.dll   [3072]
O44 - LFC:[MD5.657B9AE87F35B1FCE160F7DF17253CC4] - 19/08/2013 - 20:49:24 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-core-delayload-l1-1-0.dll   [3072]
O44 - LFC:[MD5.22C1ACA768F01951070F022C6D027162] - 19/08/2013 - 20:49:24 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-core-errorhandling-l1-1-0.dll   [3072]
O44 - LFC:[MD5.3BB4066B59F83682B9573C1DC2CA7104] - 19/08/2013 - 20:49:24 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-core-localization-l1-1-0.dll   [4096]
O44 - LFC:[MD5.0196BAEED4879B4B09F7557C1F31CB28] - 19/08/2013 - 20:49:24 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-security-base-l1-1-0.dll   [6144]
O44 - LFC:[MD5.0C27239FEA4DB8A2AAC9E502186B7264] - 19/08/2013 - 20:48:02 ---A- . (.Microsoft Corporation - DLL serveur de Windows multi-utilisateurs.) -- C:\Windows\SysNative\winsrv.dll   [215040]
O44 - LFC:[MD5.0C27239FEA4DB8A2AAC9E502186B7264] - 19/08/2013 - 20:48:02 RSHAD . (.Microsoft Corporation - DLL serveur de Windows multi-utilisateurs.) -- C:\Windows\System32\winsrv.dll   [215040]
O44 - LFC:[MD5.997938D423CE830161CB6059434E3C9F] - 19/08/2013 - 20:47:15 ---A- . (.Microsoft - Système de classification OFLC-NZ.) -- C:\Windows\SysNative\oflc-nz.rs   [45568]
O44 - LFC:[MD5.997938D423CE830161CB6059434E3C9F] - 19/08/2013 - 20:47:15 ---A- . (.Microsoft - Système de classification OFLC-NZ.) -- C:\Windows\System32\oflc-nz.rs   [45568]
O44 - LFC:[MD5.EBB73E4E8CA01089CF74ECE506EB7607] - 19/08/2013 - 20:47:15 ---A- . (.Microsoft - Système de notation CSRR.) -- C:\Windows\SysNative\csrr.rs   [43520]
O44 - LFC:[MD5.EBB73E4E8CA01089CF74ECE506EB7607] - 19/08/2013 - 20:47:15 ---A- . (.Microsoft - Système de notation CSRR.) -- C:\Windows\System32\csrr.rs   [43520]
O44 - LFC:[MD5.C4B0793E4B97AA36A2A8C81A7AA1979A] - 19/08/2013 - 20:47:14 ---A- . (.Microsoft - Système de classement PEGI/BBFC.) -- C:\Windows\SysNative\pegibbfc.rs   [44544]
O44 - LFC:[MD5.C4B0793E4B97AA36A2A8C81A7AA1979A] - 19/08/2013 - 20:47:14 ---A- . (.Microsoft - Système de classement PEGI/BBFC.) -- C:\Windows\System32\pegibbfc.rs   [44544]
O44 - LFC:[MD5.5C48A43FC30FC61ECB1335DC646686BC] - 19/08/2013 - 20:47:14 ---A- . (.Microsoft - Système de classement USK.) -- C:\Windows\SysNative\usk.rs   [30720]
O44 - LFC:[MD5.5C48A43FC30FC61ECB1335DC646686BC] - 19/08/2013 - 20:47:14 ---A- . (.Microsoft - Système de classement USK.) -- C:\Windows\System32\usk.rs   [30720]
O44 - LFC:[MD5.A2E0F1E01A0983E9C94565BBEC862BF7] - 19/08/2013 - 20:47:14 ---A- . (.Microsoft - Système de classification COB-AU.) -- C:\Windows\SysNative\cob-au.rs   [40960]
O44 - LFC:[MD5.A2E0F1E01A0983E9C94565BBEC862BF7] - 19/08/2013 - 20:47:14 ---A- . (.Microsoft - Système de classification COB-AU.) -- C:\Windows\System32\cob-au.rs   [40960]
O44 - LFC:[MD5.54B11BB2AFBC3D5EBA9C96F0C1820B9B] - 19/08/2013 - 20:47:14 ---A- . (.Microsoft - Système de classification FPB.) -- C:\Windows\SysNative\fpb.rs   [46592]
O44 - LFC:[MD5.54B11BB2AFBC3D5EBA9C96F0C1820B9B] - 19/08/2013 - 20:47:14 ---A- . (.Microsoft - Système de classification FPB.) -- C:\Windows\System32\fpb.rs   [46592]
O44 - LFC:[MD5.4489D5D2CB4BA0799F3FB4625DE181CF] - 19/08/2013 - 20:47:13 ---A- . (.Microsoft - Système de classement GRB.) -- C:\Windows\SysNative\grb.rs   [21504]
O44 - LFC:[MD5.4489D5D2CB4BA0799F3FB4625DE181CF] - 19/08/2013 - 20:47:13 ---A- . (.Microsoft - Système de classement GRB.) -- C:\Windows\System32\grb.rs   [21504]
O44 - LFC:[MD5.6D540AF9B183FC97DC4CC54369561548] - 19/08/2013 - 20:47:13 ---A- . (.Microsoft - Système de classement PEGI au Portugal.) -- C:\Windows\SysNative\pegi-pt.rs   [20480]
O44 - LFC:[MD5.6D540AF9B183FC97DC4CC54369561548] - 19/08/2013 - 20:47:13 ---A- . (.Microsoft - Système de classement PEGI au Portugal.) -- C:\Windows\System32\pegi-pt.rs   [20480]
O44 - LFC:[MD5.661AE5EAC62C4598DD01795CEB915BAE] - 19/08/2013 - 20:47:13 ---A- . (.Microsoft - Système de classement PEGI.) -- C:\Windows\SysNative\pegi.rs   [20480]
O44 - LFC:[MD5.661AE5EAC62C4598DD01795CEB915BAE] - 19/08/2013 - 20:47:13 ---A- . (.Microsoft - Système de classement PEGI.) -- C:\Windows\System32\pegi.rs   [20480]
O44 - LFC:[MD5.65A8302C7551CFE45FAA2BC085C9E7E2] - 19/08/2013 - 20:47:13 ---A- . (.Microsoft - Système de classification DJCTQ.) -- C:\Windows\SysNative\djctq.rs   [15360]
O44 - LFC:[MD5.65A8302C7551CFE45FAA2BC085C9E7E2] - 19/08/2013 - 20:47:13 ---A- . (.Microsoft - Système de classification DJCTQ.) -- C:\Windows\System32\djctq.rs   [15360]
O44 - LFC:[MD5.027675ED9B34EE1B91505C3B8752649F] - 19/08/2013 - 20:47:13 ---A- . (.Microsoft Corporation - Bibliothèque des paramètres WPC.) -- C:\Windows\SysNative\Wpc.dll   [441856]
O44 - LFC:[MD5.027675ED9B34EE1B91505C3B8752649F] - 19/08/2013 - 20:47:13 ---A- . (.Microsoft Corporation - Bibliothèque des paramètres WPC.) -- C:\Windows\System32\Wpc.dll   [441856]
O44 - LFC:[MD5.2BCBA6052374959A30BD7948444DBB79] - 19/08/2013 - 20:47:12 ---A- . (.Microsoft Corporation - Explorateur des jeux.) -- C:\Windows\SysNative\gameux.dll   [2746368]
O44 - LFC:[MD5.2BCBA6052374959A30BD7948444DBB79] - 19/08/2013 - 20:47:12 ---A- . (.Microsoft Corporation - Explorateur des jeux.) -- C:\Windows\System32\gameux.dll   [2746368]
O44 - LFC:[MD5.D0C01412FBF59C1C25630C49F0C1B803] - 19/08/2013 - 20:47:07 ---A- . (.Microsoft - Système de classement CERO.) -- C:\Windows\SysNative\cero.rs   [55296]
O44 - LFC:[MD5.D0C01412FBF59C1C25630C49F0C1B803] - 19/08/2013 - 20:47:07 ---A- . (.Microsoft - Système de classement CERO.) -- C:\Windows\System32\cero.rs   [55296]
O44 - LFC:[MD5.51D25C805A01A2C4F930F9720CF51FFE] - 19/08/2013 - 20:47:07 ---A- . (.Microsoft - Système de classement ESRB.) -- C:\Windows\SysNative\esrb.rs   [51712]
O44 - LFC:[MD5.51D25C805A01A2C4F930F9720CF51FFE] - 19/08/2013 - 20:47:07 ---A- . (.Microsoft - Système de classement ESRB.) -- C:\Windows\System32\esrb.rs   [51712]
O44 - LFC:[MD5.4773EB5962548068547214A620E9ACC3] - 19/08/2013 - 20:47:07 ---A- . (.Microsoft - Système de classement OFLC.) -- C:\Windows\SysNative\oflc.rs   [23552]
O44 - LFC:[MD5.4773EB5962548068547214A620E9ACC3] - 19/08/2013 - 20:47:07 ---A- . (.Microsoft - Système de classement OFLC.) -- C:\Windows\System32\oflc.rs   [23552]
O44 - LFC:[MD5.9BB05674E013C35F4DAED51F5015355D] - 19/08/2013 - 20:47:07 ---A- . (.Microsoft - Système de classement PEGI en Finlande.) -- C:\Windows\SysNative\pegi-fi.rs   [20480]
O44 - LFC:[MD5.9BB05674E013C35F4DAED51F5015355D] - 19/08/2013 - 20:47:07 ---A- . (.Microsoft - Système de classement PEGI en Finlande.) -- C:\Windows\System32\pegi-fi.rs   [20480]
O44 - LFC:[MD5.DB74544B75566C974815E79A62433F29] - 19/08/2013 - 20:45:51 RSHAD . (.Microsoft Corporation - Pilote TCP/IP.) -- C:\Windows\System32\Drivers\tcpip.sys   [1910208]
O44 - LFC:[MD5.41C67E4205C606A103DEC8651D0B6FE6] - 19/08/2013 - 20:45:50 RSHAD . (.Microsoft Corporation - FWP/IPsec Kernel-Mode API.) -- C:\Windows\System32\Drivers\FWPKCLNT.SYS   [288088]
O44 - LFC:[MD5.7942B7AC3FF598F8A1736D51ADAF04E8] - 19/08/2013 - 20:45:50 RSHAD . (.Microsoft Corporation - Network I/O Subsystem.) -- C:\Windows\System32\Drivers\netio.sys   [376688]
O44 - LFC:[MD5.4C92EB7535CAA1681A77D928FBF9771F] - 19/08/2013 - 20:45:46 ---A- . (.Microsoft Corporation - Direct3D 11 Runtime.) -- C:\Windows\SysNative\d3d11.dll   [1887232]
O44 - LFC:[MD5.4C92EB7535CAA1681A77D928FBF9771F] - 19/08/2013 - 20:45:46 ---A- . (.Microsoft Corporation - Direct3D 11 Runtime.) -- C:\Windows\System32\d3d11.dll   [1887232]
O44 - LFC:[MD5.1FEB1694B13247A451B274E114AFAC45] - 19/08/2013 - 20:43:48 ---A- . (.Microsoft Corporation - Microsoft CDO for Windows Library.) -- C:\Windows\SysNative\cdosys.dll   [1133568]
O44 - LFC:[MD5.1FEB1694B13247A451B274E114AFAC45] - 19/08/2013 - 20:43:48 ---A- . (.Microsoft Corporation - Microsoft CDO for Windows Library.) -- C:\Windows\System32\cdosys.dll   [1133568]
O44 - LFC:[MD5.A236B1646E96AB06BE0F8D592B6D9A0D] - 19/08/2013 - 20:42:53 ---A- . (.Microsoft Corporation - OXPS to XPS Converter.) -- C:\Windows\SysNative\OxpsConverter.exe   [245760]
O44 - LFC:[MD5.A236B1646E96AB06BE0F8D592B6D9A0D] - 19/08/2013 - 20:42:53 RSHAD . (.Microsoft Corporation - OXPS to XPS Converter.) -- C:\Windows\System32\OxpsConverter.exe   [245760]
O44 - LFC:[MD5.4586B77B18FA9A8518AF76CA8FD247D9] - 19/08/2013 - 20:42:22 ---A- . (.Microsoft Corporation - CertUtil.exe.) -- C:\Windows\SysNative\certutil.exe   [1192448]
O44 - LFC:[MD5.4586B77B18FA9A8518AF76CA8FD247D9] - 19/08/2013 - 20:42:22 ---A- . (.Microsoft Corporation - CertUtil.exe.) -- C:\Windows\System32\certutil.exe   [1192448]
O44 - LFC:[MD5.189B0BAE1B0EDD51CEF1CD3F4CDEE02E] - 19/08/2013 - 20:42:19 ---A- . (.Microsoft Corporation - Active Directory Certificate Services Encod.) -- C:\Windows\SysNative\certenc.dll   [52224]
O44 - LFC:[MD5.189B0BAE1B0EDD51CEF1CD3F4CDEE02E] - 19/08/2013 - 20:42:19 ---A- . (.Microsoft Corporation - Active Directory Certificate Services Encod.) -- C:\Windows\System32\certenc.dll   [52224]
O44 - LFC:[MD5.D4FAC263861BAE06971C7F7D0A8EBF15] - 19/08/2013 - 20:41:25 ---A- . (.Microsoft Corporation - Indicateur d’état de la connectivité réseau.) -- C:\Windows\SysNative\ncsi.dll   [216576]
O44 - LFC:[MD5.D4FAC263861BAE06971C7F7D0A8EBF15] - 19/08/2013 - 20:41:25 ---A- . (.Microsoft Corporation - Indicateur d’état de la connectivité réseau.) -- C:\Windows\System32\ncsi.dll   [216576]
O44 - LFC:[MD5.59B3BE37BAFBD40715F45D580783738B] - 19/08/2013 - 20:41:24 ---A- . (.Microsoft Corporation - Classes d’assistance pour les diagnostics p.) -- C:\Windows\SysNative\netcorehc.dll   [246272]
O44 - LFC:[MD5.59B3BE37BAFBD40715F45D580783738B] - 19/08/2013 - 20:41:24 ---A- . (.Microsoft Corporation - Classes d’assistance pour les diagnostics p.) -- C:\Windows\System32\netcorehc.dll   [246272]
O44 - LFC:[MD5.8AD77806D336673F270DB31645267293] - 19/08/2013 - 20:41:24 ---A- . (.Microsoft Corporation - Connaissance des emplacements réseau 2.) -- C:\Windows\SysNative\nlasvc.dll   [303104]
O44 - LFC:[MD5.08C2957BB30058E663720C5606885653] - 19/08/2013 - 20:41:24 ---A- . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\SysNative\iphlpsvc.dll   [569344]
O44 - LFC:[MD5.8AD77806D336673F270DB31645267293] - 19/08/2013 - 20:41:24 RSHAD . (.Microsoft Corporation - Connaissance des emplacements réseau 2.) -- C:\Windows\System32\nlasvc.dll   [303104]
O44 - LFC:[MD5.08C2957BB30058E663720C5606885653] - 19/08/2013 - 20:41:24 RSHAD . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll   [569344]
O44 - LFC:[MD5.46BB91A169B9B31FF44EB04C48EC1D41] - 19/08/2013 - 20:41:23 ---A- . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\SysNative\nlaapi.dll   [70656]
O44 - LFC:[MD5.46BB91A169B9B31FF44EB04C48EC1D41] - 19/08/2013 - 20:41:23 ---A- . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\System32\nlaapi.dll   [70656]
O44 - LFC:[MD5.1B16D0BD9841794A6E0CDE0CEF744ABC] - 19/08/2013 - 20:41:23 RSHAD . (.Microsoft Corporation - TCP/IP Registry Compatibility Driver.) -- C:\Windows\System32\Drivers\tcpipreg.sys   [45568]
O44 - LFC:[MD5.DC4382E93770B3BF0774DB7FE46C8239] - 19/08/2013 - 20:41:22 ---A- . (.Microsoft Corporation - Manipulateur d’événements réseau.) -- C:\Windows\SysNative\netevent.dll   [18944]
O44 - LFC:[MD5.DC4382E93770B3BF0774DB7FE46C8239] - 19/08/2013 - 20:41:22 ---A- . (.Microsoft Corporation - Manipulateur d’événements réseau.) -- C:\Windows\System32\netevent.dll   [18944]
O44 - LFC:[MD5.037A719DAD50603202C978CD802623E4] - 19/08/2013 - 20:40:45 ---A- . (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\SysNative\ntshrui.dll   [509952]
O44 - LFC:[MD5.037A719DAD50603202C978CD802623E4] - 19/08/2013 - 20:40:45 ---A- . (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll   [509952]
O44 - LFC:[MD5.CEC1EDF4022DC4DCA40384DCEC672B0E] - 19/08/2013 - 20:40:20 ---A- . (.Microsoft Corporation - Processus d'exécution client-serveur.) -- C:\Windows\SysNative\csrsrv.dll   [43520]
O44 - LFC:[MD5.CEC1EDF4022DC4DCA40384DCEC672B0E] - 19/08/2013 - 20:40:20 RSHAD . (.Microsoft Corporation - Processus d'exécution client-serveur.) -- C:\Windows\System32\csrsrv.dll   [43520]
O44 - LFC:[MD5.F0371DE302FFFF8F086661611BE60848] - 19/08/2013 - 20:40:19 ---A- . (.Microsoft Corporation - Gestionnaire de sessions Windows.) -- C:\Windows\SysNative\smss.exe   [112640]
O44 - LFC:[MD5.F0371DE302FFFF8F086661611BE60848] - 19/08/2013 - 20:40:19 RSHAD . (.Microsoft Corporation - Gestionnaire de sessions Windows.) -- C:\Windows\System32\smss.exe   [112640]
O44 - LFC:[MD5.B7D42CB36C08FA017E73FF2433CD7287] - 19/08/2013 - 20:39:37 ---A- . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\SysNative\schannel.dll   [340992]
O44 - LFC:[MD5.B7D42CB36C08FA017E73FF2433CD7287] - 19/08/2013 - 20:39:37 ---A- . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\System32\schannel.dll   [340992]
O44 - LFC:[MD5.AAFCB52FE0037207FB6FBEA070D25EFE] - 19/08/2013 - 20:39:37 RSHAD . (.Microsoft Corporation - Kernel Cryptography, Next Generation.) -- C:\Windows\System32\Drivers\cng.sys   [458712]
O44 - LFC:[MD5.685527DA09EBFB681E98C515978BDEE2] - 19/08/2013 - 20:39:36 ---A- . (.Microsoft Corporation - DLL serveur LSA.) -- C:\Windows\SysNative\lsasrv.dll   [1448448]
O44 - LFC:[MD5.685527DA09EBFB681E98C515978BDEE2] - 19/08/2013 - 20:39:36 RSHAD . (.Microsoft Corporation - DLL serveur LSA.) -- C:\Windows\System32\lsasrv.dll   [1448448]
O44 - LFC:[MD5.7EFB9333E4ECCE6AE4AE9D777D9E553E] - 19/08/2013 - 20:39:36 RSHAD . (.Microsoft Corporation - Kernel Security Support Provider Interface.) -- C:\Windows\System32\Drivers\ksecpkg.sys   [154480]
O44 - LFC:[MD5.973131EB99BE1E19DAC502CB724E72A5] - 19/08/2013 - 20:39:20 ---A- . (.Microsoft Corporation - DirectShow DVD PlayBack Runtime..) -- C:\Windows\SysNative\qdvd.dll   [366592]
O44 - LFC:[MD5.973131EB99BE1E19DAC502CB724E72A5] - 19/08/2013 - 20:39:20 ---A- . (.Microsoft Corporation - DirectShow DVD PlayBack Runtime..) -- C:\Windows\System32\qdvd.dll   [366592]
O44 - LFC:[MD5.F28D6538F76DC6ECFABF6176DBDD2664] - 19/08/2013 - 20:39:11 ---A- . (.Microsoft Corporation - Exécuteur de file d’attente d’opérations pr.) -- C:\Windows\SysNative\poqexec.exe   [142336]
O44 - LFC:[MD5.F28D6538F76DC6ECFABF6176DBDD2664] - 19/08/2013 - 20:39:11 ---A- . (.Microsoft Corporation - Exécuteur de file d’attente d’opérations pr.) -- C:\Windows\System32\poqexec.exe   [142336]
O44 - LFC:[MD5.C118A82CD78818C29AB228366EBF81C3] - 19/08/2013 - 20:38:46 ---A- . (.Microsoft Corporation - Local Security Authority Process.) -- C:\Windows\SysNative\lsass.exe   [31232]
O44 - LFC:[MD5.97A7070AEA4C058B6418519E869A63B4] - 19/08/2013 - 20:38:46 RSHAD . (.Microsoft Corporation - Kernel Security Support Provider Interface.) -- C:\Windows\System32\Drivers\ksecdd.sys   [95600]
O44 - LFC:[MD5.C118A82CD78818C29AB228366EBF81C3] - 19/08/2013 - 20:38:46 RSHAD . (.Microsoft Corporation - Local Security Authority Process.) -- C:\Windows\System32\lsass.exe   [31232]
O44 - LFC:[MD5.3A0CE5FE781708CD6ABD55313607EC8B] - 19/08/2013 - 20:38:45 ---A- . (.Microsoft Corporation - LSA SSPI RPC interface DLL.) -- C:\Windows\SysNative\sspisrv.dll   [29184]
O44 - LFC:[MD5.0144D8D75A0B12938AEEE859E3310A46] - 19/08/2013 - 20:38:45 ---A- . (.Microsoft Corporation - Security Support Provider Interface.) -- C:\Windows\SysNative\secur32.dll   [28160]
O44 - LFC:[MD5.B66BC8B20B7F33975865B1DF99783FD8] - 19/08/2013 - 20:38:45 ---A- . (.Microsoft Corporation - Security Support Provider Interface.) -- C:\Windows\SysNative\sspicli.dll   [136192]
O44 - LFC:[MD5.0144D8D75A0B12938AEEE859E3310A46] - 19/08/2013 - 20:38:45 ---A- . (.Microsoft Corporation - Security Support Provider Interface.) -- C:\Windows\System32\secur32.dll   [28160]
O44 - LFC:[MD5.B66BC8B20B7F33975865B1DF99783FD8] - 19/08/2013 - 20:38:45 ---A- . (.Microsoft Corporation - Security Support Provider Interface.) -- C:\Windows\System32\sspicli.dll   [136192]
O44 - LFC:[MD5.3A0CE5FE781708CD6ABD55313607EC8B] - 19/08/2013 - 20:38:45 RSHAD . (.Microsoft Corporation - LSA SSPI RPC interface DLL.) -- C:\Windows\System32\sspisrv.dll   [29184]
O44 - LFC:[MD5.287998A9BA0140ABB59792CDEB2F8483] - 19/08/2013 - 20:36:55 ---A- . (.Microsoft Corporation - Crypto API32.) -- C:\Windows\SysNative\crypt32.dll   [1472512]
O44 - LFC:[MD5.287998A9BA0140ABB59792CDEB2F8483] - 19/08/2013 - 20:36:55 ---A- . (.Microsoft Corporation - Crypto API32.) -- C:\Windows\System32\crypt32.dll   [1472512]
O44 - LFC:[MD5.959041D7014C97133D859B45BCA0FC58] - 19/08/2013 - 20:36:54 ---A- . (.Microsoft Corporation - Microsoft Trust Verification APIs.) -- C:\Windows\SysNative\wintrust.dll   [224256]
O44 - LFC:[MD5.959041D7014C97133D859B45BCA0FC58] - 19/08/2013 - 20:36:54 ---A- . (.Microsoft Corporation - Microsoft Trust Verification APIs.) -- C:\Windows\System32\wintrust.dll   [224256]
O44 - LFC:[MD5.6B400F211BEE880A37A1ED0368776BF4] - 19/08/2013 - 20:36:54 ---A- . (.Microsoft Corporation - Services de chiffrement.) -- C:\Windows\SysNative\cryptsvc.dll   [184320]
O44 - LFC:[MD5.6B400F211BEE880A37A1ED0368776BF4] - 19/08/2013 - 20:36:54 ---A- . (.Microsoft Corporation - Services de chiffrement.) -- C:\Windows\System32\cryptsvc.dll   [184320]
O44 - LFC:[MD5.A6B726DCA228F7878E38368A1BDC68BE] - 19/08/2013 - 20:36:53 ---A- . (.Microsoft Corporation - Crypto Network Related API.) -- C:\Windows\SysNative\cryptnet.dll   [139776]
O44 - LFC:[MD5.A6B726DCA228F7878E38368A1BDC68BE] - 19/08/2013 - 20:36:53 ---A- . (.Microsoft Corporation - Crypto Network Related API.) -- C:\Windows\System32\cryptnet.dll   [139776]
O44 - LFC:[MD5.5EB6E9C8BE1ACC5830780E0F9A846255] - 19/08/2013 - 20:36:11 ---A- . (.Microsoft Corporation - Windows Installer.) -- C:\Windows\SysNative\msi.dll   [3216384]
O44 - LFC:[MD5.5EB6E9C8BE1ACC5830780E0F9A846255] - 19/08/2013 - 20:36:11 ---A- . (.Microsoft Corporation - Windows Installer.) -- C:\Windows\System32\msi.dll   [3216384]
O44 - LFC:[MD5.26036E228D2467DE6975AD819C22C043] - 19/08/2013 - 20:36:01 ---A- . (.Microsoft Corporation - Runtime d’appel de procédure distante.) -- C:\Windows\SysNative\rpcrt4.dll   [1217024]
O44 - LFC:[MD5.26036E228D2467DE6975AD819C22C043] - 19/08/2013 - 20:36:01 ---A- . (.Microsoft Corporation - Runtime d’appel de procédure distante.) -- C:\Windows\System32\rpcrt4.dll   [1217024]
O44 - LFC:[MD5.B98F8C6E31CD07B2E6F71F7F648E38C0] - 19/08/2013 - 20:35:32 RSHAD . (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\Windows\System32\Drivers\ntfs.sys   [1656680]
O44 - LFC:[MD5.85DAA09A98C9286D4EA2BA8D0E644377] - 19/08/2013 - 20:35:19 ---A- . (.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\SysNative\spoolsv.exe   [559104]
O44 - LFC:[MD5.85DAA09A98C9286D4EA2BA8D0E644377] - 19/08/2013 - 20:35:19 RSHAD . (.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\System32\spoolsv.exe   [559104]
O44 - LFC:[MD5.127AA81343A7C6F665C22CB1293B0A90] - 19/08/2013 - 20:35:18 ---A- . (.Microsoft Corporation - Print driver host for 32bit applications.) -- C:\Windows\splwow64.exe   [67072]
O44 - LFC:[MD5.44A8B9185030EA57F7999383643ADFFB] - 19/08/2013 - 20:35:02 ---A- . (.Microsoft Corporation - Module d’exécution DirectShow..) -- C:\Windows\SysNative\quartz.dll   [1572864]
O44 - LFC:[MD5.44A8B9185030EA57F7999383643ADFFB] - 19/08/2013 - 20:35:02 ---A- . (.Microsoft Corporation - Module d’exécution DirectShow..) -- C:\Windows\System32\quartz.dll   [1572864]
O44 - LFC:[MD5.D5164131D596A070FF9C82BC4A488F1F] - 19/08/2013 - 20:34:54 ---A- . (.Microsoft Corporation - Bibliothèque principale de Restauration du.) -- C:\Windows\SysNative\srcore.dll   [503808]
O44 - LFC:[MD5.D5164131D596A070FF9C82BC4A488F1F] - 19/08/2013 - 20:34:54 RSHAD . (.Microsoft Corporation - Bibliothèque principale de Restauration du.) -- C:\Windows\System32\srcore.dll   [503808]
O44 - LFC:[MD5.760E38053BF56E501D562B70AD796B88] - 19/08/2013 - 20:34:04 RSHAD . (.Microsoft Corporation - Pilote NDIS 6.20.) -- C:\Windows\System32\Drivers\ndis.sys   [950128]
O44 - LFC:[MD5.0E01641D96889BDEB22DE12D30575B08] - 19/08/2013 - 20:34:03 RSHAD . (.Microsoft Corporation - Remote NDIS Miniport.) -- C:\Windows\System32\Drivers\RNDISMP.sys   [41472]
O44 - LFC:[MD5.92B3172E8C14C1444682F510843A9988] - 19/08/2013 - 20:33:45 RSHAD . (.Microsoft Corporation - Remote NDIS USB Driver.) -- C:\Windows\System32\Drivers\usb8023.sys   [19968]
O44 - LFC:[MD5.99B91C5D2FCEF218CAD3600ECB62A799] - 19/08/2013 - 20:33:38 ---A- . (.Microsoft Corporation - MSXML 6.0 SP3.) -- C:\Windows\SysNative\msxml6.dll   [2002432]
O44 - LFC:[MD5.99B91C5D2FCEF218CAD3600ECB62A799] - 19/08/2013 - 20:33:38 ---A- . (.Microsoft Corporation - MSXML 6.0 SP3.) -- C:\Windows\System32\msxml6.dll   [2002432]
O44 - LFC:[MD5.371948BC5911ABA06168FAC91ED25F06] - 19/08/2013 - 20:33:37 ---A- . (.Microsoft Corporation - MSXML 3.0 SP11.) -- C:\Windows\SysNative\msxml3.dll   [1882624]
O44 - LFC:[MD5.371948BC5911ABA06168FAC91ED25F06] - 19/08/2013 - 20:33:37 ---A- . (.Microsoft Corporation - MSXML 3.0 SP11.) -- C:\Windows\System32\msxml3.dll   [1882624]
O44 - LFC:[MD5.D0EC440FA8D306E4CEFC8CC4DEFD2AC4] - 19/08/2013 - 20:33:35 ---A- . (.Microsoft Corporation - XML Resources.) -- C:\Windows\SysNative\msxml3r.dll   [2048]
O44 - LFC:[MD5.D0EC440FA8D306E4CEFC8CC4DEFD2AC4] - 19/08/2013 - 20:33:35 ---A- . (.Microsoft Corporation - XML Resources.) -- C:\Windows\System32\msxml3r.dll   [2048]
O44 - LFC:[MD5.3CC16A849E6092E43909F48EF0E60306] - 19/08/2013 - 20:33:20 ---A- . (.Microsoft Corporation - Client DHCPv6.) -- C:\Windows\SysNative\dhcpcore6.dll   [226816]
O44 - LFC:[MD5.3CC16A849E6092E43909F48EF0E60306] - 19/08/2013 - 20:33:20 ---A- . (.Microsoft Corporation - Client DHCPv6.) -- C:\Windows\System32\dhcpcore6.dll   [226816]
O44 - LFC:[MD5.3C06D5A929B798D0B13F6481242A0FD2] - 19/08/2013 - 20:33:19 ---A- . (.Microsoft Corporation - Client DHCPv6.) -- C:\Windows\SysNative\dhcpcsvc6.dll   [55296]
O44 - LFC:[MD5.3C06D5A929B798D0B13F6481242A0FD2] - 19/08/2013 - 20:33:19 ---A- . (.Microsoft Corporation - Client DHCPv6.) -- C:\Windows\System32\dhcpcsvc6.dll   [55296]
O44 - LFC:[MD5.B3CA3253009D26666F5BCB16E77D2618] - 19/08/2013 - 20:32:50 ---A- . (.Microsoft Corporation - Fichier DLL de ressources des fuseaux horai.) -- C:\Windows\SysNative\tzres.dll   [2048]
O44 - LFC:[MD5.B3CA3253009D26666F5BCB16E77D2618] - 19/08/2013 - 20:32:50 ---A- . (.Microsoft Corporation - Fichier DLL de ressources des fuseaux horai.) -- C:\Windows\System32\tzres.dll   [2048]
O44 - LFC:[MD5.5B236296E233CAA6BF86BE0C6501A224] - 19/08/2013 - 20:32:23 ---A- . (.Microsoft Corporation - DLL RDPCore Terminal Server (KM).) -- C:\Windows\SysNative\rdpcorekmts.dll   [149504]
O44 - LFC:[MD5.6D5DCC1579B3961D791ABDE286A1CB5E] - 19/08/2013 - 20:32:23 ---A- . (.Microsoft Corporation - RDP Extension DLL.) -- C:\Windows\SysNative\rdpwsx.dll   [77312]
O44 - LFC:[MD5.9E5D9177660A76FC8DECDC37A91A5B0D] - 19/08/2013 - 20:32:23 ---A- . (.Microsoft Corporation - RDP Listeners Correction Tool.) -- C:\Windows\SysNative\rdrmemptylst.exe   [9216]
O44 - LFC:[MD5.5B236296E233CAA6BF86BE0C6501A224] - 19/08/2013 - 20:32:23 RSHAD . (.Microsoft Corporation - DLL RDPCore Terminal Server (KM).) -- C:\Windows\System32\rdpcorekmts.dll   [149504]
O44 - LFC:[MD5.6D5DCC1579B3961D791ABDE286A1CB5E] - 19/08/2013 - 20:32:23 RSHAD . (.Microsoft Corporation - RDP Extension DLL.) -- C:\Windows\System32\rdpwsx.dll   [77312]
O44 - LFC:[MD5.9E5D9177660A76FC8DECDC37A91A5B0D] - 19/08/2013 - 20:32:23 RSHAD . (.Microsoft Corporation - RDP Listeners Correction Tool.) -- C:\Windows\System32\rdrmemptylst.exe   [9216]
O44 - LFC:[MD5.73601028E7C44154318AE91D2EB2EDB3] - 19/08/2013 - 20:32:19 ---A- . (.Microsoft Corporation - Pilote Win32 multi-utilisateurs.) -- C:\Windows\SysNative\win32k.sys   [3153920]
O44 - LFC:[MD5.73601028E7C44154318AE91D2EB2EDB3] - 19/08/2013 - 20:32:19 RSHAD . (.Microsoft Corporation - Pilote Win32 multi-utilisateurs.) -- C:\Windows\System32\win32k.sys   [3153920]
O44 - LFC:[MD5.C06FAAF13E37CE482F612AFF2D2331F3] - 19/08/2013 - 20:31:59 ---A- . (.Microsoft Corporation - Dialogues communs de certificats Microsoft.) -- C:\Windows\SysNative\cryptdlg.dll   [30720]
O44 - LFC:[MD5.C06FAAF13E37CE482F612AFF2D2331F3] - 19/08/2013 - 20:31:59 ---A- . (.Microsoft Corporation - Dialogues communs de certificats Microsoft.) -- C:\Windows\System32\cryptdlg.dll   [30720]
O44 - LFC:[MD5.CF636C92B762B26F0B39B38E92380A09] - 19/08/2013 - 20:31:19 ---A- . (.Microsoft Corporation - Active Accessibility Core Component.) -- C:\Windows\SysNative\oleacc.dll   [331776]
O44 - LFC:[MD5.CF636C92B762B26F0B39B38E92380A09] - 19/08/2013 - 20:31:19 ---A- . (.Microsoft Corporation - Active Accessibility Core Component.) -- C:\Windows\System32\oleacc.dll   [331776]
O44 - LFC:[MD5.C06B32165E23A72A898B7A89679AD754] - 19/08/2013 - 20:31:18 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\SysNative\oleaut32.dll   [861696]
O44 - LFC:[MD5.C06B32165E23A72A898B7A89679AD754] - 19/08/2013 - 20:31:18 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\System32\oleaut32.dll   [861696]
O44 - LFC:[MD5.374CE9DAB2F0CB173B8FCF3AB8DB5D1B] - 19/08/2013 - 20:31:11 ---A- . (.Microsoft Corporation - Microsoft DirectPlay.) -- C:\Windows\SysNative\dpnet.dll   [478208]
O44 - LFC:[MD5.374CE9DAB2F0CB173B8FCF3AB8DB5D1B] - 19/08/2013 - 20:31:11 ---A- . (.Microsoft Corporation - Microsoft DirectPlay.) -- C:\Windows\System32\dpnet.dll   [478208]
O44 - LFC:[MD5.E61608AA35E98999AF9AAEEEA6114B0A] - 19/08/2013 - 20:31:05 RSHAD . (.Microsoft Corporation - Pilote de pile RDP Terminal.) -- C:\Windows\System32\Drivers\rdpwd.sys   [210944]
O44 - LFC:[MD5.5BC7D26EDCC84F1C2B1DC3DB76459B07] - 19/08/2013 - 20:31:02 ---A- . (.Microsoft Corporation - AMD Microcode Update Library.) -- C:\Windows\SysNative\mcupdate_AuthenticAMD.dll   [78680]
O44 - LFC:[MD5.5BC7D26EDCC84F1C2B1DC3DB76459B07] - 19/08/2013 - 20:31:02 RSHAD . (.Microsoft Corporation - AMD Microcode Update Library.) -- C:\Windows\System32\mcupdate_AuthenticAMD.dll   [78680]
O44 - LFC:[MD5.1392A9F9E56A876C616D8A33FE272C78] - 19/08/2013 - 20:31:00 ---A- . (.Microsoft Corporation -  Filtre XDS Codec & filtres de balises d’en.) -- C:\Windows\SysNative\EncDec.dll   [723456]
O44 - LFC:[MD5.1392A9F9E56A876C616D8A33FE272C78] - 19/08/2013 - 20:31:00 ---A- . (.Microsoft Corporation -  Filtre XDS Codec & filtres de balises d’en.) -- C:\Windows\System32\EncDec.dll   [723456]
O44 - LFC:[MD5.603EBD34E216C5654A2D774EAC98D278] - 19/08/2013 - 20:30:51 ---A- . (.Microsoft Corporation - API des protocoles de transfert Web.) -- C:\Windows\SysNative\webio.dll   [395776]
O44 - LFC:[MD5.603EBD34E216C5654A2D774EAC98D278] - 19/08/2013 - 20:30:51 ---A- . (.Microsoft Corporation - API des protocoles de transfert Web.) -- C:\Windows\System32\webio.dll   [395776]
O44 - LFC:[MD5.A3EC566925BEC505E2418C1AC14E541E] - 19/08/2013 - 20:30:43 ---A- . (.Microsoft Corporation - Édition DirectShow..) -- C:\Windows\SysNative\qedit.dll   [624128]
O44 - LFC:[MD5.A3EC566925BEC505E2418C1AC14E541E] - 19/08/2013 - 20:30:43 ---A- . (.Microsoft Corporation - Édition DirectShow..) -- C:\Windows\System32\qedit.dll   [624128]
O44 - LFC:[MD5.44E1A196DFCB53B01FE4B855C3B56A15] - 19/08/2013 - 20:30:40 ---A- . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\SysNative\kerberos.dll   [715776]
O44 - LFC:[MD5.44E1A196DFCB53B01FE4B855C3B56A15] - 19/08/2013 - 20:30:40 ---A- . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll   [715776]
O44 - LFC:[MD5.5F3307352216618221A17CFEF273EEE2] - 19/08/2013 - 20:30:36 ---A- . (.Microsoft Corporation - Bibliothèque de chiffrement Windows.) -- C:\Windows\SysNative\ncrypt.dll   [307200]
O44 - LFC:[MD5.5F3307352216618221A17CFEF273EEE2] - 19/08/2013 - 20:30:36 ---A- . (.Microsoft Corporation - Bibliothèque de chiffrement Windows.) -- C:\Windows\System32\ncrypt.dll   [307200]
O44 - LFC:[MD5.050AF06F8B0463417E4AED9DA5816A65] - 19/08/2013 - 20:30:31 ---A- . (.Microsoft Corporation - Microsoft SI/PSI parser for MPEG2 based net.) -- C:\Windows\SysNative\psisdecd.dll   [613888]
O44 - LFC:[MD5.050AF06F8B0463417E4AED9DA5816A65] - 19/08/2013 - 20:30:31 ---A- . (.Microsoft Corporation - Microsoft SI/PSI parser for MPEG2 based net.) -- C:\Windows\System32\psisdecd.dll   [613888]
O44 - LFC:[MD5.78394F2B354BDC28C5C61837872DD132] - 19/08/2013 - 20:30:30 ---A- . (.Microsoft Corporation - Microsoft Transport Information Filter for.) -- C:\Windows\SysNative\psisrndr.ax   [108032]
O44 - LFC:[MD5.78394F2B354BDC28C5C61837872DD132] - 19/08/2013 - 20:30:30 ---A- . (.Microsoft Corporation - Microsoft Transport Information Filter for.) -- C:\Windows\System32\psisrndr.ax   [108032]
O44 - LFC:[MD5.DBF99FD9CAF75CA66D042BD8D050FF71] - 19/08/2013 - 20:30:24 ---A- . (.Microsoft Corporation - Uniscribe Unicode script processor.) -- C:\Windows\SysNative\usp10.dll   [800768]
O44 - LFC:[MD5.DBF99FD9CAF75CA66D042BD8D050FF71] - 19/08/2013 - 20:30:24 ---A- . (.Microsoft Corporation - Uniscribe Unicode script processor.) -- C:\Windows\System32\usp10.dll   [800768]
O44 - LFC:[MD5.FE90B750AB808FB9DD8FBB428B5FF83B] - 19/08/2013 - 20:30:21 ---A- . (.Microsoft Corporation - Service de configuration automatique WWAN.) -- C:\Windows\SysNative\wwansvc.dll   [230400]
O44 - LFC:[MD5.30B1489F2DCD8DC1AB6BB60CA6093615] - 19/08/2013 - 20:30:21 ---A- . (.Microsoft Corporation - WWAN Device Interface Module.) -- C:\Windows\SysNative\wwanprotdim.dll   [48640]
O44 - LFC:[MD5.FE90B750AB808FB9DD8FBB428B5FF83B] - 19/08/2013 - 20:30:21 RSHAD . (.Microsoft Corporation - Service de configuration automatique WWAN.) -- C:\Windows\System32\wwansvc.dll   [230400]
O44 - LFC:[MD5.30B1489F2DCD8DC1AB6BB60CA6093615] - 19/08/2013 - 20:30:21 RSHAD . (.Microsoft Corporation - WWAN Device Interface Module.) -- C:\Windows\System32\wwanprotdim.dll   [48640]
O44 - LFC:[MD5.FB10715E4099AF9FA389C71873245226] - 19/08/2013 - 20:30:12 ---A- . (.Microsoft Corporation - Panneau de configuration Date/Heure.) -- C:\Windows\SysNative\timedate.cpl   [515584]
O44 - LFC:[MD5.FB10715E4099AF9FA389C71873245226] - 19/08/2013 - 20:30:12 ---A- . (.Microsoft Corporation - Panneau de configuration Date/Heure.) -- C:\Windows\System32\timedate.cpl   [515584]
O44 - LFC:[MD5.943F527DF79E6B400104341AA7023C75] - 19/08/2013 - 20:30:08 ---A- . (.Microsoft Corporation - Canonical Display Driver.) -- C:\Windows\SysNative\cdd.dll   [144384]
O44 - LFC:[MD5.943F527DF79E6B400104341AA7023C75] - 19/08/2013 - 20:30:08 RSHAD . (.Microsoft Corporation - Canonical Display Driver.) -- C:\Windows\System32\cdd.dll   [144384]
O44 - LFC:[MD5.AF2E16242AA723F68F461B6EAE2EAD3D] - 19/08/2013 - 20:30:08 RSHAD . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys   [983400]
O44 - LFC:[MD5.1F04CFB79DD5FB7694468CE3FB3DCC31] - 19/08/2013 - 20:30:08 RSHAD . (.Microsoft Corporation - DirectX Graphics MMS.) -- C:\Windows\System32\Drivers\dxgmms1.sys   [265064]
O44 - LFC:[MD5.1C7857B62DE5994A75B054A9FD4C3825] - 19/08/2013 - 20:30:05 RSHAD . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\Windows\System32\Drivers\afd.sys   [498688]
O44 - LFC:[MD5.45CFBFA8EDC3DF4E2B7FB0D0260FE051] - 19/08/2013 - 20:30:02 ---A- . (.Microsoft Corporation - DLL de spouleur local.) -- C:\Windows\SysNative\localspl.dll   [956928]
O44 - LFC:[MD5.45CFBFA8EDC3DF4E2B7FB0D0260FE051] - 19/08/2013 - 20:30:02 RSHAD . (.Microsoft Corporation - DLL de spouleur local.) -- C:\Windows\System32\localspl.dll   [956928]
O44 - LFC:[MD5.C391FC68282A000CDF953F8B6B55D2EF] - 19/08/2013 - 20:29:48 ---A- . (.Microsoft Corporation - Windows NT CRT DLL.) -- C:\Windows\SysNative\msvcrt.dll   [634880]
O44 - LFC:[MD5.C391FC68282A000CDF953F8B6B55D2EF] - 19/08/2013 - 20:29:48 ---A- . (.Microsoft Corporation - Windows NT CRT DLL.) -- C:\Windows\System32\msvcrt.dll   [634880]
O44 - LFC:[MD5.67CF11E00D026A5C0C88EA5F84D501E5] - 19/08/2013 - 20:29:45 ---A- . (.Microsoft Corporation - Fournisseur d’impression de rendu côté clie.) -- C:\Windows\SysNative\win32spl.dll   [751104]
O44 - LFC:[MD5.67CF11E00D026A5C0C88EA5F84D501E5] - 19/08/2013 - 20:29:45 ---A- . (.Microsoft Corporation - Fournisseur d’impression de rendu côté clie.) -- C:\Windows\System32\win32spl.dll   [751104]
O44 - LFC:[MD5.8699D17DFCFCD327784034DB6BD3A422] - 19/08/2013 - 20:29:42 ---A- . (.Microsoft Corporation - Windows Briefcase Engine.) -- C:\Windows\SysNative\synceng.dll   [95744]
O44 - LFC:[MD5.8699D17DFCFCD327784034DB6BD3A422] - 19/08/2013 - 20:29:42 ---A- . (.Microsoft Corporation - Windows Briefcase Engine.) -- C:\Windows\System32\synceng.dll   [95744]
O44 - LFC:[MD5.639774C9ACD063F028F6084ABF5593AD] - 19/08/2013 - 20:29:36 ---A- . (.Microsoft Corporation - Processus hôte pour Tâches Windows.) -- C:\Windows\SysNative\taskhost.exe   [68608]
O44 - LFC:[MD5.639774C9ACD063F028F6084ABF5593AD] - 19/08/2013 - 20:29:36 RSHAD . (.Microsoft Corporation - Processus hôte pour Tâches Windows.) -- C:\Windows\System32\taskhost.exe   [68608]
O44 - LFC:[MD5.012787CEB35505EB78DF82E0A0072888] - 19/08/2013 - 20:29:33 ---A- . (.Microsoft Corporation - Browser Service Client DLL.) -- C:\Windows\SysNative\browcli.dll   [59392]
O44 - LFC:[MD5.012787CEB35505EB78DF82E0A0072888] - 19/08/2013 - 20:29:33 ---A- . (.Microsoft Corporation - Browser Service Client DLL.) -- C:\Windows\System32\browcli.dll   [59392]
O44 - LFC:[MD5.05F5A0D14A2EE1D8255C2AA0E9E8E694] - 19/08/2013 - 20:29:33 ---A- . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\SysNative\browser.dll   [136704]
O44 - LFC:[MD5.EEEA40F0EDB0A6E5359E539E15D0BC77] - 19/08/2013 - 20:29:33 ---A- . (.Microsoft Corporation - Net Win32 API DLL.) -- C:\Windows\SysNative\netapi32.dll   [73216]
O44 - LFC:[MD5.EEEA40F0EDB0A6E5359E539E15D0BC77] - 19/08/2013 - 20:29:33 ---A- . (.Microsoft Corporation - Net Win32 API DLL.) -- C:\Windows\System32\netapi32.dll   [73216]
O44 - LFC:[MD5.05F5A0D14A2EE1D8255C2AA0E9E8E694] - 19/08/2013 - 20:29:33 RSHAD . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll   [136704]
O44 - LFC:[MD5.4CE278FC9671BA81A138D70823FCAA09] - 19/08/2013 - 20:29:28 RSHAD . (.Microsoft Corporation - TS Security Filter Driver.) -- C:\Windows\System32\Drivers\tssecsrv.sys   [39936]
O44 - LFC:[MD5.E9766131EEADE40A27DC27D2D68FBA9C] - 19/08/2013 - 20:29:26 RSHAD . (.Microsoft Corporation - Partition Management Driver.) -- C:\Windows\System32\Drivers\partmgr.sys   [75120]
O44 - LFC:[MD5.53E83F1F6CF9D62F32801CF66D8352A8] - 19/08/2013 - 20:29:23 ---A- . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\SysNative\profsvc.dll   [209920]
O44 - LFC:[MD5.53E83F1F6CF9D62F32801CF66D8352A8] - 19/08/2013 - 20:29:23 RSHAD . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll   [209920]
O44 - LFC:[MD5.8F6322049018354F45F05A2FD2D4E5E0] - 19/08/2013 - 20:29:20 RSHAD . (.Microsoft Corporation - BitLocker Drive Encryption Driver.) -- C:\Windows\System32\Drivers\fvevol.sys   [223752]
O44 - LFC:[MD5.BACE7F36D65968FD07757B239B01F4E2] - 19/08/2013 - 19:34:17 ---A- . (.Microsoft Corporation - Gestionnaire de liaisons d’objets2.) -- C:\Windows\SysNative\packager.dll   [77312]
O44 - LFC:[MD5.BACE7F36D65968FD07757B239B01F4E2] - 19/08/2013 - 19:34:17 ---A- . (.Microsoft Corporation - Gestionnaire de liaisons d’objets2.) -- C:\Windows\System32\packager.dll   [77312]
O44 - LFC:[MD5.A5F29AC2F0ADE8B995B49D7350CE3AC0] - 19/08/2013 - 19:32:15 RSHAD . (...) -- C:\Windows\System32\Drivers\aswSP.sys.sum   [175]
O44 - LFC:[MD5.2E83D2621E87C493AB45DC6655BA77D4] - 19/08/2013 - 19:32:15 RSHAD . (...) -- C:\Windows\System32\Drivers\aswSnx.sys.sum   [175]
O44 - LFC:[MD5.22F521108881DC59837F6FC614E0568F] - 19/08/2013 - 19:32:15 RSHAD . (...) -- C:\Windows\System32\Drivers\aswVmm.sys   [189936]
O44 - LFC:[MD5.E86C64478D9A90D62255FE9EB0150C6E] - 19/08/2013 - 19:32:15 RSHAD . (...) -- C:\Windows\System32\Drivers\aswVmm.sys.sum   [175]
O44 - LFC:[MD5.8C0800CDB501CFC1164B286A0478DC10] - 19/08/2013 - 19:32:15 RSHAD . (.AVAST Software - avast! Virtualization Driver.) -- C:\Windows\System32\Drivers\aswSnx.sys   [1030952]
O44 - LFC:[MD5.3815DB16CDA62190F5C0A65118F3D714] - 19/08/2013 - 19:32:15 RSHAD . (.AVAST Software - avast! self protection module.) -- C:\Windows\System32\Drivers\aswSP.sys   [378944]
O44 - LFC:[MD5.0BAEFD3F648C6E7AB52990DD9565E4E2] - 19/08/2013 - 19:32:10 RSHAD . (.AVAST Software - avast! File System Access Blocking Driver.) -- C:\Windows\System32\Drivers\aswFsBlk.sys   [33400]
O44 - LFC:[MD5.64E2BAB4096C13D2342BC4661C967E07] - 19/08/2013 - 19:32:05 RSHAD . (.AVAST Software - avast! WFP Redirect Driver.) -- C:\Windows\System32\Drivers\aswRdr2.sys   [72016]
O44 - LFC:[MD5.29DD8E458A84171202AA4979364C30C0] - 19/08/2013 - 19:32:04 RSHAD . (.AVAST Software - avast! TDI Filter Driver.) -- C:\Windows\System32\Drivers\aswTdi.sys   [64288]
O44 - LFC:[MD5.5573AA70993A2BB81525B1C704B88763] - 19/08/2013 - 19:32:00 RSHAD . (...) -- C:\Windows\System32\Drivers\aswRvrt.sys   [65336]
O44 - LFC:[MD5.FA562F34ED6633C66170B09182B4C049] - 19/08/2013 - 19:31:56 RSHAD . (.AVAST Software - avast! File System Minifilter for Windows 2.) -- C:\Windows\System32\Drivers\aswMonFlt.sys   [80816]
O44 - LFC:[MD5.2B0C485EBE31E02C7B405F8DD072598D] - 19/08/2013 - 19:31:55 ---A- . (.AVAST Software - avast! start-up scanner.) -- C:\Windows\SysNative\aswBoot.exe   [287840]
O44 - LFC:[MD5.2B0C485EBE31E02C7B405F8DD072598D] - 19/08/2013 - 19:31:55 RSHAD . (.AVAST Software - avast! start-up scanner.) -- C:\Windows\System32\aswBoot.exe   [287840]
O44 - LFC:[MD5.E9C8673674ECF840EE59ED805DBE9966] - 19/08/2013 - 19:28:31 ---A- . (.AVAST Software - avast! Screen Saver stub.) -- C:\Windows\avastSS.scr   [41664]
O44 - LFC:[MD5.39524FDFB1F3EFBAFAB29564AC614405] - 19/08/2013 - 19:25:30 RSHAD . (...) -- C:\Windows\System32\Drivers\vsconfig.xml   [417513]
O44 - LFC:[MD5.4474A8AEABD056DF636FD4FBEF49353B] - 19/08/2013 - 19:05:33 ---A- . (.Microsoft Corporation - RDP Core DLL.) -- C:\Windows\SysNative\rdpcore.dll   [1031680]
O44 - LFC:[MD5.4474A8AEABD056DF636FD4FBEF49353B] - 19/08/2013 - 19:05:33 ---A- . (.Microsoft Corporation - RDP Core DLL.) -- C:\Windows\System32\rdpcore.dll   [1031680]
O44 - LFC:[MD5.51C5ECEB1CDEE2468A1748BE550CFBC8] - 19/08/2013 - 19:05:33 RSHAD . (.Microsoft Corporation - TCP Transport Driver.) -- C:\Windows\System32\Drivers\tdtcp.sys   [23552]
O44 - LFC:[MD5.6A01987BC8EF2F9DA9695EF60DD44F64] - 19/08/2013 - 19:00:40 ---A- . (...) -- C:\Windows\Patch.log   [18883]
O44 - LFC:[MD5.7FE0D0C8F53735EA17C9AE93EFE7AD5A] - 19/08/2013 - 18:58:08 ---A- . (.Microsoft Corporation - Windows Update client proxy stub 2.) -- C:\Windows\SysNative\wups2.dll   [44056]
O44 - LFC:[MD5.C1C03EA437EDDA8A7D4D8786E5AE6751] - 19/08/2013 - 18:58:08 ---A- . (.Microsoft Corporation - Windows Update.) -- C:\Windows\SysNative\wuauclt.exe   [57880]
O44 - LFC:[MD5.7FE0D0C8F53735EA17C9AE93EFE7AD5A] - 19/08/2013 - 18:58:08 RSHAD . (.Microsoft Corporation - Windows Update client proxy stub 2.) -- C:\Windows\System32\wups2.dll   [44056]
O44 - LFC:[MD5.C1C03EA437EDDA8A7D4D8786E5AE6751] - 19/08/2013 - 18:58:08 RSHAD . (.Microsoft Corporation - Windows Update.) -- C:\Windows\System32\wuauclt.exe   [57880]
O44 - LFC:[MD5.D9EF901DCA379CFE914E9FA13B73B4C4] - 19/08/2013 - 18:58:07 ---A- . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\SysNative\wuaueng.dll   [2428952]
O44 - LFC:[MD5.50EBD31C3527366FAFA468BD609F7352] - 19/08/2013 - 18:58:07 ---A- . (.Microsoft Corporation - Expérience utilisateur du client Windows Up.) -- C:\Windows\SysNative\wucltux.dll   [2622464]
O44 - LFC:[MD5.D9EF901DCA379CFE914E9FA13B73B4C4] - 19/08/2013 - 18:58:07 RSHAD . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\System32\wuaueng.dll   [2428952]
O44 - LFC:[MD5.50EBD31C3527366FAFA468BD609F7352] - 19/08/2013 - 18:58:07 RSHAD . (.Microsoft Corporation - Expérience utilisateur du client Windows Up.) -- C:\Windows\System32\wucltux.dll   [2622464]
O44 - LFC:[MD5.C47F35CC6FA4F1BDBEF8F87AC1A46537] - 19/08/2013 - 18:57:56 ---A- . (.Microsoft Corporation - API du client Windows Update.) -- C:\Windows\SysNative\wuapi.dll   [701976]
O44 - LFC:[MD5.C47F35CC6FA4F1BDBEF8F87AC1A46537] - 19/08/2013 - 18:57:56 ---A- . (.Microsoft Corporation - API du client Windows Update.) -- C:\Windows\System32\wuapi.dll   [701976]
O44 - LFC:[MD5.4AA6AA52A16EED6481E83D73EED4C8D5] - 19/08/2013 - 18:57:56 ---A- . (.Microsoft Corporation - Windows Update WUDriver Stub.) -- C:\Windows\SysNative\wudriver.dll   [99840]
O44 - LFC:[MD5.4AA6AA52A16EED6481E83D73EED4C8D5] - 19/08/2013 - 18:57:56 ---A- . (.Microsoft Corporation - Windows Update WUDriver Stub.) -- C:\Windows\System32\wudriver.dll   [99840]
O44 - LFC:[MD5.E746ED90132C6B6313CE9179F56BD31D] - 19/08/2013 - 18:57:56 ---A- . (.Microsoft Corporation - Windows Update client proxy stub.) -- C:\Windows\SysNative\wups.dll   [38424]
O44 - LFC:[MD5.E746ED90132C6B6313CE9179F56BD31D] - 19/08/2013 - 18:57:56 ---A- . (.Microsoft Corporation - Windows Update client proxy stub.) -- C:\Windows\System32\wups.dll   [38424]
O44 - LFC:[MD5.FF0729002E081668620A681182D63FE6] - 19/08/2013 - 18:57:16 ---A- . (.Microsoft Corporation - Windows Update Application Launcher.) -- C:\Windows\SysNative\wuapp.exe   [36864]
O44 - LFC:[MD5.FF0729002E081668620A681182D63FE6] - 19/08/2013 - 18:57:16 ---A- . (.Microsoft Corporation - Windows Update Application Launcher.) -- C:\Windows\System32\wuapp.exe   [36864]
O44 - LFC:[MD5.3E38C20AC83B01C45723B63B0F7A8FDC] - 19/08/2013 - 18:57:16 ---A- . (.Microsoft Corporation - Windows Update Vista Web Control.) -- C:\Windows\SysNative\wuwebv.dll   [186752]
O44 - LFC:[MD5.3E38C20AC83B01C45723B63B0F7A8FDC] - 19/08/2013 - 18:57:16 ---A- . (.Microsoft Corporation - Windows Update Vista Web Control.) -- C:\Windows\System32\wuwebv.dll   [186752]
O44 - LFC:[MD5.04D98743206D094FFB2D43EA89A4E36B] - 19/08/2013 - 18:54:09 ---A- . (...) -- C:\Windows\SysNative\license.rtf   [206462]
O44 - LFC:[MD5.04D98743206D094FFB2D43EA89A4E36B] - 19/08/2013 - 18:54:09 ---A- . (...) -- C:\Windows\System32\license.rtf   [206462]
O44 - LFC:[MD5.B3161456E4B8D04EBD8E0210C5B1AFF5] - 19/08/2013 - 17:57:08 ---A- . (...) -- C:\Windows\DtcInstall.log   [4059]
O44 - LFC:[MD5.EFE63BDFC12A1DD65FBB9E621F29B78C] - 19/08/2013 - 17:17:25 RSHAD . (.Sonic Solutions - CDR4 64-bit CD and DVD Place Holder Driver.) -- C:\Windows\System32\Drivers\cdr4_xp.sys   [10224]
O44 - LFC:[MD5.60B3B1A2544EB7843F26EC291BB590BB] - 19/08/2013 - 17:17:25 RSHAD . (.Sonic Solutions - CDRAL 64-bit Place Holder Driver (see PxHel.) -- C:\Windows\System32\Drivers\cdralw2k.sys   [10224]
O44 - LFC:[MD5.87B04878A6D59D6C79251DC960C674C1] - 19/08/2013 - 17:17:25 RSHAD . (.Sonic Solutions - Px Engine Device Driver for 64-bit Windows.) -- C:\Windows\System32\Drivers\PxHlpa64.sys   [55856]
O44 - LFC:[MD5.15F9A041D0D03D7E4DA23D45606985D5] - 19/08/2013 - 17:14:00 ---A- . (...) -- C:\Windows\SysNative\oem_Get_OS_Language.log   [222]
O44 - LFC:[MD5.15F9A041D0D03D7E4DA23D45606985D5] - 19/08/2013 - 17:14:00 RSHAD . (...) -- C:\Windows\System32\oem_Get_OS_Language.log   [222]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 19/08/2013 - 17:10:08 ---A- . (...) -- C:\Windows\ativpsrm.bin   [0]
O44 - LFC:[MD5.4E84A165644886CC5333335C289B33D0] - 19/08/2013 - 17:06:22 RSHAD . (...) -- C:\Windows\System32\Drivers\RTConvEQ.dat   [247560]
O44 - LFC:[MD5.EBCA7473A23120CAE4066BEB3835D48F] - 19/08/2013 - 17:06:22 RSHAD . (...) -- C:\Windows\System32\Drivers\RTEQEX0.dat   [520]
O44 - LFC:[MD5.FCA6883B690E3722B6A60ADA972A831A] - 19/08/2013 - 17:06:22 RSHAD . (...) -- C:\Windows\System32\Drivers\RTEQEX1.dat   [520]
O44 - LFC:[MD5.57B8D47F171677E88563A42924D64D3D] - 19/08/2013 - 17:06:22 RSHAD . (...) -- C:\Windows\System32\Drivers\RTEQEX2.dat   [520]
O44 - LFC:[MD5.530A9FEB236FF8DD1BC941A7F08E6561] - 19/08/2013 - 17:06:22 RSHAD . (...) -- C:\Windows\System32\Drivers\RTEQEX3.dat   [520]
O44 - LFC:[MD5.C104D162A7AC593908FCE05456300619] - 19/08/2013 - 17:06:22 RSHAD . (...) -- C:\Windows\System32\Drivers\RTHDAEQ1.dat   [176]
O44 - LFC:[MD5.DAE054749540938A0889AA40E0D5594A] - 19/08/2013 - 17:06:22 RSHAD . (...) -- C:\Windows\System32\Drivers\RtHdatEx.dat   [1448]
O44 - LFC:[MD5.E67AAB6205BD45C9A9644CDAC9CE9664] - 19/08/2013 - 17:06:22 RSHAD . (...) -- C:\Windows\System32\Drivers\RtPCEE3.DAT   [39672]
O44 - LFC:[MD5.0093E933C529617E785459DA4FC017A5] - 19/08/2013 - 17:06:22 RSHAD . (...) -- C:\Windows\System32\Drivers\RtPCEE4.DAT   [43506]
O44 - LFC:[MD5.F4BB52EC5B3FE911ED767A33A4EC3BBF] - 19/08/2013 - 17:06:22 RSHAD . (...) -- C:\Windows\System32\Drivers\rtkhdaud.dat   [16]
O44 - LFC:[MD5.A81248F30E62963E737DC26A32C8CDD4] - 19/08/2013 - 17:06:19 ---A- . (.Realtek Semiconductor Corp. - Realtek HD Audio Control Panel.) -- C:\Windows\SysNative\RTSnMg64.cpl   [1560680]
O44 - LFC:[MD5.A88BE9A6C4E646A2B2A1BD3A7F4B58E7] - 19/08/2013 - 17:06:19 ---A- . (.SRS Labs, Inc. - COM object implementing SRS Headphone 360.) -- C:\Windows\SysNative\SRSHP64.dll   [198896]
O44 - LFC:[MD5.A028717B791416182959B325D5B40679] - 19/08/2013 - 17:06:19 ---A- . (.SRS Labs, Inc. - TruSurround HD and HD4 COM object for Windo.) -- C:\Windows\SysNative\SRSTSH64.dll   [211184]
O44 - LFC:[MD5.018D3D2478754AA411DE6DA6DE5F8F21] - 19/08/2013 - 17:06:19 ---A- . (.SRS Labs, Inc. - TruSurroundXT Module.) -- C:\Windows\SysNative\SRSTSX64.dll   [518896]
O44 - LFC:[MD5.2FCADCC14F8E540F6ADE4BF92BD8AEDD] - 19/08/2013 - 17:06:19 ---A- . (.SRS Labs, Inc. - WOW HD COM object for Windows.) -- C:\Windows\SysNative\SRSWOW64.dll   [155888]
O44 - LFC:[MD5.03E343EECFC59323AAD97AACC1BDB275] - 19/08/2013 - 17:06:19 ---A- . (.Sony Corporation - Sony SFSS APO.) -- C:\Windows\SysNative\SFSS_APO.dll   [121744]
O44 - LFC:[MD5.9C4CF2E875035DBA252A736E424BF37D] - 19/08/2013 - 17:06:19 ---A- . (.Synopsys, Inc. - SFAPO.DLL.) -- C:\Windows\SysNative\SFAPO64.dll   [78176]
O44 - LFC:[MD5.ED27D943336C2956DCE43A7B777FAEFE] - 19/08/2013 - 17:06:19 ---A- . (.Synopsys, Inc. - SFCOM.DLL.) -- C:\Windows\SysNative\SFCOM64.dll   [81248]
O44 - LFC:[MD5.D95A37963E504EBE32693F3C2946C4C9] - 19/08/2013 - 17:06:19 ---A- . (.Synopsys, Inc. - SFNHK.DLL.) -- C:\Windows\SysNative\SFNHK64.dll   [220512]
O44 - LFC:[MD5.71A48CA6300620F06753F4CA44D01AF6] - 19/08/2013 - 17:06:19 ---A- . (.Waves Audio Ltd. - General Library for Plug-Ins.) -- C:\Windows\SysNative\WavesGUILib.dll   [2601816]
O44 - LFC:[MD5.A81248F30E62963E737DC26A32C8CDD4] - 19/08/2013 - 17:06:19 RSHAD . (.Realtek Semiconductor Corp. - Realtek HD Audio Control Panel.) -- C:\Windows\System32\RTSnMg64.cpl   [1560680]
O44 - LFC:[MD5.A88BE9A6C4E646A2B2A1BD3A7F4B58E7] - 19/08/2013 - 17:06:19 RSHAD . (.SRS Labs, Inc. - COM object implementing SRS Headphone 360.) -- C:\Windows\System32\SRSHP64.dll   [198896]
O44 - LFC:[MD5.A028717B791416182959B325D5B40679] - 19/08/2013 - 17:06:19 RSHAD . (.SRS Labs, Inc. - TruSurround HD and HD4 COM object for Windo.) -- C:\Windows\System32\SRSTSH64.dll   [211184]
O44 - LFC:[MD5.018D3D2478754AA411DE6DA6DE5F8F21] - 19/08/2013 - 17:06:19 RSHAD . (.SRS Labs, Inc. - TruSurroundXT Module.) -- C:\Windows\System32\SRSTSX64.dll   [518896]
O44 - LFC:[MD5.2FCADCC14F8E540F6ADE4BF92BD8AEDD] - 19/08/2013 - 17:06:19 RSHAD . (.SRS Labs, Inc. - WOW HD COM object for Windows.) -- C:\Windows\System32\SRSWOW64.dll   [155888]
O44 - LFC:[MD5.03E343EECFC59323AAD97AACC1BDB275] - 19/08/2013 - 17:06:19 RSHAD . (.Sony Corporation - Sony SFSS APO.) -- C:\Windows\System32\SFSS_APO.dll   [121744]
O44 - LFC:[MD5.9C4CF2E875035DBA252A736E424BF37D] - 19/08/2013 - 17:06:19 RSHAD . (.Synopsys, Inc. - SFAPO.DLL.) -- C:\Windows\System32\SFAPO64.dll   [78176]
O44 - LFC:[MD5.ED27D943336C2956DCE43A7B777FAEFE] - 19/08/2013 - 17:06:19 RSHAD . (.Synopsys, Inc. - SFCOM.DLL.) -- C:\Windows\System32\SFCOM64.dll   [81248]
O44 - LFC:[MD5.D95A37963E504EBE32693F3C2946C4C9] - 19/08/2013 - 17:06:19 RSHAD . (.Synopsys, Inc. - SFNHK.DLL.) -- C:\Windows\System32\SFNHK64.dll   [220512]
O44 - LFC:[MD5.71A48CA6300620F06753F4CA44D01AF6] - 19/08/2013 - 17:06:19 RSHAD . (.Waves Audio Ltd. - General Library for Plug-Ins.) -- C:\Windows\System32\WavesGUILib.dll   [2601816]
O44 - LFC:[MD5.A6286A6C7A1BBFCBA17AA54384A21D1C] - 19/08/2013 - 17:06:18 ---A- . (.Dolby Laboratories, Inc. - Dolby PCEE3 COM DLL x64.) -- C:\Windows\SysNative\RTEED64A.dll   [204120]
O44 - LFC:[MD5.D0D0D82B7366E691275E433CD34F89B2] - 19/08/2013 - 17:06:18 ---A- . (.Dolby Laboratories, Inc. - Dolby PCEE3 Control Panel x64.) -- C:\Windows\SysNative\RTEEP64A.dll   [375128]
O44 - LFC:[MD5.6F4CD493196100EEF349D7132CECAFD9] - 19/08/2013 - 17:06:18 ---A- . (.Dolby Laboratories, Inc. - Dolby PCEE3 GFX APO x64.) -- C:\Windows\SysNative\RTEEG64A.dll   [78680]
O44 - LFC:[MD5.ECAEC5FBBBEF8612AF0A866AFA5F7EF2] - 19/08/2013 - 17:06:18 ---A- . (.Dolby Laboratories, Inc. - Dolby PCEE3 LFX APO x64.) -- C:\Windows\SysNative\RTEEL64A.dll   [101208]
O44 - LFC:[MD5.9D4123000AA5B75D3869F4531C9BA81B] - 19/08/2013 - 17:06:18 ---A- . (.Realtek Semiconductor Corp. - Realtek APO API.) -- C:\Windows\SysNative\RtkApi64.dll   [1805928]
O44 - LFC:[MD5.3F5BC9D09699B009A4C43AAFE2457B56] - 19/08/2013 - 17:06:18 ---A- . (.Realtek Semiconductor Corp. - Realtek LFX/GFX DSP UI component for Window.) -- C:\Windows\SysNative\RtPgEx64.dll   [2405992]
O44 - LFC:[MD5.A663EED94D922E7B92AC0FD5E5F696C4] - 19/08/2013 - 17:06:18 ---A- . (.Realtek Semiconductor Corp. - Realtek(r) LFX/GFX DSP component.) -- C:\Windows\SysNative\RtkAPO64.dll   [3114088]
O44 - LFC:[MD5.0805289E121F3E3C458C970B08314EB2] - 19/08/2013 - 17:06:18 ---A- . (.Realtek Semiconductor Corp. - RtkCfg.dll.) -- C:\Windows\SysNative\RtkCfg64.dll   [149608]
O44 - LFC:[MD5.4A73114B2BEE7AC77AA7703EB58DD393] - 19/08/2013 - 17:06:18 ---A- . (.Realtek Semiconductor Corp. - RtlCPAPI Module.) -- C:\Windows\SysNative\RtlCPAPI64.dll   [332392]
O44 - LFC:[MD5.A6286A6C7A1BBFCBA17AA54384A21D1C] - 19/08/2013 - 17:06:18 RSHAD . (.Dolby Laboratories, Inc. - Dolby PCEE3 COM DLL x64.) -- C:\Windows\System32\RTEED64A.dll   [204120]
O44 - LFC:[MD5.D0D0D82B7366E691275E433CD34F89B2] - 19/08/2013 - 17:06:18 RSHAD . (.Dolby Laboratories, Inc. - Dolby PCEE3 Control Panel x64.) -- C:\Windows\System32\RTEEP64A.dll   [375128]
O44 - LFC:[MD5.6F4CD493196100EEF349D7132CECAFD9] - 19/08/2013 - 17:06:18 RSHAD . (.Dolby Laboratories, Inc. - Dolby PCEE3 GFX APO x64.) -- C:\Windows\System32\RTEEG64A.dll   [78680]
O44 - LFC:[MD5.ECAEC5FBBBEF8612AF0A866AFA5F7EF2] - 19/08/2013 - 17:06:18 RSHAD . (.Dolby Laboratories, Inc. - Dolby PCEE3 LFX APO x64.) -- C:\Windows\System32\RTEEL64A.dll   [101208]
O44 - LFC:[MD5.9D4123000AA5B75D3869F4531C9BA81B] - 19/08/2013 - 17:06:18 RSHAD . (.Realtek Semiconductor Corp. - Realtek APO API.) -- C:\Windows\System32\RtkApi64.dll   [1805928]
O44 - LFC:[MD5.3F5BC9D09699B009A4C43AAFE2457B56] - 19/08/2013 - 17:06:18 RSHAD . (.Realtek Semiconductor Corp. - Realtek LFX/GFX DSP UI component for Window.) -- C:\Windows\System32\RtPgEx64.dll   [2405992]
O44 - LFC:[MD5.718A4008EE5DA174400396B27509EF82] - 19/08/2013 - 17:06:18 RSHAD . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\Drivers\RTKVHD64.sys   [2899176]
O44 - LFC:[MD5.A663EED94D922E7B92AC0FD5E5F696C4] - 19/08/2013 - 17:06:18 RSHAD . (.Realtek Semiconductor Corp. - Realtek(r) LFX/GFX DSP component.) -- C:\Windows\System32\RtkAPO64.dll   [3114088]
O44 - LFC:[MD5.0805289E121F3E3C458C970B08314EB2] - 19/08/2013 - 17:06:18 RSHAD . (.Realtek Semiconductor Corp. - RtkCfg.dll.) -- C:\Windows\System32\RtkCfg64.dll   [149608]
O44 - LFC:[MD5.4A73114B2BEE7AC77AA7703EB58DD393] - 19/08/2013 - 17:06:18 RSHAD . (.Realtek Semiconductor Corp. - RtlCPAPI Module.) -- C:\Windows\System32\RtlCPAPI64.dll   [332392]
O44 - LFC:[MD5.8B211FFCCC2C08DDC0FD023E70A13DD8] - 19/08/2013 - 17:06:17 ---A- . (.Dolby Laboratories - Dolby PCEE4 ASL Analog x64.) -- C:\Windows\SysNative\R4EEA64A.dll   [118104]
O44 - LFC:[MD5.B90443404596E62B2E60A9EEA5FAF5CA] - 19/08/2013 - 17:06:17 ---A- . (.Dolby Laboratories - Dolby PCEE4 COM DLL x64.) -- C:\Windows\SysNative\R4EED64A.dll   [426328]
O44 - LFC:[MD5.8D2AF770C4781E11A2AEC2089D5154C5] - 19/08/2013 - 17:06:17 ---A- . (.Dolby Laboratories - Dolby PCEE4 Control Panel x64.) -- C:\Windows\SysNative\R4EEP64A.dll   [3308376]
O44 - LFC:[MD5.E05E98B73A089BC6DDADE5577B64D1E6] - 19/08/2013 - 17:06:17 ---A- . (.Dolby Laboratories - Dolby PCEE4 GFX APO x64.) -- C:\Windows\SysNative\R4EEG64A.dll   [74072]
O44 - LFC:[MD5.E0B4052B55114ACD0BFE627AE050E751] - 19/08/2013 - 17:06:17 ---A- . (.Dolby Laboratories - Dolby PCEE4 LFX APO x64.) -- C:\Windows\SysNative\R4EEL64A.dll   [136024]
O44 - LFC:[MD5.E9D4A333DF15D06C68AC4BFB9B6581CB] - 19/08/2013 - 17:06:17 ---A- . (.Dolby Laboratories, Inc. - PCEE3 DAA Control Panel x64.) -- C:\Windows\SysNative\RP3DAA64.dll   [310104]
O44 - LFC:[MD5.B6FE01558CC03F3866C9AD0ED19261D8] - 19/08/2013 - 17:06:17 ---A- . (.Dolby Laboratories, Inc. - PCEE3 DHT Control Panel x64.) -- C:\Windows\SysNative\RP3DHT64.dll   [310104]
O44 - LFC:[MD5.10936CD08C1830F95497E4ACB26E7019] - 19/08/2013 - 17:06:17 ---A- . (.Realtek Semiconductor Corp. - RTCOMDLL Module.) -- C:\Windows\SysNative\RTCOM64.dll   [1245288]
O44 - LFC:[MD5.F6032F1B11DFC29CF2DA7E4329839AA1] - 19/08/2013 - 17:06:17 ---A- . (.Realtek Semiconductor Corp. - Realtek HD Audio Coinstaller Resource.) -- C:\Windows\SysNative\RCoRes64.dat   [1483264]
O44 - LFC:[MD5.C5404C57AF454369A81F2591073A4A00] - 19/08/2013 - 17:06:17 ---A- . (.Realtek Semiconductor Corp. - Realtek HD Audio Coinstaller.) -- C:\Windows\SysNative\RCoInst64.dll   [92264]
O44 - LFC:[MD5.CF171618F3999FEB4F95C77A8C376C92] - 19/08/2013 - 17:06:17 ---A- . (.Waves Audio Ltd. - MaxxVolumeSD APO.) -- C:\Windows\SysNative\MaxxVolumeSDAPO.dll   [334680]
O44 - LFC:[MD5.8B211FFCCC2C08DDC0FD023E70A13DD8] - 19/08/2013 - 17:06:17 RSHAD . (.Dolby Laboratories - Dolby PCEE4 ASL Analog x64.) -- C:\Windows\System32\R4EEA64A.dll   [118104]
O44 - LFC:[MD5.B90443404596E62B2E60A9EEA5FAF5CA] - 19/08/2013 - 17:06:17 RSHAD . (.Dolby Laboratories - Dolby PCEE4 COM DLL x64.) -- C:\Windows\System32\R4EED64A.dll   [426328]
O44 - LFC:[MD5.8D2AF770C4781E11A2AEC2089D5154C5] - 19/08/2013 - 17:06:17 RSHAD . (.Dolby Laboratories - Dolby PCEE4 Control Panel x64.) -- C:\Windows\System32\R4EEP64A.dll   [3308376]
O44 - LFC:[MD5.E05E98B73A089BC6DDADE5577B64D1E6] - 19/08/2013 - 17:06:17 RSHAD . (.Dolby Laboratories - Dolby PCEE4 GFX APO x64.) -- C:\Windows\System32\R4EEG64A.dll   [74072]
O44 - LFC:[MD5.E0B4052B55114ACD0BFE627AE050E751] - 19/08/2013 - 17:06:17 RSHAD . (.Dolby Laboratories - Dolby PCEE4 LFX APO x64.) -- C:\Windows\System32\R4EEL64A.dll   [136024]
O44 - LFC:[MD5.E9D4A333DF15D06C68AC4BFB9B6581CB] - 19/08/2013 - 17:06:17 RSHAD . (.Dolby Laboratories, Inc. - PCEE3 DAA Control Panel x64.) -- C:\Windows\System32\RP3DAA64.dll   [310104]
O44 - LFC:[MD5.B6FE01558CC03F3866C9AD0ED19261D8] - 19/08/2013 - 17:06:17 RSHAD . (.Dolby Laboratories, Inc. - PCEE3 DHT Control Panel x64.) -- C:\Windows\System32\RP3DHT64.dll   [310104]
O44 - LFC:[MD5.10936CD08C1830F95497E4ACB26E7019] - 19/08/2013 - 17:06:17 RSHAD . (.Realtek Semiconductor Corp. - RTCOMDLL Module.) -- C:\Windows\System32\RTCOM64.dll   [1245288]
O44 - LFC:[MD5.F6032F1B11DFC29CF2DA7E4329839AA1] - 19/08/2013 - 17:06:17 RSHAD . (.Realtek Semiconductor Corp. - Realtek HD Audio Coinstaller Resource.) -- C:\Windows\System32\RCoRes64.dat   [1483264]
O44 - LFC:[MD5.C5404C57AF454369A81F2591073A4A00] - 19/08/2013 - 17:06:17 RSHAD . (.Realtek Semiconductor Corp. - Realtek HD Audio Coinstaller.) -- C:\Windows\System32\RCoInst64.dll   [92264]
O44 - LFC:[MD5.CF171618F3999FEB4F95C77A8C376C92] - 19/08/2013 - 17:06:17 RSHAD . (.Waves Audio Ltd. - MaxxVolumeSD APO.) -- C:\Windows\System32\MaxxVolumeSDAPO.dll   [334680]
O44 - LFC:[MD5.8E50E3BA76CCD8868EF0415F2C388129] - 19/08/2013 - 17:06:16 ---A- . (.Knowles Acoustics - Knowles HD Audio APO.) -- C:\Windows\SysNative\KAAPORT64.dll   [603472]
O44 - LFC:[MD5.75616F8DB5C092A8A50AFEC273859DD7] - 19/08/2013 - 17:06:16 ---A- . (.Waves Audio Ltd. - MaxxAudio APO.) -- C:\Windows\SysNative\MaxxAudioAPO20.dll   [318808]
O44 - LFC:[MD5.03E0955A7D8E5E74E7F6986A56A66196] - 19/08/2013 - 17:06:16 ---A- . (.Waves Audio Ltd. - MaxxAudio APO.) -- C:\Windows\SysNative\MaxxAudioAPO30.dll   [341336]
O44 - LFC:[MD5.87B5AB256A5A068EDDA0F4B4FAC728CC] - 19/08/2013 - 17:06:16 ---A- . (.Waves Audio Ltd. - Pas de description.) -- C:\Windows\SysNative\MaxxAudioEQ.dll   [2197264]
O44 - LFC:[MD5.F5960A7D7DD19FD17F0F5640D7BAFA2A] - 19/08/2013 - 17:06:16 ---A- . (.Waves Audio Ltd. - Pas de description.) -- C:\Windows\SysNative\MaxxAudioRealtek.dll   [2238296]
O44 - LFC:[MD5.8E50E3BA76CCD8868EF0415F2C388129] - 19/08/2013 - 17:06:16 RSHAD . (.Knowles Acoustics - Knowles HD Audio APO.) -- C:\Windows\System32\KAAPORT64.dll   [603472]
O44 - LFC:[MD5.75616F8DB5C092A8A50AFEC273859DD7] - 19/08/2013 - 17:06:16 RSHAD . (.Waves Audio Ltd. - MaxxAudio APO.) -- C:\Windows\System32\MaxxAudioAPO20.dll   [318808]
O44 - LFC:[MD5.03E0955A7D8E5E74E7F6986A56A66196] - 19/08/2013 - 17:06:16 RSHAD . (.Waves Audio Ltd. - MaxxAudio APO.) -- C:\Windows\System32\MaxxAudioAPO30.dll   [341336]
O44 - LFC:[MD5.87B5AB256A5A068EDDA0F4B4FAC728CC] - 19/08/2013 - 17:06:16 RSHAD . (.Waves Audio Ltd. - Pas de description.) -- C:\Windows\System32\MaxxAudioEQ.dll   [2197264]
O44 - LFC:[MD5.F5960A7D7DD19FD17F0F5640D7BAFA2A] - 19/08/2013 - 17:06:16 RSHAD . (.Waves Audio Ltd. - Pas de description.) -- C:\Windows\System32\MaxxAudioRealtek.dll   [2238296]
O44 - LFC:[MD5.8B5A737AD11EF45D9B1AEB4ED6884968] - 19/08/2013 - 17:06:15 ---A- . (.DTS - DTS Bass Enhancement COM DLL.) -- C:\Windows\SysNative\DTSBassEnhancementDLL64.dll   [728680]
O44 - LFC:[MD5.21B38D4D86A87909491F690883AE6D1E] - 19/08/2013 - 17:06:15 ---A- . (.DTS - DTS Boost COM DLL.) -- C:\Windows\SysNative\DTSBoostDLL64.dll   [1486952]
O44 - LFC:[MD5.BC0474E5476E5EA0D0E1AA5AC41E2061] - 19/08/2013 - 17:06:15 ---A- . (.DTS - DTS GFX APO.) -- C:\Windows\SysNative\DTSGFXAPO64.dll   [242792]
O44 - LFC:[MD5.3B8FB5376F5431C0101747D5138BCB9B] - 19/08/2013 - 17:06:15 ---A- . (.DTS - DTS GFX APO.) -- C:\Windows\SysNative\DTSGFXAPONS64.dll   [241768]
O44 - LFC:[MD5.FF31A2F57AAAB58DB78FCC961A58B206] - 19/08/2013 - 17:06:15 ---A- . (.DTS - DTS Gain Compensator COM DLL.) -- C:\Windows\SysNative\DTSGainCompensatorDLL64.dll   [428648]
O44 - LFC:[MD5.B3977C8BA77559F4F8752AE8EB724C87] - 19/08/2013 - 17:06:15 ---A- . (.DTS - DTS LFX APO.) -- C:\Windows\SysNative\DTSLFXAPO64.dll   [242792]
O44 - LFC:[MD5.192A03A21636D3775CEE4C049C3BEB2A] - 19/08/2013 - 17:06:15 ---A- . (.DTS - DTS Limiter COM DLL.) -- C:\Windows\SysNative\DTSLimiterDLL64.dll   [432744]
O44 - LFC:[MD5.2EF5442E8E7ED20F7634EEFB09640C8F] - 19/08/2013 - 17:06:15 ---A- . (.DTS - DTS NEO:PC COM DLL.) -- C:\Windows\SysNative\DTSNeoPCDLL64.dll   [491112]
O44 - LFC:[MD5.F7C357462077156DC211AC2112FC8C53] - 19/08/2013 - 17:06:15 ---A- . (.DTS - DTS Surround Sensation Headphone COM DLL.) -- C:\Windows\SysNative\DTSS2HeadphoneDLL64.dll   [1568360]
O44 - LFC:[MD5.F132C08BD8C58579B400DFAA71F34CFB] - 19/08/2013 - 17:06:15 ---A- . (.DTS - DTS Surround Sensation Speaker COM DLL.) -- C:\Windows\SysNative\DTSS2SpeakerDLL64.dll   [1756264]
O44 - LFC:[MD5.9948969B2C1987B1D64789EFEB284A84] - 19/08/2013 - 17:06:15 ---A- . (.DTS - DTS Symmetry COM DLL.) -- C:\Windows\SysNative\DTSSymmetryDLL64.dll   [712296]
O44 - LFC:[MD5.DE32448E6B40141C80DAABFF6FBE1744] - 19/08/2013 - 17:06:15 ---A- . (.DTS - DTS Voice Clarity COM DLL.) -- C:\Windows\SysNative\DTSVoiceClarityDLL64.dll   [693352]
O44 - LFC:[MD5.973D8D0843F65B69DE13B649F5570975] - 19/08/2013 - 17:06:15 ---A- . (.Fortemedia Corporation - Fortemedia SAMSoft sAPO.) -- C:\Windows\SysNative\FMAPO64.dll   [2085440]
O44 - LFC:[MD5.8B5A737AD11EF45D9B1AEB4ED6884968] - 19/08/2013 - 17:06:15 RSHAD . (.DTS - DTS Bass Enhancement COM DLL.) -- C:\Windows\System32\DTSBassEnhancementDLL64.dll   [728680]
O44 - LFC:[MD5.21B38D4D86A87909491F690883AE6D1E] - 19/08/2013 - 17:06:15 RSHAD . (.DTS - DTS Boost COM DLL.) -- C:\Windows\System32\DTSBoostDLL64.dll   [1486952]
O44 - LFC:[MD5.BC0474E5476E5EA0D0E1AA5AC41E2061] - 19/08/2013 - 17:06:15 RSHAD . (.DTS - DTS GFX APO.) -- C:\Windows\System32\DTSGFXAPO64.dll   [242792]
O44 - LFC:[MD5.3B8FB5376F5431C0101747D5138BCB9B] - 19/08/2013 - 17:06:15 RSHAD . (.DTS - DTS GFX APO.) -- C:\Windows\System32\DTSGFXAPONS64.dll   [241768]
O44 - LFC:[MD5.FF31A2F57AAAB58DB78FCC961A58B206] - 19/08/2013 - 17:06:15 RSHAD . (.DTS - DTS Gain Compensator COM DLL.) -- C:\Windows\System32\DTSGainCompensatorDLL64.dll   [428648]
O44 - LFC:[MD5.B3977C8BA77559F4F8752AE8EB724C87] - 19/08/2013 - 17:06:15 RSHAD . (.DTS - DTS LFX APO.) -- C:\Windows\System32\DTSLFXAPO64.dll   [242792]
O44 - LFC:[MD5.192A03A21636D3775CEE4C049C3BEB2A] - 19/08/2013 - 17:06:15 RSHAD . (.DTS - DTS Limiter COM DLL.) -- C:\Windows\System32\DTSLimiterDLL64.dll   [432744]
O44 - LFC:[MD5.2EF5442E8E7ED20F7634EEFB09640C8F] - 19/08/2013 - 17:06:15 RSHAD . (.DTS - DTS NEO:PC COM DLL.) -- C:\Windows\System32\DTSNeoPCDLL64.dll   [491112]
O44 - LFC:[MD5.F7C357462077156DC211AC2112FC8C53] - 19/08/2013 - 17:06:15 RSHAD . (.DTS - DTS Surround Sensation Headphone COM DLL.) -- C:\Windows\System32\DTSS2HeadphoneDLL64.dll   [1568360]
O44 - LFC:[MD5.F132C08BD8C58579B400DFAA71F34CFB] - 19/08/2013 - 17:06:15 RSHAD . (.DTS - DTS Surround Sensation Speaker COM DLL.) -- C:\Windows\System32\DTSS2SpeakerDLL64.dll   [1756264]
O44 - LFC:[MD5.9948969B2C1987B1D64789EFEB284A84] - 19/08/2013 - 17:06:15 RSHAD . (.DTS - DTS Symmetry COM DLL.) -- C:\Windows\System32\DTSSymmetryDLL64.dll   [712296]
O44 - LFC:[MD5.DE32448E6B40141C80DAABFF6FBE1744] - 19/08/2013 - 17:06:15 RSHAD . (.DTS - DTS Voice Clarity COM DLL.) -- C:\Windows\System32\DTSVoiceClarityDLL64.dll   [693352]
O44 - LFC:[MD5.973D8D0843F65B69DE13B649F5570975] - 19/08/2013 - 17:06:15 RSHAD . (.Fortemedia Corporation - Fortemedia SAMSoft sAPO.) -- C:\Windows\System32\FMAPO64.dll   [2085440]
O44 - LFC:[MD5.A7138E6FFA25D5281A0E35ABF60D60A9] - 19/08/2013 - 17:06:14 ---A- . (.Andrea Electronics Corporation - Capture Noise Filters (64-bit).) -- C:\Windows\SysNative\AERTAC64.dll   [200800]
O44 - LFC:[MD5.973ADB6AD47AC047F900C0D760AB6BE2] - 19/08/2013 - 17:06:14 ---A- . (.Andrea Electronics Corporation - Render Noise Filters (64-bit).) -- C:\Windows\SysNative\AERTAR64.dll   [108960]
O44 - LFC:[MD5.A7138E6FFA25D5281A0E35ABF60D60A9] - 19/08/2013 - 17:06:14 RSHAD . (.Andrea Electronics Corporation - Capture Noise Filters (64-bit).) -- C:\Windows\System32\AERTAC64.dll   [200800]
O44 - LFC:[MD5.973ADB6AD47AC047F900C0D760AB6BE2] - 19/08/2013 - 17:06:14 RSHAD . (.Andrea Electronics Corporation - Render Noise Filters (64-bit).) -- C:\Windows\System32\AERTAR64.dll   [108960]
O44 - LFC:[MD5.0BF254F2A678F70237012A084B783CB7] - 19/08/2013 - 17:06:13 ---A- . (.Realtek Semiconductor Corp. - RtlExUpd DLL for setup utility function.) -- C:\Windows\RtlExUpd.dll   [1284712]
O44 - LFC:[MD5.22173C70F48435930EF0B0A8C53CA708] - 19/08/2013 - 17:05:57 ---A- . (...) -- C:\Windows\DPINST.LOG   [4844]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 19/08/2013 - 17:05:53 RSHAD . (...) -- C:\Windows\System32\Drivers\Msft_Kernel_SynTP_01009.Wdf   [0]
O44 - LFC:[MD5.64C160E527B64A8C3EF47C49712F9C40] - 19/08/2013 - 17:03:19 ---A- . (...) -- C:\Windows\Driver_install.log   [11]
O44 - LFC:[MD5.76E2FFAD301490BA27B947C6507752FB] - 19/08/2013 - 17:02:32 RSHAD . (.Advanced Micro Devices - AMD USB Filter Driver.) -- C:\Windows\System32\Drivers\usbfilter.sys   [44672]
O44 - LFC:[MD5.66E4EFA6CACCC787604772D8F418CA4F] - 19/08/2013 - 16:58:24 ---A- . (...) -- C:\Windows\LMv4.UNI   [184]
O44 - LFC:[MD5.2EAE98B466CFE4C9362D004ED469422A] - 19/08/2013 - 16:55:56 ---A- . (...) -- C:\Windows\InfoCtrPackard Bell.ico   [411494]
O44 - LFC:[MD5.C5DB280CC2BBF46F2E0C19C88916FEC4] - 19/08/2013 - 16:52:47 ---A- . (...) -- C:\Windows\TSSysprep.log   [3652]
~ Files: 688 Scanned in 01mn 14s



---\\ Derniers fichiers créés dans Windows Prefetcher (O45)
O45 - LFCP:[MD5.3F28F09197AFF710A109859A8110B78A] - 19/08/2013 - 18:52:26 ---A- - C:\Windows\Prefetch\AgAppLaunch.db
O45 - LFCP:[MD5.2E601EE5AA67A027E9A484C70B0EBC8B] - 19/08/2013 - 19:10:01 ---A- - C:\Windows\Prefetch\NTOSBOOT-B00DFAAD.pf
O45 - LFCP:[MD5.501C285474EC7D1505679FC7B113516C] - 19/08/2013 - 21:27:49 ---A- - C:\Windows\Prefetch\AgCx_S1_S-1-5-21-2686855252-2997517904-843402118-1000.snp.db
O45 - LFCP:[MD5.3E7FF2A6CC224D1DCD767B2F229CF936] - 19/08/2013 - 21:45:24 ---A- - C:\Windows\Prefetch\AgCx_SC3_0F505DC621E6AC68.db
O45 - LFCP:[MD5.EEEDDC733187114B67B3C230263C78B8] - 20/08/2013 - 05:43:28 ---A- - C:\Windows\Prefetch\READER_SL.EXE-736A84E3.pf
O45 - LFCP:[MD5.9942D4F8EFACEA8B479760F5B293C238] - 20/08/2013 - 07:14:52 ---A- - C:\Windows\Prefetch\Layout.ini
O45 - LFCP:[MD5.11C4094CDBB4FEC3FEA7A8267163BA84] - 20/08/2013 - 07:20:09 ---A- - C:\Windows\Prefetch\AgGlUAD_P_S-1-5-21-2686855252-2997517904-843402118-1002.db
O45 - LFCP:[MD5.F13753AD297195264DF1205F791E8B38] - 20/08/2013 - 07:20:09 ---A- - C:\Windows\Prefetch\AgGlUAD_S-1-5-21-2686855252-2997517904-843402118-1002.db
O45 - LFCP:[MD5.5DD287FD5EB2E40C9727C7BE32F26854] - 20/08/2013 - 07:49:15 ---A- - C:\Windows\Prefetch\APNMCP.EXE-34A61A15.pf
O45 - LFCP:[MD5.D44ED9A8BF75916E455E8A49D27E6BCE] - 20/08/2013 - 07:57:43 ---A- - C:\Windows\Prefetch\KSS12.0.1.117MLG_EN-FR_RU-FR_-31650E9D.pf
O45 - LFCP:[MD5.CFA85B1449FBA90344CEF2077981976D] - 20/08/2013 - 07:57:45 ---A- - C:\Windows\Prefetch\SETUP.EXE-9ECD43FD.pf
O45 - LFCP:[MD5.72FDDDF5C57CF7DBAD631D696580019B] - 20/08/2013 - 07:59:32 ---A- - C:\Windows\Prefetch\ADBERDR11003_FR_FR.EXE-7B3D04CC.pf
O45 - LFCP:[MD5.081160A0D7A1AF2A62FD3CA6DACA4199] - 20/08/2013 - 08:00:47 ---A- - C:\Windows\Prefetch\SETUP.EXE-311881F7.pf
O45 - LFCP:[MD5.E787EC3A873B01DC49A7B69CB3FCDD48] - 20/08/2013 - 08:07:01 ---A- - C:\Windows\Prefetch\JRE-7U25-WINDOWS-X64.EXE-5FF0EC8E.pf
O45 - LFCP:[MD5.1307C16164C236E1C266AD642070E387] - 20/08/2013 - 08:07:26 ---A- - C:\Windows\Prefetch\MSIBF50.TMP-AF9C6200.pf
O45 - LFCP:[MD5.653E5FD96956AEB5BBA967AE8FDAA4E2] - 20/08/2013 - 08:21:16 ---A- - C:\Windows\Prefetch\UNPACK200.EXE-AF3F4116.pf
O45 - LFCP:[MD5.DCB66484749814EC1F3C6D0557BC00C6] - 20/08/2013 - 08:21:22 ---A- - C:\Windows\Prefetch\JAVAW.EXE-F367CF4F.pf
O45 - LFCP:[MD5.E020C6DA2F91E61D74E230D934ABF5CF] - 20/08/2013 - 08:34:14 ---A- - C:\Windows\Prefetch\WEBCAM.EXE-15B4358F.pf
O45 - LFCP:[MD5.DF124FEABACB697A6B46908A18A2FF64] - 20/08/2013 - 08:34:30 ---A- - C:\Windows\Prefetch\CLUPDATER.EXE-AB67B377.pf
O45 - LFCP:[MD5.490DA53ED1D4CD4B0ABA1A3151B417D8] - 20/08/2013 - 08:35:50 ---A- - C:\Windows\Prefetch\ACER.1.5.2904.19458_AVC120510-2275B408.pf
O45 - LFCP:[MD5.6898E9F6601B77A5E49A01BA628D07D1] - 20/08/2013 - 08:36:32 ---A- - C:\Windows\Prefetch\SETUP.EXE-DC31CA91.pf
O45 - LFCP:[MD5.C117E2F724319D6AC9429B0AA1695281] - 20/08/2013 - 08:36:39 ---A- - C:\Windows\Prefetch\ISBEW64.EXE-41C13B3B.pf
O45 - LFCP:[MD5.C64071FC36AB52C3A6B7EFDD246020FB] - 20/08/2013 - 08:37:43 ---A- - C:\Windows\Prefetch\SETUP.EXE-FADC3032.pf
O45 - LFCP:[MD5.7129F330A4AAB6B59691DA8C1F9E4C85] - 20/08/2013 - 08:37:52 ---A- - C:\Windows\Prefetch\ISBEW64.EXE-192713A3.pf
O45 - LFCP:[MD5.1616D58351CD0D4CBC383DA8579FAE31] - 20/08/2013 - 08:38:24 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-C1905C2B.pf
O45 - LFCP:[MD5.6ED525A1B8EEA1220B30CF2931E0BBBC] - 20/08/2013 - 08:41:05 ---A- - C:\Windows\Prefetch\POSTBUILD.EXE-A33506D1.pf
O45 - LFCP:[MD5.BD6CE7262AE65EF53BA20BA93C5E803D] - 20/08/2013 - 08:41:19 ---A- - C:\Windows\Prefetch\VCREDIST_X86.EXE-C31BD7F1.pf
O45 - LFCP:[MD5.B0764AF0A44CBB8B4DE3916F0677CEC3] - 20/08/2013 - 08:41:24 ---A- - C:\Windows\Prefetch\VCREDI~3.EXE-EC87801A.pf
O45 - LFCP:[MD5.3282993CC7653671B1DFF4C118A34AAE] - 20/08/2013 - 08:44:23 ---A- - C:\Windows\Prefetch\REGEDIT.EXE-0D49B425.pf
O45 - LFCP:[MD5.913F92F035F25880E39A7589734985C8] - 20/08/2013 - 08:44:59 ---A- - C:\Windows\Prefetch\POSTBUILD.EXE-B1D905A3.pf
O45 - LFCP:[MD5.1D4BB2EDBB0FE5BEA1149F61E84BF10F] - 20/08/2013 - 08:47:46 ---A- - C:\Windows\Prefetch\IE4UINIT.EXE-693AF9DC.pf
O45 - LFCP:[MD5.6842F642236337CF0B89366FBC370BB2] - 20/08/2013 - 08:47:53 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-7562E4D4.pf
O45 - LFCP:[MD5.B3F98A2312EA5D223CDC1087C43B87DD] - 20/08/2013 - 08:47:55 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-5F579E97.pf
O45 - LFCP:[MD5.1A88AD83A71EEC2E82708558C5DF357E] - 20/08/2013 - 08:47:57 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-94E2F0DC.pf
O45 - LFCP:[MD5.4E81B210E7491AEE5EBB4841D0548999] - 20/08/2013 - 08:48:15 ---A- - C:\Windows\Prefetch\UPDATERSTARTUPUTILITY.EXE-68AA7E20.pf
O45 - LFCP:[MD5.FF6DF5C954D1C81C1E648F35A1DD38F5] - 20/08/2013 - 08:48:18 ---A- - C:\Windows\Prefetch\CLISTART.EXE-091A18CD.pf
O45 - LFCP:[MD5.17D55D84B86CC7FBF463CCC6E80A84C4] - 20/08/2013 - 08:48:22 ---A- - C:\Windows\Prefetch\RAVCPL64.EXE-4BB80510.pf
O45 - LFCP:[MD5.D253DA9F006AD5EFF476295A50F946D5] - 20/08/2013 - 08:48:34 ---A- - C:\Windows\Prefetch\MMDX64FX.EXE-2FA50F32.pf
O45 - LFCP:[MD5.B2383499309B26FE4246CE2542534C49] - 20/08/2013 - 08:48:41 ---A- - C:\Windows\Prefetch\LMWORKER.EXE-15877053.pf
O45 - LFCP:[MD5.B392221D5EAFD5ED0E46A8EC3B53602A] - 20/08/2013 - 08:48:48 ---A- - C:\Windows\Prefetch\TBNOTIFIER.EXE-41CB590D.pf
O45 - LFCP:[MD5.4B5EC38E7E359490062244670DABC9E3] - 20/08/2013 - 08:57:33 ---A- - C:\Windows\Prefetch\NEROSTARTSMART.EXE-0601C1F5.pf
O45 - LFCP:[MD5.E68859E614ADE8655A60275880A11812] - 20/08/2013 - 09:00:01 ---A- - C:\Windows\Prefetch\SDCLT.EXE-94EAE077.pf
O45 - LFCP:[MD5.EE9B01E938400335B10F5B6BE6B33328] - 20/08/2013 - 09:00:29 ---A- - C:\Windows\Prefetch\NCCHELPER.EXE-6B0924B5.pf
O45 - LFCP:[MD5.D72BE9213E96C143E1AC6F9BD774D0F2] - 20/08/2013 - 09:06:52 ---A- - C:\Windows\Prefetch\MSI3BEC.TMP-22B980F2.pf
O45 - LFCP:[MD5.276333145B67C8B5632218D9936AE645] - 20/08/2013 - 09:09:22 ---A- - C:\Windows\Prefetch\MSI8927.TMP-5B726E73.pf
O45 - LFCP:[MD5.4DAA616308B256BC7845AFDED41363E2] - 20/08/2013 - 09:09:32 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-15400FF5.pf
O45 - LFCP:[MD5.7E0080201ECFC93E44757E1CEB4D3EB0] - 20/08/2013 - 09:09:36 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-65F54219.pf
O45 - LFCP:[MD5.29CA0CC5661CAA9EFC2093F418E8D847] - 20/08/2013 - 09:09:40 ---A- - C:\Windows\Prefetch\JQS.EXE-4287F133.pf
O45 - LFCP:[MD5.10D5A7734B343415E2F3211E2DC4E081] - 20/08/2013 - 09:13:41 ---A- - C:\Windows\Prefetch\SETUP.EXE-0405CE5C.pf
O45 - LFCP:[MD5.F9ABF99AF56E80241C44843F720EFC22] - 20/08/2013 - 09:13:50 ---A- - C:\Windows\Prefetch\SETUP.EXE-E6ADAB85.pf
O45 - LFCP:[MD5.FECD43DA467B3645C5509DC88EBED057] - 20/08/2013 - 09:14:22 ---A- - C:\Windows\Prefetch\ISBEW64.EXE-19DC4725.pf
O45 - LFCP:[MD5.6FB7A274CEEFEE316EDC5A7CAAD6C1FA] - 20/08/2013 - 09:15:46 ---A- - C:\Windows\Prefetch\EXPLORER.EXE-54012F5E.pf
O45 - LFCP:[MD5.CFB84DA9E0377715483A7B3B6099A00C] - 20/08/2013 - 09:20:18 ---A- - C:\Windows\Prefetch\MSIPATCHREGFIX-AMD64.EXE-A753E878.pf
O45 - LFCP:[MD5.4A076E09CFF8E30A826519FCDB405CF2] - 20/08/2013 - 09:20:47 ---A- - C:\Windows\Prefetch\NDP40-KB2836939-X64.EXE-EF614328.pf
O45 - LFCP:[MD5.797DEC082B4C4C68F59CEEE21EBC19D6] - 20/08/2013 - 09:20:55 ---A- - C:\Windows\Prefetch\SETUP.EXE-7C5FB8A5.pf
O45 - LFCP:[MD5.34AC2A87356BC0F1CE8BB8186F9BB73D] - 20/08/2013 - 09:23:22 ---A- - C:\Windows\Prefetch\UNLODCTR.EXE-81DC9A3C.pf
O45 - LFCP:[MD5.3DF9C6291BCBE23B3300326D85A94038] - 20/08/2013 - 09:23:23 ---A- - C:\Windows\Prefetch\UNLODCTR.EXE-D291CC60.pf
O45 - LFCP:[MD5.5AC54EF7F8F303F07BF469EF56A21272] - 20/08/2013 - 09:26:09 ---A- - C:\Windows\Prefetch\NGEN.EXE-734C6620.pf
O45 - LFCP:[MD5.279CE25F9FDF3CA7D506C2C0CDE5C2D3] - 20/08/2013 - 15:03:05 ---A- - C:\Windows\Prefetch\MAKECAB.EXE-FC3CBE21.pf
O45 - LFCP:[MD5.96850EC2FBC6D37E768DA9628CEDE18D] - 20/08/2013 - 15:06:17 ---A- - C:\Windows\Prefetch\NCC.EXE-DFC3DD4D.pf
O45 - LFCP:[MD5.814F77EA4B43CE60182354D4E2947D18] - 20/08/2013 - 15:07:41 ---A- - C:\Windows\Prefetch\WUAPP.EXE-79F5B9BE.pf
O45 - LFCP:[MD5.955B98461FB3A0903CDE4E0E279DE5F6] - 20/08/2013 - 15:28:46 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-61AB3437.pf
O45 - LFCP:[MD5.4215760DBFC6EEC2139761E98F4D90C3] - 20/08/2013 - 15:56:43 ---A- - C:\Windows\Prefetch\ARMSVC.EXE-A68AEAE4.pf
O45 - LFCP:[MD5.EBA3594B1324D43FB894165F84D1C624] - 20/08/2013 - 16:25:25 ---A- - C:\Windows\Prefetch\EULA.EXE-4770E28E.pf
O45 - LFCP:[MD5.69D568256599E3EA2C7D8398D82E82F0] - 20/08/2013 - 16:26:06 ---A- - C:\Windows\Prefetch\ADOBEARM.EXE-F9223367.pf
O45 - LFCP:[MD5.162B65A5921A75806B9C48A2EBD16C5A] - 20/08/2013 - 16:26:56 ---A- - C:\Windows\Prefetch\ACRORD32.EXE-8F477773.pf
O45 - LFCP:[MD5.D7B00A1ECD44779D1B18FDC00287348F] - 20/08/2013 - 16:30:04 ---A- - C:\Windows\Prefetch\WMPLAYER.EXE-EBBA463B.pf
O45 - LFCP:[MD5.1A9E1337D396BAFB847F1E19C1FB68D9] - 20/08/2013 - 16:30:07 ---A- - C:\Windows\Prefetch\WMPSHARE.EXE-C19CDFD9.pf
O45 - LFCP:[MD5.9ABD4C2D4FDEB85F537419CED14BE0FB] - 20/08/2013 - 16:35:03 ---A- - C:\Windows\Prefetch\IEXPLORE.EXE-058FE8F5.pf
O45 - LFCP:[MD5.C03D4E3D7B790D67CB5225C7E3C4D402] - 20/08/2013 - 16:35:56 ---A- - C:\Windows\Prefetch\WERFAULT.EXE-661188F3.pf
O45 - LFCP:[MD5.6E7F8585762B7E52B56AFE9854F6D9BA] - 20/08/2013 - 16:36:06 ---A- - C:\Windows\Prefetch\IEXPLORE.EXE-A033F7A0.pf
O45 - LFCP:[MD5.C28360587E521FA621D824DF3B6729E7] - 20/08/2013 - 17:20:55 ---A- - C:\Windows\Prefetch\JUSCHED.EXE-D6111BFB.pf
O45 - LFCP:[MD5.AE5B71988907EBCE427DF8A17D4C7856] - 20/08/2013 - 17:20:57 ---A- - C:\Windows\Prefetch\READER_SL.EXE-FA6634D0.pf
O45 - LFCP:[MD5.7C3B847DAB1DB15F691B28ED40A9748C] - 20/08/2013 - 17:25:47 ---A- - C:\Windows\Prefetch\JAVA.EXE-AB789167.pf
O45 - LFCP:[MD5.69720E392907586274C3086C63DB03F7] - 20/08/2013 - 17:30:36 ---A- - C:\Windows\Prefetch\NOTIFICATION.EXE-05BD3AFC.pf
O45 - LFCP:[MD5.F6E63A8E09C1FCE5711E82F62D8556ED] - 20/08/2013 - 18:06:58 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-D9DCD0F3.pf
O45 - LFCP:[MD5.EE4A0A935AC0F1EF868AA1421269B482] - 20/08/2013 - 18:56:56 ---A- - C:\Windows\Prefetch\CTFMON.EXE-43603594.pf
O45 - LFCP:[MD5.F69ABC97C2F34E1702DFAD1766158B89] - 20/08/2013 - 20:03:49 ---A- - C:\Windows\Prefetch\AVAST.SETUP-0144B743.pf
O45 - LFCP:[MD5.BBE5A1E04641782B529D0AA834101486] - 20/08/2013 - 20:35:21 ---A- - C:\Windows\Prefetch\AgGlUAD_S-1-5-21-2686855252-2997517904-843402118-1000.db
O45 - LFCP:[MD5.37A972CBA77FB80E6BF2FD58B0BFBFDB] - 20/08/2013 - 20:35:22 ---A- - C:\Windows\Prefetch\AgGlUAD_P_S-1-5-21-2686855252-2997517904-843402118-1000.db
O45 - LFCP:[MD5.C3C941D184B4F1C76B0080D75B6FA4F1] - 20/08/2013 - 21:44:57 ---A- - C:\Windows\Prefetch\MSCONFIG.EXE-690F60C3.pf
O45 - LFCP:[MD5.9DA0BA7F08A63FA4A382C0B24C70C63C] - 20/08/2013 - 21:45:19 ---A- - C:\Windows\Prefetch\CCLEANER64.EXE-4469D777.pf  =>Piriform Ltd
O45 - LFCP:[MD5.2805456915772C3349811913F0EFD501] - 20/08/2013 - 21:45:31 ---A- - C:\Windows\Prefetch\WUAUCLT.EXE-5D573F0E.pf
O45 - LFCP:[MD5.01898037A8F0B0D3F47FF5CAC7DE469E] - 20/08/2013 - 21:45:35 ---A- - C:\Windows\Prefetch\MSIEXEC.EXE-8FFB1633.pf
O45 - LFCP:[MD5.88B69947B6C321B7F7D4425099A11226] - 20/08/2013 - 21:45:36 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-6A249820.pf
O45 - LFCP:[MD5.19A96F0F274D9F3D4FC14E01DD0A4DA4] - 20/08/2013 - 21:47:46 ---A- - C:\Windows\Prefetch\JAUREG.EXE-031516E3.pf
O45 - LFCP:[MD5.F2DA07DAEF56413B0382EEE414CD97C5] - 20/08/2013 - 21:52:37 ---A- - C:\Windows\Prefetch\VSSVC.EXE-6C8F0C66.pf
O45 - LFCP:[MD5.76AF6A87E5BEA99C25290E6A0A0F4E79] - 20/08/2013 - 21:55:29 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-A010D183.pf
O45 - LFCP:[MD5.ED5A68F7689186FF19778703F4378683] - 20/08/2013 - 21:59:08 ---A- - C:\Windows\Prefetch\MSIEXEC.EXE-CDBFC0F7.pf
O45 - LFCP:[MD5.634E0EC7F40DC827D40EB9DCA523EA72] - 20/08/2013 - 22:00:48 ---A- - C:\Windows\Prefetch\DRVINST.EXE-39D9EAC7.pf
O45 - LFCP:[MD5.FDBD26BD491F5713E77D0D5E5D390539] - 20/08/2013 - 22:09:15 ---A- - C:\Windows\Prefetch\AgCx_SC4.db
O45 - LFCP:[MD5.17B32B0700E776D1651D3BF79EDFCEC0] - 20/08/2013 - 22:10:02 ---A- - C:\Windows\Prefetch\TRUSTEDINSTALLER.EXE-766EFF52.pf
O45 - LFCP:[MD5.687352638F0F28AC0A024FA3C15D02C5] - 20/08/2013 - 23:30:44 ---A- - C:\Windows\Prefetch\WLIDSVC.EXE-8C6DAE9B.pf
O45 - LFCP:[MD5.B9B216CC452CB52168A5F6112E686719] - 20/08/2013 - 23:30:45 ---A- - C:\Windows\Prefetch\WLIDSVCM.EXE-A0B0D064.pf
O45 - LFCP:[MD5.DC6D726B3077EE7C8B1068F637C7731E] - 21/08/2013 - 00:40:14 ---A- - C:\Windows\Prefetch\CMD.EXE-0BD30981.pf
O45 - LFCP:[MD5.231B624573B3E0540E04256F9758820D] - 21/08/2013 - 00:40:32 ---A- - C:\Windows\Prefetch\PfSvPerfStats.bin
O45 - LFCP:[MD5.4267BC5DD133401C0F8A7CA482928FC6] - 21/08/2013 - 00:42:52 ---A- - C:\Windows\Prefetch\SEARCHINDEXER.EXE-1CF42BC6.pf
O45 - LFCP:[MD5.2642452FDF7A50A0C5F9A75D665B6CA2] - 21/08/2013 - 00:43:01 ---A- - C:\Windows\Prefetch\SETAPM.EXE-F455A16D.pf
O45 - LFCP:[MD5.FD973D1567E1180E887197763190AEF8] - 21/08/2013 - 00:43:04 ---A- - C:\Windows\Prefetch\WMPNETWK.EXE-F6E20E14.pf
O45 - LFCP:[MD5.C92092C19AC3DFED9C999D061E9C1245] - 21/08/2013 - 00:43:08 ---A- - C:\Windows\Prefetch\AVBUGREPORT.EXE-90230411.pf
O45 - LFCP:[MD5.F8724A130D386A18A2B5E6C228F41F02] - 21/08/2013 - 00:43:09 ---A- - C:\Windows\Prefetch\EPOWEREVENT.EXE-FE56A707.pf
O45 - LFCP:[MD5.093F4E192274311C52F994F45D01A4AA] - 21/08/2013 - 00:43:48 ---A- - C:\Windows\Prefetch\MSCORSVW.EXE-8CE1A322.pf
O45 - LFCP:[MD5.475E4F443387912DA130CEB7F00E645C] - 21/08/2013 - 00:43:50 ---A- - C:\Windows\Prefetch\MSCORSVW.EXE-16B291C4.pf
O45 - LFCP:[MD5.872C7AC6EF6FCC9E80980B9730B29E68] - 21/08/2013 - 00:44:03 ---A- - C:\Windows\Prefetch\NASVC.EXE-71531C34.pf
O45 - LFCP:[MD5.C96AC9CBC9009E23B83D31B6CA20D743] - 21/08/2013 - 00:44:04 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-F31BDE28.pf
O45 - LFCP:[MD5.53C801C16206D21EB190F700243E20DE] - 21/08/2013 - 00:45:44 ---A- - C:\Windows\Prefetch\WMIADAP.EXE-BB21CD77.pf
O45 - LFCP:[MD5.9269B337347E7453669D5258E296162A] - 21/08/2013 - 00:49:45 ---A- - C:\Windows\Prefetch\REGSVR32.EXE-B31EC963.pf
O45 - LFCP:[MD5.A7281925AE5F45311496A47DBE12489B] - 21/08/2013 - 00:55:16 ---A- - C:\Windows\Prefetch\WERMGR.EXE-F439C551.pf
O45 - LFCP:[MD5.9758CB68757C716835AC3BE7E9D7D0F3] - 21/08/2013 - 00:57:26 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-D49D3641.pf
O45 - LFCP:[MD5.3A20340892CE56BCAF4D0C7D1B3F9452] - 21/08/2013 - 01:15:09 ---A- - C:\Windows\Prefetch\FIREFOX.EXE-359C61A4.pf
O45 - LFCP:[MD5.DEAF837E2E45AA6036A9994408B8D464] - 21/08/2013 - 01:46:33 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-63B92852.pf
O45 - LFCP:[MD5.9BE187BDAFD670B205611BB4187FB288] - 21/08/2013 - 01:49:18 ---A- - C:\Windows\Prefetch\AUDIODG.EXE-AB22E9A6.pf
O45 - LFCP:[MD5.07616A9A88C0EC1B05064A0A55C2C346] - 21/08/2013 - 01:51:03 ---A- - C:\Windows\Prefetch\LOGONUI.EXE-F639BD7E.pf
O45 - LFCP:[MD5.2B75BDB4EAE96FEFB7FE6250FC2F33CF] - 21/08/2013 - 01:51:21 ---A- - C:\Windows\Prefetch\LMUTILPS32.EXE-34FC39D7.pf
O45 - LFCP:[MD5.5B069C899D2908473222BE54C734DF1A] - 21/08/2013 - 01:52:02 ---A- - C:\Windows\Prefetch\FLASHPLAYERUPDATESERVICE.EXE-0129C0B2.pf
O45 - LFCP:[MD5.C3615D14993E81F382AA1D7D207B4405] - 21/08/2013 - 01:52:11 ---A- - C:\Windows\Prefetch\TASKENG.EXE-35FA9C06.pf
O45 - LFCP:[MD5.66DF571CFC6112152CFC00906D25F0B1] - 21/08/2013 - 01:52:17 ---A- - C:\Windows\Prefetch\USERINIT.EXE-5114915C.pf
O45 - LFCP:[MD5.B5D0CEA5A69F9CEA76E2FCAAB2ECCF97] - 21/08/2013 - 01:52:21 ---A- - C:\Windows\Prefetch\DWM.EXE-314E93C5.pf
O45 - LFCP:[MD5.23C569E84EFBD22D532C78386BA1CE31] - 21/08/2013 - 01:52:29 ---A- - C:\Windows\Prefetch\SYNTPENH.EXE-8A564A20.pf
O45 - LFCP:[MD5.C95FD244FBC03E15B14302E1E18C3FE8] - 21/08/2013 - 01:52:30 ---A- - C:\Windows\Prefetch\RUNONCE.EXE-FB4EF753.pf
O45 - LFCP:[MD5.82E00E0B0567D171BD498CBFA88F2DA0] - 21/08/2013 - 01:52:31 ---A- - C:\Windows\Prefetch\EPOWERTRAY.EXE-856809ED.pf
O45 - LFCP:[MD5.E7F1E09C3DE1C7AB60D3588E6D00E96E] - 21/08/2013 - 01:52:35 ---A- - C:\Windows\Prefetch\ZATRAY.EXE-E9E7ECE6.pf
O45 - LFCP:[MD5.C4B9C684FAEB6A86B20C9F779F97857A] - 21/08/2013 - 01:52:37 ---A- - C:\Windows\Prefetch\WMIPRVSE.EXE-E8B8DD29.pf
O45 - LFCP:[MD5.6CE6C8DDC99C3C33661C7ED04E9F9C62] - 21/08/2013 - 01:52:40 ---A- - C:\Windows\Prefetch\AgRobust.db
O45 - LFCP:[MD5.9FE8BF04FE64F254EBC388973396472C] - 21/08/2013 - 01:52:41 ---A- - C:\Windows\Prefetch\AgGlGlobalHistory.db
O45 - LFCP:[MD5.25137C24E9D6A80067124C3CF21429B9] - 21/08/2013 - 01:52:42 ---A- - C:\Windows\Prefetch\AgGlFaultHistory.db
O45 - LFCP:[MD5.55DD401383E33D30E598ABD39EB7BB82] - 21/08/2013 - 01:52:43 ---A- - C:\Windows\Prefetch\AgGlFgAppHistory.db
O45 - LFCP:[MD5.7519DCC0A933428463E094540FD9612B] - 21/08/2013 - 01:52:44 ---A- - C:\Windows\Prefetch\AVASTUI.EXE-19622E35.pf
O45 - LFCP:[MD5.CD0AEED5D12C8C0D9038D6B8A6A3C73B] - 21/08/2013 - 01:52:44 ---A- - C:\Windows\Prefetch\SYNTPHELPER.EXE-C8D211B9.pf
O45 - LFCP:[MD5.CBAB2CB00ACCC0649A5259C2FBC0346F] - 21/08/2013 - 01:52:44 ---A- - C:\Windows\Prefetch\WMPNSCFG.EXE-18FC9E64.pf
O45 - LFCP:[MD5.D194C7028AF546E59DC68446E45CABCB] - 21/08/2013 - 01:52:48 ---A- - C:\Windows\Prefetch\KEYSCRAMBLER.EXE-A0FDBD4C.pf
O45 - LFCP:[MD5.DC61EE32D7DDF2E66F7088A06FB2867B] - 21/08/2013 - 01:53:26 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-6389524F.pf
O45 - LFCP:[MD5.12C640751E85FFEB43510DB08E6C38BA] - 21/08/2013 - 01:54:42 ---A- - C:\Windows\Prefetch\CONSENT.EXE-40419367.pf
O45 - LFCP:[MD5.0186D423C76C4264381F94A0E5EC94AC] - 21/08/2013 - 01:54:55 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-A0F5E092.pf
O45 - LFCP:[MD5.432161F9A5FB857D41F51D94D22FF7F6] - 21/08/2013 - 01:55:53 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-960426D8.pf
O45 - LFCP:[MD5.63A8B16DBD619E05BD48749DED7422E2] - 21/08/2013 - 01:55:56 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-4F1B3E7E.pf
O45 - LFCP:[MD5.141866E99CA711AC5AF37CCDF01905FA] - 21/08/2013 - 01:56:16 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-6E1A6101.pf
O45 - LFCP:[MD5.E14E92048B668F4564CE7828EDABD62F] - 21/08/2013 - 01:56:17 ---A- - C:\Windows\Prefetch\CONHOST.EXE-0C6456FB.pf
O45 - LFCP:[MD5.8ADCD12EF5FEF08AB9F5963B97FB3CF1] - 21/08/2013 - 01:56:20 ---A- - C:\Windows\Prefetch\SPPSVC.EXE-96070FE0.pf
O45 - LFCP:[MD5.02D6B0421F4F5AFD962EB1A01AD193F1] - 21/08/2013 - 01:58:50 ---A- - C:\Windows\Prefetch\EXPLORER.EXE-D5E97654.pf
O45 - LFCP:[MD5.65E798D714E0BBFF8A7222AF99470164] - 21/08/2013 - 01:58:59 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-4B6CB38A.pf
O45 - LFCP:[MD5.1976623364543C4B2539B709EAED8ECA] - 21/08/2013 - 01:59:13 ---A- - C:\Windows\Prefetch\SEARCHFILTERHOST.EXE-44162447.pf
O45 - LFCP:[MD5.E38C02374DCE134F71A82C76BC200568] - 21/08/2013 - 01:59:13 ---A- - C:\Windows\Prefetch\SEARCHPROTOCOLHOST.EXE-69C456C3.pf
~ Prefetcher: 143 Scanned in 00mn 05s



---\\ Déni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l’Éditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\System32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corp. - LiveSSP.) -- C:\Windows\System32\livessp.dll
~ LSA: 9 Scanned in 00mn 00s



---\\ Contrôle du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\System32\Drivers\rdpencdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
~ CSB: 13 Scanned in 00mn 00s



---\\ Recherche d'infection sur les pilotes (HKLM)(TDSD) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
~ TDSD: 2 Scanned in 00mn 00s



---\\ Enumération des clés de registre StartupReg (SMSR) (O53)
O53 - SMSR:HKLM\...\startupreg\Adobe ARM  [Key] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O53 - SMSR:HKLM\...\startupreg\AdobeAAMUpdater-1.0  [Key] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
O53 - SMSR:HKLM\...\startupreg\LManager  [Key] . (.Dritek System Inc. - Launch Manager.) -- C:\Program Files (x86)\Launch Manager\LManager.exe
O53 - SMSR:HKLM\...\startupreg\Norton Online Backup  [Key] . (...) -- C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\RTHDVCPL  [Key] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
O53 - SMSR:HKLM\...\startupreg\StartCCC  [Key] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O53 - SMSR:HKLM\...\startupreg\SymSilent  [Key] . (...) -- C:\Program Files (x86)\SymSilent\SymSilent.exe (.not file.)
~ SMSR Keys: 7 Scanned in 00mn 01s



---\\ Enumération des clés de registre SecurityProviders (MCSP) (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
~ MSCP: 2 Scanned in 00mn 00s



---\\ Enumération des clés de registre PoliciesSystem (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLinkedConnections"=1
~ MWPS: 17 Scanned in 00mn 00s



---\\ Enumération des clés de registre PoliciesExplorer (MWPE) (O56)
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0
~ MWPE Keys: 3 Scanned in 00mn 00s



---\\ Liste des pilotes du système (SDL) (O58)
O58 - SDL:[MD5.2F6B34B83843F0C5118B63AC634F5BF4] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys   [491088]
~ Drivers:  Scanned in 00mn 00s



---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)
O61 - LFC: 19/08/2013 - 18:56:54 -SHA- C:\Users\Thor\AppData\Roaming\Microsoft\Protect\CREDHIST   [24]
O61 - LFC: 19/08/2013 - 18:56:54 -SHA- C:\Users\Thor\AppData\Roaming\Microsoft\Protect\S-1-5-21-2686855252-2997517904-843402118-1000\3e6a8a23-c66d-4ed2-b2a8-7d4b2e0101de   [468]
O61 - LFC: 19/08/2013 - 18:56:54 -SHA- C:\Users\Thor\AppData\Roaming\Microsoft\Protect\S-1-5-21-2686855252-2997517904-843402118-1000\Preferred   [24]
O61 - LFC: 19/08/2013 - 18:57:21 ---A- C:\Users\Thor\AppData\Local\Temp\prodkey.htm   [6754]
O61 - LFC: 19/08/2013 - 18:57:21 ---A- C:\Users\Thor\AppData\Local\Temp\sym_eula.html   [28332]
O61 - LFC: 19/08/2013 - 18:57:21 ---A- C:\Users\Thor\AppData\Local\Temp\sym_info.xml   [364]
O61 - LFC: 19/08/2013 - 18:59:28 R-HA- C:\Users\Thor\Searches\Everywhere.search-ms   [248]
O61 - LFC: 19/08/2013 - 18:59:28 R-HA- C:\Users\Thor\Searches\Indexed Locations.search-ms   [248]
O61 - LFC: 19/08/2013 - 19:00:04 ---A- C:\Users\Thor\AppData\Roaming\Microsoft\Network\Connections\Pbk\_hiddenPbk\rasphone.pbk   [0]
O61 - LFC: 19/08/2013 - 19:00:05 ---A- C:\Users\Thor\AppData\Local\Temp\FXSAPIDebugLogFile.txt   [0]
O61 - LFC: 19/08/2013 - 19:24:02 ---A- C:\Users\Thor\AppData\Local\Temp\SYMEVENT.LOG   [4881]
O61 - LFC: 19/08/2013 - 19:31:03 ---A- C:\Users\Thor\AppData\Local\Temp\dd_vcredistMSI188F.txt   [436976]
O61 - LFC: 19/08/2013 - 19:31:50 ---A- C:\Users\Thor\AppData\Local\Temp\dd_vcredistUI188F.txt   [1696278]
O61 - LFC: 19/08/2013 - 20:21:23 ---A- C:\Users\Thor\AppData\Local\Temp\Invité.bmp   [49208]
O61 - LFC: 19/08/2013 - 20:21:23 ---A- C:\Users\Thor\AppData\Local\Temp\Paulo.bmp   [31832]
O61 - LFC: 19/08/2013 - 20:37:51 ---A- C:\Users\Thor\AppData\Local\ElevatedDiagnostics\2560293460\2013081919.000\results.xsl   [49097]
O61 - LFC: 19/08/2013 - 20:38:32 ---A- C:\Users\Thor\AppData\Local\ElevatedDiagnostics\2560293460\2013081919.000\ResultReport.xml   [2468]
O61 - LFC: 19/08/2013 - 20:38:32 ---A- C:\Users\Thor\AppData\Local\ElevatedDiagnostics\2560293460\2013081919.000\WindowsUpdateDiagnostic.0.debugreport.xml   [4516]
O61 - LFC: 19/08/2013 - 20:38:32 ---A- C:\Users\Thor\AppData\Local\ElevatedDiagnostics\2560293460\2013081919.000\results.xml   [390]
O61 - LFC: 19/08/2013 - 20:38:58 ---A- C:\Users\Thor\AppData\Local\ElevatedDiagnostics\2560293460\2013081919.001\results.xsl   [49097]
O61 - LFC: 19/08/2013 - 20:39:25 ---A- C:\Users\Thor\AppData\Local\ElevatedDiagnostics\2560293460\2013081919.001\ResultReport.xml   [2468]
O61 - LFC: 19/08/2013 - 20:39:25 ---A- C:\Users\Thor\AppData\Local\ElevatedDiagnostics\2560293460\2013081919.001\WindowsUpdateDiagnostic.0.debugreport.xml   [4516]
O61 - LFC: 19/08/2013 - 20:39:25 ---A- C:\Users\Thor\AppData\Local\ElevatedDiagnostics\2560293460\2013081919.001\results.xml   [390]
O61 - LFC: 19/08/2013 - 20:39:26 ---A- C:\Users\Thor\AppData\Local\ElevatedDiagnostics\2560293460\latest.cab   [9508]
O61 - LFC: 19/08/2013 - 21:23:34 ---A- C:\Users\Thor\AppData\Local\Temp\KB2600217_20130819_221327544-Microsoft .NET Framework 4 Client Profile-MSP0.txt   [8845736]
O61 - LFC: 19/08/2013 - 21:23:34 ---A- C:\Users\Thor\AppData\Local\Temp\KB2600217_20130819_221327544.html   [60196]
O61 - LFC: 19/08/2013 - 21:43:22 ---A- C:\Users\Thor\AppData\Local\Temp\KB2533523_20130819_223132772-Microsoft .NET Framework 4 Client Profile-MSP0.txt   [9380604]
O61 - LFC: 19/08/2013 - 21:43:24 ---A- C:\Users\Thor\AppData\Local\Temp\KB2533523_20130819_223132772.html   [56882]
O61 - LFC: 19/08/2013 - 21:45:57 ---A- C:\Users\Thor\AppData\Local\Temp\~DF4DBEEA860444DD8B.TMP   [65536]
O61 - LFC: 19/08/2013 - 21:48:43 ---A- C:\Users\Thor\AppData\Roaming\Adobe\AIR\Updater\Background\mimetype   [41]
O61 - LFC: 19/08/2013 - 21:48:58 ---A- C:\Users\Thor\AppData\Roaming\Adobe\AIR\Updater\Background\updater   [18066392]
O61 - LFC: 19/08/2013 - 21:49:01 ---A- C:\Users\Thor\AppData\Roaming\Adobe\AIR\Updater\Background\META-INF\signatures.xml   [14874]
O61 - LFC: 19/08/2013 - 21:49:02 ---A- C:\Users\Thor\AppData\Roaming\Adobe\AIR\CRLCache\5CB653B2DAF9459B6E8E3796503DD779BAD8DB50.crl   [341]
O61 - LFC: 19/08/2013 - 21:51:14 ---A- C:\Users\Thor\AppData\Roaming\Adobe\AIR\eulaAccepted   [1]
O61 - LFC: 19/08/2013 - 22:12:52 ---A- C:\Users\Thor\AppData\Local\Temp\KB2835393_20130819_225950101-Microsoft .NET Framework 4 Client Profile-MSP0.txt   [10150660]
O61 - LFC: 19/08/2013 - 22:12:52 ---A- C:\Users\Thor\AppData\Local\Temp\KB2835393_20130819_225950101.html   [66602]
O61 - LFC: 19/08/2013 - 22:13:17 ---A- C:\Users\Thor\AppData\Roaming\Skype\shared.lck   [0]
O61 - LFC: 19/08/2013 - 22:14:36 ---A- C:\Users\Thor\AppData\Local\Temp\SkypeSetup.exe   [31954536]
O61 - LFC: 19/08/2013 - 22:16:53 ---A- C:\Users\Thor\AppData\Roaming\Skype\shared_httpfe\queue.db   [40960]
O61 - LFC: 19/08/2013 - 22:16:54 ---A- C:\Users\Thor\AppData\Roaming\Skype\shared_dynco\dc.db   [1187840]
O61 - LFC: 19/08/2013 - 22:17:41 ---A- C:\Users\Thor\AppData\Roaming\Skype\shared.xml   [67219]
O61 - LFC: 19/08/2013 - 22:25:49 ---A- C:\Users\Thor\AppData\Local\Temp\wmplog00.sqm   [1258]
O61 - LFC: 19/08/2013 - 22:28:21 ---A- C:\Users\Thor\AppData\Local\Evernote\Evernote\Logs\AppLog_2013-08-19.txt   [562]
O61 - LFC: 19/08/2013 - 22:38:04 ---A- C:\Users\Thor\AppData\Local\Temp\KB2656351_20130819_233340327-Microsoft .NET Framework 4 Client Profile-MSP0.txt   [10681740]
O61 - LFC: 19/08/2013 - 22:38:04 ---A- C:\Users\Thor\AppData\Local\Temp\KB2656351_20130819_233340327.html   [59080]
O61 - LFC: 19/08/2013 - 22:48:30 ---A- C:\Users\Thor\AppData\Local\Temp\KB2804576_20130819_234328068-Microsoft .NET Framework 4 Client Profile-MSP0.txt   [11356014]
O61 - LFC: 19/08/2013 - 22:48:30 ---A- C:\Users\Thor\AppData\Local\Temp\KB2804576_20130819_234328068.html   [65518]
O61 - LFC: 19/08/2013 - 23:03:59 ---A- C:\Users\Thor\AppData\Local\Temp\KB2604121_20130819_235426139-Microsoft .NET Framework 4 Client Profile-MSP0.txt   [12062114]
O61 - LFC: 19/08/2013 - 23:03:59 ---A- C:\Users\Thor\AppData\Local\Temp\KB2604121_20130819_235426139.html   [59402]
O61 - LFC: 19/08/2013 - 23:07:21 ---A- C:\Users\Thor\Downloads\MicrosoftFixit50123.msi   [985600]
O61 - LFC: 19/08/2013 - 23:09:14 ---A- C:\Users\Thor\AppData\Local\Temp\MSIc75c0.LOG   [1142]
O61 - LFC: 19/08/2013 - 23:13:30 ---A- C:\Users\Thor\AppData\Local\Temp\KB2729449_20130820_000450452-Microsoft .NET Framework 4 Client Profile-MSP0.txt   [12650390]
O61 - LFC: 19/08/2013 - 23:13:30 ---A- C:\Users\Thor\AppData\Local\Temp\KB2729449_20130820_000450452.html   [58862]
O61 - LFC: 19/08/2013 - 23:46:09 ---A- C:\Users\Thor\AppData\Local\Temp\KB2840628v2_20130820_003748599-Microsoft .NET Framework 4 Client Profile-MSP0.txt   [13465304]
O61 - LFC: 19/08/2013 - 23:46:09 ---A- C:\Users\Thor\AppData\Local\Temp\KB2840628v2_20130820_003748599.html   [64898]
O61 - LFC: 19/08/2013 - 23:51:20 ---A- C:\Users\Thor\AppData\Local\Temp\KB2789642_20130820_004638423-Microsoft .NET Framework 4 Client Profile-MSP0.txt   [13931038]
O61 - LFC: 19/08/2013 - 23:51:21 ---A- C:\Users\Thor\AppData\Local\Temp\KB2789642_20130820_004638423.html   [65400]
O61 - LFC: 20/08/2013 - 00:20:40 ---A- C:\Users\Thor\AppData\Local\Temp\dd_clwireg.txt   [28529]
O61 - LFC: 20/08/2013 - 00:28:14 ---A- C:\Users\Thor\AppData\Local\Temp\KB2737019_20130820_012115223-Microsoft .NET Framework 4 Client Profile-MSP0.txt   [14587460]
O61 - LFC: 20/08/2013 - 00:28:15 ---A- C:\Users\Thor\AppData\Local\Temp\KB2737019_20130820_012115223.html   [59182]
O61 - LFC: 20/08/2013 - 00:37:12 ---A- C:\Users\Thor\AppData\Local\Temp\tmp-r66.xpi   [824302]
O61 - LFC: 20/08/2013 - 00:50:43 ---A- C:\Users\Thor\AppData\Roaming\Adobe\Acrobat\10.0\Security\services_rdrk.dat   [264]
O61 - LFC: 20/08/2013 - 00:50:46 -SHA- C:\Users\Thor\AppData\Local\Temp\Cookies\index.dat   [16384]
O61 - LFC: 20/08/2013 - 00:50:46 -SHA- C:\Users\Thor\AppData\Local\Temp\Fichiers Internet temporaires\Content.IE5\index.dat   [32768]
O61 - LFC: 20/08/2013 - 00:50:46 -SHA- C:\Users\Thor\AppData\Local\Temp\History\History.IE5\index.dat   [16384]
O61 - LFC: 20/08/2013 - 00:50:47 ---A- C:\Users\Thor\AppData\Roaming\Adobe\Acrobat\10.0\Security\services_rdri.dat   [24152]
O61 - LFC: 20/08/2013 - 00:51:06 ---A- C:\Users\Thor\AppData\Roaming\Adobe\Acrobat\10.0\Security\services_rdr.dat   [10240]
O61 - LFC: 20/08/2013 - 06:22:59 ---A- C:\Users\Thor\AppData\Local\Temp\APNSetup.exe   [489936]
O61 - LFC: 20/08/2013 - 08:21:33 ---A- C:\Users\Thor\AppData\Local\Temp\MSI7bef0.LOG   [362]
O61 - LFC: 20/08/2013 - 08:37:39 ----- C:\Users\Thor\AppData\Local\Temp\{B42789A9-6C4C-4B40-8BEB-4ED96D3D6D0B}\ISBEW64.exe   [120240]
O61 - LFC: 20/08/2013 - 08:48:00 ---A- C:\Users\Thor\Links\RecentPlaces.lnk   [383]
O61 - LFC: 20/08/2013 - 08:48:01 ---A- C:\Users\Thor\Links\Desktop.lnk   [444]
O61 - LFC: 20/08/2013 - 08:48:01 ---A- C:\Users\Thor\Links\Downloads.lnk   [895]
O61 - LFC: 20/08/2013 - 08:48:31 ---A- C:\Users\Thor\AppData\Local\GDIPFONTCACHEV1.DAT   [59280]
O61 - LFC: 20/08/2013 - 08:48:54 ---A- C:\Users\Thor\AppData\Local\Temp\~DF807CCBE648CBF524.TMP   [65536]
O61 - LFC: 20/08/2013 - 08:50:31 ---A- C:\Users\Thor\AppData\Roaming\Adobe\Acrobat\11.0\Security\services_rdrk.dat   [264]
O61 - LFC: 20/08/2013 - 08:50:39 ---A- C:\Users\Thor\AppData\Roaming\Adobe\Acrobat\11.0\Security\services_rdri.dat   [24152]
O61 - LFC: 20/08/2013 - 08:53:35 ---A- C:\Users\Thor\AppData\Roaming\Adobe\Acrobat\11.0\Security\CRLCache\48B76449F3D5FEFA1133AA805E420F0FCA643651.crl   [898]
O61 - LFC: 20/08/2013 - 08:53:35 ---A- C:\Users\Thor\AppData\Roaming\Adobe\Acrobat\11.0\Security\CRLCache\A9B8213768ADC68AF64FCC6409E8BE414726687F.crl   [36163]
O61 - LFC: 20/08/2013 - 08:53:36 ---A- C:\Users\Thor\AppData\Roaming\Adobe\Acrobat\11.0\Security\addressbook.acrodata   [5399]
O61 - LFC: 20/08/2013 - 08:55:15 ---A- C:\Users\Thor\Documents\Documents tous formats\Generic_User_Guide.pdf   [97164728]
O61 - LFC: 20/08/2013 - 08:55:25 ---A- C:\Users\Thor\AppData\Roaming\Adobe\Acrobat\11.0\JSCache\GlobData   [22]
O61 - LFC: 20/08/2013 - 08:55:25 ---A- C:\Users\Thor\AppData\Roaming\Adobe\Acrobat\11.0\JSCache\GlobSettings   [24]
O61 - LFC: 20/08/2013 - 08:55:25 ---A- C:\Users\Thor\AppData\Roaming\Adobe\Acrobat\11.0\Security\services_rdr.dat   [10240]
O61 - LFC: 20/08/2013 - 08:55:26 ---A- C:\Users\Thor\AppData\Roaming\Adobe\Acrobat\11.0\TMGrpPrm.sav   [54]
O61 - LFC: 20/08/2013 - 08:55:27 ---A- C:\Users\Thor\AppData\Roaming\Adobe\Acrobat\11.0\TMDocs.sav   [36]
O61 - LFC: 20/08/2013 - 08:57:49 ---A- C:\Users\Thor\AppData\Roaming\Nero\Nero 10\OnlineServices\FeedManager\Feeds.db   [27648]
O61 - LFC: 20/08/2013 - 09:19:15 ---A- C:\Users\Thor\Documents\Documents tous formats\free_av_8.0.1489_2013-8-20_10-19-11.avastconfig   [7051]
O61 - LFC: 20/08/2013 - 14:14:47 ---A- C:\Users\Thor\AppData\Local\Temp\Quarantine.exe   [327903]
O61 - LFC: 20/08/2013 - 15:06:08 ---A- C:\Users\Thor\AppData\Local\Temp\~DFA38EA1B49392A1F9.TMP   [32768]
O61 - LFC: 20/08/2013 - 15:17:54 ---A- C:\Users\Thor\AppData\Local\Temp\jinstall.cfg   [1154]
O61 - LFC: 20/08/2013 - 15:34:54 ---A- C:\Users\Thor\AppData\Local\Temp\tmp-5ao.xpi   [1312907]
O61 - LFC: 20/08/2013 - 17:17:03 ---A- C:\Users\Thor\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-2013-08-20 (17-56-17).txt   [2110]
O61 - LFC: 20/08/2013 - 17:22:19 ---A- C:\Users\Thor\AppData\Local\Temp\~DFDBEA1AF87C414FB1.TMP   [65536]
O61 - LFC: 20/08/2013 - 17:44:37 ---A- C:\Users\Thor\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-2013-08-20 (18-43-16).txt   [2124]
O61 - LFC: 20/08/2013 - 18:00:46 ---A- C:\Users\Thor\AppData\Local\Temp\Thor.bmp   [31832]
O61 - LFC: 20/08/2013 - 18:00:46 ---A- C:\Users\Thor\Contacts\Thor.contact   [44595]
O61 - LFC: 20/08/2013 - 18:03:01 ---A- C:\Users\Thor\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-2013-08-20 (18-48-15).txt   [2126]
O61 - LFC: 20/08/2013 - 18:21:06 ---A- C:\Users\Thor\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-2013-08-20 (19-13-21).txt   [2124]
O61 - LFC: 20/08/2013 - 19:17:37 ---A- C:\Users\Thor\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-2013-08-20 (19-58-10).txt   [2110]
O61 - LFC: 20/08/2013 - 21:47:36 ---A- C:\Users\Thor\AppData\Local\Temp\AUCHECK_PARSER.txt   [732]
O61 - LFC: 20/08/2013 - 22:04:53 --HA- C:\Users\Thor\AppData\Local\IconCache.db   [1600550]
O61 - LFC: 21/08/2013 - 00:53:06 ---A- C:\Users\Thor\AppData\Local\Temp\~DFC73C30AF21CCF03E.TMP   [393216]
O61 - LFC: 21/08/2013 - 01:14:13 ---A- C:\Users\Thor\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-2013-08-21 (01-53-54).txt   [2170]
~ 50 Fichiers temporaires (Temporary files)
~ 1 Fichiers cookies (Cookies files)
~ Files: 104 Scanned in 03mn 56s



---\\ Liste des outils de désinfection (LATC) (O63)
O63 - Logiciel: ZHPDiag 2013 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
~ ADS:  Scanned in 00mn 00s



---\\ Liste les services legacy du registre (LALS) (O64)
O64 - Services: CurCS - 28/12/2011 - C:\Windows\system32\drivers\afd.sys (AFD)  .(.Microsoft Corporation - Ancillary Function Driver for WinSock.) - LEGACY_AFD
O64 - Services: CurCS - 24/05/2011 - C:\Windows\System32\DRIVERS\atikmdag.sys (amdkmdag)  .(.ATI Technologies Inc. - ATI Radeon Kernel Mode Driver.) - LEGACY_AMDKMDAG
O64 - Services: CurCS - 09/05/2013 - C:\Windows\System32\Drivers\aswFsBlk.sys (aswFsBlk)  .(.AVAST Software - avast! File System Access Blocking Driver.) - LEGACY_ASWFSBLK
O64 - Services: CurCS - 09/05/2013 - C:\Windows\system32\drivers\aswMonFlt.sys (aswMonFlt)  .(.AVAST Software - avast! File System Minifilter for Windows 2.) - LEGACY_ASWMONFLT
O64 - Services: CurCS - 09/05/2013 - C:\Windows\system32\Drivers\aswrdr2.sys (aswRdr)  .(.AVAST Software - avast! WFP Redirect Driver.) - LEGACY_ASWRDR
O64 - Services: CurCS - 09/05/2013 - Pas de propriétaire (aswRvrt)  .(...) - LEGACY_ASWRVRT
O64 - Services: CurCS - 19/08/2013 - C:\Windows\System32\Drivers\aswSnx.sys (aswSnx)  .(.AVAST Software - avast! Virtualization Driver.) - LEGACY_ASWSNX
O64 - Services: CurCS - 19/08/2013 - C:\Windows\System32\Drivers\aswSP.sys (aswSP)  .(.AVAST Software - avast! self protection module.) - LEGACY_ASWSP
O64 - Services: CurCS - 09/05/2013 - C:\Windows\System32\Drivers\aswTdi.sys (aswTdi)  .(.AVAST Software - avast! TDI Filter Driver.) - LEGACY_ASWTDI
O64 - Services: CurCS - 19/08/2013 - Pas de propriétaire (aswVmm)  .(...) - LEGACY_ASWVMM
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\Drivers\Beep.sys (Beep)  .(.Microsoft Corporation - BEEP Driver.) - LEGACY_BEEP
O64 - Services: CurCS - 04/07/2012 - C:\Windows\system32\browser.dll (bowser)  .(.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) - LEGACY_BOWSER
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\clfs.sys (CLFS)  .(.Microsoft Corporation - Common Log File System Driver.) - LEGACY_CLFS
O64 - Services: CurCS - 24/08/2012 - C:\Windows\System32\Drivers\cng.sys (CNG)  .(.Microsoft Corporation - Kernel Cryptography, Next Generation.) - LEGACY_CNG
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\drivers\dfsc.sys (DfsC)  .(.Microsoft Corporation - DFS Namespace Client Driver.) - LEGACY_DFSC
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\discache.sys (discache)  .(.Microsoft Corporation - System Indexer/Cache Driver.) - LEGACY_DISCACHE
O64 - Services: CurCS - 10/04/2013 - C:\Windows\system32\drivers\dxgkrnl.sys (DXGKrnl)  .(.Microsoft Corporation - DirectX Graphics Kernel.) - LEGACY_DXGKRNL
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\Drivers\exfat.sys (exfat)  .(.Microsoft Corporation - Microsoft Extended FAT File System.) - LEGACY_EXFAT
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\fileinfo.sys (FileInfo)  .(.Microsoft Corporation - FileInfo Filter Driver.) - LEGACY_FILEINFO
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\drivers\fltmgr.sys (FltMgr)  .(.Microsoft Corporation - Gestionnaire de filtres de système de fichi.) - LEGACY_FLTMGR
O64 - Services: CurCS - 24/01/2013 - C:\Windows\system32\drivers\fvevol.sys (fvevol)  .(.Microsoft Corporation - BitLocker Drive Encryption Driver.) - LEGACY_FVEVOL
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\drivers\http.sys (HTTP)  .(.Microsoft Corporation - HTTP Pile du protocole.) - LEGACY_HTTP
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\drivers\hwpolicy.sys (hwpolicy)  .(.Microsoft Corporation - Hardware Policy Driver.) - LEGACY_HWPOLICY
O64 - Services: CurCS - 02/06/2012 - C:\Windows\System32\Drivers\ksecdd.sys (KSecDD)  .(.Microsoft Corporation - Kernel Security Support Provider Interface.) - LEGACY_KSECDD
O64 - Services: CurCS - 24/08/2012 - C:\Windows\System32\Drivers\ksecpkg.sys (KSecPkg)  .(.Microsoft Corporation - Kernel Security Support Provider Interface.) - LEGACY_KSECPKG
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\lltdio.sys (lltdio)  .(.Microsoft Corporation - Link-Layer Topology Mapper I/O Driver.) - LEGACY_LLTDIO
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\luafv.sys (luafv)  .(.Microsoft Corporation - Pilote de filtre de virtualisation de fichi.) - LEGACY_LUAFV
O64 - Services: CurCS - 04/04/2013 - C:\Windows\system32\drivers\mbam.sys (MBAMProtector)  .(.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - LEGACY_MBAMPROTECTOR
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\drivers\mountmgr.sys (mountmgr)  .(.Microsoft Corporation - Gestionnaire des points de montage.) - LEGACY_MOUNTMGR
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\FirewallAPI.dll (mpsdrv)  .(.Microsoft Corporation - API du Pare-feu Windows.) - LEGACY_MPSDRV
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\wkssvc.dll (mrxsmb)  .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\wkssvc.dll (mrxsmb10)  .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB10
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\wkssvc.dll (mrxsmb20)  .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB20
O64 - Services: CurCS - 21/11/2010 - C:\Windows\System32\drivers\msahci.sys (msahci)  .(.Microsoft Corporation - MS AHCI 1.0 Standard Driver.) - LEGACY_MSAHCI
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\msisadrv.sys (msisadrv)  .(.Microsoft Corporation - ISA Driver.) - LEGACY_MSISADRV
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\mup.sys (Mup)  .(.Microsoft Corporation - Multiple UNC Provider Driver.) - LEGACY_MUP
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\nwifi.sys (NativeWifiP)  .(.Microsoft Corporation - Pilote de miniport WiFi natif.) - LEGACY_NATIVEWIFIP
O64 - Services: CurCS - 22/08/2012 - C:\Windows\system32\drivers\ndis.sys (NDIS)  .(.Microsoft Corporation - Pilote NDIS 6.20.) - LEGACY_NDIS
O64 - Services: CurCS - 21/11/2010 - C:\Windows\System32\DRIVERS\ndisuio.sys (Ndisuio)  .(.Microsoft Corporation - Pilote d’E/S du mode utilisateur NDIS.) - LEGACY_NDISUIO
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\netbios.sys (NetBIOS)  .(.Microsoft Corporation - NetBIOS interface driver.) - LEGACY_NETBIOS
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\drivers\netbt.sys (NetBT)  .(.Microsoft Corporation - MBT Transport driver.) - LEGACY_NETBT
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy)  .(.Microsoft Corporation - NSI Proxy.) - LEGACY_NSIPROXY
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\pcw.sys (pcw)  .(.Microsoft Corporation - Performance Counters for Windows Driver.) - LEGACY_PCW
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\peauth.sys (PEAUTH)  .(.Microsoft Corporation - Protected Environment Authentication and Au.) - LEGACY_PEAUTH
O64 - Services: CurCS - 21/11/2010 - C:\Windows\System32\drivers\pacer.sys (Psched)  .(.Microsoft Corporation - Planificateur de paquets QoS.) - LEGACY_PSCHED
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\wkssvc.dll (rdbss)  .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_RDBSS
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD)  .(.Microsoft Corporation - RDP Miniport.) - LEGACY_RDPCDD
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD)  .(.Microsoft Corporation - RDP Encoder Miniport.) - LEGACY_RDPENCDD
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP)  .(.Microsoft Corporation - RDP Reflector Driver Miniport.) - LEGACY_RDPREFMP
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\rspndr.sys (rspndr)  .(.Microsoft Corporation - Link-Layer Topology Responder Driver for ND.) - LEGACY_RSPNDR
O64 - Services: CurCS - 10/06/2009 - C:\Windows\System32\Drivers\secdrv.sys (secdrv)  .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\Drivers\spldr.sys (spldr)  .(.Microsoft Corporation - loader for security processor.) - LEGACY_SPLDR
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\srvsvc.dll (srv)  .(.Microsoft Corporation - DLL du service Serveur.) - LEGACY_SRV
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\srvsvc.dll (srv2)  .(.Microsoft Corporation - DLL du service Serveur.) - LEGACY_SRV2
O64 - Services: CurCS - 14/07/2011 - C:\Windows\System32\DRIVERS\srvnet.sys (srvnet)  .(.Microsoft Corporation - Server Network driver.) - LEGACY_SRVNET
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\tcpipcfg.dll (Tcpip)  .(.Microsoft Corporation - Objets de configuration du réseau.) - LEGACY_TCPIP
O64 - Services: CurCS - 03/10/2012 - C:\Windows\System32\drivers\tcpipreg.sys (tcpipreg)  .(.Microsoft Corporation - TCP/IP Registry Compatibility Driver.) - LEGACY_TCPIPREG
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\tcpipcfg.dll (tdx)  .(.Microsoft Corporation - Objets de configuration du réseau.) - LEGACY_TDX
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\vga.sys (VgaSave)  .(.Microsoft Corporation - VGA/Super VGA Video Driver.) - LEGACY_VGASAVE
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\drivers\volmgrx.sys (volmgrx)  .(.Microsoft Corporation - Pilote d’extension du gestionnaire de volum.) - LEGACY_VOLMGRX
O64 - Services: CurCS - 21/11/2010 - C:\Windows\System32\drivers\volsnap.sys (volsnap)  .(.Microsoft Corporation - Pilote de cliché instantané du volume.) - LEGACY_VOLSNAP
O64 - Services: CurCS - 13/06/2013 - C:\Windows\System32\DRIVERS\vsdatant.sys (Vsdatant)  .(.Check Point Software Technologies LTD - ZoneAlarm Firewalling Driver.) - LEGACY_VSDATANT
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\vwififlt.sys (vwififlt)  .(.Microsoft Corporation - Virtual WiFi Filter Driver.) - LEGACY_VWIFIFLT
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\rascfg.dll (Wanarpv6)  .(.Microsoft Corporation - Objets de configuration RAS.) - LEGACY_WANARPV6
O64 - Services: CurCS - 26/07/2012 - C:\Windows\System32\drivers\Wdf01000.sys (Wdf01000)  .(.Microsoft Corporation - Runtime de l’infrastructure de pilotes en m.) - LEGACY_WDF01000
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\wfplwf.sys (WfpLwf)  .(.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - LEGACY_WFPLWF
O64 - Services: CurCS - 26/07/2012 - C:\Windows\System32\drivers\WudfPf.sys (WudfPf)  .(.Microsoft Corporation - Windows Driver Foundation - User-mode Drive.) - LEGACY_WUDFPF
~ Legacy: 114 Scanned in 00mn 04s



---\\ Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> <evtfile>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> <evtfile>[HKCR\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
~ FASS Keys: 19 Scanned in 00mn 00s



---\\ Menu de démarrage Internet (SMI) (O68)
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
~ Keys:  Scanned in 00mn 00s



---\\ Enumère les service demarrés par Svchost (SSS) (O83)
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll   [72192]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll   [80384]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll   [80384]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll   [236032]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll   [777728]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll   [853504]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll   [679424]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’accès distant.) -- C:\Windows\System32\rasauto.dll   [99328]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll   [344064]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll   [97792]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements système (SENS).) -- C:\Windows\System32\sens.dll   [64512]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll   [359424]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM).) -- C:\Windows\System32\tapisrv.dll   [316928]
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du serveur hôte de session Burea.) -- C:\Windows\System32\termsrv.dll   [680960]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll   [2428952]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\Windows\System32\qmgr.dll   [849920]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll   [370688]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur un réseau IPv4..) -- C:\Windows\System32\iphlpsvc.dll   [569344]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll   [30720]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll   [70144]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll   [156672]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédias.) -- C:\Windows\System32\mmcss.dll   [67584]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll   [242688]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à distance.) -- C:\Windows\System32\sessenv.dll   [121856]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll   [136704]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll   [111104]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll   [1110016]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\kmsvc.dll   [90624]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll   [84480]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll   [209920]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll   [44544]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll   [100864]
~ Services: 32 Scanned in 00mn 02s



---\\ Recherche particulière à la racine du système (SPRF) (O84)
[MD5.18AB185EEF2F4892C94CD8A543123340] [SPRF][20/08/2013] (.Ask Partner Network - Stub Installer.) -- C:\Users\Thor\AppData\Local\Temp\APNSetup.exe   [489936]
[MD5.4681E5744AD0338A02603B9E3FBE122F] [SPRF][20/08/2013] (...) -- C:\Users\Thor\AppData\Local\Temp\Quarantine.exe   [327903]
[MD5.1B1D86A574E842946E5D5317892B45C5] [SPRF][19/08/2013] (.Skype Technologies S.A. - Skype.) -- C:\Users\Thor\AppData\Local\Temp\SkypeSetup.exe   [31954536]
~ Files:  Scanned in 00mn 12s



---\\ Liste des exceptions du parefeu (FirewallRules) (O87)
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-OUT-Active" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-In-EdgeScope-Active" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-SSDPSrv-Out-TCP-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-SSDPSrv-In-TCP-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-SSDPSrv-Out-UDP-Active" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-SSDPSrv-In-UDP-Active" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-Out-TCP-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-In-TCP-EdgeScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-DCOM-In-TCP-NoScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-RAServer-Out-TCP-NoScope-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur COM d’assistance à distance Windows.) -- C:\Windows\system32\raserver.exe
O87 - FAEL: "RemoteAssistance-RAServer-In-TCP-NoScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur COM d’assistance à distance Windows.) -- C:\Windows\system32\raserver.exe
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-OUT" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-In-EdgeScope" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-In-TCP-EdgeScope" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteFwAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteFwAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteFwAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteFwAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-KTMRM-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-KTMRM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "RemoteTask-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteTask-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteTask-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteTask-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteSvcAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteSvcAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe
O87 - FAEL: "RemoteSvcAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteSvcAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDPHOST-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDPHOST-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-UPnP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDPHOST-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDPHOST-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-UPnP-Out-TCP-Active" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-ASYNC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) -- C:\Windows\system32\wbem\unsecapp.exe
O87 - FAEL: "WMI-WINMGMT-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-WINMGMT-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-ASYNC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) -- C:\Windows\system32\wbem\unsecapp.exe
O87 - FAEL: "WMI-WINMGMT-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-WINMGMT-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MsiScsi-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MsiScsi-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MsiScsi-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MsiScsi-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PerfLogsAlerts-DCOM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PerfLogsAlerts-PLASrv-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Performance Logs and Alerts DCOM Server.) -- C:\Windows\system32\plasrv.exe
O87 - FAEL: "PerfLogsAlerts-DCOM-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PerfLogsAlerts-PLASrv-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Performance Logs and Alerts DCOM Server.) -- C:\Windows\system32\plasrv.exe
O87 - FAEL: "CoreNet-GP-LSASS-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Local Security Authority Process.) -- C:\Windows\system32\lsass.exe
O87 - FAEL: "CoreNet-DNS-Out-UDP" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-GP-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-IPHTTPS-Out" | Out - None - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-Teredo-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-Teredo-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DHCPV6-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DHCPV6-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DHCP-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DHCP-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "FPS-LLMNR-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "FPS-LLMNR-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "FPS-SpoolSvc-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "FPS-SpoolSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "Collab-PNRP-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Collab-PNRP-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Collab-PNRP-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Collab-PNRP-In-UDP" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Collab-P2PHost-WSD-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "Collab-P2PHost-WSD-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "Collab-P2PHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "Collab-P2PHost-In-TCP" | In - None - P6 - TRUE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "RVM-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RVM-VDSLDR-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Virtual Disk Service Loader.) -- C:\Windows\system32\vdsldr.exe
O87 - FAEL: "RVM-VDS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service de disque virtuel.) -- C:\Windows\system32\vds.exe
O87 - FAEL: "RVM-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RVM-VDSLDR-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Virtual Disk Service Loader.) -- C:\Windows\system32\vdsldr.exe
O87 - FAEL: "RVM-VDS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service de disque virtuel.) -- C:\Windows\system32\vds.exe
O87 - FAEL: "PNRPMNRS-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PNRPMNRS-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PNRPMNRS-PNRP-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PNRPMNRS-PNRP-In-UDP" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-UDP3540-Out" | Out - Private - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-UDP3540-In" | In - Private - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-TCP3587-Out" | Out - Private - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-TCP3587-In" | In - Private - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-UPnP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-UDP" |Out - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-UDP" |In - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-WMP-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-WMP-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-WMP-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-UDP-NoScope" |Out - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-UDP-NoScope" |In - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-WMP-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-WMP-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-WMP-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMPNSS-QWave-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMP-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "WMP-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "SNMPTRAP-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Interruption SNMP.) -- C:\Windows\system32\snmptrap.exe
O87 - FAEL: "SNMPTRAP-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Interruption SNMP.) -- C:\Windows\system32\snmptrap.exe
O87 - FAEL: "MCX-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe
O87 - FAEL: "MCX-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe
O87 - FAEL: "MCX-QWave-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-QWave-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-QWave-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-QWave-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe
O87 - FAEL: "MCX-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe
O87 - FAEL: "MCX-MCX2SVC-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-Prov-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - MCX2 Provisioning library.) -- C:\Windows\ehome\mcx2prov.exe
O87 - FAEL: "MCX-PlayTo-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-McrMgr-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Media Center Extender Manager.) -- C:\Windows\ehome\mcrmgr.exe
O87 - FAEL: "MCX-PlayTo-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-FDPHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WPDMTP-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe
O87 - FAEL: "WPDMTP-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe
O87 - FAEL: "WPDMTP-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WPDMTP-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WPDMTP-UPnPHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WPDMTP-UPnP-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NetPres-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-WSD-In-UDP" |In - None - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-WSD-Out-UDP" |Out - None - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "{1FAAE296-8522-49FB-8FF5-EF2AC9FD6353}" | In - None - P6 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
O87 - FAEL: "{19C88167-6EAC-4381-A221-F61ED5900928}" | In - None - P6 - TRUE | .(.Microsoft Corporation - Windows Live Communications Platform.) -- C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
O87 - FAEL: "{763A9477-0A73-487A-99EF-C2AEC7703AEB}" | In - None - P6 - TRUE | .(.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
O87 - FAEL: "{C73442B0-55C9-4659-8A30-BD7E84D220F5}" | In - None - P6 - TRUE | .(.Microsoft Corporation - Mesh Operating Environment.) -- C:\Program Files (x86)\Windows Live\Mesh\MOE.exe
O87 - FAEL: "{10231541-4D04-4D0F-9366-34EB827C73D4}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "{DF053A96-270E-438F-8620-EF39AC992169}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "{337A8FA3-77A5-4687-85B2-259D61B4B481}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "{89E4FC0C-1ACE-472D-B1E0-973C15FB1EF2}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{0D2EB5C1-45C7-4A7D-A779-78736796AA43}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{35A269B6-C8A0-412D-B1C9-E9B154C71339}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{CF477618-331A-434A-9E38-70BBED1A5C8A}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{CC23E5C4-A022-4FEF-9210-70F7A67C8E7A}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{19815715-F0F2-4E0C-BEE1-CADA2BBDC8DC}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{EC4F6403-2B85-4704-BA27-7F269AFD4BA9}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "{FF20F483-865F-47B5-876A-78D25925C52B}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "{1A9C1AAD-A058-47CD-B595-946900CC8872}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O87 - FAEL: "{3CD9A14E-4665-4E92-9D45-D1D67A6A88B7}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{8B2B6CB2-2D64-48C7-82DF-AE2430AD7213}" |Out - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{FE800344-F9E4-4313-8D7D-814FA36C1694}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{04648D4A-3517-4DF5-80A8-28DB3D2C9227}" |Out - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{688CEDB6-3A2F-49E6-BCBE-CF0730E7102D}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteDesktop-UserMode-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
~ Firewall: 189 Scanned in 00mn 12s



---\\ Enumère les codes produits des logiciels (PUC) (O90)
O90 - PUC: "00004159070000000000000000F01FEC" . (.Microsoft Office 2010.) -- C:\Windows\Installer\{95140000-0070-0000-0000-0000000FF1CE}\oobeicon.exe
O90 - PUC: "0396BA86FFB56FF429B315A61989F46E" . (.Nero BackItUp 10.) -- C:\Windows\Installer\{68AB6930-5BFF-4FF6-923B-516A91984FE6}\ARPPRODUCTICON.exe
O90 - PUC: "076CFAAAB965F2A4284B2449E5D03EFE" . (.Windows Live Writer.) -- C:\Windows\Installer\{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}\ApplicationIcon.ico
O90 - PUC: "08512982BB4E0E11F97DC11CED0FC7EB" . (.Evernote v. 4.5.1.) -- C:\Windows\Installer\{28921580-E4BB-11E0-9FD7-1CC1DEF07CBE}\Evernote.ico
O90 - PUC: "0C69D82C09A6E9540A776A07F6E40CCF" . (.Bing Bar.) -- C:\Windows\Installer\{C28D96C0-6A90-459E-A077-A6706F4EC0FC}\icon_installer_ico  =>Toolbar.Bing
O90 - PUC: "11F12B5E3396B0E42AC597363E0CD711" . (.Windows Live Messenger.) -- C:\Windows\Installer\{E5B21F11-6933-4E0B-A25C-7963E3C07D11}\MsblIco.Exe
O90 - PUC: "121E2D80A6F7BE3479DF26B944094330" . (.Microsoft_VC90_CRT_x86.) -- C:\Windows\Installer\{08D2E121-7F6A-43EB-97FD-629B44903403}\ARPPRODUCTICON.exe
O90 - PUC: "1D034B0FAA6BD374B960AAD30DF10D8B" . (.Microsoft SQL Server 2005 Compact Edition [ENU].) -- C:\Windows\Installer\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}\ProductIcon
O90 - PUC: "20B91A1DE71869244AB57058F37DD475" . (.Microsoft_VC80_MFC_x86.) -- C:\Windows\Installer\{D1A19B02-817E-4296-A45B-07853FD74D57}\ARPPRODUCTICON.exe
O90 - PUC: "25BBB29DFF28DE24A8C3E460F249A47B" . (.Microsoft_VC80_MFCLOC_x86.) -- C:\Windows\Installer\{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}\ARPPRODUCTICON.exe
O90 - PUC: "279A5E3D51A9D724EA8718185ADF49C3" . (.eBay Worldwide.) -- c:\Windows\Installer\{D3E5A972-9A15-427D-AE78-8181A5FD943C}\_6FEFF9B68218417F98F549.exe
O90 - PUC: "2C5E59818F9A7574DAB7E0E98AABC164" . (.Catalyst Control Center - Branding.) -- C:\Windows\Installer\{1895E5C2-A9F8-4757-AD7B-0E9EA8BA1C46}\ARPPRODUCTICON.exe
O90 - PUC: "3910550722C1C544F84A65E451D51B7A" . (.Nero Express 10.) -- C:\Windows\Installer\{70550193-1C22-445C-8FA4-564E155DB1A7}\ARPPRODUCTICON.exe
O90 - PUC: "3DB4FB266F1B2AF43888CC6074CAFB68" . (.Nero Multimedia Suite 10 Essentials.) -- C:\Windows\Installer\{62BF4BD3-B1F6-4FA2-8388-CC0647ACBF86}\ARPPRODUCTICON.exe
O90 - PUC: "5281B221E1F3AA7F51C730A3256833B9" . (.Catalyst Control Center Localization All.) -- C:\Windows\Installer\{122B1825-3F1E-F7AA-157C-033A5286339B}\ARPPRODUCTICON.exe
O90 - PUC: "546DF789E21B0ECB27F39DE9BA07EEB0" . (.AMD VISION Engine Control Center.) -- C:\Windows\Installer\{987FD645-B12E-BCE0-723F-D99EAB70EE0B}\ARPPRODUCTICON.exe
O90 - PUC: "68AB67CA7DA76301B744BA0000000010" . (.Adobe Reader XI (11.0.03) - Français.) -- C:\Windows\Installer\{AC76BA86-7AD7-1036-7B44-AB0000000001}\SC_Reader.ico
O90 - PUC: "7040BB568CC47CD459E2E3FEFD5006A2" . (.Nero Update.) -- C:\Windows\Installer\{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}\ARPPRODUCTICON.exe
O90 - PUC: "787E733E16FCB7B48BF40529205A0432" . (.Nero RescueAgent 10.) -- C:\Windows\Installer\{E337E787-CF61-4B7B-B84F-509202A54023}\ARPPRODUCTICON.exe
O90 - PUC: "7A3AFA865629DBA499A4CA4A313E17C5" . (.Nero Multimedia Suite 10 Essentials.) -- C:\Windows\Installer\{68AFA3A7-9265-4ABD-994A-ACA413E3715C}\ARPPRODUCTICON.exe
O90 - PUC: "8140A81CA2446814FA890DF805452ACF" . (.Nero DiscSpeed 10 Help (CHM).) -- C:\Windows\Installer\{C18A0418-442A-4186-AF98-D08F5054A2FC}\NeroHelpIcon.BBDB24D3_07A5_496B_AA18_6A3ED03D6698
O90 - PUC: "8193463375979384297CAE69BC26A189" . (.Nero Express 10 Help (CHM).) -- C:\Windows\Installer\{33643918-7957-4839-92C7-EA96CB621A98}\NeroHelpIcon.BBDB24D3_07A5_496B_AA18_6A3ED03D6698
O90 - PUC: "83252E293A16DCA44A70C384E0FE747A" . (.Nero RescueAgent 10 Help (CHM).) -- C:\Windows\Installer\{92E25238-61A3-4ACD-A407-3C480EEF47A7}\NeroHelpIcon.BBDB24D3_07A5_496B_AA18_6A3ED03D6698
O90 - PUC: "876B686493E60BBC2DDA5773869D84C2" . (.Catalyst Control Center Graphics Previews Common.) -- C:\Windows\Installer\{4686B678-6E39-CBB0-D2AD-753768D9482C}\ARPPRODUCTICON.exe
O90 - PUC: "8DCAE3347474A6A428A6FF9A3FB9D004" . (.Elements 9 Organizer.) -- C:\Windows\Installer\{433EACD8-4747-4A6A-826A-FFA9F39B0D40}\ARPPRODUCTICON.exe
O90 - PUC: "8F5599BEC764CF74098F21DCD56F483C" . (.Adobe Premiere Elements 9.) -- c:\Windows\Installer\{EB9955F8-467C-47FC-90F8-12CD5DF684C3}\ARPPRODUCTICON.exe
O90 - PUC: "91785D291CBB3CC40AB8659C8E48CCC2" . (.Microsoft_VC80_CRT_x86.) -- C:\Windows\Installer\{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}\ARPPRODUCTICON.exe
O90 - PUC: "9AC8FF5870FFD8E9CDA250EC87C66564" . (.ccc-utility64.) -- C:\Windows\Installer\{85FF8CA9-FF07-9E8D-DC2A-05CE786C5646}\ARPPRODUCTICON.exe
O90 - PUC: "9BEF21E2DC1144B55DB1807322A55649" . (.AMD Media Foundation Decoders.) -- C:\Windows\Installer\{2E12FEB9-11CD-5B44-D51B-0837225A6594}\ARPPRODUCTICON.exe
O90 - PUC: "A98D506366DB5C5F77B9EB19014B0177" . (.ATI Catalyst Install Manager.) -- C:\Windows\Installer\{3605D89A-BD66-F5C5-779B-BE9110B41077}\ARPPRODUCTICON.exe
O90 - PUC: "B1B2B325BD8D14B409FF4C7D992E57A8" . (.Nero ControlCenter 10 Help (CHM).) -- C:\Windows\Installer\{523B2B1B-D8DB-4B41-90FF-C4D799E2758A}\NeroHelpIcon.BBDB24D3_07A5_496B_AA18_6A3ED03D6698
O90 - PUC: "B6668C80205C3BA44BBC7DA44CD241EF" . (.Nero BackItUp 10 Help (CHM).) -- C:\Windows\Installer\{08C8666B-C502-4AB3-B4CB-D74AC42D14FE}\NeroHelpIcon.BBDB24D3_07A5_496B_AA18_6A3ED03D6698
O90 - PUC: "C3E2830A4837A924B9AFFA85885E1A39" . (.Vedio WebCam.) -- C:\Windows\Installer\{A0382E3C-7384-429A-9BFA-AF5888E5A193}\ARPPRODUCTICON.exe
O90 - PUC: "C9F7116F5BDA0954B94E217CEB2C7820" . (.Nero StartSmart 10 Help (CHM).) -- C:\Windows\Installer\{F6117F9C-ADB5-4590-9BE4-12C7BEC28702}\NeroHelpIcon.BBDB24D3_07A5_496B_AA18_6A3ED03D6698
O90 - PUC: "D276F30548C6A844F8F8B43CA58C4314" . (.AMD APP SDK Runtime.) -- C:\Windows\Installer\{503F672D-6C84-448A-8F8F-4BC35AC83441}\ARPPRODUCTICON.exe
O90 - PUC: "D7314F9862C648A4DB8BE2A5B47BE100" . (.Microsoft Silverlight.) -- c:\Windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ARPIcon
O90 - PUC: "E309FE46A00DC414494ABF3A86FFDC9C" . (.Social Networks.) -- C:\Windows\Installer\{64EF903E-D00A-414C-94A4-FBA368FFCDC9}\ARPPRODUCTICON.exe
O90 - PUC: "E4F094430D84E29428944BB8CE0F35C7" . (.Nero DiscSpeed 10.) -- C:\Windows\Installer\{34490F4E-48D0-492E-8249-B48BECF0537C}\ARPPRODUCTICON.exe
O90 - PUC: "E7FF67E4ABEA78C47B88DC745E24B5D9" . (.Skype™ 6.6.) -- C:\Windows\Installer\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}\SkypeIcon.exe
O90 - PUC: "E984D16F44C6CA94DA20D78ACA7AA356" . (.Nero StartSmart 10.) -- C:\Windows\Installer\{F61D489E-6C44-49AC-AD02-7DA8ACA73A65}\ARPPRODUCTICON.exe
O90 - PUC: "F8258C11F036FDB12580E0E166E5EA7C" . (.Catalyst Control Center InstallProxy.) -- C:\Windows\Installer\{11C8528F-630F-1BDF-5208-0E1E665EAEC7}\ARPPRODUCTICON.exe
O90 - PUC: "F998BFD62A710F845A33DED88666FC83" . (.Nero Control Center 10.) -- C:\Windows\Installer\{6DFB899F-17A2-48F0-A533-ED8D6866CF38}\ARPPRODUCTICON.exe
~ Update Products: 442 Scanned in 00mn 00s



---\\ Recherche des packages WindowsInstaller (WIS) (O93) (NTFS)
[MD5.618E823AE722C7B04AFCE7C514355032] [WIS][21/03/2011] (.ATI - Branding.) -- C:\Windows\Installer\24c20.msi   [441856]
[MD5.061B6B32F6BC9FB15867E98F17B7FAE7] [WIS][03/06/2011] (.ATI - Catalyst Control Center.) -- C:\Windows\Installer\24c25.msi   [1773056]
[MD5.075619B6F68B6FE5FCBDEDA22DDE4A7E] [WIS][03/06/2011] (.ATI - Catalyst Control Center.) -- C:\Windows\Installer\24c2a.msi   [1182208]
[MD5.0CFF3D39EABD7F88DFD05C0726919E31] [WIS][03/06/2011] (.ATI - Catalyst Control Center.) -- C:\Windows\Installer\24c2f.msi   [1166848]
[MD5.9182142F07229D745D0BD270F2723267] [WIS][03/06/2011] (.ATI - Catalyst Control Center.) -- C:\Windows\Installer\24c34.msi   [1153024]
[MD5.67521371AC2F9ADCF2C956F451702B74] [WIS][03/06/2011] (.ATI - Catalyst Control Center.) -- C:\Windows\Installer\24c39.msi   [1221120]
[MD5.E1C8D9F96FDBD94F68F04616841AB2C8] [WIS][03/06/2011] (.ATI - Catalyst Control Center.) -- C:\Windows\Installer\24c3e.msi   [615936]
[MD5.301A17372784A0CCCE5EE06CE656CDDA] [WIS][03/06/2011] (.ATI - Catalyst Control Center.) -- C:\Windows\Installer\24c43.msi   [1169408]
[MD5.C3BBDA86CED0BC1EE45BC75F9ED30929] [WIS][03/06/2011] (.ATI - Catalyst Control Center.) -- C:\Windows\Installer\24c48.msi   [1171456]
[MD5.3EE84AF73D04B51E232E0DBF4709F826] [WIS][03/06/2011] (.ATI - Catalyst Control Center.) -- C:\Windows\Installer\24c4d.msi   [1180160]
[MD5.47AD1118F31B8E1DBAFBE6A23DFBDF44] [WIS][03/06/2011] (.ATI - Catalyst Control Center.) -- C:\Windows\Installer\24c52.msi   [1186816]
[MD5.1466A3C489E7322D1E4477BF8177A89E] [WIS][03/06/2011] (.ATI - Catalyst Control Center.) -- C:\Windows\Installer\24c57.msi   [1171456]
[MD5.0F824157CCF8F757DDCB6FB4194037A5] [WIS][03/06/2011] (.ATI - Catalyst Control Center.) -- C:\Windows\Installer\24c5c.msi   [1199104]
[MD5.4181D4E228696F77B92722C05B925F42] [WIS][03/06/2011] (.ATI - Catalyst Control Center.) -- C:\Windows\Installer\24c61.msi   [1183232]
[MD5.71656228CB37D23A4A9647C5E331FE8F] [WIS][03/06/2011] (.ATI - Catalyst Control Center.) -- C:\Windows\Installer\24c66.msi   [1174528]
[MD5.41718769F2E6B525DD1DA89D615FCFE8] [WIS][03/06/2011] (.ATI - Catalyst Control Center.) -- C:\Windows\Installer\24c6b.msi   [1162752]
[MD5.3A154BC516DC3896206590BA2FD14D7C] [WIS][03/06/2011] (.ATI - Catalyst Control Center.) -- C:\Windows\Installer\24c70.msi   [1176064]
[MD5.07753AD23846B948D4840C518FC68567] [WIS][03/06/2011] (.ATI - Catalyst Control Center.) -- C:\Windows\Installer\24c75.msi   [1174528]
[MD5.E0694C043EAEFCF50678551E2AAA9F99] [WIS][03/06/2011] (.ATI - Catalyst Control Center.) -- C:\Windows\Installer\24c7a.msi   [1207808]
[MD5.C92BB9C000E83F25B240454881C2CC81] [WIS][03/06/2011] (.ATI - Catalyst Control Center.) -- C:\Windows\Installer\24c7f.msi   [1164800]
[MD5.1E332B0F7270312928ED87D38AE268B7] [WIS][03/06/2011] (.ATI - Catalyst Control Center.) -- C:\Windows\Installer\24c84.msi   [1195520]
[MD5.40C31C78C8542D97C1914C4F4D8B5F80] [WIS][03/06/2011] (.ATI - Catalyst Control Center.) -- C:\Windows\Installer\24c89.msi   [1171968]
[MD5.7F46ED288F619C406BD37C061CD3D7A1] [WIS][03/06/2011] (.ATI - Catalyst Control Center.) -- C:\Windows\Installer\24c8e.msi   [861696]
[MD5.E80CCFD16514B761BA65057EBE98B050] [WIS][03/06/2011] (.ATI - Catalyst Control Center.) -- C:\Windows\Installer\24c93.msi   [1164288]
[MD5.3D5315348ED60251B0BD903EED8479F6] [WIS][03/06/2011] (.ATI - Catalyst Control Center.) -- C:\Windows\Installer\24c98.msi   [1260032]
[MD5.277572DEC3FF0BB0AA2AC70074255419] [WIS][03/06/2011] (.ATI - Catalyst Control Center Utility 64.) -- C:\Windows\Installer\24c9d.msi   [274432]
[MD5.B3E2418E409E2BC033A805E12D495AD0] [WIS][03/06/2011] (.ATI - Catalyst Control Center.) -- C:\Windows\Installer\24ca3.msi   [10997248]
[MD5.E4AF16B0574B2598AADD353A35A3722B] [WIS][30/09/2010] (.Adobe - Blank Project Template.) -- C:\Windows\Installer\262d1.msi   [2211328]
[MD5.8BAD3B4225E4D8C0746ED2CF02A0B249] [WIS][30/09/2010] (.Adobe - Blank Project Template.) -- C:\Windows\Installer\262d6.msi   [725504]
[MD5.E85D953AE603484B31869F1D44B53B18] [WIS][30/09/2010] (.Adobe - Blank Project Template.) -- C:\Windows\Installer\262db.msi   [3670016]
[MD5.78B41A323699DAF1C25265890733BE26] [WIS][30/09/2010] (.Adobe - Blank Project Template.) -- C:\Windows\Installer\262e0.msi   [1997312]
[MD5.7BBC45CBDE3D58376B9AE821DE6DE959] [WIS][20/08/2013] (.The J2SE Runtime Environment with European - Additional Font and Media Support.) -- C:\Windows\Installer\4a1a0.msi   [184320]
[MD5.73122534D527893BDEFD1F707FFB34F6] [WIS][19/08/2013] (.Skype Technologies S.A. - Skype.) -- C:\Windows\Installer\732fa7.msi   [21803008]
~ WIS: 442 Scanned in 03mn 30s



---\\ Etat général des services not Microsoft (EGS) (SR=Running, SS=Stopped)
SR - | Auto 30/09/2010 169408 |  (AdobeActiveFileMonitor9.0) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe
SR - | Auto 11/05/2013 65640 |  (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
SS - | Demand 20/08/2013 257416 |  (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SR - | Auto 24/05/2011 204288 |  (AMD External Events Utility) . (.AMD.) - C:\Windows\System32\atiesrxx.exe
SR - | Auto 09/05/2013 46808 |  (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
SS - | Demand 07/06/2011 191752 |  (BBSvc) . (.Microsoft Corporation..) - C:\Program Files (x86)\Microsoft\BingBar\BBSvc.exe
SR - | Auto 12/05/2011 249648 |  (BBUpdate) . (.Microsoft Corporation.) - C:\Program Files (x86)\Microsoft\BingBar\SeaPort.exe
SR - | Auto 01/07/2011 353360 |  (DsiWMIService) . (.Dritek System Inc..) - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
SR - | Auto 02/08/2011 872552 |  (ePowerSvc) . (.Acer Incorporated.) - C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe
SS - | Demand 12/10/2010 206072 |  (GamesAppService) . (.WildTangent, Inc..) - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
SR - | Auto 30/05/2011 36456 |  (GREGService) . (.Acer Incorporated.) - C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe
SR - | Auto 22/04/2011 244624 |  (Live Updater Service) . (.Acer Incorporated.) - C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe
SR - | Auto 04/04/2013 418376 |  (MBAMScheduler) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
SR - | Auto 04/04/2013 701512 |  (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
SS - | Demand 20/08/2013 117656 |  (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
SR - | Auto 13/07/2012 769432 |  (NAUpdate) . (.Nero AG.) - C:\Program Files (x86)\Nero\Update\NASvc.exe
SS - | Auto 21/06/2013 162408 |  (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
SR - | Auto 19/06/2013 2445304 |  (vsmon) . (.Check Point Software Technologies LTD.) - C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
SR - | Auto 14/07/2009 27136 | C:\Program Files (x86)\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto  0 |  (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe
SR - | Auto 14/07/2009 27136 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto 18/06/2013 54160 |  (ZAPrivacyService) . (.Check Point Software Technologies, Ltd..) - C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZAPrivacyService.exe
~ Services:  Scanned in 03mn 35s



---\\ Recherche dinfection sur le Master Boot Record (MBR)(O80)
Run by Thor at 21/08/2013 03:09:49
~ OS 64 not supported by MBR tool
~ MBR: 0 Scanned in 00mn 00s



---\\ Recherche dinfection sur le Master Boot Record (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by Thor at 21/08/2013 03:09:51

********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin
~ MBR:  Scanned in 00mn 02s



---\\ Scan Additionnel (O88)
Database Version : v2.12862 - (20/08/2013)
Clés trouvées (Keys found) : 9
Valeurs trouvées (Values found) : 0
Dossiers trouvés  (Folders found) : 0
Fichiers trouvés  (Files found) : 2

[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48BF-AC2D-D17F00898D06}]   =>Toolbar.Avast^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D2CE3E00-F94A-4740-988E-03DC2F38C34F}]   =>Toolbar.Bing^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{C28D96C0-6A90-459E-A077-A6706F4EC0FC}]   =>Toolbar.Bing^
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{318A227B-5E9F-45BD-8999-7F8F10CA4CF5}]   =>Toolbar.Avast
[HKLM\Software\Classes\CLSID\{318A227B-5E9F-45BD-8999-7F8F10CA4CF5}]   =>Toolbar.Avast
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45BD-8999-7F8F10CA4CF5}]   =>Toolbar.Avast
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]   =>Toolbar.Avast
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]   =>Toolbar.Avast
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]   =>Toolbar.Avast
C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll   =>Toolbar.Avast^
C:\Windows\Installer\{C28D96C0-6A90-459E-A077-A6706F4EC0FC}\icon_installer_ico   =>Toolbar.Bing^
~ Additionnel Scan: 237412 Items scanned in 02mn 11s



---\\ Récapitulatif des détections trouvées sur votre station
~ http://nicolascoolman.webs.com/apps/blog/show/30898585-toolbar-avast   =>Toolbar.Avast
~ http://nicolascoolman.webs.com/apps/blog/show/31536787-toolbar-bing    =>Toolbar.Bing
~ MSI: 2 link(s) detected in 02mn 12s



End of the scan (2250 lines in 16mn 12s)(0)