Vous pensez être infecté, des pubs s'affichent quand vous naviguez sur internet ?
Perte de données, ralentissement système, virus USB ?
Désinfectez votre ordinateur gratuitement !
  • Avatar du membre
  • Avatar du membre
#203337
Code: Tout sélectionner
¤¤¤¤¤¤¤¤¤¤ | AdsFix | g3n-h@ckm@n | 29.08.2014.4

¤¤¤¤¤ Vista | 7 | 8 | 8.1 - 32/64 bits ¤¤¤¤¤ - Start 17:56:06 - 29/08/2014

Mis à  jour le : 29/08/2014 | 17.00 par g3n-h@ckm@nâ„¢
Contact : http://www.sosvirus.net" onclick="window.open(this.href);return false;
Assistance : http://www.sosvirus.net/forum-virus-securite.html" onclick="window.open(this.href);return false;
Feedbacks : http://www.sosvirus.net/feedbacks-t75915.html" onclick="window.open(this.href);return false;
Boot: Normal boot
[Clement (Administrator)] - [CLEMENT-PC] - (France [040C])
SID = S-1-5-21-825608802-4289994647-314183835-1000 || [436c656d656e74]
PC : ASUSTeK COMPUTER INC. - Z87-C - All
Bios : American Megatrends Inc. - 05/17/2013
Système : Windows 7 Professional (64 bits) Professional Service Pack 1
Mémoire RAM = Total (MB) : 8325 | Libre (MB) : 5507
Pagefile = Total (MB) : 16648 | Libre (MB) : 13510
Virtuelle = Total (MB) : 4194 | Libre (MB) : 4022

Impossible de sauvegarder le registre !!!
Restauration de fichiers ou dossiers supprimés par erreur : Cliquer sur Options & Restaurer Fichiers ou dossiers, Sélectionner un élément >> "Restaurer"

¤¤¤¤¤¤¤¤¤¤ | Mises à  jour Windows

Aucune mise à  jour détectée !!!

¤¤¤¤¤¤¤¤¤¤ | Navigateurs

IE : 11.0.9600.17239 (© Microsoft Corporation. Tous droits réservés.)
GC : 36.0.1985.143 (Copyright 2012 Google Inc. All rights reserved.)

¤¤¤¤¤¤¤¤¤¤ | Security (atcav : 0)

AM : Malwarebytes' Anti-Malware (1.0.0.532) [2014.08.17.05]
FW :
WMI : OK
WU: Windows Update Service [Auto(2)] = Arrêté
AS: Windows Defender [Auto(2)] = Arrêté
FW: Windows FireWall Service [Auto(2)] = Arrêté

¤¤¤¤¤¤¤¤¤¤ | FlashPlayer


¤¤¤¤¤¤¤¤¤¤ | Processus tués

972 | [Owner : Système |Parent : 712] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 340.52.) - (8.17.13.4052) = C:\Windows\System32\nvvsvc.exe
996 | [Owner : Système |Parent : 712] - (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) - (7.17.13.4052) = C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
1484 | [Owner : Système |Parent : 972] - (.NVIDIA Corporation - NVIDIA User Experience Driver Component.) - (8.17.13.4052) = C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
1492 | [Owner : Système |Parent : 972] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 340.52.) - (8.17.13.4052) = C:\Windows\System32\nvvsvc.exe
1844 | [Owner : Système |Parent : 712] - (.Microsoft Corporation - Application sous-système spouleur.) - (6.1.7601.17777) = C:\Windows\System32\spoolsv.exe
1852 | [Owner : Clement |Parent : 712] - (.Microsoft Corporation - Processus hôte pour Tà¢ches Windows.) - (6.1.7601.18010) = C:\Windows\System32\taskhost.exe
2036 | [Owner : Système |Parent : 712] - (. - .) - (0.0.0.0) = C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
2044 | [Owner : Clement |Parent : 1092] - (.Microsoft Corporation - Moteur du Planificateur de tà¢ches.) - (6.1.7601.17514) = C:\Windows\System32\taskeng.exe
1408 | [Owner : Clement |Parent : 2044] - (. - .) - (0.0.0.0) = C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe
1536 | [Owner : Clement |Parent : 2044] - (.ASUSTeK Computer Inc. - .) - (1.0.0.0) = C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe
2196 | [Owner : Système |Parent : 712] - (. - .) - (0.0.0.0) = C:\Windows\SysWOW64\ASGT.exe
2216 | [Owner : Système |Parent : 712] - (.ASUSTeK Computer Inc. - .) - (0.1.0.19) = C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe
2252 | [Owner : Système |Parent : 712] - (.ASUSTeK Computer Inc. - ASUS Motherboard Fan Control Service.) - (1.0.1.4) = C:\Program Files (x86)\ASUS\AsusFanControlService\1.02.22\AsusFanControlService.exe
2460 | [Owner : Système |Parent : 712] - (.Intel(R) Corporation - Intel(R) Capability Licensing Service Interface.) - (1.31.8.1) = C:\Program Files\Intel\iCLS Client\HeciServer.exe
2576 | [Owner : Système |Parent : 712] - (.CybelSoft - Service de détection matériel.) - (7.1.3.0) = C:\Program Files\ma-config.com\MaConfigAgent.exe
2836 | [Owner : Système |Parent : 712] - (. - ducservice.) - (1.0.0.0) = C:\Program Files (x86)\No-IP\ducservice.exe
2728 | [Owner : Système |Parent : 712] - (.NVIDIA Corporation - NVIDIA Network Service.) - (1.0.8.24) = C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
2796 | [Owner : Système |Parent : 712] - (.NVIDIA Corporation - NVIDIA Streamer Service.) - (3.1.100.0) = C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
2524 | [Owner : Système |Parent : 712] - (. - .) - (0.0.0.0) = C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe
2652 | [Owner : Système |Parent : 712] - (.Microsoft Corp. - Microsoft® Windows Live ID Service.) - (7.250.4311.0) = C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
3080 | [Owner : SERVICE Rà‰SEAU |Parent : 712] - (.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) - (12.0.7601.17514) = C:\Program Files\Windows Media Player\wmpnetwk.exe
3128 | [Owner : Système |Parent : 712] - (.Microsoft Corporation - Indexeur Microsoft Windows Search.) - (7.0.7601.17610) = C:\Windows\System32\SearchIndexer.exe
4036 | [Owner : SERVICE LOCAL |Parent : 536] - (.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l‚infrastructure de pilotes en mode utilisateur.) - (6.2.9200.16384) = C:\Windows\System32\WUDFHost.exe
3956 | [Owner : Clement |Parent : 3664] - (.NVIDIA Corporation - NVIDIA GeForce Experience Backend.) - (15.3.33.0) = C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
4432 | [Owner : Clement |Parent : 836] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) - (6.1.7600.16385) = C:\Windows\System32\rundll32.exe
4624 | [Owner : Clement |Parent : 4592] - (.Microsoft Corporation - Explorateur Windows.) - (6.1.7601.17567) = C:\Windows\explorer.exe
4876 | [Owner : Clement |Parent : 4624] - (.Saitek - Saitek SST Profile Launcher.) - (6.2.1.3) = C:\Program Files\Saitek\SD6\Software\ProfilerU.exe
4664 | [Owner : Clement |Parent : 4624] - (.Microsoft Corporation - XBoxStat.exe.) - (1.20.146.0) = C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
3796 | [Owner : Clement |Parent : 1484] - (.NVIDIA Corporation - NVIDIA Settings.) - (7.17.13.4052) = C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
3672 | [Owner : Clement |Parent : 836] - (.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) - (6.1.7600.16385) = C:\Windows\System32\wbem\unsecapp.exe
5128 | [Owner : Clement |Parent : 1636] - (.ASUSTeK Computer Inc. - USB 3.0 Boost Service.) - (1.0.1.1) = C:\Program Files (x86)\ASUS\AI Suite III\USB 3.0 Boost\U3BoostSvr64.exe
5892 | [Owner : Clement |Parent : 1536] - (. - .) - (0.0.0.0) = C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\EPUShortCut.exe
3356 | [Owner : Clement |Parent : 2044] - (.Samsung Electronics. - Samsung Magician Application.) - (4.4.0.0) = P:\Program Files (x86)\Samsung Magician\Samsung Magician.exe
4132 | [Owner : Système |Parent : 1352] - (.Google Inc. - Programme d'installation de Google.) - (1.3.21.103) = C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
4180 | [Owner : Système |Parent : 712] - (.Intel Corporation - IAStorDataSvc.) - (12.9.0.1001) = C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
6304 | [Owner : Système |Parent : 712] - (.Intel Corporation - Intel(R) Dynamic Application Loader Host Interface.) - (9.5.12.1682) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
1084 | [Owner : Système |Parent : 712] - (.Intel Corporation - Intel(R) Local Management Service.) - (9.5.10.1628) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
3652 | [Owner : Clement |Parent : 6688] - (. - PVP.net Patcher Kernel.) - (0.0.0.0) = C:\JEUX SSD\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe
5508 | [Owner : Clement |Parent : 3652] - (. - Riot Client Patcher.) - (2.17.0.280) = C:\JEUX SSD\Riot Games\League of Legends\RADS\projects\lol_launcher\releases\0.0.0.216\deploy\LoLLauncher.exe
6120 | [Owner : Clement |Parent : 5508] - (. - LoL Patcher.) - (0.0.1.266) = C:\JEUX SSD\Riot Games\League of Legends\RADS\projects\lol_patcher\releases\0.0.0.0\deploy\LoLPatcher.exe
1868 | [Owner : Clement |Parent : 6120] - (. - .) - (0.0.0.0) = C:\JEUX SSD\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.105\deploy\LolClient.exe
5036 | [Owner : Clement |Parent : 1092] - (.Microsoft Corporation - Windows Update.) - (7.6.7600.320) = C:\Windows\System32\wuauclt.exe
2952 | [Owner : Clement |Parent : 4080] - (.Google Inc. - Google Chrome.) - (36.0.1985.143) = C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
4264 | [Owner : Clement |Parent : 4988] - (.Microsoft Corporation - Windows Problem Reporting.) - (6.1.7600.16385) = C:\Windows\System32\wermgr.exe
3140 | [Owner : Système |Parent : 2796] - (.NVIDIA Corporation - NVIDIA Streamer Service.) - (3.1.100.0) = C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
2924 | [Owner : Système |Parent : 668] - (.Microsoft Corporation - Hôte de la fenêtre de la console.) - (6.1.7601.18229) = C:\Windows\System32\conhost.exe
5880 | [Owner : SERVICE Rà‰SEAU |Parent : 2796] - (.NVIDIA Corporation - NVIDIA Streamer Service.) - (3.1.100.0) = C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
5272 | [Owner : Système |Parent : 712] - (.Intel(R) Corporation - Intel(R) Capability Licensing Service Interface.) - (1.31.8.1) = C:\Program Files\Intel\iCLS Client\HeciServer.exe
1216 | [Owner : Clement |Parent : 836] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) - (6.1.7600.16385) = C:\Windows\System32\rundll32.exe
368 | [Owner : SERVICE LOCAL |Parent : 536] - (.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l‚infrastructure de pilotes en mode utilisateur.) - (6.2.9200.16384) = C:\Windows\System32\WUDFHost.exe

¤¤¤¤¤¤¤¤¤¤ | Services



¤¤¤¤¤¤¤¤¤¤ | Hosts

Hosts : Ok

¤¤¤¤¤¤¤¤¤¤ | SafeBoot


¤¤¤¤¤¤¤¤¤¤ | Registre

Supprimé avec succès : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{98889811-442D-49DD-99D7-DC866BE87DBC} : BabylonToolbarTlbr.dll
Supprimé avec succès : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{98889811-442D-49DD-99D7-DC866BE87DBC}

¤¤¤¤¤¤¤¤¤¤ | Offsets


¤¤¤¤¤¤¤¤¤¤ | reparsepoint



¤¤¤¤¤¤¤¤¤¤ | Dossiers | Fichiers


¤¤¤¤¤¤¤¤¤¤ | .LNK


¤¤¤¤¤¤¤¤¤¤ | Ouverture extension inconnue


¤¤¤¤¤¤¤¤¤¤ | Proxy


¤¤¤¤¤¤¤¤¤¤ | Internet Explorer


¤¤¤¤¤¤¤¤¤¤ | Google Chrome

[Clement] Remis a zéro avec succès : SearchURL

[Clement | Default] : aohghmighlieiainnegkcijnfilokake = : Google & co - Google & co - https://clients2.google.com/service/update2/crx" onclick="window.open(this.href);return false;
[Clement | Default] : apdfllckaahabafndbhieahigkjlhalf = : Google & co - https://drive.google.com/?usp=chrome_app" onclick="window.open(this.href);return false; - Google & co - [http://docs.google.com/http://drive.google.com/https://docs.google.com/https://drive.google.com/] - http://clients2.google.com/service/update2/crx" onclick="window.open(this.href);return false;
[Clement | Default] : blpcfgokakmgnkcojhhkbfbldkacnbeo = : Google & co - http://www.youtube.com" onclick="window.open(this.href);return false; - http://www.youtube.com/?feature=ytca" onclick="window.open(this.href);return false; - Google & co - http://clients2.google.com/service/update2/crx" onclick="window.open(this.href);return false;
[Clement | Default] : cfhdojbkjhnklbpkdaibdccddilifddb = : __MSG_description_chrome__ - __MSG_name__ - https://clients2.google.com/service/update2/crx" onclick="window.open(this.href);return false;
[Clement | Default] : coobgpohoikkiipiblmjeljniedjpjpf = : Google & co - http://www.google.com/webhp?source=search_app" onclick="window.open(this.href);return false; - Google & co - [*://www.google.com/search*://www.google.com/webhp*://www.google.com/imgres] - http://clients2.google.com/service/update2/crx" onclick="window.open(this.href);return false;
[Clement | Default] : epanfjkfahimkgomnigadpkobaefekcd = : Protect your privacy. Stop companies & advertisers from tracking your browsing and sending you spam email. - DoNotTrackMe: Online Privacy Protection - permissions:[webRequestwebRequestBlockingtabscookies\u003Call_urls>contextMenusclipboardWritestorage] - https://clients2.google.com/service/update2/crx" onclick="window.open(this.href);return false;
[Clement | Default] : gighmmpiobklfepjocnamgkkbiglidom = : __MSG_description2__ - AdBlock - https://clients2.google.com/service/update2/crx" onclick="window.open(this.href);return false;
[Clement | Default] : gomekmidlodglbbmalcneegieacbdmki = : Avast Browser Security and Web Reputation Plugin. - avast! Online Security - https://clients2.google.com/service/update2/crx" onclick="window.open(this.href);return false;
[Clement | Default] : hdokiejnpimakedhajhdlcegeplioahd = : LastPass an award-winning password manager saves your passwords and gives you secure access from every computer and mobile device. - short_name: LastPass - https://clients2.google.com/service/update2/crx" onclick="window.open(this.href);return false;
[Clement | Default] : nmmhkkegccagdldgiimedpiccmgmieda = : Google & co - Google & co - 203784468217.apps.googleusercontent.com - https://clients2.google.com/service/update2/crx" onclick="window.open(this.href);return false;
[Clement | Default] : onhbegdkgonhlokobjefolhpoidcnida = : __MSG_chromeExtensionDescription__ - Synology Download Station - matches:[\u003Call_urls>] - https://clients2.google.com/service/update2/crx" onclick="window.open(this.href);return false;
[Clement | Default] : pjkljhegncpnkpknbcohdijeoejaedia = : Google & co - https://mail.google.com/mail/ca" onclick="window.open(this.href);return false; - Google & co - [*://mail.google.com/mail/ca] - http://clients2.google.com/service/update2/crx" onclick="window.open(this.href);return false;

¤¤¤¤¤¤¤¤¤¤ | Chromium



¤¤¤¤¤¤¤¤¤¤ | Comodo Dragon



¤¤¤¤¤¤¤¤¤¤ | Firefox



¤¤¤¤¤¤¤¤¤¤ | SeaMonkey



¤¤¤¤¤¤¤¤¤¤ | Pale moon



¤¤¤¤¤¤¤¤¤¤ | Opera



¤¤¤¤¤¤¤¤¤¤ | Spark



¤¤¤¤¤¤¤¤¤¤ | StartMenuInternet


¤¤¤¤¤¤¤¤¤¤ | AppCertDlls | AppInit_DLLs


¤¤¤¤¤¤¤¤¤¤ | Javascript


¤¤¤¤¤¤¤¤¤¤ | Firewall


¤¤¤¤¤¤¤¤¤¤ | ADS

¤¤¤¤¤¤¤¤¤¤ | Fichiers temporaires

[All Users] Fichiers temporaires Supprimés : 0 Ko
[Clement] Fichiers temporaires Supprimés : 9281 Ko
[Default] Fichiers temporaires Supprimés : 0 Ko
[Default User] Fichiers temporaires Supprimés : 0 Ko
[Public] Fichiers temporaires Supprimés : 0 Ko
[C:\Windows\Temp] Fichiers temporaires Supprimés : 2944 Ko
[C:\Temp] Fichiers temporaires Supprimés : 0 Ko


Autre rapport


¤¤¤¤¤¤¤¤¤¤ | Listing


¤¤¤¤¤¤¤¤¤¤ | C:\Program Files (x86)

[01/03/2014 17:44:39] - |D| - C:\Program Files (x86)\Adobe
[01/03/2014 20:07:30] - |D| - C:\Program Files (x86)\AGEIA Technologies
[18/04/2014 15:57:39] - |D| - C:\Program Files (x86)\AOMEI Partition Assistant Standard Edition 5.5
[01/03/2014 16:37:43] - |D| - C:\Program Files (x86)\ASUS
[30/05/2014 17:51:27] - |D| - C:\Program Files (x86)\Audacity
[14/07/2009 05:20:08] - |D| - C:\Program Files (x86)\Common Files
[14/07/2009 06:54:24] - |ASH| - C:\Program Files (x86)\desktop.ini
[22/03/2014 22:36:04] - |D| - C:\Program Files (x86)\directx
[18/04/2014 15:48:10] - |D| - C:\Program Files (x86)\EaseUS
[01/03/2014 16:40:22] - |D| - C:\Program Files (x86)\Google
[10/06/2014 16:47:36] - |D| - C:\Program Files (x86)\HMA! Pro VPN
[09/04/2014 13:21:17] - |D| - C:\Program Files (x86)\ImageWriter
[01/03/2014 16:38:40] - |HD| - C:\Program Files (x86)\InstallShield Installation Information
[01/03/2014 16:41:15] - |D| - C:\Program Files (x86)\Intel
[14/07/2009 05:20:08] - |D| - C:\Program Files (x86)\Internet Explorer
[18/04/2014 18:28:36] - |D| - C:\Program Files (x86)\Java
[17/08/2014 22:50:09] - |D| - C:\Program Files (x86)\Malwarebytes Anti-Malware
[02/03/2014 20:23:20] - |D| - C:\Program Files (x86)\Microsoft Analysis Services
[02/03/2014 20:23:15] - |D| - C:\Program Files (x86)\Microsoft Office
[02/03/2014 20:23:53] - |D| - C:\Program Files (x86)\Microsoft SQL Server
[30/05/2014 15:27:55] - |D| - C:\Program Files (x86)\Microsoft SQL Server Compact Edition
[01/03/2014 20:03:42] - |D| - C:\Program Files (x86)\Microsoft.NET
[14/07/2009 07:32:38] - |D| - C:\Program Files (x86)\MSBuild
[18/04/2014 17:25:45] - |D| - C:\Program Files (x86)\No-IP
[01/03/2014 20:07:02] - |D| - C:\Program Files (x86)\NVIDIA Corporation
[10/03/2014 19:13:12] - |D| - C:\Program Files (x86)\Origin
[01/03/2014 16:38:40] - |D| - C:\Program Files (x86)\Realtek
[14/07/2009 07:32:38] - |D| - C:\Program Files (x86)\Reference Assemblies
[17/08/2014 21:24:31] - |D| - C:\Program Files (x86)\Spyware Terminator
[17/04/2014 14:37:33] - |D| - C:\Program Files (x86)\Synology
[01/03/2014 16:41:59] - |HD| - C:\Program Files (x86)\Temp
[15/04/2014 13:04:13] - |D| - C:\Program Files (x86)\Tweaking.com
[14/07/2009 06:57:06] - |HD| - C:\Program Files (x86)\Uninstall Information
[14/07/2009 07:32:38] - |D| - C:\Program Files (x86)\Windows Defender
[30/05/2014 15:27:44] - |D| - C:\Program Files (x86)\Windows Live
[14/07/2009 05:20:08] - |D| - C:\Program Files (x86)\Windows Mail
[14/07/2009 07:32:38] - |D| - C:\Program Files (x86)\Windows Media Player
[14/07/2009 05:20:08] - |D| - C:\Program Files (x86)\Windows NT
[14/07/2009 07:32:38] - |D| - C:\Program Files (x86)\Windows Photo Viewer
[14/07/2009 07:32:38] - |D| - C:\Program Files (x86)\Windows Portable Devices
[14/07/2009 07:32:38] - |D| - C:\Program Files (x86)\Windows Sidebar

¤¤¤¤¤¤¤¤¤¤ | C:\Program Files

[01/03/2014 16:37:45] - |D| - C:\Program Files\ASUS
[02/03/2014 16:05:23] - |D| - C:\Program Files\AVAST Software
[15/04/2014 13:12:19] - |D| - C:\Program Files\CCleaner
[14/07/2009 05:20:08] - |D| - C:\Program Files\Common Files
[14/07/2009 06:54:24] - |ASH| - C:\Program Files\desktop.ini
[14/07/2009 07:32:38] - |D| - C:\Program Files\DVD Maker
[01/03/2014 16:30:51] - |SHD| - C:\Program Files\Fichiers communs
[01/03/2014 16:44:08] - |D| - C:\Program Files\Intel
[14/07/2009 05:20:08] - |D| - C:\Program Files\Internet Explorer
[01/03/2014 16:57:26] - |D| - C:\Program Files\ma-config.com
[02/03/2014 20:23:20] - |D| - C:\Program Files\Microsoft Analysis Services
[02/03/2014 20:23:13] - |D| - C:\Program Files\Microsoft Office
[02/03/2014 20:23:42] - |D| - C:\Program Files\Microsoft SQL Server
[15/08/2014 11:54:41] - |D| - C:\Program Files\Microsoft Xbox 360 Accessories
[02/03/2014 20:23:53] - |D| - C:\Program Files\Microsoft.NET
[14/07/2009 07:32:38] - |D| - C:\Program Files\MSBuild
[09/08/2014 11:19:17] - |D| - C:\Program Files\Newshosting
[01/03/2014 19:35:37] - |D| - C:\Program Files\NVIDIA Corporation
[09/04/2014 13:08:47] - |D| - C:\Program Files\Oracle
[17/07/2014 22:16:32] - |D| - C:\Program Files\Realtek
[14/07/2009 07:32:38] - |D| - C:\Program Files\Reference Assemblies
[01/03/2014 17:13:19] - |D| - C:\Program Files\Saitek
[21/03/2014 21:13:34] - |D| - C:\Program Files\Tracker Software
[14/07/2009 07:09:26] - |HD| - C:\Program Files\Uninstall Information
[25/04/2014 17:39:57] - |D| - C:\Program Files\VideoLAN
[14/07/2009 07:32:38] - |D| - C:\Program Files\Windows Defender
[14/07/2009 17:35:39] - |D| - C:\Program Files\Windows Journal
[14/07/2009 05:20:08] - |D| - C:\Program Files\Windows Mail
[14/07/2009 07:32:38] - |D| - C:\Program Files\Windows Media Player
[14/07/2009 05:20:08] - |D| - C:\Program Files\Windows NT
[14/07/2009 07:32:38] - |D| - C:\Program Files\Windows Photo Viewer
[14/07/2009 07:32:38] - |D| - C:\Program Files\Windows Portable Devices
[14/07/2009 07:32:38] - |D| - C:\Program Files\Windows Sidebar

¤¤¤¤¤¤¤¤¤¤ | C:\Program Files (x86)\Common Files

[01/03/2014 17:36:12] - |D| - C:\Program Files (x86)\Common Files\Adobe AIR
[15/08/2014 01:24:58] - |D| - C:\Program Files (x86)\Common Files\Blizzard Entertainment
[18/03/2014 22:39:22] - |HD| - C:\Program Files (x86)\Common Files\EAInstaller
[01/03/2014 16:41:56] - |D| - C:\Program Files (x86)\Common Files\InstallShield
[01/03/2014 16:49:48] - |D| - C:\Program Files (x86)\Common Files\Intel Corporation
[18/08/2014 00:38:53] - |D| - C:\Program Files (x86)\Common Files\Java
[14/07/2009 05:20:08] - |D| - C:\Program Files (x86)\Common Files\microsoft shared
[17/08/2014 21:16:02] - |D| - C:\Program Files (x86)\Common Files\PC Tools
[01/03/2014 16:43:46] - |D| - C:\Program Files (x86)\Common Files\postureAgent
[14/07/2009 05:20:08] - |D| - C:\Program Files (x86)\Common Files\Services
[02/03/2014 19:45:35] - |D| - C:\Program Files (x86)\Common Files\Skype
[14/07/2009 05:20:08] - |D| - C:\Program Files (x86)\Common Files\SpeechEngines
[10/03/2014 15:11:51] - |D| - C:\Program Files (x86)\Common Files\Steam
[14/07/2009 05:20:08] - |D| - C:\Program Files (x86)\Common Files\System
[30/05/2014 15:23:55] - |D| - C:\Program Files (x86)\Common Files\Windows Live

¤¤¤¤¤¤¤¤¤¤ | C:\Program Files\Common Files

[02/03/2014 20:23:57] - |D| - C:\Program Files\Common Files\DESIGNER
[14/07/2009 05:20:08] - |D| - C:\Program Files\Common Files\Microsoft Shared
[14/07/2009 05:20:08] - |D| - C:\Program Files\Common Files\Services
[14/07/2009 05:20:08] - |D| - C:\Program Files\Common Files\SpeechEngines
[14/07/2009 05:20:08] - |D| - C:\Program Files\Common Files\System

¤¤¤¤¤¤¤¤¤¤ | C:\Users\Clement\AppData\Roaming

[01/03/2014 17:36:03] - |D| - C:\Users\Clement\AppData\Roaming\Adobe
[30/05/2014 17:51:31] - |D| - C:\Users\Clement\AppData\Roaming\Audacity
[02/03/2014 16:06:23] - |D| - C:\Users\Clement\AppData\Roaming\AVAST Software
[15/08/2014 01:25:08] - |D| - C:\Users\Clement\AppData\Roaming\Battle.net
[07/06/2014 19:00:26] - |D| - C:\Users\Clement\AppData\Roaming\Canneverbe Limited
[10/03/2014 15:22:55] - |D| - C:\Users\Clement\AppData\Roaming\com.spiderneo.junglertimer
[17/08/2014 15:10:48] - |D| - C:\Users\Clement\AppData\Roaming\DAEMON Tools Lite
[01/03/2014 16:30:55] - |D| - C:\Users\Clement\AppData\Roaming\Identities
[01/03/2014 16:43:23] - |D| - C:\Users\Clement\AppData\Roaming\InstallShield
[01/03/2014 16:44:52] - |D| - C:\Users\Clement\AppData\Roaming\Intel Corporation
[17/08/2014 20:45:41] - |D| - C:\Users\Clement\AppData\Roaming\Lavasoft
[17/08/2014 20:45:16] - |D| - C:\Users\Clement\AppData\Roaming\LavasoftStatistics
[01/03/2014 20:45:29] - |D| - C:\Users\Clement\AppData\Roaming\LolClient
[01/03/2014 17:36:03] - |D| - C:\Users\Clement\AppData\Roaming\Macromedia
[02/03/2014 19:13:17] - |D| - C:\Users\Clement\AppData\Roaming\Malwarebytes
[01/03/2014 16:30:52] - |D| - C:\Users\Clement\AppData\Roaming\Media Center Programs
[01/03/2014 16:30:52] - |SD| - C:\Users\Clement\AppData\Roaming\Microsoft
[02/03/2014 19:18:15] - |D| - C:\Users\Clement\AppData\Roaming\Mumble
[28/07/2014 21:02:43] - |D| - C:\Users\Clement\AppData\Roaming\Newshosting
[09/04/2014 13:14:34] - |D| - C:\Users\Clement\AppData\Roaming\NVIDIA
[11/03/2014 19:26:47] - |D| - C:\Users\Clement\AppData\Roaming\Origin
[02/03/2014 19:45:37] - |D| - C:\Users\Clement\AppData\Roaming\Skype
[17/08/2014 21:24:33] - |D| - C:\Users\Clement\AppData\Roaming\Spyware Terminator
[17/08/2014 21:13:55] - |D| - C:\Users\Clement\AppData\Roaming\TestApp
[18/04/2014 14:32:13] - |D| - C:\Users\Clement\AppData\Roaming\uTorrent
[25/04/2014 17:44:07] - |D| - C:\Users\Clement\AppData\Roaming\vlc
[01/03/2014 17:11:14] - |D| - C:\Users\Clement\AppData\Roaming\WinRAR

¤¤¤¤¤¤¤¤¤¤ | C:\Users\Clement\AppData\Local

[01/03/2014 17:44:33] - |D| - C:\Users\Clement\AppData\Local\Adobe
[01/03/2014 16:30:52] - |SHD| - C:\Users\Clement\AppData\Local\Application Data
[02/03/2014 19:00:31] - |D| - C:\Users\Clement\AppData\Local\Apps
[17/08/2014 19:50:08] - |A| - C:\Users\Clement\AppData\Local\ars.cache
[15/08/2014 01:25:08] - |D| - C:\Users\Clement\AppData\Local\Battle.net
[15/08/2014 01:25:21] - |D| - C:\Users\Clement\AppData\Local\Blizzard Entertainment
[17/08/2014 19:50:12] - |A| - C:\Users\Clement\AppData\Local\census.cache
[28/07/2014 21:03:24] - |D| - C:\Users\Clement\AppData\Local\CrashRpt
[02/03/2014 19:00:31] - |D| - C:\Users\Clement\AppData\Local\Deployment
[14/06/2014 15:43:26] - |D| - C:\Users\Clement\AppData\Local\Diagnostics
[03/08/2014 13:05:31] - |D| - C:\Users\Clement\AppData\Local\ElevatedDiagnostics
[12/07/2014 23:11:13] - |SHD| - C:\Users\Clement\AppData\Local\EmieSiteList
[12/07/2014 23:11:13] - |SHD| - C:\Users\Clement\AppData\Local\EmieUserList
[11/03/2014 18:15:18] - |D| - C:\Users\Clement\AppData\Local\fontconfig
[01/03/2014 16:44:52] - |A| - C:\Users\Clement\AppData\Local\GDIPFONTCACHEV1.DAT
[11/03/2014 18:15:17] - |D| - C:\Users\Clement\AppData\Local\gegl-0.2
[01/03/2014 16:40:22] - |D| - C:\Users\Clement\AppData\Local\Google
[11/03/2014 18:38:51] - |D| - C:\Users\Clement\AppData\Local\gtk-2.0
[01/03/2014 16:30:52] - |SHD| - C:\Users\Clement\AppData\Local\Historique
[17/08/2014 19:31:18] - |A| - C:\Users\Clement\AppData\Local\housecall.guid.cache
[18/08/2014 13:34:18] - |AH| - C:\Users\Clement\AppData\Local\IconCache.db
[10/06/2014 16:48:02] - |D| - C:\Users\Clement\AppData\Local\IsolatedStorage
[01/03/2014 16:30:52] - |D| - C:\Users\Clement\AppData\Local\Microsoft
[02/03/2014 20:23:15] - |D| - C:\Users\Clement\AppData\Local\Microsoft Help
[28/07/2014 21:03:25] - |D| - C:\Users\Clement\AppData\Local\Newshosting
[01/03/2014 20:15:04] - |D| - C:\Users\Clement\AppData\Local\NVIDIA
[18/05/2014 18:09:23] - |D| - C:\Users\Clement\AppData\Local\NVIDIA Corporation
[02/03/2014 16:59:30] - |D| - C:\Users\Clement\AppData\Local\O&O
[01/03/2014 17:35:46] - |D| - C:\Users\Clement\AppData\Local\OCCT_-_Ocbase_-_Adrien_Me
[18/03/2014 21:10:38] - |D| - C:\Users\Clement\AppData\Local\Origin
[01/03/2014 16:50:32] - |D| - C:\Users\Clement\AppData\Local\Programs
[27/07/2014 02:34:27] - |A| - C:\Users\Clement\AppData\Local\PUTTY.RND
[11/03/2014 18:35:57] - |A| - C:\Users\Clement\AppData\Local\recently-used.xbel
[01/03/2014 16:30:52] - |D| - C:\Users\Clement\AppData\Local\Temp
[01/03/2014 16:30:52] - |SHD| - C:\Users\Clement\AppData\Local\Temporary Internet Files
[12/03/2014 16:43:54] - |D| - C:\Users\Clement\AppData\Local\Ubisoft Game Launcher
[01/03/2014 16:30:54] - |D| - C:\Users\Clement\AppData\Local\VirtualStore
[18/04/2014 17:25:48] - |D| - C:\Users\Clement\AppData\Local\Vitalwerks
[30/05/2014 15:24:02] - |D| - C:\Users\Clement\AppData\Local\Windows Live

¤¤¤¤¤¤¤¤¤¤ | C:\ProgramData

[01/03/2014 17:36:13] - |D| - C:\ProgramData\Adobe
[14/07/2009 07:08:56] - |SHD| - C:\ProgramData\Application Data
[17/07/2014 22:07:37] - |D| - C:\ProgramData\ASUS
[02/03/2014 16:04:36] - |D| - C:\ProgramData\AVAST Software
[10/03/2014 15:14:51] - |D| - C:\ProgramData\Battle.net
[15/08/2014 01:24:53] - |D| - C:\ProgramData\Blizzard Entertainment
[01/03/2014 16:30:51] - |SHD| - C:\ProgramData\Bureau
[07/06/2014 19:00:28] - |D| - C:\ProgramData\Canneverbe Limited
[26/03/2014 14:41:03] - |HD| - C:\ProgramData\CanonBJ
[28/07/2014 21:03:18] - |D| - C:\ProgramData\Caphyon
[17/08/2014 15:10:05] - |D| - C:\ProgramData\DAEMON Tools Lite
[14/07/2009 07:08:56] - |SHD| - C:\ProgramData\Desktop
[14/07/2009 07:08:56] - |SHD| - C:\ProgramData\Documents
[18/03/2014 21:17:19] - |D| - C:\ProgramData\Electronic Arts
[01/03/2014 16:30:51] - |SHD| - C:\ProgramData\Favoris
[14/07/2009 07:08:56] - |SHD| - C:\ProgramData\Favorites
[01/03/2014 16:44:09] - |D| - C:\ProgramData\Intel
[17/08/2014 20:40:57] - |D| - C:\ProgramData\Lavasoft
[01/03/2014 16:57:26] - |D| - C:\ProgramData\ma-config.com
[02/03/2014 19:13:17] - |D| - C:\ProgramData\Malwarebytes
[01/03/2014 16:30:51] - |SHD| - C:\ProgramData\Menu Démarrer
[14/07/2009 05:20:08] - |SD| - C:\ProgramData\Microsoft
[02/03/2014 20:23:12] - |D| - C:\ProgramData\Microsoft Help
[02/03/2014 20:14:02] - |D| - C:\ProgramData\Microsoft Toolkit
[01/03/2014 16:30:51] - |SHD| - C:\ProgramData\Modèles
[01/03/2014 20:07:22] - |D| - C:\ProgramData\NVIDIA
[01/03/2014 20:07:03] - |D| - C:\ProgramData\NVIDIA Corporation
[02/03/2014 16:59:08] - |D| - C:\ProgramData\OO Software
[18/04/2014 18:28:44] - |D| - C:\ProgramData\Oracle
[11/03/2014 19:26:22] - |D| - C:\ProgramData\Origin
[17/08/2014 21:13:55] - |D| - C:\ProgramData\PC Tools
[02/03/2014 20:23:48] - |D| - C:\ProgramData\regid.1991-06.com.microsoft
[16/07/2014 14:50:11] - |D| - C:\ProgramData\Riot Games
[11/03/2014 18:59:49] - |D| - C:\ProgramData\Saitek
[01/03/2014 16:50:52] - |D| - C:\ProgramData\Samsung
[02/03/2014 19:45:15] - |D| - C:\ProgramData\Skype
[17/08/2014 21:24:33] - |D| - C:\ProgramData\Spyware Terminator
[14/07/2009 07:08:56] - |SHD| - C:\ProgramData\Start Menu
[18/04/2014 18:28:43] - |D| - C:\ProgramData\Sun
[17/04/2014 14:37:34] - |D| - C:\ProgramData\Synology
[17/08/2014 21:13:56] - |D| - C:\ProgramData\TEMP
[14/07/2009 07:08:56] - |SHD| - C:\ProgramData\Templates
[19/04/2014 13:11:27] - |D| - C:\ProgramData\Vitalwerks

Eléments analysés : 193451 | Modifiés : 0 | Infectés : 3

¤¤¤¤¤¤¤¤¤¤ |EOF| ¤¤¤¤¤¤¤¤¤¤ | 18:15:14 | [28 Ko]
#203338
Encore détecté.
Code: Tout sélectionner
Malwarebytes Anti-Malware
http://www.malwarebytes.org" onclick="window.open(this.href);return false;

Date de l'examen: 30/08/2014
Heure de l'examen: 22:44:22
Fichier journal:
Administrateur: Oui

Version: 2.00.2.1012
Base de données Malveillants: v2014.08.30.06
Base de données Rootkits: v2014.08.21.01
Licence: Premium
Protection contre les malveillants: Activé(e)
Protection contre les sites Web malveillants: Activé(e)
Self-protection: Désactivé(e)

Système d'exploitation: Windows 7 Service Pack 1
Processeur: x64
Système de fichiers: NTFS
Utilisateur: Clement

Type d'examen: Examen "Menaces"
Résultat: Terminé
Objets analysés: 293434
Temps écoulé: 3 min, 9 sec

Mémoire: Activé(e)
Démarrage: Activé(e)
Système de fichiers: Activé(e)
Archives: Activé(e)
Rootkits: Activé(e)
Heuristics: Activé(e)
PUP: Activé(e)
PUM: Activé(e)

Processus: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Clés du Registre: 0
(No malicious items detected)

Valeurs du Registre: 0
(No malicious items detected)

Données du Registre: 0
(No malicious items detected)

Dossiers: 0
(No malicious items detected)

Fichiers: 1
PUP.Optional.IStartSurf.A, C:\Users\Clement\AppData\Local\Google\Chrome\User Data\Default\Preferences, Bon: (), Mauvais: ( "startup_urls": [ "https://www.google.fr/", "http://www.google.com", "http://www.istartsurf.com/?type=hp&ts=1408281240&from=smt&uid=SamsungXSSDX840XPROXSeries_S1ANNSADB86446K", "http://www.istartsurf.com/?type=hp&ts=1408281398&from=smt&uid=SamsungXSSDX840XPROXSeries_S1ANNSADB86446K" ],), ,[f8a1bb0e9dde280e92edbc5aca3b02fe]

Secteurs physiques: 0
(No malicious items detected)


(end)
Avatar du membre
par V-X
#203342
Re,
  • Télécharge ZHPDiag (de Nicolas Coolman) sur ton bureau.
  • Installe le logiciel.
  • Lance ZHPDiag,
  • /!\ Sous Vista, Windows 7 et 8, il faut lancer le fichier par clic-droit -> Exécuter en tant qu'administrateur
  • Clic sur Complet

    Note : Ne pas fermer le programme même si il est indiqué qu'il ne répond plus.

    Image
  • Une fois le scan terminé rends toi sur le bureau, le fichier ZHPDiag.txt à  été créé.
  • Héberge le rapport ZHPDiag.txt sur SosUpload, puis copie/colle le lien fourni dans ta prochaine réponse sur le forum
Avatar du membre
par V-X
#203346
Re,
  • Copie les lignes ci dessous :
    Code : Tout sélectionner
    Script ZHPFix
    ShortcutFix
    O43 - CFD: 17/08/2014 - 22:29:12 - [] ----D C:\ProgramData\Spyware Terminator 
    O43 - CFD: 29/08/2014 - 19:09:42 - [] ----D C:\ProgramData\AVAST Software
    O43 - CFD: 17/08/2014 - 21:24:33 - [0] ----D C:\Users\Clement\AppData\Roaming\Spyware Terminator
    O67 - Shell Spawning: <.html> <ChromeHTML>[HKCU\..\open\Command] (.Not Key.)  
    EmptyPrefetch
    EmptyFlash
    FirewallRAZ
    EmptyTemp
    
  • Lances ZHPFix, exécuter en tant qu'administrateur sous Windows : 7/8 et Vista
    1. Clique sur Importer
    2. Puis Clic sur "GO"
    Image

    Image
  • Confirmes les nettoyages des données en cliquant sur "Oui"
  • Une fois le scan terminé rends toi sur le bureau, le fichier ZHPFixReport à  été crée.
  • Héberge le rapport ZHPFixReport sur SosUpload, puis copie/colle le lien fourni dans ta prochaine réponse.
Aide : +
#203347
Code: Tout sélectionner
Rapport de ZHPFix 2014.8.3.6 par Nicolas Coolman, Update du 03/08/2014
Fichier d'export Registre :
Run by Clement at 30/08/2014 23:31:45
High Elevated Privileges : OK
Windows 7 Business Edition, 64-bit Service Pack 1 (Build 7601)

Corbeille vidée (00mn 01s)
Dossier Prefetcher vidé
Réparation des raccourcis navigateur

========== Valeurs du Registre ==========
Aucune Valeur Standard Profile: FirewallRaz :
Aucune Valeur Domain Profile: FirewallRaz :

========== Dossiers ==========
SUPPRIMà‰: C:\ProgramData\Spyware Terminator
SUPPRIMà‰: C:\ProgramData\AVAST Software
SUPPRIMà‰: C:\Users\Clement\AppData\Roaming\Spyware Terminator
SUPPRIMà‰S Flash Cookies (0)
SUPPRIMà‰S Temporaires Windows (3)

========== Fichiers ==========
SUPPRIMà‰S Flash Cookies (0) (0 octets)
SUPPRIMà‰S Temporaires Windows (10) (64 793 octets)


========== Récapitulatif ==========
2 : Valeurs du Registre
5 : Dossiers
2 : Fichiers


End of clean in 00mn 02s

========== Chemin de fichier rapport ==========
C:\Users\Clement\AppData\Roaming\ZHP\ZHPFix[R1].txt - 29/08/2014 17:41:56 [1403]
C:\Users\Clement\AppData\Roaming\ZHP\ZHPFix[R2].txt - 30/08/2014 23:31:46 [1098]
#203351
Encore détecté.
Code: Tout sélectionner
Malwarebytes Anti-Malware
http://www.malwarebytes.org" onclick="window.open(this.href);return false;

Date de l'examen: 30/08/2014
Heure de l'examen: 23:44:53
Fichier journal:
Administrateur: Oui

Version: 2.00.2.1012
Base de données Malveillants: v2014.08.30.07
Base de données Rootkits: v2014.08.21.01
Licence: Premium
Protection contre les malveillants: Activé(e)
Protection contre les sites Web malveillants: Activé(e)
Self-protection: Désactivé(e)

Système d'exploitation: Windows 7 Service Pack 1
Processeur: x64
Système de fichiers: NTFS
Utilisateur: Clement

Type d'examen: Examen "Menaces"
Résultat: Terminé
Objets analysés: 293312
Temps écoulé: 3 min, 34 sec

Mémoire: Activé(e)
Démarrage: Activé(e)
Système de fichiers: Activé(e)
Archives: Activé(e)
Rootkits: Activé(e)
Heuristics: Activé(e)
PUP: Activé(e)
PUM: Activé(e)

Processus: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Clés du Registre: 0
(No malicious items detected)

Valeurs du Registre: 0
(No malicious items detected)

Données du Registre: 0
(No malicious items detected)

Dossiers: 0
(No malicious items detected)

Fichiers: 1
PUP.Optional.IStartSurf.A, C:\Users\Clement\AppData\Local\Google\Chrome\User Data\Default\Preferences, Bon: (), Mauvais: ( "startup_urls": [ "https://www.google.fr/", "http://www.google.com", "http://www.istartsurf.com/?type=hp&ts=1408281240&from=smt&uid=SamsungXSSDX840XPROXSeries_S1ANNSADB86446K", "http://www.istartsurf.com/?type=hp&ts=1408281398&from=smt&uid=SamsungXSSDX840XPROXSeries_S1ANNSADB86446K" ],), ,[831628a1265591a520ab76a0768f2cd4]

Secteurs physiques: 0
(No malicious items detected)


(end)

bonsoir oki pour la fermeture je m'en charge car[…]

how to clean junk files

Hello don't use this program , it's a bullshit :)

Bonjour https://www.aht.li/3213847/AdsFix.exe b[…]

De rien Bon WE :)