¤¤¤¤¤¤¤¤¤¤ | Shortcut_Module | g3n-h@ckm@n | 24.06.2014.2

¤¤¤¤¤ Vista | 7 | 8 | 8.1 - 32/64 bits ¤¤¤¤¤ - Start 20:39:21 - 24/06/2014

Mis à jour le : 24/06/2014 | 16.10 par g3n-h@ckm@n

Contact : http://www.sosvirus.net
Assistance : http://www.sosvirus.net/forum-virus-securite.html
Feedbacks : http://www.sosvirus.net/feedbacks-t75915.html

Boot: Normal boot

Système : Windows 8.1 (64 bits) Core 

Mémoire RAM = Total (MB) : 4104 | Libre (MB) : 2701
Pagefile = Total (MB) : 8299 | Libre (MB) : 6396
Virtuelle = Total (MB) : 4194 | Libre (MB) : 4017


Registre sauvegardé , pour restaurer : C:\Shortcut_Module\Save\Clean\ERDNT.exe

¤¤¤¤¤¤¤¤¤¤ | Mises à jour Windows

Aucune mise à jour détectée !!! 

¤¤¤¤¤¤¤¤¤¤ | Navigateurs

IE : 11.0.9600.16384     (© Microsoft Corporation. Tous droits réservés.)
GC : 35.0.1916.153     (Copyright 2012 Google Inc. All rights reserved.)

¤¤¤¤¤¤¤¤¤¤ | Security

AV : Windows Defender Enabled
AS : Windows Defender Enabled
AM : Malwarebytes' Anti-Malware   (1.0.0.500)     [2014.04.19.05]
FW : 
WMI : OK
WU: Windows Update Service [Manual(3)] = Arrêté
AS: Windows Defender [Auto(2)] = Arrêté
FW: Windows FireWall Service [Auto(2)] = Arrêté

Mise en veille supprimée !


¤¤¤¤¤¤¤¤¤¤ | FlashPlayer

ActiveX : 12.0.0.38
Plugin : 13.0.0.214

¤¤¤¤¤¤¤¤¤¤ | Processus tués

952 | [Owner : Système |Parent : 744] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 335.23.) - (8.17.13.3523) = C:\Windows\System32\nvvsvc.exe
1000 | [Owner : Système |Parent : 952] - (.NVIDIA Corporation - NVIDIA User Experience Driver Component.) - (8.17.13.3523) = C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
1016 | [Owner : Système |Parent : 952] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 335.23.) - (8.17.13.3523) = C:\Windows\System32\nvvsvc.exe
904 | [Owner : Système |Parent : 744] - (.IDT, Inc. - IDT PC Audio.) - (1.0.6491.0) = C:\Program Files\IDT\WDM\stacsv64.exe
1484 | [Owner : Système |Parent : 744] - (. - GFNEXSrv.) - (2.0.0.7) = C:\Program Files (x86)\TOSHIBA\PasswordUtility\GFNEXSrv.exe
1604 | [Owner : Système |Parent : 744] - (.Microsoft Corporation - Application sous-système spouleur.) - (6.3.9600.16384) = C:\Windows\System32\spoolsv.exe
1788 | [Owner : Système |Parent : 744] - (.Windows (R) Win 7 DDK provider - Windows Setup API.) - (6.2.9200.16384) = C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
1808 | [Owner : Système |Parent : 744] - (.AVerMedia TECHNOLOGIES, Inc. - RECentral hot key remote service.) - (1.0.30.4) = C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRECentral.exe
1852 | [Owner : Système |Parent : 744] - (.Microsoft Corporation - Microsoft Office Click-to-Run.) - (15.0.4623.1001) = C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
1912 | [Owner : SERVICE LOCAL |Parent : 836] - (.Microsoft Corporation - Device Association Framework Provider Host.) - (6.3.9600.16384) = C:\Windows\System32\dasHost.exe
1920 | [Owner : Système |Parent : 744] - (. - dts_apo_service.) - (1.1.27.0) = C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe
1880 | [Owner : Système |Parent : 744] - (.Intel(R) Corporation - Intel(R) Capability Licensing Service Interface.) - (1.28.487.1) = C:\Program Files\Intel\iCLS Client\HeciServer.exe
2160 | [Owner : Système |Parent : 744] - (.McAfee, Inc. - McAfee Process Validation Service.) - (15.1.0.631) = C:\Windows\System32\mfevtps.exe
2260 | [Owner : Système |Parent : 744] - (.NVIDIA Corporation - NVIDIA Network Service.) - (1.0.0.1) = C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
2284 | [Owner : Système |Parent : 744] - (.NVIDIA Corporation - NVIDIA Streamer Service.) - (1.6.85.0) = C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
2440 | [Owner : Système |Parent : 744] - (.TOSHIBA Corporation - TDCSrv Application.) - (1.0.0.7) = C:\Windows\System32\TODDSrv.exe
2532 | [Owner : Système |Parent : 744] - (.Microsoft Corporation - Antimalware Service Executable.) - (4.3.9600.16384) = C:\Program Files\Windows Defender\MsMpEng.exe
2592 | [Owner : Système |Parent : 744] - (.McAfee, Inc. - McAfee Core Firewall Service.) - (15.1.0.631) = C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe
2648 | [Owner : Système |Parent : 744] - (.Toshiba Corporation - TOSHIBA eco Utility Service.) - (2.0.0.17) = C:\Program Files\TOSHIBA\Teco\TecoService.exe
2896 | [Owner : Système |Parent : 2832] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) - (6.3.9600.16384) = C:\Windows\System32\rundll32.exe
2476 | [Owner : Système |Parent : 824] - (.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) - (6.3.9600.16384) = C:\Windows\System32\wbem\unsecapp.exe
2696 | [Owner : SERVICE LOCAL |Parent : 744] - (.Microsoft Corporation - Microsoft Network Realtime Inspection Service.) - (4.3.9600.16384) = C:\Program Files\Windows Defender\NisSrv.exe
3212 | [Owner : Système |Parent : 744] - (.Intel Corporation - Intel(R) ME Service.) - (9.5.10.1628) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
3944 | [Owner : Système |Parent : 744] - (.Intel Corporation - Intel(R) Dynamic Application Loader Host Interface.) - (9.5.12.1682) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
1372 | [Owner : Système |Parent : 744] - (.Intel Corporation - Intel(R) Local Management Service.) - (9.5.10.1628) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
2760 | [Owner : Système |Parent : 744] - (.Microsoft Corporation - Indexeur Microsoft Windows Search.) - (7.0.9600.16384) = C:\Windows\System32\SearchIndexer.exe
2924 | [Owner : SERVICE RÉSEAU |Parent : 744] - (.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) - (12.0.9600.16384) = C:\Program Files\Windows Media Player\wmpnetwk.exe
4084 | [Owner : Système |Parent : 2284] - (.NVIDIA Corporation - NVIDIA Streamer Service.) - (1.6.85.0) = C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
3528 | [Owner : Système |Parent : 4084] - (.Microsoft Corporation - Hôte de la fenêtre de la console.) - (6.3.9600.16384) = C:\Windows\System32\conhost.exe
3736 | [Owner : Near |Parent : 388] - (.Microsoft Corporation - Processus hôte pour Tâches Windows.) - (6.3.9600.16384) = C:\Windows\System32\taskhostex.exe
2604 | [Owner : Near |Parent : 4036] - (.Microsoft Corporation - Explorateur Windows.) - (6.3.9600.16441) = C:\Windows\explorer.exe
1396 | [Owner : Near |Parent : 1908] - (.NVIDIA Corporation - NVIDIA GeForce Experience Backend.) - (10.11.15.0) = C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
4004 | [Owner : Near |Parent : 824] - (.Microsoft Corporation - SkyDrive Sync Engine Host.) - (6.3.9600.16474) = C:\Windows\System32\SkyDrive.exe
4156 | [Owner : Near |Parent : 1000] - (.NVIDIA Corporation - NVIDIA Settings.) - (7.17.13.3523) = C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
4392 | [Owner : Near |Parent : 2604] - (.Intel Corporation - igfxTray Module.) - (8.15.10.3282) = C:\Windows\System32\igfxtray.exe
4412 | [Owner : Near |Parent : 824] - (.Intel Corporation - igfxsrvc Module.) - (8.15.10.3282) = C:\Windows\System32\igfxsrvc.exe
4484 | [Owner : Near |Parent : 2604] - (.Intel Corporation - hkcmd Module.) - (8.15.10.3282) = C:\Windows\System32\hkcmd.exe
4544 | [Owner : Near |Parent : 2604] - (.Intel Corporation - persistence Module.) - (8.15.10.3282) = C:\Windows\System32\igfxpers.exe
4568 | [Owner : Near |Parent : 2604] - (.NVIDIA Corporation - NVIDIA NvTmru Application.) - (8.3.14.1) = C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
4588 | [Owner : Near |Parent : 2604] - (.TOSHIBA Corporation - Resident module of eco Utility.) - (2.0.0.8) = C:\Program Files\TOSHIBA\Teco\TecoResident.exe
4652 | [Owner : Near |Parent : 2604] - (.TOSHIBA Corporation - TOSHIBA Function Key Main Module.) - (2.0.17.64) = C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe
4836 | [Owner : Near |Parent : 4776] - (.Alcor Micro Corp. - Single LUN Icon Utility for VID 058F PID 6366.) - (2.1.0.60) = C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
4884 | [Owner : Near |Parent : 4776] - (.TOSHIBA - readLM.) - (1.0.0.1) = C:\Program Files (x86)\TOSHIBA\PasswordUtility\readLM.exe
4952 | [Owner : Near |Parent : 4776] - (.Oracle Corporation - Java(TM) Update Scheduler.) - (2.1.9.8) = C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
5020 | [Owner : Near |Parent : 4776] - (.Razer Inc. - Razer Synapse.) - (1.17.23.19796) = C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
5104 | [Owner : Near |Parent : 824] - (.Microsoft Corporation - Host Process for Setting Synchronization.) - (6.3.9600.16456) = C:\Windows\System32\SettingSyncHost.exe
4400 | [Owner : Système |Parent : 744] - (.TOSHIBA Corporation - TOSHIBA PC Health Monitor.) - (1.0.0.27) = C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
2228 | [Owner : Near |Parent : 4616] - (.TOSHIBA Corporation - TOSHIBA PC Health Monitor.) - (1.0.1.8) = C:\Program Files\TOSHIBA\TPHM\TPCHWMsg.exe
3540 | [Owner : Système |Parent : 388] - (.Microsoft Corporation - Moteur du Planificateur de tâches.) - (6.3.9600.16384) = C:\Windows\System32\taskeng.exe
2532 | [Owner : Système |Parent : 744] - (.Microsoft Corporation - Antimalware Service Executable.) - (4.3.9600.16384) = C:\Program Files\Windows Defender\MsMpEng.exe
2696 | [Owner : SERVICE LOCAL |Parent : 744] - (.Microsoft Corporation - Microsoft Network Realtime Inspection Service.) - (4.3.9600.16384) = C:\Program Files\Windows Defender\NisSrv.exe
4552 | [Owner : Système |Parent : 744] - (.Microsoft Corporation - Microsoft Office Click-to-Run.) - (15.0.4623.1001) = C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
3576 | [Owner : SERVICE LOCAL |Parent : 836] - (.Microsoft Corporation - Device Association Framework Provider Host.) - (6.3.9600.16384) = C:\Windows\System32\dasHost.exe
4896 | [Owner : Système |Parent : 744] - (.Intel(R) Corporation - Intel(R) Capability Licensing Service Interface.) - (1.28.487.1) = C:\Program Files\Intel\iCLS Client\HeciServer.exe
5864 | [Owner : SERVICE LOCAL |Parent : 836] - (.Microsoft Corporation - Device Association Framework Provider Host.) - (6.3.9600.16384) = C:\Windows\System32\dasHost.exe

¤¤¤¤¤¤¤¤¤¤ | Processus démarrés

336 | [Owner : Système |Parent : 4] - (.Microsoft Corporation - Gestionnaire de sessions Windows.) - (6.3.9600.16384) = C:\Windows\System32\smss.exe
544 | [Owner : Système |Parent : 452] - (.Microsoft Corporation - Processus d’exécution client-serveur.) - (6.3.9600.16384) = C:\Windows\System32\csrss.exe
620 | [Owner : Système |Parent : 452] - (.Microsoft Corporation - Application de démarrage de Windows.) - (6.3.9600.16384) = C:\Windows\System32\wininit.exe
636 | [Owner : Système |Parent : 628] - (.Microsoft Corporation - Processus d’exécution client-serveur.) - (6.3.9600.16384) = C:\Windows\System32\csrss.exe
680 | [Owner : Système |Parent : 628] - (.Microsoft Corporation - Application d’ouverture de session Windows.) - (6.3.9600.16384) = C:\Windows\System32\winlogon.exe
744 | [Owner : Système |Parent : 620] - (.Microsoft Corporation - Applications Services et Contrôleur.) - (6.3.9600.16384) = C:\Windows\System32\services.exe
752 | [Owner : Système |Parent : 620] - (.Microsoft Corporation - Local Security Authority Process.) - (6.3.9600.16384) = C:\Windows\System32\lsass.exe
824 | [Owner : Système |Parent : 744] - (.Microsoft Corporation - Processus hôte pour les services Windows.) - (6.3.9600.16384) = C:\Windows\System32\svchost.exe
864 | [Owner : SERVICE RÉSEAU |Parent : 744] - (.Microsoft Corporation - Processus hôte pour les services Windows.) - (6.3.9600.16384) = C:\Windows\System32\svchost.exe
1008 | [Owner : DWM-1 |Parent : 680] - (.Microsoft Corporation - Gestionnaire de fenêtres du Bureau.) - (6.3.9600.16384) = C:\Windows\System32\dwm.exe
324 | [Owner : SERVICE LOCAL |Parent : 744] - (.Microsoft Corporation - Processus hôte pour les services Windows.) - (6.3.9600.16384) = C:\Windows\System32\svchost.exe
388 | [Owner : Système |Parent : 744] - (.Microsoft Corporation - Processus hôte pour les services Windows.) - (6.3.9600.16384) = C:\Windows\System32\svchost.exe
508 | [Owner : SERVICE LOCAL |Parent : 744] - (.Microsoft Corporation - Processus hôte pour les services Windows.) - (6.3.9600.16384) = C:\Windows\System32\svchost.exe
836 | [Owner : Système |Parent : 744] - (.Microsoft Corporation - Processus hôte pour les services Windows.) - (6.3.9600.16384) = C:\Windows\System32\svchost.exe
1232 | [Owner : SERVICE RÉSEAU |Parent : 744] - (.Microsoft Corporation - Processus hôte pour les services Windows.) - (6.3.9600.16384) = C:\Windows\System32\svchost.exe
1680 | [Owner : SERVICE LOCAL |Parent : 744] - (.Microsoft Corporation - Processus hôte pour les services Windows.) - (6.3.9600.16384) = C:\Windows\System32\svchost.exe
2160 | [Owner : Système |Parent : 744] - (.McAfee, Inc. - McAfee Process Validation Service.) - (15.1.0.631) = C:\Windows\System32\mfevtps.exe
2416 | [Owner : SERVICE LOCAL |Parent : 744] - (.Microsoft Corporation - Processus hôte pour les services Windows.) - (6.3.9600.16384) = C:\Windows\System32\svchost.exe
2532 | [Owner : Système |Parent : 744] - (.Microsoft Corporation - Antimalware Service Executable.) - (4.3.9600.16384) = C:\Program Files\Windows Defender\MsMpEng.exe
2796 | [Owner : Système |Parent : 824] - (.Microsoft Corporation - WMI Provider Host.) - (6.3.9600.16384) = C:\Windows\System32\wbem\WmiPrvSE.exe
2696 | [Owner : SERVICE LOCAL |Parent : 744] - (.Microsoft Corporation - Microsoft Network Realtime Inspection Service.) - (4.3.9600.16384) = C:\Program Files\Windows Defender\NisSrv.exe
3108 | [Owner : SERVICE RÉSEAU |Parent : 744] - (.Microsoft Corporation - Processus hôte pour les services Windows.) - (6.3.9600.16384) = C:\Windows\System32\svchost.exe
3156 | [Owner : SERVICE LOCAL |Parent : 744] - (.Microsoft Corporation - Processus hôte pour les services Windows.) - (6.3.9600.16384) = C:\Windows\System32\svchost.exe
3452 | [Owner : SERVICE LOCAL |Parent : 744] - (.Microsoft Corporation - Processus hôte pour les services Windows.) - (6.3.9600.16384) = C:\Windows\System32\svchost.exe
3976 | [Owner : Système |Parent : 824] - (.Microsoft Corporation - COM Surrogate.) - (6.3.9600.16384) = C:\Windows\System32\dllhost.exe
4652 | [Owner : Near |Parent : 2604] - (.TOSHIBA Corporation - TOSHIBA Function Key Main Module.) - (2.0.17.64) = C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe
1688 | [Owner : Near |Parent : 1336] - (. - Shortcut_Module.) - (24.6.2014.2) = C:\Users\Near\Desktop\Shortcut_Module.exe
3272 | [Owner : SERVICE LOCAL |Parent : 324] - (.Microsoft Corporation - Isolation graphique de périphérique audio Windows .) - (6.3.9600.16384) = C:\Windows\System32\audiodg.exe
5312 | [Owner : Système |Parent : 744] - (.Microsoft Corporation - Microsoft Office Click-to-Run.) - (15.0.4623.1001) = C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
2584 | [Owner : Système |Parent : 744] - (.Intel(R) Corporation - Intel(R) Capability Licensing Service Interface.) - (1.28.487.1) = C:\Program Files\Intel\iCLS Client\HeciServer.exe
5380 | [Owner : Near |Parent : 1688] - (. - Shortcut_Module_Protect.) - (1.0.0.0) = C:\Shortcut_Module\Protect_Module.exe

¤¤¤¤¤¤¤¤¤¤ | RUN 

04 - HKLM\Software\Microsoft\Windows\CurrentVersion\Run : [AmIcoSinglun64] "C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe"
04 - HKLM\Software\Microsoft\Windows\CurrentVersion\Run : [1.TPUReg] "C:\Program Files (x86)\TOSHIBA\PasswordUtility\readLM.exe"
04 - HKLM\Software\Microsoft\Windows\CurrentVersion\Run : [TSVU] "c:\Program Files\TOSHIBA\TOSHIBA Smart View Utility\TosSmartViewLauncher.exe"
04 - HKLM\Software\Microsoft\Windows\CurrentVersion\Run : [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
04 - HKLM\Software\Microsoft\Windows\CurrentVersion\Run : [Adobe Creative Cloud] "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
04 - HKLM\Software\Microsoft\Windows\CurrentVersion\Run : [] 
04 - HKLM\Software\Microsoft\Windows\CurrentVersion\Run : [Razer Synapse] "C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe"
04 - HKLM\Software\Microsoft\Windows\CurrentVersion\Run : [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
04 - HKLM\Software\Microsoft\Windows\CurrentVersion\Run : [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
04 - HKLM64\Software\Microsoft\Windows\CurrentVersion\Run : [] 
04 - HKLM64\Software\Microsoft\Windows\CurrentVersion\Run : [IgfxTray] "C:\Windows\system32\igfxtray.exe"
04 - HKLM64\Software\Microsoft\Windows\CurrentVersion\Run : [HotKeysCmds] "C:\Windows\system32\hkcmd.exe"
04 - HKLM64\Software\Microsoft\Windows\CurrentVersion\Run : [Persistence] "C:\Windows\system32\igfxpers.exe"
04 - HKLM64\Software\Microsoft\Windows\CurrentVersion\Run : [Nvtmru] "C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"
04 - HKLM64\Software\Microsoft\Windows\CurrentVersion\Run : [TSSSrv] C:\Program Files (x86)\TOSHIBA\System Setting\TSSSrv.exe
04 - HKLM64\Software\Microsoft\Windows\CurrentVersion\Run : [TecoResident] C:\Program Files\TOSHIBA\Teco\TecoResident.exe
04 - HKLM64\Software\Microsoft\Windows\CurrentVersion\Run : [TosWaitSrv] %ProgramFiles%\TOSHIBA\TPHM\TosWaitSrv.exe
04 - HKLM64\Software\Microsoft\Windows\CurrentVersion\Run : [TCrdMain] C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe
04 - HKLM64\Software\Microsoft\Windows\CurrentVersion\Run : [NvBackend] "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
04 - HKLM64\Software\Microsoft\Windows\CurrentVersion\Run : [ShadowPlay] C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
04 - HKLM64\Software\Microsoft\Windows\CurrentVersion\Run : [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
04 - HKU\S-1-5-21-1203686058-319420744-1945190844-1002\Software\Microsoft\Windows\CurrentVersion\Run : [Fnac Cloud] C:\Program Files (x86)\Pack Fnac\Fnac Cloud\FnacCloud.exe
04 - HKU\S-1-5-21-1203686058-319420744-1945190844-1002\Software\Microsoft\Windows\CurrentVersion\Run : [Dxtory Update Checker 2.0] C:\Program Files (x86)\Dxtory Software\Dxtory2.0\UpdateChecker.exe
04 - HKU\S-1-5-21-1203686058-319420744-1945190844-1002\Software\Microsoft\Windows\CurrentVersion\Run : [RocketDock] "C:\Program Files (x86)\RocketDock\RocketDock.exe"
04 - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run : [Bitdefender Wallet Agent] "C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe"
04 - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run : [Bitdefender Wallet] "C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe" --hidden --nowizard
04 - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run : [Bitdefender Agent de l'application Wallet] "C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe"

¤¤¤¤¤¤¤¤¤¤ | Argument de recherche

C:\Program Files\003 
C:\ProgramData\374311380 
C:\Users\Near\AppData\Local\Software 

¤¤¤¤¤¤¤¤¤¤ | Services


Service en fonctionnement : WINDEFEND
Service en fonctionnement : MMCSS
Service en fonctionnement : Dhcp
Service en fonctionnement : TcpIp
Service en fonctionnement : WinHttpAutoProxysvc
Service en fonctionnement : SSDPSRV
Service en fonctionnement : MPSSvc
Service stoppé : MPSSvc
Service en fonctionnement : LanmanServer
Service en fonctionnement : DNScache
Service stoppé : DNScache
Service en fonctionnement : WdNisSvc

¤¤¤¤¤¤¤¤¤¤ | Hosts

C:\Windows\System32\Drivers\etc\hosts : Remis a zéro avec succès

¤¤¤¤¤¤¤¤¤¤ | Registre

Supprimé avec succès : HKLM\Software\Classes\SecureAssist.WFPController
Supprimé avec succès : HKLM\Software\Microsoft\Tracing\utilGreenerWeb_RASAPI32
Supprimé avec succès : HKLM\SOFTWARE\sweet-pageSoftware
Supprimé avec succès : HKU\S-1-5-21-1203686058-319420744-1945190844-1002\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3C217ED8-914E-4ED2-9B90-BE381CAE150} : C:\Program Files (x86)\weDownload Manager Pro
Supprimé avec succès : HKU\S-1-5-21-1203686058-319420744-1945190844-1002\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{97B08DE3-2B82-405D-9090-2D8DC29B29} : C:\Program Files (x86)\weDownload Manager Pro
Supprimé avec succès : HKU\S-1-5-21-1203686058-319420744-1945190844-1002\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F75DF1A-9EC0-4F12-A8DC-8DC0E8C6B239} : C:\Program Files (x86)\weDownload Manager Pro
Supprimé avec succès : HKU\S-1-5-21-1203686058-319420744-1945190844-1002\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6BDFBB7D-DA4C-494D-AFE4-FCB0B4744321} : C:\Program Files (x86)\weDownload Manager Pro
Supprimé avec succès : HKU64\S-1-5-21-1203686058-319420744-1945190844-1002\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C90B4BD8-A46E-48A1-BC60-55D3F7914F0} : C:\Program Files (x86)\weDownload Manager Pro
Supprimé avec succès : HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-1203686058-319420744-1945190844-1002\Components\9DDEC1131A9FA2348B0A0AEB73D68A18 : 01:\Software\Smartbar\version
Supprimé avec succès : [HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\Folders]|[C:\Program Files (x86)\Boxore\BoxoreClient\SmartDisplay\Chrome\_locales\nl\]
Supprimé avec succès : [HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\Folders]|[C:\Program Files (x86)\Boxore\BoxoreClient\SmartDisplay\Chrome\_locales\el\]
Supprimé avec succès : [HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\Folders]|[C:\Program Files (x86)\Boxore\BoxoreClient\SmartDisplay\Chrome\_locales\hi\]

¤¤¤¤¤¤¤¤¤¤ | IFEO


¤¤¤¤¤¤¤¤¤¤ | Dossiers | Fichiers

Supprimé avec succès : C:\Users\Near\AppData\Local\Microsoft\Windows\INetCache\Low\SuggestedSites.dat     (.-.)     
Supprimé avec succès : C:\Program Files\003 
Supprimé avec succès : C:\ProgramData\374311380 
Supprimé avec succès : C:\Users\Near\AppData\Local\Software 
Supprimé avec succès : C:\Users\Near\AppData\Local\Microsoft\Windows\INetCache\IE\661UB5B0\;ord=2370557227728831383[1].htm = Advertise
Supprimé avec succès : C:\Users\Near\AppData\Local\Microsoft\Windows\INetCache\IE\661UB5B0\;ord=8937947475094152979[1].htm = Advertise
Supprimé avec succès : C:\Users\Near\AppData\Local\Microsoft\Windows\INetCache\IE\661UB5B0\home[1].htm = heAdA
Supprimé avec succès : C:\Users\Near\AppData\Local\Microsoft\Windows\INetCache\IE\DPN18CMS\AdLoader[1].htm = Advertise
Supprimé avec succès : C:\Users\Near\AppData\Local\Microsoft\Windows\INetCache\IE\SUFK7HOK\;ord=7197772318787378697[1].htm = Advertise
Supprimé avec succès : C:\Users\Near\AppData\Local\Microsoft\Windows\INetCache\IE\Z7OLIR5H\AdLoader[1].htm = Advertise

¤¤¤¤¤¤¤¤¤¤ | Détournements de raccourcis


¤¤¤¤¤¤¤¤¤¤ | Proxy


¤¤¤¤¤¤¤¤¤¤ | Détournement internet Explorer


¤¤¤¤¤¤¤¤¤¤ | Détournement Google Chrome

[Near] Remis a zéro avec succès : SearchURL

[Near] : aohghmighlieiainnegkcijnfilokake =  : Google & co - Google & co
[Near] : apdfllckaahabafndbhieahigkjlhalf =  : Google & co - https://drive.google.com/?usp=chrome_app - Google & co
[Near] : blpcfgokakmgnkcojhhkbfbldkacnbeo =  : Google & co - http://www.youtube.com - http://www.youtube.com/?feature=ytca - Google & co
[Near] : bnbpdhkddbinedbkkemcgammmpledceb =  :     The Legend of Zelda: A Link to the Past (?????? ??????????) is a 2D action-adventure-role video game. - http://super-nintendo-emulator.com/adventures/the-legend-of-zelda -     The Legend of Zelda
[Near] : coobgpohoikkiipiblmjeljniedjpjpf =  : Google & co - http://www.google.com/webhp?source=search_app - Google & co
[Near] : dikpahdalokpgkonbhemlojijmnkbkip =  -     Zelda
[Near] : fjnbnpbmkenffdnngjfgmeleoegfcffe =  :     __MSG_description__ -     Stylish
[Near] : nmmhkkegccagdldgiimedpiccmgmieda =  : Google & co - Google & co
[Near] : pjkljhegncpnkpknbcohdijeoejaedia =  : Google & co - https://mail.google.com/mail/ca - Google & co

¤¤¤¤¤¤¤¤¤¤ | Détournement Firefox



¤¤¤¤¤¤¤¤¤¤ | Opera


¤¤¤¤¤¤¤¤¤¤ | Détournement des clés StartMenuInternet

Réparé : [HKLM\Software\Clients\StartMenuInternet\Google Chrome\shell\open\command] : "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -> "C:\Program Files\Google\Chrome\Application\chrome.exe"

¤¤¤¤¤¤¤¤¤¤ | AppInit_DLLs

[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]|[LoadAppInit_DLLs] : 1
[HKLM64\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]|[LoadAppInit_DLLs] : 1

¤¤¤¤¤¤¤¤¤¤ | Détournement Javascript


¤¤¤¤¤¤¤¤¤¤ | Firewall


¤¤¤¤¤¤¤¤¤¤ | ADS

¤¤¤¤¤¤¤¤¤¤ | Fichiers temporaires

[All Users] Fichiers temporaires Supprimés : 0 Ko
[Default] Fichiers temporaires Supprimés : 0 Ko
[Default User] Fichiers temporaires Supprimés : 0 Ko
[Near] Fichiers temporaires Supprimés : 121 Ko
[Public] Fichiers temporaires Supprimés : 0 Ko
[C:\Windows\Temp] Fichiers temporaires Supprimés : 4 Ko
[C:\Temp] Fichiers temporaires Supprimés : 0 Ko

Service Redémarré : MPSsvc

Autre rapport

C:\Shortcut_Module_02_02_2014_05_02_38.txt[7472 o]
C:\Shortcut_Module_20_04_2014_15_41_14.txt[194749 o]
C:\Shortcut_Module_24_06_2014_15_26_59.txt[112908 o]

Mise en veille restaurée

¤¤¤¤¤¤¤¤¤¤ | Listing 


¤¤¤¤¤¤¤¤¤¤ | C:\Program Files (x86)

[25/01/2014 04:52:03] - |D| - C:\Program Files (x86)\Adobe
[23/02/2014 11:55:17] - |D| - C:\Program Files (x86)\AGEIA Technologies
[25/11/2013 20:25:39] - |D| - C:\Program Files (x86)\AmIcoSingLun
[04/05/2014 13:11:16] - |D| - C:\Program Files (x86)\Apple Software Update
[07/03/2014 11:51:21] - |D| - C:\Program Files (x86)\ArtCursors
[25/11/2013 20:24:13] - |D| - C:\Program Files (x86)\Atheros
[05/01/2014 13:18:32] - |D| - C:\Program Files (x86)\Audacity
[24/05/2014 12:21:38] - |D| - C:\Program Files (x86)\AVerMedia
[04/01/2014 00:40:06] - |D| - C:\Program Files (x86)\AVS4YOU
[25/11/2013 20:24:51] - |D| - C:\Program Files (x86)\Bluetooth Suite
[22/08/2013 06:36:15] - |D| - C:\Program Files (x86)\Common Files
[28/01/2014 13:23:45] - |D| - C:\Program Files (x86)\crocpopup+
[22/08/2013 08:36:33] - |ASH| - C:\Program Files (x86)\desktop.ini
[25/11/2013 20:22:37] - |D| - C:\Program Files (x86)\DTS, Inc
[01/03/2014 12:25:44] - |D| - C:\Program Files (x86)\Dxtory Software
[30/12/2013 16:33:06] - |D| - C:\Program Files (x86)\Fnac
[30/12/2013 05:06:05] - |D| - C:\Program Files (x86)\Google
[16/09/2013 14:19:27] - |HD| - C:\Program Files (x86)\InstallShield Installation Information
[25/11/2013 20:10:25] - |D| - C:\Program Files (x86)\Intel
[22/08/2013 08:36:30] - |D| - C:\Program Files (x86)\Internet Explorer
[30/12/2013 05:11:54] - |D| - C:\Program Files (x86)\Java
[20/04/2014 12:40:39] - |D| - C:\Program Files (x86)\Malwarebytes Anti-Malware
[05/01/2014 13:39:35] - |D| - C:\Program Files (x86)\Malwarebytes' Anti-Malware
[25/11/2013 20:47:12] - |D| - C:\Program Files (x86)\McAfee
[01/03/2014 06:23:26] - |D| - C:\Program Files (x86)\Microsoft
[16/09/2013 14:44:36] - |D| - C:\Program Files (x86)\Microsoft Office
[12/02/2014 00:05:01] - |D| - C:\Program Files (x86)\Microsoft SkyDrive
[22/08/2013 08:36:30] - |D| - C:\Program Files (x86)\Microsoft.NET
[04/01/2014 11:43:06] - |D| - C:\Program Files (x86)\Mirillis
[04/05/2014 13:03:46] - |D| - C:\Program Files (x86)\Movavi Video Converter 14
[31/01/2014 11:45:10] - |D| - C:\Program Files (x86)\Mozilla Firefox
[28/08/2013 08:31:34] - |D| - C:\Program Files (x86)\MSBuild
[19/01/2014 14:43:14] - |D| - C:\Program Files (x86)\MSI Afterburner
[18/05/2014 18:17:15] - |D| - C:\Program Files (x86)\MSXML 4.0
[28/04/2014 19:16:38] - |D| - C:\Program Files (x86)\Mumble
[25/11/2013 20:18:12] - |D| - C:\Program Files (x86)\NVIDIA Corporation
[24/06/2014 07:32:26] - |D| - C:\Program Files (x86)\osu!
[30/12/2013 16:33:16] - |D| - C:\Program Files (x86)\Pack Fnac
[05/01/2014 12:19:42] - |D| - C:\Program Files (x86)\PhotoFiltre Studio X
[01/02/2014 06:51:43] - |D| - C:\Program Files (x86)\Pop up Blocker Pro
[20/04/2014 12:36:40] - |D| - C:\Program Files (x86)\Project64 2.1
[04/05/2014 13:13:35] - |D| - C:\Program Files (x86)\QuickTime
[28/01/2014 10:05:04] - |D| - C:\Program Files (x86)\Razer
[28/08/2013 08:31:34] - |D| - C:\Program Files (x86)\Reference Assemblies
[18/05/2014 14:49:18] - |D| - C:\Program Files (x86)\RocketDock
[27/01/2014 14:18:34] - |D| - C:\Program Files (x86)\Sizer
[01/03/2014 12:45:30] - |RD| - C:\Program Files (x86)\Skype
[30/12/2013 16:34:58] - |D| - C:\Program Files (x86)\SocialSafe
[05/01/2014 12:39:42] - |D| - C:\Program Files (x86)\Sony
[08/06/2014 23:14:58] - |D| - C:\Program Files (x86)\SplitmediaLabs
[16/09/2013 14:58:42] - |D| - C:\Program Files (x86)\Spotify
[05/04/2014 06:04:48] - |D| - C:\Program Files (x86)\Steam
[16/09/2013 14:20:06] - |D| - C:\Program Files (x86)\TOSHIBA
[25/11/2013 20:45:52] - |D| - C:\Program Files (x86)\TOSHIBA Games
[25/11/2013 20:38:05] - |D| - C:\Program Files (x86)\Toshiba TEMPRO
[25/11/2013 20:39:00] - |D| - C:\Program Files (x86)\WildGames
[25/11/2013 20:38:32] - |D| - C:\Program Files (x86)\WildTangent Games
[22/08/2013 08:36:30] - |D| - C:\Program Files (x86)\Windows Defender
[22/08/2013 08:36:30] - |D| - C:\Program Files (x86)\Windows Mail
[22/08/2013 08:36:30] - |D| - C:\Program Files (x86)\Windows Media Player
[22/08/2013 08:36:30] - |D| - C:\Program Files (x86)\Windows Multimedia Platform
[22/08/2013 08:36:30] - |D| - C:\Program Files (x86)\Windows NT
[22/08/2013 08:36:30] - |D| - C:\Program Files (x86)\Windows Photo Viewer
[22/08/2013 08:36:30] - |D| - C:\Program Files (x86)\Windows Portable Devices
[22/08/2013 08:36:30] - |SHD| - C:\Program Files (x86)\Windows Sidebar
[22/08/2013 08:36:30] - |D| - C:\Program Files (x86)\WindowsPowerShell
[02/02/2014 05:21:20] - |D| - C:\Program Files (x86)\ZHPDiag

¤¤¤¤¤¤¤¤¤¤ | C:\Program Files

[25/01/2014 05:23:56] - |D| - C:\Program Files\Adobe
[23/03/2014 08:18:52] - |D| - C:\Program Files\Avidemux 2.5
[30/12/2013 16:48:02] - |D| - C:\Program Files\Bitdefender
[31/01/2014 12:09:55] - |D| - C:\Program Files\CCleaner
[22/08/2013 06:36:15] - |D| - C:\Program Files\Common Files
[22/08/2013 08:36:45] - |ASH| - C:\Program Files\desktop.ini
[18/05/2014 18:17:47] - |D| - C:\Program Files\DIFX
[30/12/2013 04:30:27] - |SHD| - C:\Program Files\Fichiers communs
[08/06/2014 14:15:16] - |D| - C:\Program Files\Handbrake
[25/11/2013 20:22:07] - |D| - C:\Program Files\IDT
[25/11/2013 20:12:16] - |D| - C:\Program Files\Intel
[22/08/2013 08:36:31] - |D| - C:\Program Files\Internet Explorer
[30/12/2013 14:59:57] - |D| - C:\Program Files\Java
[28/02/2014 00:32:09] - |D| - C:\Program Files\MAXON
[11/02/2014 23:59:15] - |D| - C:\Program Files\Microsoft Office 15
[28/08/2013 08:31:33] - |D| - C:\Program Files\MSBuild
[25/11/2013 20:17:33] - |D| - C:\Program Files\NVIDIA Corporation
[07/05/2014 19:25:09] - |D| - C:\Program Files\QuickMediaConverter
[28/08/2013 08:31:33] - |D| - C:\Program Files\Reference Assemblies
[04/06/2014 17:27:53] - |D| - C:\Program Files\Sony
[16/09/2013 14:19:27] - |D| - C:\Program Files\TOSHIBA
[22/08/2013 07:47:10] - |HD| - C:\Program Files\Uninstall Information
[23/03/2014 08:50:37] - |D| - C:\Program Files\VideoLAN
[22/08/2013 08:36:31] - |D| - C:\Program Files\Windows Defender
[22/08/2013 12:11:12] - |D| - C:\Program Files\Windows Journal
[22/08/2013 08:36:31] - |D| - C:\Program Files\Windows Mail
[22/08/2013 08:36:31] - |D| - C:\Program Files\Windows Media Player
[22/08/2013 08:36:31] - |D| - C:\Program Files\Windows Multimedia Platform
[22/08/2013 08:36:31] - |D| - C:\Program Files\Windows NT
[22/08/2013 08:36:31] - |D| - C:\Program Files\Windows Photo Viewer
[22/08/2013 08:36:31] - |D| - C:\Program Files\Windows Portable Devices
[22/08/2013 08:36:31] - |SHD| - C:\Program Files\Windows Sidebar
[22/08/2013 08:36:31] - |HD| - C:\Program Files\WindowsApps
[22/08/2013 08:36:31] - |D| - C:\Program Files\WindowsPowerShell
[01/01/2014 19:18:31] - |D| - C:\Program Files\WinRAR

¤¤¤¤¤¤¤¤¤¤ | C:\Program Files (x86)\Common Files

[25/01/2014 04:52:00] - |D| - C:\Program Files (x86)\Common Files\Adobe
[04/05/2014 13:11:27] - |D| - C:\Program Files (x86)\Common Files\Apple
[25/11/2013 20:24:51] - |D| - C:\Program Files (x86)\Common Files\Atheros
[24/05/2014 12:21:38] - |D| - C:\Program Files (x86)\Common Files\AVerMedia
[04/01/2014 00:40:29] - |D| - C:\Program Files (x86)\Common Files\AVSMedia
[12/02/2014 00:04:24] - |D| - C:\Program Files (x86)\Common Files\DESIGNER
[25/11/2013 20:14:27] - |D| - C:\Program Files (x86)\Common Files\Intel
[30/12/2013 05:13:33] - |D| - C:\Program Files (x86)\Common Files\Java
[25/11/2013 20:47:13] - |D| - C:\Program Files (x86)\Common Files\mcafee
[22/08/2013 08:36:30] - |D| - C:\Program Files (x86)\Common Files\Microsoft Shared
[25/11/2013 20:11:58] - |D| - C:\Program Files (x86)\Common Files\postureAgent
[22/08/2013 08:36:30] - |D| - C:\Program Files (x86)\Common Files\Services
[01/03/2014 12:45:30] - |D| - C:\Program Files (x86)\Common Files\Skype
[05/04/2014 06:04:50] - |D| - C:\Program Files (x86)\Common Files\Steam
[22/08/2013 08:36:30] - |D| - C:\Program Files (x86)\Common Files\System
[25/11/2013 20:36:21] - |D| - C:\Program Files (x86)\Common Files\Toshiba Shared
[01/02/2014 05:38:43] - |D| - C:\Program Files (x86)\Common Files\Wise Installation Wizard

¤¤¤¤¤¤¤¤¤¤ | C:\Program Files\Common Files

[25/01/2014 05:19:31] - |D| - C:\Program Files\Common Files\Adobe
[30/12/2013 16:40:07] - |D| - C:\Program Files\Common Files\Bitdefender
[25/11/2013 20:47:13] - |D| - C:\Program Files\Common Files\mcafee
[22/08/2013 08:36:31] - |D| - C:\Program Files\Common Files\microsoft shared
[25/11/2013 20:24:51] - |D| - C:\Program Files\Common Files\QCA_Bluetooth
[22/08/2013 08:36:31] - |D| - C:\Program Files\Common Files\Services
[22/08/2013 08:36:31] - |D| - C:\Program Files\Common Files\System

¤¤¤¤¤¤¤¤¤¤ | C:\Users\Near\AppData\Roaming

[18/06/2014 20:47:40] - |D| - C:\Users\Near\AppData\Roaming\.bsnes
[23/02/2014 09:05:58] - |D| - C:\Users\Near\AppData\Roaming\.minecraft
[30/12/2013 04:41:17] - |D| - C:\Users\Near\AppData\Roaming\Adobe
[14/04/2014 10:18:08] - |D| - C:\Users\Near\AppData\Roaming\Aedenia_V1
[07/03/2014 11:52:23] - |D| - C:\Users\Near\AppData\Roaming\Aha-soft
[04/05/2014 13:17:50] - |D| - C:\Users\Near\AppData\Roaming\Apple Computer
[14/01/2014 11:51:25] - |D| - C:\Users\Near\AppData\Roaming\Audacity
[23/03/2014 07:41:27] - |D| - C:\Users\Near\AppData\Roaming\avidemux
[04/01/2014 00:41:37] - |D| - C:\Users\Near\AppData\Roaming\AVS4YOU
[07/05/2014 19:26:02] - |D| - C:\Users\Near\AppData\Roaming\Cocoon Software
[30/12/2013 16:35:24] - |D| - C:\Users\Near\AppData\Roaming\com.1minus1.socialsafe.D675411CF670AA3EFAC13BDD847989BEDE2115E2.1
[08/06/2014 15:55:53] - |D| - C:\Users\Near\AppData\Roaming\HandBrake
[30/12/2013 05:05:15] - |D| - C:\Users\Near\AppData\Roaming\Macromedia
[05/01/2014 13:39:41] - |D| - C:\Users\Near\AppData\Roaming\Malwarebytes
[28/02/2014 10:39:35] - |D| - C:\Users\Near\AppData\Roaming\MAXON
[30/12/2013 04:40:39] - |SD| - C:\Users\Near\AppData\Roaming\Microsoft
[15/01/2014 08:08:19] - |D| - C:\Users\Near\AppData\Roaming\Minecraft Skin Viewer
[04/01/2014 11:47:27] - |D| - C:\Users\Near\AppData\Roaming\Mirillis
[28/04/2014 19:17:07] - |D| - C:\Users\Near\AppData\Roaming\Mumble
[05/01/2014 13:23:10] - |D| - C:\Users\Near\AppData\Roaming\NVIDIA
[25/01/2014 05:39:45] - |D| - C:\Users\Near\AppData\Roaming\PDAppFlex
[05/01/2014 12:47:46] - |D| - C:\Users\Near\AppData\Roaming\PhotoFiltre Studio X
[15/05/2014 20:07:24] - |A| - C:\Users\Near\AppData\Roaming\Préférences Adobe BMP Format CC
[25/01/2014 06:44:41] - |A| - C:\Users\Near\AppData\Roaming\Préférences Adobe PNG Format CC
[05/01/2014 13:23:04] - |D| - C:\Users\Near\AppData\Roaming\Publish Providers
[30/12/2013 16:47:52] - |D| - C:\Users\Near\AppData\Roaming\QuickScan
[21/01/2014 13:36:36] - |D| - C:\Users\Near\AppData\Roaming\Skype
[05/01/2014 12:38:40] - |D| - C:\Users\Near\AppData\Roaming\Sony
[28/05/2014 21:35:40] - |D| - C:\Users\Near\AppData\Roaming\Sony Creative Software Inc
[08/06/2014 23:13:27] - |D| - C:\Users\Near\AppData\Roaming\SplitmediaLabs
[02/01/2014 18:25:29] - |D| - C:\Users\Near\AppData\Roaming\TS3Client
[23/03/2014 08:51:21] - |D| - C:\Users\Near\AppData\Roaming\vlc
[30/12/2013 14:31:16] - |D| - C:\Users\Near\AppData\Roaming\WildTangent
[01/01/2014 19:18:55] - |D| - C:\Users\Near\AppData\Roaming\WinRAR
[02/02/2014 05:21:20] - |D| - C:\Users\Near\AppData\Roaming\ZHP

¤¤¤¤¤¤¤¤¤¤ | C:\Users\Near\AppData\Local

[25/01/2014 04:49:51] - |D| - C:\Users\Near\AppData\Local\Adobe
[04/05/2014 13:11:19] - |D| - C:\Users\Near\AppData\Local\Apple
[04/05/2014 13:18:21] - |D| - C:\Users\Near\AppData\Local\Apple Computer
[30/12/2013 04:40:40] - |SHD| - C:\Users\Near\AppData\Local\Application Data
[30/12/2013 05:05:47] - |D| - C:\Users\Near\AppData\Local\Apps
[20/04/2014 16:58:00] - |D| - C:\Users\Near\AppData\Local\CrashDumps
[30/12/2013 05:05:47] - |D| - C:\Users\Near\AppData\Local\Deployment
[01/03/2014 12:25:47] - |D| - C:\Users\Near\AppData\Local\Dxtory Software
[30/12/2013 16:33:21] - |D| - C:\Users\Near\AppData\Local\Fnac
[30/12/2013 05:06:01] - |D| - C:\Users\Near\AppData\Local\Google
[30/12/2013 04:40:40] - |SHD| - C:\Users\Near\AppData\Local\Historique
[27/03/2014 08:38:53] - |AH| - C:\Users\Near\AppData\Local\IconCache.db
[13/03/2014 09:46:21] - |D| - C:\Users\Near\AppData\Local\Intel_Corporation
[30/12/2013 04:40:39] - |D| - C:\Users\Near\AppData\Local\Microsoft
[04/01/2014 11:47:23] - |D| - C:\Users\Near\AppData\Local\Mirillis
[04/05/2014 13:07:33] - |D| - C:\Users\Near\AppData\Local\Movavi
[30/12/2013 17:07:20] - |D| - C:\Users\Near\AppData\Local\NVIDIA
[30/12/2013 17:09:02] - |D| - C:\Users\Near\AppData\Local\NVIDIA Corporation
[30/12/2013 04:41:18] - |D| - C:\Users\Near\AppData\Local\Packages
[30/12/2013 14:32:33] - |D| - C:\Users\Near\AppData\Local\Programs
[28/01/2014 10:05:26] - |D| - C:\Users\Near\AppData\Local\Razer
[28/01/2014 10:06:03] - |D| - C:\Users\Near\AppData\Local\Razer_Inc
[24/05/2014 12:21:39] - |D| - C:\Users\Near\AppData\Local\RECentral
[01/03/2014 12:45:41] - |D| - C:\Users\Near\AppData\Local\Skype
[05/01/2014 12:39:42] - |D| - C:\Users\Near\AppData\Local\Sony
[02/01/2014 18:23:18] - |D| - C:\Users\Near\AppData\Local\TeamSpeak 3 Client
[30/12/2013 04:40:39] - |D| - C:\Users\Near\AppData\Local\Temp
[30/12/2013 04:40:40] - |SHD| - C:\Users\Near\AppData\Local\Temporary Internet Files
[30/12/2013 04:42:26] - |D| - C:\Users\Near\AppData\Local\TOSHIBA
[30/12/2013 04:41:17] - |D| - C:\Users\Near\AppData\Local\VirtualStore
[07/05/2014 19:25:25] - |D| - C:\Users\Near\AppData\Local\WDSetup

¤¤¤¤¤¤¤¤¤¤ | C:\ProgramData

[25/01/2014 04:54:19] - |D| - C:\ProgramData\Adobe
[25/11/2013 20:25:39] - |D| - C:\ProgramData\AmUStor
[04/05/2014 13:11:16] - |D| - C:\ProgramData\Apple
[04/05/2014 13:13:35] - |D| - C:\ProgramData\Apple Computer
[22/08/2013 07:45:52] - |SHD| - C:\ProgramData\Application Data
[01/02/2014 06:38:56] - |D| - C:\ProgramData\AVAST Software
[04/01/2014 00:40:06] - |D| - C:\ProgramData\AVS4YOU
[30/12/2013 16:58:43] - |D| - C:\ProgramData\BDLogging
[30/12/2013 16:48:04] - |D| - C:\ProgramData\Bitdefender
[30/12/2013 04:30:27] - |SHD| - C:\ProgramData\Bureau
[22/08/2013 07:45:52] - |SD| - C:\ProgramData\Desktop
[22/08/2013 07:45:52] - |SHD| - C:\ProgramData\Documents
[14/04/2014 10:52:28] - |D| - C:\ProgramData\Hewlett-Packard
[02/03/2014 11:45:32] - |D| - C:\ProgramData\Insight Software Solutions
[25/11/2013 20:12:17] - |D| - C:\ProgramData\Intel
[05/01/2014 13:39:36] - |D| - C:\ProgramData\Malwarebytes
[25/11/2013 20:47:09] - |D| - C:\ProgramData\McAfee
[30/12/2013 04:30:27] - |SHD| - C:\ProgramData\Menu Démarrer
[22/08/2013 06:36:15] - |SD| - C:\ProgramData\Microsoft
[12/02/2014 00:04:53] - |D| - C:\ProgramData\Microsoft SkyDrive
[30/12/2013 16:47:56] - |A| - C:\ProgramData\Microsoft.SqlServer.Compact.400.64.bc
[04/01/2014 11:47:27] - |D| - C:\ProgramData\Mirillis
[30/12/2013 04:30:27] - |SHD| - C:\ProgramData\Modèles
[04/05/2014 13:03:48] - |D| - C:\ProgramData\Movavi
[02/02/2014 03:47:14] - |RASH| - C:\ProgramData\ntuser.pol
[25/11/2013 20:18:41] - |D| - C:\ProgramData\NVIDIA
[25/11/2013 20:18:14] - |D| - C:\ProgramData\NVIDIA Corporation
[30/12/2013 05:13:39] - |D| - C:\ProgramData\Oracle
[25/11/2013 20:35:58] - |D| - C:\ProgramData\Package Cache
[25/11/2013 20:24:10] - |D| - C:\ProgramData\Qualcomm Atheros
[28/01/2014 10:05:03] - |D| - C:\ProgramData\Razer
[25/01/2014 05:39:35] - |D| - C:\ProgramData\regid.1986-12.com.adobe
[22/08/2013 08:36:30] - |D| - C:\ProgramData\regid.1991-06.com.microsoft
[18/05/2014 12:01:13] - |D| - C:\ProgramData\ShellIcons
[21/01/2014 13:36:27] - |D| - C:\ProgramData\Skype
[05/01/2014 12:38:55] - |D| - C:\ProgramData\Sony
[08/06/2014 23:14:58] - |D| - C:\ProgramData\SplitMediaLabs
[25/11/2013 20:22:37] - |D| - C:\ProgramData\SRS Labs
[22/08/2013 07:45:52] - |SHD| - C:\ProgramData\Start Menu
[30/12/2013 05:13:35] - |D| - C:\ProgramData\Sun
[10/04/2014 18:53:01] - |D| - C:\ProgramData\Synaptics
[30/12/2013 14:38:01] - |AD| - C:\ProgramData\TEMP
[22/08/2013 07:45:52] - |SHD| - C:\ProgramData\Templates
[16/09/2013 14:20:28] - |D| - C:\ProgramData\Toshiba
[30/12/2013 16:52:24] - |D| - C:\ProgramData\ToshibaEurope
[25/11/2013 20:38:32] - |D| - C:\ProgramData\WildTangent

[X] : [21722 Ko]

Eléments analysés : 272580 | Modifiés : 0 | Infectés : 26

¤¤¤¤¤¤¤¤¤¤ |EOF| ¤¤¤¤¤¤¤¤¤¤ | 21:19:27 | [42 Ko]