antier
Participant
Nombre d'articles : 19

Bonjour,

tu trouveras ci dessous le rapport FRST
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 20-12-2013 02
Ran by Proprietaire (administrator) on ER710 on 21-12-2013 13:06:31
Running from C:Documents and SettingsProprietaireLocal SettingsTemporary Internet FilesContent.IE55MLFS8IW
Microsoft Windows XP Professionnel Service Pack 3 (X86) OS Language: French Standard
Internet Explorer Version 8
Boot Mode: Normal

==================== Processes (Whitelisted) ===================

(ATI Technologies Inc.) C:WINDOWSsystem32ati2evxx.exe
(ATI Technologies Inc.) C:WINDOWSsystem32ati2evxx.exe
(Lavasoft AB) C:Program FilesLavasoftAd-Aware 2007aawservice.exe
(Sun Microsystems, Inc.) C:Program FilesJavajre6binjqs.exe
(O2Micro International) C:Program FilesO2Micro Oz128 Drivero2flash.exe
() C:Program FilesCyberLinkShared FilesRichVideo.exe
(Wajam) C:Program FilesWajamUpdaterWajamUpdaterV3.exe
(Yahoo! Inc.) C:Program FilesYahoo!SoftwareUpdateYahooAUService.exe
(Microsoft Corporation) C:WINDOWSsystem32wscntfy.exe
(Microsoft Corporation) C:WINDOWSsystem32WgaTray.exe
(Google Inc.) C:Program FilesGoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe
(Microsoft Corporation) C:Program FilesInternet Exploreriexplore.exe
(Microsoft Corporation) C:Program FilesInternet Exploreriexplore.exe
(Microsoft Corporation) C:Program FilesInternet Exploreriexplore.exe
(Farbar) C:Documents and SettingsProprietaireLocal SettingsTemporary Internet FilesContent.IE55MLFS8IWFRST[1].exe

==================== Registry (Whitelisted) ==================

WinlogonNotifyAtiExtEvent: C:Windowssystem32Ati2evxx.dll (ATI Technologies Inc.)
HKCU…Run: [swg] – C:Program FilesGoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe [39408 2008-12-18] (Google Inc.)
HKCU…Run: [PC Speed Maximizer] – C:Program FilesPC Speed MaximizerSPMLauncher.exe [135792 2013-10-30] (Smart PC Solutions)
HKCU…Run: [RDReminder] – C:Program FilesRegClean ProRegCleanPro.exe -rem
HKUDefault User…RunOnce: [NeroHomeFirstStart] – C:Program FilesFichiers communsAheadLibNMFirstStart.exe [ 2007-06-27] (Nero AG)
HKUMathilde…Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] – C:Program FilesFichiers communsAheadLibNMBgMonitor.exe [ 2007-06-27] (Nero AG)
AppInit_DLLs: [ ] ()
Startup: C:Documents and SettingsProprietaireMenu DémarrerProgrammesDémarrageMyPC Backup.lnk
ShortcutTarget: MyPC Backup.lnk -> C:Program FilesMyPC BackupMyPC Backup.exe (No File)
BootExecute: autocheck autochk * lsdelete

==================== Internet (Whitelisted) ====================

HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://start.mysearchdial.com/?f=1&a=irmsd1202aw&cd=2XzuyEtN2Y1L1QzutDtDtCzy0D0B0E0C0ByCyEyB0Ezz0D0CtN0D0Tzu0SyBtCyCtN1L2XzutBtFtBtFtCyEtFtCtAyBzytN1L1CzutCyD1B1P1R&cr=1299207369&ir= » onclick= »window.open(this.href);return false;
HKCUSoftwareMicrosoftInternet ExplorerMain,Search Bar = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch » onclick= »window.open(this.href);return false;
HKCUSoftwareMicrosoftInternet ExplorerMain,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch » onclick= »window.open(this.href);return false;
HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page Redirect Cache = http://fr.msn.com/?ocid=iehp » onclick= »window.open(this.href);return false;
HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page Redirect Cache AcceptLangs = fr
HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page Redirect Cache_TIMESTAMP = 0x3420F57A34F5CE01
HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = http://start.mysearchdial.com/?f=1&a=irmsd1202aw&cd=2XzuyEtN2Y1L1QzutDtDtCzy0D0B0E0C0ByCyEyB0Ezz0D0CtN0D0Tzu0SyBtCyCtN1L2XzutBtFtBtFtCyEtFtCtAyBzytN1L1CzutCyD1B1P1R&cr=1299207369&ir= » onclick= »window.open(this.href);return false;
SearchScopes: HKLM – {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://start.mysearchdial.com/results.php?f=4&q= » onclick= »window.open(this.href);return false;{searchTerms}&a=irmsd1202aw&cd=2XzuyEtN2Y1L1QzutDtDtCzy0D0B0E0C0ByCyEyB0Ezz0D0CtN0D0Tzu0SyBtCyCtN1L2XzutBtFtBtFtCyEtFtCtAyBzytN1L1CzutCyD1B1P1R&cr=1299207369&ir=
SearchScopes: HKLM – {77AA745B-F4F8-45DA-9B14-61D2D95054C8} URL = http://start.mysearchdial.com/results.php?f=4&q= » onclick= »window.open(this.href);return false;{searchTerms}&a=irmsd1103aw&cd=2XzuyEtN2Y1L1QzutDtDtCzy0D0B0E0C0ByCyEyB0Ezz0D0CtN0D0Tzu0CyBtDtCtN1L2XzutBtFtBtFtCyEtFtCtAyBzytN1L1CzutCyD1B1P1R&cr=2137186086&ir=
SearchScopes: HKCU – DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.fr/search?q= » onclick= »window.open(this.href);return false;{searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7GGLL_fr
SearchScopes: HKCU – {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://search.live.com/results.aspx?FORM=IEFM1&q= » onclick= »window.open(this.href);return false;{searchTerms}
SearchScopes: HKCU – {24090bba-633b-4aac-bf56-d98cf087d3c8} URL = http://www.iadah.com/?search&q= » onclick= »window.open(this.href);return false;{searchTerms}
SearchScopes: HKCU – {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.fr/search?q= » onclick= »window.open(this.href);return false;{searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7GGLL_fr
SearchScopes: HKCU – {77AA745B-F4F8-45DA-9B14-61D2D95054C8} URL = http://www.google.fr/search?q= » onclick= »window.open(this.href);return false;{searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7GGLL_fr
SearchScopes: HKCU – {9B6103C1-F818-48a8-9683-314055BE6075} URL = http://mystart.hiyo.com/?search= » onclick= »window.open(this.href);return false;{searchTerms}&loc=ie_search
SearchScopes: HKCU – {A540D69B-1CD5-44FA-9B2A-DFEA5EBD97F1} URL = http://www.ustart.org/?q= » onclick= »window.open(this.href);return false;{searchTerms}&client=pub-5027823875814942&cof=GALT%3A%23008000%3BGL%3A1%3BDIV%3A%23336699%3BVLC%3A663399%3BAH%3Acenter%3BBGC%3AFFFFFF%3BLBGC%3A336699%3BALC%3A0000FF%3BLC%3A0000FF%3BT%3A000000%3BGFNT%3A0000FF%3BGIMP%3A0000FF%3BFORID%3A11
SearchScopes: HKCU – {DECA3892-BA8F-44b8-A993-A466AD694AE4} URL = http://fr.search.yahoo.com/search?p= » onclick= »window.open(this.href);return false;{searchTerms}&fr=chr-tyc8
BHO: Windows Live Family Safety Browser Helper Class – {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} – C:Program FilesWindows LiveFamily Safetyfssbho.dll (Microsoft Corporation)
BHO: No Name – {5C255C8A-E604-49b4-9D64-90988571CECB} – No File
BHO: Programme d’aide de l’Assistant de connexion Windows Live – {9030D464-4C02-4ABF-8ECC-5164760863C6} – C:Program FilesFichiers communsMicrosoft SharedWindows LiveWindowsLiveLogin.dll (Microsoft Corporation)
BHO: Wajam – {A7A6995D-6EE1-4FD1-A258-49395D5BF99C} – C:Program FilesWajamIEpriam_bho.dll (Wajam)
BHO: Google Toolbar Helper – {AA58ED58-01DD-4d91-8333-CF10577473F7} – C:Program FilesGoogleGoogle ToolbarGoogleToolbar_32.dll (Google Inc.)
BHO: Google Toolbar Notifier BHO – {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} – C:Program FilesGoogleGoogleToolbarNotifier5.7.9012.1008swg.dll (Google Inc.)
BHO: GamesBarBHO Class – {CB0D163C-E9F4-4236-9496-0597E24B23A5} – C:Program FilesGamesBaroberontb.dll No File
BHO: Java(tm) Plug-In 2 SSV Helper – {DBC80044-A445-435b-BC74-9C25C1C588A9} – C:Program FilesJavajre6binjp2ssv.dll (Sun Microsystems, Inc.)
BHO: Windows Live Toolbar Helper – {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} – C:Program FilesWindows LiveToolbarwltcore.dll (Microsoft Corporation)
BHO: JQSIEStartDetectorImpl Class – {E7E6F031-17CE-4C07-BC86-EABFE594F69C} – C:Program FilesJavajre6libdeployjqsiejqs_plugin.dll (Sun Microsystems, Inc.)
BHO: mysearchdial Helper Object – {EF5625A3-37AB-4BDB-9875-2A3D91CD0DFD} – C:Program FilesMysearchdial1.8.21.0bhmysearchdial.dll (Ironsource Israel (2011) LTD)
BHO: SingleInstance Class – {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} – C:Program FilesYahoo!CompanionInstallscpn2YTSingleInstance.dll (Yahoo! Inc)
Toolbar: HKLM – &Windows Live Toolbar – {21FA44EF-376D-4D53-9B0F-8A89D3229068} – C:Program FilesWindows LiveToolbarwltcore.dll (Microsoft Corporation)
Toolbar: HKLM – Kiwee Toolbar – {1c99b848-84cb-4ce4-8cd8-ed5719484d9f} – C:WINDOWSsystem32mscoree.dll (Microsoft Corporation)
Toolbar: HKLM – Google Toolbar – {2318C2B1-4965-11d4-9B18-009027A5CD4F} – C:Program FilesGoogleGoogle ToolbarGoogleToolbar_32.dll (Google Inc.)
Toolbar: HKLM – mysearchdial Toolbar – {3004627E-F8E9-4E8B-909D-316753CBA923} – C:Program FilesMysearchdial1.8.21.0mysearchdialTlbr.dll (Ironsource Israel (2011) LTD)
Toolbar: HKCU – &Adresse – {01E04581-4EEE-11D0-BFE9-00AA005B4383} – C:WINDOWSsystem32browseui.dll (Microsoft Corporation)
Toolbar: HKCU – &Liens – {0E5CBF21-D15F-11D0-8301-00AA005B4383} – C:WINDOWSsystem32shell32.dll (Microsoft Corporation)
Toolbar: HKCU – No Name – {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} – No File
Toolbar: HKCU – Google Toolbar – {2318C2B1-4965-11D4-9B18-009027A5CD4F} – C:Program FilesGoogleGoogle ToolbarGoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU – &Windows Live Toolbar – {21FA44EF-376D-4D53-9B0F-8A89D3229068} – C:Program FilesWindows LiveToolbarwltcore.dll (Microsoft Corporation)
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab » onclick= »window.open(this.href);return false;
DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab » onclick= »window.open(this.href);return false;
DPF: {1ABA5FAC-1417-422B-BA82-45C35E2C908B} http://kitchenplanner.ikea.com/fr/Core/Player/2020PlayerAX_IKEA_Win32.cab » onclick= »window.open(this.href);return false;
DPF: {1C11B948-582A-433F-A98D-A8C4D5CC64F2} http://kitchenplanner.ikea.com/fr/Core/Player/2020PlayerAX_Win32.cab » onclick= »window.open(this.href);return false;
DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} C:Program FilesYahoo!CommonYinsthelper.dll
DPF: {4B54A9DE-EF1C-4EBE-A328-7C28EA3B433A} http://quickscan.bitdefender.com/qsax/qsax.cab » onclick= »window.open(this.href);return false;
DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} http://messenger.zone.msn.com/binary/SolitaireShowdown.cab56986.cab » onclick= »window.open(this.href);return false;
DPF: {5D6F45B3-9043-443D-A792-115447494D24} http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab » onclick= »window.open(this.href);return false;
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab » onclick= »window.open(this.href);return false;
DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab » onclick= »window.open(this.href);return false;
DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab » onclick= »window.open(this.href);return false;
DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab » onclick= »window.open(this.href);return false;
DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab » onclick= »window.open(this.href);return false;
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab » onclick= »window.open(this.href);return false;
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab » onclick= »window.open(this.href);return false;
Handler: httpx00000001 – {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} – C:Program FilesFichiers communsSystemOle DBmsdaipp.dll (Microsoft Corporation)
Handler: httpoledb – {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} – C:Program FilesFichiers communsSystemOle DBmsdaipp.dll (Microsoft Corporation)
Handler: httpsx00000001 – {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} – C:Program FilesFichiers communsSystemOle DBmsdaipp.dll (Microsoft Corporation)
Handler: httpsoledb – {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} – C:Program FilesFichiers communsSystemOle DBmsdaipp.dll (Microsoft Corporation)
Handler: ippx00000001 – {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} – C:Program FilesFichiers communsSystemOle DBmsdaipp.dll (Microsoft Corporation)
Handler: livecall – {828030A1-22C1-4009-854F-8E305202313F} – C:Program FilesWindows LiveMessengermsgrapp.14.0.8117.0416.dll (Microsoft Corporation)
Handler: msdaippx00000001 – {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} – C:Program FilesFichiers communsSystemOle DBmsdaipp.dll (Microsoft Corporation)
Handler: msdaippoledb – {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} – C:Program FilesFichiers communsSystemOle DBmsdaipp.dll (Microsoft Corporation)
Handler: msnim – {828030A1-22C1-4009-854F-8E305202313F} – C:Program FilesWindows LiveMessengermsgrapp.14.0.8117.0416.dll (Microsoft Corporation)
Handler: skype4com – {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} – C:Program FilesFichiers communsSkypeSkype4COM.dll (Skype Technologies)
TcpipParameters: [DhcpNameServer] 212.27.40.241 212.27.40.240

========================== Services (Whitelisted) =================

R2 aawservice; C:Program FilesLavasoftAd-Aware 2007aawservice.exe [587096 2007-12-22] (Lavasoft AB)
S3 Boonty Games; C:Program FilesFichiers communsBOONTY SharedServiceBoonty.exe [69120 2008-09-01] (BOONTY)
S3 NMIndexingService; C:Program FilesFichiers communsAheadLibNMIndexingService.exe [279848 2007-06-27] (Nero AG)
R2 o2flash; C:Program FilesO2Micro Oz128 Drivero2flash.exe [65536 2007-02-12] (O2Micro International)
R2 RichVideo; C:Program FilesCyberLinkShared FilesRichVideo.exe [272024 2006-12-19] ()
R2 WajamUpdaterV3; C:Program FilesWajamUpdaterWajamUpdaterV3.exe [114176 2013-11-11] (Wajam)
S2 AGCoreService; « C:Program FilesAGIcore4.2.0.10755AGCoreService.exe » [x]
R2 JavaQuickStarterService; « C:Program FilesJavajre6binjqs.exe » -service -config « C:Program FilesJavajre6libdeployjqsjqs.conf »

==================== Drivers (Whitelisted) ====================

R1 AmdK8; C:WindowsSystem32DRIVERSAmdK8.sys [43520 2006-06-18] (Advanced Micro Devices)
R3 AR5211; C:WindowsSystem32DRIVERSar5211.sys [546976 2007-05-02] (Atheros Communications, Inc.)
S3 CCDECODE; C:WindowsSystem32DRIVERSCCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
R2 fssfltr; C:WindowsSystem32DRIVERSfssfltr_tdi.sys [54752 2009-08-05] (Microsoft Corporation)
S3 NdisIP; C:WindowsSystem32DRIVERSNdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
S3 PALLADIA; C:WindowsSystem32DRIVERSusbiad.sys [31579 2005-06-13] (Centillium Communications, Inc.)
S3 PCASp50; C:WindowsSystem32DriversPCASp50.sys [20096 2005-11-19] (Printing Communications Assoc., Inc. (PCAUSA))
R3 RTHDMIAzAudService; C:WindowsSystem32driversRtHDMI.sys [3624128 2007-02-05] (Realtek Semiconductor Corp.)
S3 SONYPVU1; C:WindowsSystem32DRIVERSSONYPVU1.SYS [7552 2001-08-17] (Sony Corporation)
S4 IntelIde; No ImagePath
U5 ScsiPort; C:Windowssystem32driversscsiport.sys [96384 2008-04-13] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

==================== One Month Created Files and Folders ========

2013-12-21 13:06 – 2013-12-21 13:06 – 00000000 ____D C:FRST
2013-12-20 13:41 – 2013-12-20 13:41 – 00001458 _____ C:WINDOWSDtcInstall.log
2013-12-20 13:28 – 2013-12-20 13:28 – 02192957 _____ (Farbar) C:Documents and SettingsProprietaireMes documentsFRST64.exe
2013-12-16 20:42 – 2013-12-16 20:42 – 00006903 _____ C:WINDOWSiis6.log
2013-12-16 20:42 – 2013-12-16 20:42 – 00006790 _____ C:WINDOWSFaxSetup.log
2013-12-16 20:42 – 2013-12-16 20:42 – 00005816 _____ C:WINDOWSocgen.log
2013-12-16 20:42 – 2013-12-16 20:42 – 00004591 _____ C:WINDOWStsoc.log
2013-12-16 20:42 – 2013-12-16 20:42 – 00002478 _____ C:WINDOWScomsetup.log
2013-12-16 20:42 – 2013-12-16 20:42 – 00001943 _____ C:WINDOWSimsins.log
2013-12-16 20:42 – 2013-12-16 20:42 – 00001912 _____ C:WINDOWSmsmqinst.log
2013-12-16 20:42 – 2013-12-16 20:42 – 00001788 _____ C:WINDOWSntdtcsetup.log
2013-12-16 20:42 – 2013-12-16 20:42 – 00001592 _____ C:WINDOWSnetfxocm.log
2013-12-16 20:42 – 2013-12-16 20:42 – 00000719 _____ C:WINDOWSMedCtrOC.log
2013-12-16 20:42 – 2013-12-16 20:42 – 00000479 _____ C:WINDOWSmsgsocm.log
2013-12-16 20:42 – 2013-12-16 20:42 – 00000469 _____ C:WINDOWSocmsn.log
2013-12-16 20:42 – 2013-12-16 20:42 – 00000311 _____ C:WINDOWStabletoc.log
2013-12-16 20:38 – 2013-12-16 20:46 – 00000000 ____D C:Program FilesMyPC Backup
2013-12-16 20:38 – 2013-12-16 20:38 – 00000762 _____ C:Documents and SettingsProprietaireBureauMyPC Backup.lnk
2013-12-16 20:38 – 2013-12-16 20:38 – 00000000 ____D C:Documents and SettingsProprietaireMenu DémarrerProgrammesMyPC Backup
2013-12-16 20:38 – 2013-12-16 20:38 – 00000000 ____D C:Documents and SettingsProprietaireApplication Datamysearchdial
2013-12-16 20:34 – 2013-12-16 20:34 – 00000000 ____D C:Program FilesMysearchdial
2013-12-16 20:34 – 2013-12-16 20:34 – 00000000 ____D C:Documents and SettingsProprietaireApplication DataSystweak
2013-12-16 20:34 – 2013-11-22 15:42 – 00018776 _____ (Systweak Inc., (http://www.systweak.com)) C:WINDOWSsystem32roboot.exe
2013-12-16 20:32 – 2013-12-16 20:32 – 00000000 ____D C:Program FilesWajam
2013-12-16 20:32 – 2013-12-16 20:32 – 00000000 ____D C:Documents and SettingsProprietaireMenu DémarrerProgrammesWajam
2013-12-13 12:39 – 2013-12-16 20:44 – 00000000 ____D C:Documents and SettingsAdministrateur
2013-12-11 19:48 – 2013-12-11 19:54 – 00000184 ___SH C:Documents and SettingsMathildentuser.ini
2013-12-11 19:48 – 2013-12-11 19:54 – 00000000 ____D C:Documents and SettingsMathilde
2013-12-11 19:48 – 2013-12-11 19:49 – 00000000 ____D C:Documents and SettingsMathildeApplication DataGoogle
2013-12-11 19:48 – 2013-12-11 19:48 – 00000803 _____ C:Documents and SettingsMathildeMenu DémarrerProgrammesInternet Explorer.lnk
2013-12-11 19:48 – 2013-12-11 19:48 – 00000788 _____ C:Documents and SettingsMathildeMenu DémarrerProgrammesWindows Media Player.lnk
2013-12-11 19:48 – 2013-12-11 19:48 – 00000738 _____ C:Documents and SettingsMathildeMenu DémarrerProgrammesOutlook Express.lnk
2013-12-11 19:48 – 2013-12-11 19:48 – 00000643 _____ C:WINDOWSwmsetup.log
2013-12-11 19:48 – 2013-12-11 19:48 – 00000000 __SHD C:Documents and SettingsMathildePrivacIE
2013-12-11 19:48 – 2013-12-11 19:48 – 00000000 __SHD C:Documents and SettingsMathildeIETldCache
2013-12-11 19:48 – 2013-12-11 19:48 – 00000000 ___RD C:Documents and SettingsMathildeMes documentsMes images
2013-12-11 19:48 – 2013-12-11 19:48 – 00000000 ___RD C:Documents and SettingsMathildeMes documentsMa musique
2013-12-11 19:48 – 2013-12-11 19:48 – 00000000 ___RD C:Documents and SettingsMathildeMenu DémarrerProgrammesAccessoires
2013-12-11 19:48 – 2013-12-11 19:48 – 00000000 ___RD C:Documents and SettingsMathildeMenu DémarrerProgrammes
2013-12-11 19:48 – 2013-12-11 19:48 – 00000000 ___RD C:Documents and SettingsMathildeFavoris
2013-12-11 19:48 – 2013-12-11 19:48 – 00000000 ____D C:Documents and SettingsMathildeApplication DataAVAST Software
2013-12-11 19:48 – 2013-12-11 19:48 – 00000000 ____D C:Documents and SettingsMathildeApplication DataAdobe
2013-12-11 19:48 – 2007-12-20 23:24 – 00000000 ___RD C:Documents and SettingsMathildeMenu DémarrerProgrammesDémarrage
2013-12-11 19:48 – 2007-12-20 23:24 – 00000000 ___RD C:Documents and SettingsMathildeMenu Démarrer
2013-12-11 19:48 – 2007-12-20 23:24 – 00000000 ___HD C:Documents and SettingsMathildeVoisinage réseau
2013-12-11 19:48 – 2007-12-20 23:24 – 00000000 ___HD C:Documents and SettingsMathildeVoisinage d’impression
2013-12-11 19:48 – 2007-12-20 23:24 – 00000000 ____D C:Documents and SettingsMathildeBureau
2013-12-11 19:48 – 2007-12-20 22:37 – 00001599 _____ C:Documents and SettingsMathildeMenu DémarrerProgrammesAssistance à distance.lnk
2013-12-11 19:48 – 2007-12-20 22:33 – 00000000 ___HD C:Documents and SettingsMathildeModèles
2013-12-11 19:30 – 2013-12-11 19:30 – 00000000 ____D C:Documents and SettingsProprietaireMes documentsPC Speed Maximizer
2013-12-11 19:29 – 2013-12-11 19:29 – 00000792 _____ C:Documents and SettingsProprietaireBureauPC Speed Maximizer.lnk
2013-12-11 19:29 – 2013-12-11 19:29 – 00000000 ____D C:Program FilesPC Speed Maximizer
2013-12-11 19:29 – 2013-12-11 19:29 – 00000000 ____D C:Documents and SettingsProprietaireApplication DataPC Speed Maximizer
2013-12-11 19:29 – 2013-12-11 19:29 – 00000000 ____D C:Documents and SettingsAll UsersMenu DémarrerProgrammesPC Speed Maximizer
2013-12-10 18:49 – 2013-12-15 16:20 – 00000000 ____D C:Documents and SettingsAll UsersMenu DémarrerProgrammesZHP
2013-12-10 18:49 – 2013-12-11 19:35 – 00001628 _____ C:Documents and SettingsProprietaireBureauZHPFix.lnk
2013-12-10 18:49 – 2013-12-11 19:35 – 00001523 _____ C:Documents and SettingsProprietaireBureauZHPDiag.lnk
2013-12-10 18:48 – 2013-12-20 13:39 – 00000000 ____D C:Program FilesZHPDiag
2013-12-10 18:48 – 2013-12-10 18:48 – 00000000 ____D C:Documents and SettingsProprietaireApplication DataZHP
2013-12-10 18:26 – 2013-12-10 18:26 – 00001098 _____ C:WINDOWSsetupapi.log
2013-12-10 13:47 – 2013-12-11 13:38 – 00000000 ____D C:AdwCleaner
2013-12-10 00:27 – 2013-12-10 00:27 – 00000060 _____ C:WINDOWSsetupact.log
2013-12-10 00:27 – 2013-12-10 00:27 – 00000000 _____ C:WINDOWSsetuperr.log
2013-12-10 00:07 – 2013-12-10 00:07 – 00000000 ___RD C:Program FilesSkype
2013-12-10 00:07 – 2013-12-10 00:07 – 00000000 ____D C:Program FilesFichiers communsSkype
2013-12-10 00:07 – 2013-12-10 00:07 – 00000000 ____D C:Documents and SettingsAll UsersMenu DémarrerProgrammesSkype
2013-12-10 00:06 – 2013-12-10 00:06 – 00000000 ____D C:Program FilesPC Cleaner
2013-12-09 22:59 – 2013-12-20 23:24 – 00016028 _____ C:WINDOWSWindowsUpdate.log
2013-12-09 20:23 – 2013-12-09 20:23 – 00000000 ____D C:Documents and SettingsProprietaireApplication DataMalwarebytes
2013-12-09 20:22 – 2013-12-10 00:09 – 00000000 ____D C:Program FilesMalwarebytes’ Anti-Malware
2013-12-09 20:22 – 2013-12-09 20:22 – 00000000 ____D C:Documents and SettingsAll UsersApplication DataMalwarebytes
2013-12-09 19:17 – 2013-12-10 13:48 – 00000000 ____D C:Program FilesUniblue
2013-12-09 19:16 – 2013-12-10 13:49 – 00000000 ____D C:Documents and SettingsProprietaireApplication DataUniblue
2013-12-07 12:00 – 2013-12-10 00:07 – 00000000 ____D C:Program FilesSkype(2)
2013-11-28 13:14 – 2013-11-28 13:14 – 00000000 ____D C:Documents and SettingsProprietaireApplication DataQuickScan

==================== One Month Modified Files and Folders =======

2013-12-21 13:06 – 2013-12-21 13:06 – 00000000 ____D C:FRST
2013-12-21 13:06 – 2007-12-20 22:50 – 00000000 ____D C:Tmp
2013-12-21 12:59 – 2013-11-16 20:24 – 00000364 ____H C:WINDOWSTasksavast! Emergency Update.job
2013-12-21 12:59 – 2010-01-30 12:53 – 00001052 _____ C:WINDOWSTasksGoogleUpdateTaskMachineCore.job
2013-12-21 12:59 – 2004-08-05 13:00 – 00002206 _____ C:WINDOWSsystem32wpa.dbl
2013-12-21 12:50 – 2012-04-17 18:02 – 00001002 _____ C:WINDOWSTasksAdobe Flash Player Updater.job
2013-12-21 12:43 – 2007-12-20 23:27 – 00000159 _____ C:WINDOWSwiadebug.log
2013-12-21 12:43 – 2007-12-20 23:27 – 00000050 _____ C:WINDOWSwiaservc.log
2013-12-21 12:43 – 2007-12-20 22:40 – 00000006 ____H C:WINDOWSTasksSA.DAT
2013-12-20 23:24 – 2013-12-09 22:59 – 00016028 _____ C:WINDOWSWindowsUpdate.log
2013-12-20 23:24 – 2007-12-20 22:46 – 00000184 ___SH C:Documents and SettingsProprietairentuser.ini
2013-12-20 23:24 – 2007-12-20 22:40 – 00032480 _____ C:WINDOWSSchedLgU.Txt
2013-12-20 22:41 – 2013-10-17 18:25 – 00001056 _____ C:WINDOWSTasksGoogleUpdateTaskMachineUA.job
2013-12-20 21:38 – 2010-11-19 13:17 – 00000446 ____H C:WINDOWSTasksUser_Feed_Synchronization-{DCE39E7B-8FBF-46CC-BADB-C052C11D5C30}.job
2013-12-20 13:41 – 2013-12-20 13:41 – 00001458 _____ C:WINDOWSDtcInstall.log
2013-12-20 13:39 – 2013-12-10 18:48 – 00000000 ____D C:Program FilesZHPDiag
2013-12-20 13:28 – 2013-12-20 13:28 – 02192957 _____ (Farbar) C:Documents and SettingsProprietaireMes documentsFRST64.exe
2013-12-16 21:00 – 2013-11-16 20:18 – 00000000 ____D C:Documents and SettingsAll UsersApplication DataAVAST Software
2013-12-16 20:48 – 2007-12-20 22:46 – 00000000 ____D C:Documents and SettingsProprietaireBureau
2013-12-16 20:46 – 2013-12-16 20:38 – 00000000 ____D C:Program FilesMyPC Backup
2013-12-16 20:46 – 2007-12-20 23:24 – 00000000 ___RD C:Documents and SettingsAll UsersMenu DémarrerProgrammes
2013-12-16 20:46 – 2007-12-20 23:24 – 00000000 ____D C:Documents and SettingsAll UsersBureau
2013-12-16 20:44 – 2013-12-13 12:39 – 00000000 ____D C:Documents and SettingsAdministrateur
2013-12-16 20:42 – 2013-12-16 20:42 – 00006903 _____ C:WINDOWSiis6.log
2013-12-16 20:42 – 2013-12-16 20:42 – 00006790 _____ C:WINDOWSFaxSetup.log
2013-12-16 20:42 – 2013-12-16 20:42 – 00005816 _____ C:WINDOWSocgen.log
2013-12-16 20:42 – 2013-12-16 20:42 – 00004591 _____ C:WINDOWStsoc.log
2013-12-16 20:42 – 2013-12-16 20:42 – 00002478 _____ C:WINDOWScomsetup.log
2013-12-16 20:42 – 2013-12-16 20:42 – 00001943 _____ C:WINDOWSimsins.log
2013-12-16 20:42 – 2013-12-16 20:42 – 00001912 _____ C:WINDOWSmsmqinst.log
2013-12-16 20:42 – 2013-12-16 20:42 – 00001788 _____ C:WINDOWSntdtcsetup.log
2013-12-16 20:42 – 2013-12-16 20:42 – 00001592 _____ C:WINDOWSnetfxocm.log
2013-12-16 20:42 – 2013-12-16 20:42 – 00000719 _____ C:WINDOWSMedCtrOC.log
2013-12-16 20:42 – 2013-12-16 20:42 – 00000479 _____ C:WINDOWSmsgsocm.log
2013-12-16 20:42 – 2013-12-16 20:42 – 00000469 _____ C:WINDOWSocmsn.log
2013-12-16 20:42 – 2013-12-16 20:42 – 00000311 _____ C:WINDOWStabletoc.log
2013-12-16 20:38 – 2013-12-16 20:38 – 00000762 _____ C:Documents and SettingsProprietaireBureauMyPC Backup.lnk
2013-12-16 20:38 – 2013-12-16 20:38 – 00000000 ____D C:Documents and SettingsProprietaireMenu DémarrerProgrammesMyPC Backup
2013-12-16 20:38 – 2013-12-16 20:38 – 00000000 ____D C:Documents and SettingsProprietaireApplication Datamysearchdial
2013-12-16 20:38 – 2007-12-20 22:46 – 00000000 ___RD C:Documents and SettingsProprietaireMenu DémarrerProgrammesDémarrage
2013-12-16 20:38 – 2007-12-20 22:46 – 00000000 ___RD C:Documents and SettingsProprietaireMenu DémarrerProgrammes
2013-12-16 20:34 – 2013-12-16 20:34 – 00000000 ____D C:Program FilesMysearchdial
2013-12-16 20:34 – 2013-12-16 20:34 – 00000000 ____D C:Documents and SettingsProprietaireApplication DataSystweak
2013-12-16 20:32 – 2013-12-16 20:32 – 00000000 ____D C:Program FilesWajam
2013-12-16 20:32 – 2013-12-16 20:32 – 00000000 ____D C:Documents and SettingsProprietaireMenu DémarrerProgrammesWajam
2013-12-15 16:20 – 2013-12-10 18:49 – 00000000 ____D C:Documents and SettingsAll UsersMenu DémarrerProgrammesZHP
2013-12-15 16:03 – 2007-12-20 22:46 – 00000000 ___RD C:Documents and SettingsProprietaireFavoris
2013-12-11 19:54 – 2013-12-11 19:48 – 00000184 ___SH C:Documents and SettingsMathildentuser.ini
2013-12-11 19:54 – 2013-12-11 19:48 – 00000000 ____D C:Documents and SettingsMathilde
2013-12-11 19:51 – 2012-04-17 18:02 – 00692616 _____ (Adobe Systems Incorporated) C:WINDOWSsystem32FlashPlayerApp.exe
2013-12-11 19:51 – 2011-12-18 13:04 – 00071048 _____ (Adobe Systems Incorporated) C:WINDOWSsystem32FlashPlayerCPLApp.cpl
2013-12-11 19:49 – 2013-12-11 19:48 – 00000000 ____D C:Documents and SettingsMathildeApplication DataGoogle
2013-12-11 19:48 – 2013-12-11 19:48 – 00000803 _____ C:Documents and SettingsMathildeMenu DémarrerProgrammesInternet Explorer.lnk
2013-12-11 19:48 – 2013-12-11 19:48 – 00000788 _____ C:Documents and SettingsMathildeMenu DémarrerProgrammesWindows Media Player.lnk
2013-12-11 19:48 – 2013-12-11 19:48 – 00000738 _____ C:Documents and SettingsMathildeMenu DémarrerProgrammesOutlook Express.lnk
2013-12-11 19:48 – 2013-12-11 19:48 – 00000643 _____ C:WINDOWSwmsetup.log
2013-12-11 19:48 – 2013-12-11 19:48 – 00000000 __SHD C:Documents and SettingsMathildePrivacIE
2013-12-11 19:48 – 2013-12-11 19:48 – 00000000 __SHD C:Documents and SettingsMathildeIETldCache
2013-12-11 19:48 – 2013-12-11 19:48 – 00000000 ___RD C:Documents and SettingsMathildeMes documentsMes images
2013-12-11 19:48 – 2013-12-11 19:48 – 00000000 ___RD C:Documents and SettingsMathildeMes documentsMa musique
2013-12-11 19:48 – 2013-12-11 19:48 – 00000000 ___RD C:Documents and SettingsMathildeMenu DémarrerProgrammesAccessoires
2013-12-11 19:48 – 2013-12-11 19:48 – 00000000 ___RD C:Documents and SettingsMathildeMenu DémarrerProgrammes
2013-12-11 19:48 – 2013-12-11 19:48 – 00000000 ___RD C:Documents and SettingsMathildeFavoris
2013-12-11 19:48 – 2013-12-11 19:48 – 00000000 ____D C:Documents and SettingsMathildeApplication DataAVAST Software
2013-12-11 19:48 – 2013-12-11 19:48 – 00000000 ____D C:Documents and SettingsMathildeApplication DataAdobe
2013-12-11 19:35 – 2013-12-10 18:49 – 00001628 _____ C:Documents and SettingsProprietaireBureauZHPFix.lnk
2013-12-11 19:35 – 2013-12-10 18:49 – 00001523 _____ C:Documents and SettingsProprietaireBureauZHPDiag.lnk
2013-12-11 19:30 – 2013-12-11 19:30 – 00000000 ____D C:Documents and SettingsProprietaireMes documentsPC Speed Maximizer
2013-12-11 19:29 – 2013-12-11 19:29 – 00000792 _____ C:Documents and SettingsProprietaireBureauPC Speed Maximizer.lnk
2013-12-11 19:29 – 2013-12-11 19:29 – 00000000 ____D C:Program FilesPC Speed Maximizer
2013-12-11 19:29 – 2013-12-11 19:29 – 00000000 ____D C:Documents and SettingsProprietaireApplication DataPC Speed Maximizer
2013-12-11 19:29 – 2013-12-11 19:29 – 00000000 ____D C:Documents and SettingsAll UsersMenu DémarrerProgrammesPC Speed Maximizer
2013-12-11 13:43 – 2012-04-06 18:27 – 00001811 _____ C:Documents and SettingsAll UsersBureauGoogle Chrome.lnk
2013-12-11 13:38 – 2013-12-10 13:47 – 00000000 ____D C:AdwCleaner
2013-12-10 18:48 – 2013-12-10 18:48 – 00000000 ____D C:Documents and SettingsProprietaireApplication DataZHP
2013-12-10 18:26 – 2013-12-10 18:26 – 00001098 _____ C:WINDOWSsetupapi.log
2013-12-10 13:49 – 2013-12-09 19:16 – 00000000 ____D C:Documents and SettingsProprietaireApplication DataUniblue
2013-12-10 13:48 – 2013-12-09 19:17 – 00000000 ____D C:Program FilesUniblue
2013-12-10 13:48 – 2010-04-14 11:48 – 00000000 ____D C:Program FilesDevNet
2013-12-10 13:48 – 2007-12-20 23:24 – 00000000 ____D C:Program FilesFichiers communs
2013-12-10 00:27 – 2013-12-10 00:27 – 00000060 _____ C:WINDOWSsetupact.log
2013-12-10 00:27 – 2013-12-10 00:27 – 00000000 _____ C:WINDOWSsetuperr.log
2013-12-10 00:09 – 2013-12-09 20:22 – 00000000 ____D C:Program FilesMalwarebytes’ Anti-Malware
2013-12-10 00:08 – 2007-12-20 22:46 – 00000000 ____D C:Documents and SettingsProprietaire
2013-12-10 00:08 – 2007-12-20 22:40 – 00000000 __SHD C:Documents and SettingsNetworkService
2013-12-10 00:08 – 2007-12-20 22:40 – 00000000 __SHD C:Documents and SettingsLocalService
2013-12-10 00:08 – 2007-12-20 22:33 – 00000000 ____D C:WINDOWSRegistration
2013-12-10 00:07 – 2013-12-10 00:07 – 00000000 ___RD C:Program FilesSkype
2013-12-10 00:07 – 2013-12-10 00:07 – 00000000 ____D C:Program FilesFichiers communsSkype
2013-12-10 00:07 – 2013-12-10 00:07 – 00000000 ____D C:Documents and SettingsAll UsersMenu DémarrerProgrammesSkype
2013-12-10 00:07 – 2013-12-07 12:00 – 00000000 ____D C:Program FilesSkype(2)
2013-12-10 00:06 – 2013-12-10 00:06 – 00000000 ____D C:Program FilesPC Cleaner
2013-12-09 23:46 – 2007-12-20 22:34 – 00000000 ____D C:WINDOWSsystem32Restore
2013-12-09 23:08 – 2013-04-13 14:17 – 00000000 ____D C:Documents and SettingsProprietaireApplication DataSkype
2013-12-09 23:08 – 2013-04-13 14:17 – 00000000 ____D C:Documents and SettingsAll UsersApplication DataSkype
2013-12-09 23:00 – 2012-03-17 09:58 – 00000000 __HDC C:WINDOWS$NtUninstallKB2641653$
2013-12-09 20:33 – 2007-12-20 23:27 – 00000000 _____ C:WINDOWSSti_Trace.log
2013-12-09 20:23 – 2013-12-09 20:23 – 00000000 ____D C:Documents and SettingsProprietaireApplication DataMalwarebytes
2013-12-09 20:22 – 2013-12-09 20:22 – 00000000 ____D C:Documents and SettingsAll UsersApplication DataMalwarebytes
2013-12-03 12:17 – 2004-08-05 13:00 – 00000669 _____ C:WINDOWSwin.ini
2013-12-03 12:17 – 2004-08-05 13:00 – 00000227 _____ C:WINDOWSsystem.ini
2013-12-02 12:24 – 2007-12-20 23:22 – 00000224 __RSH C:boot.ini
2013-11-28 19:42 – 2008-12-19 19:58 – 00000000 ____D C:Documents and SettingsProprietaireTracing
2013-11-28 18:27 – 2008-12-26 17:21 – 00000000 ____D C:WINDOWSpss
2013-11-28 18:27 – 2007-12-22 18:31 – 00524288 _____ C:WINDOWSsystem32configACEEvent.evt
2013-11-28 18:23 – 2007-12-25 21:27 – 00000000 ____D C:Documents and SettingsProprietaireMenu DémarrerProgrammesCyberLink DVD Suite
2013-11-28 13:14 – 2013-11-28 13:14 – 00000000 ____D C:Documents and SettingsProprietaireApplication DataQuickScan
2013-11-25 13:38 – 2007-12-20 22:46 – 00000000 ___RD C:Documents and SettingsProprietaireMes documentsMes images
2013-11-24 21:30 – 2007-12-20 23:24 – 01130740 _____ C:WINDOWSsystem32PerfStringBackup.INI
2013-11-24 20:55 – 2007-12-22 20:52 – 00000000 __SHD C:Documents and SettingsProprietaireUserData
2013-11-22 15:42 – 2013-12-16 20:34 – 00018776 _____ (Systweak Inc., (http://www.systweak.com)) C:WINDOWSsystem32roboot.exe

==================== Bamital & volsnap Check =================

C:Windowsexplorer.exe => MD5 is legit
C:WindowsSystem32winlogon.exe
[2004-08-05 13:00] – [2008-04-14 03:34] – 0512000 ____A (Microsoft Corporation) dd73d6b9f6b4cb630cf35b438b540174

C:WindowsSystem32svchost.exe => MD5 is legit
C:WindowsSystem32services.exe => MD5 is legit
C:WindowsSystem32User32.dll
[2004-08-05 13:00] – [2008-04-14 03:33] – 0579584 ____A (Microsoft Corporation) e853f84d3ce2faa2a802e33cf89ac023

C:WindowsSystem32userinit.exe => MD5 is legit
C:WindowsSystem32Driversvolsnap.sys => MD5 is legit

==================== End Of Log ============================