Problème de pc, super lents
Geoffrey3613
Messages postés
27
Statut
Membre
-
lilidurhone Messages postés 48926 Date d'inscription Statut Contributeur sécurité Dernière intervention -
lilidurhone Messages postés 48926 Date d'inscription Statut Contributeur sécurité Dernière intervention -
Bonjour, il y a 5 ans en 2008 a peux près j'ai eu un pc acheter a electro dépôts un Packard Bell acheter a 500€ :
Fabricant: Pachard Bell
Modèle: imedia S1800
Evaluation: 3,4
Processeur: Intel(R) Celeron(R) CPU 450 @ 2.20GHz 2.19GHz
Mémoire installée: 3,00 Go
Type de système: Système d'exploitation 64 bits
Windows 7 Edition Familiale Premium Service Pack 1
Voila donc le problème et 1 mois après l'avoirs acheter je télécharger n'importe quoi des jeux des cracks etc... et un jours il était super lent je ne pouvais plus jouer a des jeux comme le premier jours (les Fps était faible) internet et lent tout et lent.
J'ai reformater le pc a peux près 5 fois de puis il y a jamais eu de changement.
J'ai entendu parler de bootnet qui était un virus super répendu qui envoier des spams ou je sais plus éxactement.
Donc j'ai besoin d'aide SVP merci
Fabricant: Pachard Bell
Modèle: imedia S1800
Evaluation: 3,4
Processeur: Intel(R) Celeron(R) CPU 450 @ 2.20GHz 2.19GHz
Mémoire installée: 3,00 Go
Type de système: Système d'exploitation 64 bits
Windows 7 Edition Familiale Premium Service Pack 1
Voila donc le problème et 1 mois après l'avoirs acheter je télécharger n'importe quoi des jeux des cracks etc... et un jours il était super lent je ne pouvais plus jouer a des jeux comme le premier jours (les Fps était faible) internet et lent tout et lent.
J'ai reformater le pc a peux près 5 fois de puis il y a jamais eu de changement.
J'ai entendu parler de bootnet qui était un virus super répendu qui envoier des spams ou je sais plus éxactement.
Donc j'ai besoin d'aide SVP merci
A voir également:
- Problème de pc, super lents
- Pc tres lent - Guide
- Reinitialiser pc - Guide
- Super copier pc - Télécharger - Gestion de fichiers
- Downloader for pc - Télécharger - Téléchargement & Transfert
- Double ecran pc - Guide
~ Lancé par geoffrey (03/11/2013 20:58:29)
~ Adresse du Site Web https://nicolascoolman.webs.com/
~ Forums gratuits d'Assistance à la désinfection : https://nicolascoolman.webs.com/
~ Traduit par Nicolas Coolman
~ Etat de la version :
~ Liste blanche : Activée par le programme
~ Elévation des Privilèges : OK
~ User Account Control (UAC): Deactivate by program
---\\ Navigateurs Internet
MSIE: Internet Explorer v10.0.9200.16721
MFIE: Mozilla Firefox 22.0
GCIE: Google Chrome v30.0.1599.101 (Defaut)
---\\ Informations sur les produits Windows
~ Langage: Français
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)
Windows Server License Manager Script : OK
~ Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : 7QJB7
Windows License : OK
~ Windows Remaining Initializations Number : 3
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK
---\\ Logiciels de protection du système
avast! Free Antivirus v8.0.1497.0
Windows Defender W7
---\\ Logiciels d'optimisation du système
---\\ Logiciels de partage PeerToPeer
---\\ Surveillance de Logiciels
Adobe Flash Player 11 Plugin
Adobe Reader XI
Java 7 Update 45
---\\ Informations sur le système
~ Processor: Intel64 Family 6 Model 22 Stepping 1, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3037 MB (43% free)
System Restore: Activé (Enable)
System drive C: has 17 GB (12%) free of 140 GB
---\\ Mode de connexion au système
~ Computer Name: WENZ-PC
~ User Name: geoffrey
~ All Users Names: WENZ, nathalie, hugo, HomeGroupUser$, geoffrey, Administrateur,
~ Unselected Option: None
Logged in as Administrator
---\\ Variables d'environnement
~ System Unit : C:\
~ %AppZHP% : C:\Users\geoffrey\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\geoffrey\AppData\Roaming\
~ %Desktop% : C:\Users\geoffrey\Desktop\
~ %Favorites% : C:\Users\geoffrey\Favorites\
~ %LocalAppData% : C:\Users\geoffrey\AppData\Local\
~ %StartMenu% : C:\Users\geoffrey\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\
---\\ Enumération des unités disques
C: Hard drive, Flash drive, Thumb drive (Free 17 Go of 140 Go)
D: Hard drive, Flash drive, Thumb drive (Free 118 Go of 141 Go)
E: CD-ROM drive (Free 0 Go of 0 Go)
H: Floppy drive, Flash card reader, USB Key (Not Inserted)
I: Floppy drive, Flash card reader, USB Key (Not Inserted)
J: Floppy drive, Flash card reader, USB Key (Not Inserted)
L: Floppy drive, Flash card reader, USB Key (Not Inserted)
---\\ Etat du Centre de Sécurité Windows
~ Security Center: 41 Legitimates Filtered in 00mn 00s
---\\ Recherche particulière de fichiers génériques
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.25/02/2011 - 07:19:30.) -- C:\Windows\Explorer.exe [2871808]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\System32\Wininit.exe [129024]
[MD5.D28B35DE88D27EFB27DF4B1E8319E3C0] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.22/09/2013 - 23:55:10.) -- C:\Windows\System32\wininet.dll [2241024]
[MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.20/11/2010 - 14:25:30.) -- C:\Windows\System32\Winlogon.exe [390656]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) (.20/11/2010 - 14:27:26.) -- C:\Windows\System32\sppcomapi.dll [232448]
[MD5.314C17917AC8523EC77A710215012A65] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.14/09/2013 - 02:10:19.) -- C:\Windows\system32\Drivers\AFD.sys [497152]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.20/11/2010 - 10:19:21.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.20/11/2010 - 10:26:32.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.20/11/2010 - 11:43:43.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.27/04/2011 - 03:40:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [158208]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.20/11/2010 - 10:23:20.) -- C:\Windows\system32\Drivers\netBT.sys [261632]
[MD5.B98F8C6E31CD07B2E6F71F7F648E38C0] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.12/04/2013 - 15:45:08.) -- C:\Windows\system32\Drivers\ntfs.sys [1656680]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.20/11/2010 - 11:52:35.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.20/11/2010 - 10:21:56.) -- C:\Windows\system32\Drivers\tdx.sys [119296]
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.20/11/2010 - 14:34:02.) -- C:\Windows\system32\Drivers\volsnap.sys [295808]
~ Generic Processes: Scanned in 00mn 00s
---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 1/8
~ Mes musiques (My Musics) : 7/30
~ Mes Videos (My Videos) : 1/23
~ Mes Favoris (My Favorites) : 1/26
~ Mes Documents (My Documents) : 1/2
~ Mon Bureau (My Desktop) : 1/372
~ Menu demarrer (Programs) : 1/23
~ Hidden Files: Scanned in 00mn 00s
---\\ Processus lancés
[MD5.CBC7D8E5416AD30CF16DC2FD4A6AA399] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe [4858968] [PID.3276]
[MD5.CC82669653807DFC27DF3B73ECE5EECD] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [8135168] [PID.9264]
[MD5.9330941C8F6DF417F6DBBE998DB6687E] - (.AVAST Software - avast! Service.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe [46808] [PID.1168]
[MD5.ADDA5E1951B90D3D23C56D3CF0622ADC] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [65640] [PID.1504]
[MD5.30E3850F303EAE5C364782EA78579CC9] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [55624] [PID.1648]
[MD5.816FD5A6F3C2F3D600900096632FC60E] - (.Acer Incorporated - Global Registration Service.) -- C:\Program Files (x86)\Packard Bell\Registration\GregHSRW.exe [1150496] [PID.2004]
[MD5.A06EFD4965F8A3F97A8C9A291D032678] - (.Pas de propriétaire - Inkjet Printer/Scanner/Fax Extended Servey.) -- C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.exe [116104] [PID.1252]
[MD5.ADA29CA7063D21B930B2A3263CD17F1C] - (.BatBrowse - BatBrowse.) -- C:\Program Files (x86)\BatBrowse\updateBatBrowse.exe [65824] [PID.1632]
[MD5.F9EC9ACD504D823D9B9CA98A4F8D3CA2] - (.Acer Group - Updater Service.) -- C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe [243232] [PID.1176]
[MD5.3CD9C60B23D870700F63AD4755364902] - (.LogMeIn Inc. - Hamachi Client Application.) -- C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2345296] [PID.2892]
[MD5.5397E32E882C0148CEC13D9EACFB7157] - (.Microsoft Corporation - Internet Low-Mic Utility Tool.) -- C:\Program Files (x86)\Internet Explorer\IELowutil.exe [222208] [PID.3964]
[MD5.D6B7DDB68436F13C3CAE2B92524F1FEC] - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\IEXPLORE.exe [770648] [PID.1324]
~ Processes Running: Scanned in 00mn 00s
---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\geoffrey\AppData\Local\Google\Chrome\User Data\Default\Preferences
G2 - GCE: Preference [User Data\Default] [ccncljhbalbbkkfgopogabimepmfkmff] BatBrowse v.1.0.0 (Désactivé)
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Wallet v.0.0.5.0 (Activé)
~ Google Browser: 13 Legitimates Filtered in 00mn 11s
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\geoffrey\AppData\Roaming\Mozilla\Firefox\Profiles\utk92q2b.default\prefs.js
~ Firefox Browser: 17 Legitimates Filtered in 00mn 00s
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s
---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s
---\\ Hosts file redirection (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File: Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 21
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: BatBrowse [64Bits] - {b67b3dbb-c1c9-49d2-b016-2748b0b5017e} . (.BatBrowse - BatBrowse.) -- C:\Program Files (x86)\BatBrowse\BatBrowsebho.dll
~ BHO: 10 Legitimates Filtered in 00mn 00s
---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: (no name) [64Bits] - [HKLM]{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} Clé orpheline
O3 - Toolbar: Google Toolbar [64Bits] - [HKLM]{2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll =>Toolbar.Google
O3 - Toolbar\WebBrowser: (no name) [64Bits] - [HKCU]{2318C2B1-4965-11D4-9B18-009027A5CD4F} Clé orpheline
~ Toolbar: Scanned in 00mn 00s
---\\ Autres liens utilisateurs (O4)
O4 - GS\Desktop [Public]: FlvPlayer.lnk . (...) -- C:\Program Files (x86)\FLVPlayer\FLVPlayerApp.exe
O4 - GS\Desktop [Public]: Google SketchUp 8.lnk . (.Google, Inc. - SketchUp Application.) -- C:\Program Files (x86)\Google\Google SketchUp 8\SketchUp.exe
O4 - GS\Desktop [Public]: RollerCoaster Tycoon 3.lnk . (.Frontier Developments Ltd - RollerCoaster Tycoon® 3.) -- C:\Program Files (x86)\Atari\RollerCoaster Tycoon 3\RCT3plus.exe
O4 - GS\Program [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O4 - GS\QuickLaunch [WENZ]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://www.qvo6.com =>Hijacker.Qvo6
O4 - GS\QuickLaunch [WENZ]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe http://www.qvo6.com =>Hijacker.Qvo6
O4 - GS\QuickLaunch [WENZ]: Packard Bell Games.lnk . (.WildTangent, Inc. - GameConsole.) -- C:\Program Files (x86)\Packard Bell Games\Packard Bell Game Console\GameConsole-wt.exe
O4 - GS\QuickLaunch [WENZ]: qvo6.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe http://www.qvo6.com =>Hijacker.Qvo6
O4 - GS\QuickLaunch [WENZ]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) -- C:\Users\geoffrey\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent
O4 - GS\TaskBar [WENZ]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://www.qvo6.com =>Hijacker.Qvo6
O4 - GS\TaskBar [WENZ]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe http://www.qvo6.com =>Hijacker.Qvo6
O4 - GS\TaskBar [WENZ]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) -- C:\Users\geoffrey\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent
O4 - GS\Program [WENZ]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe http://www.qvo6.com =>Hijacker.Qvo6
O4 - GS\SystemTools [WENZ]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe http://www.qvo6.com =>Hijacker.Qvo6
O4 - GS\Desktop [WENZ]: Auslogics DiskDefrag.lnk . (.Auslogics - Disk Defrag.) -- C:\Program Files (x86)\Auslogics\DiskDefrag\DiskDefrag.exe
O4 - GS\Desktop [WENZ]: Internet Checkers.lnk - Clé orpheline
O4 - GS\Desktop [WENZ]: Media Player Classic - HC.lnk . (.MPC-HC Team - Media Player Classic - Home Cinema.) -- C:\Program Files (x86)\XP Codec Pack\mpc-hc\mpc-hc.exe
O4 - GS\Desktop [WENZ]: Microsoft Works.lnk . (...) -- C:\Windows\Installer\{A3088CD2-612B-11D3-AF43-00C04F443448}\FB931E91.exe
O4 - GS\Desktop [WENZ]: Packard Bell Games.lnk . (.WildTangent, Inc. - GameConsole.) -- C:\Program Files (x86)\Packard Bell Games\Packard Bell Game Console\GameConsole-wt.exe
O4 - GS\Desktop [WENZ]: Solitaire.lnk - Clé orpheline
O4 - GS\Desktop [WENZ]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) -- C:\Users\geoffrey\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent
O4 - GS\QuickLaunch [nathalie]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - GS\QuickLaunch [nathalie]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\TaskBar [nathalie]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - GS\TaskBar [nathalie]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\Program [nathalie]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\SystemTools [nathalie]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\Desktop [nathalie]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - GS\QuickLaunch [hugo]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - GS\QuickLaunch [hugo]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\QuickLaunch [hugo]: Packard Bell Games.lnk . (.WildTangent, Inc. - GameConsole.) -- C:\Program Files (x86)\Packard Bell Games\Packard Bell Game Console\GameConsole-wt.exe
O4 - GS\TaskBar [hugo]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\Program [hugo]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\SystemTools [hugo]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\QuickLaunch [geoffrey]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - GS\QuickLaunch [geoffrey]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\TaskBar [geoffrey]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - GS\Program [geoffrey]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\SystemTools [geoffrey]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\Desktop [geoffrey]: Earthquake - Raccourci.lnk . (.Blizzard Entertainment - World of Warcraft Retail.) -- C:\Users\geoffrey\Desktop\Earthquake\Earthquake.exe
O4 - GS\Desktop [geoffrey]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - GS\Desktop [geoffrey]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) -- C:\Users\geoffrey\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent
~ Global Startup: 125 Legitimates Filtered in 00mn 01s
---\\ Applications lancées au démarrage du sytème (O4)
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe
O4 - HKCU\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe =>Toolbar.Google
O4 - HKLM\..\Wow6432Node\Run: [avast] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastUI.exe
O4 - HKLM\..\Wow6432Node\Run: [tuto4pc_fr_62] Clé orpheline =>PUP.Eorezo
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] . (.Microsoft Corporation - SP Reviewer.) -- C:\Windows\System32\SPReview\SPReview.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
~ Application: Scanned in 00mn 00s
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{FA4AA3A3-DDC3-45F2-9645-FF26903C23FA}: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{FA4AA3A3-DDC3-45F2-9645-FF26903C23FA}: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{FA4AA3A3-DDC3-45F2-9645-FF26903C23FA}: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1
~ Domain: Scanned in 00mn 00s
---\\ Protocole additionnel (O18)
O18 - Handler: wlmailhtml [64Bits] - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (...) --
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation
~ Protocole Additionnel: Scanned in 00mn 00s
---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
~ Winlogon: Scanned in 00mn 00s
---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Update BatBrowse (Update BatBrowse) . (.BatBrowse - BatBrowse.) - C:\Program Files (x86)\BatBrowse\updateBatBrowse.exe
O23 - Service: Updater Service (Updater Service) . (.Acer Group - Updater Service.) - C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe
~ Services: 11 Legitimates Filtered in 00mn 10s
---\\ Logiciels installés (O42)
O42 - Logiciel: BatBrowse 1.0.0 - (.BatBrowse.) [HKLM][64Bits] -- BatBrowse
~ Logic: 156 Legitimates Filtered in 00mn 01s
---\\ HKCU & HKLM Software Keys
[HKCU\Software\BonanzaDealsLive] =>Adware.BonanzaDeals
[HKLM\Software\Wow6432Node\BatBrowse]
[HKLM\Software\Wow6432Node\BonanzaDealsLive] =>Adware.BonanzaDeals
~ Key Software: 220 Legitimates Filtered in 00mn 01s
---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 03/11/2013 - 01:06:50 - [0,998] ----D C:\Program Files (x86)\BatBrowse
O43 - CFD: 03/11/2013 - 11:11:26 - [0] ----D C:\Program Files (x86)\BonanzaDealsLive =>Adware.BonanzaDeals
O43 - CFD: 03/11/2013 - 01:14:16 - [0,015] ----D C:\Program Files (x86)\MyPC Backup =>PUP.MyPCBackup
O43 - CFD: 28/10/2013 - 13:08:02 - [-331,085] ----D C:\Program Files (x86)\Winter Sports 2011
O43 - CFD: 03/11/2013 - 01:06:11 - [0,101] ----D C:\ProgramData\BonanzaDealsLive =>Adware.BonanzaDeals
O43 - CFD: 07/08/2013 - 19:10:09 - [0] ----D C:\Users\geoffrey\AppData\Roaming\Reg
~ Program Folder: 174 Legitimates Filtered in 00mn 10s
---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.27812D8E0D1A1AAEE47189A4B4AB0CF0] - 03/11/2013 - 01:05:47 ---A- . (.Systweak Inc., (www.systweak.com) - Regclean Pro.) -- C:\Windows\SysNative\roboot64.exe [20312] =>Rogue.RegistryPowerCleaner
O44 - LFC:[MD5.27812D8E0D1A1AAEE47189A4B4AB0CF0] - 03/11/2013 - 01:05:47 ---A- . (.Systweak Inc., (www.systweak.com) - Regclean Pro.) -- C:\Windows\System32\roboot64.exe [20312] =>Rogue.RegistryPowerCleaner
~ Files: 17 Legitimates Filtered in 00mn 22s
---\\ Derniers fichiers créés dans Windows Prefetcher (O45)
O45 - LFCP:[MD5.7CF866943D2592E0DFDCCA2473746D01] - 03/11/2013 - 00:42:10 ---A- - C:\Windows\Prefetch\CHKRZM.EXE-8FC0DC2D.pf
O45 - LFCP:[MD5.142B03784A06C576AACF6273D8CDAC7F] - 03/11/2013 - 01:05:02 ---A- - C:\Windows\Prefetch\WAJAM_VALIDATE.EXE-7D0061CD.pf =>Toolbar.Wajam
O45 - LFCP:[MD5.F89A11A5B41F9753F821A76FE5A35823] - 03/11/2013 - 01:05:04 ---A- - C:\Windows\Prefetch\FLVPLAYERSETUP (1).EXE-E72ECED5.pf
O45 - LFCP:[MD5.E768FFA851E5FAED424D0437FB17EC5C] - 03/11/2013 - 01:06:06 ---A- - C:\Windows\Prefetch\247464~1.EXE-4C66DE27.pf
O45 - LFCP:[MD5.A1D4A8842C6F28FCA11959C31980E20A] - 03/11/2013 - 01:06:06 ---A- - C:\Windows\Prefetch\RCPSETUP_ADPPI_ADPPI.EXE-4EB61602.pf
O45 - LFCP:[MD5.FA27D71E8E94774129E2945483F491E2] - 03/11/2013 - 20:43:47 ---A- - C:\Windows\Prefetch\PACKARD BELL.SCR-63E3B79C.pf
O45 - LFCP:[MD5.962859A093C08F04AAB7BC5A93C64722] - 29/10/2013 - 20:45:01 ---A- - C:\Windows\Prefetch\RCT3PLUS.EXE-293A75BF.pf
O45 - LFCP:[MD5.3D4D2656AEEEA7728A3EBC0ACAF64129] - 30/10/2013 - 17:49:56 ---A- - C:\Windows\Prefetch\2FE8F872-FB8F-4A5B-839B-2C9F7-4B2B04EE.pf
~ Prefetcher: 154 Legitimates Filtered in 00mn 01s
---\\ Clé de registre Shell MountPoints2 (MPKS) (O51)
O51 - MPSK:{48363f05-fc1a-11e2-b301-806e6f6e6963}\AutoRun\command. (...) -- E:\Autorun.exe
~ Keys: Scanned in 00mn 02s
---\\ Enumération des clés de registre PoliciesSystem (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
~ MWPS: 16 Legitimates Filtered in 00mn 00s
---\\ Liste des pilotes du système (SDL) (O58)
O58 - SDL:[MD5.A3769020F7E8A70FD3E824C050F33306] - 24/02/2010 - 11:20:40 ---A- . (.Protect Software GmbH - ProtectDisc x64/x86 Hybrid Driver.) -- C:\Windows\System32\Drivers\acedrv11.sys [191616]
~ Drivers: 16 Legitimates Filtered in 00mn 00s
---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)
O61 - LFC: 02/11/2013 - 21:00:15 ---A- . (...) -- C:\Users\geoffrey\AppData\Roaming\ZHP\ZHPADSReport.txt [351] =>.Nicolas Coolman
O61 - LFC: 02/11/2013 - 21:00:15 ---A- . (...) -- C:\Users\geoffrey\AppData\Roaming\ZHP\ZHPDiag.txt [39286] =>.Nicolas Coolman
O61 - LFC: 03/11/2013 - 20:59:50 ---A- . (...) -- C:\Users\geoffrey\AppData\Local\Google\Chrome\User Data\chrome_shutdown_ms.txt [5]
O61 - LFC: 03/11/2013 - 20:59:57 ---A- . (...) -- C:\Users\geoffrey\AppData\Local\Google\Chrome\User Data\Local State [45803]
O61 - LFC: 03/11/2013 - 21:00:05 ---A- . (...) -- C:\Users\geoffrey\AppData\Roaming\D2Info0 [117]
O61 - LFC: 03/11/2013 - 21:00:05 ---A- . (...) -- C:\Users\geoffrey\AppData\Roaming\app\Jerakine_lang.dat [5079]
O61 - LFC: 03/11/2013 - 21:00:12 ---A- . (...) -- C:\Users\geoffrey\AppData\Roaming\ZHP\Log.txt [162137] =>.Nicolas Coolman
O61 - LFC: 03/11/2013 - 21:00:15 ---A- . (...) -- C:\Users\geoffrey\AppData\Roaming\ZHP\TestsZHPDiag.txt [2936] =>.Nicolas Coolman
O61 - LFC: 03/11/2013 - 21:00:15 ---A- . (...) -- C:\Users\geoffrey\AppData\Roaming\ZHP\ZHPExportRegistry-03-11-2013-12-12-49.txt [2464] =>.Nicolas Coolman
O61 - LFC: 03/11/2013 - 21:00:15 ---A- . (...) -- C:\Users\geoffrey\AppData\Roaming\ZHP\ZHPFixQuarantine.txt [1150] =>.Nicolas Coolman
O61 - LFC: 03/11/2013 - 21:00:15 ---A- . (...) -- C:\Users\geoffrey\AppData\Roaming\ZHP\ZHPFix[R1].txt [4293] =>.Nicolas Coolman
~ 1 Fichiers temporaires (Temporary files)
~ Files: 685 Legitimates Filtered in 00mn 35s
---\\ Liste des outils de désinfection (LATC) (O63)
O63 - Logiciel: ZHPDiag 2013 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman
~ ADS: Scanned in 00mn 00s
---\\ Associations Shell Spawning (O67)
O67 - Shell Spawning: <.html> <ChromeHTML>[HKCU\..\open\Command] (.Not Key.)
~ FASS Keys: 19 Legitimates Filtered in 00mn 00s
---\\ Menu de démarrage Internet (SMI) (O68)
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
~ Keys: Scanned in 00mn 00s
---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69)
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - https://www.bing.com/?toHttps=1&redig=69DA0EF8272048D9864AF4DB37211DE8
O69 - SBI: SearchScopes [HKCU] {4AA8D98D-83D2-3B0B-23B0-667AAFFB4606} - (Google) - https://www.google.com/?gws_rd=ssl
O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Google) - https://www.google.com/?gws_rd=ssl
O69 - SBI: SearchScopes [HKCU] {B7A052D6-433A-42CB-9165-87E9BD100337} - (Yahoo! Search) - https://fr.search.yahoo.com/
~ Keys: Scanned in 00mn 00s
---\\ Recherche particulière à la racine du système (SPRF) (O84)
[MD5.D07444BDB22757545CD2FA91654F2FD0] [SPRF][24/08/2013] (...) -- C:\Users\geoffrey\AppData\Local\Temp\Quarantine.exe [328019]
[MD5.F165AD4C56D13F92279C302996A110E1] [SPRF][02/11/2013] (.Pas de propriétaire - Minecraft Launcher.) -- C:\Users\geoffrey\Desktop\Minecraft.exe [356352]
~ Files: 3 Legitimates Filtered in 00mn 00s
---\\ Etat général des services not Microsoft (EGS) (SR=Running, SS=Stopped)
SS - | Demand 09/10/2009 169312 | (AdobeActiveFileMonitor8.0) . (.Adobe Systems Incorporated.) - c:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe
SR - | Auto 11/05/2013 65640 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
SS - | Demand 10/10/2013 257416 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SS - | Demand 10/07/1658 0 | (AIDA64Driver) . (...) - C:\Program Files (x86)\FinalWire\AIDA64 Extreme Edition\kerneld.x64
SR - | Auto 07/09/2013 55624 | (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
SR - | Auto 30/08/2013 46808 | (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
SR - | Auto 30/08/2011 462184 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe
SS - | Demand 03/08/2013 867080 | (FLEXnet Licensing Service) . (.Acresso Software Inc..) - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
SS - | Demand 10/10/2009 238328 | (GameConsoleService) . (.WildTangent, Inc..) - C:\Program Files (x86)\Packard Bell Games\Packard Bell Game Console\GameConsoleService.exe
SR - | Auto 28/08/2009 1150496 | (Greg_Service) . (.Acer Incorporated.) - C:\Program Files (x86)\Packard Bell\Registration\GregHSRW.exe
SS - | Auto 08/08/2013 116648 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 08/08/2013 116648 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 08/08/2013 194032 | (gusvc) . (.Google.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
SR - | Auto 01/10/2013 2746704 | (Hamachi2Svc) . (.LogMeIn Inc..) - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
SR - | Auto 10/02/2009 116104 | (IJPLMSVC) . (...) - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.exe
SS - | Demand 23/10/2013 641352 | (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe
SS - | Demand 18/06/2013 117144 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
SS - | Demand 15/01/2010 935208 | (Nero BackItUp Scheduler 4.0) . (.Nero AG.) - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
SS - | Auto 05/09/2013 171680 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
SR - | Auto 22/10/2013 65824 | (Update BatBrowse) . (.BatBrowse.) - C:\Program Files (x86)\BatBrowse\updateBatBrowse.exe
SR - | Auto 29/01/2010 243232 | (Updater Service) . (.Acer Group.) - C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe
SR - | Auto 14/07/2009 27136 | C:\Program Files (x86)\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto 10/07/1658 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation
SR - | Auto 14/07/2009 27136 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
~ Services: Scanned in 00mn 16s
---\\ Recherche d'infection sur le Master Boot Record (MBR)(O80)
Run by geoffrey at 03/11/2013 21:01:48
~ OS 64 not supported by MBR tool
~ MBR: 0 Legitimates Filtered in 00mn 00s
---\\ Recherche d'infection sur le Master Boot Record (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by geoffrey at 03/11/2013 21:01:50
********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin
~ MBR: Scanned in 00mn 02s
---\\ Scan Additionnel (O88)
Database Version : 12960 - (25/10/2013)
Clés trouvées (Keys found) : 1
Valeurs trouvées (Values found) : 3
Dossiers trouvés (Folders found) : 3
Fichiers trouvés (Files found) : 2
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}] =>PUP.V9Software
[HKLM\Software\Microsoft\Internet Explorer\Toolbar]:{2318C2B1-4965-11d4-9B18-009027A5CD4F} =>Toolbar.Google^
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:swg =>Toolbar.Google^
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:tuto4pc_fr_62 =>PUP.Eorezo^
C:\Program Files (x86)\BonanzaDealsLive =>Adware.BonanzaDeals^
C:\Program Files (x86)\MyPC Backup =>PUP.MyPCBackup^
C:\ProgramData\BonanzaDealsLive =>Adware.BonanzaDeals^
[HKCU\Software\BonanzaDealsLive] =>Adware.BonanzaDeals^
[HKLM\Software\Wow6432Node\BonanzaDealsLive] =>Adware.BonanzaDeals^
~ Additionnel Scan: 342980 Items scanned in 01mn 07s
---\\ Récapitulatif des détections trouvées sur votre station
~ http://nicolascoolman.webs.com/apps/blog/show/32384220-toolbar-google =>Toolbar.Google
~ http://nicolascoolman.webs.com/apps/blog/show/26631242-hijacker-qvo6 =>Hijacker.Qvo6
~ http://nicolascoolman.webs.com/apps/blog/show/27469224-pup-eorezo =>PUP.EoRezo
~ http://nicolascoolman.webs.com/apps/blog/show/32816468-adware-bonanzadeals =>Adware.BonanzaDeals
~ http://nicolascoolman.webs.com/apps/blog/show/32174815-pup-mypcbackup =>PUP.MyPCBackup
~ http://nicolascoolman.webs.com/apps/blog/show/29295819-rogue-registrypowercleaner =>Rogue.RegistryPowerCleaner
~ http://nicolascoolman.webs.com/apps/blog/show/27379491-toolbar-wajam =>Toolbar.Wajam
~ http://nicolascoolman.webs.com/apps/blog/show/27672211-pup-v9software =>PUP.V9Software
~ MSI: 8 link(s) detected in 01mn 07s
~ 1919 Legitimates filtered by white list
End of the scan (482 lines in 04mn 28s)(0)