Publicité
Publicité
Format du document : text/plain
Prévisualisation
���������� | Shortcut_Module | g3n-h@ckm@n | 21.06.2014.4
����� Vista | 7 | 8 | 8.1 - 32/64 bits ����� - Start 12:00:42 - 22/06/2014
Mis � jour le : 21/06/2014 | 15.40 par g3n-h@ckm@n
Contact : http://www.sosvirus.net
Assistance : http://www.sosvirus.net/forum-virus-securite.html
Feedbacks : http://www.sosvirus.net/feedbacks-t75915.html
Boot: Normal boot
Syst�me : Windows 8.1 (64 bits) Core
M�moire RAM = Total (MB) : 8153 | Libre (MB) : 6142
Pagefile = Total (MB) : 9464 | Libre (MB) : 7385
Virtuelle = Total (MB) : 4194 | Libre (MB) : 4008
Registre sauvegard� , pour restaurer : C:\Shortcut_Module\Save\Clean\ERDNT.exe
���������� | Mises � jour Windows
Aucune mise � jour d�tect�e !!!
���������� | Navigateurs
IE : 11.0.9600.17126 (� Microsoft Corporation. Tous droits r�serv�s.)
GC : 35.0.1916.153 (Copyright 2012 Google Inc. All rights reserved.)
���������� | Security
FW :
WMI : OK
WU: Windows Update Service [Manual(3)] = Arr�t�
AS: Windows Defender [Manual(3)] = Arr�t�
FW: Windows FireWall Service [Auto(2)] = Arr�t�
Mise en veille supprim�e !
���������� | FlashPlayer
FlashPlayer ActiveX : 14.0.0.125
���������� | Processus tu�s
1016 | [Owner : Syst�me |Parent : 680] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 331.65.) - (8.17.13.3165) = C:\Windows\System32\nvvsvc.exe
508 | [Owner : Syst�me |Parent : 1016] - (.NVIDIA Corporation - NVIDIA User Experience Driver Component.) - (8.17.13.3165) = C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
1028 | [Owner : Syst�me |Parent : 1016] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 331.65.) - (8.17.13.3165) = C:\Windows\System32\nvvsvc.exe
1152 | [Owner : Syst�me |Parent : 680] - (.Hewlett-Packard Company - HpService.) - (6.0.5.1) = C:\Windows\System32\hpservice.exe
1244 | [Owner : Syst�me |Parent : 680] - (.Realtek Semiconductor - Realtek Audio Service.) - (1.0.0.46) = C:\Program Files\Realtek\Audio\HDA\RTKAUDIOSERVICE64.EXE
1260 | [Owner : Syst�me |Parent : 1244] - (.Realtek Semiconductor - HD Audio Background Process.) - (1.0.0.150) = C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
1512 | [Owner : Syst�me |Parent : 1068] - (.Microsoft Corporation - Infrastructure d�extensibilit� pour les services r�seau Windows sans fil 802.11.) - (6.3.9600.16384) = C:\Windows\System32\wlanext.exe
1772 | [Owner : Syst�me |Parent : 680] - (.Microsoft Corporation - Application sous-syst�me spouleur.) - (6.3.9600.16384) = C:\Windows\System32\spoolsv.exe
1968 | [Owner : Syst�me |Parent : 680] - (.Andrea Electronics Corporation - Andrea filters APO access service (64-bit).) - (1.0.64.10) = C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
2004 | [Owner : Syst�me |Parent : 680] - (.Apple Inc. - Bonjour Service.) - (3.0.0.10) = C:\Program Files\Bonjour\mDNSResponder.exe
1096 | [Owner : Syst�me |Parent : 680] - (.Hewlett-Packard Development Company, L.P. - HP WMI Service.) - (1.0.2.0) = C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe
960 | [Owner : SERVICE LOCAL |Parent : 1068] - (.Microsoft Corporation - Device Association Framework Provider Host.) - (6.3.9600.17031) = C:\Windows\System32\dasHost.exe
1428 | [Owner : Syst�me |Parent : 680] - (.Intel(R) Corporation - Intel(R) Capability Licensing Service Interface.) - (1.28.487.1) = C:\Program Files\Intel\iCLS Client\HeciServer.exe
3692 | [Owner : h |Parent : 676] - (.Microsoft Corporation - Processus h�te pour T�ches Windows.) - (6.3.9600.17031) = C:\Windows\System32\taskhostex.exe
3820 | [Owner : h |Parent : 3788] - (.Microsoft Corporation - Explorateur Windows.) - (6.3.9600.17039) = C:\Windows\explorer.exe
3944 | [Owner : Syst�me |Parent : 3752] - (.Google Inc. - Google Crash Handler.) - (1.3.24.15) = C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler.exe
3952 | [Owner : Syst�me |Parent : 3752] - (.Google Inc. - Google Crash Handler.) - (1.3.24.15) = C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler64.exe
4028 | [Owner : h |Parent : 508] - (.NVIDIA Corporation - NVIDIA Settings.) - (7.17.13.3165) = C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
2388 | [Owner : Syst�me |Parent : 680] - (.Microsoft Corporation - Indexeur Microsoft Windows Search.) - (7.0.9600.17031) = C:\Windows\System32\SearchIndexer.exe
3988 | [Owner : h |Parent : 836] - (.Microsoft Corporation - OneDrive Sync Engine Host.) - (6.3.9600.17085) = C:\Windows\System32\SkyDrive.exe
4296 | [Owner : h |Parent : 3820] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) - (1.0.0.290) = C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
4352 | [Owner : h |Parent : 3820] - (.Intel Corporation - igfxTray Module.) - (8.15.10.3412) = C:\Windows\System32\igfxtray.exe
4396 | [Owner : h |Parent : 3820] - (.Intel Corporation - hkcmd Module.) - (8.15.10.3412) = C:\Windows\System32\hkcmd.exe
4404 | [Owner : h |Parent : 836] - (.Intel Corporation - igfxsrvc Module.) - (8.15.10.3412) = C:\Windows\System32\igfxsrvc.exe
4444 | [Owner : h |Parent : 3820] - (.Intel Corporation - persistence Module.) - (8.15.10.3412) = C:\Windows\System32\igfxpers.exe
4496 | [Owner : h |Parent : 3820] - (.Synaptics Incorporated - Synaptics TouchPad 64-bit Enhancements.) - (17.0.6.2) = C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
4692 | [Owner : h |Parent : 4512] - (.Synaptics Incorporated - Synaptics Pointing Device Helper.) - (17.0.6.2) = C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
4936 | [Owner : h |Parent : 4872] - (.CyberLink Corp. - CyberLink YouCam Service.) - (5.0.2922.0) = C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe
5040 | [Owner : h |Parent : 4872] - (.Hewlett-Packard Development Company, L.P. - HP Message Service.) - (1.0.11.0) = C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe
4116 | [Owner : h |Parent : 4872] - (.Hewlett-Packard Company - Hp Accelerometer System Tray.) - (6.0.15.1) = C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.exe
4472 | [Owner : h |Parent : 676] - (.CyberLink - CyberLink MediaLibrary Service.) - (8.0.0.2002) = C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
4628 | [Owner : h |Parent : 676] - (.Hewlett-Packard Development Company, L.P. - HP CoolSense.) - (2.2.0.11) = C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
4660 | [Owner : h |Parent : 4872] - (.Oracle Corporation - Java(TM) Update Scheduler.) - (2.1.9.8) = C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
5320 | [Owner : h |Parent : 836] - (.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) - (6.3.9600.16384) = C:\Windows\System32\wbem\unsecapp.exe
5536 | [Owner : h |Parent : 836] - (.Microsoft Corporation - Runtime Broker.) - (6.3.9600.16384) = C:\Windows\System32\RuntimeBroker.exe
5968 | [Owner : Syst�me |Parent : 680] - (.Hewlett-Packard Company - HP Software Framework WMI Service.) - (6.1.16.1) = C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
2524 | [Owner : Syst�me |Parent : 680] - (.CyberLink - CyberLink Media Server Monitor Service.) - (2.2.0.11427) = C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe
2720 | [Owner : Syst�me |Parent : 680] - (.WildTangent - WildTangent Games App Integration Service.) - (4.0.34.25) = C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
1840 | [Owner : Syst�me |Parent : 680] - (.Hewlett-Packard Company - HP Support Assistant Service.) - (7.2.45.3) = C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
5136 | [Owner : Syst�me |Parent : 680] - (.Intel Corporation - IAStorDataSvc.) - (12.8.1.1000) = C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
3216 | [Owner : Syst�me |Parent : 680] - (.Intel Corporation - Intel(R) ME Service.) - (9.5.10.1628) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
3060 | [Owner : Syst�me |Parent : 680] - (.Intel Corporation - Intel(R) Dynamic Application Loader Host Interface.) - (9.5.12.1682) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
3592 | [Owner : Syst�me |Parent : 680] - (.Intel Corporation - Intel(R) Local Management Service.) - (9.5.10.1628) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
2044 | [Owner : SERVICE R�SEAU |Parent : 680] - (.Microsoft Corporation - Service Partage r�seau du Lecteur Windows Media.) - (12.0.9600.17031) = C:\Program Files\Windows Media Player\wmpnetwk.exe
2132 | [Owner : h |Parent : 836] - (.Microsoft Corporation - Windows Reader.) - (6.3.9600.17044) = C:\Program Files\WindowsApps\Microsoft.Reader_6.3.9654.17044_x64__8wekyb3d8bbwe\glcnd.exe
4528 | [Owner : h |Parent : 836] - (.Microsoft Corporation - H�te Microsoft WWA.) - (6.3.9600.17031) = C:\Windows\SysWOW64\WWAHost.exe
4800 | [Owner : h |Parent : 836] - (.Microsoft Corporation - Host Process for Setting Synchronization.) - (6.3.9600.17031) = C:\Windows\System32\SettingSyncHost.exe
4636 | [Owner : Syst�me |Parent : 676] - (.Microsoft Corporation - Processus h�te pour T�ches Windows.) - (6.3.9600.17031) = C:\Windows\System32\taskhost.exe
7376 | [Owner : SERVICE LOCAL |Parent : 680] - (.Microsoft Corporation - PresentationFontCache.exe.) - (3.0.6920.7903) = C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
6076 | [Owner : h |Parent : 8136] - (.Google Inc. - Google Chrome.) - (35.0.1916.153) = C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
3748 | [Owner : h |Parent : 6076] - (.Google Inc. - Google Chrome.) - (35.0.1916.153) = C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
6072 | [Owner : h |Parent : 6076] - (.Google Inc. - Google Chrome.) - (35.0.1916.153) = C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
8120 | [Owner : h |Parent : 6076] - (.Google Inc. - Google Chrome.) - (35.0.1916.153) = C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2556 | [Owner : Syst�me |Parent : 680] - (.CyberLink - CyberLink Media Server Service.) - (2.2.0.11427) = C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
6096 | [Owner : h |Parent : 4880] - (.Microsoft Corporation - Chargeur CTF.) - (6.3.9600.16384) = C:\Windows\SysWOW64\ctfmon.exe
8140 | [Owner : SERVICE LOCAL |Parent : 1068] - (.Microsoft Corporation - Device Association Framework Provider Host.) - (6.3.9600.17031) = C:\Windows\System32\dasHost.exe
6692 | [Owner : Syst�me |Parent : 680] - (.Intel(R) Corporation - Intel(R) Capability Licensing Service Interface.) - (1.28.487.1) = C:\Program Files\Intel\iCLS Client\HeciServer.exe
6960 | [Owner : SERVICE LOCAL |Parent : 680] - (.Microsoft Corporation - PresentationFontCache.exe.) - (3.0.6920.7903) = C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
���������� | Processus d�marr�s
372 | [Owner : Syst�me |Parent : 4] - (.Microsoft Corporation - Gestionnaire de sessions Windows.) - (6.3.9600.17031) = C:\Windows\System32\smss.exe
564 | [Owner : Syst�me |Parent : 552] - (.Microsoft Corporation - Processus d�ex�cution client-serveur.) - (6.3.9600.16384) = C:\Windows\System32\csrss.exe
632 | [Owner : Syst�me |Parent : 552] - (.Microsoft Corporation - Application de d�marrage de Windows.) - (6.3.9600.16384) = C:\Windows\System32\wininit.exe
680 | [Owner : Syst�me |Parent : 632] - (.Microsoft Corporation - Applications Services et Contr�leur.) - (6.3.9600.17084) = C:\Windows\System32\services.exe
688 | [Owner : Syst�me |Parent : 632] - (.Microsoft Corporation - Local Security Authority Process.) - (6.3.9600.16384) = C:\Windows\System32\lsass.exe
720 | [Owner : Syst�me |Parent : 640] - (.Microsoft Corporation - Processus d�ex�cution client-serveur.) - (6.3.9600.16384) = C:\Windows\System32\csrss.exe
784 | [Owner : Syst�me |Parent : 640] - (.Microsoft Corporation - Application d�ouverture de session Windows.) - (6.3.9600.17031) = C:\Windows\System32\winlogon.exe
836 | [Owner : Syst�me |Parent : 680] - (.Microsoft Corporation - Processus h�te pour les services Windows.) - (6.3.9600.16384) = C:\Windows\System32\svchost.exe
888 | [Owner : SERVICE R�SEAU |Parent : 680] - (.Microsoft Corporation - Processus h�te pour les services Windows.) - (6.3.9600.16384) = C:\Windows\System32\svchost.exe
1008 | [Owner : DWM-1 |Parent : 784] - (.Microsoft Corporation - Gestionnaire de fen�tres du Bureau.) - (6.3.9600.17031) = C:\Windows\System32\dwm.exe
572 | [Owner : SERVICE LOCAL |Parent : 680] - (.Microsoft Corporation - Processus h�te pour les services Windows.) - (6.3.9600.16384) = C:\Windows\System32\svchost.exe
676 | [Owner : Syst�me |Parent : 680] - (.Microsoft Corporation - Processus h�te pour les services Windows.) - (6.3.9600.16384) = C:\Windows\System32\svchost.exe
736 | [Owner : SERVICE LOCAL |Parent : 680] - (.Microsoft Corporation - Processus h�te pour les services Windows.) - (6.3.9600.16384) = C:\Windows\System32\svchost.exe
1068 | [Owner : Syst�me |Parent : 680] - (.Microsoft Corporation - Processus h�te pour les services Windows.) - (6.3.9600.16384) = C:\Windows\System32\svchost.exe
1304 | [Owner : SERVICE R�SEAU |Parent : 680] - (.Microsoft Corporation - Processus h�te pour les services Windows.) - (6.3.9600.16384) = C:\Windows\System32\svchost.exe
1524 | [Owner : Syst�me |Parent : 680] - (.AVAST Software - avast! Service.) - (9.0.2018.391) = C:\Program Files\AVAST Software\Avast\AvastSvc.exe
1800 | [Owner : SERVICE LOCAL |Parent : 680] - (.Microsoft Corporation - Processus h�te pour les services Windows.) - (6.3.9600.16384) = C:\Windows\System32\svchost.exe
1984 | [Owner : Syst�me |Parent : 680] - (.Microsoft Corporation - Processus h�te pour les services Windows.) - (6.3.9600.16384) = C:\Windows\System32\svchost.exe
1048 | [Owner : SERVICE LOCAL |Parent : 680] - (.Microsoft Corporation - Processus h�te pour les services Windows.) - (6.3.9600.16384) = C:\Windows\System32\svchost.exe
2324 | [Owner : SERVICE R�SEAU |Parent : 680] - (.Microsoft Corporation - Processus h�te pour les services Windows.) - (6.3.9600.16384) = C:\Windows\System32\svchost.exe
2340 | [Owner : SERVICE LOCAL |Parent : 680] - (.Microsoft Corporation - Processus h�te pour les services Windows.) - (6.3.9600.16384) = C:\Windows\System32\svchost.exe
2972 | [Owner : SERVICE LOCAL |Parent : 680] - (.Microsoft Corporation - Processus h�te pour les services Windows.) - (6.3.9600.16384) = C:\Windows\System32\svchost.exe
3328 | [Owner : SERVICE R�SEAU |Parent : 836] - (.Microsoft Corporation - WMI Provider Host.) - (6.3.9600.16384) = C:\Windows\System32\wbem\WmiPrvSE.exe
3416 | [Owner : Syst�me |Parent : 836] - (.Microsoft Corporation - WMI Provider Host.) - (6.3.9600.16384) = C:\Windows\System32\wbem\WmiPrvSE.exe
3460 | [Owner : Syst�me |Parent : 836] - (.Microsoft Corporation - COM Surrogate.) - (6.3.9600.16384) = C:\Windows\System32\dllhost.exe
4880 | [Owner : h |Parent : 4872] - (.AVAST Software - avast! Antivirus.) - (9.0.2018.401) = C:\Program Files\AVAST Software\Avast\avastui.exe
3248 | [Owner : Syst�me |Parent : 836] - (.Microsoft Corporation - COM Surrogate.) - (6.3.9600.16384) = C:\Windows\System32\dllhost.exe
3796 | [Owner : Syst�me |Parent : 836] - (.Microsoft Corporation - COM Surrogate.) - (6.3.9600.16384) = C:\Windows\System32\dllhost.exe
7032 | [Owner : SERVICE LOCAL |Parent : 572] - (.Microsoft Corporation - Isolation graphique de p�riph�rique audio Windows .) - (6.3.9600.17090) = C:\Windows\System32\audiodg.exe
8104 | [Owner : h |Parent : 3820] - (. - Shortcut_Module.) - (21.6.2014.4) = C:\Users\h\Desktop\Shortcut_Module.exe
6388 | [Owner : Syst�me |Parent : 680] - (.Intel(R) Corporation - Intel(R) Capability Licensing Service Interface.) - (1.28.487.1) = C:\Program Files\Intel\iCLS Client\HeciServer.exe
2128 | [Owner : h |Parent : 8104] - (. - Process Stopper.) - (1.0.0.0) = C:\Shortcut_Module\Protect_Module.exe
���������� | RUN
04 - HKLM\Software\Microsoft\Windows\CurrentVersion\Run : [YouCam Service] "C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe" /s
04 - HKLM\Software\Microsoft\Windows\CurrentVersion\Run : [HPMessageService] C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe
04 - HKLM\Software\Microsoft\Windows\CurrentVersion\Run : [AccelerometerSysTrayApplet] C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe
04 - HKLM\Software\Microsoft\Windows\CurrentVersion\Run : [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
04 - HKLM\Software\Microsoft\Windows\CurrentVersion\Run : [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
04 - HKLM64\Software\Microsoft\Windows\CurrentVersion\Run : [RTHDVCPL] "C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
04 - HKLM64\Software\Microsoft\Windows\CurrentVersion\Run : [IgfxTray] "C:\WINDOWS\system32\igfxtray.exe"
04 - HKLM64\Software\Microsoft\Windows\CurrentVersion\Run : [HotKeysCmds] "C:\WINDOWS\system32\hkcmd.exe"
04 - HKLM64\Software\Microsoft\Windows\CurrentVersion\Run : [Persistence] "C:\WINDOWS\system32\igfxpers.exe"
04 - HKLM64\Software\Microsoft\Windows\CurrentVersion\Run : [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
04 - HKLM64\Software\Microsoft\Windows\CurrentVersion\RunOnce : [NCPluginUpdater] "c:\program files (x86)\hewlett-packard\hp health check\activecheck\product_line\NCPluginUpdater.exe" Update
04 - HKU\S-1-5-21-2172578901-538438889-293983095-1002\Software\Microsoft\Windows\CurrentVersion\Run : [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
04 - HKU\S-1-5-21-2172578901-538438889-293983095-1002\Software\Microsoft\Windows\CurrentVersion\Run : [uTorrent] "C:\Users\h\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
04 - HKU\S-1-5-21-2172578901-538438889-293983095-1002\Software\Microsoft\Windows\CurrentVersion\Run : [Power2GoExpress8] "C:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe"
04 - HKU\S-1-5-21-2172578901-538438889-293983095-1002\Software\Microsoft\Windows\CurrentVersion\Run : [GoogleChromeAutoLaunch_1EFA27D13B9E35EF13E1DDDD17EF04AD] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
04 - HKU64\S-1-5-21-2172578901-538438889-293983095-1002\Software\Microsoft\Windows\CurrentVersion\Run : [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
04 - HKU64\S-1-5-21-2172578901-538438889-293983095-1002\Software\Microsoft\Windows\CurrentVersion\Run : [uTorrent] "C:\Users\h\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
04 - HKU64\S-1-5-21-2172578901-538438889-293983095-1002\Software\Microsoft\Windows\CurrentVersion\Run : [Power2GoExpress8] "C:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe"
04 - HKU64\S-1-5-21-2172578901-538438889-293983095-1002\Software\Microsoft\Windows\CurrentVersion\Run : [GoogleChromeAutoLaunch_1EFA27D13B9E35EF13E1DDDD17EF04AD] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
���������� | Services
Service en fonctionnement : MMCSS
Service en fonctionnement : Dhcp
Service en fonctionnement : TcpIp
Service en fonctionnement : WinHttpAutoProxysvc
Service en fonctionnement : SSDPSRV
Service en fonctionnement : MPSSvc
Service stopp� : MPSSvc
Service en fonctionnement : Rasman
Service stopp� : Rasman
Service en fonctionnement : LanmanServer
Service en fonctionnement : DNScache
Service stopp� : DNScache
���������� | Hosts
C:\WINDOWS\System32\Drivers\etc\hosts : Remis a z�ro avec succ�s
���������� | Registre
Supprim� avec succ�s : HKLM\Software\Classes\Interface\{DAF611F6-C2A6-41E8-B9A9-AFC0EFFDA9ED} : ISafeshop
Supprim� avec succ�s : HKLM64\Software\Classes\Interface\{DAF611F6-C2A6-41E8-B9A9-AFC0EFFDA9ED} : ISafeshop
Supprim� avec succ�s : HKLM64\Software\Classes\Interface\{DEDDD7BD-4763-41D2-9AAA-B2C143457CA4} : IModalityActionAvailabilityChangedEventData
Supprim� avec succ�s : HKLM\SOFTWARE\Caphyon
Supprim� avec succ�s : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{100EB1FD-D03E-47FD-81F3-EE91287F9465} : ShopperReports.dll
Supprim� avec succ�s : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{14CEEAFF-96DD-4101-AE37-D5ECDC23C3F6} : alotBHO.dll;alotBHO.dll
Supprim� avec succ�s : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{258C9770-1713-4021-8D7E-1F184A2BD754} : ShoppingReport.dll
Supprim� avec succ�s : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{2A0F3D1B-0909-4FF4-B272-609CCE6054E7} : PCTBrowserDefender.dll
Supprim� avec succ�s : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{2EECD738-5844-4A99-B4B6-146BF802613B} : BabylonToolbar.dll
Supprim� avec succ�s : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{472734EA-242A-422B-ADF8-83D1E48CC825} : PCTBrowserDefender.dll
Supprim� avec succ�s : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{57F02779-3D88-4958-8AD3-83C12D86ADC7} : advancedsearchbar.dll
Supprim� avec succ�s : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{5AA2BA46-9913-4DC7-9620-69AB0FA17AE7} : alot.dll;alot.dll
Supprim� avec succ�s : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{69ABB8E4-3A44-461C-93BC-C3BB6BDF2DF3} : Backcountry.com.Steepandcheap.Toolbar.dll
Supprim� avec succ�s : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{74F475FA-6C75-43BD-AAB9-ECDA6184F600} : SuperfishIEAddon.dll;SuperfishIEAddon.dll
Supprim� avec succ�s : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E} : BabylonToolbar.dll
Supprim� avec succ�s : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{BDEA95CF-F0E6-41E0-BD3D-B00F39A4E939} : ShoppingReport.dll
Supprim� avec succ�s : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{CDEEC43D-3572-4E95-A2A5-F519D29F00C0} : advancedsearchbar.dll
Supprim� avec succ�s : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{F98BA7F6-48D8-4CE7-A8D0-39D13FD6F14F} : Backcountry.com.Steepandcheap.Toolbar.dll
Supprim� avec succ�s : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{98889811-442D-49DD-99D7-DC866BE87DBC} : BabylonToolbarTlbr.dll
Supprim� avec succ�s : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{100EB1FD-D03E-47FD-81F3-EE91287F9465}
Supprim� avec succ�s : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{14CEEAFF-96DD-4101-AE37-D5ECDC23C3F6}
Supprim� avec succ�s : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{258C9770-1713-4021-8D7E-1F184A2BD754}
Supprim� avec succ�s : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{2A0F3D1B-0909-4FF4-B272-609CCE6054E7}
Supprim� avec succ�s : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{2EECD738-5844-4A99-B4B6-146BF802613B}
Supprim� avec succ�s : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{472734EA-242A-422B-ADF8-83D1E48CC825}
Supprim� avec succ�s : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{57F02779-3D88-4958-8AD3-83C12D86ADC7}
Supprim� avec succ�s : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{5AA2BA46-9913-4DC7-9620-69AB0FA17AE7}
Supprim� avec succ�s : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{69ABB8E4-3A44-461C-93BC-C3BB6BDF2DF3}
Supprim� avec succ�s : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{74F475FA-6C75-43BD-AAB9-ECDA6184F600}
Supprim� avec succ�s : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}
Supprim� avec succ�s : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{BDEA95CF-F0E6-41E0-BD3D-B00F39A4E939}
Supprim� avec succ�s : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{CDEEC43D-3572-4E95-A2A5-F519D29F00C0}
Supprim� avec succ�s : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{F98BA7F6-48D8-4CE7-A8D0-39D13FD6F14F}
Supprim� avec succ�s : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{98889811-442D-49DD-99D7-DC866BE87DBC}
Supprim� avec succ�s : HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2CD7B34FC96DAA34C8FC0137376D44F6 : 02:\Software\Caphyon\Advanced Installer\LZMA\{D06C2A04-529D-49CD-9819-F99162394845}\5.2.4.0\AI_ExePath
���������� | IFEO
���������� | Dossiers | Fichiers
Supprim� avec succ�s : C:\WINDOWS\System32\ff_wmv9.dll (- ffdshow WMV9) [OFN : ff_wmv9.dll]
Supprim� avec succ�s : [h | GC] : gomekmidlodglbbmalcneegieacbdmki = Browser Security
Supprim� avec succ�s : [h | GC] : 1.8.3_0 = Snz
Supprim� avec succ�s : [h | GC] : 1.0_0 = VBMZ
Supprim� avec succ�s : [h | GC] : 2.1.1.1883_0 = Snz
Supprim� avec succ�s : C:\Users\h\AppData\Local\Packages\5897HisTech.FilmsenFranais_1zvfxf2v1qg0m\AC\INetCache\WPMJCVL3
���������� | D�tournements de raccourcis
D�sinfect� : C:\Users\All Users\Microsoft\Windows\Start Menu\Programs\Music, Photos and Videos\Photos Snapfish.lnk : C:\Program Files (x86)\Hewlett-Packard\Shared\WizLink.exe (hxxp://www.snapfish.com/hp_notebook_desktopicon_2013_fr)
D�sinfect� : C:\Users\Public\Desktop\Photos Snapfish.lnk : C:\Program Files (x86)\Hewlett-Packard\Shared\WizLink.exe (hxxp://www.snapfish.com/hp_notebook_desktopicon_2013_fr)
Supprim� avec succ�s : C:\Users\All Users\Microsoft\Windows\Start Menu\Programs\Productivity and Tools\HP Quick Start.lnk = Quickstart
Supprim� avec succ�s : C:\Users\coucou\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\HP Quick Start.lnk = Quickstart
Supprim� avec succ�s : C:\Users\h\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\HP Quick Start.lnk = Quickstart
���������� | Proxy
R�par� : [HKU\S-1-5-21-2172578901-538438889-293983095-1002\Software\Microsoft\Windows\CurrentVersion\Internet settings]|[WarnonZoneCrossing] : 0 -> 1
���������� | D�tournement internet Explorer
R�par� : [HKLM\Software\Microsoft\Internet Explorer\Main\Window Title]|[] : -> Internet Explorer
R�par� : [HKLM\Software\Microsoft\Internet Explorer\Main]|[Search Bar] : -> http://www.google.com/
R�par� : [HKLM\Software\Microsoft\Internet Explorer\Main]|[Start Page] : http://go.microsoft.com/fwlink/p/?LinkId=255141 -> http://www.google.com/
R�par� : [HKLM\Software\Microsoft\Internet Explorer\Main]|[Start Default_Page_URL] : -> http://www.google.com/
R�par� : [HKLM\Software\Microsoft\Internet Explorer\Main]|[Search Page] : http://go.microsoft.com/fwlink/?LinkId=54896 -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R�par� : [HKLM\Software\Microsoft\Internet Explorer\Main]|[Default_Page_URL] : http://go.microsoft.com/fwlink/p/?LinkId=255141 -> http://go.microsoft.com/fwlink/?LinkId=69157
R�par� : [HKLM\Software\Microsoft\Internet Explorer\Main]|[BrowserMngr Start Page] : -> http://www.google.com/
R�par� : [HKLM\Software\Microsoft\Internet Explorer\Main]|[CustomizeSearch] : -> http://www.google.com/
R�par� : [HKLM\Software\Microsoft\Internet Explorer\Search]|[Search Bar] : -> http://www.google.com/
R�par� : [HKLM\Software\Microsoft\Internet Explorer\Search]|[Start Page] : -> http://www.google.com/
R�par� : [HKLM\Software\Microsoft\Internet Explorer\Search]|[Start Default_Page_URL] : -> http://www.google.com/
R�par� : [HKLM\Software\Microsoft\Internet Explorer\Search]|[Local Page] : -> C:\WINDOWS\SysWOW64\blank.htm
R�par� : [HKLM\Software\Microsoft\Internet Explorer\Search]|[Search Page] : -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R�par� : [HKLM\Software\Microsoft\Internet Explorer\Search]|[Default_Search_URL] : -> http://go.microsoft.com/fwlink/?LinkId=54896
R�par� : [HKLM\Software\Microsoft\Internet Explorer\Search]|[Default_Page_URL] : -> http://go.microsoft.com/fwlink/?LinkId=69157
R�par� : [HKLM\Software\Microsoft\Internet Explorer\Search]|[BrowserMngr Start Page] : -> http://www.google.com/
R�par� : [HKLM\Software\Microsoft\Internet Explorer\Search]|[CustomizeSearch] : -> http://www.google.com/
R�par� : [HKLM\Software\Microsoft\Internet Explorer\AboutURLs]|[Tabs] : -> http://www.google.com/
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Main\Window Title]|[] : -> Internet Explorer
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Main]|[Search Bar] : -> http://www.google.com/
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Main]|[Start Page] : about:blank -> http://www.google.com/
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Main]|[Start Default_Page_URL] : -> http://www.google.com/
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Main]|[Local Page] : C:\Windows\System32\blank.htm -> C:\WINDOWS\SysWOW64\blank.htm
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Main]|[Search Page] : http://www.google.com -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Main]|[Default_Search_URL] : http://www.google.com -> http://go.microsoft.com/fwlink/?LinkId=54896
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Main]|[Default_Page_URL] : about:blank -> http://go.microsoft.com/fwlink/?LinkId=69157
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Main]|[BrowserMngr Start Page] : -> http://www.google.com/
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Main]|[CustomizeSearch] : -> http://www.google.com/
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Search]|[Search Bar] : -> http://www.google.com/
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Search]|[Start Page] : -> http://www.google.com/
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Search]|[Start Default_Page_URL] : -> http://www.google.com/
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Search]|[Local Page] : -> C:\WINDOWS\SysWOW64\blank.htm
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Search]|[Search Page] : -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Search]|[Default_Search_URL] : -> http://go.microsoft.com/fwlink/?LinkId=54896
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Search]|[Default_Page_URL] : -> http://go.microsoft.com/fwlink/?LinkId=69157
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Search]|[BrowserMngr Start Page] : -> http://www.google.com/
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Search]|[CustomizeSearch] : -> http://www.google.com/
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\AboutURLs]|[Tabs] : -> http://www.google.com/
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main\Window Title]|[] : -> Internet Explorer
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main]|[Search Bar] : -> http://www.google.com/
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main]|[Start Page] : -> http://www.google.com/
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main]|[Start Default_Page_URL] : -> http://www.google.com/
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main]|[Local Page] : -> C:\WINDOWS\SysWOW64\blank.htm
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main]|[Search Page] : -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main]|[Default_Search_URL] : -> http://go.microsoft.com/fwlink/?LinkId=54896
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main]|[Default_Page_URL] : -> http://go.microsoft.com/fwlink/?LinkId=69157
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main]|[BrowserMngr Start Page] : -> http://www.google.com/
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main]|[CustomizeSearch] : -> http://www.google.com/
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Search]|[Search Bar] : -> http://www.google.com/
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Search]|[Start Page] : -> http://www.google.com/
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Search]|[Start Default_Page_URL] : -> http://www.google.com/
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Search]|[Local Page] : -> C:\WINDOWS\SysWOW64\blank.htm
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Search]|[Search Page] : -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Search]|[Default_Search_URL] : -> http://go.microsoft.com/fwlink/?LinkId=54896
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Search]|[Default_Page_URL] : -> http://go.microsoft.com/fwlink/?LinkId=69157
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Search]|[BrowserMngr Start Page] : -> http://www.google.com/
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Search]|[CustomizeSearch] : -> http://www.google.com/
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\AboutURLs]|[Tabs] : -> http://www.google.com/
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main\Window Title]|[] : -> Internet Explorer
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main]|[Search Bar] : -> http://www.google.com/
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main]|[Start Page] : -> http://www.google.com/
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main]|[Start Default_Page_URL] : -> http://www.google.com/
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main]|[Local Page] : -> C:\WINDOWS\SysWOW64\blank.htm
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main]|[Search Page] : -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main]|[Default_Search_URL] : -> http://go.microsoft.com/fwlink/?LinkId=54896
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main]|[Default_Page_URL] : -> http://go.microsoft.com/fwlink/?LinkId=69157
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main]|[BrowserMngr Start Page] : -> http://www.google.com/
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main]|[CustomizeSearch] : -> http://www.google.com/
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Search]|[Search Bar] : -> http://www.google.com/
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Search]|[Start Page] : -> http://www.google.com/
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Search]|[Start Default_Page_URL] : -> http://www.google.com/
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Search]|[Local Page] : -> C:\WINDOWS\SysWOW64\blank.htm
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Search]|[Search Page] : -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Search]|[Default_Search_URL] : -> http://go.microsoft.com/fwlink/?LinkId=54896
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Search]|[Default_Page_URL] : -> http://go.microsoft.com/fwlink/?LinkId=69157
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Search]|[BrowserMngr Start Page] : -> http://www.google.com/
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Search]|[CustomizeSearch] : -> http://www.google.com/
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\AboutURLs]|[Tabs] : -> http://www.google.com/
R�par� : [HKU\S-1-5-21-2172578901-538438889-293983095-1002\Software\Microsoft\Internet Explorer\Main\Window Title]|[] : -> Internet Explorer
R�par� : [HKU\S-1-5-21-2172578901-538438889-293983095-1002\Software\Microsoft\Internet Explorer\Main]|[Search Bar] : -> http://www.google.com/
R�par� : [HKU\S-1-5-21-2172578901-538438889-293983095-1002\Software\Microsoft\Internet Explorer\Main]|[Start Page] : about:blank -> http://www.google.com/
R�par� : [HKU\S-1-5-21-2172578901-538438889-293983095-1002\Software\Microsoft\Internet Explorer\Main]|[Start Default_Page_URL] : -> http://www.google.com/
R�par� : [HKU\S-1-5-21-2172578901-538438889-293983095-1002\Software\Microsoft\Internet Explorer\Main]|[Local Page] : C:\WINDOWS\system32\blank.htm -> C:\WINDOWS\SysWOW64\blank.htm
R�par� : [HKU\S-1-5-21-2172578901-538438889-293983095-1002\Software\Microsoft\Internet Explorer\Main]|[Search Page] : http://go.microsoft.com/fwlink/?LinkId=54896 -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R�par� : [HKU\S-1-5-21-2172578901-538438889-293983095-1002\Software\Microsoft\Internet Explorer\Main]|[Default_Search_URL] : -> http://go.microsoft.com/fwlink/?LinkId=54896
R�par� : [HKU\S-1-5-21-2172578901-538438889-293983095-1002\Software\Microsoft\Internet Explorer\Main]|[Default_Page_URL] : about:blank -> http://go.microsoft.com/fwlink/?LinkId=69157
R�par� : [HKU\S-1-5-21-2172578901-538438889-293983095-1002\Software\Microsoft\Internet Explorer\Main]|[BrowserMngr Start Page] : -> http://www.google.com/
R�par� : [HKU\S-1-5-21-2172578901-538438889-293983095-1002\Software\Microsoft\Internet Explorer\Main]|[CustomizeSearch] : -> http://www.google.com/
R�par� : [HKU\S-1-5-21-2172578901-538438889-293983095-1002\Software\Microsoft\Internet Explorer\Search]|[Search Bar] : -> http://www.google.com/
R�par� : [HKU\S-1-5-21-2172578901-538438889-293983095-1002\Software\Microsoft\Internet Explorer\Search]|[Start Page] : -> http://www.google.com/
R�par� : [HKU\S-1-5-21-2172578901-538438889-293983095-1002\Software\Microsoft\Internet Explorer\Search]|[Start Default_Page_URL] : -> http://www.google.com/
R�par� : [HKU\S-1-5-21-2172578901-538438889-293983095-1002\Software\Microsoft\Internet Explorer\Search]|[Local Page] : -> C:\WINDOWS\SysWOW64\blank.htm
R�par� : [HKU\S-1-5-21-2172578901-538438889-293983095-1002\Software\Microsoft\Internet Explorer\Search]|[Search Page] : -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R�par� : [HKU\S-1-5-21-2172578901-538438889-293983095-1002\Software\Microsoft\Internet Explorer\Search]|[Default_Search_URL] : -> http://go.microsoft.com/fwlink/?LinkId=54896
R�par� : [HKU\S-1-5-21-2172578901-538438889-293983095-1002\Software\Microsoft\Internet Explorer\Search]|[Default_Page_URL] : -> http://go.microsoft.com/fwlink/?LinkId=69157
R�par� : [HKU\S-1-5-21-2172578901-538438889-293983095-1002\Software\Microsoft\Internet Explorer\Search]|[BrowserMngr Start Page] : -> http://www.google.com/
R�par� : [HKU\S-1-5-21-2172578901-538438889-293983095-1002\Software\Microsoft\Internet Explorer\Search]|[CustomizeSearch] : -> http://www.google.com/
R�par� : [HKU\S-1-5-21-2172578901-538438889-293983095-1002\Software\Microsoft\Internet Explorer\AboutURLs]|[Tabs] : -> http://www.google.com/
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Main\Window Title]|[] : -> Internet Explorer
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Main]|[Search Bar] : -> http://www.google.com/
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Main]|[Start Page] : -> http://www.google.com/
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Main]|[Start Default_Page_URL] : -> http://www.google.com/
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Main]|[Local Page] : -> C:\WINDOWS\SysWOW64\blank.htm
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Main]|[Search Page] : -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Main]|[Default_Search_URL] : -> http://go.microsoft.com/fwlink/?LinkId=54896
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Main]|[Default_Page_URL] : -> http://go.microsoft.com/fwlink/?LinkId=69157
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Main]|[BrowserMngr Start Page] : -> http://www.google.com/
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Main]|[CustomizeSearch] : -> http://www.google.com/
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Search]|[Search Bar] : -> http://www.google.com/
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Search]|[Start Page] : -> http://www.google.com/
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Search]|[Start Default_Page_URL] : -> http://www.google.com/
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Search]|[Local Page] : -> C:\WINDOWS\SysWOW64\blank.htm
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Search]|[Search Page] : -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Search]|[Default_Search_URL] : -> http://go.microsoft.com/fwlink/?LinkId=54896
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Search]|[Default_Page_URL] : -> http://go.microsoft.com/fwlink/?LinkId=69157
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Search]|[BrowserMngr Start Page] : -> http://www.google.com/
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Search]|[CustomizeSearch] : -> http://www.google.com/
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\AboutURLs]|[Tabs] : -> http://www.google.com/
���������� | D�tournement Google Chrome
[h] Remis a z�ro avec succ�s : SearchURL
[h] Remis a z�ro avec succ�s : Preferences
[h] : aohghmighlieiainnegkcijnfilokake = : Google & co - Google & co
[h] : apdfllckaahabafndbhieahigkjlhalf = : Google & co - https://drive.google.com/?usp=chrome_app - Google & co
[h] : blpcfgokakmgnkcojhhkbfbldkacnbeo = : Google & co - http://www.youtube.com - http://www.youtube.com/?feature=ytca - Google & co
[h] : cfhdojbkjhnklbpkdaibdccddilifddb = : __MSG_description_chrome__ - __MSG_name__
[h] : coobgpohoikkiipiblmjeljniedjpjpf = : Google & co - http://www.google.com/webhp?source=search_app - Google & co
[h] : gjjapmfdikcnbajhfcjaphipdpkacbaf = - http://www.airlines-manager.com/ - Airlines-Manager
[h] : gppiglcnajkhlgfjagbppidmeolcbohb = : Google & co - Google & co
[h] : ibbhkjoamnfmpcilggihmfeebhienpea = : Shoot the targets with your sniper rifle! - http://chrome.funhost.net/play/?app=hotshotsniper - Hot Shot Sniper
[h] : ifbhccdddhenjmeamogpjhicnoffdood = : Google & co - http://www.chromegamecenter.com/game/crazy-shooting.html - Google & co
[h] : jgaeopgjojikeoiidmfaejkifhgjoooe = : __MSG_description__ - http://www.tiberiumalliances.com/openid/google - __MSG_title__
[h] : jgnbgccobjldcbielcnmdipnfjhidmep = : Google & co - http://www.jaxspot.com/?standalone_game=gamespot-plumber - Google & co
[h] : jlehaidnnmjjkhgbbiombcdifogolhap = : __MSG_bd_gamedesc_696_frameDescription_medium__ - http://skyrama.bigpoint.com/cws?aid=3306 - __MSG_bd_gameTitles_696__
[h] : lfdiklenhddhkckbiaofckaijlnepiab = : Google & co - http://games4future.com/?p=234 - Google & co
[h] : mggafhpkgkfebnjfbiefbbbicikgchlf = : __MSG_extensionDescription__ - Twoo Notifications
[h] : nmmhkkegccagdldgiimedpiccmgmieda = : Google & co - Google & co
[h] : oadboiipflhobonjjffjbfekfjcgkhco = : Google & co - Google & co
[h] : okdjgjhkolgmkjjddmnjejjphhkdjdhc = : Google & co - http://bigfarm.goodgamestudios.com/?w=108264 - Google & co
[h] : pjkljhegncpnkpknbcohdijeoejaedia = : Google & co - https://mail.google.com/mail/ca - Google & co
���������� | D�tournement Firefox
���������� | Opera
���������� | D�tournement des cl�s StartMenuInternet
R�par� : [HKLM\Software\Clients\StartMenuInternet\IExplore.exe\shell\open\command] : C:\Program Files\Internet Explorer\iexplore.exe -> "C:\Program Files\Internet Explorer\iexplore.exe"
R�par� : [HKLM\Software\Clients\StartMenuInternet\Google Chrome\shell\open\command] : "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -> "C:\Program Files\Google\Chrome\Application\chrome.exe"
���������� | AppInit_DLLs
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]|[LoadAppInit_DLLs] : 0
[HKLM64\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]|[LoadAppInit_DLLs] : 1
���������� | D�tournement Javascript
���������� | Firewall
R�par� : [HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]|[EnableFirewall] : 1 -> 0
R�par� : [HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]|[EnableFirewall] : 1 -> 0
R�par� : [HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]|[EnableFirewall] : 1 -> 0
���������� | ADS
���������� | Fichiers temporaires
[All Users] Fichiers temporaires Supprim�s : 0 Ko
[coucou] Fichiers temporaires Supprim�s : 0 Ko
[Default] Fichiers temporaires Supprim�s : 0 Ko
[Default User] Fichiers temporaires Supprim�s : 0 Ko
[Default.migrated] Fichiers temporaires Supprim�s : 0 Ko
[h] Fichiers temporaires Supprim�s : 35 Ko
[Public] Fichiers temporaires Supprim�s : 0 Ko
[UpdatusUser] Fichiers temporaires Supprim�s : 0 Ko
[C:\WINDOWS\Temp] Fichiers temporaires Supprim�s : 9 Ko
[C:\Temp] Fichiers temporaires Supprim�s : 0 Ko
Service Red�marr� : MPSsvc
Autre rapport
Mise en veille restaur�e
���������� | Listing
���������� | C:\Program Files (x86)
[15/10/2013 11:06:18] - |D| - C:\Program Files (x86)\AGEIA Technologies
[15/10/2013 11:07:45] - |D| - C:\Program Files (x86)\Bonjour
[03/05/2014 15:32:53] - |D| - C:\Program Files (x86)\Cisco
[22/08/2013 15:36:15] - |D| - C:\Program Files (x86)\Common Files
[15/10/2013 11:18:26] - |D| - C:\Program Files (x86)\CyberLink
[04/05/2014 11:23:34] - |D| - C:\Program Files (x86)\DAEMON Tools Lite
[22/08/2013 17:36:33] - |ASH| - C:\Program Files (x86)\desktop.ini
[20/05/2014 18:25:18] - |D| - C:\Program Files (x86)\Electronic Arts
[02/05/2014 18:19:08] - |D| - C:\Program Files (x86)\Google
[23/07/2013 21:39:32] - |D| - C:\Program Files (x86)\Hewlett-Packard
[23/07/2013 21:51:41] - |D| - C:\Program Files (x86)\HPConnectedMusic
[23/07/2013 21:53:48] - |HD| - C:\Program Files (x86)\InstallShield Installation Information
[17/05/2014 00:24:02] - |D| - C:\Program Files (x86)\Intel
[22/08/2013 17:36:30] - |D| - C:\Program Files (x86)\Internet Explorer
[12/05/2014 16:20:39] - |D| - C:\Program Files (x86)\Java
[04/05/2014 12:21:21] - |D| - C:\Program Files (x86)\Microsoft Analysis Services
[04/05/2014 11:32:51] - |D| - C:\Program Files (x86)\Microsoft Games
[23/07/2013 21:43:17] - |D| - C:\Program Files (x86)\Microsoft Office
[26/05/2014 19:49:36] - |D| - C:\Program Files (x86)\Microsoft Silverlight
[23/07/2013 21:47:38] - |D| - C:\Program Files (x86)\Microsoft SkyDrive
[04/05/2014 12:23:40] - |D| - C:\Program Files (x86)\Microsoft SQL Server
[23/07/2013 21:48:29] - |D| - C:\Program Files (x86)\Microsoft SQL Server Compact Edition
[22/08/2013 17:36:30] - |D| - C:\Program Files (x86)\Microsoft.NET
[12/05/2014 16:36:38] - |D| - C:\Program Files (x86)\Mozilla Firefox
[17/05/2014 01:12:43] - |D| - C:\Program Files (x86)\MSBuild
[15/10/2013 11:32:55] - |D| - C:\Program Files (x86)\NortonInstaller
[17/05/2014 00:24:20] - |D| - C:\Program Files (x86)\NVIDIA Corporation
[23/07/2013 21:51:18] - |RD| - C:\Program Files (x86)\Online Services
[15/10/2013 10:59:11] - |D| - C:\Program Files (x86)\Realtek
[17/05/2014 01:12:43] - |D| - C:\Program Files (x86)\Reference Assemblies
[15/10/2013 11:34:13] - |D| - C:\Program Files (x86)\SymSilent
[15/10/2013 10:59:54] - |HD| - C:\Program Files (x86)\Temp
[09/05/2014 18:24:11] - |D| - C:\Program Files (x86)\VideoLAN
[23/07/2013 21:57:16] - |D| - C:\Program Files (x86)\WildGames
[23/07/2013 21:56:53] - |D| - C:\Program Files (x86)\WildTangent Games
[22/08/2013 17:36:30] - |D| - C:\Program Files (x86)\Windows Defender
[23/07/2013 21:48:14] - |D| - C:\Program Files (x86)\Windows Live
[22/08/2013 17:36:30] - |D| - C:\Program Files (x86)\Windows Mail
[22/08/2013 17:36:30] - |D| - C:\Program Files (x86)\Windows Media Player
[22/08/2013 17:36:30] - |D| - C:\Program Files (x86)\Windows Multimedia Platform
[22/08/2013 17:36:30] - |D| - C:\Program Files (x86)\Windows NT
[22/08/2013 17:36:30] - |D| - C:\Program Files (x86)\Windows Photo Viewer
[22/08/2013 17:36:30] - |D| - C:\Program Files (x86)\Windows Portable Devices
[22/08/2013 17:36:30] - |SHD| - C:\Program Files (x86)\Windows Sidebar
[22/08/2013 17:36:30] - |D| - C:\Program Files (x86)\WindowsPowerShell
[21/06/2014 18:56:48] - |D| - C:\Program Files (x86)\ZHPDiag
���������� | C:\Program Files
[23/07/2013 21:41:33] - |D| - C:\Program Files\7-Zip
[27/05/2014 06:34:57] - |D| - C:\Program Files\AVAST Software
[15/10/2013 11:07:45] - |D| - C:\Program Files\Bonjour
[21/06/2014 07:38:59] - |D| - C:\Program Files\CCleaner
[22/08/2013 15:36:15] - |D| - C:\Program Files\Common Files
[22/08/2013 17:36:45] - |ASH| - C:\Program Files\desktop.ini
[02/05/2014 15:55:52] - |SHD| - C:\Program Files\Fichiers communs
[01/06/2013 00:28:30] - |D| - C:\Program Files\Hewlett-Packard
[17/05/2014 00:23:46] - |D| - C:\Program Files\Intel
[22/08/2013 17:36:31] - |D| - C:\Program Files\Internet Explorer
[04/05/2014 12:21:21] - |D| - C:\Program Files\Microsoft Analysis Services
[04/05/2014 12:21:10] - |D| - C:\Program Files\Microsoft Office
[26/05/2014 19:49:36] - |D| - C:\Program Files\Microsoft Silverlight
[04/05/2014 12:23:12] - |D| - C:\Program Files\Microsoft SQL Server
[21/05/2014 19:25:08] - |D| - C:\Program Files\Microsoft.NET
[17/05/2014 01:12:40] - |D| - C:\Program Files\MSBuild
[17/05/2014 00:24:20] - |D| - C:\Program Files\NVIDIA Corporation
[23/07/2013 21:51:28] - |RD| - C:\Program Files\Online Services
[17/05/2014 00:23:05] - |D| - C:\Program Files\Realtek
[17/05/2014 01:12:40] - |D| - C:\Program Files\Reference Assemblies
[17/05/2014 00:24:07] - |D| - C:\Program Files\Synaptics
[26/07/2012 09:22:18] - |HD| - C:\Program Files\Uninstall Information
[22/08/2013 17:36:31] - |D| - C:\Program Files\Windows Defender
[18/03/2014 11:41:34] - |D| - C:\Program Files\Windows Journal
[22/08/2013 17:36:31] - |D| - C:\Program Files\Windows Mail
[22/08/2013 17:36:31] - |D| - C:\Program Files\Windows Media Player
[22/08/2013 17:36:31] - |D| - C:\Program Files\Windows Multimedia Platform
[22/08/2013 17:36:31] - |D| - C:\Program Files\Windows NT
[22/08/2013 17:36:31] - |D| - C:\Program Files\Windows Photo Viewer
[22/08/2013 17:36:31] - |D| - C:\Program Files\Windows Portable Devices
[22/08/2013 17:36:31] - |SHD| - C:\Program Files\Windows Sidebar
[22/08/2013 17:36:31] - |HD| - C:\Program Files\WindowsApps
[22/08/2013 17:36:31] - |D| - C:\Program Files\WindowsPowerShell
���������� | C:\Program Files (x86)\Common Files
[08/05/2014 20:39:10] - |D| - C:\Program Files (x86)\Common Files\CyberLink
[15/10/2013 10:59:51] - |D| - C:\Program Files (x86)\Common Files\InstallShield
[17/05/2014 00:23:39] - |D| - C:\Program Files (x86)\Common Files\Intel
[15/10/2013 11:06:56] - |D| - C:\Program Files (x86)\Common Files\Intel Corporation
[12/05/2014 16:21:11] - |D| - C:\Program Files (x86)\Common Files\Java
[22/08/2013 17:36:30] - |D| - C:\Program Files (x86)\Common Files\Microsoft Shared
[15/10/2013 11:32:18] - |D| - C:\Program Files (x86)\Common Files\Nikon
[15/10/2013 10:57:20] - |D| - C:\Program Files (x86)\Common Files\postureAgent
[22/08/2013 17:36:30] - |D| - C:\Program Files (x86)\Common Files\Services
[02/05/2014 19:19:03] - |D| - C:\Program Files (x86)\Common Files\Symantec Shared
[22/08/2013 17:36:30] - |D| - C:\Program Files (x86)\Common Files\System
[23/07/2013 21:47:17] - |D| - C:\Program Files (x86)\Common Files\Windows Live
���������� | C:\Program Files\Common Files
[04/05/2014 12:24:00] - |D| - C:\Program Files\Common Files\DESIGNER
[22/08/2013 17:36:31] - |D| - C:\Program Files\Common Files\microsoft shared
[22/08/2013 17:36:31] - |D| - C:\Program Files\Common Files\Services
[22/08/2013 17:36:31] - |D| - C:\Program Files\Common Files\System
���������� | C:\Users\h\AppData\Roaming
[02/05/2014 18:07:05] - |D| - C:\Users\h\AppData\Roaming\Adobe
[27/05/2014 06:38:25] - |D| - C:\Users\h\AppData\Roaming\AVAST Software
[05/05/2014 17:33:59] - |D| - C:\Users\h\AppData\Roaming\Awem
[20/05/2014 18:53:41] - |D| - C:\Users\h\AppData\Roaming\Command and Conquer 4
[02/05/2014 19:53:33] - |D| - C:\Users\h\AppData\Roaming\CyberLink
[04/05/2014 11:23:37] - |D| - C:\Users\h\AppData\Roaming\DAEMON Tools Lite
[27/05/2014 06:41:56] - |D| - C:\Users\h\AppData\Roaming\Dropbox
[06/05/2014 22:31:46] - |D| - C:\Users\h\AppData\Roaming\freshgames
[02/05/2014 18:08:44] - |D| - C:\Users\h\AppData\Roaming\Hewlett-Packard
[11/05/2014 09:14:08] - |D| - C:\Users\h\AppData\Roaming\HewlettPackard
[02/05/2014 23:34:02] - |D| - C:\Users\h\AppData\Roaming\hpqlog
[17/05/2014 07:04:10] - |D| - C:\Users\h\AppData\Roaming\Identities
[02/05/2014 18:21:50] - |D| - C:\Users\h\AppData\Roaming\Macromedia
[17/05/2014 00:31:56] - |SD| - C:\Users\h\AppData\Roaming\Microsoft
[02/05/2014 20:01:16] - |D| - C:\Users\h\AppData\Roaming\NVIDIA
[12/05/2014 16:22:00] - |D| - C:\Users\h\AppData\Roaming\Oracle
[02/05/2014 18:05:35] - |D| - C:\Users\h\AppData\Roaming\Synaptics
[08/05/2014 18:36:06] - |D| - C:\Users\h\AppData\Roaming\uTorrent
[02/05/2014 20:22:01] - |D| - C:\Users\h\AppData\Roaming\VisualShape
[18/05/2014 09:44:04] - |D| - C:\Users\h\AppData\Roaming\vlc
[02/05/2014 19:59:46] - |D| - C:\Users\h\AppData\Roaming\WildTangent
[21/06/2014 18:56:48] - |D| - C:\Users\h\AppData\Roaming\ZHP
���������� | C:\Users\h\AppData\Local
[17/05/2014 00:31:56] - |SHD| - C:\Users\h\AppData\Local\Application Data
[02/05/2014 18:18:38] - |D| - C:\Users\h\AppData\Local\Apps
[02/05/2014 18:08:52] - |D| - C:\Users\h\AppData\Local\CyberLink
[08/05/2014 20:23:40] - |D| - C:\Users\h\AppData\Local\Downloaded Installations
[02/05/2014 18:19:04] - |D| - C:\Users\h\AppData\Local\Google
[02/05/2014 18:06:10] - |D| - C:\Users\h\AppData\Local\Hewlett-Packard
[17/05/2014 00:31:56] - |SHD| - C:\Users\h\AppData\Local\Historique
[04/05/2014 18:49:38] - |D| - C:\Users\h\AppData\Local\HP Quick Start
[05/05/2014 22:12:54] - |D| - C:\Users\h\AppData\Local\HPConnectedMusic
[22/05/2014 17:55:02] - |AH| - C:\Users\h\AppData\Local\IconCache.db
[08/05/2014 20:30:08] - |D| - C:\Users\h\AppData\Local\MediaServer
[17/05/2014 00:31:56] - |D| - C:\Users\h\AppData\Local\Microsoft
[04/05/2014 12:21:14] - |D| - C:\Users\h\AppData\Local\Microsoft Help
[02/05/2014 18:04:32] - |D| - C:\Users\h\AppData\Local\Packages
[02/05/2014 18:05:38] - |D| - C:\Users\h\AppData\Local\Power2Go8
[21/06/2014 13:11:11] - |D| - C:\Users\h\AppData\Local\Programs
[22/06/2014 11:57:39] - |D| - C:\Users\h\AppData\Local\Temp
[17/05/2014 00:31:56] - |SHD| - C:\Users\h\AppData\Local\Temporary Internet Files
[02/05/2014 18:04:38] - |D| - C:\Users\h\AppData\Local\VirtualStore
[21/05/2014 18:19:15] - |D| - C:\Users\h\AppData\Local\Wild Tangent
���������� | C:\ProgramData
[15/10/2013 11:07:45] - |D| - C:\ProgramData\Apple
[22/08/2013 16:45:52] - |SHD| - C:\ProgramData\Application Data
[27/05/2014 06:34:17] - |D| - C:\ProgramData\AVAST Software
[02/05/2014 20:01:26] - |D| - C:\ProgramData\BlueStacks
[02/05/2014 15:55:52] - |SHD| - C:\ProgramData\Bureau
[15/10/2013 11:20:17] - |D| - C:\ProgramData\CyberLink
[04/05/2014 11:22:58] - |D| - C:\ProgramData\DAEMON Tools Lite
[22/08/2013 16:45:52] - |SHD| - C:\ProgramData\Desktop
[22/08/2013 16:45:52] - |SHD| - C:\ProgramData\Documents
[06/05/2014 22:31:46] - |D| - C:\ProgramData\freshgames
[23/07/2013 21:42:51] - |D| - C:\ProgramData\Hewlett-Packard
[15/10/2013 11:17:42] - |D| - C:\ProgramData\install_clap
[15/10/2013 10:58:55] - |D| - C:\ProgramData\Intel
[12/05/2014 16:20:50] - |D| - C:\ProgramData\ItsMyApp
[21/06/2014 13:12:51] - |D| - C:\ProgramData\Malwarebytes
[02/05/2014 15:55:52] - |SHD| - C:\ProgramData\Menu D�marrer
[22/08/2013 15:36:15] - |SD| - C:\ProgramData\Microsoft
[04/05/2014 12:21:09] - |D| - C:\ProgramData\Microsoft Help
[23/07/2013 21:47:27] - |D| - C:\ProgramData\Microsoft SkyDrive
[04/05/2014 12:32:44] - |D| - C:\ProgramData\Microsoft Toolkit
[02/05/2014 15:55:52] - |SHD| - C:\ProgramData\Mod�les
[15/10/2013 11:33:00] - |D| - C:\ProgramData\Norton
[15/10/2013 11:32:55] - |D| - C:\ProgramData\NortonInstaller
[15/10/2013 11:05:45] - |D| - C:\ProgramData\NVIDIA
[17/05/2014 00:24:29] - |D| - C:\ProgramData\NVIDIA Corporation
[12/05/2014 16:21:17] - |D| - C:\ProgramData\Oracle
[15/10/2013 11:08:45] - |D| - C:\ProgramData\Package Cache
[03/05/2014 00:36:25] - |D| - C:\ProgramData\Playrix Entertainment
[04/08/2012 00:29:07] - |D| - C:\ProgramData\PRICache
[22/08/2013 17:36:30] - |D| - C:\ProgramData\regid.1991-06.com.microsoft
[22/08/2013 16:45:52] - |SHD| - C:\ProgramData\Start Menu
[12/05/2014 16:21:12] - |D| - C:\ProgramData\Sun
[15/10/2013 11:13:10] - |D| - C:\ProgramData\Synaptics
[15/10/2013 11:17:43] - |D| - C:\ProgramData\Temp
[22/08/2013 16:45:52] - |SHD| - C:\ProgramData\Templates
[02/05/2014 20:22:01] - |D| - C:\ProgramData\VisualShape
[23/07/2013 21:56:50] - |D| - C:\ProgramData\WildTangent
[18/05/2014 13:12:33] - |D| - C:\ProgramData\{18165758-115C-4DC0-9EC2-FF89F725767F}
[X] : [5044 Ko]
El�ments analys�s : 264596 | Infect�s : 174
���������� |EOF| ���������� | 12:36:13 | [58 Ko]
����� Vista | 7 | 8 | 8.1 - 32/64 bits ����� - Start 12:00:42 - 22/06/2014
Mis � jour le : 21/06/2014 | 15.40 par g3n-h@ckm@n
Contact : http://www.sosvirus.net
Assistance : http://www.sosvirus.net/forum-virus-securite.html
Feedbacks : http://www.sosvirus.net/feedbacks-t75915.html
Boot: Normal boot
Syst�me : Windows 8.1 (64 bits) Core
M�moire RAM = Total (MB) : 8153 | Libre (MB) : 6142
Pagefile = Total (MB) : 9464 | Libre (MB) : 7385
Virtuelle = Total (MB) : 4194 | Libre (MB) : 4008
Registre sauvegard� , pour restaurer : C:\Shortcut_Module\Save\Clean\ERDNT.exe
���������� | Mises � jour Windows
Aucune mise � jour d�tect�e !!!
���������� | Navigateurs
IE : 11.0.9600.17126 (� Microsoft Corporation. Tous droits r�serv�s.)
GC : 35.0.1916.153 (Copyright 2012 Google Inc. All rights reserved.)
���������� | Security
FW :
WMI : OK
WU: Windows Update Service [Manual(3)] = Arr�t�
AS: Windows Defender [Manual(3)] = Arr�t�
FW: Windows FireWall Service [Auto(2)] = Arr�t�
Mise en veille supprim�e !
���������� | FlashPlayer
FlashPlayer ActiveX : 14.0.0.125
���������� | Processus tu�s
1016 | [Owner : Syst�me |Parent : 680] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 331.65.) - (8.17.13.3165) = C:\Windows\System32\nvvsvc.exe
508 | [Owner : Syst�me |Parent : 1016] - (.NVIDIA Corporation - NVIDIA User Experience Driver Component.) - (8.17.13.3165) = C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
1028 | [Owner : Syst�me |Parent : 1016] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 331.65.) - (8.17.13.3165) = C:\Windows\System32\nvvsvc.exe
1152 | [Owner : Syst�me |Parent : 680] - (.Hewlett-Packard Company - HpService.) - (6.0.5.1) = C:\Windows\System32\hpservice.exe
1244 | [Owner : Syst�me |Parent : 680] - (.Realtek Semiconductor - Realtek Audio Service.) - (1.0.0.46) = C:\Program Files\Realtek\Audio\HDA\RTKAUDIOSERVICE64.EXE
1260 | [Owner : Syst�me |Parent : 1244] - (.Realtek Semiconductor - HD Audio Background Process.) - (1.0.0.150) = C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
1512 | [Owner : Syst�me |Parent : 1068] - (.Microsoft Corporation - Infrastructure d�extensibilit� pour les services r�seau Windows sans fil 802.11.) - (6.3.9600.16384) = C:\Windows\System32\wlanext.exe
1772 | [Owner : Syst�me |Parent : 680] - (.Microsoft Corporation - Application sous-syst�me spouleur.) - (6.3.9600.16384) = C:\Windows\System32\spoolsv.exe
1968 | [Owner : Syst�me |Parent : 680] - (.Andrea Electronics Corporation - Andrea filters APO access service (64-bit).) - (1.0.64.10) = C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
2004 | [Owner : Syst�me |Parent : 680] - (.Apple Inc. - Bonjour Service.) - (3.0.0.10) = C:\Program Files\Bonjour\mDNSResponder.exe
1096 | [Owner : Syst�me |Parent : 680] - (.Hewlett-Packard Development Company, L.P. - HP WMI Service.) - (1.0.2.0) = C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe
960 | [Owner : SERVICE LOCAL |Parent : 1068] - (.Microsoft Corporation - Device Association Framework Provider Host.) - (6.3.9600.17031) = C:\Windows\System32\dasHost.exe
1428 | [Owner : Syst�me |Parent : 680] - (.Intel(R) Corporation - Intel(R) Capability Licensing Service Interface.) - (1.28.487.1) = C:\Program Files\Intel\iCLS Client\HeciServer.exe
3692 | [Owner : h |Parent : 676] - (.Microsoft Corporation - Processus h�te pour T�ches Windows.) - (6.3.9600.17031) = C:\Windows\System32\taskhostex.exe
3820 | [Owner : h |Parent : 3788] - (.Microsoft Corporation - Explorateur Windows.) - (6.3.9600.17039) = C:\Windows\explorer.exe
3944 | [Owner : Syst�me |Parent : 3752] - (.Google Inc. - Google Crash Handler.) - (1.3.24.15) = C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler.exe
3952 | [Owner : Syst�me |Parent : 3752] - (.Google Inc. - Google Crash Handler.) - (1.3.24.15) = C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler64.exe
4028 | [Owner : h |Parent : 508] - (.NVIDIA Corporation - NVIDIA Settings.) - (7.17.13.3165) = C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
2388 | [Owner : Syst�me |Parent : 680] - (.Microsoft Corporation - Indexeur Microsoft Windows Search.) - (7.0.9600.17031) = C:\Windows\System32\SearchIndexer.exe
3988 | [Owner : h |Parent : 836] - (.Microsoft Corporation - OneDrive Sync Engine Host.) - (6.3.9600.17085) = C:\Windows\System32\SkyDrive.exe
4296 | [Owner : h |Parent : 3820] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) - (1.0.0.290) = C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
4352 | [Owner : h |Parent : 3820] - (.Intel Corporation - igfxTray Module.) - (8.15.10.3412) = C:\Windows\System32\igfxtray.exe
4396 | [Owner : h |Parent : 3820] - (.Intel Corporation - hkcmd Module.) - (8.15.10.3412) = C:\Windows\System32\hkcmd.exe
4404 | [Owner : h |Parent : 836] - (.Intel Corporation - igfxsrvc Module.) - (8.15.10.3412) = C:\Windows\System32\igfxsrvc.exe
4444 | [Owner : h |Parent : 3820] - (.Intel Corporation - persistence Module.) - (8.15.10.3412) = C:\Windows\System32\igfxpers.exe
4496 | [Owner : h |Parent : 3820] - (.Synaptics Incorporated - Synaptics TouchPad 64-bit Enhancements.) - (17.0.6.2) = C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
4692 | [Owner : h |Parent : 4512] - (.Synaptics Incorporated - Synaptics Pointing Device Helper.) - (17.0.6.2) = C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
4936 | [Owner : h |Parent : 4872] - (.CyberLink Corp. - CyberLink YouCam Service.) - (5.0.2922.0) = C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe
5040 | [Owner : h |Parent : 4872] - (.Hewlett-Packard Development Company, L.P. - HP Message Service.) - (1.0.11.0) = C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe
4116 | [Owner : h |Parent : 4872] - (.Hewlett-Packard Company - Hp Accelerometer System Tray.) - (6.0.15.1) = C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.exe
4472 | [Owner : h |Parent : 676] - (.CyberLink - CyberLink MediaLibrary Service.) - (8.0.0.2002) = C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
4628 | [Owner : h |Parent : 676] - (.Hewlett-Packard Development Company, L.P. - HP CoolSense.) - (2.2.0.11) = C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
4660 | [Owner : h |Parent : 4872] - (.Oracle Corporation - Java(TM) Update Scheduler.) - (2.1.9.8) = C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
5320 | [Owner : h |Parent : 836] - (.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) - (6.3.9600.16384) = C:\Windows\System32\wbem\unsecapp.exe
5536 | [Owner : h |Parent : 836] - (.Microsoft Corporation - Runtime Broker.) - (6.3.9600.16384) = C:\Windows\System32\RuntimeBroker.exe
5968 | [Owner : Syst�me |Parent : 680] - (.Hewlett-Packard Company - HP Software Framework WMI Service.) - (6.1.16.1) = C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
2524 | [Owner : Syst�me |Parent : 680] - (.CyberLink - CyberLink Media Server Monitor Service.) - (2.2.0.11427) = C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe
2720 | [Owner : Syst�me |Parent : 680] - (.WildTangent - WildTangent Games App Integration Service.) - (4.0.34.25) = C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
1840 | [Owner : Syst�me |Parent : 680] - (.Hewlett-Packard Company - HP Support Assistant Service.) - (7.2.45.3) = C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
5136 | [Owner : Syst�me |Parent : 680] - (.Intel Corporation - IAStorDataSvc.) - (12.8.1.1000) = C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
3216 | [Owner : Syst�me |Parent : 680] - (.Intel Corporation - Intel(R) ME Service.) - (9.5.10.1628) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
3060 | [Owner : Syst�me |Parent : 680] - (.Intel Corporation - Intel(R) Dynamic Application Loader Host Interface.) - (9.5.12.1682) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
3592 | [Owner : Syst�me |Parent : 680] - (.Intel Corporation - Intel(R) Local Management Service.) - (9.5.10.1628) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
2044 | [Owner : SERVICE R�SEAU |Parent : 680] - (.Microsoft Corporation - Service Partage r�seau du Lecteur Windows Media.) - (12.0.9600.17031) = C:\Program Files\Windows Media Player\wmpnetwk.exe
2132 | [Owner : h |Parent : 836] - (.Microsoft Corporation - Windows Reader.) - (6.3.9600.17044) = C:\Program Files\WindowsApps\Microsoft.Reader_6.3.9654.17044_x64__8wekyb3d8bbwe\glcnd.exe
4528 | [Owner : h |Parent : 836] - (.Microsoft Corporation - H�te Microsoft WWA.) - (6.3.9600.17031) = C:\Windows\SysWOW64\WWAHost.exe
4800 | [Owner : h |Parent : 836] - (.Microsoft Corporation - Host Process for Setting Synchronization.) - (6.3.9600.17031) = C:\Windows\System32\SettingSyncHost.exe
4636 | [Owner : Syst�me |Parent : 676] - (.Microsoft Corporation - Processus h�te pour T�ches Windows.) - (6.3.9600.17031) = C:\Windows\System32\taskhost.exe
7376 | [Owner : SERVICE LOCAL |Parent : 680] - (.Microsoft Corporation - PresentationFontCache.exe.) - (3.0.6920.7903) = C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
6076 | [Owner : h |Parent : 8136] - (.Google Inc. - Google Chrome.) - (35.0.1916.153) = C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
3748 | [Owner : h |Parent : 6076] - (.Google Inc. - Google Chrome.) - (35.0.1916.153) = C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
6072 | [Owner : h |Parent : 6076] - (.Google Inc. - Google Chrome.) - (35.0.1916.153) = C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
8120 | [Owner : h |Parent : 6076] - (.Google Inc. - Google Chrome.) - (35.0.1916.153) = C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
2556 | [Owner : Syst�me |Parent : 680] - (.CyberLink - CyberLink Media Server Service.) - (2.2.0.11427) = C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
6096 | [Owner : h |Parent : 4880] - (.Microsoft Corporation - Chargeur CTF.) - (6.3.9600.16384) = C:\Windows\SysWOW64\ctfmon.exe
8140 | [Owner : SERVICE LOCAL |Parent : 1068] - (.Microsoft Corporation - Device Association Framework Provider Host.) - (6.3.9600.17031) = C:\Windows\System32\dasHost.exe
6692 | [Owner : Syst�me |Parent : 680] - (.Intel(R) Corporation - Intel(R) Capability Licensing Service Interface.) - (1.28.487.1) = C:\Program Files\Intel\iCLS Client\HeciServer.exe
6960 | [Owner : SERVICE LOCAL |Parent : 680] - (.Microsoft Corporation - PresentationFontCache.exe.) - (3.0.6920.7903) = C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
���������� | Processus d�marr�s
372 | [Owner : Syst�me |Parent : 4] - (.Microsoft Corporation - Gestionnaire de sessions Windows.) - (6.3.9600.17031) = C:\Windows\System32\smss.exe
564 | [Owner : Syst�me |Parent : 552] - (.Microsoft Corporation - Processus d�ex�cution client-serveur.) - (6.3.9600.16384) = C:\Windows\System32\csrss.exe
632 | [Owner : Syst�me |Parent : 552] - (.Microsoft Corporation - Application de d�marrage de Windows.) - (6.3.9600.16384) = C:\Windows\System32\wininit.exe
680 | [Owner : Syst�me |Parent : 632] - (.Microsoft Corporation - Applications Services et Contr�leur.) - (6.3.9600.17084) = C:\Windows\System32\services.exe
688 | [Owner : Syst�me |Parent : 632] - (.Microsoft Corporation - Local Security Authority Process.) - (6.3.9600.16384) = C:\Windows\System32\lsass.exe
720 | [Owner : Syst�me |Parent : 640] - (.Microsoft Corporation - Processus d�ex�cution client-serveur.) - (6.3.9600.16384) = C:\Windows\System32\csrss.exe
784 | [Owner : Syst�me |Parent : 640] - (.Microsoft Corporation - Application d�ouverture de session Windows.) - (6.3.9600.17031) = C:\Windows\System32\winlogon.exe
836 | [Owner : Syst�me |Parent : 680] - (.Microsoft Corporation - Processus h�te pour les services Windows.) - (6.3.9600.16384) = C:\Windows\System32\svchost.exe
888 | [Owner : SERVICE R�SEAU |Parent : 680] - (.Microsoft Corporation - Processus h�te pour les services Windows.) - (6.3.9600.16384) = C:\Windows\System32\svchost.exe
1008 | [Owner : DWM-1 |Parent : 784] - (.Microsoft Corporation - Gestionnaire de fen�tres du Bureau.) - (6.3.9600.17031) = C:\Windows\System32\dwm.exe
572 | [Owner : SERVICE LOCAL |Parent : 680] - (.Microsoft Corporation - Processus h�te pour les services Windows.) - (6.3.9600.16384) = C:\Windows\System32\svchost.exe
676 | [Owner : Syst�me |Parent : 680] - (.Microsoft Corporation - Processus h�te pour les services Windows.) - (6.3.9600.16384) = C:\Windows\System32\svchost.exe
736 | [Owner : SERVICE LOCAL |Parent : 680] - (.Microsoft Corporation - Processus h�te pour les services Windows.) - (6.3.9600.16384) = C:\Windows\System32\svchost.exe
1068 | [Owner : Syst�me |Parent : 680] - (.Microsoft Corporation - Processus h�te pour les services Windows.) - (6.3.9600.16384) = C:\Windows\System32\svchost.exe
1304 | [Owner : SERVICE R�SEAU |Parent : 680] - (.Microsoft Corporation - Processus h�te pour les services Windows.) - (6.3.9600.16384) = C:\Windows\System32\svchost.exe
1524 | [Owner : Syst�me |Parent : 680] - (.AVAST Software - avast! Service.) - (9.0.2018.391) = C:\Program Files\AVAST Software\Avast\AvastSvc.exe
1800 | [Owner : SERVICE LOCAL |Parent : 680] - (.Microsoft Corporation - Processus h�te pour les services Windows.) - (6.3.9600.16384) = C:\Windows\System32\svchost.exe
1984 | [Owner : Syst�me |Parent : 680] - (.Microsoft Corporation - Processus h�te pour les services Windows.) - (6.3.9600.16384) = C:\Windows\System32\svchost.exe
1048 | [Owner : SERVICE LOCAL |Parent : 680] - (.Microsoft Corporation - Processus h�te pour les services Windows.) - (6.3.9600.16384) = C:\Windows\System32\svchost.exe
2324 | [Owner : SERVICE R�SEAU |Parent : 680] - (.Microsoft Corporation - Processus h�te pour les services Windows.) - (6.3.9600.16384) = C:\Windows\System32\svchost.exe
2340 | [Owner : SERVICE LOCAL |Parent : 680] - (.Microsoft Corporation - Processus h�te pour les services Windows.) - (6.3.9600.16384) = C:\Windows\System32\svchost.exe
2972 | [Owner : SERVICE LOCAL |Parent : 680] - (.Microsoft Corporation - Processus h�te pour les services Windows.) - (6.3.9600.16384) = C:\Windows\System32\svchost.exe
3328 | [Owner : SERVICE R�SEAU |Parent : 836] - (.Microsoft Corporation - WMI Provider Host.) - (6.3.9600.16384) = C:\Windows\System32\wbem\WmiPrvSE.exe
3416 | [Owner : Syst�me |Parent : 836] - (.Microsoft Corporation - WMI Provider Host.) - (6.3.9600.16384) = C:\Windows\System32\wbem\WmiPrvSE.exe
3460 | [Owner : Syst�me |Parent : 836] - (.Microsoft Corporation - COM Surrogate.) - (6.3.9600.16384) = C:\Windows\System32\dllhost.exe
4880 | [Owner : h |Parent : 4872] - (.AVAST Software - avast! Antivirus.) - (9.0.2018.401) = C:\Program Files\AVAST Software\Avast\avastui.exe
3248 | [Owner : Syst�me |Parent : 836] - (.Microsoft Corporation - COM Surrogate.) - (6.3.9600.16384) = C:\Windows\System32\dllhost.exe
3796 | [Owner : Syst�me |Parent : 836] - (.Microsoft Corporation - COM Surrogate.) - (6.3.9600.16384) = C:\Windows\System32\dllhost.exe
7032 | [Owner : SERVICE LOCAL |Parent : 572] - (.Microsoft Corporation - Isolation graphique de p�riph�rique audio Windows .) - (6.3.9600.17090) = C:\Windows\System32\audiodg.exe
8104 | [Owner : h |Parent : 3820] - (. - Shortcut_Module.) - (21.6.2014.4) = C:\Users\h\Desktop\Shortcut_Module.exe
6388 | [Owner : Syst�me |Parent : 680] - (.Intel(R) Corporation - Intel(R) Capability Licensing Service Interface.) - (1.28.487.1) = C:\Program Files\Intel\iCLS Client\HeciServer.exe
2128 | [Owner : h |Parent : 8104] - (. - Process Stopper.) - (1.0.0.0) = C:\Shortcut_Module\Protect_Module.exe
���������� | RUN
04 - HKLM\Software\Microsoft\Windows\CurrentVersion\Run : [YouCam Service] "C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe" /s
04 - HKLM\Software\Microsoft\Windows\CurrentVersion\Run : [HPMessageService] C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe
04 - HKLM\Software\Microsoft\Windows\CurrentVersion\Run : [AccelerometerSysTrayApplet] C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe
04 - HKLM\Software\Microsoft\Windows\CurrentVersion\Run : [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
04 - HKLM\Software\Microsoft\Windows\CurrentVersion\Run : [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
04 - HKLM64\Software\Microsoft\Windows\CurrentVersion\Run : [RTHDVCPL] "C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
04 - HKLM64\Software\Microsoft\Windows\CurrentVersion\Run : [IgfxTray] "C:\WINDOWS\system32\igfxtray.exe"
04 - HKLM64\Software\Microsoft\Windows\CurrentVersion\Run : [HotKeysCmds] "C:\WINDOWS\system32\hkcmd.exe"
04 - HKLM64\Software\Microsoft\Windows\CurrentVersion\Run : [Persistence] "C:\WINDOWS\system32\igfxpers.exe"
04 - HKLM64\Software\Microsoft\Windows\CurrentVersion\Run : [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
04 - HKLM64\Software\Microsoft\Windows\CurrentVersion\RunOnce : [NCPluginUpdater] "c:\program files (x86)\hewlett-packard\hp health check\activecheck\product_line\NCPluginUpdater.exe" Update
04 - HKU\S-1-5-21-2172578901-538438889-293983095-1002\Software\Microsoft\Windows\CurrentVersion\Run : [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
04 - HKU\S-1-5-21-2172578901-538438889-293983095-1002\Software\Microsoft\Windows\CurrentVersion\Run : [uTorrent] "C:\Users\h\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
04 - HKU\S-1-5-21-2172578901-538438889-293983095-1002\Software\Microsoft\Windows\CurrentVersion\Run : [Power2GoExpress8] "C:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe"
04 - HKU\S-1-5-21-2172578901-538438889-293983095-1002\Software\Microsoft\Windows\CurrentVersion\Run : [GoogleChromeAutoLaunch_1EFA27D13B9E35EF13E1DDDD17EF04AD] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
04 - HKU64\S-1-5-21-2172578901-538438889-293983095-1002\Software\Microsoft\Windows\CurrentVersion\Run : [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
04 - HKU64\S-1-5-21-2172578901-538438889-293983095-1002\Software\Microsoft\Windows\CurrentVersion\Run : [uTorrent] "C:\Users\h\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
04 - HKU64\S-1-5-21-2172578901-538438889-293983095-1002\Software\Microsoft\Windows\CurrentVersion\Run : [Power2GoExpress8] "C:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe"
04 - HKU64\S-1-5-21-2172578901-538438889-293983095-1002\Software\Microsoft\Windows\CurrentVersion\Run : [GoogleChromeAutoLaunch_1EFA27D13B9E35EF13E1DDDD17EF04AD] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
���������� | Services
Service en fonctionnement : MMCSS
Service en fonctionnement : Dhcp
Service en fonctionnement : TcpIp
Service en fonctionnement : WinHttpAutoProxysvc
Service en fonctionnement : SSDPSRV
Service en fonctionnement : MPSSvc
Service stopp� : MPSSvc
Service en fonctionnement : Rasman
Service stopp� : Rasman
Service en fonctionnement : LanmanServer
Service en fonctionnement : DNScache
Service stopp� : DNScache
���������� | Hosts
C:\WINDOWS\System32\Drivers\etc\hosts : Remis a z�ro avec succ�s
���������� | Registre
Supprim� avec succ�s : HKLM\Software\Classes\Interface\{DAF611F6-C2A6-41E8-B9A9-AFC0EFFDA9ED} : ISafeshop
Supprim� avec succ�s : HKLM64\Software\Classes\Interface\{DAF611F6-C2A6-41E8-B9A9-AFC0EFFDA9ED} : ISafeshop
Supprim� avec succ�s : HKLM64\Software\Classes\Interface\{DEDDD7BD-4763-41D2-9AAA-B2C143457CA4} : IModalityActionAvailabilityChangedEventData
Supprim� avec succ�s : HKLM\SOFTWARE\Caphyon
Supprim� avec succ�s : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{100EB1FD-D03E-47FD-81F3-EE91287F9465} : ShopperReports.dll
Supprim� avec succ�s : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{14CEEAFF-96DD-4101-AE37-D5ECDC23C3F6} : alotBHO.dll;alotBHO.dll
Supprim� avec succ�s : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{258C9770-1713-4021-8D7E-1F184A2BD754} : ShoppingReport.dll
Supprim� avec succ�s : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{2A0F3D1B-0909-4FF4-B272-609CCE6054E7} : PCTBrowserDefender.dll
Supprim� avec succ�s : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{2EECD738-5844-4A99-B4B6-146BF802613B} : BabylonToolbar.dll
Supprim� avec succ�s : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{472734EA-242A-422B-ADF8-83D1E48CC825} : PCTBrowserDefender.dll
Supprim� avec succ�s : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{57F02779-3D88-4958-8AD3-83C12D86ADC7} : advancedsearchbar.dll
Supprim� avec succ�s : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{5AA2BA46-9913-4DC7-9620-69AB0FA17AE7} : alot.dll;alot.dll
Supprim� avec succ�s : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{69ABB8E4-3A44-461C-93BC-C3BB6BDF2DF3} : Backcountry.com.Steepandcheap.Toolbar.dll
Supprim� avec succ�s : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{74F475FA-6C75-43BD-AAB9-ECDA6184F600} : SuperfishIEAddon.dll;SuperfishIEAddon.dll
Supprim� avec succ�s : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E} : BabylonToolbar.dll
Supprim� avec succ�s : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{BDEA95CF-F0E6-41E0-BD3D-B00F39A4E939} : ShoppingReport.dll
Supprim� avec succ�s : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{CDEEC43D-3572-4E95-A2A5-F519D29F00C0} : advancedsearchbar.dll
Supprim� avec succ�s : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{F98BA7F6-48D8-4CE7-A8D0-39D13FD6F14F} : Backcountry.com.Steepandcheap.Toolbar.dll
Supprim� avec succ�s : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{98889811-442D-49DD-99D7-DC866BE87DBC} : BabylonToolbarTlbr.dll
Supprim� avec succ�s : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{100EB1FD-D03E-47FD-81F3-EE91287F9465}
Supprim� avec succ�s : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{14CEEAFF-96DD-4101-AE37-D5ECDC23C3F6}
Supprim� avec succ�s : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{258C9770-1713-4021-8D7E-1F184A2BD754}
Supprim� avec succ�s : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{2A0F3D1B-0909-4FF4-B272-609CCE6054E7}
Supprim� avec succ�s : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{2EECD738-5844-4A99-B4B6-146BF802613B}
Supprim� avec succ�s : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{472734EA-242A-422B-ADF8-83D1E48CC825}
Supprim� avec succ�s : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{57F02779-3D88-4958-8AD3-83C12D86ADC7}
Supprim� avec succ�s : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{5AA2BA46-9913-4DC7-9620-69AB0FA17AE7}
Supprim� avec succ�s : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{69ABB8E4-3A44-461C-93BC-C3BB6BDF2DF3}
Supprim� avec succ�s : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{74F475FA-6C75-43BD-AAB9-ECDA6184F600}
Supprim� avec succ�s : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}
Supprim� avec succ�s : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{BDEA95CF-F0E6-41E0-BD3D-B00F39A4E939}
Supprim� avec succ�s : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{CDEEC43D-3572-4E95-A2A5-F519D29F00C0}
Supprim� avec succ�s : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{F98BA7F6-48D8-4CE7-A8D0-39D13FD6F14F}
Supprim� avec succ�s : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{98889811-442D-49DD-99D7-DC866BE87DBC}
Supprim� avec succ�s : HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2CD7B34FC96DAA34C8FC0137376D44F6 : 02:\Software\Caphyon\Advanced Installer\LZMA\{D06C2A04-529D-49CD-9819-F99162394845}\5.2.4.0\AI_ExePath
���������� | IFEO
���������� | Dossiers | Fichiers
Supprim� avec succ�s : C:\WINDOWS\System32\ff_wmv9.dll (- ffdshow WMV9) [OFN : ff_wmv9.dll]
Supprim� avec succ�s : [h | GC] : gomekmidlodglbbmalcneegieacbdmki = Browser Security
Supprim� avec succ�s : [h | GC] : 1.8.3_0 = Snz
Supprim� avec succ�s : [h | GC] : 1.0_0 = VBMZ
Supprim� avec succ�s : [h | GC] : 2.1.1.1883_0 = Snz
Supprim� avec succ�s : C:\Users\h\AppData\Local\Packages\5897HisTech.FilmsenFranais_1zvfxf2v1qg0m\AC\INetCache\WPMJCVL3
���������� | D�tournements de raccourcis
D�sinfect� : C:\Users\All Users\Microsoft\Windows\Start Menu\Programs\Music, Photos and Videos\Photos Snapfish.lnk : C:\Program Files (x86)\Hewlett-Packard\Shared\WizLink.exe (hxxp://www.snapfish.com/hp_notebook_desktopicon_2013_fr)
D�sinfect� : C:\Users\Public\Desktop\Photos Snapfish.lnk : C:\Program Files (x86)\Hewlett-Packard\Shared\WizLink.exe (hxxp://www.snapfish.com/hp_notebook_desktopicon_2013_fr)
Supprim� avec succ�s : C:\Users\All Users\Microsoft\Windows\Start Menu\Programs\Productivity and Tools\HP Quick Start.lnk = Quickstart
Supprim� avec succ�s : C:\Users\coucou\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\HP Quick Start.lnk = Quickstart
Supprim� avec succ�s : C:\Users\h\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\HP Quick Start.lnk = Quickstart
���������� | Proxy
R�par� : [HKU\S-1-5-21-2172578901-538438889-293983095-1002\Software\Microsoft\Windows\CurrentVersion\Internet settings]|[WarnonZoneCrossing] : 0 -> 1
���������� | D�tournement internet Explorer
R�par� : [HKLM\Software\Microsoft\Internet Explorer\Main\Window Title]|[] : -> Internet Explorer
R�par� : [HKLM\Software\Microsoft\Internet Explorer\Main]|[Search Bar] : -> http://www.google.com/
R�par� : [HKLM\Software\Microsoft\Internet Explorer\Main]|[Start Page] : http://go.microsoft.com/fwlink/p/?LinkId=255141 -> http://www.google.com/
R�par� : [HKLM\Software\Microsoft\Internet Explorer\Main]|[Start Default_Page_URL] : -> http://www.google.com/
R�par� : [HKLM\Software\Microsoft\Internet Explorer\Main]|[Search Page] : http://go.microsoft.com/fwlink/?LinkId=54896 -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R�par� : [HKLM\Software\Microsoft\Internet Explorer\Main]|[Default_Page_URL] : http://go.microsoft.com/fwlink/p/?LinkId=255141 -> http://go.microsoft.com/fwlink/?LinkId=69157
R�par� : [HKLM\Software\Microsoft\Internet Explorer\Main]|[BrowserMngr Start Page] : -> http://www.google.com/
R�par� : [HKLM\Software\Microsoft\Internet Explorer\Main]|[CustomizeSearch] : -> http://www.google.com/
R�par� : [HKLM\Software\Microsoft\Internet Explorer\Search]|[Search Bar] : -> http://www.google.com/
R�par� : [HKLM\Software\Microsoft\Internet Explorer\Search]|[Start Page] : -> http://www.google.com/
R�par� : [HKLM\Software\Microsoft\Internet Explorer\Search]|[Start Default_Page_URL] : -> http://www.google.com/
R�par� : [HKLM\Software\Microsoft\Internet Explorer\Search]|[Local Page] : -> C:\WINDOWS\SysWOW64\blank.htm
R�par� : [HKLM\Software\Microsoft\Internet Explorer\Search]|[Search Page] : -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R�par� : [HKLM\Software\Microsoft\Internet Explorer\Search]|[Default_Search_URL] : -> http://go.microsoft.com/fwlink/?LinkId=54896
R�par� : [HKLM\Software\Microsoft\Internet Explorer\Search]|[Default_Page_URL] : -> http://go.microsoft.com/fwlink/?LinkId=69157
R�par� : [HKLM\Software\Microsoft\Internet Explorer\Search]|[BrowserMngr Start Page] : -> http://www.google.com/
R�par� : [HKLM\Software\Microsoft\Internet Explorer\Search]|[CustomizeSearch] : -> http://www.google.com/
R�par� : [HKLM\Software\Microsoft\Internet Explorer\AboutURLs]|[Tabs] : -> http://www.google.com/
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Main\Window Title]|[] : -> Internet Explorer
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Main]|[Search Bar] : -> http://www.google.com/
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Main]|[Start Page] : about:blank -> http://www.google.com/
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Main]|[Start Default_Page_URL] : -> http://www.google.com/
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Main]|[Local Page] : C:\Windows\System32\blank.htm -> C:\WINDOWS\SysWOW64\blank.htm
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Main]|[Search Page] : http://www.google.com -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Main]|[Default_Search_URL] : http://www.google.com -> http://go.microsoft.com/fwlink/?LinkId=54896
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Main]|[Default_Page_URL] : about:blank -> http://go.microsoft.com/fwlink/?LinkId=69157
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Main]|[BrowserMngr Start Page] : -> http://www.google.com/
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Main]|[CustomizeSearch] : -> http://www.google.com/
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Search]|[Search Bar] : -> http://www.google.com/
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Search]|[Start Page] : -> http://www.google.com/
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Search]|[Start Default_Page_URL] : -> http://www.google.com/
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Search]|[Local Page] : -> C:\WINDOWS\SysWOW64\blank.htm
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Search]|[Search Page] : -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Search]|[Default_Search_URL] : -> http://go.microsoft.com/fwlink/?LinkId=54896
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Search]|[Default_Page_URL] : -> http://go.microsoft.com/fwlink/?LinkId=69157
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Search]|[BrowserMngr Start Page] : -> http://www.google.com/
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Search]|[CustomizeSearch] : -> http://www.google.com/
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\AboutURLs]|[Tabs] : -> http://www.google.com/
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main\Window Title]|[] : -> Internet Explorer
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main]|[Search Bar] : -> http://www.google.com/
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main]|[Start Page] : -> http://www.google.com/
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main]|[Start Default_Page_URL] : -> http://www.google.com/
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main]|[Local Page] : -> C:\WINDOWS\SysWOW64\blank.htm
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main]|[Search Page] : -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main]|[Default_Search_URL] : -> http://go.microsoft.com/fwlink/?LinkId=54896
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main]|[Default_Page_URL] : -> http://go.microsoft.com/fwlink/?LinkId=69157
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main]|[BrowserMngr Start Page] : -> http://www.google.com/
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main]|[CustomizeSearch] : -> http://www.google.com/
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Search]|[Search Bar] : -> http://www.google.com/
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Search]|[Start Page] : -> http://www.google.com/
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Search]|[Start Default_Page_URL] : -> http://www.google.com/
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Search]|[Local Page] : -> C:\WINDOWS\SysWOW64\blank.htm
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Search]|[Search Page] : -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Search]|[Default_Search_URL] : -> http://go.microsoft.com/fwlink/?LinkId=54896
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Search]|[Default_Page_URL] : -> http://go.microsoft.com/fwlink/?LinkId=69157
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Search]|[BrowserMngr Start Page] : -> http://www.google.com/
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Search]|[CustomizeSearch] : -> http://www.google.com/
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\AboutURLs]|[Tabs] : -> http://www.google.com/
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main\Window Title]|[] : -> Internet Explorer
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main]|[Search Bar] : -> http://www.google.com/
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main]|[Start Page] : -> http://www.google.com/
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main]|[Start Default_Page_URL] : -> http://www.google.com/
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main]|[Local Page] : -> C:\WINDOWS\SysWOW64\blank.htm
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main]|[Search Page] : -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main]|[Default_Search_URL] : -> http://go.microsoft.com/fwlink/?LinkId=54896
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main]|[Default_Page_URL] : -> http://go.microsoft.com/fwlink/?LinkId=69157
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main]|[BrowserMngr Start Page] : -> http://www.google.com/
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main]|[CustomizeSearch] : -> http://www.google.com/
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Search]|[Search Bar] : -> http://www.google.com/
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Search]|[Start Page] : -> http://www.google.com/
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Search]|[Start Default_Page_URL] : -> http://www.google.com/
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Search]|[Local Page] : -> C:\WINDOWS\SysWOW64\blank.htm
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Search]|[Search Page] : -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Search]|[Default_Search_URL] : -> http://go.microsoft.com/fwlink/?LinkId=54896
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Search]|[Default_Page_URL] : -> http://go.microsoft.com/fwlink/?LinkId=69157
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Search]|[BrowserMngr Start Page] : -> http://www.google.com/
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Search]|[CustomizeSearch] : -> http://www.google.com/
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\AboutURLs]|[Tabs] : -> http://www.google.com/
R�par� : [HKU\S-1-5-21-2172578901-538438889-293983095-1002\Software\Microsoft\Internet Explorer\Main\Window Title]|[] : -> Internet Explorer
R�par� : [HKU\S-1-5-21-2172578901-538438889-293983095-1002\Software\Microsoft\Internet Explorer\Main]|[Search Bar] : -> http://www.google.com/
R�par� : [HKU\S-1-5-21-2172578901-538438889-293983095-1002\Software\Microsoft\Internet Explorer\Main]|[Start Page] : about:blank -> http://www.google.com/
R�par� : [HKU\S-1-5-21-2172578901-538438889-293983095-1002\Software\Microsoft\Internet Explorer\Main]|[Start Default_Page_URL] : -> http://www.google.com/
R�par� : [HKU\S-1-5-21-2172578901-538438889-293983095-1002\Software\Microsoft\Internet Explorer\Main]|[Local Page] : C:\WINDOWS\system32\blank.htm -> C:\WINDOWS\SysWOW64\blank.htm
R�par� : [HKU\S-1-5-21-2172578901-538438889-293983095-1002\Software\Microsoft\Internet Explorer\Main]|[Search Page] : http://go.microsoft.com/fwlink/?LinkId=54896 -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R�par� : [HKU\S-1-5-21-2172578901-538438889-293983095-1002\Software\Microsoft\Internet Explorer\Main]|[Default_Search_URL] : -> http://go.microsoft.com/fwlink/?LinkId=54896
R�par� : [HKU\S-1-5-21-2172578901-538438889-293983095-1002\Software\Microsoft\Internet Explorer\Main]|[Default_Page_URL] : about:blank -> http://go.microsoft.com/fwlink/?LinkId=69157
R�par� : [HKU\S-1-5-21-2172578901-538438889-293983095-1002\Software\Microsoft\Internet Explorer\Main]|[BrowserMngr Start Page] : -> http://www.google.com/
R�par� : [HKU\S-1-5-21-2172578901-538438889-293983095-1002\Software\Microsoft\Internet Explorer\Main]|[CustomizeSearch] : -> http://www.google.com/
R�par� : [HKU\S-1-5-21-2172578901-538438889-293983095-1002\Software\Microsoft\Internet Explorer\Search]|[Search Bar] : -> http://www.google.com/
R�par� : [HKU\S-1-5-21-2172578901-538438889-293983095-1002\Software\Microsoft\Internet Explorer\Search]|[Start Page] : -> http://www.google.com/
R�par� : [HKU\S-1-5-21-2172578901-538438889-293983095-1002\Software\Microsoft\Internet Explorer\Search]|[Start Default_Page_URL] : -> http://www.google.com/
R�par� : [HKU\S-1-5-21-2172578901-538438889-293983095-1002\Software\Microsoft\Internet Explorer\Search]|[Local Page] : -> C:\WINDOWS\SysWOW64\blank.htm
R�par� : [HKU\S-1-5-21-2172578901-538438889-293983095-1002\Software\Microsoft\Internet Explorer\Search]|[Search Page] : -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R�par� : [HKU\S-1-5-21-2172578901-538438889-293983095-1002\Software\Microsoft\Internet Explorer\Search]|[Default_Search_URL] : -> http://go.microsoft.com/fwlink/?LinkId=54896
R�par� : [HKU\S-1-5-21-2172578901-538438889-293983095-1002\Software\Microsoft\Internet Explorer\Search]|[Default_Page_URL] : -> http://go.microsoft.com/fwlink/?LinkId=69157
R�par� : [HKU\S-1-5-21-2172578901-538438889-293983095-1002\Software\Microsoft\Internet Explorer\Search]|[BrowserMngr Start Page] : -> http://www.google.com/
R�par� : [HKU\S-1-5-21-2172578901-538438889-293983095-1002\Software\Microsoft\Internet Explorer\Search]|[CustomizeSearch] : -> http://www.google.com/
R�par� : [HKU\S-1-5-21-2172578901-538438889-293983095-1002\Software\Microsoft\Internet Explorer\AboutURLs]|[Tabs] : -> http://www.google.com/
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Main\Window Title]|[] : -> Internet Explorer
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Main]|[Search Bar] : -> http://www.google.com/
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Main]|[Start Page] : -> http://www.google.com/
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Main]|[Start Default_Page_URL] : -> http://www.google.com/
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Main]|[Local Page] : -> C:\WINDOWS\SysWOW64\blank.htm
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Main]|[Search Page] : -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Main]|[Default_Search_URL] : -> http://go.microsoft.com/fwlink/?LinkId=54896
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Main]|[Default_Page_URL] : -> http://go.microsoft.com/fwlink/?LinkId=69157
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Main]|[BrowserMngr Start Page] : -> http://www.google.com/
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Main]|[CustomizeSearch] : -> http://www.google.com/
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Search]|[Search Bar] : -> http://www.google.com/
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Search]|[Start Page] : -> http://www.google.com/
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Search]|[Start Default_Page_URL] : -> http://www.google.com/
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Search]|[Local Page] : -> C:\WINDOWS\SysWOW64\blank.htm
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Search]|[Search Page] : -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Search]|[Default_Search_URL] : -> http://go.microsoft.com/fwlink/?LinkId=54896
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Search]|[Default_Page_URL] : -> http://go.microsoft.com/fwlink/?LinkId=69157
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Search]|[BrowserMngr Start Page] : -> http://www.google.com/
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Search]|[CustomizeSearch] : -> http://www.google.com/
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\AboutURLs]|[Tabs] : -> http://www.google.com/
���������� | D�tournement Google Chrome
[h] Remis a z�ro avec succ�s : SearchURL
[h] Remis a z�ro avec succ�s : Preferences
[h] : aohghmighlieiainnegkcijnfilokake = : Google & co - Google & co
[h] : apdfllckaahabafndbhieahigkjlhalf = : Google & co - https://drive.google.com/?usp=chrome_app - Google & co
[h] : blpcfgokakmgnkcojhhkbfbldkacnbeo = : Google & co - http://www.youtube.com - http://www.youtube.com/?feature=ytca - Google & co
[h] : cfhdojbkjhnklbpkdaibdccddilifddb = : __MSG_description_chrome__ - __MSG_name__
[h] : coobgpohoikkiipiblmjeljniedjpjpf = : Google & co - http://www.google.com/webhp?source=search_app - Google & co
[h] : gjjapmfdikcnbajhfcjaphipdpkacbaf = - http://www.airlines-manager.com/ - Airlines-Manager
[h] : gppiglcnajkhlgfjagbppidmeolcbohb = : Google & co - Google & co
[h] : ibbhkjoamnfmpcilggihmfeebhienpea = : Shoot the targets with your sniper rifle! - http://chrome.funhost.net/play/?app=hotshotsniper - Hot Shot Sniper
[h] : ifbhccdddhenjmeamogpjhicnoffdood = : Google & co - http://www.chromegamecenter.com/game/crazy-shooting.html - Google & co
[h] : jgaeopgjojikeoiidmfaejkifhgjoooe = : __MSG_description__ - http://www.tiberiumalliances.com/openid/google - __MSG_title__
[h] : jgnbgccobjldcbielcnmdipnfjhidmep = : Google & co - http://www.jaxspot.com/?standalone_game=gamespot-plumber - Google & co
[h] : jlehaidnnmjjkhgbbiombcdifogolhap = : __MSG_bd_gamedesc_696_frameDescription_medium__ - http://skyrama.bigpoint.com/cws?aid=3306 - __MSG_bd_gameTitles_696__
[h] : lfdiklenhddhkckbiaofckaijlnepiab = : Google & co - http://games4future.com/?p=234 - Google & co
[h] : mggafhpkgkfebnjfbiefbbbicikgchlf = : __MSG_extensionDescription__ - Twoo Notifications
[h] : nmmhkkegccagdldgiimedpiccmgmieda = : Google & co - Google & co
[h] : oadboiipflhobonjjffjbfekfjcgkhco = : Google & co - Google & co
[h] : okdjgjhkolgmkjjddmnjejjphhkdjdhc = : Google & co - http://bigfarm.goodgamestudios.com/?w=108264 - Google & co
[h] : pjkljhegncpnkpknbcohdijeoejaedia = : Google & co - https://mail.google.com/mail/ca - Google & co
���������� | D�tournement Firefox
���������� | Opera
���������� | D�tournement des cl�s StartMenuInternet
R�par� : [HKLM\Software\Clients\StartMenuInternet\IExplore.exe\shell\open\command] : C:\Program Files\Internet Explorer\iexplore.exe -> "C:\Program Files\Internet Explorer\iexplore.exe"
R�par� : [HKLM\Software\Clients\StartMenuInternet\Google Chrome\shell\open\command] : "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -> "C:\Program Files\Google\Chrome\Application\chrome.exe"
���������� | AppInit_DLLs
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]|[LoadAppInit_DLLs] : 0
[HKLM64\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]|[LoadAppInit_DLLs] : 1
���������� | D�tournement Javascript
���������� | Firewall
R�par� : [HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]|[EnableFirewall] : 1 -> 0
R�par� : [HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]|[EnableFirewall] : 1 -> 0
R�par� : [HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]|[EnableFirewall] : 1 -> 0
���������� | ADS
���������� | Fichiers temporaires
[All Users] Fichiers temporaires Supprim�s : 0 Ko
[coucou] Fichiers temporaires Supprim�s : 0 Ko
[Default] Fichiers temporaires Supprim�s : 0 Ko
[Default User] Fichiers temporaires Supprim�s : 0 Ko
[Default.migrated] Fichiers temporaires Supprim�s : 0 Ko
[h] Fichiers temporaires Supprim�s : 35 Ko
[Public] Fichiers temporaires Supprim�s : 0 Ko
[UpdatusUser] Fichiers temporaires Supprim�s : 0 Ko
[C:\WINDOWS\Temp] Fichiers temporaires Supprim�s : 9 Ko
[C:\Temp] Fichiers temporaires Supprim�s : 0 Ko
Service Red�marr� : MPSsvc
Autre rapport
Mise en veille restaur�e
���������� | Listing
���������� | C:\Program Files (x86)
[15/10/2013 11:06:18] - |D| - C:\Program Files (x86)\AGEIA Technologies
[15/10/2013 11:07:45] - |D| - C:\Program Files (x86)\Bonjour
[03/05/2014 15:32:53] - |D| - C:\Program Files (x86)\Cisco
[22/08/2013 15:36:15] - |D| - C:\Program Files (x86)\Common Files
[15/10/2013 11:18:26] - |D| - C:\Program Files (x86)\CyberLink
[04/05/2014 11:23:34] - |D| - C:\Program Files (x86)\DAEMON Tools Lite
[22/08/2013 17:36:33] - |ASH| - C:\Program Files (x86)\desktop.ini
[20/05/2014 18:25:18] - |D| - C:\Program Files (x86)\Electronic Arts
[02/05/2014 18:19:08] - |D| - C:\Program Files (x86)\Google
[23/07/2013 21:39:32] - |D| - C:\Program Files (x86)\Hewlett-Packard
[23/07/2013 21:51:41] - |D| - C:\Program Files (x86)\HPConnectedMusic
[23/07/2013 21:53:48] - |HD| - C:\Program Files (x86)\InstallShield Installation Information
[17/05/2014 00:24:02] - |D| - C:\Program Files (x86)\Intel
[22/08/2013 17:36:30] - |D| - C:\Program Files (x86)\Internet Explorer
[12/05/2014 16:20:39] - |D| - C:\Program Files (x86)\Java
[04/05/2014 12:21:21] - |D| - C:\Program Files (x86)\Microsoft Analysis Services
[04/05/2014 11:32:51] - |D| - C:\Program Files (x86)\Microsoft Games
[23/07/2013 21:43:17] - |D| - C:\Program Files (x86)\Microsoft Office
[26/05/2014 19:49:36] - |D| - C:\Program Files (x86)\Microsoft Silverlight
[23/07/2013 21:47:38] - |D| - C:\Program Files (x86)\Microsoft SkyDrive
[04/05/2014 12:23:40] - |D| - C:\Program Files (x86)\Microsoft SQL Server
[23/07/2013 21:48:29] - |D| - C:\Program Files (x86)\Microsoft SQL Server Compact Edition
[22/08/2013 17:36:30] - |D| - C:\Program Files (x86)\Microsoft.NET
[12/05/2014 16:36:38] - |D| - C:\Program Files (x86)\Mozilla Firefox
[17/05/2014 01:12:43] - |D| - C:\Program Files (x86)\MSBuild
[15/10/2013 11:32:55] - |D| - C:\Program Files (x86)\NortonInstaller
[17/05/2014 00:24:20] - |D| - C:\Program Files (x86)\NVIDIA Corporation
[23/07/2013 21:51:18] - |RD| - C:\Program Files (x86)\Online Services
[15/10/2013 10:59:11] - |D| - C:\Program Files (x86)\Realtek
[17/05/2014 01:12:43] - |D| - C:\Program Files (x86)\Reference Assemblies
[15/10/2013 11:34:13] - |D| - C:\Program Files (x86)\SymSilent
[15/10/2013 10:59:54] - |HD| - C:\Program Files (x86)\Temp
[09/05/2014 18:24:11] - |D| - C:\Program Files (x86)\VideoLAN
[23/07/2013 21:57:16] - |D| - C:\Program Files (x86)\WildGames
[23/07/2013 21:56:53] - |D| - C:\Program Files (x86)\WildTangent Games
[22/08/2013 17:36:30] - |D| - C:\Program Files (x86)\Windows Defender
[23/07/2013 21:48:14] - |D| - C:\Program Files (x86)\Windows Live
[22/08/2013 17:36:30] - |D| - C:\Program Files (x86)\Windows Mail
[22/08/2013 17:36:30] - |D| - C:\Program Files (x86)\Windows Media Player
[22/08/2013 17:36:30] - |D| - C:\Program Files (x86)\Windows Multimedia Platform
[22/08/2013 17:36:30] - |D| - C:\Program Files (x86)\Windows NT
[22/08/2013 17:36:30] - |D| - C:\Program Files (x86)\Windows Photo Viewer
[22/08/2013 17:36:30] - |D| - C:\Program Files (x86)\Windows Portable Devices
[22/08/2013 17:36:30] - |SHD| - C:\Program Files (x86)\Windows Sidebar
[22/08/2013 17:36:30] - |D| - C:\Program Files (x86)\WindowsPowerShell
[21/06/2014 18:56:48] - |D| - C:\Program Files (x86)\ZHPDiag
���������� | C:\Program Files
[23/07/2013 21:41:33] - |D| - C:\Program Files\7-Zip
[27/05/2014 06:34:57] - |D| - C:\Program Files\AVAST Software
[15/10/2013 11:07:45] - |D| - C:\Program Files\Bonjour
[21/06/2014 07:38:59] - |D| - C:\Program Files\CCleaner
[22/08/2013 15:36:15] - |D| - C:\Program Files\Common Files
[22/08/2013 17:36:45] - |ASH| - C:\Program Files\desktop.ini
[02/05/2014 15:55:52] - |SHD| - C:\Program Files\Fichiers communs
[01/06/2013 00:28:30] - |D| - C:\Program Files\Hewlett-Packard
[17/05/2014 00:23:46] - |D| - C:\Program Files\Intel
[22/08/2013 17:36:31] - |D| - C:\Program Files\Internet Explorer
[04/05/2014 12:21:21] - |D| - C:\Program Files\Microsoft Analysis Services
[04/05/2014 12:21:10] - |D| - C:\Program Files\Microsoft Office
[26/05/2014 19:49:36] - |D| - C:\Program Files\Microsoft Silverlight
[04/05/2014 12:23:12] - |D| - C:\Program Files\Microsoft SQL Server
[21/05/2014 19:25:08] - |D| - C:\Program Files\Microsoft.NET
[17/05/2014 01:12:40] - |D| - C:\Program Files\MSBuild
[17/05/2014 00:24:20] - |D| - C:\Program Files\NVIDIA Corporation
[23/07/2013 21:51:28] - |RD| - C:\Program Files\Online Services
[17/05/2014 00:23:05] - |D| - C:\Program Files\Realtek
[17/05/2014 01:12:40] - |D| - C:\Program Files\Reference Assemblies
[17/05/2014 00:24:07] - |D| - C:\Program Files\Synaptics
[26/07/2012 09:22:18] - |HD| - C:\Program Files\Uninstall Information
[22/08/2013 17:36:31] - |D| - C:\Program Files\Windows Defender
[18/03/2014 11:41:34] - |D| - C:\Program Files\Windows Journal
[22/08/2013 17:36:31] - |D| - C:\Program Files\Windows Mail
[22/08/2013 17:36:31] - |D| - C:\Program Files\Windows Media Player
[22/08/2013 17:36:31] - |D| - C:\Program Files\Windows Multimedia Platform
[22/08/2013 17:36:31] - |D| - C:\Program Files\Windows NT
[22/08/2013 17:36:31] - |D| - C:\Program Files\Windows Photo Viewer
[22/08/2013 17:36:31] - |D| - C:\Program Files\Windows Portable Devices
[22/08/2013 17:36:31] - |SHD| - C:\Program Files\Windows Sidebar
[22/08/2013 17:36:31] - |HD| - C:\Program Files\WindowsApps
[22/08/2013 17:36:31] - |D| - C:\Program Files\WindowsPowerShell
���������� | C:\Program Files (x86)\Common Files
[08/05/2014 20:39:10] - |D| - C:\Program Files (x86)\Common Files\CyberLink
[15/10/2013 10:59:51] - |D| - C:\Program Files (x86)\Common Files\InstallShield
[17/05/2014 00:23:39] - |D| - C:\Program Files (x86)\Common Files\Intel
[15/10/2013 11:06:56] - |D| - C:\Program Files (x86)\Common Files\Intel Corporation
[12/05/2014 16:21:11] - |D| - C:\Program Files (x86)\Common Files\Java
[22/08/2013 17:36:30] - |D| - C:\Program Files (x86)\Common Files\Microsoft Shared
[15/10/2013 11:32:18] - |D| - C:\Program Files (x86)\Common Files\Nikon
[15/10/2013 10:57:20] - |D| - C:\Program Files (x86)\Common Files\postureAgent
[22/08/2013 17:36:30] - |D| - C:\Program Files (x86)\Common Files\Services
[02/05/2014 19:19:03] - |D| - C:\Program Files (x86)\Common Files\Symantec Shared
[22/08/2013 17:36:30] - |D| - C:\Program Files (x86)\Common Files\System
[23/07/2013 21:47:17] - |D| - C:\Program Files (x86)\Common Files\Windows Live
���������� | C:\Program Files\Common Files
[04/05/2014 12:24:00] - |D| - C:\Program Files\Common Files\DESIGNER
[22/08/2013 17:36:31] - |D| - C:\Program Files\Common Files\microsoft shared
[22/08/2013 17:36:31] - |D| - C:\Program Files\Common Files\Services
[22/08/2013 17:36:31] - |D| - C:\Program Files\Common Files\System
���������� | C:\Users\h\AppData\Roaming
[02/05/2014 18:07:05] - |D| - C:\Users\h\AppData\Roaming\Adobe
[27/05/2014 06:38:25] - |D| - C:\Users\h\AppData\Roaming\AVAST Software
[05/05/2014 17:33:59] - |D| - C:\Users\h\AppData\Roaming\Awem
[20/05/2014 18:53:41] - |D| - C:\Users\h\AppData\Roaming\Command and Conquer 4
[02/05/2014 19:53:33] - |D| - C:\Users\h\AppData\Roaming\CyberLink
[04/05/2014 11:23:37] - |D| - C:\Users\h\AppData\Roaming\DAEMON Tools Lite
[27/05/2014 06:41:56] - |D| - C:\Users\h\AppData\Roaming\Dropbox
[06/05/2014 22:31:46] - |D| - C:\Users\h\AppData\Roaming\freshgames
[02/05/2014 18:08:44] - |D| - C:\Users\h\AppData\Roaming\Hewlett-Packard
[11/05/2014 09:14:08] - |D| - C:\Users\h\AppData\Roaming\HewlettPackard
[02/05/2014 23:34:02] - |D| - C:\Users\h\AppData\Roaming\hpqlog
[17/05/2014 07:04:10] - |D| - C:\Users\h\AppData\Roaming\Identities
[02/05/2014 18:21:50] - |D| - C:\Users\h\AppData\Roaming\Macromedia
[17/05/2014 00:31:56] - |SD| - C:\Users\h\AppData\Roaming\Microsoft
[02/05/2014 20:01:16] - |D| - C:\Users\h\AppData\Roaming\NVIDIA
[12/05/2014 16:22:00] - |D| - C:\Users\h\AppData\Roaming\Oracle
[02/05/2014 18:05:35] - |D| - C:\Users\h\AppData\Roaming\Synaptics
[08/05/2014 18:36:06] - |D| - C:\Users\h\AppData\Roaming\uTorrent
[02/05/2014 20:22:01] - |D| - C:\Users\h\AppData\Roaming\VisualShape
[18/05/2014 09:44:04] - |D| - C:\Users\h\AppData\Roaming\vlc
[02/05/2014 19:59:46] - |D| - C:\Users\h\AppData\Roaming\WildTangent
[21/06/2014 18:56:48] - |D| - C:\Users\h\AppData\Roaming\ZHP
���������� | C:\Users\h\AppData\Local
[17/05/2014 00:31:56] - |SHD| - C:\Users\h\AppData\Local\Application Data
[02/05/2014 18:18:38] - |D| - C:\Users\h\AppData\Local\Apps
[02/05/2014 18:08:52] - |D| - C:\Users\h\AppData\Local\CyberLink
[08/05/2014 20:23:40] - |D| - C:\Users\h\AppData\Local\Downloaded Installations
[02/05/2014 18:19:04] - |D| - C:\Users\h\AppData\Local\Google
[02/05/2014 18:06:10] - |D| - C:\Users\h\AppData\Local\Hewlett-Packard
[17/05/2014 00:31:56] - |SHD| - C:\Users\h\AppData\Local\Historique
[04/05/2014 18:49:38] - |D| - C:\Users\h\AppData\Local\HP Quick Start
[05/05/2014 22:12:54] - |D| - C:\Users\h\AppData\Local\HPConnectedMusic
[22/05/2014 17:55:02] - |AH| - C:\Users\h\AppData\Local\IconCache.db
[08/05/2014 20:30:08] - |D| - C:\Users\h\AppData\Local\MediaServer
[17/05/2014 00:31:56] - |D| - C:\Users\h\AppData\Local\Microsoft
[04/05/2014 12:21:14] - |D| - C:\Users\h\AppData\Local\Microsoft Help
[02/05/2014 18:04:32] - |D| - C:\Users\h\AppData\Local\Packages
[02/05/2014 18:05:38] - |D| - C:\Users\h\AppData\Local\Power2Go8
[21/06/2014 13:11:11] - |D| - C:\Users\h\AppData\Local\Programs
[22/06/2014 11:57:39] - |D| - C:\Users\h\AppData\Local\Temp
[17/05/2014 00:31:56] - |SHD| - C:\Users\h\AppData\Local\Temporary Internet Files
[02/05/2014 18:04:38] - |D| - C:\Users\h\AppData\Local\VirtualStore
[21/05/2014 18:19:15] - |D| - C:\Users\h\AppData\Local\Wild Tangent
���������� | C:\ProgramData
[15/10/2013 11:07:45] - |D| - C:\ProgramData\Apple
[22/08/2013 16:45:52] - |SHD| - C:\ProgramData\Application Data
[27/05/2014 06:34:17] - |D| - C:\ProgramData\AVAST Software
[02/05/2014 20:01:26] - |D| - C:\ProgramData\BlueStacks
[02/05/2014 15:55:52] - |SHD| - C:\ProgramData\Bureau
[15/10/2013 11:20:17] - |D| - C:\ProgramData\CyberLink
[04/05/2014 11:22:58] - |D| - C:\ProgramData\DAEMON Tools Lite
[22/08/2013 16:45:52] - |SHD| - C:\ProgramData\Desktop
[22/08/2013 16:45:52] - |SHD| - C:\ProgramData\Documents
[06/05/2014 22:31:46] - |D| - C:\ProgramData\freshgames
[23/07/2013 21:42:51] - |D| - C:\ProgramData\Hewlett-Packard
[15/10/2013 11:17:42] - |D| - C:\ProgramData\install_clap
[15/10/2013 10:58:55] - |D| - C:\ProgramData\Intel
[12/05/2014 16:20:50] - |D| - C:\ProgramData\ItsMyApp
[21/06/2014 13:12:51] - |D| - C:\ProgramData\Malwarebytes
[02/05/2014 15:55:52] - |SHD| - C:\ProgramData\Menu D�marrer
[22/08/2013 15:36:15] - |SD| - C:\ProgramData\Microsoft
[04/05/2014 12:21:09] - |D| - C:\ProgramData\Microsoft Help
[23/07/2013 21:47:27] - |D| - C:\ProgramData\Microsoft SkyDrive
[04/05/2014 12:32:44] - |D| - C:\ProgramData\Microsoft Toolkit
[02/05/2014 15:55:52] - |SHD| - C:\ProgramData\Mod�les
[15/10/2013 11:33:00] - |D| - C:\ProgramData\Norton
[15/10/2013 11:32:55] - |D| - C:\ProgramData\NortonInstaller
[15/10/2013 11:05:45] - |D| - C:\ProgramData\NVIDIA
[17/05/2014 00:24:29] - |D| - C:\ProgramData\NVIDIA Corporation
[12/05/2014 16:21:17] - |D| - C:\ProgramData\Oracle
[15/10/2013 11:08:45] - |D| - C:\ProgramData\Package Cache
[03/05/2014 00:36:25] - |D| - C:\ProgramData\Playrix Entertainment
[04/08/2012 00:29:07] - |D| - C:\ProgramData\PRICache
[22/08/2013 17:36:30] - |D| - C:\ProgramData\regid.1991-06.com.microsoft
[22/08/2013 16:45:52] - |SHD| - C:\ProgramData\Start Menu
[12/05/2014 16:21:12] - |D| - C:\ProgramData\Sun
[15/10/2013 11:13:10] - |D| - C:\ProgramData\Synaptics
[15/10/2013 11:17:43] - |D| - C:\ProgramData\Temp
[22/08/2013 16:45:52] - |SHD| - C:\ProgramData\Templates
[02/05/2014 20:22:01] - |D| - C:\ProgramData\VisualShape
[23/07/2013 21:56:50] - |D| - C:\ProgramData\WildTangent
[18/05/2014 13:12:33] - |D| - C:\ProgramData\{18165758-115C-4DC0-9EC2-FF89F725767F}
[X] : [5044 Ko]
El�ments analys�s : 264596 | Infect�s : 174
���������� |EOF| ���������� | 12:36:13 | [58 Ko]