Publicité
Publicité
Format du document : text/plain
Prévisualisation
���������� | Shortcut_Module | g3n-h@ckm@n | 05.07.2014.2
����� Vista | 7 | 8 | 8.1 - 32/64 bits ����� - Start 08:29:03 - 07/07/2014
Mis � jour le : 05/07/2014 | 09.30 par g3n-h@ckm@n
Contact : http://www.sosvirus.net
Assistance : http://www.sosvirus.net/forum-virus-securite.html
Feedbacks : http://www.sosvirus.net/feedbacks-t75915.html
Boot: Normal boot
Syst�me : Windows 7 Home Premium (64 bits) HomePremium Service Pack 1
M�moire RAM = Total (MB) : 1956 | Libre (MB) : 559
Pagefile = Total (MB) : 3911 | Libre (MB) : 2030
Virtuelle = Total (MB) : 4194 | Libre (MB) : 4030
Registre sauvegard� , pour restaurer : C:\Shortcut_Module\Save\Clean\ERDNT.exe
���������� | Mises � jour Windows
Aucune mise � jour d�tect�e !!!
���������� | Navigateurs
IE : 11.0.9600.17126 (� Microsoft Corporation. Tous droits r�serv�s.)
FF : 30.0.0.5269 (�Firefox and Mozilla Developers; available under the MPL 2 license.)
GC : 35.0.1916.153 (Copyright 2012 Google Inc. All rights reserved.)
���������� | Security
FW :
WMI : OK
WU: Windows Update Service [Auto(2)] = Arr�t�
AS: Windows Defender [Auto(2)] = Arr�t�
FW: Windows FireWall Service [Auto(2)] = Arr�t�
Mise en veille supprim�e !
���������� | FlashPlayer
ActiveX : 14.0.0.125
Plugin : 13.0.0.214
���������� | Processus tu�s
1336 | [Owner : Syst�me |Parent : 288] - (.Microsoft Corporation - Infrastructure d�extensibilit� pour les services r�seau Windows sans fil 802.11.) - (6.1.7600.16385) = C:\Windows\System32\wlanext.exe
1352 | [Owner : Syst�me |Parent : 492] - (.Microsoft Corporation - H�te de la fen�tre de la console.) - (6.1.7601.18229) = C:\Windows\System32\conhost.exe
1544 | [Owner : Syst�me |Parent : 636] - (.Microsoft Corporation - Application sous-syst�me spouleur.) - (6.1.7601.17777) = C:\Windows\System32\spoolsv.exe
1668 | [Owner : Syst�me |Parent : 636] - (.Andrea Electronics Corporation - Andrea filters APO access service (64-bit).) - (1.0.64.10) = C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
1708 | [Owner : Syst�me |Parent : 636] - (.Atheros - Atheros Coex Service Application.) - (8.0.0.183) = C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
1780 | [Owner : Syst�me |Parent : 636] - (.Atheros Commnucations - AdminService Application.) - (7.2.0.60) = C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
1852 | [Owner : Syst�me |Parent : 636] - (.Hewlett-Packard Development Company, L.P. - HP Quick Launch WMI Service.) - (2.3.1.0) = C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
1892 | [Owner : Syst�me |Parent : 636] - (.Realsil Microelectronics Inc. - Realtek Card Reader Icon Tool..) - (1.1.9.1) = C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
1972 | [Owner : Syst�me |Parent : 636] - (.Intel Corporation - Local Manageability Service.) - (6.0.40.1213) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
2220 | [Owner : pinel patrice |Parent : 636] - (.Microsoft Corporation - Processus h�te pour T�ches Windows.) - (6.1.7601.18010) = C:\Windows\System32\taskhost.exe
2324 | [Owner : pinel patrice |Parent : 2296] - (.Microsoft Corporation - Explorateur Windows.) - (6.1.7601.17567) = C:\Windows\explorer.exe
2448 | [Owner : Syst�me |Parent : 636] - (.pdfforge GmbH - PDF Architect Helper Service.) - (1.0.0.1) = C:\Program Files (x86)\PDF Architect\HelperService.exe
2648 | [Owner : Syst�me |Parent : 636] - (.pdfforge GmbH - PDF Architect Conversion Service.) - (1.1.83.9982) = C:\Program Files (x86)\PDF Architect\ConversionService.exe
2684 | [Owner : Syst�me |Parent : 636] - (.PDF Complete Inc - Dispatcher.) - (4.0.34.2001) = C:\Program Files (x86)\PDF Complete\pdfsvc.exe
2928 | [Owner : Syst�me |Parent : 636] - (.Microsoft Corporation - Microsoft Application Virtualization Virtual Service Agent.) - (4.6.0.1523) = C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
3004 | [Owner : Syst�me |Parent : 636] - (.Microsoft Corp. - Microsoft� Windows Live ID Service.) - (7.250.4225.0) = C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
2424 | [Owner : Syst�me |Parent : 3004] - (.Microsoft Corp. - Microsoft� Windows Live ID Service Monitor.) - (7.250.4225.0) = C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
2492 | [Owner : pinel patrice |Parent : 524] - (.Microsoft Corporation - Moteur du Planificateur de t�ches.) - (6.1.7601.17514) = C:\Windows\System32\taskeng.exe
2536 | [Owner : pinel patrice |Parent : 2492] - (.CyberLink - YouCam Mirage.) - (1.0.0.602) = C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
2284 | [Owner : Syst�me |Parent : 636] - (.Microsoft Corporation - Microsoft Application Virtualization Client Service.) - (4.6.0.1523) = C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
3156 | [Owner : Syst�me |Parent : 636] - (.Microsoft Corporation - Microsoft Office Client Virtualization Service .) - (14.0.4750.1000) = C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
3264 | [Owner : SERVICE LOCAL |Parent : 636] - (.Microsoft Corporation - Service de la passerelle de la couche Application.) - (6.1.7600.16385) = C:\Windows\System32\alg.exe
3840 | [Owner : pinel patrice |Parent : 2324] - (.Intel Corporation - igfxTray Module.) - (8.15.10.2202) = C:\Windows\System32\igfxtray.exe
3848 | [Owner : pinel patrice |Parent : 2324] - (.Intel Corporation - hkcmd Module.) - (8.15.10.2202) = C:\Windows\System32\hkcmd.exe
3860 | [Owner : pinel patrice |Parent : 2324] - (.Intel Corporation - persistence Module.) - (8.15.10.2202) = C:\Windows\System32\igfxpers.exe
4004 | [Owner : pinel patrice |Parent : 2324] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) - (1.0.0.94) = C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
4040 | [Owner : pinel patrice |Parent : 2324] - (.Synaptics Incorporated - Synaptics TouchPad Enhancements.) - (15.2.4.3) = C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
2232 | [Owner : pinel patrice |Parent : 2324] - (.Atheros Communications - Serveur Stack Bluetooth.) - (7.2.0.60) = C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
3240 | [Owner : pinel patrice |Parent : 2324] - (.Atheros Commnucations - Bluetooth Suite Common Rescource.) - (7.2.0.60) = C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe
3636 | [Owner : pinel patrice |Parent : 4040] - (.Synaptics Incorporated - Synaptics Pointing Device Helper.) - (15.2.4.3) = C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
1736 | [Owner : pinel patrice |Parent : 2324] - (.Microsoft Corporation - Bloc-notes.) - (6.1.7600.16385) = C:\Windows\System32\notepad.exe
1616 | [Owner : pinel patrice |Parent : 3640] - (.Intel Corporation - IAStorIcon.) - (10.0.0.1046) = C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
1148 | [Owner : Syst�me |Parent : 636] - (.Microsoft Corporation - Indexeur Microsoft Windows Search.) - (7.0.7601.17610) = C:\Windows\System32\SearchIndexer.exe
4116 | [Owner : pinel patrice |Parent : 3640] - (.Hewlett-Packard Development Company, L.P. - HP Message Service.) - (2.3.6.0) = C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
4160 | [Owner : pinel patrice |Parent : 3640] - (.Hewlett-Packard Development Company, L.P. - HP On Screen Display.) - (1.0.6.0) = C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
4208 | [Owner : pinel patrice |Parent : 3640] - (.Oracle Corporation - Java(TM) Update Scheduler.) - (2.1.9.4) = C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
4716 | [Owner : SERVICE R�SEAU |Parent : 636] - (.Microsoft Corporation - Service Partage r�seau du Lecteur Windows Media.) - (12.0.7601.17514) = C:\Program Files\Windows Media Player\wmpnetwk.exe
4860 | [Owner : Syst�me |Parent : 636] - (.Hewlett-Packard Company - HP Software Framework WMI Service.) - (4.6.8.1) = C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
3980 | [Owner : pinel patrice |Parent : 2324] - (.Mozilla Corporation - Firefox.) - (30.0.0.5269) = C:\Program Files (x86)\Mozilla Firefox\firefox.exe
1912 | [Owner : pinel patrice |Parent : 776] - (.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) - (6.1.7600.16385) = C:\Windows\System32\wbem\unsecapp.exe
2200 | [Owner : Syst�me |Parent : 636] - (.Hewlett-Packard Company - HP Support Assistant Service.) - (7.0.39.14) = C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
4056 | [Owner : Syst�me |Parent : 636] - (.Hewlett-Packard Company - HPPA_Service.) - (1.0.10.0) = C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
3524 | [Owner : pinel patrice |Parent : 3652] - (.Hewlett-Packard Company - HP Wireless Assistant.) - (4.0.10.0) = C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe
4948 | [Owner : Syst�me |Parent : 636] - (.Intel Corporation - IAStorDataSvc.) - (10.0.0.1046) = C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
4236 | [Owner : Syst�me |Parent : 636] - (.Intel Corporation - User Notification Service.) - (6.0.40.1213) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
3012 | [Owner : Syst�me |Parent : 636] - (.Microsoft Corporation. - Microsoft SeaPort Search Enhancement Broker.) - (7.3.132.0) = C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\SeaPort.EXE
4136 | [Owner : pinel patrice |Parent : 3980] - (.Mozilla Corporation - Plugin Container for Firefox.) - (30.0.0.5269) = C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
4312 | [Owner : pinel patrice |Parent : 4136] - (.Adobe Systems, Inc. - Adobe Flash Player 13.0 r0.) - (13.0.0.214) = C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_214.exe
2204 | [Owner : pinel patrice |Parent : 4312] - (.Adobe Systems, Inc. - Adobe Flash Player 13.0 r0.) - (13.0.0.214) = C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_214.exe
���������� | Processus d�marr�s
352 | [Owner : Syst�me |Parent : 4] - (.Microsoft Corporation - Gestionnaire de sessions Windows.) - (6.1.7601.18229) = C:\Windows\System32\smss.exe
492 | [Owner : Syst�me |Parent : 484] - (.Microsoft Corporation - Processus d�ex�cution client-serveur.) - (6.1.7600.16385) = C:\Windows\System32\csrss.exe
576 | [Owner : Syst�me |Parent : 484] - (.Microsoft Corporation - Application de d�marrage de Windows.) - (6.1.7600.16385) = C:\Windows\System32\wininit.exe
596 | [Owner : Syst�me |Parent : 568] - (.Microsoft Corporation - Processus d�ex�cution client-serveur.) - (6.1.7600.16385) = C:\Windows\System32\csrss.exe
636 | [Owner : Syst�me |Parent : 576] - (.Microsoft Corporation - Applications Services et Contr�leur.) - (6.1.7600.16385) = C:\Windows\System32\services.exe
652 | [Owner : Syst�me |Parent : 576] - (.Microsoft Corporation - Local Security Authority Process.) - (6.1.7601.18443) = C:\Windows\System32\lsass.exe
660 | [Owner : Syst�me |Parent : 576] - (.Microsoft Corporation - Service du gestionnaire de session locale.) - (6.1.7601.17514) = C:\Windows\System32\lsm.exe
776 | [Owner : Syst�me |Parent : 636] - (.Microsoft Corporation - Processus h�te pour les services Windows.) - (6.1.7600.16385) = C:\Windows\System32\svchost.exe
828 | [Owner : Syst�me |Parent : 568] - (.Microsoft Corporation - Application d�ouverture de session Windows.) - (6.1.7601.18409) = C:\Windows\System32\winlogon.exe
888 | [Owner : SERVICE R�SEAU |Parent : 636] - (.Microsoft Corporation - Processus h�te pour les services Windows.) - (6.1.7600.16385) = C:\Windows\System32\svchost.exe
976 | [Owner : SERVICE LOCAL |Parent : 636] - (.Microsoft Corporation - Processus h�te pour les services Windows.) - (6.1.7600.16385) = C:\Windows\System32\svchost.exe
288 | [Owner : Syst�me |Parent : 636] - (.Microsoft Corporation - Processus h�te pour les services Windows.) - (6.1.7600.16385) = C:\Windows\System32\svchost.exe
468 | [Owner : SERVICE LOCAL |Parent : 636] - (.Microsoft Corporation - Processus h�te pour les services Windows.) - (6.1.7600.16385) = C:\Windows\System32\svchost.exe
524 | [Owner : Syst�me |Parent : 636] - (.Microsoft Corporation - Processus h�te pour les services Windows.) - (6.1.7600.16385) = C:\Windows\System32\svchost.exe
1124 | [Owner : SERVICE R�SEAU |Parent : 636] - (.Microsoft Corporation - Processus h�te pour les services Windows.) - (6.1.7600.16385) = C:\Windows\System32\svchost.exe
1344 | [Owner : Syst�me |Parent : 636] - (.AVAST Software - avast! Service.) - (9.0.2021.515) = C:\Program Files\AVAST Software\Avast\AvastSvc.exe
1572 | [Owner : SERVICE LOCAL |Parent : 636] - (.Microsoft Corporation - Processus h�te pour les services Windows.) - (6.1.7600.16385) = C:\Windows\System32\svchost.exe
2312 | [Owner : pinel patrice |Parent : 288] - (.Microsoft Corporation - Gestionnaire de fen�tres du Bureau.) - (6.1.7600.16385) = C:\Windows\System32\dwm.exe
2540 | [Owner : SERVICE R�SEAU |Parent : 776] - (.Microsoft Corporation - WMI Provider Host.) - (6.1.7601.17514) = C:\Windows\System32\wbem\WmiPrvSE.exe
3372 | [Owner : SERVICE LOCAL |Parent : 636] - (.Microsoft Corporation - Processus h�te pour les services Windows.) - (6.1.7600.16385) = C:\Windows\System32\svchost.exe
3416 | [Owner : SERVICE R�SEAU |Parent : 636] - (.Microsoft Corporation - Processus h�te pour les services Windows.) - (6.1.7600.16385) = C:\Windows\System32\svchost.exe
3460 | [Owner : SERVICE LOCAL |Parent : 636] - (.Microsoft Corporation - Processus h�te pour les services Windows.) - (6.1.7600.16385) = C:\Windows\System32\svchost.exe
4216 | [Owner : Syst�me |Parent : 776] - (.Microsoft Corporation - WMI Provider Host.) - (6.1.7601.17514) = C:\Windows\System32\wbem\WmiPrvSE.exe
4304 | [Owner : pinel patrice |Parent : 3640] - (.AVAST Software - avast! Antivirus.) - (9.0.2021.515) = C:\Program Files\AVAST Software\Avast\AvastUI.exe
3656 | [Owner : Syst�me |Parent : 636] - (.Microsoft Corporation - Processus h�te pour les services Windows.) - (6.1.7600.16385) = C:\Windows\System32\svchost.exe
5284 | [Owner : SERVICE LOCAL |Parent : 976] - (.Microsoft Corporation - Isolation graphique de p�riph�rique audio Windows .) - (6.1.7601.17514) = C:\Windows\System32\audiodg.exe
1404 | [Owner : pinel patrice |Parent : 6044] - (. - Shortcut_Module.) - (5.7.2014.2) = C:\Users\pinel patrice\Desktop\Shortcut_Module.exe
5952 | [Owner : pinel patrice |Parent : 1404] - (. - Shortcut_Module_Protect.) - (1.0.0.0) = C:\Shortcut_Module\Protect_Module.exe
���������� | RUN
04 - HKLM\..\Run : [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
04 - HKLM64\..\Run : [IgfxTray] C:\Windows\system32\igfxtray.exe
04 - HKLM64\..\RunOnce : [NCPluginUpdater] "C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe" Update
04 - HKU\S-1-5-19\..\Run : [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
04 - HKU\S-1-5-19\..\RunOnce : [mctadmin] C:\Windows\System32\mctadmin.exe
04 - HKU\S-1-5-20\..\Run : [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
04 - HKU\S-1-5-20\..\RunOnce : [mctadmin] C:\Windows\System32\mctadmin.exe
���������� | Services
Service en fonctionnement : WINDEFEND
Service stopp� : WINDEFEND
Service en fonctionnement : MMCSS
Service en fonctionnement : Dhcp
Service en fonctionnement : TcpIp
Service en fonctionnement : WinHttpAutoProxysvc
Service stopp� : WinHttpAutoProxysvc
Service en fonctionnement : SSDPSRV
Service en fonctionnement : MPSSvc
Service stopp� : MPSSvc
Service en fonctionnement : Rasman
Service en fonctionnement : LanmanServer
Service stopp� : LanmanServer
Service en fonctionnement : DNScache
Service stopp� : DNScache
���������� | Hosts
C:\Windows\System32\Drivers\etc\hosts : Remis a z�ro avec succ�s
���������� | Registre
Supprim� avec succ�s : HKU\S-1-5-21-2251064558-711344184-2909949572-1000\Software\Microsoft\Internet Explorer\DOMStorage\portaldosites.com
Supprim� avec succ�s : HKU\S-1-5-21-2251064558-711344184-2909949572-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.portaldosites.com
Supprim� avec succ�s : HKLM\Software\Classes\Interface\{DAF611F6-C2A6-41E8-B9A9-AFC0EFFDA9ED} : ISafeshop
Supprim� avec succ�s : HKLM64\Software\Classes\Interface\{DAF611F6-C2A6-41E8-B9A9-AFC0EFFDA9ED} : ISafeshop
Supprim� avec succ�s : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\IePluginServices
Supprim� avec succ�s : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsProtectManger
Supprim� avec succ�s : HKLM\Software\Microsoft\Tracing\GreenerWebUntemp_RASAPI32
Supprim� avec succ�s : HKLM\Software\Microsoft\Tracing\GreenerWeb_RASAPI32
Supprim� avec succ�s : HKLM\Software\Microsoft\Tracing\InstallManager_RASAPI32
Supprim� avec succ�s : HKLM\Software\Microsoft\Tracing\updateGreenerWeb_RASAPI32
Supprim� avec succ�s : HKLM\Software\Microsoft\Tracing\utilGreenerWeb_RASAPI32
Supprim� avec succ�s : HKLM\Software\Microsoft\Tracing\GreenerWebUntemp_RASMANCS
Supprim� avec succ�s : HKLM\Software\Microsoft\Tracing\InstallManager_RASMANCS
Supprim� avec succ�s : HKLM\Software\Microsoft\Tracing\updateGreenerWeb_RASMANCS
Supprim� avec succ�s : HKLM\Software\Microsoft\Tracing\utilGreenerWeb_RASMANCS
Supprim� avec succ�s : [HKU\S-1-5-21-2251064558-711344184-2909949572-1000\Software\Mozilla\Extends]|[appid] : faststartff@gmail.com
Supprim� avec succ�s : HKLM\SOFTWARE\Caphyon
Supprim� avec succ�s : HKU\S-1-5-21-2251064558-711344184-2909949572-1000\SOFTWARE\RocketUpdater
Supprim� avec succ�s : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy]|[AppPath] : C:\Program Files (x86)\WSE Rocket\\
Supprim� avec succ�s : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main]|[x86AppPath]
Supprim� avec succ�s : [HKLM64\SOFTWARE\Microsoft\Internet Explorer\Main]|[x86AppPath]
Supprim� avec succ�s : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{100EB1FD-D03E-47FD-81F3-EE91287F9465} : ShopperReports.dll
Supprim� avec succ�s : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{14CEEAFF-96DD-4101-AE37-D5ECDC23C3F6} : alotBHO.dll;alotBHO.dll
Supprim� avec succ�s : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{258C9770-1713-4021-8D7E-1F184A2BD754} : ShoppingReport.dll
Supprim� avec succ�s : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{2A0F3D1B-0909-4FF4-B272-609CCE6054E7} : PCTBrowserDefender.dll
Supprim� avec succ�s : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{2EECD738-5844-4A99-B4B6-146BF802613B} : BabylonToolbar.dll
Supprim� avec succ�s : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{472734EA-242A-422B-ADF8-83D1E48CC825} : PCTBrowserDefender.dll
Supprim� avec succ�s : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{57F02779-3D88-4958-8AD3-83C12D86ADC7} : advancedsearchbar.dll
Supprim� avec succ�s : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{5AA2BA46-9913-4DC7-9620-69AB0FA17AE7} : alot.dll;alot.dll
Supprim� avec succ�s : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{69ABB8E4-3A44-461C-93BC-C3BB6BDF2DF3} : Backcountry.com.Steepandcheap.Toolbar.dll
Supprim� avec succ�s : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{74F475FA-6C75-43BD-AAB9-ECDA6184F600} : SuperfishIEAddon.dll;SuperfishIEAddon.dll
Supprim� avec succ�s : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E} : BabylonToolbar.dll
Supprim� avec succ�s : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{BDEA95CF-F0E6-41E0-BD3D-B00F39A4E939} : ShoppingReport.dll
Supprim� avec succ�s : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{CDEEC43D-3572-4E95-A2A5-F519D29F00C0} : advancedsearchbar.dll
Supprim� avec succ�s : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{F98BA7F6-48D8-4CE7-A8D0-39D13FD6F14F} : Backcountry.com.Steepandcheap.Toolbar.dll
Supprim� avec succ�s : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{98889811-442D-49DD-99D7-DC866BE87DBC} : BabylonToolbarTlbr.dll
Supprim� avec succ�s : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{100EB1FD-D03E-47FD-81F3-EE91287F9465}
Supprim� avec succ�s : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{14CEEAFF-96DD-4101-AE37-D5ECDC23C3F6}
Supprim� avec succ�s : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{258C9770-1713-4021-8D7E-1F184A2BD754}
Supprim� avec succ�s : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{2A0F3D1B-0909-4FF4-B272-609CCE6054E7}
Supprim� avec succ�s : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{2EECD738-5844-4A99-B4B6-146BF802613B}
Supprim� avec succ�s : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{472734EA-242A-422B-ADF8-83D1E48CC825}
Supprim� avec succ�s : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{57F02779-3D88-4958-8AD3-83C12D86ADC7}
Supprim� avec succ�s : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{5AA2BA46-9913-4DC7-9620-69AB0FA17AE7}
Supprim� avec succ�s : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{69ABB8E4-3A44-461C-93BC-C3BB6BDF2DF3}
Supprim� avec succ�s : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{74F475FA-6C75-43BD-AAB9-ECDA6184F600}
Supprim� avec succ�s : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}
Supprim� avec succ�s : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{BDEA95CF-F0E6-41E0-BD3D-B00F39A4E939}
Supprim� avec succ�s : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{CDEEC43D-3572-4E95-A2A5-F519D29F00C0}
Supprim� avec succ�s : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{F98BA7F6-48D8-4CE7-A8D0-39D13FD6F14F}
Supprim� avec succ�s : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{98889811-442D-49DD-99D7-DC866BE87DBC}
Supprim� avec succ�s : HKLM\Software\Classes\Installer\Features\AD064F74EB1D58D4D82FAAF1133D44F5 : gm_Optional
Supprim� avec succ�s : HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2CD7B34FC96DAA34C8FC0137376D44F6 : 02:\Software\Caphyon\Advanced Installer\LZMA\{B96C3B1E-6A96-4750-A8BC-EDF19A0D1C27}\3.6.1.0\AI_ExePath
Supprim� avec succ�s : HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\320165C05755ECB45A45FAE5C2BF726D : 02:\Software\Caphyon\Advanced Installer\LZMA\{48EE0E00-86DE-47A5-8D00-B5D72A70BCCD}\4.0.10.0\AI_ExePath
Supprim� avec succ�s : HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\sweet-page uninstall
���������� | IFEO
���������� | Dossiers | Fichiers
Dossier vide Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\{0FAC0BB8-F84B-4D98-A6C6-CB707881798E}
Dossier vide Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\{1459F523-3E70-4F55-90CB-FC60E25E79B3}
Dossier vide Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\{20023CBE-E6EA-4DB6-831D-B9C3E33EB2C8}
Dossier vide Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\{30810B69-159C-4EAA-BF60-6D1C53EB29CE}
Dossier vide Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\{622F4843-025F-4579-B3D3-5BF61665D278}
Dossier vide Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\{62EDC3B6-3D64-4260-B495-A746B1019985}
Dossier vide Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\{88C4DB7D-2AE1-4E94-B70F-37EF3FCB50F3}
Dossier vide Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\{B54B1B99-5231-45B3-BAB3-A06832A2B2CF}
Dossier vide Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\{C55BF10D-F26F-4869-92B0-48CD6E59A1E6}
Dossier vide Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\{C637992A-B512-4936-AE27-B9E490E1F414}
Dossier vide Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\{CC002799-0F14-4BFB-A4FF-18F3FA369F05}
Dossier vide Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\{CD65D45D-43F5-4085-9D8C-EFBD9DB987BD}
Dossier vide Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\{E9693919-64A1-4AA1-A63A-9C1FBEB8AF02}
Dossier vide Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\{F45836F4-E1CA-4B71-8925-6CF9E178856B}
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\EmieSiteList\container.dat (.-.)
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\EmieUserList\container.dat (.-.)
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\Microsoft\Internet Explorer\DOMStore\24Q6YUY2\www.portaldosites[1].xml (.-.)
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\08YTPNHD\77ZipSetup[1].exe (.-.)
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1JIE5SXT\countCAVSNZQZ.js (.-.)
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3WE23YX2\home_tab[1] (.-.)
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4IHHVPR0\optimizeregistry_tab[1] (.-.)
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\F28F3C77\Babylon10_setup[1].exe (2011(c) Babylon Ltd. All rights reserved..-.Babylon Client Setup 1.0) Setup_Stub.exe
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\F28F3C77\MTP_ySUJH_bn48VBG8sNSnZ2MAKAc2x4R1uOSeegc5U[1].eot (.-.)
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\F28F3C77\Setup-deltatb[1].zpb (.-.)
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\F28F3C77\stpui_babylon_com[1].htm (.-.)
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\F28F3C77\stpui_babylon_com[2].htm (.-.)
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HQX62ABJ\Home_alert[2] (.-.)
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HQX62ABJ\Home_alert[3] (.-.)
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KOC2UHP6\bab138.deltatb_dmn[1].zpb (.-.)
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KOC2UHP6\clienttp_babylon_com[1].htm (.-.)
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VRWFMUCY\bab098.claroico[1].zpb (.-.)
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VRWFMUCY\BabylonChromeOCR[1].zpb (.-.)
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VRWFMUCY\stpui_babylon_com[1].htm (.-.)
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VRWFMUCY\stpui_babylon_com[2].htm (.-.)
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Virtualized\C\Users\pinel patrice\Application Data\SupTab
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\Mozilla\Firefox\Profiles\jtv6rty9.default\jumpListCache\WwaJHKmb4qXMmyAcE_yKcQ==.ico (.-.)
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\Temp\is1719534685\12744110_stp\deeal.exe (Kreapixel inc..-.)
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\Temp\is1807810639\1E0462A3_stp.EXE (Copyright � 2013 Symantec Corporation. All rights reserved..-.Norton 360) N360_TW.exe
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\Temp\is1807810639\1E0462A3_stp.EXE.part (.-.)
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\Temp\uninstaller-WTA-17a7e7f1-26de-425d-a301-a96ae3c4c7d2\Uninstaller.exe (WildTangent, Inc. All rights reserved..-.Uninstaller) Uninstaller.exe
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\Temp\uninstaller-WTA-386b5eff-4ff3-4f17-b34d-32be3e3799c3\Uninstaller.exe (WildTangent, Inc. All rights reserved..-.Uninstaller) Uninstaller.exe
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\Temp\uninstaller-WTA-689bf85f-b5a0-4e67-a34f-c3bb356c617f\Uninstaller.exe (WildTangent, Inc. All rights reserved..-.Uninstaller) Uninstaller.exe
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\Temp\uninstaller-WTA-91222c7b-db64-40bf-b53c-b54c0a67ac64\Uninstaller.exe (WildTangent, Inc. All rights reserved..-.Uninstaller) Uninstaller.exe
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\Temp\_av_sfx.tm~66ecfed6-3fd2-420d-bc54-f3e3aacea427\aswOfferTool.exe (Copyright (c) 2013 AVAST Software.-.avast! Antivirus) aswOfferTool.exe
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\Temp\_av_sfx.tm~66ecfed6-3fd2-420d-bc54-f3e3aacea427\SetupOfferGui.dll (Copyright (c) 2013 AVAST Software.-.avast! Antivirus) SetupGui.dll
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Roaming\~lpvwexo.exe (.-.)
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpj4sfca.dll
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\temp\Quarantine.exe
���������� | D�tournements de raccourcis
���������� | Proxy
R�par� : [HKU\S-1-5-21-2251064558-711344184-2909949572-1000\Software\Microsoft\Windows\CurrentVersion\Internet settings]|[WarnonZoneCrossing] : 0 -> 1
���������� | D�tournement internet Explorer
R�par� : [HKLM\Software\Microsoft\Internet Explorer\Main\Window Title]|[] : -> Internet Explorer
R�par� : [HKLM\Software\Microsoft\Internet Explorer\Main]|[Search Bar] : -> http://www.google.com/
R�par� : [HKLM\Software\Microsoft\Internet Explorer\Main]|[Start Default_Page_URL] : -> http://www.google.com/
R�par� : [HKLM\Software\Microsoft\Internet Explorer\SearchURL]|[Default] : -> http://www.google.com/
R�par� : [HKLM\Software\Microsoft\Internet Explorer\Main]|[CustomizeSearch] : -> http://www.google.com/
R�par� : [HKLM\Software\Microsoft\Internet Explorer\Search]|[SearchAssistant] : -> http://www.google.com/
R�par� : [HKLM\Software\Microsoft\Internet Explorer\Search]|[Search Bar] : -> http://www.google.com/
R�par� : [HKLM\Software\Microsoft\Internet Explorer\Search]|[Start Page] : -> http://www.google.com/
R�par� : [HKLM\Software\Microsoft\Internet Explorer\Search]|[Start Default_Page_URL] : -> http://www.google.com/
R�par� : [HKLM\Software\Microsoft\Internet Explorer\Search]|[Local Page] : -> C:\Windows\SysWOW64\blank.htm
R�par� : [HKLM\Software\Microsoft\Internet Explorer\Search]|[Search Page] : -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R�par� : [HKLM\Software\Microsoft\Internet Explorer\Search]|[Default_Search_URL] : -> http://go.microsoft.com/fwlink/?LinkId=54896
R�par� : [HKLM\Software\Microsoft\Internet Explorer\Search]|[Default_Page_URL] : -> http://go.microsoft.com/fwlink/?LinkId=69157
R�par� : [HKLM\Software\Microsoft\Internet Explorer\Search]|[CustomizeSearch] : -> http://www.google.com/
R�par� : [HKLM\Software\Microsoft\Internet Explorer\AboutURLs]|[Tabs] : -> http://www.google.com/
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Main\Window Title]|[] : -> Internet Explorer
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Main]|[Search Bar] : -> http://www.google.com/
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Main]|[Start Default_Page_URL] : -> http://www.google.com/
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Main]|[Local Page] : C:\Windows\System32\blank.htm -> C:\Windows\SysWOW64\blank.htm
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\SearchURL]|[Default] : -> http://www.google.com/
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Main]|[CustomizeSearch] : -> http://www.google.com/
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Search]|[SearchAssistant] : -> http://www.google.com/
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Search]|[Search Bar] : -> http://www.google.com/
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Search]|[Start Page] : -> http://www.google.com/
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Search]|[Start Default_Page_URL] : -> http://www.google.com/
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Search]|[Local Page] : -> C:\Windows\SysWOW64\blank.htm
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Search]|[Search Page] : -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Search]|[Default_Search_URL] : -> http://go.microsoft.com/fwlink/?LinkId=54896
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Search]|[Default_Page_URL] : -> http://go.microsoft.com/fwlink/?LinkId=69157
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Search]|[CustomizeSearch] : -> http://www.google.com/
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\AboutURLs]|[Tabs] : -> http://www.google.com/
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main\Window Title]|[] : -> Internet Explorer
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main]|[Search Bar] : -> http://www.google.com/
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main]|[Start Page] : -> http://www.google.com/
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main]|[Start Default_Page_URL] : -> http://www.google.com/
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main]|[Local Page] : -> C:\Windows\SysWOW64\blank.htm
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main]|[Search Page] : -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main]|[Default_Search_URL] : -> http://go.microsoft.com/fwlink/?LinkId=54896
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main]|[Default_Page_URL] : -> http://go.microsoft.com/fwlink/?LinkId=69157
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\SearchURL]|[Default] : -> http://www.google.com/
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main]|[CustomizeSearch] : -> http://www.google.com/
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Search]|[SearchAssistant] : -> http://www.google.com/
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Search]|[Search Bar] : -> http://www.google.com/
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Search]|[Start Page] : -> http://www.google.com/
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Search]|[Start Default_Page_URL] : -> http://www.google.com/
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Search]|[Local Page] : -> C:\Windows\SysWOW64\blank.htm
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Search]|[Search Page] : -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Search]|[Default_Search_URL] : -> http://go.microsoft.com/fwlink/?LinkId=54896
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Search]|[Default_Page_URL] : -> http://go.microsoft.com/fwlink/?LinkId=69157
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Search]|[CustomizeSearch] : -> http://www.google.com/
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\AboutURLs]|[Tabs] : -> http://www.google.com/
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main\Window Title]|[] : -> Internet Explorer
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main]|[Search Bar] : -> http://www.google.com/
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main]|[Start Page] : -> http://www.google.com/
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main]|[Start Default_Page_URL] : -> http://www.google.com/
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main]|[Local Page] : -> C:\Windows\SysWOW64\blank.htm
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main]|[Search Page] : -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main]|[Default_Search_URL] : -> http://go.microsoft.com/fwlink/?LinkId=54896
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main]|[Default_Page_URL] : -> http://go.microsoft.com/fwlink/?LinkId=69157
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\SearchURL]|[Default] : -> http://www.google.com/
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main]|[CustomizeSearch] : -> http://www.google.com/
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Search]|[SearchAssistant] : -> http://www.google.com/
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Search]|[Search Bar] : -> http://www.google.com/
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Search]|[Start Page] : -> http://www.google.com/
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Search]|[Start Default_Page_URL] : -> http://www.google.com/
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Search]|[Local Page] : -> C:\Windows\SysWOW64\blank.htm
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Search]|[Search Page] : -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Search]|[Default_Search_URL] : -> http://go.microsoft.com/fwlink/?LinkId=54896
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Search]|[Default_Page_URL] : -> http://go.microsoft.com/fwlink/?LinkId=69157
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Search]|[CustomizeSearch] : -> http://www.google.com/
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\AboutURLs]|[Tabs] : -> http://www.google.com/
R�par� : [HKU\S-1-5-21-2251064558-711344184-2909949572-1000\Software\Microsoft\Internet Explorer\Main\Window Title]|[] : -> Internet Explorer
R�par� : [HKU\S-1-5-21-2251064558-711344184-2909949572-1000\Software\Microsoft\Internet Explorer\Main]|[Search Bar] : Preserve -> http://www.google.com/
R�par� : [HKU\S-1-5-21-2251064558-711344184-2909949572-1000\Software\Microsoft\Internet Explorer\Main]|[Start Default_Page_URL] : -> http://www.google.com/
R�par� : [HKU\S-1-5-21-2251064558-711344184-2909949572-1000\Software\Microsoft\Internet Explorer\Main]|[Local Page] : C:\Windows\system32\blank.htm -> C:\Windows\SysWOW64\blank.htm
R�par� : [HKU\S-1-5-21-2251064558-711344184-2909949572-1000\Software\Microsoft\Internet Explorer\Main]|[Search Page] : http://go.microsoft.com/fwlink/?LinkId=54896 -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R�par� : [HKU\S-1-5-21-2251064558-711344184-2909949572-1000\Software\Microsoft\Internet Explorer\Main]|[Default_Search_URL] : -> http://go.microsoft.com/fwlink/?LinkId=54896
R�par� : [HKU\S-1-5-21-2251064558-711344184-2909949572-1000\Software\Microsoft\Internet Explorer\SearchURL]|[Default] : -> http://www.google.com/
R�par� : [HKU\S-1-5-21-2251064558-711344184-2909949572-1000\Software\Microsoft\Internet Explorer\Main]|[CustomizeSearch] : -> http://www.google.com/
R�par� : [HKU\S-1-5-21-2251064558-711344184-2909949572-1000\Software\Microsoft\Internet Explorer\Search]|[SearchAssistant] : -> http://www.google.com/
R�par� : [HKU\S-1-5-21-2251064558-711344184-2909949572-1000\Software\Microsoft\Internet Explorer\Search]|[Search Bar] : -> http://www.google.com/
R�par� : [HKU\S-1-5-21-2251064558-711344184-2909949572-1000\Software\Microsoft\Internet Explorer\Search]|[Start Page] : -> http://www.google.com/
R�par� : [HKU\S-1-5-21-2251064558-711344184-2909949572-1000\Software\Microsoft\Internet Explorer\Search]|[Start Default_Page_URL] : -> http://www.google.com/
R�par� : [HKU\S-1-5-21-2251064558-711344184-2909949572-1000\Software\Microsoft\Internet Explorer\Search]|[Local Page] : -> C:\Windows\SysWOW64\blank.htm
R�par� : [HKU\S-1-5-21-2251064558-711344184-2909949572-1000\Software\Microsoft\Internet Explorer\Search]|[Search Page] : -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R�par� : [HKU\S-1-5-21-2251064558-711344184-2909949572-1000\Software\Microsoft\Internet Explorer\Search]|[Default_Search_URL] : -> http://go.microsoft.com/fwlink/?LinkId=54896
R�par� : [HKU\S-1-5-21-2251064558-711344184-2909949572-1000\Software\Microsoft\Internet Explorer\Search]|[Default_Page_URL] : -> http://go.microsoft.com/fwlink/?LinkId=69157
R�par� : [HKU\S-1-5-21-2251064558-711344184-2909949572-1000\Software\Microsoft\Internet Explorer\Search]|[CustomizeSearch] : -> http://www.google.com/
R�par� : [HKU\S-1-5-21-2251064558-711344184-2909949572-1000\Software\Microsoft\Internet Explorer\AboutURLs]|[Tabs] : -> http://www.google.com/
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Main\Window Title]|[] : -> Internet Explorer
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Main]|[Search Bar] : -> http://www.google.com/
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Main]|[Start Page] : -> http://www.google.com/
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Main]|[Start Default_Page_URL] : -> http://www.google.com/
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Main]|[Local Page] : -> C:\Windows\SysWOW64\blank.htm
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Main]|[Search Page] : -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Main]|[Default_Search_URL] : -> http://go.microsoft.com/fwlink/?LinkId=54896
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Main]|[Default_Page_URL] : -> http://go.microsoft.com/fwlink/?LinkId=69157
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\SearchURL]|[Default] : -> http://www.google.com/
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Main]|[CustomizeSearch] : -> http://www.google.com/
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Search]|[SearchAssistant] : -> http://www.google.com/
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Search]|[Search Bar] : -> http://www.google.com/
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Search]|[Start Page] : -> http://www.google.com/
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Search]|[Start Default_Page_URL] : -> http://www.google.com/
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Search]|[Local Page] : -> C:\Windows\SysWOW64\blank.htm
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Search]|[Search Page] : -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Search]|[Default_Search_URL] : -> http://go.microsoft.com/fwlink/?LinkId=54896
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Search]|[Default_Page_URL] : -> http://go.microsoft.com/fwlink/?LinkId=69157
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Search]|[CustomizeSearch] : -> http://www.google.com/
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\AboutURLs]|[Tabs] : -> http://www.google.com/
���������� | D�tournement Google Chrome
[pinel patrice] Remis a z�ro avec succ�s : SearchURL
[pinel patrice] : aohghmighlieiainnegkcijnfilokake = : Google & co - Google & co
[pinel patrice] : apdfllckaahabafndbhieahigkjlhalf = : Google & co - https://drive.google.com/?usp=chrome_app - Google & co
[pinel patrice] : bepbmhgboaologfdajaanbcjmnhjmhfn = : This extension allows you to say �Ok Google� and start speaking your search. - Google Voice Search Hotword (Beta)
[pinel patrice] : blpcfgokakmgnkcojhhkbfbldkacnbeo = : Google & co - http://www.youtube.com - http://www.youtube.com/?feature=ytca - Google & co
[pinel patrice] : coobgpohoikkiipiblmjeljniedjpjpf = : Google & co - http://www.google.com/webhp?source=search_app - Google & co
[pinel patrice] : nmmhkkegccagdldgiimedpiccmgmieda = : Google & co - Google & co
[pinel patrice] : pjkljhegncpnkpknbcohdijeoejaedia = : Google & co - https://mail.google.com/mail/ca - Google & co
���������� | D�tournement Firefox
[pinel patrice] Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Roaming\Mozilla\Firefox\Profiles\jtv6rty9.default\sessionstore.js
[pinel patrice] : {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi : - -
���������� | Opera
���������� | D�tournement des cl�s StartMenuInternet
R�par� : [HKLM\Software\Clients\StartMenuInternet\Firefox.exe\shell\open\command] : firefox.exe -> "C:\Program Files\Mozilla Firefox\Firefox.exe"
R�par� : [HKLM\Software\Clients\StartMenuInternet\Firefox.exe\shell\safemode\command] : "C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -safe-mode -> "C:\Program Files\Mozilla Firefox\Firefox.exe" -safe-mode
R�par� : [HKLM\Software\Clients\StartMenuInternet\IExplore.exe\shell\open\command] : iexplore.exe -> "C:\Program Files\Internet Explorer\iexplore.exe"
R�par� : [HKLM\Software\Clients\StartMenuInternet\Google Chrome\shell\open\command] : chrome.exe -> "C:\Program Files\Google\Chrome\Application\chrome.exe"
���������� | AppInit_DLLs
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]|[LoadAppInit_DLLs] : 1
[HKLM64\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]|[LoadAppInit_DLLs] : 1
���������� | D�tournement Javascript
���������� | Firewall
���������� | ADS
���������� | Fichiers temporaires
[All Users] Fichiers temporaires Supprim�s : 0 Ko
[Default] Fichiers temporaires Supprim�s : 0 Ko
[Default User] Fichiers temporaires Supprim�s : 0 Ko
[pinel patrice] Fichiers temporaires Supprim�s : 310097 Ko
[Public] Fichiers temporaires Supprim�s : 0 Ko
[C:\Windows\Temp] Fichiers temporaires Supprim�s : 61921 Ko
[C:\Temp] Fichiers temporaires Supprim�s : 0 Ko
Service Red�marr� : MPSsvc
Autre rapport
Mise en veille restaur�e
���������� | Listing
���������� | C:\Program Files (x86)
[06/07/2011 01:57:57] - |D| - C:\Program Files (x86)\Atheros
[06/07/2011 01:58:52] - |D| - C:\Program Files (x86)\Bluetooth Suite
[06/07/2011 01:57:57] - |D| - C:\Program Files (x86)\Cisco
[14/07/2009 05:20:08] - |D| - C:\Program Files (x86)\Common Files
[06/07/2011 02:08:14] - |D| - C:\Program Files (x86)\CyberLink
[14/07/2009 06:54:24] - |ASH| - C:\Program Files (x86)\desktop.ini
[09/05/2011 12:35:14] - |D| - C:\Program Files (x86)\Evernote
[11/06/2013 19:17:29] - |D| - C:\Program Files (x86)\Google
[05/07/2014 10:10:51] - |D| - C:\Program Files (x86)\GUM2B63.tmp
[05/07/2014 10:10:51] - |A| - C:\Program Files (x86)\GUT2B64.tmp
[09/05/2011 12:33:03] - |D| - C:\Program Files (x86)\Hewlett-Packard
[09/05/2011 12:35:31] - |D| - C:\Program Files (x86)\HP Games
[09/05/2011 12:40:02] - |HD| - C:\Program Files (x86)\InstallShield Installation Information
[06/07/2011 01:53:59] - |D| - C:\Program Files (x86)\Intel
[14/07/2009 05:20:08] - |D| - C:\Program Files (x86)\Internet Explorer
[16/07/2013 14:59:56] - |D| - C:\Program Files (x86)\Java
[06/07/2011 02:11:19] - |D| - C:\Program Files (x86)\Microsoft
[15/06/2013 11:52:28] - |D| - C:\Program Files (x86)\Microsoft Application Virtualization Client
[09/05/2011 12:42:18] - |D| - C:\Program Files (x86)\Microsoft Office
[09/05/2011 12:44:54] - |D| - C:\Program Files (x86)\Microsoft SQL Server Compact Edition
[09/06/2013 02:11:39] - |D| - C:\Program Files (x86)\Microsoft.NET
[10/05/2014 19:14:29] - |D| - C:\Program Files (x86)\Mozilla Firefox
[05/07/2013 15:55:05] - |D| - C:\Program Files (x86)\Mozilla Maintenance Service
[14/07/2009 07:32:38] - |D| - C:\Program Files (x86)\MSBuild
[21/06/2014 10:56:14] - |D| - C:\Program Files (x86)\MSECache
[06/07/2014 15:06:13] - |D| - C:\Program Files (x86)\NortonInstaller
[09/05/2011 12:35:25] - |RD| - C:\Program Files (x86)\Online Services
[21/06/2014 10:24:53] - |D| - C:\Program Files (x86)\OpenOffice 4
[07/06/2013 10:26:33] - |D| - C:\Program Files (x86)\PDF Architect
[09/05/2011 12:43:06] - |D| - C:\Program Files (x86)\PDF Complete
[07/06/2013 10:26:11] - |D| - C:\Program Files (x86)\PDFCreator
[06/07/2011 01:55:23] - |D| - C:\Program Files (x86)\Realtek
[14/07/2009 07:32:38] - |D| - C:\Program Files (x86)\Reference Assemblies
[09/05/2011 12:43:31] - |RD| - C:\Program Files (x86)\Skype
[06/07/2011 01:55:23] - |HD| - C:\Program Files (x86)\Temp
[14/07/2009 06:57:06] - |HD| - C:\Program Files (x86)\Uninstall Information
[21/06/2014 10:37:17] - |D| - C:\Program Files (x86)\VCW VicMan's Photo Editor
[21/06/2014 10:37:24] - |D| - C:\Program Files (x86)\Web Photo Album
[09/05/2011 12:35:27] - |D| - C:\Program Files (x86)\WildTangent Games
[14/07/2009 07:32:38] - |D| - C:\Program Files (x86)\Windows Defender
[09/05/2011 12:44:21] - |D| - C:\Program Files (x86)\Windows Live
[14/07/2009 05:20:08] - |D| - C:\Program Files (x86)\Windows Mail
[14/07/2009 07:32:38] - |D| - C:\Program Files (x86)\Windows Media Player
[14/07/2009 05:20:08] - |D| - C:\Program Files (x86)\Windows NT
[14/07/2009 07:32:38] - |D| - C:\Program Files (x86)\Windows Photo Viewer
[14/07/2009 07:32:38] - |D| - C:\Program Files (x86)\Windows Portable Devices
[14/07/2009 07:32:38] - |D| - C:\Program Files (x86)\Windows Sidebar
[01/06/2013 18:52:19] - |D| - C:\Program Files (x86)\WinZip
[09/05/2011 12:46:05] - |D| - C:\Program Files (x86)\Xobni
[06/07/2014 19:02:28] - |D| - C:\Program Files (x86)\ZHPDiag
���������� | C:\Program Files
[14/06/2013 13:01:33] - |D| - C:\Program Files\AVAST Software
[14/07/2009 05:20:08] - |D| - C:\Program Files\Common Files
[14/07/2009 06:54:24] - |ASH| - C:\Program Files\desktop.ini
[14/07/2009 07:32:38] - |D| - C:\Program Files\DVD Maker
[01/06/2013 18:51:41] - |SHD| - C:\Program Files\Fichiers communs
[03/12/2010 03:30:42] - |D| - C:\Program Files\Hewlett-Packard
[14/07/2009 05:20:08] - |D| - C:\Program Files\Internet Explorer
[09/05/2011 12:48:03] - |D| - C:\Program Files\Java
[14/07/2009 07:32:38] - |D| - C:\Program Files\Microsoft Games
[15/06/2013 11:52:29] - |D| - C:\Program Files\Microsoft Office
[14/07/2009 07:32:38] - |D| - C:\Program Files\MSBuild
[09/05/2011 12:47:22] - |RD| - C:\Program Files\Online Services
[06/07/2011 01:55:38] - |D| - C:\Program Files\Realtek
[14/07/2009 07:32:38] - |D| - C:\Program Files\Reference Assemblies
[06/07/2011 01:57:06] - |D| - C:\Program Files\Synaptics
[14/07/2009 07:09:26] - |HD| - C:\Program Files\Uninstall Information
[14/07/2009 07:32:38] - |D| - C:\Program Files\Windows Defender
[14/07/2009 05:20:08] - |D| - C:\Program Files\Windows Mail
[14/07/2009 07:32:38] - |D| - C:\Program Files\Windows Media Player
[14/07/2009 05:20:08] - |D| - C:\Program Files\Windows NT
[14/07/2009 07:32:38] - |D| - C:\Program Files\Windows Photo Viewer
[14/07/2009 07:32:38] - |D| - C:\Program Files\Windows Portable Devices
[14/07/2009 07:32:38] - |D| - C:\Program Files\Windows Sidebar
���������� | C:\Program Files (x86)\Common Files
[06/07/2011 01:58:56] - |D| - C:\Program Files (x86)\Common Files\Atheros
[15/06/2013 11:52:32] - |D| - C:\Program Files (x86)\Common Files\DESIGNER
[09/05/2011 12:39:59] - |D| - C:\Program Files (x86)\Common Files\InstallShield
[06/07/2011 01:53:59] - |D| - C:\Program Files (x86)\Common Files\Intel
[16/07/2013 15:00:44] - |D| - C:\Program Files (x86)\Common Files\Java
[14/07/2009 05:20:08] - |D| - C:\Program Files (x86)\Common Files\microsoft shared
[06/07/2011 01:55:08] - |D| - C:\Program Files (x86)\Common Files\postureAgent
[14/07/2009 05:20:08] - |D| - C:\Program Files (x86)\Common Files\Services
[09/05/2011 12:43:31] - |D| - C:\Program Files (x86)\Common Files\Skype
[14/07/2009 05:20:08] - |D| - C:\Program Files (x86)\Common Files\SpeechEngines
[14/07/2009 05:20:08] - |D| - C:\Program Files (x86)\Common Files\System
[09/05/2011 12:43:50] - |D| - C:\Program Files (x86)\Common Files\Windows Live
���������� | C:\Program Files\Common Files
[06/07/2011 01:54:00] - |D| - C:\Program Files\Common Files\Intel
[14/07/2009 05:20:08] - |D| - C:\Program Files\Common Files\Microsoft Shared
[14/07/2009 05:20:08] - |D| - C:\Program Files\Common Files\Services
[14/07/2009 05:20:08] - |D| - C:\Program Files\Common Files\SpeechEngines
[14/07/2009 05:20:08] - |D| - C:\Program Files\Common Files\System
���������� | C:\Users\pinel patrice\AppData\Roaming
[03/06/2013 19:45:06] - |D| - C:\Users\pinel patrice\AppData\Roaming\Adobe
[13/06/2013 09:49:52] - |D| - C:\Users\pinel patrice\AppData\Roaming\ArtifexMundi
[08/11/2013 20:17:02] - |D| - C:\Users\pinel patrice\AppData\Roaming\AVAST Software
[05/07/2014 10:13:24] - |D| - C:\Users\pinel patrice\AppData\Roaming\Dropbox
[05/07/2014 10:15:03] - |D| - C:\Users\pinel patrice\AppData\Roaming\DropboxMaster
[01/06/2013 23:26:52] - |D| - C:\Users\pinel patrice\AppData\Roaming\Flood Light Games
[09/06/2013 22:22:42] - |D| - C:\Users\pinel patrice\AppData\Roaming\funkitron
[01/06/2013 18:53:39] - |D| - C:\Users\pinel patrice\AppData\Roaming\Hewlett-Packard
[01/06/2013 18:57:23] - |D| - C:\Users\pinel patrice\AppData\Roaming\hpqlog
[01/06/2013 18:57:40] - |D| - C:\Users\pinel patrice\AppData\Roaming\Identities
[01/06/2013 18:58:05] - |D| - C:\Users\pinel patrice\AppData\Roaming\Intel Corporation
[07/06/2013 10:13:20] - |D| - C:\Users\pinel patrice\AppData\Roaming\Macromedia
[01/06/2013 18:51:46] - |D| - C:\Users\pinel patrice\AppData\Roaming\Media Center Programs
[01/06/2013 18:51:46] - |SD| - C:\Users\pinel patrice\AppData\Roaming\Microsoft
[05/07/2013 15:55:14] - |D| - C:\Users\pinel patrice\AppData\Roaming\Mozilla
[21/06/2014 10:27:18] - |D| - C:\Users\pinel patrice\AppData\Roaming\OpenOffice
[07/06/2013 10:33:40] - |D| - C:\Users\pinel patrice\AppData\Roaming\PDF Architect
[10/06/2013 23:23:50] - |D| - C:\Users\pinel patrice\AppData\Roaming\PlayFirst
[09/06/2013 12:30:07] - |D| - C:\Users\pinel patrice\AppData\Roaming\Playrix Entertainment
[20/06/2013 21:50:11] - |D| - C:\Users\pinel patrice\AppData\Roaming\Rainbow
[15/06/2013 11:53:44] - |D| - C:\Users\pinel patrice\AppData\Roaming\SoftGrid Client
[01/06/2013 18:58:03] - |D| - C:\Users\pinel patrice\AppData\Roaming\Synaptics
[15/06/2013 11:52:06] - |D| - C:\Users\pinel patrice\AppData\Roaming\TP
[10/06/2013 08:46:02] - |D| - C:\Users\pinel patrice\AppData\Roaming\WildTangent
[06/07/2014 19:02:29] - |D| - C:\Users\pinel patrice\AppData\Roaming\ZHP
���������� | C:\Users\pinel patrice\AppData\Local
[05/07/2013 16:49:36] - |D| - C:\Users\pinel patrice\AppData\Local\Adobe
[01/06/2013 18:51:47] - |SHD| - C:\Users\pinel patrice\AppData\Local\Application Data
[10/06/2013 20:18:44] - |D| - C:\Users\pinel patrice\AppData\Local\Apps
[02/06/2013 20:22:26] - |D| - C:\Users\pinel patrice\AppData\Local\BMExplorer
[03/06/2013 01:14:25] - |D| - C:\Users\pinel patrice\AppData\Local\CrashDumps
[10/06/2013 20:27:32] - |D| - C:\Users\pinel patrice\AppData\Local\Deployment
[09/06/2013 02:50:55] - |D| - C:\Users\pinel patrice\AppData\Local\Diagnostics
[14/06/2013 12:49:10] - |D| - C:\Users\pinel patrice\AppData\Local\ElevatedDiagnostics
[21/06/2014 10:17:39] - |SHD| - C:\Users\pinel patrice\AppData\Local\EmieSiteList
[21/06/2014 10:17:39] - |SHD| - C:\Users\pinel patrice\AppData\Local\EmieUserList
[01/06/2013 18:56:52] - |A| - C:\Users\pinel patrice\AppData\Local\GDIPFONTCACHEV1.DAT
[11/06/2013 19:17:15] - |D| - C:\Users\pinel patrice\AppData\Local\Google
[01/06/2013 18:53:38] - |D| - C:\Users\pinel patrice\AppData\Local\Hewlett-Packard
[03/06/2013 20:34:24] - |D| - C:\Users\pinel patrice\AppData\Local\Hewlett-Packard_Company
[01/06/2013 18:51:47] - |SHD| - C:\Users\pinel patrice\AppData\Local\Historique
[01/06/2013 20:01:52] - |AH| - C:\Users\pinel patrice\AppData\Local\IconCache.db
[05/07/2013 16:50:58] - |D| - C:\Users\pinel patrice\AppData\Local\Macromedia
[01/06/2013 18:51:46] - |D| - C:\Users\pinel patrice\AppData\Local\Microsoft
[01/06/2013 19:02:56] - |D| - C:\Users\pinel patrice\AppData\Local\Microsoft Games
[05/07/2013 15:55:14] - |D| - C:\Users\pinel patrice\AppData\Local\Mozilla
[01/06/2013 18:58:04] - |D| - C:\Users\pinel patrice\AppData\Local\PDFC
[07/06/2013 10:24:00] - |D| - C:\Users\pinel patrice\AppData\Local\Programs
[03/06/2013 20:38:22] - |D| - C:\Users\pinel patrice\AppData\Local\RemEngine
[15/06/2013 11:53:44] - |D| - C:\Users\pinel patrice\AppData\Local\SoftGrid Client
[01/06/2013 18:51:46] - |D| - C:\Users\pinel patrice\AppData\Local\Temp
[01/06/2013 18:51:47] - |SHD| - C:\Users\pinel patrice\AppData\Local\Temporary Internet Files
[01/06/2013 18:52:23] - |D| - C:\Users\pinel patrice\AppData\Local\VirtualStore
[02/06/2013 11:20:29] - |D| - C:\Users\pinel patrice\AppData\Local\WinZip
���������� | C:\ProgramData
[14/07/2009 07:08:56] - |SHD| - C:\ProgramData\Application Data
[06/07/2011 01:57:17] - |D| - C:\ProgramData\Atheros
[14/06/2013 12:59:59] - |D| - C:\ProgramData\AVAST Software
[07/02/2014 17:45:48] - |D| - C:\ProgramData\BlueStacks
[01/06/2013 18:51:41] - |SHD| - C:\ProgramData\Bureau
[14/07/2009 07:08:56] - |SHD| - C:\ProgramData\Desktop
[14/07/2009 07:08:56] - |SHD| - C:\ProgramData\Documents
[01/06/2013 18:51:41] - |SHD| - C:\ProgramData\Favoris
[14/07/2009 07:08:56] - |SHD| - C:\ProgramData\Favorites
[01/06/2013 23:26:52] - |D| - C:\ProgramData\Flood Light Games
[09/05/2011 12:43:32] - |D| - C:\ProgramData\Hewlett-Packard
[01/06/2013 18:51:41] - |SHD| - C:\ProgramData\Menu D�marrer
[14/07/2009 05:20:08] - |SD| - C:\ProgramData\Microsoft
[01/06/2013 18:51:41] - |SHD| - C:\ProgramData\Mod�les
[05/07/2013 15:55:05] - |D| - C:\ProgramData\Mozilla
[06/07/2011 02:10:34] - |D| - C:\ProgramData\Norton
[06/07/2011 02:10:01] - |D| - C:\ProgramData\NortonInstaller
[09/05/2011 12:43:02] - |D| - C:\ProgramData\PDFC
[10/06/2013 23:23:50] - |D| - C:\ProgramData\PlayFirst
[03/06/2013 00:46:16] - |D| - C:\ProgramData\Sandlot Games
[09/05/2011 12:43:28] - |D| - C:\ProgramData\Skype
[14/07/2009 07:08:56] - |SHD| - C:\ProgramData\Start Menu
[09/05/2011 12:48:01] - |D| - C:\ProgramData\Sun
[06/07/2011 02:07:26] - |D| - C:\ProgramData\Temp
[14/07/2009 07:08:56] - |SHD| - C:\ProgramData\Templates
[02/06/2013 20:02:42] - |D| - C:\ProgramData\Wild Tangent
[09/05/2011 12:35:26] - |D| - C:\ProgramData\WildTangent
[01/06/2013 18:52:21] - |D| - C:\ProgramData\WinZip
[24/06/2013 18:27:18] - |D| - C:\ProgramData\{9BF4D58B-C6D6-467B-BC5A-FD0C1278F4AF}
[X] : [11851 Ko]
El�ments analys�s : 177473 | Modifi�s : 110 | Infect�s : 111
���������� |EOF| ���������� | 09:07:29 | [60 Ko]
����� Vista | 7 | 8 | 8.1 - 32/64 bits ����� - Start 08:29:03 - 07/07/2014
Mis � jour le : 05/07/2014 | 09.30 par g3n-h@ckm@n
Contact : http://www.sosvirus.net
Assistance : http://www.sosvirus.net/forum-virus-securite.html
Feedbacks : http://www.sosvirus.net/feedbacks-t75915.html
Boot: Normal boot
Syst�me : Windows 7 Home Premium (64 bits) HomePremium Service Pack 1
M�moire RAM = Total (MB) : 1956 | Libre (MB) : 559
Pagefile = Total (MB) : 3911 | Libre (MB) : 2030
Virtuelle = Total (MB) : 4194 | Libre (MB) : 4030
Registre sauvegard� , pour restaurer : C:\Shortcut_Module\Save\Clean\ERDNT.exe
���������� | Mises � jour Windows
Aucune mise � jour d�tect�e !!!
���������� | Navigateurs
IE : 11.0.9600.17126 (� Microsoft Corporation. Tous droits r�serv�s.)
FF : 30.0.0.5269 (�Firefox and Mozilla Developers; available under the MPL 2 license.)
GC : 35.0.1916.153 (Copyright 2012 Google Inc. All rights reserved.)
���������� | Security
FW :
WMI : OK
WU: Windows Update Service [Auto(2)] = Arr�t�
AS: Windows Defender [Auto(2)] = Arr�t�
FW: Windows FireWall Service [Auto(2)] = Arr�t�
Mise en veille supprim�e !
���������� | FlashPlayer
ActiveX : 14.0.0.125
Plugin : 13.0.0.214
���������� | Processus tu�s
1336 | [Owner : Syst�me |Parent : 288] - (.Microsoft Corporation - Infrastructure d�extensibilit� pour les services r�seau Windows sans fil 802.11.) - (6.1.7600.16385) = C:\Windows\System32\wlanext.exe
1352 | [Owner : Syst�me |Parent : 492] - (.Microsoft Corporation - H�te de la fen�tre de la console.) - (6.1.7601.18229) = C:\Windows\System32\conhost.exe
1544 | [Owner : Syst�me |Parent : 636] - (.Microsoft Corporation - Application sous-syst�me spouleur.) - (6.1.7601.17777) = C:\Windows\System32\spoolsv.exe
1668 | [Owner : Syst�me |Parent : 636] - (.Andrea Electronics Corporation - Andrea filters APO access service (64-bit).) - (1.0.64.10) = C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
1708 | [Owner : Syst�me |Parent : 636] - (.Atheros - Atheros Coex Service Application.) - (8.0.0.183) = C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
1780 | [Owner : Syst�me |Parent : 636] - (.Atheros Commnucations - AdminService Application.) - (7.2.0.60) = C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
1852 | [Owner : Syst�me |Parent : 636] - (.Hewlett-Packard Development Company, L.P. - HP Quick Launch WMI Service.) - (2.3.1.0) = C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
1892 | [Owner : Syst�me |Parent : 636] - (.Realsil Microelectronics Inc. - Realtek Card Reader Icon Tool..) - (1.1.9.1) = C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
1972 | [Owner : Syst�me |Parent : 636] - (.Intel Corporation - Local Manageability Service.) - (6.0.40.1213) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
2220 | [Owner : pinel patrice |Parent : 636] - (.Microsoft Corporation - Processus h�te pour T�ches Windows.) - (6.1.7601.18010) = C:\Windows\System32\taskhost.exe
2324 | [Owner : pinel patrice |Parent : 2296] - (.Microsoft Corporation - Explorateur Windows.) - (6.1.7601.17567) = C:\Windows\explorer.exe
2448 | [Owner : Syst�me |Parent : 636] - (.pdfforge GmbH - PDF Architect Helper Service.) - (1.0.0.1) = C:\Program Files (x86)\PDF Architect\HelperService.exe
2648 | [Owner : Syst�me |Parent : 636] - (.pdfforge GmbH - PDF Architect Conversion Service.) - (1.1.83.9982) = C:\Program Files (x86)\PDF Architect\ConversionService.exe
2684 | [Owner : Syst�me |Parent : 636] - (.PDF Complete Inc - Dispatcher.) - (4.0.34.2001) = C:\Program Files (x86)\PDF Complete\pdfsvc.exe
2928 | [Owner : Syst�me |Parent : 636] - (.Microsoft Corporation - Microsoft Application Virtualization Virtual Service Agent.) - (4.6.0.1523) = C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
3004 | [Owner : Syst�me |Parent : 636] - (.Microsoft Corp. - Microsoft� Windows Live ID Service.) - (7.250.4225.0) = C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
2424 | [Owner : Syst�me |Parent : 3004] - (.Microsoft Corp. - Microsoft� Windows Live ID Service Monitor.) - (7.250.4225.0) = C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
2492 | [Owner : pinel patrice |Parent : 524] - (.Microsoft Corporation - Moteur du Planificateur de t�ches.) - (6.1.7601.17514) = C:\Windows\System32\taskeng.exe
2536 | [Owner : pinel patrice |Parent : 2492] - (.CyberLink - YouCam Mirage.) - (1.0.0.602) = C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
2284 | [Owner : Syst�me |Parent : 636] - (.Microsoft Corporation - Microsoft Application Virtualization Client Service.) - (4.6.0.1523) = C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
3156 | [Owner : Syst�me |Parent : 636] - (.Microsoft Corporation - Microsoft Office Client Virtualization Service .) - (14.0.4750.1000) = C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
3264 | [Owner : SERVICE LOCAL |Parent : 636] - (.Microsoft Corporation - Service de la passerelle de la couche Application.) - (6.1.7600.16385) = C:\Windows\System32\alg.exe
3840 | [Owner : pinel patrice |Parent : 2324] - (.Intel Corporation - igfxTray Module.) - (8.15.10.2202) = C:\Windows\System32\igfxtray.exe
3848 | [Owner : pinel patrice |Parent : 2324] - (.Intel Corporation - hkcmd Module.) - (8.15.10.2202) = C:\Windows\System32\hkcmd.exe
3860 | [Owner : pinel patrice |Parent : 2324] - (.Intel Corporation - persistence Module.) - (8.15.10.2202) = C:\Windows\System32\igfxpers.exe
4004 | [Owner : pinel patrice |Parent : 2324] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) - (1.0.0.94) = C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
4040 | [Owner : pinel patrice |Parent : 2324] - (.Synaptics Incorporated - Synaptics TouchPad Enhancements.) - (15.2.4.3) = C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
2232 | [Owner : pinel patrice |Parent : 2324] - (.Atheros Communications - Serveur Stack Bluetooth.) - (7.2.0.60) = C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
3240 | [Owner : pinel patrice |Parent : 2324] - (.Atheros Commnucations - Bluetooth Suite Common Rescource.) - (7.2.0.60) = C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe
3636 | [Owner : pinel patrice |Parent : 4040] - (.Synaptics Incorporated - Synaptics Pointing Device Helper.) - (15.2.4.3) = C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
1736 | [Owner : pinel patrice |Parent : 2324] - (.Microsoft Corporation - Bloc-notes.) - (6.1.7600.16385) = C:\Windows\System32\notepad.exe
1616 | [Owner : pinel patrice |Parent : 3640] - (.Intel Corporation - IAStorIcon.) - (10.0.0.1046) = C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
1148 | [Owner : Syst�me |Parent : 636] - (.Microsoft Corporation - Indexeur Microsoft Windows Search.) - (7.0.7601.17610) = C:\Windows\System32\SearchIndexer.exe
4116 | [Owner : pinel patrice |Parent : 3640] - (.Hewlett-Packard Development Company, L.P. - HP Message Service.) - (2.3.6.0) = C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
4160 | [Owner : pinel patrice |Parent : 3640] - (.Hewlett-Packard Development Company, L.P. - HP On Screen Display.) - (1.0.6.0) = C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
4208 | [Owner : pinel patrice |Parent : 3640] - (.Oracle Corporation - Java(TM) Update Scheduler.) - (2.1.9.4) = C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
4716 | [Owner : SERVICE R�SEAU |Parent : 636] - (.Microsoft Corporation - Service Partage r�seau du Lecteur Windows Media.) - (12.0.7601.17514) = C:\Program Files\Windows Media Player\wmpnetwk.exe
4860 | [Owner : Syst�me |Parent : 636] - (.Hewlett-Packard Company - HP Software Framework WMI Service.) - (4.6.8.1) = C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
3980 | [Owner : pinel patrice |Parent : 2324] - (.Mozilla Corporation - Firefox.) - (30.0.0.5269) = C:\Program Files (x86)\Mozilla Firefox\firefox.exe
1912 | [Owner : pinel patrice |Parent : 776] - (.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) - (6.1.7600.16385) = C:\Windows\System32\wbem\unsecapp.exe
2200 | [Owner : Syst�me |Parent : 636] - (.Hewlett-Packard Company - HP Support Assistant Service.) - (7.0.39.14) = C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
4056 | [Owner : Syst�me |Parent : 636] - (.Hewlett-Packard Company - HPPA_Service.) - (1.0.10.0) = C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
3524 | [Owner : pinel patrice |Parent : 3652] - (.Hewlett-Packard Company - HP Wireless Assistant.) - (4.0.10.0) = C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe
4948 | [Owner : Syst�me |Parent : 636] - (.Intel Corporation - IAStorDataSvc.) - (10.0.0.1046) = C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
4236 | [Owner : Syst�me |Parent : 636] - (.Intel Corporation - User Notification Service.) - (6.0.40.1213) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
3012 | [Owner : Syst�me |Parent : 636] - (.Microsoft Corporation. - Microsoft SeaPort Search Enhancement Broker.) - (7.3.132.0) = C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\SeaPort.EXE
4136 | [Owner : pinel patrice |Parent : 3980] - (.Mozilla Corporation - Plugin Container for Firefox.) - (30.0.0.5269) = C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
4312 | [Owner : pinel patrice |Parent : 4136] - (.Adobe Systems, Inc. - Adobe Flash Player 13.0 r0.) - (13.0.0.214) = C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_214.exe
2204 | [Owner : pinel patrice |Parent : 4312] - (.Adobe Systems, Inc. - Adobe Flash Player 13.0 r0.) - (13.0.0.214) = C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_214.exe
���������� | Processus d�marr�s
352 | [Owner : Syst�me |Parent : 4] - (.Microsoft Corporation - Gestionnaire de sessions Windows.) - (6.1.7601.18229) = C:\Windows\System32\smss.exe
492 | [Owner : Syst�me |Parent : 484] - (.Microsoft Corporation - Processus d�ex�cution client-serveur.) - (6.1.7600.16385) = C:\Windows\System32\csrss.exe
576 | [Owner : Syst�me |Parent : 484] - (.Microsoft Corporation - Application de d�marrage de Windows.) - (6.1.7600.16385) = C:\Windows\System32\wininit.exe
596 | [Owner : Syst�me |Parent : 568] - (.Microsoft Corporation - Processus d�ex�cution client-serveur.) - (6.1.7600.16385) = C:\Windows\System32\csrss.exe
636 | [Owner : Syst�me |Parent : 576] - (.Microsoft Corporation - Applications Services et Contr�leur.) - (6.1.7600.16385) = C:\Windows\System32\services.exe
652 | [Owner : Syst�me |Parent : 576] - (.Microsoft Corporation - Local Security Authority Process.) - (6.1.7601.18443) = C:\Windows\System32\lsass.exe
660 | [Owner : Syst�me |Parent : 576] - (.Microsoft Corporation - Service du gestionnaire de session locale.) - (6.1.7601.17514) = C:\Windows\System32\lsm.exe
776 | [Owner : Syst�me |Parent : 636] - (.Microsoft Corporation - Processus h�te pour les services Windows.) - (6.1.7600.16385) = C:\Windows\System32\svchost.exe
828 | [Owner : Syst�me |Parent : 568] - (.Microsoft Corporation - Application d�ouverture de session Windows.) - (6.1.7601.18409) = C:\Windows\System32\winlogon.exe
888 | [Owner : SERVICE R�SEAU |Parent : 636] - (.Microsoft Corporation - Processus h�te pour les services Windows.) - (6.1.7600.16385) = C:\Windows\System32\svchost.exe
976 | [Owner : SERVICE LOCAL |Parent : 636] - (.Microsoft Corporation - Processus h�te pour les services Windows.) - (6.1.7600.16385) = C:\Windows\System32\svchost.exe
288 | [Owner : Syst�me |Parent : 636] - (.Microsoft Corporation - Processus h�te pour les services Windows.) - (6.1.7600.16385) = C:\Windows\System32\svchost.exe
468 | [Owner : SERVICE LOCAL |Parent : 636] - (.Microsoft Corporation - Processus h�te pour les services Windows.) - (6.1.7600.16385) = C:\Windows\System32\svchost.exe
524 | [Owner : Syst�me |Parent : 636] - (.Microsoft Corporation - Processus h�te pour les services Windows.) - (6.1.7600.16385) = C:\Windows\System32\svchost.exe
1124 | [Owner : SERVICE R�SEAU |Parent : 636] - (.Microsoft Corporation - Processus h�te pour les services Windows.) - (6.1.7600.16385) = C:\Windows\System32\svchost.exe
1344 | [Owner : Syst�me |Parent : 636] - (.AVAST Software - avast! Service.) - (9.0.2021.515) = C:\Program Files\AVAST Software\Avast\AvastSvc.exe
1572 | [Owner : SERVICE LOCAL |Parent : 636] - (.Microsoft Corporation - Processus h�te pour les services Windows.) - (6.1.7600.16385) = C:\Windows\System32\svchost.exe
2312 | [Owner : pinel patrice |Parent : 288] - (.Microsoft Corporation - Gestionnaire de fen�tres du Bureau.) - (6.1.7600.16385) = C:\Windows\System32\dwm.exe
2540 | [Owner : SERVICE R�SEAU |Parent : 776] - (.Microsoft Corporation - WMI Provider Host.) - (6.1.7601.17514) = C:\Windows\System32\wbem\WmiPrvSE.exe
3372 | [Owner : SERVICE LOCAL |Parent : 636] - (.Microsoft Corporation - Processus h�te pour les services Windows.) - (6.1.7600.16385) = C:\Windows\System32\svchost.exe
3416 | [Owner : SERVICE R�SEAU |Parent : 636] - (.Microsoft Corporation - Processus h�te pour les services Windows.) - (6.1.7600.16385) = C:\Windows\System32\svchost.exe
3460 | [Owner : SERVICE LOCAL |Parent : 636] - (.Microsoft Corporation - Processus h�te pour les services Windows.) - (6.1.7600.16385) = C:\Windows\System32\svchost.exe
4216 | [Owner : Syst�me |Parent : 776] - (.Microsoft Corporation - WMI Provider Host.) - (6.1.7601.17514) = C:\Windows\System32\wbem\WmiPrvSE.exe
4304 | [Owner : pinel patrice |Parent : 3640] - (.AVAST Software - avast! Antivirus.) - (9.0.2021.515) = C:\Program Files\AVAST Software\Avast\AvastUI.exe
3656 | [Owner : Syst�me |Parent : 636] - (.Microsoft Corporation - Processus h�te pour les services Windows.) - (6.1.7600.16385) = C:\Windows\System32\svchost.exe
5284 | [Owner : SERVICE LOCAL |Parent : 976] - (.Microsoft Corporation - Isolation graphique de p�riph�rique audio Windows .) - (6.1.7601.17514) = C:\Windows\System32\audiodg.exe
1404 | [Owner : pinel patrice |Parent : 6044] - (. - Shortcut_Module.) - (5.7.2014.2) = C:\Users\pinel patrice\Desktop\Shortcut_Module.exe
5952 | [Owner : pinel patrice |Parent : 1404] - (. - Shortcut_Module_Protect.) - (1.0.0.0) = C:\Shortcut_Module\Protect_Module.exe
���������� | RUN
04 - HKLM\..\Run : [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
04 - HKLM64\..\Run : [IgfxTray] C:\Windows\system32\igfxtray.exe
04 - HKLM64\..\RunOnce : [NCPluginUpdater] "C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe" Update
04 - HKU\S-1-5-19\..\Run : [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
04 - HKU\S-1-5-19\..\RunOnce : [mctadmin] C:\Windows\System32\mctadmin.exe
04 - HKU\S-1-5-20\..\Run : [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
04 - HKU\S-1-5-20\..\RunOnce : [mctadmin] C:\Windows\System32\mctadmin.exe
���������� | Services
Service en fonctionnement : WINDEFEND
Service stopp� : WINDEFEND
Service en fonctionnement : MMCSS
Service en fonctionnement : Dhcp
Service en fonctionnement : TcpIp
Service en fonctionnement : WinHttpAutoProxysvc
Service stopp� : WinHttpAutoProxysvc
Service en fonctionnement : SSDPSRV
Service en fonctionnement : MPSSvc
Service stopp� : MPSSvc
Service en fonctionnement : Rasman
Service en fonctionnement : LanmanServer
Service stopp� : LanmanServer
Service en fonctionnement : DNScache
Service stopp� : DNScache
���������� | Hosts
C:\Windows\System32\Drivers\etc\hosts : Remis a z�ro avec succ�s
���������� | Registre
Supprim� avec succ�s : HKU\S-1-5-21-2251064558-711344184-2909949572-1000\Software\Microsoft\Internet Explorer\DOMStorage\portaldosites.com
Supprim� avec succ�s : HKU\S-1-5-21-2251064558-711344184-2909949572-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.portaldosites.com
Supprim� avec succ�s : HKLM\Software\Classes\Interface\{DAF611F6-C2A6-41E8-B9A9-AFC0EFFDA9ED} : ISafeshop
Supprim� avec succ�s : HKLM64\Software\Classes\Interface\{DAF611F6-C2A6-41E8-B9A9-AFC0EFFDA9ED} : ISafeshop
Supprim� avec succ�s : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\IePluginServices
Supprim� avec succ�s : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsProtectManger
Supprim� avec succ�s : HKLM\Software\Microsoft\Tracing\GreenerWebUntemp_RASAPI32
Supprim� avec succ�s : HKLM\Software\Microsoft\Tracing\GreenerWeb_RASAPI32
Supprim� avec succ�s : HKLM\Software\Microsoft\Tracing\InstallManager_RASAPI32
Supprim� avec succ�s : HKLM\Software\Microsoft\Tracing\updateGreenerWeb_RASAPI32
Supprim� avec succ�s : HKLM\Software\Microsoft\Tracing\utilGreenerWeb_RASAPI32
Supprim� avec succ�s : HKLM\Software\Microsoft\Tracing\GreenerWebUntemp_RASMANCS
Supprim� avec succ�s : HKLM\Software\Microsoft\Tracing\InstallManager_RASMANCS
Supprim� avec succ�s : HKLM\Software\Microsoft\Tracing\updateGreenerWeb_RASMANCS
Supprim� avec succ�s : HKLM\Software\Microsoft\Tracing\utilGreenerWeb_RASMANCS
Supprim� avec succ�s : [HKU\S-1-5-21-2251064558-711344184-2909949572-1000\Software\Mozilla\Extends]|[appid] : faststartff@gmail.com
Supprim� avec succ�s : HKLM\SOFTWARE\Caphyon
Supprim� avec succ�s : HKU\S-1-5-21-2251064558-711344184-2909949572-1000\SOFTWARE\RocketUpdater
Supprim� avec succ�s : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy]|[AppPath] : C:\Program Files (x86)\WSE Rocket\\
Supprim� avec succ�s : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main]|[x86AppPath]
Supprim� avec succ�s : [HKLM64\SOFTWARE\Microsoft\Internet Explorer\Main]|[x86AppPath]
Supprim� avec succ�s : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{100EB1FD-D03E-47FD-81F3-EE91287F9465} : ShopperReports.dll
Supprim� avec succ�s : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{14CEEAFF-96DD-4101-AE37-D5ECDC23C3F6} : alotBHO.dll;alotBHO.dll
Supprim� avec succ�s : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{258C9770-1713-4021-8D7E-1F184A2BD754} : ShoppingReport.dll
Supprim� avec succ�s : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{2A0F3D1B-0909-4FF4-B272-609CCE6054E7} : PCTBrowserDefender.dll
Supprim� avec succ�s : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{2EECD738-5844-4A99-B4B6-146BF802613B} : BabylonToolbar.dll
Supprim� avec succ�s : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{472734EA-242A-422B-ADF8-83D1E48CC825} : PCTBrowserDefender.dll
Supprim� avec succ�s : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{57F02779-3D88-4958-8AD3-83C12D86ADC7} : advancedsearchbar.dll
Supprim� avec succ�s : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{5AA2BA46-9913-4DC7-9620-69AB0FA17AE7} : alot.dll;alot.dll
Supprim� avec succ�s : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{69ABB8E4-3A44-461C-93BC-C3BB6BDF2DF3} : Backcountry.com.Steepandcheap.Toolbar.dll
Supprim� avec succ�s : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{74F475FA-6C75-43BD-AAB9-ECDA6184F600} : SuperfishIEAddon.dll;SuperfishIEAddon.dll
Supprim� avec succ�s : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E} : BabylonToolbar.dll
Supprim� avec succ�s : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{BDEA95CF-F0E6-41E0-BD3D-B00F39A4E939} : ShoppingReport.dll
Supprim� avec succ�s : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{CDEEC43D-3572-4E95-A2A5-F519D29F00C0} : advancedsearchbar.dll
Supprim� avec succ�s : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{F98BA7F6-48D8-4CE7-A8D0-39D13FD6F14F} : Backcountry.com.Steepandcheap.Toolbar.dll
Supprim� avec succ�s : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{98889811-442D-49DD-99D7-DC866BE87DBC} : BabylonToolbarTlbr.dll
Supprim� avec succ�s : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{100EB1FD-D03E-47FD-81F3-EE91287F9465}
Supprim� avec succ�s : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{14CEEAFF-96DD-4101-AE37-D5ECDC23C3F6}
Supprim� avec succ�s : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{258C9770-1713-4021-8D7E-1F184A2BD754}
Supprim� avec succ�s : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{2A0F3D1B-0909-4FF4-B272-609CCE6054E7}
Supprim� avec succ�s : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{2EECD738-5844-4A99-B4B6-146BF802613B}
Supprim� avec succ�s : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{472734EA-242A-422B-ADF8-83D1E48CC825}
Supprim� avec succ�s : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{57F02779-3D88-4958-8AD3-83C12D86ADC7}
Supprim� avec succ�s : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{5AA2BA46-9913-4DC7-9620-69AB0FA17AE7}
Supprim� avec succ�s : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{69ABB8E4-3A44-461C-93BC-C3BB6BDF2DF3}
Supprim� avec succ�s : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{74F475FA-6C75-43BD-AAB9-ECDA6184F600}
Supprim� avec succ�s : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}
Supprim� avec succ�s : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{BDEA95CF-F0E6-41E0-BD3D-B00F39A4E939}
Supprim� avec succ�s : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{CDEEC43D-3572-4E95-A2A5-F519D29F00C0}
Supprim� avec succ�s : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{F98BA7F6-48D8-4CE7-A8D0-39D13FD6F14F}
Supprim� avec succ�s : HKLM64\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{98889811-442D-49DD-99D7-DC866BE87DBC}
Supprim� avec succ�s : HKLM\Software\Classes\Installer\Features\AD064F74EB1D58D4D82FAAF1133D44F5 : gm_Optional
Supprim� avec succ�s : HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2CD7B34FC96DAA34C8FC0137376D44F6 : 02:\Software\Caphyon\Advanced Installer\LZMA\{B96C3B1E-6A96-4750-A8BC-EDF19A0D1C27}\3.6.1.0\AI_ExePath
Supprim� avec succ�s : HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\320165C05755ECB45A45FAE5C2BF726D : 02:\Software\Caphyon\Advanced Installer\LZMA\{48EE0E00-86DE-47A5-8D00-B5D72A70BCCD}\4.0.10.0\AI_ExePath
Supprim� avec succ�s : HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\sweet-page uninstall
���������� | IFEO
���������� | Dossiers | Fichiers
Dossier vide Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\{0FAC0BB8-F84B-4D98-A6C6-CB707881798E}
Dossier vide Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\{1459F523-3E70-4F55-90CB-FC60E25E79B3}
Dossier vide Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\{20023CBE-E6EA-4DB6-831D-B9C3E33EB2C8}
Dossier vide Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\{30810B69-159C-4EAA-BF60-6D1C53EB29CE}
Dossier vide Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\{622F4843-025F-4579-B3D3-5BF61665D278}
Dossier vide Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\{62EDC3B6-3D64-4260-B495-A746B1019985}
Dossier vide Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\{88C4DB7D-2AE1-4E94-B70F-37EF3FCB50F3}
Dossier vide Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\{B54B1B99-5231-45B3-BAB3-A06832A2B2CF}
Dossier vide Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\{C55BF10D-F26F-4869-92B0-48CD6E59A1E6}
Dossier vide Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\{C637992A-B512-4936-AE27-B9E490E1F414}
Dossier vide Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\{CC002799-0F14-4BFB-A4FF-18F3FA369F05}
Dossier vide Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\{CD65D45D-43F5-4085-9D8C-EFBD9DB987BD}
Dossier vide Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\{E9693919-64A1-4AA1-A63A-9C1FBEB8AF02}
Dossier vide Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\{F45836F4-E1CA-4B71-8925-6CF9E178856B}
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\EmieSiteList\container.dat (.-.)
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\EmieUserList\container.dat (.-.)
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\Microsoft\Internet Explorer\DOMStore\24Q6YUY2\www.portaldosites[1].xml (.-.)
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\08YTPNHD\77ZipSetup[1].exe (.-.)
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1JIE5SXT\countCAVSNZQZ.js (.-.)
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3WE23YX2\home_tab[1] (.-.)
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4IHHVPR0\optimizeregistry_tab[1] (.-.)
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\F28F3C77\Babylon10_setup[1].exe (2011(c) Babylon Ltd. All rights reserved..-.Babylon Client Setup 1.0) Setup_Stub.exe
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\F28F3C77\MTP_ySUJH_bn48VBG8sNSnZ2MAKAc2x4R1uOSeegc5U[1].eot (.-.)
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\F28F3C77\Setup-deltatb[1].zpb (.-.)
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\F28F3C77\stpui_babylon_com[1].htm (.-.)
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\F28F3C77\stpui_babylon_com[2].htm (.-.)
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HQX62ABJ\Home_alert[2] (.-.)
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HQX62ABJ\Home_alert[3] (.-.)
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KOC2UHP6\bab138.deltatb_dmn[1].zpb (.-.)
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KOC2UHP6\clienttp_babylon_com[1].htm (.-.)
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VRWFMUCY\bab098.claroico[1].zpb (.-.)
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VRWFMUCY\BabylonChromeOCR[1].zpb (.-.)
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VRWFMUCY\stpui_babylon_com[1].htm (.-.)
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VRWFMUCY\stpui_babylon_com[2].htm (.-.)
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Virtualized\C\Users\pinel patrice\Application Data\SupTab
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\Mozilla\Firefox\Profiles\jtv6rty9.default\jumpListCache\WwaJHKmb4qXMmyAcE_yKcQ==.ico (.-.)
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\Temp\is1719534685\12744110_stp\deeal.exe (Kreapixel inc..-.)
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\Temp\is1807810639\1E0462A3_stp.EXE (Copyright � 2013 Symantec Corporation. All rights reserved..-.Norton 360) N360_TW.exe
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\Temp\is1807810639\1E0462A3_stp.EXE.part (.-.)
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\Temp\uninstaller-WTA-17a7e7f1-26de-425d-a301-a96ae3c4c7d2\Uninstaller.exe (WildTangent, Inc. All rights reserved..-.Uninstaller) Uninstaller.exe
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\Temp\uninstaller-WTA-386b5eff-4ff3-4f17-b34d-32be3e3799c3\Uninstaller.exe (WildTangent, Inc. All rights reserved..-.Uninstaller) Uninstaller.exe
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\Temp\uninstaller-WTA-689bf85f-b5a0-4e67-a34f-c3bb356c617f\Uninstaller.exe (WildTangent, Inc. All rights reserved..-.Uninstaller) Uninstaller.exe
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\Temp\uninstaller-WTA-91222c7b-db64-40bf-b53c-b54c0a67ac64\Uninstaller.exe (WildTangent, Inc. All rights reserved..-.Uninstaller) Uninstaller.exe
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\Temp\_av_sfx.tm~66ecfed6-3fd2-420d-bc54-f3e3aacea427\aswOfferTool.exe (Copyright (c) 2013 AVAST Software.-.avast! Antivirus) aswOfferTool.exe
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\Temp\_av_sfx.tm~66ecfed6-3fd2-420d-bc54-f3e3aacea427\SetupOfferGui.dll (Copyright (c) 2013 AVAST Software.-.avast! Antivirus) SetupGui.dll
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Roaming\~lpvwexo.exe (.-.)
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpj4sfca.dll
Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Local\temp\Quarantine.exe
���������� | D�tournements de raccourcis
���������� | Proxy
R�par� : [HKU\S-1-5-21-2251064558-711344184-2909949572-1000\Software\Microsoft\Windows\CurrentVersion\Internet settings]|[WarnonZoneCrossing] : 0 -> 1
���������� | D�tournement internet Explorer
R�par� : [HKLM\Software\Microsoft\Internet Explorer\Main\Window Title]|[] : -> Internet Explorer
R�par� : [HKLM\Software\Microsoft\Internet Explorer\Main]|[Search Bar] : -> http://www.google.com/
R�par� : [HKLM\Software\Microsoft\Internet Explorer\Main]|[Start Default_Page_URL] : -> http://www.google.com/
R�par� : [HKLM\Software\Microsoft\Internet Explorer\SearchURL]|[Default] : -> http://www.google.com/
R�par� : [HKLM\Software\Microsoft\Internet Explorer\Main]|[CustomizeSearch] : -> http://www.google.com/
R�par� : [HKLM\Software\Microsoft\Internet Explorer\Search]|[SearchAssistant] : -> http://www.google.com/
R�par� : [HKLM\Software\Microsoft\Internet Explorer\Search]|[Search Bar] : -> http://www.google.com/
R�par� : [HKLM\Software\Microsoft\Internet Explorer\Search]|[Start Page] : -> http://www.google.com/
R�par� : [HKLM\Software\Microsoft\Internet Explorer\Search]|[Start Default_Page_URL] : -> http://www.google.com/
R�par� : [HKLM\Software\Microsoft\Internet Explorer\Search]|[Local Page] : -> C:\Windows\SysWOW64\blank.htm
R�par� : [HKLM\Software\Microsoft\Internet Explorer\Search]|[Search Page] : -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R�par� : [HKLM\Software\Microsoft\Internet Explorer\Search]|[Default_Search_URL] : -> http://go.microsoft.com/fwlink/?LinkId=54896
R�par� : [HKLM\Software\Microsoft\Internet Explorer\Search]|[Default_Page_URL] : -> http://go.microsoft.com/fwlink/?LinkId=69157
R�par� : [HKLM\Software\Microsoft\Internet Explorer\Search]|[CustomizeSearch] : -> http://www.google.com/
R�par� : [HKLM\Software\Microsoft\Internet Explorer\AboutURLs]|[Tabs] : -> http://www.google.com/
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Main\Window Title]|[] : -> Internet Explorer
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Main]|[Search Bar] : -> http://www.google.com/
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Main]|[Start Default_Page_URL] : -> http://www.google.com/
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Main]|[Local Page] : C:\Windows\System32\blank.htm -> C:\Windows\SysWOW64\blank.htm
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\SearchURL]|[Default] : -> http://www.google.com/
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Main]|[CustomizeSearch] : -> http://www.google.com/
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Search]|[SearchAssistant] : -> http://www.google.com/
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Search]|[Search Bar] : -> http://www.google.com/
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Search]|[Start Page] : -> http://www.google.com/
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Search]|[Start Default_Page_URL] : -> http://www.google.com/
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Search]|[Local Page] : -> C:\Windows\SysWOW64\blank.htm
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Search]|[Search Page] : -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Search]|[Default_Search_URL] : -> http://go.microsoft.com/fwlink/?LinkId=54896
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Search]|[Default_Page_URL] : -> http://go.microsoft.com/fwlink/?LinkId=69157
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\Search]|[CustomizeSearch] : -> http://www.google.com/
R�par� : [HKLM64\Software\Microsoft\Internet Explorer\AboutURLs]|[Tabs] : -> http://www.google.com/
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main\Window Title]|[] : -> Internet Explorer
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main]|[Search Bar] : -> http://www.google.com/
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main]|[Start Page] : -> http://www.google.com/
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main]|[Start Default_Page_URL] : -> http://www.google.com/
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main]|[Local Page] : -> C:\Windows\SysWOW64\blank.htm
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main]|[Search Page] : -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main]|[Default_Search_URL] : -> http://go.microsoft.com/fwlink/?LinkId=54896
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main]|[Default_Page_URL] : -> http://go.microsoft.com/fwlink/?LinkId=69157
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\SearchURL]|[Default] : -> http://www.google.com/
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main]|[CustomizeSearch] : -> http://www.google.com/
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Search]|[SearchAssistant] : -> http://www.google.com/
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Search]|[Search Bar] : -> http://www.google.com/
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Search]|[Start Page] : -> http://www.google.com/
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Search]|[Start Default_Page_URL] : -> http://www.google.com/
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Search]|[Local Page] : -> C:\Windows\SysWOW64\blank.htm
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Search]|[Search Page] : -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Search]|[Default_Search_URL] : -> http://go.microsoft.com/fwlink/?LinkId=54896
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Search]|[Default_Page_URL] : -> http://go.microsoft.com/fwlink/?LinkId=69157
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Search]|[CustomizeSearch] : -> http://www.google.com/
R�par� : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\AboutURLs]|[Tabs] : -> http://www.google.com/
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main\Window Title]|[] : -> Internet Explorer
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main]|[Search Bar] : -> http://www.google.com/
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main]|[Start Page] : -> http://www.google.com/
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main]|[Start Default_Page_URL] : -> http://www.google.com/
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main]|[Local Page] : -> C:\Windows\SysWOW64\blank.htm
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main]|[Search Page] : -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main]|[Default_Search_URL] : -> http://go.microsoft.com/fwlink/?LinkId=54896
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main]|[Default_Page_URL] : -> http://go.microsoft.com/fwlink/?LinkId=69157
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\SearchURL]|[Default] : -> http://www.google.com/
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main]|[CustomizeSearch] : -> http://www.google.com/
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Search]|[SearchAssistant] : -> http://www.google.com/
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Search]|[Search Bar] : -> http://www.google.com/
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Search]|[Start Page] : -> http://www.google.com/
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Search]|[Start Default_Page_URL] : -> http://www.google.com/
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Search]|[Local Page] : -> C:\Windows\SysWOW64\blank.htm
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Search]|[Search Page] : -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Search]|[Default_Search_URL] : -> http://go.microsoft.com/fwlink/?LinkId=54896
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Search]|[Default_Page_URL] : -> http://go.microsoft.com/fwlink/?LinkId=69157
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Search]|[CustomizeSearch] : -> http://www.google.com/
R�par� : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\AboutURLs]|[Tabs] : -> http://www.google.com/
R�par� : [HKU\S-1-5-21-2251064558-711344184-2909949572-1000\Software\Microsoft\Internet Explorer\Main\Window Title]|[] : -> Internet Explorer
R�par� : [HKU\S-1-5-21-2251064558-711344184-2909949572-1000\Software\Microsoft\Internet Explorer\Main]|[Search Bar] : Preserve -> http://www.google.com/
R�par� : [HKU\S-1-5-21-2251064558-711344184-2909949572-1000\Software\Microsoft\Internet Explorer\Main]|[Start Default_Page_URL] : -> http://www.google.com/
R�par� : [HKU\S-1-5-21-2251064558-711344184-2909949572-1000\Software\Microsoft\Internet Explorer\Main]|[Local Page] : C:\Windows\system32\blank.htm -> C:\Windows\SysWOW64\blank.htm
R�par� : [HKU\S-1-5-21-2251064558-711344184-2909949572-1000\Software\Microsoft\Internet Explorer\Main]|[Search Page] : http://go.microsoft.com/fwlink/?LinkId=54896 -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R�par� : [HKU\S-1-5-21-2251064558-711344184-2909949572-1000\Software\Microsoft\Internet Explorer\Main]|[Default_Search_URL] : -> http://go.microsoft.com/fwlink/?LinkId=54896
R�par� : [HKU\S-1-5-21-2251064558-711344184-2909949572-1000\Software\Microsoft\Internet Explorer\SearchURL]|[Default] : -> http://www.google.com/
R�par� : [HKU\S-1-5-21-2251064558-711344184-2909949572-1000\Software\Microsoft\Internet Explorer\Main]|[CustomizeSearch] : -> http://www.google.com/
R�par� : [HKU\S-1-5-21-2251064558-711344184-2909949572-1000\Software\Microsoft\Internet Explorer\Search]|[SearchAssistant] : -> http://www.google.com/
R�par� : [HKU\S-1-5-21-2251064558-711344184-2909949572-1000\Software\Microsoft\Internet Explorer\Search]|[Search Bar] : -> http://www.google.com/
R�par� : [HKU\S-1-5-21-2251064558-711344184-2909949572-1000\Software\Microsoft\Internet Explorer\Search]|[Start Page] : -> http://www.google.com/
R�par� : [HKU\S-1-5-21-2251064558-711344184-2909949572-1000\Software\Microsoft\Internet Explorer\Search]|[Start Default_Page_URL] : -> http://www.google.com/
R�par� : [HKU\S-1-5-21-2251064558-711344184-2909949572-1000\Software\Microsoft\Internet Explorer\Search]|[Local Page] : -> C:\Windows\SysWOW64\blank.htm
R�par� : [HKU\S-1-5-21-2251064558-711344184-2909949572-1000\Software\Microsoft\Internet Explorer\Search]|[Search Page] : -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R�par� : [HKU\S-1-5-21-2251064558-711344184-2909949572-1000\Software\Microsoft\Internet Explorer\Search]|[Default_Search_URL] : -> http://go.microsoft.com/fwlink/?LinkId=54896
R�par� : [HKU\S-1-5-21-2251064558-711344184-2909949572-1000\Software\Microsoft\Internet Explorer\Search]|[Default_Page_URL] : -> http://go.microsoft.com/fwlink/?LinkId=69157
R�par� : [HKU\S-1-5-21-2251064558-711344184-2909949572-1000\Software\Microsoft\Internet Explorer\Search]|[CustomizeSearch] : -> http://www.google.com/
R�par� : [HKU\S-1-5-21-2251064558-711344184-2909949572-1000\Software\Microsoft\Internet Explorer\AboutURLs]|[Tabs] : -> http://www.google.com/
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Main\Window Title]|[] : -> Internet Explorer
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Main]|[Search Bar] : -> http://www.google.com/
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Main]|[Start Page] : -> http://www.google.com/
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Main]|[Start Default_Page_URL] : -> http://www.google.com/
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Main]|[Local Page] : -> C:\Windows\SysWOW64\blank.htm
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Main]|[Search Page] : -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Main]|[Default_Search_URL] : -> http://go.microsoft.com/fwlink/?LinkId=54896
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Main]|[Default_Page_URL] : -> http://go.microsoft.com/fwlink/?LinkId=69157
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\SearchURL]|[Default] : -> http://www.google.com/
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Main]|[CustomizeSearch] : -> http://www.google.com/
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Search]|[SearchAssistant] : -> http://www.google.com/
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Search]|[Search Bar] : -> http://www.google.com/
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Search]|[Start Page] : -> http://www.google.com/
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Search]|[Start Default_Page_URL] : -> http://www.google.com/
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Search]|[Local Page] : -> C:\Windows\SysWOW64\blank.htm
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Search]|[Search Page] : -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Search]|[Default_Search_URL] : -> http://go.microsoft.com/fwlink/?LinkId=54896
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Search]|[Default_Page_URL] : -> http://go.microsoft.com/fwlink/?LinkId=69157
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Search]|[CustomizeSearch] : -> http://www.google.com/
R�par� : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\AboutURLs]|[Tabs] : -> http://www.google.com/
���������� | D�tournement Google Chrome
[pinel patrice] Remis a z�ro avec succ�s : SearchURL
[pinel patrice] : aohghmighlieiainnegkcijnfilokake = : Google & co - Google & co
[pinel patrice] : apdfllckaahabafndbhieahigkjlhalf = : Google & co - https://drive.google.com/?usp=chrome_app - Google & co
[pinel patrice] : bepbmhgboaologfdajaanbcjmnhjmhfn = : This extension allows you to say �Ok Google� and start speaking your search. - Google Voice Search Hotword (Beta)
[pinel patrice] : blpcfgokakmgnkcojhhkbfbldkacnbeo = : Google & co - http://www.youtube.com - http://www.youtube.com/?feature=ytca - Google & co
[pinel patrice] : coobgpohoikkiipiblmjeljniedjpjpf = : Google & co - http://www.google.com/webhp?source=search_app - Google & co
[pinel patrice] : nmmhkkegccagdldgiimedpiccmgmieda = : Google & co - Google & co
[pinel patrice] : pjkljhegncpnkpknbcohdijeoejaedia = : Google & co - https://mail.google.com/mail/ca - Google & co
���������� | D�tournement Firefox
[pinel patrice] Supprim� avec succ�s : C:\Users\pinel patrice\AppData\Roaming\Mozilla\Firefox\Profiles\jtv6rty9.default\sessionstore.js
[pinel patrice] : {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi : - -
���������� | Opera
���������� | D�tournement des cl�s StartMenuInternet
R�par� : [HKLM\Software\Clients\StartMenuInternet\Firefox.exe\shell\open\command] : firefox.exe -> "C:\Program Files\Mozilla Firefox\Firefox.exe"
R�par� : [HKLM\Software\Clients\StartMenuInternet\Firefox.exe\shell\safemode\command] : "C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -safe-mode -> "C:\Program Files\Mozilla Firefox\Firefox.exe" -safe-mode
R�par� : [HKLM\Software\Clients\StartMenuInternet\IExplore.exe\shell\open\command] : iexplore.exe -> "C:\Program Files\Internet Explorer\iexplore.exe"
R�par� : [HKLM\Software\Clients\StartMenuInternet\Google Chrome\shell\open\command] : chrome.exe -> "C:\Program Files\Google\Chrome\Application\chrome.exe"
���������� | AppInit_DLLs
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]|[LoadAppInit_DLLs] : 1
[HKLM64\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]|[LoadAppInit_DLLs] : 1
���������� | D�tournement Javascript
���������� | Firewall
���������� | ADS
���������� | Fichiers temporaires
[All Users] Fichiers temporaires Supprim�s : 0 Ko
[Default] Fichiers temporaires Supprim�s : 0 Ko
[Default User] Fichiers temporaires Supprim�s : 0 Ko
[pinel patrice] Fichiers temporaires Supprim�s : 310097 Ko
[Public] Fichiers temporaires Supprim�s : 0 Ko
[C:\Windows\Temp] Fichiers temporaires Supprim�s : 61921 Ko
[C:\Temp] Fichiers temporaires Supprim�s : 0 Ko
Service Red�marr� : MPSsvc
Autre rapport
Mise en veille restaur�e
���������� | Listing
���������� | C:\Program Files (x86)
[06/07/2011 01:57:57] - |D| - C:\Program Files (x86)\Atheros
[06/07/2011 01:58:52] - |D| - C:\Program Files (x86)\Bluetooth Suite
[06/07/2011 01:57:57] - |D| - C:\Program Files (x86)\Cisco
[14/07/2009 05:20:08] - |D| - C:\Program Files (x86)\Common Files
[06/07/2011 02:08:14] - |D| - C:\Program Files (x86)\CyberLink
[14/07/2009 06:54:24] - |ASH| - C:\Program Files (x86)\desktop.ini
[09/05/2011 12:35:14] - |D| - C:\Program Files (x86)\Evernote
[11/06/2013 19:17:29] - |D| - C:\Program Files (x86)\Google
[05/07/2014 10:10:51] - |D| - C:\Program Files (x86)\GUM2B63.tmp
[05/07/2014 10:10:51] - |A| - C:\Program Files (x86)\GUT2B64.tmp
[09/05/2011 12:33:03] - |D| - C:\Program Files (x86)\Hewlett-Packard
[09/05/2011 12:35:31] - |D| - C:\Program Files (x86)\HP Games
[09/05/2011 12:40:02] - |HD| - C:\Program Files (x86)\InstallShield Installation Information
[06/07/2011 01:53:59] - |D| - C:\Program Files (x86)\Intel
[14/07/2009 05:20:08] - |D| - C:\Program Files (x86)\Internet Explorer
[16/07/2013 14:59:56] - |D| - C:\Program Files (x86)\Java
[06/07/2011 02:11:19] - |D| - C:\Program Files (x86)\Microsoft
[15/06/2013 11:52:28] - |D| - C:\Program Files (x86)\Microsoft Application Virtualization Client
[09/05/2011 12:42:18] - |D| - C:\Program Files (x86)\Microsoft Office
[09/05/2011 12:44:54] - |D| - C:\Program Files (x86)\Microsoft SQL Server Compact Edition
[09/06/2013 02:11:39] - |D| - C:\Program Files (x86)\Microsoft.NET
[10/05/2014 19:14:29] - |D| - C:\Program Files (x86)\Mozilla Firefox
[05/07/2013 15:55:05] - |D| - C:\Program Files (x86)\Mozilla Maintenance Service
[14/07/2009 07:32:38] - |D| - C:\Program Files (x86)\MSBuild
[21/06/2014 10:56:14] - |D| - C:\Program Files (x86)\MSECache
[06/07/2014 15:06:13] - |D| - C:\Program Files (x86)\NortonInstaller
[09/05/2011 12:35:25] - |RD| - C:\Program Files (x86)\Online Services
[21/06/2014 10:24:53] - |D| - C:\Program Files (x86)\OpenOffice 4
[07/06/2013 10:26:33] - |D| - C:\Program Files (x86)\PDF Architect
[09/05/2011 12:43:06] - |D| - C:\Program Files (x86)\PDF Complete
[07/06/2013 10:26:11] - |D| - C:\Program Files (x86)\PDFCreator
[06/07/2011 01:55:23] - |D| - C:\Program Files (x86)\Realtek
[14/07/2009 07:32:38] - |D| - C:\Program Files (x86)\Reference Assemblies
[09/05/2011 12:43:31] - |RD| - C:\Program Files (x86)\Skype
[06/07/2011 01:55:23] - |HD| - C:\Program Files (x86)\Temp
[14/07/2009 06:57:06] - |HD| - C:\Program Files (x86)\Uninstall Information
[21/06/2014 10:37:17] - |D| - C:\Program Files (x86)\VCW VicMan's Photo Editor
[21/06/2014 10:37:24] - |D| - C:\Program Files (x86)\Web Photo Album
[09/05/2011 12:35:27] - |D| - C:\Program Files (x86)\WildTangent Games
[14/07/2009 07:32:38] - |D| - C:\Program Files (x86)\Windows Defender
[09/05/2011 12:44:21] - |D| - C:\Program Files (x86)\Windows Live
[14/07/2009 05:20:08] - |D| - C:\Program Files (x86)\Windows Mail
[14/07/2009 07:32:38] - |D| - C:\Program Files (x86)\Windows Media Player
[14/07/2009 05:20:08] - |D| - C:\Program Files (x86)\Windows NT
[14/07/2009 07:32:38] - |D| - C:\Program Files (x86)\Windows Photo Viewer
[14/07/2009 07:32:38] - |D| - C:\Program Files (x86)\Windows Portable Devices
[14/07/2009 07:32:38] - |D| - C:\Program Files (x86)\Windows Sidebar
[01/06/2013 18:52:19] - |D| - C:\Program Files (x86)\WinZip
[09/05/2011 12:46:05] - |D| - C:\Program Files (x86)\Xobni
[06/07/2014 19:02:28] - |D| - C:\Program Files (x86)\ZHPDiag
���������� | C:\Program Files
[14/06/2013 13:01:33] - |D| - C:\Program Files\AVAST Software
[14/07/2009 05:20:08] - |D| - C:\Program Files\Common Files
[14/07/2009 06:54:24] - |ASH| - C:\Program Files\desktop.ini
[14/07/2009 07:32:38] - |D| - C:\Program Files\DVD Maker
[01/06/2013 18:51:41] - |SHD| - C:\Program Files\Fichiers communs
[03/12/2010 03:30:42] - |D| - C:\Program Files\Hewlett-Packard
[14/07/2009 05:20:08] - |D| - C:\Program Files\Internet Explorer
[09/05/2011 12:48:03] - |D| - C:\Program Files\Java
[14/07/2009 07:32:38] - |D| - C:\Program Files\Microsoft Games
[15/06/2013 11:52:29] - |D| - C:\Program Files\Microsoft Office
[14/07/2009 07:32:38] - |D| - C:\Program Files\MSBuild
[09/05/2011 12:47:22] - |RD| - C:\Program Files\Online Services
[06/07/2011 01:55:38] - |D| - C:\Program Files\Realtek
[14/07/2009 07:32:38] - |D| - C:\Program Files\Reference Assemblies
[06/07/2011 01:57:06] - |D| - C:\Program Files\Synaptics
[14/07/2009 07:09:26] - |HD| - C:\Program Files\Uninstall Information
[14/07/2009 07:32:38] - |D| - C:\Program Files\Windows Defender
[14/07/2009 05:20:08] - |D| - C:\Program Files\Windows Mail
[14/07/2009 07:32:38] - |D| - C:\Program Files\Windows Media Player
[14/07/2009 05:20:08] - |D| - C:\Program Files\Windows NT
[14/07/2009 07:32:38] - |D| - C:\Program Files\Windows Photo Viewer
[14/07/2009 07:32:38] - |D| - C:\Program Files\Windows Portable Devices
[14/07/2009 07:32:38] - |D| - C:\Program Files\Windows Sidebar
���������� | C:\Program Files (x86)\Common Files
[06/07/2011 01:58:56] - |D| - C:\Program Files (x86)\Common Files\Atheros
[15/06/2013 11:52:32] - |D| - C:\Program Files (x86)\Common Files\DESIGNER
[09/05/2011 12:39:59] - |D| - C:\Program Files (x86)\Common Files\InstallShield
[06/07/2011 01:53:59] - |D| - C:\Program Files (x86)\Common Files\Intel
[16/07/2013 15:00:44] - |D| - C:\Program Files (x86)\Common Files\Java
[14/07/2009 05:20:08] - |D| - C:\Program Files (x86)\Common Files\microsoft shared
[06/07/2011 01:55:08] - |D| - C:\Program Files (x86)\Common Files\postureAgent
[14/07/2009 05:20:08] - |D| - C:\Program Files (x86)\Common Files\Services
[09/05/2011 12:43:31] - |D| - C:\Program Files (x86)\Common Files\Skype
[14/07/2009 05:20:08] - |D| - C:\Program Files (x86)\Common Files\SpeechEngines
[14/07/2009 05:20:08] - |D| - C:\Program Files (x86)\Common Files\System
[09/05/2011 12:43:50] - |D| - C:\Program Files (x86)\Common Files\Windows Live
���������� | C:\Program Files\Common Files
[06/07/2011 01:54:00] - |D| - C:\Program Files\Common Files\Intel
[14/07/2009 05:20:08] - |D| - C:\Program Files\Common Files\Microsoft Shared
[14/07/2009 05:20:08] - |D| - C:\Program Files\Common Files\Services
[14/07/2009 05:20:08] - |D| - C:\Program Files\Common Files\SpeechEngines
[14/07/2009 05:20:08] - |D| - C:\Program Files\Common Files\System
���������� | C:\Users\pinel patrice\AppData\Roaming
[03/06/2013 19:45:06] - |D| - C:\Users\pinel patrice\AppData\Roaming\Adobe
[13/06/2013 09:49:52] - |D| - C:\Users\pinel patrice\AppData\Roaming\ArtifexMundi
[08/11/2013 20:17:02] - |D| - C:\Users\pinel patrice\AppData\Roaming\AVAST Software
[05/07/2014 10:13:24] - |D| - C:\Users\pinel patrice\AppData\Roaming\Dropbox
[05/07/2014 10:15:03] - |D| - C:\Users\pinel patrice\AppData\Roaming\DropboxMaster
[01/06/2013 23:26:52] - |D| - C:\Users\pinel patrice\AppData\Roaming\Flood Light Games
[09/06/2013 22:22:42] - |D| - C:\Users\pinel patrice\AppData\Roaming\funkitron
[01/06/2013 18:53:39] - |D| - C:\Users\pinel patrice\AppData\Roaming\Hewlett-Packard
[01/06/2013 18:57:23] - |D| - C:\Users\pinel patrice\AppData\Roaming\hpqlog
[01/06/2013 18:57:40] - |D| - C:\Users\pinel patrice\AppData\Roaming\Identities
[01/06/2013 18:58:05] - |D| - C:\Users\pinel patrice\AppData\Roaming\Intel Corporation
[07/06/2013 10:13:20] - |D| - C:\Users\pinel patrice\AppData\Roaming\Macromedia
[01/06/2013 18:51:46] - |D| - C:\Users\pinel patrice\AppData\Roaming\Media Center Programs
[01/06/2013 18:51:46] - |SD| - C:\Users\pinel patrice\AppData\Roaming\Microsoft
[05/07/2013 15:55:14] - |D| - C:\Users\pinel patrice\AppData\Roaming\Mozilla
[21/06/2014 10:27:18] - |D| - C:\Users\pinel patrice\AppData\Roaming\OpenOffice
[07/06/2013 10:33:40] - |D| - C:\Users\pinel patrice\AppData\Roaming\PDF Architect
[10/06/2013 23:23:50] - |D| - C:\Users\pinel patrice\AppData\Roaming\PlayFirst
[09/06/2013 12:30:07] - |D| - C:\Users\pinel patrice\AppData\Roaming\Playrix Entertainment
[20/06/2013 21:50:11] - |D| - C:\Users\pinel patrice\AppData\Roaming\Rainbow
[15/06/2013 11:53:44] - |D| - C:\Users\pinel patrice\AppData\Roaming\SoftGrid Client
[01/06/2013 18:58:03] - |D| - C:\Users\pinel patrice\AppData\Roaming\Synaptics
[15/06/2013 11:52:06] - |D| - C:\Users\pinel patrice\AppData\Roaming\TP
[10/06/2013 08:46:02] - |D| - C:\Users\pinel patrice\AppData\Roaming\WildTangent
[06/07/2014 19:02:29] - |D| - C:\Users\pinel patrice\AppData\Roaming\ZHP
���������� | C:\Users\pinel patrice\AppData\Local
[05/07/2013 16:49:36] - |D| - C:\Users\pinel patrice\AppData\Local\Adobe
[01/06/2013 18:51:47] - |SHD| - C:\Users\pinel patrice\AppData\Local\Application Data
[10/06/2013 20:18:44] - |D| - C:\Users\pinel patrice\AppData\Local\Apps
[02/06/2013 20:22:26] - |D| - C:\Users\pinel patrice\AppData\Local\BMExplorer
[03/06/2013 01:14:25] - |D| - C:\Users\pinel patrice\AppData\Local\CrashDumps
[10/06/2013 20:27:32] - |D| - C:\Users\pinel patrice\AppData\Local\Deployment
[09/06/2013 02:50:55] - |D| - C:\Users\pinel patrice\AppData\Local\Diagnostics
[14/06/2013 12:49:10] - |D| - C:\Users\pinel patrice\AppData\Local\ElevatedDiagnostics
[21/06/2014 10:17:39] - |SHD| - C:\Users\pinel patrice\AppData\Local\EmieSiteList
[21/06/2014 10:17:39] - |SHD| - C:\Users\pinel patrice\AppData\Local\EmieUserList
[01/06/2013 18:56:52] - |A| - C:\Users\pinel patrice\AppData\Local\GDIPFONTCACHEV1.DAT
[11/06/2013 19:17:15] - |D| - C:\Users\pinel patrice\AppData\Local\Google
[01/06/2013 18:53:38] - |D| - C:\Users\pinel patrice\AppData\Local\Hewlett-Packard
[03/06/2013 20:34:24] - |D| - C:\Users\pinel patrice\AppData\Local\Hewlett-Packard_Company
[01/06/2013 18:51:47] - |SHD| - C:\Users\pinel patrice\AppData\Local\Historique
[01/06/2013 20:01:52] - |AH| - C:\Users\pinel patrice\AppData\Local\IconCache.db
[05/07/2013 16:50:58] - |D| - C:\Users\pinel patrice\AppData\Local\Macromedia
[01/06/2013 18:51:46] - |D| - C:\Users\pinel patrice\AppData\Local\Microsoft
[01/06/2013 19:02:56] - |D| - C:\Users\pinel patrice\AppData\Local\Microsoft Games
[05/07/2013 15:55:14] - |D| - C:\Users\pinel patrice\AppData\Local\Mozilla
[01/06/2013 18:58:04] - |D| - C:\Users\pinel patrice\AppData\Local\PDFC
[07/06/2013 10:24:00] - |D| - C:\Users\pinel patrice\AppData\Local\Programs
[03/06/2013 20:38:22] - |D| - C:\Users\pinel patrice\AppData\Local\RemEngine
[15/06/2013 11:53:44] - |D| - C:\Users\pinel patrice\AppData\Local\SoftGrid Client
[01/06/2013 18:51:46] - |D| - C:\Users\pinel patrice\AppData\Local\Temp
[01/06/2013 18:51:47] - |SHD| - C:\Users\pinel patrice\AppData\Local\Temporary Internet Files
[01/06/2013 18:52:23] - |D| - C:\Users\pinel patrice\AppData\Local\VirtualStore
[02/06/2013 11:20:29] - |D| - C:\Users\pinel patrice\AppData\Local\WinZip
���������� | C:\ProgramData
[14/07/2009 07:08:56] - |SHD| - C:\ProgramData\Application Data
[06/07/2011 01:57:17] - |D| - C:\ProgramData\Atheros
[14/06/2013 12:59:59] - |D| - C:\ProgramData\AVAST Software
[07/02/2014 17:45:48] - |D| - C:\ProgramData\BlueStacks
[01/06/2013 18:51:41] - |SHD| - C:\ProgramData\Bureau
[14/07/2009 07:08:56] - |SHD| - C:\ProgramData\Desktop
[14/07/2009 07:08:56] - |SHD| - C:\ProgramData\Documents
[01/06/2013 18:51:41] - |SHD| - C:\ProgramData\Favoris
[14/07/2009 07:08:56] - |SHD| - C:\ProgramData\Favorites
[01/06/2013 23:26:52] - |D| - C:\ProgramData\Flood Light Games
[09/05/2011 12:43:32] - |D| - C:\ProgramData\Hewlett-Packard
[01/06/2013 18:51:41] - |SHD| - C:\ProgramData\Menu D�marrer
[14/07/2009 05:20:08] - |SD| - C:\ProgramData\Microsoft
[01/06/2013 18:51:41] - |SHD| - C:\ProgramData\Mod�les
[05/07/2013 15:55:05] - |D| - C:\ProgramData\Mozilla
[06/07/2011 02:10:34] - |D| - C:\ProgramData\Norton
[06/07/2011 02:10:01] - |D| - C:\ProgramData\NortonInstaller
[09/05/2011 12:43:02] - |D| - C:\ProgramData\PDFC
[10/06/2013 23:23:50] - |D| - C:\ProgramData\PlayFirst
[03/06/2013 00:46:16] - |D| - C:\ProgramData\Sandlot Games
[09/05/2011 12:43:28] - |D| - C:\ProgramData\Skype
[14/07/2009 07:08:56] - |SHD| - C:\ProgramData\Start Menu
[09/05/2011 12:48:01] - |D| - C:\ProgramData\Sun
[06/07/2011 02:07:26] - |D| - C:\ProgramData\Temp
[14/07/2009 07:08:56] - |SHD| - C:\ProgramData\Templates
[02/06/2013 20:02:42] - |D| - C:\ProgramData\Wild Tangent
[09/05/2011 12:35:26] - |D| - C:\ProgramData\WildTangent
[01/06/2013 18:52:21] - |D| - C:\ProgramData\WinZip
[24/06/2013 18:27:18] - |D| - C:\ProgramData\{9BF4D58B-C6D6-467B-BC5A-FD0C1278F4AF}
[X] : [11851 Ko]
El�ments analys�s : 177473 | Modifi�s : 110 | Infect�s : 111
���������� |EOF| ���������� | 09:07:29 | [60 Ko]