Aller au contenu

Bebos74

Membres
 Afficher le profil  Afficher son activité

  • Compteur de contenus

    8

  • Inscription

  • Dernière visite

 Type de contenu 

Tout ce qui a été posté par Bebos74

  1. Bebos74
    [RESOLU]
  2. Bebos74
    salut, malwarebyte avait deja été effectué,RAS, et j'ai deja desinstaller les autres logiciels merci
  3. Bebos74
    bonjour, et bien, il a l'air d'aller comme il se doit! merci pour l'aide comment classer le sujet "résolu"?
  4. Bebos74
    voici le rapport ZHPfix: Rapport de ZHPFix 1.12.3275 par Nicolas Coolman, Update du 11/04/2011 Fichier d'export Registre : Run by Fab at 18/04/2011 17:59:32 Windows 7 Ultimate Edition, 64-bit (Build 7600) Web site : ZHPFix Fix de rapport ========== Clé(s) du Registre ========== O23 - Service: (KMService) . (...) - C:\Windows\system32\srvany.exe => Clé non supprimée HKLM\Software\Trymedia Systems => Clé absente O51 - MPSK:{c52b28ce-05f1-11e0-a338-001e8c45677a}\AutoRun\command. (.Pas de propriétaire - Pas de description.) -- J:\Startme.exe (.not file.) => Clé supprimée avec succès O51 - MPSK:{c52b297c-05f1-11e0-a338-001e8c45677a}\AutoRun\command. (.Pas de propriétaire - Pas de description.) -- J:\Startme.exe (.not file.) => Clé supprimée avec succès O64 - Services: CurCS - (.not file.) - 14637941 (14637941) .(...) - LEGACY_14637941 => Clé supprimée avec succès O64 - Services: CurCS - (.not file.) - 14637942 Boot Guard Driver (14637942) .(...) - LEGACY_14637942 => Clé supprimée avec succès O64 - Services: CurCS - (.not file.) - 68642381 (68642381) .(...) - LEGACY_68642381 => Clé supprimée avec succès O64 - Services: CurCS - (.not file.) - 68642382 Boot Guard Driver (68642382) .(...) - LEGACY_68642382 => Clé supprimée avec succès O64 - Services: CurCS - (.not file.) - acedrv11 (acedrv11) .(...) - LEGACY_ACEDRV11 => Clé supprimée avec succès O64 - Services: CurCS - (.not file.) - SASDIFSV (SASDIFSV) .(...) - LEGACY_SASDIFSV => Clé supprimée avec succès O64 - Services: CurCS - (.not file.) - SASKUTIL (SASKUTIL) .(...) - LEGACY_SASKUTIL => Clé supprimée avec succès O64 - Services: CurCS - C:\Windows\system32\Drivers\SECDRV.sys - (.not file.) - Security Driver (secdrv) .(...) - LEGACY_SECDRV => Clé supprimée avec succès O64 - Services: CurCS - (.not file.) - setup_9.0.0.722_13.09.2010_10-27drv (setup_9.0.0.722_13.09.2010_10-27drv) .(...) - LEGACY_SETUP_9.0.0.722_13.09.2010_10-27DRV => Clé supprimée avec succès O64 - Services: CurCS - (.not file.) - setup_9.0.0.722_27.05.2010_11-29drv (setup_9.0.0.722_27.05.2010_11-29drv) .(...) - LEGACY_SETUP_9.0.0.722_27.05.2010_11-29DRV => Clé supprimée avec succès O64 - Services: CurCS - (.not file.) - DrWeb file system scanner (SpiderG3) .(...) - LEGACY_SPIDERG3 => Clé supprimée avec succès O64 - Services: CurCS - C:\Windows\system32\Drivers\SPLDR.sys - (.not file.) - Security Processor Loader Driver (spldr) .(...) - LEGACY_SPLDR => Clé supprimée avec succès HKCR\nctaudiofile2.audiofile2 => Clé supprimée avec succès HKCR\nctaudiofile2.audiofile2.2 => Clé supprimée avec succès HKCR\nctaudiofile2.audiofile2lameenc => Clé supprimée avec succès HKCR\nctaudiofile2.audiofile2lameenc.1 => Clé supprimée avec succès ========== Valeur(s) du Registre ========== O47 - AAKE:Key Export SP - "C:\Users\Fab\AppData\Roaming\svchost.exe" [Enabled] .(.) -- C:\Users\Fab\AppData\Roaming\svchost.exe (.not file.) => Valeur supprimée avec succès O47 - AAKE:Key Export SP - "C:\Users\Fab\AppData\Roaming\0Q11SIUAOM.exe" [Enabled] .(.) -- C:\Users\Fab\AppData\Roaming\0Q11SIUAOM.exe (.not file.) => Valeur supprimée avec succès O47 - AAKE:Key Export SP - "C:\Users\Fab\AppData\Roaming\csrss.exe" [Enabled] .(.) -- C:\Users\Fab\AppData\Roaming\csrss.exe (.not file.) => Valeur supprimée avec succès O47 - AAKE:Key Export SP - "C:\Users\Fab\AppData\Local\Temp\15081.exe" [Enabled] .(.) -- C:\Users\Fab\AppData\Local\Temp\15081.exe (.not file.) => Valeur supprimée avec succès O47 - AAKE:Key Export SP - "C:\Users\Fab\AppData\Local\Temp\7706.exe" [Enabled] .(.) -- C:\Users\Fab\AppData\Local\Temp\7706.exe (.not file.) => Valeur supprimée avec succès FirewallRaz : Aucune valeur présente dans la clé de registre "Standard Profile" FirewallRaz : Aucune valeur présente dans la clé de registre "Domain Profile" FirewallRaz (Domain) : {C0615268-1AF7-44DD-A05B-08382561E8F8} => Valeur supprimée avec succès FirewallRaz (Domain) : {1EED3F44-D3B2-4F7A-8C5F-65E74A33E524} => Valeur supprimée avec succès FirewallRaz (Domain) : {84465463-C566-4D3B-9D8A-237255FC5E5D} => Valeur supprimée avec succès FirewallRaz (Domain) : {53076E1F-919C-4421-A8A4-A2660956CBFA} => Valeur supprimée avec succès FirewallRaz (Public) : {53B44827-F008-4D41-AA18-65CDA632718E} => Valeur supprimée avec succès FirewallRaz (Public) : {82EA7623-B672-4415-B984-7B99C6749AF8} => Valeur supprimée avec succès FirewallRaz (Public) : {39808AD8-C5CD-4FCF-A923-FEDE65DC4542} => Valeur supprimée avec succès FirewallRaz (Public) : {EEF1A672-700F-4A7A-B315-54270A87AF9C} => Valeur supprimée avec succès FirewallRaz (Domain) : {5A1904A8-60F6-4B90-838E-BAC14E5DEFB0} => Valeur supprimée avec succès FirewallRaz (Domain) : {8805F8FE-392D-4D63-9B7B-BCD1FE15A3F0} => Valeur supprimée avec succès FirewallRaz (Public) : {619421A9-A980-47F7-AC6B-1A06D51BA4D7} => Valeur supprimée avec succès FirewallRaz (Public) : {33F8008E-87B0-4868-A74E-3C17AF2D8914} => Valeur supprimée avec succès ========== Dossier(s) ========== Dossiers temporaires Windows supprimés: 71 ========== Fichier(s) ========== Fichiers temporaires Windows supprimés : 187 ========== Récapitulatif ========== 20 : Clé(s) du Registre 19 : Valeur(s) du Registre 1 : Dossier(s) 1 : Fichier(s) End of the scan
  5. Bebos74
    bonjour, tout est dit dans le titre....je ne peux pas acceder a mon topic précédent merci pour l'aide svp
  6. Bebos74
    Et re-bonjour, voila le log de ZHPFix: Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\KMService] "Type"=dword:00000010 "Start"=dword:00000002 "ErrorControl"=dword:00000001 "ImagePath"=hex(2):43,00,3a,00,5c,00,57,00,69,00,6e,00,64,00,6f,00,77,00,73,00,\ 5c,00,73,00,79,00,73,00,74,00,65,00,6d,00,33,00,32,00,5c,00,73,00,72,00,76,\ 00,61,00,6e,00,79,00,2e,00,65,00,78,00,65,00,00,00 "DisplayName"="KMService" "WOW64"=dword:00000001 "ObjectName"="LocalSystem" "Description"="Software licensing service" "FailureActions"=hex:00,00,00,00,00,00,00,00,00,00,00,00,03,00,00,00,14,00,00,\ 00,01,00,00,00,60,ea,00,00,01,00,00,00,60,ea,00,00,00,00,00,00,00,00,00,00 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\KMService\Parameters] "Application"="C:\\Windows\\KMService.exe" Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "C:\\Users\\Fab\\AppData\\Roaming\\svchost.exe"="C:\\Users\\Fab\\AppData\\Roaming\\svchost.exe:*:Enabled:Windows Messanger" "C:\\Users\\Fab\\AppData\\Roaming\\0Q11SIUAOM.exe"="C:\\Users\\Fab\\AppData\\Roaming\\0Q11SIUAOM.exe:*:Enabled:Windows Messanger" "C:\\Users\\Fab\\AppData\\Roaming\\csrss.exe"="C:\\Users\\Fab\\AppData\\Roaming\\csrss.exe:*:Enabled:Windows Messanger" "C:\\Users\\Fab\\AppData\\Local\\Temp\\15081.exe"="C:\\Users\\Fab\\AppData\\Local\\Temp\\15081.exe:*:Enabled:Windows Messanger" "C:\\Users\\Fab\\AppData\\Local\\Temp\\7706.exe"="C:\\Users\\Fab\\AppData\\Local\\Temp\\7706.exe:*:Enabled:Windows Messanger" Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_68642381] "NextInstance"=dword:00000001 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_68642381\0000] "Service"="68642381" "Legacy"=dword:00000001 "ConfigFlags"=dword:00000000 "Class"="LegacyDriver" "ClassGUID"="{8ECC055D-047F-11D1-A537-0000F8753ED1}" "DeviceDesc"="68642381" "Capabilities"=dword:00000000 Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_68642382] "NextInstance"=dword:00000001 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_68642382\0000] "Service"="68642382" "Legacy"=dword:00000001 "ConfigFlags"=dword:00000000 "Class"="LegacyDriver" "ClassGUID"="{8ECC055D-047F-11D1-A537-0000F8753ED1}" "DeviceDesc"="68642382 Boot Guard Driver" "Capabilities"=dword:00000000 Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ACEDRV11] "NextInstance"=dword:00000001 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ACEDRV11\0000] "Service"="acedrv11" "Legacy"=dword:00000001 "ConfigFlags"=dword:00000000 "Class"="LegacyDriver" "ClassGUID"="{8ECC055D-047F-11D1-A537-0000F8753ED1}" "DeviceDesc"="acedrv11" "Capabilities"=dword:00000000 Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SASDIFSV] "NextInstance"=dword:00000001 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SASDIFSV\0000] "Service"="SASDIFSV" "Legacy"=dword:00000001 "ConfigFlags"=dword:00000000 "Class"="LegacyDriver" "ClassGUID"="{8ECC055D-047F-11D1-A537-0000F8753ED1}" "DeviceDesc"="SASDIFSV" "Capabilities"=dword:00000000 Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SASKUTIL] "NextInstance"=dword:00000001 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SASKUTIL\0000] "Service"="SASKUTIL" "Legacy"=dword:00000001 "ConfigFlags"=dword:00000000 "Class"="LegacyDriver" "ClassGUID"="{8ECC055D-047F-11D1-A537-0000F8753ED1}" "DeviceDesc"="SASKUTIL" "Capabilities"=dword:00000000 Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SECDRV] "NextInstance"=dword:00000001 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SECDRV\0000] "Service"="secdrv" "Legacy"=dword:00000001 "ConfigFlags"=dword:00000400 "Class"="LegacyDriver" "ClassGUID"="{8ECC055D-047F-11D1-A537-0000F8753ED1}" "DeviceDesc"="Security Driver" "Capabilities"=dword:00000000 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SECDRV\0000\Control] "ActiveService"="secdrv" Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SETUP_9.0.0.722_13.09.2010_10-27DRV] "NextInstance"=dword:00000001 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SETUP_9.0.0.722_13.09.2010_10-27DRV\0000] "Service"="setup_9.0.0.722_13.09.2010_10-27drv" "Legacy"=dword:00000001 "ConfigFlags"=dword:00000000 "Class"="LegacyDriver" "ClassGUID"="{8ECC055D-047F-11D1-A537-0000F8753ED1}" "DeviceDesc"="setup_9.0.0.722_13.09.2010_10-27drv" Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SETUP_9.0.0.722_27.05.2010_11-29DRV] "NextInstance"=dword:00000001 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SETUP_9.0.0.722_27.05.2010_11-29DRV\0000] "Service"="setup_9.0.0.722_27.05.2010_11-29drv" "Legacy"=dword:00000001 "ConfigFlags"=dword:00000000 "Class"="LegacyDriver" "ClassGUID"="{8ECC055D-047F-11D1-A537-0000F8753ED1}" "DeviceDesc"="setup_9.0.0.722_27.05.2010_11-29drv" Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SPIDERG3] "NextInstance"=dword:00000001 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SPIDERG3\0000]"Service"="SpiderG3" "Legacy"=dword:00000001 "ConfigFlags"=dword:00000000 "Class"="LegacyDriver" "ClassGUID"="{8ECC055D-047F-11D1-A537-0000F8753ED1}" "DeviceDesc"="DrWeb file system scanner" Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SPLDR] "NextInstance"=dword:00000001 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SPLDR\0000] "Service"="spldr" "Legacy"=dword:00000001 "ConfigFlags"=dword:00000400 "Class"="LegacyDriver" "ClassGUID"="{8ECC055D-047F-11D1-A537-0000F8753ED1}" "DeviceDesc"="Security Processor Loader Driver" "Capabilities"=dword:00000000 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SPLDR\0000\Control] "ActiveService"="spldr" Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "C:\\Users\\Fab\\AppData\\Roaming\\0Q11SIUAOM.exe"="C:\\Users\\Fab\\AppData\\Roaming\\0Q11SIUAOM.exe:*:Enabled:Windows Messanger" "C:\\Users\\Fab\\AppData\\Roaming\\csrss.exe"="C:\\Users\\Fab\\AppData\\Roaming\\csrss.exe:*:Enabled:Windows Messanger" "C:\\Users\\Fab\\AppData\\Local\\Temp\\15081.exe"="C:\\Users\\Fab\\AppData\\Local\\Temp\\15081.exe:*:Enabled:Windows Messanger" "C:\\Users\\Fab\\AppData\\Local\\Temp\\7706.exe"="C:\\Users\\Fab\\AppData\\Local\\Temp\\7706.exe:*:Enabled:Windows Messanger" Windows Registry Editor Version 5.00 [HKEY_CLASSES_ROOT\nctaudiofile2.audiofile2] @="NCTAudioFile2 Class" [HKEY_CLASSES_ROOT\nctaudiofile2.audiofile2\CLSID] @="{77829F14-D911-40FF-A2F0-D11DB8D6D0BC}" [HKEY_CLASSES_ROOT\nctaudiofile2.audiofile2\CurVer] @="NCTAudioFile2.AudioFile2.2" Windows Registry Editor Version 5.00 [HKEY_CLASSES_ROOT\nctaudiofile2.audiofile2.2] @="NCTAudioFile2 Class" [HKEY_CLASSES_ROOT\nctaudiofile2.audiofile2.2\CLSID] @="{77829F14-D911-40FF-A2F0-D11DB8D6D0BC}" Windows Registry Editor Version 5.00 [HKEY_CLASSES_ROOT\nctaudiofile2.audiofile2lameenc] @="AudioFile2LameEnc Class" [HKEY_CLASSES_ROOT\nctaudiofile2.audiofile2lameenc\CLSID] @="{35B8892D-C3FB-4D88-990D-31DB2EBD72BD}" Windows Registry Editor Version 5.00 [HKEY_CLASSES_ROOT\nctaudiofile2.audiofile2lameenc.1] @="AudioFile2LameEnc Class" [HKEY_CLASSES_ROOT\nctaudiofile2.audiofile2lameenc.1\CLSID] @="{35B8892D-C3FB-4D88-990D-31DB2EBD72BD}" Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "SSTP-IN-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|LPort=443|App=System|Name=@sstpsvc.dll,-35002|Desc=@sstpsvc.dll,-35003|EmbedCtxt=@sstpsvc.dll,-35001|" "Netlogon-NamedPipe-In"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|LPort=445|App=System|Name=@netlogon.dll,-1003|Desc=@netlogon.dll,-1006|EmbedCtxt=@netlogon.dll,-1010|" "SNMPTRAP-In-UDP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Private|Profile=Public|LPort=162|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\snmptrap.exe|Svc=SNMPTRAP|Name=@snmptrap.exe,-7|Desc=@snmptrap.exe,-8|EmbedCtxt=@snmptrap.exe,-3|" "SNMPTRAP-In-UDP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Domain|LPort=162|App=%SystemRoot%\\system32\\snmptrap.exe|Svc=SNMPTRAP|Name=@snmptrap.exe,-7|Desc=@snmptrap.exe,-8|EmbedCtxt=@snmptrap.exe,-3|" "WMP-In-UDP-x86"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Domain|Profile=Public|App=%ProgramFiles(x86)%\\Windows Media Player\\wmplayer.exe|Name=@FirewallAPI.dll,-31023|Desc=@FirewallAPI.dll,-31006|EmbedCtxt=@FirewallAPI.dll,-31002|" "WMP-Out-UDP-x86"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=17|Profile=Domain|Profile=Public|App=%ProgramFiles(x86)%\\Windows Media Player\\wmplayer.exe|Name=@FirewallAPI.dll,-31024|Desc=@FirewallAPI.dll,-31010|EmbedCtxt=@FirewallAPI.dll,-31002|" "WMP-Out-TCP-x86"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|Profile=Domain|Profile=Public|App=%ProgramFiles(x86)%\\Windows Media Player\\wmplayer.exe|Name=@FirewallAPI.dll,-31025|Desc=@FirewallAPI.dll,-31014|EmbedCtxt=@FirewallAPI.dll,-31002|" "WMP-In-UDP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Domain|Profile=Public|App=%ProgramFiles%\\Windows Media Player\\wmplayer.exe|Name=@FirewallAPI.dll,-31003|Desc=@FirewallAPI.dll,-31006|EmbedCtxt=@FirewallAPI.dll,-31002|" "WMP-Out-UDP"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=17|Profile=Domain|Profile=Public|App=%ProgramFiles%\\Windows Media Player\\wmplayer.exe|Name=@FirewallAPI.dll,-31007|Desc=@FirewallAPI.dll,-31010|EmbedCtxt=@FirewallAPI.dll,-31002|" "WMP-Out-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|Profile=Domain|Profile=Public|App=%ProgramFiles%\\Windows Media Player\\wmplayer.exe|Name=@FirewallAPI.dll,-31011|Desc=@FirewallAPI.dll,-31014|EmbedCtxt=@FirewallAPI.dll,-31002|" "WMPNSS-QWave-In-UDP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Domain|LPort=2177|App=%SystemRoot%\\system32\\svchost.exe|Svc=Qwave|Name=@FirewallAPI.dll,-31253|Desc=@FirewallAPI.dll,-31256|EmbedCtxt=@FirewallAPI.dll,-31252|" "WMPNSS-QWave-Out-UDP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=17|Profile=Domain|RPort=2177|App=%SystemRoot%\\system32\\svchost.exe|Svc=Qwave|Name=@FirewallAPI.dll,-31257|Desc=@FirewallAPI.dll,-31260|EmbedCtxt=@FirewallAPI.dll,-31252|" "WMPNSS-QWave-In-TCP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Domain|LPort=2177|App=%SystemRoot%\\system32\\svchost.exe|Svc=Qwave|Name=@FirewallAPI.dll,-31261|Desc=@FirewallAPI.dll,-31264|EmbedCtxt=@FirewallAPI.dll,-31252|" "WMPNSS-QWave-Out-TCP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|Profile=Domain|RPort=2177|App=%SystemRoot%\\system32\\svchost.exe|Svc=Qwave|Name=@FirewallAPI.dll,-31265|Desc=@FirewallAPI.dll,-31268|EmbedCtxt=@FirewallAPI.dll,-31252|" "WMPNSS-HTTPSTR-In-TCP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Domain|LPort=10243|App=System|Name=@FirewallAPI.dll,-31285|Desc=@FirewallAPI.dll,-31288|EmbedCtxt=@FirewallAPI.dll,-31252|" "WMPNSS-HTTPSTR-Out-TCP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|Profile=Domain|RPort=10243|App=System|Name=@FirewallAPI.dll,-31289|Desc=@FirewallAPI.dll,-31292|EmbedCtxt=@FirewallAPI.dll,-31252|" "WMPNSS-WMP-In-UDP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Domain|App=%PROGRAMFILES%\\Windows Media Player\\wmplayer.exe|Name=@FirewallAPI.dll,-31293|Desc=@FirewallAPI.dll,-31296|EmbedCtxt=@FirewallAPI.dll,-31252|" "WMPNSS-WMP-Out-UDP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=17|Profile=Domain|App=%PROGRAMFILES%\\Windows Media Player\\wmplayer.exe|Name=@FirewallAPI.dll,-31297|Desc=@FirewallAPI.dll,-31300|EmbedCtxt=@FirewallAPI.dll,-31252|" "WMPNSS-WMP-Out-TCP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|Profile=Domain|App=%PROGRAMFILES%\\Windows Media Player\\wmplayer.exe|Name=@FirewallAPI.dll,-31301|Desc=@FirewallAPI.dll,-31304|EmbedCtxt=@FirewallAPI.dll,-31252|" "WMPNSS-In-UDP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Domain|App=%PROGRAMFILES%\\Windows Media Player\\wmpnetwk.exe|Name=@FirewallAPI.dll,-31305|Desc=@FirewallAPI.dll,-31308|EmbedCtxt=@FirewallAPI.dll,-31252|" "WMPNSS-Out-UDP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=17|Profile=Domain|App=%PROGRAMFILES%\\Windows Media Player\\wmpnetwk.exe|Name=@FirewallAPI.dll,-31309|Desc=@FirewallAPI.dll,-31312|EmbedCtxt=@FirewallAPI.dll,-31252|" "WMPNSS-In-TCP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Domain|App=%PROGRAMFILES%\\Windows Media Player\\wmpnetwk.exe|Name=@FirewallAPI.dll,-31313|Desc=@FirewallAPI.dll,-31316|EmbedCtxt=@FirewallAPI.dll,-31252|" "WMPNSS-Out-TCP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|Profile=Domain|App=%PROGRAMFILES%\\Windows Media Player\\wmpnetwk.exe|Name=@FirewallAPI.dll,-31317|Desc=@FirewallAPI.dll,-31320|EmbedCtxt=@FirewallAPI.dll,-31252|" "WMPNSS-QWave-In-UDP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Public|LPort=2177|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=Qwave|Name=@FirewallAPI.dll,-31253|Desc=@FirewallAPI.dll,-31256|EmbedCtxt=@FirewallAPI.dll,-31252|" "WMPNSS-QWave-Out-UDP"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=17|Profile=Public|RPort=2177|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=Qwave|Name=@FirewallAPI.dll,-31257|Desc=@FirewallAPI.dll,-31260|EmbedCtxt=@FirewallAPI.dll,-31252|" "WMPNSS-QWave-In-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Public|LPort=2177|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=Qwave|Name=@FirewallAPI.dll,-31261|Desc=@FirewallAPI.dll,-31264|EmbedCtxt=@FirewallAPI.dll,-31252|" "WMPNSS-QWave-Out-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|Profile=Public|RPort=2177|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=Qwave|Name=@FirewallAPI.dll,-31265|Desc=@FirewallAPI.dll,-31268|EmbedCtxt=@FirewallAPI.dll,-31252|" "WMPNSS-SSDPSrv-In-UDP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Domain|Profile=Public|LPort=1900|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=ssdpsrv|Name=@FirewallAPI.dll,-31269|Desc=@FirewallAPI.dll,-31272|EmbedCtxt=@FirewallAPI.dll,-31252|" "WMPNSS-SSDPSrv-Out-UDP"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=17|Profile=Domain|Profile=Public|RPort=1900|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=ssdpsrv|Name=@FirewallAPI.dll,-31273|Desc=@FirewallAPI.dll,-31276|EmbedCtxt=@FirewallAPI.dll,-31252|" "WMPNSS-UPnPHost-In-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Domain|Profile=Public|LPort=2869|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-31277|Desc=@FirewallAPI.dll,-31280|EmbedCtxt=@FirewallAPI.dll,-31252|" "WMPNSS-UPnPHost-Out-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|Profile=Domain|Profile=Public|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-31281|Desc=@FirewallAPI.dll,-31284|EmbedCtxt=@FirewallAPI.dll,-31252|" "WMPNSS-HTTPSTR-In-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Public|LPort=10243|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-31285|Desc=@FirewallAPI.dll,-31288|EmbedCtxt=@FirewallAPI.dll,-31252|" "WMPNSS-HTTPSTR-Out-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|Profile=Public|RPort=10243|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-31289|Desc=@FirewallAPI.dll,-31292|EmbedCtxt=@FirewallAPI.dll,-31252|" "WMPNSS-WMP-In-UDP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Public|RA4=LocalSubnet|RA6=LocalSubnet|App=%PROGRAMFILES%\\Windows Media Player\\wmplayer.exe|Name=@FirewallAPI.dll,-31293|Desc=@FirewallAPI.dll,-31296|EmbedCtxt=@FirewallAPI.dll,-31252|" "WMPNSS-WMP-Out-UDP"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=17|Profile=Public|RA4=LocalSubnet|RA6=LocalSubnet|App=%PROGRAMFILES%\\Windows Media Player\\wmplayer.exe|Name=@FirewallAPI.dll,-31297|Desc=@FirewallAPI.dll,-31300|EmbedCtxt=@FirewallAPI.dll,-31252|" "WMPNSS-WMP-Out-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|Profile=Public|RA4=LocalSubnet|RA6=LocalSubnet|App=%PROGRAMFILES%\\Windows Media Player\\wmplayer.exe|Name=@FirewallAPI.dll,-31301|Desc=@FirewallAPI.dll,-31304|EmbedCtxt=@FirewallAPI.dll,-31252|" "WMPNSS-In-UDP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Public|RA4=LocalSubnet|RA6=LocalSubnet|App=%PROGRAMFILES%\\Windows Media Player\\wmpnetwk.exe|Name=@FirewallAPI.dll,-31305|Desc=@FirewallAPI.dll,-31308|EmbedCtxt=@FirewallAPI.dll,-31252|" "WMPNSS-Out-UDP"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=17|Profile=Public|RA4=LocalSubnet|RA6=LocalSubnet|App=%PROGRAMFILES%\\Windows Media Player\\wmpnetwk.exe|Name=@FirewallAPI.dll,-31309|Desc=@FirewallAPI.dll,-31312|EmbedCtxt=@FirewallAPI.dll,-31252|" "WMPNSS-In-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Public|RA4=LocalSubnet|RA6=LocalSubnet|App=%PROGRAMFILES%\\Windows Media Player\\wmpnetwk.exe|Name=@FirewallAPI.dll,-31313|Desc=@FirewallAPI.dll,-31316|EmbedCtxt=@FirewallAPI.dll,-31252|" "WMPNSS-Out-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|Profile=Public|RA4=LocalSubnet|RA6=LocalSubnet|App=%PROGRAMFILES%\\Windows Media Player\\wmpnetwk.exe|Name=@FirewallAPI.dll,-31317|Desc=@FirewallAPI.dll,-31320|EmbedCtxt=@FirewallAPI.dll,-31252|" "WMPNSS-UPnP-Out-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|Profile=Domain|Profile=Public|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=upnphost|Name=@FirewallAPI.dll,-31321|Desc=@FirewallAPI.dll,-31322|EmbedCtxt=@FirewallAPI.dll,-31252|" "WMPNSS-RME-HTTP-In-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Domain|Profile=Private|LPort=10245|App=System|Name=@FirewallAPI.dll,-31501|Desc=@FirewallAPI.dll,-31502|EmbedCtxt=@FirewallAPI.dll,-31500|Edge=TRUE|Defer=App|" "Microsoft-Windows-HomeGroup-ProvSvc-TCP3587-In"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|LPort=3587|RA4=LocalSubnet|RA6=LocalSubnet|App=%systemroot%\\system32\\svchost.exe|Svc=p2psvc|Name=@%systemroot%\\system32\\provsvc.dll,-200|Desc=@%systemroot%\\system32\\provsvc.dll,-201|EmbedCtxt=@%systemroot%\\system32\\provsvc.dll,-202|" "Microsoft-Windows-HomeGroup-ProvSvc-TCP3587-Out"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=6|Profile=Private|RPort=3587|RA4=LocalSubnet|RA6=LocalSubnet|App=%systemroot%\\system32\\svchost.exe|Svc=p2psvc|Name=@%systemroot%\\system32\\provsvc.dll,-203|Desc=@%systemroot%\\system32\\provsvc.dll,-204|EmbedCtxt=@%systemroot%\\system32\\provsvc.dll,-202|" "Microsoft-Windows-HomeGroup-ProvSvc-UDP3540-In"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|LPort=3540|RA4=LocalSubnet|RA6=LocalSubnet|App=%systemroot%\\system32\\svchost.exe|Svc=pnrpsvc|Name=@%systemroot%\\system32\\provsvc.dll,-205|Desc=@%systemroot%\\system32\\provsvc.dll,-206|EmbedCtxt=@%systemroot%\\system32\\provsvc.dll,-202|" "Microsoft-Windows-HomeGroup-ProvSvc-UDP3540-Out"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=17|Profile=Private|RPort=3540|RA4=LocalSubnet|RA6=LocalSubnet|App=%systemroot%\\system32\\svchost.exe|Svc=pnrpsvc|Name=@%systemroot%\\system32\\provsvc.dll,-207|Desc=@%systemroot%\\system32\\provsvc.dll,-208|EmbedCtxt=@%systemroot%\\system32\\provsvc.dll,-202|" "PNRPMNRS-PNRP-In-UDP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|LPort=3540|App=%SystemRoot%\\system32\\svchost.exe|Svc=PNRPSvc|Name=@FirewallAPI.dll,-34003|Desc=@FirewallAPI.dll,-34004|EmbedCtxt=@FirewallAPI.dll,-34002|Edge=TRUE|Defer=App|" "PNRPMNRS-PNRP-Out-UDP"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=17|RPort=3540|App=%SystemRoot%\\system32\\svchost.exe|Svc=PNRPSvc|Name=@FirewallAPI.dll,-34005|Desc=@FirewallAPI.dll,-34006|EmbedCtxt=@FirewallAPI.dll,-34002|" "PNRPMNRS-SSDPSrv-In-UDP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|LPort=1900|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=Ssdpsrv|Name=@FirewallAPI.dll,-34007|Desc=@FirewallAPI.dll,-34008|EmbedCtxt=@FirewallAPI.dll,-34002|" "PNRPMNRS-SSDPSrv-Out-UDP"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=17|RPort=1900|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=Ssdpsrv|Name=@FirewallAPI.dll,-34009|Desc=@FirewallAPI.dll,-34010|EmbedCtxt=@FirewallAPI.dll,-34002|" "RVM-VDS-In-TCP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Domain|LPort=RPC|App=%SystemRoot%\\system32\\vds.exe|Svc=vds|Name=@FirewallAPI.dll,-34502|Desc=@FirewallAPI.dll,-34503|EmbedCtxt=@FirewallAPI.dll,-34501|" "RVM-VDSLDR-In-TCP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Domain|LPort=RPC|App=%SystemRoot%\\system32\\vdsldr.exe|Name=@FirewallAPI.dll,-34504|Desc=@FirewallAPI.dll,-34505|EmbedCtxt=@FirewallAPI.dll,-34501|" "RVM-RPCSS-In-TCP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Domain|LPort=RPC-EPMap|App=%SystemRoot%\\system32\\svchost.exe|Svc=RPCSS|Name=@FirewallAPI.dll,-34506|Desc=@FirewallAPI.dll,-34507|EmbedCtxt=@FirewallAPI.dll,-34501|" "RVM-VDS-In-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Private|Profile=Public|LPort=RPC|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\vds.exe|Svc=vds|Name=@FirewallAPI.dll,-34502|Desc=@FirewallAPI.dll,-34503|EmbedCtxt=@FirewallAPI.dll,-34501|" "RVM-VDSLDR-In-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Private|Profile=Public|LPort=RPC|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\vdsldr.exe|Name=@FirewallAPI.dll,-34504|Desc=@FirewallAPI.dll,-34505|EmbedCtxt=@FirewallAPI.dll,-34501|" "RVM-RPCSS-In-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Private|Profile=Public|LPort=RPC-EPMap|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=RPCSS|Name=@FirewallAPI.dll,-34506|Desc=@FirewallAPI.dll,-34507|EmbedCtxt=@FirewallAPI.dll,-34501|" "Collab-P2PHost-In-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|App=%SystemRoot%\\system32\\p2phost.exe|Name=@FirewallAPI.dll,-32003|Desc=@FirewallAPI.dll,-32006|EmbedCtxt=@FirewallAPI.dll,-32002|Edge=TRUE|Defer=App|" "Collab-P2PHost-Out-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|App=%SystemRoot%\\system32\\p2phost.exe|Name=@FirewallAPI.dll,-32007|Desc=@FirewallAPI.dll,-32010|EmbedCtxt=@FirewallAPI.dll,-32002|" "Collab-P2PHost-WSD-In-UDP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|LPort=3702|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\p2phost.exe|Name=@FirewallAPI.dll,-32011|Desc=@FirewallAPI.dll,-32014|EmbedCtxt=@FirewallAPI.dll,-32002|" "Collab-P2PHost-WSD-Out-UDP"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=17|RPort=3702|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\p2phost.exe|Name=@FirewallAPI.dll,-32015|Desc=@FirewallAPI.dll,-32018|EmbedCtxt=@FirewallAPI.dll,-32002|" "Collab-PNRP-In-UDP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|LPort=3540|App=%SystemRoot%\\system32\\svchost.exe|Svc=PNRPSvc|Name=@FirewallAPI.dll,-32019|Desc=@FirewallAPI.dll,-32022|EmbedCtxt=@FirewallAPI.dll,-32002|Edge=TRUE|Defer=App|" "Collab-PNRP-Out-UDP"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=17|RPort=3540|App=%SystemRoot%\\system32\\svchost.exe|Svc=PNRPSvc|Name=@FirewallAPI.dll,-32023|Desc=@FirewallAPI.dll,-32026|EmbedCtxt=@FirewallAPI.dll,-32002|" "Collab-PNRP-SSDPSrv-In-UDP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|LPort=1900|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=Ssdpsrv|Name=@FirewallAPI.dll,-32027|Desc=@FirewallAPI.dll,-32030|EmbedCtxt=@FirewallAPI.dll,-32002|" "Collab-PNRP-SSDPSrv-Out-UDP"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=17|RPort=1900|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=Ssdpsrv|Name=@FirewallAPI.dll,-32031|Desc=@FirewallAPI.dll,-32034|EmbedCtxt=@FirewallAPI.dll,-32002|" "FPS-NB_Session-In-TCP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Domain|LPort=139|App=System|Name=@FirewallAPI.dll,-28503|Desc=@FirewallAPI.dll,-28506|EmbedCtxt=@FirewallAPI.dll,-28502|" "FPS-NB_Session-Out-TCP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|Profile=Domain|RPort=139|App=System|Name=@FirewallAPI.dll,-28507|Desc=@FirewallAPI.dll,-28510|EmbedCtxt=@FirewallAPI.dll,-28502|" "FPS-SMB-In-TCP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Domain|LPort=445|App=System|Name=@FirewallAPI.dll,-28511|Desc=@FirewallAPI.dll,-28514|EmbedCtxt=@FirewallAPI.dll,-28502|" "FPS-SMB-Out-TCP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|Profile=Domain|RPort=445|App=System|Name=@FirewallAPI.dll,-28515|Desc=@FirewallAPI.dll,-28518|EmbedCtxt=@FirewallAPI.dll,-28502|" "FPS-NB_Name-In-UDP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Domain|LPort=137|App=System|Name=@FirewallAPI.dll,-28519|Desc=@FirewallAPI.dll,-28522|EmbedCtxt=@FirewallAPI.dll,-28502|" "FPS-NB_Name-Out-UDP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=17|Profile=Domain|RPort=137|App=System|Name=@FirewallAPI.dll,-28523|Desc=@FirewallAPI.dll,-28526|EmbedCtxt=@FirewallAPI.dll,-28502|" "FPS-NB_Datagram-In-UDP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Domain|LPort=138|App=System|Name=@FirewallAPI.dll,-28527|Desc=@FirewallAPI.dll,-28530|EmbedCtxt=@FirewallAPI.dll,-28502|" "FPS-NB_Datagram-Out-UDP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=17|Profile=Domain|RPort=138|App=System|Name=@FirewallAPI.dll,-28531|Desc=@FirewallAPI.dll,-28534|EmbedCtxt=@FirewallAPI.dll,-28502|" "FPS-SpoolSvc-In-TCP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Domain|LPort=RPC|App=%SystemRoot%\\system32\\spoolsv.exe|Svc=Spooler|Name=@FirewallAPI.dll,-28535|Desc=@FirewallAPI.dll,-28538|EmbedCtxt=@FirewallAPI.dll,-28502|" "FPS-RPCSS-In-TCP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Domain|LPort=RPC-EPMap|Svc=Rpcss|Name=@FirewallAPI.dll,-28539|Desc=@FirewallAPI.dll,-28542|EmbedCtxt=@FirewallAPI.dll,-28502|" "FPS-ICMP4-ERQ-In-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=1|Profile=Domain|ICMP4=8:*|Name=@FirewallAPI.dll,-28543|Desc=@FirewallAPI.dll,-28547|EmbedCtxt=@FirewallAPI.dll,-28502|" "FPS-ICMP4-ERQ-Out-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=1|Profile=Domain|ICMP4=8:*|Name=@FirewallAPI.dll,-28544|Desc=@FirewallAPI.dll,-28547|EmbedCtxt=@FirewallAPI.dll,-28502|" "FPS-ICMP6-ERQ-In-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=58|Profile=Domain|ICMP6=128:*|Name=@FirewallAPI.dll,-28545|Desc=@FirewallAPI.dll,-28547|EmbedCtxt=@FirewallAPI.dll,-28502|" "FPS-ICMP6-ERQ-Out-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=58|Profile=Domain|ICMP6=128:*|Name=@FirewallAPI.dll,-28546|Desc=@FirewallAPI.dll,-28547|EmbedCtxt=@FirewallAPI.dll,-28502|" "FPS-NB_Session-In-TCP"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Public|LPort=139|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-28503|Desc=@FirewallAPI.dll,-28506|EmbedCtxt=@FirewallAPI.dll,-28502|" "FPS-NB_Session-Out-TCP"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=6|Profile=Public|RPort=139|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-28507|Desc=@FirewallAPI.dll,-28510|EmbedCtxt=@FirewallAPI.dll,-28502|" "FPS-SMB-In-TCP"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Public|LPort=445|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-28511|Desc=@FirewallAPI.dll,-28514|EmbedCtxt=@FirewallAPI.dll,-28502|" "FPS-SMB-Out-TCP"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=6|Profile=Public|RPort=445|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-28515|Desc=@FirewallAPI.dll,-28518|EmbedCtxt=@FirewallAPI.dll,-28502|" "FPS-NB_Name-In-UDP"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Public|LPort=137|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-28519|Desc=@FirewallAPI.dll,-28522|EmbedCtxt=@FirewallAPI.dll,-28502|" "FPS-NB_Name-Out-UDP"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=17|Profile=Public|RPort=137|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-28523|Desc=@FirewallAPI.dll,-28526|EmbedCtxt=@FirewallAPI.dll,-28502|" "FPS-NB_Datagram-In-UDP"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Public|LPort=138|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-28527|Desc=@FirewallAPI.dll,-28530|EmbedCtxt=@FirewallAPI.dll,-28502|" "FPS-NB_Datagram-Out-UDP"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=17|Profile=Public|RPort=138|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-28531|Desc=@FirewallAPI.dll,-28534|EmbedCtxt=@FirewallAPI.dll,-28502|" "FPS-SpoolSvc-In-TCP"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Public|LPort=RPC|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\spoolsv.exe|Svc=Spooler|Name=@FirewallAPI.dll,-28535|Desc=@FirewallAPI.dll,-28538|EmbedCtxt=@FirewallAPI.dll,-28502|" "FPS-RPCSS-In-TCP"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Public|LPort=RPC-EPMap|RA4=LocalSubnet|RA6=LocalSubnet|Svc=Rpcss|Name=@FirewallAPI.dll,-28539|Desc=@FirewallAPI.dll,-28542|EmbedCtxt=@FirewallAPI.dll,-28502|" "FPS-ICMP4-ERQ-In"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=1|Profile=Public|ICMP4=8:*|RA4=LocalSubnet|Name=@FirewallAPI.dll,-28543|Desc=@FirewallAPI.dll,-28547|EmbedCtxt=@FirewallAPI.dll,-28502|" "FPS-ICMP4-ERQ-Out"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=1|Profile=Public|ICMP4=8:*|RA4=LocalSubnet|Name=@FirewallAPI.dll,-28544|Desc=@FirewallAPI.dll,-28547|EmbedCtxt=@FirewallAPI.dll,-28502|" "FPS-ICMP6-ERQ-In"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=58|Profile=Public|ICMP6=128:*|RA6=LocalSubnet|Name=@FirewallAPI.dll,-28545|Desc=@FirewallAPI.dll,-28547|EmbedCtxt=@FirewallAPI.dll,-28502|" "FPS-ICMP6-ERQ-Out"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=58|Profile=Public|ICMP6=128:*|RA6=LocalSubnet|Name=@FirewallAPI.dll,-28546|Desc=@FirewallAPI.dll,-28547|EmbedCtxt=@FirewallAPI.dll,-28502|" "FPS-LLMNR-In-UDP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Domain|LPort=5355|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=dnscache|Name=@FirewallAPI.dll,-28548|Desc=@FirewallAPI.dll,-28549|EmbedCtxt=@FirewallAPI.dll,-28502|" "FPS-LLMNR-Out-UDP"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=17|Profile=Domain|RPort=5355|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=dnscache|Name=@FirewallAPI.dll,-28550|Desc=@FirewallAPI.dll,-28551|EmbedCtxt=@FirewallAPI.dll,-28502|" "CoreNet-ICMP6-DU-In"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=58|ICMP6=1:*|App=System|Name=@FirewallAPI.dll,-25110|Desc=@FirewallAPI.dll,-25112|EmbedCtxt=@FirewallAPI.dll,-25000|Edge=TRUE|" "CoreNet-ICMP6-PTB-In"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=58|ICMP6=2:*|App=System|Name=@FirewallAPI.dll,-25001|Desc=@FirewallAPI.dll,-25007|EmbedCtxt=@FirewallAPI.dll,-25000|Edge=TRUE|" "CoreNet-ICMP6-PTB-Out"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=58|ICMP6=2:*|Name=@FirewallAPI.dll,-25002|Desc=@FirewallAPI.dll,-25007|EmbedCtxt=@FirewallAPI.dll,-25000|" "CoreNet-ICMP6-TE-In"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=58|ICMP6=3:*|App=System|Name=@FirewallAPI.dll,-25113|Desc=@FirewallAPI.dll,-25115|EmbedCtxt=@FirewallAPI.dll,-25000|Edge=TRUE|" "CoreNet-ICMP6-TE-Out"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=58|ICMP6=3:*|Name=@FirewallAPI.dll,-25114|Desc=@FirewallAPI.dll,-25115|EmbedCtxt=@FirewallAPI.dll,-25000|" "CoreNet-ICMP6-PP-In"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=58|ICMP6=4:*|App=System|Name=@FirewallAPI.dll,-25116|Desc=@FirewallAPI.dll,-25118|EmbedCtxt=@FirewallAPI.dll,-25000|Edge=TRUE|" "CoreNet-ICMP6-PP-Out"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=58|ICMP6=4:*|Name=@FirewallAPI.dll,-25117|Desc=@FirewallAPI.dll,-25118|EmbedCtxt=@FirewallAPI.dll,-25000|" "CoreNet-ICMP6-NDS-In"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=58|ICMP6=135:*|App=System|Name=@FirewallAPI.dll,-25019|Desc=@FirewallAPI.dll,-25025|EmbedCtxt=@FirewallAPI.dll,-25000|Edge=TRUE|" "CoreNet-ICMP6-NDS-Out"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=58|ICMP6=135:*|Name=@FirewallAPI.dll,-25020|Desc=@FirewallAPI.dll,-25025|EmbedCtxt=@FirewallAPI.dll,-25000|" "CoreNet-ICMP6-NDA-In"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=58|ICMP6=136:*|App=System|Name=@FirewallAPI.dll,-25026|Desc=@FirewallAPI.dll,-25032|EmbedCtxt=@FirewallAPI.dll,-25000|Edge=TRUE|" "CoreNet-ICMP6-NDA-Out"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=58|ICMP6=136:*|Name=@FirewallAPI.dll,-25027|Desc=@FirewallAPI.dll,-25032|EmbedCtxt=@FirewallAPI.dll,-25000|" "CoreNet-ICMP6-RA-In"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=58|ICMP6=134:*|RA6=fe80::/64|App=System|Name=@FirewallAPI.dll,-25012|Desc=@FirewallAPI.dll,-25018|EmbedCtxt=@FirewallAPI.dll,-25000|" "CoreNet-ICMP6-RA-Out"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=58|ICMP6=134:*|LA6=fe80::/64|RA6=LocalSubnet|RA6=fe80::/64|RA6=ff02::1|Name=@FirewallAPI.dll,-25013|Desc=@FirewallAPI.dll,-25018|EmbedCtxt=@FirewallAPI.dll,-25000|" "CoreNet-ICMP6-RS-In"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=58|ICMP6=133:*|App=System|Name=@FirewallAPI.dll,-25009|Desc=@FirewallAPI.dll,-25011|EmbedCtxt=@FirewallAPI.dll,-25000|" "CoreNet-ICMP6-RS-Out"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=58|ICMP6=133:*|RA6=LocalSubnet|RA6=fe80::/64|RA6=ff02::2|Name=@FirewallAPI.dll,-25008|Desc=@FirewallAPI.dll,-25011|EmbedCtxt=@FirewallAPI.dll,-25000|" "CoreNet-ICMP6-LQ-In"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=58|ICMP6=130:*|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-25061|Desc=@FirewallAPI.dll,-25067|EmbedCtxt=@FirewallAPI.dll,-25000|" "CoreNet-ICMP6-LQ-Out"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=58|ICMP6=130:*|RA6=LocalSubnet|Name=@FirewallAPI.dll,-25062|Desc=@FirewallAPI.dll,-25067|EmbedCtxt=@FirewallAPI.dll,-25000|" "CoreNet-ICMP6-LR-In"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=58|ICMP6=131:*|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-25068|Desc=@FirewallAPI.dll,-25074|EmbedCtxt=@FirewallAPI.dll,-25000|" "CoreNet-ICMP6-LR-Out"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=58|ICMP6=131:*|RA6=LocalSubnet|Name=@FirewallAPI.dll,-25069|Desc=@FirewallAPI.dll,-25074|EmbedCtxt=@FirewallAPI.dll,-25000|" "CoreNet-ICMP6-LR2-In"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=58|ICMP6=143:*|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-25075|Desc=@FirewallAPI.dll,-25081|EmbedCtxt=@FirewallAPI.dll,-25000|" "CoreNet-ICMP6-LR2-Out"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=58|ICMP6=143:*|RA6=LocalSubnet|Name=@FirewallAPI.dll,-25076|Desc=@FirewallAPI.dll,-25081|EmbedCtxt=@FirewallAPI.dll,-25000|" "CoreNet-ICMP6-LD-In"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=58|ICMP6=132:*|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-25082|Desc=@FirewallAPI.dll,-25088|EmbedCtxt=@FirewallAPI.dll,-25000|" "CoreNet-ICMP6-LD-Out"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=58|ICMP6=132:*|RA6=LocalSubnet|Name=@FirewallAPI.dll,-25083|Desc=@FirewallAPI.dll,-25088|EmbedCtxt=@FirewallAPI.dll,-25000|" "CoreNet-ICMP4-DUFRAG-In"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=1|ICMP4=3:4|App=System|Name=@FirewallAPI.dll,-25251|Desc=@FirewallAPI.dll,-25257|EmbedCtxt=@FirewallAPI.dll,-25000|" "CoreNet-IGMP-In"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=2|App=System|Name=@FirewallAPI.dll,-25376|Desc=@FirewallAPI.dll,-25382|EmbedCtxt=@FirewallAPI.dll,-25000|" "CoreNet-IGMP-Out"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=2|App=System|Name=@FirewallAPI.dll,-25377|Desc=@FirewallAPI.dll,-25382|EmbedCtxt=@FirewallAPI.dll,-25000|" "CoreNet-DHCP-In"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|LPort=68|RPort=67|App=%SystemRoot%\\system32\\svchost.exe|Svc=dhcp|Name=@FirewallAPI.dll,-25301|Desc=@FirewallAPI.dll,-25303|EmbedCtxt=@FirewallAPI.dll,-25000|" "CoreNet-DHCP-Out"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=17|LPort=68|RPort=67|App=%SystemRoot%\\system32\\svchost.exe|Svc=dhcp|Name=@FirewallAPI.dll,-25302|Desc=@FirewallAPI.dll,-25303|EmbedCtxt=@FirewallAPI.dll,-25000|" "CoreNet-DHCPV6-In"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|LPort=546|RPort=547|App=%SystemRoot%\\system32\\svchost.exe|Svc=dhcp|Name=@FirewallAPI.dll,-25304|Desc=@FirewallAPI.dll,-25306|EmbedCtxt=@FirewallAPI.dll,-25000|" "CoreNet-DHCPV6-Out"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=17|LPort=546|RPort=547|App=%SystemRoot%\\system32\\svchost.exe|Svc=dhcp|Name=@FirewallAPI.dll,-25305|Desc=@FirewallAPI.dll,-25306|EmbedCtxt=@FirewallAPI.dll,-25000|" "CoreNet-Teredo-In"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|LPort=Teredo|App=%SystemRoot%\\system32\\svchost.exe|Svc=iphlpsvc|Name=@FirewallAPI.dll,-25326|Desc=@FirewallAPI.dll,-25332|EmbedCtxt=@FirewallAPI.dll,-25000|" "CoreNet-Teredo-Out"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=17|App=%SystemRoot%\\system32\\svchost.exe|Svc=iphlpsvc|Name=@FirewallAPI.dll,-25327|Desc=@FirewallAPI.dll,-25333|EmbedCtxt=@FirewallAPI.dll,-25000|" "CoreNet-IPHTTPS-In"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|LPort2_10=IPTLSIn|LPort2_10=IPHTTPSIn|App=System|Name=@FirewallAPI.dll,-25426|Desc=@FirewallAPI.dll,-25428|EmbedCtxt=@FirewallAPI.dll,-25000|" "CoreNet-IPHTTPS-Out"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=6|RPort2_10=IPTLSOut|RPort2_10=IPHTTPSOut|App=%SystemRoot%\\system32\\svchost.exe|Svc=iphlpsvc|Name=@FirewallAPI.dll,-25427|Desc=@FirewallAPI.dll,-25429|EmbedCtxt=@FirewallAPI.dll,-25000|" "CoreNet-IPv6-In"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=41|App=System|Name=@FirewallAPI.dll,-25351|Desc=@FirewallAPI.dll,-25357|EmbedCtxt=@FirewallAPI.dll,-25000|" "CoreNet-IPv6-Out"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=41|App=System|Name=@FirewallAPI.dll,-25352|Desc=@FirewallAPI.dll,-25358|EmbedCtxt=@FirewallAPI.dll,-25000|" "CoreNet-GP-NP-Out-TCP"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=6|Profile=Domain|RPort=445|App=System|Name=@FirewallAPI.dll,-25401|Desc=@FirewallAPI.dll,-25401|EmbedCtxt=@FirewallAPI.dll,-25000|" "CoreNet-GP-Out-TCP"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=6|Profile=Domain|App=%SystemRoot%\\system32\\svchost.exe|Name=@FirewallAPI.dll,-25403|Desc=@FirewallAPI.dll,-25404|EmbedCtxt=@FirewallAPI.dll,-25000|" "CoreNet-DNS-Out-UDP"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=17|RPort=53|App=%SystemRoot%\\system32\\svchost.exe|Svc=dnscache|Name=@FirewallAPI.dll,-25405|Desc=@FirewallAPI.dll,-25406|EmbedCtxt=@FirewallAPI.dll,-25000|" "CoreNet-GP-LSASS-Out-TCP"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=6|Profile=Domain|App=%SystemRoot%\\system32\\lsass.exe|Name=@FirewallAPI.dll,-25407|Desc=@FirewallAPI.dll,-25408|EmbedCtxt=@FirewallAPI.dll,-25000|" "PerfLogsAlerts-PLASrv-In-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Private|Profile=Public|RA4=LocalSubnet|RA6=LocalSubnet|App=%systemroot%\\system32\\plasrv.exe|Name=@FirewallAPI.dll,-34753|Desc=@FirewallAPI.dll,-34754|EmbedCtxt=@FirewallAPI.dll,-34752|" "PerfLogsAlerts-DCOM-In-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Private|Profile=Public|LPort=135|RA4=LocalSubnet|RA6=LocalSubnet|App=%systemroot%\\system32\\svchost.exe|Svc=rpcss|Name=@FirewallAPI.dll,-34755|Desc=@FirewallAPI.dll,-34756|EmbedCtxt=@FirewallAPI.dll,-34752|" "PerfLogsAlerts-PLASrv-In-TCP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Domain|App=%systemroot%\\system32\\plasrv.exe|Name=@FirewallAPI.dll,-34753|Desc=@FirewallAPI.dll,-34754|EmbedCtxt=@FirewallAPI.dll,-34752|" "PerfLogsAlerts-DCOM-In-TCP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Domain|LPort=135|App=%systemroot%\\system32\\svchost.exe|Svc=rpcss|Name=@FirewallAPI.dll,-34755|Desc=@FirewallAPI.dll,-34756|EmbedCtxt=@FirewallAPI.dll,-34752|" "MsiScsi-In-TCP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Domain|App=%SystemRoot%\\system32\\svchost.exe|Svc=Msiscsi|Name=@FirewallAPI.dll,-29003|Desc=@FirewallAPI.dll,-29006|EmbedCtxt=@FirewallAPI.dll,-29002|" "MsiScsi-Out-TCP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|Profile=Domain|App=%SystemRoot%\\system32\\svchost.exe|Svc=Msiscsi|Name=@FirewallAPI.dll,-29007|Desc=@FirewallAPI.dll,-29010|EmbedCtxt=@FirewallAPI.dll,-29002|" "MsiScsi-In-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Private|Profile=Public|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=Msiscsi|Name=@FirewallAPI.dll,-29003|Desc=@FirewallAPI.dll,-29006|EmbedCtxt=@FirewallAPI.dll,-29002|" "MsiScsi-Out-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|Profile=Private|Profile=Public|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=Msiscsi|Name=@FirewallAPI.dll,-29007|Desc=@FirewallAPI.dll,-29010|EmbedCtxt=@FirewallAPI.dll,-29002|" "WMI-RPCSS-In-TCP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Domain|LPort=135|App=%SystemRoot%\\system32\\svchost.exe|Svc=rpcss|Name=@FirewallAPI.dll,-34252|Desc=@FirewallAPI.dll,-34253|EmbedCtxt=@FirewallAPI.dll,-34251|" "WMI-WINMGMT-In-TCP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Domain|App=%SystemRoot%\\system32\\svchost.exe|Svc=winmgmt|Name=@FirewallAPI.dll,-34254|Desc=@FirewallAPI.dll,-34255|EmbedCtxt=@FirewallAPI.dll,-34251|" "WMI-WINMGMT-Out-TCP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|Profile=Domain|App=%SystemRoot%\\system32\\svchost.exe|Svc=winmgmt|Name=@FirewallAPI.dll,-34258|Desc=@FirewallAPI.dll,-34259|EmbedCtxt=@FirewallAPI.dll,-34251|" "WMI-ASYNC-In-TCP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Domain|App=%systemroot%\\system32\\wbem\\unsecapp.exe|Name=@FirewallAPI.dll,-34256|Desc=@FirewallAPI.dll,-34257|EmbedCtxt=@FirewallAPI.dll,-34251|" "WMI-RPCSS-In-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Private|Profile=Public|LPort=135|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=rpcss|Name=@FirewallAPI.dll,-34252|Desc=@FirewallAPI.dll,-34253|EmbedCtxt=@FirewallAPI.dll,-34251|" "WMI-WINMGMT-In-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Private|Profile=Public|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=winmgmt|Name=@FirewallAPI.dll,-34254|Desc=@FirewallAPI.dll,-34255|EmbedCtxt=@FirewallAPI.dll,-34251|" "WMI-WINMGMT-Out-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|Profile=Private|Profile=Public|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=winmgmt|Name=@FirewallAPI.dll,-34258|Desc=@FirewallAPI.dll,-34259|EmbedCtxt=@FirewallAPI.dll,-34251|" "WMI-ASYNC-In-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Private|Profile=Public|RA4=LocalSubnet|RA6=LocalSubnet|App=%systemroot%\\system32\\wbem\\unsecapp.exe|Name=@FirewallAPI.dll,-34256|Desc=@FirewallAPI.dll,-34257|EmbedCtxt=@FirewallAPI.dll,-34251|" "RRAS-GRE-In"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=47|App=System|Name=@FirewallAPI.dll,-33769|Desc=@FirewallAPI.dll,-33772|EmbedCtxt=@FirewallAPI.dll,-33752|" "RRAS-GRE-Out"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=47|App=System|Name=@FirewallAPI.dll,-33773|Desc=@FirewallAPI.dll,-33776|EmbedCtxt=@FirewallAPI.dll,-33752|" "RRAS-L2TP-In-UDP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|LPort=1701|App=System|Name=@FirewallAPI.dll,-33753|Desc=@FirewallAPI.dll,-33756|EmbedCtxt=@FirewallAPI.dll,-33752|" "RRAS-L2TP-Out-UDP"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=17|RPort=1701|App=System|Name=@FirewallAPI.dll,-33757|Desc=@FirewallAPI.dll,-33760|EmbedCtxt=@FirewallAPI.dll,-33752|" "RRAS-PPTP-In-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|LPort=1723|App=System|Name=@FirewallAPI.dll,-33765|Desc=@FirewallAPI.dll,-33768|EmbedCtxt=@FirewallAPI.dll,-33752|" "RRAS-PPTP-Out-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|RPort=1723|App=System|Name=@FirewallAPI.dll,-33761|Desc=@FirewallAPI.dll,-33764|EmbedCtxt=@FirewallAPI.dll,-33752|" "NETDIS-UPnPHost-In-TCP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Domain|LPort=2869|App=System|Name=@FirewallAPI.dll,-32761|Desc=@FirewallAPI.dll,-32764|EmbedCtxt=@FirewallAPI.dll,-32752|" "NETDIS-UPnPHost-Out-TCP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|Profile=Domain|App=System|Name=@FirewallAPI.dll,-32765|Desc=@FirewallAPI.dll,-32768|EmbedCtxt=@FirewallAPI.dll,-32752|" "NETDIS-NB_Name-In-UDP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Domain|LPort=137|App=System|Name=@FirewallAPI.dll,-32769|Desc=@FirewallAPI.dll,-32772|EmbedCtxt=@FirewallAPI.dll,-32752|" "NETDIS-NB_Name-Out-UDP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=17|Profile=Domain|RPort=137|App=System|Name=@FirewallAPI.dll,-32773|Desc=@FirewallAPI.dll,-32776|EmbedCtxt=@FirewallAPI.dll,-32752|" "NETDIS-NB_Datagram-In-UDP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Domain|LPort=138|App=System|Name=@FirewallAPI.dll,-32777|Desc=@FirewallAPI.dll,-32780|EmbedCtxt=@FirewallAPI.dll,-32752|" "NETDIS-NB_Datagram-Out-UDP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=17|Profile=Domain|RPort=138|App=System|Name=@FirewallAPI.dll,-32781|Desc=@FirewallAPI.dll,-32784|EmbedCtxt=@FirewallAPI.dll,-32752|" "NETDIS-WSDEVNTS-In-TCP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Domain|LPort=5358|App=System|Name=@FirewallAPI.dll,-32813|Desc=@FirewallAPI.dll,-32814|EmbedCtxt=@FirewallAPI.dll,-32752|" "NETDIS-WSDEVNTS-Out-TCP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|Profile=Domain|RPort=5358|App=System|Name=@FirewallAPI.dll,-32815|Desc=@FirewallAPI.dll,-32816|EmbedCtxt=@FirewallAPI.dll,-32752|" "NETDIS-WSDEVNT-In-TCP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Domain|LPort=5357|App=System|Name=@FirewallAPI.dll,-32817|Desc=@FirewallAPI.dll,-32818|EmbedCtxt=@FirewallAPI.dll,-32752|" "NETDIS-WSDEVNT-Out-TCP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|Profile=Domain|RPort=5357|App=System|Name=@FirewallAPI.dll,-32819|Desc=@FirewallAPI.dll,-32820|EmbedCtxt=@FirewallAPI.dll,-32752|" "NETDIS-SSDPSrv-In-UDP-Active"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|LPort=1900|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=Ssdpsrv|Name=@FirewallAPI.dll,-32753|Desc=@FirewallAPI.dll,-32756|EmbedCtxt=@FirewallAPI.dll,-32752|" "NETDIS-SSDPSrv-Out-UDP-Active"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=17|Profile=Private|RPort=1900|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=Ssdpsrv|Name=@FirewallAPI.dll,-32757|Desc=@FirewallAPI.dll,-32760|EmbedCtxt=@FirewallAPI.dll,-32752|" "NETDIS-UPnPHost-In-TCP-Active"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|LPort=2869|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-32761|Desc=@FirewallAPI.dll,-32764|EmbedCtxt=@FirewallAPI.dll,-32752|" "NETDIS-UPnPHost-Out-TCP-Active"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=6|Profile=Private|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-32765|Desc=@FirewallAPI.dll,-32768|EmbedCtxt=@FirewallAPI.dll,-32752|" "NETDIS-UPnP-Out-TCP-Active"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=6|Profile=Private|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=upnphost|Name=@FirewallAPI.dll,-32821|Desc=@FirewallAPI.dll,-32822|EmbedCtxt=@FirewallAPI.dll,-32752|" "NETDIS-NB_Name-In-UDP-Active"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|LPort=137|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-32769|Desc=@FirewallAPI.dll,-32772|EmbedCtxt=@FirewallAPI.dll,-32752|" "NETDIS-NB_Name-Out-UDP-Active"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=17|Profile=Private|RPort=137|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-32773|Desc=@FirewallAPI.dll,-32776|EmbedCtxt=@FirewallAPI.dll,-32752|" "NETDIS-NB_Datagram-In-UDP-Active"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|LPort=138|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-32777|Desc=@FirewallAPI.dll,-32780|EmbedCtxt=@FirewallAPI.dll,-32752|" "NETDIS-NB_Datagram-Out-UDP-Active"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=17|Profile=Private|RPort=138|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-32781|Desc=@FirewallAPI.dll,-32784|EmbedCtxt=@FirewallAPI.dll,-32752|" "NETDIS-FDPHOST-In-UDP-Active"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|LPort=3702|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=fdphost|Name=@FirewallAPI.dll,-32785|Desc=@FirewallAPI.dll,-32788|EmbedCtxt=@FirewallAPI.dll,-32752|" "NETDIS-FDPHOST-Out-UDP-Active"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=17|Profile=Private|RPort=3702|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=fdphost|Name=@FirewallAPI.dll,-32789|Desc=@FirewallAPI.dll,-32792|EmbedCtxt=@FirewallAPI.dll,-32752|" "NETDIS-LLMNR-In-UDP-Active"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|LPort=5355|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=dnscache|Name=@FirewallAPI.dll,-32801|Desc=@FirewallAPI.dll,-32804|EmbedCtxt=@FirewallAPI.dll,-32752|" "NETDIS-LLMNR-Out-UDP-Active"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=17|Profile=Private|RPort=5355|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=dnscache|Name=@FirewallAPI.dll,-32805|Desc=@FirewallAPI.dll,-32808|EmbedCtxt=@FirewallAPI.dll,-32752|" "NETDIS-FDRESPUB-WSD-In-UDP-Active"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|LPort=3702|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=fdrespub|Name=@FirewallAPI.dll,-32809|Desc=@FirewallAPI.dll,-32810|EmbedCtxt=@FirewallAPI.dll,-32752|" "NETDIS-FDRESPUB-WSD-Out-UDP-Active"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=17|Profile=Private|RPort=3702|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=fdrespub|Name=@FirewallAPI.dll,-32811|Desc=@FirewallAPI.dll,-32812|EmbedCtxt=@FirewallAPI.dll,-32752|" "NETDIS-WSDEVNTS-In-TCP-Active"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|LPort=5358|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-32813|Desc=@FirewallAPI.dll,-32814|EmbedCtxt=@FirewallAPI.dll,-32752|" "NETDIS-WSDEVNTS-Out-TCP-Active"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=6|Profile=Private|RPort=5358|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-32815|Desc=@FirewallAPI.dll,-32816|EmbedCtxt=@FirewallAPI.dll,-32752|" "NETDIS-WSDEVNT-In-TCP-Active"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|LPort=5357|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-32817|Desc=@FirewallAPI.dll,-32818|EmbedCtxt=@FirewallAPI.dll,-32752|" "NETDIS-WSDEVNT-Out-TCP-Active"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=6|Profile=Private|RPort=5357|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-32819|Desc=@FirewallAPI.dll,-32820|EmbedCtxt=@FirewallAPI.dll,-32752|" "NETDIS-SSDPSrv-In-UDP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Domain|Profile=Public|LPort=1900|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=Ssdpsrv|Name=@FirewallAPI.dll,-32753|Desc=@FirewallAPI.dll,-32756|EmbedCtxt=@FirewallAPI.dll,-32752|" "NETDIS-SSDPSrv-Out-UDP"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=17|Profile=Domain|Profile=Public|RPort=1900|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=Ssdpsrv|Name=@FirewallAPI.dll,-32757|Desc=@FirewallAPI.dll,-32760|EmbedCtxt=@FirewallAPI.dll,-32752|" "NETDIS-UPnP-Out-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|Profile=Domain|Profile=Public|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=upnphost|Name=@FirewallAPI.dll,-32821|Desc=@FirewallAPI.dll,-32822|EmbedCtxt=@FirewallAPI.dll,-32752|" "NETDIS-UPnPHost-In-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Public|LPort=2869|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-32761|Desc=@FirewallAPI.dll,-32764|EmbedCtxt=@FirewallAPI.dll,-32752|" "NETDIS-UPnPHost-Out-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|Profile=Public|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-32765|Desc=@FirewallAPI.dll,-32768|EmbedCtxt=@FirewallAPI.dll,-32752|" "NETDIS-NB_Name-In-UDP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Public|LPort=137|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-32769|Desc=@FirewallAPI.dll,-32772|EmbedCtxt=@FirewallAPI.dll,-32752|" "NETDIS-NB_Name-Out-UDP"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=17|Profile=Public|RPort=137|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-32773|Desc=@FirewallAPI.dll,-32776|EmbedCtxt=@FirewallAPI.dll,-32752|" "NETDIS-NB_Datagram-In-UDP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Public|LPort=138|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-32777|Desc=@FirewallAPI.dll,-32780|EmbedCtxt=@FirewallAPI.dll,-32752|" "NETDIS-NB_Datagram-Out-UDP"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=17|Profile=Public|RPort=138|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-32781|Desc=@FirewallAPI.dll,-32784|EmbedCtxt=@FirewallAPI.dll,-32752|" "NETDIS-FDPHOST-In-UDP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Domain|Profile=Public|LPort=3702|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=fdphost|Name=@FirewallAPI.dll,-32785|Desc=@FirewallAPI.dll,-32788|EmbedCtxt=@FirewallAPI.dll,-32752|" "NETDIS-FDPHOST-Out-UDP"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=17|Profile=Domain|Profile=Public|RPort=3702|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=fdphost|Name=@FirewallAPI.dll,-32789|Desc=@FirewallAPI.dll,-32792|EmbedCtxt=@FirewallAPI.dll,-32752|" "NETDIS-LLMNR-In-UDP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Domain|Profile=Public|LPort=5355|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=dnscache|Name=@FirewallAPI.dll,-32801|Desc=@FirewallAPI.dll,-32804|EmbedCtxt=@FirewallAPI.dll,-32752|" "NETDIS-LLMNR-Out-UDP"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=17|Profile=Domain|Profile=Public|RPort=5355|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=dnscache|Name=@FirewallAPI.dll,-32805|Desc=@FirewallAPI.dll,-32808|EmbedCtxt=@FirewallAPI.dll,-32752|" "NETDIS-FDRESPUB-WSD-In-UDP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Domain|Profile=Public|LPort=3702|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=fdrespub|Name=@FirewallAPI.dll,-32809|Desc=@FirewallAPI.dll,-32810|EmbedCtxt=@FirewallAPI.dll,-32752|" "NETDIS-FDRESPUB-WSD-Out-UDP"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=17|Profile=Domain|Profile=Public|RPort=3702|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=fdrespub|Name=@FirewallAPI.dll,-32811|Desc=@FirewallAPI.dll,-32812|EmbedCtxt=@FirewallAPI.dll,-32752|" "NETDIS-WSDEVNTS-In-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Public|LPort=5358|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-32813|Desc=@FirewallAPI.dll,-32814|EmbedCtxt=@FirewallAPI.dll,-32752|" "NETDIS-WSDEVNTS-Out-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|Profile=Public|RPort=5358|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-32815|Desc=@FirewallAPI.dll,-32816|EmbedCtxt=@FirewallAPI.dll,-32752|" "NETDIS-WSDEVNT-In-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Public|LPort=5357|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-32817|Desc=@FirewallAPI.dll,-32818|EmbedCtxt=@FirewallAPI.dll,-32752|" "NETDIS-WSDEVNT-Out-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|Profile=Public|RPort=5357|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-32819|Desc=@FirewallAPI.dll,-32820|EmbedCtxt=@FirewallAPI.dll,-32752|" "RemoteSvcAdmin-In-TCP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Domain|LPort=RPC|App=%SystemRoot%\\system32\\services.exe|Name=@FirewallAPI.dll,-29503|Desc=@FirewallAPI.dll,-29506|EmbedCtxt=@FirewallAPI.dll,-29502|" "RemoteSvcAdmin-NP-In-TCP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Domain|LPort=445|App=System|Name=@FirewallAPI.dll,-29507|Desc=@FirewallAPI.dll,-29510|EmbedCtxt=@FirewallAPI.dll,-29502|" "RemoteSvcAdmin-RPCSS-In-TCP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Domain|LPort=RPC-EPMap|App=%SystemRoot%\\system32\\svchost.exe|Svc=RPCSS|Name=@FirewallAPI.dll,-29515|Desc=@FirewallAPI.dll,-29518|EmbedCtxt=@FirewallAPI.dll,-29502|" "RemoteSvcAdmin-In-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Private|Profile=Public|LPort=RPC|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\services.exe|Name=@FirewallAPI.dll,-29503|Desc=@FirewallAPI.dll,-29506|EmbedCtxt=@FirewallAPI.dll,-29502|" "RemoteSvcAdmin-NP-In-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Private|Profile=Public|LPort=445|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-29507|Desc=@FirewallAPI.dll,-29510|EmbedCtxt=@FirewallAPI.dll,-29502|" "RemoteSvcAdmin-RPCSS-In-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Private|Profile=Public|LPort=RPC-EPMap|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=RPCSS|Name=@FirewallAPI.dll,-29515|Desc=@FirewallAPI.dll,-29518|EmbedCtxt=@FirewallAPI.dll,-29502|" "RemoteTask-In-TCP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Domain|LPort=RPC|App=%SystemRoot%\\system32\\svchost.exe|Svc=schedule|Name=@FirewallAPI.dll,-33253|Desc=@FirewallAPI.dll,-33256|EmbedCtxt=@FirewallAPI.dll,-33252|" "RemoteTask-RPCSS-In-TCP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Domain|LPort=RPC-EPMap|App=%SystemRoot%\\system32\\svchost.exe|Svc=RPCSS|Name=@FirewallAPI.dll,-33257|Desc=@FirewallAPI.dll,-33260|EmbedCtxt=@FirewallAPI.dll,-33252|" "RemoteTask-In-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Private|Profile=Public|LPort=RPC|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=schedule|Name=@FirewallAPI.dll,-33253|Desc=@FirewallAPI.dll,-33256|EmbedCtxt=@FirewallAPI.dll,-33252|" "RemoteTask-RPCSS-In-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Private|Profile=Public|LPort=RPC-EPMap|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=RPCSS|Name=@FirewallAPI.dll,-33257|Desc=@FirewallAPI.dll,-33260|EmbedCtxt=@FirewallAPI.dll,-33252|" "MSDTC-In-TCP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Domain|App=%SystemRoot%\\system32\\msdtc.exe|Name=@FirewallAPI.dll,-33503|Desc=@FirewallAPI.dll,-33506|EmbedCtxt=@FirewallAPI.dll,-33502|" "MSDTC-Out-TCP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|Profile=Domain|App=%SystemRoot%\\system32\\msdtc.exe|Name=@FirewallAPI.dll,-33507|Desc=@FirewallAPI.dll,-33510|EmbedCtxt=@FirewallAPI.dll,-33502|" "MSDTC-KTMRM-In-TCP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Domain|LPort=RPC|App=%SystemRoot%\\system32\\svchost.exe|Svc=ktmrm|Name=@FirewallAPI.dll,-33511|Desc=@FirewallAPI.dll,-33512|EmbedCtxt=@FirewallAPI.dll,-33502|" "MSDTC-RPCSS-In-TCP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Domain|LPort=RPC-EPMap|App=%SystemRoot%\\system32\\svchost.exe|Svc=RPCSS|Name=@FirewallAPI.dll,-33513|Desc=@FirewallAPI.dll,-33514|EmbedCtxt=@FirewallAPI.dll,-33502|" "MSDTC-In-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Private|Profile=Public|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\msdtc.exe|Name=@FirewallAPI.dll,-33503|Desc=@FirewallAPI.dll,-33506|EmbedCtxt=@FirewallAPI.dll,-33502|" "MSDTC-Out-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|Profile=Private|Profile=Public|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\msdtc.exe|Name=@FirewallAPI.dll,-33507|Desc=@FirewallAPI.dll,-33510|EmbedCtxt=@FirewallAPI.dll,-33502|" "MSDTC-KTMRM-In-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Private|Profile=Public|LPort=RPC|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=ktmrm|Name=@FirewallAPI.dll,-33511|Desc=@FirewallAPI.dll,-33512|EmbedCtxt=@FirewallAPI.dll,-33502|" "MSDTC-RPCSS-In-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Private|Profile=Public|LPort=RPC-EPMap|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=RPCSS|Name=@FirewallAPI.dll,-33513|Desc=@FirewallAPI.dll,-33514|EmbedCtxt=@FirewallAPI.dll,-33502|" "RemoteEventLogSvc-In-TCP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Domain|LPort=RPC|App=%SystemRoot%\\system32\\svchost.exe|Svc=Eventlog|Name=@FirewallAPI.dll,-29253|Desc=@FirewallAPI.dll,-29256|EmbedCtxt=@FirewallAPI.dll,-29252|" "RemoteEventLogSvc-NP-In-TCP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Domain|LPort=445|App=System|Name=@FirewallAPI.dll,-29257|Desc=@FirewallAPI.dll,-29260|EmbedCtxt=@FirewallAPI.dll,-29252|" "RemoteEventLogSvc-RPCSS-In-TCP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Domain|LPort=RPC-EPMap|App=%SystemRoot%\\system32\\svchost.exe|Svc=RPCSS|Name=@FirewallAPI.dll,-29265|Desc=@FirewallAPI.dll,-29268|EmbedCtxt=@FirewallAPI.dll,-29252|" "RemoteEventLogSvc-In-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Private|Profile=Public|LPort=RPC|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=Eventlog|Name=@FirewallAPI.dll,-29253|Desc=@FirewallAPI.dll,-29256|EmbedCtxt=@FirewallAPI.dll,-29252|" "RemoteEventLogSvc-NP-In-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Private|Profile=Public|LPort=445|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-29257|Desc=@FirewallAPI.dll,-29260|EmbedCtxt=@FirewallAPI.dll,-29252|" "RemoteEventLogSvc-RPCSS-In-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Private|Profile=Public|LPort=RPC-EPMap|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=RPCSS|Name=@FirewallAPI.dll,-29265|Desc=@FirewallAPI.dll,-29268|EmbedCtxt=@FirewallAPI.dll,-29252|" "WINRM-HTTP-In-TCP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Domain|LPort=5985|App=System|Name=@FirewallAPI.dll,-30253|Desc=@FirewallAPI.dll,-30256|EmbedCtxt=@FirewallAPI.dll,-30252|" "WINRM-HTTP-In-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Private|Profile=Public|LPort=5985|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-30253|Desc=@FirewallAPI.dll,-30256|EmbedCtxt=@FirewallAPI.dll,-30252|" "WINRM-HTTP-Compat-In-TCP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Domain|LPort=80|App=System|Name=@FirewallAPI.dll,-35001|Desc=@FirewallAPI.dll,-35002|EmbedCtxt=@FirewallAPI.dll,-30252|" "WINRM-HTTP-Compat-In-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Private|Profile=Public|LPort=80|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-35001|Desc=@FirewallAPI.dll,-35002|EmbedCtxt=@FirewallAPI.dll,-30252|" "RemoteFwAdmin-In-TCP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Domain|LPort=RPC|App=%SystemRoot%\\system32\\svchost.exe|Svc=policyagent|Name=@FirewallAPI.dll,-30003|Desc=@FirewallAPI.dll,-30006|EmbedCtxt=@FirewallAPI.dll,-30002|" "RemoteFwAdmin-RPCSS-In-TCP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Domain|LPort=RPC-EPMap|App=%SystemRoot%\\system32\\svchost.exe|Svc=RPCSS|Name=@FirewallAPI.dll,-30007|Desc=@FirewallAPI.dll,-30010|EmbedCtxt=@FirewallAPI.dll,-30002|" "RemoteFwAdmin-In-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Private|Profile=Public|LPort=RPC|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=policyagent|Name=@FirewallAPI.dll,-30003|Desc=@FirewallAPI.dll,-30006|EmbedCtxt=@FirewallAPI.dll,-30002|" "RemoteFwAdmin-RPCSS-In-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Private|Profile=Public|LPort=RPC-EPMap|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=RPCSS|Name=@FirewallAPI.dll,-30007|Desc=@FirewallAPI.dll,-30010|EmbedCtxt=@FirewallAPI.dll,-30002|" "RemoteAssistance-In-TCP-EdgeScope"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Public|App=%SystemRoot%\\system32\\msra.exe|Name=@FirewallAPI.dll,-33003|Desc=@FirewallAPI.dll,-33006|EmbedCtxt=@FirewallAPI.dll,-33002|Edge=TRUE|Defer=App|" "RemoteAssistance-Out-TCP"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=6|Profile=Public|App=%SystemRoot%\\system32\\msra.exe|Name=@FirewallAPI.dll,-33007|Desc=@FirewallAPI.dll,-33010|EmbedCtxt=@FirewallAPI.dll,-33002|" "RemoteAssistance-PnrpSvc-UDP-In-EdgeScope"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Public|LPort=3540|App=%systemroot%\\system32\\svchost.exe|Svc=pnrpsvc|Name=@FirewallAPI.dll,-33039|Desc=@FirewallAPI.dll,-33040|EmbedCtxt=@FirewallAPI.dll,-33002|Edge=TRUE|Defer=App|" "RemoteAssistance-PnrpSvc-UDP-OUT"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=17|Profile=Public|App=%systemroot%\\system32\\svchost.exe|Svc=pnrpsvc|Name=@FirewallAPI.dll,-33037|Desc=@FirewallAPI.dll,-33038|EmbedCtxt=@FirewallAPI.dll,-33002|" "RemoteAssistance-RAServer-In-TCP-NoScope-Active"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Domain|App=%SystemRoot%\\system32\\raserver.exe|Name=@FirewallAPI.dll,-33011|Desc=@FirewallAPI.dll,-33014|EmbedCtxt=@FirewallAPI.dll,-33002|" "RemoteAssistance-RAServer-Out-TCP-NoScope-Active"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=6|Profile=Domain|App=%SystemRoot%\\system32\\raserver.exe|Name=@FirewallAPI.dll,-33015|Desc=@FirewallAPI.dll,-33018|EmbedCtxt=@FirewallAPI.dll,-33002|" "RemoteAssistance-In-TCP-EdgeScope-Active"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Domain|Profile=Private|App=%SystemRoot%\\system32\\msra.exe|Name=@FirewallAPI.dll,-33003|Desc=@FirewallAPI.dll,-33006|EmbedCtxt=@FirewallAPI.dll,-33002|Edge=TRUE|Defer=App|" "RemoteAssistance-Out-TCP-Active"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=6|Profile=Domain|Profile=Private|App=%SystemRoot%\\system32\\msra.exe|Name=@FirewallAPI.dll,-33007|Desc=@FirewallAPI.dll,-33010|EmbedCtxt=@FirewallAPI.dll,-33002|" "RemoteAssistance-SSDPSrv-In-UDP-Active"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Domain|Profile=Private|LPort=1900|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=Ssdpsrv|Name=@FirewallAPI.dll,-33019|Desc=@FirewallAPI.dll,-33022|EmbedCtxt=@FirewallAPI.dll,-33002|" "RemoteAssistance-SSDPSrv-Out-UDP-Active"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=17|Profile=Domain|Profile=Private|RPort=1900|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=Ssdpsrv|Name=@FirewallAPI.dll,-33023|Desc=@FirewallAPI.dll,-33026|EmbedCtxt=@FirewallAPI.dll,-33002|" "RemoteAssistance-SSDPSrv-In-TCP-Active"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Domain|Profile=Private|LPort=2869|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=Ssdpsrv|Name=@FirewallAPI.dll,-33027|Desc=@FirewallAPI.dll,-33030|EmbedCtxt=@FirewallAPI.dll,-33002|" "RemoteAssistance-SSDPSrv-Out-TCP-Active"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=6|Profile=Domain|Profile=Private|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=Ssdpsrv|Name=@FirewallAPI.dll,-33031|Desc=@FirewallAPI.dll,-33034|EmbedCtxt=@FirewallAPI.dll,-33002|" "RemoteAssistance-PnrpSvc-UDP-In-EdgeScope-Active"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Domain|Profile=Private|LPort=3540|App=%systemroot%\\system32\\svchost.exe|Svc=pnrpsvc|Name=@FirewallAPI.dll,-33039|Desc=@FirewallAPI.dll,-33040|EmbedCtxt=@FirewallAPI.dll,-33002|Edge=TRUE|Defer=App|" "RemoteAssistance-PnrpSvc-UDP-OUT-Active"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=17|Profile=Domain|Profile=Private|App=%systemroot%\\system32\\svchost.exe|Svc=pnrpsvc|Name=@FirewallAPI.dll,-33037|Desc=@FirewallAPI.dll,-33038|EmbedCtxt=@FirewallAPI.dll,-33002|" "WPDMTP-Out-TCP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|Profile=Domain|App=%SystemRoot%\\system32\\wudfhost.exe|Name=@FirewallAPI.dll,-30503|Desc=@FirewallAPI.dll,-30506|EmbedCtxt=@FirewallAPI.dll,-30502|" "WPDMTP-Out-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|Profile=Private|Profile=Public|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\wudfhost.exe|Name=@FirewallAPI.dll,-30503|Desc=@FirewallAPI.dll,-30506|EmbedCtxt=@FirewallAPI.dll,-30502|" "WPDMTP-SSDPSrv-In-UDP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|LPort=1900|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=Ssdpsrv|Name=@FirewallAPI.dll,-30507|Desc=@FirewallAPI.dll,-30510|EmbedCtxt=@FirewallAPI.dll,-30502|" "WPDMTP-SSDPSrv-Out-UDP"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=17|RPort=1900|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=Ssdpsrv|Name=@FirewallAPI.dll,-30511|Desc=@FirewallAPI.dll,-30514|EmbedCtxt=@FirewallAPI.dll,-30502|" "WPDMTP-UPnPHost-In-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|LPort=2869|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-30515|Desc=@FirewallAPI.dll,-30518|EmbedCtxt=@FirewallAPI.dll,-30502|" "WPDMTP-UPnPHost-Out-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=fdphost|Name=@FirewallAPI.dll,-30519|Desc=@FirewallAPI.dll,-30522|EmbedCtxt=@FirewallAPI.dll,-30502|" "WPDMTP-UPnP-Out-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=upnphost|Name=@FirewallAPI.dll,-30523|Desc=@FirewallAPI.dll,-30524|EmbedCtxt=@FirewallAPI.dll,-30502|" "NetPres-In-TCP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Domain|App=%SystemRoot%\\system32\\netproj.exe|Name=@FirewallAPI.dll,-31761|Desc=@FirewallAPI.dll,-31764|EmbedCtxt=@FirewallAPI.dll,-31752|" "NetPres-Out-TCP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|Profile=Domain|App=%SystemRoot%\\system32\\netproj.exe|Name=@FirewallAPI.dll,-31765|Desc=@FirewallAPI.dll,-31768|EmbedCtxt=@FirewallAPI.dll,-31752|" "NetPres-WSDEVNT-In-TCP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Domain|LPort=5357|App=System|Name=@FirewallAPI.dll,-31769|Desc=@FirewallAPI.dll,-31770|EmbedCtxt=@FirewallAPI.dll,-31752|" "NetPres-WSDEVNT-Out-TCP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|Profile=Domain|RPort=5357|App=System|Name=@FirewallAPI.dll,-31771|Desc=@FirewallAPI.dll,-31772|EmbedCtxt=@FirewallAPI.dll,-31752|" "NetPres-WSDEVNTS-In-TCP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Domain|LPort=5358|App=System|Name=@FirewallAPI.dll,-31773|Desc=@FirewallAPI.dll,-31774|EmbedCtxt=@FirewallAPI.dll,-31752|" "NetPres-WSDEVNTS-Out-TCP-NoScope"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|Profile=Domain|RPort=5358|App=System|Name=@FirewallAPI.dll,-31775|Desc=@FirewallAPI.dll,-31776|EmbedCtxt=@FirewallAPI.dll,-31752|" "NetPres-WSD-In-UDP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|LPort=3702|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\netproj.exe|Name=@FirewallAPI.dll,-31753|Desc=@FirewallAPI.dll,-31756|EmbedCtxt=@FirewallAPI.dll,-31752|" "NetPres-WSD-Out-UDP"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=17|RPort=3702|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\netproj.exe|Name=@FirewallAPI.dll,-31757|Desc=@FirewallAPI.dll,-31760|EmbedCtxt=@FirewallAPI.dll,-31752|" "NetPres-In-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Private|Profile=Public|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\netproj.exe|Name=@FirewallAPI.dll,-31761|Desc=@FirewallAPI.dll,-31764|EmbedCtxt=@FirewallAPI.dll,-31752|" "NetPres-Out-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|Profile=Private|Profile=Public|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\netproj.exe|Name=@FirewallAPI.dll,-31765|Desc=@FirewallAPI.dll,-31768|EmbedCtxt=@FirewallAPI.dll,-31752|" "NetPres-WSDEVNT-In-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Private|Profile=Public|LPort=5357|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-31769|Desc=@FirewallAPI.dll,-31770|EmbedCtxt=@FirewallAPI.dll,-31752|" "NetPres-WSDEVNT-Out-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|Profile=Private|Profile=Public|RPort=5357|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-31771|Desc=@FirewallAPI.dll,-31772|EmbedCtxt=@FirewallAPI.dll,-31752|" "NetPres-WSDEVNTS-In-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Private|Profile=Public|LPort=5358|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-31773|Desc=@FirewallAPI.dll,-31774|EmbedCtxt=@FirewallAPI.dll,-31752|" "NetPres-WSDEVNTS-Out-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|Profile=Private|Profile=Public|RPort=5358|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-31775|Desc=@FirewallAPI.dll,-31776|EmbedCtxt=@FirewallAPI.dll,-31752|" "MCX-SSDPSrv-In-UDP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|LPort=1900|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=Ssdpsrv|Name=@FirewallAPI.dll,-30753|Desc=@FirewallAPI.dll,-30756|EmbedCtxt=@FirewallAPI.dll,-30752|" "MCX-SSDPSrv-Out-UDP"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=17|RPort=1900|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=Ssdpsrv|Name=@FirewallAPI.dll,-30757|Desc=@FirewallAPI.dll,-30760|EmbedCtxt=@FirewallAPI.dll,-30752|" "MCX-In-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|LPort=554|LPort=8554|LPort=8555|LPort=8556|LPort=8557|LPort=8558|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\ehome\\ehshell.exe|Name=@FirewallAPI.dll,-30761|Desc=@FirewallAPI.dll,-30764|EmbedCtxt=@FirewallAPI.dll,-30752|" "MCX-Out-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\ehome\\ehshell.exe|Name=@FirewallAPI.dll,-30765|Desc=@FirewallAPI.dll,-30768|EmbedCtxt=@FirewallAPI.dll,-30752|" "MCX-QWave-In-UDP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|LPort=2177|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=Qwave|Name=@FirewallAPI.dll,-30769|Desc=@FirewallAPI.dll,-30772|EmbedCtxt=@FirewallAPI.dll,-30752|" "MCX-QWave-Out-UDP"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=17|RPort=2177|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=Qwave|Name=@FirewallAPI.dll,-30773|Desc=@FirewallAPI.dll,-30776|EmbedCtxt=@FirewallAPI.dll,-30752|" "MCX-QWave-In-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|LPort=2177|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=Qwave|Name=@FirewallAPI.dll,-30777|Desc=@FirewallAPI.dll,-30780|EmbedCtxt=@FirewallAPI.dll,-30752|" "MCX-QWave-Out-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|RPort=2177|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=Qwave|Name=@FirewallAPI.dll,-30781|Desc=@FirewallAPI.dll,-30784|EmbedCtxt=@FirewallAPI.dll,-30752|" "MCX-HTTPSTR-In-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|LPort=10244|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-30785|Desc=@FirewallAPI.dll,-30788|EmbedCtxt=@FirewallAPI.dll,-30752|" "MCX-TERMSRV-In-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|LPort=3390|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-30793|Desc=@FirewallAPI.dll,-30796|EmbedCtxt=@FirewallAPI.dll,-30752|" "MCX-In-UDP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|LPort=7777|LPort=7778|LPort=7779|LPort=7780|LPort=7781|LPort=5004|LPort=5005|LPort=50004|LPort=50005|LPort=50006|LPort=50007|LPort=50008|LPort=50009|LPort=50010|LPort=50011|LPort=50012|LPort=50013|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\ehome\\ehshell.exe|Name=@FirewallAPI.dll,-30801|Desc=@FirewallAPI.dll,-30804|EmbedCtxt=@FirewallAPI.dll,-30752|" "MCX-Out-UDP"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=17|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\ehome\\ehshell.exe|Name=@FirewallAPI.dll,-30805|Desc=@FirewallAPI.dll,-30808|EmbedCtxt=@FirewallAPI.dll,-30752|" "MCX-MCX2SVC-Out-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=mcx2svc|Name=@FirewallAPI.dll,-30810|Desc=@FirewallAPI.dll,-30811|EmbedCtxt=@FirewallAPI.dll,-30752|" "MCX-Prov-Out-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|App=%SystemRoot%\\ehome\\mcx2prov.exe|Name=@FirewallAPI.dll,-30812|Desc=@FirewallAPI.dll,-30813|EmbedCtxt=@FirewallAPI.dll,-30752|" "MCX-PlayTo-In-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|LPort=2869|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-30814|Desc=@FirewallAPI.dll,-30815|EmbedCtxt=@FirewallAPI.dll,-30752|" "MCX-PlayTo-Out-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=upnphost|Name=@FirewallAPI.dll,-30816|Desc=@FirewallAPI.dll,-30817|EmbedCtxt=@FirewallAPI.dll,-30752|" "MCX-McrMgr-Out-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|App=%SystemRoot%\\ehome\\mcrmgr.exe|Name=@FirewallAPI.dll,-30818|Desc=@FirewallAPI.dll,-30819|EmbedCtxt=@FirewallAPI.dll,-30752|" "MCX-PlayTo-Out-UDP"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=17|LPort=1900|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=Ssdpsrv|Name=@FirewallAPI.dll,-30820|Desc=@FirewallAPI.dll,-30821|EmbedCtxt=@FirewallAPI.dll,-30752|" "MCX-FDPHost-Out-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=fdphost|Name=@FirewallAPI.dll,-30822|Desc=@FirewallAPI.dll,-30823|EmbedCtxt=@FirewallAPI.dll,-30752|" "Microsoft-Windows-PeerDist-HttpTrans-In"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|LPort=80|App=SYSTEM|Name=@peerdistsh.dll,-10000|Desc=@peerdistsh.dll,-11000|EmbedCtxt=@peerdistsh.dll,-9000|" "Microsoft-Windows-PeerDist-HttpTrans-Out"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|RPort=80|App=SYSTEM|Name=@peerdistsh.dll,-10001|Desc=@peerdistsh.dll,-11001|EmbedCtxt=@peerdistsh.dll,-9000|" "Microsoft-Windows-PeerDist-WSD-In"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|LPort=3702|RA4=LocalSubnet|RA6=LocalSubnet|App=%systemroot%\\system32\\svchost.exe|Svc=PeerDistSvc|Name=@peerdistsh.dll,-10002|Desc=@peerdistsh.dll,-11002|EmbedCtxt=@peerdistsh.dll,-9001|" "Microsoft-Windows-PeerDist-WSD-Out"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=17|RPort=3702|RA4=LocalSubnet|RA6=LocalSubnet|App=%systemroot%\\system32\\svchost.exe|Svc=PeerDistSvc|Name=@peerdistsh.dll,-10003|Desc=@peerdistsh.dll,-11003|EmbedCtxt=@peerdistsh.dll,-9001|" "Microsoft-Windows-PeerDist-HostedServer-In"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|LPort=443|App=SYSTEM|Name=@peerdistsh.dll,-10004|Desc=@peerdistsh.dll,-11004|EmbedCtxt=@peerdistsh.dll,-9002|" "Microsoft-Windows-PeerDist-HostedServer-Out"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|LPort=443|App=SYSTEM|Name=@peerdistsh.dll,-10005|Desc=@peerdistsh.dll,-11005|EmbedCtxt=@peerdistsh.dll,-9002|" "Microsoft-Windows-PeerDist-HostedClient-Out"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|RPort=443|App=SYSTEM|Name=@peerdistsh.dll,-10006|Desc=@peerdistsh.dll,-11006|EmbedCtxt=@peerdistsh.dll,-9003|" "RemoteDesktop-In-TCP"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|LPort=3389|App=System|Name=@FirewallAPI.dll,-28753|Desc=@FirewallAPI.dll,-28756|EmbedCtxt=@FirewallAPI.dll,-28752|" "{A7A56759-B680-4E20-85D1-D1B2E98BAA60}"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=6|Profile=Private|App=%ProgramFiles(x86)%\\Windows Media Player\\wmplayer.exe|Name=Lecteur Windows Media x86 (Trafic sortant TCP)|Desc=@FirewallAPI.dll,-31014|EmbedCtxt=@FirewallAPI.dll,-31002|" "{68C23619-A4EC-49B7-8858-2A75988AC22D}"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=17|Profile=Private|App=%ProgramFiles(x86)%\\Windows Media Player\\wmplayer.exe|Name=Lecteur Windows Media x86 (Trafic sortant UDP)|Desc=@FirewallAPI.dll,-31010|EmbedCtxt=@FirewallAPI.dll,-31002|" "{B66A5A4A-C2C0-4769-AFE1-C44DF7A163A7}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=%ProgramFiles(x86)%\\Windows Media Player\\wmplayer.exe|Name=Lecteur Windows Media x86 (Trafic entrant UDP)|Desc=@FirewallAPI.dll,-31006|EmbedCtxt=@FirewallAPI.dll,-31002|" "{E65CA4CB-632B-4ABB-B65B-DE08281961A6}"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=6|Profile=Private|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=upnphost|Name=Service Partage réseau du Lecteur Windows Media (Trafic sortant sur l’hôte du périphérique Plug-and-Play universel)|Desc=@FirewallAPI.dll,-31322|EmbedCtxt=@FirewallAPI.dll,-31252|" "{F050DE82-640E-45BC-9614-849A09AFB021}"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=6|Profile=Private|RPort=10243|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=Service de partage réseau du Lecteur Windows Media (HTTP-Diffusion en continu-Sortie)|Desc=@FirewallAPI.dll,-31292|EmbedCtxt=@FirewallAPI.dll,-31252|" "{65339DDB-AE20-40CA-B162-E7A81D4C297A}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|LPort=10243|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=Service de partage réseau du Lecteur Windows Media (HTTP-Diffusion en continu-Entrée)|Desc=@FirewallAPI.dll,-31288|EmbedCtxt=@FirewallAPI.dll,-31252|" "{0565297F-16FC-4C84-AE97-055D4AF4B02B}"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=6|Profile=Private|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=Service de partage réseau du Lecteur Windows Media (UPnP-Sortie)|Desc=@FirewallAPI.dll,-31284|EmbedCtxt=@FirewallAPI.dll,-31252|" "{8A558104-F380-4249-BF7C-5248C795EA7D}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|LPort=2869|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=Service de partage réseau du Lecteur Windows Media (UPnP-Entrée)|Desc=@FirewallAPI.dll,-31280|EmbedCtxt=@FirewallAPI.dll,-31252|" "{1BDE6D65-54BD-4F18-A910-7C91DD39784F}"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=17|Profile=Private|RPort=1900|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=ssdpsrv|Name=Service de partage réseau du Lecteur Windows Media (SSDP-Sortie)|Desc=@FirewallAPI.dll,-31276|EmbedCtxt=@FirewallAPI.dll,-31252|" "{C9D9D921-6E9B-46EC-9D2D-A0F1F74C92F7}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|LPort=1900|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=ssdpsrv|Name=Service de partage réseau du Lecteur Windows Media (SSDP-Entrée)|Desc=@FirewallAPI.dll,-31272|EmbedCtxt=@FirewallAPI.dll,-31252|" "{461A7886-6CFD-42D4-9AC0-7CD3C506B40A}"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=6|Profile=Private|RPort=2177|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=Qwave|Name=Service de partage réseau du Lecteur Windows Media (qWave-TCP-Sortie)|Desc=@FirewallAPI.dll,-31268|EmbedCtxt=@FirewallAPI.dll,-31252|" "{4377D30A-BD1F-42F8-8DD1-6421341F0957}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|LPort=2177|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=Qwave|Name=Service de partage réseau du Lecteur Windows Media (qWave-TCP-Entrée)|Desc=@FirewallAPI.dll,-31264|EmbedCtxt=@FirewallAPI.dll,-31252|" "{7C19AE44-E26F-4A28-88E7-9496C3CFA9AB}"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=17|Profile=Private|RPort=2177|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=Qwave|Name=Service de partage réseau du Lecteur Windows Media (qWave-UDP-Sortie)|Desc=@FirewallAPI.dll,-31260|EmbedCtxt=@FirewallAPI.dll,-31252|" "{2A23380C-2538-4F0A-9B22-9577A20B4622}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|LPort=2177|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=Qwave|Name=Service de partage réseau du Lecteur Windows Media (qWave-UDP-Entrée)|Desc=@FirewallAPI.dll,-31256|EmbedCtxt=@FirewallAPI.dll,-31252|" "{774C7F2A-6A30-440A-8C57-D1BBE29C76A3}"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=17|Profile=Private|RPort=5355|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=dnscache|Name=@FirewallAPI.dll,-28550|Desc=@FirewallAPI.dll,-28551|EmbedCtxt=@FirewallAPI.dll,-28502|" "{BA1EEC13-2DD9-4CA4-B09B-632DF1D5F798}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|LPort=5355|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=dnscache|Name=@FirewallAPI.dll,-28548|Desc=@FirewallAPI.dll,-28549|EmbedCtxt=@FirewallAPI.dll,-28502|" "{D79104D9-E26C-4827-9DA6-1EAA84225C38}"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=58|Profile=Private|ICMP6=128:*|RA6=LocalSubnet|Name=@FirewallAPI.dll,-28546|Desc=@FirewallAPI.dll,-28547|EmbedCtxt=@FirewallAPI.dll,-28502|" "{F3072443-8173-45F2-8921-EE491405ABA8}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=58|Profile=Private|ICMP6=128:*|RA6=LocalSubnet|Name=@FirewallAPI.dll,-28545|Desc=@FirewallAPI.dll,-28547|EmbedCtxt=@FirewallAPI.dll,-28502|" "{B211E245-43C7-4CBD-A4C8-ABDA5D8E12BA}"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=1|Profile=Private|ICMP4=8:*|RA4=LocalSubnet|Name=@FirewallAPI.dll,-28544|Desc=@FirewallAPI.dll,-28547|EmbedCtxt=@FirewallAPI.dll,-28502|" "{79D1DF45-AC70-41BD-BC3C-F5CD9AB5084C}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=1|Profile=Private|ICMP4=8:*|RA4=LocalSubnet|Name=@FirewallAPI.dll,-28543|Desc=@FirewallAPI.dll,-28547|EmbedCtxt=@FirewallAPI.dll,-28502|" "{9A781E43-B01B-422B-9B25-7CECAFE92FA5}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|LPort=RPC-EPMap|RA4=LocalSubnet|RA6=LocalSubnet|Svc=Rpcss|Name=@FirewallAPI.dll,-28539|Desc=@FirewallAPI.dll,-28542|EmbedCtxt=@FirewallAPI.dll,-28502|" "{21C61F64-3FCF-4A1E-8C86-5898BFD0292E}"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=17|Profile=Private|RPort=138|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-28531|Desc=@FirewallAPI.dll,-28534|EmbedCtxt=@FirewallAPI.dll,-28502|" "{34FCE281-6CAA-4201-A503-2D9B2E146501}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|LPort=138|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-28527|Desc=@FirewallAPI.dll,-28530|EmbedCtxt=@FirewallAPI.dll,-28502|" "{3B076E51-DAAE-4EB1-886C-40A1E5E6A974}"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=17|Profile=Private|RPort=137|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-28523|Desc=@FirewallAPI.dll,-28526|EmbedCtxt=@FirewallAPI.dll,-28502|" "{3AA8DA0E-6366-44FB-A614-A966A7A7EDD4}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|LPort=137|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-28519|Desc=@FirewallAPI.dll,-28522|EmbedCtxt=@FirewallAPI.dll,-28502|" "{931AFE2F-1346-42B4-AB2D-9848EFE7C339}"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=6|Profile=Private|RPort=445|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-28515|Desc=@FirewallAPI.dll,-28518|EmbedCtxt=@FirewallAPI.dll,-28502|" "{49FE04B3-8A01-4F46-BA2C-2E1D5C1235C9}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|LPort=445|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-28511|Desc=@FirewallAPI.dll,-28514|EmbedCtxt=@FirewallAPI.dll,-28502|" "{4DB19B27-166D-4966-88B5-CEBDB8E51A29}"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=6|Profile=Private|RPort=139|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-28507|Desc=@FirewallAPI.dll,-28510|EmbedCtxt=@FirewallAPI.dll,-28502|" "{BD3C7226-B532-4CA5-AC4F-51E68312D725}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|LPort=139|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@FirewallAPI.dll,-28503|Desc=@FirewallAPI.dll,-28506|EmbedCtxt=@FirewallAPI.dll,-28502|" "TCP Query User{31FCC43C-9B45-4D28-B07D-27E771240615}F:\\jeux\\grid\\grid.exe"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=F:\\jeux\\grid\\grid.exe|Name=GRID Executable|Desc=GRID Executable|Defer=User|" "UDP Query User{DDB5D51B-3946-46FD-A595-74D72A1C3084}F:\\jeux\\grid\\grid.exe"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=F:\\jeux\\grid\\grid.exe|Name=GRID Executable|Desc=GRID Executable|Defer=User|" "{B7025115-69EC-484F-8C3E-65E389C4451C}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|LPort=48113|RA4=LocalSubnet|RA6=LocalSubnet|Name=maconfig_tcp|" "{A91498EC-8A8F-4DFD-BF0C-D431A81DCADB}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|LPort=48113|RA4=LocalSubnet|RA6=LocalSubnet|Name=maconfig_udp|" "{B452BF76-8E1C-4170-BF75-EA6993E701B5}"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=17|Profile=Public|RPort=5355|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=dnscache|Name=@FirewallAPI.dll,-28550|Desc=@FirewallAPI.dll,-28551|EmbedCtxt=@FirewallAPI.dll,-28502|" "{8107AF44-57EE-4E9A-9DF5-AAD810993B62}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Public|LPort=5355|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=dnscache|Name=@FirewallAPI.dll,-28548|Desc=@FirewallAPI.dll,-28549|EmbedCtxt=@FirewallAPI.dll,-28502|" "{48F34A51-2461-4FA2-99AB-4C325CD23458}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Private|App=F:\\Jeux\\DiRT2\\dirt2_game.exe|Name=DiRT2|" "{430F49D3-FAB6-4A09-9546-F0192C3C56B5}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Private|App=F:\\Jeux\\DiRT2\\dirt2_game.exe|Name=DiRT2|" "TCP Query User{0386787D-1AF9-4DED-804D-62154F6D66E1}C:\\program files (x86)\\internet explorer\\iexplore.exe"="v2.10|Action=Block|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\\program files (x86)\\internet explorer\\iexplore.exe|Name=Internet Explorer|Desc=Internet Explorer|" "UDP Query User{53364A3A-B75C-40F2-A9DE-84C5E4A4D9D4}C:\\program files (x86)\\internet explorer\\iexplore.exe"="v2.10|Action=Block|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=C:\\program files (x86)\\internet explorer\\iexplore.exe|Name=Internet Explorer|Desc=Internet Explorer|" "{0F3224FA-8793-40F8-B57B-F85F75C76D3A}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Public|App=F:\\Jeux\\Assassin's Creed II\\AssassinsCreedIIGame.exe|Name=Assassin's Creed II|" "{FE604D8E-7756-4175-8592-F427A98AE815}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Public|App=F:\\Jeux\\Assassin's Creed II\\AssassinsCreedIIGame.exe|Name=Assassin's Creed II|" "{84686787-8849-4431-B55F-D11BE8941627}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Public|App=F:\\Jeux\\Assassin's Creed II\\AssassinsCreedII.exe|Name=Assassin's Creed II Update|" "{CEEC6E75-0DA5-4BB8-B4DF-F9971D95FC8C}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Public|App=F:\\Jeux\\Assassin's Creed II\\AssassinsCreedII.exe|Name=Assassin's Creed II Update|" "{94065717-F950-4282-8477-0EA11563D9EF}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Public|App=F:\\Jeux\\Assassin's Creed II\\UPlayBrowser.exe|Name=Assassin's Creed II Uplay|" "{6FD9B743-6B5C-443A-A851-A374C8DF3D64}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Public|App=F:\\Jeux\\Assassin's Creed II\\UPlayBrowser.exe|Name=Assassin's Creed II Uplay|" "{5EF568E4-7DF0-4A21-A333-2FE521A572BF}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=E:\\Program Files (x86)\\Steam\\SteamApps\\common\\call of duty modern warfare 2\\iw4sp.exe|Name=Call of Duty: Modern Warfare 2|" "{23881E7C-9480-4988-BB03-2D5D0C69DF60}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=E:\\Program Files (x86)\\Steam\\SteamApps\\common\\call of duty modern warfare 2\\iw4sp.exe|Name=Call of Duty: Modern Warfare 2|" "{D01A8F7E-77F6-46E9-999B-C60D537F7D6A}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Profile=Domain|App=E:\\Program Files (x86)\\Skype\\Phone\\Skype.exe|Name=Skype|" "{2B08AD4C-A848-4A0D-A9E3-98AD5CB43F6E}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Private|App=F:\\Jeux\\Assassin's Creed II\\AssassinsCreedIIGame.exe|Name=Assassin's Creed II|" "{ED126A1C-188A-4D8A-95ED-1E71FCA09C8A}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Private|App=F:\\Jeux\\Assassin's Creed II\\AssassinsCreedIIGame.exe|Name=Assassin's Creed II|" "{8F81B338-B538-46A5-A99E-02FB4AC301B6}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Private|App=F:\\Jeux\\Assassin's Creed II\\AssassinsCreedII.exe|Name=Assassin's Creed II Update|" "{907DEFCC-3796-434F-99BE-D80492BFD39E}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Private|App=F:\\Jeux\\Assassin's Creed II\\AssassinsCreedII.exe|Name=Assassin's Creed II Update|" "{7BD5B903-7CF2-46A3-AB39-9422CD18B844}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Private|App=F:\\Jeux\\Assassin's Creed II\\UPlayBrowser.exe|Name=Assassin's Creed II Uplay|" "{FB70FD89-0819-4915-9771-B5BFFEC0FA1D}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Private|App=F:\\Jeux\\Assassin's Creed II\\UPlayBrowser.exe|Name=Assassin's Creed II Uplay|" "{C0C7B7A4-CD48-42D4-9AD3-E06366E47C25}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=E:\\Program Files (x86)\\Steam\\SteamApps\\common\\call of duty modern warfare 2\\iw4mp.exe|Name=Call of Duty: Modern Warfare 2 - Multiplayer|" "{6D2E1EC3-17C8-4DF6-9277-7D98AA8C9C72}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=E:\\Program Files (x86)\\Steam\\SteamApps\\common\\call of duty modern warfare 2\\iw4mp.exe|Name=Call of Duty: Modern Warfare 2 - Multiplayer|" "{4434190E-394C-4EEB-8BAB-679CC34ED401}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Private|App=E:\\Program Files (x86)\\Steam\\Steam.exe|Name=Steam|" "{1A7666E9-CB5E-473C-AA34-582F5CBC6BDF}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Private|App=E:\\Program Files (x86)\\Steam\\Steam.exe|Name=Steam|" "{70E3AF99-DFD9-4EAB-B306-B5C99A2A1198}"="v2.10|Action=Block|Active=TRUE|Dir=In|RA4=193.107.240.0-193.107.243.255|Name=Blocage HADop|" "{B6B999E6-3156-4893-AE13-3258CE5833B1}"="v2.10|Action=Block|Active=TRUE|Dir=Out|RA4=193.107.240.0-193.107.243.255|Name=Blocage HADop|" "{7FA81728-66CC-470C-8B5A-95E9A651E2C7}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=E:\\Program Files (x86)\\VLC\\vlc.exe|Name=VLC media player|" "{254F76A1-CC4C-426C-9292-5D24101ACA36}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=E:\\Program Files (x86)\\VLC\\vlc.exe|Name=VLC media player|" "{47D97367-5A10-4894-96B6-58C464BD27ED}"="v2.10|Action=Allow|Active=TRUE|Dir=In|App=E:\\Program Files (x86)\\Skype\\Phone\\Skype.exe|Name=Skype|" "{CAC949E8-94FB-4C82-97BE-6D1A37A51295}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=F:\\Jeux\\F1 2010\\F1_2010_game.exe|Name=F1 2010|" "{228F520B-66B3-440A-B3D5-EEE7A4068ABC}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=F:\\Jeux\\F1 2010\\F1_2010_game.exe|Name=F1 2010|" "TCP Query User{23EE05A4-F35B-4C73-86A2-CB35B1AF8F6D}E:\\program files (x86)\\utorrent\\utorrent.exe"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Public|App=E:\\program files (x86)\\utorrent\\utorrent.exe|Name=µTorrent|Desc=µTorrent|Defer=User|" "UDP Query User{4F106DBB-D6C0-46D2-AF10-9BF15EF62EAD}E:\\program files (x86)\\utorrent\\utorrent.exe"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Public|App=E:\\program files (x86)\\utorrent\\utorrent.exe|Name=µTorrent|Desc=µTorrent|Defer=User|" "{C09520A2-D9E6-4D71-926C-5BF6260C66DA}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Profile=Domain|App=E:\\Program Files (x86)\\Skype\\Phone\\Skype.exe|Name=Skype|" "{58EFD849-F068-4247-A297-6AEE721E0BC8}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Profile=Domain|App=E:\\Program Files (x86)\\Skype\\Phone\\Skype.exe|Name=Skype|" "{651CDA5D-8E65-455C-9DEB-123AFAC657BD}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=58|ICMP6=128:*|App=System|Name=@IpHlpSvc.dll,-502|Desc=@FirewallAPI.dll,-28547|EmbedCtxt=@FirewallAPI.dll,-25000|" "{F9C096B6-E898-4988-A137-6C1310AC0F67}"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=58|ICMP6=128:*|Name=@IpHlpSvc.dll,-503|Desc=@FirewallAPI.dll,-28547|EmbedCtxt=@FirewallAPI.dll,-25000|" "{46696FDF-AC97-477A-BFD7-597EC0A302BE}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Profile=Domain|App=E:\\Program Files (x86)\\Skype\\Phone\\Skype.exe|Name=Skype|" "{092A756B-F422-4239-A26D-F3426DE8B839}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Profile=Domain|App=E:\\Program Files (x86)\\Skype\\Phone\\Skype.exe|Name=Skype|" "{57BFD474-9B78-4FF1-A4DF-1B083FC6F0E6}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Profile=Domain|App=E:\\Program Files (x86)\\Skype\\Phone\\Skype.exe|Name=Skype|" "{08E913FE-27E0-441F-B665-BD5021FBAE83}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Profile=Private|Profile=Public|App=E:\\Program Files (x86)\\Skype\\Phone\\Skype.exe|Name=Skype|" "{9C4113F6-2D86-4396-948B-38398097C98B}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Profile=Private|Profile=Public|App=E:\\Program Files (x86)\\Skype\\Phone\\Skype.exe|Name=Skype|" "{C5DFF8C6-3C20-4377-A69F-4FA7585E2997}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Profile=Private|Profile=Public|App=E:\\Program Files (x86)\\Skype\\Phone\\Skype.exe|Name=Skype|" "{75E049BC-74B4-4EF5-AC0D-A80B16C47230}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Profile=Private|Profile=Public|App=E:\\Program Files (x86)\\Skype\\Phone\\Skype.exe|Name=Skype|" "{9485E4BB-AF32-4334-B36E-D2D34860853B}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Profile=Private|Profile=Public|App=E:\\Program Files (x86)\\Skype\\Phone\\Skype.exe|Name=Skype|" "{3606E010-5765-4006-BF2B-CD85428EADD2}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Profile=Domain|App=E:\\Program Files (x86)\\Skype\\Phone\\Skype.exe|Name=Skype|" "{323AAB5D-12D7-45F3-B043-D2E6CFA6AF79}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Profile=Domain|App=E:\\Program Files (x86)\\Skype\\Phone\\Skype.exe|Name=Skype|" "{9F929748-064C-4D76-93C9-3C2C28B90F82}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Profile=Domain|App=E:\\Program Files (x86)\\Skype\\Phone\\Skype.exe|Name=Skype|" "{B006FD46-0936-48D5-BCED-7C288694A657}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Private|App=F:\\Jeux\\Call of Duty - Black Ops\\BlackOps.exe|Name=Call of Duty - Black Ops|" "{627621B4-5546-4F14-A1E9-538C0C7A1102}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Private|App=F:\\Jeux\\Call of Duty - Black Ops\\BlackOps.exe|Name=Call of Duty - Black Ops|" "{BF2981C8-AF26-4219-AA16-FD47C1AC6375}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Domain|App=F:\\Jeux\\Call of Duty - Black Ops\\BlackOps.exe|Name=Call of Duty - Black Ops|" "{46BFA528-B384-4926-9E95-FF3A01CCB88D}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Domain|App=F:\\Jeux\\Call of Duty - Black Ops\\BlackOps.exe|Name=Call of Duty - Black Ops|" "{976A7ACE-CAEF-44DA-8C6C-F273EF34218B}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Profile=Private|Profile=Public|App=E:\\Program Files (x86)\\Skype\\Phone\\Skype.exe|Name=Skype|" "{F68561E2-AA6D-4A81-A75A-907B8E9DF8C4}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Profile=Private|Profile=Public|App=E:\\Program Files (x86)\\Skype\\Phone\\Skype.exe|Name=Skype|" "{BB360E55-8A7E-41A1-AE82-1E60CF3C8A77}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Profile=Private|Profile=Public|App=E:\\Program Files (x86)\\Skype\\Phone\\Skype.exe|Name=Skype|" "TCP Query User{A1BF6FC3-C3A7-4433-A336-23B2C1195CB2}F:\\jeux\\call of duty - black ops\\blackopsmp.exe"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Private|App=F:\\jeux\\call of duty - black ops\\blackopsmp.exe|Name=BlackOpsMP|Desc=BlackOpsMP|Defer=User|" "UDP Query User{40B75C8C-C143-4D66-B1FD-985A6C98BBC6}F:\\jeux\\call of duty - black ops\\blackopsmp.exe"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Private|App=F:\\jeux\\call of duty - black ops\\blackopsmp.exe|Name=BlackOpsMP|Desc=BlackOpsMP|Defer=User|" "{A9491821-FAD3-4397-B3CB-14B99B573052}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Domain|LPort=2177|App=%SystemRoot%\\system32\\svchost.exe|Svc=Qwave|Name=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-271|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-272|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-270|" "{FC19721B-13CA-4D35-9856-4F30898A7C0D}"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=17|Profile=Domain|RPort=2177|App=%SystemRoot%\\system32\\svchost.exe|Svc=Qwave|Name=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-273|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-274|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-270|" "{5142794C-5780-47EB-8819-73F973F3C278}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Domain|LPort=2177|App=%SystemRoot%\\system32\\svchost.exe|Svc=Qwave|Name=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-275|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-276|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-270|" "{574CB5A1-002B-47F1-9BD4-4F06937795A3}"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|Profile=Domain|RPort=2177|App=%SystemRoot%\\system32\\svchost.exe|Svc=Qwave|Name=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-277|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-278|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-270|" "{C0615268-1AF7-44DD-A05B-08382561E8F8}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Domain|LPort=2869|App=System|Name=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-283|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-284|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-270|" "{1EED3F44-D3B2-4F7A-8C5F-65E74A33E524}"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|Profile=Domain|App=System|Name=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-285|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-286|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-270|" "{84465463-C566-4D3B-9D8A-237255FC5E5D}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Domain|LPort=10243|App=System|Name=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-287|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-288|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-270|" "{53076E1F-919C-4421-A8A4-A2660956CBFA}"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|Profile=Domain|RPort=10243|App=System|Name=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-289|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-290|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-270|" "{3F60EE79-165A-4737-9E13-7D4FA9452DA3}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Private|Profile=Public|LPort=2177|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=Qwave|Name=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-271|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-272|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-270|" "{7FE30A34-3978-4C53-8454-643CFDEE9F92}"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=17|Profile=Private|Profile=Public|RPort=2177|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=Qwave|Name=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-273|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-274|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-270|" "{1A522D3F-5EE9-4A65-8CFD-C0FD33C95A13}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Private|Profile=Public|LPort=2177|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=Qwave|Name=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-275|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-276|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-270|" "{D270F55F-84CE-43DC-84C7-F634680F794F}"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|Profile=Private|Profile=Public|RPort=2177|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=Qwave|Name=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-277|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-278|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-270|" "{8EF6EF70-9AB3-4720-A33B-D8CA5500F58B}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Domain|Profile=Private|Profile=Public|LPort=1900|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=ssdpsrv|Name=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-279|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-280|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-270|" "{922D7AE0-E418-44BC-AF1D-92D1CF931F71}"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=17|Profile=Domain|Profile=Private|Profile=Public|RPort=1900|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=ssdpsrv|Name=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-281|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-282|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-270|" "{53B44827-F008-4D41-AA18-65CDA632718E}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Private|Profile=Public|LPort=2869|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-283|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-284|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-270|" "{82EA7623-B672-4415-B984-7B99C6749AF8}"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|Profile=Private|Profile=Public|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-285|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-286|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-270|" "{39808AD8-C5CD-4FCF-A923-FEDE65DC4542}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Private|Profile=Public|LPort=10243|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-287|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-288|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-270|" "{EEF1A672-700F-4A7A-B315-54270A87AF9C}"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|Profile=Private|Profile=Public|RPort=10243|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-289|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-290|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-270|" "{41CA45E4-1323-44D1-ACAA-B10277E9D867}"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|Profile=Domain|Profile=Private|Profile=Public|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=upnphost|Name=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-299|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-300|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-270|" "{0A6BD1B2-7875-4147-9449-DDB72CABCB93}"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=17|Profile=Domain|RPort=1900|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=ssdpsrv|Name=Synchronisation sans fil Zune (SSDP sortant)|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-305|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-301|" "{6BE26E4E-72BA-463A-AFFE-F66B4A216AD4}"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=6|Profile=Domain|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=upnphost|Name=Synchronisation sans fil Zune (UPnPHost sortant)|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-311|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-301|" "TCP Query User{5C073364-C688-496E-AD2C-1334258FB330}E:\\program files (x86)\\zune\\zune.exe"="v2.10|Action=Block|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=E:\\program files (x86)\\zune\\zune.exe|Name=Microsoft Zune|Desc=Microsoft Zune|" "UDP Query User{BCE7C40E-6818-457D-88B1-898F67C082FD}E:\\program files (x86)\\zune\\zune.exe"="v2.10|Action=Block|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=E:\\program files (x86)\\zune\\zune.exe|Name=Microsoft Zune|Desc=Microsoft Zune|" "{17C98D2E-991B-4DB5-9627-EE6B7D3BAA8C}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Private|App=E:\\Program Files (x86)\\Microsoft Office\\Office14\\ONENOTE.EXE|Name=Microsoft OneNote|" "{01AEEB3A-5C42-416C-9C9B-C77B5D0D88FE}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Private|App=E:\\Program Files (x86)\\Microsoft Office\\Office14\\ONENOTE.EXE|Name=Microsoft OneNote|" "{FBA92D00-2412-4B3C-9599-A8C8E743728C}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|LPort=6004|App=E:\\Program Files (x86)\\Microsoft Office\\Office14\\outlook.exe|Name=Microsoft Office Outlook|" "{F369501E-0772-43C6-AA46-B73BA21CB428}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Private|App=E:\\Program Files (x86)\\Pinnacle\\Studio 14\\Programs\\RM.exe|Name=Render Manager|" "{1654AED3-3107-4417-8DE1-C236ED101DAB}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Private|App=E:\\Program Files (x86)\\Pinnacle\\Studio 14\\Programs\\RM.exe|Name=Render Manager|" "{E474F7E1-665C-400D-A8CC-F4D61F288B9E}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Private|App=E:\\Program Files (x86)\\Pinnacle\\Studio 14\\Programs\\Studio.exe|Name=Studio|" "{51A710D5-951D-4E66-90CC-C8E5FD878223}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Private|App=E:\\Program Files (x86)\\Pinnacle\\Studio 14\\Programs\\Studio.exe|Name=Studio|" "TCP Query User{D508AB91-3D2D-494C-9796-7E50CD1D651A}F:\\jeux\\call of juarez - bound in blood\\cojbibgame_x86.exe"="v2.10|Action=Block|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=F:\\jeux\\call of juarez - bound in blood\\cojbibgame_x86.exe|Name=Call of Juarez: Bound in Blood|Desc=Call of Juarez: Bound in Blood|" "UDP Query User{99732EE3-55F9-4C1C-9CBA-0F7E7BD57C1D}F:\\jeux\\call of juarez - bound in blood\\cojbibgame_x86.exe"="v2.10|Action=Block|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=F:\\jeux\\call of juarez - bound in blood\\cojbibgame_x86.exe|Name=Call of Juarez: Bound in Blood|Desc=Call of Juarez: Bound in Blood|" "{2D5F2189-9E69-4F0E-B029-4BB43ED054A8}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Profile=Domain|App=E:\\Program Files (x86)\\Skype\\Phone\\Skype.exe|Name=Skype|" "{FC573965-19A3-445C-A2BF-8EEFF082185D}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Profile=Domain|App=E:\\Program Files (x86)\\Skype\\Phone\\Skype.exe|Name=Skype|" "{8F98D107-F1E0-4C46-85BC-936275B910AA}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Profile=Domain|App=E:\\Program Files (x86)\\Skype\\Plugin Manager\\skypePM.exe|Name=Skype Extras Manager|Edge=TRUE|Defer=App|" "{7FBA7385-BCE3-4FF7-BBC2-C05AF1977BE7}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|RA4=LocalSubnet|RA6=LocalSubnet|App=C:\\Program Files (x86)\\ma-config.com\\maconfservice.exe|Name=maconfservice|" "{C83FD172-5183-4AA4-A066-140EC5854140}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|RA4=LocalSubnet|RA6=LocalSubnet|App=C:\\Program Files (x86)\\ma-config.com\\maconfservice.exe|Name=maconfservice|" "{2201CD01-6C5B-4CD6-8291-182407C4A034}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|App=e:\\Program Files (x86)\\uTorrent\\uTorrent.exe|Name=µTorrent (TCP-In)|Desc=Allow µTorrent network traffic with Edge Traversal|Edge=TRUE|" "{1A1A6637-AB68-4F1F-9A45-2680FEDD3D8A}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|App=e:\\Program Files (x86)\\uTorrent\\uTorrent.exe|Name=µTorrent (UDP-In)|Desc=Allow µTorrent network traffic with Edge Traversal|Edge=TRUE|" "{387524BA-AEEE-4411-BC8C-F9F7F519AB96}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Domain|LPort=1900|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=ssdpsrv|Name=Synchronisation sans fil Zune (SSDP entrant)|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-303|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-301|" "{ECC7389E-FAD4-4AA5-9AEA-06AF1C758E44}"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=17|Profile=Domain|RPort=1900|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=ssdpsrv|Name=Synchronisation sans fil Zune (SSDP sortant)|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-305|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-301|" "{5A1904A8-60F6-4B90-838E-BAC14E5DEFB0}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Domain|LPort=2869|App=System|Name=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-306|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-307|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-301|" "{8805F8FE-392D-4D63-9B7B-BCD1FE15A3F0}"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=6|Profile=Domain|App=System|Name=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-308|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-309|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-301|" "{619421A9-A980-47F7-AC6B-1A06D51BA4D7}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Private|Profile=Public|LPort=2869|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=Synchronisation sans fil Zune (UPnP entrant)|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-307|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-301|" "{33F8008E-87B0-4868-A74E-3C17AF2D8914}"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|Profile=Private|Profile=Public|RA4=LocalSubnet|RA6=LocalSubnet|App=System|Name=Synchronisation sans fil Zune (UPnP sortant)|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-309|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-301|" "{26EEDACB-43EB-4F37-99A8-FFED3AB508A1}"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=6|Profile=Domain|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=upnphost|Name=Synchronisation sans fil Zune (UPnPHost sortant)|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-311|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-301|" "{67F05A61-EEA6-404C-8681-7D12D4B9BF0B}"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=6|Profile=Domain|App=%SystemRoot%\\system32\\wudfhost.exe|Name=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-312|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-313|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-301|" "{6CC27F55-DCB2-4E9D-8F7C-DDFBCB69DD5A}"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|Profile=Private|Profile=Public|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\wudfhost.exe|Name=Synchronisation sans fil Zune (TCP sortant)|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-313|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-301|" "{0F88364F-E7F4-437B-A973-46D5871224A8}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Profile=Private|Profile=Public|App=E:\\Program Files (x86)\\Skype\\Phone\\Skype.exe|Name=Skype|" "{14640148-7C40-4FD7-B3EC-8B32B48B99A4}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Profile=Private|Profile=Public|App=E:\\Program Files (x86)\\Skype\\Phone\\Skype.exe|Name=Skype|" "{271339BB-1143-4ABB-A691-EACF15633859}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Profile=Private|Profile=Public|App=E:\\Program Files (x86)\\Skype\\Plugin Manager\\skypePM.exe|Name=Skype Extras Manager|Edge=TRUE|Defer=App|" "{4E5ED958-F5F3-491F-BAA3-BC659747E05A}"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=6|Profile=Private|Profile=Public|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=upnphost|Name=Synchronisation sans fil Zune (UPnPHost sortant)|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-311|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-301|" "{8E3AEA7B-00F7-4395-931D-D4E1B70B53ED}"="v2.10|Action=Allow|Active=FALSE|Dir=Out|Protocol=17|Profile=Private|Profile=Public|RPort=1900|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=ssdpsrv|Name=Synchronisation sans fil Zune (SSDP sortant)|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-305|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-301|" "{288DF037-C213-4247-94BE-F951E10C80B0}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Private|Profile=Public|LPort=1900|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\\system32\\svchost.exe|Svc=ssdpsrv|Name=Synchronisation sans fil Zune (SSDP entrant)|Desc=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-303|EmbedCtxt=@E:\\Program Files (x86)\\Zune\\zuneresources.dll,-301|" "{D963E841-9319-48B4-B29B-078FA67F4CC8}"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=6|App=%SystemRoot%\\system32\\svchost.exe|Svc=RapiMgr|Name=@%systemroot%\\WindowsMobile\\wmdcBase.exe,-4016|Desc=@%systemroot%\\WindowsMobile\\wmdcBase.exe,-14016|EmbedCtxt=@%systemroot%\\WindowsMobile\\wmdcBase.exe,-4014|" "{DE26AED6-FD72-48B4-BFBF-9CDF4AC8C26F}"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=17|App=%SystemRoot%\\system32\\svchost.exe|Svc=RapiMgr|Name=@%systemroot%\\WindowsMobile\\wmdcBase.exe,-4016|Desc=@%systemroot%\\WindowsMobile\\wmdcBase.exe,-14016|EmbedCtxt=@%systemroot%\\WindowsMobile\\wmdcBase.exe,-4014|" "{F8E73D52-42A5-481B-9D2B-75635999A7A1}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|LA4=127.0.0.1|App=%SystemRoot%\\system32\\svchost.exe|Svc=WcesComm|Name=@%systemroot%\\WindowsMobile\\wmdcBase.exe,-4002|Desc=@%systemroot%\\WindowsMobile\\wmdcBase.exe,-14002|EmbedCtxt=@%systemroot%\\WindowsMobile\\wmdcBase.exe,-4014|" "{746EB986-B4CC-403B-A8C7-322057F8B2FB}"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=6|App=%SystemRoot%\\system32\\svchost.exe|Svc=WcesComm|Name=@%systemroot%\\WindowsMobile\\wmdcBase.exe,-4016|Desc=@%systemroot%\\WindowsMobile\\wmdcBase.exe,-14016|EmbedCtxt=@%systemroot%\\WindowsMobile\\wmdcBase.exe,-4014|" "{FF8A861D-0CC3-46A0-A892-62EBCDA7FC9F}"="v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=17|App=%SystemRoot%\\system32\\svchost.exe|Svc=WcesComm|Name=@%systemroot%\\WindowsMobile\\wmdcBase.exe,-4016|Desc=@%systemroot%\\WindowsMobile\\wmdcBase.exe,-14016|EmbedCtxt=@%systemroot%\\WindowsMobile\\wmdcBase.exe,-4014|" "TCP Query User{FBAD6FCE-5D3D-4968-911E-DD795B4F4987}E:\\program files (x86)\\hobbyist software\\vlc setup helper\\mdnsresponder.exe"="v2.10|Action=Block|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=E:\\program files (x86)\\hobbyist software\\vlc setup helper\\mdnsresponder.exe|Name=Bonjour Service|Desc=Bonjour Service|" "UDP Query User{E472FA61-801C-4523-B28F-530D40BCA55E}E:\\program files (x86)\\hobbyist software\\vlc setup helper\\mdnsresponder.exe"="v2.10|Action=Block|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=E:\\program files (x86)\\hobbyist software\\vlc setup helper\\mdnsresponder.exe|Name=Bonjour Service|Desc=Bonjour Service|" "{C46FDB0D-ACE1-41C2-9A9D-4F53125D837F}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|RA4=172.16.255.0/255.255.255.0|RA4=192.168.1.0/255.255.255.0|App=C:\\Program Files (x86)\\SFR\\Media Center\\httpd\\httpd.exe|Name=Serveur de partage Media Center (Player SFR)|" "{ABC18731-4A96-44F1-BE7A-C9687FA12AF8}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|RA4=172.16.255.0/255.255.255.0|RA4=192.168.1.0/255.255.255.0|App=C:\\Program Files (x86)\\SFR\\Media Center\\httpd\\httpd.exe|Name=Serveur de partage Media Center (Player SFR)|" "{521A2F91-4349-456C-BABC-8D1B1B1D71D7}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=F:\\Jeux\\Homefront\\Binaries\\HOMEFRONT.exe|Name=Homefront Game|" "{5FF795F8-67AE-42E8-85DF-E9D5E31801F8}"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=F:\\Jeux\\Homefront\\Binaries\\HOMEFRONT.exe|Name=Homefront Game|" "{6D756F42-9BF6-4EDB-9543-036780B418A5}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Domain|App=F:\\Jeux\\Homefront\\Binaries\\HOMEFRONT.exe|Name=Homefront Game|" "{252084CA-B353-4CD5-9291-B19A106F0362}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Domain|App=F:\\Jeux\\Homefront\\Binaries\\HOMEFRONT.exe|Name=Homefront Game|" "{55287748-E546-448C-9BBE-B347073FC85A}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Domain|App=F:\\Jeux\\Crysis 2\\bin32\\Crysis2.exe|Name=Crysis2.exe|" "{6A604236-DC27-40E5-98D8-F099E6E33DEE}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Domain|App=F:\\Jeux\\Crysis 2\\bin32\\Crysis2.exe|Name=Crysis2.exe|" "{B46A2D08-1B8B-4B68-AAF4-37C000B94A0F}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Domain|App=F:\\Jeux\\Crysis 2\\bin32\\Crysis2Launcher.exe|Name=Crysis2Launcher.exe|" "{F28F4AEE-3A38-430C-8264-754C8604AD21}"="v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Domain|App=F:\\Jeux\\Crysis 2\\bin32\\Crysis2Launcher.exe|Name=Crysis2Launcher.exe|" "TCP Query User{3FE348E7-DEB2-45B1-95EB-175C70FD52EA}F:\\jeux\\crysis 2\\bin32\\crysis2.exe"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=F:\\jeux\\crysis 2\\bin32\\crysis2.exe|Name=Crysis2|Desc=Crysis2|Defer=User|" "UDP Query User{02E47152-392D-46E7-A991-AE9633D51F43}F:\\jeux\\crysis 2\\bin32\\crysis2.exe"="v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=F:\\jeux\\crysis 2\\bin32\\crysis2.exe|Name=Crysis2|Desc=Crysis2|Defer=User|" "TCP Query User{1738CC4F-33EC-4BBC-B446-773F2BA8F1A7}F:\\jeux\\shift 2 unleashed\\shift2u.exe"="v2.10|Action=Block|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=F:\\jeux\\shift 2 unleashed\\shift2u.exe|Name=SHIFT 2 UNLEASHED™|Desc=SHIFT 2 UNLEASHED™|" "UDP Query User{1500E080-DD15-4BD6-B552-229CB70155DE}F:\\jeux\\shift 2 unleashed\\shift2u.exe"="v2.10|Action=Block|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=F:\\jeux\\shift 2 unleashed\\shift2u.exe|Name=SHIFT 2 UNLEASHED™|Desc=SHIFT 2 UNLEASHED™|" Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "C:\\Users\\Fab\\AppData\\Roaming\\csrss.exe"="C:\\Users\\Fab\\AppData\\Roaming\\csrss.exe:*:Enabled:Windows Messanger" "C:\\Users\\Fab\\AppData\\Local\\Temp\\15081.exe"="C:\\Users\\Fab\\AppData\\Local\\Temp\\15081.exe:*:Enabled:Windows Messanger" "C:\\Users\\Fab\\AppData\\Local\\Temp\\7706.exe"="C:\\Users\\Fab\\AppData\\Local\\Temp\\7706.exe:*:Enabled:Windows Messanger" Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "C:\\Users\\Fab\\AppData\\Local\\Temp\\15081.exe"="C:\\Users\\Fab\\AppData\\Local\\Temp\\15081.exe:*:Enabled:Windows Messanger" "C:\\Users\\Fab\\AppData\\Local\\Temp\\7706.exe"="C:\\Users\\Fab\\AppData\\Local\\Temp\\7706.exe:*:Enabled:Windows Messanger" Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "C:\\Users\\Fab\\AppData\\Local\\Temp\\7706.exe"="C:\\Users\\Fab\\AppData\\Local\\Temp\\7706.exe:*:Enabled:Windows Messanger" Windows Registry Editor Version 5.00 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c52b28ce-05f1-11e0-a338-001e8c45677a}] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c52b28ce-05f1-11e0-a338-001e8c45677a}\shell] @="AutoRun" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c52b28ce-05f1-11e0-a338-001e8c45677a}\shell\Autoplay] "MUIVerb"="@shell32.dll,-8507" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c52b28ce-05f1-11e0-a338-001e8c45677a}\shell\Autoplay\DropTarget] "CLSID"="{F26A669A-BCBB-4E37-ABF9-7325DA15F931}" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c52b28ce-05f1-11e0-a338-001e8c45677a}\shell\AutoRun] @="Installer ou exécuter un programme depuis son support" "SetWorkingDirectoryFromTarget"="" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c52b28ce-05f1-11e0-a338-001e8c45677a}\shell\AutoRun\command] @="J:\\Startme.exe" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c52b28ce-05f1-11e0-a338-001e8c45677a}\_Autorun] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c52b28ce-05f1-11e0-a338-001e8c45677a}\_Autorun\DefaultIcon] @="J:\\Startme.exe" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c52b28ce-05f1-11e0-a338-001e8c45677a}\_Autorun\DefaultLabel] @="Sony Ericsson PC Companion" Windows Registry Editor Version 5.00 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c52b297c-05f1-11e0-a338-001e8c45677a}] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c52b297c-05f1-11e0-a338-001e8c45677a}\shell] @="AutoRun" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c52b297c-05f1-11e0-a338-001e8c45677a}\shell\Autoplay] "MUIVerb"="@shell32.dll,-8507" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c52b297c-05f1-11e0-a338-001e8c45677a}\shell\Autoplay\DropTarget] "CLSID"="{F26A669A-BCBB-4E37-ABF9-7325DA15F931}" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c52b297c-05f1-11e0-a338-001e8c45677a}\shell\AutoRun] @="Installer ou exécuter un programme depuis son support" "SetWorkingDirectoryFromTarget"="" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c52b297c-05f1-11e0-a338-001e8c45677a}\shell\AutoRun\command] @="J:\\Startme.exe" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c52b297c-05f1-11e0-a338-001e8c45677a}\_Autorun] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c52b297c-05f1-11e0-a338-001e8c45677a}\_Autorun\DefaultIcon] @="J:\\Startme.exe" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c52b297c-05f1-11e0-a338-001e8c45677a}\_Autorun\DefaultLabel] @="Sony Ericsson PC Companion" Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_14637941] "NextInstance"=dword:00000001 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_14637941\0000] "Service"="14637941" "Legacy"=dword:00000001 "ConfigFlags"=dword:00000000 "Class"="LegacyDriver" "ClassGUID"="{8ECC055D-047F-11D1-A537-0000F8753ED1}" "DeviceDesc"="14637941" "Capabilities"=dword:00000000 Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_14637942] "NextInstance"=dword:00000001 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_14637942\0000] "Service"="14637942" "Legacy"=dword:00000001 "ConfigFlags"=dword:00000000 "Class"="LegacyDriver" "ClassGUID"="{8ECC055D-047F-11D1-A537-0000F8753ED1}" "DeviceDesc"="14637942 Boot Guard Driver" "Capabilities"=dword:00000000 merci pour l'aide
  7. Bebos74
    bonjour, merci pour l'aide voila le log d'AD R: ======= RAPPORT D'AD-REMOVER 2.0.0.2,G | UNIQUEMENT XP/VISTA/7 ======= Mis à jour par TeamXscript le 12/04/11 Contact: AdRemover[DOT]contact[AT]gmail[DOT]com Site web: http://www.teamxscript.org C:\Program Files (x86)\Ad-Remover\main.exe (CLEAN [1]) -> Lancé à 17:49:50 le 18/04/2011, Mode normal Microsoft Windows 7 Édition Intégrale (X64) Fab@PCDEFAB (System manufacturer P5KC) ============== ACTION(S) ============== Dossier supprimé: C:\Users\Fab\AppData\LocalLow\PriceGong (!) -- Fichiers temporaires supprimés. Clé supprimée: HKLM\Software\Trymedia Systems Clé supprimée: HKCU\Software\AppDataLow\Software\PriceGong ============== SCAN ADDITIONNEL ============== **** Internet Explorer Version [9.0.8112.16421] **** HKCU_Main|Default_Page_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome HKCU_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKCU_Main|Search bar - hxxp://go.microsoft.com/fwlink/?linkid=54896 HKCU_Main|Start Page - hxxp://fr.msn.com/ HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896 HKLM_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKLM_Main|Search bar - hxxp://search.msn.com/spbasic.htm HKLM_Main|Search Page - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKLM_Main|Start Page - hxxp://fr.msn.com/ HKCU_Toolbar\WebBrowser|{B80F591E-FE9A-46CF-A13E-180377240586} (x) HKLM_Toolbar|{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} (E:\Program Files (x86)\Avast 5\aswWebRepIE.dll) HKLM_ElevationPolicy\{07d873dc-b9b9-44f5-af0b-fb59fa54fb7a} - C:\Windows\SysWOW64\wpcer.exe (x) HKLM_ElevationPolicy\{0a402d70-1f10-4ae7-bec9-286a98240695} - C:\Windows\SysWOW64\winfxdocobj.exe (x) HKLM_ElevationPolicy\{3B9A6E32-36C9-4946-B78C-3F58E3785EC1} - C:\Program Files (x86)\Java\jre6\bin\unpack200.exe (Oracle) HKLM_ElevationPolicy\{44D1B085-E495-4b5f-9EE6-34795C46E7E7} - C:\Program Files (x86)\Java\jre6\bin\jp2launcher.exe (Oracle) HKLM_ElevationPolicy\{5852F5ED-8BF4-11D4-A245-0080C6F74284} - C:\Program Files (x86)\Java\jre6\bin\javaws.exe (Oracle) HKLM_ElevationPolicy\{70f641fd-9ffc-4d5b-a4dc-962af4ed7999} - C:\Program Files (x86)\Internet Explorer\iedw.exe (x) HKLM_ElevationPolicy\{B43A0C1E-B63F-4691-B68F-CD807A45DA01} - C:\Windows\system32\TSWbPrxy.exe (x) HKLM_ElevationPolicy\{C8FE2181-CAE7-49EE-9B04-DB7EB4DA544A} - C:\Program Files (x86)\Java\jre6\bin\ssvagent.exe (Oracle) HKLM_Extensions\{85d1f590-48f4-11d9-9669-0800200c9a66} - "?" (?) HKLM_Extensions\{DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - "?" (?) BHO\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - "avast! WebRep" (E:\Program Files (x86)\Avast 5\aswWebRepIE.dll) ======================================== C:\Program Files (x86)\Ad-Remover\Quarantine: 28 Fichier(s) C:\Program Files (x86)\Ad-Remover\Backup: 14 Fichier(s) C:\Ad-Report-CLEAN[1].txt - 18/04/2011 17:49:55 (2906 Octet(s)) Fin à: 17:50:38, 18/04/2011 ============== E.O.F ==============
  8. Bebos74
    Bonsoir a tous, nouveau sur ce forum pour essayer de me depatouiller de ma pitite misère. HijackThis me met plein de croix rouge a propos de svchost.exe. Apparemment, vous avez l'air de dire qu'il devient un peu obsolète, c'est pourquoi j'ai telechargé ZHPDiag et je vous joint le log. En vous remerciant d'avance pour votre soutien. NB: scanne complet de MalwareByte: RAS Rapport de ZHPDiag v1.27.1902 par Nicolas Coolman, Update du 16/04/2011 Run by Fab at 16/04/2011 23:35:01 Web site : ZHPDiag Outil de diagnostic ---\\ Web Browser MSIE: Internet Explorer v9.0.8112.16421 (Defaut) ---\\ System Information Windows 7 Ultimate Edition, 64-bit (Build 7600) Processor: Intel64 Family 6 Model 15 Stepping 11, GenuineIntel Operating System: 64 Bits Boot mode: Normal (Normal boot) Total RAM: 3327 MB (45% free) System Restore: Activé (Enable) System drive C: has 33 GB (41%) free of 80 GB ---\\ Logged in mode Computer Name: PCDEFAB User Name: Fab All Users Names: HomeGroupUser$, Fab, Administrateur, Unselected Option: O45,O61,O62,O65,O66,O82 Logged in as Administrator ---\\ Environnement Variables %AppData%=C:\Users\Fab\AppData\Roaming %LocalAppData%=C:\Users\Fab\AppData\Local %StartMenu%=C:\Users\Fab\AppData\Roaming\Microsoft\Windows\Start Menu ---\\ DOS/Devices C:\ Hard drive, Flash drive, Thumb drive (Free 33 Go of 80 Go) D:\ Hard drive, Flash drive, Thumb drive (Free 199 Go of 466 Go) E:\ Hard drive, Flash drive, Thumb drive (Free 67 Go of 459 Go) F:\ Hard drive, Flash drive, Thumb drive (Free 40 Go of 160 Go) G:\ CD-ROM drive (Free 0 Go of 3 Go) H:\ CD-ROM drive (Not Inserted) ---\\ Security Center & Tools Informations [HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableTaskMgr: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableRegistryTools: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] NoDispScrSavPage: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified ---\\ Recherche particulière de fichiers génériques [MD5.9AAAEC8DAC27AA17B053E6352AD233AE] - (.Microsoft Corporation - Explorateur Windows.) (.31/10/2009 07:34:59.) -- C:\Windows\Explorer.exe [2870272] [MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 02:14:45.) -- C:\Windows\system32\Wininit.exe [96256] [MD5.A1236375B74EA63C75657D564890C436] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.04/04/2011 10:20:07.) -- C:\Windows\system32\wininet.dll [1126912] ---\\ Processus lancés [MD5.B24F46611FD83EF7B1FD4E15B726C95A] - (.LogMeIn Inc. - Hamachi2 Client Application.) -- E:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [1910152] [MD5.2E9A1A6555C20424FC6DCC3AF21F4D68] - (.AVAST Software - avast! Antivirus.) -- E:\Program Files (x86)\Avast 5\AvastUI.exe [3451496] [MD5.904E13BA41AF2E353A32CF351CA53639] - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe [748336] [MD5.C4CA7416A6DF6D95075F81D9E3B41AD1] - (.Trend Micro Inc. - HijackThis.) -- E:\Program Files\HijackThis\HijackThis.exe [396288] [MD5.D378BFFB70923139D6A4F546864AA61C] - (.Microsoft Corporation - Bloc-notes.) -- C:\Windows\SysWOW64\NOTEPAD.EXE [179712] [MD5.4CEC4B72C5B255EC2F7C54CD03554540] - (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- E:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe [963976] [MD5.0521F19114CA0ABB8AF7523B83B87F85] - (.Nicolas Coolman - Diagnostic Tool.) -- e:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [643584] ---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) P2 - FPN: [HKLM] [@microsoft.com/OfficeAuthz,version=14.0] - (.Microsoft Corporation - Office Authorization plug-in for NPAPI browsers.) -- C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.dll ---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = SFR : Téléphone portable, mobile, forfaits portables, ADSL R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Search Microsoft.com R0 - HKUS\S-1-5-21-1010230352-2082133306-494002025-1001\Software\Microsoft\Internet Explorer\Main,Start Page = SFR : Téléphone portable, mobile, forfaits portables, ADSL R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Search Microsoft.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Search Microsoft.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Search Microsoft.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Search Microsoft.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R1 - HKUS\S-1-5-21-1010230352-2082133306-494002025-1001\Software\Microsoft\Internet Explorer\Main,Search Page = Search Microsoft.com R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (9.00.8112.16421 (WIN7_IE9_RTM.110308-0330)) -- C:\Windows\System32\ieframe.dll R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1 ---\\ Internet Explorer, Proxy Management (R5) R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ---\\ ---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2) F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe, F2 - REG:system.ini: VMApplet=C:\WINDOWS\system32\SystemPropertiesPerformance.exe ---\\ Browser Helper Objects de navigateur (O2) O2 - BHO: avast! WebRep [64Bits] - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} . (.Pas de propriétaire - avast! WebRep Plugin.) -- E:\Program Files (x86)\Avast 5\aswWebRepIE64.dll O2 - BHO: Windows Live ID Sign-in Helper [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: URLRedirectionBHO [64Bits] - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL ---\\ Internet Explorer Toolbars (O3) O3 - Toolbar: avast! WebRep [64Bits] - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} . (.Pas de propriétaire - avast! WebRep Plugin.) -- E:\Program Files (x86)\Avast 5\aswWebRepIE64.dll ---\\ ---\\ Applications démarrées par registre & par dossier (O4) O4 - HKLM\..\Run: [Windows Mobile-based device management] . (.Microsoft Corporation - Gestionnaire pour appareils Windows Mobile.) -- C:\Windows\WindowsMobile\wmdcBase.exe O4 - HKLM\..\Wow6432Node\Run: [avast5] . (.AVAST Software - avast! Antivirus.) -- E:\Program Files (x86)\Avast 5\avastUI.exe O4 - HKLM\..\Wow6432Node\Run: [startCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe O4 - HKLM\..\Wow6432Node\Run: [LogMeIn Hamachi Ui] . (.LogMeIn Inc. - Hamachi2 Client Application.) -- E:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe O4 - HKUS\S-1-5-19\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe O4 - HKUS\S-1-5-20\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (.not file.) O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (.not file.) ---\\ ---\\ Autres liens utilisateurs (O4) O4 - Global Startup: C:\Users\Fab\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - Global Startup: C:\Users\Fab\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - Global Startup: C:\Users\Fab\Desktop\Charger le Media Center.lnk . (.SFR.) -- C:\Program Files (x86)\SFR\Media Center\MediaCenter.exe O4 - Global Startup: C:\Users\Fab\Desktop\Governor of Poker 2 Premium Edition.lnk . (...) -- F:\Jeux\Governor of Poker 2 PE\GovernorofPoker2_PE_Alawar.exe O4 - Global Startup: C:\Users\Fab\Desktop\MP Manager.lnk . (.MPMAN.) -- E:\Program Files (x86)\MP Manager\MP Manager.exe O4 - Global Startup: C:\Users\Fab\Desktop\Ordinateur.lnk - Clé orpheline O4 - Global Startup: C:\Users\Fab\Desktop\Steam.lnk . (.Valve Corporation.) -- E:\Program Files (x86)\Steam\Steam.exe O4 - Global Startup: C:\Users\Fab\Desktop\Téléchargement.lnk . (...) -- C:\Users\Fab\Downloads O4 - Global Startup: C:\Users\Fab\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\123envoi.lnk . (.Over-Link.) -- E:\Program Files (x86)\123envoi\123envoi.exe O4 - Global Startup: C:\Users\Fab\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Driver Cleaner 3.lnk . (...) -- E:\Program Files (x86)\Driver Cleaner\DCleaner.exe O4 - Global Startup: C:\Users\Fab\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Easy Audio Cutter.lnk . (.Koyote Soft.) -- E:\Program Files (x86)\Free Audio Pack\Easy Audio Cutter\AudioCutter.exe O4 - Global Startup: C:\Users\Fab\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Free CD Ripper.lnk . (.Koyote Soft.) -- E:\Program Files (x86)\Free Audio Pack\Free CD Ripper\FreeCDRipper.exe O4 - Global Startup: C:\Users\Fab\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Free Mp3 Wma Converter.lnk . (.Koyote Soft.) -- E:\Program Files (x86)\Free Audio Pack\FreeConverter\FreeConverter.exe O4 - Global Startup: C:\Users\Fab\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - Global Startup: C:\Users\Fab\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Microsoft Outlook.lnk . (.Microsoft Corporation.) -- E:\Program Files (x86)\Microsoft Office\Office14\OUTLOOK.EXE O4 - Global Startup: C:\Users\Fab\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Picasa 3.lnk . (.Google Inc..) -- E:\Program Files (x86)\Picasa3\Picasa3.exe O4 - Global Startup: C:\Users\Fab\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Spybot - Search & Destroy.lnk . (.Safer Networking Limited.) -- E:\Program Files (x86)\Spybot - Search & Destroy\SpybotSD.exe O4 - Global Startup: C:\Users\Fab\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\µTorrent.lnk . (.BitTorrent, Inc..) -- E:\Program Files (x86)\uTorrent\uTorrent.exe ---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8) O8 - Extra context menu item: Add to Google Photos Screensa&ver . (.Google Inc. - Google Photos Screensaver.) -- C:\Windows\system32\GPhotos.scr O8 - Extra context menu item: E&xport to Microsoft Excel . (.Microsoft Corporation - Microsoft Excel.) -- E:\PROGRA~2\MICROS~2\Office14\EXCEL.exe O8 - Extra context menu item: E&xporter vers Microsoft Excel - (.not file.) - C:\PROGRA~2\MICROS~3\Office12\EXCEL.exe O8 - Extra context menu item: Se&nd to OneNote . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- E:\PROGRA~2\MICROS~2\Office14\ONBttnIE.dll ---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9) O9 - Extra button: Se&nd to OneNote [64Bits] - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll O9 - Extra button: OneNote Lin&ked Notes [64Bits] - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\PROGRA~1\MICROS~2\Office14\ONBTTN~1.dll ---\\ Winsock hijacker (Layered Service Provider) (O10) O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corporation - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL ---\\ Objets ActiveX (Downloaded Program Files)(O16) O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} ("Ma-Config.com control) - http://www.ma-config.com/plugins/MaConfigx64_4_5_0_0.cab ---\\ Modification Domaine/Adresses DNS (O17) O17 - HKLM\System\CCS\Services\Tcpip\..\{F5F7A4DD-BF13-4D58-9C56-42252EAA3074}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CS1\Services\Tcpip\..\{F5F7A4DD-BF13-4D58-9C56-42252EAA3074}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CS2\Services\Tcpip\..\{F5F7A4DD-BF13-4D58-9C56-42252EAA3074}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CS3\Services\Tcpip\..\{F5F7A4DD-BF13-4D58-9C56-42252EAA3074}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 ---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21) O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. ---\\ Liste des services NT non Microsoft et non désactivés (O23) O23 - Service: C:\Windows\system32\aelupsvc.dll (AeLookupSvc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\system32\atiesrxx.exe O23 - Service: C:\Windows\system32\appidsvc.dll (AppIDSvc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: C:\Windows\system32\appinfo.dll (Appinfo) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: C:\Windows\System32\appmgmts.dll (AppMgmt) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: C:\Windows\system32\audiosrv.dll (AudioEndpointBuilder) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe O23 - Service: C:\Windows\system32\audiosrv.dll (AudioSrv) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe O23 - Service: (avast! Antivirus) . (.AVAST Software - avast! Service.) - E:\Program Files (x86)\Avast 5\AvastSvc.exe O23 - Service: C:\Windows\system32\AxInstSV.dll (AxInstSV) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: C:\Windows\system32\bdesvc.dll (BDESVC) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe O23 - Service: C:\Windows\system32\bfe.dll (BFE) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: C:\Windows\system32\qmgr.dll (BITS) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe O23 - Service: C:\Windows\system32\browser.dll (Browser) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe O23 - Service: C:\Windows\System32\bthserv.dll (bthserv) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: C:\Windows\System32\certprop.dll (CertPropSvc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: C:\Windows\system32\cryptsvc.dll (CryptSvc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: C:\Windows\system32\cscsvc.dll (CscService) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe O23 - Service: C:\Windows\system32\defragsvc.dll (defragsvc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: C:\Windows\system32\dhcpcore.dll (Dhcp) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: C:\Windows\System32\dnsapi.dll (Dnscache) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: C:\Windows\system32\dot3svc.dll (dot3svc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: C:\Windows\system32\dps.dll (DPS) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe O23 - Service: C:\Windows\system32\eapsvc.dll (EapHost) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe O23 - Service: C:\Windows\system32\wevtsvc.dll (eventlog) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe O23 - Service: C:\Windows\System32\comres.dll (EventSystem) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: (EverestDriver) . (...) - E:\Program Files (x86)\EVEREST Ultimate Edition\kerneld.amd64 O23 - Service: C:\Windows\system32\fdPHost.dll (fdPHost) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: C:\Windows\system32\fdrespub.dll (FDResPub) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: C:\Windows\system32\FntCache.dll (FontCache) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: C:\Windows\System32\gpapi.dll (gpsvc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: (gusvc) . (.Google - gusvc.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: LogMeIn Hamachi 2.0 Tunneling Engine (Hamachi2Svc) . (.LogMeIn Inc. - Hamachi2 Client Tunneling Engine.) - E:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe O23 - Service: C:\Windows\System32\hidserv.dll (hidserv) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: C:\Windows\system32\kmsvc.dll (hkmsvc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe O23 - Service: C:\Windows\System32\ListSvc.dll (HomeGroupListener) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe O23 - Service: C:\Windows\System32\provsvc.dll (HomeGroupProvider) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe O23 - Service: C:\Windows\system32\ikeext.dll (IKEEXT) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: C:\Windows\system32\IPBusEnum.dll (IPBusEnum) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: (iphlpsvc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe O23 - Service: (KMService) . (...) - C:\Windows\system32\srvany.exe O23 - Service: C:\Windows\System32\comres.dll (KtmRm) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe O23 - Service: C:\Windows\system32\srvsvc.dll (LanmanServer) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: C:\Windows\system32\wkssvc.dll (LanmanWorkstation) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe O23 - Service: C:\Windows\system32\lltdres.dll (lltdsvc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe O23 - Service: C:\Windows\system32\lmhsvc.dll (lmhosts) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: (maconfservice) . (.CybelSoft - Service de détection matériel.) - C:\Program Files (x86)\ma-config.com\maconfservice.exe O23 - Service: C:\Windows\ehome\ehres.dll (Mcx2Svc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: (MEMSWEEP2) . (.Sophos Plc - Memsweep kernel driver.) - C:\Windows\system32\CC09.tmp O23 - Service: C:\Windows\system32\mmcss.dll (MMCSS) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: C:\Windows\system32\FirewallAPI.dll (MpsSvc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: C:\Windows\system32\iscsidsc.dll (MSiSCSI) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: C:\Windows\system32\qagentrt.dll (napagent) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe O23 - Service: C:\Windows\system32\netman.dll (Netman) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe O23 - Service: C:\Windows\system32\netprofm.dll (netprofm) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe O23 - Service: C:\Windows\System32\nlasvc.dll (NlaSvc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe O23 - Service: (NMSAccess) . (...) - e:\Program Files (x86)\CDBurnerXP\NMSAccessU.exe O23 - Service: C:\Windows\system32\nsisvc.dll (nsi) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: C:\Windows\system32\pnrpsvc.dll (p2pimsvc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe O23 - Service: C:\Windows\system32\p2psvc.dll (p2psvc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe O23 - Service: C:\Windows\system32\pcasvc.dll (PcaSvc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: C:\Windows\system32\peerdistsvc.dll (PeerDistSvc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe O23 - Service: C:\Windows\system32\pla.dll (pla) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe O23 - Service: C:\Windows\system32\umpnpmgr.dll (PlugPlay) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: C:\Windows\system32\pnrpauto.dll (PNRPAutoReg) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe O23 - Service: C:\Windows\system32\pnrpsvc.dll (PNRPsvc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe O23 - Service: C:\Windows\System32\polstore.dll (PolicyAgent) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: C:\Windows\system32\umpo.dll (Power) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: C:\Windows\system32\profsvc.dll (ProfSvc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: C:\Windows\system32\qwave.dll (QWAVE) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: C:\Windows\WindowsMobile\rapimgr.dll (RapiMgr) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: C:\Windows\system32\rasauto.dll (RasAuto) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe O23 - Service: C:\Windows\system32\rasmans.dll (RasMan) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe O23 - Service: C:\Windows\system32\mprdim.dll (RemoteAccess) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe O23 - Service: regsvc.dll (RemoteRegistry) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: C:\Windows\system32\RpcEpMap.dll (RpcEptMapper) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: (SBSDWSCService) . (.Safer Networking Ltd. - Spybot-S&D Security Center integration.) - E:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe O23 - Service: C:\Windows\System32\SCardSvr.dll (SCardSvr) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: C:\Windows\system32\schedsvc.dll (Schedule) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: C:\Windows\System32\certprop.dll (SCPolicySvc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: C:\Windows\system32\sdrsvc.dll (SDRSVC) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: C:\Windows\system32\seclogon.dll (seclogon) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: C:\Windows\system32\Sens.dll (SENS) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: C:\Windows\System32\sensrsvc.dll (SensrSvc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: (SessionEnv) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe O23 - Service: C:\Windows\system32\ipnathlp.dll (SharedAccess) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe O23 - Service: C:\Windows\System32\shsvcs.dll (ShellHWDetection) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe O23 - Service: (Sony Ericsson PCCompanion) . (.Avanquest Software - Sony Ericsson PCCompanion Service.) - C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Companion\PCCService.exe O23 - Service: C:\Windows\system32\sppuinotify.dll (sppuinotify) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: C:\Windows\system32\ssdpsrv.dll (SSDPSRV) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: C:\Windows\system32\sstpsvc.dll (SstpSvc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: (Steam Client Service) . (.Valve Corporation - Steam Client Service (buildbot_winslave01_s.) - C:\Program Files (x86)\Common Files\Steam\SteamService.exe O23 - Service: C:\Windows\system32\wiaservc.dll (stisvc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: C:\Windows\System32\swprv.dll (swprv) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe O23 - Service: C:\Windows\system32\sysmain.dll (SysMain) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: C:\Windows\system32\TabSvc.dll (TabletInputService) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe O23 - Service: C:\Windows\system32\tapisrv.dll (TapiSrv) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe O23 - Service: C:\Windows\system32\tbssvc.dll (TBS) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe O23 - Service: C:\Windows\System32\termsrv.dll (TermService) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe O23 - Service: C:\Windows\System32\themeservice.dll (Themes) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe O23 - Service: C:\Windows\system32\mmcss.dll (THREADORDER) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: (TrkWks) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe O23 - Service: C:\Windows\system32\umrdp.dll (UmRdpService) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe O23 - Service: C:\Windows\system32\upnphost.dll (upnphost) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: C:\Windows\system32\dwm.exe (UxSms) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe O23 - Service: C:\Windows\system32\w32time.dll (W32Time) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: C:\Windows\system32\wbiosrvc.dll (WbioSrvc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: C:\Windows\WindowsMobile\wcescomm.dll (WcesComm) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: C:\Windows\system32\wcncsvc.dll (wcncsvc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe O23 - Service: C:\Windows\system32\WcsPlugInService.dll (WcsPlugInService) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: C:\Windows\system32\wdi.dll (WdiServiceHost) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe O23 - Service: C:\Windows\system32\wdi.dll (WdiSystemHost) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe O23 - Service: C:\Windows\system32\webclnt.dll (WebClient) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: C:\Windows\system32\wecsvc.dll (Wecsvc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: C:\Windows\System32\wercplsupport.dll (wercplsupport) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe O23 - Service: C:\Windows\System32\wersvc.dll (WerSvc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe O23 - Service: C:\Program Files\Windows Defender\MsMpRes.dll (WinDefend) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe O23 - Service: C:\Windows\system32\winhttp.dll (WinHttpAutoProxySvc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: C:\Windows\system32\wbem\wmisvc.dll (Winmgmt) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: C:\Windows\system32\wsmsvc.dll (WinRM) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe O23 - Service: C:\Windows\System32\wlansvc.dll (Wlansvc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: C:\Windows\system32\wpcsvc.dll (WPCSvc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: C:\Windows\system32\wpdbusenum.dll (WPDBusEnum) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: C:\Windows\System32\wscsvc.dll (wscsvc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\System32\svchost.exe O23 - Service: C:\Windows\system32\wuaueng.dll (wuauserv) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: C:\Windows\system32\wudfsvc.dll (wudfsvc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe O23 - Service: C:\Windows\System32\wwansvc.dll (WwanSvc) . (.AdSndUisb - lkpMTaE.) - C:\Windows\system32\svchost.exe ---\\ Enumération Active Desktop & MHTML Editor (O24) O24 - Default MHTML Editor: Last - .(...) - (.not file.) ---\\ Tâches planifiées en automatique (O39) O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GlaryInitialize.job O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [MD5.923E02CA12F54B2F086DDB9C683E46E5] [APT] [GlaryInitialize] (.Glarysoft Ltd.) -- e:\Program Files (x86)\Glary Utilities\initialize.exe [MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [MD5.00000000000000000000000000000000] [APT] [Launch HTC Sync Loader] (.Pas de propriétaire.) -- E:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe (.not file.) [MD5.BEB21133A103E71CE9EC2327B52CBA39] [APT] [{26222756-C998-4BD7-8C22-3C9A809704B9}] (.Pas de propriétaire.) -- E:\Program Files (x86)\audiograbber\uninstall.exe [MD5.00000000000000000000000000000000] [APT] [{27DCF270-B16E-48B6-B829-A6737B95410A}] (.Pas de propriétaire.) -- C:\Users\Fab\Desktop\streaming-audio-recorder_214927_trial.exe (.not file.) [MD5.00000000000000000000000000000000] [APT] [{29A8CC11-AC3F-4EBA-8D59-9766EFBD8D29}] (.Pas de propriétaire.) -- C:\Users\Fab\Desktop\setup.msi" (.not file.) [MD5.AECC6A163878CEEA3EC1BF8CF9FCFF28] [APT] [{46635A86-B077-4D82-8CCE-166C40D6F02D}] (.InstallShield Software Corporation.) -- E:\Mes docs\Utilitaires\Perfection\Disk1\Setup.exe [MD5.00000000000000000000000000000000] [APT] [{4FF9E967-1B95-4A86-B320-8C8D15325D97}] (.Pas de propriétaire.) -- C:\Users\Fab\Desktop\avg_avwt_stf_g7_85_276a1438.exe (.not file.) [MD5.BEB21133A103E71CE9EC2327B52CBA39] [APT] [{6B9C9B14-6CAE-47E1-B703-1F17D0412C94}] (.Pas de propriétaire.) -- E:\Program Files (x86)\audiograbber\uninstall.exe [MD5.00000000000000000000000000000000] [APT] [{7E4FE0CA-E29A-4099-8FAD-1C3AD9C068C2}] (.Pas de propriétaire.) -- C:\Users\Fab\Desktop\streaming-audio-recorder_214927_trial.exe (.not file.) [MD5.BEB21133A103E71CE9EC2327B52CBA39] [APT] [{879D5184-C703-47DA-84AF-3BD97EF412E0}] (.Pas de propriétaire.) -- E:\Program Files (x86)\audiograbber\uninstall.exe [MD5.00000000000000000000000000000000] [APT] [{CB3ED55D-EC11-4FF6-8004-E6C4E531C855}] (.Pas de propriétaire.) -- C:\Users\Fab\AppData\Local\Temp\Temp1_ChevronWP7.RingtoneInstaller.zip\ChevronWP7.RingtoneInstaller.exe (.not file.) [MD5.00000000000000000000000000000000] [APT] [{DDA19C25-09F2-45F8-AB32-179023AE9E65}] (.Pas de propriétaire.) -- C:\Users\Fab\Desktop\setup.msi" (.not file.) [MD5.00000000000000000000000000000000] [APT] [{F4E4D740-C7AB-4B7B-872E-41AD1048D481}] (.Pas de propriétaire.) -- C:\Users\Fab\Desktop\S1.02.05\Setup.exe (.not file.) [MD5.F86569ABF39828070AE3BD359F6EFEA2] [APT] [ASUS RegRun Loader] (.ASUSTeK Computer Inc..) -- C:\Program Files (x86)\ASUS\AASP\1.01.02\AsLoader.exe ---\\ Pilotes lancés au démarrage (O41) O41 - Driver: C:\Windows\system32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys O41 - Driver: (AsIO) . (...) - C:\Windows\Syswow64\drivers\AsIO.sys O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\System32\DRIVERS\blbdrive.sys O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys O41 - Driver: C:\Windows\system32\cscsvc.dll (CSC) . (.Microsoft Corporation - Windows Client Side Caching Driver.) - C:\Windows\System32\drivers\csc.sys O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys O41 - Driver: C:\Windows\system32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\System32\DRIVERS\mssmbios.sys O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys O41 - Driver: C:\Windows\system32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys O41 - Driver: C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys O41 - Driver: C:\Windows\system32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys O41 - Driver: C:\Windows\system32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys O41 - Driver: C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys O41 - Driver: C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys O41 - Driver: C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys O41 - Driver: (Serial) . (.Microsoft Corporation - Pilote de périphérique série.) - C:\Windows\System32\DRIVERS\serial.sys O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys O41 - Driver: C:\Windows\system32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys ---\\ Logiciels installés (O42) O42 - Logiciel: 123envoi - (.Over-Link.) [HKLM][64Bits] -- {9C6B2761-F9A2-4548-8543-7CE530CE089B} O42 - Logiciel: AMD APP SDK Runtime - (.Advanced Micro Devices Inc..) [HKLM] -- {503F672D-6C84-448A-8F8F-4BC35AC83441} O42 - Logiciel: AMD Drag and Drop Transcoding - (.ATI Technologies Inc..) [HKLM] -- {6A9B5F9E-CAF3-2264-9DA0-E374F9A34279} O42 - Logiciel: ASUSUpdate - (.Pas de propriétaire.) [HKLM][64Bits] -- {587178E7-B1DF-494E-9838-FA4DD36E873C} O42 - Logiciel: ATI AVIVO64 Codecs - (.ATI Technologies Inc..) [HKLM] -- {90AB246D-A0A0-29EA-199A-4B07841E0737} O42 - Logiciel: ATI Catalyst Install Manager - (.ATI Technologies, Inc..) [HKLM] -- {AE57C044-8912-A181-A0E4-BC2DAB3A092A} O42 - Logiciel: ATI Problem Report Wizard - (.ATI Technologies.) [HKLM] -- {A9C6CA47-D937-D61D-4BD3-7CFAB7A5BA56} O42 - Logiciel: AVS Audio Converter version 6.2 - (.Online Media Technologies Ltd..) [HKLM][64Bits] -- AVS Audio Converter 6.2_is1 O42 - Logiciel: AVS Update Manager 1.0 - (.Online Media Technologies Ltd..) [HKLM][64Bits] -- AVS Update Manager_is1 O42 - Logiciel: AVS Video Converter 7 - (.Online Media Technologies Ltd..) [HKLM][64Bits] -- AVS4YOU Video Converter 7_is1 O42 - Logiciel: AVS4YOU Software Navigator 1.4 - (.Online Media Technologies Ltd..) [HKLM][64Bits] -- AVS4YOU Software Navigator_is1 O42 - Logiciel: Activision® - (.Activision.) [HKLM][64Bits] -- {3FAD68D9-1FA1-4871-9ADF-9151D969E943} O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AFF7E080-1974-45BF-9310-10DE1A1F5ED0} O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin O42 - Logiciel: Adobe Reader 9.4.3 - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-A94000000001} O42 - Logiciel: Adobe Shockwave Player 11.5 - (.Adobe Systems, Inc..) [HKLM][64Bits] -- Adobe Shockwave Player O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner O42 - Logiciel: CDBurnerXP - (.CDBurnerXP.) [HKLM][64Bits] -- {7E265513-8CDA-4631-B696-F40D983F3B07}_is1 O42 - Logiciel: CPUID CPU-Z 1.54 - (.Pas de propriétaire.) [HKLM] -- CPUID CPU-Z_is1 O42 - Logiciel: Call of Duty: Black Ops - (.Pas de propriétaire.) [HKLM][64Bits] -- Call of Duty: Black Ops_is1 O42 - Logiciel: Call of Duty: Modern Warfare 2 - (.Infinity Ward.) [HKLM][64Bits] -- Steam App 10180 O42 - Logiciel: Call of Duty: Modern Warfare 2 - Multiplayer - (.Infinity Ward.) [HKLM][64Bits] -- Steam App 10190 O42 - Logiciel: Canon IJ Network Tool - (.Pas de propriétaire.) [HKLM][64Bits] -- Canon_IJ_Network_UTILITY O42 - Logiciel: Canon MP Navigator EX 4.0 - (.Pas de propriétaire.) [HKLM][64Bits] -- MP Navigator EX 4.0 O42 - Logiciel: Canon MP495 series MP Drivers - (.Pas de propriétaire.) [HKLM] -- {1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP495_series O42 - Logiciel: Canon My Printer - (.Pas de propriétaire.) [HKLM][64Bits] -- CanonMyPrinter O42 - Logiciel: Catalyst Control Center - Branding - (.ATI.) [HKLM][64Bits] -- {6AB57823-3580-4CE0-9CF0-072E2A39460C} O42 - Logiciel: Crysis® 2 - (.Electronic Arts.) [HKLM][64Bits] -- {6033673D-2530-4587-8AD0-EB059FC263F9} O42 - Logiciel: Definition update for Microsoft Office 2010 (KB982726) - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{2CF1930D-7485-42D3-BED1-B3E2EBB1FD7F} O42 - Logiciel: Definition update for Microsoft Office 2010 (KB982726) - (.Microsoft.) [HKLM][64Bits] -- {90140000-001A-0000-0000-0000000FF1CE}_Office14.OUTLOOK_{2CF1930D-7485-42D3-BED1-B3E2EBB1FD7F} O42 - Logiciel: DiRT2 - (.Codemasters.) [HKLM][64Bits] -- {434D0820-3AA6-493A-80B9-301000028501} O42 - Logiciel: DiRT2 - (.Codemasters.) [HKLM][64Bits] -- {434D0820-3AA6-493A-80B9-301000028502} O42 - Logiciel: Disk SpeedUp 1.2.0.319 - (.Glarysoft Ltd.) [HKLM][64Bits] -- Disk SpeedUp O42 - Logiciel: Driver Cleaner 3 - (.Ruud Ketelaars.) [HKLM][64Bits] -- Driver Cleaner O42 - Logiciel: EPSON TWAIN 5 - (.Pas de propriétaire.) [HKLM][64Bits] -- {9A3EABC0-CA06-11D4-BF77-00104B130C19} O42 - Logiciel: EVEREST Ultimate Edition v5.50 - (.Lavalys, Inc..) [HKLM][64Bits] -- EVEREST Ultimate Edition_is1 O42 - Logiciel: Enregistrement utilisateur de Canon MP495 series - (.Pas de propriétaire.) [HKLM][64Bits] -- Enregistrement utilisateur de Canon MP495 series O42 - Logiciel: F1 2010 - (.Codemasters.) [HKLM][64Bits] -- GFWL_{434D0831-3E0C-4D03-A5D4-5E1000008400} O42 - Logiciel: F1 2010 - (.Codemasters.) [HKLM][64Bits] -- {434D0831-3E0C-4D03-A5D4-5E1000008400} O42 - Logiciel: F1 2010 - (.Codemasters.) [HKLM][64Bits] -- {434D0831-A4CC-401A-9E74-621000018401} O42 - Logiciel: Free Mp3 Wma Converter V 1.91 - (.Koyote Soft.) [HKLM][64Bits] -- Free Mp3 Wma Converter_is1 O42 - Logiciel: Funambol Outlook Sync Client 9.0.2 - (.Funambol.) [HKLM][64Bits] -- Funambol Outlook Sync Client O42 - Logiciel: GBoost - (.GZero.) [HKLM] -- {235B7B98-EAC3-4953-AE2C-EABCE1CD65C9}_is1 O42 - Logiciel: GIMP 2.6.6 - (.Pas de propriétaire.) [HKLM] -- WinGimp-2.0_is1 O42 - Logiciel: Glary Utilities 2.33.0.1158 - (.Glarysoft Ltd.) [HKLM][64Bits] -- Glary Utilities_is1 O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} O42 - Logiciel: Governor of Poker 2 PE 1.0 - (.Pas de propriétaire.) [HKLM][64Bits] -- Governor of Poker 2 PE 1.0 O42 - Logiciel: HDD Health v3.2 Beta - (.Pas de propriétaire.) [HKLM][64Bits] -- HDD Health_is1 O42 - Logiciel: HTC BMP USB Driver - (.HTC.) [HKLM][64Bits] -- {31A559C1-9E4D-423B-9DD3-34A6C5398752} O42 - Logiciel: JMicron JMB36X Driver - (.JMicron Technology Corp..) [HKLM][64Bits] -- {3A1B5D40-41E9-43FA-8C7B-A8667F5586EF} O42 - Logiciel: Java 6 Update 21 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83216021FF} O42 - Logiciel: LogMeIn Hamachi - (.LogMeIn, Inc..) [HKLM][64Bits] -- LogMeIn Hamachi O42 - Logiciel: LogMeIn Hamachi - (.LogMeIn, Inc..) [HKLM][64Bits] -- {491DFBAA-77EF-4B06-8676-2FC66EEE049A} O42 - Logiciel: MP Manager - (.MPMAN.) [HKLM][64Bits] -- {9B30D1C5-229F-4934-A781-DFBFB171D91D} O42 - Logiciel: MSXML 4.0 SP3 Parser (KB973685) - (.Microsoft Corporation.) [HKLM][64Bits] -- {859DFA95-E4A6-48CD-B88E-A3E483E89B44} O42 - Logiciel: MSXML 4.0 SP3 Parser - (.Microsoft Corporation.) [HKLM][64Bits] -- {196467F1-C11F-4F76-858B-5812ADC83B94} O42 - Logiciel: Ma-Config.com - (.Cybelsoft.) [HKLM][64Bits] -- {93665FB0-2A3D-47E1-AB9A-1925130924BB} O42 - Logiciel: Mafia II - (.Pas de propriétaire.) [HKLM][64Bits] -- Mafia II_is1 O42 - Logiciel: Malwarebytes' Anti-Malware - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes' Anti-Malware_is1 O42 - Logiciel: Media Go - (.Sony.) [HKLM][64Bits] -- {C6AC04F5-5916-4A02-BC36-AF5BC0A3CBD4} O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4} O42 - Logiciel: Microsoft .NET Framework 4 Client Profile FRA Language Pack - (.Microsoft Corporation.) [HKLM] -- {4B5F58F7-C7D1-3CE3-9B37-B657F0852643} O42 - Logiciel: Microsoft Games for Windows - LIVE - (.Microsoft Corporation.) [HKLM][64Bits] -- {86A4C6D9-29EE-4719-AFA1-BA3341862B83} O42 - Logiciel: Microsoft Games for Windows - LIVE Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {1FDA5A37-B22D-43FF-B582-B8964050DC13} O42 - Logiciel: Microsoft Office Access MUI (English) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-0015-0409-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Access MUI (French) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-0015-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Access Setup Metadata MUI (English) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-0117-0409-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Excel MUI (English) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-0016-0409-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Excel MUI (French) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-0016-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Groove MUI (English) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-00BA-0409-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Groove MUI (French) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-00BA-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office InfoPath MUI (English) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-0044-0409-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office InfoPath MUI (French) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-0044-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Language Pack 2010 - French/Français - (.Microsoft Corporation.) [HKLM][64Bits] -- Office14.OMUI.fr-fr O42 - Logiciel: Microsoft Office O MUI (French) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-0100-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Office 64-bit Components 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-002A-0000-1000-0000000FF1CE} O42 - Logiciel: Microsoft Office OneNote MUI (English) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-00A1-0409-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office OneNote MUI (French) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-00A1-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Outlook 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-001A-0000-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Outlook Connector - (.Microsoft Corporation.) [HKLM][64Bits] -- {95140000-007A-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Outlook MUI (English) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-001A-0409-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Outlook MUI (French) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-001A-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office PowerPoint MUI (English) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-0018-0409-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-0018-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Professional Plus 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- Office14.PROPLUS O42 - Logiciel: Microsoft Office Professional Plus 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (Arabic) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-001F-0401-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (Dutch) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-001F-0413-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (English) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-001F-0409-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (French) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-001F-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (German) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-001F-0407-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (Spanish) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-001F-0C0A-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proofing (English) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-002C-0409-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proofing (French) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-002C-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Publisher MUI (English) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-0019-0409-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Publisher MUI (French) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-0019-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office SharePoint Designer MUI (French) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-0017-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Shared 64-bit MUI (English) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-002A-0409-1000-0000000FF1CE} O42 - Logiciel: Microsoft Office Shared 64-bit MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-002A-040C-1000-0000000FF1CE} O42 - Logiciel: Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-0116-0409-1000-0000000FF1CE} O42 - Logiciel: Microsoft Office Shared MUI (English) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-006E-0409-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Shared MUI (French) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-006E-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Shared Setup Metadata MUI (English) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-0115-0409-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Word MUI (English) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-001B-0409-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Word MUI (French) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-001B-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office X MUI (French) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-0101-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Outlook 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- Office14.OUTLOOK O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} O42 - Logiciel: Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 - (.Microsoft Corporation.) [HKLM] -- {B6E3757B-5E77-3915-866A-CCFC4B8D194C} O42 - Logiciel: Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 - (.Microsoft Corporation.) [HKLM][64Bits] -- {770657D0-A123-3C07-8E44-1C83EC895118} O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable (x64) - (.Microsoft Corporation.) [HKLM] -- {071c9b48-7c32-4621-a0ac-3f809523288f} O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {7299052b-02a4-4627-81f2-1818da5d550d} O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {837b34e3-7c30-493c-8f6a-2b0f04e2912c} O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {A49F249F-0C91-497F-86DF-B2585E8E76B7} O42 - Logiciel: Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM][64Bits] -- {002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {4B6C7001-C7D6-3710-913E-5BC23FCE91E6} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 - (.Microsoft Corporation.) [HKLM][64Bits] -- {FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 - (.Microsoft Corporation.) [HKLM][64Bits] -- {820B6609-4C97-3A2B-B644-573B06A0F0CC} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 - (.Microsoft Corporation.) [HKLM][64Bits] -- {9A25302D-30C0-39D9-BD6F-21E6EC160475} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989} O42 - Logiciel: Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 - (.Microsoft Corporation.) [HKLM] -- {DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E} O42 - Logiciel: Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 - (.Microsoft Corporation.) [HKLM][64Bits] -- {196BB40D-1578-3D01-B289-BEFC77A11A1E} O42 - Logiciel: Module linguistique Microsoft .NET Framework 4 Client Profile FRA - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile FRA Language Pack O42 - Logiciel: NVIDIA GAME System Software 2.8.1 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {4F0C7CCF-5666-474B-B02E-AC514A95EC93} O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM][64Bits] -- {3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA} O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM][64Bits] -- {DEA314C4-0929-4250-BC92-98E4C105F28D} O42 - Logiciel: OpenAL - (.Pas de propriétaire.) [HKLM][64Bits] -- OpenAL O42 - Logiciel: PC Wizard 2010.1.94 - (.Laurent KUTIL & Franck DELATTRE.) [HKLM][64Bits] -- PC Wizard 2010_is1 O42 - Logiciel: PeerBlock 1.1 (r518) - (.PeerBlock, LLC.) [HKLM] -- {015C5B35-B678-451C-9AEE-821E8D69621C}_is1 O42 - Logiciel: Picasa 3 - (.Google, Inc..) [HKLM][64Bits] -- Picasa 3 O42 - Logiciel: Pilote vidéo Pinnacle - (.Pinnacle Systems.) [HKLM] -- {6DE721A5-5E89-4D74-994C-652BB3C0672E} O42 - Logiciel: Pinnacle Studio 14 - (.Pinnacle Systems.) [HKLM][64Bits] -- {AADD1C8F-D59F-4D55-A726-768C71A205A8} O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM][64Bits] -- {57752979-A1C9-4C02-856B-FBB27AC4E02C} O42 - Logiciel: SFR - Media Center - (.SFR.) [HKLM][64Bits] -- SFR_Media Center O42 - Logiciel: SHIFT 2 UNLEASHED™ - (.Electronic Arts.) [HKLM][64Bits] -- {E8C37E27-5205-4C8A-BECB-B00533045AAE} O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2160841 O42 - Logiciel: Security Update for Microsoft Office 2010 (KB2289078) - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{1D1A4F08-2F17-475B-BA72-476CE5992FEE} O42 - Logiciel: Security Update for Microsoft Office 2010 (KB2289078) - (.Microsoft.) [HKLM][64Bits] -- {90140000-001A-0000-0000-0000000FF1CE}_Office14.OUTLOOK_{1D1A4F08-2F17-475B-BA72-476CE5992FEE} O42 - Logiciel: Security Update for Microsoft Office 2010 (KB2289161) - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{F134C2C6-30B3-4169-A325-58482B4CE6FC} O42 - Logiciel: Security Update for Microsoft Office 2010 (KB2289161) - (.Microsoft.) [HKLM][64Bits] -- {90140000-001A-0000-0000-0000000FF1CE}_Office14.OUTLOOK_{F134C2C6-30B3-4169-A325-58482B4CE6FC} O42 - Logiciel: Security Update for Microsoft Publisher 2010 (KB2409055) - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{C3C277D5-36E3-4B1A-926A-175B2BC019CF} O42 - Logiciel: Security Update for Microsoft Word 2010 (KB2345000) - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{A6D422EE-1196-45EE-B9AE-6B5B64975E8B} O42 - Logiciel: Sendoid - (.Caffeinated Mind, Inc..) [HKLM][64Bits] -- com.caffeinatedmind.Sendoid O42 - Logiciel: Sendoid - (.Caffeinated Mind, Inc..) [HKLM][64Bits] -- {B031F0D7-0246-E2D0-0752-05A5C17DA1C3} O42 - Logiciel: Skype™ 5.1 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {E633D396-5188-4E9D-8F6B-BFB8BF3467E8} O42 - Logiciel: Sony Ericsson PC Companion 2.01.078 - (.Sony Ericsson.) [HKLM][64Bits] -- {F09EF8F2-0976-42C1-8D9D-8DF78337C6E3} O42 - Logiciel: Sony Ericsson Update Engine - (.Sony Ericsson Mobile Communications AB.) [HKLM][64Bits] -- Update Engine O42 - Logiciel: Sophos Anti-Rootkit 1.5.0 - (.Sophos Plc.) [HKLM][64Bits] -- Sophos-AntiRootkit O42 - Logiciel: SpeedFan (remove only) - (.Pas de propriétaire.) [HKLM][64Bits] -- SpeedFan O42 - Logiciel: Spybot - Search & Destroy - (.Safer Networking Limited.) [HKLM][64Bits] -- {B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1 O42 - Logiciel: Steam - (.Valve Corporation.) [HKLM][64Bits] -- {048298C9-A4D3-490B-9FF9-AB023A9238F3} O42 - Logiciel: Stellarium 0.10.5 - (.Pas de propriétaire.) [HKLM][64Bits] -- Stellarium_is1 O42 - Logiciel: Update for Microsoft Office 2010 (KB2202188) - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{86B7A074-265D-420C-9E1E-7A920EF0ECA7} O42 - Logiciel: Update for Microsoft Office 2010 (KB2413186) - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{556146F7-74AE-4E0A-B64F-5B8B93469F61} O42 - Logiciel: Update for Microsoft Office 2010 (KB2413186) - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{B5516874-E926-4BFD-B412-D0E70112F244} O42 - Logiciel: Update for Microsoft Office 2010 (KB2413186) - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{D6CE7280-6EE3-419A-8F47-DB111C040B1B} O42 - Logiciel: Update for Microsoft Office 2010 (KB2494150) - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{3FCFD88F-4D13-4F38-8625-ABABEA7F61EA} O42 - Logiciel: Update for Microsoft Office 2010 (KB2494150) - (.Microsoft.) [HKLM][64Bits] -- {90140000-001A-0000-0000-0000000FF1CE}_Office14.OUTLOOK_{3FCFD88F-4D13-4F38-8625-ABABEA7F61EA} O42 - Logiciel: Update for Microsoft OneNote 2010 (KB2493983) - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{309EEC22-83CE-4109-B019-BA9392FAA322} O42 - Logiciel: Update for Microsoft Outlook Social Connector (KB2289116) - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{75F91382-920C-4AE1-B9E6-FFFCEDA797E8} O42 - Logiciel: Update for Microsoft Outlook Social Connector (KB2289116) - (.Microsoft.) [HKLM][64Bits] -- {90140000-001A-0409-0000-0000000FF1CE}_Office14.PROPLUS_{E966C940-CC8C-4EC0-8D84-ED27AC20D53C} O42 - Logiciel: Usb Joypad - (.Pas de propriétaire.) [HKLM][64Bits] -- FT27B1 O42 - Logiciel: VLC Setup Helper 3.01 - (.Pas de propriétaire.) [HKLM][64Bits] -- VLC Setup Helper_is1 O42 - Logiciel: VLC media player 1.1.8 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player O42 - Logiciel: WMV9/VC-1 Video Playback - (.ATI Technologies Inc..) [HKLM] -- {DE1B48FB-0EA4-6E6F-5335-9095994CB7EB} O42 - Logiciel: WhoCrashed 3.01 - (.Resplendence Software Projects Sp..) [HKLM] -- WhoCrashed_is1 O42 - Logiciel: Windows Live ID Sign-in Assistant - (.Microsoft Corporation.) [HKLM] -- {9B48B0AC-C813-4174-9042-476A887592C7} O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM][64Bits] -- {5DD76286-9BE7-4894-A990-E905E91AC818} O42 - Logiciel: Windows Live OneCare safety scanner - (.Microsoft Corporation.) [HKLM][64Bits] -- Windows Live OneCare safety scanner O42 - Logiciel: Windows Live OneCare safety scanner - (.Microsoft Corporation.) [HKLM][64Bits] -- {FE0646A7-19D0-41B4-A2BB-2C35D644270D} O42 - Logiciel: Windows Mobile Device Updater Component - (.Microsoft Corporation.) [HKLM] -- {F2CB8C3C-9C9E-4FAB-9067-655601C5F748} O42 - Logiciel: Windows Phone Intro Video (FRA) - (.Microsoft Corporation.) [HKLM][64Bits] -- {FC8F5A19-3EFB-45A9-BD04-FE0CF4D1647C} O42 - Logiciel: Zune - (.Microsoft Corporation.) [HKLM] -- Zune O42 - Logiciel: Zune - (.Microsoft Corporation.) [HKLM] -- {7006ED29-58F2-40C3-AE87-039287AD20B6} O42 - Logiciel: Zune Language Pack (DEU) - (.Microsoft Corporation.) [HKLM] -- {BE236D9A-52EC-4A17-82DA-84B5EAD31E3E} O42 - Logiciel: Zune Language Pack (ESP) - (.Microsoft Corporation.) [HKLM] -- {6B33492E-FBBC-4EC3-8738-09E16E395A10} O42 - Logiciel: Zune Language Pack (FRA) - (.Microsoft Corporation.) [HKLM] -- {C68D33B1-0204-4EBE-BC45-A6E432B1D13A} O42 - Logiciel: Zune Language Pack (ITA) - (.Microsoft Corporation.) [HKLM] -- {C5D37FFA-7483-410B-982B-91E93FD3B7DA} O42 - Logiciel: Zune Language Pack (NLD) - (.Microsoft Corporation.) [HKLM] -- {6740BCB0-5863-47F4-80F4-44F394DE4FE2} O42 - Logiciel: Zune Language Pack (PTB) - (.Microsoft Corporation.) [HKLM] -- {07EEE598-5F21-4B57-B40B-46592625B3D9} O42 - Logiciel: Zune Language Pack (PTG) - (.Microsoft Corporation.) [HKLM] -- {5C93E291-A1CC-4E51-85C6-E194209FCDB4} O42 - Logiciel: [HKLM\Software\Enregistrement utilisateur de Canon MP495 series] - (.Pas de propriétaire.) [HKLM][64Bits] -- ESET Online Scanner O42 - Logiciel: avast! Free Antivirus - (.AVAST Software.) [HKLM][64Bits] -- avast O42 - Logiciel: runtime64 - (.immunet.) [HKLM] -- {AB79B2CD-4555-4D3F-BC37-8948598223F2} O42 - Logiciel: µTorrent - (.Pas de propriétaire.) [HKLM][64Bits] -- uTorrent ---\\ HKCU & HKLM Software Keys [HKCU\Software\7-ZIP] [HKCU\Software\ALWIL Software] [HKCU\Software\AMD] [HKCU\Software\ASUS] [HKCU\Software\ATI] [HKCU\Software\AVAST Software] [HKCU\Software\AVS4YOU] [HKCU\Software\Activision] [HKCU\Software\Adobe] [HKCU\Software\Alawar] [HKCU\Software\AppDataLow\Software\Adobe] [HKCU\Software\AppDataLow\Software\Microsoft] [HKCU\Software\AppDataLow\Software\PriceGong] [HKCU\Software\AppDataLow\Software\ThinPrint] [HKCU\Software\AppDataLow\Software] [HKCU\Software\AppDataLow] [HKCU\Software\Apple Computer, Inc.] [HKCU\Software\Apple Inc.] [HKCU\Software\Aurigma] [HKCU\Software\Big Fish Games] [HKCU\Software\BillP Studios] [HKCU\Software\BitTorrent] [HKCU\Software\BlueRippleSound] [HKCU\Software\C$1] [HKCU\Software\CDDB] [HKCU\Software\CPUID] [HKCU\Software\Canneverbe Limited] [HKCU\Software\CanonBJ] [HKCU\Software\Canon] [HKCU\Software\Caphyon] [HKCU\Software\Classes] [HKCU\Software\Clients] [HKCU\Software\Codemasters] [HKCU\Software\Crytek] [HKCU\Software\Cygnus Solutions] [HKCU\Software\DSS] [HKCU\Software\DT Soft] [HKCU\Software\DiskSoftware] [HKCU\Software\DivXNetworks] [HKCU\Software\ESET] [HKCU\Software\Electronic Arts] [HKCU\Software\F-Secure] [HKCU\Software\FreeCDRIP] [HKCU\Software\Freeware] [HKCU\Software\Funambol] [HKCU\Software\Futuremark] [HKCU\Software\GNU] [HKCU\Software\GameSpy] [HKCU\Software\GlarySoft] [HKCU\Software\Google] [HKCU\Software\HookNetwork] [HKCU\Software\IDAVLab] [HKCU\Software\IGA] [HKCU\Software\Innovative Solutions] [HKCU\Software\Intel] [HKCU\Software\JEDI-VCL] [HKCU\Software\JavaSoft] [HKCU\Software\Kransimulator 2009] [HKCU\Software\Lavalys] [HKCU\Software\Licenses] [HKCU\Software\MPMAN] [HKCU\Software\Macromedia] [HKCU\Software\Magical Jelly Bean Software] [HKCU\Software\Malwarebytes' Anti-Malware] [HKCU\Software\Netscape] [HKCU\Software\Neuf] [HKCU\Software\ODBC] [HKCU\Software\Oddworld] [HKCU\Software\Over-Link] [HKCU\Software\Pinnacle Systems] [HKCU\Software\Piriform] [HKCU\Software\Policies] [HKCU\Software\Protect Software GmbH] [HKCU\Software\Redemption??] [HKCU\Software\Resplendence Sp] [HKCU\Software\Safer Networking Limited] [HKCU\Software\SecuROM] [HKCU\Software\Secunia] [HKCU\Software\SkypeApps] [HKCU\Software\Skype] [HKCU\Software\Softonic] [HKCU\Software\Sony Corporation] [HKCU\Software\Sony Ericsson] [HKCU\Software\SpeedFan] [HKCU\Software\TAdvCheckList] [HKCU\Software\Trolltech] [HKCU\Software\Ubisoft] [HKCU\Software\VB and VBA Program Settings] [HKCU\Software\VMware, Inc.] [HKCU\Software\VOB] [HKCU\Software\Valve] [HKCU\Software\WideStream] [HKCU\Software\Wow6432Node] [HKCU\Software\cybelsoft] [HKCU\Software\ej-technologies] [HKCU\Software\iPhone Backup Extractor] [HKCU\Software\techPowerUp] [HKLM\Software\2K Games] [HKLM\Software\AGEIA Technologies] [HKLM\Software\ALWIL Software] [HKLM\Software\AMD] [HKLM\Software\ASUS] [HKLM\Software\ATI Technologies] [HKLM\Software\ATI] [HKLM\Software\AVAST Software] [HKLM\Software\AVS4YOU] [HKLM\Software\Activision] [HKLM\Software\Adobe] [HKLM\Software\Alawar] [HKLM\Software\AppDataLow] [HKLM\Software\Apple Computer, Inc.] [HKLM\Software\Apple Inc.] [HKLM\Software\Big Fish Games] [HKLM\Software\BillP Studios] [HKLM\Software\BlueRippleSound] [HKLM\Software\BrowserChoice] [HKLM\Software\CDDB] [HKLM\Software\Canon] [HKLM\Software\Classes] [HKLM\Software\Clients] [HKLM\Software\Codemasters] [HKLM\Software\Crytek] [HKLM\Software\Cygnus Solutions] [HKLM\Software\DICE] [HKLM\Software\DT Soft] [HKLM\Software\DivXNetworks] [HKLM\Software\DivX] [HKLM\Software\EA GAMES] [HKLM\Software\EA Games] [HKLM\Software\EPSON] [HKLM\Software\Electronic Arts] [HKLM\Software\Eset] [HKLM\Software\FAST Multimedia] [HKLM\Software\Funambol] [HKLM\Software\GEAR Software] [HKLM\Software\GZero] [HKLM\Software\GlarySoft] [HKLM\Software\Google] [HKLM\Software\HighCriteria] [HKLM\Software\IDAVLab] [HKLM\Software\IObit] [HKLM\Software\Innovative Solutions] [HKLM\Software\Intel] [HKLM\Software\JavaSoft] [HKLM\Software\JreMetrics] [HKLM\Software\Khronos] [HKLM\Software\Licenses] [HKLM\Software\LogMeIn, Inc.] [HKLM\Software\Macromedia] [HKLM\Software\Malwarebytes' Anti-Malware] [HKLM\Software\McAfee.com] [HKLM\Software\Milestone] [HKLM\Software\MozillaPlugins] [HKLM\Software\Mumble] [HKLM\Software\NVIDIA Corporation] [HKLM\Software\Neuf] [HKLM\Software\Nordic Games] [HKLM\Software\ODBC] [HKLM\Software\OpenAutomate] [HKLM\Software\Panda Software] [HKLM\Software\Patriot] [HKLM\Software\Pegasus Imaging] [HKLM\Software\PegasusImaging] [HKLM\Software\Pinnacle Systems] [HKLM\Software\Piriform] [HKLM\Software\Policies] [HKLM\Software\Redemption??] [HKLM\Software\RegisteredApplications] [HKLM\Software\SBDT AB] [HKLM\Software\Safer Networking Limited] [HKLM\Software\Skype] [HKLM\Software\Softwin] [HKLM\Software\Sonic] [HKLM\Software\Sony Corporation] [HKLM\Software\Sony Creative Software] [HKLM\Software\Sony Ericsson] [HKLM\Software\Sony Media Software] [HKLM\Software\ThinPrint] [HKLM\Software\Thrustmaster] [HKLM\Software\TrendMicro] [HKLM\Software\Trymedia Systems] [HKLM\Software\Tunngle.net] [HKLM\Software\Ubisoft] [HKLM\Software\VMware, Inc.] [HKLM\Software\Valve] [HKLM\Software\VideoLAN] [HKLM\Software\WinSock2] [HKLM\Software\Wow6432Node] [HKLM\Software\cybelsoft] [HKLM\Software\mozilla.org] ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) O43 - CFD: 19/05/2010 - 10:07:54 - [23695489] ----D- C:\Program Files\ATI O43 - CFD: 14/12/2010 - 19:01:20 - [28] ----D- C:\Program Files\ATI Technologies O43 - CFD: 07/01/2011 - 20:14:16 - [6168906] ----D- C:\Program Files\Canon O43 - CFD: 07/01/2011 - 20:13:38 - [16642932] --H-D- C:\Program Files\CanonBJ O43 - CFD: 24/01/2011 - 20:35:50 - [70788015] ----D- C:\Program Files\Common Files O43 - CFD: 14/07/2009 - 17:35:14 - [90257428] ----D- C:\Program Files\DVD Maker O43 - CFD: 18/05/2010 - 17:49:06 - [0] -SH-D- C:\Program Files\Fichiers communs O43 - CFD: 20/05/2010 - 07:36:20 - [0] ----D- C:\Program Files\Google O43 - CFD: 04/04/2011 - 11:21:30 - [6201360] ----D- C:\Program Files\Internet Explorer O43 - CFD: 14/07/2009 - 17:35:14 - [149236786] ----D- C:\Program Files\Microsoft Games O43 - CFD: 14/06/2010 - 15:35:08 - [16238689] ----D- C:\Program Files\Microsoft Office O43 - CFD: 14/07/2009 - 07:32:40 - [25757] ----D- C:\Program Files\MSBuild O43 - CFD: 03/04/2011 - 20:43:52 - [21578377] ----D- C:\Program Files\PeerBlock O43 - CFD: 14/07/2009 - 07:32:40 - [36253865] ----D- C:\Program Files\Reference Assemblies O43 - CFD: 14/07/2009 - 07:09:28 - [0] --H-D- C:\Program Files\Uninstall Information O43 - CFD: 14/07/2009 - 17:24:10 - [4039168] ----D- C:\Program Files\Windows Defender O43 - CFD: 16/12/2010 - 09:53:24 - [6667264] ----D- C:\Program Files\Windows Mail O43 - CFD: 12/10/2010 - 20:33:06 - [7687085] ----D- C:\Program Files\Windows Media Player O43 - CFD: 18/05/2010 - 17:49:06 - [12627124] ----D- C:\Program Files\Windows NT O43 - CFD: 14/07/2009 - 17:24:10 - [5516568] ----D- C:\Program Files\Windows Photo Viewer O43 - CFD: 14/07/2009 - 07:32:40 - [235008] ----D- C:\Program Files\Windows Portable Devices O43 - CFD: 14/07/2009 - 17:24:10 - [7191662] ----D- C:\Program Files\Windows Sidebar O43 - CFD: 27/02/2011 - 13:58:16 - [999392] ----D- C:\Program Files\Zune O43 - CFD: 14/12/2010 - 19:00:46 - [5392136] ----D- C:\Program Files\Common Files\ATI Technologies O43 - CFD: 27/02/2011 - 13:57:58 - [52774438] ----D- C:\Program Files\Common Files\Microsoft Shared O43 - CFD: 14/07/2009 - 05:20:10 - [2702] ----D- C:\Program Files\Common Files\Services O43 - CFD: 14/07/2009 - 05:20:10 - [608768] ----D- C:\Program Files\Common Files\SpeechEngines O43 - CFD: 14/07/2009 - 17:24:10 - [12009971] ----D- C:\Program Files\Common Files\System O43 - CFD: 14/11/2010 - 21:50:22 - [769] ----D- C:\ProgramData\Adobe O43 - CFD: 07/12/2010 - 22:41:04 - [72013] ----D- C:\ProgramData\AlawarWrapper O43 - CFD: 28/06/2010 - 22:05:52 - [3205296] ----D- C:\ProgramData\Alwil Software O43 - CFD: 05/06/2010 - 15:09:30 - [92395839] ----D- C:\ProgramData\Apple O43 - CFD: 27/07/2010 - 14:18:42 - [27162121] ----D- C:\ProgramData\Apple Computer O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Application Data O43 - CFD: 11/08/2010 - 17:39:38 - [1252] ----D- C:\ProgramData\Astroburn Pro O43 - CFD: 14/12/2010 - 19:02:30 - [1264803] ----D- C:\ProgramData\ATI O43 - CFD: 10/09/2010 - 17:06:22 - [0] ----D- C:\ProgramData\AVS4YOU O43 - CFD: 27/03/2011 - 19:21:02 - [0] ----D- C:\ProgramData\Babylon O43 - CFD: 18/05/2010 - 17:49:06 - [0] -SH-D- C:\ProgramData\Bureau O43 - CFD: 03/10/2010 - 20:10:08 - [0] ----D- C:\ProgramData\CA O43 - CFD: 21/09/2010 - 12:46:10 - [0] ----D- C:\ProgramData\Canneverbe Limited O43 - CFD: 07/01/2011 - 20:20:34 - [0] ----D- C:\ProgramData\Canon IJ Network Tool O43 - CFD: 07/01/2011 - 20:14:10 - [22163925] --H-D- C:\ProgramData\CanonBJ O43 - CFD: 07/01/2011 - 20:14:42 - [2675] ----D- C:\ProgramData\CanonIJMSetup O43 - CFD: 07/01/2011 - 20:30:12 - [2530] --H-D- C:\ProgramData\CanonIJScan O43 - CFD: 22/09/2010 - 15:42:56 - [2098578084] ----D- C:\ProgramData\Codemasters O43 - CFD: 18/05/2010 - 21:38:30 - [1188] ----D- C:\ProgramData\DAEMON Tools Lite O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Desktop O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Documents O43 - CFD: 16/10/2010 - 19:48:12 - [4357] -SH-D- C:\ProgramData\DSS O43 - CFD: 23/11/2010 - 22:55:34 - [0] ----D- C:\ProgramData\EA Core O43 - CFD: 21/10/2010 - 19:12:30 - [46780] ----D- C:\ProgramData\Elaborate Bytes O43 - CFD: 23/11/2010 - 22:55:34 - [96529] ----D- C:\ProgramData\Electronic Arts O43 - CFD: 19/05/2010 - 11:02:46 - [1211] ----D- C:\ProgramData\F-Secure O43 - CFD: 18/05/2010 - 17:49:06 - [0] -SH-D- C:\ProgramData\Favoris O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Favorites O43 - CFD: 25/06/2010 - 09:41:30 - [3686090] ----D- C:\ProgramData\Futuremark O43 - CFD: 19/05/2010 - 21:41:48 - [2489] ----D- C:\ProgramData\Google O43 - CFD: 19/03/2011 - 13:58:14 - [72829] ----D- C:\ProgramData\Immunet O43 - CFD: 19/03/2011 - 18:31:32 - [0] ----D- C:\ProgramData\Innovative Solutions O43 - CFD: 03/10/2010 - 13:57:44 - [914] ----D- C:\ProgramData\IObit O43 - CFD: 13/01/2011 - 15:08:14 - [1203748] ----D- C:\ProgramData\ma-config.com O43 - CFD: 04/06/2010 - 16:08:24 - [14305128] ----D- C:\ProgramData\Malwarebytes O43 - CFD: 19/03/2011 - 13:41:16 - [97092] ----D- C:\ProgramData\McAfee O43 - CFD: 22/09/2010 - 14:12:00 - [693] ----D- C:\ProgramData\Media Center Programs O43 - CFD: 18/05/2010 - 17:49:06 - [0] -SH-D- C:\ProgramData\Menu Démarrer O43 - CFD: 15/03/2011 - 23:39:48 - [1246990185] -S--D- C:\ProgramData\Microsoft O43 - CFD: 09/03/2011 - 20:09:44 - [316612] ----D- C:\ProgramData\Microsoft Help O43 - CFD: 18/05/2010 - 17:49:06 - [0] -SH-D- C:\ProgramData\Modèles O43 - CFD: 04/12/2010 - 16:24:12 - [690059] ----D- C:\ProgramData\Pinnacle O43 - CFD: 04/12/2010 - 16:19:56 - [0] ----D- C:\ProgramData\Pinnacle Studio Plus O43 - CFD: 04/12/2010 - 16:24:44 - [35576] ----D- C:\ProgramData\Pinnacle Studio Ultimate Collection O43 - CFD: 14/12/2010 - 18:57:54 - [70377600] ----D- C:\ProgramData\Skype O43 - CFD: 29/03/2011 - 23:14:16 - [3078] ----D- C:\ProgramData\Solidshield O43 - CFD: 12/12/2010 - 15:48:00 - [145533407] ----D- C:\ProgramData\Sony Ericsson O43 - CFD: 10/04/2011 - 19:00:22 - [53240001] ----D- C:\ProgramData\Spybot - Search & Destroy O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Start Menu O43 - CFD: 04/12/2010 - 16:19:56 - [8020769112] ----D- C:\ProgramData\Studio 14 O43 - CFD: 19/05/2010 - 10:57:14 - [154] ----D- C:\ProgramData\Sun O43 - CFD: 18/01/2011 - 20:11:24 - [0] ----D- C:\ProgramData\SUPERAntiSpyware.com O43 - CFD: 07/08/2010 - 18:05:24 - [0] ---AD- C:\ProgramData\TEMP O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Templates O43 - CFD: 26/07/2010 - 18:28:02 - [0] ----D- C:\ProgramData\Ubisoft O43 - CFD: 14/11/2010 - 21:50:22 - [6689088] ----D- C:\Users\Fab\AppData\Roaming\Adobe O43 - CFD: 05/06/2010 - 15:21:44 - [222593480] ----D- C:\Users\Fab\AppData\Roaming\Apple Computer O43 - CFD: 19/05/2010 - 10:09:12 - [0] ----D- C:\Users\Fab\AppData\Roaming\ATI O43 - CFD: 04/06/2010 - 14:42:18 - [1173] ----D- C:\Users\Fab\AppData\Roaming\Audacity O43 - CFD: 05/12/2010 - 21:32:40 - [128] ----D- C:\Users\Fab\AppData\Roaming\AVS4YOU O43 - CFD: 27/03/2011 - 19:21:02 - [2033] ----D- C:\Users\Fab\AppData\Roaming\Babylon O43 - CFD: 07/12/2010 - 19:37:34 - [1954698] ----D- C:\Users\Fab\AppData\Roaming\BlackBean O43 - CFD: 21/09/2010 - 12:46:10 - [1631] ----D- C:\Users\Fab\AppData\Roaming\Canneverbe Limited O43 - CFD: 07/01/2011 - 20:30:12 - [2208] ----D- C:\Users\Fab\AppData\Roaming\Canon O43 - CFD: 31/03/2011 - 09:15:40 - [2718] ----D- C:\Users\Fab\AppData\Roaming\com.caffeinatedmind.Sendoid O43 - CFD: 14/01/2011 - 21:35:04 - [17189] ----D- C:\Users\Fab\AppData\Roaming\CopyTrans O43 - CFD: 19/05/2010 - 09:56:34 - [3899] ----D- C:\Users\Fab\AppData\Roaming\DAEMON Tools Lite O43 - CFD: 04/03/2011 - 21:40:02 - [0] ----D- C:\Users\Fab\AppData\Roaming\f-secure O43 - CFD: 12/12/2010 - 16:54:04 - [261] ----D- C:\Users\Fab\AppData\Roaming\FreeAudioPack O43 - CFD: 07/12/2010 - 23:02:48 - [435] ----D- C:\Users\Fab\AppData\Roaming\FreeCDRipper O43 - CFD: 14/11/2010 - 16:51:28 - [54912] ----D- C:\Users\Fab\AppData\Roaming\Funambol O43 - CFD: 28/06/2010 - 22:19:58 - [21711] ----D- C:\Users\Fab\AppData\Roaming\GlarySoft O43 - CFD: 19/05/2010 - 21:29:34 - [0] ----D- C:\Users\Fab\AppData\Roaming\Google O43 - CFD: 13/02/2011 - 17:26:44 - [2754434] ----D- C:\Users\Fab\AppData\Roaming\GZero O43 - CFD: 25/09/2010 - 11:17:04 - [2756] ----D- C:\Users\Fab\AppData\Roaming\Hamachi O43 - CFD: 19/05/2010 - 20:10:22 - [1162] ----D- C:\Users\Fab\AppData\Roaming\Identities O43 - CFD: 29/05/2010 - 23:11:32 - [0] ----D- C:\Users\Fab\AppData\Roaming\InstallShield O43 - CFD: 18/03/2011 - 14:41:38 - [355622] ----D- C:\Users\Fab\AppData\Roaming\kompozer.net O43 - CFD: 17/03/2011 - 14:11:58 - [58145] ----D- C:\Users\Fab\AppData\Roaming\Macromedia O43 - CFD: 04/06/2010 - 16:08:30 - [2110071] ----D- C:\Users\Fab\AppData\Roaming\Malwarebytes O43 - CFD: 21/09/2010 - 20:45:48 - [2014590] ----D- C:\Users\Fab\AppData\Roaming\MAXON O43 - CFD: 14/07/2009 - 17:35:04 - [0] ----D- C:\Users\Fab\AppData\Roaming\Media Center Programs O43 - CFD: 10/04/2011 - 19:15:36 - [24657397] -S--D- C:\Users\Fab\AppData\Roaming\Microsoft O43 - CFD: 18/03/2011 - 14:41:38 - [0] ----D- C:\Users\Fab\AppData\Roaming\Mozilla O43 - CFD: 18/01/2011 - 20:43:08 - [2485511] ----D- C:\Users\Fab\AppData\Roaming\MP-Manager O43 - CFD: 26/03/2011 - 18:39:06 - [176] ----D- C:\Users\Fab\AppData\Roaming\PC Remote O43 - CFD: 15/06/2010 - 17:21:00 - [3824768] ----D- C:\Users\Fab\AppData\Roaming\ProtectDisc O43 - CFD: 27/05/2010 - 11:47:10 - [7992] ----D- C:\Users\Fab\AppData\Roaming\SecuROM O43 - CFD: 06/04/2011 - 00:06:54 - [7233334] ----D- C:\Users\Fab\AppData\Roaming\Skype O43 - CFD: 28/12/2010 - 21:36:54 - [11016] ----D- C:\Users\Fab\AppData\Roaming\skypePM O43 - CFD: 12/12/2010 - 15:52:46 - [106700628] ----D- C:\Users\Fab\AppData\Roaming\Sony O43 - CFD: 22/09/2010 - 23:54:18 - [14381] ----D- C:\Users\Fab\AppData\Roaming\Stellarium O43 - CFD: 29/06/2010 - 13:11:52 - [2364] ----D- C:\Users\Fab\AppData\Roaming\Ubisoft O43 - CFD: 08/04/2011 - 20:01:36 - [1175062] ----D- C:\Users\Fab\AppData\Roaming\uTorrent O43 - CFD: 07/02/2011 - 19:15:34 - [7040772] ----D- C:\Users\Fab\AppData\Roaming\vlc O43 - CFD: 07/12/2010 - 22:41:06 - [31536] ----D- C:\Users\Fab\AppData\Roaming\YoudaGames O43 - CFD: 28/08/2010 - 22:50:44 - [8674453] ----D- C:\Users\Fab\Appdata\Local\2K Games O43 - CFD: 17/03/2011 - 15:24:02 - [3433] ----D- C:\Users\Fab\Appdata\Local\3DMGAME O43 - CFD: 28/03/2011 - 19:34:20 - [4] ----D- C:\Users\Fab\Appdata\Local\Activision O43 - CFD: 14/11/2010 - 21:50:20 - [109148] ----D- C:\Users\Fab\Appdata\Local\Adobe O43 - CFD: 24/10/2010 - 19:50:52 - [0] ----D- C:\Users\Fab\Appdata\Local\Apple O43 - CFD: 21/05/2010 - 20:45:08 - [32186168] ----D- C:\Users\Fab\Appdata\Local\Apple Computer O43 - CFD: 18/05/2010 - 17:49:16 - [0] -SH-D- C:\Users\Fab\Appdata\Local\Application Data O43 - CFD: 14/01/2011 - 14:15:36 - [0] ----D- C:\Users\Fab\Appdata\Local\Apps O43 - CFD: 19/05/2010 - 10:09:12 - [91232] ----D- C:\Users\Fab\Appdata\Local\ATI O43 - CFD: 27/03/2011 - 19:21:02 - [12234404] ----D- C:\Users\Fab\Appdata\Local\Babylon O43 - CFD: 23/10/2010 - 18:15:36 - [0] ----D- C:\Users\Fab\Appdata\Local\CrashRpt O43 - CFD: 12/12/2010 - 16:29:46 - [52035012] ----D- C:\Users\Fab\Appdata\Local\Downloaded Installations O43 - CFD: 07/02/2011 - 15:36:12 - [1144] ----D- C:\Users\Fab\Appdata\Local\EA Games O43 - CFD: 11/07/2010 - 13:17:52 - [3901] ----D- C:\Users\Fab\Appdata\Local\Electronic_Arts_Inc O43 - CFD: 06/04/2011 - 01:57:18 - [3568768] ----D- C:\Users\Fab\Appdata\Local\ElevatedDiagnostics O43 - CFD: 13/02/2011 - 17:28:16 - [6463138] ----D- C:\Users\Fab\Appdata\Local\Google O43 - CFD: 13/02/2011 - 17:26:52 - [1223] ----D- C:\Users\Fab\Appdata\Local\GZero O43 - CFD: 18/05/2010 - 17:49:16 - [0] -SH-D- C:\Users\Fab\Appdata\Local\Historique O43 - CFD: 19/03/2011 - 13:48:36 - [0] ----D- C:\Users\Fab\Appdata\Local\Immunet O43 - CFD: 19/03/2011 - 18:31:32 - [40410677] ----D- C:\Users\Fab\Appdata\Local\Innovative Solutions O43 - CFD: 18/03/2011 - 14:41:38 - [3291326] ----D- C:\Users\Fab\Appdata\Local\kompozer.net O43 - CFD: 31/05/2010 - 15:01:18 - [1632] ----D- C:\Users\Fab\Appdata\Local\LAG O43 - CFD: 02/03/2011 - 16:45:32 - [44568] ----D- C:\Users\Fab\Appdata\Local\LiveGBoost O43 - CFD: 16/04/2011 - 23:05:14 - [606344] ----D- C:\Users\Fab\Appdata\Local\LogMeIn Hamachi O43 - CFD: 15/03/2011 - 23:09:22 - [7862634518] ----D- C:\Users\Fab\Appdata\Local\Microsoft O43 - CFD: 23/10/2010 - 12:59:22 - [806330] ----D- C:\Users\Fab\Appdata\Local\Microsoft Games O43 - CFD: 21/05/2010 - 10:46:16 - [0] ----D- C:\Users\Fab\Appdata\Local\Microsoft Help O43 - CFD: 26/05/2010 - 11:29:10 - [16380] ----D- C:\Users\Fab\Appdata\Local\Microsoft_Research O43 - CFD: 12/06/2010 - 16:01:02 - [88122] ----D- C:\Users\Fab\Appdata\Local\Neuf O43 - CFD: 08/04/2011 - 14:52:32 - [11484] ----D- C:\Users\Fab\Appdata\Local\Pinnacle O43 - CFD: 26/03/2011 - 22:54:50 - [773] ----D- C:\Users\Fab\Appdata\Local\SKIDROW O43 - CFD: 12/12/2010 - 15:53:22 - [14727] ----D- C:\Users\Fab\Appdata\Local\Sony O43 - CFD: 20/05/2010 - 12:08:52 - [0] ----D- C:\Users\Fab\Appdata\Local\Sony Ericsson O43 - CFD: 25/05/2010 - 17:57:16 - [5860] ----D- C:\Users\Fab\Appdata\Local\storage O43 - CFD: 16/04/2011 - 23:34:12 - [403960] ----D- C:\Users\Fab\Appdata\Local\Temp O43 - CFD: 18/05/2010 - 17:49:16 - [0] -SH-D- C:\Users\Fab\Appdata\Local\Temporary Internet Files O43 - CFD: 19/03/2011 - 18:59:46 - [59] ----D- C:\Users\Fab\Appdata\Local\vdownloader O43 - CFD: 30/01/2011 - 17:26:20 - [0] ----D- C:\Users\Fab\Appdata\Local\Windows Live O43 - CFD: 14/11/2010 - 21:50:22 - [159730696] ----D- C:\Program Files (x86)\Adobe O43 - CFD: 02/09/2010 - 15:15:00 - [7927915] ----D- C:\Program Files (x86)\AGEIA Technologies O43 - CFD: 30/03/2011 - 13:39:36 - [2448924] ----D- C:\Program Files (x86)\AMD APP O43 - CFD: 04/06/2010 - 20:46:20 - [2911048] ----D- C:\Program Files (x86)\ASUS O43 - CFD: 14/02/2011 - 00:03:10 - [292184] ----D- C:\Program Files (x86)\Atari O43 - CFD: 14/12/2010 - 19:01:54 - [89517376] ----D- C:\Program Files (x86)\ATI Technologies O43 - CFD: 04/12/2010 - 16:37:36 - [29230530] ----D- C:\Program Files (x86)\AVS4YOU O43 - CFD: 30/03/2011 - 02:01:10 - [0] ----D- C:\Program Files (x86)\BRS O43 - CFD: 07/01/2011 - 20:21:36 - [83710419] ----D- C:\Program Files (x86)\Canon O43 - CFD: 30/03/2011 - 01:59:22 - [572409988] ----D- C:\Program Files (x86)\Common Files O43 - CFD: 16/12/2010 - 11:05:40 - [81024794] ----D- C:\Program Files (x86)\ESET O43 - CFD: 03/10/2010 - 13:51:42 - [1963867] ----D- C:\Program Files (x86)\FT27B1 O43 - CFD: 14/11/2010 - 21:03:50 - [3053058] ----D- C:\Program Files (x86)\Funambol O43 - CFD: 13/02/2011 - 17:26:42 - [1718201] ----D- C:\Program Files (x86)\GBoost O43 - CFD: 20/05/2010 - 07:36:20 - [3044360] ----D- C:\Program Files (x86)\Google O43 - CFD: 14/11/2010 - 21:50:38 - [306910] ----D- C:\Program Files (x86)\HTC O43 - CFD: 17/01/2011 - 21:47:16 - [9437071] --H-D- C:\Program Files (x86)\InstallShield Installation Information O43 - CFD: 19/05/2010 - 11:33:02 - [96703] ----D- C:\Program Files (x86)\Intel O43 - CFD: 04/04/2011 - 11:21:30 - [6386736] ----D- C:\Program Files (x86)\Internet Explorer O43 - CFD: 26/07/2010 - 13:52:30 - [89381527] ----D- C:\Program Files (x86)\Java O43 - CFD: 14/12/2010 - 23:20:20 - [0] ----D- C:\Program Files (x86)\LogMeIn Hamachi O43 - CFD: 13/01/2011 - 15:08:14 - [5535228] ----D- C:\Program Files (x86)\ma-config.com O43 - CFD: 12/12/2010 - 15:51:10 - [0] ----D- C:\Program Files (x86)\Media Go O43 - CFD: 14/06/2010 - 15:34:48 - [40530747] ----D- C:\Program Files (x86)\Microsoft Analysis Services O43 - CFD: 16/11/2010 - 14:29:04 - [9337482] ----D- C:\Program Files (x86)\Microsoft Games for Windows - LIVE O43 - CFD: 02/03/2011 - 20:19:46 - [38371963] ----D- C:\Program Files (x86)\Microsoft Silverlight O43 - CFD: 14/06/2010 - 15:41:22 - [651457] ----D- C:\Program Files (x86)\Microsoft Visual Studio 8 O43 - CFD: 23/06/2010 - 13:43:22 - [8167779] ----D- C:\Program Files (x86)\Microsoft.NET O43 - CFD: 14/07/2009 - 07:32:40 - [25757] ----D- C:\Program Files (x86)\MSBuild O43 - CFD: 30/01/2011 - 17:21:02 - [6806063] ----D- C:\Program Files (x86)\MSECACHE O43 - CFD: 14/11/2010 - 21:50:08 - [154033] ----D- C:\Program Files (x86)\MSXML 4.0 O43 - CFD: 28/08/2010 - 22:51:08 - [82645511] ----D- C:\Program Files (x86)\NVIDIA Corporation O43 - CFD: 30/05/2010 - 13:31:44 - [1619056] ----D- C:\Program Files (x86)\OpenAL O43 - CFD: 19/03/2011 - 13:59:44 - [0] ----D- C:\Program Files (x86)\Panda Security O43 - CFD: 04/12/2010 - 16:18:14 - [568598035] ----D- C:\Program Files (x86)\Pinnacle O43 - CFD: 12/12/2010 - 18:10:24 - [76322555] ----D- C:\Program Files (x86)\QuickTime O43 - CFD: 14/07/2009 - 07:32:40 - [38597377] ----D- C:\Program Files (x86)\Reference Assemblies O43 - CFD: 12/06/2010 - 16:00:18 - [6926756] ----D- C:\Program Files (x86)\SFR O43 - CFD: 12/12/2010 - 15:47:58 - [80072592] ----D- C:\Program Files (x86)\Sony Ericsson O43 - CFD: 12/12/2010 - 16:29:38 - [73999180] ----D- C:\Program Files (x86)\Sony Media Go Install O43 - CFD: 02/08/2010 - 19:56:06 - [1945365] ----D- C:\Program Files (x86)\Ubisoft O43 - CFD: 14/07/2009 - 06:57:08 - [0] --H-D- C:\Program Files (x86)\Uninstall Information O43 - CFD: 14/07/2009 - 17:24:10 - [524800] ----D- C:\Program Files (x86)\Windows Defender O43 - CFD: 30/01/2011 - 17:37:54 - [9383242] ----D- C:\Program Files (x86)\Windows Live O43 - CFD: 03/07/2010 - 17:46:26 - [64678335] ----D- C:\Program Files (x86)\Windows Live Safety Center O43 - CFD: 16/12/2010 - 09:53:24 - [6180864] ----D- C:\Program Files (x86)\Windows Mail O43 - CFD: 12/10/2010 - 20:33:06 - [5024017] ----D- C:\Program Files (x86)\Windows Media Player O43 - CFD: 14/07/2009 - 07:32:40 - [12197556] ----D- C:\Program Files (x86)\Windows NT O43 - CFD: 14/07/2009 - 17:24:10 - [4417800] ----D- C:\Program Files (x86)\Windows Photo Viewer O43 - CFD: 14/07/2009 - 07:32:42 - [189440] ----D- C:\Program Files (x86)\Windows Portable Devices O43 - CFD: 14/07/2009 - 17:24:10 - [5994114] ----D- C:\Program Files (x86)\Windows Sidebar O43 - CFD: 14/12/2010 - 19:00:46 - [5392136] ----D- C:\Program Files\Common Files\ATI Technologies O43 - CFD: 27/02/2011 - 13:57:58 - [52774438] ----D- C:\Program Files\Common Files\Microsoft Shared O43 - CFD: 14/07/2009 - 05:20:10 - [2702] ----D- C:\Program Files\Common Files\Services O43 - CFD: 14/07/2009 - 05:20:10 - [608768] ----D- C:\Program Files\Common Files\SpeechEngines O43 - CFD: 14/07/2009 - 17:24:10 - [12009971] ----D- C:\Program Files\Common Files\System ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44) O44 - LFC:[MD5.BCEE5D6DFFBF99602B9676147084B297] - 16/04/2011 - 22:09:54 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI [1557478] O44 - LFC:[MD5.D1533B431D11311E12EDECBBAB22BD13] - 16/04/2011 - 22:09:54 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat [107034] O44 - LFC:[MD5.C2D5F0AF268B737297D94927795B2762] - 16/04/2011 - 22:09:54 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat [131426] O44 - LFC:[MD5.80DD05D603691E52C8DFE7975829ADAE] - 16/04/2011 - 22:09:54 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat [618714] O44 - LFC:[MD5.CB29879DC30CEDBECA4CE2753354A30B] - 16/04/2011 - 22:09:54 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat [706998] O44 - LFC:[MD5.4C7760C6493CE1003129B05B4DB4359D] - 16/04/2011 - 22:04:25 -S-A- . (...) -- C:\Windows\bootstat.dat [67584] O44 - LFC:[MD5.5123F261346A7F668D081F8D5218D348] - 11/04/2011 - 19:36:23 --HA- . (...) -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [13824] O44 - LFC:[MD5.5123F261346A7F668D081F8D5218D348] - 11/04/2011 - 19:36:23 --HA- . (...) -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [13824] O44 - LFC:[MD5.4B333D3CC96AE66BD754329FD2989EE2] - 04/04/2011 - 10:20:07 ---A- . (...) -- C:\Windows\SysNative\ieuinit.inf [72822] O44 - LFC:[MD5.4B333D3CC96AE66BD754329FD2989EE2] - 04/04/2011 - 10:20:07 ---A- . (...) -- C:\Windows\System32\ieuinit.inf [72822] O44 - LFC:[MD5.A35ED49316042B5E7D71491559E22D0A] - 30/03/2011 - 18:04:32 ---A- . (.Dll-Files.com - Dll-Files.com Fixer.) -- C:\Windows\SysNative\roboot64.exe [17128] O44 - LFC:[MD5.7C2BD3935A96968C81AEEEEF36C25BB9] - 21/03/2011 - 18:56:26 ---A- . (...) -- C:\Windows\SysNative\OVDecode64.dll [61952] O44 - LFC:[MD5.B820A42613502614614D421AA08DEF5B] - 21/03/2011 - 18:56:10 ---A- . (.Khronos Group - OpenCL Client DLL.) -- C:\Windows\SysNative\OpenCL.dll [53760] O44 - LFC:[MD5.B820A42613502614614D421AA08DEF5B] - 21/03/2011 - 18:56:06 ---A- . (.Khronos Group - OpenCL Client DLL.) -- C:\Windows\System32\OpenCL.dll [51712] O44 - LFC:[MD5.EFDC488CB1540F5D7E2F2EB7B4435961] - 21/03/2011 - 18:55:58 ---A- . (.Advanced Micro Devices Inc. - AMD Accelerated Parallel Processing OpenCL.) -- C:\Windows\SysNative\amdocl64.dll [16115712] ---\\ Export de clé d'application autorisée (O47) O47 - AAKE:Key Export SP - "C:\Users\Fab\AppData\Roaming\svchost.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) -- C:\Users\Fab\AppData\Roaming\svchost.exe (.not file.) O47 - AAKE:Key Export SP - "C:\Users\Fab\AppData\Roaming\0Q11SIUAOM.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) -- C:\Users\Fab\AppData\Roaming\0Q11SIUAOM.exe (.not file.) O47 - AAKE:Key Export SP - "C:\Users\Fab\AppData\Roaming\csrss.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) -- C:\Users\Fab\AppData\Roaming\csrss.exe (.not file.) O47 - AAKE:Key Export SP - "C:\Users\Fab\AppData\Local\Temp\15081.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) -- C:\Users\Fab\AppData\Local\Temp\15081.exe (.not file.) O47 - AAKE:Key Export SP - "C:\Users\Fab\AppData\Local\Temp\7706.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) -- C:\Users\Fab\AppData\Local\Temp\7706.exe (.not file.) ---\\ MountPoints2 Shell Key (O51) O51 - MPSK:{c52b28ce-05f1-11e0-a338-001e8c45677a}\AutoRun\command. (.Pas de propriétaire - Pas de description.) -- J:\Startme.exe (.not file.) O51 - MPSK:{c52b297c-05f1-11e0-a338-001e8c45677a}\AutoRun\command. (.Pas de propriétaire - Pas de description.) -- J:\Startme.exe (.not file.) ---\\ Trojan Driver Search Data (HKLM) (O52) O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm ---\\ ShareTools MSconfig StartupReg (O53) O53 - SMSR:HKLM\...\startupreg\adm_tray.exe [Key] . (.Pas de propriétaire - Pas de description.) -- E:\Program Files (x86)\Acronis\DriveMonitor\adm_tray.exe O53 - SMSR:HKLM\...\startupreg\Adobe ARM [Key] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe O53 - SMSR:HKLM\...\startupreg\Adobe Reader Speed Launcher [Key] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe O53 - SMSR:HKLM\...\startupreg\CanonMyPrinter [Key] . (.CANON INC. - Canon My Printer.) -- C:\Program Files\Canon\MyPrinter\BJMyPrt.exe O53 - SMSR:HKLM\...\startupreg\DAEMON Tools Lite [Key] . (.DT Soft Ltd - DAEMON Tools Lite.) -- e:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe O53 - SMSR:HKLM\...\startupreg\Disk SpeedUp [Key] . (.Glarysoft Ltd - Disk SpeedUp.) -- e:\Program Files (x86)\Glarysoft\Disk SpeedUp\Defrag.exe O53 - SMSR:HKLM\...\startupreg\Fenrir [Key] . (.Pas de propriétaire - Pas de description.) -- C:\Users\Fab\AppData\Roaming\Fenrir\svchost.exe O53 - SMSR:HKLM\...\startupreg\hddhealth [Key] . (.PANTERASoft - Pas de description.) -- E:\Program Files (x86)\HDD Health\hddhealth.exe O53 - SMSR:HKLM\...\startupreg\IObit Security 360 [Key] . (.Pas de propriétaire - Pas de description.) -- E:\Program Files (x86)\IObit Security 360\IS360tray.exe O53 - SMSR:HKLM\...\startupreg\iTunesHelper [Key] . (.Pas de propriétaire - Pas de description.) -- E:\Program Files (x86)\iTunes\iTunesHelper.exe O53 - SMSR:HKLM\...\startupreg\JMB36X IDE Setup [Key] . (.Pas de propriétaire - Pas de description.) -- C:\Windows\RaidTool\xInsIDE.exe O53 - SMSR:HKLM\...\startupreg\LogMeIn Hamachi Ui [Key] . (.Pas de propriétaire - Pas de description.) -- C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe O53 - SMSR:HKLM\...\startupreg\QuickTime Task [Key] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files (x86)\QuickTime\QTTask.exe O53 - SMSR:HKLM\...\startupreg\Service Planificateur2 Acronis [Key] . (.Pas de propriétaire - Pas de description.) -- C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe O53 - SMSR:HKLM\...\startupreg\Sony Ericsson PC Companion [Key] . (.Sony Ericsson - Sony Ericsson PC Companion.) -- C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe O53 - SMSR:HKLM\...\startupreg\Sony Ericsson PC Suite [Key] . (.Sony Ericsson Mobile Communications AB - Sony Ericsson PC Suite.) -- E:\Program Files (x86)\PC Suite 770i\SEPCSuite.exe O53 - SMSR:HKLM\...\startupreg\Steam [Key] . (.Valve Corporation - Steam.) -- e:\program files (x86)\steam\steam.exe O53 - SMSR:HKLM\...\startupreg\SunJavaUpdateSched [Key] . (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe O53 - SMSR:HKLM\...\startupreg\SUPERAntiSpyware [Key] . (.Pas de propriétaire - Pas de description.) -- E:\Program Files (x86)\SuperSpyware\SUPERAntiSpyware.exe O53 - SMSR:HKLM\...\startupreg\TrojanScanner [Key] . (.Pas de propriétaire - Pas de description.) -- e:\Program Files (x86)\Trojan Remover\Trjscan.exe O53 - SMSR:HKLM\...\startupreg\Zune Launcher [Key] . (.Microsoft Corporation - Zune Auto-Launcher.) -- E:\Program Files (x86)\Zune\ZuneLauncher.exe ---\\ Microsoft Control Security Providers (O54) O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\system32\credssp.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\system32\credssp.dll ---\\ Microsoft Windows Policies System (O55) O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=0 O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3 O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=0 O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0 O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1 O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=0 O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0 O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"= O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"= O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0 O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0 ---\\ Microsoft Windows Policies Explorer (O56) O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=145 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=0 O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDriveTypeAutoRun"=145 ---\\ Liste des Drivers Système (O58) O58 - SDL:[MD5.2F6B34B83843F0C5118B63AC634F5BF4] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\system32\drivers\adp94xx.sys [491088] O58 - SDL:[MD5.597F78224EE9224EA1A13D6350CED962] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\system32\drivers\adpahci.sys [339536] O58 - SDL:[MD5.E109549C90F62FB570B9540C4B148E54] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\system32\drivers\adpu320.sys [182864] O58 - SDL:[MD5.5812713A477A3AD7363C7438CA2EE038] - 14/07/2009 - 02:52:21 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\system32\drivers\aliide.sys [15440] O58 - SDL:[MD5.7A4B413614C055935567CF88A9734D38] - 14/07/2009 - 02:52:21 ---A- . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\system32\drivers\amdsata.sys [106576] O58 - SDL:[MD5.F67F933E79241ED32FF46A4F29B5120B] - 14/07/2009 - 02:52:20 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows -.) -- C:\Windows\system32\drivers\amdsbs.sys [194128] O58 - SDL:[MD5.B4AD0CACBAB298671DD6F6EF7E20679D] - 14/07/2009 - 02:52:21 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\system32\drivers\amdxata.sys [28752] O58 - SDL:[MD5.C687F3EBD5517CC05EC958A91CC84D31] - 23/10/2008 - 19:35:24 ---A- . (.Netmarketing Pawel Wisniewski - ANF Redirector.) -- C:\Windows\system32\drivers\anf0100.sys [13888] O58 - SDL:[MD5.C484F8CEB1717C540242531DB7845C4E] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\system32\drivers\arc.sys [87632] O58 - SDL:[MD5.019AF6924AEFE7839F61C830227FE79C] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\system32\drivers\arcsas.sys [97856] O58 - SDL:[MD5.19B006B181E3875FD254F7B67ACF1E7C] - 04/06/2010 - 19:44:49 ---A- . (.Pas de propriétaire - ATK0110 ACPI Utility.) -- C:\Windows\system32\drivers\ASACPI.sys [15416] O58 - SDL:[MD5.F810E3EA3D1F3C3BA26F2F4719BDCA4F] - 23/02/2011 - 15:54:58 ---A- . (.AVAST Software - avast! File System Access Blocking Driver.) -- C:\Windows\system32\drivers\aswFsBlk.sys [22360] O58 - SDL:[MD5.3687FD9CEDF56D3B9F18923F4E14F3F9] - 23/02/2011 - 15:55:05 ---A- . (.AVAST Software - avast! File System Minifilter for Windows 2003/Vista.) -- C:\Windows\system32\drivers\aswMonFlt.sys [64344] O58 - SDL:[MD5.E99E48596B35E5D5240104BCD61B3471] - 23/02/2011 - 15:55:13 ---A- . (.AVAST Software - avast! TDI RDR Driver.) -- C:\Windows\system32\drivers\aswRdr.sys [31064] O58 - SDL:[MD5.84AD8FB3FD2EFA52D8599A0028BBB6FE] - 23/02/2011 - 15:57:01 ---A- . (.AVAST Software - avast! Virtualization Driver.) -- C:\Windows\system32\drivers\aswSnx.sys [505176] O58 - SDL:[MD5.8CBA6CC5DCA9E3829F1792BF98F06901] - 23/02/2011 - 15:57:04 ---A- . (.AVAST Software - avast! self protection module.) -- C:\Windows\system32\drivers\aswSP.sys [280408] O58 - SDL:[MD5.184248F2DED7B1641C7F3B30381BAA2A] - 23/02/2011 - 15:55:53 ---A- . (.AVAST Software - avast! TDI Filter Driver.) -- C:\Windows\system32\drivers\aswTdi.sys [53592] O58 - SDL:[MD5.4BF5BCA6E2608CD8A00BC4A6673A9F47] - 17/11/2010 - 13:04:32 ---A- . (.Advanced Micro Devices - AMD High Definition Audio Function Driver.) -- C:\Windows\system32\drivers\AtihdW76.sys [115216] O58 - SDL:[MD5.BFA9657ADF7DDC29242A6E0E88DE36FA] - 09/03/2011 - 10:22:42 ---A- . (.ATI Technologies Inc. - ATI Radeon Kernel Mode Driver.) -- C:\Windows\system32\drivers\atikmdag.sys [9258496] O58 - SDL:[MD5.8C493027D9B2399283E724E9862EBB42] - 09/03/2011 - 05:17:42 ---A- . (.Advanced Micro Devices, Inc. - AMD multi-vendor Miniport Driver.) -- C:\Windows\system32\drivers\atikmpag.sys [300544] O58 - SDL:[MD5.FC0E8778C000291CAF60EB88C011E931] - 05/12/2010 - 19:53:04 ---A- . (...) -- C:\Windows\system32\drivers\atksgt.sys [314016] O58 - SDL:[MD5.B5ACE6968304A3900EEB1EBFD9622DF2] - 10/06/2009 - 21:34:23 ---A- . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver..) -- C:\Windows\system32\drivers\b57nd60a.sys [270848] O58 - SDL:[MD5.F09EEE9EDC320B5E1501F749FDE686C8] - 10/06/2009 - 21:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\system32\drivers\BrFiltLo.sys [18432] O58 - SDL:[MD5.B114D3098E9BDB8BEA8B053685831BE6] - 10/06/2009 - 21:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\system32\drivers\BrFiltUp.sys [8704] O58 - SDL:[MD5.43BEA8D483BF1870F018E2D02E06A5BD] - 14/07/2009 - 02:19:07 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\system32\drivers\BrSerId.sys [286720] O58 - SDL:[MD5.A6ECA2151B08A09CACECA35C07F05B42] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\system32\drivers\BrSerWdm.sys [47104] O58 - SDL:[MD5.B79968002C277E869CF38BD22CD61524] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\system32\drivers\BrUsbMdm.sys [14976] O58 - SDL:[MD5.A87528880231C54E75EA7A44943B38BF] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\system32\drivers\BrUsbSer.sys [14720] O58 - SDL:[MD5.3E5B191307609F7514148C6832BB0842] - 10/06/2009 - 21:34:28 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\system32\drivers\bxvbda.sys [468480] O58 - SDL:[MD5.E19D3F095812725D88F9001985B94EDD] - 14/07/2009 - 02:52:31 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\cmdide.sys [17488] O58 - SDL:[MD5.2835BF2A864CDE9184C80CF4E6A485F9] - 06/10/2010 - 20:00:29 ---A- . (.C-Media Inc - C-Media Audio WDM Driver.) -- C:\Windows\system32\drivers\cmudax3.sys [1155072] O58 - SDL:[MD5.B9BE50FEDB366B958AE5F3BC19A20D2B] - 10/03/2010 - 16:19:32 ---A- . (.Windows ® Win 7 DDK provider - CPUID Driver.) -- C:\Windows\system32\drivers\cpuz133_x64.sys [20456] O58 - SDL:[MD5.0E5DA5369A0FCAEA12456DD852545184] - 14/07/2009 - 02:47:48 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\system32\drivers\elxstor.sys [530496] O58 - SDL:[MD5.DC5D737F51BE844D8C82C695EB17372F] - 10/06/2009 - 21:34:33 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\system32\drivers\evbda.sys [3286016] O58 - SDL:[MD5.E403AACF8C7BB11375122D2464560311] - 18/05/2009 - 12:17:08 ---A- . (.GEAR Software Inc. - CD DVD Filter.) -- C:\Windows\system32\drivers\GEARAspiWDM.sys [34152] O58 - SDL:[MD5.A4198F2BD8AA592CB90476277A81B5E1] - 12/12/2010 - 14:48:14 ---A- . (.Sony Ericsson Mobile Communications - SEMC USB Flash Driver Filter.) -- C:\Windows\system32\drivers\ggflt.sys [13352] O58 - SDL:[MD5.D266350BDAAB9EB6C1AEC370EEAAFF3A] - 12/12/2010 - 14:48:14 ---A- . (.Sony Ericsson Mobile Communications - SEMC USB Flash Driver.) -- C:\Windows\system32\drivers\ggsemc.sys [27176] O58 - SDL:[MD5.1E6438D4EA6E1174A3B3B1EDC4DE660B] - 03/02/2010 - 15:56:56 --HA- . (.LogMeIn, Inc. - Hamachi Virtual Network Interface Driver.) -- C:\Windows\system32\drivers\hamachi.sys [33856] O58 - SDL:[MD5.F2523EF6460FC42405B12248338AB2F0] - 10/06/2009 - 21:31:59 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\system32\drivers\hcw85cir.sys [31232] O58 - SDL:[MD5.0886D440058F203EBA0E1825E4355914] - 14/07/2009 - 02:47:48 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\system32\drivers\HpSAMD.sys [77888] O58 - SDL:[MD5.B8B1B284362E1D8135112573395D5DA5] - 25/06/2010 - 16:08:10 ---A- . (.Windows ® Win 7 DDK provider - RawPacket NDIS Protocol Driver.) -- C:\Windows\system32\drivers\htcnprot.sys [36928] O58 - SDL:[MD5.D83EFB6FD45DF9D55E9A1AFC63640D50] - 14/07/2009 - 02:48:04 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\system32\drivers\iaStorV.sys [410688] O58 - SDL:[MD5.5C18831C61933628F5BB0EA2675B9D21] - 14/07/2009 - 02:48:04 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\system32\drivers\iirsp.sys [44112] O58 - SDL:[MD5.79A55E8907F34AB569029505418C35EF] - 13/01/2011 - 17:38:39 ---A- . (.JMicron Technology Corp. - JMicron JMB36X RAID Driver.) -- C:\Windows\system32\drivers\jraid.sys [120408] O58 - SDL:[MD5.940E5B876251E04FFFE058AD71FE0F1C] - 13/10/2009 - 01:15:52 ---A- . (.Atheros Communications, Inc. - Atheros L1 Gigabit Ethernet 10/100/1000Base-T Adapter.) -- C:\Windows\system32\drivers\l160x64.sys [61440] O58 - SDL:[MD5.156AB2E56DC3CA0B582E3362E07CDED7] - 05/12/2010 - 19:53:03 ---A- . (...) -- C:\Windows\system32\drivers\lirsgt.sys [43680] O58 - SDL:[MD5.1A93E54EB0ECE102495A51266DCDB6A6] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_fc.sys [114752] O58 - SDL:[MD5.1047184A9FDC8BDBFF857175875EE810] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas.sys [106560] O58 - SDL:[MD5.30F5C0DE1EE8B5BC9306C1F0E4A75F93] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas2.sys [65600] O58 - SDL:[MD5.0504EACAFF0D3C8AED161C4B0D369D4A] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_scsi.sys [115776] O58 - SDL:[MD5.024DA28053D57E9E32BEE52600576BBB] - 23/09/2005 - 22:18:34 ---A- . (.Pinnacle Systems GmbH - Pinnacle Marvin Discrete Bus Enumerator.) -- C:\Windows\system32\drivers\MarvinBus64.sys [261120] O58 - SDL:[MD5.3D3C4B63F11F63F50253E734F0ACE9F2] - 20/12/2010 - 18:08:40 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\system32\drivers\mbam.sys [24152] O58 - SDL:[MD5.A55805F747C6EDB6A9080D7C633BD0F4] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for.) -- C:\Windows\system32\drivers\megasas.sys [35392] O58 - SDL:[MD5.BAF74CE0072480C3B6B7C13B2A94D6B3] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\system32\drivers\MegaSR.sys [284736] O58 - SDL:[MD5.77889813BE4D166CDAB78DDBA990DA92] - 14/07/2009 - 02:48:26 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\system32\drivers\nfrd960.sys [51264] O58 - SDL:[MD5.3E38712941E9BB4DDBEE00AFFE3FED3D] - 14/07/2009 - 02:48:27 ---A- . (.NVIDIA Corporation - NVIDIA® nForce RAID Driver.) -- C:\Windows\system32\drivers\nvraid.sys [149056] O58 - SDL:[MD5.477DC4D6DEB99BE37084C9AC6D013DA1] - 14/07/2009 - 02:45:45 ---A- . (.NVIDIA Corporation - NVIDIA® nForce Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor.sys [167488] O58 - SDL:[MD5.A53A15A11EBFD21077463EE2C7AFEEF0] - 14/07/2009 - 02:45:46 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\system32\drivers\ql2300.sys [1524816] O58 - SDL:[MD5.4F6D12B51DE1AAEFF7DC58C4D75423C8] - 14/07/2009 - 02:45:45 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\system32\drivers\ql40xx.sys [128592] O58 - SDL:[MD5.3EA8A16169C26AFBEB544E0E48421186] - 10/06/2009 - 21:37:19 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\system32\drivers\secdrv.sys [23040] O58 - SDL:[MD5.843CAF1E5FDE1FFD5FF768F23A51E2E1] - 14/07/2009 - 02:45:45 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\system32\drivers\sisraid2.sys [43584] O58 - SDL:[MD5.6A6C106D42E9FFFF8B9FCB4F754F6DA4] - 14/07/2009 - 02:45:46 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\system32\drivers\sisraid4.sys [80464] O58 - SDL:[MD5.100000000000000000000000ECEF1800] - 08/08/2010 - 00:00:00 ---A- . (...) -- C:\Windows\system32\drivers\sptd.sys [834544] O58 - SDL:[MD5.602884696850C86434530790B110E8EB] - 18/05/2010 - 20:39:07 ---A- . (.Duplex Secure Ltd. - SCSI Pass Through Direct Host.) -- C:\Windows\system32\drivers\sptd.sys.vir [834544] O58 - SDL:[MD5.E57B778208C783D8DEBAB320C16A1B82] - 12/11/2009 - 13:48:56 ---A- . (...) -- C:\Windows\system32\drivers\StarOpen.sys [5504] O58 - SDL:[MD5.F3817967ED533D08327DC73BC4D5542A] - 14/07/2009 - 02:45:55 ---A- . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\Windows\system32\drivers\stexstor.sys [24656] O58 - SDL:[MD5.F724B03C3DFAACF08D17D38BF3333583] - 28/09/2010 - 15:44:52 ---A- . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\Windows\system32\drivers\usbaapl64.sys [51712] O58 - SDL:[MD5.E5689D93FFE4E5D66C0178761240DD54] - 14/07/2009 - 02:45:55 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\viaide.sys [17488] O58 - SDL:[MD5.5E2016EA6EBACA03C04FEAC5F330D997] - 14/07/2009 - 02:45:55 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\system32\drivers\vsmraid.sys [161872] O58 - SDL:[MD5.A2AD422E0B6579F16DA61A55C6245CC2] - 28/12/2007 - 04:04:56 ---A- . (...) -- C:\Windows\system32\drivers\Xbox.sys [34992] O58 - SDL:[MD5.1E6438D4EA6E1174A3B3B1EDC4DE660B] - 18/03/2009 - 16:35:42 --HA- . (.LogMeIn, Inc. - Hamachi Virtual Network Interface Driver.) -- C:\Windows\system32\hamachi.sys [33856] O58 - SDL:[MD5.A82C01606DC27D05D9D3BFB6BB807E32] - 04/06/2010 - 19:44:51 ---A- . (...) -- C:\Windows\SysWOW64\drivers\AsIO.sys [13440] O58 - SDL:[MD5.DE7CBA8A38AE0C404EB2ACD08D18AA3E] - 26/05/2010 - 10:25:36 ---A- . (...) -- C:\Windows\SysWOW64\drivers\fsbts.sys [33920] O58 - SDL:[MD5.D68E165C3123ABA3B1282EDDB4213BD8] - 20/12/2010 - 18:09:00 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\SysWOW64\drivers\mbamswissarmy.sys [38224] O58 - SDL:[MD5.F92254B0BCFCD10CAAC7BCCC7CB7F467] - 12/11/2009 - 13:48:56 ---A- . (...) -- C:\Windows\SysWOW64\drivers\StarOpen.sys [7168] O58 - SDL:[MD5.599A536279FAC14B01D51FAF20DC3FD9] - 28/12/2007 - 04:05:28 ---A- . (...) -- C:\Windows\SysWOW64\drivers\Xbox.sys [29232] O58 - SDL:[MD5.5F9785E7535F8F602CB294A54962C9E7] - 07/02/2007 - 19:27:46 ---A- . (.Windows ® Server 2003 DDK provider - SpeedFan Device Driver.) -- C:\Windows\SysWOW64\speedfan.sys [14104] ---\\ Liste des outils de nettoyage (O63) O63 - Logiciel: HijackThis 2.0.2 - (.TrendMicro.) [HKLM][64Bits] -- HijackThis O63 - Logiciel: ZHPDiag 1.27 - (.Nicolas Coolman.) [HKLM][64Bits] -- ZHPDiag_is1 ---\\ Liste des services Legacy (O64) O64 - Services: CurCS - (.not file.) - 14637941 (14637941) .(...) - LEGACY_14637941 O64 - Services: CurCS - (.not file.) - 14637942 Boot Guard Driver (14637942) .(...) - LEGACY_14637942 O64 - Services: CurCS - (.not file.) - 68642381 (68642381) .(...) - LEGACY_68642381 O64 - Services: CurCS - (.not file.) - 68642382 Boot Guard Driver (68642382) .(...) - LEGACY_68642382 O64 - Services: CurCS - (.not file.) - acedrv11 (acedrv11) .(...) - LEGACY_ACEDRV11 O64 - Services: CurCS - C:\Windows\System32\DRIVERS\atikmdag.sys - amdkmdag (amdkmdag) .(.ATI Technologies Inc. - ATI Radeon Kernel Mode Driver.) - LEGACY_AMDKMDAG O64 - Services: CurCS - C:\Windows\Syswow64\drivers\AsIO.sys - AsIO (AsIO) .(...) - LEGACY_ASIO O64 - Services: CurCS - C:\Windows\system32\Drivers\ASWFSBLK.sys - (.not file.) - aswFsBlk (aswFsBlk) .(...) - LEGACY_ASWFSBLK O64 - Services: CurCS - C:\Windows\system32\drivers\aswMonFlt.sys - aswMonFlt (aswMonFlt) .(.AVAST Software - avast! File System Minifilter for Windows 2.) - LEGACY_ASWMONFLT O64 - Services: CurCS - C:\Windows\system32\Drivers\ASWRDR.sys - (.not file.) - aswRdr (aswRdr) .(...) - LEGACY_ASWRDR O64 - Services: CurCS - C:\Windows\system32\Drivers\ASWSNX.sys - (.not file.) - aswSnx (aswSnx) .(...) - LEGACY_ASWSNX O64 - Services: CurCS - C:\Windows\system32\Drivers\ASWSP.sys - (.not file.) - aswSP (aswSP) .(...) - LEGACY_ASWSP O64 - Services: CurCS - C:\Windows\system32\Drivers\ASWTDI.sys - (.not file.) - avast! Network Shield Support (aswTdi) .(...) - LEGACY_ASWTDI O64 - Services: CurCS - E:\Program Files (x86)\AMD GPU Clock Tool\atillk64.sys - atillk64 (atillk64) .(.ATI Technologies Inc. - ATI Diagnostics Hardware Abstraction Sys.) - LEGACY_ATILLK64 O64 - Services: CurCS - C:\Windows\System32\DRIVERS\atksgt.sys - atksgt (atksgt) .(...) - LEGACY_ATKSGT O64 - Services: CurCS - C:\Windows\system32\Drivers\BEEP.sys - (.not file.) - Beep (Beep) .(...) - LEGACY_BEEP O64 - Services: CurCS - (.not file.) - cpuz130 (cpuz130) .(...) - LEGACY_CPUZ130 O64 - Services: CurCS - C:\Windows\system32\drivers\cpuz133_x64.sys - cpuz133 (cpuz133) .(.Windows ® Win 7 DDK provider - CPUID Driver.) - LEGACY_CPUZ133 O64 - Services: CurCS - (.not file.) - DrWEB Firewall Application Filter (DRWEBAF) .(...) - LEGACY_DRWEBAF O64 - Services: CurCS - (.not file.) - DrWeb Protection (DwProt) .(...) - LEGACY_DWPROT O64 - Services: CurCS - E:\Program Files (x86)\EVEREST Ultimate Edition\kerneld.amd64 - Lavalys EVEREST Kernel Driver (EverestDriver) .(...) - LEGACY_EVERESTDRIVER O64 - Services: CurCS - C:\Windows\system32\Drivers\FASTFAT.sys - (.not file.) - FAT12/16/32 File System Driver (fastfat) .(...) - LEGACY_FASTFAT O64 - Services: CurCS - C:\Windows\system32\Drivers\FS_REC.sys - Fs_Rec (Fs_Rec) .(...) - LEGACY_FS_REC O64 - Services: CurCS - (.not file.) - ImmunetProtectDriver (ImmunetProtectDriver) .(...) - LEGACY_IMMUNETPROTECTDRIVER O64 - Services: CurCS - (.not file.) - ImmunetSelfProtectDriver (ImmunetSelfProtectDriver) .(...) - LEGACY_IMMUNETSELFPROTECTDRIVER O64 - Services: CurCS - C:\Windows\System32\DRIVERS\lirsgt.sys - lirsgt (lirsgt) .(...) - LEGACY_LIRSGT O64 - Services: CurCS - C:\Windows\system32\Drivers\MSFS.sys - Msfs (Msfs) .(...) - LEGACY_MSFS O64 - Services: CurCS - C:\Windows\system32\Drivers\NDPROXY.sys - NDProxy (NDProxy) .(...) - LEGACY_NDPROXY O64 - Services: CurCS - (.not file.) - NetGroup Packet Filter Driver (NPF) .(...) - LEGACY_NPF O64 - Services: CurCS - C:\Windows\system32\Drivers\NPFS.sys - Npfs (Npfs) .(...) - LEGACY_NPFS O64 - Services: CurCS - C:\Windows\system32\Drivers\NTFS.sys - Ntfs (Ntfs) .(...) - LEGACY_NTFS O64 - Services: CurCS - C:\Windows\system32\Drivers\NULL.sys - Null (Null) .(...) - LEGACY_NULL O64 - Services: CurCS - E:\Program Files (x86)\SiSoftware Sandra Lite 2010\WNt500x64\Sandra.sys (.not file.) - SANDRA (SANDRA) .(...) - LEGACY_SANDRA O64 - Services: CurCS - (.not file.) - SASDIFSV (SASDIFSV) .(...) - LEGACY_SASDIFSV O64 - Services: CurCS - (.not file.) - SASKUTIL (SASKUTIL) .(...) - LEGACY_SASKUTIL O64 - Services: CurCS - C:\Windows\system32\Drivers\SECDRV.sys - (.not file.) - Security Driver (secdrv) .(...) - LEGACY_SECDRV O64 - Services: CurCS - (.not file.) - setup_9.0.0.722_13.09.2010_10-27drv (setup_9.0.0.722_13.09.2010_10-27drv) .(...) - LEGACY_SETUP_9.0.0.722_13.09.2010_10-27DRV O64 - Services: CurCS - (.not file.) - setup_9.0.0.722_27.05.2010_11-29drv (setup_9.0.0.722_27.05.2010_11-29drv) .(...) - LEGACY_SETUP_9.0.0.722_27.05.2010_11-29DRV O64 - Services: CurCS - C:\Windows\Syswow64\speedfan.sys - speedfan (speedfan) .(.Windows ® Server 2003 DDK provider - SpeedFan Device Driver.) - LEGACY_SPEEDFAN O64 - Services: CurCS - (.not file.) - DrWeb file system scanner (SpiderG3) .(...) - LEGACY_SPIDERG3 O64 - Services: CurCS - C:\Windows\system32\Drivers\SPLDR.sys - (.not file.) - Security Processor Loader Driver (spldr) .(...) - LEGACY_SPLDR O64 - Services: CurCS - C:\Windows\system32\Drivers\SPTD.sys - sptd (sptd) .(...) - LEGACY_SPTD ---\\ File Associations Shell Spawning (O67) O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.exe O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\SysWow64\WScript.exe O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.html> <htmlfile>[HKCR\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.exe O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\SysWow64\WScript.exe O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe ---\\ Start Menu Internet (O68) O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe ---\\ Search Browser Infection (O69) O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - Bing O69 - SBI: SearchScopes [HKCU] {1058FF31-0678-40F8-ACD8-065AEBCF45DD} - (Google) - Google O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Google) - Google O69 - SBI: SearchScopes [HKCU] {DEBFD70F-AB2C-409B-81DD-C2D6DABEFC8C} [DefaultScope] - (Google) - Google ---\\ Recherche particuliere à la racine de certains dossiers (O84) [MD5.E152C2E083BB18DF3770DE4040E3F391] [sPRF] (.Pas de propriétaire - Pas de description.) -- C:\Users\Fab\AppData\Roaming\SetValue.bat [35] ---\\ Firewall Active Exception List (FirewallRules) (O87) O87 - FAEL: "FPS-SpoolSvc-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\spoolsv.exe (.not file.) O87 - FAEL: "FPS-SpoolSvc-In-TCP" |In - Public - P6 - TRUE | .(...) -- C:\Windows\system32\spoolsv.exe (.not file.) O87 - FAEL: "CoreNet-GP-LSASS-Out-TCP" |Out - Domain - P6 - TRUE | .(...) -- C:\Windows\system32\lsass.exe (.not file.) O87 - FAEL: "RemoteSvcAdmin-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\services.exe (.not file.) O87 - FAEL: "RemoteSvcAdmin-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Windows\system32\services.exe (.not file.) O87 - FAEL: "NetPres-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "NetPres-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "NetPres-WSD-In-UDP" |In - None - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "NetPres-WSD-Out-UDP" |Out - None - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "NetPres-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "NetPres-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "TCP Query User{31FCC43C-9B45-4D28-B07D-27E771240615}F:\jeux\grid\grid.exe" | In - Private - P6 - TRUE | .(.Codemasters - GRID Executable.) -- F:\jeux\grid\grid.exe O87 - FAEL: "UDP Query User{DDB5D51B-3946-46FD-A595-74D72A1C3084}F:\jeux\grid\grid.exe" | In - Private - P17 - TRUE | .(.Codemasters - GRID Executable.) -- F:\jeux\grid\grid.exe O87 - FAEL: "{48F34A51-2461-4FA2-99AB-4C325CD23458}" | In - Private - P6 - FALSE | .(.Codemasters - DiRT2 Executable.) -- F:\Jeux\DiRT2\dirt2_game.exe O87 - FAEL: "{430F49D3-FAB6-4A09-9546-F0192C3C56B5}" | In - Private - P17 - FALSE | .(.Codemasters - DiRT2 Executable.) -- F:\Jeux\DiRT2\dirt2_game.exe O87 - FAEL: "TCP Query User{0386787D-1AF9-4DED-804D-62154F6D66E1}C:\program files (x86)\internet explorer\iexplore.exe" | In - Private - P6 - TRUE | .(.Microsoft Corporation.) -- C:\program files (x86)\internet explorer\iexplore.exe O87 - FAEL: "UDP Query User{53364A3A-B75C-40F2-A9DE-84C5E4A4D9D4}C:\program files (x86)\internet explorer\iexplore.exe" | In - Private - P17 - TRUE | .(.Microsoft Corporation.) -- C:\program files (x86)\internet explorer\iexplore.exe O87 - FAEL: "{0F3224FA-8793-40F8-B57B-F85F75C76D3A}" | In - Public - P6 - FALSE | .(...) -- F:\Jeux\Assassin's Creed II\AssassinsCreedIIGame.exe O87 - FAEL: "{FE604D8E-7756-4175-8592-F427A98AE815}" | In - Public - P17 - FALSE | .(...) -- F:\Jeux\Assassin's Creed II\AssassinsCreedIIGame.exe O87 - FAEL: "{84686787-8849-4431-B55F-D11BE8941627}" | In - Public - P6 - FALSE | .(.Ubisoft - Autopatch system.) -- F:\Jeux\Assassin's Creed II\AssassinsCreedII.exe O87 - FAEL: "{CEEC6E75-0DA5-4BB8-B4DF-F9971D95FC8C}" | In - Public - P17 - FALSE | .(.Ubisoft - Autopatch system.) -- F:\Jeux\Assassin's Creed II\AssassinsCreedII.exe O87 - FAEL: "{94065717-F950-4282-8477-0EA11563D9EF}" | In - Public - P6 - FALSE | .(.Ubisoft Entertainment - UPlayBrowser Application.) -- F:\Jeux\Assassin's Creed II\UPlayBrowser.exe O87 - FAEL: "{6FD9B743-6B5C-443A-A851-A374C8DF3D64}" | In - Public - P17 - FALSE | .(.Ubisoft Entertainment - UPlayBrowser Application.) -- F:\Jeux\Assassin's Creed II\UPlayBrowser.exe O87 - FAEL: "{5EF568E4-7DF0-4A21-A333-2FE521A572BF}" | In - Private - P6 - TRUE | .(...) -- E:\Program Files (x86)\Steam\SteamApps\common\call of duty modern warfare 2\iw4sp.exe O87 - FAEL: "{23881E7C-9480-4988-BB03-2D5D0C69DF60}" | In - Private - P17 - TRUE | .(...) -- E:\Program Files (x86)\Steam\SteamApps\common\call of duty modern warfare 2\iw4sp.exe O87 - FAEL: "{D01A8F7E-77F6-46E9-999B-C60D537F7D6A}" | In - Domain - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- E:\Program Files (x86)\Skype\Phone\Skype.exe O87 - FAEL: "{2B08AD4C-A848-4A0D-A9E3-98AD5CB43F6E}" | In - Private - P6 - FALSE | .(...) -- F:\Jeux\Assassin's Creed II\AssassinsCreedIIGame.exe O87 - FAEL: "{ED126A1C-188A-4D8A-95ED-1E71FCA09C8A}" | In - Private - P17 - FALSE | .(...) -- F:\Jeux\Assassin's Creed II\AssassinsCreedIIGame.exe O87 - FAEL: "{8F81B338-B538-46A5-A99E-02FB4AC301B6}" | In - Private - P6 - FALSE | .(.Ubisoft - Autopatch system.) -- F:\Jeux\Assassin's Creed II\AssassinsCreedII.exe O87 - FAEL: "{907DEFCC-3796-434F-99BE-D80492BFD39E}" | In - Private - P17 - FALSE | .(.Ubisoft - Autopatch system.) -- F:\Jeux\Assassin's Creed II\AssassinsCreedII.exe O87 - FAEL: "{7BD5B903-7CF2-46A3-AB39-9422CD18B844}" | In - Private - P6 - FALSE | .(.Ubisoft Entertainment - UPlayBrowser Application.) -- F:\Jeux\Assassin's Creed II\UPlayBrowser.exe O87 - FAEL: "{FB70FD89-0819-4915-9771-B5BFFEC0FA1D}" | In - Private - P17 - FALSE | .(.Ubisoft Entertainment - UPlayBrowser Application.) -- F:\Jeux\Assassin's Creed II\UPlayBrowser.exe O87 - FAEL: "{C0C7B7A4-CD48-42D4-9AD3-E06366E47C25}" | In - Private - P6 - TRUE | .(...) -- E:\Program Files (x86)\Steam\SteamApps\common\call of duty modern warfare 2\iw4mp.exe O87 - FAEL: "{6D2E1EC3-17C8-4DF6-9277-7D98AA8C9C72}" | In - Private - P17 - TRUE | .(...) -- E:\Program Files (x86)\Steam\SteamApps\common\call of duty modern warfare 2\iw4mp.exe O87 - FAEL: "{4434190E-394C-4EEB-8BAB-679CC34ED401}" | In - Private - P6 - FALSE | .(.Valve Corporation - Steam.) -- E:\Program Files (x86)\Steam\Steam.exe O87 - FAEL: "{1A7666E9-CB5E-473C-AA34-582F5CBC6BDF}" | In - Private - P17 - FALSE | .(.Valve Corporation - Steam.) -- E:\Program Files (x86)\Steam\Steam.exe O87 - FAEL: "{7FA81728-66CC-470C-8B5A-95E9A651E2C7}" | In - Private - P6 - TRUE | .(...) -- E:\Program Files (x86)\VLC\vlc.exe O87 - FAEL: "{254F76A1-CC4C-426C-9292-5D24101ACA36}" | In - Private - P17 - TRUE | .(...) -- E:\Program Files (x86)\VLC\vlc.exe O87 - FAEL: "{47D97367-5A10-4894-96B6-58C464BD27ED}" | In - None - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- E:\Program Files (x86)\Skype\Phone\Skype.exe O87 - FAEL: "{CAC949E8-94FB-4C82-97BE-6D1A37A51295}" | In - Private - P6 - TRUE | .(.Codemasters - F1 2010 Executable.) -- F:\Jeux\F1 2010\F1_2010_game.exe O87 - FAEL: "{228F520B-66B3-440A-B3D5-EEE7A4068ABC}" | In - Private - P17 - TRUE | .(.Codemasters - F1 2010 Executable.) -- F:\Jeux\F1 2010\F1_2010_game.exe O87 - FAEL: "TCP Query User{23EE05A4-F35B-4C73-86A2-CB35B1AF8F6D}E:\program files (x86)\utorrent\utorrent.exe" | In - Public - P6 - TRUE | .(.BitTorrent, Inc. - µTorrent.) -- E:\program files (x86)\utorrent\utorrent.exe O87 - FAEL: "UDP Query User{4F106DBB-D6C0-46D2-AF10-9BF15EF62EAD}E:\program files (x86)\utorrent\utorrent.exe" | In - Public - P17 - TRUE | .(.BitTorrent, Inc. - µTorrent.) -- E:\program files (x86)\utorrent\utorrent.exe O87 - FAEL: "{C09520A2-D9E6-4D71-926C-5BF6260C66DA}" | In - Domain - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- E:\Program Files (x86)\Skype\Phone\Skype.exe O87 - FAEL: "{58EFD849-F068-4247-A297-6AEE721E0BC8}" | In - Domain - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- E:\Program Files (x86)\Skype\Phone\Skype.exe O87 - FAEL: "{46696FDF-AC97-477A-BFD7-597EC0A302BE}" | In - Domain - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- E:\Program Files (x86)\Skype\Phone\Skype.exe O87 - FAEL: "{092A756B-F422-4239-A26D-F3426DE8B839}" | In - Domain - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- E:\Program Files (x86)\Skype\Phone\Skype.exe O87 - FAEL: "{57BFD474-9B78-4FF1-A4DF-1B083FC6F0E6}" | In - Domain - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- E:\Program Files (x86)\Skype\Phone\Skype.exe O87 - FAEL: "{08E913FE-27E0-441F-B665-BD5021FBAE83}" | In - Public - P17 - FALSE | .(.Skype Technologies S.A. - Skype.) -- E:\Program Files (x86)\Skype\Phone\Skype.exe O87 - FAEL: "{9C4113F6-2D86-4396-948B-38398097C98B}" | In - Public - P17 - FALSE | .(.Skype Technologies S.A. - Skype.) -- E:\Program Files (x86)\Skype\Phone\Skype.exe O87 - FAEL: "{C5DFF8C6-3C20-4377-A69F-4FA7585E2997}" | In - Public - P17 - FALSE | .(.Skype Technologies S.A. - Skype.) -- E:\Program Files (x86)\Skype\Phone\Skype.exe O87 - FAEL: "{75E049BC-74B4-4EF5-AC0D-A80B16C47230}" | In - Public - P17 - FALSE | .(.Skype Technologies S.A. - Skype.) -- E:\Program Files (x86)\Skype\Phone\Skype.exe O87 - FAEL: "{9485E4BB-AF32-4334-B36E-D2D34860853B}" | In - Public - P17 - FALSE | .(.Skype Technologies S.A. - Skype.) -- E:\Program Files (x86)\Skype\Phone\Skype.exe O87 - FAEL: "{3606E010-5765-4006-BF2B-CD85428EADD2}" | In - Domain - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- E:\Program Files (x86)\Skype\Phone\Skype.exe O87 - FAEL: "{323AAB5D-12D7-45F3-B043-D2E6CFA6AF79}" | In - Domain - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- E:\Program Files (x86)\Skype\Phone\Skype.exe O87 - FAEL: "{9F929748-064C-4D76-93C9-3C2C28B90F82}" | In - Domain - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- E:\Program Files (x86)\Skype\Phone\Skype.exe O87 - FAEL: "{B006FD46-0936-48D5-BCED-7C288694A657}" | In - Private - P6 - FALSE | .(...) -- F:\Jeux\Call of Duty - Black Ops\BlackOps.exe O87 - FAEL: "{627621B4-5546-4F14-A1E9-538C0C7A1102}" | In - Private - P17 - FALSE | .(...) -- F:\Jeux\Call of Duty - Black Ops\BlackOps.exe O87 - FAEL: "{BF2981C8-AF26-4219-AA16-FD47C1AC6375}" | In - Domain - P6 - FALSE | .(...) -- F:\Jeux\Call of Duty - Black Ops\BlackOps.exe O87 - FAEL: "{46BFA528-B384-4926-9E95-FF3A01CCB88D}" | In - Domain - P17 - FALSE | .(...) -- F:\Jeux\Call of Duty - Black Ops\BlackOps.exe O87 - FAEL: "{976A7ACE-CAEF-44DA-8C6C-F273EF34218B}" | In - Public - P17 - FALSE | .(.Skype Technologies S.A. - Skype.) -- E:\Program Files (x86)\Skype\Phone\Skype.exe O87 - FAEL: "{F68561E2-AA6D-4A81-A75A-907B8E9DF8C4}" | In - Public - P17 - FALSE | .(.Skype Technologies S.A. - Skype.) -- E:\Program Files (x86)\Skype\Phone\Skype.exe O87 - FAEL: "{BB360E55-8A7E-41A1-AE82-1E60CF3C8A77}" | In - Public - P17 - FALSE | .(.Skype Technologies S.A. - Skype.) -- E:\Program Files (x86)\Skype\Phone\Skype.exe O87 - FAEL: "TCP Query User{A1BF6FC3-C3A7-4433-A336-23B2C1195CB2}F:\jeux\call of duty - black ops\blackopsmp.exe" | In - Private - P6 - FALSE | .(...) -- F:\jeux\call of duty - black ops\blackopsmp.exe O87 - FAEL: "UDP Query User{40B75C8C-C143-4D66-B1FD-985A6C98BBC6}F:\jeux\call of duty - black ops\blackopsmp.exe" | In - Private - P17 - FALSE | .(...) -- F:\jeux\call of duty - black ops\blackopsmp.exe O87 - FAEL: "TCP Query User{5C073364-C688-496E-AD2C-1334258FB330}E:\program files (x86)\zune\zune.exe" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Microsoft Zune.) -- E:\program files (x86)\zune\zune.exe O87 - FAEL: "UDP Query User{BCE7C40E-6818-457D-88B1-898F67C082FD}E:\program files (x86)\zune\zune.exe" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Microsoft Zune.) -- E:\program files (x86)\zune\zune.exe O87 - FAEL: "{F369501E-0772-43C6-AA46-B73BA21CB428}" | In - Private - P6 - FALSE | .(.Pinnacle Systems - Render Manager.) -- E:\Program Files (x86)\Pinnacle\Studio 14\Programs\RM.exe O87 - FAEL: "{1654AED3-3107-4417-8DE1-C236ED101DAB}" | In - Private - P17 - FALSE | .(.Pinnacle Systems - Render Manager.) -- E:\Program Files (x86)\Pinnacle\Studio 14\Programs\RM.exe O87 - FAEL: "{E474F7E1-665C-400D-A8CC-F4D61F288B9E}" | In - Private - P6 - FALSE | .(.Pinnacle Systems - Studio program file.) -- E:\Program Files (x86)\Pinnacle\Studio 14\Programs\Studio.exe O87 - FAEL: "{51A710D5-951D-4E66-90CC-C8E5FD878223}" | In - Private - P17 - FALSE | .(.Pinnacle Systems - Studio program file.) -- E:\Program Files (x86)\Pinnacle\Studio 14\Programs\Studio.exe O87 - FAEL: "TCP Query User{D508AB91-3D2D-494C-9796-7E50CD1D651A}F:\jeux\call of juarez - bound in blood\cojbibgame_x86.exe" | In - Private - P6 - TRUE | .(.Techland.) -- F:\jeux\call of juarez - bound in blood\cojbibgame_x86.exe O87 - FAEL: "UDP Query User{99732EE3-55F9-4C1C-9CBA-0F7E7BD57C1D}F:\jeux\call of juarez - bound in blood\cojbibgame_x86.exe" | In - Private - P17 - TRUE | .(.Techland.) -- F:\jeux\call of juarez - bound in blood\cojbibgame_x86.exe O87 - FAEL: "{2D5F2189-9E69-4F0E-B029-4BB43ED054A8}" | In - Domain - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- E:\Program Files (x86)\Skype\Phone\Skype.exe O87 - FAEL: "{FC573965-19A3-445C-A2BF-8EEFF082185D}" | In - Domain - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- E:\Program Files (x86)\Skype\Phone\Skype.exe O87 - FAEL: "{8F98D107-F1E0-4C46-85BC-936275B910AA}" | In - Domain - P17 - TRUE | .(.Skype Technologies - Skype Extras Manager.) -- E:\Program Files (x86)\Skype\Plugin Manager\skypePM.exe O87 - FAEL: "{7FBA7385-BCE3-4FF7-BBC2-C05AF1977BE7}" | In - Private - P6 - TRUE | .(.CybelSoft - Service de détection matériel.) -- C:\Program Files (x86)\ma-config.com\maconfservice.exe O87 - FAEL: "{C83FD172-5183-4AA4-A066-140EC5854140}" | In - Private - P17 - TRUE | .(.CybelSoft - Service de détection matériel.) -- C:\Program Files (x86)\ma-config.com\maconfservice.exe O87 - FAEL: "{2201CD01-6C5B-4CD6-8291-182407C4A034}" | In - None - P6 - TRUE | .(.BitTorrent, Inc. - µTorrent.) -- e:\Program Files (x86)\uTorrent\uTorrent.exe O87 - FAEL: "{1A1A6637-AB68-4F1F-9A45-2680FEDD3D8A}" | In - None - P17 - TRUE | .(.BitTorrent, Inc. - µTorrent.) -- e:\Program Files (x86)\uTorrent\uTorrent.exe O87 - FAEL: "{0F88364F-E7F4-437B-A973-46D5871224A8}" | In - Public - P6 - FALSE | .(.Skype Technologies S.A. - Skype.) -- E:\Program Files (x86)\Skype\Phone\Skype.exe O87 - FAEL: "{14640148-7C40-4FD7-B3EC-8B32B48B99A4}" | In - Public - P6 - FALSE | .(.Skype Technologies S.A. - Skype.) -- E:\Program Files (x86)\Skype\Phone\Skype.exe O87 - FAEL: "{271339BB-1143-4ABB-A691-EACF15633859}" | In - Public - P6 - TRUE | .(.Skype Technologies - Skype Extras Manager.) -- E:\Program Files (x86)\Skype\Plugin Manager\skypePM.exe O87 - FAEL: "TCP Query User{FBAD6FCE-5D3D-4968-911E-DD795B4F4987}E:\program files (x86)\hobbyist software\vlc setup helper\mdnsresponder.exe" | In - Private - P6 - TRUE | .(.Apple Inc..) -- E:\program files (x86)\hobbyist software\vlc setup helper\mdnsre O87 - FAEL: "UDP Query User{E472FA61-801C-4523-B28F-530D40BCA55E}E:\program files (x86)\hobbyist software\vlc setup helper\mdnsresponder.exe" | In - Private - P17 - TRUE | .(.Apple Inc..) -- E:\program files (x86)\hobbyist software\vlc setup helper\mdnsr O87 - FAEL: "{C46FDB0D-ACE1-41C2-9A9D-4F53125D837F}" | In - Private - P6 - TRUE | .(.Apache Software Foundation - Apache HTTP Server.) -- C:\Program Files (x86)\SFR\Media Center\httpd\httpd.exe O87 - FAEL: "{ABC18731-4A96-44F1-BE7A-C9687FA12AF8}" | In - Private - P17 - TRUE | .(.Apache Software Foundation - Apache HTTP Server.) -- C:\Program Files (x86)\SFR\Media Center\httpd\httpd.exe O87 - FAEL: "{521A2F91-4349-456C-BABC-8D1B1B1D71D7}" | In - Private - P6 - TRUE | .(.Kaos Studios - Homefront Game.) -- F:\Jeux\Homefront\Binaries\HOMEFRONT.exe O87 - FAEL: "{5FF795F8-67AE-42E8-85DF-E9D5E31801F8}" | In - Private - P17 - TRUE | .(.Kaos Studios - Homefront Game.) -- F:\Jeux\Homefront\Binaries\HOMEFRONT.exe O87 - FAEL: "{6D756F42-9BF6-4EDB-9543-036780B418A5}" | In - Domain - P6 - FALSE | .(.Kaos Studios - Homefront Game.) -- F:\Jeux\Homefront\Binaries\HOMEFRONT.exe O87 - FAEL: "{252084CA-B353-4CD5-9291-B19A106F0362}" | In - Domain - P17 - FALSE | .(.Kaos Studios - Homefront Game.) -- F:\Jeux\Homefront\Binaries\HOMEFRONT.exe O87 - FAEL: "{55287748-E546-448C-9BBE-B347073FC85A}" | In - Domain - P6 - FALSE | .(.Crytek GmbH - Pas de description.) -- F:\Jeux\Crysis 2\bin32\Crysis2.exe O87 - FAEL: "{6A604236-DC27-40E5-98D8-F099E6E33DEE}" | In - Domain - P17 - FALSE | .(.Crytek GmbH - Pas de description.) -- F:\Jeux\Crysis 2\bin32\Crysis2.exe O87 - FAEL: "{B46A2D08-1B8B-4B68-AAF4-37C000B94A0F}" | In - Domain - P6 - FALSE | .(.Crytek GmbH - Pas de description.) -- F:\Jeux\Crysis 2\bin32\Crysis2Launcher.exe O87 - FAEL: "{F28F4AEE-3A38-430C-8264-754C8604AD21}" | In - Domain - P17 - FALSE | .(.Crytek GmbH - Pas de description.) -- F:\Jeux\Crysis 2\bin32\Crysis2Launcher.exe O87 - FAEL: "TCP Query User{3FE348E7-DEB2-45B1-95EB-175C70FD52EA}F:\jeux\crysis 2\bin32\crysis2.exe" | In - Private - P6 - TRUE | .(.Crytek GmbH - Pas de description.) -- F:\jeux\crysis 2\bin32\crysis2.exe O87 - FAEL: "UDP Query User{02E47152-392D-46E7-A991-AE9633D51F43}F:\jeux\crysis 2\bin32\crysis2.exe" | In - Private - P17 - TRUE | .(.Crytek GmbH - Pas de description.) -- F:\jeux\crysis 2\bin32\crysis2.exe O87 - FAEL: "TCP Query User{1738CC4F-33EC-4BBC-B446-773F2BA8F1A7}F:\jeux\shift 2 unleashed\shift2u.exe" | In - Private - P6 - TRUE | .(.Electronic Arts Inc. - SHIFT 2 UNLEASHED™.) -- F:\jeux\shift 2 unleashed\shift2u.exe O87 - FAEL: "UDP Query User{1500E080-DD15-4BD6-B552-229CB70155DE}F:\jeux\shift 2 unleashed\shift2u.exe" | In - Private - P17 - TRUE | .(.Electronic Arts Inc. - SHIFT 2 UNLEASHED™.) -- F:\jeux\shift 2 unleashed\shift2u.exe ---\\ Scan Additionnel (O88) Database Version : 5522 - (16/04/2011) [HKCR\nctaudiofile2.audiofile2] =>Adware.RecordNRip [HKCR\nctaudiofile2.audiofile2.2] =>Adware.RecordNRip [HKCR\nctaudiofile2.audiofile2lameenc] =>Adware.RecordNRip [HKCR\nctaudiofile2.audiofile2lameenc.1] =>Adware.RecordNRip ---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) SR - | Auto 0 | (AMD External Events Utility) . (.AMD.) - C:\Windows\system32\atiesrxx.exe SR - | Auto 23/02/2011 42184 | (avast! Antivirus) . (.AVAST Software.) - E:\Program Files (x86)\Avast 5\AvastSvc.exe SS - | Demand 31/03/2010 26752 | (EverestDriver) . (...) - E:\Program Files (x86)\EVEREST Ultimate Edition\kerneld.amd64 SS - | Disabled 19/05/2010 135664 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe SS - | Demand 22/12/2009 136120 | (gusvc) . (.Google.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe SR - | Auto 28/03/2011 2111368 | LogMeIn Hamachi 2.0 Tunneling Engine (Hamachi2Svc) . (.LogMeIn Inc..) - E:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe SS - | Disabled 27/03/2005 305152 | (iphlpsvc) . (.AdSndUisb.) - C:\Windows\System32\svchost.exe SS - | Auto 18/04/2003 8192 | (KMService) . (...) - C:\Windows\system32\srvany.exe SS - | Demand 09/01/2011 310640 | (maconfservice) . (.CybelSoft.) - C:\Program Files (x86)\ma-config.com\maconfservice.exe SS - | Demand 09/01/2011 0 | (MEMSWEEP2) . (.Sophos Plc.) - C:\Windows\system32\CC09.tmp SS - | Disabled 04/03/2010 71096 | (NMSAccess) . (...) - e:\Program Files (x86)\CDBurnerXP\NMSAccessU.exe SS - | Demand 27/03/2005 305152 | regsvc.dll (RemoteRegistry) . (.AdSndUisb.) - C:\Windows\system32\svchost.exe SR - | Auto 26/01/2009 1153368 | (SBSDWSCService) . (.Safer Networking Ltd..) - E:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe SS - | Disabled 27/03/2005 305152 | (SessionEnv) . (.AdSndUisb.) - C:\Windows\System32\svchost.exe SS - | Demand 26/10/2010 155344 | (Sony Ericsson PCCompanion) . (.Avanquest Software.) - C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Companion\PCCService.exe SS - | Disabled 12/08/2010 407336 | (Steam Client Service) . (.Valve Corporation.) - C:\Program Files (x86)\Common Files\Steam\SteamService.exe SS - | Disabled 27/03/2005 305152 | (TrkWks) . (.AdSndUisb.) - C:\Windows\System32\svchost.exe SR - | Auto 27/03/2005 305152 | C:\Windows\system32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\system32\svchost.exe ---\\ Recherche Master Boot Record Infection (MBR)(O80) Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, GMER - Rootkit Detector and Remover Run by Fab at 16/04/2011 23:37:30 device: opened successfully user: error reading MBR Disk trace: error: Read Descripteur non valide kernel: error reading MBR ---\\ Recherche Master Boot Record Infection (MBRCheck)(O80) Written by ad13, http://ad13.geekstog Run by Fab at 16/04/2011 23:37:33 ********* Dump file Name ********* C:\PhysicalDisk0_MBR.bin ---\\ Liste des émulateurs de CD/DVD (Hook du MBR) O58 - SDL:[MD5.100000000000000000000000ECEF1800] - 08/08/2010 - 00:00:00 ---A- . (...) -- C:\Windows\system32\drivers\sptd.sys [834544] O58 - SDL:[MD5.602884696850C86434530790B110E8EB] - 18/05/2010 - 20:39:07 ---A- . (.Duplex Secure Ltd. - SCSI Pass Through Direct Host.) -- C:\Windows\system32\drivers\sptd.sys.vir [834544] End of the scan (1438 lines in 02mn 31s)(0)
×
×
  • Créer...