Vous pensez être infecté, des pubs s'affichent quand vous naviguez sur internet ?
Perte de données, ralentissement système, virus USB ?
Désinfectez votre ordinateur gratuitement !
  • Avatar du membre
  • Avatar du membre
Avatar du membre
par Lyis
#203314
Merci. Pourquoi le programme a bloqué dessus ? Il aurait pas dà» voir qu'il y avait un truc pas net et le corriger ?
Avatar du membre
par Lyis
#203315
Pour conclure ce topic voici le résultat de l‚exécution de AdsFix:

¤¤¤¤¤¤¤¤¤¤ | AdsFix | g3n-h@ckm@n | 30.08.2014.4

¤¤¤¤¤ Vista | 7 | 8 | 8.1 - 32/64 bits ¤¤¤¤¤ - Start 17:00:21 - 30/08/2014

Mis à  jour le : 30/08/2014 | 16.25 par g3n-h@ckm@nâ„¢
Contact : http://www.sosvirus.net" onclick="window.open(this.href);return false;
Assistance : http://www.sosvirus.net/forum-virus-securite.html" onclick="window.open(this.href);return false;
Feedbacks : http://www.sosvirus.net/feedbacks-t75915.html" onclick="window.open(this.href);return false;
Boot: Normal boot
[Clémentine (Administrator)] - [CLà‰MENTINE-PC] - (France [040C])
SID = S-1-5-21-3484446370-238102683-3225934083-1001 || [436ce96d656e74696e65]
PC : Acer - VA50_HC_CR - Type1Sku0
Bios : Acer - 10/09/2012
Système : Windows 7 Home Premium (64 bits) HomePremium Service Pack 1
Mémoire RAM = Total (MB) : 8223 | Libre (MB) : 5572
Pagefile = Total (MB) : 16444 | Libre (MB) : 13850
Virtuelle = Total (MB) : 4194 | Libre (MB) : 4025

Impossible de sauvegarder le registre !!!
Restauration de fichiers ou dossiers supprimés par erreur : Cliquer sur Options & Restaurer Fichiers ou dossiers, Sélectionner un élément >> "Restaurer"

¤¤¤¤¤¤¤¤¤¤ | Mises à  jour Windows

Aucune mise à  jour détectée !!!

¤¤¤¤¤¤¤¤¤¤ | Navigateurs

IE : 9.0.8112.16563 (© Microsoft Corporation. Tous droits réservés.)
GC : 36.0.1985.143 (Copyright 2012 Google Inc. All rights reserved.)

¤¤¤¤¤¤¤¤¤¤ | Security (atcav : 0)

AM : Malwarebytes' Anti-Malware (1.0.0.532) []
FW :
WMI : OK
WU: Windows Update Service [Auto(2)] = Arrêté
AS: Windows Defender [Auto(2)] = Arrêté
FW: Windows FireWall Service [Auto(2)] = Arrêté

¤¤¤¤¤¤¤¤¤¤ | FlashPlayer

ActiveX : 14.0.0.176

¤¤¤¤¤¤¤¤¤¤ | Processus tués

2448 | [Owner : Système |Parent : 828] - (.Intel(R) Corporation - Intel(R) Capability Licensing Service Interface.) - (1.23.605.1) = C:\Program Files\Intel\iCLS Client\HeciServer.exe
4960 | [Owner : Système |Parent : 828] - (.Microsoft Corporation - Indexeur Microsoft Windows Search.) - (7.0.7601.17610) = C:\Windows\System32\SearchIndexer.exe
4008 | [Owner : Système |Parent : 828] - (.Microsoft Corp. - Microsoft® Windows Live ID Service.) - (7.250.4232.0) = C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
1368 | [Owner : Système |Parent : 828] - (.Intel Corporation - Local Manageability Service.) - (8.0.2.1410) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
6304 | [Owner : Clémentine |Parent : 336] - (.Microsoft Corporation - Gestionnaire des tà¢ches de Windows.) - (6.1.7601.17514) = C:\Windows\System32\taskmgr.exe
5220 | [Owner : Clémentine |Parent : 6304] - (.Microsoft Corporation - Explorateur Windows.) - (6.1.7601.17567) = C:\Windows\explorer.exe
3100 | [Owner : Clémentine |Parent : 1080] - (.Microsoft Corporation - Windows Update.) - (7.6.7600.320) = C:\Windows\System32\wuauclt.exe
3016 | [Owner : SERVICE Rà‰SEAU |Parent : 828] - (.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) - (12.0.7601.17514) = C:\Program Files\Windows Media Player\wmpnetwk.exe
6676 | [Owner : Système |Parent : 828] - (.Microsoft Corporation - Installateur Windows®.) - (5.0.7601.17514) = C:\Windows\System32\msiexec.exe
5588 | [Owner : Clémentine |Parent : 5220] - (.Google Inc. - Google Chrome.) - (36.0.1985.143) = C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2692 | [Owner : Clémentine |Parent : 5588] - (.Google Inc. - Google Chrome.) - (36.0.1985.143) = C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
4036 | [Owner : SERVICE Rà‰SEAU |Parent : 828] - (.Microsoft Corporation - Service de la plateforme de protection logicielle Microsoft.) - (6.1.7601.17514) = C:\Windows\System32\sppsvc.exe
6684 | [Owner : Système |Parent : 828] - (.Intel(R) Corporation - Intel(R) Capability Licensing Service Interface.) - (1.23.605.1) = C:\Program Files\Intel\iCLS Client\HeciServer.exe
6864 | [Owner : SERVICE Rà‰SEAU |Parent : 828] - (.Microsoft Corporation - Service de réception Windows Media Center.) - (6.1.7601.17514) = C:\Windows\ehome\ehrecvr.exe
3116 | [Owner : Clémentine |Parent : 336] - (.Microsoft Corporation - Explorateur Windows.) - (6.1.7601.17567) = C:\Windows\explorer.exe

¤¤¤¤¤¤¤¤¤¤ | Tasks


¤¤¤¤¤¤¤¤¤¤ | Services



¤¤¤¤¤¤¤¤¤¤ | Hosts

¤¤¤¤¤¤¤¤¤¤ | AdsFix | g3n-h@ckm@n | 30.08.2014.5

¤¤¤¤¤ Vista | 7 | 8 | 8.1 - 32/64 bits ¤¤¤¤¤ - Start 17:58:21 - 30/08/2014

Mis à  jour le : 30/08/2014 | 17.35 par g3n-h@ckm@nâ„¢
Contact : http://www.sosvirus.net" onclick="window.open(this.href);return false;
Assistance : http://www.sosvirus.net/forum-virus-securite.html" onclick="window.open(this.href);return false;
Feedbacks : http://www.sosvirus.net/feedbacks-t75915.html" onclick="window.open(this.href);return false;
Boot: Normal boot
[Clémentine (Administrator)] - [CLà‰MENTINE-PC] - (France [040C])
SID = S-1-5-21-3484446370-238102683-3225934083-1001 || [436ce96d656e74696e65]
PC : Acer - VA50_HC_CR - Type1Sku0
Bios : Acer - 10/09/2012
Système : Windows 7 Home Premium (64 bits) HomePremium Service Pack 1
Mémoire RAM = Total (MB) : 8223 | Libre (MB) : 6297
Pagefile = Total (MB) : 16444 | Libre (MB) : 14635
Virtuelle = Total (MB) : 4194 | Libre (MB) : 4025

Impossible de sauvegarder le registre !!!
Restauration de fichiers ou dossiers supprimés par erreur : Cliquer sur Options & Restaurer Fichiers ou dossiers, Sélectionner un élément >> "Restaurer"

¤¤¤¤¤¤¤¤¤¤ | Mises à  jour Windows

Aucune mise à  jour détectée !!!

¤¤¤¤¤¤¤¤¤¤ | Navigateurs

IE : 9.0.8112.16563 (© Microsoft Corporation. Tous droits réservés.)
GC : 36.0.1985.143 (Copyright 2012 Google Inc. All rights reserved.)

¤¤¤¤¤¤¤¤¤¤ | Security (atcav : 0)

AM : Malwarebytes' Anti-Malware (1.0.0.532) []
FW :
WMI : OK
WU: Windows Update Service [Auto(2)] = Arrêté
AS: Windows Defender [Auto(2)] = Arrêté
FW: Windows FireWall Service [Auto(2)] = Arrêté

¤¤¤¤¤¤¤¤¤¤ | FlashPlayer

ActiveX : 14.0.0.176

¤¤¤¤¤¤¤¤¤¤ | Processus tués

3076 | [Owner : Système |Parent : 828] - (.Intel(R) Corporation - Intel(R) Capability Licensing Service Interface.) - (1.23.605.1) = C:\Program Files\Intel\iCLS Client\HeciServer.exe
6460 | [Owner : Système |Parent : 828] - (.Microsoft Corporation - Indexeur Microsoft Windows Search.) - (7.0.7601.17610) = C:\Windows\System32\SearchIndexer.exe
3324 | [Owner : Système |Parent : 828] - (.Intel Corporation - Local Manageability Service.) - (8.0.2.1410) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
5752 | [Owner : Clémentine |Parent : 6616] - (.Microsoft Corporation - Explorateur Windows.) - (6.1.7601.17567) = C:\Windows\explorer.exe
3120 | [Owner : Clémentine |Parent : 1080] - (.Microsoft Corporation - Windows Update.) - (7.6.7600.320) = C:\Windows\System32\wuauclt.exe
1912 | [Owner : SERVICE Rà‰SEAU |Parent : 828] - (.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) - (12.0.7601.17514) = C:\Program Files\Windows Media Player\wmpnetwk.exe
3184 | [Owner : Clémentine |Parent : 1080] - (.Microsoft Corporation - Moteur du Planificateur de tà¢ches.) - (6.1.7601.17514) = C:\Windows\System32\taskeng.exe
5108 | [Owner : Système |Parent : 6460] - (.Microsoft Corporation - Microsoft Windows Search Protocol Host.) - (7.0.7601.17610) = C:\Windows\System32\SearchProtocolHost.exe
5888 | [Owner : Système |Parent : 828] - (.Intel(R) Corporation - Intel(R) Capability Licensing Service Interface.) - (1.23.605.1) = C:\Program Files\Intel\iCLS Client\HeciServer.exe

¤¤¤¤¤¤¤¤¤¤ | Tasks


¤¤¤¤¤¤¤¤¤¤ | Services



¤¤¤¤¤¤¤¤¤¤ | Hosts

Hosts : Ok

¤¤¤¤¤¤¤¤¤¤ | SafeBoot


¤¤¤¤¤¤¤¤¤¤ | Registre

Supprimé avec succès : HKLM64\SOFTWARE\Classes\Interface\{3856F531-CD1E-4B00-91C7-ED75EC8E7C18} : IOneTab
Supprimé avec succès : HKLM\SOFTWARE\Classes\Interface\{3856F531-CD1E-4B00-91C7-ED75EC8E7C18} : IOneTab
Supprimé avec succès : HKLM\SOFTWARE\Microsoft\Tracing\BuzzSearch_Setup_RASMANCS
Supprimé avec succès : HKLM\SOFTWARE\Microsoft\Tracing\LollipopInstaller_uni_RASMANCS
Supprimé avec succès : HKLM\SOFTWARE\Microsoft\Tracing\ReMarkit_up_RASMANCS
Supprimé avec succès : HKLM\SOFTWARE\Microsoft\Tracing\Surftastic_RASMANCS
Supprimé avec succès : HKLM\SOFTWARE\Microsoft\Tracing\YontooSetup-Silent-1778_RASMANCS
Supprimé avec succès : HKLM\SOFTWARE\Microsoft\Tracing\sweetim_0711-adf025c2_RASMANCS
Supprimé avec succès : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{98889811-442D-49DD-99D7-DC866BE87DBC} : BabylonToolbarTlbr.dll (String)
Supprimé avec succès : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{98889811-442D-49DD-99D7-DC866BE87DBC} (CLSID)
Supprimé avec succès : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{21111111-1111-1111-1111-110111991162} : Supreme Savings-bg.exe (String)
Supprimé avec succès : HKLM64\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} : http://start.funmoods.com/favicon.ico" onclick="window.open(this.href);return false; (String)
Supprimé avec succès : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} (CLSID)
Supprimé avec succès : HKU64\S-1-5-21-3484446370-238102683-3225934083-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} (CLSID)

¤¤¤¤¤¤¤¤¤¤ | Offsets


¤¤¤¤¤¤¤¤¤¤ | reparsepoint



¤¤¤¤¤¤¤¤¤¤ | Dossiers | Fichiers


¤¤¤¤¤¤¤¤¤¤ | .LNK


¤¤¤¤¤¤¤¤¤¤ | Ouverture extension inconnue


¤¤¤¤¤¤¤¤¤¤ | Proxy


¤¤¤¤¤¤¤¤¤¤ | Internet Explorer


¤¤¤¤¤¤¤¤¤¤ | Google Chrome

[Clémentine] Remis a zéro avec succès : SearchURL

[Clémentine | Default] : aohghmighlieiainnegkcijnfilokake = : Google & co - Google & co - https://clients2.google.com/service/update2/crx" onclick="window.open(this.href);return false;
[Clémentine | Default] : apdfllckaahabafndbhieahigkjlhalf = : Google & co - https://drive.google.com/?usp=chrome_app" onclick="window.open(this.href);return false; - Google & co - [http://docs.google.com/http://drive.goo ... oogle.com/] - http://clients2.google.com/service/update2/crx" onclick="window.open(this.href);return false;
[Clémentine | Default] : blpcfgokakmgnkcojhhkbfbldkacnbeo = : Google & co - http://www.youtube.com" onclick="window.open(this.href);return false; - http://www.youtube.com/?feature=ytca" onclick="window.open(this.href);return false; - Google & co - http://clients2.google.com/service/update2/crx" onclick="window.open(this.href);return false;
[Clémentine | Default] : cfhdojbkjhnklbpkdaibdccddilifddb = : __MSG_description_chrome__ - __MSG_name__ - https://clients2.google.com/service/update2/crx" onclick="window.open(this.href);return false;
[Clémentine | Default] : coobgpohoikkiipiblmjeljniedjpjpf = : Google & co - http://www.google.com/webhp?source=search_app" onclick="window.open(this.href);return false; - Google & co - [*://www.google.com/search*://www.google.com ... com/imgres] - http://clients2.google.com/service/update2/crx" onclick="window.open(this.href);return false;
[Clémentine | Default] : eeibjhjmddgcdbniedjoghdgbofbecad = : Add a Facebook Like button to every wikipedia page - Wiki Like - https://clients2.google.com/service/update2/crx" onclick="window.open(this.href);return false;
[Clémentine | Default] : gomekmidlodglbbmalcneegieacbdmki = : Avast Browser Security and Web Reputation Plugin. - avast! Online Security - https://clients2.google.com/service/update2/crx" onclick="window.open(this.href);return false;
[Clémentine | Default] : idhngdhcfkoamngbedgpaokgjbnpdiji = : Detects all recordable content on the browser - RealDownloader
[Clémentine | Default] : kigfdicgjnpjkhbnngdfgjfffmdaonfg = - __MSG_themeName__ - http://clients2.google.com/service/update2/crx" onclick="window.open(this.href);return false;
[Clémentine | Default] : lbbbhbjeecagnlfgggogfclkdjamoapf = : Now you can build with LEGO® bricks using Google Maps as your baseplate. Imagine. Explore. Build online in Chrome. - http://buildwithchrome.appspot.com/" onclick="window.open(this.href);return false; - Build with Chrome - [http://buildwithchrome.appspot.com/] - http://clients2.google.com/service/update2/crx" onclick="window.open(this.href);return false;
[Clémentine | Default] : nmmhkkegccagdldgiimedpiccmgmieda = : Google & co - Google & co - 203784468217.apps.googleusercontent.com - https://clients2.google.com/service/update2/crx" onclick="window.open(this.href);return false;
[Clémentine | Default] : odfhgnckgjjgbljlfikcbdbdnpapmobo = : vocaloid hatsune miku's song ranking - http://miku-music.com/" onclick="window.open(this.href);return false; - miku music - [http://miku-music.com/] - http://clients2.google.com/service/update2/crx" onclick="window.open(this.href);return false;
[Clémentine | Default] : pjkljhegncpnkpknbcohdijeoejaedia = : Google & co - https://mail.google.com/mail/ca" onclick="window.open(this.href);return false; - Google & co - [*://mail.google.com/mail/ca] - http://clients2.google.com/service/update2/crx" onclick="window.open(this.href);return false;

¤¤¤¤¤¤¤¤¤¤ | Chromium

Supprimé avec succès : [Clémentine | (Default)] : dcpfhaghaadpjpgocojgnlhjcieeooel = {background:{page:b.html}content_scripts:[{all_frames:falsejs:[c.js]matches:[http://*/*https://*/*]run_at:document_end}]description:icons:{16:icon16.png48:icon48.png128:icon128.png}manifest_version:2name:Re-markitpermissions:[cookiesstorageunlimitedStoragehttp://*/*https://*/*tabswebRequestwebRequestBlocking]version:1.155.0.0author:}

[Clémentine] : aohghmighlieiainnegkcijnfilokake = : Google & co - Google & co - http://clients2.google.com/service/update2/crx" onclick="window.open(this.href);return false;
[Clémentine] : apdfllckaahabafndbhieahigkjlhalf = : Google & co - https://drive.google.com/?usp=chrome_app" onclick="window.open(this.href);return false; - Google & co - [http://docs.google.com/http://drive.goo ... oogle.com/] - http://clients2.google.com/service/update2/crx" onclick="window.open(this.href);return false;
[Clémentine] : blpcfgokakmgnkcojhhkbfbldkacnbeo = : Google & co - http://www.youtube.com" onclick="window.open(this.href);return false; - http://www.youtube.com/?feature=ytca" onclick="window.open(this.href);return false; - Google & co - http://clients2.google.com/service/update2/crx" onclick="window.open(this.href);return false;
[Clémentine] : cfhdojbkjhnklbpkdaibdccddilifddb = : __MSG_description_chrome__ - __MSG_name__ - https://clients2.google.com/service/update2/crx" onclick="window.open(this.href);return false;
[Clémentine] : coobgpohoikkiipiblmjeljniedjpjpf = : Google & co - http://www.google.com/webhp?source=search_app" onclick="window.open(this.href);return false; - Google & co - [*://www.google.com/search*://www.google.com ... com/imgres] - http://clients2.google.com/service/update2/crx" onclick="window.open(this.href);return false;
[Clémentine] : eeibjhjmddgcdbniedjoghdgbofbecad = : Add a Facebook Like button to every wikipedia page - Wiki Like - https://clients2.google.com/service/update2/crx" onclick="window.open(this.href);return false;
[Clémentine] : idhngdhcfkoamngbedgpaokgjbnpdiji = : Detects all recordable content on the browser - RealDownloader
[Clémentine] : kigfdicgjnpjkhbnngdfgjfffmdaonfg = - __MSG_themeName__ - http://clients2.google.com/service/update2/crx" onclick="window.open(this.href);return false;
[Clémentine] : lbbbhbjeecagnlfgggogfclkdjamoapf = : Now you can build with LEGO\u00AE bricks using Google Maps as your baseplate. Imagine. Explore. Build online in Chrome. - http://buildwithchrome.appspot.com/" onclick="window.open(this.href);return false; - Build with Chrome - [http://buildwithchrome.appspot.com/] - http://clients2.google.com/service/update2/crx" onclick="window.open(this.href);return false;
[Clémentine] : nmmhkkegccagdldgiimedpiccmgmieda = : Google & co - Google & co - 203784468217.apps.googleusercontent.com - https://clients2.google.com/service/update2/crx" onclick="window.open(this.href);return false;
[Clémentine] : odfhgnckgjjgbljlfikcbdbdnpapmobo = : vocaloid hatsune miku's song ranking - http://miku-music.com/" onclick="window.open(this.href);return false; - miku music - [http://miku-music.com/] - http://clients2.google.com/service/update2/crx" onclick="window.open(this.href);return false;
[Clémentine] : pjkljhegncpnkpknbcohdijeoejaedia = : Google & co - https://mail.google.com/mail/ca" onclick="window.open(this.href);return false; - Google & co - [*://mail.google.com/mail/ca] - http://clients2.google.com/service/update2/crx" onclick="window.open(this.href);return false;

¤¤¤¤¤¤¤¤¤¤ | Comodo Dragon



¤¤¤¤¤¤¤¤¤¤ | Firefox



¤¤¤¤¤¤¤¤¤¤ | SeaMonkey



¤¤¤¤¤¤¤¤¤¤ | Pale moon



¤¤¤¤¤¤¤¤¤¤ | Opera



¤¤¤¤¤¤¤¤¤¤ | Spark



¤¤¤¤¤¤¤¤¤¤ | StartMenuInternet


¤¤¤¤¤¤¤¤¤¤ | AppCertDlls | AppInit_DLLs


¤¤¤¤¤¤¤¤¤¤ | Javascript


¤¤¤¤¤¤¤¤¤¤ | Firewall


¤¤¤¤¤¤¤¤¤¤ | ADS

¤¤¤¤¤¤¤¤¤¤ | Fichiers temporaires

[Administrateur] Fichiers temporaires Supprimés : 0 Ko
[All Users] Fichiers temporaires Supprimés : 0 Ko
[Clémentine] Fichiers temporaires Supprimés : 3287 Ko
[Cl‚mentine] Fichiers temporaires Supprimés : 0 Ko
[Cl?ntine] Fichiers temporaires Supprimés : 0 Ko
[Cl?mentine] Fichiers temporaires Supprimés : 0 Ko
[Default] Fichiers temporaires Supprimés : 0 Ko
[Default User] Fichiers temporaires Supprimés : 0 Ko
[hedev] Fichiers temporaires Supprimés : 0 Ko
[Public] Fichiers temporaires Supprimés : 0 Ko
[wangzhisong] Fichiers temporaires Supprimés : 0 Ko
[C:\Windows\Temp] Fichiers temporaires Supprimés : 6192 Ko
[C:\Temp] Fichiers temporaires Supprimés : 0 Ko


Autre rapport


¤¤¤¤¤¤¤¤¤¤ | Listing


¤¤¤¤¤¤¤¤¤¤ | C:\Program Files (x86)

[06/04/2013 15:13:18] - |D| - C:\Program Files (x86)\3DO
[26/03/2012 08:47:57] - |D| - C:\Program Files (x86)\Acer
[26/03/2012 08:43:01] - |D| - C:\Program Files (x86)\Acer Games
[26/03/2012 09:00:59] - |D| - C:\Program Files (x86)\Adobe
[31/05/2014 09:11:24] - |D| - C:\Program Files (x86)\AGEIA Technologies
[01/12/2013 15:17:04] - |D| - C:\Program Files (x86)\Assassins Creed III
[29/04/2012 02:52:33] - |D| - C:\Program Files (x86)\Atheros
[29/05/2014 17:00:36] - |D| - C:\Program Files (x86)\BFG
[29/04/2012 02:47:07] - |D| - C:\Program Files (x86)\Bluetooth Suite
[30/08/2012 12:06:56] - |D| - C:\Program Files (x86)\Canon
[16/11/2013 22:27:14] - |D| - C:\Program Files (x86)\Classic Menu for Office
[14/07/2009 05:20:08] - |D| - C:\Program Files (x86)\Common Files
[26/03/2012 09:08:48] - |D| - C:\Program Files (x86)\CyberLink
[27/08/2013 13:30:07] - |D| - C:\Program Files (x86)\DAEMON Tools Lite
[14/07/2009 06:54:24] - |ASH| - C:\Program Files (x86)\desktop.ini
[12/10/2012 17:00:27] - |D| - C:\Program Files (x86)\Dofus2
[01/09/2012 14:56:42] - |D| - C:\Program Files (x86)\DownloadManager
[27/08/2013 13:37:19] - |D| - C:\Program Files (x86)\EA Games
[26/03/2012 08:59:46] - |D| - C:\Program Files (x86)\EgisTec IPS
[26/03/2012 08:59:36] - |D| - C:\Program Files (x86)\EgisTec MyWinLocker
[26/03/2012 08:59:27] - |D| - C:\Program Files (x86)\EgisTec MyWinLockerSuite
[26/03/2012 09:00:06] - |D| - C:\Program Files (x86)\EgisTec Shredder
[30/08/2012 14:04:52] - |D| - C:\Program Files (x86)\Electronic Arts
[26/03/2012 08:46:10] - |D| - C:\Program Files (x86)\Evernote
[25/08/2014 12:48:14] - |D| - C:\Program Files (x86)\FTL
[30/08/2012 13:41:42] - |D| - C:\Program Files (x86)\Google
[26/03/2012 08:37:38] - |HD| - C:\Program Files (x86)\InstallShield Installation Information
[26/03/2012 08:37:38] - |D| - C:\Program Files (x86)\Intel
[14/07/2009 05:20:08] - |D| - C:\Program Files (x86)\Internet Explorer
[24/03/2014 19:04:52] - |D| - C:\Program Files (x86)\Katawa Shoujo
[24/07/2014 23:50:59] - |D| - C:\Program Files (x86)\LogMeIn Hamachi
[30/08/2014 11:19:30] - |D| - C:\Program Files (x86)\Malwarebytes Anti-Malware
[26/03/2012 08:46:24] - |D| - C:\Program Files (x86)\McAfee
[29/04/2012 02:55:24] - |D| - C:\Program Files (x86)\Microsoft
[02/12/2012 15:50:34] - |D| - C:\Program Files (x86)\Microsoft Application Virtualization Client
[21/10/2013 20:05:26] - |D| - C:\Program Files (x86)\Microsoft Chart Controls
[05/07/2014 11:59:38] - |D| - C:\Program Files (x86)\Microsoft Games
[29/04/2012 02:57:00] - |D| - C:\Program Files (x86)\Microsoft Office
[12/03/2013 22:05:12] - |D| - C:\Program Files (x86)\Microsoft Silverlight
[16/11/2013 23:16:05] - |D| - C:\Program Files (x86)\Microsoft SkyDrive
[26/03/2012 08:54:39] - |D| - C:\Program Files (x86)\Microsoft SQL Server Compact Edition
[30/08/2012 14:24:52] - |D| - C:\Program Files (x86)\Microsoft WSE
[28/11/2013 20:50:44] - |D| - C:\Program Files (x86)\Microsoft XNA
[31/08/2012 19:43:09] - |D| - C:\Program Files (x86)\Microsoft.NET
[18/09/2012 19:32:13] - |D| - C:\Program Files (x86)\Mozilla Firefox
[14/07/2009 07:32:38] - |D| - C:\Program Files (x86)\MSBuild
[16/11/2013 22:22:13] - |D| - C:\Program Files (x86)\MSECache
[26/03/2012 09:02:31] - |D| - C:\Program Files (x86)\NTI
[29/04/2012 02:38:34] - |D| - C:\Program Files (x86)\NVIDIA Corporation
[18/05/2014 08:38:32] - |D| - C:\Program Files (x86)\OpenOffice 4
[29/08/2014 15:23:37] - |D| - C:\Program Files (x86)\Origin
[03/09/2012 10:28:41] - |D| - C:\Program Files (x86)\Origin Games
[29/09/2013 02:00:32] - |D| - C:\Program Files (x86)\osu!
[04/05/2013 22:59:54] - |D| - C:\Program Files (x86)\Pando Networks
[10/04/2013 13:54:04] - |D| - C:\Program Files (x86)\Parallel Realities
[05/05/2013 14:25:09] - |D| - C:\Program Files (x86)\R.G. Games
[20/10/2013 11:33:43] - |D| - C:\Program Files (x86)\R.G. Mechanics
[12/04/2013 21:07:15] - |D| - C:\Program Files (x86)\Real
[12/04/2013 21:07:52] - |D| - C:\Program Files (x86)\RealNetworks
[29/04/2012 02:40:48] - |D| - C:\Program Files (x86)\Realtek
[14/07/2009 07:32:38] - |D| - C:\Program Files (x86)\Reference Assemblies
[12/05/2014 09:16:49] - |RD| - C:\Program Files (x86)\Skype
[17/08/2014 18:28:25] - |D| - C:\Program Files (x86)\Sony
[15/03/2014 23:38:30] - |D| - C:\Program Files (x86)\Southpark Stick of Truth
[26/12/2012 18:48:05] - |D| - C:\Program Files (x86)\Steam
[29/04/2012 02:40:48] - |HD| - C:\Program Files (x86)\Temp
[24/11/2013 08:43:02] - |D| - C:\Program Files (x86)\Ubisoft
[14/07/2009 06:57:06] - |HD| - C:\Program Files (x86)\Uninstall Information
[26/03/2012 08:42:52] - |D| - C:\Program Files (x86)\WildTangent Games
[14/07/2009 07:32:38] - |D| - C:\Program Files (x86)\Windows Defender
[26/03/2012 08:50:42] - |D| - C:\Program Files (x86)\Windows Live
[14/07/2009 05:20:08] - |D| - C:\Program Files (x86)\Windows Mail
[14/07/2009 07:32:38] - |D| - C:\Program Files (x86)\Windows Media Player
[14/07/2009 05:20:08] - |D| - C:\Program Files (x86)\Windows NT
[14/07/2009 07:32:38] - |D| - C:\Program Files (x86)\Windows Photo Viewer
[14/07/2009 07:32:38] - |D| - C:\Program Files (x86)\Windows Portable Devices
[14/07/2009 07:32:38] - |D| - C:\Program Files (x86)\Windows Sidebar
[07/09/2012 16:33:29] - |D| - C:\Program Files (x86)\WinRAR
[30/08/2014 12:04:03] - |D| - C:\Program Files (x86)\ZHPDiag

¤¤¤¤¤¤¤¤¤¤ | C:\Program Files

[30/08/2012 11:54:32] - |D| - C:\Program Files\Accessory Store
[26/03/2012 08:48:11] - |D| - C:\Program Files\Acer
[30/08/2012 13:40:43] - |D| - C:\Program Files\AVAST Software
[29/04/2012 02:41:51] - |D| - C:\Program Files\Broadcom
[30/08/2012 12:09:19] - |D| - C:\Program Files\Canon
[30/08/2012 12:07:39] - |HD| - C:\Program Files\CanonBJ
[04/01/2013 17:25:55] - |D| - C:\Program Files\CCleaner
[14/07/2009 05:20:08] - |D| - C:\Program Files\Common Files
[14/07/2009 06:54:24] - |ASH| - C:\Program Files\desktop.ini
[14/07/2009 07:32:38] - |D| - C:\Program Files\DVD Maker
[26/03/2012 08:59:36] - |D| - C:\Program Files\EgisTec IPS
[29/04/2012 02:45:54] - |D| - C:\Program Files\Elantech
[30/08/2012 11:53:37] - |SHD| - C:\Program Files\Fichiers communs
[30/08/2012 13:47:34] - |D| - C:\Program Files\Google
[29/04/2012 02:44:10] - |D| - C:\Program Files\Intel
[14/07/2009 05:20:08] - |D| - C:\Program Files\Internet Explorer
[08/04/2013 19:01:45] - |D| - C:\Program Files\Java
[16/11/2013 22:31:47] - |D| - C:\Program Files\Mega Bloc Notes
[14/07/2009 07:32:38] - |D| - C:\Program Files\Microsoft Games
[02/12/2012 15:50:35] - |D| - C:\Program Files\Microsoft Office
[16/11/2013 22:41:23] - |D| - C:\Program Files\Microsoft Office 15
[12/03/2013 22:05:12] - |D| - C:\Program Files\Microsoft Silverlight
[26/08/2013 11:23:52] - |D| - C:\Program Files\MotioninJoy
[14/07/2009 07:32:38] - |D| - C:\Program Files\MSBuild
[25/02/2013 17:00:02] - |D| - C:\Program Files\Nexus Mod Manager
[29/04/2012 02:38:12] - |D| - C:\Program Files\NVIDIA Corporation
[16/02/2014 15:03:20] - |D| - C:\Program Files\Portal 2
[30/08/2012 11:54:16] - |D| - C:\Program Files\Preload
[29/04/2012 02:40:55] - |D| - C:\Program Files\Realtek
[14/07/2009 07:32:38] - |D| - C:\Program Files\Reference Assemblies
[14/07/2009 07:09:26] - |HD| - C:\Program Files\Uninstall Information
[14/07/2009 07:32:38] - |D| - C:\Program Files\Windows Defender
[21/11/2010 09:17:02] - |D| - C:\Program Files\Windows Journal
[26/03/2012 08:49:38] - |D| - C:\Program Files\Windows Live
[14/07/2009 05:20:08] - |D| - C:\Program Files\Windows Mail
[14/07/2009 07:32:38] - |D| - C:\Program Files\Windows Media Player
[14/07/2009 05:20:08] - |D| - C:\Program Files\Windows NT
[14/07/2009 07:32:38] - |D| - C:\Program Files\Windows Photo Viewer
[14/07/2009 07:32:38] - |D| - C:\Program Files\Windows Portable Devices
[14/07/2009 07:32:38] - |D| - C:\Program Files\Windows Sidebar

¤¤¤¤¤¤¤¤¤¤ | C:\Program Files (x86)\Common Files

[06/04/2013 15:13:18] - |D| - C:\Program Files (x86)\Common Files\3DO Shared
[26/03/2012 09:00:59] - |D| - C:\Program Files (x86)\Common Files\Adobe
[08/05/2013 15:47:49] - |D| - C:\Program Files (x86)\Common Files\Adobe AIR
[29/04/2012 02:47:10] - |D| - C:\Program Files (x86)\Common Files\Atheros
[15/05/2013 21:04:11] - |D| - C:\Program Files (x86)\Common Files\BioWare
[02/12/2012 15:50:36] - |D| - C:\Program Files (x86)\Common Files\DESIGNER
[25/07/2014 14:22:46] - |HD| - C:\Program Files (x86)\Common Files\EAInstaller
[26/03/2012 08:59:46] - |D| - C:\Program Files (x86)\Common Files\EgisTec
[29/04/2012 02:40:46] - |D| - C:\Program Files (x86)\Common Files\InstallShield
[29/04/2012 02:32:55] - |D| - C:\Program Files (x86)\Common Files\Intel
[26/03/2012 08:44:47] - |D| - C:\Program Files (x86)\Common Files\Intel Corporation
[25/08/2014 01:37:05] - |D| - C:\Program Files (x86)\Common Files\Java
[29/04/2012 02:57:53] - |D| - C:\Program Files (x86)\Common Files\Macrovision Shared
[26/03/2012 08:46:25] - |D| - C:\Program Files (x86)\Common Files\mcafee
[14/07/2009 05:20:08] - |D| - C:\Program Files (x86)\Common Files\microsoft shared
[29/04/2012 02:44:00] - |D| - C:\Program Files (x86)\Common Files\postureAgent
[14/07/2009 05:20:08] - |D| - C:\Program Files (x86)\Common Files\Services
[12/05/2014 09:16:49] - |D| - C:\Program Files (x86)\Common Files\Skype
[14/07/2009 05:20:08] - |D| - C:\Program Files (x86)\Common Files\SpeechEngines
[26/12/2012 18:48:07] - |D| - C:\Program Files (x86)\Common Files\Steam
[18/05/2014 08:41:56] - |D| - C:\Program Files (x86)\Common Files\Symantec Shared
[14/07/2009 05:20:08] - |D| - C:\Program Files (x86)\Common Files\System
[26/03/2012 08:49:27] - |D| - C:\Program Files (x86)\Common Files\Windows Live
[21/10/2013 20:10:34] - |D| - C:\Program Files (x86)\Common Files\Wise Installation Wizard
[12/04/2013 21:07:44] - |D| - C:\Program Files (x86)\Common Files\xing shared

¤¤¤¤¤¤¤¤¤¤ | C:\Program Files\Common Files

[30/08/2012 12:10:58] - |D| - C:\Program Files\Common Files\CANON
[29/04/2012 02:32:57] - |D| - C:\Program Files\Common Files\Intel
[26/03/2012 08:46:25] - |D| - C:\Program Files\Common Files\mcafee
[26/03/2012 09:10:03] - |D| - C:\Program Files\Common Files\McAfeeFPDetect
[14/07/2009 05:20:08] - |D| - C:\Program Files\Common Files\Microsoft Shared
[14/07/2009 05:20:08] - |D| - C:\Program Files\Common Files\Services
[14/07/2009 05:20:08] - |D| - C:\Program Files\Common Files\SpeechEngines
[14/07/2009 05:20:08] - |D| - C:\Program Files\Common Files\System

¤¤¤¤¤¤¤¤¤¤ | C:\Users\Clémentine\AppData\Roaming

[16/03/2013 12:47:07] - |D| - C:\Users\Clémentine\AppData\Roaming\.minecraft
[16/03/2013 12:47:06] - |D| - C:\Users\Clémentine\AppData\Roaming\.minecraftsl
[20/10/2013 11:05:52] - |D| - C:\Users\Clémentine\AppData\Roaming\3909
[30/08/2012 12:21:58] - |D| - C:\Users\Clémentine\AppData\Roaming\Adobe
[12/10/2012 17:21:44] - |D| - C:\Users\Clémentine\AppData\Roaming\app
[30/08/2012 11:57:59] - |D| - C:\Users\Clémentine\AppData\Roaming\Atheros
[09/03/2014 15:54:20] - |D| - C:\Users\Clémentine\AppData\Roaming\AVAST Software
[02/10/2012 20:41:17] - |D| - C:\Users\Clémentine\AppData\Roaming\Canon
[04/01/2013 23:15:55] - |D| - C:\Users\Clémentine\AppData\Roaming\codeblocks
[09/02/2014 17:51:23] - |D| - C:\Users\Clémentine\AppData\Roaming\CyberLink
[12/10/2012 17:21:40] - |A| - C:\Users\Clémentine\AppData\Roaming\D2Info0
[27/08/2013 13:30:09] - |D| - C:\Users\Clémentine\AppData\Roaming\DAEMON Tools Lite
[12/10/2012 20:49:11] - |D| - C:\Users\Clémentine\AppData\Roaming\Dofus-2.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
[12/10/2012 17:21:40] - |D| - C:\Users\Clémentine\AppData\Roaming\Dofus.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
[12/10/2012 17:21:40] - |D| - C:\Users\Clémentine\AppData\Roaming\Dofus2
[12/10/2012 17:21:40] - |A| - C:\Users\Clémentine\AppData\Roaming\DofusAppId0_1
[12/10/2012 20:49:11] - |A| - C:\Users\Clémentine\AppData\Roaming\DofusAppId0_2
[16/03/2013 13:54:14] - |D| - C:\Users\Clémentine\AppData\Roaming\ftblauncher
[30/08/2012 11:57:18] - |D| - C:\Users\Clémentine\AppData\Roaming\Identities
[25/08/2014 12:40:10] - |D| - C:\Users\Clémentine\AppData\Roaming\java
[20/06/2013 11:34:19] - |D| - C:\Users\Clémentine\AppData\Roaming\LOVE
[30/08/2012 11:53:48] - |D| - C:\Users\Clémentine\AppData\Roaming\Macromedia
[30/08/2012 11:53:48] - |D| - C:\Users\Clémentine\AppData\Roaming\Media Center Programs
[30/08/2012 11:53:48] - |SD| - C:\Users\Clémentine\AppData\Roaming\Microsoft
[26/08/2013 11:23:53] - |D| - C:\Users\Clémentine\AppData\Roaming\MotioninJoy
[17/01/2014 22:01:31] - |D| - C:\Users\Clémentine\AppData\Roaming\Mozilla
[17/07/2014 14:32:32] - |D| - C:\Users\Clémentine\AppData\Roaming\MPC-HC
[18/08/2014 15:16:20] - |D| - C:\Users\Clémentine\AppData\Roaming\NVIDIA
[18/05/2014 08:41:58] - |D| - C:\Users\Clémentine\AppData\Roaming\OpenOffice
[03/09/2012 09:44:15] - |D| - C:\Users\Clémentine\AppData\Roaming\Origin
[29/09/2013 01:21:51] - |D| - C:\Users\Clémentine\AppData\Roaming\Processing
[12/04/2013 21:06:58] - |D| - C:\Users\Clémentine\AppData\Roaming\Real
[12/04/2013 21:08:48] - |D| - C:\Users\Clémentine\AppData\Roaming\RealNetworks
[12/10/2012 17:21:44] - |D| - C:\Users\Clémentine\AppData\Roaming\Reg.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
[24/03/2014 19:06:35] - |D| - C:\Users\Clémentine\AppData\Roaming\RenPy
[04/02/2014 19:55:33] - |A| - C:\Users\Clémentine\AppData\Roaming\Roaming - Raccourci.lnk
[29/12/2013 18:31:57] - |D| - C:\Users\Clémentine\AppData\Roaming\Rogue Legacy
[30/08/2012 11:57:59] - |D| - C:\Users\Clémentine\AppData\Roaming\Screensaver
[03/10/2012 16:33:18] - |RHD| - C:\Users\Clémentine\AppData\Roaming\SecuROM
[30/08/2012 18:57:25] - |D| - C:\Users\Clémentine\AppData\Roaming\Skype
[02/12/2012 15:51:29] - |D| - C:\Users\Clémentine\AppData\Roaming\SoftGrid Client
[29/09/2013 01:26:43] - |D| - C:\Users\Clémentine\AppData\Roaming\SYSTEMAX Software Development
[01/12/2013 14:49:40] - |D| - C:\Users\Clémentine\AppData\Roaming\Theta
[04/02/2014 19:55:33] - |ASH| - C:\Users\Clémentine\AppData\Roaming\Thumbs.db
[02/12/2012 15:50:11] - |D| - C:\Users\Clémentine\AppData\Roaming\TP
[20/10/2013 11:52:11] - |D| - C:\Users\Clémentine\AppData\Roaming\Trine 2 Complete Story
[20/10/2013 12:03:42] - |D| - C:\Users\Clémentine\AppData\Roaming\Trine2
[15/03/2014 21:34:23] - |D| - C:\Users\Clémentine\AppData\Roaming\true remembrance
[24/11/2013 08:58:26] - |D| - C:\Users\Clémentine\AppData\Roaming\Ubisoft
[05/05/2013 11:37:35] - |D| - C:\Users\Clémentine\AppData\Roaming\uTorrent
[27/08/2013 10:59:40] - |D| - C:\Users\Clémentine\AppData\Roaming\vlc
[24/08/2014 21:55:03] - |A| - C:\Users\Clémentine\AppData\Roaming\WB.CFG
[06/03/2014 19:50:44] - |D| - C:\Users\Clémentine\AppData\Roaming\WildTangent
[07/09/2012 16:33:38] - |D| - C:\Users\Clémentine\AppData\Roaming\WinRAR
[30/08/2014 12:04:03] - |D| - C:\Users\Clémentine\AppData\Roaming\ZHP

¤¤¤¤¤¤¤¤¤¤ | C:\Users\Clémentine\AppData\Local

[30/11/2012 21:55:56] - |D| - C:\Users\Clémentine\AppData\Local\2DBoy
[02/12/2013 20:00:04] - |D| - C:\Users\Clémentine\AppData\Local\Acer
[02/10/2012 20:51:56] - |D| - C:\Users\Clémentine\AppData\Local\Adobe
[30/08/2012 11:53:49] - |SHD| - C:\Users\Clémentine\AppData\Local\Application Data
[25/02/2014 10:12:18] - |D| - C:\Users\Clémentine\AppData\Local\Apps
[25/02/2013 17:00:07] - |D| - C:\Users\Clémentine\AppData\Local\Black_Tree_Gaming
[01/12/2013 15:37:22] - |D| - C:\Users\Clémentine\AppData\Local\cache
[25/02/2014 10:10:29] - |D| - C:\Users\Clémentine\AppData\Local\Chromium
[02/12/2013 20:00:07] - |D| - C:\Users\Clémentine\AppData\Local\clear.fi
[11/05/2014 13:59:31] - |D| - C:\Users\Clémentine\AppData\Local\clear.fi_Metadata
[04/01/2013 23:09:57] - |D| - C:\Users\Clémentine\AppData\Local\CrashDumps
[21/01/2013 19:56:02] - |D| - C:\Users\Clémentine\AppData\Local\Cyberlink
[29/05/2014 21:48:59] - |A| - C:\Users\Clémentine\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[25/02/2014 10:12:17] - |D| - C:\Users\Clémentine\AppData\Local\Deployment
[02/09/2012 10:51:58] - |D| - C:\Users\Clémentine\AppData\Local\Diagnostics
[30/08/2012 12:11:55] - |D| - C:\Users\Clémentine\AppData\Local\EgisTec IPS
[17/08/2014 17:01:33] - |D| - C:\Users\Clémentine\AppData\Local\ElevatedDiagnostics
[20/04/2013 17:30:38] - |D| - C:\Users\Clémentine\AppData\Local\FLT
[30/08/2012 11:54:20] - |A| - C:\Users\Clémentine\AppData\Local\GDIPFONTCACHEV1.DAT
[30/08/2012 13:41:42] - |D| - C:\Users\Clémentine\AppData\Local\Google
[30/08/2012 11:53:49] - |SHD| - C:\Users\Clémentine\AppData\Local\Historique
[12/04/2013 21:36:38] - |AH| - C:\Users\Clémentine\AppData\Local\IconCache.db
[24/08/2014 20:57:10] - |D| - C:\Users\Clémentine\AppData\Local\JDownloader v2.0
[05/10/2013 12:16:15] - |D| - C:\Users\Clémentine\AppData\Local\LogMeIn
[09/10/2013 18:48:07] - |D| - C:\Users\Clémentine\AppData\Local\LogMeIn Hamachi
[30/08/2012 11:53:48] - |D| - C:\Users\Clémentine\AppData\Local\Microsoft
[01/04/2013 17:43:07] - |D| - C:\Users\Clémentine\AppData\Local\Microsoft Help
[31/05/2014 09:12:08] - |D| - C:\Users\Clémentine\AppData\Local\NVIDIA
[31/05/2014 09:12:08] - |D| - C:\Users\Clémentine\AppData\Local\NVIDIA Corporation
[30/08/2014 17:50:19] - |D| - C:\Users\Clémentine\AppData\Local\Origin
[01/12/2013 15:36:20] - |D| - C:\Users\Clémentine\AppData\Local\Programs
[29/04/2013 20:31:44] - |A| - C:\Users\Clémentine\AppData\Local\Resmon.ResmonCfg
[20/10/2013 12:03:43] - |D| - C:\Users\Clémentine\AppData\Local\SKIDROW
[26/12/2012 19:40:43] - |D| - C:\Users\Clémentine\AppData\Local\Skyrim
[02/12/2012 15:51:30] - |D| - C:\Users\Clémentine\AppData\Local\SoftGrid Client
[17/05/2013 17:30:25] - |D| - C:\Users\Clémentine\AppData\Local\SWTOR
[30/08/2012 11:53:48] - |D| - C:\Users\Clémentine\AppData\Local\Temp
[30/08/2012 11:53:49] - |SHD| - C:\Users\Clémentine\AppData\Local\Temporary Internet Files
[01/12/2013 15:29:05] - |D| - C:\Users\Clémentine\AppData\Local\Ubisoft Game Launcher
[30/08/2012 11:54:51] - |D| - C:\Users\Clémentine\AppData\Local\VirtualStore

¤¤¤¤¤¤¤¤¤¤ | C:\ProgramData

[30/11/2012 21:55:56] - |D| - C:\ProgramData\2DBoy
[26/03/2012 08:48:23] - |D| - C:\ProgramData\Acer
[26/03/2012 09:01:06] - |D| - C:\ProgramData\Adobe
[14/07/2009 07:08:56] - |SHD| - C:\ProgramData\Application Data
[29/04/2012 02:52:11] - |D| - C:\ProgramData\Atheros
[30/08/2012 13:40:43] - |D| - C:\ProgramData\AVAST Software
[26/03/2012 09:03:17] - |D| - C:\ProgramData\BackupManager
[25/07/2014 15:39:30] - |D| - C:\ProgramData\BlueStacks
[30/08/2012 11:53:37] - |SHD| - C:\ProgramData\Bureau
[30/08/2012 12:08:33] - |HD| - C:\ProgramData\CanonBJ
[30/08/2012 13:10:57] - |HD| - C:\ProgramData\CanonIJEGV
[02/10/2012 20:41:18] - |HD| - C:\ProgramData\CanonIJScan
[29/04/2012 02:59:19] - |A| - C:\ProgramData\clear.fiSDK20.log
[29/04/2012 02:59:43] - |D| - C:\ProgramData\CLSK
[29/04/2012 02:59:19] - |D| - C:\ProgramData\CyberLink
[27/08/2013 13:29:04] - |D| - C:\ProgramData\DAEMON Tools Lite
[14/07/2009 07:08:56] - |SHD| - C:\ProgramData\Desktop
[14/07/2009 07:08:56] - |SHD| - C:\ProgramData\Documents
[15/10/2012 18:47:38] - |SHD| - C:\ProgramData\DSS
[03/10/2012 13:20:43] - |D| - C:\ProgramData\EA Core
[29/04/2012 02:36:03] - |D| - C:\ProgramData\EgisTec
[26/03/2012 08:59:46] - |D| - C:\ProgramData\EgisTec IPS
[30/08/2012 20:01:07] - |D| - C:\ProgramData\Electronic Arts
[26/03/2012 08:46:04] - |D| - C:\ProgramData\Evernote
[30/08/2012 11:53:37] - |SHD| - C:\ProgramData\Favoris
[14/07/2009 07:08:56] - |SHD| - C:\ProgramData\Favorites
[29/04/2012 02:57:54] - |D| - C:\ProgramData\FLEXnet
[29/04/2012 02:59:25] - |D| - C:\ProgramData\install_clap
[29/04/2012 02:35:59] - |D| - C:\ProgramData\Intel
[24/03/2013 11:59:15] - |D| - C:\ProgramData\LogMeIn
[30/08/2014 11:19:30] - |D| - C:\ProgramData\Malwarebytes
[26/03/2012 08:46:22] - |D| - C:\ProgramData\McAfee
[03/11/2013 20:44:39] - |D| - C:\ProgramData\Media Center Programs
[30/08/2012 11:53:37] - |SHD| - C:\ProgramData\Menu Démarrer
[14/07/2009 05:20:08] - |SD| - C:\ProgramData\Microsoft
[01/04/2013 17:43:07] - |D| - C:\ProgramData\Microsoft Help
[16/11/2013 23:15:50] - |D| - C:\ProgramData\Microsoft SkyDrive
[30/08/2012 11:53:37] - |SHD| - C:\ProgramData\Modèles
[26/03/2012 09:09:55] - |D| - C:\ProgramData\newsXpresso
[18/05/2014 08:33:51] - |D| - C:\ProgramData\Norton
[18/05/2014 08:33:49] - |D| - C:\ProgramData\NortonInstaller
[29/04/2012 02:58:44] - |D| - C:\ProgramData\NTI Launcher
[25/02/2014 10:01:28] - |RASH| - C:\ProgramData\ntuser.pol
[29/04/2012 02:39:06] - |D| - C:\ProgramData\NVIDIA
[31/05/2014 09:09:48] - |D| - C:\ProgramData\NVIDIA Corporation
[26/03/2012 09:00:43] - |D| - C:\ProgramData\oem
[25/08/2014 01:36:10] - |D| - C:\ProgramData\Oracle
[24/11/2013 15:34:15] - |D| - C:\ProgramData\Orbit
[03/09/2012 09:36:37] - |D| - C:\ProgramData\Origin
[16/08/2014 18:11:27] - |D| - C:\ProgramData\Package Cache
[25/07/2014 14:26:25] - |D| - C:\ProgramData\PopCap Games
[29/04/2012 03:00:38] - |A| - C:\ProgramData\PS.log
[12/04/2013 21:00:53] - |D| - C:\ProgramData\Real
[12/04/2013 21:07:51] - |D| - C:\ProgramData\RealNetworks
[16/11/2013 22:53:19] - |D| - C:\ProgramData\regid.1991-06.com.microsoft
[05/05/2013 14:49:50] - |D| - C:\ProgramData\RELOADED
[26/03/2012 08:45:56] - |D| - C:\ProgramData\Skype
[17/08/2014 18:28:25] - |D| - C:\ProgramData\Sony
[14/07/2009 07:08:56] - |SHD| - C:\ProgramData\Start Menu
[21/10/2013 20:03:17] - |D| - C:\ProgramData\Steam
[29/09/2013 01:26:43] - |D| - C:\ProgramData\SYSTEMAX Software Development
[26/03/2012 09:08:11] - |AD| - C:\ProgramData\Temp
[14/07/2009 07:08:56] - |SHD| - C:\ProgramData\Templates
[02/12/2012 18:01:52] - |D| - C:\ProgramData\VirtualizedApplications
[26/03/2012 08:42:51] - |D| - C:\ProgramData\WildTangent

Eléments analysés : 188737 | Modifiés : 0 | Infectés : 16

¤¤¤¤¤¤¤¤¤¤ |EOF| ¤¤¤¤¤¤¤¤¤¤ | 18:22:55 | [38 Ko]
Avatar du membre
par g3n-h@ckm@n
#203316
ah ben on a bien fait de le passer :) ( du coup )
  • Télécharge MalwareBytes
  • Procède à  l'installation de celui çi Décocher "Activer l'essai gratuit de Malwarebytes Anti-Malware Premium"
  • Clic sur Mettre à  jour (à  droite, au centre)
  • Clic sur Examen (en haut)
  • Sélectionne Examen "Menaces"
  • Clic sur Examiner maintenant

    Image
  • A la fin du scan clic sur Tout mettre en quarantaine !
  • Clic sur Copier dans le Presse-papiers
  • Un rapport va s'ouvrir. Copie/Colle son contenue dans ta prochaine réponse.
Avatar du membre
par Lyis
#203317
Fait!!

Malwarebytes Anti-Malware
http://www.malwarebytes.org" onclick="window.open(this.href);return false;

Scan Date: 30/08/2014
Scan Time: 18:46:47
Logfile:
Administrator: Yes

Version: 2.00.2.1012
Malware Database: v2014.08.30.05
Rootkit Database: v2014.08.21.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled

OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: ClàƒÂ©mentine

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 397613
Time Elapsed: 12 min, 10 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 3
PUP.Optional.CrossRider.A, C:\Users\ClàƒÂ©mentine\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeibjhjmddgcdbniedjoghdgbofbecad, Quarantined, [9726be0e205b43f36cb1b017659db947],
PUP.Optional.CrossRider.A, C:\Users\ClàƒÂ©mentine\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeibjhjmddgcdbniedjoghdgbofbecad\0.1_0, Quarantined, [9726be0e205b43f36cb1b017659db947],
PUP.Optional.CrossRider.A, C:\Users\ClàƒÂ©mentine\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeibjhjmddgcdbniedjoghdgbofbecad\0.1_0\_metadata, Quarantined, [9726be0e205b43f36cb1b017659db947],

Files: 9
PUP.Optional.CrossRider.A, C:\Users\ClàƒÂ©mentine\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeibjhjmddgcdbniedjoghdgbofbecad\0.1_0\icon-128.png, Quarantined, [9726be0e205b43f36cb1b017659db947],
PUP.Optional.CrossRider.A, C:\Users\ClàƒÂ©mentine\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeibjhjmddgcdbniedjoghdgbofbecad\0.1_0\icon-16.png, Quarantined, [9726be0e205b43f36cb1b017659db947],
PUP.Optional.CrossRider.A, C:\Users\ClàƒÂ©mentine\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeibjhjmddgcdbniedjoghdgbofbecad\0.1_0\icon-48.png, Quarantined, [9726be0e205b43f36cb1b017659db947],
PUP.Optional.CrossRider.A, C:\Users\ClàƒÂ©mentine\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeibjhjmddgcdbniedjoghdgbofbecad\0.1_0\jquery-1.10.2.min.js, Quarantined, [9726be0e205b43f36cb1b017659db947],
PUP.Optional.CrossRider.A, C:\Users\ClàƒÂ©mentine\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeibjhjmddgcdbniedjoghdgbofbecad\0.1_0\manifest.json, Quarantined, [9726be0e205b43f36cb1b017659db947],
PUP.Optional.CrossRider.A, C:\Users\ClàƒÂ©mentine\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeibjhjmddgcdbniedjoghdgbofbecad\0.1_0\wikilike.js, Quarantined, [9726be0e205b43f36cb1b017659db947],
PUP.Optional.CrossRider.A, C:\Users\ClàƒÂ©mentine\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeibjhjmddgcdbniedjoghdgbofbecad\0.1_0\_DS_Store, Quarantined, [9726be0e205b43f36cb1b017659db947],
PUP.Optional.CrossRider.A, C:\Users\ClàƒÂ©mentine\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeibjhjmddgcdbniedjoghdgbofbecad\0.1_0\_metadata\verified_contents.json, Quarantined, [9726be0e205b43f36cb1b017659db947],
PUP.Optional.Astromenda.A, C:\Users\ClàƒÂ©mentine\AppData\Local\Google\Chrome\User Data\Default\Preferences, Good: (), Bad: ( "startup_urls": [ "http://astromenda.com/?f=7&a=ast_ir_14_ ... 748199&ir=" ],), Replaced,[328b933964178babef725cba7a8b8b75]

Physical Sectors: 0
(No malicious items detected)


(end)
Avatar du membre
par g3n-h@ckm@n
#203325
il est synchronisé avec ton compte mail ton navigateur ? si c'est le cas désynchronise-le tout de suite , c'est en partie à  cause de ca qu on infecte le navigatuer
Avatar du membre
par g3n-h@ckm@n
#203352
quand tu demarres chrome , il indique que tu es connectée , en haut à  droite de la fenêtre ?
Avatar du membre
par g3n-h@ckm@n
#203369
hello

alors regarde dans les parametres de chromes , et selectionnes "un ensemble de pages" à  l'ouverture de chrome , et tu rentres juste cette adresse : https://www.google.com" onclick="window.open(this.href);return false;

tu viers toutes les autres.
Avatar du membre
par Lyis
#203378
Ben ça je l'avais déjà  fait..... ça déconnecte pas, si?

Bonsoir Avez vous essayé de réali[…]

Bonjour, Pour un premier diagnostic: https:/[…]

Bonjour Emma bien pour kprm pour tes achats essa[…]

deinfecte disque dur et cle USB

salut tetedede, je crois que mon disque durs e[…]