15 sujets de 1 à 15 (sur un total de 17)
  • Auteur
    Messages
  • Glazh
    Participant
    Nombre d'articles : 8

    Salut à tous !

    Voilà je viens solliciter votre aide pour m’aider à enlever cette horrible chose qu’est TLBSEARCH …Pub qui revient constamment sur toutes mes pages internet..

    J’ai déjà fais tourner Adwcleaner et Mbam mais ça continue encore …

    [spoiler:3utk138b]~ Rapport de ZHPDiag v2014.11.9.160 – Nicolas Coolman (9/11/2014)
    ~ Lancé par Saturn (9/11/2014 11:56:16)
    ~ Adresse du Site Web http://nicolascoolman.fr” onclick=”window.open(this.href);return false;
    ~ Adresse du Forum http://forum.nicolascoolman.fr” onclick=”window.open(this.href);return false;
    ~ Traduit par Nicolas Coolman
    ~ Etat de la version : Version à jour.
    ~ Liste blanche : Activée par le programme
    ~ Elévation des Privilèges : OK
    ~ User Account Control (UAC): Activate by user

    —\ Navigateurs Internet
    MSIE: Internet Explorer v11.0.9600.17358
    GCIE: Google Chrome v39.0.2171.52 (Defaut)

    —\ Informations sur les produits Windows
    ~ Langage: Français
    Windows 7 Home Premium, 64-bit Service Pack 1 (Build 7601)
    Windows Server License Manager Script : OK
    ~ Windows Operating System – Windows(R) 7, OEM_SLP channel
    System Locked Preinstallation (OEM_SLP) : OK
    Windows ID Activation : OK
    ~ Windows Partial Key : 9YQTR
    Windows License : OK
    ~ Windows Remaining Initializations Number : 1
    Software Protection Service (Protection logicielle) : OK
    Windows Automatic Updates : OK
    Windows Activation Technologies : OK

    —\ Logiciels de protection du système
    Bitdefender Internet Security v17.16.0.729
    Malwarebytes Anti-Malware version 2.0.3.1025
    Windows Defender W7 (Deactivate)

    —\ Logiciels d'optimisation du système
    CCleaner v3.26

    —\ Logiciels de partage PeerToPeer
    µTorrent v2.2.1 =>P2P.µTorrent

    —\ Surveillance de Logiciels
    Adobe Flash Player 10 Plugin
    Adobe Reader X

    —\ Informations sur le système
    ~ Processor: Intel64 Family 6 Model 58 Stepping 9, GenuineIntel
    ~ Operating System: 64 Bits
    Boot mode: Normal (Normal boot)
    Total RAM: 6029 MB (39% free)
    System Restore: Activé (Enable)
    System drive C: has 8 GB (2%) free of 279 GB

    —\ Mode de connexion au système
    ~ Computer Name: GILLES
    ~ User Name: Saturn
    ~ All Users Names: UpdatusUser, Saturn, Administrateur,
    ~ Unselected Option: None
    Logged in as Administrator

    —\ Variables d'environnement
    ~ System Unit : C:
    ~ %AppZHP% : C:UsersSaturnAppDataRoamingZHP
    ~ %AppData% : C:UsersSaturnAppDataRoaming
    ~ %Desktop% : C:UsersSaturnDesktop
    ~ %Favorites% : C:UsersSaturnFavorites
    ~ %LocalAppData% : C:UsersSaturnAppDataLocal
    ~ %StartMenu% : C:UsersSaturnAppDataRoamingMicrosoftWindowsStart Menu
    ~ %Windir% : C:Windows
    ~ %System% : C:WindowsSystem32

    —\ Enumération des unités disques
    C: Hard drive, Flash drive, Thumb drive (Free 8 Go of 279 Go)
    D: Hard drive, Flash drive, Thumb drive (Free 24 Go of 394 Go)
    F: CD-ROM drive (Not Inserted)
    H: CD-ROM drive (Not Inserted)
    I: CD-ROM drive (Not Inserted)
    Q: Hard drive, Flash drive, Thumb drive (Free 0 Go of 0 Go)

    —\ Etat du Centre de Sécurité Windows
    [HKLMSOFTWAREMicrosoftWindowsCurrentVersionPoliciesExplorer] NoActiveDesktopChanges: Modified
    [HKLMSOFTWAREMicrosoftWindowsCurrentVersionWindowsUpdateAuto UpdateResultsInstall] LastSuccessTime : Out Of Date
    ~ Security Center: 41 Legitimates Filtered in 00mn 00s

    —\ Recherche particulière de fichiers génériques
    [MD5.1F4B9C4902B806E498F9C12E12E876A3] – (.Microsoft Corporation – Explorateur Windows.) (.24/02/2012 – 01:55:29.) — C:WindowsExplorer.exe [2713600]
    [MD5.94355C28C1970635A31B3FE52EB7CEBA] – (.Microsoft Corporation – Application de démarrage de Windows.) (.14/07/2009 – 02:39:52.) — C:WindowsSystem32Wininit.exe [129024]
    [MD5.9D98D4F390F0B14A782F3B931E613A1A] – (.Microsoft Corporation – Extensions Internet pour Win32.) (.19/09/2014 – 01:33:18.) — C:WindowsSystem32wininet.dll [2309632]
    [MD5.8CEBD9D0A0A879CDE9F36F4383B7CAEA] – (.Microsoft Corporation – Application d’ouverture de session Windows.) (.17/07/2014 – 03:07:24.) — C:WindowsSystem32Winlogon.exe [455168]
    [MD5.067FA52BFB59A56110A12312EF9AF243] – (.Microsoft Corporation – Bibliothèque de licences.) (.20/11/2010 – 14:27:28.) — C:WindowsSystem32sppcomapi.dll [232448]
    [MD5.FA886682CFC5D36718D3E436AACF10B9] – (.Microsoft Corporation – Ancillary Function Driver for WinSock.) (.30/05/2014 – 07:45:52.) — C:Windowssystem32DriversAFD.sys [497152]
    [MD5.02062C0B390B7729EDC9E69C680A6F3C] – (.Microsoft Corporation – ATAPI IDE Miniport Driver.) (.14/07/2009 – 02:52:21.) — C:Windowssystem32Driversatapi.sys [24128]
    [MD5.B8BD2BB284668C84865658C77574381A] – (.Microsoft Corporation – CD-ROM File System Driver.) (.14/07/2009 – 00:19:47.) — C:Windowssystem32DriversCdfs.sys [92160]
    [MD5.F036CE71586E93D94DAB220D7BDF4416] – (.Microsoft Corporation – SCSI CD-ROM Driver.) (.20/11/2010 – 10:19:22.) — C:Windowssystem32DriversCdrom.sys [147456]
    [MD5.9BB2EF44EAA163B29C4A4587887A0FE4] – (.Microsoft Corporation – DFS Namespace Client Driver.) (.20/11/2010 – 10:26:34.) — C:Windowssystem32DriversDfsC.sys [102400]
    [MD5.97BFED39B6B79EB12CDDBFEED51F56BB] – (.Microsoft Corporation – High Definition Audio Bus Driver.) (.20/11/2010 – 11:43:44.) — C:Windowssystem32DriversHDAudBus.sys [122368]
    [MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] – (.Microsoft Corporation – Pilote de port i8042.) (.14/07/2009 – 00:19:57.) — C:Windowssystem32Driversi8042prt.sys [105472]
    [MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] – (.Microsoft Corporation – IP Network Address Translator.) (.14/07/2009 – 01:10:03.) — C:Windowssystem32DriversIpNat.sys [116224]
    [MD5.A5D9106A73DC88564C825D317CAC68AC] – (.Microsoft Corporation – Windows NT SMB Minirdr.) (.24/02/2012 – 02:02:21.) — C:Windowssystem32DriversMRxSmb.sys [158208]
    [MD5.09594D1089C523423B32A4229263F068] – (.Microsoft Corporation – MBT Transport driver.) (.20/11/2010 – 10:23:22.) — C:Windowssystem32DriversnetBT.sys [261632]
    [MD5.1A29A59A4C5BA6F8C85062A613B7E2B2] – (.Microsoft Corporation – Pilote du système de fichiers NT.) (.24/01/2014 – 03:37:55.) — C:Windowssystem32Driversntfs.sys [1684928]
    [MD5.0086431C29C35BE1DBC43F52CC273887] – (.Microsoft Corporation – Pilote de port parallèle.) (.14/07/2009 – 01:00:41.) — C:Windowssystem32DriversParport.sys [97280]
    [MD5.471815800AE33E6F1C32FB1B97C490CA] – (.Microsoft Corporation – RAS L2TP mini-port/call-manager driver.) (.20/11/2010 – 11:52:36.) — C:Windowssystem32DriversRasl2tp.sys [129536]
    [MD5.548260A7B8654E024DC30BF8A7C5BAA4] – (.Microsoft Corporation – SMB Transport driver.) (.14/07/2009 – 01:09:09.) — C:Windowssystem32Driverssmb.sys [93184]
    [MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] – (.Microsoft Corporation – TDI Translation Driver.) (.20/11/2010 – 10:21:58.) — C:Windowssystem32Driverstdx.sys [119296]
    [MD5.DF8126BD41180351A093A3AD2FC8903B] – (.Microsoft Corporation – Pilote de cliché instantané du volume.) (.24/02/2012 – 01:35:34.) — C:Windowssystem32Driversvolsnap.sys [296320]
    ~ Generic Processes: Scanned in 00mn 00s

    —\ Etat des fichiers cachés (Caché/Total)
    ~ Mes images (My Pictures) : 1/2811
    ~ Mes musiques (My Musics) : 13/860
    ~ Mes Videos (My Videos) : 1/16
    ~ Mes Favoris (My Favorites) : 1/12
    ~ Mes Documents (My Documents) : 2/2950
    ~ Mon Bureau (My Desktop) : 19/2131
    ~ Menu demarrer (Programs) : 1/36
    ~ Hidden Files: Scanned in 00mn 00s

    —\ Processus lancés
    [MD5.64A7C84C0A8C79B22033F92D43919062] – (.ASUS – ACMON.) — C:Program Files (x86)ASUSSplendidACMON.exe [102568] [PID.5340]
    [MD5.98CADC34741738CFC24F5CDFDAA408FA] – (.ASUSTeK – ACEngSvr Module.) — C:WindowsSysWOW64ACEngSvr.exe [162456] [PID.5916]
    [MD5.37DEB76A2CF005841C4E45DE2B94D84F] – (.ASUS – AsScrPro.) — C:WindowsAsScrPro.exe [3058304] [PID.5932]
    [MD5.89D2706FCD45E33CECFBD46BCBAD7E16] – (.Microsoft Corporation – Tablet PC Input Panel Helper.) — C:Program Files (x86)Common FilesMicrosoft SharedInkTabTip32.exe [10240] [PID.6072]
    [MD5.35048D8E8A0BF7A797CD5757ACD7EED0] – (.CyberLink – CyberLink MediaLibray Service.) — C:Program Files (x86)CyberLinkPower2GoCLMLSvc.exe [107816] [PID.4804]
    [MD5.6B3BA5BB455D7A4FD16B697B8F73858F] – (.ASUSTek Computer Inc. – ASUS FaceLogon Application.) — C:Program Files (x86)ASUSFaceLogonsensorsrv.exe [473728] [PID.5236]
    [MD5.ED759B7FD51466447CC31CBE79B99050] – (.ASUSTek Computer Inc. – ASUS USB Charger Plus.) — C:Program Files (x86)ASUSUSBChargerPlusUSBChargerPlus.exe [1121448] [PID.5276]
    [MD5.F48ECBB9771865CDC5435BD9AF4564F0] – (.ASUSTeK Computer Inc. – ASUS Quick Gesture Exe.) — C:Program Files (x86)ASUSASUS Virtual TouchQuickGesturex86QuickGesture.exe [17872] [PID.5320]
    [MD5.D9AB754613208112B840C75B6762B909] – (.ASUSTek Computer Inc. – ATKOSD2.) — C:Program Files (x86)ASUSATK PackageATKOSD2ATKOSD2.exe [322176] [PID.5712]
    [MD5.98AD7CFBC97E7F72F787C21257C3C628] – (.Bitdefender – Bitdefender Application Password Manager Ag.) — C:Program FilesBitdefenderBitdefenderantispam32bdapppassmgr.exe [621448] [PID.6784]
    [MD5.CC78200C3ECFFA178E78308A0E160D80] – (.Akamai Technologies, Inc. – Akamai NetSession Client.) — C:UsersSaturnAppDataLocalAkamainetsession_win.exe [4672920] [PID.7124]
    [MD5.C64E9B1C9EA057DCECDCB98F34377811] – (.Microsoft Corporation – Microsoft OneNote Quick Launcher.) — C:Program Files (x86)Microsoft OfficeOffice14ONENOTEM.exe [228552] [PID.7016]
    [MD5.B63E5C7807334A3A8F731062F15462CC] – (.Adobe Systems Incorporated – Adobe Reader and Acrobat Manager.) — C:Program Files (x86)Common FilesAdobeARM1.0AdobeARM.exe [919008] [PID.6164]
    [MD5.BC31B27061F27E8968CD0435C038F712] – (.ASUS – ATK Media.) — C:Program Files (x86)ASUSATK PackageATK MediaDMedia.exe [174720] [PID.2868]
    [MD5.5AEBF6FA9805C9101220AA4FB4FA17E7] – (.ASUS – HControlUser.) — C:Program Files (x86)ASUSATK PackageATK HotkeyHControlUser.exe [105016] [PID.3388]
    [MD5.04AB67DB445F75369CBF99B174F10297] – (.ASUS – Wireless Console 3.) — C:Program Files (x86)ASUSWireless Console 3wcourier.exe [2319536] [PID.6340]
    [MD5.99ECAF298145F950B1326656167FBFDF] – (.CyberLink Corp. – PowerDVD RC Service.) — C:Program Files (x86)CyberLinkPowerDVD10PDVD10Serv.exe [87336] [PID.2424]
    [MD5.BAF535F843A3E790E04A7613811B55BC] – (.Apple Inc. – iTunesHelper.) — C:Program Files (x86)iTunesiTunesHelper.exe [152392] [PID.6660]
    [MD5.6D313E4121365B2ABEED5A93F9B197E5] – (.Oracle Corporation – Java Update Scheduler.) — C:Program Files (x86)Common FilesJavaJava Updatejusched.exe [507776] [PID.6940]
    [MD5.CD37E8F77BFF71F104BDC941A393F0B5] – (.Intel Corporation – Intel Services Manager.) — C:Program Files (x86)IntelIntel(R) ME FW Recovery Agentbinismagent.exe [645896] [PID.2500]
    [MD5.4DA92A4C32F68E57C49CD77CD0A7439C] – (…) — C:Program Files (x86)IntelIntel(R) ME FW Recovery Agentbinupdateui.exe [119808] [PID.9340]
    [MD5.49FA9FC92645E4F41A20251115EC19C9] – (.Nicolas Coolman – ZHPDiag.) — C:Program Files (x86)ZHPDiagZHPDiag.exe [8123392] [PID.5924]
    [MD5.A9D26626BEADF5A0641BF6B5095EF309] – (.NVIDIA Corporation – Stereo Vision Control Panel API Server.) — C:Program Files (x86)NVIDIA Corporation3D VisionnvSCPAPISvr.exe [414496] [PID.1292]
    [MD5.A3626C6D3F2DC95497F3F61842D7FD89] – (.ASUS – ASLDR Service.) — C:Program Files (x86)ASUSATK PackageATK HotkeyASLDRSrv.exe [80512] [PID.2100]
    [MD5.DBC598E47E7A382E60E2A4745D41FEF9] – (.ASUS – GFNEXSrv.) — C:Program Files (x86)ASUSATK PackageATKGFNEXGFNEXSrv.exe [96896] [PID.2172]
    [MD5.D19C4EE2AC7C47B8F5F84FFF1A789D8A] – (.Adobe Systems Incorporated – Adobe Acrobat Update Service.) — C:Program Files (x86)Common FilesAdobeARM1.0armsvc.exe [63960] [PID.2448]
    [MD5.30E3850F303EAE5C364782EA78579CC9] – (.Apple Inc. – MobileDeviceService.) — C:Program Files (x86)Common FilesAppleMobile Device SupportAppleMobileDeviceService.exe [55624] [PID.2484]
    [MD5.52436245AAEF3B65DF7859949AB6A14E] – (.ASUS – ASUS InstantOn Program.) — C:Program Files (x86)ASUSInstantOn for NBInsOnSrv.exe [277120] [PID.2900]
    [MD5.896AA2F1D79662B17D5DBBE588E24E30] – (…) — C:Program Files (x86)IntelIntel(R) Management Engine ComponentsFWServiceIntelMeFWService.exe [128280] [PID.3060]
    [MD5.3C6630473DD42FFC57D9F5564F533127] – (.Intel Corporation – Intel(R) Dynamic Application Loader Host In.) — C:Program Files (x86)IntelIntel(R) Management Engine ComponentsDALjhi_service.exe [161560] [PID.2376]
    [MD5.6D8A2EE4244630B290A837E79C0F37A1] – (.Malwarebytes Corporation – Malwarebytes Anti-Malware.) — C:Program Files (x86)Malwarebytes Anti-Malwarembamscheduler.exe [1871160] [PID.1676]
    [MD5.09D4503CBB6ADB3A54E7C7A75090B728] – (.Malwarebytes Corporation – Malwarebytes Anti-Malware.) — C:Program Files (x86)Malwarebytes Anti-Malwarembamservice.exe [968504] [PID.2864]
    [MD5.39B1D0A636A400304565D4521FAD6D77] – (.Microsoft Corporation – Microsoft Application Virtualization Virtua.) — C:Program Files (x86)Microsoft Application Virtualization Clientsftvsa.exe [207528] [PID.3468]
    [MD5.28B051B78471FC290C1790623D5908E1] – (.Atheros – Atheros Coex Service Application.) — C:Program Files (x86)Bluetooth SuiteAth_CoexAgent.exe [158880] [PID.3696]
    [MD5.77C5A741A7452812F278EF2C18478862] – (.Microsoft Corporation – Microsoft Application Virtualization Client.) — C:Program Files (x86)Microsoft Application Virtualization Clientsftlist.exe [523944] [PID.3752]
    [MD5.FD557A50A65E44041CD2FCEF4BEB04DB] – (.Microsoft Corporation – Microsoft Office Client Virtualization Serv.) — C:Program Files (x86)Common FilesMicrosoft SharedVirtualization HandlerCVHSVC.exe [822504] [PID.4340]
    [MD5.20DDC9CED8BC8390138F3187E0FF7411] – (.ASUSTek Computer Inc. – HControl.) — C:Program Files (x86)ASUSATK PackageATK HotkeyHControl.exe [174720] [PID.4424]
    [MD5.EA75E0837B21B46E88102E23438FE2CB] – (.ASUS – ASUS InstantOn Program.) — C:Program Files (x86)ASUSInstantOn for NBInsOnWMI.exe [289408] [PID.828]
    [MD5.149126216A694E6BA84E92ECA77AAE3B] – (.ASUS – ATKOSD.) — C:Program Files (x86)ASUSATK PackageATK HotkeyATKOSD.exe [2488888] [PID.5172]
    [MD5.AA11E1368EEB237DD100BAC6AFFE1C57] – (.ASUS – KBFiltr.) — C:Program Files (x86)ASUSATK PackageATK HotkeyKBFiltr.exe [113208] [PID.5472]
    [MD5.4A7C441D99D86704D194E7678873B95D] – (.ASUS – WDC.) — C:Program Files (x86)ASUSATK PackageATK HotkeyWDC.exe [174648] [PID.5804]
    [MD5.616F6E52CAE254727A886BA8EDA1BEEA] – (.Pas de propriétaire – RichVideo Module.) — C:Program Files (x86)CyberLinkShared filesRichVideo.exe [247152] [PID.5356]
    [MD5.B3009DCDBCC5EFA49FA52562E9860E3C] – (.MAGIX AG – Verzeichnisüberwachung und Hilfsaufgaben fü.) — C:Program Files (x86)Common FilesMAGIX ServicesDatabasebinFABS.exe [1840128] [PID.268]
    [MD5.2B23FAA39D8F949ED5EEE03ECA50BCD5] – (.Intel Corporation – Local Manageability Service.) — C:Program Files (x86)IntelIntel(R) Management Engine ComponentsLMSLMS.exe [277784] [PID.7544]
    [MD5.AA130938A27BB80A8B6438EF83232275] – (.NVIDIA Corporation – NVIDIA Settings Update Manager.) — C:Program Files (x86)NVIDIA CorporationNVIDIA Update Coredaemonu.exe [1364256] [PID.4212]
    [MD5.3C5405EF78576E8E4D791EB18F6856A8] – (.Intel Corporation – User Notification Service.) — C:Program Files (x86)IntelIntel(R) Management Engine ComponentsUNSUNS.exe [363800] [PID.8612]
    ~ Processes Running: Scanned in 00mn 00s

    —\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
    C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultPreferences

    —\ Liste des dossiers d'extension Google Chrome
    ~ Google Lines Browser: 0 Legitimates Filtered in 00mn 20s

    —\ Internet Explorer, Proxy Management (R5)
    R5 – HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings,ProxyOverride = *.local;
    R5 – HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings,ProxyServer = no key
    R5 – HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings,ProxyEnable = 0
    R5 – HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings,MigrateProxy = 1
    R5 – HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings,EnableHttp1_1 = 1
    R5 – HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings,AutoConfigProxy = wininet.dll
    ~ Proxy management: Scanned in 00mn 00s

    —\ Analyse des lignes F0, F1, F2, F3 – IniFiles, Autoloading programs
    F2 – REG:system.ini: USERINIT=C:Windowssystem32userinit.exe,
    F2 – REG:system.ini: Shell=C:Windowsexplorer.exe
    F2 – REG:system.ini: VMApplet=C:WindowsSystem32SystemPropertiesPerformance.exe
    ~ Keys: Scanned in 00mn 00s

    —\ Hosts file redirection (O1)
    ~ Le fichier hôte est sain (The hosts file is clean) (21)
    ~ Hosts File: Scanned in 00mn 00s

    —\ Autres liens utilisateurs (O4)
    O4 – GSTaskBar [Saturn]: µTorrent.lnk . (.BitTorrent, Inc. – µTorrent.) — C:Program Files (x86)uTorrentuTorrent.exe =>P2P.BitTorrent
    O4 – GSDesktop [Saturn]: µTorrent.lnk . (.BitTorrent, Inc. – µTorrent.) — C:Program Files (x86)uTorrentuTorrent.exe =>P2P.BitTorrent
    ~ Global Startup: 3 Legitimates Filtered in 00mn 00s

    —\ Applications lancées au démarrage du système (O4)
    O4 – GSStartup [Saturn]: Ubisoft register.lnk . (…) — C:Program Files (x86)UbisoftRegisterschedule.exe (.not file.)
    O4 – HKLM..Run: [IgfxTray] . (.Intel Corporation – igfxTray Module.) — C:Windowssystem32igfxtray.exe
    O4 – HKLM..Run: [HotKeysCmds] . (.Intel Corporation – hkcmd Module.) — C:Windowssystem32hkcmd.exe
    O4 – HKLM..Run: [ETDCtrl] C:Program Files (x86)ElantechETDCtrl.exe (.not file.)
    O4 – HKLM..Run: [RtHDVBg] . (.Realtek Semiconductor – HD Audio Background Process.) — C:Program FilesRealtekAudioHDARAVBg64.exe
    O4 – HKLM..Run: [AtherosBtStack] . (.Atheros Communications – Serveur Stack Bluetooth.) — C:Program Files (x86)Bluetooth SuiteBtvStack.exe
    O4 – HKLM..Run: [AthBtTray] . (.Atheros Commnucations – Bluetooth Tray.) — C:Program Files (x86)Bluetooth SuiteAthBtTray.exe
    O4 – HKLM..Run: [AmIcoSinglun64] . (.Alcor Micro Corp. – Single LUN Icon Utility for VID 058F PID 63.) — C:Program Files (x86)AmIcoSingLunAmIcoSinglun64.exe
    O4 – HKLM..Run: [AdobeAAMUpdater-1.0] . (.Adobe Systems Incorporated – Adobe Updater Startup Utility.) — C:Program Files (x86)Common FilesAdobeOOBEPDAppUWAUpdaterStartupUtility.exe =>.Adobe Systems Incorporated
    O4 – HKLM..Run: [Logitech Download Assistant] . (.Logitech, Inc. – Logitech Download Assistant.) — C:WindowsSystem32LogiLDA.dll
    O4 – HKLM..Run: [Bdagent] . (.Bitdefender – Bitdefender Agent.) — C:Program FilesBitdefenderBitdefenderbdagent.exe
    O4 – HKCU..Run: [Facebook Update] . (.Facebook Inc. – Programme d'installation de Facebook.) — C:UsersSaturnAppDataLocalFacebookUpdateFacebookUpdate.exe
    O4 – HKCU..Run: [AdobeBridge] Clé orpheline
    O4 – HKCU..Run: [DAEMON Tools Pro Agent] . (.DT Soft Ltd – DAEMON Tools Pro Agent.) — C:Program Files (x86)DAEMON Tools ProDTAgent.exe
    O4 – HKCU..Run: [uTorrent] . (.BitTorrent, Inc. – µTorrent.) — C:Program Files (x86)uTorrentuTorrent.exe =>P2P.BitTorrent
    O4 – HKCU..Run: [Bitdefender Wallet Agent] . (.Bitdefender – Bitdefender Password Manager Agent.) — C:Program FilesBitdefenderBitdefenderpmbxag.exe
    O4 – HKCU..Run: [Bitdefender Wallet] . (.Bitdefender – Bitdefender Password Manager.) — C:Program FilesBitdefenderBitdefenderpwdmanui.exe
    O4 – HKCU..Run: [Bitdefender Agent de l'application Wallet] . (.Bitdefender – Bitdefender Application Password Manager Ag.) — C:Program FilesBitdefenderBitdefenderantispam32bdapppassmgr.exe
    O4 – HKCU..Run: [Akamai NetSession Interface] . (.Akamai Technologies, Inc. – Akamai NetSession Client.) — C:UsersSaturnAppDataLocalAkamainetsession_win.exe
    O4 – HKLM..Wow6432NodeRun: [Adobe ARM] . (.Adobe Systems Incorporated – Adobe Reader and Acrobat Manager.) — C:Program Files (x86)Common FilesAdobeARM1.0AdobeARM.exe =>.Adobe Systems Incorporated
    O4 – HKLM..Wow6432NodeRun: [ASUSPRP] . (.ASUSTek Computer Inc. – ASUS Product Register Program.) — C:Program Files (x86)ASUSAPRPAPRP.exe
    O4 – HKLM..Wow6432NodeRun: [ASUSWebStorage] . (.ecareme – AsusWebStorage.) — C:Program Files (x86)ASUSASUS WebStorage3.0.108.222AsusWSPanel.exe
    O4 – HKLM..Wow6432NodeRun: [ATKOSD2] . (.ASUSTek Computer Inc. – ATKOSD2.) — C:Program Files (x86)ASUSATK PackageATKOSD2ATKOSD2.exe
    O4 – HKLM..Wow6432NodeRun: [ATKMEDIA] . (.ASUS – ATK Media.) — C:Program Files (x86)ASUSATK PackageATK MediaDMedia.exe
    O4 – HKLM..Wow6432NodeRun: [HControlUser] . (.ASUS – HControlUser.) — C:Program Files (x86)ASUSATK PackageATK HotkeyHControlUser.exe
    O4 – HKLM..Wow6432NodeRun: [ASUS InstantKey] . (.ASUS – Ikey_start.) — C:Program Files (x86)ASUSASUS Instant KeyIkey_start.exe
    O4 – HKLM..Wow6432NodeRun: [Wireless Console 3] . (.ASUS – Wireless Console 3.) — C:Program Files (x86)ASUSWireless Console 3wcourier.exe
    O4 – HKLM..Wow6432NodeRun: [RemoteControl10] . (.CyberLink Corp. – PowerDVD RC Service.) — C:Program Files (x86)CyberlinkPowerDVD10PDVD10Serv.exe
    O4 – HKLM..Wow6432NodeRun: [UpdatePSTShortCut] . (.CyberLink Corp. – MUI StartMenu Application.) — C:Program Files (x86)CyberlinkDVD SuiteMUITransferMUIStartMenu.exe
    O4 – HKLM..Wow6432NodeRun: [APSDaemon] . (.Apple Inc. – Apple Push.) — C:Program Files (x86)Common FilesAppleApple Application SupportAPSDaemon.exe
    O4 – HKLM..Wow6432NodeRun: [SwitchBoard] . (.Adobe Systems Incorporated – SwitchBoard Server (32 bit).) — C:Program Files (x86)Common FilesAdobeSwitchBoardSwitchBoard.exe
    O4 – HKLM..Wow6432NodeRun: [AdobeCS6ServiceManager] . (.Adobe Systems Incorporated – Adobe CS6 Service Manager.) — C:Program Files (x86)Common FilesAdobeCS6ServiceManagerCS6ServiceManager.exe
    O4 – HKLM..Wow6432NodeRun: [QuickTime Task] . (.Apple Inc. – QuickTime Task.) — C:Program Files (x86)QuickTimeQTTask.exe
    O4 – HKLM..Wow6432NodeRun: [iTunesHelper] . (.Apple Inc. – iTunesHelper.) — C:Program Files (x86)iTunesiTunesHelper.exe
    O4 – HKLM..Wow6432NodeRun: [Aeria Ignite] . (.Aeria Games & Entertainment – Aeria Ignite.) — C:Program Files (x86)Aeria GamesIgniteaeriaignite.exe
    O4 – HKLM..Wow6432NodeRun: [SunJavaUpdateSched] . (.Oracle Corporation – Java Update Scheduler.) — C:Program Files (x86)Common FilesJavaJava Updatejusched.exe =>.Oracle Corporation
    O4 – HKUS.DEFAULT..Run: [Bitdefender Wallet Agent] . (.Bitdefender – Bitdefender Password Manager Agent.) — C:Program FilesBitdefenderBitdefenderpmbxag.exe
    O4 – HKUS.DEFAULT..Run: [Bitdefender Wallet] . (.Bitdefender – Bitdefender Password Manager.) — C:Program FilesBitdefenderBitdefenderpwdmanui.exe
    O4 – HKUS.DEFAULT..Run: [Bitdefender Agent de l'application Wallet] . (.Bitdefender – Bitdefender Application Password Manager Ag.) — C:Program FilesBitdefenderBitdefenderantispam32bdapppassmgr.exe
    O4 – HKUSS-1-5-18..Run: [Bitdefender Wallet Agent] . (.Bitdefender – Bitdefender Password Manager Agent.) — C:Program FilesBitdefenderBitdefenderpmbxag.exe
    O4 – HKUSS-1-5-18..Run: [Bitdefender Wallet] . (.Bitdefender – Bitdefender Password Manager.) — C:Program FilesBitdefenderBitdefenderpwdmanui.exe
    O4 – HKUSS-1-5-18..Run: [Bitdefender Agent de l'application Wallet] . (.Bitdefender – Bitdefender Application Password Manager Ag.) — C:Program FilesBitdefenderBitdefenderantispam32bdapppassmgr.exe
    O4 – HKUSS-1-5-19..Run: [Sidebar] . (.Microsoft Corporation – Gadgets du Bureau Windows.) — C:Program Files (x86)Windows SidebarSidebar.exe =>.Microsoft Corporation
    O4 – HKUSS-1-5-20..Run: [Sidebar] . (.Microsoft Corporation – Gadgets du Bureau Windows.) — C:Program Files (x86)Windows SidebarSidebar.exe =>.Microsoft Corporation
    O4 – HKUSS-1-5-19..RunOnce: [mctadmin] . (.Microsoft Corporation – MCTAdmin.) — C:WindowsSystem32mctadmin.exe =>.Microsoft Corporation
    O4 – HKUSS-1-5-20..RunOnce: [mctadmin] . (.Microsoft Corporation – MCTAdmin.) — C:WindowsSystem32mctadmin.exe =>.Microsoft Corporation
    O4 – HKUSS-1-5-21-1344051888-2695194567-3556418042-1000..Run: [Sidebar] . (.Microsoft Corporation – Gadgets du Bureau Windows.) — C:Program Files (x86)Windows SidebarSidebar.exe =>.Microsoft Corporation
    O4 – HKUSS-1-5-21-1344051888-2695194567-3556418042-1000..RunOnce: [mctadmin] . (.Microsoft Corporation – MCTAdmin.) — C:WindowsSystem32mctadmin.exe =>.Microsoft Corporation
    ~ Application: Scanned in 00mn 00s

    —\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
    O9 – Extra button: &Envoyer à OneNote [64Bits] – {2670000A-7350-4f3c-8081-5663EE0C6C49} — C:Program Files (x86)MICROS~2Office14ONBttnIE.dll (.not file.)
    O9 – Extra button: Notes &liées OneNote [64Bits] – {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} — C:Program Files (x86)MICROS~2Office14ONBTTN~1.dll (.not file.)
    ~ IE Extra Buttons: Scanned in 00mn 00s

    —\ Site dans la Zone de confiance d'Internet Explorer (O15)
    O15 – Trusted Zone: [HKCU…Domains] http.aeriagames.com
    ~ IE Zone Confiance: Scanned in 00mn 00s

    —\ Modification Domaine/Adresses DNS (O17)
    O17 – HKLMSystemCCSServicesTcpip..{B5CB17EA-3749-46BE-8FFD-E239BDDBCAB7}: DhcpNameServer = 62.197.111.140 109.88.203.3
    O17 – HKLMSystemCS1ServicesTcpip..{B5CB17EA-3749-46BE-8FFD-E239BDDBCAB7}: DhcpNameServer = 62.197.111.140 109.88.203.3
    O17 – HKLMSystemCS2ServicesTcpip..{B5CB17EA-3749-46BE-8FFD-E239BDDBCAB7}: DhcpNameServer = 62.197.111.140 109.88.203.3
    O17 – HKLMSystemCCSServicesTcpipParameters: DhcpNameServer = 62.197.111.140 109.88.203.3
    ~ Domain: Scanned in 00mn 00s

    —\ Protocole additionnel (O18)
    O18 – Handler: wlpg [64Bits] – {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (…) —
    O18 – Filter: text/xml [64Bits] – {807573E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation – Microsoft Office XML MIME Filter.) — C:Program FilesCommon FilesMicrosoft SharedOFFICE14MSOXMLMF.dll =>.Microsoft Corporation
    ~ Protocole Additionnel: Scanned in 00mn 00s

    —\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
    O20 – Winlogon Notify: igfxcui . (.Intel Corporation – igfxdev Module.) — C:WindowsSystem32igfxdev.dll
    ~ Winlogon: Scanned in 00mn 00s

    —\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
    O20 – AppInit_DLLs: . (.NVIDIA Corporation – NVIDIA shim initialization dll, Version 331.) – C:Windowssystem32nvinitx.dll
    ~ AppInit DLL: Scanned in 00mn 00s

    —\ Tâches planifiées en automatique (O39)
    [MD5.00000000000000000000000000000000] [APT] [{317244E8-D291-4830-B7EC-65C12EE48F26}] (…) — C:Program Files (x86)InstallShield Installation Information{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}setup.exe (.not file.) [0]
    [MD5.00000000000000000000000000000000] [APT] [{65284FBB-B7C2-47EA-A325-B0B24B9649DE}] (…) — C:UsersSaturnDesktopeID-QuickInstaller-407-7453-signed_tcm226-246722.exe (.not file.) [0]
    [MD5.00000000000000000000000000000000] [APT] [{D90032E2-B273-41D4-93B3-191F31843A6E}] (…) — D:Jeux PCAntichamberBinariesRedistdotnetfx35.exe (.not file.) [0]
    [MD5.00000000000000000000000000000000] [APT] [{F72A480E-382C-4746-BF95-C582488514E5}] (…) — C:program files (x86)ncsoftlauncherNCLauncher.exe (.not file.) [0]
    O39 – APT: – (..) — C:WindowsSystem32TasksAdobe Flash Player Updater [1002]
    O39 – APT: – (..) — C:WindowsTasksASUS SmartLogon Console Sensor.job [272]
    O39 – APT: – (..) — C:WindowsSystem32TasksASUS SmartLogon Console Sensor [272]
    O39 – APT: – (..) — C:WindowsSystem32TasksFacebookUpdateTaskUserS-1-5-21-1344051888-2695194567-3556418042-1001Core [910]
    O39 – APT: – (..) — C:WindowsSystem32TasksFacebookUpdateTaskUserS-1-5-21-1344051888-2695194567-3556418042-1001UA [932]
    O39 – APT: – (..) — C:WindowsSystem32TasksGoogleUpdateTaskMachineCore [1066]
    O39 – APT: – (..) — C:WindowsSystem32TasksGoogleUpdateTaskMachineUA [1070]
    O39 – APT: – (..) — C:WindowsSystem32TasksISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon [828]
    O39 – APT: APT: – (..) — C:WindowsSystem32System32TasksISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon [828] – (..) — C:WindowsSystem32TasksISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d [830]
    ~ Scheduled Task: 33 Legitimates Filtered in 00mn 03s

    —\ Logiciels installés (O42)
    O42 – Logiciel: AuraKingdom-FR – (…) [HKLM][64Bits] — AuraKingdom-FR
    O42 – Logiciel: PRGR 2012.3 – (.Euro Business Partner.) [HKLM][64Bits] — Le Permis Réussi – Het Geslaagde Rijexamen_is1
    ~ Logic: 34 Legitimates Filtered in 00mn 00s

    —\ HKCU & HKLM Software Keys
    [HKCUSoftwarePando Networks]
    [HKCUSoftwareSpeedBit]
    [HKLMSoftwareSpeedBit]
    [HKLMSoftwareWow6432NodePando Networks]
    [HKLMSoftwareWow6432NodeSpeedBit]
    ~ Key Software: 458 Legitimates Filtered in 00mn 00s

    —\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
    O43 – CFD: 16/07/2014 – 13:28:04 – [] —-D C:Program Files (x86)Runxia Electronics
    O43 – CFD: 11/01/2014 – 14:22:19 – [] —-D C:Program Files (x86)SafeKey
    O43 – CFD: 23/12/2013 – 12:44:05 – [] —-D C:Program Files (x86)Common FilesSpeedBit
    O43 – CFD: 23/12/2013 – 12:45:11 – [] —-D C:ProgramDataSpeedBit
    O43 – CFD: 22/07/2013 – 20:41:49 – [] —-D C:UsersSaturnAppDataRoamingLOVE
    O43 – CFD: 23/12/2013 – 12:45:11 – [] —-D C:UsersSaturnAppDataRoamingSpeedBit
    O43 – CFD: 13/09/2012 – 07:25:55 – [] —-D C:UsersSaturnAppDataLocalPando_Temp
    O43 – CFD: 16/07/2014 – 13:28:08 – [] —-D C:UsersSaturnAppDataLocalVirtualRouterPlus
    ~ 36 Dossier CLSID vide (CLSID Empty Folder)
    ~ Program Folder: 340 Legitimates Filtered in 00mn 01s

    —\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
    O44 – LFC:[MD5.ADD2882C3E3BEBA3D2CE9DB42F5A6A22] – 31/10/2014 – 19:23:59 —A- . (…) — C:bdlog.txt [26900]
    ~ Files: 12 Legitimates Filtered in 00mn 01s

    —\ Enumération des clés de registre PoliciesSystem (MWPS) (O55)
    O55 – MWPS:[HKLM…PoliciesSystem] – “EnableUIADesktopToggle”=0
    O55 – MWPS:[HKLM…PoliciesSystem] – “FilterAdministratorToken”=0
    ~ MWPS: 19 Legitimates Filtered in 00mn 00s

    —\ Enumération des clés de registre PoliciesExplorer (MWPE) (O56)
    O56 – MWPE:[HKLM…policiesExplorer] – “NoActiveDesktopChanges”=1
    ~ MWPE Keys: 5 Legitimates Filtered in 00mn 00s

    —\ Liste des pilotes du système (SDL) (O58)
    O58 – SDL:24/02/2010 – 11:20:40 —A- . (.Protect Software GmbH – ProtectDisc x64/x86 Hybrid Driver.) — C:WindowsSystem32Driversacedrv11.sys [191616]
    O58 – SDL:21/12/2011 – 22:15:56 —A- . (.Windows (R) Win 7 DDK provider – ASUS Virtual Bus.) — C:WindowsSystem32DriversAsusVBus.sys [35968]
    O58 – SDL:8/11/2011 – 03:48:28 —A- . (.Windows (R) Win 7 DDK provider – ASUS HID mini driver for Virtual Touch Device.) — C:WindowsSystem32DriversAsusVTouch.sys [16512]
    O58 – SDL:18/09/2012 – 16:33:10 —A- . (.DT Soft Ltd – DAEMON Tools Virtual Bus Driver.) — C:WindowsSystem32Driversdtsoftbus01.sys [283200]
    O58 – SDL:14/07/2009 – 02:47:48 —A- . (.Emulex – Storport Miniport Driver for LightPulse HBAs.) — C:WindowsSystem32Driverselxstor.sys [530496]
    O58 – SDL:19/02/2012 – 19:16:24 —A- . (.ELAN Microelectronics Corp. – ETD Kernel Center.) — C:WindowsSystem32DriversETD.sys [200488]
    O58 – SDL:10/06/2009 – 21:31:59 —A- . (.Hauppauge Computer Works, Inc. – Hauppauge WinTV 885 Consumer IR Driver for eHome.) — C:WindowsSystem32Drivershcw85cir.sys [31232]
    O58 – SDL:20/07/2009 – 10:29:40 —A- . (.Pas de propriétaire – Keyboard Filter Driver.) — C:WindowsSystem32Driverskbfiltr.sys [15416]
    O58 – SDL:7/12/2012 – 09:28:06 —A- . (.Khalil Azzouzi – Azzouzi HotSpot helper driver.) — C:WindowsSystem32Driversndiskhaz.sys [30536]
    O58 – SDL:28/08/2014 – 21:54:24 —A- . (.Duplex Secure Ltd. – SCSI Pass Through Direct Host.) — C:WindowsSystem32Driverssptd.sys [564792]
    O58 – SDL:14/07/2009 – 02:45:55 —A- . (.Promise Technology – Promise SuperTrak EX Series Driver for Windows.) — C:WindowsSystem32Driversstexstor.sys [24656]
    O58 – SDL:13/12/2012 – 14:50:36 —A- . (.Apple, Inc. – Apple Mobile Device USB Driver.) — C:WindowsSystem32Driversusbaapl64.sys [54784]
    O58 – SDL:24/01/2013 – 11:17:00 —A- . (.http://libusb-win32.sourceforge.net” onclick=”window.open(this.href);return false; – LibUSB-Win32 – Kernel Driver.) — C:WindowsSysWOW64driverslibusb0.sys [52832]
    ~ Drivers: 102 Legitimates Filtered in 00mn 04s

    —\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)
    O61 – LFC: 5/11/2014 – 11:57:15 —A- . (…) — C:UsersSaturnAppDataLocalGoogleChromeUser DataWidevineCDM1.4.6.703_platform_specificwin_x64widevinecdmadapter.dll [189768]
    O61 – LFC: 8/11/2014 – 11:57:42 —A- . (…) — C:UsersSaturnAppDataRoamingsp_data.sys [387]
    ~ 579 Fichiers temporaires (Temporary files)
    ~ 132 Fichiers cookies (Cookies files)
    ~ Files: 3 Legitimates Filtered in 00mn 39s

    —\ Liste des outils de désinfection (LATC) (O63)
    O63 – Logiciel: ZHPDiag 2014 – (.Nicolas Coolman.) [HKLM] — ZHPDiag_is1 =>.Nicolas Coolman
    ~ ADS: Scanned in 00mn 00s

    —\ Associations Shell Spawning (O67)
    O67 – Shell Spawning: < .html> [HKCU..openCommand] (.Not Key.)
    ~ FASS Keys: 11 Legitimates Filtered in 00mn 00s

    —\ Menu de démarrage Internet (SMI) (O68)
    O68 – StartMenuInternet: [HKLM..ShellopenCommand] (.Google Inc. – Google Chrome.) — C:Program Files (x86)GoogleChromeApplicationchrome.exe
    O68 – StartMenuInternet: [HKLM..ShellopenCommand] (.Microsoft Corporation – Internet Explorer.) — C:Program FilesInternet Exploreriexplore.exe
    ~ Keys: Scanned in 00mn 00s

    —\ Recherche d'infection sur les navigateurs internet (SBI) (O69)
    O69 – SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} – (Bing) – http://www.bing.com” onclick=”window.open(this.href);return false;
    ~ Keys: Scanned in 00mn 00s

    —\ Enumère les fichiers Crack & Keygen (CKF) (O82)
    D:Jeux Psp + CrackCrack PspPack_Cracker_toute_PSP_pour_les_Nuls.rar =>.Crack,Keygen
    ~ Files: Scanned in 01mn 14s

    —\ Recherche particulière à la racine du système (SPRF) (O84)
    [MD5.D77B7E494E8A9F553FCCFEED33140348] [SPRF][11/01/2014] (…) — C:ProgramData1389448284.bdinstall.bin [418143]
    [MD5.0D3B680986310AE5540578C0E481C6A0] [SPRF][6/10/2010] (…) — C:ProgramDataFullRemove.exe [131984]
    [MD5.B4E23F662E877766EB5C7DD3BE2B3229] [SPRF][8/11/2014] (…) — C:UsersSaturnAppDataRoamingsp_data.sys [387]
    ~ Files: 4 Legitimates Filtered in 00mn 00s

    —\ Liste des exceptions du parefeu (FirewallRules) (O87)
    O87 – FAEL: “{248B418C-5D95-4368-BA2E-A2F83B569D17}” | In – None – P6 – TRUE | .(.BitTorrent, Inc. – µTorrent.) — C:Program Files (x86)uTorrentuTorrent.exe =>P2P.BitTorrent
    O87 – FAEL: “{BE325CBC-80B4-4697-BB64-E4362BB9F34C}” | In – None – P17 – TRUE | .(.BitTorrent, Inc. – µTorrent.) — C:Program Files (x86)uTorrentuTorrent.exe =>P2P.BitTorrent
    ~ Firewall: 2 Legitimates Filtered in 00mn 01s

    —\ Recherche de clés de registre Tracing (O100)
    HKLMSOFTWAREWow6432NodeMicrosoftTracingBingBar_RASAPI32 =>Toolbar.Bing
    HKLMSOFTWAREWow6432NodeMicrosoftTracingutorrent_2_RASAPI32 =>P2P.µTorrent
    HKLMSOFTWAREWow6432NodeMicrosoftTracingutorrent_2_RASMANCS =>P2P.µTorrent
    HKLMSOFTWAREWow6432NodeMicrosoftTracinguTorrent_RASAPI32 =>P2P.µTorrent
    HKLMSOFTWAREWow6432NodeMicrosoftTracinguTorrent_RASMANCS =>P2P.µTorrent
    ~ BTK: 336 Legitimates Filtered in 00mn 00s

    —\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
    SS – | Demand 10/07/1658 0 | (ACDaemon) . (…) – C:Program Files (x86)Common FilesArcSoftConnection ServiceBinACService.exe
    SS – | Demand 23/09/2014 267440 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) – C:WindowsSysWOW64MacromedFlashFlashPlayerUpdateService.exe
    SS – | Disabled 5/07/2013 75584 | (BdDesktopParental) . (.Bitdefender.) – C:Program FilesBitdefenderBitdefenderbdparentalservice.exe
    SS – | Demand 22/02/2012 276248 | (cphs) . (.Intel Corporation.) – C:WindowsSysWow64IntelCpHeciSvc.exe
    SS – | Demand 26/04/2011 2702848 | (FirebirdServerMAGIXInstance) . (.MAGIX®.) – C:Program Files (x86)Common FilesMAGIX ServicesDatabasebinfbserver.exe
    SS – | Auto 21/10/2014 107912 | (gupdate) . (.Google Inc..) – C:Program Files (x86)GoogleUpdateGoogleUpdate.exe
    SS – | Demand 21/10/2014 107912 | (gupdatem) . (.Google Inc..) – C:Program Files (x86)GoogleUpdateGoogleUpdate.exe
    SS – | Auto 10/07/1658 0 | (McAfee SiteAdvisor Service) . (…) – C:Program Files (x86)mcafeeSITEAD~1mcsacore.exe
    SS – | Demand 10/07/1658 0 | (npggsvc) . (.INCA Internet Co., Ltd..) – C:Windowssystem32GameMon.des
    SS – | Demand 21/10/2014 833728 | (Steam Client Service) . (.Valve Corporation.) – C:Program Files (x86)Common FilesSteamSteamService.exe
    SS – | Demand 19/02/2010 517096 | (SwitchBoard) . (.Adobe Systems Incorporated.) – C:Program Files (x86)Common FilesAdobeSwitchBoardSwitchBoard.exe
    SS – | Demand 14/07/2009 27136 | C:Program Files (x86)Windows Defendermpsvc.dll (WinDefend) . (.Microsoft Corporation.) – C:WindowsSystem32svchost.exe
    SR – | Auto 27/07/2012 63960 | (AdobeARMservice) . (.Adobe Systems Incorporated.) – C:Program Files (x86)Common FilesAdobeARM1.0armsvc.exe
    SR – | Auto 4/03/2011 379520 | (AFBAgent) . (.ASUSTeK Computer Inc..) – C:Windowssystem32FBAgent.exe
    SR – | Auto 7/09/2013 55624 | (Apple Mobile Device) . (.Apple Inc..) – C:Program Files (x86)Common FilesAppleMobile Device SupportAppleMobileDeviceService.exe
    SR – | Auto 21/11/2011 80512 | (ASLDRService) . (.ASUS.) – C:Program Files (x86)ASUSATK PackageATK HotkeyASLDRSrv.exe
    SR – | Auto 17/02/2012 277120 | (ASUS InstantOn) . (.ASUS.) – C:Program Files (x86)ASUSInstantOn for NBInsOnSrv.exe
    SR – | Auto 28/10/2011 106144 | (AtherosSvc) . (.Atheros Commnucations.) – C:Program Files (x86)Bluetooth Suiteadminservice.exe
    SR – | Auto 21/11/2011 96896 | (ATKGFNEXSrv) . (.ASUS.) – C:Program Files (x86)ASUSATK PackageATKGFNEXGFNEXSrv.exe
    SR – | Auto 30/08/2011 462184 | (Bonjour Service) . (.Apple Inc..) – C:Program FilesBonjourmDNSResponder.exe
    SR – | Auto 24/05/2011 1840128 | (Fabs) . (.MAGIX AG.) – C:Program Files (x86)Common FilesMAGIX ServicesDatabasebinFABS.exe
    SR – | Auto 3/02/2012 628448 | (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation.) – C:Program FilesInteliCLS ClientHeciServer.exe
    SR – | Auto 21/02/2012 128280 | (Intel(R) ME Service) . (…) – C:Program Files (x86)IntelIntel(R) Management Engine ComponentsFWServiceIntelMeFWService.exe
    SR – | Demand 2/11/2013 641352 | (iPod Service) . (.Apple Inc..) – C:Program FilesiPodbiniPodService.exe
    SR – | Auto 21/02/2012 161560 | (jhi_service) . (.Intel Corporation.) – C:Program Files (x86)IntelIntel(R) Management Engine ComponentsDALjhi_service.exe
    SR – | Auto 29/02/2012 277784 | (LMS) . (.Intel Corporation.) – C:Program Files (x86)IntelIntel(R) Management Engine ComponentsLMSLMS.exe
    SR – | Auto 24/06/2014 2820424 | (MaConfigAgent) . (.CybelSoft.) – C:Program Filesma-config.comMaConfigAgent.exe
    SR – | Auto 1/10/2014 1871160 | (MBAMScheduler) . (.Malwarebytes Corporation.) – C:Program Files (x86)Malwarebytes Anti-Malwarembamscheduler.exe
    SR – | Auto 1/10/2014 968504 | (MBAMService) . (.Malwarebytes Corporation.) – C:Program Files (x86)Malwarebytes Anti-Malwarembamservice.exe
    SR – | Auto 23/10/2013 922912 | (nvsvc) . (.NVIDIA Corporation.) – C:Windowssystem32nvvsvc.exe
    SR – | Auto 10/12/2013 1364256 | (nvUpdatusService) . (.NVIDIA Corporation.) – C:Program Files (x86)NVIDIA CorporationNVIDIA Update Coredaemonu.exe
    SR – | Demand 17/04/2009 247152 | (RichVideo) . (…) – C:Program Files (x86)CyberLinkShared filesRichVideo.exe
    SR – | Auto 23/10/2013 414496 | (Stereo Service) . (.NVIDIA Corporation.) – C:Program Files (x86)NVIDIA Corporation3D VisionnvSCPAPISvr.exe
    SR – | Auto 29/02/2012 363800 | (UNS) . (.Intel Corporation.) – C:Program Files (x86)IntelIntel(R) Management Engine ComponentsUNSUNS.exe
    SR – | Auto 13/08/2013 67320 | (UPDATESRV) . (.Bitdefender.) – C:Program FilesBitdefenderBitdefenderupdatesrv.exe
    SR – | Auto 13/08/2013 1505688 | (VSSERV) . (.Bitdefender.) – C:Program FilesBitdefenderBitdefendervsserv.exe
    SR – | Demand 10/07/1658 0 | (WMPNetworkSvc) . (…) – C:Program Files (x86)Windows Media Playerwmpnetwk.exe =>.Microsoft Corporation
    SR – | Auto 14/07/2009 27136 | C:WindowsSystem32wuaueng.dll (wuauserv) . (.Microsoft Corporation.) – C:WindowsSystem32svchost.exe
    SR – | Auto 28/10/2011 158880 | (ZAtheros Bt&Wlan Coex Agent) . (.Atheros.) – C:Program Files (x86)Bluetooth SuiteAth_CoexAgent.exe
    ~ Services: Scanned in 00mn 07s

    —\ Recherche d'infection sur le Master Boot Record (MBR)(O80)
    Run by Saturn at 9/11/2014 11:59:20
    ~ OS 64 not supported by MBR tool
    ~ MBR: 0 Legitimates Filtered in 00mn 00s

    —\ Recherche d'infection sur le Master Boot Record (MBRCheck)(O80)
    Written by ad13, http://ad13.geekstog” onclick=”window.open(this.href);return false;
    Run by Saturn at 9/11/2014 11:59:22
    ********* Dump file Name *********
    C:PhysicalDisk0_MBR.bin
    ~ MBR: Scanned in 00mn 02s

    —\ Liste des émulateurs de CD/DVD (MBR Hook)
    O58 – SDL:28/08/2014 – 21:54:24 —A- . (.Duplex Secure Ltd. – SCSI Pass Through Direct Host.) — C:WindowsSystem32Driverssptd.sys [564792]
    ~ Emulateurs: Scanned in 00mn 02s

    —\ Scan Additionnel (O88)
    Database Version : 13026 – (9/11/2014)
    Clés trouvées (Keys found) : 1
    Valeurs trouvées (Values found) : 3
    Dossiers trouvés (Folders found) : 0
    Fichiers trouvés (Files found) : 0

    [HKLMSoftwareWow6432NodeMicrosoftTracingBingBar_RASAPI32] =>Toolbar.Bing
    [HKCUSOFTWAREMicrosoftWindowsCurrentVersionRun]:uTorrent =>P2P.BitTorrent^
    ~ Additionnel Scan: 451184 Items scanned in 00mn 18s

    —\ Informations complémentaires sur les modules
    ~ http://nicolascoolman.fr/r5-internet-explorer-proxy-management-iepm/” onclick=”window.open(this.href);return false; =>.Internet Explorer, Proxy Management (R5)
    ~ http://nicolascoolman.fr/o4-applications-demarrees-par-le-registre/” onclick=”window.open(this.href);return false; =>.Applications lancées au démarrage du système (O4)
    ~ AMI: 2 Legitimates Filtered in 00mn 00s

    —\ Récapitulatif des détections trouvées sur votre station
    ~ MSI: 0 link(s) detected in 00mn 00s

    ~ 1102 Legitimates filtered by white list
    End of the scan (553 lines in 03mn 25s)(1)[/spoiler:3utk138b]

    Merci de votre aide !

    jacques.gache
    Participant
    Nombre d'articles : 678

    bonjour, cela sur le zhpdiag C: Hard drive, Flash drive, Thumb drive (Free 8 Go of 279 Go) tu es plus que limite pour que windows fonctionne convenablement il faut un minimum de 10% d’espace libre sur le disque système et pour toi cela fait 27 go donc avec 8 go tu est plus que dans le rouge !!

    bon passes adsfix !!

    • Désactive ton antivirus le temps du téléchargement et de l’utilisation.
    • Télécharge AdsFix
    • Enregistre-le sur le bureau, puis lance-le.
    • Clique sur Nettoyer.
    • Patiente pendant que le logiciel travaille.
    • À la fin, l’ordinateur va redémarrer.
    • Le rapport se trouve sur le bureau, sinon va le chercher sous C:AdsFix_XX_XX_XX (Les X étant des chiffres).
    • Héberge-le comme ceci et poste-le dans ta prochaine réponse.
    Glazh
    Participant
    Nombre d'articles : 8

    De fait il a enlevé quelques fichiers infectés lol..

    Voici le rapport :
    [spoiler:1slly0qm]¤¤¤¤¤¤¤¤¤¤ | AdsFix | g3n-h@ckm@n | 07.11.2014.3

    ¤¤¤¤¤ Vista | 7 | 8 | 8.1 – 32/64 bits ¤¤¤¤¤ – Start 22:46:26 – 09/11/2014

    Mis à jour le : 07/11/2014 | 13.40 par g3n-h@ckm@n™
    Contact : https://www.sosvirus.net” onclick=”window.open(this.href);return false;
    Assistance : forum-virus-securite.html
    Feedbacks : feedbacks-t75915.html
    Facebook : https://www.facebook.com/AdsFix” onclick=”window.open(this.href);return false;
    Boot: Normal boot
    [Saturn (Administrator)] – [GILLES] – (Belgique [040C])
    SID = S-1-5-21-1344051888-2695194567-3556418042-1001 || [53617475726e205e5e]
    PC : ASUSTeK COMPUTER INC. – N76VM – ASUS-NotebookSKU
    Bios : American Megatrends Inc. – 04/02/2012
    Système : Windows 7 Home Premium (64 bits) HomePremium Service Pack 1
    Mémoire RAM = Total (MB) : 6175 | Libre (MB) : 2270
    Pagefile = Total (MB) : 12347 | Libre (MB) : 7501
    Virtuelle = Total (MB) : 4194 | Libre (MB) : 4020

    Registre sauvegardé , pour restaurer : : C:AdsFixSaveRegistry [09.11.2014 @ 22_46_11] (Cliquer sur Options & Restaurer le registre)
    Restauration de fichiers ou dossiers supprimés par erreur : Cliquer sur Options & Restaurer Fichiers ou dossiers, Sélectionner un élément >> “Restaurer”

    ¤¤¤¤¤¤¤¤¤¤ | Mises à jour Windows

    Aucune mise à jour détectée !!!

    ¤¤¤¤¤¤¤¤¤¤ | Navigateurs

    IE : 11.0.9600.17344 (© Microsoft Corporation. Tous droits réservés.)
    GC : 39.0.2171.52 (Copyright 2012 Google Inc. All rights reserved.)

    ¤¤¤¤¤¤¤¤¤¤ | Security (atcav : 0)

    AV : Bitdefender Antivirus Disabled
    AS : Bitdefender Antispyware Disabled
    AM : Malwarebytes' Anti-Malware (1.0.1.711) [2014.07.14.03]
    FW : Bitdefender Pare-feu Disabled
    WMI : OK
    WU: Windows Update Service [Auto(2)] = Arrêté
    AS: Windows Defender [Manual(3)] = Arrêté
    FW: Windows FireWall Service [Auto(2)] = Arrêté

    ¤¤¤¤¤¤¤¤¤¤ | FlashPlayer

    ActiveX : 15.0.0.167

    ¤¤¤¤¤¤¤¤¤¤ | Processus tués

    1268 | [Owner : Système |Parent : 196] – (.NVIDIA Corporation – NVIDIA Driver Helper Service, Version 331.65.) – (8.17.13.3165) = C:WindowsSystem32nvvsvc.exe
    1292 | [Owner : Système |Parent : 196] – (.NVIDIA Corporation – Stereo Vision Control Panel API Server.) – (7.17.13.3165) = C:Program Files (x86)NVIDIA Corporation3D VisionnvSCPAPISvr.exe
    1828 | [Owner : Système |Parent : 1532] – (.Microsoft Corporation – Composant de saisie tactile ou avec stylet Microsoft.) – (6.1.7601.17514) = C:WindowsSystem32wisptis.exe
    1840 | [Owner : Système |Parent : 1268] – (.NVIDIA Corporation – NVIDIA User Experience Driver Component.) – (8.17.13.3165) = C:Program FilesNVIDIA CorporationDisplaynvxdsync.exe
    1936 | [Owner : Système |Parent : 1268] – (.NVIDIA Corporation – NVIDIA Driver Helper Service, Version 331.65.) – (8.17.13.3165) = C:WindowsSystem32nvvsvc.exe
    2044 | [Owner : Système |Parent : 196] – (.ASUSTeK Computer Inc. – ASUS FastBoot.) – (1.0.10.0) = C:WindowsSystem32FBAgent.exe
    2056 | [Owner : Système |Parent : 1532] – (.Microsoft Corporation – Infrastructure d’extensibilité pour les services réseau Windows sans fil 802.11.) – (6.1.7600.16385) = C:WindowsSystem32wlanext.exe
    2076 | [Owner : Système |Parent : 764] – (.Microsoft Corporation – Hôte de la fenêtre de la console.) – (6.1.7601.18229) = C:WindowsSystem32conhost.exe
    2100 | [Owner : Système |Parent : 196] – (.ASUS – ASLDR Service.) – (1.0.64.1) = C:Program Files (x86)ASUSATK PackageATK HotkeyAsLdrSrv.exe
    2172 | [Owner : Système |Parent : 196] – (.ASUS – GFNEXSrv.) – (1.0.11.1) = C:Program Files (x86)ASUSATK PackageATKGFNEXGFNEXSrv.exe
    2288 | [Owner : Système |Parent : 196] – (.Microsoft Corporation – Application sous-système spouleur.) – (6.1.7601.17777) = C:WindowsSystem32spoolsv.exe
    2448 | [Owner : Système |Parent : 196] – (.Adobe Systems Incorporated – Adobe Acrobat Update Service.) – (1.6.5.0) = C:Program Files (x86)Common FilesAdobeARM1.0armsvc.exe
    2484 | [Owner : Système |Parent : 196] – (.Apple Inc. – MobileDeviceService.) – (17.323.0.9) = C:Program Files (x86)Common FilesAppleMobile Device SupportAppleMobileDeviceService.exe
    2900 | [Owner : Système |Parent : 196] – (.ASUS – ASUS InstantOn Program.) – (2.2.0.1) = C:Program Files (x86)ASUSInstantOn for NBInsOnSrv.exe
    2924 | [Owner : Système |Parent : 196] – (.Atheros Commnucations – AdminService Application.) – (7.4.0.103) = C:Program Files (x86)Bluetooth SuiteAdminService.exe
    2960 | [Owner : Système |Parent : 196] – (.Apple Inc. – Bonjour Service.) – (3.0.0.10) = C:Program FilesBonjourmDNSResponder.exe
    3004 | [Owner : Système |Parent : 196] – (.Intel(R) Corporation – Intel(R) Capability Licensing Service Interface.) – (1.23.605.1) = C:Program FilesInteliCLS ClientHeciServer.exe
    3060 | [Owner : Système |Parent : 196] – (. – .) – (0.0.0.0) = C:Program Files (x86)IntelIntel(R) Management Engine ComponentsFWServiceIntelMeFWService.exe
    2376 | [Owner : Système |Parent : 196] – (.Intel Corporation – Intel(R) Dynamic Application Loader Host Interface.) – (8.0.3.1427) = C:Program Files (x86)IntelIntel(R) Management Engine ComponentsDALJhi_service.exe
    2596 | [Owner : Système |Parent : 196] – (.CybelSoft – Service de détection matériel.) – (7.1.4.0) = C:Program Filesma-config.comMaConfigAgent.exe
    1676 | [Owner : Système |Parent : 196] – (.Malwarebytes Corporation – Malwarebytes Anti-Malware.) – (3.1.1.0) = C:Program Files (x86)Malwarebytes Anti-Malwarembamscheduler.exe
    3468 | [Owner : Système |Parent : 196] – (.Microsoft Corporation – Microsoft Application Virtualization Virtual Service Agent.) – (4.6.3.24650) = C:Program Files (x86)Microsoft Application Virtualization Clientsftvsa.exe
    3580 | [Owner : Système |Parent : 196] – (.Microsoft Corp. – Microsoft® Windows Live ID Service.) – (7.250.4232.0) = C:Program FilesCommon FilesMicrosoft SharedWindows LiveWLIDSVC.EXE
    3696 | [Owner : Système |Parent : 196] – (.Atheros – Atheros Coex Service Application.) – (8.0.0.217) = C:Program Files (x86)Bluetooth SuiteAth_CoexAgent.exe
    3752 | [Owner : Système |Parent : 196] – (.Microsoft Corporation – Microsoft Application Virtualization Client Service.) – (4.6.3.24650) = C:Program Files (x86)Microsoft Application Virtualization Clientsftlist.exe
    3824 | [Owner : Système |Parent : 3580] – (.Microsoft Corp. – Microsoft® Windows Live ID Service Monitor.) – (7.250.4232.0) = C:Program FilesCommon FilesMicrosoft SharedWindows LiveWLIDSVCM.EXE
    4340 | [Owner : Système |Parent : 196] – (.Microsoft Corporation – Microsoft Office Client Virtualization Service .) – (14.0.7101.5000) = C:Program Files (x86)Common Filesmicrosoft sharedVirtualization HandlerCVHSVC.EXE
    4756 | [Owner : Système |Parent : 196] – (.Microsoft Corporation – Indexeur Microsoft Windows Search.) – (7.0.7601.17610) = C:WindowsSystem32SearchIndexer.exe
    5036 | [Owner : Saturn |Parent : 196] – (.Microsoft Corporation – Processus hôte pour Tâches Windows.) – (6.1.7601.18010) = C:WindowsSystem32taskhost.exe
    4424 | [Owner : Système |Parent : 2100] – (.ASUSTek Computer Inc. – HControl.) – (1.0.65.3) = C:Program Files (x86)ASUSATK PackageATK HotkeyHControl.exe
    828 | [Owner : Système |Parent : 2900] – (.ASUS – ASUS InstantOn Program.) – (2.2.0.1) = C:Program Files (x86)ASUSInstantOn for NBInsOnWMI.exe
    4364 | [Owner : Saturn |Parent : 3988] – (.Microsoft Corporation – Explorateur Windows.) – (6.1.7601.17567) = C:Windowsexplorer.exe
    5172 | [Owner : Système |Parent : 4424] – (.ASUS – ATKOSD.) – (1.0.41.1) = C:Program Files (x86)ASUSATK PackageATK HotkeyATKOSD.exe
    5340 | [Owner : Saturn |Parent : 2044] – (.ASUS – ACMON .) – (1.0.8.0) = C:Program Files (x86)ASUSSplendidACMON.exe
    5472 | [Owner : Système |Parent : 4424] – (.ASUS – KBFiltr.) – (1.0.41.1) = C:Program Files (x86)ASUSATK PackageATK HotkeyKBFiltr.exe
    5804 | [Owner : Système |Parent : 4424] – (.ASUS – WDC.) – (1.0.46.1) = C:Program Files (x86)ASUSATK PackageATK HotkeyWDC.exe
    5916 | [Owner : Saturn |Parent : 824] – (.ASUSTeK – ACEngSvr Module.) – (1.0.0.4) = C:WindowsSysWOW64ACEngSvr.exe
    5356 | [Owner : Système |Parent : 196] – (. – RichVideo Module.) – (2.0.0.2807) = C:Program Files (x86)CyberLinkShared filesRichVideo.exe
    5932 | [Owner : Saturn |Parent : 2044] – (.ASUS – AsScrPro.) – (1.0.0.9) = C:WindowsAsScrPro.exe
    6076 | [Owner : Saturn |Parent : 1532] – (.Microsoft Corporation – Composant de saisie tactile ou avec stylet Microsoft.) – (6.1.7601.17514) = C:WindowsSystem32wisptis.exe
    6132 | [Owner : Saturn |Parent : 1532] – (.Microsoft Corporation – Tablet PC Input Panel Accessory.) – (6.1.7601.18512) = C:Program FilesCommon FilesMicrosoft SharedinkTabTip.exe
    6072 | [Owner : Saturn |Parent : 6132] – (.Microsoft Corporation – Tablet PC Input Panel Helper.) – (6.1.7601.18512) = C:Program Files (x86)Common Filesmicrosoft sharedinkTabTip32.exe
    4804 | [Owner : Saturn |Parent : 2044] – (.CyberLink – CyberLink MediaLibray Service.) – (2.1.3023.0) = C:Program Files (x86)CyberLinkPower2GoCLMLSvc.exe
    5212 | [Owner : Saturn |Parent : 6052] – (.ASUS – Power4Gear Hybrid.) – (1.1.1.11) = C:Program FilesASUSP4GBatteryLife.exe
    5236 | [Owner : Saturn |Parent : 6052] – (.ASUSTek Computer Inc. – ASUS FaceLogon Application.) – (1.0.14.2) = C:Program Files (x86)ASUSFaceLogonsensorsrv.exe
    5276 | [Owner : Saturn |Parent : 6052] – (.ASUSTek Computer Inc. – ASUS USB Charger Plus.) – (2.0.9.0) = C:Program Files (x86)ASUSUSBChargerPlusUSBChargerPlus.exe
    5320 | [Owner : Saturn |Parent : 6052] – (.ASUSTeK Computer Inc. – ASUS Quick Gesture Exe.) – (1.0.4.0) = C:Program Files (x86)ASUSASUS Virtual TouchQuickGesturex86QuickGesture.exe
    5284 | [Owner : Saturn |Parent : 2044] – (.Realtek Semiconductor – Gestionnaire audio HD Realtek.) – (1.0.0.767) = C:Program FilesRealtekAudioHDARAVCpl64.exe
    5712 | [Owner : Saturn |Parent : 5288] – (.ASUSTek Computer Inc. – ATKOSD2.) – (7.0.16.2) = C:Program Files (x86)ASUSATK PackageATKOSD2ATKOSD2.exe
    6080 | [Owner : Saturn |Parent : 6052] – (.ASUSTeK Computer Inc. – ASUS Quick Gesture Exe.) – (1.0.4.0) = C:Program Files (x86)ASUSASUS Virtual TouchQuickGesturex64QuickGesture64.exe
    5224 | [Owner : Saturn |Parent : 4364] – (.Intel Corporation – igfxTray Module.) – (8.15.10.2653) = C:WindowsSystem32igfxtray.exe
    5976 | [Owner : Saturn |Parent : 4364] – (.Intel Corporation – hkcmd Module.) – (8.15.10.2653) = C:WindowsSystem32hkcmd.exe
    5628 | [Owner : Saturn |Parent : 4364] – (.ELAN Microelectronics Corp. – ETD Control Center.) – (10.0.0.13) = C:Program FilesElantechETDCtrl.exe
    6176 | [Owner : Saturn |Parent : 4364] – (.Realtek Semiconductor – HD Audio Background Process.) – (1.0.0.83) = C:Program FilesRealtekAudioHDARAVBg64.exe
    6224 | [Owner : Saturn |Parent : 4364] – (.Atheros Communications – Serveur Stack Bluetooth.) – (7.4.0.103) = C:Program Files (x86)Bluetooth SuiteBtvStack.exe
    6304 | [Owner : Saturn |Parent : 4364] – (.Atheros Commnucations – Bluetooth Tray.) – (7.4.0.103) = C:Program Files (x86)Bluetooth SuiteAthBtTray.exe
    6372 | [Owner : Saturn |Parent : 4364] – (.Alcor Micro Corp. – Single LUN Icon Utility for VID 058F PID 6366.) – (1.1.0.38) = C:Program Files (x86)AmIcoSingLunAmIcoSinglun64.exe
    7124 | [Owner : Saturn |Parent : 4364] – (.Akamai Technologies, Inc. – Akamai NetSession Client.) – (1.9.1.1) = C:UsersSaturnAppDataLocalAkamainetsession_win.exe
    7016 | [Owner : Saturn |Parent : 4364] – (.Microsoft Corporation – Microsoft OneNote Quick Launcher.) – (14.0.7104.5000) = C:PROGRA~2MICROS~1Office14ONENOTEM.EXE
    6312 | [Owner : Saturn |Parent : 7124] – (.Akamai Technologies, Inc. – Akamai NetSession Client.) – (1.9.1.1) = C:UsersSaturnAppDataLocalAkamainetsession_win.exe
    6164 | [Owner : Saturn |Parent : 6244] – (.Adobe Systems Incorporated – Adobe Reader and Acrobat Manager.) – (1.6.5.0) = C:Program Files (x86)Common FilesAdobeARM1.0AdobeARM.exe
    2868 | [Owner : Saturn |Parent : 6244] – (.ASUS – ATK Media.) – (2.0.10.1) = C:Program Files (x86)ASUSATK PackageATK MediaDMedia.exe
    2552 | [Owner : Saturn |Parent : 1840] – (.NVIDIA Corporation – NVIDIA Settings.) – (7.17.13.3165) = C:Program FilesNVIDIA CorporationDisplaynvtray.exe
    3388 | [Owner : Saturn |Parent : 6244] – (.ASUS – HControlUser.) – (1.0.50.1) = C:Program Files (x86)ASUSATK PackageATK HotkeyHControlUser.exe
    6340 | [Owner : Saturn |Parent : 6244] – (.ASUS – Wireless Console 3.) – (3.0.25.0) = C:Program Files (x86)ASUSWireless Console 3wcourier.exe
    2424 | [Owner : Saturn |Parent : 6244] – (.CyberLink Corp. – PowerDVD RC Service.) – (10.0.2730.0) = C:Program Files (x86)CyberLinkPowerDVD10PDVD10Serv.exe
    6660 | [Owner : Saturn |Parent : 6244] – (.Apple Inc. – iTunesHelper.) – (11.1.3.8) = C:Program Files (x86)iTunesiTunesHelper.exe
    6940 | [Owner : Saturn |Parent : 6244] – (.Oracle Corporation – Java Update Scheduler.) – (2.8.25.18) = C:Program Files (x86)Common FilesJavaJava Updatejusched.exe
    7504 | [Owner : Système |Parent : 196] – (.Apple Inc. – iPodService Module (64-bit).) – (11.1.3.8) = C:Program FilesiPodbiniPodService.exe
    7388 | [Owner : SERVICE RÉSEAU |Parent : 196] – (.Microsoft Corporation – Service Partage réseau du Lecteur Windows Media.) – (12.0.7601.17514) = C:Program FilesWindows Media Playerwmpnetwk.exe
    7240 | [Owner : Saturn |Parent : 5628] – (.ELAN Microelectronics Corp. – ETD Control Center Helper.) – (10.0.0.7) = C:Program FilesElantechETDCtrlHelper.exe
    4000 | [Owner : Saturn |Parent : 5628] – (.ELAN Microelectronics Corp. – ETD Gesture.) – (10.0.0.6) = C:Program FilesElantechETDGesture.exe
    268 | [Owner : Système |Parent : 196] – (.MAGIX AG – Verzeichnisüberwachung und Hilfsaufgaben für die Medienbibliothek.) – (2.1.31.0) = C:Program Files (x86)Common FilesMAGIX ServicesDatabasebinFABS.exe
    7544 | [Owner : Système |Parent : 196] – (.Intel Corporation – Local Manageability Service.) – (8.0.3.1427) = C:Program Files (x86)IntelIntel(R) Management Engine ComponentsLMSLMS.exe
    4212 | [Owner : UpdatusUser |Parent : 196] – (.NVIDIA Corporation – NVIDIA Settings Update Manager.) – (1.15.2.0) = C:Program Files (x86)NVIDIA CorporationNVIDIA Update Coredaemonu.exe
    4064 | [Owner : SERVICE LOCAL |Parent : 196] – (.Microsoft Corporation – PresentationFontCache.exe.) – (3.0.6920.5011) = C:WindowsMicrosoft.NETFramework64v3.0WPFPresentationFontCache.exe
    6680 | [Owner : Saturn |Parent : 196] – (.Microsoft Corporation – Serveur de personnalisation d’entrée.) – (6.1.7600.16385) = C:Program FilesCommon FilesMicrosoft SharedinkInputPersonalization.exe
    8612 | [Owner : Système |Parent : 196] – (.Intel Corporation – User Notification Service.) – (8.0.3.1427) = C:Program Files (x86)IntelIntel(R) Management Engine ComponentsUNSUNS.exe
    2500 | [Owner : Saturn |Parent : 3960] – (.Intel Corporation – Intel Services Manager.) – (1.8.0.34787) = C:Program Files (x86)IntelIntel(R) ME FW Recovery Agentbinismagent.exe
    9340 | [Owner : Saturn |Parent : 2500] – (. – .) – (0.0.0.0) = C:Program Files (x86)IntelIntel(R) ME FW Recovery Agentbinupdateui.exe
    2824 | [Owner : Saturn |Parent : 1676] – (.Malwarebytes Corporation – Malwarebytes Anti-Malware.) – (1.0.1.711) = C:Program Files (x86)Malwarebytes Anti-Malwarembam.exe
    268 | [Owner : Système |Parent : 196] – (.MAGIX AG – Verzeichnisüberwachung und Hilfsaufgaben für die Medienbibliothek.) – (2.1.31.0) = C:Program Files (x86)Common FilesMAGIX ServicesDatabasebinFABS.exe
    6680 | [Owner : Saturn |Parent : 196] – (.Microsoft Corporation – Serveur de personnalisation d’entrée.) – (6.1.7600.16385) = C:Program FilesCommon FilesMicrosoft SharedinkInputPersonalization.exe
    2500 | [Owner : Saturn |Parent : 3960] – (.Intel Corporation – Intel Services Manager.) – (1.8.0.34787) = C:Program Files (x86)IntelIntel(R) ME FW Recovery Agentbinismagent.exe
    3312 | [Owner : Système |Parent : 196] – (.Intel(R) Corporation – Intel(R) Capability Licensing Service Interface.) – (1.23.605.1) = C:Program FilesInteliCLS ClientHeciServer.exe
    10636 | [Owner : Système |Parent : 1532] – (.Microsoft Corporation – Composant de saisie tactile ou avec stylet Microsoft.) – (6.1.7601.17514) = C:WindowsSystem32wisptis.exe
    7024 | [Owner : Système |Parent : 196] – (.CybelSoft – Service de détection matériel.) – (7.1.4.0) = C:Program Filesma-config.comMaConfigAgent.exe
    9660 | [Owner : Saturn |Parent : 1532] – (.Microsoft Corporation – Composant de saisie tactile ou avec stylet Microsoft.) – (6.1.7601.17514) = C:WindowsSystem32wisptis.exe

    ¤¤¤¤¤¤¤¤¤¤ | Tasks

    ¤¤¤¤¤¤¤¤¤¤ | Services

    ¤¤¤¤¤¤¤¤¤¤ | AppCertDlls | AppInit_DLLs

    ¤¤¤¤¤¤¤¤¤¤ | Hosts

    Hosts : Ok

    ¤¤¤¤¤¤¤¤¤¤ | SafeBoot

    ¤¤¤¤¤¤¤¤¤¤ | Winsock

    ¤¤¤¤¤¤¤¤¤¤ | Registre

    Supprimé avec succès : HKLM64SOFTWAREClassesIDBHO.IDBrowserExtension
    Supprimé avec succès : HKLM64SOFTWAREClassesIDBHO.IDBrowserExtension.1
    Supprimé avec succès : HKLM64SOFTWAREClassesCLSID{9030D464-4C02-4ABF-8ECC-5164760863C6} (CLSID)
    Supprimé avec succès : HKLMSOFTWAREClassesCLSID{9030D464-4C02-4ABF-8ECC-5164760863C6} (CLSID)
    Supprimé avec succès : HKLM64SOFTWAREClassesInterface{5E6487A6-75F4-4EAF-9A86-04AB74E05878} : IIDBrowserExtension
    Supprimé avec succès : HKLM64SOFTWAREClassesInterface{A52621AD-E10F-477B-9ACB-B6181610788B} : ISoftwareUpdate
    Supprimé avec succès : HKLMSOFTWAREClassesInterface{5E6487A6-75F4-4EAF-9A86-04AB74E05878} : IIDBrowserExtension
    Supprimé avec succès : HKLMSOFTWAREClassesInterface{89A3A2ED-0546-4C60-8159-2D917245BCB3} : IBrowserSecurityManager
    Supprimé avec succès : HKLMSOFTWAREClassesInterface{A52621AD-E10F-477B-9ACB-B6181610788B} : ISoftwareUpdate
    Supprimé avec succès : HKLMSOFTWAREMicrosoftTracingInstallManager_RASAPI32
    Supprimé avec succès : HKLMSOFTWAREMicrosoftTracingInstallManager_RASMANCS
    Supprimé avec succès : HKLM64SOFTWARESpeedBit
    Supprimé avec succès : HKLMSOFTWAREGOG.com
    Supprimé avec succès : HKLMSOFTWARESpeedBit
    Supprimé avec succès : HKUS-1-5-21-1344051888-2695194567-3556418042-1001SOFTWAREDriverTuner
    Supprimé avec succès : HKUS-1-5-21-1344051888-2695194567-3556418042-1001SOFTWAREGOG.com
    Supprimé avec succès : HKUS-1-5-21-1344051888-2695194567-3556418042-1001SOFTWARESpeedBit
    Supprimé avec succès : HKLM64SOFTWAREMicrosoftInternet ExplorerExtension Compatibility{100EB1FD-D03E-47FD-81F3-EE91287F9465} : ShopperReports.dll (String)
    Supprimé avec succès : HKLM64SOFTWAREMicrosoftInternet ExplorerExtension Compatibility{258C9770-1713-4021-8D7E-1F184A2BD754} : ShoppingReport.dll (String)
    Supprimé avec succès : HKLM64SOFTWAREMicrosoftInternet ExplorerExtension Compatibility{2EECD738-5844-4A99-B4B6-146BF802613B} : BabylonToolbar.dll (String)
    Supprimé avec succès : HKLM64SOFTWAREMicrosoftInternet ExplorerExtension Compatibility{5AA2BA46-9913-4DC7-9620-69AB0FA17AE7} : alot.dll;alot.dll (String)
    Supprimé avec succès : HKLM64SOFTWAREMicrosoftInternet ExplorerExtension Compatibility{9030D464-4C02-4ABF-8ECC-5164760863C6} (CLSID)
    Supprimé avec succès : HKLM64SOFTWAREMicrosoftInternet ExplorerExtension Compatibility{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E} : BabylonToolbar.dll (String)
    Supprimé avec succès : HKLM64SOFTWAREMicrosoftInternet ExplorerExtension Compatibility{BDEA95CF-F0E6-41E0-BD3D-B00F39A4E939} : ShoppingReport.dll (String)
    Supprimé avec succès : HKLMSOFTWAREMicrosoftInternet ExplorerExtension Compatibility{100EB1FD-D03E-47FD-81F3-EE91287F9465} (CLSID)
    Supprimé avec succès : HKLMSOFTWAREMicrosoftInternet ExplorerExtension Compatibility{258C9770-1713-4021-8D7E-1F184A2BD754} (CLSID)
    Supprimé avec succès : HKLMSOFTWAREMicrosoftInternet ExplorerExtension Compatibility{2EECD738-5844-4A99-B4B6-146BF802613B} (CLSID)
    Supprimé avec succès : HKLMSOFTWAREMicrosoftInternet ExplorerExtension Compatibility{5AA2BA46-9913-4DC7-9620-69AB0FA17AE7} (CLSID)
    Supprimé avec succès : HKLMSOFTWAREMicrosoftInternet ExplorerExtension Compatibility{9030D464-4C02-4ABF-8ECC-5164760863C6} (CLSID)
    Supprimé avec succès : HKLMSOFTWAREMicrosoftInternet ExplorerExtension Compatibility{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E} (CLSID)
    Supprimé avec succès : HKLMSOFTWAREMicrosoftInternet ExplorerExtension Compatibility{BDEA95CF-F0E6-41E0-BD3D-B00F39A4E939} (CLSID)
    Supprimé avec succès : HKUS-1-5-21-1344051888-2695194567-3556418042-1001SOFTWAREMicrosoftWindowsCurrentVersionExtSettings{9030D464-4C02-4ABF-8ECC-5164760863C6} (CLSID)
    Supprimé avec succès : HKUS-1-5-21-1344051888-2695194567-3556418042-1001SOFTWAREMicrosoftWindowsCurrentVersionExtStats{9030D464-4C02-4ABF-8ECC-5164760863C6} (CLSID)
    Supprimé avec succès : HKLM64SOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{9030D464-4C02-4ABF-8ECC-5164760863C6} (CLSID)
    Supprimé avec succès : HKLMSOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{9030D464-4C02-4ABF-8ECC-5164760863C6} (CLSID)
    Supprimé avec succès : HKLM64SoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsC37C90D28F00EEE48ABDB245BB5F7675 : C:Program Files (x86)CrytekCryENGINE_MOD_SDKToolsCryExporterMaya CryExporterprefsshelvesshelf_CryExport.mel
    Supprimé avec succès : HKLMSOFTWAREMicrosoftWindowsCurrentVersionUninstall{520C1D80-935C-42B9-9340-E883849D804F}_is1 : (DriverTuner 3.5.0.1) “C:Program Files (x86)DriverTunerunins000.exe” /SILENT

    ¤¤¤¤¤¤¤¤¤¤ | Dossiers | Fichiers

    Supprimé avec succès : C:Program Files (x86)DriverTuner
    Supprimé avec succès : C:Program Files (x86)Common FilesSpeedBit
    Supprimé avec succès : C:Program FilesCommon FilesSpeedBit
    Supprimé avec succès : C:UsersAll UsersSpeedBit
    Supprimé avec succès : C:UsersAll UsersStart MenuProgramsDriverTuner
    Supprimé avec succès : C:UsersSaturnAppDataRoaming.#
    Supprimé avec succès : C:UsersSaturnAppDataRoamingSpeedBit
    Supprimé avec succès : C:UsersSaturnAppDataLocalLowSpeedBIT
    Supprimé avec succès : C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultLocal Storagehttps_www.gog.com_0.localstorage (.-.)
    Supprimé avec succès : C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultLocal Storagehttps_www.gog.com_0.localstorage-journal (.-.)
    Supprimé avec succès : C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultLocal Storagehttps_www.superfish.com_0.localstorage (.-.)
    Supprimé avec succès : C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultLocal Storagehttps_www.superfish.com_0.localstorage-journal (.-.)
    Supprimé avec succès : C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultLocal Storagehttp_forum.telecharger.01net.com_0.localstorage (.-.)
    Supprimé avec succès : C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultLocal Storagehttp_forum.telecharger.01net.com_0.localstorage-journal (.-.)
    Supprimé avec succès : C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultLocal Storagehttp_www.01net.com_0.localstorage (.-.)
    Supprimé avec succès : C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultLocal Storagehttp_www.01net.com_0.localstorage-journal (.-.)
    Supprimé avec succès : C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultLocal Storagehttp_www.gog.com_0.localstorage (.-.)
    Supprimé avec succès : C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultLocal Storagehttp_www.gog.com_0.localstorage-journal (.-.)
    Supprimé avec succès : C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultLocal Storagehttp_www.metrolyrics.com_0.localstorage (.-.)
    Supprimé avec succès : C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultLocal Storagehttp_www.metrolyrics.com_0.localstorage-journal (.-.)
    Supprimé avec succès : C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultLocal Storagehttp_www.superfish.com_0.localstorage (.-.)
    Supprimé avec succès : C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultLocal Storagehttp_www.superfish.com_0.localstorage-journal (.-.)
    Supprimé avec succès : C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultLocal Storagehttp_www.usaveo.com_0.localstorage (.-.)
    Supprimé avec succès : C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultLocal Storagehttp_www.usaveo.com_0.localstorage-journal (.-.)
    Supprimé avec succès : C:WindowsSystem32AI_RecycleBin

    ¤¤¤¤¤¤¤¤¤¤ | .LNK

    ¤¤¤¤¤¤¤¤¤¤ | Ouverture extension inconnue

    ¤¤¤¤¤¤¤¤¤¤ | Proxy

    ¤¤¤¤¤¤¤¤¤¤ | Internet Explorer

    Réparé : [HKLM64SOFTWAREMicrosoftInternet ExplorerMain]~[Search Bar] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKLM64SOFTWAREMicrosoftInternet ExplorerMain]~[Start Page] : about:blank -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKLM64SOFTWAREMicrosoftInternet ExplorerMain]~[Start Default_Page_URL] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKLM64SOFTWAREMicrosoftInternet ExplorerMain]~[Local Page] : C:WindowsSystem32blank.htm -> C:WindowsSysWOW64blank.htm
    Réparé : [HKLM64SOFTWAREMicrosoftInternet ExplorerMain]~[Default_Search_URL] : -> http://go.microsoft.com/fwlink/?LinkId=54896” onclick=”window.open(this.href);return false;
    Réparé : [HKLM64SOFTWAREMicrosoftInternet ExplorerMain]~[Default_Page_URL] : -> http://go.microsoft.com/fwlink/?LinkId=69157” onclick=”window.open(this.href);return false;
    Réparé : [HKLM64SOFTWAREMicrosoftInternet ExplorerSearchURL]~[Default] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKLM64SOFTWAREMicrosoftInternet ExplorerMain]~[CustomizeSearch] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKLM64SOFTWAREMicrosoftInternet ExplorerMain]~[SearchMigratedDefaultName] : -> google.com
    Réparé : [HKLM64SOFTWAREMicrosoftInternet ExplorerMain]~[SearchMigratedDefaultURL] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKLM64SOFTWAREMicrosoftInternet ExplorerSearch]~[SearchAssistant] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKLM64SOFTWAREMicrosoftInternet ExplorerSearch]~[Search Bar] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKLM64SOFTWAREMicrosoftInternet ExplorerSearch]~[Start Page] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKLM64SOFTWAREMicrosoftInternet ExplorerSearch]~[Start Default_Page_URL] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKLM64SOFTWAREMicrosoftInternet ExplorerSearch]~[Local Page] : -> C:WindowsSysWOW64blank.htm
    Réparé : [HKLM64SOFTWAREMicrosoftInternet ExplorerSearch]~[Search Page] : -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch” onclick=”window.open(this.href);return false;
    Réparé : [HKLM64SOFTWAREMicrosoftInternet ExplorerSearch]~[Default_Search_URL] : -> http://go.microsoft.com/fwlink/?LinkId=54896” onclick=”window.open(this.href);return false;
    Réparé : [HKLM64SOFTWAREMicrosoftInternet ExplorerSearch]~[Default_Page_URL] : -> http://go.microsoft.com/fwlink/?LinkId=69157” onclick=”window.open(this.href);return false;
    Réparé : [HKLM64SOFTWAREMicrosoftInternet ExplorerSearch]~[CustomizeSearch] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKLM64SOFTWAREMicrosoftInternet ExplorerSearch]~[SearchMigratedDefaultName] : -> google.com
    Réparé : [HKLM64SOFTWAREMicrosoftInternet ExplorerSearch]~[SearchMigratedDefaultURL] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKLM64SOFTWAREMicrosoftInternet ExplorerAboutURLs]~[Tabs] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKLMSOFTWAREMicrosoftInternet ExplorerMain]~[Search Bar] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKLMSOFTWAREMicrosoftInternet ExplorerMain]~[Start Page] : about:blank -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKLMSOFTWAREMicrosoftInternet ExplorerMain]~[Start Default_Page_URL] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKLMSOFTWAREMicrosoftInternet ExplorerMain]~[Default_Search_URL] : -> http://go.microsoft.com/fwlink/?LinkId=54896” onclick=”window.open(this.href);return false;
    Réparé : [HKLMSOFTWAREMicrosoftInternet ExplorerMain]~[Default_Page_URL] : -> http://go.microsoft.com/fwlink/?LinkId=69157” onclick=”window.open(this.href);return false;
    Réparé : [HKLMSOFTWAREMicrosoftInternet ExplorerSearchURL]~[Default] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKLMSOFTWAREMicrosoftInternet ExplorerMain]~[CustomizeSearch] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKLMSOFTWAREMicrosoftInternet ExplorerMain]~[SearchMigratedDefaultName] : -> google.com
    Réparé : [HKLMSOFTWAREMicrosoftInternet ExplorerMain]~[SearchMigratedDefaultURL] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKLMSOFTWAREMicrosoftInternet ExplorerSearch]~[SearchAssistant] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKLMSOFTWAREMicrosoftInternet ExplorerSearch]~[Search Bar] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKLMSOFTWAREMicrosoftInternet ExplorerSearch]~[Start Page] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKLMSOFTWAREMicrosoftInternet ExplorerSearch]~[Start Default_Page_URL] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKLMSOFTWAREMicrosoftInternet ExplorerSearch]~[Local Page] : -> C:WindowsSysWOW64blank.htm
    Réparé : [HKLMSOFTWAREMicrosoftInternet ExplorerSearch]~[Search Page] : -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch” onclick=”window.open(this.href);return false;
    Réparé : [HKLMSOFTWAREMicrosoftInternet ExplorerSearch]~[Default_Search_URL] : -> http://go.microsoft.com/fwlink/?LinkId=54896” onclick=”window.open(this.href);return false;
    Réparé : [HKLMSOFTWAREMicrosoftInternet ExplorerSearch]~[Default_Page_URL] : -> http://go.microsoft.com/fwlink/?LinkId=69157” onclick=”window.open(this.href);return false;
    Réparé : [HKLMSOFTWAREMicrosoftInternet ExplorerSearch]~[CustomizeSearch] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKLMSOFTWAREMicrosoftInternet ExplorerSearch]~[SearchMigratedDefaultName] : -> google.com
    Réparé : [HKLMSOFTWAREMicrosoftInternet ExplorerSearch]~[SearchMigratedDefaultURL] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKUS-1-5-21-1344051888-2695194567-3556418042-1001SOFTWAREMicrosoftInternet ExplorerMain]~[Search Bar] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKUS-1-5-21-1344051888-2695194567-3556418042-1001SOFTWAREMicrosoftInternet ExplorerMain]~[Start Page] : about:blank -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKUS-1-5-21-1344051888-2695194567-3556418042-1001SOFTWAREMicrosoftInternet ExplorerMain]~[Start Default_Page_URL] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKUS-1-5-21-1344051888-2695194567-3556418042-1001SOFTWAREMicrosoftInternet ExplorerMain]~[Local Page] : C:Windowssystem32blank.htm -> C:WindowsSysWOW64blank.htm
    Réparé : [HKUS-1-5-21-1344051888-2695194567-3556418042-1001SOFTWAREMicrosoftInternet ExplorerMain]~[Default_Search_URL] : -> http://go.microsoft.com/fwlink/?LinkId=54896” onclick=”window.open(this.href);return false;
    Réparé : [HKUS-1-5-21-1344051888-2695194567-3556418042-1001SOFTWAREMicrosoftInternet ExplorerMain]~[Default_Page_URL] : -> http://go.microsoft.com/fwlink/?LinkId=69157” onclick=”window.open(this.href);return false;
    Réparé : [HKUS-1-5-21-1344051888-2695194567-3556418042-1001SOFTWAREMicrosoftInternet ExplorerSearchURL]~[Default] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKUS-1-5-21-1344051888-2695194567-3556418042-1001SOFTWAREMicrosoftInternet ExplorerMain]~[CustomizeSearch] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKUS-1-5-21-1344051888-2695194567-3556418042-1001SOFTWAREMicrosoftInternet ExplorerMain]~[SearchMigratedDefaultName] : -> google.com
    Réparé : [HKUS-1-5-21-1344051888-2695194567-3556418042-1001SOFTWAREMicrosoftInternet ExplorerMain]~[SearchMigratedDefaultURL] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKUS-1-5-21-1344051888-2695194567-3556418042-1001SOFTWAREMicrosoftInternet ExplorerSearch]~[SearchAssistant] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKUS-1-5-21-1344051888-2695194567-3556418042-1001SOFTWAREMicrosoftInternet ExplorerSearch]~[Search Bar] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKUS-1-5-21-1344051888-2695194567-3556418042-1001SOFTWAREMicrosoftInternet ExplorerSearch]~[Start Page] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKUS-1-5-21-1344051888-2695194567-3556418042-1001SOFTWAREMicrosoftInternet ExplorerSearch]~[Start Default_Page_URL] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKUS-1-5-21-1344051888-2695194567-3556418042-1001SOFTWAREMicrosoftInternet ExplorerSearch]~[Local Page] : -> C:WindowsSysWOW64blank.htm
    Réparé : [HKUS-1-5-21-1344051888-2695194567-3556418042-1001SOFTWAREMicrosoftInternet ExplorerSearch]~[Search Page] : -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch” onclick=”window.open(this.href);return false;
    Réparé : [HKUS-1-5-21-1344051888-2695194567-3556418042-1001SOFTWAREMicrosoftInternet ExplorerSearch]~[Default_Search_URL] : -> http://go.microsoft.com/fwlink/?LinkId=54896” onclick=”window.open(this.href);return false;
    Réparé : [HKUS-1-5-21-1344051888-2695194567-3556418042-1001SOFTWAREMicrosoftInternet ExplorerSearch]~[Default_Page_URL] : -> http://go.microsoft.com/fwlink/?LinkId=69157” onclick=”window.open(this.href);return false;
    Réparé : [HKUS-1-5-21-1344051888-2695194567-3556418042-1001SOFTWAREMicrosoftInternet ExplorerSearch]~[CustomizeSearch] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKUS-1-5-21-1344051888-2695194567-3556418042-1001SOFTWAREMicrosoftInternet ExplorerSearch]~[SearchMigratedDefaultName] : -> google.com
    Réparé : [HKUS-1-5-21-1344051888-2695194567-3556418042-1001SOFTWAREMicrosoftInternet ExplorerSearch]~[SearchMigratedDefaultURL] : -> https://www.google.com/” onclick=”window.open(this.href);return false;
    Réparé : [HKUS-1-5-21-1344051888-2695194567-3556418042-1001SOFTWAREMicrosoftInternet ExplorerAboutURLs]~[Tabs] : -> https://www.google.com/” onclick=”window.open(this.href);return false;

    ¤¤¤¤¤¤¤¤¤¤ | Google Chrome

    Supprimé avec succès : HKLM64SOFTWAREPoliciesGoogle
    Supprimé avec succès : C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultWeb Data (.-.) Remis a zéro avec succès : SearchURL
    Supprimé avec succès : C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultPreferences (.-.) Remise à zéro impossible : Preferences

    C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultextensionsapdfllckaahabafndbhieahigkjlhalf = : Google & co – https://drive.google.com/?usp=chrome_app” onclick=”window.open(this.href);return false; – Google & co – [http://docs.google.com/http://drive.google.com/https://docs.google.com/https://drive.google.com/] – http://clients2.google.com/service/update2/crx” onclick=”window.open(this.href);return false;
    C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultextensionsbepbmhgboaologfdajaanbcjmnhjmhfn = : This extension allows you to say ‘Ok Google’ and start speaking your search. – Google Voice Search Hotword (Beta) – https://clients2.google.com/service/update2/crx” onclick=”window.open(this.href);return false;
    C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultextensionsblpcfgokakmgnkcojhhkbfbldkacnbeo = : Google & co – http://www.youtube.com” onclick=”window.open(this.href);return false; – http://www.youtube.com/?feature=ytca” onclick=”window.open(this.href);return false; – Google & co – http://clients2.google.com/service/update2/crx” onclick=”window.open(this.href);return false;
    C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultextensionscelnaknmndcdcjcagffhbhciignkeokb = :- https://www.facebook.com/” onclick=”window.open(this.href);return false; – https://www.facebook.com/” onclick=”window.open(this.href);return false; – [https://www.facebook.com/]
    C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultextensionscfhdojbkjhnklbpkdaibdccddilifddb = : __MSG_description_chrome__ – __MSG_name__ – https://clients2.google.com/service/update2/crx” onclick=”window.open(this.href);return false;
    C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultextensionsdbkchnicaiglcjpgbmpfmoafckkomdcm = : Google & co – Google & co – https://clients2.google.com/service/update2/crx” onclick=”window.open(this.href);return false;
    C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultextensionsdpljbellfhkofiknkcdmcpfebonoldhi = :- http://www.deviantart.com/” onclick=”window.open(this.href);return false; – http://www.deviantart.com/” onclick=”window.open(this.href);return false; – [http://www.deviantart.com/]
    C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultextensionseikmpmafdimllogceehaijmnlndineje = : Quickly search for highlighted text on Wikipedia via right-click – Right-Click Search Wikipedia – https://clients2.google.com/service/update2/crx” onclick=”window.open(this.href);return false;
    C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultextensionsfapgfajicejdcdpdidhfphnihcmphblf = :- http://www.walking-dead-streaming.com/” onclick=”window.open(this.href);return false; – http://www.walking-dead-streaming.com/” onclick=”window.open(this.href);return false; – [http://www.walking-dead-streaming.com/]
    C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultextensionsgoabenfmipbicdhchglicoapoeekhplh = :- https://login.live.com/login.srf?wa=wsignin1.0&rpsnv=11&ct=1345474313&rver=6.1.6206.0&wp=MBI&wreply=http:%2F%2Fmail.live.com%2Fdefault.aspx&lc=1036&id=64855&mkt=fr-fr&cbcxt=mai&snsc=1” onclick=”window.open(this.href);return false; – https://login.live.com/login.srf?wa=wsignin1” onclick=”window.open(this.href);return false;. – [https://login.live.com/login.srf?wa=wsignin1.0&rpsnv=11&ct=1345474313&rver=6.1.6206.0&wp=MBI&wreply=http:%2F%2Fmail.live.com%2Fdefault.aspx&lc=1036&id=64855&mkt=fr-fr&cbcxt=mai&snsc=1]
    C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultextensionsjiglbhiacnhpjemeochdlfmopeiblpoa = :- http://sport.be.msn.com/fr/jupilerproleague/” onclick=”window.open(this.href);return false; – http://sport.be.msn.com/fr/jupilerproleague/” onclick=”window.open(this.href);return false; – [http://sport.be.msn.com/fr/jupilerproleague/]
    C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultextensionskcbnmdkeekjjcefkhbomlalggpgenpjp = :- http://www.t411.me/” onclick=”window.open(this.href);return false; – http://www.t411.me/” onclick=”window.open(this.href);return false; – [http://www.t411.me/]
    C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultextensionslfbgimoladefibpklnfmkpknadbklade = : Take photos with your webcam using over 80 free fun effects. Save photos to your computer or post to Twitter Tumblr and Facebook! – http://webcamtoy.com/app/” onclick=”window.open(this.href);return false; – Webcam Toy – [http://webcamtoy.com/app/] – https://clients2.google.com/service/update2/crx” onclick=”window.open(this.href);return false;
    C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultextensionslfffhmndpldceogndeognocbpmlgdemi = : Take photos from your webcam and apply a lot of funny and beautiful webcam effects! – http://comicwebcam.com/” onclick=”window.open(this.href);return false; – Comic Webcam – [http://comicwebcam.com/] – https://clients2.google.com/service/update2/crx” onclick=”window.open(this.href);return false;
    C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultextensionslfpklildcpdhbmnhjdmnnainefjpjfjm = :- http://www.nba.com/” onclick=”window.open(this.href);return false; – http://www.nba.com/” onclick=”window.open(this.href);return false; – [http://www.nba.com/]
    C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultextensionslmkpjaplpnklkcibeohfflofkhpcaijl = :- http://www.jeuxvideo.com/etajvbisbe.htm” onclick=”window.open(this.href);return false; – http://www.jeuxvideo.com/etajvbisbe.htm” onclick=”window.open(this.href);return false; – [http://www.jeuxvideo.com/etajvbisbe.htm]
    C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultextensionsnmmhkkegccagdldgiimedpiccmgmieda = : Google & co – Google & co – 203784468217.apps.googleusercontent.com – https://clients2.google.com/service/update2/crx” onclick=”window.open(this.href);return false;
    C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultextensionsnpfkoakaabdallkcdbpkkhfilkkngakh = : Google & co – http://www.deezer.com” onclick=”window.open(this.href);return false; – Google & co –

  • http://clients2.google.com/service/update2/crx” onclick=”window.open(this.href);return false;
    C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultextensionsoocncdpjafpninblmaonahdfdocbbdok = : Google & co – Google & co – https://clients2.google.com/service/update2/crx” onclick=”window.open(this.href);return false;
    C:UsersSaturnAppDataLocalGoogleChromeUser DataDefaultextensionspkagljjfcjjpbkkfppbklhamjlodpnpi = : Smart. Simple. Beautiful Theme. – __MSG_themeName__ – http://clients2.google.com/service/update2/crx” onclick=”window.open(this.href);return false;

    ¤¤¤¤¤¤¤¤¤¤ | Chromium

    Supprimé avec succès : HKLM64SOFTWAREPoliciesChromium

    ¤¤¤¤¤¤¤¤¤¤ | Comodo Dragon

    ¤¤¤¤¤¤¤¤¤¤ | Firefox

    ¤¤¤¤¤¤¤¤¤¤ | SeaMonkey

    ¤¤¤¤¤¤¤¤¤¤ | Pale moon

    ¤¤¤¤¤¤¤¤¤¤ | Opera

    ¤¤¤¤¤¤¤¤¤¤ | Spark

    ¤¤¤¤¤¤¤¤¤¤ | StartMenuInternet

    ¤¤¤¤¤¤¤¤¤¤ | Javascript

    ¤¤¤¤¤¤¤¤¤¤ | Firewall

    ¤¤¤¤¤¤¤¤¤¤ | Fichiers temporaires

    [All Users] Fichiers temporaires Supprimés : 0 Ko
    [Default] Fichiers temporaires Supprimés : 0 Ko
    [Default User] Fichiers temporaires Supprimés : 0 Ko
    [hedev] Fichiers temporaires Supprimés : 43164 Ko
    [Public] Fichiers temporaires Supprimés : 0 Ko
    [Saturn] Fichiers temporaires Supprimés : 64444 Ko
    [UpdatusUser] Fichiers temporaires Supprimés : 0 Ko
    [C:WindowsTemp] Fichiers temporaires Supprimés : 115103 Ko
    [C:Temp] Fichiers temporaires Supprimés : 0 Ko

    Autre rapport

    ¤¤¤¤¤¤¤¤¤¤ | Listing

    ¤¤¤¤¤¤¤¤¤¤ | C:Program Files (x86)

    [24/02/2012 03:28:31] – |D| – C:Program Files (x86)Adobe
    [14/09/2012 18:08:25] – |D| – C:Program Files (x86)Adobe Download Assistant
    [20/01/2014 22:46:00] – |D| – C:Program Files (x86)Aeria Games
    [31/05/2012 17:38:54] – |D| – C:Program Files (x86)AmIcoSingLun
    [20/08/2012 16:06:30] – |D| – C:Program Files (x86)Apple Software Update
    [24/02/2012 03:42:04] – |D| – C:Program Files (x86)ASUS
    [31/05/2012 17:43:23] – |D| – C:Program Files (x86)ASUS Music Maker
    [15/09/2012 01:00:53] – |D| – C:Program Files (x86)AVS4YOU
    [14/05/2014 12:43:09] – |D| – C:Program Files (x86)Battle.net
    [29/06/2014 22:12:29] – |D| – C:Program Files (x86)Belgium Identity Card
    [31/05/2012 17:34:57] – |D| – C:Program Files (x86)Bluetooth Suite
    [20/08/2012 16:06:00] – |D| – C:Program Files (x86)Bonjour
    [09/02/2014 12:51:12] – |D| – C:Program Files (x86)Cluedo
    [17/04/2013 23:16:58] – |D| – C:Program Files (x86)Combined Community Codec Pack
    [14/07/2009 04:20:08] – |D| – C:Program Files (x86)Common Files
    [01/12/2012 22:35:34] – |D| – C:Program Files (x86)Crytek
    [22/12/2013 20:54:42] – |D| – C:Program Files (x86)CustoPackTools
    [31/05/2012 17:43:54] – |D| – C:Program Files (x86)CyberLink
    [18/09/2012 16:32:58] – |D| – C:Program Files (x86)DAEMON Tools Pro
    [23/12/2013 12:45:05] – |D| – C:Program Files (x86)DAP
    [14/07/2009 05:54:24] – |ASH| – C:Program Files (x86)desktop.ini
    [15/05/2013 13:07:41] – |HD| – C:Program Files (x86)Dr.Fone_Temp
    [31/05/2013 01:46:21] – |D| – C:Program Files (x86)Dust An Elysian Tail
    [18/01/2013 12:28:32] – |D| – C:Program Files (x86)EBP – PRGR
    [09/05/2013 16:03:13] – |D| – C:Program Files (x86)Electronic Arts
    [24/02/2012 03:28:59] – |D| – C:Program Files (x86)Google
    [15/05/2014 10:03:12] – |D| – C:Program Files (x86)Hearthstone
    [09/09/2013 20:22:04] – |D| – C:Program Files (x86)HP
    [31/05/2012 17:22:46] – |HD| – C:Program Files (x86)InstallShield Installation Information
    [31/05/2012 17:22:46] – |D| – C:Program Files (x86)Intel
    [03/08/2012 23:47:46] – |D| – C:Program Files (x86)Intel Retail iPOS BTS 2012
    [14/07/2009 04:20:08] – |D| – C:Program Files (x86)Internet Explorer
    [30/12/2013 13:29:07] – |D| – C:Program Files (x86)iTunes
    [11/09/2012 16:45:01] – |D| – C:Program Files (x86)Java
    [17/01/2013 20:46:17] – |D| – C:Program Files (x86)Larousse
    [16/07/2014 13:58:22] – |D| – C:Program Files (x86)Malwarebytes Anti-Malware
    [16/01/2013 17:42:13] – |D| – C:Program Files (x86)Malwarebytes' Anti-Malware
    [19/07/2013 15:59:11] – |D| – C:Program Files (x86)Mark of the Ninja
    [12/12/2013 23:07:36] – |D| – C:Program Files (x86)McAfee
    [12/12/2013 23:11:21] – |D| – C:Program Files (x86)McAfee Online Backup
    [24/02/2012 03:41:46] – |D| – C:Program Files (x86)Microsoft
    [24/10/2012 22:55:58] – |D| – C:Program Files (x86)Microsoft Analysis Services
    [20/08/2012 15:03:01] – |D| – C:Program Files (x86)Microsoft Application Virtualization Client
    [28/12/2013 11:01:34] – |D| – C:Program Files (x86)Microsoft Games for Windows – LIVE
    [24/02/2012 03:19:02] – |D| – C:Program Files (x86)Microsoft Office
    [13/03/2013 13:02:16] – |D| – C:Program Files (x86)Microsoft Silverlight
    [24/02/2012 03:37:31] – |D| – C:Program Files (x86)Microsoft SQL Server Compact Edition
    [31/03/2013 15:17:47] – |D| – C:Program Files (x86)Microsoft WSE
    [31/05/2013 01:54:06] – |D| – C:Program Files (x86)Microsoft XNA
    [24/02/2012 03:26:02] – |D| – C:Program Files (x86)Microsoft.NET
    [29/06/2014 22:11:30] – |D| – C:Program Files (x86)Mozilla Firefox
    [14/07/2009 06:32:38] – |D| – C:Program Files (x86)MSBuild
    [21/08/2012 02:28:47] – |D| – C:Program Files (x86)MSXML 4.0
    [31/05/2012 17:29:22] – |D| – C:Program Files (x86)NVIDIA Corporation
    [14/09/2012 23:06:05] – |RD| – C:Program Files (x86)Portrait Professional 10
    [29/01/2013 14:57:45] – |D| – C:Program Files (x86)ProtectDisc Driver Installer
    [31/05/2012 17:34:21] – |D| – C:Program Files (x86)Qualcomm Atheros WiFi Driver Installation
    [14/09/2012 20:55:13] – |D| – C:Program Files (x86)QuickTime
    [31/05/2012 17:32:19] – |D| – C:Program Files (x86)Realtek
    [14/07/2009 06:32:38] – |D| – C:Program Files (x86)Reference Assemblies
    [29/10/2012 01:21:08] – |D| – C:Program Files (x86)REVisionEffects
    [22/12/2013 00:25:25] – |D| – C:Program Files (x86)RocketDock
    [16/07/2014 13:28:04] – |D| – C:Program Files (x86)Runxia Electronics
    [12/12/2013 23:09:38] – |D| – C:Program Files (x86)SafeKey
    [19/10/2014 10:42:35] – |RD| – C:Program Files (x86)Skype
    [08/09/2012 14:34:22] – |D| – C:Program Files (x86)Sony
    [25/10/2012 11:07:46] – |D| – C:Program Files (x86)Steam
    [11/09/2012 16:54:47] – |D| – C:Program Files (x86)SystemRequirementsLab
    [15/09/2012 00:19:38] – |D| – C:Program Files (x86)TechSmith
    [31/05/2012 17:32:19] – |HD| – C:Program Files (x86)Temp
    [14/07/2009 05:57:06] – |HD| – C:Program Files (x86)Uninstall Information
    [10/01/2013 01:02:59] – |D| – C:Program Files (x86)uTorrent
    [20/12/2012 11:14:13] – |D| – C:Program Files (x86)Votre santé au quotidien
    [14/07/2009 06:32:38] – |D| – C:Program Files (x86)Windows Defender
    [24/02/2012 03:33:30] – |D| – C:Program Files (x86)Windows Live
    [14/07/2009 04:20:08] – |D| – C:Program Files (x86)Windows Mail
    [14/07/2009 06:32:38] – |D| – C:Program Files (x86)Windows Media Player
    [14/07/2009 04:20:08] – |D| – C:Program Files (x86)Windows NT
    [14/07/2009 06:32:38] – |D| – C:Program Files (x86)Windows Photo Viewer
    [14/07/2009 06:32:38] – |D| – C:Program Files (x86)Windows Portable Devices
    [14/07/2009 06:32:38] – |D| – C:Program Files (x86)Windows Sidebar
    [20/08/2012 16:56:07] – |D| – C:Program Files (x86)WinRAR
    [15/05/2013 13:07:41] – |D| – C:Program Files (x86)Wondershare
    [29/10/2012 03:16:34] – |D| – C:Program Files (x86)Youtube Downloader HD
    [09/11/2014 11:53:39] – |D| – C:Program Files (x86)ZHPDiag

    ¤¤¤¤¤¤¤¤¤¤ | C:Program Files

    [08/09/2012 13:53:40] – |D| – C:Program FilesAdobe
    [31/05/2012 17:41:06] – |D| – C:Program FilesASUS
    [11/01/2014 14:51:57] – |D| – C:Program FilesBitdefender
    [20/08/2012 16:06:00] – |D| – C:Program FilesBonjour
    [10/01/2013 01:01:19] – |D| – C:Program FilesCCleaner
    [14/07/2009 04:20:08] – |D| – C:Program FilesCommon Files
    [14/07/2009 05:54:24] – |ASH| – C:Program Filesdesktop.ini
    [29/06/2014 22:13:56] – |D| – C:Program FilesDIFX
    [14/07/2009 06:32:38] – |D| – C:Program FilesDVD Maker
    [31/05/2012 17:32:09] – |D| – C:Program FilesElantech
    [31/05/2012 17:23:26] – |D| – C:Program FilesIntel
    [14/07/2009 04:20:08] – |D| – C:Program FilesInternet Explorer
    [30/12/2013 13:29:08] – |D| – C:Program FilesiPod
    [30/12/2013 13:29:07] – |D| – C:Program FilesiTunes
    [31/10/2014 00:03:32] – |D| – C:Program FilesJava
    [29/06/2014 22:12:29] – |D| – C:Program Fileslog
    [28/08/2014 21:50:37] – |D| – C:Program Filesma-config.com
    [14/07/2009 06:32:38] – |D| – C:Program FilesMicrosoft Games
    [20/08/2012 15:03:02] – |D| – C:Program FilesMicrosoft Office
    [13/03/2013 13:02:16] – |D| – C:Program FilesMicrosoft Silverlight
    [17/07/2013 04:12:58] – |D| – C:Program FilesMotioninJoy
    [14/07/2009 06:32:38] – |D| – C:Program FilesMSBuild
    [31/05/2012 17:28:53] – |D| – C:Program FilesNVIDIA Corporation
    [31/05/2012 17:32:33] – |D| – C:Program FilesRealtek
    [14/07/2009 06:32:38] – |D| – C:Program FilesReference Assemblies
    [18/10/2012 20:33:17] – |D| – C:Program FilesSony
    [11/12/2013 17:11:46] – |D| – C:Program Filesstinger
    [28/08/2014 22:38:25] – |D| – C:Program FilesSynaptics
    [14/07/2009 06:09:26] – |HD| – C:Program FilesUninstall Information
    [14/07/2009 06:32:38] – |D| – C:Program FilesWindows Defender
    [14/07/2009 08:45:58] – |D| – C:Program FilesWindows Journal
    [14/07/2009 04:20:08] – |D| – C:Program FilesWindows Mail
    [14/07/2009 06:32:38] – |D| – C:Program FilesWindows Media Player
    [14/07/2009 04:20:08] – |D| – C:Program FilesWindows NT
    [14/07/2009 06:32:38] – |D| – C:Program FilesWindows Photo Viewer
    [14/07/2009 06:32:38] – |D| – C:Program FilesWindows Portable Devices
    [14/07/2009 06:32:38] – |D| – C:Program FilesWindows Sidebar
    [08/09/2012 15:19:54] – |D| – C:Program FilesWinRAR

    ¤¤¤¤¤¤¤¤¤¤ | C:Program Files (x86)Common Files

    [24/02/2012 03:28:31] – |D| – C:Program Files (x86)Common FilesAdobe
    [08/09/2012 11:10:21] – |D| – C:Program Files (x86)Common FilesAdobe AIR
    [20/08/2012 16:05:52] – |D| – C:Program Files (x86)Common FilesApple
    [22/08/2012 21:15:40] – |D| – C:Program Files (x86)Common FilesArcSoft
    [31/05/2012 17:35:00] – |D| – C:Program Files (x86)Common FilesAtheros
    [15/09/2012 01:01:21] – |D| – C:Program Files (x86)Common FilesAVSMedia
    [09/05/2013 16:03:13] – |D| – C:Program Files (x86)Common FilesBioWare
    [11/09/2012 17:43:26] – |D| – C:Program Files (x86)Common FilesBlizzard Entertainment
    [15/05/2014 08:20:41] – |D| – C:Program Files (x86)Common FilesDESIGNER
    [31/05/2012 17:32:16] – |D| – C:Program Files (x86)Common FilesInstallShield
    [31/05/2012 17:25:48] – |D| – C:Program Files (x86)Common FilesIntel
    [31/10/2014 00:06:46] – |D| – C:Program Files (x86)Common FilesJava
    [12/12/2013 23:10:17] – |A| – C:Program Files (x86)Common Fileslpuninstall.exe
    [31/05/2012 17:41:57] – |D| – C:Program Files (x86)Common FilesMAGIX Services
    [14/07/2009 04:20:08] – |D| – C:Program Files (x86)Common Filesmicrosoft shared
    [24/02/2012 03:42:35] – |D| – C:Program Files (x86)Common FilesOberon Media
    [31/05/2012 17:23:01] – |D| – C:Program Files (x86)Common FilespostureAgent
    [14/07/2009 04:20:08] – |D| – C:Program Files (x86)Common FilesServices
    [19/10/2014 10:42:35] – |D| – C:Program Files (x86)Common FilesSkype
    [14/07/2009 04:20:08] – |D| – C:Program Files (x86)Common FilesSpeechEngines
    [25/10/2012 11:07:48] – |D| – C:Program Files (x86)Common FilesSteam
    [03/08/2012 23:50:08] – |D| – C:Program Files (x86)Common FilesSWF Studio
    [14/07/2009 04:20:08] – |D| – C:Program Files (x86)Common FilesSystem
    [15/09/2012 00:19:42] – |D| – C:Program Files (x86)Common FilesTechSmith Shared
    [24/02/2012 03:29:35] – |D| – C:Program Files (x86)Common FilesWindows Live
    [07/06/2013 14:11:58] – |D| – C:Program Files (x86)Common FilesWise Installation Wizard
    [15/05/2013 13:07:47] – |D| – C:Program Files (x86)Common FilesWondershare

    ¤¤¤¤¤¤¤¤¤¤ | C:Program FilesCommon Files

    [08/09/2012 13:48:56] – |D| – C:Program FilesCommon FilesAdobe
    [20/08/2012 16:06:12] – |D| – C:Program FilesCommon FilesApple
    [11/01/2014 14:51:18] – |D| – C:Program FilesCommon FilesBitdefender
    [25/02/2014 15:20:03] – |D| – C:Program FilesCommon FilesINCA Shared
    [31/05/2012 17:25:49] – |D| – C:Program FilesCommon FilesIntel
    [28/08/2014 22:40:24] – |D| – C:Program FilesCommon FilesLogiShrd
    [12/12/2013 22:55:59] – |D| – C:Program FilesCommon FilesMcAfee
    [14/07/2009 04:20:08] – |D| – C:Program FilesCommon FilesMicrosoft Shared
    [14/07/2009 04:20:08] – |D| – C:Program FilesCommon FilesServices
    [14/07/2009 04:20:08] – |D| – C:Program FilesCommon FilesSpeechEngines
    [14/07/2009 04:20:08] – |D| – C:Program FilesCommon FilesSystem[/spoiler:1slly0qm]