Pc rame

MBRCheck, version 1.2.3
(c) 2010, AD

Command-line:
Windows Version: Windows XP Professional
Windows Information: Service Pack 3 (build 2600)
Logical Drives Mask: 0x000003fc

Kernel Drivers (total 136):
0x804D7000 \WINDOWS\system32\ntkrnlpa.exe
0x806E5000 \WINDOWS\system32\hal.dll
0xBA5A8000 \WINDOWS\system32\KDCOM.DLL
0xBA4B8000 \WINDOWS\system32\BOOTVID.dll
0xB9F78000 ACPI.sys
0xBA5AA000 \WINDOWS\system32\DRIVERS\WMILIB.SYS
0xB9F67000 pci.sys
0xBA0A8000 isapnp.sys
0xBA0B8000 ohci1394.sys
0xBA0C8000 \WINDOWS\system32\DRIVERS\1394BUS.SYS
0xBA670000 pciide.sys
0xBA328000 \WINDOWS\system32\DRIVERS\PCIIDEX.SYS
0xBA0D8000 MountMgr.sys
0xB9F48000 ftdisk.sys
0xBA5AC000 dmload.sys
0xB9F22000 dmio.sys
0xBA330000 PartMgr.sys
0xBA0E8000 VolSnap.sys
0xB9F0A000 atapi.sys
0xBA0F8000 disk.sys
0xBA108000 \WINDOWS\system32\DRIVERS\CLASSPNP.SYS
0xB9EEA000 fltmgr.sys
0xB9ED8000 sr.sys
0xB9EAC000 MpFilter.sys
0xB9E95000 KSecDD.sys
0xB9E08000 Ntfs.sys
0xB9DDB000 NDIS.sys
0xB9DC1000 Mup.sys
0xBA138000 \SystemRoot\system32\DRIVERS\nic1394.sys
0xB936D000 \SystemRoot\system32\DRIVERS\intelppm.sys
0xB9224000 \SystemRoot\system32\DRIVERS\ati2mtag.sys
0xB9210000 \SystemRoot\system32\DRIVERS\VIDEOPRT.SYS
0xB91D0000 \SystemRoot\system32\DRIVERS\e1e5132.sys
0xBA440000 \SystemRoot\system32\DRIVERS\usbuhci.sys
0xB91AC000 \SystemRoot\system32\DRIVERS\USBPORT.SYS
0xBA448000 \SystemRoot\system32\DRIVERS\usbehci.sys
0xB9184000 \SystemRoot\system32\DRIVERS\HDAudBus.sys
0xBA450000 \SystemRoot\system32\DRIVERS\fdc.sys
0xB9173000 \SystemRoot\system32\DRIVERS\serial.sys
0xBA578000 \SystemRoot\system32\DRIVERS\serenum.sys
0xB915F000 \SystemRoot\system32\DRIVERS\parport.sys
0xB935D000 \SystemRoot\system32\DRIVERS\i8042prt.sys
0xBA458000 \SystemRoot\system32\DRIVERS\point32.sys
0xBA460000 \SystemRoot\system32\DRIVERS\mouclass.sys
0xBA690000 \SystemRoot\system32\DRIVERS\audstub.sys
0xBA5D8000 \SystemRoot\System32\Drivers\RootMdm.sys
0xBA468000 \SystemRoot\System32\Drivers\Modem.SYS
0xB934D000 \SystemRoot\system32\DRIVERS\rasl2tp.sys
0xBA57C000 \SystemRoot\system32\DRIVERS\ndistapi.sys
0xB9148000 \SystemRoot\system32\DRIVERS\ndiswan.sys
0xB933D000 \SystemRoot\system32\DRIVERS\raspppoe.sys
0xB932D000 \SystemRoot\system32\DRIVERS\raspptp.sys
0xBA470000 \SystemRoot\system32\DRIVERS\TDI.SYS
0xB9137000 \SystemRoot\system32\DRIVERS\psched.sys
0xB931D000 \SystemRoot\system32\DRIVERS\msgpc.sys
0xBA478000 \SystemRoot\system32\DRIVERS\ptilink.sys
0xBA480000 \SystemRoot\system32\DRIVERS\raspti.sys
0xB9107000 \SystemRoot\system32\DRIVERS\rdpdr.sys
0xBA148000 \SystemRoot\system32\DRIVERS\termdd.sys
0xBA488000 \SystemRoot\system32\DRIVERS\kbdclass.sys
0xBA5DA000 \SystemRoot\system32\DRIVERS\swenum.sys
0xB90BC000 \SystemRoot\system32\DRIVERS\ks.sys
0xB905E000 \SystemRoot\system32\DRIVERS\update.sys
0xBA598000 \SystemRoot\system32\DRIVERS\mssmbios.sys
0xB904C000 \SystemRoot\system32\DRIVERS\ew_jubusenum.sys
0xBA158000 \SystemRoot\system32\DRIVERS\WDFLDR.SYS
0xB8FD0000 \SystemRoot\system32\DRIVERS\Wdf01000.sys
0xBA168000 \SystemRoot\System32\Drivers\NDProxy.SYS
0xBA198000 \SystemRoot\system32\DRIVERS\usbhub.sys
0xBA5E0000 \SystemRoot\system32\DRIVERS\USBD.SYS
0xB47D3000 \SystemRoot\system32\drivers\RtkHDAud.sys
0xB47AF000 \SystemRoot\system32\drivers\portcls.sys

rche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explor

Rapport de ZHPDiag v2013.4.6.35 par Nicolas Coolman, Update du 06/04/2013
Run by XP at 07/04/2013 09:50:40
State : Version à jour.
High Elevated Privileges : OK
UAC : Not Found


---\\ Web Browser
MSIE: Internet Explorer v8.0.6001.18702
GCIE: Google Chrome v26.0.1410.43 (Defaut)

---\\ Windows Product Information
~ Langage: Français
Windows XP Professional Service Pack 3 (Build 2600)
Windows Automatic Updates : OK
Windows Genuine Advantage : OK

---\\ System Information
~ Processor: x86 Family 15 Model 4 Stepping 1, GenuineIntel
~ Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 2046 MB (60% free)
System Restore: Activé (Enable)
System drive C: has 134 GB (89%) free of 149 GB

---\\ Logged in mode
~ Computer Name: HOME-223EEA635C
~ User Name: XP
~ All Users Names: XP, SUPPORT_388945a0, HelpAssistant, ASPNET, Administrateur,
~ Unselected Option: None
Logged in as Administrator

---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Documents and Settings\XP\Application Data\
~ %Desktop% : C:\Documents and Settings\XP\Bureau\
~ %Favorites% : C:\Documents and Settings\XP\Favoris\
~ %LocalAppData% : C:\Documents and Settings\XP\Local Settings\Application Data\
~ %StartMenu% : C:\Documents and Settings\XP\Menu Démarrer\
~ %Windir% : C:\WINDOWS\
~ %System% : C:\WINDOWS\system32\

---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 134 Go of 149 Go)
D:\ CD-ROM drive (Not Inserted)
E:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
F:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
G:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
H:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
I:\ CD-ROM drive (Free 0 Go of 0 Go)
J:\ Floppy drive, Flash card reader, USB Key (Not Inserted)



---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Intl: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] XMLLookup: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : Out Of Date
~ Security Center: Scanned in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.3EFE912DD25D2586E6A0341DB0A66F69] - (.Microsoft Corporation - Explorateur Windows.) (.13/04/2008 - 19:34:04.) -- C:\WINDOWS\Explorer.exe [979968]
[MD5.FCDD66EE148885E900285ADE8417E40B] - (.Microsoft Corporation - Internet Extensions for Win32.) (.05/02/2013 - 20:56:42.) -- C:\WINDOWS\system32\wininet.dll [916480]
[MD5.DD73D6B9F6B4CB630CF35B438B540174] - (.Microsoft Corporation - Application d'ouverture de session Windows NT.) (.13/04/2008 - 19:34:30.) -- C:\WINDOWS\system32\Winlogon.exe [512000]
[MD5.1E44BC1E83D8FD2305F8D452DB109CF9] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.17/08/2011 - 14:49:54.) -- C:\WINDOWS\system32\Drivers\AFD.sys [138496]
[MD5.9F3A2F5AA6875C72BF062C712CFA2674] - (.Microsoft Corporation - IDE/ATAPI Port Driver.) (.13/04/2008 - 11:40:32.) -- C:\WINDOWS\system32\Drivers\atapi.sys [96512]
[MD5.C885B02847F5D2FD45A24E219ED93B32] - (.Microsoft Corporation - CD-ROM File System Driver.) (.13/04/2008 - 12:14:22.) -- C:\WINDOWS\system32\Drivers\Cdfs.sys [63744]
[MD5.1F4260CC5B42272D71F79E570A27A4FE] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.13/04/2008 - 11:40:48.) -- C:\WINDOWS\system32\Drivers\Cdrom.sys [62976]
[MD5.31F923EB2170FC172C81ABDA0045D18C] - (.Microsoft Corporation - Pilote de cryptographie FIPS.) (.13/04/2008 - 18:57:40.) -- C:\WINDOWS\system32\Drivers\Fips.sys [44672]
[MD5.573C7D0A32852B48F3058CFD8026F511] - (.Windows (R) Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) (.13/04/2008 - 09:36:06.) -- C:\WINDOWS\system32\Drivers\HDAudBus.sys [144384]
[MD5.A09BDC4ED10E3B2E0EC27BB94AF32516] - (.Microsoft Corporation - Pilote de port i8042.) (.13/04/2008 - 19:00:54.) -- C:\WINDOWS\system32\Drivers\i8042prt.sys [54144]
[MD5.083A052659F5310DD8B6A6CB05EDCF8E] - (.Microsoft Corporation - IMAPI Kernel Driver.) (.13/04/2008 - 11:41:00.) -- C:\WINDOWS\system32\Drivers\Imapi.sys [42112]
[MD5.CC748EA12C6EFFDE940EE98098BF96BB] - (.Microsoft Corporation - IP Network Address Translator.) (.13/04/2008 - 11:57:16.) -- C:\WINDOWS\system32\Drivers\IpNat.sys [152832]
[MD5.23C74D75E36E7158768DD63D92789A91] - (.Microsoft Corporation - IPSec Driver.) (.13/04/2008 - 12:19:44.) -- C:\WINDOWS\system32\Drivers\IPSec.sys [75264]
[MD5.7D304A5EB4344EBEEAB53A2FE3FFB9F0] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.15/07/2011 - 14:29:31.) -- C:\WINDOWS\system32\Drivers\MRxSmb.sys [456320]
[MD5.74B2B2F5BEA5E9A3DC021D685551BD3D] - (.Microsoft Corporation - MBT Transport driver.) (.13/04/2008 - 12:21:02.) -- C:\WINDOWS\system32\Drivers\netBT.sys [162816]
[MD5.78A08DD6A8D65E697C18E1DB01C5CDCA] - (.Microsoft Corporation - NT File System Driver.) (.13/04/2008 - 12:15:54.) -- C:\WINDOWS\system32\Drivers\ntfs.sys [574976]
[MD5.8FD0BDBEA875D06CCF6C945CA9ABAF75] - (.Microsoft Corporation - Pilote de port parallèle.) (.13/04/2008 - 19:09:42.) -- C:\WINDOWS\system32\Drivers\Parport.sys [80384]
[MD5.11B4A627BC9614B885C4969BFA5FF8A6] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.13/04/2008 - 12:19:44.) -- C:\WINDOWS\system32\Drivers\Rasl2tp.sys [51328]
[MD5.15CABD0F7C00C47C70124907916AF3F1] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.13/04/2008 - 11:32:52.) -- C:\WINDOWS\system32\Drivers\rdpdr.sys [196224]
[MD5.D8EB2A7904DB6C916EB5361878DDCBAE] - (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) (.13/04/2008 - 18:57:36.) -- C:\WINDOWS\system32\Drivers\redbook.sys [58752]
[MD5.46DE1126684369BACE4849E4FC8C43CA] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.13/04/2008 - 18:56:06.) -- C:\WINDOWS\system32\Drivers\volsnap.sys [53376]
~ Generic Processes: Scanned in 00mn 00s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 2/439
~ Mes musiques (My Musics) : 1/5
~ Mes Videos (My Videos) : 0/0
~ Mes Favoris (My Favorites) : 1/70
~ Mes Documents (My Documents) : 2/1266
~ Mon Bureau (My Desktop) : 0/4
~ Menu demarrer (Programs) : 1/60
~ Hidden Files: Scanned in 00mn 00s



---\\ Processus lancés
[MD5.D6C058E35B19F2999966E85433AFD760] - (.ATI Technologies Inc. - ATI External Event Utility EXE Module.) -- C:\WINDOWS\system32\Ati2evxx.exe [352256] [PID.980]
[MD5.C1F19D2BACBEE9AB64D9AE69E9859AC0] - (.Microsoft Corporation - Antimalware Service Executable.) -- c:\Program Files\Microsoft Security Client\MsMpEng.exe [20456] [PID.1108]
[MD5.9AC09551F559A1EEAFC0B19F624C233E] - (.Pas de propriétaire - DCSHOST.) -- C:\Documents and Settings\All Users\Application Data\DatacardService\DCService.exe [249856] [PID.176]
[MD5.7CF1B716372B89568AE4C0FE769F5869] - (.Microsoft Corporation - Machine Debug Manager.) -- C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\mdm.exe [335872] [PID.440]
[MD5.6B7E791395C0FDDDCBD577FB3475D6C2] - (.Realtek Semiconductor Corp. - Realtek HD Audio Control Panel.) -- C:\WINDOWS\RTHDCPL.exe [18789920] [PID.1972]
[MD5.60F3CCC045AE48B2736D042714DF445E] - (.Microsoft Corporation - IType.exe.) -- C:\Program Files\Microsoft IntelliType Pro\itype.exe [1442888] [PID.1724]
[MD5.7CEB241A5A11F4B49C7C3F3B68E31228] - (.Microsoft Corporation - IPoint.exe.) -- C:\Program Files\Microsoft IntelliPoint\ipoint.exe [1406024] [PID.1696]
[MD5.C637FC4638A96165256B28D38DE7B953] - (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [49208] [PID.1176]
[MD5.7DFCCC67990B6DE7F30F553A4E4612A4] - (...) -- C:\Program Files\RocketDock\RocketDock.exe [495616] [PID.2064]
[MD5.497F27E279C0F921E2130BB89C1CB5CA] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe [18705664] [PID.2096]
[MD5.749949494676218FFA99501F4AA22ECC] - (.OpenOffice.org - OpenOffice.org 3.4.1.) -- C:\Program Files\OpenOffice.org 3\program\soffice.exe [10376704] [PID.2236]
[MD5.4EE367B8B1964160A1F1B80095183D3A] - (.OpenOffice.org - OpenOffice.org 3.4.1.) -- C:\Program Files\OpenOffice.org 3\program\soffice.bin [10368512] [PID.2316]
[MD5.C500C2EFA7702DA00EE5A5EBD8F9CDF8] - (.Bouygues - Internet Mobile 3G+ Bouygues Telecom.) -- C:\Program Files\Bouygues Telecom\Internet 3G+\Bouygues.exe [323584] [PID.2412]
[MD5.916866151E11F2188321CD805CFF8C0B] - (.SmithMicro Inc. - RcAppSvc, Service Helper.) -- C:\Program Files\Bouygues Telecom\Internet 3G+\RcAppSvc.exe [114688] [PID.2460]
[MD5.B0BF698030DB6561393AE753C6D3F936] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [1312720] [PID.3100]
[MD5.043D073DFF5E3AD85FDA67D8C30F4305] - (.Microsoft Corporation - Jeu FreeCell du pack Entertainment.) -- C:\WINDOWS\system32\freecell.exe [55808] [PID.2296]
[MD5.7A6638028D84C2B87EAB6D0A0F38A095] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [6535680] [PID.1908]
[MD5.5E9A6658A2A69AE7EB195113B7A2E7A9] - (.Microsoft Corporation - Application Layer Gateway Service.) -- C:\WINDOWS\System32\alg.exe [44544] [PID.1560]
~ Processes Running: Scanned in 00mn 01s



---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences
G0 - GCSP: Preference [User Data\Default][HomePage] https://www.google.com/?gws_rd=ssl
~ Google Browser: Scanned in 00mn 00s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=14.0.8117.0416] - (.Microsoft Corporation - NPWLPG.) -- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
~ Firefox Browser: 7 Legitimates Scanned in 00mn 00s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?gws_rd=ssl
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.microsoft.com/fr-fr/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.microsoft.com/fr-fr/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = https://www.bing.com/?toHttps=1&redig=17DBE7D168544FA98200E890A8051984
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = https://www.bing.com/?toHttps=1&redig=17DBE7D168544FA98200E890A8051984
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 11.0.02.) (No version) -- (.not file.)
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 0
~ IE Browser: Scanned in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
~ Proxy management: Scanned in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\WINDOWS\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"
~ Keys: Scanned in 00mn 00s



---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File: Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 24



---\\ Browser Helper Objects de navigateur (O2)
~ BHO: 18 Legitimates Scanned in 00mn 00s



---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: &Windows Live Toolbar - [HKLM]{21FA44EF-376D-4D53-9B0F-8A89D3229068} . (.Microsoft Corporation - Windows Live Toolbar Core.) -- C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: Google Toolbar - [HKLM]{2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
~ Toolbar: Scanned in 00mn 00s



---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [RTHDCPL] . (.Realtek Semiconductor Corp. - Realtek HD Audio Control Panel.) -- C:\WINDOWS\RTHDCPL.exe
O4 - HKLM\..\Run: [itype] . (.Microsoft Corporation - IType.exe.) -- C:\Program Files\Microsoft IntelliType Pro\itype.exe
O4 - HKLM\..\Run: [IntelliPoint] . (.Microsoft Corporation - IPoint.exe.) -- C:\Program Files\Microsoft IntelliPoint\ipoint.exe
O4 - HKLM\..\Run: [MSC] . (.Microsoft Corporation - Microsoft Security Client User Interface.) -- c:\Program Files\Microsoft Security Client\msseces.exe
O4 - HKLM\..\Run: [HP Software Update] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKLM\..\Run: [Bouygues Connection Manager] . (.Bouygues - Internet Mobile 3G+ Bouygues Telecom.) -- C:\Program Files\Bouygues Telecom\Internet 3G+\Bouygues.exe
O4 - HKCU\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [RocketDock] . (...) -- C:\Program Files\RocketDock\RocketDock.exe
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe
O4 - HKCU\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [DWQueuedReporting] . (.Microsoft Corporation - Watson Subscriber for SENS Network Notifica.) -- C:\Program Files\Fichiers communs\Microsoft Shared\DW\DWTRIG20.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-21-1715567821-113007714-682003330-1003\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-21-1715567821-113007714-682003330-1003\..\Run: [RocketDock] . (...) -- C:\Program Files\RocketDock\RocketDock.exe
O4 - HKUS\S-1-5-21-1715567821-113007714-682003330-1003\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe
O4 - HKUS\S-1-5-21-1715567821-113007714-682003330-1003\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
~ Application: Scanned in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - GS\Programs: Adobe Reader XI.lnk . (...) -- C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-AB0000000001}\SC_Reader.ico
O4 - GS\Programs: Microsoft Security Essentials.lnk . (.Microsoft Corporation - Microsoft Security Client User Interface.) -- C:\Program Files\Microsoft Security Client\msseces.exe
O4 - GS\Programs: Windows Messenger.lnk . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe
O4 - GS\Programs: Windows Movie Maker.lnk . (.Microsoft Corporation - Windows Movie Maker.) -- C:\Program Files\Movie Maker\moviemk.exe
O4 - GS\Programs: Assistance à distance.lnk . (.Microsoft Corporation - Assistance à distance Microsoft.) -- C:\WINDOWS\system32\rcimlby.exe
O4 - GS\Programs: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - GS\Programs: Lecteur Windows Media.lnk . (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O4 - GS\Programs: Outlook Express.lnk . (.Microsoft Corporation - Outlook Express.) -- C:\Program Files\Outlook Express\msimn.exe
~ Global Startup: Scanned in 00mn 00s



---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} . (.Microsoft Corporation - Windows Live Writer Blog This Extension.) -- C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Afficher ou masquer l'HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} . (.Hewlett-Packard Co. - HP Smart Web Printing add-on for Internet Explorer.) -- C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O9 - Extra button: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} -- Clé orpheline
O9 - Extra button: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe
~ IE Extra Buttons: Scanned in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
~ Winsock: 4 Legitimates Scanned in 00mn 00s



---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} ((no name)) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
~ Objets ActiveX: Scanned in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{FA29BD61-8271-40A2-9E50-79411092CC8B}: NameServer = 62.201.129.99 62.201.159.99
O17 - HKLM\System\CCS\Services\Tcpip\..\{49CF1388-5CAA-407D-B041-42E06AA857DF}: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{FA29BD61-8271-40A2-9E50-79411092CC8B}: NameServer = 62.201.129.99 62.201.159.99
O17 - HKLM\System\CS1\Services\Tcpip\..\{49CF1388-5CAA-407D-B041-42E06AA857DF}: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CS3\Services\Tcpip\..\{49CF1388-5CAA-407D-B041-42E06AA857DF}: DhcpNameServer = 192.168.0.1
~ Domain: Scanned in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files\Windows Live\Mail\mailcomm.dll
O18 - Filter: text/webviewhtml - {733AC4CB-F1A4-11d0-B951-00A0C90312E1} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll
~ Protocole Additionnel: Scanned in 00mn 00s



---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: AtiExtEvent . (.ATI Technologies Inc. - ATI External Event Utility DLL Module.) -- C:\WINDOWS\system32\Ati2evxx.dll
O20 - Winlogon Notify: crypt32chain . (.Microsoft Corporation - Crypto API32.) -- C:\WINDOWS\system32\crypt32.dll
O20 - Winlogon Notify: cryptnet . (.Microsoft Corporation - Crypto Network Related API.) -- C:\WINDOWS\system32\cryptnet.dll
O20 - Winlogon Notify: cscdll . (.Microsoft Corporation - Agent réseau hors connexion.) -- C:\WINDOWS\system32\cscdll.dll
O20 - Winlogon Notify: dimsntfy . (.Microsoft Corporation - DIMS Notification Handler.) -- C:\WINDOWS\system32\dimsntfy.dll
O20 - Winlogon Notify: ScCertProp . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll
O20 - Winlogon Notify: Schedule . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll
O20 - Winlogon Notify: sclgntfy . (.Microsoft Corporation - DLL secondaire de notification de service d.) -- C:\WINDOWS\system32\sclgntfy.dll
O20 - Winlogon Notify: SensLogn . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\WlNotify.dll
O20 - Winlogon Notify: termsrv . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll
O20 - Winlogon Notify: WgaLogon . (.Microsoft Corporation - Notifications Windows Genuine Advantage.) -- C:\WINDOWS\system32\WgaLogon.dll
O20 - Winlogon Notify: wlballoon . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll
~ Winlogon: Scanned in 00mn 00s



---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} . (.Microsoft Corporation - Moniteur et dossier UPNP Tray.) -- C:\WINDOWS\system32\upnpui.dll
~ SSODL: 6 Legitimates Scanned in 00mn 00s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files\Skype\Updater\Updater.exe
~ Services: 4 Legitimates Scanned in 00mn 04s



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Desktop General: BackupWallPaper - .(...) - C:\Documents and Settings\XP\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop General: WallPaper - .(...) - C:\Documents and Settings\XP\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
~ Desktop Component: 1 Legitimates Scanned in 00mn 00s



---\\ BootExecute (O34)
~ BEX: 1 Legitimates Scanned in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\EPUpdater.job [254]
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\Microsoft_Hardware_Launch_IPoint_exe.job [284]
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\Microsoft_Hardware_Launch_IType_exe.job [294]
[MD5.00000000000000000000000000000000] [APT] [EPUpdater] (...) -- C:\DOCUME~1\XP\APPLIC~1\BABSOL~1\Shared\BabMaint.exe (.not file.) [0]
~ Scheduled Task: 24 Legitimates Scanned in 00mn 00s



---\\ Composants installés (ActiveSetup Installed Components) (O40)
~ Active Setup: 22 Legitimates Scanned in 00mn 00s



---\\ Pilotes lancés au démarrage (O41)
~ Drivers: 62 Legitimates Scanned in 00mn 00s



---\\ Logiciels installés (O42)
O42 - Logiciel: Adobe Flash Player 11 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Reader XI (11.0.02) - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-AB0000000001}
O42 - Logiciel: Pack Vista Inspirat 2 1.0 - (.Bricomix.) [HKLM] -- Pack Vista Inspirat 2
O42 - Logiciel: Supreme Savings - (.215 Apps.) [HKLM] -- Supreme Savings =>PUP.SpecialSavings
~ Logic: 80 Legitimates Scanned in 00mn 00s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\SpeedMaxPc]
[HKCU\Software\Supreme Savings]
[HKCU\Software\UberIcon-v1.0.0]
[HKLM\Software\Bricomix.net]
[HKLM\Software\DomaIQ]
[HKLM\Software\Luxor HD]
[HKLM\Software\SpeedMaxPc]
[HKLM\Software\cameo]
~ Key Software: 158 Legitimates Scanned in 00mn 00s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 17/09/2012 - 08:52:01 - [0,000] ----D C:\Program Files\LimeWire
O43 - CFD: 19/11/2012 - 10:00:01 - [0] ----D C:\Program Files\LoyerManager
O43 - CFD: 18/03/2013 - 21:16:38 - [3,241] ----D C:\Program Files\Supreme Savings
O43 - CFD: 12/03/2013 - 15:33:30 - [0] ----D C:\Documents and Settings\XP\Application Data\SpeedMaxPc
O43 - CFD: 04/05/2012 - 08:23:35 - [29,214] ----D C:\Documents and Settings\XP\Local Settings\Application Data\rocherdigital
O43 - CFD: 23/02/2010 - 14:19:50 - [0,005] ----D C:\Documents and Settings\XP\Menu Démarrer\Programmes\BricoPacks
~ Program Folder: 137 Legitimates Scanned in 00mn 01s



---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.AB923B68CFDA48C1E88286AA6A6881A5] - 07/04/2013 - 08:50:01 ---A- . (...) -- C:\WINDOWS\ModemLog_ZTE Proprietary USB Modem.txt [17444]
O44 - LFC:[MD5.4EC29F7425804AFECC28800F00043F1D] - 07/04/2013 - 07:10:43 ---A- . (...) -- C:\WINDOWS\smartkeydiagnostics.txt [38824]
O44 - LFC:[MD5.1773745B0831E088171072DE687C9B04] - 07/04/2013 - 07:04:37 ---A- . (...) -- C:\WINDOWS\wiadebug.log [159]
O44 - LFC:[MD5.0E3B3975724A29C7EBA3AE5E36A566D0] - 07/04/2013 - 07:04:35 ---A- . (...) -- C:\WINDOWS\wiaservc.log [50]
O44 - LFC:[MD5.C757178C00CF9E3790CEC1B1E9DDB532] - 21/03/2013 - 02:12:09 ---A- . (...) -- C:\WINDOWS\MedCtrOC.log [117280]
O44 - LFC:[MD5.0A21F2372C8404B9E2EC5FFF315256FC] - 21/03/2013 - 02:12:09 ---A- . (...) -- C:\WINDOWS\comsetup.log [560852]
O44 - LFC:[MD5.33C87974035EB2C57185065065E07F46] - 21/03/2013 - 02:12:09 ---A- . (...) -- C:\WINDOWS\iis6.log [1830952]
O44 - LFC:[MD5.74348B6C3C31FB4FECB5F26E2E44024B] - 21/03/2013 - 02:12:09 ---A- . (...) -- C:\WINDOWS\imsins.log [1374]
O44 - LFC:[MD5.07BACB009DFF844B5AD6BB80CDE9548D] - 21/03/2013 - 02:12:09 ---A- . (...) -- C:\WINDOWS\msgsocm.log [83400]
O44 - LFC:[MD5.D5D9EDEF382A3D116FEE663204B80E9C] - 21/03/2013 - 02:12:09 ---A- . (...) -- C:\WINDOWS\netfxocm.log [290916]
O44 - LFC:[MD5.41152685D891E80BF112A930E01FD43A] - 21/03/2013 - 02:12:09 ---A- . (...) -- C:\WINDOWS\ntdtcsetup.log [339447]
O44 - LFC:[MD5.4675126A4BB03297C61FE792C0A5D05C] - 21/03/2013 - 02:12:09 ---A- . (...) -- C:\WINDOWS\ocgen.log [817791]
O44 - LFC:[MD5.9CC1A5BA4B5A752A2C53560216F7C260] - 21/03/2013 - 02:12:09 ---A- . (...) -- C:\WINDOWS\ocmsn.log [91739]
O44 - LFC:[MD5.D3DAC0A186273237474ADB080A43EF60] - 21/03/2013 - 02:12:09 ---A- . (...) -- C:\WINDOWS\tabletoc.log [83204]
O44 - LFC:[MD5.4E55F6FA27B578CC82A1F475DBCC3340] - 21/03/2013 - 02:12:09 ---A- . (...) -- C:\WINDOWS\tsoc.log [765353]
O44 - LFC:[MD5.356EA3DB145204FF5DA8BE27B106869C] - 21/03/2013 - 02:12:08 ---A- . (...) -- C:\WINDOWS\FaxSetup.log [1645525]
O44 - LFC:[MD5.B56F3542311C15762544A53CAF917AF1] - 21/03/2013 - 02:12:05 ---A- . (...) -- C:\WINDOWS\msmqinst.log [517622]
O44 - LFC:[MD5.0144C4E83C472592726B9E2AECB47613] - 14/03/2013 - 23:14:08 ---A- . (...) -- C:\WINDOWS\imsins.BAK [1374]
O44 - LFC:[MD5.DB03FAE7DB906A281F87697A7FCE3DEE] - 14/03/2013 - 23:13:53 ---A- . (...) -- C:\WINDOWS\updspapi.log [266107]
O44 - LFC:[MD5.800590254A155A0C46EA12BBF3F32713] - 13/03/2013 - 17:07:01 ---A- . (...) -- C:\DelFix.txt [9249]
O44 - LFC:[MD5.39DF855B61E51457190CF518DEC9749B] - 13/03/2013 - 14:06:39 ---A- . (...) -- C:\WINDOWS\ntbtlog.txt [330138]
O44 - LFC:[MD5.3D3ACAFF6171F5C1EA0F7B2EADA6690B] - 13/03/2013 - 09:54:00 ---A- . (...) -- C:\WINDOWS\COM+.log [1544]
O44 - LFC:[MD5.A283E768FA12EF33087F07B01F82D6DD] - 13/03/2013 - 09:53:16 ---A- . (.Sysinternals - PsExec Service.) -- C:\WINDOWS\PSEXESVC.EXE [181064]
O44 - LFC:[MD5.007594B0E6D2E40B67BEC875EE7A4228] - 13/03/2013 - 09:49:58 ---A- . (...) -- C:\WINDOWS\bitssetup.log [8930]
O44 - LFC:[MD5.F3DE77DE8E23A30A5A184A93A950AB75] - 13/03/2013 - 09:48:24 ---A- . (...) -- C:\WINDOWS\system32\reset.log [4066]
O44 - LFC:[MD5.6D6F4B1886E91EB37ABCCAD19C561EE0] - 13/03/2013 - 09:47:04 ---A- . (...) -- C:\WINDOWS\system32\amcompat.tlb [16832]
O44 - LFC:[MD5.A32B14BE5EDAE794FCE1A9E970827509] - 13/03/2013 - 09:47:04 ---A- . (...) -- C:\WINDOWS\system32\nscompat.tlb [23392]
O44 - LFC:[MD5.3CBE2800CE46F91AA21CF0D7370AAC2F] - 13/03/2013 - 09:41:19 ---A- . (...) -- C:\WINDOWS\Windows Update.log [558]
O44 - LFC:[MD5.5AAD4FB513DF35C2A56641CB869A3E62] - 13/03/2013 - 08:57:22 ---A- . (...) -- C:\WINDOWS\reimage.ini [20]
~ Files: 49 Legitimates Scanned in 00mn 01s



---\\ Derniers fichiers créés dans Windows Prefetcher (O45)
O45 - LFCP:[MD5.A626D001CD76FFAD0D437B42C93DC7CC] - 03/04/2013 - 08:11:24 ---A- - C:\WINDOWS\Prefetch\CNMSE97.EXE-154D7504.pf
O45 - LFCP:[MD5.B35C1E9F5251800A4D64CEB2FE7A918D] - 03/04/2013 - 19:31:12 ---A- - C:\WINDOWS\Prefetch\SETUP_1_17.EXE-03355973.pf
O45 - LFCP:[MD5.91136D09140F25A52F1A9136A8E8BAE6] - 03/04/2013 - 19:31:30 ---A- - C:\WINDOWS\Prefetch\RDF.EXE-01E85FF0.pf
O45 - LFCP:[MD5.285FB0E31534684D020E68497B089B10] - 06/04/2013 - 08:41:55 ---A- - C:\WINDOWS\Prefetch\ITYPE.EXE-00E71BC7.pf
O45 - LFCP:[MD5.F9BFDFE8ED5FC008A76A596424BDCF61] - 07/04/2013 - 07:10:55 ---A- - C:\WINDOWS\Prefetch\BOUYGUES.EXE-3935746D.pf
O45 - LFCP:[MD5.9C11E0D11577A7C92A8E15369172CF69] - 07/04/2013 - 07:10:57 ---A- - C:\WINDOWS\Prefetch\RCAPPSVC.EXE-06624936.pf
O45 - LFCP:[MD5.2532AAAE72CE2CFD541C7DD977B006B8] - 07/04/2013 - 07:10:58 ---A- - C:\WINDOWS\Prefetch\SENDSCSI.EXE-003EF40E.pf
~ Prefetcher: 96 Legitimates Scanned in 00mn 00s



---\\ Opérations et fonctions au démarrage de Windows Explorer (O46)
O46 - SEH:ShellExecuteHooks - URL Exec Hook - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - shell32.dll
~ ShellExecuteHooks: Scanned in 00mn 00s



---\\ Export de clé d'application autorisée (O47)
~ Keys Export: 41 Legitimates Scanned in 00mn 00s



---\\ Déni du service (Local Security Authority) (O48)
~ LSA: 7 Legitimates Scanned in 00mn 00s



---\\ Contrôle du Safe Boot (CSB) (O49)
~ CBS: 23 Legitimates Scanned in 00mn 00s



---\\ Image File Execution Options (IFEO) (O50)
O50 - IFEO:Image File Execution Options - Your Image File Name Here without a path - ntsd -d
~ IFEO: Scanned in 00mn 00s



---\\ MountPoints2 Shell Key (O51)
O51 - MPSK:{07093b3e-66eb-11e1-bf7b-00161787c1da}\AutoRun\command. (...) -- I:\Setup.exe (.not file.)
O51 - MPSK:{07093b44-66eb-11e1-bf7b-00161787c1da}\AutoRun\command. (...) -- I:\Setup.exe (.not file.)
O51 - MPSK:{07093b4a-66eb-11e1-bf7b-f2d3dfda70d8}\AutoRun\command. (...) -- I:\Setup.exe (.not file.)
O51 - MPSK:{0cb233ce-2711-11e2-8156-00161787c1da}\AutoRun\command. (...) -- I:\Startme.exe (.not file.)
O51 - MPSK:{2880f55d-849a-11e2-823e-00161787c1da}\AutoRun\command. (...) -- E:\AutoRun.exe (.not file.)
O51 - MPSK:{2880f561-849a-11e2-823e-00161787c1da}\AutoRun\command. (...) -- E:\AutoRun.exe (.not file.)
O51 - MPSK:{381882b2-660e-11e1-bf79-5cd9989e5401}\AutoRun\command. (...) -- I:\Setup.exe (.not file.)
O51 - MPSK:{f111527c-6563-11e1-bf78-5cd9989e5401}\AutoRun\command. (...) -- I:\Setup.exe (.not file.)
~ Keys: Scanned in 00mn 02s



---\\ Trojan Driver Search Data (HKLM) (O52)
~ TDSD: 12 Legitimates Scanned in 00mn 00s



---\\ Microsoft Control Security Providers (O54)
~ MSCP: 6 Legitimates Scanned in 00mn 00s



---\\ Microsoft Windows Policies System (O55)
~ MWPS: 5 Legitimates Scanned in 00mn 00s



---\\ Microsoft Windows Policies Explorer (O56)
~ MWPE Keys: 10 Legitimates Scanned in 00mn 00s



---\\ Liste des Drivers Système (O58)
O58 - SDL:[MD5.FE3EA6E9AFC1A78E6EDCA121E006AFB7] - 10/11/2006 - 14:05:00 ---A- . (.Arcsoft, Inc. - Arcsoft(R) ASPI Shell.) -- C:\WINDOWS\system32\Drivers\afc.sys [18688]
O58 - SDL:[MD5.6D3ADA4CE95CECA7BCE527A08C4C474E] - 05/08/2004 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ansi.sys [9037]
~ Drivers: Scanned in 00mn 00s



---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)
O61 - LFC: 04/04/2013 - 20:48:12 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\databases\Databases.db [7168]
O61 - LFC: 04/04/2013 - 20:48:12 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\databases\Databases.db-journal [5672]
O61 - LFC: 04/04/2013 - 20:48:15 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Archived History [57344]
O61 - LFC: 04/04/2013 - 20:48:15 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Archived History-journal [512]
O61 - LFC: 04/04/2013 - 20:48:15 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Shortcuts [12288]
O61 - LFC: 04/04/2013 - 20:48:15 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Shortcuts-journal [16384]
O61 - LFC: 04/04/2013 - 20:48:16 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Network Action Predictor [52224]
O61 - LFC: 04/04/2013 - 20:48:16 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Network Action Predictor-journal [16384]
O61 - LFC: 04/04/2013 - 20:48:23 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Media Cache\data_0 [8192]
O61 - LFC: 04/04/2013 - 20:48:23 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Media Cache\data_2 [8192]
O61 - LFC: 04/04/2013 - 20:48:23 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Media Cache\data_3 [8192]
O61 - LFC: 04/04/2013 - 20:48:23 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Media Cache\index [524656]
O61 - LFC: 04/04/2013 - 20:48:29 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000001 [24099]
O61 - LFC: 04/04/2013 - 20:48:38 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Media Cache\data_1 [270336]
O61 - LFC: 05/04/2013 - 05:24:12 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000003 [18946]
O61 - LFC: 05/04/2013 - 05:24:13 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000004 [180104]
O61 - LFC: 05/04/2013 - 05:24:16 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000005 [21837]
O61 - LFC: 05/04/2013 - 05:24:16 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000006 [25052]
O61 - LFC: 05/04/2013 - 05:24:16 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000007 [18848]
O61 - LFC: 05/04/2013 - 05:24:17 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000009 [18946]
O61 - LFC: 05/04/2013 - 05:24:18 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_00000a [178001]
O61 - LFC: 05/04/2013 - 05:24:19 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_00000b [21417]
O61 - LFC: 05/04/2013 - 05:24:19 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_00000c [25052]
O61 - LFC: 05/04/2013 - 05:24:20 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_00000d [18763]
O61 - LFC: 05/04/2013 - 05:24:20 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_00000e [16655]
O61 - LFC: 05/04/2013 - 05:24:22 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_00000f [55186]
O61 - LFC: 05/04/2013 - 05:24:27 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000010 [60885]
O61 - LFC: 05/04/2013 - 05:24:37 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000019 [16660]
O61 - LFC: 05/04/2013 - 05:24:38 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_00001a [76825]
O61 - LFC: 05/04/2013 - 05:24:58 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_00001b [19339]
O61 - LFC: 05/04/2013 - 05:24:58 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_00001c [61012]
O61 - LFC: 05/04/2013 - 05:24:58 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_00001d [66291]
O61 - LFC: 05/04/2013 - 05:24:59 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_00001e [74470]
O61 - LFC: 05/04/2013 - 05:26:02 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000020 [55186]
O61 - LFC: 05/04/2013 - 05:26:06 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000022 [33867]
O61 - LFC: 05/04/2013 - 05:26:14 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000023 [33578]
O61 - LFC: 05/04/2013 - 05:26:15 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000024 [26049]
O61 - LFC: 05/04/2013 - 05:26:16 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000025 [43530]
O61 - LFC: 05/04/2013 - 05:26:16 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000026 [33673]
O61 - LFC: 05/04/2013 - 05:26:17 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000027 [81226]
O61 - LFC: 05/04/2013 - 05:26:17 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000028 [105288]
O61 - LFC: 05/04/2013 - 05:26:23 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Top Sites [20480]
O61 - LFC: 05/04/2013 - 05:26:23 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Top Sites-journal [12824]
O61 - LFC: 05/04/2013 - 05:26:27 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000029 [32329]
O61 - LFC: 05/04/2013 - 05:26:28 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_00002a [22057]
O61 - LFC: 05/04/2013 - 05:26:28 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_00002b [59308]
O61 - LFC: 05/04/2013 - 05:26:29 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_00002c [56879]
O61 - LFC: 05/04/2013 - 05:26:29 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_00002d [70986]
O61 - LFC: 05/04/2013 - 05:26:36 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_00002e [18170]
O61 - LFC: 05/04/2013 - 05:26:37 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_00002f [18374]
O61 - LFC: 05/04/2013 - 05:26:38 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000030 [153017]
O61 - LFC: 05/04/2013 - 05:26:38 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000031 [118676]
O61 - LFC: 05/04/2013 - 05:26:39 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000032 [24702]
O61 - LFC: 05/04/2013 - 05:26:40 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000033 [89729]
O61 - LFC: 05/04/2013 - 05:26:41 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000034 [17678]
O61 - LFC: 05/04/2013 - 05:26:45 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000035 [24227]
O61 - LFC: 05/04/2013 - 05:26:46 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000036 [17962]
O61 - LFC: 05/04/2013 - 05:26:47 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000037 [17991]
O61 - LFC: 05/04/2013 - 05:26:48 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000038 [146009]
O61 - LFC: 05/04/2013 - 05:27:44 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_00003a [55186]
O61 - LFC: 05/04/2013 - 05:27:57 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_00003c [20724]
O61 - LFC: 05/04/2013 - 05:27:57 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_00003d [44384]
O61 - LFC: 05/04/2013 - 05:27:57 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_00003e [35439]
O61 - LFC: 05/04/2013 - 05:27:58 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_00003f [29568]
O61 - LFC: 05/04/2013 - 05:27:58 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000040 [60032]
O61 - LFC: 05/04/2013 - 05:27:58 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000041 [42565]
O61 - LFC: 05/04/2013 - 05:28:00 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000042 [37508]
O61 - LFC: 05/04/2013 - 05:28:04 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000043 [27812]
O61 - LFC: 05/04/2013 - 05:28:10 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000044 [19369]
O61 - LFC: 05/04/2013 - 05:28:11 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000045 [20903]
O61 - LFC: 05/04/2013 - 05:28:11 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000046 [48736]
O61 - LFC: 05/04/2013 - 05:28:11 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000047 [29855]
O61 - LFC: 05/04/2013 - 05:28:11 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000048 [34697]
O61 - LFC: 05/04/2013 - 05:28:12 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000049 [60044]
O61 - LFC: 05/04/2013 - 05:28:12 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_00004a [78761]
O61 - LFC: 05/04/2013 - 05:28:13 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_00004b [61080]
O61 - LFC: 05/04/2013 - 05:28:13 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_00004c [26685]
O61 - LFC: 05/04/2013 - 05:28:14 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_00004d [40245]
O61 - LFC: 05/04/2013 - 05:28:14 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_00004e [37347]
O61 - LFC: 05/04/2013 - 05:28:14 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_00004f [41636]
O61 - LFC: 05/04/2013 - 05:28:14 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000050 [29929]
O61 - LFC: 05/04/2013 - 05:28:14 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000051 [23975]
O61 - LFC: 05/04/2013 - 05:28:14 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000052 [48837]
O61 - LFC: 05/04/2013 - 05:28:14 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000053 [19267]
O61 - LFC: 05/04/2013 - 05:28:15 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000054 [50405]
O61 - LFC: 05/04/2013 - 05:28:15 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000055 [51986]
O61 - LFC: 05/04/2013 - 05:28:15 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000056 [29137]
O61 - LFC: 05/04/2013 - 05:28:15 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000057 [55756]
O61 - LFC: 05/04/2013 - 05:28:15 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000058 [19424]
O61 - LFC: 05/04/2013 - 05:28:15 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000059 [21734]
O61 - LFC: 05/04/2013 - 05:28:15 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_00005a [21955]
O61 - LFC: 05/04/2013 - 05:28:17 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_00005b [37700]
O61 - LFC: 05/04/2013 - 05:28:17 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_00005c [28322]
O61 - LFC: 05/04/2013 - 05:28:17 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_00005d [36721]
O61 - LFC: 05/04/2013 - 05:28:20 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_00005e [39767]
O61 - LFC: 05/04/2013 - 05:28:20 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_00005f [39838]
O61 - LFC: 05/04/2013 - 05:29:00 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000060 [19566]
O61 - LFC: 05/04/2013 - 05:29:02 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000061 [36479]
O61 - LFC: 05/04/2013 - 05:29:08 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000062 [36176]
O61 - LFC: 05/04/2013 - 05:29:09 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000063 [37427]
O61 - LFC: 05/04/2013 - 05:29:09 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000064 [18078]
O61 - LFC: 05/04/2013 - 05:29:09 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000065 [37763]
O61 - LFC: 05/04/2013 - 05:29:09 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000066 [48655]
O61 - LFC: 05/04/2013 - 05:29:09 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000067 [36295]
O61 - LFC: 05/04/2013 - 05:29:29 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000068 [23092]
O61 - LFC: 05/04/2013 - 05:29:29 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000069 [48120]
O61 - LFC: 05/04/2013 - 05:29:29 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_00006a [75476]
O61 - LFC: 05/04/2013 - 05:29:29 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_00006b [17841]
O61 - LFC: 05/04/2013 - 05:30:05 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_00006c [53458]
O61 - LFC: 05/04/2013 - 05:30:05 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_00006d [18308]
O61 - LFC: 05/04/2013 - 05:30:06 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_00006f [79278]
O61 - LFC: 05/04/2013 - 05:30:06 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000070 [37951]
O61 - LFC: 05/04/2013 - 05:30:06 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000071 [22120]
O61 - LFC: 05/04/2013 - 05:30:07 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000072 [184722]
O61 - LFC: 05/04/2013 - 05:30:12 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000074 [1065339]
O61 - LFC: 05/04/2013 - 05:30:15 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000075 [19031]
O61 - LFC: 05/04/2013 - 05:30:15 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000076 [137260]
O61 - LFC: 05/04/2013 - 05:30:18 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000077 [775857]
O61 - LFC: 05/04/2013 - 05:30:25 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000078 [2669661]
O61 - LFC: 05/04/2013 - 05:30:26 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000079 [238000]
O61 - LFC: 05/04/2013 - 05:30:27 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_00007a [47466]
O61 - LFC: 05/04/2013 - 05:30:27 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_00007b [47713]
O61 - LFC: 05/04/2013 - 05:30:28 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_00007c [23217]
O61 - LFC: 05/04/2013 - 05:30:30 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_00007d [325004]
O61 - LFC: 05/04/2013 - 05:30:30 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_00007e [56637]
O61 - LFC: 05/04/2013 - 05:30:31 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_00007f [141933]
O61 - LFC: 05/04/2013 - 05:30:31 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000080 [97792]
O61 - LFC: 05/04/2013 - 05:30:31 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000081 [41469]
O61 - LFC: 05/04/2013 - 05:30:33 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000082 [125932]
O61 - LFC: 05/04/2013 - 05:30:33 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000083 [113292]
O61 - LFC: 05/04/2013 - 05:30:34 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000084 [40212]
O61 - LFC: 05/04/2013 - 05:30:34 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000085 [683614]
O61 - LFC: 05/04/2013 - 05:30:36 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000086 [83667]
O61 - LFC: 05/04/2013 - 05:30:38 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000087 [447659]
O61 - LFC: 05/04/2013 - 05:30:39 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000088 [650759]
O61 - LFC: 05/04/2013 - 05:30:39 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000089 [237576]
O61 - LFC: 05/04/2013 - 05:30:40 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_00008a [113695]
O61 - LFC: 05/04/2013 - 05:30:40 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_00008b [181902]
O61 - LFC: 05/04/2013 - 05:30:40 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_00008c [21124]
O61 - LFC: 05/04/2013 - 05:30:41 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_00008d [1104646]
O61 - LFC: 05/04/2013 - 05:30:41 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_00008e [164058]
O61 - LFC: 05/04/2013 - 05:30:47 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_00008f [18833]
O61 - LFC: 05/04/2013 - 05:30:47 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000090 [33558]
O61 - LFC: 05/04/2013 - 05:31:04 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000091 [129308]
O61 - LFC: 05/04/2013 - 05:31:05 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000092 [477726]
O61 - LFC: 05/04/2013 - 05:31:07 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000093 [978441]
O61 - LFC: 05/04/2013 - 05:32:23 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000094 [124733]
O61 - LFC: 05/04/2013 - 05:32:25 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000095 [126181]
O61 - LFC: 05/04/2013 - 05:32:28 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000096 [1116085]
O61 - LFC: 05/04/2013 - 05:32:30 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000097 [165846]
O61 - LFC: 05/04/2013 - 05:32:42 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000098 [998403]
O61 - LFC: 05/04/2013 - 05:34:09 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_000099 [17958]
O61 - LFC: 05/04/2013 - 05:34:09 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_00009a [18891]
O61 - LFC: 05/04/2013 - 05:34:09 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_00009b [18289]
O61 - LFC: 05/04/2013 - 05:37:23 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_00009c [122138]
O61 - LFC: 05/04/2013 - 05:39:04 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_00009d [17310]
O61 - LFC: 05/04/2013 - 06:51:02 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_00009f [55186]
O61 - LFC: 05/04/2013 - 06:51:31 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_0000a1 [20030]
O61 - LFC: 05/04/2013 - 06:51:32 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_0000a2 [59854]
O61 - LFC: 05/04/2013 - 06:51:36 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_0000a3 [32975]
O61 - LFC: 05/04/2013 - 06:51:37 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_0000a4 [22852]
O61 - LFC: 05/04/2013 - 06:51:37 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_0000a5 [17762]
O61 - LFC: 05/04/2013 - 06:51:37 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_0000a6 [30200]
O61 - LFC: 05/04/2013 - 06:51:37 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_0000a7 [28407]
O61 - LFC: 05/04/2013 - 06:51:37 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_0000a8 [28873]
O61 - LFC: 05/04/2013 - 06:51:38 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_0000a9 [19515]
O61 - LFC: 05/04/2013 - 06:52:18 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_0000aa [31988]
O61 - LFC: 05/04/2013 - 06:52:20 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_0000ab [135351]
O61 - LFC: 05/04/2013 - 06:52:54 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_0000ac [28719]
O61 - LFC: 05/04/2013 - 06:52:54 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_0000ad [33673]
O61 - LFC: 05/04/2013 - 06:52:55 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_0000ae [17980]
O61 - LFC: 05/04/2013 - 06:52:56 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_0000af [16972]
O61 - LFC: 05/04/2013 - 06:52:56 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_0000b0 [58270]
O61 - LFC: 05/04/2013 - 06:52:56 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_0000b1 [19815]
O61 - LFC: 05/04/2013 - 06:52:58 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_0000b2 [38079]
O61 - LFC: 05/04/2013 - 06:52:58 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_0000b3 [62015]
O61 - LFC: 05/04/2013 - 06:53:00 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_0000b4 [21756]
O61 - LFC: 05/04/2013 - 06:53:00 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_0000b5 [43376]
O61 - LFC: 05/04/2013 - 06:53:24 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_0000b6 [70913]
O61 - LFC: 05/04/2013 - 06:54:20 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f_0000b7 [137582]
O61 - LFC: 05/04/2013 - 06:54:23 ---A- C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Profile 1\Cache\f

https://www.cjoint.com/?CDhkwutxy0s

AdwCleaner v2.200 - Rapport créé le 07/04/2013 à 12:30:00
# Mis à jour le 02/04/2013 par Xplode
# Système d'exploitation : Microsoft Windows XP Service Pack 3 (32 bits)
# Nom d'utilisateur : XP - HOME-223EEA635C
# Mode de démarrage : Normal
# Exécuté depuis : C:\Documents and Settings\XP\Mes documents\Downloads\adwcleaner.exe
# Option [Recherche]


***** [Services] *****


***** [Fichiers / Dossiers] *****

Dossier Présent : C:\Program Files\Supreme Savings

***** [Registre] *****

Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Clé Présente : HKLM\Software\DomaIQ
Clé Présente : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Valeur Présente : HKLM\SOFTWARE\Policies\Google\Chrome\ExtensionInstallForcelist [1]

***** [Navigateurs] *****

-\\ Internet Explorer v8.0.6001.18702

[OK] Le registre ne contient aucune entrée illégitime.

-\\ Google Chrome v26.0.1410.43

Fichier : C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences

[OK] Le fichier ne contient aucune entrée illégitime.

-\\ Opera v [Impossible d'obtenir la version]

Fichier : C:\Documents and Settings\XP\Application Data\Opera\Opera\operaprefs.ini

[OK] Le fichier ne contient aucune entrée illégitime.

*************************

AdwCleaner[R1].txt - [1536 octets] - [07/04/2013 12:30:00]

########## EOF - C:\AdwCleaner[R1].txt - [1596 octets] ##########

AdwCleaner v2.200 - Rapport créé le 07/04/2013 à 12:55:15
# Mis à jour le 02/04/2013 par Xplode
# Système d'exploitation : Microsoft Windows XP Service Pack 3 (32 bits)
# Nom d'utilisateur : XP - HOME-223EEA635C
# Mode de démarrage : Normal
# Exécuté depuis : C:\Documents and Settings\XP\Mes documents\Downloads\adwcleaner (1).exe
# Option [Suppression]


***** [Services] *****


***** [Fichiers / Dossiers] *****

Dossier Supprimé : C:\Program Files\Supreme Savings

***** [Registre] *****

Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Clé Supprimée : HKLM\Software\DomaIQ
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Valeur Supprimée : HKLM\SOFTWARE\Policies\Google\Chrome\ExtensionInstallForcelist [1]

***** [Navigateurs] *****

-\\ Internet Explorer v8.0.6001.18702

[OK] Le registre ne contient aucune entrée illégitime.

-\\ Google Chrome v26.0.1410.43

Fichier : C:\Documents and Settings\XP\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences

[OK] Le fichier ne contient aucune entrée illégitime.

-\\ Opera v [Impossible d'obtenir la version]

Fichier : C:\Documents and Settings\XP\Application Data\Opera\Opera\operaprefs.ini

[OK] Le fichier ne contient aucune entrée illégitime.

*************************

AdwCleaner[R1].txt - [1665 octets] - [07/04/2013 12:30:00]
AdwCleaner[S1].txt - [1608 octets] - [07/04/2013 12:55:15]

########## EOF - C:\AdwCleaner[S1].txt - [1668 octets] ##########

############################## | UsbFix V 7.120 | [Recherche]

Utilisateur: XP (Administrateur) # HOME-223EEA635C
Mis à jour le 30/03/2013 par El Desaparecido
Lancé à 13:22:47 | 07/04/2013

Site Web: https://www.sosvirus.net/
Upload Malware: http://upload.sosvirus.org/
Contact: contact@sosvirus.org

PC: MEDIONPC (MS-7311) (X86-based PC)
CPU: Intel(R) Pentium(R) 4 CPU 2.80GHz (2793)
RAM -> [Total : 2046 | Free : 1063]
BIOS: Phoenix - AwardBIOS v6.00PG
BOOT: Normal boot

OS: Microsoft Windows XP Professionnel (5.1.2600 32-Bit) # Service Pack 3
WB: Windows Internet Explorer 8.0.6001.18702

SC: Security Center Service [Enabled]
WU: Windows Update Service [Enabled]
FW: Windows FireWall Service [Enabled]

C:\ (%systemdrive%) -> Disque fixe # 149 Go (134 Go libre(s) - 90%) [] # NTFS
D:\ -> CD-ROM
I:\ -> CD-ROM

################## | Processus Actif |

C:\WINDOWS\System32\smss.exe (668)
C:\WINDOWS\system32\winlogon.exe (784)
C:\WINDOWS\system32\services.exe (828)
C:\WINDOWS\system32\lsass.exe (840)
C:\WINDOWS\system32\Ati2evxx.exe (1008)
C:\WINDOWS\system32\svchost.exe (1024)
c:\Program Files\Microsoft Security Client\MsMpEng.exe (1140)
C:\WINDOWS\System32\svchost.exe (1176)
C:\WINDOWS\system32\spoolsv.exe (1572)
C:\Documents and Settings\All Users\Application Data\DatacardService\DCService.exe (248)
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\mdm.exe (548)
C:\WINDOWS\System32\svchost.exe (600)
C:\WINDOWS\System32\svchost.exe (744)
C:\WINDOWS\system32\svchost.exe (1248)
C:\WINDOWS\system32\Ati2evxx.exe (1436)
C:\WINDOWS\Explorer.EXE (1740)
C:\WINDOWS\RTHDCPL.EXE (640)
C:\Program Files\Microsoft IntelliType Pro\itype.exe (648)
C:\Program Files\Microsoft IntelliPoint\ipoint.exe (688)
C:\Program Files\Microsoft Security Client\msseces.exe (728)
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe (736)
C:\Program Files\Bouygues Telecom\Internet 3G+\Bouygues.exe (492)
C:\WINDOWS\system32\ctfmon.exe (2156)
C:\Program Files\RocketDock\RocketDock.exe (2176)
C:\Program Files\Skype\Phone\Skype.exe (2224)
C:\Program Files\OpenOffice.org 3\program\soffice.exe (2396)
C:\Program Files\OpenOffice.org 3\program\soffice.bin (2436)
C:\Program Files\Bouygues Telecom\Internet 3G+\RcAppSvc.exe (3004)
C:\Program Files\Google\Chrome\Application\chrome.exe (3068)
C:\Program Files\Google\Chrome\Application\chrome.exe (3468)
C:\Program Files\Google\Chrome\Application\chrome.exe (4060)
C:\Program Files\Google\Chrome\Application\chrome.exe (188)
C:\Program Files\Google\Chrome\Application\chrome.exe (3168)
C:\UsbFix\Go.exe (168)

################## | El Desaparecido Section |

HKLM\SOFTWARE | Run : [RTHDCPL] - RTHDCPL.EXE
HKLM\SOFTWARE | Run : [itype] - "C:\Program Files\Microsoft IntelliType Pro\itype.exe"
HKLM\SOFTWARE | Run : [IntelliPoint] - "C:\Program Files\Microsoft IntelliPoint\ipoint.exe"
HKLM\SOFTWARE | Run : [MSC] - "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
HKLM\SOFTWARE | Run : [HP Software Update] - C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
HKLM\SOFTWARE | Run : [Adobe ARM] - "C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe"
HKLM\SOFTWARE | Run : [Bouygues Connection Manager] - "C:\Program Files\Bouygues Telecom\Internet 3G+\Bouygues.exe" -a
HKLM\SOFTWARE | RunOnce : [] -
HKU\S-1-5-19\SOFTWARE | Run : [CTFMON.EXE] - C:\WINDOWS\system32\CTFMON.EXE
HKU\S-1-5-20\SOFTWARE | Run : [CTFMON.EXE] - C:\WINDOWS\system32\CTFMON.EXE
HKU\S-1-5-21-1715567821-113007714-682003330-1003\SOFTWARE | Run : [ctfmon.exe] - C:\WINDOWS\system32\ctfmon.exe
HKU\S-1-5-21-1715567821-113007714-682003330-1003\SOFTWARE | Run : [RocketDock] - "C:\Program Files\RocketDock\RocketDock.exe"
HKU\S-1-5-21-1715567821-113007714-682003330-1003\SOFTWARE | Run : [Skype] - "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
HKU\S-1-5-21-1715567821-113007714-682003330-1003\SOFTWARE | Run : [swg] - "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
HKU\S-1-5-18\SOFTWARE | Run : [CTFMON.EXE] - C:\WINDOWS\system32\ctfmon.exe
HKU\S-1-5-18\SOFTWARE | Run : [DWQueuedReporting] - "C:\PROGRA~1\FICHIE~1\MICROS~1\DW\dwtrig20.exe" -t

################## | Éléments infectieux |

Présent! I:\AutoLaunch.exe
Présent! I:\AutoLaunch.dat
Présent! I:\autorun.inf

################## | Registre |


################## | Mountpoints2 |

HKCU\.\.\.\.\Explorer\MountPoints2\{07093b3e-66eb-11e1-bf7b-00161787c1da}
Shell\AutoRun\Command = I:\Setup.exe

HKCU\.\.\.\.\Explorer\MountPoints2\{07093b44-66eb-11e1-bf7b-00161787c1da}
Shell\AutoRun\Command = I:\Setup.exe

HKCU\.\.\.\.\Explorer\MountPoints2\{07093b4a-66eb-11e1-bf7b-f2d3dfda70d8}
Shell\AutoRun\Command = I:\Setup.exe

HKCU\.\.\.\.\Explorer\MountPoints2\{0cb233ce-2711-11e2-8156-00161787c1da}
Shell\AutoRun\Command = I:\Startme.exe

HKCU\.\.\.\.\Explorer\MountPoints2\{2880f55d-849a-11e2-823e-00161787c1da}
Shell\AutoRun\Command = E:\AutoRun.exe

HKCU\.\.\.\.\Explorer\MountPoints2\{2880f561-849a-11e2-823e-00161787c1da}
Shell\AutoRun\Command = E:\AutoRun.exe

HKCU\.\.\.\.\Explorer\MountPoints2\{381882b2-660e-11e1-bf79-5cd9989e5401}
Shell\AutoRun\Command = I:\Setup.exe

HKCU\.\.\.\.\Explorer\MountPoints2\{f111527c-6563-11e1-bf78-5cd9989e5401}
Shell\AutoRun\Command = I:\Setup.exe



################## | Vaccin |

(!) Cet ordinateur n'est pas vacciné!

################## | E.O.F | https://www.sosvirus.net/ |

############################## | UsbFix V 7.120 | [Suppression]

Utilisateur: XP (Administrateur) # HOME-223EEA635C
Mis à jour le 30/03/2013 par El Desaparecido
Lancé à 13:32:38 | 07/04/2013

Site Web: https://www.sosvirus.net/
Upload Malware: http://upload.sosvirus.org/
Contact: contact@sosvirus.org

PC: MEDIONPC (MS-7311) (X86-based PC)
CPU: Intel(R) Pentium(R) 4 CPU 2.80GHz (2793)
RAM -> [Total : 2046 | Free : 1007]
BIOS: Phoenix - AwardBIOS v6.00PG
BOOT: Normal boot

OS: Microsoft Windows XP Professionnel (5.1.2600 32-Bit) # Service Pack 3
WB: Windows Internet Explorer 8.0.6001.18702

SC: Security Center Service [Enabled]
WU: Windows Update Service [Enabled]
FW: Windows FireWall Service [Enabled]

C:\ (%systemdrive%) -> Disque fixe # 149 Go (134 Go libre(s) - 90%) [] # NTFS
D:\ -> CD-ROM
I:\ -> CD-ROM

################## | El Desaparecido Section |

HKLM\SOFTWARE | Run : [RTHDCPL] - RTHDCPL.EXE
HKLM\SOFTWARE | Run : [itype] - "C:\Program Files\Microsoft IntelliType Pro\itype.exe"
HKLM\SOFTWARE | Run : [IntelliPoint] - "C:\Program Files\Microsoft IntelliPoint\ipoint.exe"
HKLM\SOFTWARE | Run : [MSC] - "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
HKLM\SOFTWARE | Run : [HP Software Update] - C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
HKLM\SOFTWARE | Run : [Adobe ARM] - "C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe"
HKLM\SOFTWARE | Run : [Bouygues Connection Manager] - "C:\Program Files\Bouygues Telecom\Internet 3G+\Bouygues.exe" -a
HKLM\SOFTWARE | RunOnce : [] -
HKU\S-1-5-19\SOFTWARE | Run : [CTFMON.EXE] - C:\WINDOWS\system32\CTFMON.EXE
HKU\S-1-5-20\SOFTWARE | Run : [CTFMON.EXE] - C:\WINDOWS\system32\CTFMON.EXE
HKU\S-1-5-21-1715567821-113007714-682003330-1003\SOFTWARE | Run : [ctfmon.exe] - C:\WINDOWS\system32\ctfmon.exe
HKU\S-1-5-21-1715567821-113007714-682003330-1003\SOFTWARE | Run : [RocketDock] - "C:\Program Files\RocketDock\RocketDock.exe"
HKU\S-1-5-21-1715567821-113007714-682003330-1003\SOFTWARE | Run : [Skype] - "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
HKU\S-1-5-21-1715567821-113007714-682003330-1003\SOFTWARE | Run : [swg] - "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
HKU\S-1-5-18\SOFTWARE | Run : [CTFMON.EXE] - C:\WINDOWS\system32\ctfmon.exe
HKU\S-1-5-18\SOFTWARE | Run : [DWQueuedReporting] - "C:\PROGRA~1\FICHIE~1\MICROS~1\DW\dwtrig20.exe" -t

################## | Processus Stoppés |

Stoppé! C:\WINDOWS\system32\Ati2evxx.exe (1008)
Stoppé! c:\Program Files\Microsoft Security Client\MsMpEng.exe (1140)
Stoppé! C:\WINDOWS\system32\spoolsv.exe (1572)
Stoppé! C:\Documents and Settings\All Users\Application Data\DatacardService\DCService.exe (248)
Stoppé! C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\mdm.exe (548)
Stoppé! C:\WINDOWS\system32\Ati2evxx.exe (1436)
Stoppé! C:\WINDOWS\RTHDCPL.EXE (640)
Stoppé! C:\Program Files\Microsoft IntelliType Pro\itype.exe (648)
Stoppé! C:\Program Files\Microsoft IntelliPoint\ipoint.exe (688)
Stoppé! C:\Program Files\Microsoft Security Client\msseces.exe (728)
Stoppé! C:\Program Files\HP\HP Software Update\HPWuSchd2.exe (736)
Stoppé! C:\Program Files\Bouygues Telecom\Internet 3G+\Bouygues.exe (492)
Stoppé! C:\WINDOWS\system32\ctfmon.exe (2156)
Stoppé! C:\Program Files\RocketDock\RocketDock.exe (2176)
Stoppé! C:\Program Files\Skype\Phone\Skype.exe (2224)
Stoppé! C:\Program Files\OpenOffice.org 3\program\soffice.exe (2396)
Stoppé! C:\Program Files\OpenOffice.org 3\program\soffice.bin (2436)
Stoppé! C:\Program Files\Bouygues Telecom\Internet 3G+\RcAppSvc.exe (3004)
Stoppé! C:\Program Files\Google\Chrome\Application\chrome.exe (3068)
Stoppé! C:\Program Files\Google\Chrome\Application\chrome.exe (3468)
Stoppé! C:\Program Files\Google\Chrome\Application\chrome.exe (4060)
Stoppé! C:\Program Files\Google\Chrome\Application\chrome.exe (188)
Stoppé! C:\Program Files\Google\Chrome\Application\chrome.exe (3168)

################## | Éléments infectieux |

Non supprimé ! I:\AutoLaunch.exe
Non supprimé ! I:\AutoLaunch.dat
Non supprimé ! I:\autorun.inf

(!) Fichiers temporaires supprimés.

################## | Registre |


################## | Mountpoints2 |

Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{07093b3e-66eb-11e1-bf7b-00161787c1da}
Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{07093b44-66eb-11e1-bf7b-00161787c1da}
Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{07093b4a-66eb-11e1-bf7b-f2d3dfda70d8}
Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{0cb233ce-2711-11e2-8156-00161787c1da}
Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{2880f55d-849a-11e2-823e-00161787c1da}
Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{2880f561-849a-11e2-823e-00161787c1da}
Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{381882b2-660e-11e1-bf79-5cd9989e5401}
Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{f111527c-6563-11e1-bf78-5cd9989e5401}

################## | Listing |

[28/03/2013 - 21:13:32 | D ] C:\$AVG
[05/03/2013 - 22:13:02 | D ] C:\5f78104689959321daa0a65dabfe6827
[07/04/2013 - 12:30:09 | N | 1665] C:\AdwCleaner[R1].txt
[07/04/2013 - 13:02:12 | N | 1737] C:\AdwCleaner[S1].txt
[27/04/2011 - 23:27:25 | D ] C:\Anuman Interactive
[22/02/2010 - 16:41:56 | D ] C:\ATI
[22/02/2010 - 15:52:33 | N | 0] C:\AUTOEXEC.BAT
[22/02/2010 - 15:45:33 | N | 212] C:\boot.ini
[05/08/2004 - 14:00:00 | N | 4952] C:\Bootfont.bin
[01/04/2013 - 11:38:10 | D ] C:\Config.Msi
[22/02/2010 - 15:52:33 | N | 0] C:\CONFIG.SYS
[13/03/2013 - 18:07:01 | N | 9249] C:\DelFix.txt
[22/02/2010 - 17:17:22 | D ] C:\dell
[22/02/2010 - 15:59:55 | D ] C:\Documents and Settings
[22/02/2010 - 16:54:31 | D ] C:\e5a9c3bba351498a847883ca7fb4
[19/11/2012 - 09:56:53 | D ] C:\Firefox
[22/02/2010 - 16:33:06 | D ] C:\IntelEmbedded6.0
[22/02/2010 - 15:52:33 | N | 0] C:\IO.SYS
[22/02/2010 - 15:52:33 | N | 0] C:\MSDOS.SYS
[05/08/2004 - 14:00:00 | N | 47564] C:\NTDETECT.COM
[22/02/2010 - 16:07:13 | N | 252240] C:\ntldr
[07/04/2013 - 12:56:09 | ASH | 1610612736] C:\pagefile.sys
[07/04/2013 - 09:52:45 | N | 512] C:\PhysicalDisk0_MBR.bin
[07/04/2013 - 12:55:22 | D ] C:\Program Files
[22/02/2010 - 16:44:57 | SHD ] C:\RECYCLER
[13/03/2013 - 10:35:51 | D ] C:\RegBackup
[22/02/2010 - 17:08:03 | D ] C:\Swsetup
[22/02/2010 - 15:59:24 | SHD ] C:\System Volume Information
[22/02/2011 - 02:23:46 | D ] C:\Temp
[12/03/2013 - 04:47:48 | D ] C:\toolbarImages
[07/04/2013 - 13:34:11 | D ] C:\UsbFix
[07/04/2013 - 13:35:27 | A | 6528] C:\UsbFix [Clean 2] HOME-223EEA635C.txt
[07/04/2013 - 13:28:41 | N | 5484] C:\UsbFix [Scan 1] HOME-223EEA635C.txt
[02/04/2013 - 07:27:29 | D ] C:\WINDOWS
[07/04/2013 - 09:50:48 | D ] C:\ZHP
[11/04/2011 - 18:58:48 | R | 143] I:\AutoLaunch.dat
[11/04/2011 - 18:54:54 | R | 69632] I:\AutoLaunch.exe
[11/04/2011 - 18:54:54 | R | 92854] I:\AutoRun.ico
[11/04/2011 - 18:54:54 | R | 50] I:\autorun.inf
[11/04/2011 - 18:50:14 | R | 34648008] I:\Setup_1_17.exe

################## | Vaccin |

C:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)

################## | E.O.F | https://www.sosvirus.net/ |

Malwarebytes Anti-Malware 1.70.0.1100
www.malwarebytes.org

Version de la base de données: v2013.04.07.02

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
XP :: HOME-223EEA635C [administrateur]

07/04/2013 13:55:46
mbam-log-2013-04-07 (13-55-46).txt

Type d'examen: Examen complet (C:\|I:\|J:\|)
Options d'examen activées: Mémoire | Démarrage | Registre | Système de fichiers | Heuristique/Extra | Heuristique/Shuriken | PUP | PUM
Options d'examen désactivées: P2P
Elément(s) analysé(s): 253890
Temps écoulé: 1 heure(s), 28 minute(s), 12 seconde(s)

Processus mémoire détecté(s): 0
(Aucun élément nuisible détecté)

Module(s) mémoire détecté(s): 0
(Aucun élément nuisible détecté)

Clé(s) du Registre détectée(s): 0
(Aucun élément nuisible détecté)

Valeur(s) du Registre détectée(s): 0
(Aucun élément nuisible détecté)

Elément(s) de données du Registre détecté(s): 0
(Aucun élément nuisible détecté)

Dossier(s) détecté(s): 0
(Aucun élément nuisible détecté)

Fichier(s) détecté(s): 0
(Aucun élément nuisible détecté)

(fin)

bonjour oui c et notre antivirus celui la car j avais la version avast gratuit et il s est fini

re ca y est il est installé et j ai 30 jours de protection gratuite

re oui voila c est fait et maintenant j ai 366 jours de gratuit merci

https://www.cjoint.com/?CDiibBVqbF6

https://www.cjoint.com/?CDiid02ueJA

https://www.cjoint.com/?CDiit1GntOc

re bonjour une fois que j ai telecharger purera il me met un carré avec next about exit donc que dois je fairte. au fait je suis desolé pour ce matin mais j ai eu un gros bug impossible de me reconnecter et apres il a fallu que je parte au boulot donc desolé encore

re il me met quand je suis sur total space cleaned 0 bytes

oh oui j en ai encore car quand je clique sur ton nom ca me met un temps fou a opuvrir la reponse

re bonjour ok je vais le faire j espere que ca va pas prendre trop de temps car je part bosser vers 10h10. merci donc je coupe a + tard merci si ca ne marche pas je suis de retopur vers 16h je te recontacterais. merci encore

salut

ok et bonne journée

@+

re alors quand je tape sur tous les programmes j ai outil systeme dans le menu accesoires et quand je clique dessus j arrive sur internet explorer qui n est pas mon moteur et quand je tape dans la barre ce que tu me dis il me dis qu il ne trouve pas chdsk/f/r

ok je te remerci et je te souhaite une bonne journée et si tout vas bien je serais de retour vers 16h 16h30 au plus tard merci bon courage

re

merci et a tout a l'heure

@+

cc je suis de retour

re j ai donc cliquer sur le lien que tu m as donner sur poste de travail puis propriété puis outils puis nettoyer le disque puis verifier maintenant et la il m a obligé d eteindre l ordi pour faire la verification et quand je l ai rallumé il m a verifié 5 etapes 1ere etape verif des fichiers etape 2 verif des index etape 3 verif des descripteurs de securité et verif du journal usn etape 4 verif des donnees de fichiers etape 5 verif de l espace libre