Infecté par tlbsearch 2014-11-09T11:02:25+00:00
  • Auteur
    Messages
  • Glazh
    Participant
    Post count: 7

    Salut à tous !

    Voilà je viens solliciter votre aide pour m’aider à enlever cette horrible chose qu’est TLBSEARCH …Pub qui revient constamment sur toutes mes pages internet..

    J’ai déjà fais tourner Adwcleaner et Mbam mais ça continue encore …

    [spoiler:3utk138b]~ Rapport de ZHPDiag v2014.11.9.160 – Nicolas Coolman (9/11/2014)
    ~ Lancé par Saturn (9/11/2014 11:56:16)
    ~ Adresse du Site Web http://nicolascoolman.fr” onclick=”window.open(this.href);return false;
    ~ Adresse du Forum http://forum.nicolascoolman.fr” onclick=”window.open(this.href);return false;
    ~ Traduit par Nicolas Coolman
    ~ Etat de la version : Version à jour.
    ~ Liste blanche : Activée par le programme
    ~ Elévation des Privilèges : OK
    ~ User Account Control (UAC): Activate by user

    —\ Navigateurs Internet
    MSIE: Internet Explorer v11.0.9600.17358
    GCIE: Google Chrome v39.0.2171.52 (Defaut)

    —\ Informations sur les produits Windows
    ~ Langage: Français
    Windows 7 Home Premium, 64-bit Service Pack 1 (Build 7601)
    Windows Server License Manager Script : OK
    ~ Windows Operating System – Windows(R) 7, OEM_SLP channel
    System Locked Preinstallation (OEM_SLP) : OK
    Windows ID Activation : OK
    ~ Windows Partial Key : 9YQTR
    Windows License : OK
    ~ Windows Remaining Initializations Number : 1
    Software Protection Service (Protection logicielle) : OK
    Windows Automatic Updates : OK
    Windows Activation Technologies : OK

    —\ Logiciels de protection du système
    Bitdefender Internet Security v17.16.0.729
    Malwarebytes Anti-Malware version 2.0.3.1025
    Windows Defender W7 (Deactivate)

    —\ Logiciels d'optimisation du système
    CCleaner v3.26

    —\ Logiciels de partage PeerToPeer
    µTorrent v2.2.1 =>P2P.µTorrent

    —\ Surveillance de Logiciels
    Adobe Flash Player 10 Plugin
    Adobe Reader X

    —\ Informations sur le système
    ~ Processor: Intel64 Family 6 Model 58 Stepping 9, GenuineIntel
    ~ Operating System: 64 Bits
    Boot mode: Normal (Normal boot)
    Total RAM: 6029 MB (39% free)
    System Restore: Activé (Enable)
    System drive C: has 8 GB (2%) free of 279 GB

    —\ Mode de connexion au système
    ~ Computer Name: GILLES
    ~ User Name: Saturn
    ~ All Users Names: UpdatusUser, Saturn, Administrateur,
    ~ Unselected Option: None
    Logged in as Administrator

    —\ Variables d'environnement
    ~ System Unit : C:
    ~ %AppZHP% : C:UsersSaturnAppDataRoamingZHP
    ~ %AppData% : C:UsersSaturnAppDataRoaming
    ~ %Desktop% : C:UsersSaturnDesktop
    ~ %Favorites% : C:UsersSaturnFavorites
    ~ %LocalAppData% : C:UsersSaturnAppDataLocal
    ~ %StartMenu% : C:UsersSaturnAppDataRoamingMicrosoftWindowsStart Menu
    ~ %Windir% : C:Windows
    ~ %System% : C:WindowsSystem32

    —\ Enumération des unités disques
    C: Hard drive, Flash drive, Thumb drive (Free 8 Go of 279 Go)
    D: Hard drive, Flash drive, Thumb drive (Free 24 Go of 394 Go)
    F: CD-ROM drive (Not Inserted)
    H: CD-ROM drive (Not Inserted)
    I: CD-ROM drive (Not Inserted)
    Q: Hard drive, Flash drive, Thumb drive (Free 0 Go of 0 Go)

    —\ Etat du Centre de Sécurité Windows
    [HKLMSOFTWAREMicrosoftWindowsCurrentVersionPoliciesExplorer] NoActiveDesktopChanges: Modified
    [HKLMSOFTWAREMicrosoftWindowsCurrentVersionWindowsUpdateAuto UpdateResultsInstall] LastSuccessTime : Out Of Date
    ~ Security Center: 41 Legitimates Filtered in 00mn 00s

    —\ Recherche particulière de fichiers génériques
    [MD5.1F4B9C4902B806E498F9C12E12E876A3] – (.Microsoft Corporation – Explorateur Windows.) (.24/02/2012 – 01:55:29.) — C:WindowsExplorer.exe [2713600]
    [MD5.94355C28C1970635A31B3FE52EB7CEBA] – (.Microsoft Corporation – Application de démarrage de Windows.) (.14/07/2009 – 02:39:52.) — C:WindowsSystem32Wininit.exe [129024]
    [MD5.9D98D4F390F0B14A782F3B931E613A1A] – (.Microsoft Corporation – Extensions Internet pour Win32.) (.19/09/2014 – 01:33:18.) — C:WindowsSystem32wininet.dll [2309632]
    [MD5.8CEBD9D0A0A879CDE9F36F4383B7CAEA] – (.Microsoft Corporation – Application d’ouverture de session Windows.) (.17/07/2014 – 03:07:24.) — C:WindowsSystem32Winlogon.exe [455168]
    [MD5.067FA52BFB59A56110A12312EF9AF243] – (.Microsoft Corporation – Bibliothèque de licences.) (.20/11/2010 – 14:27:28.) — C:WindowsSystem32sppcomapi.dll [232448]
    [MD5.FA886682CFC5D36718D3E436AACF10B9] – (.Microsoft Corporation – Ancillary Function Driver for WinSock.) (.30/05/2014 – 07:45:52.) — C:Windowssystem32DriversAFD.sys [497152]
    [MD5.02062C0B390B7729EDC9E69C680A6F3C] – (.Microsoft Corporation – ATAPI IDE Miniport Driver.) (.14/07/2009 – 02:52:21.) — C:Windowssystem32Driversatapi.sys [24128]
    [MD5.B8BD2BB284668C84865658C77574381A] – (.Microsoft Corporation – CD-ROM File System Driver.) (.14/07/2009 – 00:19:47.) — C:Windowssystem32DriversCdfs.sys [92160]
    [MD5.F036CE71586E93D94DAB220D7BDF4416] – (.Microsoft Corporation – SCSI CD-ROM Driver.) (.20/11/2010 – 10:19:22.) — C:Windowssystem32DriversCdrom.sys [147456]
    [MD5.9BB2EF44EAA163B29C4A4587887A0FE4] – (.Microsoft Corporation – DFS Namespace Client Driver.) (.20/11/2010 – 10:26:34.) — C:Windowssystem32DriversDfsC.sys [102400]
    [MD5.97BFED39B6B79EB12CDDBFEED51F56BB] – (.Microsoft Corporation – High Definition Audio Bus Driver.) (.20/11/2010 – 11:43:44.) — C:Windowssystem32DriversHDAudBus.sys [122368]
    [MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] – (.Microsoft Corporation – Pilote de port i8042.) (.14/07/2009 – 00:19:57.) — C:Windowssystem32Driversi8042prt.sys [105472]
    [MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] – (.Microsoft Corporation – IP Network Address Translator.) (.14/07/2009 – 01:10:03.) — C:Windowssystem32DriversIpNat.sys [116224]
    [MD5.A5D9106A73DC88564C825D317CAC68AC] – (.Microsoft Corporation – Windows NT SMB Minirdr.) (.24/02/2012 – 02:02:21.) — C:Windowssystem32DriversMRxSmb.sys [158208]
    [MD5.09594D1089C523423B32A4229263F068] – (.Microsoft Corporation – MBT Transport driver.) (.20/11/2010 – 10:23:22.) — C:Windowssystem32DriversnetBT.sys [261632]
    [MD5.1A29A59A4C5BA6F8C85062A613B7E2B2] – (.Microsoft Corporation – Pilote du système de fichiers NT.) (.24/01/2014 – 03:37:55.) — C:Windowssystem32Driversntfs.sys [1684928]
    [MD5.0086431C29C35BE1DBC43F52CC273887] – (.Microsoft Corporation – Pilote de port parallèle.) (.14/07/2009 – 01:00:41.) — C:Windowssystem32DriversParport.sys [97280]
    [MD5.471815800AE33E6F1C32FB1B97C490CA] – (.Microsoft Corporation – RAS L2TP mini-port/call-manager driver.) (.20/11/2010 – 11:52:36.) — C:Windowssystem32DriversRasl2tp.sys [129536]
    [MD5.548260A7B8654E024DC30BF8A7C5BAA4] – (.Microsoft Corporation – SMB Transport driver.) (.14/07/2009 – 01:09:09.) — C:Windowssystem32Driverssmb.sys [93184]
    [MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] – (.Microsoft Corporation – TDI Translation Driver.) (.20/11/2010 – 10:21:58.) — C:Windowssystem32Driverstdx.sys [119296]
    [MD5.DF8126BD41180351A093A3AD2FC8903B] – (.Microsoft Corporation – Pilote de cliché instantané du volume.) (.24/02/2012 – 01:35:34.) — C:Windowssystem32Driversvolsnap.sys [296320]
    ~ Generic Processes: Scanned in 00mn 00s

    —\ Etat des fichiers cachés (Caché/Total)
    ~ Mes images (My Pictures) : 1/2811
    ~ Mes musiques (My Musics) : 13/860
    ~ Mes Videos (My Videos) : 1/16
    ~ Mes Favoris (My Favorites) : 1/12
    ~ Mes Documents (My Documents) : 2/2950
    ~ Mon Bureau (My Desktop) : 19/2131
    ~ Menu demarrer (Programs) : 1/36
    ~ Hidden Files: Scanned in 00mn 00s

    —\ Processus lancés
    [MD5.64A7C84C0A8C79B22033F92D43919062] – (.ASUS – ACMON.) — C:Program Files (x86)ASUSSplendidACMON.exe [102568] [PID.5340]
    [MD5.98CADC34741738CFC24F5CDFDAA408FA] – (.ASUSTeK – ACEngSvr Module.) — C:WindowsSysWOW64ACEngSvr.exe [162456] [PID.5916]
    [MD5.37DEB76A2CF005841C4E45DE2B94D84F] – (.ASUS – AsScrPro.) — C:WindowsAsScrPro.exe [3058304] [PID.5932]
    [MD5.89D2706FCD45E33CECFBD46BCBAD7E16] – (.Microsoft Corporation – Tablet PC Input Panel Helper.) — C:Program Files (x86)Common FilesMicrosoft SharedInkTabTip32.exe [10240] [PID.6072]
    [MD5.35048D8E8A0BF7A797CD5757ACD7EED0] – (.CyberLink – CyberLink MediaLibray Service.) — C:Program Files (x86)CyberLinkPower2GoCLMLSvc.exe [107816] [PID.4804]
    [MD5.6B3BA5BB455D7A4FD16B697B8F73858F] – (.ASUSTek Computer Inc. – ASUS FaceLogon Application.) — C:Program Files (x86)ASUSFaceLogonsensorsrv.exe [473728] [PID.5236]
    [MD5.ED759B7FD51466447CC31CBE79B99050] – (.ASUSTek Computer Inc. – ASUS USB Charger Plus.) — C:Program Files (x86)ASUSUSBChargerPlusUSBChargerPlus.exe [1121448] [PID.5276]
    [MD5.F48ECBB9771865CDC5435BD9AF4564F0] – (.ASUSTeK Computer Inc. – ASUS Quick Gesture Exe.) — C:Program Files (x86)ASUSASUS Virtual TouchQuickGesturex86QuickGesture.exe [17872] [PID.5320]
    [MD5.D9AB754613208112B840C75B6762B909] – (.ASUSTek Computer Inc. – ATKOSD2.) — C:Program Files (x86)ASUSATK PackageATKOSD2ATKOSD2.exe [322176] [PID.5712]
    [MD5.98AD7CFBC97E7F72F787C21257C3C628] – (.Bitdefender – Bitdefender Application Password Manager Ag.) — C:Program FilesBitdefenderBitdefenderantispam32bdapppassmgr.exe [621448] [PID.6784]
    [MD5.CC78200C3ECFFA178E78308A0E160D80] – (.Akamai Technologies, Inc. – Akamai NetSession Client.) — C:UsersSaturnAppDataLocalAkamainetsession_win.exe [4672920] [PID.7124]
    [MD5.C64E9B1C9EA057DCECDCB98F34377811] – (.Microsoft Corporation – Microsoft OneNote Quick Launcher.) — C:Program Files (x86)Microsoft OfficeOffice14ONENOTEM.exe [228552] [PID.7016]
    [MD5.B63E5C7807334A3A8F731062F15462CC] – (.Adobe Systems Incorporated – Adobe Reader and Acrobat Manager.) — C:Program Files (x86)Common FilesAdobeARM1.0AdobeARM.exe [919008] [PID.6164]
    [MD5.BC31B27061F27E8968CD0435C038F712] – (.ASUS – ATK Media.) — C:Program Files (x86)ASUSATK PackageATK MediaDMedia.exe [174720] [PID.2868]
    [MD5.5AEBF6FA9805C9101220AA4FB4FA17E7] – (.ASUS – HControlUser.) — C:Program Files (x86)ASUSATK PackageATK HotkeyHControlUser.exe [105016] [PID.3388]
    [MD5.04AB67DB445F75369CBF99B174F10297] – (.ASUS – Wireless Console 3.) — C:Program Files (x86)ASUSWireless Console 3wcourier.exe [2319536] [PID.6340]
    [MD5.99ECAF298145F950B1326656167FBFDF] – (.CyberLink Corp. – PowerDVD RC Service.) — C:Program Files (x86)CyberLinkPowerDVD10PDVD10Serv.exe [87336] [PID.2424]
    [MD5.BAF535F843A3E790E04A7613811B55BC] – (.Apple Inc. – iTunesHelper.) — C:Program Files (x86)iTunesiTunesHelper.exe [152392] [PID.6660]
    [MD5.6D313E4121365B2ABEED5A93F9B197E5] – (.Oracle Corporation – Java Update Scheduler.) — C:Program Files (x86)Common FilesJavaJava Updatejusched.exe [507776] [PID.6940]
    [MD5.CD37E8F77BFF71F104BDC941A393F0B5] – (.Intel Corporation – Intel Services Manager.) — C:Program Files (x86)IntelIntel(R) ME FW Recovery Agentbinismagent.exe [645896] [PID.2500]
    [MD5.4DA92A4C32F68E57C49CD77CD0A7439C] – (…) — C:Program Files (x86)IntelIntel(R) ME FW Recovery Agentbinupdateui.exe [119808] [PID.9340]
    [MD5.49FA9FC92645E4F41A20251115EC19C9] – (.Nicolas Coolman – ZHPDiag.) — C:Program Files (x86)ZHPDiagZHPDiag.exe [8123392] [PID.5924]
    [MD5.A9D26626BEADF5A0641BF6B5095EF309] – (.NVIDIA Corporation – Stereo Vision Control Panel API Server.) — C:Program Files (x86)NVIDIA Corporation3D VisionnvSCPAPISvr.exe [414496] [PID.1292]
    [MD5.A3626C6D3F2DC95497F3F61842D7FD89] – (.ASUS – ASLDR Service.) — C:Program Files (x86)ASUSATK PackageATK HotkeyASLDRSrv.exe [80512] [PID.2100]
    [MD5.DBC598E47E7A382E60E2A4745D41FEF9] – (.ASUS – GFNEXSrv.) — C:Program Files (x86)ASUSATK PackageATKGFNEXGFNEXSrv.exe [96896] [PID.2172]
    [MD5.D19C4EE2AC7C47B8F5F84FFF1A789D8A] – (.Adobe Systems Incorporated – Adobe Acrobat Update Service.) — C:Program Files (x86)Common FilesAdobeARM1.0armsvc.exe [63960] [PID.2448]
    [MD5.30E3850F303EAE5C364782EA78579CC9] – (.Apple Inc. – MobileDeviceService.) — C:Program Files (x86)Common FilesAppleMobile Device SupportAppleMobileDeviceService.exe [55624] [PID.2484]
    [MD5.52436245AAEF3B65DF7859949AB6A14E] – (.ASUS – ASUS InstantOn Program.) — C:Program Files (x86)ASUSInstantOn for NBInsOnSrv.exe [277120] [PID.2900]
    [MD5.896AA2F1D79662B17D5DBBE588E24E30] – (…) — C:Program Files (x86)IntelIntel(R) Management Engine ComponentsFWServiceIntelMeFWService.exe [128280] [PID.3060]
    [MD5.3C6630473DD42FFC57D9F5564F533127] – (.Intel Corporation – Intel(R) Dynamic Application Loader Host In.) — C:Program Files (x86)IntelIntel(R) Management Engine ComponentsDALjhi_service.exe [161560] [PID.2376]
    [MD5.6D8A2EE4244630B290A837E79C0F37A1] – (.Malwarebytes Corporation – Malwarebytes Anti-Malware.) — C:Program Files (x86)Malwarebytes Anti-Malwarembamscheduler.exe [1871160] [PID.1676]
    [MD5.09D4503CBB6ADB3A54E7C7A75090B728] – (.Malwarebytes Corporation – Malwarebytes Anti-Malware.) — C:Program Files (x86)Malwarebytes Anti-Malwarembamservice.exe [968504] [PID.2864]
    [MD5.39B1D0A636A400304565D4521FAD6D77] – (.Microsoft Corporation – Microsoft Application Virtualization Virtua.) — C:Program Files (x86)Microsoft Application Virtualization Clientsftvsa.exe [207528] [PID.3468]
    [MD5.28B051B78471FC290C1790623D5908E1] – (.Atheros – Atheros Coex Service Application.) — C:Program Files (x86)Bluetooth SuiteAth_CoexAgent.exe [158880] [PID.3696]
    [MD5.77C5A741A7452812F278EF2C18478862] – (.Microsoft Corporation – Microsoft Application Virtualization Client.) — C:Program Files (x86)Microsoft Application Virtualization Clientsftlist.exe [523944] [PID.3752]
    [MD5.FD557A50A65E44041CD2FCEF4BEB04DB] – (.Microsoft Corporation – Microsoft Office Client Virtualization Serv.) — C:Program Files (x86)Common FilesMicrosoft SharedVirtualization HandlerCVHSVC.exe [822504] [PID.4340]
    [MD5.20DDC9CED8BC8390138F3187E0FF7411] – (.ASUSTek Computer Inc. – HControl.) — C:Program Files (x86)ASUSATK PackageATK HotkeyHControl.exe [174720] [PID.4424]
    [MD5.EA75E0837B21B46E88102E23438FE2CB] – (.ASUS – ASUS InstantOn Program.) — C:Program Files (x86)ASUSInstantOn for NBInsOnWMI.exe [289408] [PID.828]
    [MD5.149126216A694E6BA84E92ECA77AAE3B] – (.ASUS – ATKOSD.) — C:Program Files (x86)ASUSATK PackageATK HotkeyATKOSD.exe [2488888] [PID.5172]
    [MD5.AA11E1368EEB237DD100BAC6AFFE1C57] – (.ASUS – KBFiltr.) — C:Program Files (x86)ASUSATK PackageATK HotkeyKBFiltr.exe [113208] [PID.5472]
    [MD5.4A7C441D99D86704D194E7678873B95D] – (.ASUS – WDC.) — C:Program Files (x86)ASUSATK PackageATK HotkeyWDC.exe [174648] [PID.5804]
    [MD5.616F6E52CAE254727A886BA8EDA1BEEA] – (.Pas de propriétaire – RichVideo Module.) — C:Program Files (x86)CyberLinkShared filesRichVideo.exe [247152] [PID.5356]
    [MD5.B3009DCDBCC5EFA49FA52562E9860E3C] – (.MAGIX AG – Verzeichnisüberwachung und Hilfsaufgaben fü.) — C:Program Files (x86)Common FilesMAGIX ServicesDatabasebinFABS.exe [1840128] [PID.268]
    [MD5.2B23FAA39D8F949ED5EEE03ECA50BCD5] – (.Intel Corporation – Local Manageability Service.) — C:Program Files (x86)IntelIntel(R) Management Engine ComponentsLMSLMS.exe [277784] [PID.7544]
    [MD5.AA130938A27BB80A8B6438EF83232275] – (.NVIDIA Corporation – NVIDIA Settings Update Manager.) — C:Program Files (x86)NVIDIA CorporationNVIDIA Update Coredaemonu.exe [1364256] [PID.4212]
    [MD5.3C5405EF78576E8E4D791EB18F6856A8] – (.Intel Corporation – User Notification Service.) — C:Program Files (x86)IntelIntel(R) Management Engine ComponentsUNSUNS.exe [363800] [PID.8612]
    ~ Processes Running: Scanned in 00mn 00s

    —\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
    C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultPreferences

    —\ Liste des dossiers d'extension Google Chrome
    ~ Google Lines Browser: 0 Legitimates Filtered in 00mn 20s

    —\ Internet Explorer, Proxy Management (R5)
    R5 – HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings,ProxyOverride = *.local;
    R5 – HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings,ProxyServer = no key
    R5 – HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings,ProxyEnable = 0
    R5 – HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings,MigrateProxy = 1
    R5 – HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings,EnableHttp1_1 = 1
    R5 – HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings,AutoConfigProxy = wininet.dll
    ~ Proxy management: Scanned in 00mn 00s

    —\ Analyse des lignes F0, F1, F2, F3 – IniFiles, Autoloading programs
    F2 – REG:system.ini: USERINIT=C:Windowssystem32userinit.exe,
    F2 – REG:system.ini: Shell=C:Windowsexplorer.exe
    F2 – REG:system.ini: VMApplet=C:WindowsSystem32SystemPropertiesPerformance.exe
    ~ Keys: Scanned in 00mn 00s

    —\ Hosts file redirection (O1)
    ~ Le fichier hôte est sain (The hosts file is clean) (21)
    ~ Hosts File: Scanned in 00mn 00s

    —\ Autres liens utilisateurs (O4)
    O4 – GSTaskBar [Saturn]: µTorrent.lnk . (.BitTorrent, Inc. – µTorrent.) — C:Program Files (x86)uTorrentuTorrent.exe =>P2P.BitTorrent
    O4 – GSDesktop [Saturn]: µTorrent.lnk . (.BitTorrent, Inc. – µTorrent.) — C:Program Files (x86)uTorrentuTorrent.exe =>P2P.BitTorrent
    ~ Global Startup: 3 Legitimates Filtered in 00mn 00s

    —\ Applications lancées au démarrage du système (O4)
    O4 – GSStartup [Saturn]: Ubisoft register.lnk . (…) — C:Program Files (x86)UbisoftRegisterschedule.exe (.not file.)
    O4 – HKLM..Run: [IgfxTray] . (.Intel Corporation – igfxTray Module.) — C:Windowssystem32igfxtray.exe
    O4 – HKLM..Run: [HotKeysCmds] . (.Intel Corporation – hkcmd Module.) — C:Windowssystem32hkcmd.exe
    O4 – HKLM..Run: [ETDCtrl] C:Program Files (x86)ElantechETDCtrl.exe (.not file.)
    O4 – HKLM..Run: [RtHDVBg] . (.Realtek Semiconductor – HD Audio Background Process.) — C:Program FilesRealtekAudioHDARAVBg64.exe
    O4 – HKLM..Run: [AtherosBtStack] . (.Atheros Communications – Serveur Stack Bluetooth.) — C:Program Files (x86)Bluetooth SuiteBtvStack.exe
    O4 – HKLM..Run: [AthBtTray] . (.Atheros Commnucations – Bluetooth Tray.) — C:Program Files (x86)Bluetooth SuiteAthBtTray.exe
    O4 – HKLM..Run: [AmIcoSinglun64] . (.Alcor Micro Corp. – Single LUN Icon Utility for VID 058F PID 63.) — C:Program Files (x86)AmIcoSingLunAmIcoSinglun64.exe
    O4 – HKLM..Run: [AdobeAAMUpdater-1.0] . (.Adobe Systems Incorporated – Adobe Updater Startup Utility.) — C:Program Files (x86)Common FilesAdobeOOBEPDAppUWAUpdaterStartupUtility.exe =>.Adobe Systems Incorporated
    O4 – HKLM..Run: [Logitech Download Assistant] . (.Logitech, Inc. – Logitech Download Assistant.) — C:WindowsSystem32LogiLDA.dll
    O4 – HKLM..Run: [Bdagent] . (.Bitdefender – Bitdefender Agent.) — C:Program FilesBitdefenderBitdefenderbdagent.exe
    O4 – HKCU..Run: [Facebook Update] . (.Facebook Inc. – Programme d'installation de Facebook.) — C:UsersSaturnAppDataLocalFacebookUpdateFacebookUpdate.exe
    O4 – HKCU..Run: [AdobeBridge] Clé orpheline
    O4 – HKCU..Run: [DAEMON Tools Pro Agent] . (.DT Soft Ltd – DAEMON Tools Pro Agent.) — C:Program Files (x86)DAEMON Tools ProDTAgent.exe
    O4 – HKCU..Run: [uTorrent] . (.BitTorrent, Inc. – µTorrent.) — C:Program Files (x86)uTorrentuTorrent.exe =>P2P.BitTorrent
    O4 – HKCU..Run: [Bitdefender Wallet Agent] . (.Bitdefender – Bitdefender Password Manager Agent.) — C:Program FilesBitdefenderBitdefenderpmbxag.exe
    O4 – HKCU..Run: [Bitdefender Wallet] . (.Bitdefender – Bitdefender Password Manager.) — C:Program FilesBitdefenderBitdefenderpwdmanui.exe
    O4 – HKCU..Run: [Bitdefender Agent de l'application Wallet] . (.Bitdefender – Bitdefender Application Password Manager Ag.) — C:Program FilesBitdefenderBitdefenderantispam32bdapppassmgr.exe
    O4 – HKCU..Run: [Akamai NetSession Interface] . (.Akamai Technologies, Inc. – Akamai NetSession Client.) — C:UsersSaturnAppDataLocalAkamainetsession_win.exe
    O4 – HKLM..Wow6432NodeRun: [Adobe ARM] . (.Adobe Systems Incorporated – Adobe Reader and Acrobat Manager.) — C:Program Files (x86)Common FilesAdobeARM1.0AdobeARM.exe =>.Adobe Systems Incorporated
    O4 – HKLM..Wow6432NodeRun: [ASUSPRP] . (.ASUSTek Computer Inc. – ASUS Product Register Program.) — C:Program Files (x86)ASUSAPRPAPRP.exe
    O4 – HKLM..Wow6432NodeRun: [ASUSWebStorage] . (.ecareme – AsusWebStorage.) — C:Program Files (x86)ASUSASUS WebStorage3.0.108.222AsusWSPanel.exe
    O4 – HKLM..Wow6432NodeRun: [ATKOSD2] . (.ASUSTek Computer Inc. – ATKOSD2.) — C:Program Files (x86)ASUSATK PackageATKOSD2ATKOSD2.exe
    O4 – HKLM..Wow6432NodeRun: [ATKMEDIA] . (.ASUS – ATK Media.) — C:Program Files (x86)ASUSATK PackageATK MediaDMedia.exe
    O4 – HKLM..Wow6432NodeRun: [HControlUser] . (.ASUS – HControlUser.) — C:Program Files (x86)ASUSATK PackageATK HotkeyHControlUser.exe
    O4 – HKLM..Wow6432NodeRun: [ASUS InstantKey] . (.ASUS – Ikey_start.) — C:Program Files (x86)ASUSASUS Instant KeyIkey_start.exe
    O4 – HKLM..Wow6432NodeRun: [Wireless Console 3] . (.ASUS – Wireless Console 3.) — C:Program Files (x86)ASUSWireless Console 3wcourier.exe
    O4 – HKLM..Wow6432NodeRun: [RemoteControl10] . (.CyberLink Corp. – PowerDVD RC Service.) — C:Program Files (x86)CyberlinkPowerDVD10PDVD10Serv.exe
    O4 – HKLM..Wow6432NodeRun: [UpdatePSTShortCut] . (.CyberLink Corp. – MUI StartMenu Application.) — C:Program Files (x86)CyberlinkDVD SuiteMUITransferMUIStartMenu.exe
    O4 – HKLM..Wow6432NodeRun: [APSDaemon] . (.Apple Inc. – Apple Push.) — C:Program Files (x86)Common FilesAppleApple Application SupportAPSDaemon.exe
    O4 – HKLM..Wow6432NodeRun: [SwitchBoard] . (.Adobe Systems Incorporated – SwitchBoard Server (32 bit).) — C:Program Files (x86)Common FilesAdobeSwitchBoardSwitchBoard.exe
    O4 – HKLM..Wow6432NodeRun: [AdobeCS6ServiceManager] . (.Adobe Systems Incorporated – Adobe CS6 Service Manager.) — C:Program Files (x86)Common FilesAdobeCS6ServiceManagerCS6ServiceManager.exe
    O4 – HKLM..Wow6432NodeRun: [QuickTime Task] . (.Apple Inc. – QuickTime Task.) — C:Program Files (x86)QuickTimeQTTask.exe
    O4 – HKLM..Wow6432NodeRun: [iTunesHelper] . (.Apple Inc. – iTunesHelper.) — C:Program Files (x86)iTunesiTunesHelper.exe
    O4 – HKLM..Wow6432NodeRun: [Aeria Ignite] . (.Aeria Games & Entertainment – Aeria Ignite.) — C:Program Files (x86)Aeria GamesIgniteaeriaignite.exe
    O4 – HKLM..Wow6432NodeRun: [SunJavaUpdateSched] . (.Oracle Corporation – Java Update Scheduler.) — C:Program Files (x86)Common FilesJavaJava Updatejusched.exe =>.Oracle Corporation
    O4 – HKUS.DEFAULT..Run: [Bitdefender Wallet Agent] . (.Bitdefender – Bitdefender Password Manager Agent.) — C:Program FilesBitdefenderBitdefenderpmbxag.exe
    O4 – HKUS.DEFAULT..Run: [Bitdefender Wallet] . (.Bitdefender – Bitdefender Password Manager.) — C:Program FilesBitdefenderBitdefenderpwdmanui.exe
    O4 – HKUS.DEFAULT..Run: [Bitdefender Agent de l'application Wallet] . (.Bitdefender – Bitdefender Application Password Manager Ag.) — C:Program FilesBitdefenderBitdefenderantispam32bdapppassmgr.exe
    O4 – HKUSS-1-5-18..Run: [Bitdefender Wallet Agent] . (.Bitdefender – Bitdefender Password Manager Agent.) — C:Program FilesBitdefenderBitdefenderpmbxag.exe
    O4 – HKUSS-1-5-18..Run: [Bitdefender Wallet] . (.Bitdefender – Bitdefender Password Manager.) — C:Program FilesBitdefenderBitdefenderpwdmanui.exe
    O4 – HKUSS-1-5-18..Run: [Bitdefender Agent de l'application Wallet] . (.Bitdefender – Bitdefender Application Password Manager Ag.) — C:Program FilesBitdefenderBitdefenderantispam32bdapppassmgr.exe
    O4 – HKUSS-1-5-19..Run: [Sidebar] . (.Microsoft Corporation – Gadgets du Bureau Windows.) — C:Program Files (x86)Windows SidebarSidebar.exe =>.Microsoft Corporation
    O4 – HKUSS-1-5-20..Run: [Sidebar] . (.Microsoft Corporation – Gadgets du Bureau Windows.) — C:Program Files (x86)Windows SidebarSidebar.exe =>.Microsoft Corporation
    O4 – HKUSS-1-5-19..RunOnce: [mctadmin] . (.Microsoft Corporation – MCTAdmin.) — C:WindowsSystem32mctadmin.exe =>.Microsoft Corporation
    O4 – HKUSS-1-5-20..RunOnce: [mctadmin] . (.Microsoft Corporation – MCTAdmin.) — C:WindowsSystem32mctadmin.exe =>.Microsoft Corporation
    O4 – HKUSS-1-5-21-1344051888-2695194567-3556418042-1000..Run: [Sidebar] . (.Microsoft Corporation – Gadgets du Bureau Windows.) — C:Program Files (x86)Windows SidebarSidebar.exe =>.Microsoft Corporation
    O4 – HKUSS-1-5-21-1344051888-2695194567-3556418042-1000..RunOnce: [mctadmin] . (.Microsoft Corporation – MCTAdmin.) — C:WindowsSystem32mctadmin.exe =>.Microsoft Corporation
    ~ Application: Scanned in 00mn 00s

    —\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
    O9 – Extra button: &Envoyer à OneNote [64Bits] – {2670000A-7350-4f3c-8081-5663EE0C6C49} — C:Program Files (x86)MICROS~2Office14ONBttnIE.dll (.not file.)
    O9 – Extra button: Notes &liées OneNote [64Bits] – {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} — C:Program Files (x86)MICROS~2Office14ONBTTN~1.dll (.not file.)
    ~ IE Extra Buttons: Scanned in 00mn 00s

    —\ Site dans la Zone de confiance d'Internet Explorer (O15)
    O15 – Trusted Zone: [HKCU…Domains] http.aeriagames.com
    ~ IE Zone Confiance: Scanned in 00mn 00s

    —\ Modification Domaine/Adresses DNS (O17)
    O17 – HKLMSystemCCSServicesTcpip..{B5CB17EA-3749-46BE-8FFD-E239BDDBCAB7}: DhcpNameServer = 62.197.111.140 109.88.203.3
    O17 – HKLMSystemCS1ServicesTcpip..{B5CB17EA-3749-46BE-8FFD-E239BDDBCAB7}: DhcpNameServer = 62.197.111.140 109.88.203.3
    O17 – HKLMSystemCS2ServicesTcpip..{B5CB17EA-3749-46BE-8FFD-E239BDDBCAB7}: DhcpNameServer = 62.197.111.140 109.88.203.3
    O17 – HKLMSystemCCSServicesTcpipParameters: DhcpNameServer = 62.197.111.140 109.88.203.3
    ~ Domain: Scanned in 00mn 00s

    —\ Protocole additionnel (O18)
    O18 – Handler: wlpg [64Bits] – {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (…) —
    O18 – Filter: text/xml [64Bits] – {807573E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation – Microsoft Office XML MIME Filter.) — C:Program FilesCommon FilesMicrosoft SharedOFFICE14MSOXMLMF.dll =>.Microsoft Corporation
    ~ Protocole Additionnel: Scanned in 00mn 00s

    —\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
    O20 – Winlogon Notify: igfxcui . (.Intel Corporation – igfxdev Module.) — C:WindowsSystem32igfxdev.dll
    ~ Winlogon: Scanned in 00mn 00s

    —\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
    O20 – AppInit_DLLs: . (.NVIDIA Corporation – NVIDIA shim initialization dll, Version 331.) – C:Windowssystem32nvinitx.dll
    ~ AppInit DLL: Scanned in 00mn 00s

    —\ Tâches planifiées en automatique (O39)
    [MD5.00000000000000000000000000000000] [APT] [{317244E8-D291-4830-B7EC-65C12EE48F26}] (…) — C:Program Files (x86)InstallShield Installation Information{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}setup.exe (.not file.) [0]
    [MD5.00000000000000000000000000000000] [APT] [{65284FBB-B7C2-47EA-A325-B0B24B9649DE}] (…) — C:UsersSaturnDesktopeID-QuickInstaller-407-7453-signed_tcm226-246722.exe (.not file.) [0]
    [MD5.00000000000000000000000000000000] [APT] [{D90032E2-B273-41D4-93B3-191F31843A6E}] (…) — D:Jeux PCAntichamberBinariesRedistdotnetfx35.exe (.not file.) [0]
    [MD5.00000000000000000000000000000000] [APT] [{F72A480E-382C-4746-BF95-C582488514E5}] (…) — C:program files (x86)ncsoftlauncherNCLauncher.exe (.not file.) [0]
    O39 – APT: – (..) — C:WindowsSystem32TasksAdobe Flash Player Updater [1002]
    O39 – APT: – (..) — C:WindowsTasksASUS SmartLogon Console Sensor.job [272]
    O39 – APT: – (..) — C:WindowsSystem32TasksASUS SmartLogon Console Sensor [272]
    O39 – APT: – (..) — C:WindowsSystem32TasksFacebookUpdateTaskUserS-1-5-21-1344051888-2695194567-3556418042-1001Core [910]
    O39 – APT: – (..) — C:WindowsSystem32TasksFacebookUpdateTaskUserS-1-5-21-1344051888-2695194567-3556418042-1001UA [932]
    O39 – APT: – (..) — C:WindowsSystem32TasksGoogleUpdateTaskMachineCore [1066]
    O39 – APT: – (..) — C:WindowsSystem32TasksGoogleUpdateTaskMachineUA [1070]
    O39 – APT: – (..) — C:WindowsSystem32TasksISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon [828]
    O39 – APT: APT: – (..) — C:WindowsSystem32System32TasksISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon [828] – (..) — C:WindowsSystem32TasksISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d [830]
    ~ Scheduled Task: 33 Legitimates Filtered in 00mn 03s

    —\ Logiciels installés (O42)
    O42 – Logiciel: AuraKingdom-FR – (…) [HKLM][64Bits] — AuraKingdom-FR
    O42 – Logiciel: PRGR 2012.3 – (.Euro Business Partner.) [HKLM][64Bits] — Le Permis Réussi – Het Geslaagde Rijexamen_is1
    ~ Logic: 34 Legitimates Filtered in 00mn 00s

    —\ HKCU & HKLM Software Keys
    [HKCUSoftwarePando Networks]
    [HKCUSoftwareSpeedBit]
    [HKLMSoftwareSpeedBit]
    [HKLMSoftwareWow6432NodePando Networks]
    [HKLMSoftwareWow6432NodeSpeedBit]
    ~ Key Software: 458 Legitimates Filtered in 00mn 00s

    —\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
    O43 – CFD: 16/07/2014 – 13:28:04 – [] —-D C:Program Files (x86)Runxia Electronics
    O43 – CFD: 11/01/2014 – 14:22:19 – [] —-D C:Program Files (x86)SafeKey
    O43 – CFD: 23/12/2013 – 12:44:05 – [] —-D C:Program Files (x86)Common FilesSpeedBit
    O43 – CFD: 23/12/2013 – 12:45:11 – [] —-D C:ProgramDataSpeedBit
    O43 – CFD: 22/07/2013 – 20:41:49 – [] —-D C:UsersSaturnAppDataRoamingLOVE
    O43 – CFD: 23/12/2013 – 12:45:11 – [] —-D C:UsersSaturnAppDataRoamingSpeedBit
    O43 – CFD: 13/09/2012 – 07:25:55 – [] —-D C:UsersSaturnAppDataLocalPando_Temp
    O43 – CFD: 16/07/2014 – 13:28:08 – [] —-D C:UsersSaturnAppDataLocalVirtualRouterPlus
    ~ 36 Dossier CLSID vide (CLSID Empty Folder)
    ~ Program Folder: 340 Legitimates Filtered in 00mn 01s

    —\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
    O44 – LFC:[MD5.ADD2882C3E3BEBA3D2CE9DB42F5A6A22] – 31/10/2014 – 19:23:59 —A- . (…) — C:bdlog.txt [26900]
    ~ Files: 12 Legitimates Filtered in 00mn 01s

    —\ Enumération des clés de registre PoliciesSystem (MWPS) (O55)
    O55 – MWPS:[HKLM…PoliciesSystem] – “EnableUIADesktopToggle”=0
    O55 – MWPS:[HKLM…PoliciesSystem] – “FilterAdministratorToken”=0
    ~ MWPS: 19 Legitimates Filtered in 00mn 00s

    —\ Enumération des clés de registre PoliciesExplorer (MWPE) (O56)
    O56 – MWPE:[HKLM…policiesExplorer] – “NoActiveDesktopChanges”=1
    ~ MWPE Keys: 5 Legitimates Filtered in 00mn 00s

    —\ Liste des pilotes du système (SDL) (O58)
    O58 – SDL:24/02/2010 – 11:20:40 —A- . (.Protect Software GmbH – ProtectDisc x64/x86 Hybrid Driver.) — C:WindowsSystem32Driversacedrv11.sys [191616]
    O58 – SDL:21/12/2011 – 22:15:56 —A- . (.Windows (R) Win 7 DDK provider – ASUS Virtual Bus.) — C:WindowsSystem32DriversAsusVBus.sys [35968]
    O58 – SDL:8/11/2011 – 03:48:28 —A- . (.Windows (R) Win 7 DDK provider – ASUS HID mini driver for Virtual Touch Device.) — C:WindowsSystem32DriversAsusVTouch.sys [16512]
    O58 – SDL:18/09/2012 – 16:33:10 —A- . (.DT Soft Ltd – DAEMON Tools Virtual Bus Driver.) — C:WindowsSystem32Driversdtsoftbus01.sys [283200]
    O58 – SDL:14/07/2009 – 02:47:48 —A- . (.Emulex – Storport Miniport Driver for LightPulse HBAs.) — C:WindowsSystem32Driverselxstor.sys [530496]
    O58 – SDL:19/02/2012 – 19:16:24 —A- . (.ELAN Microelectronics Corp. – ETD Kernel Center.) — C:WindowsSystem32DriversETD.sys [200488]
    O58 – SDL:10/06/2009 – 21:31:59 —A- . (.Hauppauge Computer Works, Inc. – Hauppauge WinTV 885 Consumer IR Driver for eHome.) — C:WindowsSystem32Drivershcw85cir.sys [31232]
    O58 – SDL:20/07/2009 – 10:29:40 —A- . (.Pas de propriétaire – Keyboard Filter Driver.) — C:WindowsSystem32Driverskbfiltr.sys [15416]
    O58 – SDL:7/12/2012 – 09:28:06 —A- . (.Khalil Azzouzi – Azzouzi HotSpot helper driver.) — C:WindowsSystem32Driversndiskhaz.sys [30536]
    O58 – SDL:28/08/2014 – 21:54:24 —A- . (.Duplex Secure Ltd. – SCSI Pass Through Direct Host.) — C:WindowsSystem32Driverssptd.sys [564792]
    O58 – SDL:14/07/2009 – 02:45:55 —A- . (.Promise Technology – Promise SuperTrak EX Series Driver for Windows.) — C:WindowsSystem32Driversstexstor.sys [24656]
    O58 – SDL:13/12/2012 – 14:50:36 —A- . (.Apple, Inc. – Apple Mobile Device USB Driver.) — C:WindowsSystem32Driversusbaapl64.sys [54784]
    O58 – SDL:24/01/2013 – 11:17:00 —A- . (.http://libusb-win32.sourceforge.net” onclick=”window.open(this.href);return false; – LibUSB-Win32 – Kernel Driver.) — C:WindowsSysWOW64driverslibusb0.sys [52832]
    ~ Drivers: 102 Legitimates Filtered in 00mn 04s

    —\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)
    O61 – LFC: 5/11/2014 – 11:57:15 —A- . (…) — C:UsersSaturnAppDataLocalGoogleChromeUser DataWidevineCDM1.4.6.703_platform_specificwin_x64widevinecdmadapter.dll [189768]
    O61 – LFC: 8/11/2014 – 11:57:42 —A- . (…) — C:UsersSaturnAppDataRoamingsp_data.sys [387]
    ~ 579 Fichiers temporaires (Temporary files)
    ~ 132 Fichiers cookies (Cookies files)
    ~ Files: 3 Legitimates Filtered in 00mn 39s

    —\ Liste des outils de désinfection (LATC) (O63)
    O63 – Logiciel: ZHPDiag 2014 – (.Nicolas Coolman.) [HKLM] — ZHPDiag_is1 =>.Nicolas Coolman
    ~ ADS: Scanned in 00mn 00s

    —\ Associations Shell Spawning (O67)
    O67 – Shell Spawning: < .html> [HKCU..openCommand] (.Not Key.)
    ~ FASS Keys: 11 Legitimates Filtered in 00mn 00s

    —\ Menu de démarrage Internet (SMI) (O68)
    O68 – StartMenuInternet: [HKLM..ShellopenCommand] (.Google Inc. – Google Chrome.) — C:Program Files (x86)GoogleChromeApplicationchrome.exe
    O68 – StartMenuInternet: [HKLM..ShellopenCommand] (.Microsoft Corporation – Internet Explorer.) — C:Program FilesInternet Exploreriexplore.exe
    ~ Keys: Scanned in 00mn 00s

    —\ Recherche d'infection sur les navigateurs internet (SBI) (O69)
    O69 – SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} – (Bing) – http://www.bing.com” onclick=”window.open(this.href);return false;
    ~ Keys: Scanned in 00mn 00s

    —\ Enumère les fichiers Crack & Keygen (CKF) (O82)
    D:Jeux Psp + CrackCrack PspPack_Cracker_toute_PSP_pour_les_Nuls.rar =>.Crack,Keygen
    ~ Files: Scanned in 01mn 14s

    —\ Recherche particulière à la racine du système (SPRF) (O84)
    [MD5.D77B7E494E8A9F553FCCFEED33140348] [SPRF][11/01/2014] (…) — C:ProgramData1389448284.bdinstall.bin [418143]
    [MD5.0D3B680986310AE5540578C0E481C6A0] [SPRF][6/10/2010] (…) — C:ProgramDataFullRemove.exe [131984]
    [MD5.B4E23F662E877766EB5C7DD3BE2B3229] [SPRF][8/11/2014] (…) — C:UsersSaturnAppDataRoamingsp_data.sys [387]
    ~ Files: 4 Legitimates Filtered in 00mn 00s

    —\ Liste des exceptions du parefeu (FirewallRules) (O87)
    O87 – FAEL: “{248B418C-5D95-4368-BA2E-A2F83B569D17}” | In – None – P6 – TRUE | .(.BitTorrent, Inc. – µTorrent.) — C:Program Files (x86)uTorrentuTorrent.exe =>P2P.BitTorrent
    O87 – FAEL: “{BE325CBC-80B4-4697-BB64-E4362BB9F34C}” | In – None – P17 – TRUE | .(.BitTorrent, Inc. – µTorrent.) — C:Program Files (x86)uTorrentuTorrent.exe =>P2P.BitTorrent
    ~ Firewall: 2 Legitimates Filtered in 00mn 01s

    —\ Recherche de clés de registre Tracing (O100)
    HKLMSOFTWAREWow6432NodeMicrosoftTracingBingBar_RASAPI32 =>Toolbar.Bing
    HKLMSOFTWAREWow6432NodeMicrosoftTracingutorrent_2_RASAPI32 =>P2P.µTorrent
    HKLMSOFTWAREWow6432NodeMicrosoftTracingutorrent_2_RASMANCS =>P2P.µTorrent
    HKLMSOFTWAREWow6432NodeMicrosoftTracinguTorrent_RASAPI32 =>P2P.µTorrent
    HKLMSOFTWAREWow6432NodeMicrosoftTracinguTorrent_RASMANCS =>P2P.µTorrent
    ~ BTK: 336 Legitimates Filtered in 00mn 00s

    —\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
    SS – | Demand 10/07/1658 0 | (ACDaemon) . (…) – C:Program Files (x86)Common FilesArcSoftConnection ServiceBinACService.exe
    SS – | Demand 23/09/2014 267440 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) – C:WindowsSysWOW64MacromedFlashFlashPlayerUpdateService.exe
    SS – | Disabled 5/07/2013 75584 | (BdDesktopParental) . (.Bitdefender.) – C:Program FilesBitdefenderBitdefenderbdparentalservice.exe
    SS – | Demand 22/02/2012 276248 | (cphs) . (.Intel Corporation.) – C:WindowsSysWow64IntelCpHeciSvc.exe
    SS – | Demand 26/04/2011 2702848 | (FirebirdServerMAGIXInstance) . (.MAGIX®.) – C:Program Files (x86)Common FilesMAGIX ServicesDatabasebinfbserver.exe
    SS – | Auto 21/10/2014 107912 | (gupdate) . (.Google Inc..) – C:Program Files (x86)GoogleUpdateGoogleUpdate.exe
    SS – | Demand 21/10/2014 107912 | (gupdatem) . (.Google Inc..) – C:Program Files (x86)GoogleUpdateGoogleUpdate.exe
    SS – | Auto 10/07/1658 0 | (McAfee SiteAdvisor Service) . (…) – C:Program Files (x86)mcafeeSITEAD~1mcsacore.exe
    SS – | Demand 10/07/1658 0 | (npggsvc) . (.INCA Internet Co., Ltd..) – C:Windowssystem32GameMon.des
    SS – | Demand 21/10/2014 833728 | (Steam Client Service) . (.Valve Corporation.) – C:Program Files (x86)Common FilesSteamSteamService.exe
    SS – | Demand 19/02/2010 517096 | (SwitchBoard) . (.Adobe Systems Incorporated.) – C:Program Files (x86)Common FilesAdobeSwitchBoardSwitchBoard.exe
    SS – | Demand 14/07/2009 27136 | C:Program Files (x86)Windows Defendermpsvc.dll (WinDefend) . (.Microsoft Corporation.) – C:WindowsSystem32svchost.exe
    SR – | Auto 27/07/2012 63960 | (AdobeARMservice) . (.Adobe Systems Incorporated.) – C:Program Files (x86)Common FilesAdobeARM1.0armsvc.exe
    SR – | Auto 4/03/2011 379520 | (AFBAgent) . (.ASUSTeK Computer Inc..) – C:Windowssystem32FBAgent.exe
    SR – | Auto 7/09/2013 55624 | (Apple Mobile Device) . (.Apple Inc..) – C:Program Files (x86)Common FilesAppleMobile Device SupportAppleMobileDeviceService.exe
    SR – | Auto 21/11/2011 80512 | (ASLDRService) . (.ASUS.) – C:Program Files (x86)ASUSATK PackageATK HotkeyASLDRSrv.exe
    SR – | Auto 17/02/2012 277120 | (ASUS InstantOn) . (.ASUS.) – C:Program Files (x86)ASUSInstantOn for NBInsOnSrv.exe
    SR – | Auto 28/10/2011 106144 | (AtherosSvc) . (.Atheros Commnucations.) – C:Program Files (x86)Bluetooth Suiteadminservice.exe
    SR – | Auto 21/11/2011 96896 | (ATKGFNEXSrv) . (.ASUS.) – C:Program Files (x86)ASUSATK PackageATKGFNEXGFNEXSrv.exe
    SR – | Auto 30/08/2011 462184 | (Bonjour Service) . (.Apple Inc..) – C:Program FilesBonjourmDNSResponder.exe
    SR – | Auto 24/05/2011 1840128 | (Fabs) . (.MAGIX AG.) – C:Program Files (x86)Common FilesMAGIX ServicesDatabasebinFABS.exe
    SR – | Auto 3/02/2012 628448 | (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation.) – C:Program FilesInteliCLS ClientHeciServer.exe
    SR – | Auto 21/02/2012 128280 | (Intel(R) ME Service) . (…) – C:Program Files (x86)IntelIntel(R) Management Engine ComponentsFWServiceIntelMeFWService.exe
    SR – | Demand 2/11/2013 641352 | (iPod Service) . (.Apple Inc..) – C:Program FilesiPodbiniPodService.exe
    SR – | Auto 21/02/2012 161560 | (jhi_service) . (.Intel Corporation.) – C:Program Files (x86)IntelIntel(R) Management Engine ComponentsDALjhi_service.exe
    SR – | Auto 29/02/2012 277784 | (LMS) . (.Intel Corporation.) – C:Program Files (x86)IntelIntel(R) Management Engine ComponentsLMSLMS.exe
    SR – | Auto 24/06/2014 2820424 | (MaConfigAgent) . (.CybelSoft.) – C:Program Filesma-config.comMaConfigAgent.exe
    SR – | Auto 1/10/2014 1871160 | (MBAMScheduler) . (.Malwarebytes Corporation.) – C:Program Files (x86)Malwarebytes Anti-Malwarembamscheduler.exe
    SR – | Auto 1/10/2014 968504 | (MBAMService) . (.Malwarebytes Corporation.) – C:Program Files (x86)Malwarebytes Anti-Malwarembamservice.exe
    SR – | Auto 23/10/2013 922912 | (nvsvc) . (.NVIDIA Corporation.) – C:Windowssystem32nvvsvc.exe
    SR – | Auto 10/12/2013 1364256 | (nvUpdatusService) . (.NVIDIA Corporation.) – C:Program Files (x86)NVIDIA CorporationNVIDIA Update Coredaemonu.exe
    SR – | Demand 17/04/2009 247152 | (RichVideo) . (…) – C:Program Files (x86)CyberLinkShared filesRichVideo.exe
    SR – | Auto 23/10/2013 414496 | (Stereo Service) . (.NVIDIA Corporation.) – C:Program Files (x86)NVIDIA Corporation3D VisionnvSCPAPISvr.exe
    SR – | Auto 29/02/2012 363800 | (UNS) . (.Intel Corporation.) – C:Program Files (x86)IntelIntel(R) Management Engine ComponentsUNSUNS.exe
    SR – | Auto 13/08/2013 67320 | (UPDATESRV) . (.Bitdefender.) – C:Program FilesBitdefenderBitdefenderupdatesrv.exe
    SR – | Auto 13/08/2013 1505688 | (VSSERV) . (.Bitdefender.) – C:Program FilesBitdefenderBitdefendervsserv.exe
    SR – | Demand 10/07/1658 0 | (WMPNetworkSvc) . (…) – C:Program Files (x86)Windows Media Playerwmpnetwk.exe =>.Microsoft Corporation
    SR – | Auto 14/07/2009 27136 | C:WindowsSystem32wuaueng.dll (wuauserv) . (.Microsoft Corporation.) – C:WindowsSystem32svchost.exe
    SR – | Auto 28/10/2011 158880 | (ZAtheros Bt&Wlan Coex Agent) . (.Atheros.) – C:Program Files (x86)Bluetooth SuiteAth_CoexAgent.exe
    ~ Services: Scanned in 00mn 07s

    —\ Recherche d'infection sur le Master Boot Record (MBR)(O80)
    Run by Saturn at 9/11/2014 11:59:20
    ~ OS 64 not supported by MBR tool
    ~ MBR: 0 Legitimates Filtered in 00mn 00s

    —\ Recherche d'infection sur le Master Boot Record (MBRCheck)(O80)
    Written by ad13, http://ad13.geekstog” onclick=”window.open(this.href);return false;
    Run by Saturn at 9/11/2014 11:59:22
    ********* Dump file Name *********
    C:PhysicalDisk0_MBR.bin
    ~ MBR: Scanned in 00mn 02s

    —\ Liste des émulateurs de CD/DVD (MBR Hook)
    O58 – SDL:28/08/2014 – 21:54:24 —A- . (.Duplex Secure Ltd. – SCSI Pass Through Direct Host.) — C:WindowsSystem32Driverssptd.sys [564792]
    ~ Emulateurs: Scanned in 00mn 02s

    —\ Scan Additionnel (O88)
    Database Version : 13026 – (9/11/2014)
    Clés trouvées (Keys found) : 1
    Valeurs trouvées (Values found) : 3
    Dossiers trouvés (Folders found) : 0
    Fichiers trouvés (Files found) : 0

    [HKLMSoftwareWow6432NodeMicrosoftTracingBingBar_RASAPI32] =>Toolbar.Bing
    [HKCUSOFTWAREMicrosoftWindowsCurrentVersionRun]:uTorrent =>P2P.BitTorrent^
    ~ Additionnel Scan: 451184 Items scanned in 00mn 18s

    —\ Informations complémentaires sur les modules
    ~ http://nicolascoolman.fr/r5-internet-explorer-proxy-management-iepm/” onclick=”window.open(this.href);return false; =>.Internet Explorer, Proxy Management (R5)
    ~ http://nicolascoolman.fr/o4-applications-demarrees-par-le-registre/” onclick=”window.open(this.href);return false; =>.Applications lancées au démarrage du système (O4)
    ~ AMI: 2 Legitimates Filtered in 00mn 00s

    —\ Récapitulatif des détections trouvées sur votre station
    ~ MSI: 0 link(s) detected in 00mn 00s

    ~ 1102 Legitimates filtered by white list
    End of the scan (553 lines in 03mn 25s)(1)[/spoiler:3utk138b]

    Merci de votre aide !

  • jacques.gache
    Participant
    Post count: 676

    bonjour, cela sur le zhpdiag C: Hard drive, Flash drive, Thumb drive (Free 8 Go of 279 Go) tu es plus que limite pour que windows fonctionne convenablement il faut un minimum de 10% d’espace libre sur le disque système et pour toi cela fait 27 go donc avec 8 go tu est plus que dans le rouge !!

    bon passes adsfix !!

    • Désactive ton antivirus le temps du téléchargement et de l’utilisation.
    • Télécharge AdsFix
    • Enregistre-le sur le bureau, puis lance-le.
    • Clique sur Nettoyer.
    • Patiente pendant que le logiciel travaille.
    • À la fin, l’ordinateur va redémarrer.
    • Le rapport se trouve sur le bureau, sinon va le chercher sous C:AdsFix_XX_XX_XX (Les X étant des chiffres).
    • Héberge-le comme ceci et poste-le dans ta prochaine réponse.
  • Glazh
    Participant
    Post count: 7

    De fait il a enlevé quelques fichiers infectés lol..

    Voici le rapport :
    [spoiler:1slly0qm]¤¤¤¤¤¤¤¤¤¤ | AdsFix | g3n-h@ckm@n | 07.11.2014.3

    ¤¤¤¤¤ Vista | 7 | 8 | 8.1 – 32/64 bits ¤¤¤¤¤ – Start 22:46:26 – 09/11/2014

    Mis à jour le : 07/11/2014 | 13.40 par g3n-h@ckm@n™
    Contact : https://www.sosvirus.net” onclick=”window.open(this.href);return false;
    Assistance : forum-virus-securite.html
    Feedbacks : feedbacks-t75915.html
    Facebook : https://www.facebook.com/AdsFix” onclick=”window.open(this.href);return false;
    Boot: Normal boot
    [Saturn (Administrator)] – [GILLES] – (Belgique [040C])
    SID = S-1-5-21-1344051888-2695194567-3556418042-1001 || [53617475726e205e5e]
    PC : ASUSTeK COMPUTER INC. – N76VM – ASUS-NotebookSKU
    Bios : American Megatrends Inc. – 04/02/2012
    Système : Windows 7 Home Premium (64 bits) HomePremium Service Pack 1
    Mémoire RAM = Total (MB) : 6175 | Libre (MB) : 2270
    Pagefile = Total (MB) : 12347 | Libre (MB) : 7501
    Virtuelle = Total (MB) : 4194 | Libre (MB) : 4020

    Registre sauvegardé , pour restaurer : : C:AdsFixSaveRegistry [09.11.2014 @ 22_46_11] (Cliquer sur Options & Restaurer le registre)
    Restauration de fichiers ou dossiers supprimés par erreur : Cliquer sur Options & Restaurer Fichiers ou dossiers, Sélectionner un élément >> “Restaurer”

    ¤¤¤¤¤¤¤¤¤¤ | Mises à jour Windows

    Aucune mise à jour détectée !!!

    ¤¤¤¤¤¤¤¤¤¤ | Navigateurs

    IE : 11.0.9600.17344 (© Microsoft Corporation. Tous droits réservés.)
    GC : 39.0.2171.52 (Copyright 2012 Google Inc. All rights reserved.)

    ¤¤¤¤¤¤¤¤¤¤ | Security (atcav : 0)

    AV : Bitdefender Antivirus Disabled
    AS : Bitdefender Antispyware Disabled
    AM : Malwarebytes' Anti-Malware (1.0.1.711) [2014.07.14.03]
    FW : Bitdefender Pare-feu Disabled
    WMI : OK
    WU: Windows Update Service [Auto(2)] = Arrêté
    AS: Windows Defender [Manual(3)] = Arrêté
    FW: Windows FireWall Service [Auto(2)] = Arrêté

    ¤¤¤¤¤¤¤¤¤¤ | FlashPlayer

    ActiveX : 15.0.0.167

    ¤¤¤¤¤¤¤¤¤¤ | Processus tués

    1268 | [Owner : Système |Parent : 196] – (.NVIDIA Corporation – NVIDIA Driver Helper Service, Version 331.65.) – (8.17.13.3165) = C:WindowsSystem32nvvsvc.exe
    1292 | [Owner : Système |Parent : 196] – (.NVIDIA Corporation – Stereo Vision Control Panel API Server.) – (7.17.13.3165) = C:Program Files (x86)NVIDIA Corporation3D VisionnvSCPAPISvr.exe
    1828 | [Owner : Système |Parent : 1532] – (.Microsoft Corporation – Composant de saisie tactile ou avec stylet Microsoft.) – (6.1.7601.17514) = C:WindowsSystem32wisptis.exe
    1840 | [Owner : Système |Parent : 1268] – (.NVIDIA Corporation – NVIDIA User Experience Driver Component.) – (8.17.13.3165) = C:Program FilesNVIDIA CorporationDisplaynvxdsync.exe
    1936 | [Owner : Système |Parent : 1268] – (.NVIDIA Corporation – NVIDIA Driver Helper Service, Version 331.65.) – (8.17.13.3165) = C:WindowsSystem32nvvsvc.exe
    2044 | [Owner : Système |Parent : 196] – (.ASUSTeK Computer Inc. – ASUS FastBoot.) – (1.0.10.0) = C:WindowsSystem32FBAgent.exe
    2056 | [Owner : Système |Parent : 1532] – (.Microsoft Corporation – Infrastructure d’extensibilité pour les services réseau Windows sans fil 802.11.) – (6.1.7600.16385) = C:WindowsSystem32wlanext.exe
    2076 | [Owner : Système |Parent : 764] – (.Microsoft Corporation – Hôte de la fenêtre de la console.) – (6.1.7601.18229) = C:WindowsSystem32conhost.exe
    2100 | [Owner : Système |Parent : 196] – (.ASUS – ASLDR Service.) – (1.0.64.1) = C:Program Files (x86)ASUSATK PackageATK HotkeyAsLdrSrv.exe
    2172 | [Owner : Système |Parent : 196] – (.ASUS – GFNEXSrv.) – (1.0.11.1) = C:Program Files (x86)ASUSATK PackageATKGFNEXGFNEXSrv.exe
    2288 | [Owner : Système |Parent : 196] – (.Microsoft Corporation – Application sous-système spouleur.) – (6.1.7601.17777) = C:WindowsSystem32spoolsv.exe
    2448 | [Owner : Système |Parent : 196] – (.Adobe Systems Incorporated – Adobe Acrobat Update Service.) – (1.6.5.0) = C:Program Files (x86)Common FilesAdobeARM1.0armsvc.exe
    2484 | [Owner : Système |Parent : 196] – (.Apple Inc. – MobileDeviceService.) – (17.323.0.9) = C:Program Files (x86)Common FilesAppleMobile Device SupportAppleMobileDeviceService.exe
    2900 | [Owner : Système |Parent : 196] – (.ASUS – ASUS InstantOn Program.) – (2.2.0.1) = C:Program Files (x86)ASUSInstantOn for NBInsOnSrv.exe
    2924 | [Owner : Système |Parent : 196] – (.Atheros Commnucations – AdminService Application.) – (7.4.0.103) = C:Program Files (x86)Bluetooth SuiteAdminService.exe
    2960 | [Owner : Système |Parent : 196] – (.Apple Inc. – Bonjour Service.) – (3.0.0.10) = C:Program FilesBonjourmDNSResponder.exe
    3004 | [Owner : Système |Parent : 196] – (.Intel(R) Corporation – Intel(R) Capability Licensing Service Interface.) – (1.23.605.1) = C:Program FilesInteliCLS ClientHeciServer.exe
    3060 | [Owner : Système |Parent : 196] – (. – .) – (0.0.0.0) = C:Program Files (x86)IntelIntel(R) Management Engine ComponentsFWServiceIntelMeFWService.exe
    2376 | [Owner : Système |Parent : 196] – (.Intel Corporation – Intel(R) Dynamic Application Loader Host Interface.) – (8.0.3.1427) = C:Program Files (x86)IntelIntel(R) Management Engine ComponentsDALJhi_service.exe
    2596 | [Owner : Système |Parent : 196] – (.CybelSoft – Service de détection matériel.) – (7.1.4.0) = C:Program Filesma-config.comMaConfigAgent.exe
    1676 | [Owner : Système |Parent : 196] – (.Malwarebytes Corporation – Malwarebytes Anti-Malware.) – (3.1.1.0) = C:Program Files (x86)Malwarebytes Anti-Malwarembamscheduler.exe
    3468 | [Owner : Système |Parent : 196] – (.Microsoft Corporation – Microsoft Application Virtualization Virtual Service Agent.) – (4.6.3.24650) = C:Program Files (x86)Microsoft Application Virtualization Clientsftvsa.exe
    3580 | [Owner : Système |Parent : 196] – (.Microsoft Corp. – Microsoft® Windows Live ID Service.) – (7.250.4232.0) = C:Program FilesCommon FilesMicrosoft SharedWindows LiveWLIDSVC.EXE
    3696 | [Owner : Système |Parent : 196] – (.Atheros – Atheros Coex Service Application.) – (8.0.0.217) = C:Program Files (x86)Bluetooth SuiteAth_CoexAgent.exe
    3752 | [Owner : Système |Parent : 196] – (.Microsoft Corporation – Microsoft Application Virtualization Client Service.) – (4.6.3.24650) = C:Program Files (x86)Microsoft Application Virtualization Clientsftlist.exe
    3824 | [Owner : Système |Parent : 3580] – (.Microsoft Corp. – Microsoft® Windows Live ID Service Monitor.) – (7.250.4232.0) = C:Program FilesCommon FilesMicrosoft SharedWindows LiveWLIDSVCM.EXE
    4340 | [Owner : Système |Parent : 196] – (.Microsoft Corporation – Microsoft Office Client Virtualization Service .) – (14.0.7101.5000) = C:Program Files (x86)Common Filesmicrosoft sharedVirtualization HandlerCVHSVC.EXE
    4756 | [Owner : Système |Parent : 196] – (.Microsoft Corporation – Indexeur Microsoft Windows Search.) – (7.0.7601.17610) = C:WindowsSystem32SearchIndexer.exe
    5036 | [Owner : Saturn |Parent : 196] – (.Microsoft Corporation – Processus hôte pour Tâches Windows.) – (6.1.7601.18010) = C:WindowsSystem32taskhost.exe
    4424 | [Owner : Système |Parent : 2100] – (.ASUSTek Computer Inc. – HControl.) – (1.0.65.3) = C:Program Files (x86)ASUSATK PackageATK HotkeyHControl.exe
    828 | [Owner : Système |Parent : 2900] – (.ASUS – ASUS InstantOn Program.) – (2.2.0.1) = C:Program Files (x86)ASUSInstantOn for NBInsOnWMI.exe
    4364 | [Owner : Saturn |Parent : 3988] – (.Microsoft Corporation – Explorateur Windows.) – (6.1.7601.17567) = C:Windowsexplorer.exe
    5172 | [Owner : Système |Parent : 4424] – (.ASUS – ATKOSD.) – (1.0.41.1) = C:Program Files (x86)ASUSATK PackageATK HotkeyATKOSD.exe
    5340 | [Owner : Saturn |Parent : 2044] – (.ASUS – ACMON .) – (1.0.8.0) = C:Program Files (x86)ASUSSplendidACMON.exe
    5472 | [Owner : Système |Parent : 4424] – (.ASUS – KBFiltr.) – (1.0.41.1) = C:Program Files (x86)ASUSATK PackageATK HotkeyKBFiltr.exe
    5804 | [Owner : Système |Parent : 4424] – (.ASUS – WDC.) – (1.0.46.1) = C:Program Files (x86)ASUSATK PackageATK HotkeyWDC.exe
    5916 | [Owner : Saturn |Parent : 824] – (.ASUSTeK – ACEngSvr Module.) – (1.0.0.4) = C:WindowsSysWOW64ACEngSvr.exe
    5356 | [Owner : Système |Parent : 196] – (. – RichVideo Module.) – (2.0.0.2807) = C:Program Files (x86)CyberLinkShared filesRichVideo.exe
    5932 | [Owner : Saturn |Parent : 2044] – (.ASUS – AsScrPro.) – (1.0.0.9) = C:WindowsAsScrPro.exe
    6076 | [Owner : Saturn |Parent : 1532] – (.Microsoft Corporation – Composant de saisie tactile ou avec stylet Microsoft.) – (6.1.7601.17514) = C:WindowsSystem32wisptis.exe
    6132 | [Owner : Saturn |Parent : 1532] – (.Microsoft Corporation – Tablet PC Input Panel Accessory.) – (6.1.7601.18512) = C:Program FilesCommon FilesMicrosoft SharedinkTabTip.exe
    6072 | [Owner : Saturn |Parent : 6132] – (.Microsoft Corporation – Tablet PC Input Panel Helper.) – (6.1.7601.18512) = C:Program Files (x86)Common Filesmicrosoft sharedinkTabTip32.exe
    4804 | [Owner : Saturn |Parent : 2044] – (.CyberLink – CyberLink MediaLibray Service.) – (2.1.3023.0) = C:Program Files (x86)CyberLinkPower2GoCLMLSvc.exe
    5212 | [Owner : Saturn |Parent : 6052] – (.ASUS – Power4Gear Hybrid.) – (1.1.1.11) = C:Program FilesASUSP4GBatteryLife.exe
    5236 | [Owner : Saturn |Parent : 6052] – (.ASUSTek Computer Inc. – ASUS FaceLogon Application.) – (1.0.14.2) = C:Program Files (x86)ASUSFaceLogonsensorsrv.exe
    5276 | [Owner : Saturn |Parent : 6052] – (.ASUSTek Computer Inc. – ASUS USB Charger Plus.) – (2.0.9.0) = C:Program Files (x86)ASUSUSBChargerPlusUSBChargerPlus.exe
    5320 | [Owner : Saturn |Parent : 6052] – (.ASUSTeK Computer Inc. – ASUS Quick Gesture Exe.) – (1.0.4.0) = C:Program Files (x86)ASUSASUS Virtual TouchQuickGesturex86QuickGesture.exe
    5284 | [Owner : Saturn |Parent : 2044] – (.Realtek Semiconductor – Gestionnaire audio HD Realtek.) – (1.0.0.767) = C:Program FilesRealtekAudioHDARAVCpl64.exe
    5712 | [Owner : Saturn |Parent : 5288] – (.ASUSTek Computer Inc. – ATKOSD2.) – (7.0.16.2) = C:Program Files (x86)ASUSATK PackageATKOSD2ATKOSD2.exe
    6080 | [Owner : Saturn |Parent : 6052] – (.ASUSTeK Computer Inc. – ASUS Quick Gesture Exe.) – (1.0.4.0) = C:Program Files (x86)ASUSASUS Virtual TouchQuickGesturex64QuickGesture64.exe
    5224 | [Owner : Saturn |Parent : 4364] – (.Intel Corporation – igfxTray Module.) – (8.15.10.2653) = C:WindowsSystem32igfxtray.exe
    5976 | [Owner : Saturn |Parent : 4364] – (.Intel Corporation – hkcmd Module.) – (8.15.10.2653) = C:WindowsSystem32hkcmd.exe
    5628 | [Owner : Saturn |Parent : 4364] – (.ELAN Microelectronics Corp. – ETD Control Center.) – (10.0.0.13) = C:Program FilesElantechETDCtrl.exe
    6176 | [Owner : Saturn |Parent : 4364] – (.Realtek Semiconductor – HD Audio Background Process.) – (1.0.0.83) = C:Program FilesRealtekAudioHDARAVBg64.exe
    6224 | [Owner : Saturn |Parent : 4364] – (.Atheros Communications – Serveur Stack Bluetooth.) – (7.4.0.103) = C:Program Files (x86)Bluetooth SuiteBtvStack.exe
    6304 | [Owner : Saturn |Parent : 4364] – (.Atheros Commnucations – Bluetooth Tray.) – (7.4.0.103) = C:Program Files (x86)Bluetooth SuiteAthBtTray.exe
    6372 | [Owner : Saturn |Parent : 4364] – (.Alcor Micro Corp. – Single LUN Icon Utility for VID 058F PID 6366.) – (1.1.0.38) = C:Program Files (x86)AmIcoSingLunAmIcoSinglun64.exe
    7124 | [Owner : Saturn |Parent : 4364] – (.Akamai Technologies, Inc. – Akamai NetSession Client.) – (1.9.1.1) = C:UsersSaturnAppDataLocalAkamainetsession_win.exe
    7016 | [Owner : Saturn |Parent : 4364] – (.Microsoft Corporation – Microsoft OneNote Quick Launcher.) – (14.0.7104.5000) = C:PROGRA~2MICROS~1Office14ONENOTEM.EXE
    6312 | [Owner : Saturn |Parent : 7124] – (.Akamai Technologies, Inc. – Akamai NetSession Client.) – (1.9.1.1) = C:UsersSaturnAppDataLocalAkamainetsession_win.exe
    6164 | [Owner : Saturn |Parent : 6244] – (.Adobe Systems Incorporated – Adobe Reader and Acrobat Manager.) – (1.6.5.0) = C:Program Files (x86)Common FilesAdobeARM1.0AdobeARM.exe
    2868 | [Owner : Saturn |Parent : 6244] – (.ASUS – ATK Media.) – (2.0.10.1) = C:Program Files (x86)ASUSATK PackageATK MediaDMedia.exe
    2552 | [Owner : Saturn |Parent : 1840] – (.NVIDIA Corporation – NVIDIA Settings.) – (7.17.13.3165) = C:Program FilesNVIDIA CorporationDisplaynvtray.exe
    3388 | [Owner : Saturn |Parent : 6244] – (.ASUS – HControlUser.) – (1.0.50.1) = C:Program Files (x86)ASUSATK PackageATK HotkeyHControlUser.exe
    6340 | [Owner : Saturn |Parent : 6244] – (.ASUS – Wireless Console 3.) – (3.0.25.0) = C:Program Files (x86)ASUSWireless Console 3wcourier.exe
    2424 | [Owner : Saturn |Parent : 6244] – (.CyberLink Corp. – PowerDVD RC Service.) – (10.0.2730.0) = C:Program Files (x86)CyberLinkPowerDVD10PDVD10Serv.exe
    6660 | [Owner : Saturn |Parent : 6244] – (.Apple Inc. – iTunesHelper.) – (11.1.3.8) = C:Program Files (x86)iTunesiTunesHelper.exe
    6940 | [Owner : Saturn |Parent : 6244] – (.Oracle Corporation – Java Update Scheduler.) – (2.8.25.18) = C:Program Files (x86)Common FilesJavaJava Updatejusched.exe
    7504 | [Owner : Système |Parent : 196] – (.Apple Inc. – iPodService Module (64-bit).) – (11.1.3.8) = C:Program FilesiPodbiniPodService.exe
    7388 | [Owner : SERVICE RÉSEAU |Parent : 196] – (.Microsoft Corporation – Service Partage réseau du Lecteur Windows Media.) – (12.0.7601.17514) = C:Program FilesWindows Media Playerwmpnetwk.exe
    7240 | [Owner : Saturn |Parent : 5628] – (.ELAN Microelectronics Corp. – ETD Control Center Helper.) – (10.0.0.7) = C:Program FilesElantechETDCtrlHelper.exe
    4000 | [Owner : Saturn |Parent : 5628] – (.ELAN Microelectronics Corp. – ETD Gesture.) – (10.0.0.6) = C:Program FilesElantechETDGesture.exe
    268 | [Owner : Système |Parent : 196] – (.MAGIX AG – Verzeichnisüberwachung und Hilfsaufgaben für die Medienbibliothek.) – (2.1.31.0) = C:Program Files (x86)Common FilesMAGIX ServicesDatabasebinFABS.exe
    7544 | [Owner : Système |Parent : 196] – (.Intel Corporation – Local Manageability Service.) – (8.0.3.1427) = C:Program Files (x86)IntelIntel(R) Management Engine ComponentsLMSLMS.exe
    4212 | [Owner : UpdatusUser |Parent : 196] – (.NVIDIA Corporation – NVIDIA Settings Update Manager.) – (1.15.2.0) = C:Program Files (x86)NVIDIA CorporationNVIDIA Update Coredaemonu.exe
    4064 | [Owner : SERVICE LOCAL |Parent : 196] – (.Microsoft Corporation – PresentationFontCache.exe.) – (3.0.6920.5011) = C:WindowsMicrosoft.NETFramework64v3.0WPFPresentationFontCache.exe
    6680 | [Owner : Saturn |Parent : 196] – (.Microsoft Corporation – Serveur de personnalisation d’entrée.) – (6.1.7600.16385) = C:Program FilesCommon FilesMicrosoft SharedinkInputPersonalization.exe
    8612 | [Owner : Système |Parent : 196] – (.Intel Corporation – User Notification Service.) – (8.0.3.1427) = C:Program Files (x86)IntelIntel(R) Management Engine ComponentsUNSUNS.exe
    2500 | [Owner : Saturn |Parent : 3960] – (.Intel Corporation – Intel Services Manager.) – (1.8.0.34787) = C:Program Files (x86)IntelIntel(R) ME FW Recovery Agentbinismagent.exe
    9340 | [Owner : Saturn |Parent : 2500] – (. – .) – (0.0.0.0) = C:Program Files (x86)IntelIntel(R) ME FW Recovery Agentbinupdateui.exe
    2824 | [Owner : Saturn |Parent : 1676] – (.Malwarebytes Corporation – Malwarebytes Anti-Malware.) – (1.0.1.711) = C:Program Files (x86)Malwarebytes Anti-Malwarembam.exe
    268 | [Owner : Système |Parent : 196] – (.MAGIX AG – Verzeichnisüberwachung und Hilfsaufgaben für die Medienbibliothek.) – (2.1.31.0) = C:Program Files (x86)Common FilesMAGIX ServicesDatabasebinFABS.exe
    6680 | [Owner : Saturn |Parent : 196] – (.Microsoft Corporation – Serveur de personnalisation d’entrée.) – (6.1.7600.16385) = C:Program FilesCommon FilesMicrosoft SharedinkInputPersonalization.exe
    2500 | [Owner : Saturn |Parent : 3960] – (.Intel Corporation – Intel Services Manager.) – (1.8.0.34787) = C:Program Files (x86)IntelIntel(R) ME FW Recovery Agentbinismagent.exe
    3312 | [Owner : Système |Parent : 196] – (.Intel(R) Corporation – Intel(R) Capability Licensing Service Interface.) – (1.23.605.1) = C:Program FilesInteliCLS ClientHeciServer.exe
    10636 | [Owner : Système |Parent : 1532] – (.Microsoft Corporation – Composant de saisie tactile ou avec stylet Microsoft.) – (6.1.7601.17514) = C:WindowsSystem32wisptis.exe
    7024 | [Owner : Système |Parent : 196] – (.CybelSoft – Service de détection matériel.) – (7.1.4.0) = C:Program Filesma-config.comMaConfigAgent.exe
    9660 | [Owner : Saturn |Parent : 1532] – (.Microsoft Corporation – Composant de saisie tactile ou avec stylet Microsoft.) – (6.1.7601.17514) = C:WindowsSystem32wisptis.exe

    ¤¤¤¤¤¤¤¤¤¤ | Tasks

    ¤¤¤¤¤¤¤¤¤¤ | Services

    ¤¤¤¤¤¤¤¤¤¤ | AppCertDlls | AppInit_DLLs

    ¤¤¤¤¤¤¤¤¤¤ | Hosts

    Hosts : Ok

    ¤¤¤¤¤¤¤¤¤¤ | SafeBoot

    ¤¤¤¤¤¤¤¤¤¤ | Winsock

    ¤¤¤¤¤¤¤¤¤¤ | Registre

    Supprimé avec succès : HKLM64SOFTWAREClassesIDBHO.IDBrowserExtension
    Supprimé avec succès : HKLM64SOFTWAREClassesIDBHO.IDBrowserExtension.1
    Supprimé avec succès : HKLM64SOFTWAREClassesCLSID{9030D464-4C02-4ABF-8ECC-5164760863C6} (CLSID)
    Supprimé avec succès : HKLMSOFTWAREClassesCLSID{9030D464-4C02-4ABF-8ECC-5164760863C6} (CLSID)
    Supprimé avec succès : HKLM64SOFTWAREClassesInterface{5E6487A6-75F4-4EAF-9A86-04AB74E05878} : IIDBrowserExtension
    Supprimé avec succès : HKLM64SOFTWAREClassesInterface{A52621AD-E10F-477B-9ACB-B6181610788B} : ISoftwareUpdate
    Supprimé avec succès : HKLMSOFTWAREClassesInterface{5E6487A6-75F4-4EAF-9A86-04AB74E05878} : IIDBrowserExtension
    Supprimé avec succès : HKLMSOFTWAREClassesInterface{89A3A2ED-0546-4C60-8159-2D917245BCB3} : IBrowserSecurityManager
    Supprimé avec succès : HKLMSOFTWAREClassesInterface{A52621AD-E10F-477B-9ACB-B6181610788B} : ISoftwareUpdate
    Supprimé avec succès : HKLMSOFTWAREMicrosoftTracingInstallManager_RASAPI32
    Supprimé avec succès : HKLMSOFTWAREMicrosoftTracingInstallManager_RASMANCS
    Supprimé avec succès : HKLM64SOFTWARESpeedBit
    Supprimé avec succès : HKLMSOFTWAREGOG.com
    Supprimé avec succès : HKLMSOFTWARESpeedBit
    Supprimé avec succès : HKUS-1-5-21-1344051888-2695194567-3556418042-1001SOFTWAREDriverTuner
    Supprimé avec succès : HKUS-1-5-21-1344051888-2695194567-3556418042-1001SOFTWAREGOG.com
    Supprimé avec succès : HKUS-1-5-21-1344051888-2695194567-3556418042-1001SOFTWARESpeedBit
    Supprimé avec succès : HKLM64SOFTWAREMicrosoftInternet ExplorerExtension Compatibility{100EB1FD-D03E-47FD-81F3-EE91287F9465} : ShopperReports.dll (String)
    Supprimé avec succès : HKLM64SOFTWAREMicrosoftInternet ExplorerExtension Compatibility{258C9770-1713-4021-8D7E-1F184A2BD754} : ShoppingReport.dll (String)
    Supprimé avec succès : HKLM64SOFTWAREMicrosoftInternet ExplorerExtension Compatibility{2EECD738-5844-4A99-B4B6-146BF802613B} : BabylonToolbar.dll (String)
    Supprimé avec succès : HKLM64SOFTWAREMicrosoftInternet ExplorerExtension Compatibility{5AA2BA46-9913-4DC7-9620-69AB0FA17AE7} : alot.dll;alot.dll (String)
    Supprimé avec succès : HKLM64SOFTWAREMicrosoftInternet ExplorerExtension Compatibility{9030D464-4C02-4ABF-8ECC-5164760863C6} (CLSID)
    Supprimé avec succès : HKLM64SOFTWAREMicrosoftInternet ExplorerExtension Compatibility{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E} : BabylonToolbar.dll (String)
    Supprimé avec succès : HKLM64SOFTWAREMicrosoftInternet ExplorerExtension Compatibility{BDEA95CF-F0E6-41E0-BD3D-B00F39A4E939} : ShoppingReport.dll (String)
    Supprimé avec succès : HKLMSOFTWAREMicrosoftInternet ExplorerExtension Compatibility{100EB1FD-D03E-47FD-81F3-EE91287F9465} (CLSID)
    Supprimé avec succès : HKLMSOFTWAREMicrosoftInternet ExplorerExtension Compatibility{258C9770-1713-4021-8D7E-1F184A2BD754} (CLSID)
    Supprimé avec succès : HKLMSOFTWAREMicrosoftInternet ExplorerExtension Compatibility{2EECD738-5844-4A99-B4B6-146BF802613B} (CLSID)
    Supprimé avec succès : HKLMSOFTWAREMicrosoftInternet ExplorerExtension Compatibility{5AA2BA46-9913-4DC7-9620-69AB0FA17AE7} (CLSID)
    Supprimé avec succès : HKLMSOFTWAREMicrosoftInternet ExplorerExtension Compatibility{9030D464-4C02-4ABF-8ECC-5164760863C6} (CLSID)
    Supprimé avec succès : HKLMSOFTWAREMicrosoftInternet ExplorerExtension Compatibility{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E} (CLSID)
    Supprimé avec succès : HKLMSOFTWAREMicrosoftInternet ExplorerExtension Compatibility{BDEA95CF-F0E6-41E0-BD3D-B00F39A4E939} (CLSID)
    Supprimé avec succès : HKUS-1-5-21-1344051888-2695194567-3556418042-1001SOFTWAREMicrosoftWindowsCurrentVersionExtSettings{9030D464-4C02-4ABF-8ECC-5164760863C6} (CLSID)
    Supprimé avec succès : HKUS-1-5-21-1344051888-2695194567-3556418042-1001SOFTWAREMicrosoftWindowsCurrentVersionExtStats{9030D464-4C02-4ABF-8ECC-5164760863C6} (CLSID)
    Supprimé avec succès : HKLM64SOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{9030D464-4C02-4ABF-8ECC-5164760863C6} (CLSID)
    Supprimé avec succès : HKLMSOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{9030D464-4C02-4ABF-8ECC-5164760863C6} (CLSID)
    Supprimé avec succès : HKLM64SoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsC37C90D28F00EEE48ABDB245BB5F7675 : C:Program Files (x86)CrytekCryENGINE_MOD_SDKToolsCryExporterMaya CryExporterprefsshelvesshelf_CryExport.mel
    Supprimé avec succès : HKLMSOFTWAREMicrosoftWindowsCurrentVersionUninstall{520C1D80-935C-42B9-9340-E883849D804F}_is1 : (DriverTuner 3.5.0.1) “C:Program Files (x86)DriverTunerunins000.exe” /SILENT

    ¤¤¤¤¤¤¤¤¤¤ | Dossiers | Fichiers

    Supprimé avec succès : C:Program Files (x86)DriverTuner
    Supprimé avec succès : C:Program Files (x86)Common FilesSpeedBit
    Supprimé avec succès : C:Program FilesCommon FilesSpeedBit
    Supprimé avec succès : C:UsersAll UsersSpeedBit
    Supprimé avec succès : C:UsersAll UsersStart MenuProgramsDriverTuner
    Supprimé avec succès : C:UsersSaturnAppDataRoaming.#
    Supprimé avec succès : C:UsersSaturnAppDataRoamingSpeedBit
    Supprimé avec succès : C:UsersSaturnAppDataLocalLowSpeedBIT
    Supprimé avec succès : C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultLocal Storagehttps_www.gog.com_0.localstorage (.-.)
    Supprimé avec succès : C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultLocal Storagehttps_www.gog.com_0.localstorage-journal (.-.)
    Supprimé avec succès : C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultLocal Storagehttps_www.superfish.com_0.localstorage (.-.)
    Supprimé avec succès : C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultLocal Storagehttps_www.superfish.com_0.localstorage-journal (.-.)
    Supprimé avec succès : C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultLocal Storagehttp_forum.telecharger.01net.com_0.localstorage (.-.)
    Supprimé avec succès : C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultLocal Storagehttp_forum.telecharger.01net.com_0.localstorage-journal (.-.)
    Supprimé avec succès : C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultLocal Storagehttp_www.01net.com_0.localstorage (.-.)
    Supprimé avec succès : C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultLocal Storagehttp_www.01net.com_0.localstorage-journal (.-.)
    Supprimé avec succès : C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultLocal Storagehttp_www.gog.com_0.localstorage (.-.)
    Supprimé avec succès : C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultLocal Storagehttp_www.gog.com_0.localstorage-journal (.-.)
    Supprimé avec succès : C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultLocal Storagehttp_www.metrolyrics.com_0.localstorage (.-.)
    Supprimé avec succès : C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultLocal Storagehttp_www.metrolyrics.com_0.localstorage-journal (.-.)
    Supprimé avec succès : C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultLocal Storagehttp_www.superfish.com_0.localstorage (.-.)
    Supprimé avec succès : C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultLocal Storagehttp_www.superfish.com_0.localstorage-journal (.-.)
    Supprimé avec succès : C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultLocal Storagehttp_www.usaveo.com_0.localstorage (.-.)
    Supprimé avec succès : C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultLocal Storagehttp_www.usaveo.com_0.localstorage-journal (.-.)
    Supprimé avec succès : C:WindowsSystem32AI_RecycleBin

    ¤¤¤¤¤¤¤¤¤¤ | .LNK

    ¤¤¤¤¤¤¤¤¤¤ | Ouverture extension inconnue

    ¤¤¤¤¤¤¤¤¤¤ | Proxy

    ¤¤¤¤¤¤¤¤¤¤ | Internet Explorer

    Réparé : [HKLM64SOFTWAREMicrosoftInternet ExplorerMain]~[Search Bar] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKLM64SOFTWAREMicrosoftInternet ExplorerMain]~[Start Page] : about:blank -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKLM64SOFTWAREMicrosoftInternet ExplorerMain]~[Start Default_Page_URL] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKLM64SOFTWAREMicrosoftInternet ExplorerMain]~[Local Page] : C:WindowsSystem32blank.htm -> C:WindowsSysWOW64blank.htm
    Réparé : [HKLM64SOFTWAREMicrosoftInternet ExplorerMain]~[Default_Search_URL] : -> http://go.microsoft.com/fwlink/?LinkId=54896” onclick=”window.open(this.href);return false;
    Réparé : [HKLM64SOFTWAREMicrosoftInternet ExplorerMain]~[Default_Page_URL] : -> http://go.microsoft.com/fwlink/?LinkId=69157” onclick=”window.open(this.href);return false;
    Réparé : [HKLM64SOFTWAREMicrosoftInternet ExplorerSearchURL]~[Default] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKLM64SOFTWAREMicrosoftInternet ExplorerMain]~[CustomizeSearch] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKLM64SOFTWAREMicrosoftInternet ExplorerMain]~[SearchMigratedDefaultName] : -> google.com
    Réparé : [HKLM64SOFTWAREMicrosoftInternet ExplorerMain]~[SearchMigratedDefaultURL] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKLM64SOFTWAREMicrosoftInternet ExplorerSearch]~[SearchAssistant] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKLM64SOFTWAREMicrosoftInternet ExplorerSearch]~[Search Bar] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKLM64SOFTWAREMicrosoftInternet ExplorerSearch]~[Start Page] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKLM64SOFTWAREMicrosoftInternet ExplorerSearch]~[Start Default_Page_URL] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKLM64SOFTWAREMicrosoftInternet ExplorerSearch]~[Local Page] : -> C:WindowsSysWOW64blank.htm
    Réparé : [HKLM64SOFTWAREMicrosoftInternet ExplorerSearch]~[Search Page] : -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch” onclick=”window.open(this.href);return false;
    Réparé : [HKLM64SOFTWAREMicrosoftInternet ExplorerSearch]~[Default_Search_URL] : -> http://go.microsoft.com/fwlink/?LinkId=54896” onclick=”window.open(this.href);return false;
    Réparé : [HKLM64SOFTWAREMicrosoftInternet ExplorerSearch]~[Default_Page_URL] : -> http://go.microsoft.com/fwlink/?LinkId=69157” onclick=”window.open(this.href);return false;
    Réparé : [HKLM64SOFTWAREMicrosoftInternet ExplorerSearch]~[CustomizeSearch] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKLM64SOFTWAREMicrosoftInternet ExplorerSearch]~[SearchMigratedDefaultName] : -> google.com
    Réparé : [HKLM64SOFTWAREMicrosoftInternet ExplorerSearch]~[SearchMigratedDefaultURL] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKLM64SOFTWAREMicrosoftInternet ExplorerAboutURLs]~[Tabs] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKLMSOFTWAREMicrosoftInternet ExplorerMain]~[Search Bar] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKLMSOFTWAREMicrosoftInternet ExplorerMain]~[Start Page] : about:blank -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKLMSOFTWAREMicrosoftInternet ExplorerMain]~[Start Default_Page_URL] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKLMSOFTWAREMicrosoftInternet ExplorerMain]~[Default_Search_URL] : -> http://go.microsoft.com/fwlink/?LinkId=54896” onclick=”window.open(this.href);return false;
    Réparé : [HKLMSOFTWAREMicrosoftInternet ExplorerMain]~[Default_Page_URL] : -> http://go.microsoft.com/fwlink/?LinkId=69157” onclick=”window.open(this.href);return false;
    Réparé : [HKLMSOFTWAREMicrosoftInternet ExplorerSearchURL]~[Default] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKLMSOFTWAREMicrosoftInternet ExplorerMain]~[CustomizeSearch] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKLMSOFTWAREMicrosoftInternet ExplorerMain]~[SearchMigratedDefaultName] : -> google.com
    Réparé : [HKLMSOFTWAREMicrosoftInternet ExplorerMain]~[SearchMigratedDefaultURL] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKLMSOFTWAREMicrosoftInternet ExplorerSearch]~[SearchAssistant] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKLMSOFTWAREMicrosoftInternet ExplorerSearch]~[Search Bar] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKLMSOFTWAREMicrosoftInternet ExplorerSearch]~[Start Page] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKLMSOFTWAREMicrosoftInternet ExplorerSearch]~[Start Default_Page_URL] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKLMSOFTWAREMicrosoftInternet ExplorerSearch]~[Local Page] : -> C:WindowsSysWOW64blank.htm
    Réparé : [HKLMSOFTWAREMicrosoftInternet ExplorerSearch]~[Search Page] : -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch” onclick=”window.open(this.href);return false;
    Réparé : [HKLMSOFTWAREMicrosoftInternet ExplorerSearch]~[Default_Search_URL] : -> http://go.microsoft.com/fwlink/?LinkId=54896” onclick=”window.open(this.href);return false;
    Réparé : [HKLMSOFTWAREMicrosoftInternet ExplorerSearch]~[Default_Page_URL] : -> http://go.microsoft.com/fwlink/?LinkId=69157” onclick=”window.open(this.href);return false;
    Réparé : [HKLMSOFTWAREMicrosoftInternet ExplorerSearch]~[CustomizeSearch] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKLMSOFTWAREMicrosoftInternet ExplorerSearch]~[SearchMigratedDefaultName] : -> google.com
    Réparé : [HKLMSOFTWAREMicrosoftInternet ExplorerSearch]~[SearchMigratedDefaultURL] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKUS-1-5-21-1344051888-2695194567-3556418042-1001SOFTWAREMicrosoftInternet ExplorerMain]~[Search Bar] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKUS-1-5-21-1344051888-2695194567-3556418042-1001SOFTWAREMicrosoftInternet ExplorerMain]~[Start Page] : about:blank -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKUS-1-5-21-1344051888-2695194567-3556418042-1001SOFTWAREMicrosoftInternet ExplorerMain]~[Start Default_Page_URL] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKUS-1-5-21-1344051888-2695194567-3556418042-1001SOFTWAREMicrosoftInternet ExplorerMain]~[Local Page] : C:Windowssystem32blank.htm -> C:WindowsSysWOW64blank.htm
    Réparé : [HKUS-1-5-21-1344051888-2695194567-3556418042-1001SOFTWAREMicrosoftInternet ExplorerMain]~[Default_Search_URL] : -> http://go.microsoft.com/fwlink/?LinkId=54896” onclick=”window.open(this.href);return false;
    Réparé : [HKUS-1-5-21-1344051888-2695194567-3556418042-1001SOFTWAREMicrosoftInternet ExplorerMain]~[Default_Page_URL] : -> http://go.microsoft.com/fwlink/?LinkId=69157” onclick=”window.open(this.href);return false;
    Réparé : [HKUS-1-5-21-1344051888-2695194567-3556418042-1001SOFTWAREMicrosoftInternet ExplorerSearchURL]~[Default] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKUS-1-5-21-1344051888-2695194567-3556418042-1001SOFTWAREMicrosoftInternet ExplorerMain]~[CustomizeSearch] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKUS-1-5-21-1344051888-2695194567-3556418042-1001SOFTWAREMicrosoftInternet ExplorerMain]~[SearchMigratedDefaultName] : -> google.com
    Réparé : [HKUS-1-5-21-1344051888-2695194567-3556418042-1001SOFTWAREMicrosoftInternet ExplorerMain]~[SearchMigratedDefaultURL] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKUS-1-5-21-1344051888-2695194567-3556418042-1001SOFTWAREMicrosoftInternet ExplorerSearch]~[SearchAssistant] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKUS-1-5-21-1344051888-2695194567-3556418042-1001SOFTWAREMicrosoftInternet ExplorerSearch]~[Search Bar] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKUS-1-5-21-1344051888-2695194567-3556418042-1001SOFTWAREMicrosoftInternet ExplorerSearch]~[Start Page] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKUS-1-5-21-1344051888-2695194567-3556418042-1001SOFTWAREMicrosoftInternet ExplorerSearch]~[Start Default_Page_URL] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKUS-1-5-21-1344051888-2695194567-3556418042-1001SOFTWAREMicrosoftInternet ExplorerSearch]~[Local Page] : -> C:WindowsSysWOW64blank.htm
    Réparé : [HKUS-1-5-21-1344051888-2695194567-3556418042-1001SOFTWAREMicrosoftInternet ExplorerSearch]~[Search Page] : -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch” onclick=”window.open(this.href);return false;
    Réparé : [HKUS-1-5-21-1344051888-2695194567-3556418042-1001SOFTWAREMicrosoftInternet ExplorerSearch]~[Default_Search_URL] : -> http://go.microsoft.com/fwlink/?LinkId=54896” onclick=”window.open(this.href);return false;
    Réparé : [HKUS-1-5-21-1344051888-2695194567-3556418042-1001SOFTWAREMicrosoftInternet ExplorerSearch]~[Default_Page_URL] : -> http://go.microsoft.com/fwlink/?LinkId=69157” onclick=”window.open(this.href);return false;
    Réparé : [HKUS-1-5-21-1344051888-2695194567-3556418042-1001SOFTWAREMicrosoftInternet ExplorerSearch]~[CustomizeSearch] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKUS-1-5-21-1344051888-2695194567-3556418042-1001SOFTWAREMicrosoftInternet ExplorerSearch]~[SearchMigratedDefaultName] : -> google.com
    Réparé : [HKUS-1-5-21-1344051888-2695194567-3556418042-1001SOFTWAREMicrosoftInternet ExplorerSearch]~[SearchMigratedDefaultURL] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKUS-1-5-21-1344051888-2695194567-3556418042-1001SOFTWAREMicrosoftInternet ExplorerAboutURLs]~[Tabs] : -> https://www.google.com/” onclick=”window.open(this.href);return false;

    ¤¤¤¤¤¤¤¤¤¤ | Google Chrome

    Supprimé avec succès : HKLM64SOFTWAREPoliciesGoogle
    Supprimé avec succès : C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultWeb Data (.-.) Remis a zéro avec succès : SearchURL
    Supprimé avec succès : C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultPreferences (.-.) Remise à zéro impossible : Preferences

    C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultextensionsapdfllckaahabafndbhieahigkjlhalf = : Google & co – https://drive.google.com/?usp=chrome_app” onclick=”window.open(this.href);return false; – Google & co – [http://docs.google.com/http://drive.google.com/https://docs.google.com/https://drive.google.com/] – http://clients2.google.com/service/update2/crx” onclick=”window.open(this.href);return false;
    C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultextensionsbepbmhgboaologfdajaanbcjmnhjmhfn = : This extension allows you to say ‘Ok Google’ and start speaking your search. – Google Voice Search Hotword (Beta) – https://clients2.google.com/service/update2/crx” onclick=”window.open(this.href);return false;
    C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultextensionsblpcfgokakmgnkcojhhkbfbldkacnbeo = : Google & co – http://www.youtube.com” onclick=”window.open(this.href);return false; – http://www.youtube.com/?feature=ytca” onclick=”window.open(this.href);return false; – Google & co – http://clients2.google.com/service/update2/crx” onclick=”window.open(this.href);return false;
    C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultextensionscelnaknmndcdcjcagffhbhciignkeokb = :- https://www.facebook.com/” onclick=”window.open(this.href);return false; – https://www.facebook.com/” onclick=”window.open(this.href);return false; – [https://www.facebook.com/]
    C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultextensionscfhdojbkjhnklbpkdaibdccddilifddb = : __MSG_description_chrome__ – __MSG_name__ – https://clients2.google.com/service/update2/crx” onclick=”window.open(this.href);return false;
    C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultextensionsdbkchnicaiglcjpgbmpfmoafckkomdcm = : Google & co – Google & co – https://clients2.google.com/service/update2/crx” onclick=”window.open(this.href);return false;
    C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultextensionsdpljbellfhkofiknkcdmcpfebonoldhi = :- http://www.deviantart.com/” onclick=”window.open(this.href);return false; – http://www.deviantart.com/” onclick=”window.open(this.href);return false; – [http://www.deviantart.com/]
    C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultextensionseikmpmafdimllogceehaijmnlndineje = : Quickly search for highlighted text on Wikipedia via right-click – Right-Click Search Wikipedia – https://clients2.google.com/service/update2/crx” onclick=”window.open(this.href);return false;
    C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultextensionsfapgfajicejdcdpdidhfphnihcmphblf = :- http://www.walking-dead-streaming.com/” onclick=”window.open(this.href);return false; – http://www.walking-dead-streaming.com/” onclick=”window.open(this.href);return false; – [http://www.walking-dead-streaming.com/]
    C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultextensionsgoabenfmipbicdhchglicoapoeekhplh = :- https://login.live.com/login.srf?wa=wsignin1.0&rpsnv=11&ct=1345474313&rver=6.1.6206.0&wp=MBI&wreply=http:%2F%2Fmail.live.com%2Fdefault.aspx&lc=1036&id=64855&mkt=fr-fr&cbcxt=mai&snsc=1” onclick=”window.open(this.href);return false; – https://login.live.com/login.srf?wa=wsignin1” onclick=”window.open(this.href);return false;. – [https://login.live.com/login.srf?wa=wsignin1.0&rpsnv=11&ct=1345474313&rver=6.1.6206.0&wp=MBI&wreply=http:%2F%2Fmail.live.com%2Fdefault.aspx&lc=1036&id=64855&mkt=fr-fr&cbcxt=mai&snsc=1]
    C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultextensionsjiglbhiacnhpjemeochdlfmopeiblpoa = :- http://sport.be.msn.com/fr/jupilerproleague/” onclick=”window.open(this.href);return false; – http://sport.be.msn.com/fr/jupilerproleague/” onclick=”window.open(this.href);return false; – [http://sport.be.msn.com/fr/jupilerproleague/]
    C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultextensionskcbnmdkeekjjcefkhbomlalggpgenpjp = :- http://www.t411.me/” onclick=”window.open(this.href);return false; – http://www.t411.me/” onclick=”window.open(this.href);return false; – [http://www.t411.me/]
    C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultextensionslfbgimoladefibpklnfmkpknadbklade = : Take photos with your webcam using over 80 free fun effects. Save photos to your computer or post to Twitter Tumblr and Facebook! – http://webcamtoy.com/app/” onclick=”window.open(this.href);return false; – Webcam Toy – [http://webcamtoy.com/app/] – https://clients2.google.com/service/update2/crx” onclick=”window.open(this.href);return false;
    C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultextensionslfffhmndpldceogndeognocbpmlgdemi = : Take photos from your webcam and apply a lot of funny and beautiful webcam effects! – http://comicwebcam.com/” onclick=”window.open(this.href);return false; – Comic Webcam – [http://comicwebcam.com/] – https://clients2.google.com/service/update2/crx” onclick=”window.open(this.href);return false;
    C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultextensionslfpklildcpdhbmnhjdmnnainefjpjfjm = :- http://www.nba.com/” onclick=”window.open(this.href);return false; – http://www.nba.com/” onclick=”window.open(this.href);return false; – [http://www.nba.com/]
    C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultextensionslmkpjaplpnklkcibeohfflofkhpcaijl = :- http://www.jeuxvideo.com/etajvbisbe.htm” onclick=”window.open(this.href);return false; – http://www.jeuxvideo.com/etajvbisbe.htm” onclick=”window.open(this.href);return false; – [http://www.jeuxvideo.com/etajvbisbe.htm]
    C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultextensionsnmmhkkegccagdldgiimedpiccmgmieda = : Google & co – Google & co – 203784468217.apps.googleusercontent.com – https://clients2.google.com/service/update2/crx” onclick=”window.open(this.href);return false;
    C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultextensionsnpfkoakaabdallkcdbpkkhfilkkngakh = : Google & co – http://www.deezer.com” onclick=”window.open(this.href);return false; – Google & co –

  • http://clients2.google.com/service/update2/crx” onclick=”window.open(this.href);return false;
    C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultextensionsoocncdpjafpninblmaonahdfdocbbdok = : Google & co – Google & co – https://clients2.google.com/service/update2/crx” onclick=”window.open(this.href);return false;
    C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultextensionspkagljjfcjjpbkkfppbklhamjlodpnpi = : Smart. Simple. Beautiful Theme. – __MSG_themeName__ – http://clients2.google.com/service/update2/crx” onclick=”window.open(this.href);return false;

    ¤¤¤¤¤¤¤¤¤¤ | Chromium

    Supprimé avec succès : HKLM64SOFTWAREPoliciesChromium

    ¤¤¤¤¤¤¤¤¤¤ | Comodo Dragon

    ¤¤¤¤¤¤¤¤¤¤ | Firefox

    ¤¤¤¤¤¤¤¤¤¤ | SeaMonkey

    ¤¤¤¤¤¤¤¤¤¤ | Pale moon

    ¤¤¤¤¤¤¤¤¤¤ | Opera

    ¤¤¤¤¤¤¤¤¤¤ | Spark

    ¤¤¤¤¤¤¤¤¤¤ | StartMenuInternet

    ¤¤¤¤¤¤¤¤¤¤ | Javascript

    ¤¤¤¤¤¤¤¤¤¤ | Firewall

    ¤¤¤¤¤¤¤¤¤¤ | Fichiers temporaires

    [All Users] Fichiers temporaires Supprimés : 0 Ko
    [Default] Fichiers temporaires Supprimés : 0 Ko
    [Default User] Fichiers temporaires Supprimés : 0 Ko
    [hedev] Fichiers temporaires Supprimés : 43164 Ko
    [Public] Fichiers temporaires Supprimés : 0 Ko
    [Saturn] Fichiers temporaires Supprimés : 64444 Ko
    [UpdatusUser] Fichiers temporaires Supprimés : 0 Ko
    [C:WindowsTemp] Fichiers temporaires Supprimés : 115103 Ko
    [C:Temp] Fichiers temporaires Supprimés : 0 Ko

    Autre rapport

    ¤¤¤¤¤¤¤¤¤¤ | Listing

    ¤¤¤¤¤¤¤¤¤¤ | C:Program Files (x86)

    [24/02/2012 03:28:31] – |D| – C:Program Files (x86)Adobe
    [14/09/2012 18:08:25] – |D| – C:Program Files (x86)Adobe Download Assistant
    [20/01/2014 22:46:00] – |D| – C:Program Files (x86)Aeria Games
    [31/05/2012 17:38:54] – |D| – C:Program Files (x86)AmIcoSingLun
    [20/08/2012 16:06:30] – |D| – C:Program Files (x86)Apple Software Update
    [24/02/2012 03:42:04] – |D| – C:Program Files (x86)ASUS
    [31/05/2012 17:43:23] – |D| – C:Program Files (x86)ASUS Music Maker
    [15/09/2012 01:00:53] – |D| – C:Program Files (x86)AVS4YOU
    [14/05/2014 12:43:09] – |D| – C:Program Files (x86)Battle.net
    [29/06/2014 22:12:29] – |D| – C:Program Files (x86)Belgium Identity Card
    [31/05/2012 17:34:57] – |D| – C:Program Files (x86)Bluetooth Suite
    [20/08/2012 16:06:00] – |D| – C:Program Files (x86)Bonjour
    [09/02/2014 12:51:12] – |D| – C:Program Files (x86)Cluedo
    [17/04/2013 23:16:58] – |D| – C:Program Files (x86)Combined Community Codec Pack
    [14/07/2009 04:20:08] – |D| – C:Program Files (x86)Common Files
    [01/12/2012 22:35:34] – |D| – C:Program Files (x86)Crytek
    [22/12/2013 20:54:42] – |D| – C:Program Files (x86)CustoPackTools
    [31/05/2012 17:43:54] – |D| – C:Program Files (x86)CyberLink
    [18/09/2012 16:32:58] – |D| – C:Program Files (x86)DAEMON Tools Pro
    [23/12/2013 12:45:05] – |D| – C:Program Files (x86)DAP
    [14/07/2009 05:54:24] – |ASH| – C:Program Files (x86)desktop.ini
    [15/05/2013 13:07:41] – |HD| – C:Program Files (x86)Dr.Fone_Temp
    [31/05/2013 01:46:21] – |D| – C:Program Files (x86)Dust An Elysian Tail
    [18/01/2013 12:28:32] – |D| – C:Program Files (x86)EBP – PRGR
    [09/05/2013 16:03:13] – |D| – C:Program Files (x86)Electronic Arts
    [24/02/2012 03:28:59] – |D| – C:Program Files (x86)Google
    [15/05/2014 10:03:12] – |D| – C:Program Files (x86)Hearthstone
    [09/09/2013 20:22:04] – |D| – C:Program Files (x86)HP
    [31/05/2012 17:22:46] – |HD| – C:Program Files (x86)InstallShield Installation Information
    [31/05/2012 17:22:46] – |D| – C:Program Files (x86)Intel
    [03/08/2012 23:47:46] – |D| – C:Program Files (x86)Intel Retail iPOS BTS 2012
    [14/07/2009 04:20:08] – |D| – C:Program Files (x86)Internet Explorer
    [30/12/2013 13:29:07] – |D| – C:Program Files (x86)iTunes
    [11/09/2012 16:45:01] – |D| – C:Program Files (x86)Java
    [17/01/2013 20:46:17] – |D| – C:Program Files (x86)Larousse
    [16/07/2014 13:58:22] – |D| – C:Program Files (x86)Malwarebytes Anti-Malware
    [16/01/2013 17:42:13] – |D| – C:Program Files (x86)Malwarebytes' Anti-Malware
    [19/07/2013 15:59:11] – |D| – C:Program Files (x86)Mark of the Ninja
    [12/12/2013 23:07:36] – |D| – C:Program Files (x86)McAfee
    [12/12/2013 23:11:21] – |D| – C:Program Files (x86)McAfee Online Backup
    [24/02/2012 03:41:46] – |D| – C:Program Files (x86)Microsoft
    [24/10/2012 22:55:58] – |D| – C:Program Files (x86)Microsoft Analysis Services
    [20/08/2012 15:03:01] – |D| – C:Program Files (x86)Microsoft Application Virtualization Client
    [28/12/2013 11:01:34] – |D| – C:Program Files (x86)Microsoft Games for Windows – LIVE
    [24/02/2012 03:19:02] – |D| – C:Program Files (x86)Microsoft Office
    [13/03/2013 13:02:16] – |D| – C:Program Files (x86)Microsoft Silverlight
    [24/02/2012 03:37:31] – |D| – C:Program Files (x86)Microsoft SQL Server Compact Edition
    [31/03/2013 15:17:47] – |D| – C:Program Files (x86)Microsoft WSE
    [31/05/2013 01:54:06] – |D| – C:Program Files (x86)Microsoft XNA
    [24/02/2012 03:26:02] – |D| – C:Program Files (x86)Microsoft.NET
    [29/06/2014 22:11:30] – |D| – C:Program Files (x86)Mozilla Firefox
    [14/07/2009 06:32:38] – |D| – C:Program Files (x86)MSBuild
    [21/08/2012 02:28:47] – |D| – C:Program Files (x86)MSXML 4.0
    [31/05/2012 17:29:22] – |D| – C:Program Files (x86)NVIDIA Corporation
    [14/09/2012 23:06:05] – |RD| – C:Program Files (x86)Portrait Professional 10
    [29/01/2013 14:57:45] – |D| – C:Program Files (x86)ProtectDisc Driver Installer
    [31/05/2012 17:34:21] – |D| – C:Program Files (x86)Qualcomm Atheros WiFi Driver Installation
    [14/09/2012 20:55:13] – |D| – C:Program Files (x86)QuickTime
    [31/05/2012 17:32:19] – |D| – C:Program Files (x86)Realtek
    [14/07/2009 06:32:38] – |D| – C:Program Files (x86)Reference Assemblies
    [29/10/2012 01:21:08] – |D| – C:Program Files (x86)REVisionEffects
    [22/12/2013 00:25:25] – |D| – C:Program Files (x86)RocketDock
    [16/07/2014 13:28:04] – |D| – C:Program Files (x86)Runxia Electronics
    [12/12/2013 23:09:38] – |D| – C:Program Files (x86)SafeKey
    [19/10/2014 10:42:35] – |RD| – C:Program Files (x86)Skype
    [08/09/2012 14:34:22] – |D| – C:Program Files (x86)Sony
    [25/10/2012 11:07:46] – |D| – C:Program Files (x86)Steam
    [11/09/2012 16:54:47] – |D| – C:Program Files (x86)SystemRequirementsLab
    [15/09/2012 00:19:38] – |D| – C:Program Files (x86)TechSmith
    [31/05/2012 17:32:19] – |HD| – C:Program Files (x86)Temp
    [14/07/2009 05:57:06] – |HD| – C:Program Files (x86)Uninstall Information
    [10/01/2013 01:02:59] – |D| – C:Program Files (x86)uTorrent
    [20/12/2012 11:14:13] – |D| – C:Program Files (x86)Votre santé au quotidien
    [14/07/2009 06:32:38] – |D| – C:Program Files (x86)Windows Defender
    [24/02/2012 03:33:30] – |D| – C:Program Files (x86)Windows Live
    [14/07/2009 04:20:08] – |D| – C:Program Files (x86)Windows Mail
    [14/07/2009 06:32:38] – |D| – C:Program Files (x86)Windows Media Player
    [14/07/2009 04:20:08] – |D| – C:Program Files (x86)Windows NT
    [14/07/2009 06:32:38] – |D| – C:Program Files (x86)Windows Photo Viewer
    [14/07/2009 06:32:38] – |D| – C:Program Files (x86)Windows Portable Devices
    [14/07/2009 06:32:38] – |D| – C:Program Files (x86)Windows Sidebar
    [20/08/2012 16:56:07] – |D| – C:Program Files (x86)WinRAR
    [15/05/2013 13:07:41] – |D| – C:Program Files (x86)Wondershare
    [29/10/2012 03:16:34] – |D| – C:Program Files (x86)Youtube Downloader HD
    [09/11/2014 11:53:39] – |D| – C:Program Files (x86)ZHPDiag

    ¤¤¤¤¤¤¤¤¤¤ | C:Program Files

    [08/09/2012 13:53:40] – |D| – C:Program FilesAdobe
    [31/05/2012 17:41:06] – |D| – C:Program FilesASUS
    [11/01/2014 14:51:57] – |D| – C:Program FilesBitdefender
    [20/08/2012 16:06:00] – |D| – C:Program FilesBonjour
    [10/01/2013 01:01:19] – |D| – C:Program FilesCCleaner
    [14/07/2009 04:20:08] – |D| – C:Program FilesCommon Files
    [14/07/2009 05:54:24] – |ASH| – C:Program Filesdesktop.ini
    [29/06/2014 22:13:56] – |D| – C:Program FilesDIFX
    [14/07/2009 06:32:38] – |D| – C:Program FilesDVD Maker
    [31/05/2012 17:32:09] – |D| – C:Program FilesElantech
    [31/05/2012 17:23:26] – |D| – C:Program FilesIntel
    [14/07/2009 04:20:08] – |D| – C:Program FilesInternet Explorer
    [30/12/2013 13:29:08] – |D| – C:Program FilesiPod
    [30/12/2013 13:29:07] – |D| – C:Program FilesiTunes
    [31/10/2014 00:03:32] – |D| – C:Program FilesJava
    [29/06/2014 22:12:29] – |D| – C:Program Fileslog
    [28/08/2014 21:50:37] – |D| – C:Program Filesma-config.com
    [14/07/2009 06:32:38] – |D| – C:Program FilesMicrosoft Games
    [20/08/2012 15:03:02] – |D| – C:Program FilesMicrosoft Office
    [13/03/2013 13:02:16] – |D| – C:Program FilesMicrosoft Silverlight
    [17/07/2013 04:12:58] – |D| – C:Program FilesMotioninJoy
    [14/07/2009 06:32:38] – |D| – C:Program FilesMSBuild
    [31/05/2012 17:28:53] – |D| – C:Program FilesNVIDIA Corporation
    [31/05/2012 17:32:33] – |D| – C:Program FilesRealtek
    [14/07/2009 06:32:38] – |D| – C:Program FilesReference Assemblies
    [18/10/2012 20:33:17] – |D| – C:Program FilesSony
    [11/12/2013 17:11:46] – |D| – C:Program Filesstinger
    [28/08/2014 22:38:25] – |D| – C:Program FilesSynaptics
    [14/07/2009 06:09:26] – |HD| – C:Program FilesUninstall Information
    [14/07/2009 06:32:38] – |D| – C:Program FilesWindows Defender
    [14/07/2009 08:45:58] – |D| – C:Program FilesWindows Journal
    [14/07/2009 04:20:08] – |D| – C:Program FilesWindows Mail
    [14/07/2009 06:32:38] – |D| – C:Program FilesWindows Media Player
    [14/07/2009 04:20:08] – |D| – C:Program FilesWindows NT
    [14/07/2009 06:32:38] – |D| – C:Program FilesWindows Photo Viewer
    [14/07/2009 06:32:38] – |D| – C:Program FilesWindows Portable Devices
    [14/07/2009 06:32:38] – |D| – C:Program FilesWindows Sidebar
    [08/09/2012 15:19:54] – |D| – C:Program FilesWinRAR

    ¤¤¤¤¤¤¤¤¤¤ | C:Program Files (x86)Common Files

    [24/02/2012 03:28:31] – |D| – C:Program Files (x86)Common FilesAdobe
    [08/09/2012 11:10:21] – |D| – C:Program Files (x86)Common FilesAdobe AIR
    [20/08/2012 16:05:52] – |D| – C:Program Files (x86)Common FilesApple
    [22/08/2012 21:15:40] – |D| – C:Program Files (x86)Common FilesArcSoft
    [31/05/2012 17:35:00] – |D| – C:Program Files (x86)Common FilesAtheros
    [15/09/2012 01:01:21] – |D| – C:Program Files (x86)Common FilesAVSMedia
    [09/05/2013 16:03:13] – |D| – C:Program Files (x86)Common FilesBioWare
    [11/09/2012 17:43:26] – |D| – C:Program Files (x86)Common FilesBlizzard Entertainment
    [15/05/2014 08:20:41] – |D| – C:Program Files (x86)Common FilesDESIGNER
    [31/05/2012 17:32:16] – |D| – C:Program Files (x86)Common FilesInstallShield
    [31/05/2012 17:25:48] – |D| – C:Program Files (x86)Common FilesIntel
    [31/10/2014 00:06:46] – |D| – C:Program Files (x86)Common FilesJava
    [12/12/2013 23:10:17] – |A| – C:Program Files (x86)Common Fileslpuninstall.exe
    [31/05/2012 17:41:57] – |D| – C:Program Files (x86)Common FilesMAGIX Services
    [14/07/2009 04:20:08] – |D| – C:Program Files (x86)Common Filesmicrosoft shared
    [24/02/2012 03:42:35] – |D| – C:Program Files (x86)Common FilesOberon Media
    [31/05/2012 17:23:01] – |D| – C:Program Files (x86)Common FilespostureAgent
    [14/07/2009 04:20:08] – |D| – C:Program Files (x86)Common FilesServices
    [19/10/2014 10:42:35] – |D| – C:Program Files (x86)Common FilesSkype
    [14/07/2009 04:20:08] – |D| – C:Program Files (x86)Common FilesSpeechEngines
    [25/10/2012 11:07:48] – |D| – C:Program Files (x86)Common FilesSteam
    [03/08/2012 23:50:08] – |D| – C:Program Files (x86)Common FilesSWF Studio
    [14/07/2009 04:20:08] – |D| – C:Program Files (x86)Common FilesSystem
    [15/09/2012 00:19:42] – |D| – C:Program Files (x86)Common FilesTechSmith Shared
    [24/02/2012 03:29:35] – |D| – C:Program Files (x86)Common FilesWindows Live
    [07/06/2013 14:11:58] – |D| – C:Program Files (x86)Common FilesWise Installation Wizard
    [15/05/2013 13:07:47] – |D| – C:Program Files (x86)Common FilesWondershare

    ¤¤¤¤¤¤¤¤¤¤ | C:Program FilesCommon Files

    [08/09/2012 13:48:56] – |D| – C:Program FilesCommon FilesAdobe
    [20/08/2012 16:06:12] – |D| – C:Program FilesCommon FilesApple
    [11/01/2014 14:51:18] – |D| – C:Program FilesCommon FilesBitdefender
    [25/02/2014 15:20:03] – |D| – C:Program FilesCommon FilesINCA Shared
    [31/05/2012 17:25:49] – |D| – C:Program FilesCommon FilesIntel
    [28/08/2014 22:40:24] – |D| – C:Program FilesCommon FilesLogiShrd
    [12/12/2013 22:55:59] – |D| – C:Program FilesCommon FilesMcAfee
    [14/07/2009 04:20:08] – |D| – C:Program FilesCommon FilesMicrosoft Shared
    [14/07/2009 04:20:08] – |D| – C:Program FilesCommon FilesServices
    [14/07/2009 04:20:08] – |D| – C:Program FilesCommon FilesSpeechEngines
    [14/07/2009 04:20:08] – |D| – C:Program FilesCommon FilesSystem[/spoiler:1slly0qm]

  • Glazh
    Participant
    Post count: 7

    Et voici la seconde partie car avec mon post je dépassais 60 000 caractères ..

    [spoiler:29xoegb1]¤¤¤¤¤¤¤¤¤¤ | C:UsersSaturnAppDataRoaming

    [20/08/2014 12:28:29] – |D| – C:UsersSaturnAppDataRoaming.mono
    [03/08/2012 23:50:08] – |D| – C:UsersSaturnAppDataRoamingAdobe
    [20/01/2014 22:45:49] – |D| – C:UsersSaturnAppDataRoamingAeria Games & Entertainment
    [29/10/2012 03:01:21] – |D| – C:UsersSaturnAppDataRoamingApowersoft
    [20/08/2012 16:09:05] – |D| – C:UsersSaturnAppDataRoamingApple Computer
    [22/08/2012 21:15:07] – |D| – C:UsersSaturnAppDataRoamingArcSoft
    [03/08/2012 22:04:51] – |D| – C:UsersSaturnAppDataRoamingASUS
    [03/08/2012 23:43:09] – |D| – C:UsersSaturnAppDataRoamingASUS WebStorage
    [03/08/2012 22:04:40] – |D| – C:UsersSaturnAppDataRoamingAtheros
    [15/09/2012 01:03:05] – |D| – C:UsersSaturnAppDataRoamingAVS4YOU
    [14/05/2014 12:43:21] – |D| – C:UsersSaturnAppDataRoamingBattle.net
    [11/01/2014 14:54:59] – |D| – C:UsersSaturnAppDataRoamingBitdefender
    [08/09/2012 11:11:37] – |D| – C:UsersSaturnAppDataRoamingcom.adobe.downloadassistant.AdobeDownloadAssistant
    [22/08/2012 12:26:47] – |D| – C:UsersSaturnAppDataRoamingCyberLink
    [18/09/2012 16:31:26] – |D| – C:UsersSaturnAppDataRoamingDAEMON Tools Pro
    [20/11/2013 18:07:44] – |D| – C:UsersSaturnAppDataRoamingDropbox
    [27/09/2012 13:09:33] – |D| – C:UsersSaturnAppDataRoamingDVDVideoSoft
    [09/10/2012 10:15:10] – |D| – C:UsersSaturnAppDataRoamingfltk.org
    [09/02/2014 12:51:31] – |D| – C:UsersSaturnAppDataRoamingGamesCafe
    [19/07/2013 16:08:47] – |D| – C:UsersSaturnAppDataRoamingHive Cluster
    [09/09/2013 20:23:27] – |D| – C:UsersSaturnAppDataRoamingHpUpdate
    [03/08/2012 22:02:37] – |D| – C:UsersSaturnAppDataRoamingIdentities
    [03/08/2012 23:45:00] – |D| – C:UsersSaturnAppDataRoamingIntel
    [28/12/2013 11:03:02] – |D| – C:UsersSaturnAppDataRoamingLionhead Studios
    [28/08/2014 22:40:16] – |D| – C:UsersSaturnAppDataRoamingLogishrd
    [28/08/2014 22:40:16] – |D| – C:UsersSaturnAppDataRoamingLogitech
    [22/07/2013 20:41:49] – |D| – C:UsersSaturnAppDataRoamingLOVE
    [03/08/2012 23:50:09] – |D| – C:UsersSaturnAppDataRoamingMacromedia
    [14/07/2013 10:41:17] – |D| – C:UsersSaturnAppDataRoamingMAGIX
    [20/08/2012 16:53:43] – |D| – C:UsersSaturnAppDataRoamingMalwarebytes
    [03/08/2012 22:01:04] – |D| – C:UsersSaturnAppDataRoamingMedia Center Programs
    [17/04/2013 23:17:33] – |D| – C:UsersSaturnAppDataRoamingMedia Player Classic
    [03/08/2012 22:01:04] – |SD| – C:UsersSaturnAppDataRoamingMicrosoft
    [29/10/2012 19:42:21] – |D| – C:UsersSaturnAppDataRoamingMOVAVI
    [08/09/2012 14:14:30] – |D| – C:UsersSaturnAppDataRoamingNVIDIA
    [20/08/2014 12:27:15] – |D| – C:UsersSaturnAppDataRoamingPokémon Trading Card Game Online
    [29/01/2013 14:57:23] – |D| – C:UsersSaturnAppDataRoamingProtectDISC
    [15/09/2012 00:44:53] – |A| – C:UsersSaturnAppDataRoamingPréfs Format PNG Adobe CS6
    [08/09/2012 15:11:50] – |D| – C:UsersSaturnAppDataRoamingPublish Providers
    [11/01/2014 14:51:24] – |D| – C:UsersSaturnAppDataRoamingQuickScan
    [24/09/2012 21:22:06] – |D| – C:UsersSaturnAppDataRoamingRed Giant Link
    [26/12/2013 16:17:11] – |D| – C:UsersSaturnAppDataRoamingredsn0w
    [20/08/2012 15:32:16] – |D| – C:UsersSaturnAppDataRoamingSkype
    [20/08/2012 15:04:15] – |D| – C:UsersSaturnAppDataRoamingSoftGrid Client
    [08/09/2012 14:33:39] – |D| – C:UsersSaturnAppDataRoamingSony
    [09/11/2012 22:56:42] – |D| – C:UsersSaturnAppDataRoamingSony Creative Software Inc
    [03/08/2012 22:01:25] – |A| – C:UsersSaturnAppDataRoamingsp_data.sys
    [18/09/2012 22:38:29] – |D| – C:UsersSaturnAppDataRoamingStageManager.BD092818F67280F4B42B04877600987F0111B594.1
    [11/09/2012 16:54:43] – |D| – C:UsersSaturnAppDataRoamingSystemRequirementsLab
    [17/04/2013 20:38:36] – |D| – C:UsersSaturnAppDataRoamingTeamViewer
    [20/08/2012 15:02:43] – |D| – C:UsersSaturnAppDataRoamingTP
    [22/08/2012 17:06:11] – |D| – C:UsersSaturnAppDataRoamingUbisoft
    [15/04/2013 18:42:16] – |D| – C:UsersSaturnAppDataRoamingUnity
    [18/09/2012 16:28:22] – |D| – C:UsersSaturnAppDataRoaminguTorrent
    [15/05/2013 14:55:15] – |D| – C:UsersSaturnAppDataRoamingWindSolutions
    [20/08/2012 16:56:22] – |D| – C:UsersSaturnAppDataRoamingWinRAR
    [29/10/2012 03:16:42] – |D| – C:UsersSaturnAppDataRoamingYoutube Downloader HD
    [09/11/2014 11:53:39] – |D| – C:UsersSaturnAppDataRoamingZHP

    ¤¤¤¤¤¤¤¤¤¤ | C:UsersSaturnAppDataLocal

    [31/12/2012 00:08:44] – |D| – C:UsersSaturnAppDataLocal4A Games
    [22/08/2012 20:36:55] – |D| – C:UsersSaturnAppDataLocalAdobe
    [20/01/2014 23:19:34] – |D| – C:UsersSaturnAppDataLocalAeria Games
    [05/03/2014 01:23:15] – |D| – C:UsersSaturnAppDataLocalAkamai
    [20/08/2012 16:06:31] – |D| – C:UsersSaturnAppDataLocalApple
    [20/08/2012 16:09:06] – |D| – C:UsersSaturnAppDataLocalApple Computer
    [03/08/2012 22:01:04] – |SHD| – C:UsersSaturnAppDataLocalApplication Data
    [27/07/2013 02:34:10] – |D| – C:UsersSaturnAppDataLocalApps
    [22/08/2012 21:16:46] – |D| – C:UsersSaturnAppDataLocalArcSoft
    [19/12/2013 16:52:42] – |A| – C:UsersSaturnAppDataLocalars.cache
    [13/09/2012 07:22:12] – |D| – C:UsersSaturnAppDataLocalassembly
    [03/08/2012 22:01:09] – |D| – C:UsersSaturnAppDataLocalASUS
    [21/08/2012 22:05:57] – |D| – C:UsersSaturnAppDataLocalAxialis
    [14/05/2014 12:43:21] – |D| – C:UsersSaturnAppDataLocalBattle.net
    [11/01/2014 17:27:58] – |D| – C:UsersSaturnAppDataLocalbdch
    [15/05/2014 10:08:16] – |D| – C:UsersSaturnAppDataLocalBlizzard
    [14/05/2014 12:43:30] – |D| – C:UsersSaturnAppDataLocalBlizzard Entertainment
    [18/03/2014 00:35:03] – |D| – C:UsersSaturnAppDataLocalBluestacks
    [03/08/2012 22:04:47] – |D| – C:UsersSaturnAppDataLocalBMExplorer
    [19/12/2013 16:53:31] – |A| – C:UsersSaturnAppDataLocalcensus.cache
    [18/09/2012 11:28:29] – |D| – C:UsersSaturnAppDataLocalCrashDumps
    [20/08/2012 16:44:28] – |D| – C:UsersSaturnAppDataLocalCyberlink
    [18/09/2012 05:24:47] – |A| – C:UsersSaturnAppDataLocalDCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
    [27/07/2013 02:34:09] – |D| – C:UsersSaturnAppDataLocalDeployment
    [22/08/2012 20:13:18] – |D| – C:UsersSaturnAppDataLocalDiagnostics
    [24/09/2012 20:21:06] – |D| – C:UsersSaturnAppDataLocalDownloaded Installations
    [20/04/2013 21:42:56] – |D| – C:UsersSaturnAppDataLocalElevatedDiagnostics
    [22/08/2012 22:57:33] – |D| – C:UsersSaturnAppDataLocalFacebook
    [03/08/2012 22:01:49] – |A| – C:UsersSaturnAppDataLocalGDIPFONTCACHEV1.DAT
    [20/08/2012 21:01:36] – |D| – C:UsersSaturnAppDataLocalGoogle
    [03/08/2012 22:01:04] – |SHD| – C:UsersSaturnAppDataLocalHistorique
    [19/12/2013 15:40:44] – |A| – C:UsersSaturnAppDataLocalhousecall.guid.cache
    [09/09/2013 20:20:00] – |D| – C:UsersSaturnAppDataLocalHP
    [23/12/2013 14:21:35] – |AH| – C:UsersSaturnAppDataLocalIconCache.db
    [27/12/2013 21:16:05] – |D| – C:UsersSaturnAppDataLocalIntroversion
    [04/02/2013 22:09:12] – |D| – C:UsersSaturnAppDataLocallibimobiledevice
    [24/09/2012 22:58:18] – |D| – C:UsersSaturnAppDataLocalLooksBuilder
    [03/08/2012 22:01:04] – |D| – C:UsersSaturnAppDataLocalMicrosoft
    [06/08/2012 16:51:55] – |D| – C:UsersSaturnAppDataLocalMicrosoft Games
    [23/08/2012 09:42:34] – |D| – C:UsersSaturnAppDataLocalMicrosoft Help
    [08/06/2013 19:17:15] – |D| – C:UsersSaturnAppDataLocalMicrosoft Toolkit
    [24/10/2012 22:51:52] – |D| – C:UsersSaturnAppDataLocalMicrosoftStore
    [13/09/2012 07:25:55] – |D| – C:UsersSaturnAppDataLocalPando_Temp
    [04/08/2012 16:55:30] – |D| – C:UsersSaturnAppDataLocalPower2Go
    [29/10/2012 03:01:06] – |D| – C:UsersSaturnAppDataLocalPrograms
    [24/04/2013 20:34:07] – |D| – C:UsersSaturnAppDataLocalSCE
    [13/04/2014 16:30:07] – |D| – C:UsersSaturnAppDataLocalSkype
    [20/08/2012 15:04:15] – |D| – C:UsersSaturnAppDataLocalSoftGrid Client
    [02/02/2013 21:01:55] – |D| – C:UsersSaturnAppDataLocalSongr
    [08/09/2012 14:34:22] – |D| – C:UsersSaturnAppDataLocalSony
    [09/05/2013 16:05:01] – |D| – C:UsersSaturnAppDataLocalSWTORPerf
    [15/09/2012 00:20:51] – |D| – C:UsersSaturnAppDataLocalTechSmith
    [03/08/2012 22:01:04] – |D| – C:UsersSaturnAppDataLocalTemp
    [03/08/2012 22:01:04] – |SHD| – C:UsersSaturnAppDataLocalTemporary Internet Files
    [15/04/2013 18:30:44] – |D| – C:UsersSaturnAppDataLocalUnity
    [16/07/2014 13:28:08] – |D| – C:UsersSaturnAppDataLocalVirtualRouterPlus
    [03/08/2012 22:01:26] – |D| – C:UsersSaturnAppDataLocalVirtualStore
    [15/05/2013 13:07:48] – |D| – C:UsersSaturnAppDataLocalWondershare

    ¤¤¤¤¤¤¤¤¤¤ | C:ProgramData

    [20/08/2014 12:28:29] – |D| – C:ProgramData.mono
    [11/01/2014 14:57:17] – |A| – C:ProgramData1389448284.bdinstall.bin
    [30/12/2013 13:29:07] – |D| – C:ProgramData34BE82C4-E596-4e99-A191-52C6199EBF69
    [24/02/2012 03:28:34] – |D| – C:ProgramDataAdobe
    [20/01/2014 23:19:06] – |D| – C:ProgramDataAeria Games
    [18/09/2012 22:26:16] – |D| – C:ProgramDataALM
    [09/09/2013 20:21:23] – |A| – C:ProgramDataAment.ini
    [31/05/2012 17:38:54] – |D| – C:ProgramDataAmUStor
    [20/08/2012 16:05:52] – |D| – C:ProgramDataApple
    [20/08/2012 16:08:00] – |D| – C:ProgramDataApple Computer
    [14/07/2009 06:08:56] – |SHD| – C:ProgramDataApplication Data
    [22/08/2012 21:16:12] – |D| – C:ProgramDataArcSoft
    [24/02/2012 03:50:45] – |D| – C:ProgramDataAsus
    [31/05/2012 17:43:23] – |D| – C:ProgramDataASUS Music Maker
    [31/05/2012 17:41:04] – |AD| – C:ProgramDataASUS Resource Center
    [24/02/2012 03:42:14] – |D| – C:ProgramDataASUS WebStorage
    [31/05/2012 17:38:24] – |D| – C:ProgramDataAtheros
    [15/09/2012 01:00:53] – |D| – C:ProgramDataAVS4YOU
    [22/08/2012 18:08:39] – |D| – C:ProgramDataBattle.net
    [11/01/2014 17:27:46] – |D| – C:ProgramDatabdch
    [11/01/2014 14:55:20] – |D| – C:ProgramDataBDLogging
    [11/01/2014 14:52:00] – |D| – C:ProgramDataBitdefender
    [11/09/2012 17:43:26] – |D| – C:ProgramDataBlizzard Entertainment
    [18/03/2014 00:35:07] – |D| – C:ProgramDataBlueStacksSetup
    [24/02/2012 03:50:49] – |D| – C:ProgramDataChangeFolderView
    [22/12/2013 20:56:17] – |D| – C:ProgramDataCustoPackTools
    [31/05/2012 17:43:52] – |D| – C:ProgramDataCyberLink
    [18/09/2012 16:31:23] – |D| – C:ProgramDataDAEMON Tools Pro
    [24/02/2012 03:42:59] – |D| – C:ProgramDataDeadtime Stories
    [14/07/2009 06:08:56] – |SHD| – C:ProgramDataDesktop
    [29/10/2012 01:14:19] – |D| – C:ProgramDataDigieffects
    [14/07/2009 06:08:56] – |SHD| – C:ProgramDataDocuments
    [28/12/2013 12:11:51] – |SHD| – C:ProgramDataDSS
    [14/07/2009 06:08:56] – |SHD| – C:ProgramDataFavorites
    [05/01/2013 16:19:47] – |D| – C:ProgramDatafltk.org
    [24/02/2012 03:42:37] – |A| – C:ProgramDataFullRemove.exe
    [09/09/2013 20:22:23] – |D| – C:ProgramDataHP
    [31/05/2012 17:23:30] – |D| – C:ProgramDataIntel
    [28/08/2014 21:50:37] – |D| – C:ProgramDatama-config.com
    [31/05/2012 17:42:14] – |D| – C:ProgramDataMAGIX
    [20/08/2012 16:53:30] – |D| – C:ProgramDataMalwarebytes
    [24/02/2012 03:51:08] – |D| – C:ProgramDataMcAfee
    [14/07/2009 04:20:08] – |SD| – C:ProgramDataMicrosoft
    [23/08/2012 09:42:34] – |D| – C:ProgramDataMicrosoft Help
    [31/05/2012 17:30:04] – |D| – C:ProgramDataNVIDIA
    [31/05/2012 17:29:24] – |D| – C:ProgramDataNVIDIA Corporation
    [02/03/2014 20:32:55] – |D| – C:ProgramDataOracle
    [31/05/2012 17:41:29] – |D| – C:ProgramDataP4G
    [20/03/2014 21:24:37] – |D| – C:ProgramDataPackage Cache
    [21/06/2013 07:59:12] – |D| – C:ProgramDataPMS
    [31/05/2012 17:33:25] – |D| – C:ProgramDataQualcomm Atheros
    [24/09/2012 20:21:53] – |D| – C:ProgramDataRedGiant
    [08/09/2012 13:55:29] – |D| – C:ProgramDataregid.1986-12.com.adobe
    [20/08/2012 15:32:02] – |D| – C:ProgramDataSkype
    [22/08/2012 17:37:15] – |D| – C:ProgramDataSolidshield
    [08/09/2012 14:34:22] – |D| – C:ProgramDataSony
    [14/07/2009 06:08:56] – |SHD| – C:ProgramDataStart Menu
    [20/03/2014 21:27:19] – |D| – C:ProgramDataSteam
    [11/09/2012 16:45:31] – |D| – C:ProgramDataSun
    [02/03/2014 20:33:34] – |D| – C:ProgramDataSystemRequirementsLab
    [15/09/2012 00:19:57] – |D| – C:ProgramDataTechSmith
    [31/05/2012 17:43:52] – |AD| – C:ProgramDataTemp
    [14/07/2009 06:08:56] – |SHD| – C:ProgramDataTemplates
    [03/08/2012 23:45:00] – |D| – C:ProgramDataThe Creative Engine Limited
    [31/05/2012 17:52:51] – |D| – C:ProgramDataUSBChargerPlus
    [20/08/2012 18:22:51] – |D| – C:ProgramDataVirtualizedApplications
    [09/09/2013 20:23:52] – |D| – C:ProgramDataVisan
    [15/05/2013 14:55:15] – |D| – C:ProgramDataWindSolutions
    [26/12/2013 16:08:50] – |D| – C:ProgramDataWondershare
    [31/05/2012 17:49:47] – |A| – C:ProgramData{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}.log
    [31/05/2012 17:54:02] – |A| – C:ProgramData{40BF1E83-20EB-11D8-97C5-0009C5020658}.log
    [20/08/2012 16:08:00] – |D| – C:ProgramData{93E26451-CD9A-43A5-A2FA-C42392EA4001}
    [31/05/2012 17:53:41] – |A| – C:ProgramData{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log
    [31/05/2012 17:45:30] – |A| – C:ProgramData{CB099890-1D5F-11D5-9EA9-0050BAE317E1}.log
    [31/05/2012 17:48:13] – |A| – C:ProgramData{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}.log
    [31/05/2012 17:43:56] – |A| – C:ProgramData{E3739848-5329-48E3-8D28-5BBD6E8BE384}.log

    ¤¤¤¤¤¤¤¤¤¤ | C:WindowsTasks

    [19/12/2012 03:00:46] – |A| – C:WindowsTasksAdobe Flash Player Updater.job
    [23/08/2012 09:09:46] – |A| – C:WindowsTasksASUS SmartLogon Console Sensor.job
    [22/08/2012 22:57:43] – |A| – C:WindowsTasksFacebookUpdateTaskUserS-1-5-21-1344051888-2695194567-3556418042-1001Core.job
    [22/08/2012 22:57:43] – |A| – C:WindowsTasksFacebookUpdateTaskUserS-1-5-21-1344051888-2695194567-3556418042-1001UA.job
    [24/02/2012 03:29:03] – |A| – C:WindowsTasksGoogleUpdateTaskMachineCore.job
    [24/02/2012 03:29:04] – |A| – C:WindowsTasksGoogleUpdateTaskMachineUA.job
    [31/05/2012 17:23:59] – |A| – C:WindowsTasksISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job
    [31/05/2012 17:23:57] – |A| – C:WindowsTasksISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job
    [14/07/2009 06:08:49] – |AH| – C:WindowsTasksSA.DAT
    [14/07/2009 06:08:49] – |A| – C:WindowsTasksSCHEDLGU.TXT

    ¤¤¤¤¤¤¤¤¤¤ | C:WindowsSystem32Tasks

    [14/07/2009 04:20:14] – |D| – C:WindowsSystem32TasksMicrosoft

    [X] : [29914 Ko]

    Analysés : 186992 | Modifiés : 64 | Infectés : 69

    ¤¤¤¤¤¤¤¤¤¤ |EOF| ¤¤¤¤¤¤¤¤¤¤ | 01:31:07 | [66 Ko][/spoiler:29xoegb1]

  • jacques.gache
    Participant
    Post count: 676

    bonjour, si tu avais lu la procédure il y avait : Héberge-le comme ceci ,tu aurais pu poster le rapport en entier!!

    bon comment va le pc postes un nouveau zhpdiag en cliquant sur COMPLET et postes le rapport par sosupload et donne le lien , merci

  • Glazh
    Participant
    Post count: 7

    Rien n’a changé, les liens de pub sur mes pages internet sont toujours là .. ^^

    voici le rapport : http://cjoint.com/?DKkpyQq0rzH” onclick=”window.open(this.href);return false;

  • jacques.gache
    Participant
    Post count: 676

    bonjour, tes pubs son sur des page ouverte avec google chrome ? installes l’extension adblock premium cela devrait les bloquer https://chrome.google.com/webstore/detail/adblock-premium/fndlhnanhedoklpdaacidomdnplcjcpj?hl=fr” onclick=”window.open(this.href);return false;

    je regarde ton zhpdiag et je reviens

  • Glazh
    Participant
    Post count: 7

    Non j’ai déjà adbloque mais c’est ce genre de probleme là que j’ai regarde j’ai fais une capture .

    http://image.noelshack.com/fichiers/2014/46/1415634089-exemple.png” onclick=”window.open(this.href);return false;

  • jacques.gache
    Participant
    Post count: 676

    ATTENTION System drive C: has 9 GB (3%) free of 279 GB en dessous de 10% tu risques d’avoir des dysfonctionnements de windows voire le planter

    tu fais zhpfix comme expliqué tu postes le rapport

    • Copie les lignes en rouge ci dessous :

      Script ZHPFix
      SysRestore
      ShortcutFix
      ProxyFix
      FirewallRAZ
      EmptyCLSID
      EmptyTemp
      EmptyFlash
      O23 – Service: McAfee SiteAdvisor Service (McAfee SiteAdvisor Service) . (…) – C:Program Files (x86)mcafeeSITEAD~1mcsacore.exe (.not file.)
      O42 – Logiciel: Shared C Run-time for x64 – (.McAfee.) [HKLM][64Bits] — {EF79C448-6946-4D71-8134-03407888C054}
      O43 – CFD: 16/01/2014 – 03:26:17 – [0] —-D C:Program Files (x86)McAfee
      O43 – CFD: 11/01/2014 – 14:29:20 – [] —-D C:Program Files (x86)McAfee Online Backup
      O43 – CFD: 11/01/2014 – 14:38:34 – [] —-D C:ProgramDataMcAfee
      SS – | Auto 10/07/1658 0 | (McAfee SiteAdvisor Service) . (…) – C:Program Files (x86)mcafeeSITEAD~1mcsacore.exe
      [HKCUSoftwareMcAfee Online Backup]
      [HKCUSoftwareMcAfeeInstaller]
      [HKLMSoftwareMcAfee.com]
      [HKLMSoftwareMcAfeeInstaller]
      [HKLMSoftwareMcAfee]
      [HKLMSoftwareWow6432NodeMcAfee]
    • Lances ZHPFix, exécuter en tant qu’administrateur sous Windows : 7/8 et Vista

      1. Clique sur Importer
      2. Puis Clic sur “GO

    • Confirmes les nettoyages des données en cliquant sur “Oui
    • Une fois le scan terminé rends toi sur le bureau, le fichier ZHPFixReport à été crée.
    • Héberge le rapport ZHPFixReport sur sosupload, puis copie/colle le lien fourni dans ta prochaine réponse.
  • jacques.gache
    Participant
    Post count: 676

    je comprend pas pourquoi c’est pub pour chrome tu as la version Google Chrome v39.0.2171.52 tu la télécharger ou car sur mon pc

    Version 38.0.2125.111 m

    Google Chrome est à jour.

  • Glazh
    Participant
    Post count: 7

    Ce n’est pas seulement pour chrome la pub, c’est pour tout, si je vais sur amazone je vais avoir pour iphone etc..

    Je pense avoir une version Beta du nouveau Google chrome pour ça peut être ?

    Sinon voici le rapport : http://cjoint.com/?DKlnScoPOHN” onclick=”window.open(this.href);return false;

    Problème toujours présent ^^

    ===> Encore un exemple : http://cjoint.com/?DKlnTyuil8H” onclick=”window.open(this.href);return false;

  • jacques.gache
    Participant
    Post count: 676
    ===> Encore un exemple : http://cjoint.com/?DKlnTyuil8H

    cela est avant que tu soit connecté avec ton pseudo et mot de passe !!

    pourrais tu me donner la liste de tes extentions dans chrome !!

  • Glazh
    Participant
    Post count: 7

    Encore un autre exemple : http://cjoint.com/?DKlsbWkEoLH” onclick=”window.open(this.href);return false;

    J’ai ça sur énormément de site … Donc oui j’ai pas besoin de me connecter pour avoir ses liens louches…

    J’ai comme extensions : Adblock plus / Google sheets / Google Docs / Google Slides / Video Download Helper / Right Click Search Wikipédia

  • jacques.gache
    Participant
    Post count: 676

    bonjour, perso je déactiverais toutes les extensions sauf adblock

    pour tes pub qui s’affiche cela me semble normal dès que tu passes la souris sur une image ou un texte sur une page web

    postes unnouveu zhpdiag en cliquant sur COMPLET, merci

  • Glazh
    Participant
    Post count: 7

    Je t’assure que ce n’est pas normal ;).
    J’ai plusieurs ordi et c’est le seul qui me fait une merde pareil … Des pubs qui s’affiche pour tout et pour rien , “Bienvenue” , ‘Personnalisé” , “Bénévole”…

    ZHPdiag : http://cjoint.com/?DKmnFpMirmF” onclick=”window.open(this.href);return false;

  • jacques.gache
    Participant
    Post count: 676

    bon je confirme que pour moi rien de visible côté infection sur ton pc !! mais tu est toujours plus que dans le ROUGE avec le manque de place sur le Disque C ??

    tu as adsfix encore sur ton pc si oui tu l’ouvre et tu clique sur désinstaller , et tu le retélécharge il y a eu des mises à jour entre temps, et si toujours pareil après je te ferait passer un autre outils très puissant mais comme on voit pas d’infection !!

    • Désactive ton antivirus le temps du téléchargement et de l’utilisation.
    • Télécharge AdsFix
    • Enregistre-le sur le bureau, puis lance-le.
    • Clique sur Nettoyer.
    • Patiente pendant que le logiciel travaille.
    • À la fin, l’ordinateur va redémarrer.
    • Le rapport se trouve sur le bureau, sinon va le chercher sous C:AdsFix_XX_XX_XX (Les X étant des chiffres).
    • Héberge-le comme ceci et poste-le dans ta prochaine réponse.
  • jacques.gache
    Participant
    Post count: 676

    bonjour, plus de nouvelles !!! peut on considérer le sujet comme résolu ??

  • Le sujet ‘Infecté par tlbsearch’ est fermé à de nouvelles réponses.