Publicité
Publicité
Format du document : text/plain
Prévisualisation
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 13-03-2014 01
Ran by user (administrator) on ACER-6281EFDEF1 on 28-03-2014 10:55:58
Running from D:\Mes documents\Téléchargements
Microsoft Windows XP Édition familiale Service Pack 3 (X86) OS Language: French Standard
Internet Explorer Version 8
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(Apple Inc.) C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(Microsoft Corporation) C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
(O&O Software GmbH) C:\Program Files\OO Software\Defrag\oodag.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
(Secunia) C:\Program Files\Secunia\PSI\PSIA.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(Secunia) C:\Program Files\Secunia\PSI\sua.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [avgnt] - C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [689744 2014-03-13] (Avira Operations GmbH & Co. KG)
HKU\S-1-5-21-1529987398-1430356828-1210237423-1005\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} - No File
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Default_search_url = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://www.01net.com/telecharger/
http://www.01men.com/
SearchScopes: HKLM - DefaultScope value is missing.
Handler: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: ipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Fichiers communs\Skype\Skype4COM.dll (Skype Technologies)
Winsock: Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\ijq9ez8h.default
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_12_0_0_77.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\WINDOWS\system32\Adobe\Director\np32dsw_1204144.dll (Adobe Systems, Inc.)
FF Plugin: @Apple.com/iTunes,version=1.0 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @divx.com/DivX Player Plugin,version=1.0.0 - C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll (DivX, Inc)
FF Plugin: @java.com/DTPlugin,version=10.25.2 - C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin: @microsoft.com/WLPG,version=14.0.8117.0416 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @veoh.com/VeohPlayer - C:\Program Files\Veoh Networks\Veoh\Plugins\noreg\NPVeohVersion.dll (Veoh Networks Inc)
FF Plugin: @videolan.org/vlc,version=2.0.8 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.1 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.2 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npDivxPlayerPlugin.dll (DivX, Inc)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin6.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin7.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin8.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npwachk.dll (Nullsoft, Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazon-france.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\cnrtl-tlfi-fr.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-france.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-france.xml
FF Extension: IE Tab 2 (FF 3.6+) - C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\ijq9ez8h.default\Extensions\{1BC9BA34-1EED-42ca-A505-6D2F1A935BBB} [2013-12-17]
FF Extension: Adblock Plus - C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\ijq9ez8h.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2011-07-02]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} [2014-02-22]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} [2014-02-22]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} [2014-02-22]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ []
========================== Services (Whitelisted) =================
R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [440400 2014-03-13] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [440400 2014-03-13] (Avira Operations GmbH & Co. KG)
R2 Apple Mobile Device; C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe [55624 2013-09-07] (Apple Inc.)
R2 MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
S4 MSSQLServerADHelper; C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [44384 2010-12-10] (Microsoft Corporation)
R2 O&O Defrag; C:\Program Files\OO Software\Defrag\oodag.exe [1488128 2009-09-26] (O&O Software GmbH)
R2 Secunia PSI Agent; C:\Program Files\Secunia\PSI\PSIA.exe [994360 2011-10-14] (Secunia)
R2 Secunia Update Agent; C:\Program Files\Secunia\PSI\sua.exe [399416 2011-10-14] (Secunia)
S3 BBUpdate; C:\Program Files\Microsoft\BingBar\7.1.391.0\SeaPort.exe [X]
==================== Drivers (Whitelisted) ====================
R3 ALCXWDM; C:\WINDOWS\System32\drivers\ALCXWDM.SYS [2311680 2005-02-24] (Realtek Semiconductor Corp.)
S3 AR9271; C:\WINDOWS\System32\DRIVERS\athuw.sys [1714176 2010-01-05] (Atheros Communications, Inc.)
R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [90400 2013-12-19] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\System32\DRIVERS\avipbb.sys [135648 2013-12-19] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\System32\DRIVERS\avkmgr.sys [37352 2013-12-04] (Avira Operations GmbH & Co. KG)
R3 BCM43XX; C:\WINDOWS\System32\DRIVERS\bcmwl5.sys [369024 2004-12-21] (Broadcom Corporation)
S3 BlueletAudio; C:\WINDOWS\System32\DRIVERS\blueletaudio.sys [20096 2004-10-19] (IVT Corporation)
S3 BT; C:\WINDOWS\System32\DRIVERS\btnetdrv.sys [10804 2004-09-21] (IVT Corporation)
S3 Btcsrusb; C:\WINDOWS\System32\Drivers\btcusb.sys [23000 2005-01-17] (IVT Corporation)
S3 BTHidEnum; C:\WINDOWS\System32\DRIVERS\vbtenum.sys [12500 2005-01-13] ()
R0 BTHidMgr; C:\WINDOWS\System32\Drivers\BTHidMgr.sys [28207 2004-10-19] (IVT Corporation)
S3 BTNetFilter; C:\WINDOWS\system32\drivers\BTNetFilter.sys [13304 2004-12-16] ()
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
S3 epmntdrv; C:\WINDOWS\system32\epmntdrv.sys [13896 2013-03-07] ()
S3 EuGdiDrv; C:\WINDOWS\system32\EuGdiDrv.sys [9160 2013-03-07] ()
S3 HPZid412; C:\WINDOWS\System32\DRIVERS\HPZid412.sys [49664 2006-04-13] (HP)
S3 HPZipr12; C:\WINDOWS\System32\DRIVERS\HPZipr12.sys [16496 2006-04-13] (HP)
S3 HPZius12; C:\WINDOWS\System32\DRIVERS\HPZius12.sys [21568 2006-04-13] (HP)
S3 int15.sys; C:\Program Files\acer\eRecovery\int15.sys [69632 2005-01-13] ()
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
S3 PCANDIS5; C:\WINDOWS\system32\PCANDIS5.SYS [16128 2003-08-04] (Printing Communications Assoc., Inc. (PCAUSA))
S3 pfc; C:\WINDOWS\System32\drivers\pfc.sys [10368 2003-12-05] (Padus, Inc.)
R3 PSI; C:\WINDOWS\System32\DRIVERS\psi_mf.sys [15544 2010-09-01] (Secunia)
R3 SiS315; C:\WINDOWS\System32\DRIVERS\sisgrp.sys [240640 2005-03-02] (Silicon Integrated Systems Corporation)
R1 SiSkp; C:\WINDOWS\System32\DRIVERS\srvkp.sys [13312 2005-02-25] (Silicon Integrated Systems Corporation)
R3 SISNICXP; C:\WINDOWS\System32\DRIVERS\sisnicxp.sys [32768 2004-11-05] (SiS Corporation)
S4 sptd; C:\WINDOWS\System32\Drivers\sptd.sys [716272 2008-03-09] (Duplex Secure Ltd.)
R1 ssmdrv; C:\WINDOWS\System32\DRIVERS\ssmdrv.sys [28520 2012-08-27] (Avira GmbH)
R1 StarOpen; C:\WINDOWS\system32\Drivers\StarOpen.sys [5632 2008-11-02] ()
R1 UBHelper; C:\WINDOWS\system32\Drivers\UBHelper.sys [13952 2004-12-17] ()
R3 VComm; C:\WINDOWS\System32\DRIVERS\VComm.sys [61312 2004-10-19] (IVT Corporation)
R3 VcommMgr; C:\WINDOWS\System32\Drivers\VcommMgr.sys [82148 2004-11-05] (IVT Corporation)
S3 ALSysIO; \??\C:\DOCUME~1\user\LOCALS~1\Temp\ALSysIO.sys [X]
S3 catchme; \??\C:\DOCUME~1\user\LOCALS~1\Temp\catchme.sys [X]
S4 IntelIde; No ImagePath
S3 LVUSBSta; system32\drivers\lvusbsta.sys [X]
S2 osaio; \SystemRoot\system32\drivers\osaio.sys [X]
S2 osanbm; \SystemRoot\system32\drivers\osanbm.sys [X]
S3 PCAMPR5; \??\C:\WINDOWS\system32\PCAMPR5.SYS [X]
S3 PID_0928; system32\DRIVERS\LV561AV.SYS [X]
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)
S3 VBoxNetFlt; system32\DRIVERS\VBoxNetFlt.sys [X]
U4 wlancfg;
S3 ZTEusbmdm6k; system32\DRIVERS\ZTEusbmdm6k.sys [X]
S3 ZTEusbnmea; system32\DRIVERS\ZTEusbnmea.sys [X]
S3 ZTEusbser6k; system32\DRIVERS\ZTEusbser6k.sys [X]
========================== Drivers MD5 =======================
C:\WINDOWS\System32\DRIVERS\ACPI.sys E5E6DBFC41EA8AAD005CB9A57A96B43B
C:\WINDOWS\System32\DRIVERS\ACPIEC.sys E4ABC1212B70BB03D35E60681C447210
C:\WINDOWS\System32\drivers\aec.sys 8BED39E3C35D6A489438B8141717A557
C:\WINDOWS\System32\drivers\afd.sys 1E44BC1E83D8FD2305F8D452DB109CF9
C:\WINDOWS\System32\DRIVERS\AGRSM.sys CEFFA3DB1657293322E0BDEA7D99E754
C:\WINDOWS\System32\drivers\ALCXWDM.SYS 5DAE13401E4D3B8F132BF5867447D661
C:\WINDOWS\System32\DRIVERS\AmdK8.sys 08329F6AE482B184725D2E07E9A79E16
C:\WINDOWS\System32\DRIVERS\athuw.sys 8E2257584B2C52D44B4CB1949947D885
C:\WINDOWS\System32\DRIVERS\asyncmac.sys B153AFFAC761E7F5FCFA822B9C4E97BC
C:\WINDOWS\System32\DRIVERS\atapi.sys 9F3A2F5AA6875C72BF062C712CFA2674
C:\WINDOWS\System32\DRIVERS\atmarpc.sys 9916C1225104BA14794209CFA8012159
C:\WINDOWS\System32\DRIVERS\audstub.sys D9F724AA26C010A217C97606B160ED68
C:\WINDOWS\System32\DRIVERS\avgntflt.sys B8C10FF9369394EB84993F331810CF29
C:\WINDOWS\System32\DRIVERS\avipbb.sys 4189E5AB2CAD6F395D87DAAE73EB090F
C:\WINDOWS\System32\DRIVERS\avkmgr.sys D8C712305F73CD34D1B344810E522728
C:\WINDOWS\System32\DRIVERS\bcmwl5.sys 38CA1443660D0F5F06887C6A2E692AEB
C:\WINDOWS\system32\Drivers\Beep.sys DA1F27D85E0D1525F6621372E7B685E9
C:\WINDOWS\System32\DRIVERS\blueletaudio.sys 31FF5B87C1DD907613CC613224B8E303
C:\WINDOWS\System32\DRIVERS\btnetdrv.sys 9DA8ABC4885AFF4793D4AA420E40BB12
C:\WINDOWS\System32\Drivers\btcusb.sys 7E99A004329250900818EE0DE014F032
C:\WINDOWS\System32\DRIVERS\vbtenum.sys 0448968BA21ACDE511C19F3C0296E23B
C:\WINDOWS\System32\Drivers\BTHidMgr.sys F408264F6AD1DC7E7BDD4837440F115D
C:\WINDOWS\system32\drivers\BTNetFilter.sys 6B05FDC0CFC3753B520D2D4176CC32D0
C:\WINDOWS\system32\Drivers\cbidf2k.sys 90A673FC8E12A79AFBED2576F6A7AAF9
C:\WINDOWS\System32\DRIVERS\CCDECODE.sys 0BE5AEF125BE881C4F854C554F2B025C
C:\WINDOWS\system32\Drivers\Cdaudio.sys C1B486A7658353D33A10CC15211A873B
C:\WINDOWS\system32\Drivers\Cdfs.sys C885B02847F5D2FD45A24E219ED93B32
C:\WINDOWS\System32\DRIVERS\cdrom.sys 1F4260CC5B42272D71F79E570A27A4FE
C:\WINDOWS\System32\DRIVERS\CmBatt.sys 0F6C187D38D98F8DF904589A5F94D411
C:\WINDOWS\System32\DRIVERS\compbatt.sys 6E4C9F21F0FAE8940661144F41B13203
C:\WINDOWS\System32\DRIVERS\disk.sys 044452051F3E02E7963599FC8F4F3E25
C:\WINDOWS\System32\Drivers\DKbFltr.sys 08D30AF92C270F2E76787C81589DBAD6
C:\WINDOWS\System32\drivers\dmboot.sys F5DEADD42335FB33EDCA74ECB2F36CBA
C:\WINDOWS\System32\drivers\dmio.sys 5A7C47C9B3F9FB92A66410A7509F0C71
C:\WINDOWS\System32\drivers\dmload.sys E9317282A63CA4D188C0DF5E09C6AC5F
C:\WINDOWS\System32\drivers\DMusic.sys 8A208DFCF89792A484E76C40E5F50B45
C:\WINDOWS\System32\drivers\drmkaud.sys 8F5FCFF8E8848AFAC920905FBD9D33C8
C:\WINDOWS\system32\epmntdrv.sys D57F1811D8258D8D277CD9F53657EEF9
C:\WINDOWS\system32\EuGdiDrv.sys F1DE3EEF501DDA7DDF99F2EDF0C5540E
C:\WINDOWS\system32\Drivers\Fastfat.sys 38D332A6D56AF32635675F132548343E
C:\WINDOWS\system32\Drivers\Fdc.sys 92CDD60B6730B9F50F6A1A0C1F8CDC81
C:\WINDOWS\system32\Drivers\Fips.sys 31F923EB2170FC172C81ABDA0045D18C
C:\WINDOWS\system32\Drivers\Flpydisk.sys 9D27E7B80BFCDF1CDD9B555862D5E7F0
C:\WINDOWS\System32\drivers\fltmgr.sys B2CF4B0786F8212CB92ED2B50C6DB6B0
C:\WINDOWS\system32\Drivers\Fs_Rec.sys 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A
C:\WINDOWS\System32\DRIVERS\ftdisk.sys A86859B77B908C18C2657F284AA29FE3
C:\WINDOWS\System32\DRIVERS\gagp30kx.sys 3A74C423CF6BCCA6982715878F450A3B
C:\WINDOWS\System32\DRIVERS\GEARAspiWDM.sys 185ADA973B5020655CEE342059A86CBB
C:\WINDOWS\System32\DRIVERS\msgpc.sys 0A02C63C8B144BD8C86B103DEE7C86A2
C:\WINDOWS\System32\DRIVERS\hidusb.sys CCF82C5EC8A7326C3066DE870C06DAF1
C:\WINDOWS\System32\DRIVERS\HPZid412.sys 30CA91E657CEDE2F95359D6EF186F650
C:\WINDOWS\System32\DRIVERS\HPZipr12.sys EFD31AFA752AA7C7BBB57BCBE2B01C78
C:\WINDOWS\System32\DRIVERS\HPZius12.sys 7AC43C38CA8FD7ED0B0A4466F753E06E
C:\WINDOWS\System32\Drivers\HTTP.sys F80A415EF82CD06FFAF0D971528EAD38
C:\WINDOWS\System32\DRIVERS\i8042prt.sys A09BDC4ED10E3B2E0EC27BB94AF32516
C:\WINDOWS\System32\DRIVERS\imapi.sys 083A052659F5310DD8B6A6CB05EDCF8E
C:\Program Files\acer\eRecovery\int15.sys 4D8D5B1C895EA0F2A721B98A7CE198F1
C:\WINDOWS\System32\drivers\ip6fw.sys 3BB22519A194418D5FEC05D800A19AD0
C:\WINDOWS\System32\DRIVERS\ipfltdrv.sys 731F22BA402EE4B62748ADAF6363C182
C:\WINDOWS\System32\DRIVERS\ipinip.sys B87AB476DCF76E72010632B5550955F5
C:\WINDOWS\System32\DRIVERS\ipnat.sys CC748EA12C6EFFDE940EE98098BF96BB
C:\WINDOWS\System32\DRIVERS\ipsec.sys 23C74D75E36E7158768DD63D92789A91
C:\WINDOWS\System32\DRIVERS\irenum.sys C93C9FF7B04D772627A3646D89F7BF89
C:\WINDOWS\System32\DRIVERS\isapnp.sys 355836975A67B6554BCA60328CD6CB74
C:\WINDOWS\System32\DRIVERS\kbdclass.sys 16813155807C6881F4BFBF6657424659
C:\WINDOWS\System32\drivers\kmixer.sys 692BCF44383D056AED41B045A323D378
C:\WINDOWS\system32\Drivers\KSecDD.sys B467646C54CC746128904E1654C750C1
C:\WINDOWS\system32\drivers\mbam.sys 4470E3C1E0C3378E4CAB137893C12C3A
C:\WINDOWS\system32\Drivers\mnmdd.sys 4AE068242760A1FB6E1A44BF4E16AFA6
C:\WINDOWS\system32\Drivers\Modem.sys 510ADE9327FE84C10254E1902697E25F
C:\WINDOWS\System32\DRIVERS\mouclass.sys 027C01BD7EF3349AAEBC883D8A799EFB
C:\WINDOWS\System32\DRIVERS\mouhid.sys 124D6846040C79B9C997F78EF4B2A4E5
C:\WINDOWS\system32\Drivers\MountMgr.sys A80B9A0BAD1B73637DBCBBA7DF72D3FD
C:\WINDOWS\System32\DRIVERS\mrxdav.sys 11D42BB6206F33FBB3BA0288D3EF81BD
C:\WINDOWS\System32\DRIVERS\mrxsmb.sys 7D304A5EB4344EBEEAB53A2FE3FFB9F0
C:\WINDOWS\system32\Drivers\Msfs.sys C941EA2454BA8350021D774DAF0F1027
C:\WINDOWS\System32\drivers\MSKSSRV.sys D1575E71568F4D9E14CA56B7B0453BF1
C:\WINDOWS\System32\drivers\MSPCLOCK.sys 325BB26842FC7CCC1FCCE2C457317F3E
C:\WINDOWS\System32\drivers\MSPQM.sys BAD59648BA099DA4A17680B39730CB3D
C:\WINDOWS\System32\DRIVERS\mssmbios.sys AF5F4F3F14A8EA2C26DE30F7A1E17136
C:\WINDOWS\System32\drivers\MSTEE.sys E53736A9E30C45FA9E7B5EAC55056D1D
C:\WINDOWS\system32\Drivers\Mup.sys DE6A75F5C270E756C5508D94B6CF68F5
C:\WINDOWS\System32\DRIVERS\NABTSFEC.sys 5B50F1B2A2ED47D560577B221DA734DB
C:\WINDOWS\system32\Drivers\NDIS.sys 1DF7F42665C94B825322FAE71721130D
C:\WINDOWS\System32\DRIVERS\NdisIP.sys 7FF1F1FD8609C149AA432F95A8163D97
C:\WINDOWS\System32\DRIVERS\ndistapi.sys 0109C4F3850DFBAB279542515386AE22
C:\WINDOWS\System32\DRIVERS\ndisuio.sys F927A4434C5028758A842943EF1A3849
C:\WINDOWS\System32\DRIVERS\ndiswan.sys EDC1531A49C80614B2CFDA43CA8659AB
C:\WINDOWS\system32\Drivers\NDProxy.sys 2F597BB467E05B1FE3830EABD821B8E0
C:\WINDOWS\System32\DRIVERS\netaapl.sys 9213AA35BCA94EB79D366DA254E4BDF5
C:\WINDOWS\System32\DRIVERS\netbios.sys 5D81CF9A2F1A3A756B66CF684911CDF0
C:\WINDOWS\System32\DRIVERS\netbt.sys 74B2B2F5BEA5E9A3DC021D685551BD3D
C:\WINDOWS\system32\Drivers\Npfs.sys 3182D64AE053D6FB034F44B6DEF8034A
C:\WINDOWS\system32\Drivers\Ntfs.sys 78A08DD6A8D65E697C18E1DB01C5CDCA
C:\WINDOWS\System32\DRIVERS\NTIDrvr.sys 7F1C1F78D709C4A54CBB46EDE7E0B48D
C:\WINDOWS\system32\Drivers\Null.sys 73C1E1F395918BC2C6DD67AF7591A3AD
C:\WINDOWS\System32\DRIVERS\nwlnkflt.sys B305F3FAD35083837EF46A0BBCE2FC57
C:\WINDOWS\System32\DRIVERS\nwlnkfwd.sys C99B3415198D1AAB7227F2C88FD664B9
C:\WINDOWS\system32\Drivers\Parport.sys 8FD0BDBEA875D06CCF6C945CA9ABAF75
C:\WINDOWS\system32\Drivers\PartMgr.sys BEB3BA25197665D82EC7065B724171C6
C:\WINDOWS\system32\Drivers\ParVdm.sys 9575C5630DB8FB804649A6959737154C
C:\WINDOWS\system32\PCANDIS5.SYS CEEF86CB35ABE95C40A88784F5B631AD
C:\WINDOWS\System32\DRIVERS\pci.sys 043410877BDA580C528F45165F7125BC
C:\WINDOWS\System32\DRIVERS\pciide.sys F4BFDE7209C14A07AAA61E4D6AE69EAC
C:\WINDOWS\System32\DRIVERS\pcmcia.sys F0406CBC60BDB0394A0E17FFB04CDD3D
C:\WINDOWS\System32\drivers\pfc.sys 444F122E68DB44C0589227781F3C8B3F
C:\WINDOWS\System32\DRIVERS\raspptp.sys EFEEC01B1D3CF84F16DDD24D9D9D8F99
C:\WINDOWS\System32\DRIVERS\psched.sys 09298EC810B07E5D582CB3A3F9255424
C:\WINDOWS\System32\DRIVERS\psi_mf.sys D24DFD16A1E2A76034DF5AA18125C35D
C:\WINDOWS\System32\DRIVERS\ptilink.sys 80D317BD1C3DBC5D4FE7B1678C60CADD
C:\WINDOWS\System32\DRIVERS\PxHelp20.sys E42E3433DBB4CFFE8FDD91EAB29AEA8E
C:\WINDOWS\System32\DRIVERS\rasacd.sys FE0D99D6F31E4FAD8159F690D68DED9C
C:\WINDOWS\System32\DRIVERS\rasl2tp.sys 11B4A627BC9614B885C4969BFA5FF8A6
C:\WINDOWS\System32\DRIVERS\raspppoe.sys 5BC962F2654137C9909C3D4603587DEE
C:\WINDOWS\System32\DRIVERS\raspti.sys FDBB1D60066FCFBB7452FD8F9829B242
C:\WINDOWS\System32\DRIVERS\rdbss.sys 7AD224AD1A1437FE28D89CF22B17780A
C:\WINDOWS\System32\DRIVERS\RDPCDD.sys 4912D5B403614CE99C28420F75353332
C:\WINDOWS\system32\Drivers\RDPWD.sys 43AF5212BD8FB5BA6EED9754358BD8F7
C:\WINDOWS\System32\DRIVERS\redbook.sys D8EB2A7904DB6C916EB5361878DDCBAE
C:\WINDOWS\System32\Drivers\RootMdm.sys D8B0B4ADE32574B2D9C5CC34DC0DBBE7
C:\WINDOWS\System32\DRIVERS\secdrv.sys ==> MD5 is legit
C:\WINDOWS\System32\DRIVERS\serenum.sys 0F29512CCD6BEAD730039FB4BD2C85CE
C:\WINDOWS\system32\Drivers\Serial.sys 93D313C31F7AD9EA2B75F26075413C7C
C:\WINDOWS\system32\Drivers\Sfloppy.sys 8E6B8C671615D126FDC553D1E2DE5562
C:\WINDOWS\System32\DRIVERS\sisgrp.sys 8B3CDB4B1453B3A2E6E7300AABE50D0E
C:\WINDOWS\System32\DRIVERS\SISAGPX.sys 61CA562DEF09A782D26B3E7EDEC5369A
C:\WINDOWS\System32\DRIVERS\srvkp.sys 87A5176A3762B1341619CE63152C1DA9
C:\WINDOWS\System32\DRIVERS\sisnicxp.sys 47F39481BC8941E0D51601A85691448D
C:\WINDOWS\System32\DRIVERS\SLIP.sys 866D538EBE33709A5C9F5C62B73B7D14
C:\WINDOWS\System32\drivers\splitter.sys AB8B92451ECB048A4D1DE7C3FFCB4A9F
C:\WINDOWS\System32\Drivers\sptd.sys 7F1B7C4D446CD3F926AF45B8C48BD593
C:\WINDOWS\System32\DRIVERS\sr.sys 39626E6DC1FB39434EC40C42722B660A
C:\WINDOWS\System32\DRIVERS\srv.sys 47DDFC2F003F7F9F0592C6874962A2E7
C:\WINDOWS\System32\DRIVERS\ssmdrv.sys A36EE93698802CD899F98BFD553D8185
C:\WINDOWS\system32\Drivers\StarOpen.sys 306521935042FC0A6988D528643619B3
C:\WINDOWS\System32\DRIVERS\StreamIP.sys 77813007BA6265C4B6098187E6ED79D2
C:\WINDOWS\System32\DRIVERS\swenum.sys 3941D127AEF12E93ADDF6FE6EE027E0F
C:\WINDOWS\System32\drivers\swmidi.sys 8CE882BCC6CF8A62F2B2323D95CB3D01
C:\WINDOWS\System32\DRIVERS\SynTP.sys EB363DDFBE8B6D51003CCAB29D93D744
C:\WINDOWS\System32\drivers\sysaudio.sys 8B83F3ED0F1688B4958F77CD6D2BF290
C:\WINDOWS\System32\DRIVERS\tcpip.sys 9AEFA14BD6B182D61E3119FA5F436D3D
C:\WINDOWS\system32\Drivers\TDPIPE.sys 6471A66807F5E104E4885F5B67349397
C:\WINDOWS\system32\Drivers\TDTCP.sys C56B6D0402371CF3700EB322EF3AAF61
C:\WINDOWS\System32\DRIVERS\termdd.sys 88155247177638048422893737429D9E
C:\WINDOWS\system32\Drivers\UBHelper.sys E0C67BE430C6DE490D6CCAECFA071F9E
C:\WINDOWS\system32\Drivers\Udfs.sys 5787B80C2E3C5E2F56C2A233D91FA2C9
C:\WINDOWS\System32\DRIVERS\update.sys 402DDC88356B1BAC0EE3DD1580C76A31
C:\WINDOWS\System32\Drivers\usbaapl.sys 6E421CCC57059B0186C6259CA3B6DFC9
C:\WINDOWS\System32\DRIVERS\usbccgp.sys 1B611611C28D2DF25BC057D79C6F13FC
C:\WINDOWS\System32\DRIVERS\usbehci.sys 4BAC8DF07F1D8434FC640E677A62204E
C:\WINDOWS\System32\DRIVERS\usbhub.sys 1AB3CDDE553B6E064D2E754EFE20285C
C:\WINDOWS\System32\DRIVERS\usbohci.sys 0DAECCE65366EA32B162F85F07C6753B
C:\WINDOWS\System32\DRIVERS\usbprint.sys A717C8721046828520C9EDF31288FC00
C:\WINDOWS\System32\DRIVERS\usbscan.sys F8EDE2B6928970DCE3D5614C27D9E7F6
C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS A32426D9B14A089EAA1D922E0C5801A9
C:\WINDOWS\System32\DRIVERS\VComm.sys 9EBEE4A060C5364A31AEAA04EAC2AF1E
C:\WINDOWS\System32\Drivers\VcommMgr.sys EF0D45ED806B0C9AE9756BFEECB077ED
C:\WINDOWS\System32\drivers\vga.sys 0D3A8FAFCEACD8B7625CD549757A7DF1
C:\WINDOWS\system32\Drivers\VolSnap.sys 46DE1126684369BACE4849E4FC8C43CA
C:\WINDOWS\System32\DRIVERS\wanarp.sys E20B95BAEDB550F32DD489265C1DA1F6
C:\WINDOWS\System32\Drivers\wdf01000.sys D918617B46457B9AC28027722E30F647
C:\WINDOWS\System32\drivers\wdmaud.sys 6768ACF64B18196494413695F0C3A00F
C:\WINDOWS\System32\drivers\ws2ifsl.sys 6ABE6E225ADB5A751622A9CC3BC19CE8
C:\WINDOWS\System32\DRIVERS\WSTCODEC.SYS C98B39829C2BBD34E454150633C62C78
C:\WINDOWS\System32\DRIVERS\WudfPf.sys F15FEAFFFBB3644CCC80C5DA584E6311
C:\WINDOWS\System32\DRIVERS\wudfrd.sys 28B524262BCE6DE1F7EF9F510BA3985B
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-03-28 10:53 - 2014-03-28 10:55 - 00000000 ____D () C:\FRST
2014-03-27 14:08 - 2014-03-27 14:08 - 00000686 _____ () C:\Documents and Settings\All Users\Bureau\CCleaner.lnk
2014-03-26 09:51 - 2014-03-26 09:51 - 00000060 _____ () C:\WINDOWS\setupact.log
2014-03-26 09:51 - 2014-03-26 09:51 - 00000000 _____ () C:\WINDOWS\setuperr.log
2014-03-26 09:19 - 2014-03-26 09:19 - 00004081 _____ () C:\WINDOWS\setupapi.log
2014-03-26 09:07 - 2014-03-26 09:08 - 00000968 ____H () C:\WINDOWS\EPMBatch.ept
2014-03-23 10:02 - 2014-03-28 09:56 - 00000000 ____D () C:\Program Files\ZHPDiag
2014-03-23 10:02 - 2014-03-28 09:50 - 00000000 ____D () C:\Documents and Settings\user\Application Data\ZHP
2014-03-23 10:02 - 2014-03-28 09:49 - 00001632 _____ () C:\Documents and Settings\user\Bureau\ZHPFix.lnk
2014-03-23 10:02 - 2014-03-28 09:49 - 00001527 _____ () C:\Documents and Settings\user\Bureau\ZHPDiag.lnk
2014-03-23 10:02 - 2014-03-28 09:49 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Démarrer\Programmes\ZHP
2014-03-23 09:52 - 2014-03-23 09:54 - 00000298 _____ () C:\DelFix.txt
2014-03-22 13:34 - 2014-03-27 12:31 - 00000000 ____D () C:\Program Files\FileHippo.com
2014-03-18 12:01 - 2014-03-18 12:01 - 00001026 _____ () C:\Documents and Settings\All Users\Bureau\EaseUS Partition Master 9.3.0.lnk
2014-03-18 12:01 - 2014-03-18 12:01 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Démarrer\Programmes\EaseUS Partition Master 9.3.0
2014-03-18 12:00 - 2014-03-18 12:00 - 00000000 ____D () C:\Program Files\EaseUS
2014-03-18 12:00 - 2013-10-09 15:24 - 02499656 _____ () C:\WINDOWS\system32\BootMan.exe
2014-03-18 12:00 - 2013-03-07 09:49 - 00087112 _____ () C:\WINDOWS\system32\setupempdrv03.exe
2014-03-18 12:00 - 2013-03-07 09:49 - 00019840 _____ () C:\WINDOWS\system32\EuEpmGdi.dll
2014-03-18 12:00 - 2013-03-07 09:49 - 00013896 _____ () C:\WINDOWS\system32\epmntdrv.sys
2014-03-18 12:00 - 2013-03-07 09:49 - 00009160 _____ () C:\WINDOWS\system32\EuGdiDrv.sys
2014-03-18 11:42 - 2014-03-18 11:42 - 00000710 _____ () C:\Documents and Settings\user\Bureau\WinDirStat.lnk
2014-03-18 11:42 - 2014-03-18 11:42 - 00000000 ____D () C:\Program Files\WinDirStat
2014-03-18 11:42 - 2014-03-18 11:42 - 00000000 ____D () C:\Documents and Settings\user\Menu Démarrer\Programmes\WinDirStat
2014-03-12 23:56 - 2014-03-12 23:56 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2930275$
2014-03-12 23:56 - 2014-03-12 23:56 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2929961$
2014-03-12 09:17 - 2014-03-27 18:10 - 00000214 _____ () C:\WINDOWS\Tasks\Notification de fin de service de Microsoft Windows XP -mensuellement.job
2014-03-09 16:25 - 2014-03-09 16:25 - 00000000 ____D () C:\Program Files\Fichiers communs\Skype
2014-03-09 16:21 - 2014-03-09 16:21 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2934207$
2014-03-09 14:19 - 2014-02-27 00:28 - 00013312 ____N (Microsoft Corporation) C:\WINDOWS\system32\xp_eos.exe
2014-03-09 14:19 - 2014-02-27 00:28 - 00013312 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\xp_eos.exe
==================== One Month Modified Files and Folders =======
2014-03-28 10:55 - 2014-03-28 10:53 - 00000000 ____D () C:\FRST
2014-03-28 10:15 - 2014-01-03 18:41 - 01258342 _____ () C:\WINDOWS\WindowsUpdate.log
2014-03-28 10:09 - 2014-01-03 18:41 - 00000159 _____ () C:\WINDOWS\wiadebug.log
2014-03-28 10:08 - 2014-01-03 18:41 - 00000050 _____ () C:\WINDOWS\wiaservc.log
2014-03-28 10:08 - 2007-03-01 14:12 - 00000000 ____D () C:\WINDOWS\Microsoft.NET
2014-03-28 10:07 - 2011-03-18 17:21 - 00834596 _____ () C:\WINDOWS\system32\oodbs.lor
2014-03-28 09:56 - 2014-03-23 10:02 - 00000000 ____D () C:\Program Files\ZHPDiag
2014-03-28 09:50 - 2014-03-23 10:02 - 00000000 ____D () C:\Documents and Settings\user\Application Data\ZHP
2014-03-28 09:49 - 2014-03-23 10:02 - 00001632 _____ () C:\Documents and Settings\user\Bureau\ZHPFix.lnk
2014-03-28 09:49 - 2014-03-23 10:02 - 00001527 _____ () C:\Documents and Settings\user\Bureau\ZHPDiag.lnk
2014-03-28 09:49 - 2014-03-23 10:02 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Démarrer\Programmes\ZHP
2014-03-28 09:49 - 2005-08-31 21:36 - 00000000 ____D () C:\Documents and Settings\user\Bureau
2014-03-28 09:40 - 2005-08-31 21:36 - 00000284 ___SH () C:\Documents and Settings\user\ntuser.ini
2014-03-28 09:38 - 2005-03-07 20:16 - 00000000 ___RD () C:\Documents and Settings\All Users\Menu Démarrer
2014-03-28 09:31 - 2007-07-05 08:43 - 00000000 ____D () C:\Program Files\Windows Live
2014-03-28 09:30 - 2012-09-06 16:42 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Windows Live
2014-03-28 09:20 - 2005-03-07 20:16 - 00000000 ___HD () C:\Documents and Settings\All Users\Modèles
2014-03-28 09:04 - 2005-03-07 20:16 - 00000000 ___RD () C:\Documents and Settings\All Users\Menu Démarrer\Programmes
2014-03-28 09:02 - 2005-08-31 21:36 - 00000000 ___RD () C:\Documents and Settings\user\Menu Démarrer\Programmes
2014-03-27 19:06 - 2011-02-23 17:33 - 00002559 _____ () C:\Documents and Settings\user\Bureau\Microsoft Word.lnk
2014-03-27 18:24 - 1980-01-01 00:00 - 00000730 _____ () C:\WINDOWS\win.ini
2014-03-27 18:24 - 1980-01-01 00:00 - 00000227 _____ () C:\WINDOWS\system.ini
2014-03-27 18:24 - 1980-01-01 00:00 - 00000216 ___SH () C:\boot.ini
2014-03-27 18:10 - 2014-03-12 09:17 - 00000214 _____ () C:\WINDOWS\Tasks\Notification de fin de service de Microsoft Windows XP -mensuellement.job
2014-03-27 18:10 - 2013-11-17 13:20 - 00000376 _____ () C:\WINDOWS\Tasks\Wise Turbo Checker.job
2014-03-27 18:10 - 2013-02-15 21:04 - 00000284 _____ () C:\WINDOWS\Tasks\AppleSoftwareUpdate.job
2014-03-27 18:09 - 2007-11-03 22:15 - 00000000 ____D () C:\WINDOWS\pss
2014-03-27 18:09 - 2005-03-07 20:16 - 00000000 ___RD () C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
2014-03-27 14:08 - 2014-03-27 14:08 - 00000686 _____ () C:\Documents and Settings\All Users\Bureau\CCleaner.lnk
2014-03-27 14:08 - 2013-10-09 18:17 - 00000000 ____D () C:\Program Files\CCleaner
2014-03-27 14:08 - 2005-03-07 20:16 - 00000000 ____D () C:\Documents and Settings\All Users\Bureau
2014-03-27 12:31 - 2014-03-22 13:34 - 00000000 ____D () C:\Program Files\FileHippo.com
2014-03-27 12:20 - 1980-01-01 00:00 - 00001158 _____ () C:\WINDOWS\system32\wpa.dbl
2014-03-26 09:51 - 2014-03-26 09:51 - 00000060 _____ () C:\WINDOWS\setupact.log
2014-03-26 09:51 - 2014-03-26 09:51 - 00000000 _____ () C:\WINDOWS\setuperr.log
2014-03-26 09:19 - 2014-03-26 09:19 - 00004081 _____ () C:\WINDOWS\setupapi.log
2014-03-26 09:08 - 2014-03-26 09:07 - 00000968 ____H () C:\WINDOWS\EPMBatch.ept
2014-03-26 08:38 - 2011-03-01 06:04 - 00000000 ____D () C:\Documents and Settings\user\Menu Démarrer\Programmes\WinRAR
2014-03-26 08:38 - 2011-03-01 06:04 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Démarrer\Programmes\WinRAR
2014-03-26 08:38 - 2008-12-31 14:50 - 00000000 ____D () C:\Program Files\WinRAR
2014-03-23 09:54 - 2014-03-23 09:52 - 00000298 _____ () C:\DelFix.txt
2014-03-20 16:16 - 2008-10-14 12:32 - 00000000 ___HD () C:\WINDOWS\$NtServicePackUninstall$
2014-03-18 20:47 - 2013-08-14 18:05 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-03-18 20:42 - 2006-01-19 18:53 - 87350280 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-03-18 12:01 - 2014-03-18 12:01 - 00001026 _____ () C:\Documents and Settings\All Users\Bureau\EaseUS Partition Master 9.3.0.lnk
2014-03-18 12:01 - 2014-03-18 12:01 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Démarrer\Programmes\EaseUS Partition Master 9.3.0
2014-03-18 12:00 - 2014-03-18 12:00 - 00000000 ____D () C:\Program Files\EaseUS
2014-03-18 11:42 - 2014-03-18 11:42 - 00000710 _____ () C:\Documents and Settings\user\Bureau\WinDirStat.lnk
2014-03-18 11:42 - 2014-03-18 11:42 - 00000000 ____D () C:\Program Files\WinDirStat
2014-03-18 11:42 - 2014-03-18 11:42 - 00000000 ____D () C:\Documents and Settings\user\Menu Démarrer\Programmes\WinDirStat
2014-03-17 20:04 - 2006-09-15 09:41 - 00000000 ____D () C:\Program Files\Google
2014-03-17 19:52 - 2007-03-29 11:27 - 00000000 ____D () C:\Documents and Settings\user\Local Settings\Application Data\Google
2014-03-15 23:08 - 2005-03-07 20:17 - 00000000 ____D () C:\Program Files\Fichiers communs
2014-03-15 22:52 - 2005-03-07 20:17 - 00677028 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-03-15 22:04 - 2012-04-23 17:28 - 00001002 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-03-15 22:03 - 2012-04-23 17:28 - 00692616 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2014-03-15 22:03 - 2011-05-13 18:56 - 00071048 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2014-03-14 00:48 - 2007-08-19 17:16 - 00000000 ____D () C:\Documents and Settings\user\Application Data\vlc
2014-03-13 10:08 - 2014-01-03 18:39 - 00340240 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-03-13 10:08 - 2009-10-02 10:33 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-03-12 23:57 - 2011-03-11 18:45 - 00000000 ____D () C:\WINDOWS\ie8updates
2014-03-12 23:56 - 2014-03-12 23:56 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2930275$
2014-03-12 23:56 - 2014-03-12 23:56 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2929961$
2014-03-12 23:54 - 2013-03-14 18:54 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Microsoft Silverlight
2014-03-09 16:25 - 2014-03-09 16:25 - 00000000 ____D () C:\Program Files\Fichiers communs\Skype
2014-03-09 16:25 - 2013-02-17 22:12 - 00000000 ___RD () C:\Program Files\Skype
2014-03-09 16:24 - 2010-06-10 20:38 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Skype
2014-03-09 16:21 - 2014-03-09 16:21 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2934207$
2014-02-27 00:28 - 2014-03-09 14:19 - 00013312 ____N (Microsoft Corporation) C:\WINDOWS\system32\xp_eos.exe
2014-02-27 00:28 - 2014-03-09 14:19 - 00013312 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\xp_eos.exe
Some content of TEMP:
====================
C:\Documents and Settings\user\Local Settings\Temp\avgnt.exe
==================== Bamital & volsnap Check =================
C:\WINDOWS\explorer.exe => MD5 is legit
C:\WINDOWS\system32\winlogon.exe
[1980-01-01 00:00] - [2008-04-14 04:34] - 0512000 ____A (Microsoft Corporation) dd73d6b9f6b4cb630cf35b438b540174
C:\WINDOWS\system32\svchost.exe => MD5 is legit
C:\WINDOWS\system32\services.exe => MD5 is legit
C:\WINDOWS\system32\User32.dll
[1980-01-01 00:00] - [2008-04-14 04:33] - 0579584 ____A (Microsoft Corporation) e853f84d3ce2faa2a802e33cf89ac023
C:\WINDOWS\system32\userinit.exe => MD5 is legit
C:\WINDOWS\system32\rpcss.dll
[1980-01-01 00:00] - [2009-02-09 11:53] - 0401408 ____A (Microsoft Corporation) 0203b1aad358f206cb0a3c1f93cce17a
ATTENTION ======> If the system is having audio adware rpcss.dll is patched. Google the MD5, if the MD5 is unique the file is infected.
C:\WINDOWS\system32\Drivers\volsnap.sys => MD5 is legit
==================== End Of Log ============================
Ran by user (administrator) on ACER-6281EFDEF1 on 28-03-2014 10:55:58
Running from D:\Mes documents\Téléchargements
Microsoft Windows XP Édition familiale Service Pack 3 (X86) OS Language: French Standard
Internet Explorer Version 8
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(Apple Inc.) C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(Microsoft Corporation) C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
(O&O Software GmbH) C:\Program Files\OO Software\Defrag\oodag.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
(Secunia) C:\Program Files\Secunia\PSI\PSIA.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(Secunia) C:\Program Files\Secunia\PSI\sua.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [avgnt] - C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [689744 2014-03-13] (Avira Operations GmbH & Co. KG)
HKU\S-1-5-21-1529987398-1430356828-1210237423-1005\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} - No File
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Default_search_url = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://www.01net.com/telecharger/
http://www.01men.com/
SearchScopes: HKLM - DefaultScope value is missing.
Handler: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: ipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Fichiers communs\Skype\Skype4COM.dll (Skype Technologies)
Winsock: Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\ijq9ez8h.default
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_12_0_0_77.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\WINDOWS\system32\Adobe\Director\np32dsw_1204144.dll (Adobe Systems, Inc.)
FF Plugin: @Apple.com/iTunes,version=1.0 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @divx.com/DivX Player Plugin,version=1.0.0 - C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll (DivX, Inc)
FF Plugin: @java.com/DTPlugin,version=10.25.2 - C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin: @microsoft.com/WLPG,version=14.0.8117.0416 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @veoh.com/VeohPlayer - C:\Program Files\Veoh Networks\Veoh\Plugins\noreg\NPVeohVersion.dll (Veoh Networks Inc)
FF Plugin: @videolan.org/vlc,version=2.0.8 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.1 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.2 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npDivxPlayerPlugin.dll (DivX, Inc)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin6.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin7.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin8.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npwachk.dll (Nullsoft, Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazon-france.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\cnrtl-tlfi-fr.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-france.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-france.xml
FF Extension: IE Tab 2 (FF 3.6+) - C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\ijq9ez8h.default\Extensions\{1BC9BA34-1EED-42ca-A505-6D2F1A935BBB} [2013-12-17]
FF Extension: Adblock Plus - C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\ijq9ez8h.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2011-07-02]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} [2014-02-22]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} [2014-02-22]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} [2014-02-22]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ []
========================== Services (Whitelisted) =================
R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [440400 2014-03-13] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [440400 2014-03-13] (Avira Operations GmbH & Co. KG)
R2 Apple Mobile Device; C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe [55624 2013-09-07] (Apple Inc.)
R2 MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
S4 MSSQLServerADHelper; C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [44384 2010-12-10] (Microsoft Corporation)
R2 O&O Defrag; C:\Program Files\OO Software\Defrag\oodag.exe [1488128 2009-09-26] (O&O Software GmbH)
R2 Secunia PSI Agent; C:\Program Files\Secunia\PSI\PSIA.exe [994360 2011-10-14] (Secunia)
R2 Secunia Update Agent; C:\Program Files\Secunia\PSI\sua.exe [399416 2011-10-14] (Secunia)
S3 BBUpdate; C:\Program Files\Microsoft\BingBar\7.1.391.0\SeaPort.exe [X]
==================== Drivers (Whitelisted) ====================
R3 ALCXWDM; C:\WINDOWS\System32\drivers\ALCXWDM.SYS [2311680 2005-02-24] (Realtek Semiconductor Corp.)
S3 AR9271; C:\WINDOWS\System32\DRIVERS\athuw.sys [1714176 2010-01-05] (Atheros Communications, Inc.)
R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [90400 2013-12-19] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\System32\DRIVERS\avipbb.sys [135648 2013-12-19] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\System32\DRIVERS\avkmgr.sys [37352 2013-12-04] (Avira Operations GmbH & Co. KG)
R3 BCM43XX; C:\WINDOWS\System32\DRIVERS\bcmwl5.sys [369024 2004-12-21] (Broadcom Corporation)
S3 BlueletAudio; C:\WINDOWS\System32\DRIVERS\blueletaudio.sys [20096 2004-10-19] (IVT Corporation)
S3 BT; C:\WINDOWS\System32\DRIVERS\btnetdrv.sys [10804 2004-09-21] (IVT Corporation)
S3 Btcsrusb; C:\WINDOWS\System32\Drivers\btcusb.sys [23000 2005-01-17] (IVT Corporation)
S3 BTHidEnum; C:\WINDOWS\System32\DRIVERS\vbtenum.sys [12500 2005-01-13] ()
R0 BTHidMgr; C:\WINDOWS\System32\Drivers\BTHidMgr.sys [28207 2004-10-19] (IVT Corporation)
S3 BTNetFilter; C:\WINDOWS\system32\drivers\BTNetFilter.sys [13304 2004-12-16] ()
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
S3 epmntdrv; C:\WINDOWS\system32\epmntdrv.sys [13896 2013-03-07] ()
S3 EuGdiDrv; C:\WINDOWS\system32\EuGdiDrv.sys [9160 2013-03-07] ()
S3 HPZid412; C:\WINDOWS\System32\DRIVERS\HPZid412.sys [49664 2006-04-13] (HP)
S3 HPZipr12; C:\WINDOWS\System32\DRIVERS\HPZipr12.sys [16496 2006-04-13] (HP)
S3 HPZius12; C:\WINDOWS\System32\DRIVERS\HPZius12.sys [21568 2006-04-13] (HP)
S3 int15.sys; C:\Program Files\acer\eRecovery\int15.sys [69632 2005-01-13] ()
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
S3 PCANDIS5; C:\WINDOWS\system32\PCANDIS5.SYS [16128 2003-08-04] (Printing Communications Assoc., Inc. (PCAUSA))
S3 pfc; C:\WINDOWS\System32\drivers\pfc.sys [10368 2003-12-05] (Padus, Inc.)
R3 PSI; C:\WINDOWS\System32\DRIVERS\psi_mf.sys [15544 2010-09-01] (Secunia)
R3 SiS315; C:\WINDOWS\System32\DRIVERS\sisgrp.sys [240640 2005-03-02] (Silicon Integrated Systems Corporation)
R1 SiSkp; C:\WINDOWS\System32\DRIVERS\srvkp.sys [13312 2005-02-25] (Silicon Integrated Systems Corporation)
R3 SISNICXP; C:\WINDOWS\System32\DRIVERS\sisnicxp.sys [32768 2004-11-05] (SiS Corporation)
S4 sptd; C:\WINDOWS\System32\Drivers\sptd.sys [716272 2008-03-09] (Duplex Secure Ltd.)
R1 ssmdrv; C:\WINDOWS\System32\DRIVERS\ssmdrv.sys [28520 2012-08-27] (Avira GmbH)
R1 StarOpen; C:\WINDOWS\system32\Drivers\StarOpen.sys [5632 2008-11-02] ()
R1 UBHelper; C:\WINDOWS\system32\Drivers\UBHelper.sys [13952 2004-12-17] ()
R3 VComm; C:\WINDOWS\System32\DRIVERS\VComm.sys [61312 2004-10-19] (IVT Corporation)
R3 VcommMgr; C:\WINDOWS\System32\Drivers\VcommMgr.sys [82148 2004-11-05] (IVT Corporation)
S3 ALSysIO; \??\C:\DOCUME~1\user\LOCALS~1\Temp\ALSysIO.sys [X]
S3 catchme; \??\C:\DOCUME~1\user\LOCALS~1\Temp\catchme.sys [X]
S4 IntelIde; No ImagePath
S3 LVUSBSta; system32\drivers\lvusbsta.sys [X]
S2 osaio; \SystemRoot\system32\drivers\osaio.sys [X]
S2 osanbm; \SystemRoot\system32\drivers\osanbm.sys [X]
S3 PCAMPR5; \??\C:\WINDOWS\system32\PCAMPR5.SYS [X]
S3 PID_0928; system32\DRIVERS\LV561AV.SYS [X]
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)
S3 VBoxNetFlt; system32\DRIVERS\VBoxNetFlt.sys [X]
U4 wlancfg;
S3 ZTEusbmdm6k; system32\DRIVERS\ZTEusbmdm6k.sys [X]
S3 ZTEusbnmea; system32\DRIVERS\ZTEusbnmea.sys [X]
S3 ZTEusbser6k; system32\DRIVERS\ZTEusbser6k.sys [X]
========================== Drivers MD5 =======================
C:\WINDOWS\System32\DRIVERS\ACPI.sys E5E6DBFC41EA8AAD005CB9A57A96B43B
C:\WINDOWS\System32\DRIVERS\ACPIEC.sys E4ABC1212B70BB03D35E60681C447210
C:\WINDOWS\System32\drivers\aec.sys 8BED39E3C35D6A489438B8141717A557
C:\WINDOWS\System32\drivers\afd.sys 1E44BC1E83D8FD2305F8D452DB109CF9
C:\WINDOWS\System32\DRIVERS\AGRSM.sys CEFFA3DB1657293322E0BDEA7D99E754
C:\WINDOWS\System32\drivers\ALCXWDM.SYS 5DAE13401E4D3B8F132BF5867447D661
C:\WINDOWS\System32\DRIVERS\AmdK8.sys 08329F6AE482B184725D2E07E9A79E16
C:\WINDOWS\System32\DRIVERS\athuw.sys 8E2257584B2C52D44B4CB1949947D885
C:\WINDOWS\System32\DRIVERS\asyncmac.sys B153AFFAC761E7F5FCFA822B9C4E97BC
C:\WINDOWS\System32\DRIVERS\atapi.sys 9F3A2F5AA6875C72BF062C712CFA2674
C:\WINDOWS\System32\DRIVERS\atmarpc.sys 9916C1225104BA14794209CFA8012159
C:\WINDOWS\System32\DRIVERS\audstub.sys D9F724AA26C010A217C97606B160ED68
C:\WINDOWS\System32\DRIVERS\avgntflt.sys B8C10FF9369394EB84993F331810CF29
C:\WINDOWS\System32\DRIVERS\avipbb.sys 4189E5AB2CAD6F395D87DAAE73EB090F
C:\WINDOWS\System32\DRIVERS\avkmgr.sys D8C712305F73CD34D1B344810E522728
C:\WINDOWS\System32\DRIVERS\bcmwl5.sys 38CA1443660D0F5F06887C6A2E692AEB
C:\WINDOWS\system32\Drivers\Beep.sys DA1F27D85E0D1525F6621372E7B685E9
C:\WINDOWS\System32\DRIVERS\blueletaudio.sys 31FF5B87C1DD907613CC613224B8E303
C:\WINDOWS\System32\DRIVERS\btnetdrv.sys 9DA8ABC4885AFF4793D4AA420E40BB12
C:\WINDOWS\System32\Drivers\btcusb.sys 7E99A004329250900818EE0DE014F032
C:\WINDOWS\System32\DRIVERS\vbtenum.sys 0448968BA21ACDE511C19F3C0296E23B
C:\WINDOWS\System32\Drivers\BTHidMgr.sys F408264F6AD1DC7E7BDD4837440F115D
C:\WINDOWS\system32\drivers\BTNetFilter.sys 6B05FDC0CFC3753B520D2D4176CC32D0
C:\WINDOWS\system32\Drivers\cbidf2k.sys 90A673FC8E12A79AFBED2576F6A7AAF9
C:\WINDOWS\System32\DRIVERS\CCDECODE.sys 0BE5AEF125BE881C4F854C554F2B025C
C:\WINDOWS\system32\Drivers\Cdaudio.sys C1B486A7658353D33A10CC15211A873B
C:\WINDOWS\system32\Drivers\Cdfs.sys C885B02847F5D2FD45A24E219ED93B32
C:\WINDOWS\System32\DRIVERS\cdrom.sys 1F4260CC5B42272D71F79E570A27A4FE
C:\WINDOWS\System32\DRIVERS\CmBatt.sys 0F6C187D38D98F8DF904589A5F94D411
C:\WINDOWS\System32\DRIVERS\compbatt.sys 6E4C9F21F0FAE8940661144F41B13203
C:\WINDOWS\System32\DRIVERS\disk.sys 044452051F3E02E7963599FC8F4F3E25
C:\WINDOWS\System32\Drivers\DKbFltr.sys 08D30AF92C270F2E76787C81589DBAD6
C:\WINDOWS\System32\drivers\dmboot.sys F5DEADD42335FB33EDCA74ECB2F36CBA
C:\WINDOWS\System32\drivers\dmio.sys 5A7C47C9B3F9FB92A66410A7509F0C71
C:\WINDOWS\System32\drivers\dmload.sys E9317282A63CA4D188C0DF5E09C6AC5F
C:\WINDOWS\System32\drivers\DMusic.sys 8A208DFCF89792A484E76C40E5F50B45
C:\WINDOWS\System32\drivers\drmkaud.sys 8F5FCFF8E8848AFAC920905FBD9D33C8
C:\WINDOWS\system32\epmntdrv.sys D57F1811D8258D8D277CD9F53657EEF9
C:\WINDOWS\system32\EuGdiDrv.sys F1DE3EEF501DDA7DDF99F2EDF0C5540E
C:\WINDOWS\system32\Drivers\Fastfat.sys 38D332A6D56AF32635675F132548343E
C:\WINDOWS\system32\Drivers\Fdc.sys 92CDD60B6730B9F50F6A1A0C1F8CDC81
C:\WINDOWS\system32\Drivers\Fips.sys 31F923EB2170FC172C81ABDA0045D18C
C:\WINDOWS\system32\Drivers\Flpydisk.sys 9D27E7B80BFCDF1CDD9B555862D5E7F0
C:\WINDOWS\System32\drivers\fltmgr.sys B2CF4B0786F8212CB92ED2B50C6DB6B0
C:\WINDOWS\system32\Drivers\Fs_Rec.sys 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A
C:\WINDOWS\System32\DRIVERS\ftdisk.sys A86859B77B908C18C2657F284AA29FE3
C:\WINDOWS\System32\DRIVERS\gagp30kx.sys 3A74C423CF6BCCA6982715878F450A3B
C:\WINDOWS\System32\DRIVERS\GEARAspiWDM.sys 185ADA973B5020655CEE342059A86CBB
C:\WINDOWS\System32\DRIVERS\msgpc.sys 0A02C63C8B144BD8C86B103DEE7C86A2
C:\WINDOWS\System32\DRIVERS\hidusb.sys CCF82C5EC8A7326C3066DE870C06DAF1
C:\WINDOWS\System32\DRIVERS\HPZid412.sys 30CA91E657CEDE2F95359D6EF186F650
C:\WINDOWS\System32\DRIVERS\HPZipr12.sys EFD31AFA752AA7C7BBB57BCBE2B01C78
C:\WINDOWS\System32\DRIVERS\HPZius12.sys 7AC43C38CA8FD7ED0B0A4466F753E06E
C:\WINDOWS\System32\Drivers\HTTP.sys F80A415EF82CD06FFAF0D971528EAD38
C:\WINDOWS\System32\DRIVERS\i8042prt.sys A09BDC4ED10E3B2E0EC27BB94AF32516
C:\WINDOWS\System32\DRIVERS\imapi.sys 083A052659F5310DD8B6A6CB05EDCF8E
C:\Program Files\acer\eRecovery\int15.sys 4D8D5B1C895EA0F2A721B98A7CE198F1
C:\WINDOWS\System32\drivers\ip6fw.sys 3BB22519A194418D5FEC05D800A19AD0
C:\WINDOWS\System32\DRIVERS\ipfltdrv.sys 731F22BA402EE4B62748ADAF6363C182
C:\WINDOWS\System32\DRIVERS\ipinip.sys B87AB476DCF76E72010632B5550955F5
C:\WINDOWS\System32\DRIVERS\ipnat.sys CC748EA12C6EFFDE940EE98098BF96BB
C:\WINDOWS\System32\DRIVERS\ipsec.sys 23C74D75E36E7158768DD63D92789A91
C:\WINDOWS\System32\DRIVERS\irenum.sys C93C9FF7B04D772627A3646D89F7BF89
C:\WINDOWS\System32\DRIVERS\isapnp.sys 355836975A67B6554BCA60328CD6CB74
C:\WINDOWS\System32\DRIVERS\kbdclass.sys 16813155807C6881F4BFBF6657424659
C:\WINDOWS\System32\drivers\kmixer.sys 692BCF44383D056AED41B045A323D378
C:\WINDOWS\system32\Drivers\KSecDD.sys B467646C54CC746128904E1654C750C1
C:\WINDOWS\system32\drivers\mbam.sys 4470E3C1E0C3378E4CAB137893C12C3A
C:\WINDOWS\system32\Drivers\mnmdd.sys 4AE068242760A1FB6E1A44BF4E16AFA6
C:\WINDOWS\system32\Drivers\Modem.sys 510ADE9327FE84C10254E1902697E25F
C:\WINDOWS\System32\DRIVERS\mouclass.sys 027C01BD7EF3349AAEBC883D8A799EFB
C:\WINDOWS\System32\DRIVERS\mouhid.sys 124D6846040C79B9C997F78EF4B2A4E5
C:\WINDOWS\system32\Drivers\MountMgr.sys A80B9A0BAD1B73637DBCBBA7DF72D3FD
C:\WINDOWS\System32\DRIVERS\mrxdav.sys 11D42BB6206F33FBB3BA0288D3EF81BD
C:\WINDOWS\System32\DRIVERS\mrxsmb.sys 7D304A5EB4344EBEEAB53A2FE3FFB9F0
C:\WINDOWS\system32\Drivers\Msfs.sys C941EA2454BA8350021D774DAF0F1027
C:\WINDOWS\System32\drivers\MSKSSRV.sys D1575E71568F4D9E14CA56B7B0453BF1
C:\WINDOWS\System32\drivers\MSPCLOCK.sys 325BB26842FC7CCC1FCCE2C457317F3E
C:\WINDOWS\System32\drivers\MSPQM.sys BAD59648BA099DA4A17680B39730CB3D
C:\WINDOWS\System32\DRIVERS\mssmbios.sys AF5F4F3F14A8EA2C26DE30F7A1E17136
C:\WINDOWS\System32\drivers\MSTEE.sys E53736A9E30C45FA9E7B5EAC55056D1D
C:\WINDOWS\system32\Drivers\Mup.sys DE6A75F5C270E756C5508D94B6CF68F5
C:\WINDOWS\System32\DRIVERS\NABTSFEC.sys 5B50F1B2A2ED47D560577B221DA734DB
C:\WINDOWS\system32\Drivers\NDIS.sys 1DF7F42665C94B825322FAE71721130D
C:\WINDOWS\System32\DRIVERS\NdisIP.sys 7FF1F1FD8609C149AA432F95A8163D97
C:\WINDOWS\System32\DRIVERS\ndistapi.sys 0109C4F3850DFBAB279542515386AE22
C:\WINDOWS\System32\DRIVERS\ndisuio.sys F927A4434C5028758A842943EF1A3849
C:\WINDOWS\System32\DRIVERS\ndiswan.sys EDC1531A49C80614B2CFDA43CA8659AB
C:\WINDOWS\system32\Drivers\NDProxy.sys 2F597BB467E05B1FE3830EABD821B8E0
C:\WINDOWS\System32\DRIVERS\netaapl.sys 9213AA35BCA94EB79D366DA254E4BDF5
C:\WINDOWS\System32\DRIVERS\netbios.sys 5D81CF9A2F1A3A756B66CF684911CDF0
C:\WINDOWS\System32\DRIVERS\netbt.sys 74B2B2F5BEA5E9A3DC021D685551BD3D
C:\WINDOWS\system32\Drivers\Npfs.sys 3182D64AE053D6FB034F44B6DEF8034A
C:\WINDOWS\system32\Drivers\Ntfs.sys 78A08DD6A8D65E697C18E1DB01C5CDCA
C:\WINDOWS\System32\DRIVERS\NTIDrvr.sys 7F1C1F78D709C4A54CBB46EDE7E0B48D
C:\WINDOWS\system32\Drivers\Null.sys 73C1E1F395918BC2C6DD67AF7591A3AD
C:\WINDOWS\System32\DRIVERS\nwlnkflt.sys B305F3FAD35083837EF46A0BBCE2FC57
C:\WINDOWS\System32\DRIVERS\nwlnkfwd.sys C99B3415198D1AAB7227F2C88FD664B9
C:\WINDOWS\system32\Drivers\Parport.sys 8FD0BDBEA875D06CCF6C945CA9ABAF75
C:\WINDOWS\system32\Drivers\PartMgr.sys BEB3BA25197665D82EC7065B724171C6
C:\WINDOWS\system32\Drivers\ParVdm.sys 9575C5630DB8FB804649A6959737154C
C:\WINDOWS\system32\PCANDIS5.SYS CEEF86CB35ABE95C40A88784F5B631AD
C:\WINDOWS\System32\DRIVERS\pci.sys 043410877BDA580C528F45165F7125BC
C:\WINDOWS\System32\DRIVERS\pciide.sys F4BFDE7209C14A07AAA61E4D6AE69EAC
C:\WINDOWS\System32\DRIVERS\pcmcia.sys F0406CBC60BDB0394A0E17FFB04CDD3D
C:\WINDOWS\System32\drivers\pfc.sys 444F122E68DB44C0589227781F3C8B3F
C:\WINDOWS\System32\DRIVERS\raspptp.sys EFEEC01B1D3CF84F16DDD24D9D9D8F99
C:\WINDOWS\System32\DRIVERS\psched.sys 09298EC810B07E5D582CB3A3F9255424
C:\WINDOWS\System32\DRIVERS\psi_mf.sys D24DFD16A1E2A76034DF5AA18125C35D
C:\WINDOWS\System32\DRIVERS\ptilink.sys 80D317BD1C3DBC5D4FE7B1678C60CADD
C:\WINDOWS\System32\DRIVERS\PxHelp20.sys E42E3433DBB4CFFE8FDD91EAB29AEA8E
C:\WINDOWS\System32\DRIVERS\rasacd.sys FE0D99D6F31E4FAD8159F690D68DED9C
C:\WINDOWS\System32\DRIVERS\rasl2tp.sys 11B4A627BC9614B885C4969BFA5FF8A6
C:\WINDOWS\System32\DRIVERS\raspppoe.sys 5BC962F2654137C9909C3D4603587DEE
C:\WINDOWS\System32\DRIVERS\raspti.sys FDBB1D60066FCFBB7452FD8F9829B242
C:\WINDOWS\System32\DRIVERS\rdbss.sys 7AD224AD1A1437FE28D89CF22B17780A
C:\WINDOWS\System32\DRIVERS\RDPCDD.sys 4912D5B403614CE99C28420F75353332
C:\WINDOWS\system32\Drivers\RDPWD.sys 43AF5212BD8FB5BA6EED9754358BD8F7
C:\WINDOWS\System32\DRIVERS\redbook.sys D8EB2A7904DB6C916EB5361878DDCBAE
C:\WINDOWS\System32\Drivers\RootMdm.sys D8B0B4ADE32574B2D9C5CC34DC0DBBE7
C:\WINDOWS\System32\DRIVERS\secdrv.sys ==> MD5 is legit
C:\WINDOWS\System32\DRIVERS\serenum.sys 0F29512CCD6BEAD730039FB4BD2C85CE
C:\WINDOWS\system32\Drivers\Serial.sys 93D313C31F7AD9EA2B75F26075413C7C
C:\WINDOWS\system32\Drivers\Sfloppy.sys 8E6B8C671615D126FDC553D1E2DE5562
C:\WINDOWS\System32\DRIVERS\sisgrp.sys 8B3CDB4B1453B3A2E6E7300AABE50D0E
C:\WINDOWS\System32\DRIVERS\SISAGPX.sys 61CA562DEF09A782D26B3E7EDEC5369A
C:\WINDOWS\System32\DRIVERS\srvkp.sys 87A5176A3762B1341619CE63152C1DA9
C:\WINDOWS\System32\DRIVERS\sisnicxp.sys 47F39481BC8941E0D51601A85691448D
C:\WINDOWS\System32\DRIVERS\SLIP.sys 866D538EBE33709A5C9F5C62B73B7D14
C:\WINDOWS\System32\drivers\splitter.sys AB8B92451ECB048A4D1DE7C3FFCB4A9F
C:\WINDOWS\System32\Drivers\sptd.sys 7F1B7C4D446CD3F926AF45B8C48BD593
C:\WINDOWS\System32\DRIVERS\sr.sys 39626E6DC1FB39434EC40C42722B660A
C:\WINDOWS\System32\DRIVERS\srv.sys 47DDFC2F003F7F9F0592C6874962A2E7
C:\WINDOWS\System32\DRIVERS\ssmdrv.sys A36EE93698802CD899F98BFD553D8185
C:\WINDOWS\system32\Drivers\StarOpen.sys 306521935042FC0A6988D528643619B3
C:\WINDOWS\System32\DRIVERS\StreamIP.sys 77813007BA6265C4B6098187E6ED79D2
C:\WINDOWS\System32\DRIVERS\swenum.sys 3941D127AEF12E93ADDF6FE6EE027E0F
C:\WINDOWS\System32\drivers\swmidi.sys 8CE882BCC6CF8A62F2B2323D95CB3D01
C:\WINDOWS\System32\DRIVERS\SynTP.sys EB363DDFBE8B6D51003CCAB29D93D744
C:\WINDOWS\System32\drivers\sysaudio.sys 8B83F3ED0F1688B4958F77CD6D2BF290
C:\WINDOWS\System32\DRIVERS\tcpip.sys 9AEFA14BD6B182D61E3119FA5F436D3D
C:\WINDOWS\system32\Drivers\TDPIPE.sys 6471A66807F5E104E4885F5B67349397
C:\WINDOWS\system32\Drivers\TDTCP.sys C56B6D0402371CF3700EB322EF3AAF61
C:\WINDOWS\System32\DRIVERS\termdd.sys 88155247177638048422893737429D9E
C:\WINDOWS\system32\Drivers\UBHelper.sys E0C67BE430C6DE490D6CCAECFA071F9E
C:\WINDOWS\system32\Drivers\Udfs.sys 5787B80C2E3C5E2F56C2A233D91FA2C9
C:\WINDOWS\System32\DRIVERS\update.sys 402DDC88356B1BAC0EE3DD1580C76A31
C:\WINDOWS\System32\Drivers\usbaapl.sys 6E421CCC57059B0186C6259CA3B6DFC9
C:\WINDOWS\System32\DRIVERS\usbccgp.sys 1B611611C28D2DF25BC057D79C6F13FC
C:\WINDOWS\System32\DRIVERS\usbehci.sys 4BAC8DF07F1D8434FC640E677A62204E
C:\WINDOWS\System32\DRIVERS\usbhub.sys 1AB3CDDE553B6E064D2E754EFE20285C
C:\WINDOWS\System32\DRIVERS\usbohci.sys 0DAECCE65366EA32B162F85F07C6753B
C:\WINDOWS\System32\DRIVERS\usbprint.sys A717C8721046828520C9EDF31288FC00
C:\WINDOWS\System32\DRIVERS\usbscan.sys F8EDE2B6928970DCE3D5614C27D9E7F6
C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS A32426D9B14A089EAA1D922E0C5801A9
C:\WINDOWS\System32\DRIVERS\VComm.sys 9EBEE4A060C5364A31AEAA04EAC2AF1E
C:\WINDOWS\System32\Drivers\VcommMgr.sys EF0D45ED806B0C9AE9756BFEECB077ED
C:\WINDOWS\System32\drivers\vga.sys 0D3A8FAFCEACD8B7625CD549757A7DF1
C:\WINDOWS\system32\Drivers\VolSnap.sys 46DE1126684369BACE4849E4FC8C43CA
C:\WINDOWS\System32\DRIVERS\wanarp.sys E20B95BAEDB550F32DD489265C1DA1F6
C:\WINDOWS\System32\Drivers\wdf01000.sys D918617B46457B9AC28027722E30F647
C:\WINDOWS\System32\drivers\wdmaud.sys 6768ACF64B18196494413695F0C3A00F
C:\WINDOWS\System32\drivers\ws2ifsl.sys 6ABE6E225ADB5A751622A9CC3BC19CE8
C:\WINDOWS\System32\DRIVERS\WSTCODEC.SYS C98B39829C2BBD34E454150633C62C78
C:\WINDOWS\System32\DRIVERS\WudfPf.sys F15FEAFFFBB3644CCC80C5DA584E6311
C:\WINDOWS\System32\DRIVERS\wudfrd.sys 28B524262BCE6DE1F7EF9F510BA3985B
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-03-28 10:53 - 2014-03-28 10:55 - 00000000 ____D () C:\FRST
2014-03-27 14:08 - 2014-03-27 14:08 - 00000686 _____ () C:\Documents and Settings\All Users\Bureau\CCleaner.lnk
2014-03-26 09:51 - 2014-03-26 09:51 - 00000060 _____ () C:\WINDOWS\setupact.log
2014-03-26 09:51 - 2014-03-26 09:51 - 00000000 _____ () C:\WINDOWS\setuperr.log
2014-03-26 09:19 - 2014-03-26 09:19 - 00004081 _____ () C:\WINDOWS\setupapi.log
2014-03-26 09:07 - 2014-03-26 09:08 - 00000968 ____H () C:\WINDOWS\EPMBatch.ept
2014-03-23 10:02 - 2014-03-28 09:56 - 00000000 ____D () C:\Program Files\ZHPDiag
2014-03-23 10:02 - 2014-03-28 09:50 - 00000000 ____D () C:\Documents and Settings\user\Application Data\ZHP
2014-03-23 10:02 - 2014-03-28 09:49 - 00001632 _____ () C:\Documents and Settings\user\Bureau\ZHPFix.lnk
2014-03-23 10:02 - 2014-03-28 09:49 - 00001527 _____ () C:\Documents and Settings\user\Bureau\ZHPDiag.lnk
2014-03-23 10:02 - 2014-03-28 09:49 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Démarrer\Programmes\ZHP
2014-03-23 09:52 - 2014-03-23 09:54 - 00000298 _____ () C:\DelFix.txt
2014-03-22 13:34 - 2014-03-27 12:31 - 00000000 ____D () C:\Program Files\FileHippo.com
2014-03-18 12:01 - 2014-03-18 12:01 - 00001026 _____ () C:\Documents and Settings\All Users\Bureau\EaseUS Partition Master 9.3.0.lnk
2014-03-18 12:01 - 2014-03-18 12:01 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Démarrer\Programmes\EaseUS Partition Master 9.3.0
2014-03-18 12:00 - 2014-03-18 12:00 - 00000000 ____D () C:\Program Files\EaseUS
2014-03-18 12:00 - 2013-10-09 15:24 - 02499656 _____ () C:\WINDOWS\system32\BootMan.exe
2014-03-18 12:00 - 2013-03-07 09:49 - 00087112 _____ () C:\WINDOWS\system32\setupempdrv03.exe
2014-03-18 12:00 - 2013-03-07 09:49 - 00019840 _____ () C:\WINDOWS\system32\EuEpmGdi.dll
2014-03-18 12:00 - 2013-03-07 09:49 - 00013896 _____ () C:\WINDOWS\system32\epmntdrv.sys
2014-03-18 12:00 - 2013-03-07 09:49 - 00009160 _____ () C:\WINDOWS\system32\EuGdiDrv.sys
2014-03-18 11:42 - 2014-03-18 11:42 - 00000710 _____ () C:\Documents and Settings\user\Bureau\WinDirStat.lnk
2014-03-18 11:42 - 2014-03-18 11:42 - 00000000 ____D () C:\Program Files\WinDirStat
2014-03-18 11:42 - 2014-03-18 11:42 - 00000000 ____D () C:\Documents and Settings\user\Menu Démarrer\Programmes\WinDirStat
2014-03-12 23:56 - 2014-03-12 23:56 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2930275$
2014-03-12 23:56 - 2014-03-12 23:56 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2929961$
2014-03-12 09:17 - 2014-03-27 18:10 - 00000214 _____ () C:\WINDOWS\Tasks\Notification de fin de service de Microsoft Windows XP -mensuellement.job
2014-03-09 16:25 - 2014-03-09 16:25 - 00000000 ____D () C:\Program Files\Fichiers communs\Skype
2014-03-09 16:21 - 2014-03-09 16:21 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2934207$
2014-03-09 14:19 - 2014-02-27 00:28 - 00013312 ____N (Microsoft Corporation) C:\WINDOWS\system32\xp_eos.exe
2014-03-09 14:19 - 2014-02-27 00:28 - 00013312 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\xp_eos.exe
==================== One Month Modified Files and Folders =======
2014-03-28 10:55 - 2014-03-28 10:53 - 00000000 ____D () C:\FRST
2014-03-28 10:15 - 2014-01-03 18:41 - 01258342 _____ () C:\WINDOWS\WindowsUpdate.log
2014-03-28 10:09 - 2014-01-03 18:41 - 00000159 _____ () C:\WINDOWS\wiadebug.log
2014-03-28 10:08 - 2014-01-03 18:41 - 00000050 _____ () C:\WINDOWS\wiaservc.log
2014-03-28 10:08 - 2007-03-01 14:12 - 00000000 ____D () C:\WINDOWS\Microsoft.NET
2014-03-28 10:07 - 2011-03-18 17:21 - 00834596 _____ () C:\WINDOWS\system32\oodbs.lor
2014-03-28 09:56 - 2014-03-23 10:02 - 00000000 ____D () C:\Program Files\ZHPDiag
2014-03-28 09:50 - 2014-03-23 10:02 - 00000000 ____D () C:\Documents and Settings\user\Application Data\ZHP
2014-03-28 09:49 - 2014-03-23 10:02 - 00001632 _____ () C:\Documents and Settings\user\Bureau\ZHPFix.lnk
2014-03-28 09:49 - 2014-03-23 10:02 - 00001527 _____ () C:\Documents and Settings\user\Bureau\ZHPDiag.lnk
2014-03-28 09:49 - 2014-03-23 10:02 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Démarrer\Programmes\ZHP
2014-03-28 09:49 - 2005-08-31 21:36 - 00000000 ____D () C:\Documents and Settings\user\Bureau
2014-03-28 09:40 - 2005-08-31 21:36 - 00000284 ___SH () C:\Documents and Settings\user\ntuser.ini
2014-03-28 09:38 - 2005-03-07 20:16 - 00000000 ___RD () C:\Documents and Settings\All Users\Menu Démarrer
2014-03-28 09:31 - 2007-07-05 08:43 - 00000000 ____D () C:\Program Files\Windows Live
2014-03-28 09:30 - 2012-09-06 16:42 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Windows Live
2014-03-28 09:20 - 2005-03-07 20:16 - 00000000 ___HD () C:\Documents and Settings\All Users\Modèles
2014-03-28 09:04 - 2005-03-07 20:16 - 00000000 ___RD () C:\Documents and Settings\All Users\Menu Démarrer\Programmes
2014-03-28 09:02 - 2005-08-31 21:36 - 00000000 ___RD () C:\Documents and Settings\user\Menu Démarrer\Programmes
2014-03-27 19:06 - 2011-02-23 17:33 - 00002559 _____ () C:\Documents and Settings\user\Bureau\Microsoft Word.lnk
2014-03-27 18:24 - 1980-01-01 00:00 - 00000730 _____ () C:\WINDOWS\win.ini
2014-03-27 18:24 - 1980-01-01 00:00 - 00000227 _____ () C:\WINDOWS\system.ini
2014-03-27 18:24 - 1980-01-01 00:00 - 00000216 ___SH () C:\boot.ini
2014-03-27 18:10 - 2014-03-12 09:17 - 00000214 _____ () C:\WINDOWS\Tasks\Notification de fin de service de Microsoft Windows XP -mensuellement.job
2014-03-27 18:10 - 2013-11-17 13:20 - 00000376 _____ () C:\WINDOWS\Tasks\Wise Turbo Checker.job
2014-03-27 18:10 - 2013-02-15 21:04 - 00000284 _____ () C:\WINDOWS\Tasks\AppleSoftwareUpdate.job
2014-03-27 18:09 - 2007-11-03 22:15 - 00000000 ____D () C:\WINDOWS\pss
2014-03-27 18:09 - 2005-03-07 20:16 - 00000000 ___RD () C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
2014-03-27 14:08 - 2014-03-27 14:08 - 00000686 _____ () C:\Documents and Settings\All Users\Bureau\CCleaner.lnk
2014-03-27 14:08 - 2013-10-09 18:17 - 00000000 ____D () C:\Program Files\CCleaner
2014-03-27 14:08 - 2005-03-07 20:16 - 00000000 ____D () C:\Documents and Settings\All Users\Bureau
2014-03-27 12:31 - 2014-03-22 13:34 - 00000000 ____D () C:\Program Files\FileHippo.com
2014-03-27 12:20 - 1980-01-01 00:00 - 00001158 _____ () C:\WINDOWS\system32\wpa.dbl
2014-03-26 09:51 - 2014-03-26 09:51 - 00000060 _____ () C:\WINDOWS\setupact.log
2014-03-26 09:51 - 2014-03-26 09:51 - 00000000 _____ () C:\WINDOWS\setuperr.log
2014-03-26 09:19 - 2014-03-26 09:19 - 00004081 _____ () C:\WINDOWS\setupapi.log
2014-03-26 09:08 - 2014-03-26 09:07 - 00000968 ____H () C:\WINDOWS\EPMBatch.ept
2014-03-26 08:38 - 2011-03-01 06:04 - 00000000 ____D () C:\Documents and Settings\user\Menu Démarrer\Programmes\WinRAR
2014-03-26 08:38 - 2011-03-01 06:04 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Démarrer\Programmes\WinRAR
2014-03-26 08:38 - 2008-12-31 14:50 - 00000000 ____D () C:\Program Files\WinRAR
2014-03-23 09:54 - 2014-03-23 09:52 - 00000298 _____ () C:\DelFix.txt
2014-03-20 16:16 - 2008-10-14 12:32 - 00000000 ___HD () C:\WINDOWS\$NtServicePackUninstall$
2014-03-18 20:47 - 2013-08-14 18:05 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-03-18 20:42 - 2006-01-19 18:53 - 87350280 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-03-18 12:01 - 2014-03-18 12:01 - 00001026 _____ () C:\Documents and Settings\All Users\Bureau\EaseUS Partition Master 9.3.0.lnk
2014-03-18 12:01 - 2014-03-18 12:01 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Démarrer\Programmes\EaseUS Partition Master 9.3.0
2014-03-18 12:00 - 2014-03-18 12:00 - 00000000 ____D () C:\Program Files\EaseUS
2014-03-18 11:42 - 2014-03-18 11:42 - 00000710 _____ () C:\Documents and Settings\user\Bureau\WinDirStat.lnk
2014-03-18 11:42 - 2014-03-18 11:42 - 00000000 ____D () C:\Program Files\WinDirStat
2014-03-18 11:42 - 2014-03-18 11:42 - 00000000 ____D () C:\Documents and Settings\user\Menu Démarrer\Programmes\WinDirStat
2014-03-17 20:04 - 2006-09-15 09:41 - 00000000 ____D () C:\Program Files\Google
2014-03-17 19:52 - 2007-03-29 11:27 - 00000000 ____D () C:\Documents and Settings\user\Local Settings\Application Data\Google
2014-03-15 23:08 - 2005-03-07 20:17 - 00000000 ____D () C:\Program Files\Fichiers communs
2014-03-15 22:52 - 2005-03-07 20:17 - 00677028 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-03-15 22:04 - 2012-04-23 17:28 - 00001002 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-03-15 22:03 - 2012-04-23 17:28 - 00692616 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2014-03-15 22:03 - 2011-05-13 18:56 - 00071048 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2014-03-14 00:48 - 2007-08-19 17:16 - 00000000 ____D () C:\Documents and Settings\user\Application Data\vlc
2014-03-13 10:08 - 2014-01-03 18:39 - 00340240 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-03-13 10:08 - 2009-10-02 10:33 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-03-12 23:57 - 2011-03-11 18:45 - 00000000 ____D () C:\WINDOWS\ie8updates
2014-03-12 23:56 - 2014-03-12 23:56 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2930275$
2014-03-12 23:56 - 2014-03-12 23:56 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2929961$
2014-03-12 23:54 - 2013-03-14 18:54 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Microsoft Silverlight
2014-03-09 16:25 - 2014-03-09 16:25 - 00000000 ____D () C:\Program Files\Fichiers communs\Skype
2014-03-09 16:25 - 2013-02-17 22:12 - 00000000 ___RD () C:\Program Files\Skype
2014-03-09 16:24 - 2010-06-10 20:38 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Skype
2014-03-09 16:21 - 2014-03-09 16:21 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2934207$
2014-02-27 00:28 - 2014-03-09 14:19 - 00013312 ____N (Microsoft Corporation) C:\WINDOWS\system32\xp_eos.exe
2014-02-27 00:28 - 2014-03-09 14:19 - 00013312 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\xp_eos.exe
Some content of TEMP:
====================
C:\Documents and Settings\user\Local Settings\Temp\avgnt.exe
==================== Bamital & volsnap Check =================
C:\WINDOWS\explorer.exe => MD5 is legit
C:\WINDOWS\system32\winlogon.exe
[1980-01-01 00:00] - [2008-04-14 04:34] - 0512000 ____A (Microsoft Corporation) dd73d6b9f6b4cb630cf35b438b540174
C:\WINDOWS\system32\svchost.exe => MD5 is legit
C:\WINDOWS\system32\services.exe => MD5 is legit
C:\WINDOWS\system32\User32.dll
[1980-01-01 00:00] - [2008-04-14 04:33] - 0579584 ____A (Microsoft Corporation) e853f84d3ce2faa2a802e33cf89ac023
C:\WINDOWS\system32\userinit.exe => MD5 is legit
C:\WINDOWS\system32\rpcss.dll
[1980-01-01 00:00] - [2009-02-09 11:53] - 0401408 ____A (Microsoft Corporation) 0203b1aad358f206cb0a3c1f93cce17a
ATTENTION ======> If the system is having audio adware rpcss.dll is patched. Google the MD5, if the MD5 is unique the file is infected.
C:\WINDOWS\system32\Drivers\volsnap.sys => MD5 is legit
==================== End Of Log ============================