~ Rapport de ZHPDiag v2013.9.16.36 - Nicolas Coolman (19/09/2013) ~ Lancé par Administrateur (20/09/2013 14:45:40) ~ Adresse du Site Web http://nicolascoolman.webs.com ~ Traduit par Nicolas Coolman ~ Etat de la version : ~ Liste blanche : Activée par le programme ~ Elévation des Privilèges : OK ~ User Account Control (UAC): Not Found ---\\ Navigateurs Internet MSIE: Internet Explorer v8.0.6001.18702 MFIE: Mozilla Firefox 24.0 GCIE: Google Chrome v29.0.1547.76 (Defaut) ---\\ Informations sur les produits Windows ~ Langage: Français Windows XP Professional Service Pack 3 (Build 2600) Windows Automatic Updates : OK Windows Genuine Advantage : OK ---\\ Logiciels de protection du système Avira Free Antivirus v13.0.0.4042 Malwarebytes Anti-Malware version 1.75.0.1300 ---\\ Logiciels d'optimisation du système CCleaner v4.02 =>Piriform Ltd ---\\ Logiciels de partage PeerToPeer ---\\ Surveillance de Logiciels Adobe Flash Player 11 Plugin Adobe Reader XI ---\\ Informations sur le système ~ Processor: x86 Family 6 Model 15 Stepping 13, GenuineIntel ~ Operating System: 32 Bits Boot mode: Normal (Normal boot) Total RAM: 3070 MB (72% free) System Restore: Activé (Enable) System drive C: has 49 GB (42%) free of 118 GB ---\\ Mode de connexion au système ~ Computer Name: KARIM ~ User Name: Administrateur ~ All Users Names: zaguia, SUPPORT_388945a0, HelpAssistant, Administrateur, ~ Unselected Option: None Logged in as Administrator ---\\ Variables d'environnement ~ System Unit : C:\ ~ %AppData% : C:\Documents and Settings\Administrateur\Application Data\ ~ %Desktop% : C:\Documents and Settings\Administrateur\Bureau\ ~ %Favorites% : C:\Documents and Settings\Administrateur\Favoris\ ~ %LocalAppData% : C:\Documents and Settings\Administrateur\Local Settings\Application Data\ ~ %StartMenu% : C:\Documents and Settings\Administrateur\Menu Démarrer\ ~ %Windir% : C:\WINDOWS\ ~ %System% : C:\WINDOWS\system32\ ---\\ Enumération des unités disques C:\ Hard drive, Flash drive, Thumb drive (Free 49 Go of 118 Go) D:\ Hard drive, Flash drive, Thumb drive (Free 67 Go of 114 Go) E:\ CD-ROM drive (Not Inserted) F:\ CD-ROM drive (Not Inserted) ---\\ Etat du Centre de Sécurité Windows [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : Out Of Date ~ Security Center: 32 Legitimates Filtered in 00mn 00s ---\\ Recherche particulière de fichiers génériques [MD5.BFBBBFE0913E6C9706F97598A6588B8F] - (.Microsoft Corporation - Explorateur Windows.) (.27/09/2008 - 11:24:52.) -- C:\WINDOWS\Explorer.exe [1573888] [MD5.08125B740C62E6DEA9483A15043AD0D5] - (.Microsoft Corporation - Internet Extensions for Win32.) (.07/06/2013 - 22:48:38.) -- C:\WINDOWS\system32\wininet.dll [920064] [MD5.4BB6301D634C857A5089E8B24C5555E4] - (.Microsoft Corporation - Application d'ouverture de session Windows NT.) (.27/09/2008 - 11:27:21.) -- C:\WINDOWS\system32\Winlogon.exe [593408] [MD5.F6B7B1ECD7B41736BDB6FF4B092BCB79] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.17/08/2011 - 14:41:46.) -- C:\WINDOWS\system32\Drivers\AFD.sys [138496] [MD5.9F3A2F5AA6875C72BF062C712CFA2674] - (.Microsoft Corporation - IDE/ATAPI Port Driver.) (.27/09/2008 - 02:58:26.) -- C:\WINDOWS\system32\Drivers\atapi.sys [96512] [MD5.C885B02847F5D2FD45A24E219ED93B32] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/04/2008 - 13:00:00.) -- C:\WINDOWS\system32\Drivers\Cdfs.sys [63744] [MD5.4B0A100EAF5C49EF3CCA8C641431EACC] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.02/05/2008 - 11:49:39.) -- C:\WINDOWS\system32\Drivers\Cdrom.sys [62976] [MD5.31F923EB2170FC172C81ABDA0045D18C] - (.Microsoft Corporation - Pilote de cryptographie FIPS.) (.14/04/2008 - 13:00:00.) -- C:\WINDOWS\system32\Drivers\Fips.sys [44672] [MD5.573C7D0A32852B48F3058CFD8026F511] - (.Windows (R) Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) (.14/04/2008 - 13:00:00.) -- C:\WINDOWS\system32\Drivers\HDAudBus.sys [144384] [MD5.A09BDC4ED10E3B2E0EC27BB94AF32516] - (.Microsoft Corporation - Pilote de port i8042.) (.14/04/2008 - 13:00:00.) -- C:\WINDOWS\system32\Drivers\i8042prt.sys [54144] [MD5.083A052659F5310DD8B6A6CB05EDCF8E] - (.Microsoft Corporation - IMAPI Kernel Driver.) (.14/04/2008 - 13:00:00.) -- C:\WINDOWS\system32\Drivers\Imapi.sys [42112] [MD5.CC748EA12C6EFFDE940EE98098BF96BB] - (.Microsoft Corporation - IP Network Address Translator.) (.14/04/2008 - 13:00:00.) -- C:\WINDOWS\system32\Drivers\IpNat.sys [152832] [MD5.23C74D75E36E7158768DD63D92789A91] - (.Microsoft Corporation - IPSec Driver.) (.14/04/2008 - 13:00:00.) -- C:\WINDOWS\system32\Drivers\IPSec.sys [75264] [MD5.FB2FCCC70F7174C7BF64F48E96D3ADF4] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.15/07/2011 - 14:29:35.) -- C:\WINDOWS\system32\Drivers\MRxSmb.sys [457856] [MD5.74B2B2F5BEA5E9A3DC021D685551BD3D] - (.Microsoft Corporation - MBT Transport driver.) (.14/04/2008 - 13:00:00.) -- C:\WINDOWS\system32\Drivers\netBT.sys [162816] [MD5.A0857C97770034FD2AF17DC4014B5ABD] - (.Microsoft Corporation - NT File System Driver.) (.22/04/2008 - 14:45:52.) -- C:\WINDOWS\system32\Drivers\ntfs.sys [576384] [MD5.8FD0BDBEA875D06CCF6C945CA9ABAF75] - (.Microsoft Corporation - Pilote de port parallèle.) (.27/09/2008 - 11:31:20.) -- C:\WINDOWS\system32\Drivers\Parport.sys [80384] [MD5.11B4A627BC9614B885C4969BFA5FF8A6] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.14/04/2008 - 13:00:00.) -- C:\WINDOWS\system32\Drivers\Rasl2tp.sys [51328] [MD5.15CABD0F7C00C47C70124907916AF3F1] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.27/09/2008 - 00:58:26.) -- C:\WINDOWS\system32\Drivers\rdpdr.sys [196224] [MD5.D8EB2A7904DB6C916EB5361878DDCBAE] - (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) (.27/09/2008 - 02:58:26.) -- C:\WINDOWS\system32\Drivers\redbook.sys [58752] [MD5.46DE1126684369BACE4849E4FC8C43CA] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.14/04/2008 - 13:00:00.) -- C:\WINDOWS\system32\Drivers\volsnap.sys [53376] ~ Generic Processes: Scanned in 00mn 00s ---\\ Etat des fichiers cachés (Caché/Total) ~ Mes images (My Pictures) : 3/3687 ~ Mes musiques (My Musics) : 3/284 ~ Mes Favoris (My Favorites) : 1/144 ~ Mes Documents (My Documents) : 1/6522 ~ Mon Bureau (My Desktop) : 2/2010 ~ Menu demarrer (Programs) : 1/39 ~ Hidden Files: Scanned in 00mn 09s ---\\ Processus lancés [MD5.517F7AB7933E9E25D29C6CC6E8C87482] - (.ATI Technologies Inc. - ATI External Event Utility EXE Module.) -- C:\WINDOWS\system32\Ati2evxx.exe [536576] [PID.828] [MD5.8769E2D1072B62AB071F166F03B3E3DC] - (.Avira Operations GmbH & Co. KG - Avira Scheduler.) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe [84024] [PID.1028] [MD5.9F3287A1CAF6E365ED2B39BB8D44B0EA] - (.Elaborate Bytes AG - Virtual CloneDrive Daemon.) -- C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [52168] [PID.268] [MD5.137962BA4B4B60A0E5F12D6C9DFA4C2F] - (.Chicony - traybar.) -- C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe [413696] [PID.296] [MD5.E681281D9BFC9D45D3B72532717E5880] - (.Advanced Micro Devices Inc. - Catalyst Control Center: Monitoring program.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe [49152] [PID.340] [MD5.1144F1A221F756E05525179B5E1682C1] - (.Sony Corporation - Media Check Tool.) -- C:\Program Files\Sony\PMB\PMBVolumeWatcher.exe [650080] [PID.768] [MD5.4476C54D84C792E6B9ECFE4C68BE50D0] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe [152392] [PID.796] [MD5.DB3F7F19F942D3CE4E1A0E8D9FF541FB] - (.Avira Operations GmbH & Co. KG - Avira System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [347192] [PID.816] [MD5.3FD2D921EA76F7B64D4F362612B569E1] - (.APN - Ask Toolbar Notifier.) -- C:\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [1558480] [PID.868] =>Toolbar.Ask [MD5.A11A7B0670CC8B259C32CA114805DDAA] - (...) -- C:\Program Files\Vodafone\VMCLite\VodafoneVMCLiteLauncher.exe [102400] [PID.876] [MD5.16DCC8ACC504A6662BB04A0ED9454A4D] - (.SFR - Propriétés de la connexion SFR.) -- C:\Program Files\SFR\Kit\9props.exe [959808] [PID.628] [MD5.1AF1360E070BD8EA402F793EF6FBAAEB] - (.Macrovision Corporation - Macrovision Software Manager.) -- C:\Documents and Settings\All Users\Application Data\Macrovision\FLEXnet Connect\6\ISUSPM.exe [222128] [PID.640] [MD5.AD1D13E6326E0B8DA2A7BE13B39A8FE0] - (.Avira Operations GmbH & Co. KG - Avira On-Access Service.) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe [108088] [PID.1760] [MD5.D41231AECFEE88973D56AEC2EE5B962D] - (.APN LLC. - APN Updater.) -- C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe [168400] [PID.1220] [MD5.4FE5C6D40664AE07BE5105874357D2ED] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe [57008] [PID.1376] [MD5.A0101E836D2A39682E134C47B1565256] - (.Nero AG - Nero BackItUp.) -- C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe [836904] [PID.2516] [MD5.E9605A180001A6B5551112D91DE92CA1] - (.Sony Corporation - Device Information Provider.) -- C:\Program Files\Sony\PMB\PMBDeviceInfoProvider.exe [428384] [PID.3440] [MD5.DD84FD291B2C324B8E6D6EF6B8643A69] - (...) -- C:\Program Files\Camera Assistant Software for Toshiba\CEC_MAIN.exe [4624384] [PID.3960] [MD5.25CA1677AAA3CDC99CD4FCF940886F3C] - (.ATI Technologies Inc. - Catalyst Control Centre: Host application.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe [49152] [PID.4084] [MD5.F30BF9FC4275156F2AE96FCDF1ED5EE4] - (.Avira Operations GmbH & Co. KG - Avira Shadow Copy Service.) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe [76856] [PID.1104] [MD5.07E1BF2B3776AA67A621DED3810C1626] - (.Avira Operations GmbH & Co. KG - Avira WebGuard Service.) -- C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.exe [815160] [PID.2732] [MD5.E3E71649A926CB34FA4D7AB75DCE126C] - (.Apple Inc. - iPodService Module (32-bit).) -- C:\Program Files\iPod\bin\iPodService.exe [553288] [PID.2796] [MD5.E7148BB584830E51AFD414CE9AEAE74C] - (.Google Inc. - Google Chrome.) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\chrome.exe [829392] [PID.720] [MD5.EFA551863AD71A69690A3685145FD378] - (...) -- ystem32\rundll32.exe [0] [PID.5844] [MD5.39D3D1F2DB8D1DC22732482E86ED915D] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [7974912] [PID.3076] ~ Processes Running: Scanned in 00mn 01s ---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2) C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences G1 - GCS: Preference [User Data\Default] http://www.delta-search.com =>Toolbar.DeltaSearch G2 - GCE: Preference [User Data\Default] [aaaaacalgebmfelllfiaoknifldpngjh] Avira SearchFree Toolbar plus Web Protection v.20.53263, (Désactivé) =>Toolbar.Avira ~ Google Browser: 9 Legitimates Filtered in 01mn 42s ---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\mteietq8.default\prefs.js M3 - MFPP: Plugins - [Administrateur] -- C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\mteietq8.default\searchplugins\bingp.xml M2 - MFEP: prefs.js [Administrateur - mteietq8.default\{44d0a1b4-9c90-4f86-ac92-8680b5d6549e}] [] Gmail Notifier v0.6.4.3 (..) ~ Firefox Browser: 32 Legitimates Filtered in 00mn 01s ---\\ Internet Explorer, Proxy Management (R5) R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 199.19.105.156:80 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1 ~ Proxy management: Scanned in 00mn 00s ---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs F2 - REG:system.ini: USERINIT=C:\WINDOWS\system32\userinit.exe, F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl" ~ Keys: Scanned in 00mn 00s ---\\ Hosts file redirection (O1) ~ Le fichier hosts est sain (The hosts file is clean). ~ Hosts File: Scanned in 00mn 00s ~ Nombre de lignes (Lines number): 1 ---\\ Internet Explorer Toolbars (O3) O3 - Toolbar: Avira SearchFree Toolbar plus Web Protection - [HKLM]{41564952-412D-5637-00A7-7A786E7484D7} . (.APN LLC. - Passport.) -- C:\Program Files\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll =>Toolbar.Avira O3 - Toolbar\WebBrowser: (no name) - [HKCU]{2318C2B1-4965-11D4-9B18-009027A5CD4F} Clé orpheline ~ Toolbar: Scanned in 00mn 00s ---\\ Autres liens utilisateurs (O4) O4 - GS\Program [AllUsers]: Chrono Shutdown.lnk . (.John's Soft ;) - Chrono ShutDown.) -- C:\Program Files\Chrono Shutdown\chrono.exe ~ Global Startup: 18 Legitimates Filtered in 00mn 01s ---\\ Applications lancées au démarrage du sytème (O4) O4 - GS\Program [AllUsers]: NewShortcut1.lnk . (...) -- C:\Program Files\Vodafone\VMCLite\VodafoneVMCLiteLauncher.exe O4 - HKLM\..\Run: [VirtualCloneDrive] . (.Elaborate Bytes AG - Virtual CloneDrive Daemon.) -- C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe O4 - HKLM\..\Run: [StartCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe O4 - HKLM\..\Run: [Camera Assistant Software] . (.Chicony - traybar.) -- C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe O4 - HKLM\..\Run: [HDMICtrlMan] . (.TOSHIBA Corporation. - HDMICtrlMan.exe.) -- C:\Program Files\TOSHIBA\HDMICtrlMan\HDMICtrlMan.exe O4 - HKLM\..\Run: [NeroFilterCheck] . (.Nero AG - NeroCheck.) -- C:\Program Files\Fichiers communs\Nero\Lib\NeroCheck.exe O4 - HKLM\..\Run: [APSDaemon] . (.Apple Inc. - Apple Push.) -- C:\Program Files\Fichiers communs\Apple\Apple Application Support\APSDaemon.exe O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe O4 - HKLM\..\Run: [PMBVolumeWatcher] . (.Sony Corporation - Media Check Tool.) -- C:\Program Files\Sony\PMB\PMBVolumeWatcher.exe O4 - HKLM\..\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe O4 - HKLM\..\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files\QT Lite\QTTask.exe O4 - HKLM\..\Run: [avgnt] . (.Avira Operations GmbH & Co. KG - Avira System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe O4 - HKLM\..\Run: [ApnTBMon] . (.APN - Ask Toolbar Notifier.) -- C:\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe =>Toolbar.Ask O4 - HKLM\..\Run: [VodafoneVMCLiteLauncher] . (...) -- C:\Program Files\Vodafone\VMCLite\VodafoneVMCLiteLauncher.exe O4 - HKCU\..\Run: [Connexion SFR 9props.exe] . (.SFR - Propriétés de la connexion SFR.) -- C:\Program Files\SFR\Kit\9props.exe O4 - HKCU\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Update\GoogleUpdate.exe O4 - HKCU\..\Run: [Adobe Reader Synchronizer] . (.Adobe Systems Incorporated - Adobe Collaboration Synchronizer 11.0.) -- C:\Program Files\Adobe\Reader 11.0\Reader\AdobeCollabSync.exe O4 - HKCU\..\Run: [ISUSPM] . (.Macrovision Corporation - Macrovision Software Manager.) -- C:\Documents and Settings\All Users\Application Data\Macrovision\FLEXnet Connect\6\ISUSPM.exe O4 - HKCU\..\Run: [WMPNSCFG] . (.Microsoft Corporation - Application de configuration du service Par.) -- C:\Program Files\Windows Media Player\WMPNSCFG.exe O4 - HKUS\S-1-5-18\..\RunOnce: [JkDefrag] rundll32 advpack.dll O4 - HKUS\S-1-5-18\..\RunOnce: [SweetRegistry] rundll32 advpack.dll O4 - HKUS\S-1-5-21-299502267-1085031214-343818398-500\..\Run: [Connexion SFR 9props.exe] . (.SFR - Propriétés de la connexion SFR.) -- C:\Program Files\SFR\Kit\9props.exe O4 - HKUS\S-1-5-21-299502267-1085031214-343818398-500\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe O4 - HKUS\S-1-5-21-299502267-1085031214-343818398-500\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Update\GoogleUpdate.exe O4 - HKUS\S-1-5-21-299502267-1085031214-343818398-500\..\Run: [Adobe Reader Synchronizer] . (.Adobe Systems Incorporated - Adobe Collaboration Synchronizer 11.0.) -- C:\Program Files\Adobe\Reader 11.0\Reader\AdobeCollabSync.exe O4 - HKUS\S-1-5-21-299502267-1085031214-343818398-500\..\Run: [ISUSPM] . (.Macrovision Corporation - Macrovision Software Manager.) -- C:\Documents and Settings\All Users\Application Data\Macrovision\FLEXnet Connect\6\ISUSPM.exe O4 - HKUS\S-1-5-21-299502267-1085031214-343818398-500\..\Run: [WMPNSCFG] . (.Microsoft Corporation - Application de configuration du service Par.) -- C:\Program Files\Windows Media Player\WMPNSCFG.exe ~ Application: Scanned in 00mn 00s ---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9) O9 - Extra button: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} . (.Microsoft Corporation - Windows Live Writer Blog This Extension.) -- C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (...) -- C:\Program Files\Microsoft Office\Office12\REFBARH.ICO O9 - Extra button: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} -- Clé orpheline ~ IE Extra Buttons: Scanned in 00mn 00s ---\\ Objets ActiveX (Downloaded Program Files)(O16) O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} ((no name)) - http://download.eset.com/special/eos/OnlineScanner.cab O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} ((no name)) - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab ~ Objets ActiveX: Scanned in 00mn 00s ---\\ Modification Domaine/Adresses DNS (O17) O17 - HKLM\System\CCS\Services\Tcpip\..\{2D614E1C-392D-4763-ABD9-F4C62FD14ADE}: NameServer = 192.168.1.1 O17 - HKLM\System\CS1\Services\Tcpip\..\{2D614E1C-392D-4763-ABD9-F4C62FD14ADE}: NameServer = 192.168.1.1 O17 - HKLM\System\CS2\Services\Tcpip\..\{2D614E1C-392D-4763-ABD9-F4C62FD14ADE}: NameServer = 192.168.1.1 ~ Domain: Scanned in 00mn 00s ---\\ Protocole additionnel (O18) O18 - Handler: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files\Windows Live\Mail\mailcomm.dll O18 - Filter: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\MSOXMLMF.dll ~ Protocole Additionnel: Scanned in 00mn 00s ---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20) O20 - Winlogon Notify: AtiExtEvent . (.ATI Technologies Inc. - ATI External Event Utility DLL Module.) -- C:\WINDOWS\system32\Ati2evxx.dll O20 - Winlogon Notify: crypt32chain . (.Microsoft Corporation - Crypto API32.) -- C:\WINDOWS\system32\crypt32.dll O20 - Winlogon Notify: cryptnet . (.Microsoft Corporation - Crypto Network Related API.) -- C:\WINDOWS\system32\cryptnet.dll O20 - Winlogon Notify: cscdll . (.Microsoft Corporation - Agent réseau hors connexion.) -- C:\WINDOWS\system32\cscdll.dll O20 - Winlogon Notify: dimsntfy . (.Microsoft Corporation - DIMS Notification Handler.) -- C:\WINDOWS\system32\dimsntfy.dll O20 - Winlogon Notify: ScCertProp . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll O20 - Winlogon Notify: Schedule . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll O20 - Winlogon Notify: sclgntfy . (.Microsoft Corporation - DLL secondaire de notification de service d.) -- C:\WINDOWS\system32\sclgntfy.dll O20 - Winlogon Notify: SensLogn . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\WlNotify.dll O20 - Winlogon Notify: termsrv . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll O20 - Winlogon Notify: WgaLogon . (.Microsoft Corporation - Notifications Windows Genuine Advantage.) -- C:\WINDOWS\system32\WgaLogon.dll O20 - Winlogon Notify: wlballoon . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll ~ Winlogon: Scanned in 00mn 00s ---\\ Liste des services NT non Microsoft et non désactivés (O23) O23 - Service: Service de mise à jour Ask (APNMCP) . (.APN LLC. - APN Updater.) - C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files\Skype\Updater\Updater.exe ~ Services: 10 Legitimates Filtered in 00mn 06s ---\\ Enumération Active Desktop & MHTML Editor (O24) O24 - Desktop General: BackupWallPaper - .(...) - C:\Documents and Settings\Administrateur\Local Settings\Application Data\Microsoft\Wallpaper2.bmp O24 - Desktop General: WallPaper - .(...) - C:\Documents and Settings\Administrateur\Local Settings\Application Data\Microsoft\Wallpaper2.bmp ~ Desktop Component: 4 Legitimates Filtered in 00mn 00s ---\\ Logiciels installés (O42) O42 - Logiciel: 6.35 ofw psp go - (.6.35 ofw psp go.) [HKLM] -- 6.35 ofw psp go O42 - Logiciel: PortGo Softphone version 7.0 - (.PortSIP Solutions, Inc..) [HKLM] -- {275B0FDC-5900-4159-A8B5-E11FA5E372FB}_is1 O42 - Logiciel: cfw 6.20 pro - (.cfw 6.20 pro.) [HKLM] -- cfw 6.20 pro O42 - Logiciel: cfw 6.35 pro - (.cfw 6.35 pro.) [HKLM] -- cfw 6.35 pro ~ Logic: 122 Legitimates Filtered in 00mn 02s ---\\ HKCU & HKLM Software Keys [HKCU\Software\Active@ File Preview] [HKCU\Software\AskPartnerNetwork] [HKCU\Software\Flexiblesoft] [HKCU\Software\Opti Drive Control] [HKCU\Software\Yahoo] =>Toolbar.Yahoo [HKCU\Software\keeproadwin] [HKLM\Software\AskPartnerNetwork] ~ Key Software: 257 Legitimates Filtered in 00mn 02s ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) O43 - CFD: 16/08/2013 - 02:22:41 - [9,093] ----D C:\Program Files\AskPartnerNetwork O43 - CFD: 25/11/2009 - 01:13:21 - [2,199] ----D C:\Program Files\AutoMacroRecorder O43 - CFD: 23/01/2013 - 21:42:15 - [1,132] ----D C:\Program Files\D4 O43 - CFD: 23/03/2010 - 13:33:27 - [0] ----D C:\Program Files\FlexibleSoft O43 - CFD: 19/08/2012 - 15:33:07 - [48,478] ----D C:\Program Files\PortGo Softphone O43 - CFD: 16/08/2013 - 02:18:26 - [0] ----D C:\Documents and Settings\All Users\Application Data\APN O43 - CFD: 16/08/2013 - 02:22:41 - [1,432] ----D C:\Documents and Settings\All Users\Application Data\AskPartnerNetwork O43 - CFD: 23/03/2010 - 13:33:27 - [0] ----D C:\Documents and Settings\All Users\Application Data\Flexiblesoft O43 - CFD: 23/03/2010 - 13:33:27 - [0] ----D C:\Documents and Settings\Administrateur\Application Data\Flexiblesoft O43 - CFD: 01/09/2009 - 13:46:34 - [0,118] ----D C:\Documents and Settings\Administrateur\Application Data\VoxOx2 O43 - CFD: 24/10/2011 - 00:16:01 - [0,002] ----D C:\Documents and Settings\Administrateur\Menu Démarrer\Programmes\6.35 ofw psp go O43 - CFD: 23/10/2011 - 23:03:27 - [0,002] ----D C:\Documents and Settings\Administrateur\Menu Démarrer\Programmes\cfw 6.20 pro O43 - CFD: 23/10/2011 - 22:37:33 - [0,002] ----D C:\Documents and Settings\Administrateur\Menu Démarrer\Programmes\cfw 6.35 pro ~ Program Folder: 224 Legitimates Filtered in 00mn 44s ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44) O44 - LFC:[MD5.93BB57DDCA2CEF34A3F67F4F29D7955B] - 20/09/2013 - 11:24:34 ---A- . (...) -- C:\WINDOWS\wiadebug.log [159] O44 - LFC:[MD5.D8FD549439AA4E46846B5D44B0A51933] - 20/09/2013 - 11:24:33 ---A- . (...) -- C:\WINDOWS\wiaservc.log [50] O44 - LFC:[MD5.1410572E4FF3A0017B4D2338BDD311BE] - 20/09/2013 - 06:48:44 ---A- . (...) -- C:\WINDOWS\system32\???7 [98443620] O44 - LFC:[MD5.573C001BC433A19257CFD6061D494BAC] - 18/09/2013 - 21:19:47 ---A- . (...) -- C:\WINDOWS\system32\???7 [98177822] O44 - LFC:[MD5.5A31D93B2A2119A7EC5970FEE2B0A6C5] - 17/09/2013 - 19:41:51 ---A- . (...) -- C:\WINDOWS\system32\???7 [98062984] O44 - LFC:[MD5.AD8035F29DC6088B057BAC4049504687] - 16/09/2013 - 16:34:57 ---A- . (...) -- C:\WINDOWS\system32\???7 [97787879] O44 - LFC:[MD5.367486A5F51E027BD2A67B486EE5DFFC] - 15/09/2013 - 16:51:09 ---A- . (...) -- C:\WINDOWS\system32\???7 [97671483] O44 - LFC:[MD5.29CE28E60328342E11F67EE8BCD6EA2F] - 14/09/2013 - 15:19:44 ---A- . (...) -- C:\WINDOWS\system32\???7 [97581476] O44 - LFC:[MD5.95EFC9AF20061E1F28601E488262FDF1] - 12/09/2013 - 22:40:40 ---A- . (...) -- C:\hpfr3420.xml [522] O44 - LFC:[MD5.45FEFEB52F8168637CB0E03AFE3F4F1A] - 12/09/2013 - 22:40:40 ---A- . (...) -- C:\hpfr3425.log [302984] O44 - LFC:[MD5.A5D78A802E77BFA998E39C3BA92895FE] - 12/09/2013 - 20:16:10 ---A- . (...) -- C:\WINDOWS\system32\???7 [97373152] O44 - LFC:[MD5.C6ABC42F3BFDEA5771E4CA0F548E4147] - 11/09/2013 - 17:49:51 ---A- . (...) -- C:\WINDOWS\system32\???7 [97170353] O44 - LFC:[MD5.EAF529EF278C1EEB3DCCDB09098572E7] - 10/09/2013 - 23:01:05 ---A- . (...) -- C:\WINDOWS\system32\???7 [97004533] ~ Files: 23 Legitimates Filtered in 02mn 01s ---\\ Derniers fichiers créés dans Windows Prefetcher (O45) O45 - LFCP:[MD5.6D776C663D69845045524F4B27261C56] - 11/09/2013 - 20:53:38 ---A- - C:\WINDOWS\Prefetch\VCDDAEMON.EXE-2246CDC1.pf O45 - LFCP:[MD5.81CECAC94E519641992E87CD3D35A6FB] - 12/09/2013 - 22:40:39 ---A- - C:\WINDOWS\Prefetch\HPZSTC07.EXE-15B07549.pf O45 - LFCP:[MD5.9D223809E658AA9031AF214F55B1282A] - 12/09/2013 - 22:40:40 ---A- - C:\WINDOWS\Prefetch\HPZENG07.EXE-0CEBD9F7.pf O45 - LFCP:[MD5.9BDC484748C34F53E4591DFD7A8FD0C7] - 18/09/2013 - 09:04:53 ---A- - C:\WINDOWS\Prefetch\NS7.TMP-20D6ADD4.pf O45 - LFCP:[MD5.7FFB5AFFEB45523CD332029C465B5988] - 18/09/2013 - 16:11:28 ---A- - C:\WINDOWS\Prefetch\ATHAN.EXE-2C3A5EB6.pf O45 - LFCP:[MD5.12B759A661CB54CC1FBCEB743B576270] - 19/09/2013 - 08:42:56 ---A- - C:\WINDOWS\Prefetch\WIAACMGR.EXE-335C1EE8.pf O45 - LFCP:[MD5.101C3A38C5147BB931D2F37F5021F7AB] - 19/09/2013 - 11:34:43 ---A- - C:\WINDOWS\Prefetch\GOOGLEEARTHWIN.EXE-366E6E06.pf O45 - LFCP:[MD5.733F1862BC7A62B64EC63A43D57A69AC] - 19/09/2013 - 11:34:51 ---A- - C:\WINDOWS\Prefetch\WAJAM_VALIDATE.EXE-1855EE0C.pf =>Toolbar.Wajam O45 - LFCP:[MD5.43C26B554098BD961B5656C9517A50F5] - 19/09/2013 - 11:35:52 ---A- - C:\WINDOWS\Prefetch\PLUS-HD-3-5.EXE-1FBB1EE2.pf =>Adware.PlusHD O45 - LFCP:[MD5.2839013CFF70B8FA71E570E986AA7C60] - 19/09/2013 - 11:36:00 ---A- - C:\WINDOWS\Prefetch\ROFGNIKEUIKTPC.EXE-369AB891.pf O45 - LFCP:[MD5.6FE4A6DCA89FF8F799A919C22A91A2D2] - 19/09/2013 - 11:36:44 ---A- - C:\WINDOWS\Prefetch\PLUS-HD-3.5-BG.EXE-16247139.pf =>Adware.PlusHD O45 - LFCP:[MD5.43AF9CE9C1F847B62D5B0B6C8514221B] - 19/09/2013 - 11:36:46 ---A- - C:\WINDOWS\Prefetch\GOOGLEEARTHWIN [1].EXE-00CCF5F5.pf O45 - LFCP:[MD5.24ACB8A7A9E6022CDE92F33F15790DD8] - 19/09/2013 - 13:35:42 ---A- - C:\WINDOWS\Prefetch\29.0.1547.76_29.0.1547.66_CHR-11A5D39E.pf O45 - LFCP:[MD5.548A2E4AE2360509D73DF42FB2DEF7BE] - 19/09/2013 - 19:56:50 ---A- - C:\WINDOWS\Prefetch\1379616999ITINSTALLERP.EXE-00FA0021.pf O45 - LFCP:[MD5.7EE6ADCCE7830918DF9FAABCC08B3DF2] - 19/09/2013 - 19:56:54 ---A- - C:\WINDOWS\Prefetch\8831INSTALLER.EXE-10416A69.pf O45 - LFCP:[MD5.A6FECAA182BD7A56C987F8C973CEA8A3] - 19/09/2013 - 19:58:20 ---A- - C:\WINDOWS\Prefetch\NS9DB.TMP-1C7BF7A4.pf O45 - LFCP:[MD5.09D462DB759CA1812C1D0A356C0D9767] - 19/09/2013 - 23:36:00 ---A- - C:\WINDOWS\Prefetch\PLUS-HD-3.5-CODEDOWNLOADER.EX-1FBF4F4E.pf =>Adware.PlusHD O45 - LFCP:[MD5.B24D6A10A23356B73773A96B08961D7D] - 19/09/2013 - 23:36:00 ---A- - C:\WINDOWS\Prefetch\PLUS-HD-3.5-ENABLER.EXE-31C6237A.pf =>Adware.PlusHD O45 - LFCP:[MD5.2CCBEE734043E38467200DEE0CF45761] - 19/09/2013 - 23:36:02 ---A- - C:\WINDOWS\Prefetch\PLUS-HD-3.5-FIREFOXINSTALLER.-0DCAFD77.pf =>Adware.PlusHD O45 - LFCP:[MD5.E454B61DFCC0DAE02FAD47BE25B419E3] - 20/09/2013 - 11:25:14 ---A- - C:\WINDOWS\Prefetch\CEC_MAIN.EXE-35F8CF9A.pf O45 - LFCP:[MD5.DC6DEE543FA6CD3A3A2276473011EB1B] - 20/09/2013 - 11:25:14 ---A- - C:\WINDOWS\Prefetch\TRAYBAR.EXE-00BF0869.pf ~ Prefetcher: 130 Legitimates Filtered in 00mn 00s ---\\ Opérations et fonctions au démarrage de Windows Explorer (O46) O46 - SEH:ShellExecuteHooks - URL Exec Hook - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - shell32.dll ~ ShellExecuteHooks: Scanned in 00mn 00s ---\\ Export de clé d'application autorisée (O47) O47 - AAKE:Key Export SP - "C:\Program Files\PortGo Softphone\PortGo.exe" [Enabled] .(.PortSIP Solutions, Inc..) -- C:\Program Files\PortGo Softphone\PortGo.exe O47 - AAKE:Key Export SP - "C:\Documents and Settings\Administrateur\Bureau\Shield VPN\Shield VPN\data\bin\openvpn.exe" [Enabled] .(.Pas de propriétaire.) -- C:\Documents and Settings\Administrateur\Bureau\Shield VPN\Shield VPN\data\bin\openvpn.exe ~ Keys Export: 11 Legitimates Filtered in 00mn 04s ---\\ Image File Execution Options (IFEO) (O50) O50 - IFEO:Image File Execution Options - Your Image File Name Here without a path - ntsd -d ~ IFEO: Scanned in 00mn 00s ---\\ Enumération des clés de registre StartupReg (SMSR) (O53) O53 - SMSR:HKLM\...\startupreg\Athan [Key] . (.www.IslamicFinder.org - Automatic Athan (Azan) five times a day f.) -- C:\Program Files\Athan\Athan.exe ~ SMSR Keys: 2 Legitimates Filtered in 00mn 00s ---\\ Enumération des clés de registre PoliciesSystem (MWPS) (O55) O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=1 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=1 ~ MWPS: 7 Legitimates Filtered in 00mn 00s ---\\ Enumération des clés de registre PoliciesExplorer (MWPE) (O56) O56 - MWPE:[HKCU\...\policies\Explorer] - "LinkResolveIgnoreLinkInfo"=1 O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDesktopCleanupWizard"=1 O56 - MWPE:[HKCU\...\policies\Explorer] - "NoInstrumentation"=1 O56 - MWPE:[HKCU\...\policies\Explorer] - "NoLowDiskSpaceChecks"=1 O56 - MWPE:[HKCU\...\policies\Explorer] - "NoResolveTrack"=1 O56 - MWPE:[HKCU\...\policies\Explorer] - "NoSMBalloonTip"=1 O56 - MWPE:[HKCU\...\policies\Explorer] - "NoSMConfigurePrograms"=1 O56 - MWPE:[HKCU\...\policies\Explorer] - "NoStartMenuMFUprogramsList"=1 O56 - MWPE:[HKCU\...\policies\Explorer] - "NoWelcomeScreen"=1 O56 - MWPE:[HKCU\...\policies\Explorer] - "HonorAutoRunSetting"=0 O56 - MWPE:[HKLM\...\policies\Explorer] - "HonorAutoRunSetting"=0 O56 - MWPE:[HKLM\...\policies\Explorer] - "CDRAutoRun"=1 O56 - MWPE:[HKLM\...\policies\Explorer] - "HideRunAsVerb"=1 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoCDBurning"=1 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDesktopCleanupWizard"=1 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoInstrumentation"=1 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoNetConnectDisconnect"=1 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoRemoteRecursiveEvents"=1 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoResolveTrack"=1 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoStartMenuMFUprogramsList"=1 ~ MWPE Keys: 29 Legitimates Filtered in 00mn 00s ---\\ Liste des pilotes du système (SDL) (O58) O58 - SDL:[MD5.09D6E1A2DE692F4460DBB9FA64B2C615] - 11/03/2008 - 14:14:54 ---A- . (...) -- C:\WINDOWS\system32\Drivers\CAMTHWDM.sys [941784] O58 - SDL:[MD5.6D3ADA4CE95CECA7BCE527A08C4C474E] - 14/04/2008 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ansi.sys [9037] ~ Drivers: 7 Legitimates Filtered in 00mn 00s ---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61) O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Extensions\external_extensions.json [99] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\am.pak [360674] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\ar.pak [348534] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\bg.pak [435388] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\bn.pak [547213] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\ca.pak [263479] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\cs.pak [264085] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\da.pak [239110] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\de.pak [224510] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\el.pak [474540] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\en-GB.pak [220768] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\en-US.pak [220891] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\es-419.pak [264070] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\es.pak [269138] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\et.pak [230658] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\fa.pak [370139] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\fi.pak [247094] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\fil.pak [267995] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\fr.pak [279063] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\gu.pak [519338] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\he.pak [297803] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\hi.pak [535505] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\hr.pak [247256] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\hu.pak [275727] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\id.pak [237496] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\it.pak [257618] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\ja.pak [316041] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\kn.pak [596771] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\ko.pak [266370] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\lt.pak [258756] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\lv.pak [262568] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\ml.pak [692732] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\mr.pak [526223] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\ms.pak [194836] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\nb.pak [238454] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\nl.pak [254639] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\pl.pak [261471] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\pt-BR.pak [254547] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\pt-PT.pak [260218] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\ro.pak [271169] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\ru.pak [413051] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\sk.pak [274044] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\sl.pak [242600] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\sr.pak [400912] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\sv.pak [240996] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\sw.pak [219357] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\ta.pak [622954] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\te.pak [579215] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\th.pak [534991] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\tr.pak [261315] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\uk.pak [411189] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\vi.pak [301986] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\zh-CN.pak [214050] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\zh-TW.pak [215063] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\chrome_100_percent.pak [943405] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\chrome_touch_100_percent.pak [955689] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\default_apps\docs.crx [4578] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\default_apps\drive.crx [25561] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\default_apps\external_extensions.json [982] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\default_apps\gmail.crx [24040] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\default_apps\search.crx [26392] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\default_apps\youtube.crx [23668] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\nacl_irt_x86_32.nexe [5517216] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\nacl_irt_x86_64.nexe [5779952] O61 - LFC: 17/09/2013 - 02:23:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\resources.pak [5814368] O61 - LFC: 17/09/2013 - 04:20:31 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\ffmpegsumo.dll [1604560] O61 - LFC: 17/09/2013 - 04:20:32 ---A- . (.The ICU Project.) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\icudt.dll [9962960] O61 - LFC: 17/09/2013 - 04:20:33 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\libegl.dll [99792] O61 - LFC: 17/09/2013 - 04:20:34 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\libglesv2.dll [709584] O61 - LFC: 17/09/2013 - 04:20:36 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\am.dll [9680] O61 - LFC: 17/09/2013 - 04:20:37 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\ar.dll [9680] O61 - LFC: 17/09/2013 - 04:20:38 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\bg.dll [10192] O61 - LFC: 17/09/2013 - 04:20:39 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\bn.dll [9680] O61 - LFC: 17/09/2013 - 04:20:39 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\ca.dll [10192] O61 - LFC: 17/09/2013 - 04:20:40 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\cs.dll [10192] O61 - LFC: 17/09/2013 - 04:20:41 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\da.dll [10192] O61 - LFC: 17/09/2013 - 04:20:42 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\de.dll [10192] O61 - LFC: 17/09/2013 - 04:20:43 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\el.dll [10192] O61 - LFC: 17/09/2013 - 04:20:44 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\en-GB.dll [9680] O61 - LFC: 17/09/2013 - 04:20:45 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\en-US.dll [9680] O61 - LFC: 17/09/2013 - 04:20:46 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\es-419.dll [10192] O61 - LFC: 17/09/2013 - 04:20:47 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\es.dll [10192] O61 - LFC: 17/09/2013 - 04:20:47 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\et.dll [9680] O61 - LFC: 17/09/2013 - 04:20:48 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\fa.dll [9680] O61 - LFC: 17/09/2013 - 04:20:49 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\fi.dll [9680] O61 - LFC: 17/09/2013 - 04:20:50 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\fil.dll [10192] O61 - LFC: 17/09/2013 - 04:20:51 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\fr.dll [10192] O61 - LFC: 17/09/2013 - 04:20:52 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\gu.dll [9680] O61 - LFC: 17/09/2013 - 04:20:53 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\he.dll [9680] O61 - LFC: 17/09/2013 - 04:20:53 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\hi.dll [10192] O61 - LFC: 17/09/2013 - 04:20:54 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\hr.dll [10192] O61 - LFC: 17/09/2013 - 04:20:55 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\hu.dll [10192] O61 - LFC: 17/09/2013 - 04:20:56 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\id.dll [10192] O61 - LFC: 17/09/2013 - 04:20:57 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\it.dll [10192] O61 - LFC: 17/09/2013 - 04:20:58 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\ja.dll [9680] O61 - LFC: 17/09/2013 - 04:20:59 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\kn.dll [10192] O61 - LFC: 17/09/2013 - 04:21:00 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\ko.dll [9680] O61 - LFC: 17/09/2013 - 04:21:00 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\lt.dll [10192] O61 - LFC: 17/09/2013 - 04:21:01 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\lv.dll [9680] O61 - LFC: 17/09/2013 - 04:21:02 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\ml.dll [10192] O61 - LFC: 17/09/2013 - 04:21:03 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\mr.dll [9680] O61 - LFC: 17/09/2013 - 04:21:04 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\ms.dll [9680] O61 - LFC: 17/09/2013 - 04:21:05 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\nb.dll [9680] O61 - LFC: 17/09/2013 - 04:21:06 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\nl.dll [10192] O61 - LFC: 17/09/2013 - 04:21:06 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\pl.dll [10192] O61 - LFC: 17/09/2013 - 04:21:07 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\pt-BR.dll [10192] O61 - LFC: 17/09/2013 - 04:21:08 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\pt-PT.dll [10192] O61 - LFC: 17/09/2013 - 04:21:09 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\ro.dll [10192] O61 - LFC: 17/09/2013 - 04:21:10 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\ru.dll [9680] O61 - LFC: 17/09/2013 - 04:21:11 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\sk.dll [10192] O61 - LFC: 17/09/2013 - 04:21:12 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\sl.dll [10192] O61 - LFC: 17/09/2013 - 04:21:13 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\sr.dll [9680] O61 - LFC: 17/09/2013 - 04:21:13 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\sv.dll [9680] O61 - LFC: 17/09/2013 - 04:21:14 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\sw.dll [10192] O61 - LFC: 17/09/2013 - 04:21:15 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\ta.dll [10192] O61 - LFC: 17/09/2013 - 04:21:16 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\te.dll [10192] O61 - LFC: 17/09/2013 - 04:21:17 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\th.dll [9680] O61 - LFC: 17/09/2013 - 04:21:18 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\tr.dll [10192] O61 - LFC: 17/09/2013 - 04:21:19 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\uk.dll [9680] O61 - LFC: 17/09/2013 - 04:21:19 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\vi.dll [9680] O61 - LFC: 17/09/2013 - 04:21:20 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\zh-CN.dll [9680] O61 - LFC: 17/09/2013 - 04:21:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Locales\zh-TW.dll [9680] O61 - LFC: 17/09/2013 - 04:21:25 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\pdf.dll [4053456] O61 - LFC: 17/09/2013 - 04:21:27 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\ppgooglenaclpluginchrome.dll [410576] O61 - LFC: 17/09/2013 - 04:21:28 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\widevinecdmadapter.dll [96208] O61 - LFC: 17/09/2013 - 09:23:34 ---A- . (...) -- C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\mteietq8.default\bookmarkbackups\bookmarks-2013-09-17.json [34628] O61 - LFC: 18/09/2013 - 09:05:08 ---A- . (...) -- C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Crash Reports\InstallTime20130910160258 [10] O61 - LFC: 18/09/2013 - 09:05:23 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Mozilla\Firefox\Mozilla Firefox\active-update.xml [57] O61 - LFC: 18/09/2013 - 09:05:23 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Mozilla\Firefox\Mozilla Firefox\updates.xml [14821] O61 - LFC: 18/09/2013 - 09:05:31 ---A- . (...) -- C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\mteietq8.default\search.json [14078] O61 - LFC: 18/09/2013 - 10:09:45 ---A- . (...) -- C:\Documents and Settings\Administrateur\Bureau\remboursement soins.xlsx [14141] O61 - LFC: 18/09/2013 - 10:24:49 ---A- . (...) -- C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\mteietq8.default\bookmarkbackups\bookmarks-2013-09-18.json [34628] O61 - LFC: 18/09/2013 - 16:39:10 ---A- . (...) -- C:\Documents and Settings\Administrateur\Mes documents\nouveau linda\gain 2013.xlsx [22999] O61 - LFC: 18/09/2013 - 18:00:00 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\29.0.1547.76\29.0.1547.76_29.0.1547.66_chrome_updater.exe [1915744] O61 - LFC: 19/09/2013 - 12:06:32 ---A- . (...) -- C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\mteietq8.default\indexedDB\chrome\idb\3283997206db8d2c2n2y6s9a8m-o1c9.sqlite [524288] O61 - LFC: 19/09/2013 - 12:31:05 ---A- . (...) -- C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\mteietq8.default\bookmarkbackups\bookmarks-2013-09-19.json [34628] O61 - LFC: 19/09/2013 - 13:41:07 ---A- . (...) -- C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\mteietq8.default\pluginreg.dat [9022] O61 - LFC: 19/09/2013 - 13:42:00 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\29.0.1547.76\Installer\chrome.7z [131201888] O61 - LFC: 19/09/2013 - 13:42:08 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\VisualElementsManifest.xml [396] O61 - LFC: 19/09/2013 - 13:42:18 ---A- . (...) -- C:\Documents and Settings\Administrateur\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk [2369] O61 - LFC: 19/09/2013 - 13:42:18 ---A- . (...) -- C:\Documents and Settings\Administrateur\Menu Démarrer\Programmes\Google Chrome\Google Chrome.lnk [2363] O61 - LFC: 19/09/2013 - 19:27:35 ---A- . (...) -- C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\mteietq8.default\indexedDB\chrome\idb\2588645841ssegtnti.sqlite [524288] O61 - LFC: 19/09/2013 - 19:54:57 ---A- . (...) -- C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\mteietq8.default\prefs.js.previt [1326849] O61 - LFC: 19/09/2013 - 19:59:03 -SHA- . (...) -- C:\Documents and Settings\Administrateur\Application Data\Microsoft\Internet Explorer\UserData\index.dat [32768] O61 - LFC: 19/09/2013 - 20:07:14 ---A- . (...) -- C:\Documents and Settings\Administrateur\Recent\IMGP1400.lnk [505] O61 - LFC: 19/09/2013 - 20:07:19 ---A- . (...) -- C:\Documents and Settings\Administrateur\Recent\arij.lnk [481] O61 - LFC: 19/09/2013 - 20:07:37 ---A- . (...) -- C:\Documents and Settings\Administrateur\Recent\DSC00028.lnk [628] O61 - LFC: 19/09/2013 - 20:07:43 ---A- . (...) -- C:\Documents and Settings\Administrateur\Recent\15-08-2013.lnk [395] O61 - LFC: 19/09/2013 - 20:07:43 ---A- . (...) -- C:\Documents and Settings\Administrateur\Recent\DSC00029.lnk [628] O61 - LFC: 19/09/2013 - 20:08:58 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Archived History [57344] O61 - LFC: 19/09/2013 - 20:08:58 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Archived History-journal [512] O61 - LFC: 19/09/2013 - 21:59:00 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\http_www.pagesjaunes.fr_0.localstorage [3072] O61 - LFC: 19/09/2013 - 21:59:00 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\http_www.pagesjaunes.fr_0.localstorage-journal [3608] O61 - LFC: 19/09/2013 - 22:02:16 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\https_secure.shared.live.com_0.localstorage [3072] O61 - LFC: 19/09/2013 - 22:02:16 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\https_secure.shared.live.com_0.localstorage-journal [3608] O61 - LFC: 19/09/2013 - 22:07:07 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\databases\Databases.db [7168] O61 - LFC: 19/09/2013 - 22:07:07 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\databases\Databases.db-journal [5672] O61 - LFC: 19/09/2013 - 22:07:08 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\File System\Origins\CURRENT [16] O61 - LFC: 19/09/2013 - 22:07:08 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\File System\Origins\MANIFEST-000013 [114] O61 - LFC: 19/09/2013 - 22:07:08 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\databases\http_download.cnet.com_0\44 [4096] O61 - LFC: 19/09/2013 - 22:17:30 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\QuotaManager [19456] O61 - LFC: 19/09/2013 - 22:17:30 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\QuotaManager-journal [6704] O61 - LFC: 19/09/2013 - 22:20:17 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\File System\Origins\LOG [145] O61 - LFC: 20/09/2013 - 06:51:20 ---A- . (...) -- C:\Documents and Settings\Administrateur\Recent\MBAM-log-2013-09-20 (07-51-15).lnk [541] O61 - LFC: 20/09/2013 - 06:51:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Bureau\MBAM-log-2013-09-20 (07-51-15).txt [10124] O61 - LFC: 20/09/2013 - 07:39:57 ---A- . (...) -- C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\mteietq8.default\downloads.sqlite [98304] O61 - LFC: 20/09/2013 - 08:01:05 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\http_news.radins.com_0.localstorage [3072] O61 - LFC: 20/09/2013 - 08:01:05 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\http_news.radins.com_0.localstorage-journal [3608] O61 - LFC: 20/09/2013 - 08:01:58 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\http_www.radins.com_0.localstorage [3072] O61 - LFC: 20/09/2013 - 08:01:58 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\http_www.radins.com_0.localstorage-journal [3608] O61 - LFC: 20/09/2013 - 08:05:30 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\http_c.betrad.com_0.localstorage [74752] O61 - LFC: 20/09/2013 - 08:05:30 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\http_c.betrad.com_0.localstorage-journal [3608] O61 - LFC: 20/09/2013 - 08:07:12 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\GPUCache\data_2 [1056768] O61 - LFC: 20/09/2013 - 09:04:08 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\http_imagesrv.adition.com_0.localstorage [3072] O61 - LFC: 20/09/2013 - 09:04:08 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\http_imagesrv.adition.com_0.localstorage-journal [3608] O61 - LFC: 20/09/2013 - 09:23:20 ---A- . (...) -- C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\mteietq8.default\bookmarkbackups\bookmarks-2013-09-20.json [34628] O61 - LFC: 20/09/2013 - 09:48:14 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\http_www.restaurantmontana.fr_0.localstorage [43008] O61 - LFC: 20/09/2013 - 09:48:14 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\http_www.restaurantmontana.fr_0.localstorage-journal [3608] O61 - LFC: 20/09/2013 - 10:21:38 ---A- . (...) -- C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\mteietq8.default\healthreport\state.json [123] O61 - LFC: 20/09/2013 - 10:55:33 ---A- . (...) -- C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\mteietq8.default\indexedDB\chrome\idb\2107386035db8d2l2a2n6r9e8t-n1i9.sqlite [524288] O61 - LFC: 20/09/2013 - 10:56:06 ---A- . (...) -- C:\Documents and Settings\Administrateur\Mes documents\nouveau linda\Copie de secours de new code inter linda.wbk [65357] O61 - LFC: 20/09/2013 - 10:58:44 ---A- . (...) -- C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\mteietq8.default\sessionstore.bak [3378] O61 - LFC: 20/09/2013 - 10:58:45 ---A- . (...) -- C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\mteietq8.default\healthreport.sqlite [1146880] O61 - LFC: 20/09/2013 - 11:07:14 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Shortcuts [94208] O61 - LFC: 20/09/2013 - 11:07:14 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Shortcuts-journal [12824] O61 - LFC: 20/09/2013 - 11:09:49 ---A- . (...) -- C:\Documents and Settings\Administrateur\Mes documents\Downloads\AdwCleaner.exe [1039554] O61 - LFC: 20/09/2013 - 11:12:54 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Certificate Revocation Lists [259865] O61 - LFC: 20/09/2013 - 11:21:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Network Action Predictor [48128] O61 - LFC: 20/09/2013 - 11:21:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Network Action Predictor-journal [16384] O61 - LFC: 20/09/2013 - 11:21:22 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\https_www.google.fr_0.localstorage [3072] O61 - LFC: 20/09/2013 - 11:21:22 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\https_www.google.fr_0.localstorage-journal [512] O61 - LFC: 20/09/2013 - 11:24:19 -SHA- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Microsoft\Credentials\S-1-5-21-299502267-1085031214-343818398-500\Credentials [2970] O61 - LFC: 20/09/2013 - 11:35:20 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Extension State\LOG.old [151] O61 - LFC: 20/09/2013 - 11:45:49 ---A- . (...) -- C:\Documents and Settings\Administrateur\Recent\AdwCleaner.lnk [393] O61 - LFC: 20/09/2013 - 11:45:49 ---A- . (...) -- C:\Documents and Settings\Administrateur\Recent\AdwCleaner[S0].lnk [566] O61 - LFC: 20/09/2013 - 11:46:28 ---A- . (...) -- C:\Documents and Settings\Administrateur\Menu Démarrer\Programmes\Accessoires\Bloc-notes.lnk [1526] O61 - LFC: 20/09/2013 - 11:48:00 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Extension Rules\LOG.old [148] O61 - LFC: 20/09/2013 - 11:48:00 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\History Provider Cache [173565] O61 - LFC: 20/09/2013 - 11:48:00 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Last Session [283977] O61 - LFC: 20/09/2013 - 11:48:00 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Last Tabs [77810] O61 - LFC: 20/09/2013 - 11:48:00 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Session Storage\LOG.old [276] O61 - LFC: 20/09/2013 - 11:48:00 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Visited Links [131072] O61 - LFC: 20/09/2013 - 11:48:10 ---A- . (...) -- C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\mteietq8.default\parent.lock [0] O61 - LFC: 20/09/2013 - 11:48:11 ---A- . (...) -- C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\mteietq8.default\extensions.sqlite [524288] O61 - LFC: 20/09/2013 - 11:48:11 ---A- . (...) -- C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\mteietq8.default\webapps\webapps.json [2] O61 - LFC: 20/09/2013 - 11:48:17 ---A- . (...) -- C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\mteietq8.default\urlclassifierkey3.txt [154] O61 - LFC: 20/09/2013 - 11:49:57 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Extension Rules\CURRENT [16] O61 - LFC: 20/09/2013 - 11:49:57 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Extension Rules\LOG [148] O61 - LFC: 20/09/2013 - 11:50:01 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Session Storage\CURRENT [16] O61 - LFC: 20/09/2013 - 11:50:01 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Session Storage\MANIFEST-003375 [689] O61 - LFC: 20/09/2013 - 11:50:02 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Extension State\CURRENT [16] O61 - LFC: 20/09/2013 - 11:50:02 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Extension State\MANIFEST-002145 [1203] O61 - LFC: 20/09/2013 - 11:50:03 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Session Storage\LOG [791] O61 - LFC: 20/09/2013 - 11:50:05 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Extension State\LOG [151] O61 - LFC: 20/09/2013 - 11:50:07 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Managed Mode Settings [8] O61 - LFC: 20/09/2013 - 11:50:13 ---A- . (...) -- C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\mteietq8.default\addons.sqlite [524288] O61 - LFC: 20/09/2013 - 11:52:13 ---A- . (...) -- C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\mteietq8.default\blocklist.xml [78834] O61 - LFC: 20/09/2013 - 12:41:59 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\http_www.youtube.com_0.localstorage [3072] O61 - LFC: 20/09/2013 - 12:41:59 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\http_www.youtube.com_0.localstorage-journal [512] O61 - LFC: 20/09/2013 - 12:47:54 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\https_www.youtube.com_0.localstorage [3072] O61 - LFC: 20/09/2013 - 12:47:54 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\https_www.youtube.com_0.localstorage-journal [512] O61 - LFC: 20/09/2013 - 13:04:00 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\http_www.senseo.fr_0.localstorage [3072] O61 - LFC: 20/09/2013 - 13:04:00 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\http_www.senseo.fr_0.localstorage-journal [512] O61 - LFC: 20/09/2013 - 13:09:41 ---A- . (...) -- C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\mteietq8.default\signons.sqlite [36864] O61 - LFC: 20/09/2013 - 13:18:19 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Mozilla\Firefox\Profiles\mteietq8.default\startupCache\startupCache.4.little [1000980] O61 - LFC: 20/09/2013 - 13:18:55 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Top Sites [335872] O61 - LFC: 20/09/2013 - 13:18:55 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Top Sites-journal [16384] O61 - LFC: 20/09/2013 - 13:25:01 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Safe Browsing Download [711532] O61 - LFC: 20/09/2013 - 13:25:03 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Safe Browsing Bloom [8723832] O61 - LFC: 20/09/2013 - 13:25:04 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Safe Browsing Bloom Prefix Set [1748696] O61 - LFC: 20/09/2013 - 13:25:04 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Safe Browsing Csd Whitelist [135184] O61 - LFC: 20/09/2013 - 13:25:04 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Safe Browsing Download Whitelist [19604] O61 - LFC: 20/09/2013 - 13:25:04 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Safe Browsing Extension Blacklist [6324] O61 - LFC: 20/09/2013 - 13:28:19 ---A- . (...) -- C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\mteietq8.default\formhistory.sqlite [509952] O61 - LFC: 20/09/2013 - 13:32:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\GPUCache\data_0 [45056] O61 - LFC: 20/09/2013 - 13:32:21 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\GPUCache\data_1 [270336] O61 - LFC: 20/09/2013 - 13:37:41 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Web Data [2533376] O61 - LFC: 20/09/2013 - 13:37:41 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Web Data-journal [16384] O61 - LFC: 20/09/2013 - 13:42:31 ---A- . (...) -- C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\mteietq8.default\cert8.db [409600] O61 - LFC: 20/09/2013 - 13:42:31 ---A- . (...) -- C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\mteietq8.default\cookies.sqlite [1048576] O61 - LFC: 20/09/2013 - 13:42:31 ---A- . (...) -- C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\mteietq8.default\key3.db [16384] O61 - LFC: 20/09/2013 - 13:42:31 ---A- . (...) -- C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\mteietq8.default\localstore.rdf [31066] O61 - LFC: 20/09/2013 - 13:42:31 ---A- . (...) -- C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\mteietq8.default\permissions.sqlite [1588224] O61 - LFC: 20/09/2013 - 13:42:31 ---A- . (...) -- C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\mteietq8.default\places.sqlite [10485760] O61 - LFC: 20/09/2013 - 13:42:31 ---A- . (...) -- C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\mteietq8.default\prefs.js [1033490] O61 - LFC: 20/09/2013 - 13:42:31 ---A- . (...) -- C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\mteietq8.default\sessionstore.js [38314] O61 - LFC: 20/09/2013 - 13:42:31 ---A- . (...) -- C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\mteietq8.default\webappsstore.sqlite [1130496] O61 - LFC: 20/09/2013 - 13:42:31 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Mozilla\Firefox\Profiles\mteietq8.default\_CACHE_CLEAN_ [1] O61 - LFC: 20/09/2013 - 13:42:44 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Favicons [21757952] O61 - LFC: 20/09/2013 - 13:42:44 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Favicons-journal [16384] O61 - LFC: 20/09/2013 - 13:42:45 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\History Index 2013-09 [3493888] O61 - LFC: 20/09/2013 - 13:42:45 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\History Index 2013-09-journal [16384] O61 - LFC: 20/09/2013 - 13:42:45 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\TransportSecurity [4471] O61 - LFC: 20/09/2013 - 13:43:33 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Safe Browsing Cookies [6144] O61 - LFC: 20/09/2013 - 13:43:33 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Safe Browsing Cookies-journal [2576] O61 - LFC: 20/09/2013 - 13:43:54 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\History [19427328] O61 - LFC: 20/09/2013 - 13:43:54 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\History-journal [16384] O61 - LFC: 20/09/2013 - 13:44:26 ---A- . (...) -- C:\Documents and Settings\Administrateur\Recent\new code inter linda.lnk [785] O61 - LFC: 20/09/2013 - 13:44:26 ---A- . (...) -- C:\Documents and Settings\Administrateur\Recent\nouveau linda.lnk [467] O61 - LFC: 20/09/2013 - 13:44:27 ---A- . (...) -- C:\Documents and Settings\Administrateur\Mes documents\nouveau linda\new code inter linda.docx [64265] O61 - LFC: 20/09/2013 - 13:44:48 -SHA- . (...) -- C:\Documents and Settings\Administrateur\IETldCache\index.dat [262144] O61 - LFC: 20/09/2013 - 13:46:55 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences [180359] O61 - LFC: 20/09/2013 - 13:50:07 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Local State [53856] O61 - LFC: 20/09/2013 - 13:54:10 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies [1851392] O61 - LFC: 20/09/2013 - 13:54:10 ---A- . (...) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies-journal [16384] ~ 20 Fichiers temporaires (Temporary files) ~ 2 Fichiers cookies (Cookies files) ~ Files: 1080 Legitimates Filtered in 07mn 20s ---\\ Fichiers Alternate Data Stream (ADS) (O62) O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\AdvrCntr3.dll:Zone.Identifier ~ ADS: Scanned in 00mn 01s ---\\ Liste des outils de désinfection (LATC) (O63) O63 - Logiciel: ZHPDiag 2013 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 O63 - Logiciel: ZHPFix 1.3 - (.Nicolas Coolman.) [HKLM] -- ZHPFix_is1 ~ ADS: Scanned in 00mn 00s ---\\ Liste les services legacy du registre (LALS) (O64) O64 - Services: CurCS - 26/07/2013 - C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe (APNMCP) .(.APN LLC. - APN Updater.) - LEGACY_APNMCP ~ Legacy: 130 Legitimates Filtered in 00mn 01s ---\\ Associations Shell Spawning (O67) O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Not Key.) ~ FASS Keys: 17 Legitimates Filtered in 00mn 00s ---\\ Menu de démarrage Internet (SMI) (O68) O68 - StartMenuInternet: <>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\chrome.exe O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\chrome.exe O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe ~ Keys: Scanned in 00mn 00s ---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69) O69 - SBI: SearchScopes [HKCU] ${searchCLSID} - (@ieframe.dll,-12512) - http://search.live.com O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (@ieframe.dll,-12512) - http://www.bing.com O69 - SBI: SearchScopes [HKCU] {06B469CF-CDC2-47F4-81A9-8EA6E8506E45} - (Google) - http://www.google.com O69 - SBI: SearchScopes [HKCU] {2F2B82E9-9EAC-4AB1-8408-A435527727ED} - (@ieframe.dll,-12512) - http://search.live.com O69 - SBI: SearchScopes [HKCU] {3D41F773-C2A2-4541-8F58-DF94FA1311D3} - (Yahoo! Search) - http://search.yahoo.com =>Toolbar.Yahoo O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (@ieframe.dll,-12512) - http://www.bing.com O69 - SBI: SearchScopes [HKUS\S-1-5-20] {06B469CF-CDC2-47F4-81A9-8EA6E8506E45} - (Google) - http://www.google.fr ~ Keys: Scanned in 00mn 00s ---\\ Recherche particulière à la racine du système (SPRF) (O84) [MD5.5EB0659A9DE8DCE7346BDFBE13E14E38] [SPRF][09/11/2012] (.ThinkSky - One-stop ios device manager.) -- C:\Documents and Settings\Administrateur\Bureau\iTools.exe [6207440] ~ Files: 1 Legitimates Filtered in 00mn 00s ---\\ Enumère les codes produits des logiciels (PUC) (O90) O90 - PUC: "25946514D2147365007A7A857BC02020" . (.Avira SearchFree Toolbar plus Web Protection.) -- C:\WINDOWS\Installer\{41564952-412D-5637-00A7-A758B70C0202}\ToolbarIcon.exe =>Toolbar.Avira O90 - PUC: "9EC6D81181F59F2459A84176A626F9ED" . (.Iminent.) -- C:\WINDOWS\Installer\{118D6CE9-5F18-42F9-958A-14676A629FDE}\imbooster.ico =>Adware.IMBooster ~ Update Products: 136 Legitimates Filtered in 00mn 00s ---\\ Recherche des packages WindowsInstaller (WIS) (O93) (NTFS) [MD5.A4C44AF049A60B36539ACEF7C3380EF9] [WIS][16/08/2013] (.Ask Partner Network - Avira SearchFree Toolbar plus Web Protection.) -- C:\Windows\Installer\20451.msi [755200] =>Toolbar.Avira [MD5.84FE5154BAFFCA1395DD836C028856CD] [WIS][23/03/2013] (.Iminent - Iminent.) -- C:\Windows\Installer\227eff5.msi [1772032] =>Adware.IMBooster ~ WIS: 137 Legitimates Filtered in 00mn 17s ---\\ Etat général des services not Microsoft (EGS) (SR=Running, SS=Stopped) SS - | Demand 13/09/2013 257416 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe SR - | Auto 10/09/2013 84024 | (AntiVirSchedulerService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files\Avira\AntiVir Desktop\sched.exe SR - | Auto 10/09/2013 108088 | (AntiVirService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files\Avira\AntiVir Desktop\avguard.exe SR - | Auto 10/09/2013 815160 | (AntiVirWebService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.exe SR - | Auto 26/07/2013 168400 | (APNMCP) . (.APN LLC..) - C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe SR - | Auto 21/12/2012 57008 | (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe SR - | Auto 07/04/2008 536576 | (Ati HotKey Poller) . (.ATI Technologies Inc..) - C:\WINDOWS\system32\Ati2evxx.exe SS - | Demand 13/04/2008 225280 | (dmadmin) . (.Microsoft Corp., Veritas Software.) - C:\WINDOWS\system32\dmadmin.exe SS - | Auto 01/03/2012 136176 | (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe SS - | Demand 01/03/2012 136176 | (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe SR - | Demand 15/05/2013 553288 | (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe SS - | Demand 17/09/2013 118680 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe SR - | Auto 08/08/2007 836904 | (Nero BackItUp Scheduler 3) . (.Nero AG.) - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe SS - | Demand 16/08/2007 382248 | (NMIndexingService) . (.Nero AG.) - C:\Program Files\Fichiers communs\Nero\Lib\NMIndexingService.exe SR - | Auto 15/03/2011 428384 | (PMBDeviceInfoProvider) . (.Sony Corporation.) - C:\Program Files\Sony\PMB\PMBDeviceInfoProvider.exe SS - | Demand 09/03/2003 65795 | (Pml Driver HPZ12) . (.HP.) - C:\WINDOWS\system32\HPZipm12.exe SS - | Auto 01/03/2013 161384 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files\Skype\Updater\Updater.exe ~ Services: Scanned in 00mn 19s ---\\ Recherche d'infection sur le Master Boot Record (MBR)(O80) Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net Run by Administrateur at 20/09/2013 14:59:47 device: opened successfully user: MBR read successfully Disk trace: called modules: ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll iaStor.sys C:\WINDOWS\system32\drivers\iaStor.sys Intel Corporation Intel Matrix Storage Manager driver 1 ntkrnlpa!IofCallDriver[0x804EF200] >> \Device\Harddisk0\DR0[0x8AA96030] kernel: MBR read successfully user & kernel MBR OK ~ MBR: 14 Legitimates Filtered in 00mn 02s ---\\ Recherche d'infection sur le Master Boot Record (MBRCheck)(O80) Written by ad13, http://ad13.geekstog Run by Administrateur at 20/09/2013 14:59:49 ********* Dump file Name ********* C:\PhysicalDisk0_MBR.bin ~ MBR: Scanned in 00mn 04s ---\\ Scan Additionnel (O88) Database Version : 12924 - (19/09/2013) Clés trouvées (Keys found) : 10 Valeurs trouvées (Values found) : 2 Dossiers trouvés (Folders found) : 2 Fichiers trouvés (Files found) : 14 [HKLM\Software\Google\Chrome\Extensions\aaaaacalgebmfelllfiaoknifldpngjh] =>Toolbar.Avira^ [HKLM\Software\Classes\Installer\Features\9EC6D81181F59F2459A84176A626F9ED] =>Adware.IMBooster [HKLM\Software\Classes\Installer\Products\9EC6D81181F59F2459A84176A626F9ED] =>Adware.IMBooster [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\9EC6D81181F59F2459A84176A626F9ED] =>Adware.IMBooster [HKCU\Software\AskPartnerNetwork] =>Toolbar.Ask [HKLM\Software\AskPartnerNetwork] =>Toolbar.Ask [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\F1057DD419AED0B468AD8888429E139A] =>Adware.IMBooster [HKLM\Software\Classes\CLSID\{11111111-1111-1111-1111-110311711180}] =>PUP.CrossRider [HKLM\Software\Classes\CLSID\{22222222-2222-2222-2222-220322712280}] =>PUP.CrossRider [HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{31111111-1111-1111-1111-110211701196}] =>PUP.CrossRider [HKLM\Software\Microsoft\Internet Explorer\Toolbar]:{41564952-412D-5637-00A7-7A786E7484D7} =>Toolbar.Avira^ [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:ApnTBMon =>Toolbar.Ask^ C:\Program Files\AskPartnerNetwork =>Toolbar.Ask C:\Documents and Settings\All Users\Application Data\AskPartnerNetwork =>Toolbar.Ask C:\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe =>Toolbar.Ask^ C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aaaaacalgebmfelllfiaoknifldpngjh =>Toolbar.Avira^ C:\Program Files\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll =>Toolbar.Avira^ [HKCU\Software\Yahoo] =>Toolbar.Yahoo^ C:\WINDOWS\Prefetch\WAJAM_VALIDATE.EXE-1855EE0C.pf =>Toolbar.Wajam^ C:\WINDOWS\Prefetch\PLUS-HD-3-5.EXE-1FBB1EE2.pf =>Adware.PlusHD^ C:\WINDOWS\Prefetch\PLUS-HD-3.5-BG.EXE-16247139.pf =>Adware.PlusHD^ C:\WINDOWS\Prefetch\PLUS-HD-3.5-CODEDOWNLOADER.EX-1FBF4F4E.pf =>Adware.PlusHD^ C:\WINDOWS\Prefetch\PLUS-HD-3.5-ENABLER.EXE-31C6237A.pf =>Adware.PlusHD^ C:\WINDOWS\Prefetch\PLUS-HD-3.5-FIREFOXINSTALLER.-0DCAFD77.pf =>Adware.PlusHD^ C:\WINDOWS\Installer\{41564952-412D-5637-00A7-A758B70C0202}\ToolbarIcon.exe =>Toolbar.Avira^ C:\WINDOWS\Installer\{118D6CE9-5F18-42F9-958A-14676A629FDE}\imbooster.ico =>Adware.IMBooster^ C:\Windows\Installer\20451.msi =>Toolbar.Avira^ C:\Windows\Installer\227eff5.msi =>Adware.IMBooster^ ~ Additionnel Scan: 274260 Items scanned in 00mn 30s ---\\ Récapitulatif des détections trouvées sur votre station ~ http://nicolascoolman.webs.com/apps/blog/show/28927746-toolbar-ask =>Toolbar.Ask ~ http://nicolascoolman.webs.com/apps/blog/show/27875657-toolbar-deltasearch =>Toolbar.DeltaSearch ~ http://nicolascoolman.webs.com/apps/blog/show/28419247-toolbar-avira =>Toolbar.Avira ~ http://nicolascoolman.webs.com/apps/blog/show/30268689-toolbar-yahoo =>Toolbar.Yahoo ~ http://nicolascoolman.webs.com/apps/blog/show/27379491-toolbar-wajam =>Toolbar.Wajam ~ http://nicolascoolman.webs.com/apps/blog/show/28138048-adware-plushd =>Adware.PlusHD ~ http://nicolascoolman.webs.com/apps/blog/show/26684723-adware-imbooster =>Adware.IMBooster ~ http://nicolascoolman.webs.com/apps/blog/show/27583526-pup-crossrider =>PUP.CrossRider ~ MSI: 8 link(s) detected in 00mn 30s ~ 2370 Legitimates filtered by white list End of the scan (876 lines in 14mn 40s)(0)