¤¤¤¤¤¤¤¤¤¤ | AdsFix | g3n-h@ckm@n | 07.11.2014.3

¤¤¤¤¤ Vista | 7 | 8 | 8.1 - 32/64 bits ¤¤¤¤¤ - Start 13:56:00 - 08/11/2014

Mis à jour le : 07/11/2014 | 13.40 par g3n-h@ckm@n™
Contact : http://www.sosvirus.net
Assistance : http://www.sosvirus.net/forum-virus-securite.html
Feedbacks : http://www.sosvirus.net/feedbacks-t75915.html
Facebook : https://www.facebook.com/AdsFix
Boot: Normal boot
[Armis (Administrator)] - [PERLIN-PC] -  (France [040C])
SID = S-1-5-21-818424075-589025181-140128308-1003 || [41726d6973205e5e]
PC : eMachines - HM55-MV - 
Bios : Phoenix - 08/31/2010
Système : Windows 7 Home Premium (64 bits) HomePremium Service Pack 1
Mémoire RAM = Total (MB) : 2024 | Libre (MB) : 390
Pagefile = Total (MB) : 4049 | Libre (MB) : 1905
Virtuelle = Total (MB) : 4194 | Libre (MB) : 4044

Registre sauvegardé , pour restaurer :  : C:\AdsFix\Save\Registry [08.11.2014 @ 13_55_52] (Cliquer sur Options & Restaurer le registre)
Restauration de fichiers ou dossiers supprimés par erreur : Cliquer sur Options & Restaurer Fichiers ou dossiers, Sélectionner un élément >> "Restaurer"

¤¤¤¤¤¤¤¤¤¤ | Mises à jour Windows

Aucune mise à jour détectée !!! 

¤¤¤¤¤¤¤¤¤¤ | Navigateurs

IE : 11.0.9600.17344     (© Microsoft Corporation. Tous droits réservés.)
FF : 33.0.3.5422     (©Firefox and Mozilla Developers; available under the MPL 2 license.)
GC : 38.0.2125.111     (Copyright 2012 Google Inc. All rights reserved.)
OP : 25.0.1614.68     (Copyright © Opera Software 2014)

¤¤¤¤¤¤¤¤¤¤ | Security (atcav : 0)

FW : 
WMI : OK
WU: Windows Update Service [Auto(2)] = Arrêté
AS: Windows Defender [Auto(2)] = Arrêté
FW: Windows FireWall Service [Auto(2)] = Arrêté

¤¤¤¤¤¤¤¤¤¤ | FlashPlayer

ActiveX : 15.0.0.167
Plugin : 15.0.0.189

¤¤¤¤¤¤¤¤¤¤ | Processus tués

352 | [Owner : Système |Parent : 588] - (.Logitech Inc. - Logitech User mode UMVPF service.) - (13.31.1044.0) = C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
1380 | [Owner : Système |Parent : 588] - (.Microsoft Corporation - Application sous-système spouleur.) - (6.1.7601.17777) = C:\Windows\System32\spoolsv.exe
1532 | [Owner : Système |Parent : 588] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - (1.701.8.51) = C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
1600 | [Owner : Système |Parent : 588] - (.hMailServer - hMailServer.) - (1.0.0.1) = C:\Program Files (x86)\hMailServer\Bin\hMailServer.exe
1624 | [Owner : Système |Parent : 588] - (. - .) - (0.0.0.0) = C:\Program Files (x86)\hMailServer\MySQL\Bin\mysqld-nt.exe
2440 | [Owner : Armis |Parent : 588] - (.Microsoft Corporation - Processus hôte pour Tâches Windows.) - (6.1.7601.18010) = C:\Windows\System32\taskhost.exe
2520 | [Owner : Armis |Parent : 2472] - (.Microsoft Corporation - Explorateur Windows.) - (6.1.7601.17567) = C:\Windows\explorer.exe
2404 | [Owner : Système |Parent : 588] - (.Microsoft Corporation - Indexeur Microsoft Windows Search.) - (7.0.7601.17610) = C:\Windows\System32\SearchIndexer.exe
2844 | [Owner : Armis |Parent : 2520] - (.Intel Corporation - igfxTray Module.) - (7.14.10.1892) = C:\Windows\System32\igfxtray.exe
2780 | [Owner : Armis |Parent : 2520] - (.Intel Corporation - hkcmd Module.) - (7.14.10.1892) = C:\Windows\System32\hkcmd.exe
2864 | [Owner : Armis |Parent : 2520] - (.Intel Corporation - persistence Module.) - (7.14.10.1892) = C:\Windows\System32\igfxpers.exe
2868 | [Owner : Armis |Parent : 708] - (.Intel Corporation - igfxsrvc Module.) - (7.14.10.1892) = C:\Windows\System32\igfxsrvc.exe
2984 | [Owner : Armis |Parent : 2520] - (.Microsoft Corporation - Gadgets du Bureau Windows.) - (6.1.7601.17514) = C:\Program Files\Windows Sidebar\sidebar.exe
3092 | [Owner : Armis |Parent : 1108] - (.Oracle Corporation - Java Update Scheduler.) - (2.8.25.18) = C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
3244 | [Owner : SERVICE RÉSEAU |Parent : 588] - (.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) - (12.0.7601.17514) = C:\Program Files\Windows Media Player\wmpnetwk.exe
1964 | [Owner : Armis |Parent : 708] - (.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) - (6.1.7600.16385) = C:\Windows\System32\wbem\unsecapp.exe
180 | [Owner : Système |Parent : 588] - (.Intel Corporation - IAStorDataSvc.) - (9.6.0.1014) = C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
1392 | [Owner : Armis |Parent : 2520] - (.Mozilla Corporation - Firefox.) - (33.0.3.5422) = C:\Program Files (x86)\Mozilla Firefox\firefox.exe
3164 | [Owner : Armis |Parent : 1392] - (.Mozilla Corporation - Plugin Container for Firefox.) - (33.0.3.5422) = C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
3360 | [Owner : Armis |Parent : 3164] - (.Adobe Systems, Inc. - Adobe Flash Player 15.0 r0.) - (15.0.0.189) = C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_15_0_0_189.exe
3208 | [Owner : Armis |Parent : 3360] - (.Adobe Systems, Inc. - Adobe Flash Player 15.0 r0.) - (15.0.0.189) = C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_15_0_0_189.exe
804 | [Owner : Armis |Parent : 1392] - (. - .) - (10.0.4.0) = C:\Users\Armis\Downloads\RogueKillerX64.exe
4176 | [Owner : Armis |Parent : 1440] - (.Microsoft Corporation - Bloc-notes.) - (6.1.7600.16385) = C:\Windows\SysWOW64\notepad.exe
4240 | [Owner : Armis |Parent : 2520] - (.Mozilla Corporation - Thunderbird.) - (24.6.0.5274) = C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
2208 | [Owner : Armis |Parent : 2520] - (.Google Inc. - Google Chrome.) - (38.0.2125.111) = C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
5728 | [Owner : Armis |Parent : 2208] - (.Google Inc. - Google Chrome.) - (38.0.2125.111) = C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
3564 | [Owner : Armis |Parent : 2208] - (.Google Inc. - Google Chrome.) - (38.0.2125.111) = C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
5052 | [Owner : Armis |Parent : 2208] - (.Google Inc. - Google Chrome.) - (38.0.2125.111) = C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
180 | [Owner : Système |Parent : 588] - (.Intel Corporation - IAStorDataSvc.) - (9.6.0.1014) = C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
1392 | [Owner : Armis |Parent : 2520] - (.Mozilla Corporation - Firefox.) - (33.0.3.5422) = C:\Program Files (x86)\Mozilla Firefox\firefox.exe
3164 | [Owner : Armis |Parent : 1392] - (.Mozilla Corporation - Plugin Container for Firefox.) - (33.0.3.5422) = C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
3360 | [Owner : Armis |Parent : 3164] - (.Adobe Systems, Inc. - Adobe Flash Player 15.0 r0.) - (15.0.0.189) = C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_15_0_0_189.exe
3208 | [Owner : Armis |Parent : 3360] - (.Adobe Systems, Inc. - Adobe Flash Player 15.0 r0.) - (15.0.0.189) = C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_15_0_0_189.exe
804 | [Owner : Armis |Parent : 1392] - (. - .) - (10.0.4.0) = C:\Users\Armis\Downloads\RogueKillerX64.exe
4176 | [Owner : Armis |Parent : 1440] - (.Microsoft Corporation - Bloc-notes.) - (6.1.7600.16385) = C:\Windows\SysWOW64\notepad.exe

¤¤¤¤¤¤¤¤¤¤ | Tasks



¤¤¤¤¤¤¤¤¤¤ | Services


¤¤¤¤¤¤¤¤¤¤ | AppCertDlls | AppInit_DLLs


¤¤¤¤¤¤¤¤¤¤ | Hosts

Hosts : Ok

¤¤¤¤¤¤¤¤¤¤ | SafeBoot


¤¤¤¤¤¤¤¤¤¤ | Winsock


¤¤¤¤¤¤¤¤¤¤ | Registre


¤¤¤¤¤¤¤¤¤¤ | Dossiers | Fichiers


¤¤¤¤¤¤¤¤¤¤ | .LNK


¤¤¤¤¤¤¤¤¤¤ | Ouverture extension inconnue


¤¤¤¤¤¤¤¤¤¤ | Proxy


¤¤¤¤¤¤¤¤¤¤ | Internet Explorer


¤¤¤¤¤¤¤¤¤¤ | Google Chrome

Supprimé avec succès : C:\Users\Armis\AppData\Local\Google\Chrome\User Data\Default\Web Data     (.-.)     Remis a zéro avec succès : SearchURL
Supprimé avec succès : C:\Users\Armis\AppData\Local\Google\Chrome\User Data\Default\Preferences     (.-.)     Remise à zéro impossible : Preferences 
Supprimé avec succès : C:\Users\Perlin\AppData\Local\Google\Chrome\User Data\Default\Web Data     (.-.)     Remis a zéro avec succès : SearchURL
Supprimé avec succès : C:\Users\Perlin\AppData\Local\Google\Chrome\User Data\Default\Preferences     (.-.)     Remise à zéro impossible : Preferences 
Supprimé avec succès : C:\Users\Armis\AppData\Local\Google\Chrome\User Data\Default\extensions\fhidhffpdlhleocklmjbncdngoobjdli = newtab: newtab.html
Supprimé avec succès : C:\Users\Perlin\AppData\Local\Google\Chrome\User Data\Default\extensions\fhidhffpdlhleocklmjbncdngoobjdli = newtab: newtab.html

C:\Users\Armis\AppData\Local\Google\Chrome\User Data\Default\extensions\aapocclcgogkmnckokdopfmhonfmgoek =  : Google & co - Google & co - https://clients2.google.com/service/update2/crx
C:\Users\Armis\AppData\Local\Google\Chrome\User Data\Default\extensions\aohghmighlieiainnegkcijnfilokake =  : Google & co - Google & co - https://clients2.google.com/service/update2/crx
C:\Users\Armis\AppData\Local\Google\Chrome\User Data\Default\extensions\apdfllckaahabafndbhieahigkjlhalf =  : Google & co - https://drive.google.com/?usp=chrome_app - Google & co - [http://docs.google.com/http://drive.google.com/https://docs.google.com/https://drive.google.com/] - http://clients2.google.com/service/update2/crx
C:\Users\Armis\AppData\Local\Google\Chrome\User Data\Default\extensions\bepbmhgboaologfdajaanbcjmnhjmhfn =  :     This extension allows you to say ‘Ok Google’ and start speaking your search. -     Google Voice Search Hotword (Beta) - https://clients2.google.com/service/update2/crx
C:\Users\Armis\AppData\Local\Google\Chrome\User Data\Default\extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo =  : Google & co - http://www.youtube.com - http://www.youtube.com/?feature=ytca - Google & co - http://clients2.google.com/service/update2/crx
C:\Users\Armis\AppData\Local\Google\Chrome\User Data\Default\extensions\coobgpohoikkiipiblmjeljniedjpjpf =  : Google & co - http://www.google.com/webhp?source=search_app - Google & co - [*://www.google.com/search*://www.google.com/webhp*://www.google.com/imgres] - http://clients2.google.com/service/update2/crx
C:\Users\Armis\AppData\Local\Google\Chrome\User Data\Default\extensions\felcaaldnbdncclmgdcncolpebgiejap =  : Google & co - Google & co - https://clients2.google.com/service/update2/crx
C:\Users\Armis\AppData\Local\Google\Chrome\User Data\Default\extensions\gomekmidlodglbbmalcneegieacbdmki =  :     Avast Browser Security and Web Reputation Plugin. -     Avast Online Security - https://clients2.google.com/service/update2/crx
C:\Users\Armis\AppData\Local\Google\Chrome\User Data\Default\extensions\nmmhkkegccagdldgiimedpiccmgmieda =  : Google & co - Google & co - 203784468217.apps.googleusercontent.com - https://clients2.google.com/service/update2/crx
C:\Users\Armis\AppData\Local\Google\Chrome\User Data\Default\extensions\pjkljhegncpnkpknbcohdijeoejaedia =  : Google & co - https://mail.google.com/mail/ca - Google & co - [*://mail.google.com/mail/ca] - http://clients2.google.com/service/update2/crx
C:\Users\Perlin\AppData\Local\Google\Chrome\User Data\Default\extensions\aapocclcgogkmnckokdopfmhonfmgoek =  : Google & co - Google & co - https://clients2.google.com/service/update2/crx
C:\Users\Perlin\AppData\Local\Google\Chrome\User Data\Default\extensions\aohghmighlieiainnegkcijnfilokake =  : Google & co - Google & co - https://clients2.google.com/service/update2/crx
C:\Users\Perlin\AppData\Local\Google\Chrome\User Data\Default\extensions\apdfllckaahabafndbhieahigkjlhalf =  : Google & co - https://drive.google.com/?usp=chrome_app - Google & co - [http://docs.google.com/http://drive.google.com/https://docs.google.com/https://drive.google.com/] - http://clients2.google.com/service/update2/crx
C:\Users\Perlin\AppData\Local\Google\Chrome\User Data\Default\extensions\bepbmhgboaologfdajaanbcjmnhjmhfn =  :     This extension allows you to say ‘Ok Google’ and start speaking your search. -     Google Voice Search Hotword (Beta) - https://clients2.google.com/service/update2/crx
C:\Users\Perlin\AppData\Local\Google\Chrome\User Data\Default\extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo =  : Google & co - http://www.youtube.com - http://www.youtube.com/?feature=ytca - Google & co - http://clients2.google.com/service/update2/crx
C:\Users\Perlin\AppData\Local\Google\Chrome\User Data\Default\extensions\coobgpohoikkiipiblmjeljniedjpjpf =  : Google & co - http://www.google.com/webhp?source=search_app - Google & co - [*://www.google.com/search*://www.google.com/webhp*://www.google.com/imgres] - http://clients2.google.com/service/update2/crx
C:\Users\Perlin\AppData\Local\Google\Chrome\User Data\Default\extensions\felcaaldnbdncclmgdcncolpebgiejap =  : Google & co - Google & co - https://clients2.google.com/service/update2/crx
C:\Users\Perlin\AppData\Local\Google\Chrome\User Data\Default\extensions\gomekmidlodglbbmalcneegieacbdmki =  :     Avast Browser Security and Web Reputation Plugin. -     Avast Online Security - https://clients2.google.com/service/update2/crx
C:\Users\Perlin\AppData\Local\Google\Chrome\User Data\Default\extensions\nmmhkkegccagdldgiimedpiccmgmieda =  : Google & co - Google & co - 203784468217.apps.googleusercontent.com - https://clients2.google.com/service/update2/crx
C:\Users\Perlin\AppData\Local\Google\Chrome\User Data\Default\extensions\pjkljhegncpnkpknbcohdijeoejaedia =  : Google & co - https://mail.google.com/mail/ca - Google & co - [*://mail.google.com/mail/ca] - http://clients2.google.com/service/update2/crx

¤¤¤¤¤¤¤¤¤¤ | Chromium



¤¤¤¤¤¤¤¤¤¤ | Comodo Dragon



¤¤¤¤¤¤¤¤¤¤ | Firefox

[Perlin | kjenkatv.default-1412912316029] Remplacé : user_pref("browser.startup.homepage", "https://wantete.net"); -> user_pref("browser.startup.homepage", "https://www.google.com");

C:\Users\Perlin\AppData\Roaming\Mozilla\Firefox\Profiles\kjenkatv.default-1412912316029\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} =  : 		WOT -  : http://www.mywot.com/
C:\Users\Perlin\AppData\Roaming\Mozilla\Firefox\Profiles\kjenkatv.default-1412912316029\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} =  :     DownloadHelper -  :     http://www.downloadhelper.net

¤¤¤¤¤¤¤¤¤¤ | SeaMonkey



¤¤¤¤¤¤¤¤¤¤ | Pale moon



¤¤¤¤¤¤¤¤¤¤ | Opera



¤¤¤¤¤¤¤¤¤¤ | Spark



¤¤¤¤¤¤¤¤¤¤ | StartMenuInternet


¤¤¤¤¤¤¤¤¤¤ | Javascript


¤¤¤¤¤¤¤¤¤¤ | Firewall


¤¤¤¤¤¤¤¤¤¤ | Fichiers temporaires

[All Users] Fichiers temporaires Supprimés : 0 Ko
[Armis] Fichiers temporaires Supprimés : 3375 Ko
[Default] Fichiers temporaires Supprimés : 0 Ko
[Default User] Fichiers temporaires Supprimés : 0 Ko
[Perlin] Fichiers temporaires Supprimés : 3735 Ko
[Public] Fichiers temporaires Supprimés : 0 Ko
[C:\Windows\Temp] Fichiers temporaires Supprimés : 0 Ko
[C:\Temp] Fichiers temporaires Supprimés : 0 Ko


Autre rapport

C:\AdsFix_06_11_2014_22_37_32.txt[30767 o]

¤¤¤¤¤¤¤¤¤¤ | Listing 


¤¤¤¤¤¤¤¤¤¤ | C:\Program Files (x86)

[03/01/2014 22:50:20] - |D| - C:\Program Files (x86)\Adobe
[03/01/2014 21:08:29] - |D| - C:\Program Files (x86)\Atheros
[28/03/2014 11:41:11] - |D| - C:\Program Files (x86)\BulletProof FTP Server 2011
[12/05/2014 00:17:03] - |D| - C:\Program Files (x86)\Canon
[03/01/2014 21:02:41] - |D| - C:\Program Files (x86)\Cisco
[26/01/2014 11:13:21] - |D| - C:\Program Files (x86)\Cisco Packet Tracer 5.3.3
[14/07/2009 04:20:08] - |D| - C:\Program Files (x86)\Common Files
[14/07/2009 05:54:24] - |ASH| - C:\Program Files (x86)\desktop.ini
[11/05/2014 23:54:49] - |D| - C:\Program Files (x86)\EPSON
[01/05/2014 06:34:57] - |D| - C:\Program Files (x86)\FileZilla FTP Client
[03/01/2014 22:18:57] - |D| - C:\Program Files (x86)\Google
[16/04/2014 06:13:52] - |D| - C:\Program Files (x86)\haxe
[14/01/2014 20:00:05] - |D| - C:\Program Files (x86)\hMailServer
[03/01/2014 21:08:22] - |HD| - C:\Program Files (x86)\InstallShield Installation Information
[03/01/2014 20:25:49] - |D| - C:\Program Files (x86)\Intel
[14/07/2009 04:20:08] - |D| - C:\Program Files (x86)\Internet Explorer
[17/10/2014 06:59:40] - |D| - C:\Program Files (x86)\Java
[05/11/2014 23:55:31] - |D| - C:\Program Files (x86)\LuckyTab
[05/09/2014 07:05:35] - |D| - C:\Program Files (x86)\Microsoft Analysis Services
[20/03/2014 06:56:14] - |D| - C:\Program Files (x86)\Microsoft Office
[14/01/2014 22:42:18] - |D| - C:\Program Files (x86)\Microsoft Silverlight
[05/09/2014 07:09:17] - |D| - C:\Program Files (x86)\Microsoft SQL Server
[04/01/2014 21:27:54] - |D| - C:\Program Files (x86)\Microsoft.NET
[16/04/2014 06:10:50] - |D| - C:\Program Files (x86)\Motion-Twin
[07/11/2014 10:40:35] - |D| - C:\Program Files (x86)\Mozilla Firefox
[06/02/2014 14:56:29] - |D| - C:\Program Files (x86)\Mozilla Maintenance Service
[12/06/2014 06:39:18] - |D| - C:\Program Files (x86)\Mozilla Thunderbird
[14/07/2009 06:32:38] - |D| - C:\Program Files (x86)\MSBuild
[20/03/2014 06:54:39] - |D| - C:\Program Files (x86)\MSECache
[16/04/2014 06:14:40] - |D| - C:\Program Files (x86)\neko
[04/01/2014 00:09:13] - |D| - C:\Program Files (x86)\Notepad++
[04/01/2014 12:56:16] - |D| - C:\Program Files (x86)\OpenOffice 4
[06/02/2014 15:02:06] - |D| - C:\Program Files (x86)\Opera
[04/01/2014 22:40:00] - |D| - C:\Program Files (x86)\PhotoFiltre
[06/11/2014 10:30:00] - |D| - C:\Program Files (x86)\PhotoFiltre 7
[03/01/2014 21:20:04] - |D| - C:\Program Files (x86)\Realtek
[14/07/2009 06:32:38] - |D| - C:\Program Files (x86)\Reference Assemblies
[27/03/2014 19:23:39] - |D| - C:\Program Files (x86)\rinjanisoft
[05/09/2014 16:43:35] - |D| - C:\Program Files (x86)\SEO Soft
[03/10/2014 14:57:39] - |D| - C:\Program Files (x86)\SitemapX
[02/11/2014 21:52:01] - |RD| - C:\Program Files (x86)\Skype
[20/09/2014 12:09:26] - |D| - C:\Program Files (x86)\TeamViewer
[14/07/2009 05:57:06] - |HD| - C:\Program Files (x86)\Uninstall Information
[14/06/2014 18:39:47] - |D| - C:\Program Files (x86)\VideoLAN
[14/07/2009 06:32:38] - |D| - C:\Program Files (x86)\Windows Defender
[14/07/2009 04:20:08] - |D| - C:\Program Files (x86)\Windows Mail
[14/07/2009 06:32:38] - |D| - C:\Program Files (x86)\Windows Media Player
[14/07/2009 04:20:08] - |D| - C:\Program Files (x86)\Windows NT
[14/07/2009 06:32:38] - |D| - C:\Program Files (x86)\Windows Photo Viewer
[14/07/2009 06:32:38] - |D| - C:\Program Files (x86)\Windows Portable Devices
[14/07/2009 06:32:38] - |D| - C:\Program Files (x86)\Windows Sidebar
[23/10/2014 17:52:30] - |D| - C:\Program Files (x86)\WinRAR
[18/02/2014 18:56:07] - |D| - C:\Program Files (x86)\xchat
[06/11/2014 09:40:47] - |D| - C:\Program Files (x86)\ZHPDiag

¤¤¤¤¤¤¤¤¤¤ | C:\Program Files

[15/03/2014 13:31:54] - |D| - C:\Program Files\Adblock Plus for IE
[03/01/2014 20:56:48] - |D| - C:\Program Files\AVAST Software
[03/01/2014 21:01:44] - |D| - C:\Program Files\Broadcom
[12/05/2014 00:16:53] - |D| - C:\Program Files\Canon
[04/11/2014 17:59:25] - |D| - C:\Program Files\CCleaner
[14/07/2009 04:20:08] - |D| - C:\Program Files\Common Files
[03/01/2014 21:31:07] - |D| - C:\Program Files\CONEXANT
[14/07/2009 05:54:24] - |ASH| - C:\Program Files\desktop.ini
[14/07/2009 06:32:38] - |D| - C:\Program Files\DVD Maker
[03/01/2014 19:13:42] - |SHD| - C:\Program Files\Fichiers communs
[14/07/2009 04:20:08] - |D| - C:\Program Files\Internet Explorer
[19/03/2014 13:55:26] - |D| - C:\Program Files\Java
[14/07/2009 06:32:38] - |D| - C:\Program Files\Microsoft Games
[05/09/2014 07:00:14] - |D| - C:\Program Files\Microsoft Office
[14/01/2014 22:42:20] - |D| - C:\Program Files\Microsoft Silverlight
[14/07/2009 06:32:38] - |D| - C:\Program Files\MSBuild
[14/07/2009 06:32:38] - |D| - C:\Program Files\Reference Assemblies
[03/01/2014 21:17:51] - |D| - C:\Program Files\Synaptics
[14/07/2009 06:09:26] - |HD| - C:\Program Files\Uninstall Information
[14/07/2009 06:32:38] - |D| - C:\Program Files\Windows Defender
[14/07/2009 16:35:26] - |D| - C:\Program Files\Windows Journal
[14/07/2009 04:20:08] - |D| - C:\Program Files\Windows Mail
[14/07/2009 06:32:38] - |D| - C:\Program Files\Windows Media Player
[14/07/2009 04:20:08] - |D| - C:\Program Files\Windows NT
[14/07/2009 06:32:38] - |D| - C:\Program Files\Windows Photo Viewer
[14/07/2009 06:32:38] - |D| - C:\Program Files\Windows Portable Devices
[14/07/2009 06:32:38] - |D| - C:\Program Files\Windows Sidebar
[03/01/2014 20:55:52] - |D| - C:\Program Files\WinRAR

¤¤¤¤¤¤¤¤¤¤ | C:\Program Files (x86)\Common Files

[03/01/2014 22:50:20] - |D| - C:\Program Files (x86)\Common Files\Adobe
[03/01/2014 22:57:07] - |D| - C:\Program Files (x86)\Common Files\Adobe AIR
[05/09/2014 07:12:50] - |D| - C:\Program Files (x86)\Common Files\DESIGNER
[11/05/2014 23:53:39] - |D| - C:\Program Files (x86)\Common Files\InstallShield
[04/11/2014 19:45:10] - |D| - C:\Program Files (x86)\Common Files\Java
[04/01/2014 18:28:50] - |D| - C:\Program Files (x86)\Common Files\logishrd
[14/07/2009 04:20:08] - |D| - C:\Program Files (x86)\Common Files\microsoft shared
[04/11/2014 17:18:51] - |D| - C:\Program Files (x86)\Common Files\PC SOFT
[04/04/2014 08:11:24] - |D| - C:\Program Files (x86)\Common Files\PDF Architect
[14/07/2009 04:20:08] - |D| - C:\Program Files (x86)\Common Files\Services
[02/11/2014 21:52:03] - |D| - C:\Program Files (x86)\Common Files\Skype
[14/07/2009 04:20:08] - |D| - C:\Program Files (x86)\Common Files\SpeechEngines
[14/07/2009 04:20:08] - |D| - C:\Program Files (x86)\Common Files\System

¤¤¤¤¤¤¤¤¤¤ | C:\Program Files\Common Files

[04/01/2014 18:28:48] - |D| - C:\Program Files\Common Files\logishrd
[14/07/2009 04:20:08] - |D| - C:\Program Files\Common Files\Microsoft Shared
[14/07/2009 04:20:08] - |D| - C:\Program Files\Common Files\Services
[14/07/2009 04:20:08] - |D| - C:\Program Files\Common Files\SpeechEngines
[14/07/2009 04:20:08] - |D| - C:\Program Files\Common Files\System

¤¤¤¤¤¤¤¤¤¤ | C:\Users\Armis\AppData\Roaming

[06/11/2014 09:23:46] - |D| - C:\Users\Armis\AppData\Roaming\Adobe
[06/11/2014 11:38:06] - |D| - C:\Users\Armis\AppData\Roaming\AVAST Software
[06/11/2014 11:48:38] - |D| - C:\Users\Armis\AppData\Roaming\Dropbox
[06/11/2014 09:23:21] - |D| - C:\Users\Armis\AppData\Roaming\Identities
[06/11/2014 09:23:08] - |D| - C:\Users\Armis\AppData\Roaming\Macromedia
[06/11/2014 09:23:08] - |D| - C:\Users\Armis\AppData\Roaming\Media Center Programs
[06/11/2014 09:23:08] - |SD| - C:\Users\Armis\AppData\Roaming\Microsoft
[06/11/2014 09:30:37] - |D| - C:\Users\Armis\AppData\Roaming\Mozilla
[06/11/2014 10:30:05] - |D| - C:\Users\Armis\AppData\Roaming\PhotoFiltre 7
[06/11/2014 11:09:22] - |D| - C:\Users\Armis\AppData\Roaming\Thunderbird
[07/11/2014 11:39:37] - |D| - C:\Users\Armis\AppData\Roaming\WinRAR
[06/11/2014 09:40:47] - |D| - C:\Users\Armis\AppData\Roaming\ZHP

¤¤¤¤¤¤¤¤¤¤ | C:\Users\Armis\AppData\Local

[06/11/2014 11:59:47] - |D| - C:\Users\Armis\AppData\Local\Adobe
[06/11/2014 09:23:08] - |SHD| - C:\Users\Armis\AppData\Local\Application Data
[07/11/2014 08:13:09] - |D| - C:\Users\Armis\AppData\Local\CrashDumps
[06/11/2014 09:34:24] - |A| - C:\Users\Armis\AppData\Local\GDIPFONTCACHEV1.DAT
[06/11/2014 09:23:44] - |D| - C:\Users\Armis\AppData\Local\Google
[06/11/2014 09:23:08] - |SHD| - C:\Users\Armis\AppData\Local\Historique
[06/11/2014 11:50:14] - |AH| - C:\Users\Armis\AppData\Local\IconCache.db
[06/11/2014 09:33:54] - |D| - C:\Users\Armis\AppData\Local\Macromedia
[06/11/2014 09:23:08] - |D| - C:\Users\Armis\AppData\Local\Microsoft
[06/11/2014 09:23:08] - |D| - C:\Users\Armis\AppData\Local\Microsoft Help
[06/11/2014 15:33:13] - |DC| - C:\Users\Armis\AppData\Local\MigWiz
[06/11/2014 09:30:37] - |D| - C:\Users\Armis\AppData\Local\Mozilla
[06/11/2014 09:23:08] - |D| - C:\Users\Armis\AppData\Local\temp
[06/11/2014 09:23:08] - |SHD| - C:\Users\Armis\AppData\Local\Temporary Internet Files
[06/11/2014 11:09:22] - |D| - C:\Users\Armis\AppData\Local\Thunderbird
[06/11/2014 09:23:13] - |D| - C:\Users\Armis\AppData\Local\VirtualStore

¤¤¤¤¤¤¤¤¤¤ | C:\ProgramData

[03/01/2014 22:50:02] - |D| - C:\ProgramData\Adobe
[14/07/2009 06:08:56] - |SHD| - C:\ProgramData\Application Data
[03/01/2014 21:07:50] - |D| - C:\ProgramData\Atheros
[03/01/2014 20:55:42] - |D| - C:\ProgramData\AVAST Software
[06/11/2014 01:31:32] - |D| - C:\ProgramData\Avira
[28/03/2014 11:42:17] - |D| - C:\ProgramData\BulletProof Software
[03/01/2014 19:13:42] - |SHD| - C:\ProgramData\Bureau
[12/05/2014 00:17:31] - |HD| - C:\ProgramData\CanonBJ
[14/07/2009 06:08:56] - |SHD| - C:\ProgramData\Desktop
[14/07/2009 06:08:56] - |SHD| - C:\ProgramData\Documents
[03/01/2014 19:13:42] - |SHD| - C:\ProgramData\Favoris
[14/07/2009 06:08:56] - |SHD| - C:\ProgramData\Favorites
[04/03/2014 06:17:01] - |D| - C:\ProgramData\Malwarebytes
[08/11/2014 07:48:34] - |D| - C:\ProgramData\Malwarebytes' Anti-Malware (portable)
[03/01/2014 19:13:42] - |SHD| - C:\ProgramData\Menu Démarrer
[14/07/2009 04:20:08] - |SD| - C:\ProgramData\Microsoft
[01/07/2014 16:47:42] - |D| - C:\ProgramData\Microsoft Help
[03/01/2014 19:13:42] - |SHD| - C:\ProgramData\Modèles
[03/01/2014 20:41:33] - |D| - C:\ProgramData\Mozilla
[02/02/2014 20:00:18] - |D| - C:\ProgramData\Oracle
[15/03/2014 13:31:43] - |D| - C:\ProgramData\Package Cache
[18/03/2014 14:04:49] - |D| - C:\ProgramData\regid.1986-12.com.adobe
[05/09/2014 07:11:08] - |D| - C:\ProgramData\regid.1991-06.com.microsoft
[13/06/2014 19:21:57] - |D| - C:\ProgramData\RogueKiller
[04/01/2014 18:26:08] - |D| - C:\ProgramData\Skype
[14/07/2009 06:08:56] - |SHD| - C:\ProgramData\Start Menu
[02/02/2014 20:00:06] - |D| - C:\ProgramData\Sun
[13/03/2014 15:42:22] - |D| - C:\ProgramData\TEMP
[14/07/2009 06:08:56] - |SHD| - C:\ProgramData\Templates

¤¤¤¤¤¤¤¤¤¤ | C:\Windows\Tasks

[03/01/2014 22:55:04] - |A| - C:\Windows\Tasks\Adobe Flash Player Updater.job
[04/01/2014 21:27:34] - |A| - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[04/01/2014 21:27:38] - |A| - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[14/07/2009 06:08:49] - |AH| - C:\Windows\Tasks\SA.DAT
[14/07/2009 06:08:49] - |A| - C:\Windows\Tasks\SCHEDLGU.TXT

¤¤¤¤¤¤¤¤¤¤ | C:\Windows\System32\Tasks

[14/07/2009 04:20:14] - |D| - C:\Windows\System32\Tasks\Microsoft

[X] : [4535 Ko]

Analysés : 128303 | Modifiés : 1 | Infectés : 6

¤¤¤¤¤¤¤¤¤¤ |EOF| ¤¤¤¤¤¤¤¤¤¤ | 17:44:45 | [26 Ko]