Rapport de ZHPDiag v2013.3.11.11 par Nicolas Coolman, Update du 11/03/2013
Run by Mat at 11/03/2013 20:57:20
State : Version à jour.
High Elevated Privileges : OK
UAC : Activate by user


---\\ Web Browser
MSIE: Internet Explorer v9.10.9200.16384
GCIE: Google Chrome v25.0.1364.160 (Defaut)

---\\ Windows Product Information
~ Langage: Français
Windows 8 Home Premium Edition, 64-bit  (Build 9200)
Windows Server License Manager Script : OK
~ ion : Windows(R) Operating System, OEM_DM channel
Windows ID Activation : OK
~ Windows Partial Key : B4DHT
Windows License : OK
~ Windows Remaining Initializations Number : 998
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ System Information
~ Processor: Intel64 Family 6 Model 42 Stepping 7, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3979 MB (59% free)
System Restore: Activé (Enable)
System drive C: has 158 GB (85%) free of 186 GB

---\\ Logged in mode
~ Computer Name: MATHIS
~ User Name: Mat
~ All Users Names: Mathis, Mat, Administrateur, 
~ Unselected Option: None
Logged in as Administrator

---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\Mat\AppData\Roaming\
~ %Desktop% : C:\Users\Mat\Desktop\
~ %Favorites% : C:\Users\Mat\Favorites\
~ %LocalAppData% : C:\Users\Mat\AppData\Local\
~ %StartMenu% : C:\Users\Mat\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 158 Go of 186 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 258 Go of 258 Go)
E:\ CD-ROM drive (Not Inserted)



---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
~ Scan Security Center in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.928791755FDDEA721B053535EF84FA17] - (.Microsoft Corporation - Explorateur Windows.) (.26/07/2012 - 05:49:13.) -- C:\Windows\Explorer.exe [2380440]
[MD5.FE9AB232B56A12224E8A3F3F9878C9A3] - (.Microsoft Corporation - Application de démarrage de Windows.) (.26/07/2012 - 04:08:50.) -- C:\Windows\System32\Wininit.exe [132608]
[MD5.3DA7E6053DB9BE3EADC70CE20B1FB92B] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.26/07/2012 - 04:07:56.) -- C:\Windows\System32\wininet.dll [2246656]
[MD5.93AB226C07A9789B2EC7B41F73602F76] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.26/07/2012 - 04:08:50.) -- C:\Windows\System32\Winlogon.exe [516608]
[MD5.9448F5740A037EC0C18F0E9177232DD0] - (.Microsoft Corporation - Bibliothèque de licences.) (.26/07/2012 - 04:07:20.) -- C:\Windows\System32\sppcomapi.dll [273408]
[MD5.9E975BDC89C83900B2C534C4E1B018F8] - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) (.26/07/2012 - 06:26:47.) -- C:\Windows\system32\Drivers\AFD.sys [561152]
[MD5.A721FF570C2387E383BDDEA9632863C9] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.26/07/2012 - 06:00:48.) -- C:\Windows\system32\Drivers\atapi.sys [25840]
[MD5.990B1BABE6E81FB18E65A87EBEFB1772] - (.Microsoft Corporation - CD-ROM File System Driver.) (.26/07/2012 - 03:30:10.) -- C:\Windows\system32\Drivers\Cdfs.sys [108544]
[MD5.339BFF85D788268752DA8C9644B188EE] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.26/07/2012 - 03:26:36.) -- C:\Windows\system32\Drivers\Cdrom.sys [174080]
[MD5.09D9EB9E7898F8E6561473A20CC808B9] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.26/07/2012 - 03:26:53.) -- C:\Windows\system32\Drivers\DfsC.sys [118784]
[MD5.8D6810577E9C4F56DCB8E9BACAC7287B] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.26/07/2012 - 03:27:36.) -- C:\Windows\system32\Drivers\HDAudBus.sys [71168]
[MD5.C9E9CBF73AFFBFE3E801EFB516787BA3] - (.Microsoft Corporation - Pilote de port i8042.) (.26/07/2012 - 03:28:51.) -- C:\Windows\system32\Drivers\i8042prt.sys [112640]
[MD5.3969B9C218DD3FAA9F4ED2FFC3651C02] - (.Microsoft Corporation - IP Network Address Translator.) (.26/07/2012 - 03:23:01.) -- C:\Windows\system32\Drivers\IpNat.sys [145920]
[MD5.1EEAA5A62E8C49DDF58798F06F78BFFA] - (.Microsoft Corporation - Minirdr SMB Windows NT.) (.26/07/2012 - 03:23:25.) -- C:\Windows\system32\Drivers\MRxSmb.sys [368128]
[MD5.7CEC25C682D319D484630B3952C31A11] - (.Microsoft Corporation - MBT Transport driver.) (.26/07/2012 - 03:24:28.) -- C:\Windows\system32\Drivers\netBT.sys [331776]
[MD5.4A7EEA9C4AD5CBFDA3C0E5B821C99CAD] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.26/07/2012 - 06:26:46.) -- C:\Windows\system32\Drivers\ntfs.sys [1934064]
[MD5.4563DAF8C6A740AD7F501E219BD10766] - (.Microsoft Corporation - Pilote de port parallèle.) (.26/07/2012 - 03:29:53.) -- C:\Windows\system32\Drivers\Parport.sys [105984]
[MD5.A14D625C5AEE5FFE0F47D1A1D419FAAE] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.26/07/2012 - 03:23:17.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [124928]
[MD5.B2A3AD74FF2E2FFA73AF2567108231B3] - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RDP.) (.26/07/2012 - 03:25:18.) -- C:\Windows\system32\Drivers\rdpdr.sys [179712]
[MD5.73DC722CE5DF26D7638CE2446F2655C7] - (.Microsoft Corporation - TDI Translation Driver.) (.26/07/2012 - 06:26:47.) -- C:\Windows\system32\Drivers\tdx.sys [117248]
[MD5.2FB3CDFD5EAF4CD9D4AFAF96877D13AE] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.26/07/2012 - 05:57:09.) -- C:\Windows\system32\Drivers\volsnap.sys [332016]
~ Scan Generic Processes in 00mn 00s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 1/3
~ Mes Videos (My Videos) : 1/2
~ Mes Favoris (My Favorites) : 1/14
~ Mes Documents (My Documents) : 1/18
~ Mon Bureau (My Desktop) : 1/36
~ Menu demarrer (Programs) : 1/40
~ Scan Hidden Files in 00mn 00s



---\\ Processus lancés
[MD5.7C58A2513C3DA421A461D75C66C56D21] - (.ASUSTek Computer Inc. - ASUS USB Charger Plus.) -- C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe   [1123536] [PID.2692]
[MD5.7853D2AB445C10F97610B2B05FA4CF0A] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe   [512360] [PID.2952]
[MD5.A2791CF11D1ED52DBCD75D2FFD4D50E7] - (.ASUSTek Computer Inc. - ATK Media.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe   [178848] [PID.2484]
[MD5.2C35624F79B9ADBFE47090879F0D8673] - (.ASUSTek Computer Inc. - ATKOSD2.) -- C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe   [322208] [PID.2468]
[MD5.29769215DEB6E8418EF3656B0423776E] - (.ASUSTeK Computer Inc. - ASUS Quick Gesture Exe.) -- C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x86\QuickGesture.exe   [20352] [PID.2424]
[MD5.E05FFF1C05C80CCE83C766198896C7CF] - (.ASUS - ACMON.) -- C:\Program Files (x86)\ASUS\Splendid\ACMON.exe   [90832] [PID.3876]
[MD5.98CADC34741738CFC24F5CDFDAA408FA] - (.ASUSTeK - ACEngSvr Module.) -- C:\Windows\SysWOW64\ACEngSvr.exe   [162456] [PID.3096]
[MD5.B7995C675014EEBE77A0BEB7AFCCFC08] - (.CyberLink Corp. - PowerDVD RC Service.) -- C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe   [91432] [PID.3476]
[MD5.01F1839AD462D146BB15B1DA9FDE2EE7] - (.ASUSTeK Computer Inc. - ASUS Live Update.) -- C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe   [1557664] [PID.3308]
[MD5.4DD82FE0224BCD5E2DEBF9CC38592A0F] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe   [1275344] [PID.288]
[MD5.9965BA601449373DB826B0FDDE0489D0] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe   [5745152] [PID.5488]
~ Scan Processes Running in 00mn 00s



---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Preferences
G1 - GCS: Preference [User Data\Default] None
~ Scan Google Browser in 00mn 00s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions  (P2,M0,M1,M2,M3)
P2 - FPN: [HKLM] [@mcafee.com/MSC,version=10] - (...) -- C:\Program Files\mcafee\msc\npMcSnFFPl64.dll
~ Scan Firefox Browser in 00mn 00s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus13.msn.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (10.00.9200.16384 (win8_rtm.120725-1247)) -- C:\Windows\SysWOW64\ieframe.dll
~ Scan IE Browser in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Scan Proxy management in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Scan Keys in 00mn 00s



---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Scan Hosts File in 00mn 00s
~ Nombre de lignes (Lines number): 21



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: AcroIEHelperStub [64Bits] - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
~ Scan BHO in 00mn 00s



---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe 
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe 
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe 
O4 - HKLM\..\Run: [ACMON] . (.ASUS - ACMON.) -- C:\Program Files (x86)\ASUS\Splendid\ACMON.exe 
O4 - HKLM\..\Wow6432Node\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe 
O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe 
O4 - HKLM\..\Wow6432Node\Run: [mcui_exe] . (.McAfee, Inc. - McAfee Security Center.) -- C:\Program Files\McAfee.com\Agent\mcagent.exe 
O4 - HKLM\..\Wow6432Node\Run: [RemoteControl10] . (.CyberLink Corp. - PowerDVD RC Service.) -- C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe 
O4 - HKLM\..\Wow6432Node\Run: [ASUSWebStorage] . (.ASUS Cloud Corporation - ASUS WebStorage Panel.) -- C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.9.120\AsusWSPanel.exe 
~ Scan Application in 00mn 00s



---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ Scan IE Control Panel in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\Windows\system32\wshbth.dll
~ Scan Winsock in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{08D937F6-69D9-4B13-9BE0-2D07E114E28E}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{08D937F6-69D9-4B13-9BE0-2D07E114E28E}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
~ Scan Domain in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
~ Scan Protocole Additionnel in 00mn 00s



---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
~ Scan Winlogon in 00mn 00s



---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ Scan SSODL in 00mn 00s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: ASLDR Service (ASLDRService) . (.ASUSTek Computer Inc. - ASLDR Service.) - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ASUS InstantOn Service (ASUS InstantOn) . (.ASUS - ASUS InstantOn Program.) - C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) . (.ASUS - GFNEXSrv.) - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: IconMan_R (IconMan_R) . (.Realsil Microelectronics Inc. - Realtek Card Reader Patch Tool..) - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
O23 - Service: Intel(R) Capability Licensing Service In (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation - Intel(R) Capability Licensing Service Inter.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host (jhi_service) . (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: Intel(R) Management and Security Applica (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service:  (MBAMScheduler) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service:  (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: McAfee Personal Firewall Service (McMPFSvc) . (.McAfee, Inc. - McAfee Service Host.) - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
O23 - Service: McAfee Services (mcmscsvc) . (.McAfee, Inc. - McAfee Service Host.) - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
O23 - Service: McAfee VirusScan Announcer (McNaiAnn) . (.McAfee, Inc. - McAfee Service Host.) - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
O23 - Service: McAfee Network Agent (McNASvc) . (.McAfee, Inc. - McAfee Service Host.) - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
O23 - Service: McAfee OOBE Service (McOobeSv) . (.McAfee, Inc. - McAfee Service Host.) - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
O23 - Service: McAfee Proxy Service (McProxy) . (.McAfee, Inc. - McAfee Service Host.) - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
O23 - Service: McAfee McShield (McShield) . (.McAfee, Inc. - McAfee On-Access Scanner service.) - C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe
O23 - Service: McAfee Firewall Core Service (mfefire) . (.McAfee, Inc. - McAfee Core Firewall Service.) - C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
O23 - Service: McAfee Validation Trust Protection Servi (mfevtp) . (.McAfee, Inc. - McAfee Process Validation Service.) - C:\windows\system32\mfevtps.exe
O23 - Service: McAfee Anti-Spam Service (MSK80Service) . (.McAfee, Inc. - McAfee Service Host.) - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
O23 - Service: Intel(R) Management and Security Applica (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
~ Scan Services in 00mn 06s



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) -  (.not file.)
~ Scan Desktop Component in 00mn 00s



---\\ BootExecute (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ Scan Keys in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job   [1072]
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job   [1076]
[MD5.79174FD5F4DE078642BE1CACB124BFCA] [APT] [ASUS InstantOn Config] (.ASUS.) -- C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnCfg.exe   [1126784]
[MD5.01F1839AD462D146BB15B1DA9FDE2EE7] [APT] [ASUS Live Update] (.ASUSTeK Computer Inc..) -- C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe   [1557664]
[MD5.866B173A7B698995066894F7CE824105] [APT] [ASUS P4G] (.ASUS.) -- C:\Program Files\ASUS\P4G\BatteryLife.exe   [1018240]
[MD5.3547F00F9FF626DE831FC1F99BE1E4CE] [APT] [ASUS Touchpad Launcher (x64)] (.AsusTek.) -- C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe   [17792]
[MD5.7C58A2513C3DA421A461D75C66C56D21] [APT] [ASUS USB Charger Plus] (.ASUSTek Computer Inc..) -- C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe   [1123536]
[MD5.F9E87505DC0B27A9E3D9A99442303DC3] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe   [3288856]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe   [116648]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe   [116648]
[MD5.587D7B88E13455EE24F03FEA9E5324EC] [APT] [improvement] (...) -- C:\Windows\Fix_V4.exe   [820939]
~ Scan Scheduled Task in 00mn 01s



---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\System32\mscories.dll
~ Scan Active Setup in 00mn 00s



---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver:  (ATKWMIACPIIO) . (.ASUS - ATK WMIACPI Utility.) - C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys
O41 - Driver: (BasicDisplay) . (.Microsoft Corporation - Microsoft Basic Display Driver.) - C:\Windows\system32\drivers\BasicDisplay.sys
O41 - Driver: (BasicRender) . (.Microsoft Corporation - Microsoft Basic Render Driver.) - C:\Windows\system32\drivers\BasicRender.sys
O41 - Driver: cdrom.inf (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys
O41 - Driver: C:\Windows\System32\drivers\dam.sys (dam) . (.Microsoft Corporation - DAM Kernel Driver.) - C:\Windows\System32\drivers\dam.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (Dfsc) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: mssmbios.inf (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: netnb.inf (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: npsvctrig.inf (npsvctrig) . (.Microsoft Corporation - Named pipe service triggers.) - C:\Windows\system32\drivers\npsvctrig.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\system32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys
O41 - Driver: C:\Windows\System32\drivers\vwififlt.sys (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\system32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\system32\DRIVERS\wanarp.sys
~ Scan Drivers in 00mn 00s



---\\ Logiciels installés (O42)
O42 - Logiciel: ASUS Instant Connect - (.ASUS.) [HKLM][64Bits] -- {89ECB85A-D933-4CEA-9116-5CBC9C2ED95B}
O42 - Logiciel: ASUS InstantOn - (.ASUS.) [HKLM][64Bits] -- {749F674B-2674-47E8-879C-5626A06B2A91}
O42 - Logiciel: ASUS LifeFrame3 - (.ASUS.) [HKLM][64Bits] -- {1DBD1F12-ED93-49C0-A7CC-56CBDE488158}
O42 - Logiciel: ASUS Live Update - (.ASUS.) [HKLM][64Bits] -- {FA540E67-095C-4A1B-97BA-4D547DEC9AF4}
O42 - Logiciel: ASUS Power4Gear Hybrid - (.ASUS.) [HKLM][64Bits] -- {9B6239BF-4E85-4590-8D72-51E30DB1A9AA}
O42 - Logiciel: ASUS Smart Gesture - (.ASUS.) [HKLM][64Bits] -- {4D3286A6-F6AB-498A-82A4-E4F040529F3D}
O42 - Logiciel: ASUS Splendid Video Enhancement Technology - (.ASUS.) [HKLM][64Bits] -- {0969AF05-4FF6-4C00-9406-43599238DE0D}
O42 - Logiciel: ASUS Tutor - (.ASUS.) [HKLM][64Bits] -- {58172D66-2F69-4215-9AEC-ED8196023736}
O42 - Logiciel: ASUS USB Charger Plus - (.ASUS.) [HKLM][64Bits] -- {A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}
O42 - Logiciel: ASUS WebStorage Sync Agent - (.ASUS Cloud Corporation.) [HKLM][64Bits] -- ASUS WebStorage
O42 - Logiciel: ASUSDVD - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}
O42 - Logiciel: ASUSDVD - (.CyberLink Corp..) [HKLM][64Bits] -- {DEC235ED-58A4-4517-A278-C41E8DAEAB3B}
O42 - Logiciel: ATK Package - (.ASUS.) [HKLM][64Bits] -- {AB5C933E-5C7D-4D30-B314-9C83A49B94BE}
O42 - Logiciel: Adobe Reader X MUI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-FFFF-7B44-AA0000000001}
O42 - Logiciel: AsusVibe2.0 - (.ASUSTEK.) [HKLM][64Bits] -- Asus Vibe2.0
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A}
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}
O42 - Logiciel: Intel(R) SDK for OpenCL - CPU Only Runtime Package - (.Intel Corporation.) [HKLM][64Bits] -- {FCB3772C-B7D0-4933-B1A9-3707EBACC573}
O42 - Logiciel: Intel® Trusted Connect Service Client - (.Intel Corporation.) [HKLM][64Bits] -- {F4404AFD-2EF3-40C1-8C09-29E5F3B6972B}
O42 - Logiciel: Malwarebytes Anti-Malware version 1.70.0.1100 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: McAfee Internet Security - (.McAfee, Inc..) [HKLM][64Bits] -- MSC
O42 - Logiciel: Package de pilotes Windows - ASUS (ATP) Mouse  (10/29/2012 1.0.0.148) - (.ASUS.) [HKLM][64Bits] -- C01F56FBD9B141017E63E2A1A141E59934D4DC67
O42 - Logiciel: Qualcomm Atheros Client Installation Program - (.Qualcomm Atheros.) [HKLM][64Bits] -- {28006915-2739-4EBE-B5E8-49B25D32EB33}
O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Realtek PCIE Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {C1594429-8296-4652-BF54-9DBE4932A44C}
O42 - Logiciel: Shared C Run-time for x64 - (.McAfee.) [HKLM][64Bits] -- {EF79C448-6946-4D71-8134-03407888C054}
O42 - Logiciel: WinFlash - (.ASUS.) [HKLM][64Bits] -- {8F21291E-0444-4B1D-B9F9-4370A73E346D}

---\\ HKCU & HKLM Software Keys
[HKCU\Software\ASUS]
[HKCU\Software\AppDataLow\Software\Microsoft]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\CyberLink]
[HKCU\Software\ECAREME]
[HKCU\Software\Google]
[HKCU\Software\Intel]
[HKCU\Software\Macromedia]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\McAfee]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\Realtek]
[HKCU\Software\RegisteredApplications]
[HKCU\Software\Wow6432Node]
[HKCU\Software\ZebHelpProcess Helper]
[HKCU\Software\mozilla]
[HKLM\Software\ASUS]
[HKLM\Software\ATI Technologies]
[HKLM\Software\Agere]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\DTS]
[HKLM\Software\Dolby]
[HKLM\Software\ECAREME]
[HKLM\Software\Intel]
[HKLM\Software\Khronos]
[HKLM\Software\Knowles]
[HKLM\Software\LSI]
[HKLM\Software\Macromedia]
[HKLM\Software\McAfee.com]
[HKLM\Software\McAfee]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\ODBC]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\RTLSetup]
[HKLM\Software\Realtek Semiconductor Corp.]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SRS Labs]
[HKLM\Software\SonicFocus]
[HKLM\Software\Waves Audio]
[HKLM\Software\Wow6432Node\ASIO]
[HKLM\Software\Wow6432Node\ASUS]
[HKLM\Software\Wow6432Node\Adobe]
[HKLM\Software\Wow6432Node\AdwCleaner]
[HKLM\Software\Wow6432Node\AsLdr]
[HKLM\Software\Wow6432Node\Atheros]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\CyberLink]
[HKLM\Software\Wow6432Node\ECAREME]
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\Khronos]
[HKLM\Software\Wow6432Node\Lake]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware (Trial)]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware]
[HKLM\Software\Wow6432Node\McAfee.com]
[HKLM\Software\Wow6432Node\McAfee]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\Qualcomm Atheros]
[HKLM\Software\Wow6432Node\Realtek Semiconductor Corp.]
[HKLM\Software\Wow6432Node\Realtek]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\SuppHelpDir]
[HKLM\Software\Wow6432Node]
~ Scan Softwares in 00mn 00s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 17/08/2012 - 01:52:33 - [363,190] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 11/03/2013 - 18:46:36 - [249,353] ----D C:\Program Files (x86)\ASUS
O43 - CFD: 29/09/2012 - 12:27:40 - [49,754] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 29/09/2012 - 12:35:59 - [178,894] ----D C:\Program Files (x86)\CyberLink
O43 - CFD: 11/03/2013 - 18:29:40 - [267,090] ----D C:\Program Files (x86)\Google
O43 - CFD: 29/09/2012 - 12:37:22 - [75,172] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 29/09/2012 - 12:25:07 - [144,146] ----D C:\Program Files (x86)\Intel
O43 - CFD: 03/08/2012 - 00:15:24 - [5,004] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 11/03/2013 - 18:55:25 - [12,242] ----D C:\Program Files (x86)\Malwarebytes' Anti-Malware
O43 - CFD: 11/03/2013 - 19:37:36 - [1,559] ----D C:\Program Files (x86)\McAfee
O43 - CFD: 17/08/2012 - 01:53:21 - [0,432] ----D C:\Program Files (x86)\mcafee.com
O43 - CFD: 17/08/2012 - 01:49:24 - [6,085] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 26/07/2012 - 09:12:59 - [0,023] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 11/03/2013 - 18:27:18 - [0] ----D C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 02/08/2012 - 14:34:48 - [0,025] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 29/09/2012 - 12:31:17 - [0,036] ----D C:\Program Files (x86)\Qualcomm Atheros
O43 - CFD: 29/09/2012 - 12:30:17 - [34,326] ----D C:\Program Files (x86)\Realtek
O43 - CFD: 02/08/2012 - 14:34:49 - [40,683] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 29/09/2012 - 12:28:12 - [0] --H-D C:\Program Files (x86)\Temp
O43 - CFD: 03/08/2012 - 00:15:24 - [1,157] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 03/08/2012 - 00:15:24 - [7,522] ----D C:\Program Files (x86)\Windows Mail
O43 - CFD: 03/08/2012 - 00:15:24 - [3,793] ----D C:\Program Files (x86)\Windows Media Player
O43 - CFD: 26/07/2012 - 09:13:01 - [0,209] ----D C:\Program Files (x86)\Windows Multimedia Platform
O43 - CFD: 26/07/2012 - 09:12:59 - [7,802] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 03/08/2012 - 00:15:24 - [5,401] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 26/07/2012 - 09:13:01 - [0,209] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 26/07/2012 - 09:12:59 - [0] -SH-D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 11/03/2013 - 20:57:22 - [15,385] ----D C:\Program Files (x86)\ZHPDiag
O43 - CFD: 17/08/2012 - 01:52:39 - [5,109] ----D C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 29/09/2012 - 12:27:40 - [2,009] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 29/09/2012 - 12:25:03 - [13,438] ----D C:\Program Files (x86)\Common Files\Intel
O43 - CFD: 17/08/2012 - 01:54:03 - [2,787] ----D C:\Program Files (x86)\Common Files\mcafee
O43 - CFD: 29/09/2012 - 12:24:05 - [15,663] ----D C:\Program Files (x86)\Common Files\Microsoft Shared
O43 - CFD: 29/09/2012 - 12:23:56 - [0,185] ----D C:\Program Files (x86)\Common Files\postureAgent
O43 - CFD: 26/07/2012 - 09:13:01 - [0,003] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 03/08/2012 - 00:15:24 - [10,561] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 17/08/2012 - 01:52:37 - [0,000] ----D C:\ProgramData\Adobe
O43 - CFD: 26/07/2012 - 08:22:08 - [0] --H-D C:\ProgramData\Application Data
O43 - CFD: 17/08/2012 - 01:53:09 - [0,002] ----D C:\ProgramData\ASUS WebStorage
O43 - CFD: 17/08/2012 - 01:52:28 - [0,012] ----D C:\ProgramData\ASUSLogos
O43 - CFD: 29/09/2012 - 12:37:38 - [0,767] ----D C:\ProgramData\ASUSVibe
O43 - CFD: 11/03/2013 - 18:18:22 - [0] --H-D C:\ProgramData\Bureau
O43 - CFD: 11/03/2013 - 18:25:15 - [4,688] ----D C:\ProgramData\ChangeFolderView
O43 - CFD: 26/07/2012 - 08:22:08 - [0] --H-D C:\ProgramData\Desktop
O43 - CFD: 26/07/2012 - 08:22:08 - [0] --H-D C:\ProgramData\Documents
O43 - CFD: 11/03/2013 - 18:22:15 - [0,585] ----D C:\ProgramData\FolderView
O43 - CFD: 29/09/2012 - 12:24:17 - [0,011] ----D C:\ProgramData\Intel
O43 - CFD: 11/03/2013 - 18:55:18 - [5,800] ----D C:\ProgramData\Malwarebytes
O43 - CFD: 11/03/2013 - 18:58:42 - [54,582] ----D C:\ProgramData\McAfee
O43 - CFD: 11/03/2013 - 18:18:22 - [0] --H-D C:\ProgramData\Menu Démarrer
O43 - CFD: 11/03/2013 - 20:09:28 - [-1297,978] -S--D C:\ProgramData\Microsoft
O43 - CFD: 11/03/2013 - 18:18:22 - [0] --H-D C:\ProgramData\Modèles
O43 - CFD: 29/09/2012 - 12:33:21 - [0,002] ----D C:\ProgramData\P4G
O43 - CFD: 02/08/2012 - 14:28:49 - [0,155] ----D C:\ProgramData\PRICache
O43 - CFD: 29/09/2012 - 12:31:12 - [0,021] ----D C:\ProgramData\Qualcomm Atheros
O43 - CFD: 26/07/2012 - 10:45:49 - [0,001] ----D C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 26/07/2012 - 08:22:08 - [0] --H-D C:\ProgramData\Start Menu
O43 - CFD: 29/09/2012 - 12:36:27 - [0,356] ----D C:\ProgramData\Temp
O43 - CFD: 26/07/2012 - 08:22:08 - [0] --H-D C:\ProgramData\Templates
O43 - CFD: 29/09/2012 - 12:43:59 - [0,000] ----D C:\ProgramData\USBChargerPlus
O43 - CFD: 11/03/2013 - 18:22:20 - [0] ----D C:\Users\Mat\AppData\Roaming\Adobe
O43 - CFD: 11/03/2013 - 18:23:26 - [0] ----D C:\Users\Mat\AppData\Roaming\ASUS WebStorage
O43 - CFD: 11/03/2013 - 18:23:58 - [0,000] ----D C:\Users\Mat\AppData\Roaming\Macromedia
O43 - CFD: 11/03/2013 - 18:55:42 - [0,004] ----D C:\Users\Mat\AppData\Roaming\Malwarebytes
O43 - CFD: 11/03/2013 - 18:22:52 - [0,354] -S--D C:\Users\Mat\AppData\Roaming\Microsoft
O43 - CFD: 11/03/2013 - 18:20:12 - [0] ----D C:\Users\Mat\AppData\Local\Application Data
O43 - CFD: 11/03/2013 - 18:28:27 - [1,557] ----D C:\Users\Mat\AppData\Local\Apps
O43 - CFD: 11/03/2013 - 18:21:21 - [0,001] ----D C:\Users\Mat\AppData\Local\ASUS
O43 - CFD: 11/03/2013 - 18:28:42 - [0] ----D C:\Users\Mat\AppData\Local\Deployment
O43 - CFD: 11/03/2013 - 18:29:49 - [22,799] ----D C:\Users\Mat\AppData\Local\Google
O43 - CFD: 11/03/2013 - 18:20:12 - [0] ----D C:\Users\Mat\AppData\Local\Historique
O43 - CFD: 11/03/2013 - 20:25:02 - [79,229] ----D C:\Users\Mat\AppData\Local\Microsoft
O43 - CFD: 11/03/2013 - 18:22:20 - [1,430] ----D C:\Users\Mat\AppData\Local\Packages
O43 - CFD: 11/03/2013 - 18:55:02 - [0] ----D C:\Users\Mat\AppData\Local\Programs
O43 - CFD: 11/03/2013 - 20:56:56 - [6,325] ----D C:\Users\Mat\AppData\Local\Temp
O43 - CFD: 11/03/2013 - 18:20:12 - [0] ----D C:\Users\Mat\AppData\Local\Temporary Internet Files
O43 - CFD: 11/03/2013 - 18:20:41 - [0] ----D C:\Users\Mat\AppData\Local\VirtualStore
O43 - CFD: 26/07/2012 - 09:13:00 - [0,004] R---D C:\Users\Mat\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 26/07/2012 - 09:13:00 - [0,001] R---D C:\Users\Mat\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 11/03/2013 - 18:22:34 - [0,000] R---D C:\Users\Mat\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 26/07/2012 - 09:13:00 - [0,000] ----D C:\Users\Mat\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 11/03/2013 - 18:22:34 - [0,000] R---D C:\Users\Mat\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 26/07/2012 - 09:13:00 - [0,005] R---D C:\Users\Mat\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
~ Scan Program Folder in 00mn 00s



---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.2E999F71EB457CA090500919F38269AC] - 11/03/2013 - 20:56:57 ---A- . (...) -- C:\PhysicalDisk0_MBR.bin   [512]
O44 - LFC:[MD5.E0B644B9B689D8FADD43D3BE76ADB2AD] - 11/03/2013 - 20:09:37 ----- . (...) -- C:\Windows\WindowsUpdate.log   [935494]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 11/03/2013 - 20:09:05  . (...) -- C:\Windows\System32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf   []
O44 - LFC:[MD5.18B7CB93C628B2E84C19D147F4AE881E] - 11/03/2013 - 19:56:41  . (...) -- C:\Windows\System32\par.txt   []
O44 - LFC:[MD5.95970761AEE9A4B5678A839656168E51] - 11/03/2013 - 19:56:41  . (...) -- C:\Windows\System32\par2.txt   []
O44 - LFC:[MD5.18B7CB93C628B2E84C19D147F4AE881E] - 11/03/2013 - 19:56:41 ---A- . (...) -- C:\Windows\SysNative\par.txt   [42]
O44 - LFC:[MD5.95970761AEE9A4B5678A839656168E51] - 11/03/2013 - 19:56:41 ---A- . (...) -- C:\Windows\SysNative\par2.txt   [45]
O44 - LFC:[MD5.725CC03C39651453D83FD2D6004DDC9A] - 11/03/2013 - 19:42:21  . (...) -- C:\Windows\System32\PerfStringBackup.INI   []
O44 - LFC:[MD5.725CC03C39651453D83FD2D6004DDC9A] - 11/03/2013 - 19:42:21 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI   [4568320]
O44 - LFC:[MD5.70AB67D479E196B9C56FC5A24DBD6766] - 11/03/2013 - 19:39:32 -S-A- . (...) -- C:\Windows\bootstat.dat   [67584]
O44 - LFC:[MD5.C2A8A6B683665B8CD0BABBAE6401F863] - 11/03/2013 - 19:31:53 ---A- . (...) -- C:\AdwCleaner[S1].txt   [6426]
O44 - LFC:[MD5.DCE85643021287096B45FBC1A6EB6F65] - 11/03/2013 - 19:10:27 ---A- . (...) -- C:\AdwCleaner[R1].txt   [6589]
O44 - LFC:[MD5.381B00B8CAE07A3C910DE042DDA627A8] - 11/03/2013 - 18:49:50  . (...) -- C:\Windows\System32\perfc007.dat   []
O44 - LFC:[MD5.B7B9BE0E093DB6212C09FD31B2028E2B] - 11/03/2013 - 18:49:50  . (...) -- C:\Windows\System32\perfc009.dat   []
O44 - LFC:[MD5.ABC8123FF141AE26EA1B05F145B3C54C] - 11/03/2013 - 18:49:50  . (...) -- C:\Windows\System32\perfc00C.dat   []
O44 - LFC:[MD5.5D0E93B7095923D9874FF55DEB134EE6] - 11/03/2013 - 18:49:50  . (...) -- C:\Windows\System32\perfc010.dat   []
O44 - LFC:[MD5.1CF980F366710404FAE777CBBCA2AFDD] - 11/03/2013 - 18:49:50  . (...) -- C:\Windows\System32\perfc013.dat   []
O44 - LFC:[MD5.73103A9E587E8AE144B167120D779131] - 11/03/2013 - 18:49:50  . (...) -- C:\Windows\System32\perfh007.dat   []
O44 - LFC:[MD5.1D178A6EA3291AA0F3121276E4F5F1F6] - 11/03/2013 - 18:49:50  . (...) -- C:\Windows\System32\perfh009.dat   []
O44 - LFC:[MD5.D9C5431C12142069EB5518E76D056F66] - 11/03/2013 - 18:49:50  . (...) -- C:\Windows\System32\perfh00C.dat   []
O44 - LFC:[MD5.78C3C4CA72F16E8DB778A753A5702E52] - 11/03/2013 - 18:49:50  . (...) -- C:\Windows\System32\perfh010.dat   []
O44 - LFC:[MD5.AE0AF84B380ED9343A6D88F7FA143DAC] - 11/03/2013 - 18:49:50  . (...) -- C:\Windows\System32\perfh013.dat   []
O44 - LFC:[MD5.381B00B8CAE07A3C910DE042DDA627A8] - 11/03/2013 - 18:49:50 ---A- . (...) -- C:\Windows\SysNative\perfc007.dat   [155360]
O44 - LFC:[MD5.B7B9BE0E093DB6212C09FD31B2028E2B] - 11/03/2013 - 18:49:50 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat   [132614]
O44 - LFC:[MD5.ABC8123FF141AE26EA1B05F145B3C54C] - 11/03/2013 - 18:49:50 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat   [155650]
O44 - LFC:[MD5.5D0E93B7095923D9874FF55DEB134EE6] - 11/03/2013 - 18:49:50 ---A- . (...) -- C:\Windows\SysNative\perfc010.dat   [152608]
O44 - LFC:[MD5.1CF980F366710404FAE777CBBCA2AFDD] - 11/03/2013 - 18:49:50 ---A- . (...) -- C:\Windows\SysNative\perfc013.dat   [158586]
O44 - LFC:[MD5.73103A9E587E8AE144B167120D779131] - 11/03/2013 - 18:49:50 ---A- . (...) -- C:\Windows\SysNative\perfh007.dat   [741800]
O44 - LFC:[MD5.1D178A6EA3291AA0F3121276E4F5F1F6] - 11/03/2013 - 18:49:50 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat   [710244]
O44 - LFC:[MD5.D9C5431C12142069EB5518E76D056F66] - 11/03/2013 - 18:49:50 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat   [800978]
O44 - LFC:[MD5.78C3C4CA72F16E8DB778A753A5702E52] - 11/03/2013 - 18:49:50 ---A- . (...) -- C:\Windows\SysNative\perfh010.dat   [780976]
O44 - LFC:[MD5.AE0AF84B380ED9343A6D88F7FA143DAC] - 11/03/2013 - 18:49:50 ---A- . (...) -- C:\Windows\SysNative\perfh013.dat   [785550]
O44 - LFC:[MD5.D2B3252AD4EB499C935A56467997AA3C] - 19/02/2013 - 13:59:06  . (...) -- C:\Windows\System32\Drivers\cfwids.sys   []
O44 - LFC:[MD5.2802D09F1B6ED502237539563F3C4992] - 19/02/2013 - 13:56:26  . (...) -- C:\Windows\System32\Drivers\mfewfpk.sys   []
O44 - LFC:[MD5.341BFCAA3A55C08E8C9ECB1654ACA905] - 19/02/2013 - 13:56:14  . (...) -- C:\Windows\System32\mfevtps.exe   []
O44 - LFC:[MD5.341BFCAA3A55C08E8C9ECB1654ACA905] - 19/02/2013 - 13:56:14 ---A- . (.McAfee, Inc. - McAfee Process Validation Service.) -- C:\Windows\SysNative\mfevtps.exe   [182752]
O44 - LFC:[MD5.BBA7899C02F0D37F6027465F18CC63C2] - 19/02/2013 - 13:55:26  . (...) -- C:\Windows\System32\Drivers\mfeclnk.sys   []
O44 - LFC:[MD5.6E3A46BF6CBB80450CC24F80FE03ED5A] - 19/02/2013 - 13:55:14  . (...) -- C:\Windows\System32\Drivers\mferkdet.sys   []
O44 - LFC:[MD5.EF0F85EDBDF6C0AB467E88E0CEE2B346] - 19/02/2013 - 13:54:32  . (...) -- C:\Windows\System32\Drivers\mfehidk.sys   []
O44 - LFC:[MD5.CECC9841D036EE008091825272D91331] - 19/02/2013 - 13:53:42  . (...) -- C:\Windows\System32\Drivers\mfefirek.sys   []
O44 - LFC:[MD5.113F1534B80D65DFDCA660F19967A3B7] - 19/02/2013 - 13:53:02  . (...) -- C:\Windows\System32\Drivers\mfeavfk.sys   []
O44 - LFC:[MD5.B1720E97FABBDF7D30B36DAF19C3DEE8] - 19/02/2013 - 13:52:44  . (...) -- C:\Windows\System32\Drivers\mfeapfk.sys   []
O44 - LFC:[MD5.AF83010055E18126067D0560069BF11A] - 19/02/2013 - 13:40:52  . (...) -- C:\Windows\System32\Drivers\mfeelamk.sys   []
O44 - LFC:[MD5.92EB844D90615CB266F84C3202B8786E] - 14/12/2012 - 16:49:28  . (...) -- C:\Windows\System32\Drivers\mbam.sys   []
O44 - LFC:[MD5.587D7B88E13455EE24F03FEA9E5324EC] - 12/11/2012 - 17:52:08 ---A- . (...) -- C:\Windows\Fix_V4.exe   [820939]
O44 - LFC:[MD5.A894FB2CAE6A29F5D9C8EDA47B074623] - 20/04/2012 - 16:40:58  . (...) -- C:\Windows\System32\Drivers\HipShieldK.sys   []
~ Scan Files in 00mn 05s



---\\ Derniers fichiers créés dans Windows Prefetcher (O45)
O45 - LFCP:[MD5.9D43DA0F48BC44E9588297BACB25F308] - 11/03/2013 - 18:08:57 ---A- - C:\Windows\Prefetch\AgAppLaunch.db
O45 - LFCP:[MD5.DB8E729C64DABB292DEB9E9AF16793B1] - 11/03/2013 - 18:11:06 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-DACB5D4F.pf
O45 - LFCP:[MD5.7506C0CE3D462CC79387FFE220EDDB7D] - 11/03/2013 - 18:11:38 ---A- - C:\Windows\Prefetch\SLUI.EXE-0A399C03.pf
O45 - LFCP:[MD5.181C82268E6BD9FD236178465BB8EA13] - 11/03/2013 - 18:11:51 ---A- - C:\Windows\Prefetch\SPPEXTCOMOBJ.EXE-3F878F80.pf
O45 - LFCP:[MD5.3629EFBB47A8A71242350E1E29F23494] - 11/03/2013 - 18:20:13 ---A- - C:\Windows\Prefetch\RELPOST.EXE-AC41CDAF.pf
O45 - LFCP:[MD5.6337E8708210A4831C555A19F644B83E] - 11/03/2013 - 18:20:20 ---A- - C:\Windows\Prefetch\MSOOBE.EXE-AE41C2E0.pf
O45 - LFCP:[MD5.120CF90E43F43036C5F67AE21F541C4A] - 11/03/2013 - 18:20:21 ---A- - C:\Windows\Prefetch\ASUSTPCFG64.EXE-7A0C8A89.pf
O45 - LFCP:[MD5.3D34930B9789523D616220BEBBA288BD] - 11/03/2013 - 18:20:27 ---A- - C:\Windows\Prefetch\HCONTROL.EXE-752ABE5C.pf
O45 - LFCP:[MD5.8E57E528C744B2E39842A55DE0167B8E] - 11/03/2013 - 18:20:27 ---A- - C:\Windows\Prefetch\INSONWMI.EXE-D024CEF9.pf
O45 - LFCP:[MD5.1DDF16B0B07B284EE16714F488249A42] - 11/03/2013 - 18:20:30 ---A- - C:\Windows\Prefetch\SIMUSEREXEC.EXE-5BCC1EE0.pf
O45 - LFCP:[MD5.104C0DCB9C64A69B0866DBDABBBD8A28] - 11/03/2013 - 18:20:39 ---A- - C:\Windows\Prefetch\ATKOSD2.EXE-830E1513.pf
O45 - LFCP:[MD5.CCFE5B9B4C65AC259C94E404BE83DE8B] - 11/03/2013 - 18:20:39 ---A- - C:\Windows\Prefetch\DMEDIA.EXE-FAA82C3F.pf
O45 - LFCP:[MD5.0101AD57EBDCB41E6FA20C09B6AC3933] - 11/03/2013 - 18:20:51 ---A- - C:\Windows\Prefetch\MCAPPCFG64.EXE-4FD1772B.pf
O45 - LFCP:[MD5.7CD015B0EC406577286D21D55ABD0AAA] - 11/03/2013 - 18:20:51 ---A- - C:\Windows\Prefetch\MCAPPCFG64.EXE-4FF76FE3.pf
O45 - LFCP:[MD5.59152D53E397E6BB2B7E6587960AD35A] - 11/03/2013 - 18:20:58 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-488A2FFC.pf
O45 - LFCP:[MD5.BAC7117417E8A2A7E82D699529A2568F] - 11/03/2013 - 18:20:58 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-F7D4FDD8.pf
O45 - LFCP:[MD5.E54DFB69D865CD4013632F94868EBC49] - 11/03/2013 - 18:21:00 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-8FBB83CD.pf
O45 - LFCP:[MD5.FE24CE5F9C299465D71FDC8746BA7451] - 11/03/2013 - 18:21:00 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-E070B5F1.pf
O45 - LFCP:[MD5.1189B0FA37E547C37E1FFB90AFA04D0F] - 11/03/2013 - 18:21:32 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-CEFAA268.pf
O45 - LFCP:[MD5.68FA46BA22F0B6FDC126D83777D6645E] - 11/03/2013 - 18:21:32 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-14FECFA1.pf
O45 - LFCP:[MD5.893CB2774B4B97DA567A5B05F1BD82EA] - 11/03/2013 - 18:21:40 ---A- - C:\Windows\Prefetch\MPFALERT.EXE-2D8A35F2.pf
O45 - LFCP:[MD5.721159A0471FD5F5FDA951A34F5CD6CB] - 11/03/2013 - 18:22:12 ---A- - C:\Windows\Prefetch\CLANG.EXE-430C3A55.pf
O45 - LFCP:[MD5.40E3F95E10305F09347A47D3A0FAE4FE] - 11/03/2013 - 18:22:12 ---A- - C:\Windows\Prefetch\SETREML.EXE-C3B84552.pf
O45 - LFCP:[MD5.2C921631EA734258FD1FC3CADAA1F462] - 11/03/2013 - 18:22:17 ---A- - C:\Windows\Prefetch\ASCALL.EXE-AEB321E4.pf
O45 - LFCP:[MD5.B065E9D02857DD09DB959885C6E809CE] - 11/03/2013 - 18:22:17 ---A- - C:\Windows\Prefetch\FIXPATCH.EXE-8577EF99.pf
O45 - LFCP:[MD5.3E8019D8D3E90DF13AC10430E8CA14E6] - 11/03/2013 - 18:22:17 ---A- - C:\Windows\Prefetch\PROGRESSBAR.EXE-14DFE636.pf
O45 - LFCP:[MD5.85524058A645918E20B5BB09AFABFD0D] - 11/03/2013 - 18:22:18 ---A- - C:\Windows\Prefetch\ATTRIB.EXE-73AEC510.pf
O45 - LFCP:[MD5.C7D80B8658B163DC16FF7BE33B805CAA] - 11/03/2013 - 18:22:18 ---A- - C:\Windows\Prefetch\POWERCFG.EXE-C4097EFB.pf
O45 - LFCP:[MD5.6A5E27E43F33E6DA63D83A4606E09CAC] - 11/03/2013 - 18:22:18 ---A- - C:\Windows\Prefetch\REG.EXE-6A8B6960.pf
O45 - LFCP:[MD5.86438252E26C98F85385034B3A890727] - 11/03/2013 - 18:22:18 ---A- - C:\Windows\Prefetch\REGEDIT.EXE-246AC210.pf
O45 - LFCP:[MD5.117EC851B41D23D95DAEB88B1C32A3A4] - 11/03/2013 - 18:22:19 ---A- - C:\Windows\Prefetch\RUNONCE.EXE-AAB0060C.pf
O45 - LFCP:[MD5.75D7165F8B67E2C895BEB8394A171AC5] - 11/03/2013 - 18:22:20 ---A- - C:\Windows\Prefetch\EXPLORER.EXE-03C49D11.pf
O45 - LFCP:[MD5.A89F1CE07187904F6BB16CB3C5666E63] - 11/03/2013 - 18:22:20 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-C5D469F3.pf
O45 - LFCP:[MD5.26B64D681D6BF0B0B708F56CDB4844DE] - 11/03/2013 - 18:22:20 ---A- - C:\Windows\Prefetch\USERINIT.EXE-7FD17ED1.pf
O45 - LFCP:[MD5.FC03AF8E3F293E76E3F1788D095A3D71] - 11/03/2013 - 18:22:22 ---A- - C:\Windows\Prefetch\CHANGEFOLDERVIEW.EXE-8D7C2D3D.pf
O45 - LFCP:[MD5.7BA0DB491FF1F9062A510981340FECFD] - 11/03/2013 - 18:22:22 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-8E148C0C.pf
O45 - LFCP:[MD5.2A067F1A485F23574053C44861009F84] - 11/03/2013 - 18:22:22 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-A41FD249.pf
O45 - LFCP:[MD5.CF2D8554BD47BFBDF5B80E03FCDD6AE4] - 11/03/2013 - 18:22:22 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-C39FDE51.pf
O45 - LFCP:[MD5.3B2AAB043CD426013DE1582C4A38ED68] - 11/03/2013 - 18:22:31 ---A- - C:\Windows\Prefetch\MCAGENT.EXE-88404BE0.pf
O45 - LFCP:[MD5.583BDD88DA5BE6D7B78968E30207775B] - 11/03/2013 - 18:22:34 ---A- - C:\Windows\Prefetch\MSKXAGNT.EXE-8B0CFAEC.pf
O45 - LFCP:[MD5.FB544D007EC604E964156CFC31E62195] - 11/03/2013 - 18:22:34 ---A- - C:\Windows\Prefetch\UNREGMP2.EXE-800E8C32.pf
O45 - LFCP:[MD5.3A4E39589D1EE8EDB0CB4E60218B5F25] - 11/03/2013 - 18:22:34 ---A- - C:\Windows\Prefetch\WINMAIL.EXE-83E66E4B.pf
O45 - LFCP:[MD5.E74717DA49E9E601A6E2C184EF421E7C] - 11/03/2013 - 18:22:35 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-7DABA587.pf
O45 - LFCP:[MD5.2C64D87CC7FCA36E466FE56E1388111A] - 11/03/2013 - 18:22:43 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-B331F1D0.pf
O45 - LFCP:[MD5.283797CA754AACC0DB91521672C4A5C2] - 11/03/2013 - 18:22:58 ---A- - C:\Windows\Prefetch\LIVECOMM.EXE-32EE8CFF.pf
O45 - LFCP:[MD5.AEAE64BA6AFD3A2E632D94273122D12D] - 11/03/2013 - 18:22:58 ---A- - C:\Windows\Prefetch\WWAHOST.EXE-11B06426.pf
O45 - LFCP:[MD5.6AF972E50FEE3CD50CE5628DEB38E723] - 11/03/2013 - 18:22:58 ---A- - C:\Windows\Prefetch\WWAHOST.EXE-2D7D5944.pf
O45 - LFCP:[MD5.EF030FC394070A24A7586B4ED6CA507C] - 11/03/2013 - 18:22:58 ---A- - C:\Windows\Prefetch\WWAHOST.EXE-A5ADF7F2.pf
O45 - LFCP:[MD5.A5B49CBA0CC9F9780174680476B6B573] - 11/03/2013 - 18:22:58 ---A- - C:\Windows\Prefetch\WWAHOST.EXE-F4EE87DD.pf
O45 - LFCP:[MD5.CA77C118C160352B42304350FD43080A] - 11/03/2013 - 18:22:58 ---A- - C:\Windows\Prefetch\WWAHOST.EXE-F7FB8768.pf
O45 - LFCP:[MD5.D3D3E77A74F415E1D4FDB56448FB2F70] - 11/03/2013 - 18:23:12 ---A- - C:\Windows\Prefetch\QUICKGESTURE.EXE-53EF2403.pf
O45 - LFCP:[MD5.0F4EE38420D084195E5F19951F4AAECB] - 11/03/2013 - 18:23:13 ---A- - C:\Windows\Prefetch\ASUSTPLOADER.EXE-B7FF0997.pf
O45 - LFCP:[MD5.522E90C9EE1B6F15C50B14C0E52097AE] - 11/03/2013 - 18:23:13 ---A- - C:\Windows\Prefetch\QUICKGESTURE64.EXE-E11F7291.pf
O45 - LFCP:[MD5.472FC9BD794A2E5127C082E1D56F5881] - 11/03/2013 - 18:23:23 ---A- - C:\Windows\Prefetch\ASUSTPCENTER.EXE-C1FC7DF9.pf
O45 - LFCP:[MD5.2FFDF5A266459181166BD2D99ABCCE41] - 11/03/2013 - 18:23:27 ---A- - C:\Windows\Prefetch\ASUSTPHELPER.EXE-CAD6AF5C.pf
O45 - LFCP:[MD5.447E22CB77368F6D82E56FDE7FAB9DEB] - 11/03/2013 - 18:23:32 ---A- - C:\Windows\Prefetch\IE4UINIT.EXE-97F7E751.pf
O45 - LFCP:[MD5.27B84C62F7C60C9FF9A9C8F22CFF479D] - 11/03/2013 - 18:25:04 ---A- - C:\Windows\Prefetch\GOOGLE-CHROME-INSTALL.EXE-915F6625.pf
O45 - LFCP:[MD5.0FE35EF4EE74338636C4BD16F9A16BB2] - 11/03/2013 - 18:25:11 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-A2BD634E.pf
O45 - LFCP:[MD5.AC878CD6FE70AC659BFDB0EA99169DDD] - 11/03/2013 - 18:25:15 ---A- - C:\Windows\Prefetch\IRSETUP.EXE-7E96A113.pf
O45 - LFCP:[MD5.45A71C088F038EF613C13382369C8F49] - 11/03/2013 - 18:25:19 ---A- - C:\Windows\Prefetch\HEXDUMP.EXE-A1A210DE.pf
O45 - LFCP:[MD5.AD6CC4E78175112A6F50AED1EAC19258] - 11/03/2013 - 18:25:54 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-5C94BCB3.pf
O45 - LFCP:[MD5.24BC906C7684DA5553FA235E9490EA6B] - 11/03/2013 - 18:26:02 ---A- - C:\Windows\Prefetch\VERCLSID.EXE-D9CCBE06.pf
O45 - LFCP:[MD5.23B1991EE70739C503CE72F4EA5B17A9] - 11/03/2013 - 18:27:08 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-EDDCDD1B.pf
O45 - LFCP:[MD5.C7BCA89AFE686839CFD668E8350D5A02] - 11/03/2013 - 18:27:10 ---A- - C:\Windows\Prefetch\BD.EXE-C5ED85BD.pf
O45 - LFCP:[MD5.1E4CC04FC44090FFE9475FEE8BE65FB5] - 11/03/2013 - 18:27:12 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-9FE4A820.pf
O45 - LFCP:[MD5.681F6CC1E9987F7874E0B53329FE2F11] - 11/03/2013 - 18:27:16 ---A- - C:\Windows\Prefetch\1H3OSJIY.L1R-CFBC9FE6.pf
O45 - LFCP:[MD5.A0E8CFDFA87FE17FAD2FE2917A62C78F] - 11/03/2013 - 18:27:17 ---A- - C:\Windows\Prefetch\SETUP.EXE-959B9F3E.pf
O45 - LFCP:[MD5.60F877895690997DFA51BD12BCB14158] - 11/03/2013 - 18:27:18 ---A- - C:\Windows\Prefetch\IELOWUTIL.EXE-4CD7A8CB.pf
O45 - LFCP:[MD5.ED62B7B9449AA44DCF9BFE3FC20B2293] - 11/03/2013 - 18:27:19 ---A- - C:\Windows\Prefetch\DELTA4FFX.EXE-5BB6C2A3.pf
O45 - LFCP:[MD5.1B2704F3A9541E2FDAB5EDD8F7323825] - 11/03/2013 - 18:27:19 ---A- - C:\Windows\Prefetch\DELTASRV.EXE-4C1778A4.pf
O45 - LFCP:[MD5.0EE17CE7E3FEA4D5BF95AD483C8CFFAB] - 11/03/2013 - 18:27:21 ---A- - C:\Windows\Prefetch\SETUP.EXE-6E928E9B.pf
O45 - LFCP:[MD5.B9130769685023E2199873A061CE7D62] - 11/03/2013 - 18:27:24 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-5BEE3442.pf
O45 - LFCP:[MD5.A259E2303F7B965299DC277E0B474D7B] - 11/03/2013 - 18:27:28 ---A- - C:\Windows\Prefetch\MYBABYLONTB.EXE-C75A7E35.pf
O45 - LFCP:[MD5.FD61867AB9F94B73678AA87238B8B556] - 11/03/2013 - 18:27:29 ---A- - C:\Windows\Prefetch\DELTA4IE.EXE-FA32F195.pf
O45 - LFCP:[MD5.CD77E506D19A585D52995FABF154DC86] - 11/03/2013 - 18:27:32 ---A- - C:\Windows\Prefetch\CCP.EXE-53117D8C.pf
O45 - LFCP:[MD5.F0265C7BDC1003B48DBCC5130DE9DCB1] - 11/03/2013 - 18:27:32 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-63B91DCC.pf
O45 - LFCP:[MD5.EBA72D5815910DBD035D172DA15B79AE] - 11/03/2013 - 18:27:36 ---A- - C:\Windows\Prefetch\BPROTECT.EXE-A42AA394.pf
O45 - LFCP:[MD5.85DD234805AC84E183BF38E88050A31D] - 11/03/2013 - 18:28:07 ---A- - C:\Windows\Prefetch\IEXPLORE.EXE-7A9337F2.pf
O45 - LFCP:[MD5.D604318653DB9BCB1A1FEAB0C67DC248] - 11/03/2013 - 18:28:09 ---A- - C:\Windows\Prefetch\FLASHUTIL_ACTIVEX.EXE-4E6AE223.pf
O45 - LFCP:[MD5.C37A1C4DE0F69611ACFA73B6420A27AC] - 11/03/2013 - 18:28:26 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-1591C323.pf
O45 - LFCP:[MD5.04ADA29AA01A457C56787864CC3C1DB9] - 11/03/2013 - 18:28:30 ---A- - C:\Windows\Prefetch\IEXPLORE.EXE-F4FB5D2F.pf
O45 - LFCP:[MD5.F954D89FC23090E59335998B4D0F80EF] - 11/03/2013 - 18:28:36 ---A- - C:\Windows\Prefetch\DFSVC.EXE-AD35CBCB.pf
O45 - LFCP:[MD5.C9F48B040422F707E4738B5EB0D75948] - 11/03/2013 - 18:28:43 ---A- - C:\Windows\Prefetch\CLICKONCE_BOOTSTRAP.EXE-CF4DA813.pf
O45 - LFCP:[MD5.429640A1AB3034778356286B5BBB0E3A] - 11/03/2013 - 18:28:53 ---A- - C:\Windows\Prefetch\GOOGLEUPDATE.EXE-6A6BEA3F.pf
O45 - LFCP:[MD5.0E329E85D45EC35EBBF0CCF1D660A081] - 11/03/2013 - 18:28:53 ---A- - C:\Windows\Prefetch\GOOGLEUPDATESETUP.EXE-0DA71FA8.pf
O45 - LFCP:[MD5.97C2645EA5C59A3ECAC994B1C21A522E] - 11/03/2013 - 18:28:57 ---A- - C:\Windows\Prefetch\GOOGLEUPDATE.EXE-56197E54.pf
O45 - LFCP:[MD5.45E6C101EC68BA1EC63D1384C5A1C1F5] - 11/03/2013 - 18:28:57 ---A- - C:\Windows\Prefetch\GOOGLEUPDATESETUP.EXE-DFB6DE5C.pf
O45 - LFCP:[MD5.68E048573827F2861B013CAEBCBA4FA2] - 11/03/2013 - 18:29:45 ---A- - C:\Windows\Prefetch\SETUP.EXE-2C14221C.pf
O45 - LFCP:[MD5.6CC90673CC203B7CF3C2A2F6246A4B28] - 11/03/2013 - 18:29:47 ---A- - C:\Windows\Prefetch\25.0.1364.160_CHROME_INSTALLE-20F4C608.pf
O45 - LFCP:[MD5.95EC2730BF36CABEF99068FA2B58285B] - 11/03/2013 - 18:29:47 ---A- - C:\Windows\Prefetch\GOOGLEUPDATEONDEMAND.EXE-F0E2111B.pf
O45 - LFCP:[MD5.313CCB2C5715AF3AF87F712EE82A9E2E] - 11/03/2013 - 18:30:02 ---A- - C:\Windows\Prefetch\SETUP.EXE-08355337.pf
O45 - LFCP:[MD5.DD6BCBA2EB022FB2E284208BF3C4DEC8] - 11/03/2013 - 18:30:04 ---A- - C:\Windows\Prefetch\OPENWITH.EXE-BA0DC300.pf
O45 - LFCP:[MD5.3211CBF600E9C7F45532CB4A0709B4AD] - 11/03/2013 - 18:32:39 ---A- - C:\Windows\Prefetch\WISECONVERT_1.5.EXE-56B71ECC.pf
O45 - LFCP:[MD5.28A5A359C36188EA496A7984BA3EC320] - 11/03/2013 - 18:32:45 ---A- - C:\Windows\Prefetch\BI.EXE-3B8D0ED4.pf
O45 - LFCP:[MD5.E53187180E470CFB365A29F69DF71F40] - 11/03/2013 - 18:33:50 ---A- - C:\Windows\Prefetch\ZHPDIAG2.TMP-BF5D18AA.pf
O45 - LFCP:[MD5.A9A07437B65DFEC94AAD6FAFADD06EC3] - 11/03/2013 - 18:33:51 ---A- - C:\Windows\Prefetch\ZHPDIAG2.EXE-D97B36CD.pf
O45 - LFCP:[MD5.706BEF6E37ED751DE1E981A139D76D7D] - 11/03/2013 - 18:33:51 ---A- - C:\Windows\Prefetch\ZHPDIAG2.TMP-897A0ED3.pf
O45 - LFCP:[MD5.3DAE3B6592A5638016BFB613C238DFA5] - 11/03/2013 - 18:42:38 ---A- - C:\Windows\Prefetch\TASKKILL.EXE-3D8A2F61.pf
O45 - LFCP:[MD5.96477E1787A2DD37A0DDB5670BB63542] - 11/03/2013 - 18:45:31 ---A- - C:\Windows\Prefetch\ACOVS.EXE-2C6C215E.pf
O45 - LFCP:[MD5.FCAD2E13B5C97AD017FC4C143D81E2ED] - 11/03/2013 - 18:45:54 ---A- - C:\Windows\Prefetch\PRESENTATIONFONTCACHE.EXE-E2702CF2.pf
O45 - LFCP:[MD5.F58A66894D4C8586ABFC6C5BD9FB67E0] - 11/03/2013 - 18:46:37 ---A- - C:\Windows\Prefetch\GETMYTOUCH.EXE-3F31650B.pf
O45 - LFCP:[MD5.B1B2F219A266163ED07DBAA79C0525E1] - 11/03/2013 - 18:46:37 ---A- - C:\Windows\Prefetch\REGISTERCALLER.EXE-B172CDBE.pf
O45 - LFCP:[MD5.BD38129C9197F9C778C95101BA82A93D] - 11/03/2013 - 18:46:37 ---A- - C:\Windows\Prefetch\REGISTERPROC64.EXE-6F1C4009.pf
O45 - LFCP:[MD5.F7EBCF4A106ACA1A12B884D72172329D] - 11/03/2013 - 18:46:38 ---A- - C:\Windows\Prefetch\CHECK_OS.EXE-EE506228.pf
O45 - LFCP:[MD5.F31ED88D501019A88B8EAC5E7D893CD4] - 11/03/2013 - 18:46:38 ---A- - C:\Windows\Prefetch\REG.EXE-CC1AF0A4.pf
O45 - LFCP:[MD5.BD70BDD148552EC43B37ABB64E607B15] - 11/03/2013 - 18:46:41 ---A- - C:\Windows\Prefetch\DPINST.EXE-61DDAA9F.pf
O45 - LFCP:[MD5.A6B9FBF95AF21293BD21A5FF3A56FBF0] - 11/03/2013 - 18:46:46 ---A- - C:\Windows\Prefetch\BATCHCALLER.EXE-3D164FA7.pf
O45 - LFCP:[MD5.0BC8010971A6468532E1E222EDA7C7D8] - 11/03/2013 - 18:46:46 ---A- - C:\Windows\Prefetch\TIMEOUT.EXE-A83E0AC1.pf
O45 - LFCP:[MD5.9CAD26E651AB8AB42B186FBB5B8C6780] - 11/03/2013 - 18:46:46 ---A- - C:\Windows\Prefetch\XCOPY.EXE-85839ADD.pf
O45 - LFCP:[MD5.1FA30C0DFD994545FC2FF338AA48AC45] - 11/03/2013 - 18:46:47 ---A- - C:\Windows\Prefetch\SCHEDULERPROC.EXE-FD60AF25.pf
O45 - LFCP:[MD5.19A5949B2AE7B2F58CAFB98B752BAA0A] - 11/03/2013 - 18:49:59 ---A- - C:\Windows\Prefetch\MCHLP32.EXE-C76241FD.pf
O45 - LFCP:[MD5.D94675B93EAB5AF27BC3109FD6BB722E] - 11/03/2013 - 18:49:59 ---A- - C:\Windows\Prefetch\MCVSMAP.EXE-64B21786.pf
O45 - LFCP:[MD5.CE290030626200F7D5F97D83C426FD93] - 11/03/2013 - 18:50:00 ---A- - C:\Windows\Prefetch\MCSYNC.EXE-8559D2BC.pf
O45 - LFCP:[MD5.71DCD63058EBEC00284D1DF6071FBD14] - 11/03/2013 - 18:50:02 ---A- - C:\Windows\Prefetch\MCOCROLLBACK.EXE-48449529.pf
O45 - LFCP:[MD5.62602DC9C5604A265FF26B35F0443D19] - 11/03/2013 - 18:50:04 ---A- - C:\Windows\Prefetch\MCUPDMGR.EXE-73F1857E.pf
O45 - LFCP:[MD5.12CA4CE2410E8A1192B986C657F69E48] - 11/03/2013 - 18:50:07 ---A- - C:\Windows\Prefetch\MCINSTRU.EXE-F710CFF1.pf
O45 - LFCP:[MD5.B3F1DC45C66E28BA079D8439C659BEA0] - 11/03/2013 - 18:50:10 ---A- - C:\Windows\Prefetch\MCSVRCNT.EXE-3C30113B.pf
O45 - LFCP:[MD5.7DD27DEB1A6922EE832CD881BCA4CA0B] - 11/03/2013 - 18:50:15 ---A- - C:\Windows\Prefetch\MCUICNT.EXE-A7031FFF.pf
O45 - LFCP:[MD5.7E2EF269D4F5CF0AAB43EB6F2BF785D2] - 11/03/2013 - 18:50:16 ---A- - C:\Windows\Prefetch\MCSMTFWK.EXE-9E1B7F96.pf
O45 - LFCP:[MD5.40367914CD66ECF88D51A840C5DDFE18] - 11/03/2013 - 18:50:18 ---A- - C:\Windows\Prefetch\QCSHM.EXE-706708ED.pf
O45 - LFCP:[MD5.D6816CA1AE9EC169318A6627084E0FAA] - 11/03/2013 - 18:54:22 ---A- - C:\Windows\Prefetch\MCINST.EXE-330CE20F.pf
O45 - LFCP:[MD5.F602B00B0E9320E02D9FFC8F59AD8402] - 11/03/2013 - 18:54:23 ---A- - C:\Windows\Prefetch\CRTINSTALLER.EXE-CC7E937E.pf
O45 - LFCP:[MD5.84BAF377051A253A69966B50983C9021] - 11/03/2013 - 18:54:34 ---A- - C:\Windows\Prefetch\MCVSCINS.EXE-E55E3B09.pf
O45 - LFCP:[MD5.B42048954C18A716C00975BBF879B8EC] - 11/03/2013 - 18:54:34 ---A- - C:\Windows\Prefetch\MFEHIDIN.EXE-8BAF4D3F.pf
O45 - LFCP:[MD5.E123673CC5704BB55C00B70369D5D028] - 11/03/2013 - 18:54:44 ---A- - C:\Windows\Prefetch\BROWSERPROTECT.EXE-A2888276.pf
O45 - LFCP:[MD5.83C6A45379090D231766E683D7D9D21A] - 11/03/2013 - 18:54:54 ---A- - C:\Windows\Prefetch\MFEVTPS.EXE-A35D567B.pf
O45 - LFCP:[MD5.831EB627C1D3071932E6C2FC98724C43] - 11/03/2013 - 18:54:58 ---A- - C:\Windows\Prefetch\MFEFIRE.EXE-642FB93D.pf
O45 - LFCP:[MD5.A55512CFA8F15AB8DE03E1B06E628CBC] - 11/03/2013 - 18:55:07 ---A- - C:\Windows\Prefetch\MBAM-SETUP-1.70.0.1100.TMP-2FDB708C.pf
O45 - LFCP:[MD5.C217621AA7783B5E3FBE32EB756BFA15] - 11/03/2013 - 18:55:09 ---A- - C:\Windows\Prefetch\MBAM-SETUP-1.70.0.1100.EXE-72D81354.pf
O45 - LFCP:[MD5.F8BEDE002232EA9EEA9EBB3810EC2FFD] - 11/03/2013 - 18:55:09 ---A- - C:\Windows\Prefetch\MBAM-SETUP-1.70.0.1100.TMP-AA7196EE.pf
O45 - LFCP:[MD5.F6B9BB6A3780F8D808458625BA712302] - 11/03/2013 - 18:55:15 ---A- - C:\Windows\Prefetch\WEVTUTIL.EXE-4CD23CAE.pf
O45 - LFCP:[MD5.DD5E639E76A32D5974DDDDD6A2937334] - 11/03/2013 - 18:55:42 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-159B5F5D.pf
O45 - LFCP:[MD5.F868D9205A8D71F053BD5B5F1A2D4789] - 11/03/2013 - 18:55:42 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-66509181.pf
O45 - LFCP:[MD5.BC53D2EA53ABD661DD690E80A2C7EB62] - 11/03/2013 - 18:55:47 ---A- - C:\Windows\Prefetch\MCALTHST.EXE-DA7AB935.pf
O45 - LFCP:[MD5.47E5D7B608035DD77F20796A2C594D07] - 11/03/2013 - 18:55:49 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-08A2B341.pf
O45 - LFCP:[MD5.B144D3D8759548DB13E8462228D293F9] - 11/03/2013 - 18:55:49 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-5957E565.pf
O45 - LFCP:[MD5.B90DB1F0399C044374913036FB1D7D1B] - 11/03/2013 - 18:55:50 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-D86CBA56.pf
O45 - LFCP:[MD5.662E9358766BC838BDB51C6470D2BD4A] - 11/03/2013 - 18:55:51 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-2921EC7A.pf
O45 - LFCP:[MD5.54E089908DC20EB1A4436B2E98672D3B] - 11/03/2013 - 18:55:56 ---A- - C:\Windows\Prefetch\REGSVR32.EXE-E1DBB6D8.pf
O45 - LFCP:[MD5.EE723B996D8383D0438044F7D0FBB48D] - 11/03/2013 - 18:55:59 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-9D8CD5DF.pf
O45 - LFCP:[MD5.2191306B10557E849E7AFF2A53EA6B0F] - 11/03/2013 - 18:55:59 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-EE420803.pf
O45 - LFCP:[MD5.084651DC12CA91D9D67DA19A3E9D7581] - 11/03/2013 - 18:56:04 ---A- - C:\Windows\Prefetch\MCBOOTSVCSET.EXE-B7932E44.pf
O45 - LFCP:[MD5.2D213153E2AA70634A64B451622EFA3C] - 11/03/2013 - 18:56:04 ---A- - C:\Windows\Prefetch\UI0DETECT.EXE-88387615.pf
O45 - LFCP:[MD5.2146710A63954D9DCC6770F1A4D19A8A] - 11/03/2013 - 18:56:10 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-5087A1DB.pf
O45 - LFCP:[MD5.3D1FF45127621787534E364E49E5BD12] - 11/03/2013 - 18:56:10 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-A13CD3FF.pf
O45 - LFCP:[MD5.74538AE843D100BDDF34313865B5C932] - 11/03/2013 - 18:56:14 ---A- - C:\Windows\Prefetch\MVSINST.EXE-95DFD903.pf
O45 - LFCP:[MD5.B76D7916ADCB96DA7D45B63B9F4B5CD9] - 11/03/2013 - 18:56:20 ---A- - C:\Windows\Prefetch\MCVSSHLD.EXE-F69E7D8B.pf
O45 - LFCP:[MD5.6FF18E9CAD8E6F6A73030BB0F53A52CE] - 11/03/2013 - 18:56:21 ---A- - C:\Windows\Prefetch\MCAPPCFG.EXE-F53ACC23.pf
O45 - LFCP:[MD5.0C30D3A500D6B6888519BCE00A285E0D] - 11/03/2013 - 18:56:21 ---A- - C:\Windows\Prefetch\MCINST.EXE-3B56B390.pf
O45 - LFCP:[MD5.7822D2C125E754FEE85645E86F0DB76D] - 11/03/2013 - 18:56:21 ---A- - C:\Windows\Prefetch\SC.EXE-CCD1735C.pf
O45 - LFCP:[MD5.1858A4B062A69892CD79079FA776FE7E] - 11/03/2013 - 18:56:25 ---A- - C:\Windows\Prefetch\MBAMSCHEDULER.EXE-E0C395DC.pf
O45 - LFCP:[MD5.88625682BDC7A6317D6BC0573A9C5A84] - 11/03/2013 - 18:56:25 ---A- - C:\Windows\Prefetch\MBAMSERVICE.EXE-5C46DB66.pf
O45 - LFCP:[MD5.E1D6BB4B1D5C7E483E48A1E1C09C418C] - 11/03/2013 - 18:57:40 ---A- - C:\Windows\Prefetch\MCINSUPD.EXE-99FB83BE.pf
O45 - LFCP:[MD5.52806FC50D8599AB357BCB59EC9D77CC] - 11/03/2013 - 18:57:52 ---A- - C:\Windows\Prefetch\MCINST.EXE-7BA904C5.pf
O45 - LFCP:[MD5.8C8C967D65605907C78C3C9F06B683FF] - 11/03/2013 - 18:58:02 ---A- - C:\Windows\Prefetch\MPFALERT.EXE-073C8D87.pf
O45 - LFCP:[MD5.BB4C6C72E252EFFEC002BEB50E4E303C] - 11/03/2013 - 18:58:04 ---A- - C:\Windows\Prefetch\FIRESVC.EXE-0D835FE5.pf
O45 - LFCP:[MD5.018E76A935337405AC5B223004A6DD7F] - 11/03/2013 - 18:58:04 ---A- - C:\Windows\Prefetch\SC.EXE-443D0E78.pf
O45 - LFCP:[MD5.1CAA04276C2B7D472D539BCDAF5E78AE] - 11/03/2013 - 18:58:18 ---A- - C:\Windows\Prefetch\MCINST.EXE-0C9F9195.pf
O45 - LFCP:[MD5.EBCD1361490EBDDAC94E97A7F07B5976] - 11/03/2013 - 18:58:24 ---A- - C:\Windows\Prefetch\PSUPGD.EXE-9F9ECD30.pf
O45 - LFCP:[MD5.045F91AACB2F1CB15F991E5D0E60B139] - 11/03/2013 - 18:58:27 ---A- - C:\Windows\Prefetch\MCALERT.EXE-8AB70189.pf
O45 - LFCP:[MD5.0D1D758F3DA0633646C686A34E7B71D4] - 11/03/2013 - 18:58:42 ---A- - C:\Windows\Prefetch\MCINST.EXE-B287EE2E.pf
O45 - LFCP:[MD5.1E2752F0F6C4C8F37D05A6F702273EBC] - 11/03/2013 - 18:58:43 ---A- - C:\Windows\Prefetch\MCINST.EXE-09C41973.pf
O45 - LFCP:[MD5.6C7F3F405AB502D957096747B391A24B] - 11/03/2013 - 18:58:43 ---A- - C:\Windows\Prefetch\MISPREG.EXE-3031D383.pf
O45 - LFCP:[MD5.6E461160BDE85DE308B2D54DE4783C5E] - 11/03/2013 - 18:58:47 ---A- - C:\Windows\Prefetch\MCINFO.EXE-7515B06C.pf
O45 - LFCP:[MD5.B151EC73E009CFA305A6D301D58D74C3] - 11/03/2013 - 19:00:17 ---A- - C:\Windows\Prefetch\CONTROL.EXE-5BCB0217.pf
O45 - LFCP:[MD5.3F39E0918016F882E189A6287D9DCAC3] - 11/03/2013 - 19:00:23 ---A- - C:\Windows\Prefetch\Op-EXPLORER.EXE-03C49D11-000000F5.pf
O45 - LFCP:[MD5.2C7D48CEB5E02CD431F63C0F42CEC07F] - 11/03/2013 - 19:00:54 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-86B26863.pf
O45 - LFCP:[MD5.76C0BEF0FAE6EA7A305BFD6588907899] - 11/03/2013 - 19:10:20 ---A- - C:\Windows\Prefetch\ADWCLEANER (2).EXE-342F664D.pf
O45 - LFCP:[MD5.6B5F775225789F469DCAACCA6FA7DE52] - 11/03/2013 - 19:10:37 ---A- - C:\Windows\Prefetch\NOTEPAD.EXE-B28CC291.pf
O45 - LFCP:[MD5.321E97E38A365C6883E4CBF541819C86] - 11/03/2013 - 19:17:43 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-B865F023.pf
O45 - LFCP:[MD5.28981CB599DAF1DCD8BE03BA7C987E32] - 11/03/2013 - 19:18:13 ---A- - C:\Windows\Prefetch\WERFAULT.EXE-44194444.pf
O45 - LFCP:[MD5.7016CF7F97C8365F6C5479044080A320] - 11/03/2013 - 19:18:41 ---A- - C:\Windows\Prefetch\BYTECODEGENERATOR.EXE-353D57C0.pf
O45 - LFCP:[MD5.000792397DA97014D6CF1360A89DAA49] - 11/03/2013 - 19:23:58 ---A- - C:\Windows\Prefetch\WWAHOST.EXE-DAF4E5BB.pf
O45 - LFCP:[MD5.BCFA78FBAE95816C960F5F0A10BAB0A5] - 11/03/2013 - 19:23:59 ---A- - C:\Windows\Prefetch\RUNTIMEBROKER.EXE-17E2786F.pf
O45 - LFCP:[MD5.4D4F3B2E3985DC766D325264B1804D06] - 11/03/2013 - 19:24:45 ---A- - C:\Windows\Prefetch\BYTECODEGENERATOR.EXE-9C808144.pf
O45 - LFCP:[MD5.9152488CD70D0A6A5F5C66F064A2E7DF] - 11/03/2013 - 19:31:14 ---A- - C:\Windows\Prefetch\ADWCLEANER.EXE-B05F08EE.pf
O45 - LFCP:[MD5.B7E7A2A280360B466832142095EA4C6F] - 11/03/2013 - 19:31:57 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-3C40F7FB.pf
O45 - LFCP:[MD5.5926EC13B55462D55C4D055D57370BAA] - 11/03/2013 - 19:32:35 ---A- - C:\Windows\Prefetch\LOGONUI.EXE-E35F76FB.pf
O45 - LFCP:[MD5.6A3A920FC0D12D62A0831EDDD4DA5B3F] - 11/03/2013 - 19:34:47 ---A- - C:\Windows\Prefetch\IGFXEXT.EXE-B04096D5.pf
O45 - LFCP:[MD5.C1DE4907205C891A5E61AC0686AFD16E] - 11/03/2013 - 19:34:54 ---A- - C:\Windows\Prefetch\HKCMD.EXE-15DC91D5.pf
O45 - LFCP:[MD5.49E9FE05EBB75147C3E4B1A40C9BFC31] - 11/03/2013 - 19:34:56 ---A- - C:\Windows\Prefetch\READER_SL.EXE-350EE930.pf
O45 - LFCP:[MD5.9CCA202664B331014F1483C46A8DFF7B] - 11/03/2013 - 19:34:57 ---A- - C:\Windows\Prefetch\IGFXPERS.EXE-82C794F2.pf
O45 - LFCP:[MD5.E567B9FA7240D79A31B49E3561241998] - 11/03/2013 - 19:36:10 ---A- - C:\Windows\Prefetch\MSMPENG.EXE-F9080403.pf
O45 - LFCP:[MD5.904F53DE6B954073B932CA8072A4F734] - 11/03/2013 - 19:37:01 ---A- - C:\Windows\Prefetch\PfSvPerfStats.bin
O45 - LFCP:[MD5.1E163898540B889EA3B7597C3FB5326D] - 11/03/2013 - 19:38:22 ---A- - C:\Windows\Prefetch\RUNONCE.EXE-E874B0D0.pf
O45 - LFCP:[MD5.2F4AC864448683CD8E926E2BFB4D6903] - 11/03/2013 - 19:38:22 ---A- - C:\Windows\Prefetch\SEARCHFILTERHOST.EXE-10E4267C.pf
O45 - LFCP:[MD5.74F82F2B6406879C47BBED22E09E8808] - 11/03/2013 - 19:38:22 ---A- - C:\Windows\Prefetch\SEARCHINDEXER.EXE-EF8503D3.pf
O45 - LFCP:[MD5.0C63D7D5B53FA645D5794C8B2556DE0E] - 11/03/2013 - 19:38:22 ---A- - C:\Windows\Prefetch\SEARCHPROTOCOLHOST.EXE-C6CFE2A8.pf
O45 - LFCP:[MD5.6C107B2DF44ECF5A7ECD9798CE41B6DE] - 11/03/2013 - 19:38:23 ---A- - C:\Windows\Prefetch\IGFXTRAY.EXE-21BDFE68.pf
O45 - LFCP:[MD5.E0A4D9EF3A8F88340B808156B81F0BBB] - 11/03/2013 - 19:38:24 ---A- - C:\Windows\Prefetch\RAVCPL64.EXE-C0BB540D.pf
O45 - LFCP:[MD5.CA168CC90E80B5F36A86302CEC115A37] - 11/03/2013 - 19:38:25 ---A- - C:\Windows\Prefetch\ACMON.EXE-039F45B0.pf
O45 - LFCP:[MD5.9A6C187B622A5AC4551E3A8F34DC49FA] - 11/03/2013 - 19:38:26 ---A- - C:\Windows\Prefetch\PDVD10SERV.EXE-99C8A7B5.pf
O45 - LFCP:[MD5.485A97DD1A3A5A55C6980EE403D824FF] - 11/03/2013 - 19:38:39 ---A- - C:\Windows\Prefetch\CSC.EXE-4D47A477.pf
O45 - LFCP:[MD5.94AA00450A805A6B76885C8BB3FDC5C3] - 11/03/2013 - 19:38:39 ---A- - C:\Windows\Prefetch\CVTRES.EXE-9077A165.pf
O45 - LFCP:[MD5.41747C0F6C78DEBAD63BDF64955EBEBB] - 11/03/2013 - 19:39:47 ---A- - C:\Windows\Prefetch\ROGUEKILLER.EXE-1E058559.pf
O45 - LFCP:[MD5.E9AEA3633CED2DE7C8737F244DAFC5EB] - 11/03/2013 - 19:39:52 ---A- - C:\Windows\Prefetch\LMS.EXE-409EDB07.pf
O45 - LFCP:[MD5.004E150EE284C6E6B8072FE52204E923] - 11/03/2013 - 19:39:52 ---A- - C:\Windows\Prefetch\RICONMAN.EXE-D63AD6B8.pf
O45 - LFCP:[MD5.A0684E096EF2D46A14C7173F454FC285] - 11/03/2013 - 19:39:55 ---A- - C:\Windows\Prefetch\MCSHIELD.EXE-105C24A4.pf
O45 - LFCP:[MD5.22E5738A84B6E73B92C011DB386750B9] - 11/03/2013 - 19:40:01 ---A- - C:\Windows\Prefetch\UNS.EXE-9B1279FB.pf
O45 - LFCP:[MD5.68638960A641E46DD8039F5D9D2295C3] - 11/03/2013 - 19:40:38 ---A- - C:\Windows\Prefetch\MCODS.EXE-B2C51095.pf
O45 - LFCP:[MD5.253B0D8C516BEE891285DB266D896470] - 11/03/2013 - 19:41:06 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-38926D07.pf
O45 - LFCP:[MD5.CA4C1C7A488CD5B681618C5FAF2A7632] - 11/03/2013 - 19:41:10 ---A- - C:\Windows\Prefetch\WMIPRVSE.EXE-BB49B536.pf
O45 - LFCP:[MD5.1D38DD06DCABF777E11DC5B6D2832F0D] - 11/03/2013 - 19:41:34 ---A- - C:\Windows\Prefetch\MBAMGUI.EXE-9FF23AE2.pf
O45 - LFCP:[MD5.4E6B5B330181BD93661BF79CD61B24D2] - 11/03/2013 - 19:41:48 ---A- - C:\Windows\Prefetch\WMIADAP.EXE-7D63BB4C.pf
O45 - LFCP:[MD5.2F9924FEC632694FF526D1FE25C6EF39] - 11/03/2013 - 19:42:28 ---A- - C:\Windows\Prefetch\MCHOST.EXE-425F141C.pf
O45 - LFCP:[MD5.127F26AAA12923C06348D86FC4F3D408] - 11/03/2013 - 19:42:57 ---A- - C:\Windows\Prefetch\MCINFO.EXE-545FA787.pf
O45 - LFCP:[MD5.2BE81C8AA95571E829783D05B8136A29] - 11/03/2013 - 19:43:01 ---A- - C:\Windows\Prefetch\MCINST.EXE-5195C0AD.pf
O45 - LFCP:[MD5.E8E0C3270ACAE9036F408EDEF2B36EA3] - 11/03/2013 - 19:43:08 ---A- - C:\Windows\Prefetch\MCVSMAP.EXE-97A800BA.pf
O45 - LFCP:[MD5.00313D6114E9A31A7023E268E576204F] - 11/03/2013 - 19:43:09 ---A- - C:\Windows\Prefetch\MCUPDMGR.EXE-4DA3DD13.pf
O45 - LFCP:[MD5.C81A695EBCD19419BA9A7C2DBE8E1582] - 11/03/2013 - 19:43:13 ---A- - C:\Windows\Prefetch\QCSHM.EXE-4B669B5A.pf
O45 - LFCP:[MD5.ADDF6975C03ABF9E482F87D61AC4E57C] - 11/03/2013 - 19:43:15 ---A- - C:\Windows\Prefetch\MCHLP32.EXE-6171D8A8.pf
O45 - LFCP:[MD5.2A0C742B1489F13BB9291A4B6F81089C] - 11/03/2013 - 19:43:15 ---A- - C:\Windows\Prefetch\MCSYNC.EXE-A60FDBA1.pf
O45 - LFCP:[MD5.5952697AB0B6A5FC156057A856BCDA78] - 11/03/2013 - 19:43:16 ---A- - C:\Windows\Prefetch\HWUPDCHK.EXE-9AC16830.pf
O45 - LFCP:[MD5.E09FF590BC1B5FFCD0F6A38B7CBEC1A8] - 11/03/2013 - 19:43:27 ---A- - C:\Windows\Prefetch\MCSVRCNT.EXE-15E268D0.pf
O45 - LFCP:[MD5.4D20514260FC615F755302917018A53E] - 11/03/2013 - 19:44:53 ---A- - C:\Windows\Prefetch\REGSVR32.EXE-3290E8FC.pf
O45 - LFCP:[MD5.189D9278CCAB893EDD961874667C91A7] - 11/03/2013 - 19:45:03 ---A- - C:\Windows\Prefetch\MBAM.EXE-125A28F9.pf
O45 - LFCP:[MD5.323B556E69FFB862A158562524A411F7] - 11/03/2013 - 19:45:51 ---A- - C:\Windows\Prefetch\CHROME.EXE-CCF9F3FB.pf
O45 - LFCP:[MD5.223829CA8E028DE6D55EE268B76CEE90] - 11/03/2013 - 19:48:38 ---A- - C:\Windows\Prefetch\NOTEPAD.EXE-1A4CC1C3.pf
O45 - LFCP:[MD5.51B971235B9FD813C6C91009C1E52D45] - 11/03/2013 - 19:49:36 ---A- - C:\Windows\Prefetch\NOTEPAD.EXE-F0516D55.pf
O45 - LFCP:[MD5.6D01E03670119ABABE01DB200EB1364F] - 11/03/2013 - 19:52:42 ---A- - C:\Windows\Prefetch\THUMBNAILEXTRACTIONHOST.EXE-C3FB8861.pf
O45 - LFCP:[MD5.C4C045DCFD02737D30193B06DC1A40D2] - 11/03/2013 - 19:57:59 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-985C34E6.pf
O45 - LFCP:[MD5.17EADFFAE64D57362EED74E000AD5546] - 11/03/2013 - 19:58:10 ---A- - C:\Windows\Prefetch\NGENTASK.EXE-4DB88ADA.pf
O45 - LFCP:[MD5.7985649755A4C0E8D0896CD3B81DE6C4] - 11/03/2013 - 19:58:10 ---A- - C:\Windows\Prefetch\NGENTASK.EXE-CD4E002C.pf
O45 - LFCP:[MD5.B221AED877DD3EF2C59007579CF58ECC] - 11/03/2013 - 19:58:12 ---A- - C:\Windows\Prefetch\NGEN.EXE-383F81D5.pf
O45 - LFCP:[MD5.E3418319DF70A41F09FC2F131740987D] - 11/03/2013 - 19:58:12 ---A- - C:\Windows\Prefetch\NGEN.EXE-A8DBB043.pf
O45 - LFCP:[MD5.DFF9DD7158D8733CF1FB2ACE890CF6B9] - 11/03/2013 - 19:58:23 ---A- - C:\Windows\Prefetch\Layout.ini
O45 - LFCP:[MD5.B2CAAFCA9AD64252727BB7190510682A] - 11/03/2013 - 19:58:34 ---A- - C:\Windows\Prefetch\DEFRAG.EXE-22AD8A37.pf
O45 - LFCP:[MD5.93656D8F4EADCFA11EABFA3CD78D5B4C] - 11/03/2013 - 19:58:34 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-5511E724.pf
O45 - LFCP:[MD5.63396DD5F3416B01A46817AFDFCEE3BB] - 11/03/2013 - 19:59:34 ---A- - C:\Windows\Prefetch\MSCORSVW.EXE-D593A5D9.pf
O45 - LFCP:[MD5.5A0DD2F58B337C095CB34DE1700D04A7] - 11/03/2013 - 19:59:45 ---A- - C:\Windows\Prefetch\VDS.EXE-F11BF333.pf
O45 - LFCP:[MD5.57CAB9D7E19E24C034DB61A68C65BF19] - 11/03/2013 - 19:59:49 ---A- - C:\Windows\Prefetch\VDSLDR.EXE-35269815.pf
O45 - LFCP:[MD5.DCDD90CCB01DE1D9DEA287B000FD90AC] - 11/03/2013 - 20:00:26 ---A- - C:\Windows\Prefetch\CHROME.EXE-CCF9F3F7.pf
O45 - LFCP:[MD5.D3B699B65F95E12E8303838440B1C139] - 11/03/2013 - 20:01:14 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-C7028A70.pf
O45 - LFCP:[MD5.AE5AEF2B733F6E913AD9352CC748AEBB] - 11/03/2013 - 20:01:15 ---A- - C:\Windows\Prefetch\IGFXSRVC.EXE-F41E6E8E.pf
O45 - LFCP:[MD5.1B2146771DC96B50BD8A3B31CF592152] - 11/03/2013 - 20:01:25 ---A- - C:\Windows\Prefetch\CMD.EXE-CD245F9E.pf
O45 - LFCP:[MD5.806304FCB57C01F29D61EAAD81921C5F] - 11/03/2013 - 20:07:14 ---A- - C:\Windows\Prefetch\MPCMDRUN.EXE-6520183E.pf
O45 - LFCP:[MD5.ED9F987C90804A92E957CD8019339AB6] - 11/03/2013 - 20:07:51 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-50DEE1CF.pf
O45 - LFCP:[MD5.17684CBA8AC86660E16FD694C08E2ED3] - 11/03/2013 - 20:07:57 ---A- - C:\Windows\Prefetch\MCUPDATE.EXE-C6EAC66C.pf
O45 - LFCP:[MD5.950940FF4E5A2A17E27085A1703CEAF4] - 11/03/2013 - 20:09:16 ---A- - C:\Windows\Prefetch\DRVINST.EXE-26FFA444.pf
O45 - LFCP:[MD5.5486D36546ED534A458F69AD986CFB36] - 11/03/2013 - 20:09:16 ---A- - C:\Windows\Prefetch\WUDFHOST.EXE-0D78D366.pf
O45 - LFCP:[MD5.BF88AFB4D2A434EEF525E25CE6947006] - 11/03/2013 - 20:09:36 ---A- - C:\Windows\Prefetch\DSMUSERTASK.EXE-D4A83970.pf
O45 - LFCP:[MD5.FC84FFE3418719C7F3C78EB544E5A6BC] - 11/03/2013 - 20:09:38 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-3BF9CDB0.pf
O45 - LFCP:[MD5.1CD7264AAC48E0D0A108F15B38E31814] - 11/03/2013 - 20:09:38 ---A- - C:\Windows\Prefetch\WERMGR.EXE-D948C216.pf
O45 - LFCP:[MD5.89237D645BBDD582C8F91AA47BD2B159] - 11/03/2013 - 20:09:43 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-EE2FB4D9.pf
O45 - LFCP:[MD5.7AE2CA1BACDCD2318D01D89CD315B06A] - 11/03/2013 - 20:10:29 ---A- - C:\Windows\Prefetch\CHROME.EXE-CCF9F3F4.pf
O45 - LFCP:[MD5.21D5B15D3E60C140D0A012A4BB3E6E01] - 11/03/2013 - 20:11:44 ---A- - C:\Windows\Prefetch\TASKHOSTEX.EXE-7356AAC0.pf
O45 - LFCP:[MD5.25672627CD82A92C2695B61378BA1768] - 11/03/2013 - 20:23:22 ---A- - C:\Windows\Prefetch\AgRobust.db
O45 - LFCP:[MD5.E3839FD4E0CCC3EAF04C45EB703788FA] - 11/03/2013 - 20:23:23 ---A- - C:\Windows\Prefetch\AgGlFaultHistory.db
O45 - LFCP:[MD5.9B627F5B7109D75AE86921A3339162F4] - 11/03/2013 - 20:23:23 ---A- - C:\Windows\Prefetch\AgGlFgAppHistory.db
O45 - LFCP:[MD5.1CD6D114A5E6D68EA633CA6A46A2060C] - 11/03/2013 - 20:23:23 ---A- - C:\Windows\Prefetch\AgGlGlobalHistory.db
O45 - LFCP:[MD5.6333A9ECE396C12AE0985FC05107E70B] - 11/03/2013 - 20:23:31 ---A- - C:\Windows\Prefetch\MSIEXEC.EXE-7D20CFB0.pf
O45 - LFCP:[MD5.5CEBB42D76CEFB6C93B15EAFF9D808FD] - 11/03/2013 - 20:31:17 ---A- - C:\Windows\Prefetch\SNDVOL.EXE-276AC160.pf
O45 - LFCP:[MD5.CA8F87DD436B06FD974487C6B05CDCE7] - 11/03/2013 - 20:33:03 ---A- - C:\Windows\Prefetch\GOOGLEUPDATE.EXE-62E5E10F.pf
O45 - LFCP:[MD5.9D66A2D8B23DF6FAC4B3D62AF6288C9A] - 11/03/2013 - 20:33:10 ---A- - C:\Windows\Prefetch\TASKENG.EXE-23205583.pf
O45 - LFCP:[MD5.E1BC4D06DAAD0A813574B07AB293D0FD] - 11/03/2013 - 20:41:28 ---A- - C:\Windows\Prefetch\CONSENT.EXE-2D674CE4.pf
O45 - LFCP:[MD5.F234F84D8246768B8D3960C3D12A51D6] - 11/03/2013 - 20:41:33 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-50AF0BCC.pf
O45 - LFCP:[MD5.809271807B12C4D54182867923BB4A37] - 11/03/2013 - 20:41:47 ---A- - C:\Windows\Prefetch\CCSETUP328_SLIM (1).EXE-0C2DD0CA.pf
O45 - LFCP:[MD5.94DFA72973F4FD4F0B35063DA1E7C71B] - 11/03/2013 - 20:42:08 ---A- - C:\Windows\Prefetch\CCLEANER64.EXE-1137D9AC.pf
O45 - LFCP:[MD5.81B1D7E240C71A6841E9D8224CAE295C] - 11/03/2013 - 20:42:35 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-210D3DBE.pf
O45 - LFCP:[MD5.CE24C0D1ACB7D095C984D12DC05822D2] - 11/03/2013 - 20:42:48 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-29D61DAB.pf
O45 - LFCP:[MD5.4B02D780DD5801641F2DD2DDE1EF64B7] - 11/03/2013 - 20:45:06 ---A- - C:\Windows\Prefetch\DELEGATE_EXECUTE.EXE-DDD0C3C1.pf
O45 - LFCP:[MD5.5D566DF00AB463428B8516ADB8F30B75] - 11/03/2013 - 20:45:14 ---A- - C:\Windows\Prefetch\MCAUTOREG.EXE-FE026AF6.pf
O45 - LFCP:[MD5.D5EEB4F1FA0B7157DCBCEE911E2A44F8] - 11/03/2013 - 20:48:20 ---A- - C:\Windows\Prefetch\CMD.EXE-2EB3E6E2.pf
O45 - LFCP:[MD5.2187728529288F52E3B2E6ACBAE0EA7C] - 11/03/2013 - 20:48:20 ---A- - C:\Windows\Prefetch\CONHOST.EXE-F98A1078.pf
O45 - LFCP:[MD5.930E408FBCE42CC5FCA26FE8F1AE0B4B] - 11/03/2013 - 20:48:24 ---A- - C:\Windows\Prefetch\SUBINACL.EXE-D08B2113.pf
O45 - LFCP:[MD5.CB34D2599CA6A82A6A4F93501DFF0AF4] - 11/03/2013 - 20:48:38 ---A- - C:\Windows\Prefetch\SCHTASKS.EXE-0AD36442.pf
O45 - LFCP:[MD5.A9521502FE0CDE450F568F8D836CEE58] - 11/03/2013 - 20:48:54 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-5B401A7E.pf
O45 - LFCP:[MD5.2EED09CA8AF056A83D53E69DBF2E6737] - 11/03/2013 - 20:49:28 ---A- - C:\Windows\Prefetch\WERFAULT.EXE-94CE7668.pf
O45 - LFCP:[MD5.AF63264E3D9304065B0C4CE5A59882E4] - 11/03/2013 - 20:49:42 ---A- - C:\Windows\Prefetch\TIWORKER.EXE-8283E885.pf
O45 - LFCP:[MD5.6ED67CD17F4DB89227CEB4BE9B63EC8D] - 11/03/2013 - 20:49:42 ---A- - C:\Windows\Prefetch\TRUSTEDINSTALLER.EXE-B018CCBF.pf
O45 - LFCP:[MD5.69503ADF5CE1231BAAC10BCCF4FA383F] - 11/03/2013 - 20:55:04 ---A- - C:\Windows\Prefetch\AUDIODG.EXE-9848A323.pf
O45 - LFCP:[MD5.DEC31DF5956EA1FDB78CFA1650EDF96C] - 11/03/2013 - 20:55:20 ---A- - C:\Windows\Prefetch\ZHPHEP.EXE-5F2753B1.pf
O45 - LFCP:[MD5.F6ADC8822DCB6D24944F85952685B47E] - 11/03/2013 - 20:55:30 ---A- - C:\Windows\Prefetch\ZHPDIAG.EXE-C7289479.pf
O45 - LFCP:[MD5.CB788A0B4CD2092109552337F30DBF6C] - 11/03/2013 - 20:56:19 ---A- - C:\Windows\Prefetch\LADS.EXE-BC89FD22.pf
O45 - LFCP:[MD5.3A1956B367FA62872EFB1082F917900C] - 11/03/2013 - 20:56:52 ---A- - C:\Windows\Prefetch\NSLOOKUP.EXE-EB35EDAD.pf
O45 - LFCP:[MD5.6BE4DE7EBE33138903D272390C238DCD] - 11/03/2013 - 20:56:56 ---A- - C:\Windows\Prefetch\MBR.EXE-949248F3.pf
O45 - LFCP:[MD5.494BB728E936CFEDB203C85471F49D13] - 11/03/2013 - 20:56:57 ---A- - C:\Windows\Prefetch\MBRCHECK.EXE-52282269.pf
O45 - LFCP:[MD5.4F3653CCACBBB1882A26319D166F4629] - 11/03/2013 - 20:57:21 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-6AA5D6C5.pf
O45 - LFCP:[MD5.F4E56A6A396DB90935CA125E8A474D8C] - 11/03/2013 - 20:57:22 ---A- - C:\Windows\Prefetch\CSCRIPT.EXE-E9FF6526.pf
O45 - LFCP:[MD5.9EDCDD943B1A4C095ED2AD1202947336] - 11/03/2013 - 20:57:22 ---A- - C:\Windows\Prefetch\PV.EXE-D9D90B9C.pf
O45 - LFCP:[MD5.6C1030B38DE3B052B3F29B316AD35FC6] - 11/03/2013 - 20:57:30 ---A- - C:\Windows\Prefetch\SPPSVC.EXE-7B160CA5.pf
O45 - LFCP:[MD5.78DA9B5AAD398E09A078D834DC35C2E7] - 11/03/2013 - 20:57:30 ---A- - C:\Windows\Prefetch\WMIPRVSE.EXE-0C8A533A.pf
~ Scan Prefetcher in 00mn 00s



---\\ Déni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l’Éditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Fournisseur de sécurité TLS/SSL.) -- C:\Windows\System32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Live Security Package.) -- C:\Windows\System32\livessp.dll
~ Scan Keys in 00mn 00s



---\\ Contrôle du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\BasicDisplay.sys . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\BasicRender.sys . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dxgkrnl.sys . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\FsDepends.sys . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\FsDepends.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\BasicDisplay.sys . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\BasicRender.sys . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dxgkrnl.sys . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\FsDepends.sys . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\FsDepends.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\mfefirek.sys . (.McAfee, Inc. - McAfee Core Firewall Engine Driver.) -- C:\Windows\System32\Drivers\mfefirek.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\mfehidk.sys . (.McAfee, Inc. - McAfee Link Driver.) -- C:\Windows\System32\Drivers\mfehidk.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (...) -- C:\Windows\System32\Drivers\rdpencdd.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
~ Scan CSB in 00mn 00s



---\\ MountPoints2 Shell Key (O51) (None)

---\\ Trojan Driver Search Data (HKLM) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
~ Scan Keys in 00mn 00s



---\\ ShareTools MSconfig StartupReg (O53) (None)

---\\ Microsoft Control Security Providers (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
~ Scan Keys in 00mn 00s



---\\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableCursorSuppression"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
~ Scan Keys in 00mn 00s



---\\ Microsoft Windows Policies Explorer (O56)
O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1
~ Scan Keys in 00mn 00s



---\\ Liste des Drivers Système (O58)
O58 - SDL:[MD5.4F18D4C7EA14F11A7211F60D553C03DB] - 26/07/2012 - 06:00:49 ---A- . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\Windows\System32\Drivers\3ware.sys   [106736]
O58 - SDL:[MD5.D55EBCD80CA519020338F75E420FDF3F] - 16/08/2012 - 00:01:20 ---A- . (.Qualcomm Atheros Communications, Inc. - Qualcomm Atheros Extensible Wireless LAN device driver.) -- C:\Windows\System32\athw8x.sys   [3624960]
~ Scan Drivers in 00mn 00s



---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)
O61 - LFC: 11/03/2013 - 18:20:26 ---A- C:\Users\Mat\AppData\Local\Packages\windows.immersivecontrolpanel_cw5n1h2txyewy\Settings\roaming.lock   [0]
O61 - LFC: 11/03/2013 - 18:20:26 -SHA- C:\Users\Mat\AppData\Roaming\Microsoft\Protect\CREDHIST   [24]
O61 - LFC: 11/03/2013 - 18:20:26 -SHA- C:\Users\Mat\AppData\Roaming\Microsoft\Protect\S-1-5-21-458859122-2125105994-1547462265-1002\73d6ea2d-64a2-4695-ac06-0baab195df7e   [468]
O61 - LFC: 11/03/2013 - 18:20:26 -SHA- C:\Users\Mat\AppData\Roaming\Microsoft\Protect\S-1-5-21-458859122-2125105994-1547462265-1002\Preferred   [24]
O61 - LFC: 11/03/2013 - 18:20:27 -S-A- C:\Users\Mat\AppData\Roaming\Microsoft\SystemCertificates\My\AppContainerUserCertRead   [0]
O61 - LFC: 11/03/2013 - 18:20:31 ---A- C:\Users\Mat\AppData\Local\Packages\WinStore_cw5n1h2txyewy\Settings\roaming.lock   [0]
O61 - LFC: 11/03/2013 - 18:20:32 ---A- C:\Users\Mat\AppData\Local\Packages\B9ECED6F.ASUSCalculator_qmba6cd70vzyy\Settings\roaming.lock   [0]
O61 - LFC: 11/03/2013 - 18:20:33 ---A- C:\Users\Mat\AppData\Local\Packages\B9ECED6F.AsusConverter_qmba6cd70vzyy\Settings\roaming.lock   [0]
O61 - LFC: 11/03/2013 - 18:20:33 ---A- C:\Users\Mat\AppData\Local\Packages\B9ECED6F.TheWorldClock_qmba6cd70vzyy\Settings\roaming.lock   [0]
O61 - LFC: 11/03/2013 - 18:20:35 ---A- C:\Users\Mat\AppData\Local\Packages\Microsoft.VCLibs.110.00_8wekyb3d8bbwe\Settings\roaming.lock   [0]
O61 - LFC: 11/03/2013 - 18:20:36 -SHA- C:\Users\Mat\AppData\Local\Packages\Microsoft.VCLibs.110.00_8wekyb3d8bbwe\Settings\settings.dat.LOG1   [8192]
O61 - LFC: 11/03/2013 - 18:20:36 -SHA- C:\Users\Mat\AppData\Local\Packages\Microsoft.VCLibs.110.00_8wekyb3d8bbwe\Settings\settings.dat.LOG2   [0]
O61 - LFC: 11/03/2013 - 18:20:40 ---A- C:\Users\Mat\AppData\Local\Packages\Microsoft.Adera_8wekyb3d8bbwe\Settings\roaming.lock   [0]
O61 - LFC: 11/03/2013 - 18:20:41 ---A- C:\Users\Mat\AppData\Local\Packages\Microsoft.WinJS.1.0_8wekyb3d8bbwe\Settings\roaming.lock   [0]
O61 - LFC: 11/03/2013 - 18:20:45 ---A- C:\Users\Mat\AppData\Local\Packages\Microsoft.BingFinance_8wekyb3d8bbwe\Settings\roaming.lock   [0]
O61 - LFC: 11/03/2013 - 18:20:51 ---A- C:\Users\Mat\AppData\Local\Packages\Microsoft.BingMaps_8wekyb3d8bbwe\Settings\roaming.lock   [0]
O61 - LFC: 11/03/2013 - 18:20:51 ---A- C:\Users\Mat\AppData\Local\Packages\Microsoft.BingNews_8wekyb3d8bbwe\Settings\roaming.lock   [0]
O61 - LFC: 11/03/2013 - 18:20:53 ---A- C:\Users\Mat\AppData\Local\Packages\Microsoft.BingSports_8wekyb3d8bbwe\Settings\roaming.lock   [0]
O61 - LFC: 11/03/2013 - 18:20:57 ---A- C:\Users\Mat\AppData\Local\Packages\Microsoft.BingTravel_8wekyb3d8bbwe\Settings\roaming.lock   [0]
O61 - LFC: 11/03/2013 - 18:20:59 ---A- C:\Users\Mat\AppData\Local\Packages\Microsoft.BingWeather_8wekyb3d8bbwe\Settings\roaming.lock   [0]
O61 - LFC: 11/03/2013 - 18:21:00 ---A- C:\Users\Mat\AppData\Local\Packages\Microsoft.Bing_8wekyb3d8bbwe\Settings\roaming.lock   [0]
O61 - LFC: 11/03/2013 - 18:21:02 ---A- C:\Users\Mat\AppData\Local\Packages\Microsoft.Camera_8wekyb3d8bbwe\Settings\roaming.lock   [0]
O61 - LFC: 11/03/2013 - 18:21:03 ---A- C:\Users\Mat\AppData\Local\Packages\Microsoft.FreshPaint_8wekyb3d8bbwe\Settings\roaming.lock   [0]
O61 - LFC: 11/03/2013 - 18:21:03 ---A- C:\Users\Mat\AppData\Local\Packages\microsoft.microsoftskydrive_8wekyb3d8bbwe\Settings\roaming.lock   [0]
O61 - LFC: 11/03/2013 - 18:21:08 ---A- C:\Users\Mat\AppData\Local\Packages\Microsoft.MicrosoftSolitaireCollection_8wekyb3d8bbwe\Settings\roaming.lock   [0]
O61 - LFC: 11/03/2013 - 18:21:10 ---A- C:\Users\Mat\AppData\Local\Packages\Microsoft.Reader_8wekyb3d8bbwe\Settings\roaming.lock   [0]
O61 - LFC: 11/03/2013 - 18:21:13 ---A- C:\Users\Mat\AppData\Local\Packages\Microsoft.WinJS.1.0.RC_8wekyb3d8bbwe\Settings\roaming.lock   [0]
O61 - LFC: 11/03/2013 - 18:21:16 ---A- C:\Users\Mat\AppData\Local\Packages\Microsoft.VCLibs.110_8wekyb3d8bbwe\Settings\roaming.lock   [0]
O61 - LFC: 11/03/2013 - 18:21:17 -SHA- C:\Users\Mat\AppData\Local\Packages\Microsoft.VCLibs.110_8wekyb3d8bbwe\Settings\settings.dat.LOG1   [8192]
O61 - LFC: 11/03/2013 - 18:21:17 -SHA- C:\Users\Mat\AppData\Local\Packages\Microsoft.VCLibs.110_8wekyb3d8bbwe\Settings\settings.dat.LOG2   [0]
O61 - LFC: 11/03/2013 - 18:21:20 ---A- C:\Users\Mat\AppData\Local\Packages\Microsoft.SkypeApp_kzf8qxf38zg5c\Settings\roaming.lock   [0]
O61 - LFC: 11/03/2013 - 18:21:27 ---A- C:\Users\Mat\AppData\Local\Packages\Microsoft.Studios.Wordament_8wekyb3d8bbwe\Settings\roaming.lock   [0]
O61 - LFC: 11/03/2013 - 18:21:28 ---A- C:\Users\Mat\AppData\Local\Packages\Microsoft.Taptiles_8wekyb3d8bbwe\Settings\roaming.lock   [0]
O61 - LFC: 11/03/2013 - 18:21:29 ---A- C:\Users\Mat\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\Settings\roaming.lock   [0]
O61 - LFC: 11/03/2013 - 18:21:37 ---A- C:\Users\Mat\AppData\Local\Packages\microsoft.windowsphotos_8wekyb3d8bbwe\Settings\roaming.lock   [0]
O61 - LFC: 11/03/2013 - 18:21:40 ---A- C:\Users\Mat\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\Settings\roaming.lock   [0]
O61 - LFC: 11/03/2013 - 18:21:47 ---A- C:\Users\Mat\AppData\Local\Packages\Microsoft.Media.PlayReadyClient_8wekyb3d8bbwe\Settings\roaming.lock   [0]
O61 - LFC: 11/03/2013 - 18:21:48 -SHA- C:\Users\Mat\AppData\Local\Packages\Microsoft.Media.PlayReadyClient_8wekyb3d8bbwe\Settings\settings.dat.LOG1   [8192]
O61 - LFC: 11/03/2013 - 18:21:48 -SHA- C:\Users\Mat\AppData\Local\Packages\Microsoft.Media.PlayReadyClient_8wekyb3d8bbwe\Settings\settings.dat.LOG2   [0]
O61 - LFC: 11/03/2013 - 18:21:49 ---A- C:\Users\Mat\AppData\Local\Packages\Microsoft.ZuneMusic_8wekyb3d8bbwe\Settings\roaming.lock   [0]
O61 - LFC: 11/03/2013 - 18:21:58 ---A- C:\Users\Mat\AppData\Local\Packages\Microsoft.ZuneVideo_8wekyb3d8bbwe\Settings\roaming.lock   [0]
O61 - LFC: 11/03/2013 - 18:22:35 ---A- C:\Users\Mat\Links\Desktop.lnk   [433]
O61 - LFC: 11/03/2013 - 18:22:35 ---A- C:\Users\Mat\Links\Downloads.lnk   [880]
O61 - LFC: 11/03/2013 - 18:22:35 ---A- C:\Users\Mat\Links\RecentPlaces.lnk   [383]
O61 - LFC: 11/03/2013 - 18:22:35 R-HA- C:\Users\Mat\Searches\Everywhere.search-ms   [248]
O61 - LFC: 11/03/2013 - 18:22:35 R-HA- C:\Users\Mat\Searches\Indexed Locations.search-ms   [248]
O61 - LFC: 11/03/2013 - 18:22:52 ---A- C:\Users\Mat\AppData\Roaming\Microsoft\Network\Connections\Pbk\_hiddenPbk\rasphone.pbk   [0]
O61 - LFC: 11/03/2013 - 18:22:52 -SHA- C:\Users\Mat\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\Settings\settings.dat.LOG1   [8192]
O61 - LFC: 11/03/2013 - 18:22:52 -SHA- C:\Users\Mat\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\Settings\settings.dat.LOG2   [0]
O61 - LFC: 11/03/2013 - 18:22:54 ---A- C:\Users\Mat\AppData\Local\Packages\microsoft.windowsphotos_8wekyb3d8bbwe\LocalState\bici\bi000000.sqm   [874]
O61 - LFC: 11/03/2013 - 18:22:54 -SHA- C:\Users\Mat\AppData\Local\Packages\microsoft.windowsphotos_8wekyb3d8bbwe\Settings\settings.dat.LOG1   [8192]
O61 - LFC: 11/03/2013 - 18:22:54 -SHA- C:\Users\Mat\AppData\Local\Packages\microsoft.windowsphotos_8wekyb3d8bbwe\Settings\settings.dat.LOG2   [0]
O61 - LFC: 11/03/2013 - 18:22:55 ---A- C:\Users\Mat\AppData\Local\Packages\microsoft.windowsphotos_8wekyb3d8bbwe\AC\BackgroundTransferApi\63f788a8-7723-480e-9eda-b76c53e7b030.up_meta   [89]
O61 - LFC: 11/03/2013 - 18:22:55 -SHA- C:\Users\Mat\AppData\Local\Packages\microsoft.windowsphotos_8wekyb3d8bbwe\AC\INetCookies\container.dat   [0]
O61 - LFC: 11/03/2013 - 18:22:55 -SHA- C:\Users\Mat\AppData\Local\Packages\microsoft.windowsphotos_8wekyb3d8bbwe\AC\INetHistory\BackgroundTransferApi\container.dat   [0]
O61 - LFC: 11/03/2013 - 18:22:58 -SHA- C:\Users\Mat\AppData\Local\Packages\Microsoft.BingNews_8wekyb3d8bbwe\Settings\settings.dat.LOG1   [8192]
O61 - LFC: 11/03/2013 - 18:22:58 -SHA- C:\Users\Mat\AppData\Local\Packages\Microsoft.BingNews_8wekyb3d8bbwe\Settings\settings.dat.LOG2   [0]
O61 - LFC: 11/03/2013 - 18:23:00 -SHA- C:\Users\Mat\AppData\Local\Packages\Microsoft.BingFinance_8wekyb3d8bbwe\Settings\settings.dat.LOG1   [98304]
O61 - LFC: 11/03/2013 - 18:23:00 -SHA- C:\Users\Mat\AppData\Local\Packages\Microsoft.BingFinance_8wekyb3d8bbwe\Settings\settings.dat.LOG2   [0]
O61 - LFC: 11/03/2013 - 18:23:00 -SHA- C:\Users\Mat\AppData\Local\Packages\Microsoft.BingSports_8wekyb3d8bbwe\Settings\settings.dat.LOG1   [8192]
O61 - LFC: 11/03/2013 - 18:23:00 -SHA- C:\Users\Mat\AppData\Local\Packages\Microsoft.BingSports_8wekyb3d8bbwe\Settings\settings.dat.LOG2   [0]
O61 - LFC: 11/03/2013 - 18:23:01 ---A- C:\Users\Mat\AppData\Local\Packages\microsoft.windowsphotos_8wekyb3d8bbwe\AC\BackgroundTransferApi\63f788a8-7723-480e-9eda-b76c53e7b030.2411118c-9ccc-4e75-8a4f-29b768446f9f.down_meta   [380]
O61 - LFC: 11/03/2013 - 18:23:01 ---A- C:\Users\Mat\AppData\Local\Packages\microsoft.windowsphotos_8wekyb3d8bbwe\AC\BackgroundTransferApi\63f788a8-7723-480e-9eda-b76c53e7b030.down_data   [0]
O61 - LFC: 11/03/2013 - 18:23:08 ---A- C:\Users\Mat\AppData\Local\Packages\B9ECED6F.AsusConverter_qmba6cd70vzyy\Settings\settings.dat   [8192]
O61 - LFC: 11/03/2013 - 18:23:08 -SHA- C:\Users\Mat\AppData\Local\Packages\B9ECED6F.ASUSCalculator_qmba6cd70vzyy\Settings\settings.dat.LOG1   [8192]
O61 - LFC: 11/03/2013 - 18:23:08 -SHA- C:\Users\Mat\AppData\Local\Packages\B9ECED6F.ASUSCalculator_qmba6cd70vzyy\Settings\settings.dat.LOG2   [0]
O61 - LFC: 11/03/2013 - 18:23:08 -SHA- C:\Users\Mat\AppData\Local\Packages\B9ECED6F.AsusConverter_qmba6cd70vzyy\Settings\settings.dat.LOG1   [8192]
O61 - LFC: 11/03/2013 - 18:23:08 -SHA- C:\Users\Mat\AppData\Local\Packages\B9ECED6F.AsusConverter_qmba6cd70vzyy\Settings\settings.dat.LOG2   [0]
O61 - LFC: 11/03/2013 - 18:23:09 ---A- C:\Users\Mat\AppData\Local\Packages\B9ECED6F.TheWorldClock_qmba6cd70vzyy\Settings\settings.dat   [8192]
O61 - LFC: 11/03/2013 - 18:23:09 ---A- C:\Users\Mat\AppData\Local\Packages\Microsoft.Adera_8wekyb3d8bbwe\Settings\settings.dat   [8192]
O61 - LFC: 11/03/2013 - 18:23:09 ---A- C:\Users\Mat\AppData\Local\Packages\Microsoft.BingMaps_8wekyb3d8bbwe\Settings\settings.dat   [8192]
O61 - LFC: 11/03/2013 - 18:23:09 -SHA- C:\Users\Mat\AppData\Local\Packages\B9ECED6F.TheWorldClock_qmba6cd70vzyy\Settings\settings.dat.LOG1   [8192]
O61 - LFC: 11/03/2013 - 18:23:09 -SHA- C:\Users\Mat\AppData\Local\Packages\B9ECED6F.TheWorldClock_qmba6cd70vzyy\Settings\settings.dat.LOG2   [0]
O61 - LFC: 11/03/2013 - 18:23:09 -SHA- C:\Users\Mat\AppData\Local\Packages\Microsoft.Adera_8wekyb3d8bbwe\Settings\settings.dat.LOG1   [8192]
O61 - LFC: 11/03/2013 - 18:23:09 -SHA- C:\Users\Mat\AppData\Local\Packages\Microsoft.Adera_8wekyb3d8bbwe\Settings\settings.dat.LOG2   [0]
O61 - LFC: 11/03/2013 - 18:23:09 -SHA- C:\Users\Mat\AppData\Local\Packages\Microsoft.BingMaps_8wekyb3d8bbwe\Settings\settings.dat.LOG1   [8192]
O61 - LFC: 11/03/2013 - 18:23:09 -SHA- C:\Users\Mat\AppData\Local\Packages\Microsoft.BingMaps_8wekyb3d8bbwe\Settings\settings.dat.LOG2   [0]
O61 - LFC: 11/03/2013 - 18:23:09 -SHA- C:\Users\Mat\AppData\Local\Packages\Microsoft.BingTravel_8wekyb3d8bbwe\Settings\settings.dat.LOG1   [8192]
O61 - LFC: 11/03/2013 - 18:23:09 -SHA- C:\Users\Mat\AppData\Local\Packages\Microsoft.BingTravel_8wekyb3d8bbwe\Settings\settings.dat.LOG2   [0]
O61 - LFC: 11/03/2013 - 18:23:10 ---A- C:\Users\Mat\AppData\Local\Packages\Microsoft.BingTravel_8wekyb3d8bbwe\Settings\settings.dat   [8192]
O61 - LFC: 11/03/2013 - 18:23:10 ---A- C:\Users\Mat\AppData\Local\Packages\Microsoft.Bing_8wekyb3d8bbwe\Settings\settings.dat   [8192]
O61 - LFC: 11/03/2013 - 18:23:10 -SHA- C:\Users\Mat\AppData\Local\Packages\Microsoft.BingWeather_8wekyb3d8bbwe\Settings\settings.dat.LOG1   [8192]
O61 - LFC: 11/03/2013 - 18:23:10 -SHA- C:\Users\Mat\AppData\Local\Packages\Microsoft.BingWeather_8wekyb3d8bbwe\Settings\settings.dat.LOG2   [0]
O61 - LFC: 11/03/2013 - 18:23:10 -SHA- C:\Users\Mat\AppData\Local\Packages\Microsoft.Bing_8wekyb3d8bbwe\Settings\settings.dat.LOG1   [8192]
O61 - LFC: 11/03/2013 - 18:23:10 -SHA- C:\Users\Mat\AppData\Local\Packages\Microsoft.Bing_8wekyb3d8bbwe\Settings\settings.dat.LOG2   [0]
O61 - LFC: 11/03/2013 - 18:23:10 -SHA- C:\Users\Mat\AppData\Local\Packages\Microsoft.Camera_8wekyb3d8bbwe\Settings\settings.dat.LOG1   [8192]
O61 - LFC: 11/03/2013 - 18:23:10 -SHA- C:\Users\Mat\AppData\Local\Packages\Microsoft.Camera_8wekyb3d8bbwe\Settings\settings.dat.LOG2   [0]
O61 - LFC: 11/03/2013 - 18:23:13 ---A- C:\Users\Mat\AppData\Local\Packages\Microsoft.Camera_8wekyb3d8bbwe\Settings\settings.dat   [8192]
O61 - LFC: 11/03/2013 - 18:23:13 -SHA- C:\Users\Mat\AppData\Local\Packages\Microsoft.FreshPaint_8wekyb3d8bbwe\Settings\settings.dat.LOG1   [8192]
O61 - LFC: 11/03/2013 - 18:23:13 -SHA- C:\Users\Mat\AppData\Local\Packages\Microsoft.FreshPaint_8wekyb3d8bbwe\Settings\settings.dat.LOG2   [0]
O61 - LFC: 11/03/2013 - 18:23:14 ---A- C:\Users\Mat\AppData\Local\Packages\Microsoft.FreshPaint_8wekyb3d8bbwe\Settings\settings.dat   [8192]
O61 - LFC: 11/03/2013 - 18:23:14 ---A- C:\Users\Mat\AppData\Local\Packages\Microsoft.MicrosoftSolitaireCollection_8wekyb3d8bbwe\Settings\settings.dat   [8192]
O61 - LFC: 11/03/2013 - 18:23:14 ---A- C:\Users\Mat\AppData\Local\Packages\microsoft.microsoftskydrive_8wekyb3d8bbwe\Settings\settings.dat   [8192]
O61 - LFC: 11/03/2013 - 18:23:14 -SHA- C:\Users\Mat\AppData\Local\Packages\Microsoft.MicrosoftSolitaireCollection_8wekyb3d8bbwe\Settings\settings.dat.LOG1   [8192]
O61 - LFC: 11/03/2013 - 18:23:14 -SHA- C:\Users\Mat\AppData\Local\Packages\Microsoft.MicrosoftSolitaireCollection_8wekyb3d8bbwe\Settings\settings.dat.LOG2   [0]
O61 - LFC: 11/03/2013 - 18:23:14 -SHA- C:\Users\Mat\AppData\Local\Packages\Microsoft.Reader_8wekyb3d8bbwe\Settings\settings.dat.LOG1   [8192]
O61 - LFC: 11/03/2013 - 18:23:14 -SHA- C:\Users\Mat\AppData\Local\Packages\Microsoft.Reader_8wekyb3d8bbwe\Settings\settings.dat.LOG2   [0]
O61 - LFC: 11/03/2013 - 18:23:14 -SHA- C:\Users\Mat\AppData\Local\Packages\microsoft.microsoftskydrive_8wekyb3d8bbwe\Settings\settings.dat.LOG1   [8192]
O61 - LFC: 11/03/2013 - 18:23:14 -SHA- C:\Users\Mat\AppData\Local\Packages\microsoft.microsoftskydrive_8wekyb3d8bbwe\Settings\settings.dat.LOG2   [0]
O61 - LFC: 11/03/2013 - 18:23:15 ---A- C:\Users\Mat\AppData\Local\Packages\Microsoft.SkypeApp_kzf8qxf38zg5c\Settings\settings.dat   [8192]
O61 - LFC: 11/03/2013 - 18:23:15 ---A- C:\Users\Mat\AppData\Local\Packages\Microsoft.Studios.Wordament_8wekyb3d8bbwe\Settings\settings.dat   [8192]
O61 - LFC: 11/03/2013 - 18:23:15 -SHA- C:\Users\Mat\AppData\Local\Packages\Microsoft.SkypeApp_kzf8qxf38zg5c\Settings\settings.dat.LOG1   [8192]
O61 - LFC: 11/03/2013 - 18:23:15 -SHA- C:\Users\Mat\AppData\Local\Packages\Microsoft.SkypeApp_kzf8qxf38zg5c\Settings\settings.dat.LOG2   [0]
O61 - LFC: 11/03/2013 - 18:23:15 -SHA- C:\Users\Mat\AppData\Local\Packages\Microsoft.Studios.Wordament_8wekyb3d8bbwe\Settings\settings.dat.LOG1   [8192]
O61 - LFC: 11/03/2013 - 18:23:15 -SHA- C:\Users\Mat\AppData\Local\Packages\Microsoft.Studios.Wordament_8wekyb3d8bbwe\Settings\settings.dat.LOG2   [0]
O61 - LFC: 11/03/2013 - 18:23:15 -SHA- C:\Users\Mat\AppData\Local\Packages\Microsoft.Taptiles_8wekyb3d8bbwe\Settings\settings.dat.LOG1   [8192]
O61 - LFC: 11/03/2013 - 18:23:15 -SHA- C:\Users\Mat\AppData\Local\Packages\Microsoft.Taptiles_8wekyb3d8bbwe\Settings\settings.dat.LOG2   [0]
O61 - LFC: 11/03/2013 - 18:23:16 ---A- C:\Users\Mat\AppData\Local\Packages\Microsoft.Taptiles_8wekyb3d8bbwe\Settings\settings.dat   [8192]
O61 - LFC: 11/03/2013 - 18:23:16 -SHA- C:\Users\Mat\AppData\Local\Packages\Microsoft.WinJS.1.0.RC_8wekyb3d8bbwe\Settings\settings.dat.LOG1   [8192]
O61 - LFC: 11/03/2013 - 18:23:16 -SHA- C:\Users\Mat\AppData\Local\Packages\Microsoft.WinJS.1.0.RC_8wekyb3d8bbwe\Settings\settings.dat.LOG2   [0]
O61 - LFC: 11/03/2013 - 18:23:16 -SHA- C:\Users\Mat\AppData\Local\Packages\Microsoft.WinJS.1.0_8wekyb3d8bbwe\Settings\settings.dat.LOG1   [8192]
O61 - LFC: 11/03/2013 - 18:23:16 -SHA- C:\Users\Mat\AppData\Local\Packages\Microsoft.WinJS.1.0_8wekyb3d8bbwe\Settings\settings.dat.LOG2   [0]
O61 - LFC: 11/03/2013 - 18:23:17 ---A- C:\Users\Mat\AppData\Local\Packages\Microsoft.WinJS.1.0_8wekyb3d8bbwe\Settings\settings.dat   [8192]
O61 - LFC: 11/03/2013 - 18:23:17 ---A- C:\Users\Mat\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\Settings\settings.dat   [8192]
O61 - LFC: 11/03/2013 - 18:23:17 ---A- C:\Users\Mat\AppData\Local\Packages\Microsoft.ZuneMusic_8wekyb3d8bbwe\Settings\settings.dat   [8192]
O61 - LFC: 11/03/2013 - 18:23:17 -SHA- C:\Users\Mat\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\Settings\settings.dat.LOG1   [8192]
O61 - LFC: 11/03/2013 - 18:23:17 -SHA- C:\Users\Mat\AppData\Local\Packages\Microsoft.XboxLIVEGames_8wekyb3d8bbwe\Settings\settings.dat.LOG2   [0]
O61 - LFC: 11/03/2013 - 18:23:17 -SHA- C:\Users\Mat\AppData\Local\Packages\Microsoft.ZuneMusic_8wekyb3d8bbwe\Settings\settings.dat.LOG1   [8192]
O61 - LFC: 11/03/2013 - 18:23:17 -SHA- C:\Users\Mat\AppData\Local\Packages\Microsoft.ZuneMusic_8wekyb3d8bbwe\Settings\settings.dat.LOG2   [0]
O61 - LFC: 11/03/2013 - 18:23:17 -SHA- C:\Users\Mat\AppData\Local\Packages\Microsoft.ZuneVideo_8wekyb3d8bbwe\Settings\settings.dat.LOG1   [8192]
O61 - LFC: 11/03/2013 - 18:23:17 -SHA- C:\Users\Mat\AppData\Local\Packages\Microsoft.ZuneVideo_8wekyb3d8bbwe\Settings\settings.dat.LOG2   [0]
O61 - LFC: 11/03/2013 - 18:23:18 -SHA- C:\Users\Mat\AppData\Local\Packages\windows.immersivecontrolpanel_cw5n1h2txyewy\Settings\settings.dat.LOG1   [8192]
O61 - LFC: 11/03/2013 - 18:23:18 -SHA- C:\Users\Mat\AppData\Local\Packages\windows.immersivecontrolpanel_cw5n1h2txyewy\Settings\settings.dat.LOG2   [0]
O61 - LFC: 11/03/2013 - 18:23:19 -SHA- C:\Users\Mat\AppData\Local\Packages\WinStore_cw5n1h2txyewy\Settings\settings.dat.LOG1   [8192]
O61 - LFC: 11/03/2013 - 18:23:19 -SHA- C:\Users\Mat\AppData\Local\Packages\WinStore_cw5n1h2txyewy\Settings\settings.dat.LOG2   [0]
O61 - LFC: 11/03/2013 - 18:23:26 ---A- C:\Users\Mat\AppData\Roaming\ASUS WebStorage\Logs\AWS-AsusWSPanel.txt   [0]
O61 - LFC: 11/03/2013 - 18:25:26 ---A- C:\Users\Mat\AppData\Roaming\ASUS WebStorage\Logs\AWS-explorer.txt   [0]
O61 - LFC: 11/03/2013 - 18:25:30 ---A- C:\Users\Mat\AppData\Local\Temp\_ir_sf_temp_0\idioma.xml   [5123]
O61 - LFC: 11/03/2013 - 18:25:37 ---A- C:\Users\Mat\AppData\Local\Temp\MultiSetupConfig   [88]
O61 - LFC: 11/03/2013 - 18:27:11 ---A- C:\Users\Mat\AppData\Local\Temp\D14B232E-BAB0-7891-9D95-CAA4150B0E0F\Latest\latest_9111.zpb   [458518]
O61 - LFC: 11/03/2013 - 18:27:17 ---A- C:\Users\Mat\AppData\Local\Temp\D14B232E-BAB0-7891-9D95-CAA4150B0E0F\Latest\Setup-deltatb.zpb   [1751825]
O61 - LFC: 11/03/2013 - 18:27:18 ---A- C:\Users\Mat\AppData\Local\Temp\D14B232E-BAB0-7891-9D95-CAA4150B0E0F\Latest\GUninstaller.zpb   [138932]
O61 - LFC: 11/03/2013 - 18:27:19 ---A- C:\Users\Mat\AppData\Local\Temp\D14B232E-BAB0-7891-9D95-CAA4150B0E0F\Latest\ccp.zpb   [226940]
O61 - LFC: 11/03/2013 - 18:27:21 ---A- C:\Users\Mat\AppData\Local\Temp\D14B232E-BAB0-7891-9D95-CAA4150B0E0F\Latest\DeltaChromeTB_1001.zpb   [745301]
O61 - LFC: 11/03/2013 - 18:27:48 ---A- C:\Users\Mat\AppData\Local\Packages\Microsoft.BingFinance_8wekyb3d8bbwe\Settings\settings.dat   [262144]
O61 - LFC: 11/03/2013 - 18:27:48 ---A- C:\Users\Mat\AppData\Local\Packages\Microsoft.BingNews_8wekyb3d8bbwe\Settings\settings.dat   [8192]
O61 - LFC: 11/03/2013 - 18:27:48 ---A- C:\Users\Mat\AppData\Local\Packages\Microsoft.BingSports_8wekyb3d8bbwe\Settings\settings.dat   [8192]
O61 - LFC: 11/03/2013 - 18:27:48 ---A- C:\Users\Mat\AppData\Local\Packages\microsoft.windowsphotos_8wekyb3d8bbwe\Settings\settings.dat   [8192]
O61 - LFC: 11/03/2013 - 18:28:40 ---A- C:\Users\Mat\AppData\Local\Apps\2.0\5GLP77Y1.TY2\4KPYTAWZ.QE4\clic...exe_4fe91ede9f9bdca3_0001.0003_none_81523b6764d98a8a\GoogleUpdateSetup.exe   [774424]
O61 - LFC: 11/03/2013 - 18:28:40 ---A- C:\Users\Mat\AppData\Local\Apps\2.0\5GLP77Y1.TY2\4KPYTAWZ.QE4\manifests\clic...exe_4fe91ede9f9bdca3_0001.0003_none_81523b6764d98a8a.manifest   [13566]
O61 - LFC: 11/03/2013 - 18:28:40 ---A- C:\Users\Mat\AppData\Local\Apps\2.0\5GLP77Y1.TY2\4KPYTAWZ.QE4\manifests\prog...app_4fe91ede9f9bdca3_0001.0003_none_29e5f52afe9df4ad.manifest   [12555]
O61 - LFC: 11/03/2013 - 18:28:40 ---A- C:\Users\Mat\AppData\Local\Apps\2.0\5GLP77Y1.TY2\4KPYTAWZ.QE4\prog...app_4fe91ede9f9bdca3_0001.0003_56216e6ed5364cee\GoogleUpdateSetup.exe   [774424]
O61 - LFC: 11/03/2013 - 18:28:40 ---A- C:\Users\Mat\AppData\Local\Apps\2.0\5GLP77Y1.TY2\4KPYTAWZ.QE4\prog...app_4fe91ede9f9bdca3_0001.0003_56216e6ed5364cee\clickonce_bootstrap.exe   [10120]
O61 - LFC: 11/03/2013 - 18:28:40 ---A- C:\Users\Mat\AppData\Local\Apps\2.0\5GLP77Y1.TY2\4KPYTAWZ.QE4\prog...app_4fe91ede9f9bdca3_0001.0003_56216e6ed5364cee\clickonce_bootstrap.exe.manifest   [13566]
O61 - LFC: 11/03/2013 - 18:28:40 ---A- C:\Users\Mat\AppData\Local\Apps\2.0\5GLP77Y1.TY2\4KPYTAWZ.QE4\prog...app_4fe91ede9f9bdca3_0001.0003_56216e6ed5364cee\clickonce_bootstrap_unsigned.manifest   [1376]
O61 - LFC: 11/03/2013 - 18:28:42 ---A- C:\Users\Mat\AppData\Local\Apps\2.0\5GLP77Y1.TY2\4KPYTAWZ.QE4\manifests\clic...exe_4fe91ede9f9bdca3_0001.0003_none_81523b6764d98a8a.cdf-ms   [17408]
O61 - LFC: 11/03/2013 - 18:28:42 ---A- C:\Users\Mat\AppData\Local\Apps\2.0\5GLP77Y1.TY2\4KPYTAWZ.QE4\manifests\prog...app_4fe91ede9f9bdca3_0001.0003_none_29e5f52afe9df4ad.cdf-ms   [15224]
O61 - LFC: 11/03/2013 - 18:29:52 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\First Run   [0]
O61 - LFC: 11/03/2013 - 18:29:53 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\User StyleSheets\Custom.css   [0]
O61 - LFC: 11/03/2013 - 18:29:54 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\no\messages.json   [300]
O61 - LFC: 11/03/2013 - 18:29:54 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\no\messages.json   [210]
O61 - LFC: 11/03/2013 - 18:29:54 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\se\messages.json   [210]
O61 - LFC: 11/03/2013 - 18:29:55 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\no\messages.json   [216]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\128.png   [3524]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\ar\messages.json   [401]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\bg\messages.json   [427]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\ca\messages.json   [250]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\cs\messages.json   [255]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\da\messages.json   [242]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\de\messages.json   [226]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\el\messages.json   [475]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\en\messages.json   [227]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\es\messages.json   [240]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\fi\messages.json   [222]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\fil\messages.json   [236]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\fr\messages.json   [249]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\he\messages.json   [419]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\hi\messages.json   [408]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\hr\messages.json   [220]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\hu\messages.json   [253]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\id\messages.json   [231]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\it\messages.json   [224]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\ja\messages.json   [349]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\ko\messages.json   [323]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\lt\messages.json   [266]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\lv\messages.json   [245]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\nl\messages.json   [225]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\pl\messages.json   [274]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\pt_BR\messages.json   [237]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\pt_PT\messages.json   [236]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\ro\messages.json   [248]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\ru\messages.json   [394]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\sk\messages.json   [241]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\sl\messages.json   [245]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\sr\messages.json   [437]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\sv\messages.json   [238]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\th\messages.json   [365]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\tr\messages.json   [255]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\uk\messages.json   [442]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\vi\messages.json   [310]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\zh_CN\messages.json   [257]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\zh_TW\messages.json   [269]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\manifest.json   [745]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\128.png   [5369]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\16.png   [496]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\32.png   [1143]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\48.png   [1858]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\ar\messages.json   [423]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\bg\messages.json   [515]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\ca\messages.json   [330]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\cs\messages.json   [355]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\da\messages.json   [328]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\de\messages.json   [307]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\el\messages.json   [569]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\en\messages.json   [314]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\en_GB\messages.json   [314]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\en_US\messages.json   [314]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\es\messages.json   [340]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\es_419\messages.json   [341]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\et\messages.json   [314]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\fi\messages.json   [305]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\fil\messages.json   [337]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\fr\messages.json   [329]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\he\messages.json   [471]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\hi\messages.json   [326]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\hr\messages.json   [340]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\hu\messages.json   [336]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\id\messages.json   [319]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\it\messages.json   [324]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\ja\messages.json   [388]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\ko\messages.json   [380]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\lt\messages.json   [359]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\lv\messages.json   [360]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\nl\messages.json   [323]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\pl\messages.json   [336]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\pt_BR\messages.json   [332]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\pt_PT\messages.json   [331]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\ro\messages.json   [332]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\ru\messages.json   [471]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\sk\messages.json   [338]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\sl\messages.json   [329]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\sr\messages.json   [483]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\sv\messages.json   [333]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\th\messages.json   [472]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\tr\messages.json   [330]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\uk\messages.json   [501]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\vi\messages.json   [363]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\zh_CN\messages.json   [346]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\zh_TW\messages.json   [346]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\manifest.json   [790]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\128.png   [5920]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\ar\messages.json   [556]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\bg\messages.json   [492]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\ca\messages.json   [262]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\cs\messages.json   [289]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\da\messages.json   [240]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\de\messages.json   [239]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\el\messages.json   [624]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\en\messages.json   [215]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\es\messages.json   [281]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\fi\messages.json   [284]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\fil\messages.json   [234]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\fr\messages.json   [272]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\hi\messages.json   [391]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\hr\messages.json   [246]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\hu\messages.json   [234]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\id\messages.json   [242]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\it\messages.json   [260]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\ja\messages.json   [364]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\ko\messages.json   [328]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\lt\messages.json   [269]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\lv\messages.json   [262]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\nl\messages.json   [232]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\pl\messages.json   [292]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\pt_BR\messages.json   [230]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\pt_PT\messages.json   [231]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\ro\messages.json   [281]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\ru\messages.json   [482]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\sk\messages.json   [238]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\sl\messages.json   [249]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\sr\messages.json   [511]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\th\messages.json   [471]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\tr\messages.json   [250]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\uk\messages.json   [536]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\vi\messages.json   [257]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\zh_CN\messages.json   [339]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\zh_TW\messages.json   [321]
O61 - LFC: 11/03/2013 - 18:29:56 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\manifest.json   [755]
O61 - LFC: 11/03/2013 - 18:30:27 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Origin Bound Certs   [13312]
O61 - LFC: 11/03/2013 - 18:30:49 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\README   [180]
O61 - LFC: 11/03/2013 - 18:32:20 ---A- C:\Users\Mat\Downloads\WiseConvert_1.5.exe   [1279616]
O61 - LFC: 11/03/2013 - 18:32:44 ---A- C:\Users\Mat\AppData\Local\Temp\CT3242339\ddt.csf   [343]
O61 - LFC: 11/03/2013 - 18:33:26 ---A- C:\Users\Mat\Downloads\ZHPDiag2.exe   [5404324]
O61 - LFC: 11/03/2013 - 18:35:58 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Certificate Revocation Lists   [267113]
O61 - LFC: 11/03/2013 - 18:35:58 ---A- C:\Users\Mat\AppData\Local\Temp\CRX_75DAF8CB7768\crl-set   [267113]
O61 - LFC: 11/03/2013 - 18:35:58 ---A- C:\Users\Mat\AppData\Local\Temp\CRX_75DAF8CB7768\manifest.json   [34]
O61 - LFC: 11/03/2013 - 18:39:06 ---A- C:\Users\Mat\Documents\ZHPDiag.Txt   [84274]
O61 - LFC: 11/03/2013 - 18:41:25 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\fr-FR-2-0.bdic   [924593]
O61 - LFC: 11/03/2013 - 18:43:46 ---A- C:\Users\Mat\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\LiveComm.etl   [131072]
O61 - LFC: 11/03/2013 - 18:43:46 ---A- C:\Users\Mat\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\Settings\settings.dat   [8192]
O61 - LFC: 11/03/2013 - 18:53:50 ---A- C:\Users\Mat\Downloads\RogueKiller.exe   [816640]
O61 - LFC: 11/03/2013 - 18:54:13 ---A- C:\Users\Mat\Downloads\mbam-setup-1.70.0.1100.exe   [10156344]
O61 - LFC: 11/03/2013 - 18:57:30 ---A- C:\Users\Mat\AppData\Local\Temp\~DFFEC78ED1625A3D8E.TMP   [327680]
O61 - LFC: 11/03/2013 - 19:05:42 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\S3JU9FMB\macromedia.com\support\flashplayer\sys\#hiro.viewster.com\settings.sol   [87]
O61 - LFC: 11/03/2013 - 19:05:43 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\S3JU9FMB\macromedia.com\support\flashplayer\sys\#software.hiro.tv\settings.sol   [86]
O61 - LFC: 11/03/2013 - 19:05:47 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\S3JU9FMB\hiro.viewster.com\dbg.sol   [50]
O61 - LFC: 11/03/2013 - 19:06:37 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\S3JU9FMB\hiro.viewster.com\##590D0E96AA4C2B7A\00000001.sol   [165]
O61 - LFC: 11/03/2013 - 19:09:23 ---A- C:\Users\Mat\Downloads\adwcleaner.exe   [597667]
O61 - LFC: 11/03/2013 - 19:09:49 ---A- C:\Users\Mat\Downloads\adwcleaner (1).exe   [597667]
O61 - LFC: 11/03/2013 - 19:10:02 ---A- C:\Users\Mat\Downloads\adwcleaner (2).exe   [597667]
O61 - LFC: 11/03/2013 - 19:10:42 ---A- C:\Users\Mat\Documents\AdwCleaner[R1]1.txt   [6589]
O61 - LFC: 11/03/2013 - 19:17:23 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\S3JU9FMB\cdn1.telemetryverification.net\dbg.sol   [53]
O61 - LFC: 11/03/2013 - 19:17:23 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\S3JU9FMB\macromedia.com\##327625DA92F38AE6\00000001.sol   [192]
O61 - LFC: 11/03/2013 - 19:17:47 ---A- C:\Users\Mat\AppData\Local\Packages\Microsoft.BingWeather_8wekyb3d8bbwe\AC\INetCache\MSIMGSIZ.DAT   [49120]
O61 - LFC: 11/03/2013 - 19:20:06 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\S3JU9FMB\macromedia.com\support\flashplayer\sys\#www.13or-du-hiphop.fr\settings.sol   [91]
O61 - LFC: 11/03/2013 - 19:23:55 -SHA- C:\Users\Mat\AppData\Local\Packages\Microsoft.BingWeather_8wekyb3d8bbwe\AC\Microsoft\Internet Explorer\DOMStore\container.dat   [0]
O61 - LFC: 11/03/2013 - 19:23:57 ---A- C:\Users\Mat\AppData\Local\Packages\Microsoft.BingWeather_8wekyb3d8bbwe\AC\Microsoft\Windows\1036\StructuredQuerySchema.bin   [361866]
O61 - LFC: 11/03/2013 - 19:24:07 ---A- C:\Users\Mat\AppData\Local\Packages\Microsoft.BingWeather_8wekyb3d8bbwe\LocalState\Cache\cacheConfigurationCache\084c8407-a626-4f60-b1ee-74427a0ba5a5   [22789]
O61 - LFC: 11/03/2013 - 19:24:08 ---A- C:\Users\Mat\AppData\Local\Packages\Microsoft.BingWeather_8wekyb3d8bbwe\LocalState\navigationHistory\PlatformJS.Navigation.standard.state1363026248514   [0]
O61 - LFC: 11/03/2013 - 19:24:09 ---A- C:\Users\Mat\AppData\Local\Packages\Microsoft.BingWeather_8wekyb3d8bbwe\AC\Microsoft\Internet Explorer\DOMStore\PPRA4M13\microsoft[1].xml   [480]
O61 - LFC: 11/03/2013 - 19:24:09 ---A- C:\Users\Mat\AppData\Local\Packages\Microsoft.BingWeather_8wekyb3d8bbwe\LocalState\Cache\cacheConfigurationCache\_CacheMetadata.bin   [469]
O61 - LFC: 11/03/2013 - 19:24:09 ---A- C:\Users\Mat\AppData\Local\Packages\Microsoft.BingWeather_8wekyb3d8bbwe\LocalState\InstrumentationData.xml   [1641]
O61 - LFC: 11/03/2013 - 19:24:20 ---A- C:\Users\Mat\AppData\Local\Packages\Microsoft.BingWeather_8wekyb3d8bbwe\Settings\settings.dat   [8192]
O61 - LFC: 11/03/2013 - 19:35:07 ---A- C:\Users\Mat\Documents\AdwCleaner[S1]1.txt   [6426]
O61 - LFC: 11/03/2013 - 19:35:18 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extension Cookies   [6144]
O61 - LFC: 11/03/2013 - 19:35:49 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\QuotaManager   [13312]
O61 - LFC: 11/03/2013 - 19:37:00 --HA- C:\Users\Mat\AppData\Local\IconCache.db   [27900]
O61 - LFC: 11/03/2013 - 19:38:12 ---A- C:\Users\Mat\AppData\Local\ASUS\P4G\P4GUI.INI   [501]
O61 - LFC: 11/03/2013 - 19:38:16 ---A- C:\Users\Mat\AppData\Roaming\sp_data.sys   [352]
O61 - LFC: 11/03/2013 - 19:38:27 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extension State\000010.sst   [196]
O61 - LFC: 11/03/2013 - 19:43:59 ---A- C:\Users\Mat\Documents\reportroguekiller.txt   [1390]
O61 - LFC: 11/03/2013 - 19:45:46 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\no\messages.json   [195]
O61 - LFC: 11/03/2013 - 19:45:46 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\main.html   [92]
O61 - LFC: 11/03/2013 - 19:45:46 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\main.js   [98]
O61 - LFC: 11/03/2013 - 19:45:47 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\ar\messages.json   [374]
O61 - LFC: 11/03/2013 - 19:45:47 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\bg\messages.json   [428]
O61 - LFC: 11/03/2013 - 19:45:47 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\ca\messages.json   [207]
O61 - LFC: 11/03/2013 - 19:45:47 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\cs\messages.json   [230]
O61 - LFC: 11/03/2013 - 19:45:47 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\da\messages.json   [216]
O61 - LFC: 11/03/2013 - 19:45:47 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\de\messages.json   [217]
O61 - LFC: 11/03/2013 - 19:45:47 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\el\messages.json   [416]
O61 - LFC: 11/03/2013 - 19:45:47 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\en_GB\messages.json   [208]
O61 - LFC: 11/03/2013 - 19:45:47 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\en_US\messages.json   [209]
O61 - LFC: 11/03/2013 - 19:45:47 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\es\messages.json   [206]
O61 - LFC: 11/03/2013 - 19:45:47 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\es_419\messages.json   [206]
O61 - LFC: 11/03/2013 - 19:45:47 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\et\messages.json   [216]
O61 - LFC: 11/03/2013 - 19:45:47 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\fi\messages.json   [216]
O61 - LFC: 11/03/2013 - 19:45:47 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\fil\messages.json   [219]
O61 - LFC: 11/03/2013 - 19:45:47 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\fr\messages.json   [224]
O61 - LFC: 11/03/2013 - 19:45:47 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\he\messages.json   [293]
O61 - LFC: 11/03/2013 - 19:45:47 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\hi\messages.json   [375]
O61 - LFC: 11/03/2013 - 19:45:47 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\hu\messages.json   [251]
O61 - LFC: 11/03/2013 - 19:45:47 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\id\messages.json   [209]
O61 - LFC: 11/03/2013 - 19:45:47 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\it\messages.json   [213]
O61 - LFC: 11/03/2013 - 19:45:47 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\ja\messages.json   [263]
O61 - LFC: 11/03/2013 - 19:45:47 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\ko\messages.json   [254]
O61 - LFC: 11/03/2013 - 19:45:47 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\lt\messages.json   [234]
O61 - LFC: 11/03/2013 - 19:45:47 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\lv\messages.json   [232]
O61 - LFC: 11/03/2013 - 19:45:47 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\ms\messages.json   [207]
O61 - LFC: 11/03/2013 - 19:45:47 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\nl\messages.json   [217]
O61 - LFC: 11/03/2013 - 19:45:47 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\pl\messages.json   [217]
O61 - LFC: 11/03/2013 - 19:45:47 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\pt_BR\messages.json   [206]
O61 - LFC: 11/03/2013 - 19:45:47 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\pt_PT\messages.json   [208]
O61 - LFC: 11/03/2013 - 19:45:47 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\ro\messages.json   [225]
O61 - LFC: 11/03/2013 - 19:45:47 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\ru\messages.json   [434]
O61 - LFC: 11/03/2013 - 19:45:47 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\sk\messages.json   [225]
O61 - LFC: 11/03/2013 - 19:45:47 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\sl\messages.json   [218]
O61 - LFC: 11/03/2013 - 19:45:47 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\sr\messages.json   [380]
O61 - LFC: 11/03/2013 - 19:45:47 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\sv\messages.json   [214]
O61 - LFC: 11/03/2013 - 19:45:47 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\th\messages.json   [329]
O61 - LFC: 11/03/2013 - 19:45:47 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\tr\messages.json   [243]
O61 - LFC: 11/03/2013 - 19:45:47 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\uk\messages.json   [428]
O61 - LFC: 11/03/2013 - 19:45:47 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\vi\messages.json   [252]
O61 - LFC: 11/03/2013 - 19:45:47 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\zh_CN\messages.json   [233]
O61 - LFC: 11/03/2013 - 19:45:47 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\_locales\zh_TW\messages.json   [233]
O61 - LFC: 11/03/2013 - 19:45:47 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\icon_128.png   [3009]
O61 - LFC: 11/03/2013 - 19:45:47 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\icon_16.png   [143]
O61 - LFC: 11/03/2013 - 19:45:47 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\manifest.json   [724]
O61 - LFC: 11/03/2013 - 19:45:48 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\eu\messages.json   [243]
O61 - LFC: 11/03/2013 - 19:45:49 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\no\messages.json   [218]
O61 - LFC: 11/03/2013 - 19:45:49 ---A- C:\Users\Mat\AppData\Local\Temp\dump.dat   [1994752]
O61 - LFC: 11/03/2013 - 19:45:51 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\128.png   [7654]
O61 - LFC: 11/03/2013 - 19:45:51 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\ar\messages.json   [422]
O61 - LFC: 11/03/2013 - 19:45:51 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\bg\messages.json   [559]
O61 - LFC: 11/03/2013 - 19:45:51 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\ca\messages.json   [265]
O61 - LFC: 11/03/2013 - 19:45:51 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\cs\messages.json   [283]
O61 - LFC: 11/03/2013 - 19:45:51 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\da\messages.json   [251]
O61 - LFC: 11/03/2013 - 19:45:51 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\de\messages.json   [256]
O61 - LFC: 11/03/2013 - 19:45:51 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\el\messages.json   [565]
O61 - LFC: 11/03/2013 - 19:45:51 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\en_GB\messages.json   [249]
O61 - LFC: 11/03/2013 - 19:45:51 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\en_US\messages.json   [249]
O61 - LFC: 11/03/2013 - 19:45:51 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\es\messages.json   [259]
O61 - LFC: 11/03/2013 - 19:45:51 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\es_419\messages.json   [259]
O61 - LFC: 11/03/2013 - 19:45:51 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\et\messages.json   [259]
O61 - LFC: 11/03/2013 - 19:45:51 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\fi\messages.json   [277]
O61 - LFC: 11/03/2013 - 19:45:51 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\fil\messages.json   [260]
O61 - LFC: 11/03/2013 - 19:45:51 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\fr\messages.json   [260]
O61 - LFC: 11/03/2013 - 19:45:51 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\he\messages.json   [438]
O61 - LFC: 11/03/2013 - 19:45:51 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\hi\messages.json   [492]
O61 - LFC: 11/03/2013 - 19:45:51 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\hr\messages.json   [263]
O61 - LFC: 11/03/2013 - 19:45:51 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\hu\messages.json   [276]
O61 - LFC: 11/03/2013 - 19:45:51 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\id\messages.json   [261]
O61 - LFC: 11/03/2013 - 19:45:51 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\it\messages.json   [258]
O61 - LFC: 11/03/2013 - 19:45:51 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\ja\messages.json   [395]
O61 - LFC: 11/03/2013 - 19:45:51 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\ko\messages.json   [365]
O61 - LFC: 11/03/2013 - 19:45:51 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\lt\messages.json   [309]
O61 - LFC: 11/03/2013 - 19:45:51 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\lv\messages.json   [262]
O61 - LFC: 11/03/2013 - 19:45:51 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\ms\messages.json   [254]
O61 - LFC: 11/03/2013 - 19:45:51 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\nl\messages.json   [250]
O61 - LFC: 11/03/2013 - 19:45:51 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\pl\messages.json   [261]
O61 - LFC: 11/03/2013 - 19:45:51 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\pt_BR\messages.json   [250]
O61 - LFC: 11/03/2013 - 19:45:51 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\pt_PT\messages.json   [272]
O61 - LFC: 11/03/2013 - 19:45:51 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\ro\messages.json   [309]
O61 - LFC: 11/03/2013 - 19:45:51 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\ru\messages.json   [614]
O61 - LFC: 11/03/2013 - 19:45:51 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\sk\messages.json   [293]
O61 - LFC: 11/03/2013 - 19:45:51 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\sl\messages.json   [268]
O61 - LFC: 11/03/2013 - 19:45:51 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\sr\messages.json   [467]
O61 - LFC: 11/03/2013 - 19:45:51 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\sv\messages.json   [261]
O61 - LFC: 11/03/2013 - 19:45:51 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\th\messages.json   [521]
O61 - LFC: 11/03/2013 - 19:45:51 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\tr\messages.json   [302]
O61 - LFC: 11/03/2013 - 19:45:51 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\uk\messages.json   [657]
O61 - LFC: 11/03/2013 - 19:45:51 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\vi\messages.json   [321]
O61 - LFC: 11/03/2013 - 19:45:51 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\zh_CN\messages.json   [360]
O61 - LFC: 11/03/2013 - 19:45:51 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\zh_TW\messages.json   [348]
O61 - LFC: 11/03/2013 - 19:45:51 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\manifest.json   [996]
O61 - LFC: 11/03/2013 - 19:48:28 ---A- C:\Users\Mat\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-2013-03-11 (19-45-01).txt   [2132]
O61 - LFC: 11/03/2013 - 19:49:22 ---A- C:\Users\Mat\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs\malwareraport.txt   [2132]
O61 - LFC: 11/03/2013 - 19:49:33 ---A- C:\Users\Mat\Documents\mbam-log-2013-03-11 (19-45-01).txt   [2132]
O61 - LFC: 11/03/2013 - 20:01:25 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\S3JU9FMB\hiro.viewster.com\HIRO_NETWORK_CAPPING_COOKIE.sol   [1963]
O61 - LFC: 11/03/2013 - 20:01:48 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\S3JU9FMB\hiro.viewster.com\mb.sol   [55]
O61 - LFC: 11/03/2013 - 20:02:12 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Login Data   [12288]
O61 - LFC: 11/03/2013 - 20:02:53 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\S3JU9FMB\hiro.viewster.com\US_FARM_viewste#\r_STREMING_CLIENT_ID_COOKIE.sol   [172]
O61 - LFC: 11/03/2013 - 20:02:53 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\S3JU9FMB\hiro.viewster.com\hiro_companion_cookie.sol   [106]
O61 - LFC: 11/03/2013 - 20:03:45 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\S3JU9FMB\software.hiro.tv\HIRO_REPO.sol   [108]
O61 - LFC: 11/03/2013 - 20:07:37 ---A- C:\Users\Mat\Pictures\12B_.95,_.95,T_.32,_.32,108_110313_150313.gif   [29588]
O61 - LFC: 11/03/2013 - 20:07:48 ---A- C:\Users\Mat\Pictures\12B_.95,_.95,T_.32,_.32,108_180313_220313.gif   [30221]
O61 - LFC: 11/03/2013 - 20:10:17 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extension State\000013.sst   [291]
O61 - LFC: 11/03/2013 - 20:10:33 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Bookmarks   [1271]
O61 - LFC: 11/03/2013 - 20:10:33 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Bookmarks.bak   [1271]
O61 - LFC: 11/03/2013 - 20:25:50 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG.old   [145]
O61 - LFC: 11/03/2013 - 20:25:53 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG.old   [264]
O61 - LFC: 11/03/2013 - 20:31:01 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\S3JU9FMB\macromedia.com\support\flashplayer\sys\#static1.dmcdn.net\settings.sol   [87]
O61 - LFC: 11/03/2013 - 20:31:01 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\S3JU9FMB\macromedia.com\support\flashplayer\sys\settings.sol   [514]
O61 - LFC: 11/03/2013 - 20:31:32 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\S3JU9FMB\cdn1.telemetryverification.net\mb.sol   [159]
O61 - LFC: 11/03/2013 - 20:41:10 ---A- C:\Users\Mat\Downloads\ccsetup328_slim.exe   [3151480]
O61 - LFC: 11/03/2013 - 20:41:17 ---A- C:\Users\Mat\Downloads\ccsetup328_slim (1).exe   [3151480]
O61 - LFC: 11/03/2013 - 20:42:12 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Favicons   [67584]
O61 - LFC: 11/03/2013 - 20:43:12 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\S3JU9FMB\static1.dmcdn.net\com.dm.player.sol   [244]
O61 - LFC: 11/03/2013 - 20:43:40 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Shortcuts   [12288]
O61 - LFC: 11/03/2013 - 20:43:41 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\databases\Databases.db   [7168]
O61 - LFC: 11/03/2013 - 20:45:06 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Archived History   [57344]
O61 - LFC: 11/03/2013 - 20:45:06 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Archived History-journal   [512]
O61 - LFC: 11/03/2013 - 20:45:06 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache   [1255]
O61 - LFC: 11/03/2013 - 20:45:07 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor   [13312]
O61 - LFC: 11/03/2013 - 20:45:07 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor-journal   [3608]
O61 - LFC: 11/03/2013 - 20:45:07 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Web Data   [73728]
O61 - LFC: 11/03/2013 - 20:45:07 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal   [4624]
O61 - LFC: 11/03/2013 - 20:45:10 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extension State\MANIFEST-000023   [424]
O61 - LFC: 11/03/2013 - 20:45:11 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extension State\CURRENT   [16]
O61 - LFC: 11/03/2013 - 20:45:14 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Session Storage\000031.sst   [193]
O61 - LFC: 11/03/2013 - 20:45:14 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Session Storage\CURRENT   [16]
O61 - LFC: 11/03/2013 - 20:45:14 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Session Storage\MANIFEST-000028   [532]
O61 - LFC: 11/03/2013 - 20:45:15 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Managed Mode Settings   [8]
O61 - LFC: 11/03/2013 - 20:45:16 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\TransportSecurity   [8]
O61 - LFC: 11/03/2013 - 20:45:16 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Visited Links   [131072]
O61 - LFC: 11/03/2013 - 20:45:18 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG   [139]
O61 - LFC: 11/03/2013 - 20:45:20 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG   [769]
O61 - LFC: 11/03/2013 - 20:45:50 ---A- C:\Users\Mat\Documents\cc_20130311_204545.reg   [2300]
O61 - LFC: 11/03/2013 - 20:46:14 ---A- C:\Users\Mat\Documents\cc_20130311_204613.reg   [82]
O61 - LFC: 11/03/2013 - 20:46:34 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Top Sites   [32768]
O61 - LFC: 11/03/2013 - 20:46:34 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Top Sites-journal   [12824]
O61 - LFC: 11/03/2013 - 20:47:01 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Safe Browsing Download   [1737104]
O61 - LFC: 11/03/2013 - 20:47:02 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Safe Browsing Bloom   [7757412]
O61 - LFC: 11/03/2013 - 20:47:02 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Safe Browsing Bloom Prefix Set   [1448516]
O61 - LFC: 11/03/2013 - 20:47:02 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Safe Browsing Csd Whitelist   [134512]
O61 - LFC: 11/03/2013 - 20:47:02 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Safe Browsing Download Whitelist   [19852]
O61 - LFC: 11/03/2013 - 20:47:29 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Safe Browsing Cookies   [6144]
O61 - LFC: 11/03/2013 - 20:47:29 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Safe Browsing Cookies-journal   [2576]
O61 - LFC: 11/03/2013 - 20:53:44 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\History Index 2013-03   [69632]
O61 - LFC: 11/03/2013 - 20:53:44 ---A- C:\Users\Mat\Documents\ZHPDiag2   [183938]
O61 - LFC: 11/03/2013 - 20:53:52 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Cookies   [147456]
O61 - LFC: 11/03/2013 - 20:53:52 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Cookies-journal   [13928]
O61 - LFC: 11/03/2013 - 20:54:00 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\History   [167936]
O61 - LFC: 11/03/2013 - 20:54:30 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\History Index 2013-03-journal   [29240]
O61 - LFC: 11/03/2013 - 20:55:15 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Local State   [24047]
O61 - LFC: 11/03/2013 - 20:57:08 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\History-journal   [16928]
O61 - LFC: 11/03/2013 - 20:57:30 ---A- C:\Users\Mat\AppData\Local\Google\Chrome\User Data\Default\Preferences   [78561]
~ Scan Files in 00mn 00s



---\\ Liste des outils de nettoyage (O63)
O63 - Logiciel: ZHPDiag 2013 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
~ Scan ADS in 00mn 00s



---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> <evtfile>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.html> <ChromeHTML>[HKCU\..\open\Command] (.Not Key.)
O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> <evtfile>[HKCR\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <ChromeHTML>[HKCR\..\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
~ Scan Keys in 00mn 00s



---\\ Start Menu Internet (O68)
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
~ Scan Keys in 00mn 00s



---\\ Recherche des services démarrés par Svchost (O83)
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll   [190976]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll   [149504]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll   [149504]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll   [309248]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll   [1366016]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll   [1071104]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’accès distant.) -- C:\Windows\System32\rasauto.dll   [99840]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d’accès à distance.) -- C:\Windows\System32\rasmans.dll   [358400]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll   [107520]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements système (SENS).) -- C:\Windows\System32\sens.dll   [62976]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll   [438784]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM).) -- C:\Windows\System32\tapisrv.dll   [305664]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll   [3318784]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\Windows\System32\qmgr.dll   [826368]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll   [565760]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur un réseau IPv4..) -- C:\Windows\System32\iphlpsvc.dll   [894464]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll   [30720]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll   [69632]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll   [151552]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll   [105472]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll   [1282560]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll   [219648]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédias.) -- C:\Windows\System32\mmcss.dll   [80384]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll   [134144]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll   [209920]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à distance.) -- C:\Windows\System32\sessenv.dll   [291328]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll   [84992]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\kmsvc.dll   [97792]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll   [190464]
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\Windows\System32\wlidsvc.dll   [1968128]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll   [47104]
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d’installation de périphérique.) -- C:\Windows\System32\DeviceSetupManager.dll   [207872]
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Microsoft.) -- C:\Windows\System32\ncasvc.dll   [161792]
O83 - Search Svchost Services: SystemEventsBroker (SystemEventsBroker) . (.Microsoft Corporation - Service Broker pour les événements système.) -- C:\Windows\System32\SystemEventsBrokerServer.dll   [178176]
~ Scan Services in 00mn 00s



---\\ Recherche particuliere à la racine de certains dossiers (O84)
[MD5.4A93070098539B54FDA391D4D551C880] [SPRF][22/07/2009] (...) -- C:\ProgramData\SetStretch.exe   [24576]
[MD5.DDD065D011904588D86AA6AF12C4FCA3] [SPRF][11/03/2013] (...) -- C:\Users\Mat\AppData\Local\Temp\dump.dat   [1994752]
[MD5.9F8CDF9E5E47F34E62BA60A676574905] [SPRF][11/03/2013] (...) -- C:\Users\Mat\AppData\Roaming\sp_data.sys   [352]
~ Scan Files in 00mn 00s



---\\ Firewall Active Exception List (FirewallRules) (O87)
O87 - FAEL: "WMPNSS-In-UDP-NoScope" |In - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-UDP-NoScope" |Out - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-UDP" |In - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-UDP" |Out - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{7B168E73-BBDF-4823-8E19-B0980F6FEDDA}" | In - None - P6 - TRUE | .(.CyberLink Corp. - CyberLink PowerDVD Cinema 10 Main Program.) -- C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe
O87 - FAEL: "{7C704D66-9A30-45D2-AD2C-66B8114818DB}" | In - None - P6 - TRUE | .(.CyberLink Corp. - ASUSDVD.) -- C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.exe
O87 - FAEL: "{AA28A9F2-20A7-42BF-A038-F06F387D90F4}" | In - Public - P6 - TRUE | .(.McAfee, Inc. - McAfee Service Host.) -- C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe
O87 - FAEL: "{8AF94533-B40E-4361-A4A9-B6CF7ABF2AB4}" | In - Public - P17 - TRUE | .(.McAfee, Inc. - McAfee Service Host.) -- C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe
~ Scan Firewall in 00mn 00s



---\\ Scan Additionnel (O88)
Database Version : v2.11202 - (11/03/2013)
Clés trouvées (Keys found) : 3
Valeurs trouvées (Values found) : 0
Dossiers trouvés  (Folders found) : 0
Fichiers trouvés  (Files found) : 0

[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]   =>Toolbar.Bing
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]   =>Toolbar.Bing
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]   =>Toolbar.Bing
~ Scan Additionnel in 00mn 11s



---\\ Recherche détournement de DNS routeur (O89) (None)

---\\ Product Upgrade Codes (O90)
O90 - PUC: "00004159070000000000000000F01FEC" . (.Microsoft Office.) -- C:\windows\Installer\{95140000-0070-0000-0000-0000000FF1CE}\oobeicon.exe
O90 - PUC: "21F1DBD139DE0C947ACC65BCED841885" . (.ASUS LifeFrame3.) -- C:\Windows\Installer\{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}\_853F67D554F05449430E7E.exe
O90 - PUC: "50FA96906FF400C4496034952983EDD0" . (.ASUS Splendid Video Enhancement Technology.) -- C:\Windows\Installer\{0969AF05-4FF6-4C00-9406-43599238DE0D}\_853F67D554F05449430E7E.exe
O90 - PUC: "5E3E958AF26CAFB4FAD1B2590E1366FA" . (.ASUS USB Charger Plus.) -- C:\Windows\Installer\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}\_853F67D554F05449430E7E.exe
O90 - PUC: "66D2718596F25124A9CEDE1869207363" . (.ASUS Tutor.) -- C:\windows\Installer\{58172D66-2F69-4215-9AEC-ED8196023736}\_853F67D554F05449430E7E.exe
O90 - PUC: "68AB67CA7DA7FFFFB744AA0000000010" . (.Adobe Reader X MUI.) -- C:\windows\Installer\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}\SC_Reader.ico
O90 - PUC: "6A6823D4BA6FA894284A4E0F0425F9D3" . (.ASUS Smart Gesture.) -- C:\Windows\Installer\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}\_853F67D554F05449430E7E.exe
O90 - PUC: "76E045AFC590B1A479ABD445D7CEA94F" . (.ASUS Live Update.) -- C:\Windows\Installer\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}\MyIcon
O90 - PUC: "A58BCE98339DAEC41961C5CBC9E29DB5" . (.ASUS Instant Connect.) -- C:\Windows\Installer\{89ECB85A-D933-4CEA-9116-5CBC9C2ED95B}\_853F67D554F05449430E7E.exe
O90 - PUC: "B476F94747628E7478C965620AB6A219" . (.ASUS InstantOn.) -- C:\Windows\Installer\{749F674B-2674-47E8-879C-5626A06B2A91}\_6FEFF9B68218417F98F549.exe
O90 - PUC: "DE532CED4A8571542A874CE1D8EABAB3" . (.PowerDVD.) -- C:\Windows\Installer\{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}\ARPPRODUCTICON.exe
O90 - PUC: "E19212F84440D1B49B9F34077AE343D6" . (.WinFlash.) -- C:\Windows\Installer\{8F21291E-0444-4B1D-B9F9-4370A73E346D}\MyIcon
O90 - PUC: "E339C5BAD7C503D43B41C9384AB949EB" . (.ATK Package.) -- C:\Windows\Installer\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}\_4ae13d6c.exe
O90 - PUC: "FB9326B958E40954D827153ED01B9AAA" . (.ASUS Power4Gear Hybrid.) -- C:\Windows\Installer\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}\_853F67D554F05449430E7E.exe
~ Scan Files in 00mn 00s



---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SR - | Auto 23/07/2012 105120 |  (ASLDRService) . (.ASUSTek Computer Inc..) - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
SR - | Auto 13/04/2012 277120 |  (ASUS InstantOn) . (.ASUS.) - C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe
SR - | Auto 21/11/2011 96896 |  (ATKGFNEXSrv) . (.ASUS.) - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
SS - | Demand 16/08/2012 276288 |  (cphs) . (.Intel Corporation.) - C:\Windows\SysWow64\IntelCpHeciSvc.exe
SS - | Auto 11/03/2013 116648 |  (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 11/03/2013 116648 |  (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SR - | Auto 13/07/2012 2451456 |  (IconMan_R) . (.Realsil Microelectronics Inc..) - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
SR - | Auto 20/04/2012 635104 |  (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe
SR - | Auto 25/06/2012 166720 |  (jhi_service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
SR - | Auto 17/07/2012 277824 |  (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
SR - | Auto 14/12/2012 398184 |  (MBAMScheduler) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
SR - | Auto 14/12/2012 682344 |  (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
SS - | Demand 26/01/2012 332080 |  (McAWFwk) . (.McAfee, Inc..) - C:\Program Files\mcafee\msc\McAWFwk.exe
SR - | Auto 31/08/2012 201304 |  (McMPFSvc) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
SR - | Auto 31/08/2012 201304 |  (mcmscsvc) . (.McAfee, Inc..) - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
SR - | Auto 31/08/2012 201304 |  (McNaiAnn) . (.McAfee, Inc..) - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
SR - | Auto 31/08/2012 201304 |  (McNASvc) . (.McAfee, Inc..) - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
SS - | Demand 25/02/2013 384048 |  (McODS) . (.McAfee, Inc..) - C:\Program Files\mcafee\VirusScan\mcods.exe
SR - | Auto 31/08/2012 201304 |  (McOobeSv) . (.McAfee, Inc..) - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
SR - | Auto 31/08/2012 201304 |  (McProxy) . (.McAfee, Inc..) - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
SR - | Auto 19/02/2013 241456 |  (McShield) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe
SR - | Auto 19/02/2013 218760 |  (mfefire) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
SR - | Auto 19/02/2013 182752 |  (mfevtp) . (.McAfee, Inc..) - C:\windows\system32\mfevtps.exe
SR - | Auto 31/08/2012 201304 |  (MSK80Service) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
SR - | Auto 17/07/2012 365376 |  (UNS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
SS - | Demand  0 |  (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe
SR - | Demand 26/07/2012 30208 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
~ Scan Services in 00mn 00s



---\\ Recherche Master Boot Record Infection (MBR)(O80)
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
Run by Mat at 11/03/2013 20:58:26

device: opened successfully
user: error reading MBR 

Disk trace:
error: Read  Descripteur non valide
kernel: error reading MBR 
~ Scan MBR in 00mn 02s



---\\ Recherche Master Boot Record Infection (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by Mat at 11/03/2013 20:58:28

********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin
~ Scan MBR in 00mn 04s



End of the scan (1640 lines in 01mn 08s)(0)