คคคคคคคคคค | Shortcut_Module | g3n-h@ckm@n | 22.03.2014.2

คคคคค XP | Vista | 7 | 8 - 32/64 bits คคคคค - Start 14:35:46 - 22/03/2014

Mis เ jour le : 22/03/2014 | 15.10 par g3n-h@ckm@n

Contact : http://www.sosvirus.net

Boot : Normal  

Syst่me : Windows 8 (64 bits) Core 

M้moire RAM = Total (MB) : 12513 | Libre (MB) : 9049
Pagefile = Total (MB) : 17756 | Libre (MB) : 14045
Virtuelle = Total (MB) : 4194 | Libre (MB) : 3969


Registre sauvegard้ , pour restaurer : C:\Shortcut_Module\Save\Clean\ERDNT.exe

คคคคคคคคคค | Mises เ jour Windows

Aucune mise เ jour d้tect้e !!! 

คคคคคคคคคค | Navigateurs

IE : 10.0.9200.16537     (ฉ Microsoft Corporation. Tous droits r้serv้s.)
GC : 33.0.1750.154     (Copyright 2012 Google Inc. All rights reserved.)

คคคคคคคคคค | Processus tu้s

876 | C:\Program Files (x86)\HP SimplePass\TrueSuiteService.exe (.HP - HP Service.) - (6.0.100.272) -> "C:\Program Files (x86)\HP SimplePass\TrueSuiteService.exe"
920 | C:\Windows\system32\nvvsvc.exe (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 311.41.) - (8.17.13.1141) -> "C:\Windows\system32\nvvsvc.exe"
336 | C:\Program Files\IDT\WDM\STacSV64.exe (.IDT, Inc. - IDT PC Audio.) - (1.0.6454.0) -> "C:\Program Files\IDT\WDM\STacSV64.exe"
1192 | C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (.NVIDIA Corporation - NVIDIA User Experience Driver Component.) - (8.17.13.1141) -> "C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
1200 | C:\Windows\system32\nvvsvc.exe (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 311.41.) - (8.17.13.1141) -> C:\Windows\system32\nvvsvc.exe -session -first
1296 | C:\Windows\system32\Hpservice.exe (.Hewlett-Packard Company - HpService.) - (6.0.5.1) -> C:\Windows\system32\Hpservice.exe
1376 | C:\Windows\System32\WUDFHost.exe (.Microsoft Corporation - Windows Driver Foundation - Processus h๔te de l’infrastructure de pilotes en mode utilisateur.) - (6.2.9200.16384) -> "C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-7027542e-e4cd-43ca-a935-909c01f5a26c -SystemEventPortName:HostProcess-0ccf4818-f1ae-44e0-84ea-01a7e675c7ec -IoCancelEventPortName:HostProcess-ba301ea1-f2cb-4292-8528-daf183fd400a -NonStateChangingEventPortName:HostProcess-d6ac7b6b-0d36-45ba-982e-ad10f8b06e73 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:83d2b58f-40d2-4572-abb5-719b47de5bb6 -DeviceGroupId:
1800 | C:\Windows\System32\spoolsv.exe (.Microsoft Corporation - Application sous-syst่me spouleur.) - (6.2.9200.16384) -> C:\Windows\System32\spoolsv.exe
2032 | C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe (.IVT Corporation - Bluetooth Application.) - (11.0.736.0) -> "C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe"
1292 | C:\Program Files\Bonjour\mDNSResponder.exe (.Apple Inc. - Bonjour Service.) - (3.0.0.10) -> "C:\Program Files\Bonjour\mDNSResponder.exe"
1436 | C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe (.Hewlett-Packard Development Company, L.P. - HP WMI Service.) - (1.0.2.0) -> "C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe"
1572 | C:\Program Files\Intel\iCLS Client\HeciServer.exe (.Intel(R) Corporation - Intel(R) Capability Licensing Service Interface.) - (1.27.757.1) -> "C:\Program Files\Intel\iCLS Client\HeciServer.exe"
1352 | C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe (. - ISCT Agent Application.) - (4.0.41.2072) -> "C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe" 
2208 | C:\Windows\system32\valWBFPolicyService.exe (. - .) - (0.0.0.0) -> C:\Windows\system32\valWBFPolicyService.exe
2484 | C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe (.IVT Corporation - Bluetooth Application.) - (11.0.736.0) -> "C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe"
3004 | C:\Windows\system32\taskhostex.exe (.Microsoft Corporation - Processus h๔te pour Tโches Windows.) - (6.2.9200.16451) -> taskhostex.exe 
2056 | C:\Windows\Explorer.EXE (.Microsoft Corporation - Explorateur Windows.) - (6.2.9200.16628) -> C:\Windows\Explorer.EXE
3144 | C:\Program Files (x86)\HP SimplePass\TouchControl.exe (.AuthenTec Inc. - TouchControl.) - (6.0.100.272) -> "C:\Program Files (x86)\HP SimplePass\TouchControl.exe"
3280 | C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4406.1205_x64__8wekyb3d8bbwe\LiveComm.exe (.Microsoft Corporation - Communications Service.) - (16.4.4406.1205) -> "C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4406.1205_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server
3420 | C:\Windows\system32\wbem\unsecapp.exe (.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) - (6.2.9200.16384) -> C:\Windows\system32\wbem\unsecapp.exe -Embedding
3540 | C:\Program Files (x86)\HP SimplePass\IEWebSiteLogon.exe (. - IEWebSiteLogon.) - (6.0.100.272) -> "C:\Program Files (x86)\HP SimplePass\IEWebSiteLogon.exe" 
3600 | C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (.NVIDIA Corporation - NVIDIA Settings.) - (7.17.13.1141) -> "C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
3648 | C:\Windows\System32\RuntimeBroker.exe (.Microsoft Corporation - Runtime Broker.) - (6.2.9200.16384) -> C:\Windows\System32\RuntimeBroker.exe -Embedding
3720 | C:\Windows\system32\SearchIndexer.exe (.Microsoft Corporation - Indexeur Microsoft Windows Search.) - (7.0.9200.16433) -> C:\Windows\system32\SearchIndexer.exe /Embedding
4060 | C:\Windows\System32\hkcmd.exe (.Intel Corporation - hkcmd Module.) - (8.15.10.3071) -> "C:\Windows\System32\hkcmd.exe" 
4080 | C:\Windows\System32\igfxpers.exe (.Intel Corporation - persistence Module.) - (8.15.10.3071) -> "C:\Windows\System32\igfxpers.exe" 
3252 | C:\Program Files\IDT\WDM\sttray64.exe (.IDT, Inc. - IDT PC Audio.) - (1.0.6454.0) -> "C:\Program Files\IDT\WDM\sttray64.exe" 
1368 | C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (.Synaptics Incorporated - Synaptics TouchPad Enhancements.) - (16.5.3.3) -> "C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" 
3232 | C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE (.Synaptics Incorporated - Synaptics Pointing Device Helper.) - (16.5.3.3) -> "C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE" 
2968 | C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe (.Intel Corporation - ISCT SysTray.) - (4.0.41.2072) -> "C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe" 
3164 | C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe (.IVT Corporation - Bluetooth Application.) - (11.0.736.0) -> "C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe" 
3304 | C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.exe (.Hewlett-Packard Company - Hp Accelerometer System Tray.) - (6.0.9.1) -> "C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.exe" 
3368 | C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe (.CyberLink Corp. - PowerDVD RC Service.) - (10.0.4313.0) -> "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe" 
3912 | C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe (.Hewlett-Packard Development Company, L.P. - HP Message Service.) - (1.0.4.0) -> "C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe" 
3896 | C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe (.Hewlett-Packard Development Company, L.P. - HP CoolSense.) - (2.1.0.51) -> "C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe" -byrunkey
3472 | C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe (.Hewlett-Packard Company - HP Software Framework WMI Service.) - (4.6.8.1) -> "C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe"
3764 | C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe (.CyberLink - YouCam Mirage.) - (1.0.0.526) -> "C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe" 
3068 | C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe (.CyberLink - CyberLink MediaLibray Service.) - (8.0.0.608) -> "C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe" 
4284 | C:\Program Files\Internet Explorer\iexplore.exe (.Microsoft Corporation - Internet Explorer.) - (10.0.9200.16537) -> "C:\Program Files\Internet Explorer\iexplore.exe" 
4976 | C:\PROGRA~2\CYBERL~1\SHARED~1\RICHVI~1.EXE (. - RichVideo Module.) - (2.0.0.7413) -> "C:\PROGRA~2\CYBERL~1\SHARED~1\RICHVI~1.EXE" -Embedding
4616 | C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe (.Hewlett-Packard Company - HP Support Assistant Service.) - (7.0.39.14) -> "C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe"
2724 | C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe (.Adobe Systems Incorporated - Adobeฎ Flashฎ Player Utility.) - (11.7.700.169) -> "C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe" -Embedding
1152 | C:\Windows\System32\WUDFHost.exe (.Microsoft Corporation - Windows Driver Foundation - Processus h๔te de l’infrastructure de pilotes en mode utilisateur.) - (6.2.9200.16384) -> "C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-cc73425a-4bbb-4898-a12b-7cedc2e3af3b -SystemEventPortName:HostProcess-25e296fb-f7dd-496c-97f1-d2c4f5a836db -IoCancelEventPortName:HostProcess-08284e47-e139-44b2-81f1-a988e29835d8 -NonStateChangingEventPortName:HostProcess-1b645fc8-73d2-48d6-a606-97ccd0b46843 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:ab4ef308-1af4-4a37-bc97-c698f2370025 -DeviceGroupId:WpdFsGroup
5048 | C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (.Intel Corporation - IAStorDataSvc.) - (12.0.7.1002) -> "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
6020 | C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe (.Intel Corporation - Intel(R) ME Service.) - (9.0.1.1338) -> "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
5296 | C:\Program Files\WindowsApps\Microsoft.Reader_6.2.9200.20523_x64__8wekyb3d8bbwe\glcnd.exe (.Microsoft Corporation - Windows Reader.) - (6.2.9200.20523) -> "C:\Program Files\WindowsApps\Microsoft.Reader_6.2.9200.20523_x64__8wekyb3d8bbwe\glcnd.exe" -ServerName:Microsoft.Reader.AppXtszmc7avrx02s7n8gch63tzwg517wd9k.mca
2748 | C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (.Intel Corporation - Intel(R) Dynamic Application Loader Host Interface.) - (9.0.0.1310) -> "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
6404 | C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (.Intel Corporation - Intel(R) Local Management Service.) - (9.0.0.1310) -> "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
6584 | C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (.NVIDIA Corporation - NVIDIA Settings Update Manager.) - (1.11.3.0) -> "C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"
4524 | C:\Windows\system32\igfxsrvc.exe (.Intel Corporation - igfxsrvc Module.) - (8.15.10.3071) -> C:\Windows\system32\igfxsrvc.exe -Embedding
6892 | C:\Windows\system32\taskhost.exe (.Microsoft Corporation - Processus h๔te pour Tโches Windows.) - (6.2.9200.16451) -> taskhost.exe $(Arg0)
4840 | C:\Windows\Microsoft.NET\Framework64\v4.0.30319\dfsvc.exe (.Microsoft Corporation - ClickOnce.) - (4.0.30319.17929) -> "C:\Windows\Microsoft.NET\Framework64\v4.0.30319\dfsvc.exe"
2640 | C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (.Google Inc. - Google Chrome.) - (33.0.1750.154) -> "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
2772 | C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (.Google Inc. - Google Chrome.) - (33.0.1750.154) -> "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="2640.0.693870649\1274982271" --disable-image-transport-surface --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,1,5,14,27 --gpu-vendor-id=0x8086 --gpu-device-id=0x0416 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=9.18.10.3071 --ignored=" --type=renderer " /prefetch:822062411
7480 | C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (.Google Inc. - Google Chrome.) - (33.0.1750.154) -> "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=fr --force-fieldtrials="AutocompleteDynamicTrial_2/EnableZeroSuggest_R6_Stable_Control/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group4 pct:10d stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ExtensionInstallVerification/None/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-1-Percent/group_78/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/default/UMA-Uniformity-Trial-5-Percent/group_17/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --enable-pinch --renderer-print-preview --signin-process --enable-software-compositing --channel="2640.7.1812673005\529865073" /prefetch:673131151
7684 | C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (.Google Inc. - Google Chrome.) - (33.0.1750.154) -> "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="2640.31.297592591\734303921" --ppapi-flash-args --lang=fr --ignored=" --type=renderer " /prefetch:-632637702
8164 | C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (.Google Inc. - Google Chrome.) - (33.0.1750.154) -> "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=fr --force-fieldtrials="AutocompleteDynamicTrial_2/EnableZeroSuggest_R6_Stable_Control/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group4 pct:10d stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/ExtensionInstallVerification/None/OmniboxBundledExperimentV1/StandardR2/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderDisabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-1-Percent/group_78/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/default/UMA-Uniformity-Trial-5-Percent/group_17/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --enable-pinch --renderer-print-preview --enable-software-compositing --channel="2640.32.2051514200\1239923550" /prefetch:673131151

คคคคคคคคคค | Processus d้marr้s


[26/05/2013 02:47:39] - 828 | C:\Windows\system32\svchost.exe (.Microsoft Corporation - Processus h๔te pour les services Windows.) - (6.2.9200.16420) -> C:\Windows\system32\svchost.exe -k DcomLaunch   [23040 Ko]
[26/05/2013 02:47:39] - 956 | C:\Windows\system32\svchost.exe (.Microsoft Corporation - Processus h๔te pour les services Windows.) - (6.2.9200.16420) -> C:\Windows\system32\svchost.exe -k RPCSS   [23040 Ko]
[26/05/2013 02:47:39] - 1004 | C:\Windows\System32\svchost.exe (.Microsoft Corporation - Processus h๔te pour les services Windows.) - (6.2.9200.16420) -> C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted   [23040 Ko]
[26/05/2013 02:47:39] - 304 | C:\Windows\system32\svchost.exe (.Microsoft Corporation - Processus h๔te pour les services Windows.) - (6.2.9200.16420) -> C:\Windows\system32\svchost.exe -k netsvcs   [23040 Ko]
[26/05/2013 02:47:39] - 452 | C:\Windows\system32\svchost.exe (.Microsoft Corporation - Processus h๔te pour les services Windows.) - (6.2.9200.16420) -> C:\Windows\system32\svchost.exe -k LocalService   [23040 Ko]
[26/05/2013 02:47:39] - 716 | C:\Windows\System32\svchost.exe (.Microsoft Corporation - Processus h๔te pour les services Windows.) - (6.2.9200.16420) -> C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted   [23040 Ko]
[26/05/2013 02:47:39] - 1556 | C:\Windows\system32\svchost.exe (.Microsoft Corporation - Processus h๔te pour les services Windows.) - (6.2.9200.16420) -> C:\Windows\system32\svchost.exe -k NetworkService   [23040 Ko]
[26/05/2013 02:47:39] - 1840 | C:\Windows\system32\svchost.exe (.Microsoft Corporation - Processus h๔te pour les services Windows.) - (6.2.9200.16420) -> C:\Windows\system32\svchost.exe -k WbioSvcGroup   [23040 Ko]
[26/05/2013 02:47:39] - 1860 | C:\Windows\system32\svchost.exe (.Microsoft Corporation - Processus h๔te pour les services Windows.) - (6.2.9200.16420) -> C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork   [23040 Ko]
[26/05/2013 02:47:39] - 1992 | C:\Windows\system32\svchost.exe (.Microsoft Corporation - Processus h๔te pour les services Windows.) - (6.2.9200.16420) -> C:\Windows\system32\svchost.exe -k apphost   [23040 Ko]
[26/05/2013 02:47:39] - 2644 | C:\Windows\system32\svchost.exe (.Microsoft Corporation - Processus h๔te pour les services Windows.) - (6.2.9200.16420) -> C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted   [23040 Ko]
[26/05/2013 02:47:39] - 3132 | C:\Windows\system32\svchost.exe (.Microsoft Corporation - Processus h๔te pour les services Windows.) - (6.2.9200.16420) -> C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation   [23040 Ko]
[26/07/2012 03:46:07] - 3264 | C:\Windows\system32\wbem\wmiprvse.exe (.Microsoft Corporation - WMI Provider Host.) - (6.2.9200.16384) -> C:\Windows\system32\wbem\wmiprvse.exe   [375808 Ko]
[26/05/2013 02:47:39] - 4892 | C:\Windows\system32\svchost.exe (.Microsoft Corporation - Processus h๔te pour les services Windows.) - (6.2.9200.16420) -> C:\Windows\system32\svchost.exe -k imgsvc   [23040 Ko]
[26/07/2012 01:00:16] - 6084 | C:\Windows\system32\DllHost.exe (.Microsoft Corporation - COM Surrogate.) - (6.2.9200.16384) -> C:\Windows\system32\DllHost.exe /Processid:{45BA127D-10A8-46EA-8AB7-56EA9078943C}   [8704 Ko]
[04/08/2013 14:33:41] - 6448 | C:\Program Files (x86)\Norton Internet Security\Engine\20.0.0.136\ccSvcHst.exe (.Symantec Corporation - Symantec Service Framework.) - (12.0.0.109) -> "C:\Program Files (x86)\Norton Internet Security\Engine\20.0.0.136\ccSvcHst.exe" /s "NIS" /m "C:\Program Files (x86)\Norton Internet Security\Engine\20.0.0.136\diMaster.dll" /prefetch:1   [143928 Ko]
[04/08/2013 14:33:41] - 6984 | C:\Program Files (x86)\Norton Internet Security\Engine\20.0.0.136\ccSvcHst.exe (.Symantec Corporation - Symantec Service Framework.) - (12.0.0.109) -> "C:\Program Files (x86)\Norton Internet Security\Engine\20.0.0.136\ccSvcHst.exe" /c /a /s UserSession   [143928 Ko]
[26/07/2012 03:46:07] - 3276 | C:\Windows\system32\wbem\wmiprvse.exe (.Microsoft Corporation - WMI Provider Host.) - (6.2.9200.16384) -> C:\Windows\system32\wbem\wmiprvse.exe   [375808 Ko]
[22/03/2014 14:34:44] - 5512 | C:\Users\Oriane\Downloads\Shortcut_Module (1).exe (. - Shortcut_Module.) - (22.3.2014.2) -> "C:\Users\Oriane\Downloads\Shortcut_Module (1).exe"    [2207232 Ko]
[10/12/2012 13:31:28] - 7856 | C:\Program Files\Intel\iCLS Client\HeciServer.exe (.Intel(R) Corporation - Intel(R) Capability Licensing Service Interface.) - (1.27.757.1) -> "C:\Program Files\Intel\iCLS Client\HeciServer.exe"   [732160 Ko]
[04/08/2013 23:38:51] - 5484 | C:\Windows\explorer.exe (.Microsoft Corporation - Explorateur Windows.) - (6.2.9200.16628) -> explorer.exe   [2391280 Ko]
[22/03/2014 14:21:11] - 7444 | C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\Installer\chrmstp.exe (.Google Inc. - Google Chrome.) - (33.0.1750.154) -> "C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome   [1150280 Ko]

คคคคคคคคคค | Services


คคคคคคคคคค | Hosts

C:\Windows\System32\Drivers\etc\hosts : Remis a z้ro avec succ่s

คคคคคคคคคค | Registre

Supprim้ avec succ่s : [64]HKLM\Software\Classes\Google.OneClickCtrl.9
Supprim้ avec succ่s : [64]HKLM\Software\Classes\Google.OneClickProcessLauncherMachine.1.0
Supprim้ avec succ่s : [64]HKLM\Software\Classes\Google.OneClickProcessLauncherMachine
Supprim้ avec succ่s : [64]HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{D944BB61-2E34-4DBF-A683-47E505C587DC} : eBay
Supprim้ avec succ่s : [32]HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{D944BB61-2E34-4DBF-A683-47E505C587DC} : eBay
Supprim้ avec succ่s : HKU\S-1-5-21-3477573652-1631963797-2052445221-1002\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{D944BB61-2E34-4DBF-A683-47E505C587DC} : eBay
Supprim้ avec succ่s : [HKU\S-1-5-21-3477573652-1631963797-2052445221-1002\SOFTWARE\Microsoft\Internet Explorer\Main]|[Show_ToolBar]  : yes
Supprim้ avec succ่s : [HKU\S-1-5-21-3477573652-1631963797-2052445221-1002\SOFTWARE\Microsoft\Internet Explorer\Main]|[Show_URLToolBar]  : yes
Supprim้ avec succ่s : [32]HKLM\Software\Classes\Installer\Products\0694AF70830BBE9498B1F95939A05A44 : C:\Users\ADMINI~1\AppData\Local\Temp\_is9271\
Supprim้ avec succ่s : [32]HKLM\Software\Classes\Installer\Products\3e43b73803c7c394f8a6b2f0402e19c2 : C:\Users\ADMINI~1\AppData\Local\Temp\IXP000.TMP\
Supprim้ avec succ่s : [32]HKLM\Software\Classes\Installer\Products\701043F6AA9F6C745BC43C1AF91155F3 : C:\Users\ADMINI~1\AppData\Local\Temp\
Supprim้ avec succ่s : [32]HKLM\Software\Classes\Installer\Products\c1c4f01781cc94c4c8fb1542c0981a2a : C:\Users\ADMINI~1\AppData\Local\Temp\IXP000.TMP\
Supprim้ avec succ่s : [32]HKLM\Software\Classes\Installer\Products\D0F958D9504BF1B4094831BB5F3DBD23 : C:\Users\ADMINI~1\AppData\Local\Temp\IIF1420.tmp\
Supprim้ avec succ่s : [32]HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD0BCC7B78D62ED43A2847B6138F055B : C:\Program Files (x86)\HP SimplePass\AutoSoftwareUpdate.dll

คคคคคคคคคค | IFEO


คคคคคคคคคค | Dossiers

Supprim้ avec succ่s : C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
Supprim้ avec succ่s : C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
Supprim้ avec succ่s : C:\Users\All Users\Microsoft\Windows\Start Menu\Programs\Shopping and Services\eBay.ch.lnk
Supprim้ avec succ่s : C:\Users\Oriane\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\3LW53RDV\FAToolbar[1].js
Supprim้ avec succ่s : C:\Users\Oriane\AppData\Local\Temp\nw5036_7087\node_modules\cheerio\node_modules\CSSselect\test\tools\bench.js
Supprim้ avec succ่s : C:\Users\Oriane\AppData\Local\Temp\nw5036_7087\node_modules\express\node_modules\connect\node_modules\multiparty\test\bench-multipart-parser.js
Supprim้ avec succ่s : C:\Users\Oriane\AppData\Local\Temp\nw5036_7087\node_modules\socket.io\node_modules\redis\benches
Supprim้ avec succ่s : C:\Users\Oriane\AppData\Local\Temp\nw5036_7087\node_modules\socket.io\node_modules\redis\diff_multi_bench_output.js
Supprim้ avec succ่s : C:\Users\Oriane\AppData\Local\Temp\nw5036_7087\node_modules\socket.io\node_modules\redis\multi_bench.js
Supprim้ avec succ่s : C:\Users\Oriane\AppData\Local\Temp\nw5036_7087\node_modules\socket.io\node_modules\socket.io-client\node_modules\ws\bench
Supprim้ avec succ่s : C:\Users\Oriane\AppData\Local\Temp\nw5036_7087\node_modules\url\node_modules\punycode\vendor\requirejs\tests\circular\complexPlugin\toolbar.html
Supprim้ avec succ่s : C:\Users\Oriane\AppData\Local\Temp\nw5036_7087\node_modules\url\node_modules\punycode\vendor\requirejs\tests\circular\complexPlugin\toolbar.js
Supprim้ avec succ่s : C:\Users\Oriane\AppData\Local\Temp\nw5036_7087\node_modules\xmlrpc\node_modules\sax\examples\switch-bench.js
Supprim้ avec succ่s : C:\Users\Public\Desktop\eBay.ch.lnk

คคคคคคคคคค | D้tournements de raccourcis

D้sinfect้ : C:\Users\All Users\Microsoft\Windows\Start Menu\Programs\Music, Photos and Videos\Photos Snapfish.lnk : C:\Program Files (x86)\Hewlett-Packard\Shared\WizLink.exe        (hxxp://www.snapfish.com/hp_notebook_desktopicon_2013_fr_ch)
D้sinfect้ : C:\Users\Public\Desktop\Photos Snapfish.lnk : C:\Program Files (x86)\Hewlett-Packard\Shared\WizLink.exe        (hxxp://www.snapfish.com/hp_notebook_desktopicon_2013_fr_ch)


คคคคคคคคคค | Proxy

R้par้ : [HKU\S-1-5-21-3477573652-1631963797-2052445221-1002\Software\Microsoft\Windows\CurrentVersion\Internet settings]|[WarnonZoneCrossing] : 0 -> 1

คคคคคคคคคค | D้tournement internet Explorer

R้par้ : [HKU\S-1-5-21-3477573652-1631963797-2052445221-1002\Software\Microsoft\Internet Explorer\Main]|[Start Page] : https://www.google.ch/ -> http://www.google.com/
R้par้ : [HKU\S-1-5-21-3477573652-1631963797-2052445221-1002\Software\Microsoft\Internet Explorer\Main]|[Local Page] : C:\Windows\system32\blank.htm -> C:\Windows\SysWOW64\blank.htm
R้par้ : [HKU\S-1-5-21-3477573652-1631963797-2052445221-1002\Software\Microsoft\Internet Explorer\Main]|[Search Page] : http://go.microsoft.com/fwlink/?LinkId=54896 -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R้par้ : [HKU\S-1-5-21-3477573652-1631963797-2052445221-1002\Software\Microsoft\Internet Explorer\Main]|[Default_Page_URL] : http://g.uk.msn.com/HPCON13/12 -> http://go.microsoft.com/fwlink/?LinkId=69157
R้par้ : [64][HKLM\Software\Microsoft\Internet Explorer\Main]|[Start Page] : http://g.uk.msn.com/HPCON13/12 -> http://go.microsoft.com/fwlink/?LinkId=69157
R้par้ : [64][HKLM\Software\Microsoft\Internet Explorer\Main]|[Default_Page_URL] : http://g.uk.msn.com/HPCON13/12 -> http://go.microsoft.com/fwlink/?LinkId=69157
R้par้ : [32][HKLM\Software\Microsoft\Internet Explorer\Main]|[Start Page] : http://g.uk.msn.com/HPCON13/12 -> http://go.microsoft.com/fwlink/?LinkId=69157
R้par้ : [32][HKLM\Software\Microsoft\Internet Explorer\Main]|[Local Page] : C:\Windows\System32\blank.htm -> C:\Windows\SysWOW64\blank.htm
R้par้ : [32][HKLM\Software\Microsoft\Internet Explorer\Main]|[Default_Page_URL] : http://g.uk.msn.com/HPCON13/12 -> http://go.microsoft.com/fwlink/?LinkId=69157

คคคคคคคคคค | D้tournement Google Chrome

[Oriane] Remis a z้ro avec succ่s : SearchURL
[Oriane] Remis a z้ro avec succ่s : Preferences

คคคคคคคคคค | D้tournement Firefox


คคคคคคคคคค | D้tournement des cl้s StartMenuInternet

R้par้ : [64][HKLM\Software\Clients\StartMenuInternet\IExplore.exe\shell\open\command] : C:\Program Files\Internet Explorer\iexplore.exe -> "C:\Program Files (x86)\Internet Explorer\iexplore.exe"

คคคคคคคคคค | AppInit_DLLs



[64][HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]|[LoadAppInit_DLLs] : 1
[32][HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]|[LoadAppInit_DLLs] : 1

คคคคคคคคคค | D้tournement Javascript


คคคคคคคคคค | Firewall

R้par้ : [HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]|[EnableFirewall] : 1 -> 0
R้par้ : [HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]|[EnableFirewall] : 1 -> 0
R้par้ : [HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]|[EnableFirewall] : 1 -> 0


คคคคคคคคคค | Fichiers temporaires

[All Users] Fichiers temporaires Supprim้s : 0 Ko
[Default User] Fichiers temporaires Supprim้s : 0 Ko
[UpdatusUser] Fichiers temporaires Supprim้s : 0 Ko
[Default] Fichiers temporaires Supprim้s : 0 Ko
[Public] Fichiers temporaires Supprim้s : 0 Ko
[Oriane] Fichiers temporaires Supprim้s : 60521 Ko

Autre rapport


คคคคคคคคคค |EOF| คคคคคคคคคค | 14:43:34 | [28430]