Publicité
Publicité
Format du document : text/plain
Prévisualisation
~ ZHPDiag v2017.9.18.163 Par Nicolas Coolman (2017/09/18)
~ Démarré par eric (Administrator) (2017/09/20 07:21:40)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Certificate ZHPDiag: Illegal
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\eric\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\eric\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Démarrage du système: Normal (Normal boot)
Windows 10 Pro, 64-bit (Build 15063) =>.Microsoft Corporation
---\\ Navigateurs Internet (4) - 0s
~ GCIE: Google Chrome v60.0.3112.78
~ MFIE: Mozilla Firefox 55.0.3 (x86 fr)
~ MSIE: Microsoft Edge v40
~ MSIE: Internet Explorer v11.608.15063.0
---\\ Informations sur les produits Windows (3) - 3s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK
---\\ Logiciels de protection (1) - 13s
Windows Defender (Activate) (Protection)
---\\ Surveillance de Logiciels (1) - 14s
~ Adobe Flash Player 27 NPAPI (Surveillance)
---\\ Informations sur le système (6) - 0s
~ Operating System: Intel64 Family 6 Model 69 Stepping 1, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 8153.24 MB (22% free) : OK =>.RAM Value
System Restore: Activé (Enable)
System drive C: has 18 GB (6%) free of 264 GB : ATTENTION =>Warning Disk Space
---\\ Mode de connexion au système (3) - 0s
~ Computer Name: LAPPAD-NDJIND
~ User Name: eric
~ Logged in as Administrator
---\\ Enumération des unités disques (2) - 0s
~ Drive C: has 18 GB free of 264 GB (System)
~ Drive F: has 44 GB free of 187 GB
---\\ Etat du Centre de Sécurité Windows (7) - 0s
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM64\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
---\\ Recherche particulière de fichiers génériques (25) - 3s
[MD5.3AF6D6F752EDE013ED15DFD2D44F8EF9] - 05/09/2017 - (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\Explorer.exe [4848960] =>.Microsoft Windows®
[MD5.ECB702B8C5650381C0784F1EEABB97BC] - 18/03/2017 - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\Windows\System32\rundll32.exe [68608] =>.Microsoft Corporation
[MD5.0242626678C83AE788C655C1990A3CC3] - 28/07/2017 - (.Microsoft Corporation - Application de démarrage de Windows.) -- C:\Windows\System32\Wininit.exe [318232] =>.Microsoft Windows Publisher®
[MD5.9AA7516745C98B81FC10227FF2652391] - 05/09/2017 - (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\System32\wininet.dll [3307008] =>.Microsoft Corporation
[MD5.9CDA170849A4F66F4D68B3DBB3AC8394] - 05/09/2017 - (.Microsoft Corporation - Application d’ouverture de session Windows.) -- C:\Windows\System32\Winlogon.exe [706560] =>.Microsoft Corporation
[MD5.50CDF68A8EA8A2A9165CD573FA6C42D8] - 18/03/2017 - (.Microsoft Corporation - Bibliothèque de licences.) -- C:\Windows\System32\sppcomapi.dll [414208] =>.Microsoft Corporation
[MD5.0F9FA6A2D4EAE50393DCE473759A9845] - 18/03/2017 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\Windows\System32\dnsapi.dll [661224] =>.Microsoft Windows®
[MD5.3F969D5ADEAB3284ABD500B37D74A8F8] - 18/03/2017 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\Windows\Syswow64\dnsapi.dll [508344] =>.Microsoft Windows®
[MD5.70E14A01193D817004C0F88E767BC59B] - 19/03/2017 - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) -- C:\Windows\System32\fr-FR\user32.dll.mui [19968] =>.Microsoft Corporation
[MD5.5A6D591D56791BA63CE73FCAD60D89A1] - 05/09/2017 - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) -- C:\Windows\System32\drivers\AFD.sys [610720] =>.Microsoft Windows®
[MD5.01733BEEE02E51F712330D5909BD701C] - 18/03/2017 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\drivers\atapi.sys [29088] =>.Microsoft Windows®
[MD5.B6E5AD7C83A5254DEE9D86023C0E5A81] - 18/03/2017 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\drivers\Cdfs.sys [93184] =>.Microsoft Corporation
[MD5.ABE77AD954BC3D72F559CF0C381E50BC] - 18/03/2017 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\drivers\Cdrom.sys [160256] =>.Microsoft Corporation
[MD5.185A4519B7764F4DEF714D890A7A9FD2] - 18/03/2017 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\drivers\DfsC.sys [150528] =>.Microsoft Corporation
[MD5.02B9639D9997E95CDF2F4C4F3BDCC73D] - 20/06/2017 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\drivers\HDAudBus.sys [86528] =>.Microsoft Corporation
[MD5.C6C8315E3262FAE460529C6DA2951682] - 18/03/2017 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\Windows\System32\drivers\i8042prt.sys [115200] =>.Microsoft Corporation
[MD5.DCC05E5EAA580C97F13B434FAFACED85] - 18/03/2017 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\drivers\IpNat.sys [214528] =>.Microsoft Corporation
[MD5.F2AD1B72C5A6475FB5FF332E1980DF88] - 18/03/2017 - (.Microsoft Corporation - Minirdr SMB Windows NT.) -- C:\Windows\System32\drivers\MRxSmb.sys [467352] =>.Microsoft Windows®
[MD5.BAD3C424788BC071C3EC82CFCDA954D2] - 05/09/2017 - (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\drivers\netBT.sys [305152] =>.Microsoft Corporation
[MD5.075F8C81457804BB79DD33FE69A96C57] - 28/07/2017 - (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\Windows\System32\drivers\ntfs.sys [2327456] =>.Microsoft Windows®
[MD5.2CC6C325B271C7CA60F374F8F868CB45] - 18/03/2017 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\Windows\System32\drivers\Parport.sys [97792] =>.Microsoft Corporation
[MD5.5279EC98F6218D29EADDFECCC0D80E9A] - 18/03/2017 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\drivers\Rasl2tp.sys [107008] =>.Microsoft Corporation
[MD5.53A01D3FDB701AC5D9DDE4140227E3D9] - 20/03/2017 - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RD.) -- C:\Windows\System32\drivers\rdpdr.sys [183296] =>.Microsoft Corporation
[MD5.D74756DD1518D28A09CDA99696273FA4] - 01/08/2017 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\drivers\tdx.sys [119712] =>.Microsoft Windows®
[MD5.E3429DBBEA3965BB96E24B16EF4A2551] - 18/03/2017 - (.Microsoft Corporation - Volume Shadow Copy driver.) -- C:\Windows\System32\drivers\volsnap.sys [397216] =>.Microsoft Windows®
---\\ Liste des services NT non Microsoft et non désactivés (27) - 8s
O23 - Service: BaisvikSoftware Suite Service (BaisvikSoftware Suite Service) . (.Baisvik - BaisvikSoftware Suite Service.) - C:\Program Files (x86)\BaisvikSoftware\SuiteService.exe {7F8276BC4AA97E8E49FBED6A595376F0}
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files (x86)\Bonjour\mDNSResponder.exe =>.Apple Inc.®
O23 - Service: CRMSvc (CRMSvc) . (.Copyright © 2017 - rpIHHjpXI.) - C:\WINDOWS\CRMSvc.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
O23 - Service: @oem45.inf,%hpservice_desc%;HP Service (hpsrv) . (.HP - HP Service.) - C:\Windows\System32\Hpservice.exe =>.HP
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) . (.HP Inc. - HP Support Solutions Framework Service.) - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe =>.HP Inc.®
O23 - Service: HPWMISVC (HPWMISVC) . (.HP Inc. - HP WMI Service.) - C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe =>.Hewlett-Packard Company®
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) . (.Intel Corporation - igfxCUIService Module.) - C:\Windows\System32\igfxCUIService.exe =>.Intel Corporation
O23 - Service: medERP (medERP) . (.Apache Software Foundation - Commons Daemon Service Runner.) - c:\mederp_server\bin\tomcat7.exe =>.Apache Software Foundation
O23 - Service: Mobile Broadband HL Service (Mobile Broadband HL Service) . (.Copyright (C) 2015 - .) - C:\ProgramData\MobileBrServ\mbbservice.exe =>.Huawei Technologies Co.,Ltd.®
O23 - Service: My Web Shield Sentinel (mweshield) . (."My Web Shield" - My Web Shield Sentinel.) - C:\Program Files\My Web Shield\mweshield.exe {39D3FCDE4532A63BD298039D0555D0C2} =>PUP.Optional.WebShield
O23 - Service: My Web Shield Consolidator (mweshieldup) . (."My Web Shield" - My Web Shield Consolidator.) - C:\Program Files\My Web Shield\mweshieldup.exe {39D3FCDE4532A63BD298039D0555D0C2} =>PUP.Optional.WebShield
O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) . (.Nero AG - NeroUpdate.) - C:\Program Files (x86)\Nero\Update\NASvc.exe =>.Nero AG®
O23 - Service: (Net Driver HPZ12) . (.Hewlett-Packard - Dot4Net Module.) - C:\Windows\System32\HPZinw12.dll =>.Hewlett-Packard
O23 - Service: NitroPDFDriverCreatorReadSpool10 (NitroDriverReadSpool10) . (.Nitro PDF Software - Nitro PDF Spool Service.) - C:\Program Files\Nitro\Pro 10\NitroPDFDriverService10x64.exe =>.Nitro Software, Inc.®
O23 - Service: NitroUpdateService (NitroUpdateService) . (...) - C:\Program Files\Nitro\Pro 10\Nitro_UpdateService.exe =>.Nitro Software, Inc.®
O23 - Service: OracleServiceXE (OracleServiceXE) . (.Oracle Corporation - Oracle RDBMS Kernel Executable.) - c:\oraclexe\app\oracle\product\11.2.0\server\bin\ORACLE.EXE =>.Oracle Corporation
O23 - Service: OracleXETNSListener (OracleXETNSListener) . (.Oracle Corporation - Oracle TNSLSNR Executable.) - C:\oraclexe\app\oracle\product\11.2.0\server\bin\TNSLSNR.EXE =>.Oracle Corporation
O23 - Service: (Pml Driver HPZ12) . (.Hewlett-Packard - PmlDrv Module.) - C:\Windows\System32\HPZipm12.dll =>.Hewlett-Packard
O23 - Service: Realtek Audio Service (RtkAudioService) . (.Realtek Semiconductor - Realtek Audio Service.) - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe =>.Realtek Semiconductor Corp.®
O23 - Service: Service KMSELDI (Service KMSELDI) . (.@ByELDI - Service_KMS.) - C:\Program Files\KMSpico\Service_KMS.exe =>HackTool.KMSpico
O23 - Service: SAMSUNG Mobile Connectivity Service (ss_conn_service) . (.DEVGURU Co., LTD. - MSS CS Connectivity Service.) - C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe =>.Samsung Electronics CO., LTD.®
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) . (.Synaptics Incorporated - 64-bit Synaptics Pointing Enhance Service.) - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe =>.Synaptics Incorporated®
O23 - Service: TCPSvc (TCPSvc) . (...) - C:\Users\eric\AppData\Local\Temp\csrss\proxy\Tor\tor.exe
O23 - Service: Unsigned Themes (UnsignedThemes) . (.The Within Network, LLC - Unsigned Themes service executable.) - C:\Windows\unsignedthemes.exe =>.The Within Network, LLC®
O23 - Service: Windows Defender Helper Service (Windows 1703 Creators Upda (WinDefender) . (...) - C:\Windows\windefender.exe
O23 - Service: ZDServ (ZDServ) . (.Copyright (C) 2013 - ZDServ Application.) - C:\ProgramData\ZDSupport\ZDServ\ZDServ.exe =>.ZTE CORPORATION®
---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (40) - 549s
SS - Demand [16/09/2017] [ 272384] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe =>.Adobe Systems Incorporated®
SS - Demand [01/05/2016] [ 875616] BaiduPinyin Updater (BaiduPinyinUpdater) . (.Baidu, Inc..) - C:\Program Files (x86)\Baidu\BaiduPinyinUpdate\bdupdate.exe =>.Baidu (China) Co., Ltd.®
SR - Auto [22/01/2015] [ 1283128] BaisvikSoftware Suite Service (BaisvikSoftware Suite Service) . (.Baisvik.) - C:\Program Files (x86)\BaisvikSoftware\SuiteService.exe {7F8276BC4AA97E8E49FBED6A595376F0}
SR - Auto [12/12/2008] [ 238888] Service Bonjour (Bonjour Service) . (.Apple Inc..) - C:\Program Files (x86)\Bonjour\mDNSResponder.exe =>.Apple Inc.®
SS - Demand [03/09/2015] [ 293272] Intel(R) Content Protection HECI Service (cphs) . (.Intel Corporation.) - C:\Windows\SysWOW64\IntelCpHeciSvc.exe =>.Intel Corporation - pGFX®
SS - Auto [16/09/2017] [ 1238528] CRMSvc (CRMSvc) . (.Copyright © 2017.) - C:\WINDOWS\CRMSvc.exe
SS - Auto [27/08/2016] [ 153752] Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SS - Demand [27/08/2016] [ 153752] Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SS - Demand [28/04/2015] [ 1102472] HP Software Framework Service (hpqwmiex) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe =>.Hewlett-Packard Company®
SR - Auto [12/10/2016] [ 38728] @oem45.inf,%hpservice_desc%;HP Service (hpsrv) . (.HP.) - C:\Windows\System32\Hpservice.exe =>.HP Inc.®
SR - Auto [07/04/2017] [ 33640] HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) . (.HP Inc..) - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe =>.HP Inc.®
SR - Auto [18/04/2016] [ 606224] HPWMISVC (HPWMISVC) . (.HP Inc..) - C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe =>.Hewlett-Packard Company®
SS - Demand [22/10/2004] [ 73728] InstallDriver Table Manager (IDriverT) . (.Macrovision Corporation.) - C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe =>.Macrovision Corporation
SR - Auto [03/09/2015] [ 359848] Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) . (.Intel Corporation.) - C:\Windows\System32\igfxCUIService.exe =>.Intel Corporation - pGFX®
SS - Demand [25/11/2015] [ 3020440] Intel(R) Biometric and Context Agent Service (IntelBCAsvc) . (.Intel(R) Corporation.) - C:\Program Files\Intel\BCA\pabeSvc64.exe =>.Intel(R) Biometric and Context Agent®
SR - Auto [04/12/2012] [ 77312] medERP (medERP) . (.Apache Software Foundation.) - c:\mederp_server\bin\tomcat7.exe =>.Apache Software Foundation
SR - Auto [23/09/2015] [ 242264] Mobile Broadband HL Service (Mobile Broadband HL Service) . (.Copyright (C) 2015.) - C:\ProgramData\MobileBrServ\mbbservice.exe =>.Huawei Technologies Co.,Ltd.®
SS - Demand [24/08/2017] [ 175568] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe =>.Mozilla Corporation®
SR - Auto [31/08/2016] [ 931640] My Web Shield Sentinel (mweshield) . (."My Web Shield".) - C:\Program Files\My Web Shield\mweshield.exe {39D3FCDE4532A63BD298039D0555D0C2} =>PUP.Optional.WebShield
SR - Auto [31/08/2016] [ 348472] My Web Shield Consolidator (mweshieldup) . (."My Web Shield".) - C:\Program Files\My Web Shield\mweshieldup.exe {39D3FCDE4532A63BD298039D0555D0C2} =>PUP.Optional.WebShield
SR - Auto [14/09/2016] [ 805752] @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) . (.Nero AG.) - C:\Program Files (x86)\Nero\Update\NASvc.exe =>.Nero AG®
SS - Auto [31/07/2012] [ 50688] (Net Driver HPZ12) . (.Hewlett-Packard.) - C:\Windows\System32\HPZinw12.dll =>.Hewlett-Packard
SR - Auto [06/05/2015] [ 324760] NitroPDFDriverCreatorReadSpool10 (NitroDriverReadSpool10) . (.Nitro PDF Software.) - C:\Program Files\Nitro\Pro 10\NitroPDFDriverService10x64.exe =>.Nitro Software, Inc.®
SR - Auto [06/05/2015] [ 418968] NitroUpdateService (NitroUpdateService) . (...) - C:\Program Files\Nitro\Pro 10\Nitro_UpdateService.exe =>.Nitro Software, Inc.®
SS - Disabl [29/05/2014] [ 45568] OracleJobSchedulerXE (OracleJobSchedulerXE) . (...) - c:\oraclexe\app\oracle\product\11.2.0\server\Bin\extjob.exe
SS - Demand [29/05/2014] [ 81408] OracleMTSRecoveryService (OracleMTSRecoveryService) . (.Oracle Corporation.) - C:\oraclexe\app\oracle\product\11.2.0\server\BIN\omtsreco.exe =>.Oracle Corporation
SR - Auto [30/05/2014] [147110912] OracleServiceXE (OracleServiceXE) . (.Oracle Corporation.) - c:\oraclexe\app\oracle\product\11.2.0\server\bin\ORACLE.EXE =>.Oracle Corporation
SS - Demand [29/05/2014] [ 83968] (OracleXEClrAgent) . (.Oracle Corporation.) - C:\oraclexe\app\oracle\product\11.2.0\server\bin\OraClrAgnt.exe =>.Oracle Corporation
SR - Auto [29/05/2014] [ 522240] OracleXETNSListener (OracleXETNSListener) . (.Oracle Corporation.) - C:\oraclexe\app\oracle\product\11.2.0\server\bin\TNSLSNR.EXE =>.Oracle Corporation
SS - Auto [31/07/2012] [ 66048] (Pml Driver HPZ12) . (.Hewlett-Packard.) - C:\Windows\System32\HPZipm12.dll =>.Hewlett-Packard
SR - Auto [23/03/2017] [ 324608] Realtek Audio Service (RtkAudioService) . (.Realtek Semiconductor.) - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe =>.Realtek Semiconductor Corp.®
SS - Auto [12/08/2015] [ 985280] Service KMSELDI (Service KMSELDI) . (.@ByELDI.) - C:\Program Files\KMSpico\Service_KMS.exe =>HackTool.KMSpico
SR - Auto [08/01/2016] [ 754784] SAMSUNG Mobile Connectivity Service (ss_conn_service) . (.DEVGURU Co., LTD..) - C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe =>.Samsung Electronics CO., LTD.®
SR - Auto [17/02/2017] [ 278624] SynTPEnh Caller Service (SynTPEnhService) . (.Synaptics Incorporated.) - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe =>.Synaptics Incorporated®
SR - Auto [18/09/2017] [ 3282432] TCPSvc (TCPSvc) . (...) - C:\Users\eric\AppData\Local\Temp\csrss\proxy\Tor\tor.exe
SS - Demand [21/04/2016] [ 874784] Intel Security True Key (TrueKey) . (.McAfee, Inc..) - C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe =>.McAfee, Inc.®
SS - Demand [21/04/2016] [ 15736] Intel Security True Key Scheduler (TrueKeyScheduler) . (.McAfee, Inc..) - C:\Program Files\TrueKey\McTkSchedulerService.exe =>.McAfee, Inc.®
SR - Auto [28/02/2015] [ 22184] Unsigned Themes (UnsignedThemes) . (.The Within Network, LLC.) - C:\Windows\unsignedthemes.exe =>.The Within Network, LLC®
SR - Auto [ 0] [ 0] Windows Defender Helper Service (Windows 1703 Creators Upda (WinDefender) . (...) - C:\Windows\windefender.exe
SR - Auto [24/12/2014] [ 432384] ZDServ (ZDServ) . (.Copyright (C) 2013.) - C:\ProgramData\ZDSupport\ZDServ\ZDServ.exe =>.ZTE CORPORATION®
---\\ Applications lancées au démarrage du système (29) - 8s
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe =>.Realtek Semiconductor Corp.®
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] . (. - Gestionnaire audio HD Realtek.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
O4 - HKLM\..\RunOnce: [Lahin_Raw_barra_al3eb_b3id_SNJTFHPBUK.exe] . (...) -- C:\Users\eric\AppData\Local\Temp\OHPQYDHLSJ\SNJTFHPBUK.exe
O4 - HKLM\..\RunOnce: [LAPPAD-NDJIND] . (...) -- C:\Windows\Temp\g2ED5.tmp.exe
O4 - HKCU\..\Run: [Dashlane] . (.Dashlane, Inc. - Dashlane.) -- C:\Users\eric\AppData\Roaming\Dashlane\Dashlane.exe =>.Dashlane®
O4 - HKCU\..\Run: [DashlanePlugin] . (.Dashlane, Inc. - Dashlane.) -- C:\Users\eric\AppData\Roaming\Dashlane\DashlanePlugin.exe =>.Dashlane®
O4 - HKCU\..\Run: [Free Download Manager] . (.FreeDownloadManager.org - Free Download Manager.) -- C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\fdm.exe =>.Softdeluxe Ltd.®
O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - HKCU\..\Run: [LCYVPKKQRM.exe] . (...) -- C:\Users\eric\AppData\Local\Temp\KNWJUOJDUG\LCYVPKKQRM.exe
O4 - HKCU\..\Run: [8TWeFR2T.exe] . (...) -- C:\Users\eric\AppData\Roaming\af688c2fb64e4f05a7eadcc4857dc524\8TWeFR2T.exe
O4 - HKCU\..\Run: [jGjlY92aj2JZ.exe] . (...) -- C:\ProgramData\b945d8214d7047bd89ea300fbaf0006d\jGjlY92aj2JZ.exe
O4 - HKCU\..\Run: [CloudNet] . (.EpicNet Inc. - Cloud Net.) -- C:\Users\eric\AppData\Roaming\EpicNet Inc\CloudNet\cloudnet.exe =>Adware.MSIL
O4 - HKLM\..\Wow6432Node\Run: [HPMessageService] . (.HP Inc. - HP Message Service.) -- C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe =>.Hewlett-Packard Company®
O4 - HKLM\..\Wow6432Node\Run: [PWRISOVM.EXE] . (.Power Software Ltd - PowerISO Virtual Drive Manager.) -- C:\Program Files\PowerISO\PWRISOVM.EXE =>.Power Software Limited®
O4 - HKLM\..\Wow6432Node\Run: [AccelerometerSysTrayApplet] . (.Hewlett-Packard Company - Hp Accelerometer System Tray.) -- C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe =>.Hewlett-Packard®
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe =>.Oracle America, Inc.®
O4 - HKLM\..\Wow6432Node\Run: [NoterSave] . (.Copyright © 2017 - NoterSave.) -- C:\Program Files (x86)\NoterSave\NoterSave.exe
O4 - HKUS\.DEFAULT\..\Run: [Free Download Manager] . (.FreeDownloadManager.org - Free Download Manager.) -- C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\fdm.exe =>.Softdeluxe Ltd.®
O4 - HKUS\S-1-5-18\..\Run: [Free Download Manager] . (.FreeDownloadManager.org - Free Download Manager.) -- C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\fdm.exe =>.Softdeluxe Ltd.®
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Windows®
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Windows®
O4 - HKUS\S-1-5-21-4040018575-2137455487-4043523077-1001\..\Run: [Dashlane] . (.Dashlane, Inc. - Dashlane.) -- C:\Users\eric\AppData\Roaming\Dashlane\Dashlane.exe =>.Dashlane®
O4 - HKUS\S-1-5-21-4040018575-2137455487-4043523077-1001\..\Run: [DashlanePlugin] . (.Dashlane, Inc. - Dashlane.) -- C:\Users\eric\AppData\Roaming\Dashlane\DashlanePlugin.exe =>.Dashlane®
O4 - HKUS\S-1-5-21-4040018575-2137455487-4043523077-1001\..\Run: [Free Download Manager] . (.FreeDownloadManager.org - Free Download Manager.) -- C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\fdm.exe =>.Softdeluxe Ltd.®
O4 - HKUS\S-1-5-21-4040018575-2137455487-4043523077-1001\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - HKUS\S-1-5-21-4040018575-2137455487-4043523077-1001\..\Run: [LCYVPKKQRM.exe] . (...) -- C:\Users\eric\AppData\Local\Temp\KNWJUOJDUG\LCYVPKKQRM.exe
O4 - HKUS\S-1-5-21-4040018575-2137455487-4043523077-1001\..\Run: [8TWeFR2T.exe] . (...) -- C:\Users\eric\AppData\Roaming\af688c2fb64e4f05a7eadcc4857dc524\8TWeFR2T.exe
O4 - HKUS\S-1-5-21-4040018575-2137455487-4043523077-1001\..\Run: [jGjlY92aj2JZ.exe] . (...) -- C:\ProgramData\b945d8214d7047bd89ea300fbaf0006d\jGjlY92aj2JZ.exe
O4 - HKUS\S-1-5-21-4040018575-2137455487-4043523077-1001\..\Run: [CloudNet] . (.EpicNet Inc. - Cloud Net.) -- C:\Users\eric\AppData\Roaming\EpicNet Inc\CloudNet\cloudnet.exe =>Adware.MSIL
---\\ Google Chrome, Démarrage,Recherche,Extensions (38) - 6s
G0 - GCSP: Preferences [User Data\Default][HomePage] http://bigpicturepop.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://google.cm =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://ythdqualities.oneted.de
G0 - GCSP: Preferences [User Data\Default][HomePage] http://clients5.google.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://lh3.googleusercontent.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://logs.dashlane.com =>.Dashlane, Inc
G0 - GCSP: Preferences [User Data\Default][HomePage] http://ssl.google-analytics.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://ssl.gstatic.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google.cm =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.gstatic.com =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [aapocclcgogkmnckokdopfmhonfmgoek] =>.Google Inc. {Slides}
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] =>.Google Inc. {Docs}
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] http://drive.google.com/ =>.Google Inc. {Drive}
G2 - GCE: Preference [User Data\Default] [bdahgdkcmdnbofpaanmjmfjchopeacka] IDM Integration Module =>.IDM Computer Solutions, Inc.
G2 - GCE: Preference [User Data\Default] [blhjobkfabeopalncconblmakfcllmhk] =>.alekesxstrelof {Internet Download Manager}
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] http://www.youtube.com =>.Youtube {Youtube}
G2 - GCE: Preference [User Data\Default] [eojeoeddgeaeahpmfabdfpfialkoplcb] http://youtubeadblock.net =>Adware.CloudAtlas
G2 - GCE: Preference [User Data\Default] [felcaaldnbdncclmgdcncolpebgiejap] =>.Google Inc. {Sheets}
G2 - GCE: Preference [User Data\Default] [ghbmnnjooekpmoecnnnilnnbdlolhkhi] =>.Google Inc. {Docs hors connexion}
G2 - GCE: Preference [User Data\Default] [gpnhkimbdglndkhfkommdfcfclddonbe]
G2 - GCE: Preference [User Data\Default] [libedajeiljdoodmokbppgapcfbignci] SoundCloud Downloader
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] =>.Google Inc. {Wallet}
G2 - GCE: Preference [User Data\Default] [pbdpajcdgknpendpmecafmopknefafha]
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] http://mail.google.com/ =>.Google Inc. {Gmail}
G2 - GCE: Preference [User Data\Default] [pkedcjkdefgpdelpbcmbmeomcjbeemfm] Chrome Media Router =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [ahmpjcflkgiildlgicmcieglgoilbfdp] =>.Free Download Manager
G2 - GCE: Preference [User Data\Default] [akjbfncbadcmnkopckegnmjgihagponf] HD for YouTube™ =>.DingoSolutions
G2 - GCE: Preference [User Data\Default] [bgnkhhnnamicmpeenaelnjfhikgbkllg] Performix LLC =>.adguard.com {AdBlocker}
G2 - GCE: Preference [User Data\Default] [ccpokhmgacfkdaelielfljggjbbmmdpi] Pass downloads to Internet Download Accelerator
G2 - GCE: Preference [User Data\Default] [dhdgffkkebhmkfjojejmpbldmpobfkfo] Tampermonkey =>.tampermonkey.net
G2 - GCE: Preference [User Data\Default] [fdjamakpfbbddfjaooikfcpapjohcfmg] Dashlane =>.Dashlane, Inc
G2 - GCE: Preference [User Data\Default] [hgocelbnbdmphccojflbhmfoiejfjjlk] http://atavi.com/
G2 - GCE: Preference [User Data\Default] [imhlianhlhdicjchlbmbfaefhhjencbe] NewTab
G2 - GCE: Preference [User Data\Default] [jkfpchpiljkaemlpmpebnglgkomamfeo] =>.Hewlett-Packard {HP Network}
G2 - GCE: Preference [User Data\Default] [jpchabeoojaflbaajmjhfcfiknckabpo] =>.Cifonomag {Atavi}
G2 - GCE: Preference [User Data\Default] [lmjnegcaeklhafolokijcfjliaokphfk] Video DownloadHelper =>.Downloadhelper.net
G2 - GCE: Preference [User Data\Default] [ngpampappnmepgilojfohadhhmbhlaek] IDM Integration Module =>.IDM Computer Solutions, Inc.
G2 - GCE: Preference [User Data\Default] [pinhfkamckbogjgmbmdkdebbbpnmlaef] Bazz Search
---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (12) - 3s
P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\aushelper@mozilla.org.xpi =>.Mozilla Corporation
P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\clicktoplay-rollout@mozilla.org.xpi =>.Mozilla Corporation
P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\e10srollout@mozilla.org.xpi =>.Mozilla Corporation
P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\firefox@getpocket.com.xpi =>.Mozilla Corporation
P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\followonsearch@mozilla.com.xpi =>.Mozilla Corporation
P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\screenshots@mozilla.org.xpi =>.Mozilla Corporation
P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\shield-recipe-client@mozilla.org.xpi =>.Mozilla Corporation
P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\webcompat@mozilla.org.xpi =>.Mozilla Corporation
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_27_0_0_130.dll =>.Adobe Systems Incorporated
P2 - FPN: [HKLM] [@baidu.com/BaiduExpert-npplugin] - (.百度在线网络技术(北京)有限公司.) -- C:\Users\eric\AppData\Roaming\Baidu\BDWebAdapter\3.0.359.0\npBDExNP.dll
P2 - FPN: [HKLM] [@microsoft.com/Lync,version=15.0] - (.Microsoft.) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll =>.Microsoft
P2 - FPN: [HKLM] [adobe.com/AdobeAAMDetect] - (...) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll
---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (19) - 1s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://%66%65%65%64.%68%65%6c%70%65%72%62%61%72.%63%6f%6d/?p=mko_awfzxipyryeqqao2txtgptboxpbnaukw3gsz7dumyk6gyfg3omad4l-xhtqnsvm29zjl8stvufnikjjrjfk6zrjujrbpgorg2by-usevtyrtky9cq_i-9-1jmmnhdjhb5elprtgtg7yeycgmkpargrpcf2qsvmlxhgpgys24f2rrgsnjyprveipedixziw8e0klmdq8,&q={searchterms} =>.SUP.Linkury
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = preserve =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://%66%65%65%64.%68%65%6c%70%65%72%62%61%72.%63%6f%6d/?p=mko_awfzxipyryeqqao2txtgptboxpbnaukw3gsz7dumyk6gyfg3omad4l-xhtqnsvm29zjl8stvufnikjjrjfk6zrjujrbpgorg2by-usevtyrtky9cq_i-9-1jmmnhdjhb5elprtgtg7yeycgmkpargrpcf2qsvmlxhgpgys24f2rrgsnjyprveipedixziw8e0klmdq8,&q={searchterms} =>.SUP.Linkury
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchUrl,Default = http://%66%65%65%64.%68%65%6c%70%65%72%62%61%72.%63%6f%6d/?p=mko_awfzxipyryeqqao2txtgptboxpbnaukw3gsz7dumyk6gyfg3omad4l-xhtqnsvm29zjl8stvufnikjjrjfk6zrjujrbpgorg2by-usevtyrtky9cq_i-9-1jmmnhdjhb5elprtgtg7yeycgmkpargrpcf2qsvmlxhgpgys24f2rrgsnjyprveipedixziw8e0klmdq8,&q={searchterms} =>.SUP.Linkury
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R1 - HKEY_USERS\S-1-5-21-4040018575-2137455487-4043523077-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = preserve =>.Microsoft Corporation
R3 - URLSearchHook: (no name)[HKCU] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (11.00.15063.608 (WinBuild.160101.0800)) -- C:\Windows\SysWOW64\ieframe.dll =>.Microsoft Corporation
---\\ Microsoft Edge, Plugin,Favoris,Démarrage,Recherche,Extension (1) - 0s
E0 - Microsoft Edge: HKU\S-1-5-21-4040018575-2137455487-4043523077-1001\HomeButtonPage = http://www.yandex.ru/
---\\ Internet Explorer,Proxy Management (8) - 0s
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride =
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 192.168.7.1:8080
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 1
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
R5 - HKLM\SYSTEM\CurrentControlSet\services\NlaSvc\Parameters\Internet\ManualProxies [1192.168.7.1:8080]
---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: VMApplet=
---\\ Etude du fichier hosts (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (33)
---\\ Browser Helper Object de navigateur (BHO) (9) - 1s
O2 - BHO: IDM Helper [64Bits] - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Internet Download Manager, Tonec Inc. - IDM Browser Helper Object.) -- C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll =>.Tonec Inc.®
O2 - BHO: (no name) [64Bits] - {13D67BB7-DB5F-48AA-884D-7A5D94168509} (.Orphan.)
O2 - BHO: RealNetworks Download and Record Plugin for Internet Explorer [64Bits] - {3049C3E9-B461-4BC5-8870-4C09146192CA} (.Orphan.)
O2 - BHO: Skype for Business Click to Call BHO [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} . (.Microsoft Corporation - Skype for Business.) -- C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll =>.Microsoft Corporation®
O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre1.8.0_144\bin\ssv.dll =>.Oracle America, Inc.®
O2 - BHO: TSWebMon [64Bits] - {7C260B4B-F7A0-40B5-B403-BEFCDC6A4C3B} (.Orphan.)
O2 - BHO: Microsoft OneDrive for Business Browser Helper [64Bits] - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} . (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL =>.Microsoft Corporation®
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre1.8.0_144\bin\jp2ssv.dll =>.Oracle America, Inc.®
O2 - BHO: HP Network Check Helper [64Bits] - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} . (.HP Inc. - HP Network Check IE Plug-in.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll =>.Hewlett-Packard Company®
---\\ Raccourcis Global Startup (150) - 45s
O4 - GS\Desktop [Administrateur]: AAA Logo.lnk . (.Copyright (C) 2013 SWGSoft - jeta-aaalogo.) C:\Program Files (x86)\AAALOGO\alogo.exe
O4 - GS\Desktop [Administrateur]: Assistant Mise à niveau de Windows 10.lnk . (.Microsoft Corporation - Assistant Mise à jour de Windows 10.) C:\Windows10Upgrade\Windows10UpgraderApp.exe =>.Microsoft Corporation®
O4 - GS\Desktop [Administrateur]: CVitae 5.lnk . (...) C:\Users\eric\AppData\Roaming\Microsoft\Installer\{5988C473-7D71-4B59-857B-8DA5C701FBFF}\_0844F546BD9789DAA2ED62.exe
O4 - GS\Desktop [Administrateur]: Dashlane.lnk . (.Dashlane, Inc. - Dashlane.) C:\Users\eric\AppData\Roaming\Dashlane\Dashlane.exe =>.Dashlane®
O4 - GS\Desktop [Administrateur]: FlashBoot.lnk . (.Copyright (C) 2005-2013 Mikhail Kupchik - FlashBoot GUI Application.) C:\Program Files\FlashBoot\fb-gui.exe
O4 - GS\Desktop [Administrateur]: Format Factory.lnk . (.Free Time Co., Ltd. - FormatFactory.) C:\Program Files (x86)\FormatFactory\FormatFactory.exe =>.Free Time Co., Ltd.®
O4 - GS\Desktop [Administrateur]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Desktop [Administrateur]: Internet Download Manager.lnk . (.Tonec Inc. - Internet Download Manager (IDM).) C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - GS\Desktop [Administrateur]: Jargon Informatique.lnk . (...) C:\Program Files (x86)\Jargon Informatique\jargoninformatique.exe
O4 - GS\Desktop [Administrateur]: Messenger.lnk . (...) C:\Program Files (x86)\Messenger for Desktop\Messenger.exe
O4 - GS\Desktop [Administrateur]: Sparkle.lnk . (...) C:\Program Files (x86)\Sparkle\sparkle.exe
O4 - GS\Desktop [Administrateur]: VirtualDJ 8.lnk . (.Atomix Productions - VirtualDJ.) C:\Program Files (x86)\VirtualDJ\virtualdj8.exe =>.Atomix Productions
O4 - GS\Desktop [Administrateur]: WhatsApp.lnk . (...) C:\Users\eric\AppData\Local\WhatsApp\Update.exe --processStart WhatsApp.exe =>.WhatsApp, Inc.®
O4 - GS\Desktop [Administrateur]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\eric\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Administrateur]: AAA Logo.lnk . (.Copyright (C) 2013 SWGSoft - jeta-aaalogo.) C:\Program Files (x86)\AAALOGO\alogo.exe
O4 - GS\Quicklaunch [Administrateur]: Free Download Manager 5.lnk . (.FreeDownloadManager.org - Free Download Manager.) C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\fdm.exe =>.Softdeluxe Ltd.®
O4 - GS\Quicklaunch [Administrateur]: GESCMS.lnk . (.pad - .) C:\Program Files (x86)\GESCMS\GESCMS.exe
O4 - GS\Quicklaunch [Administrateur]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Administrateur]: Web Navigation.lnk . (...) C:\Program Files (x86)\USB Disk Security\linkzb.exe =>.Lanzhou Itanium Software Technology Co., Ltd.®
O4 - GS\sendTo [Administrateur]: Destinataire de télécopie.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Administrateur]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Administrateur]: Format Factory.lnk . (.Free Time Co., Ltd. - FormatFactory.) C:\Program Files (x86)\FormatFactory\FormatFactory.exe =>.Free Time Co., Ltd.®
O4 - GS\sendTo [Administrateur]: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Administrateur]: Adobe Dreamweaver CC.lnk . (.Adobe Systems, Inc. - Adobe Dreamweaver CC.) C:\Program Files (x86)\Adobe\Adobe Dreamweaver CC\Dreamweaver.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [Administrateur]: Adobe Photoshop CS6 Portable.lnk . (.PortableAppZ.blogspot.com - Adobe Photoshop CS6 Portable.) F:\PhotoshopPortable\PhotoshopCS6Portable.exe =>.PortableAppZ.blogspot.com
O4 - GS\TaskBar [Administrateur]: RevoUPort.lnk . (.VS Revo Group - .) C:\Users\eric\Desktop\projet de gestion de centre de sante\RevoUninstaller_Portable\RevoUninstaller_Portable\RevoUPort.exe =>.VS Revo Group®
O4 - GS\TaskBar [Administrateur]: Sublime Text 3.lnk . (.Copyright (C) 2006 - 2016 Sublime HQ Pty Ltd - Sublime Text.) C:\Program Files\Sublime Text 3\sublime_text.exe =>.Sublime HQ Pty Ltd®
O4 - GS\Startup [Administrateur]: Envoyer à OneNote.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\Microsoft Office\Office16\ONENOTEM.EXE /tsr =>.Microsoft Corporation
O4 - GS\Programs [Administrateur]: Fonctionnalités optionnelles.lnk . (.Microsoft Corporation - Assistance des fonctionnalités à la demande.) C:\Windows\System32\fodhelper.exe =>.Microsoft Corporation
O4 - GS\Programs [Administrateur]: Messenger.lnk . (...) C:\Program Files (x86)\Messenger for Desktop\Messenger.exe
O4 - GS\Programs [Administrateur]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\eric\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - GS\Programs [Administrateur]: Uninstall Messenger for Desktop.lnk . (...) C:\Program Files (x86)\Messenger for Desktop\Uninstall Messenger for Desktop.exe
O4 - GS\Desktop [eric]: AAA Logo.lnk . (.Copyright (C) 2013 SWGSoft - jeta-aaalogo.) C:\Program Files (x86)\AAALOGO\alogo.exe
O4 - GS\Desktop [eric]: Assistant Mise à niveau de Windows 10.lnk . (.Microsoft Corporation - Assistant Mise à jour de Windows 10.) C:\Windows10Upgrade\Windows10UpgraderApp.exe =>.Microsoft Corporation®
O4 - GS\Desktop [eric]: CVitae 5.lnk . (...) C:\Users\eric\AppData\Roaming\Microsoft\Installer\{5988C473-7D71-4B59-857B-8DA5C701FBFF}\_0844F546BD9789DAA2ED62.exe
O4 - GS\Desktop [eric]: Dashlane.lnk . (.Dashlane, Inc. - Dashlane.) C:\Users\eric\AppData\Roaming\Dashlane\Dashlane.exe =>.Dashlane®
O4 - GS\Desktop [eric]: FlashBoot.lnk . (.Copyright (C) 2005-2013 Mikhail Kupchik - FlashBoot GUI Application.) C:\Program Files\FlashBoot\fb-gui.exe
O4 - GS\Desktop [eric]: Format Factory.lnk . (.Free Time Co., Ltd. - FormatFactory.) C:\Program Files (x86)\FormatFactory\FormatFactory.exe =>.Free Time Co., Ltd.®
O4 - GS\Desktop [eric]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Desktop [eric]: Internet Download Manager.lnk . (.Tonec Inc. - Internet Download Manager (IDM).) C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - GS\Desktop [eric]: Jargon Informatique.lnk . (...) C:\Program Files (x86)\Jargon Informatique\jargoninformatique.exe
O4 - GS\Desktop [eric]: Messenger.lnk . (...) C:\Program Files (x86)\Messenger for Desktop\Messenger.exe
O4 - GS\Desktop [eric]: Sparkle.lnk . (...) C:\Program Files (x86)\Sparkle\sparkle.exe
O4 - GS\Desktop [eric]: VirtualDJ 8.lnk . (.Atomix Productions - VirtualDJ.) C:\Program Files (x86)\VirtualDJ\virtualdj8.exe =>.Atomix Productions
O4 - GS\Desktop [eric]: WhatsApp.lnk . (...) C:\Users\eric\AppData\Local\WhatsApp\Update.exe --processStart WhatsApp.exe =>.WhatsApp, Inc.®
O4 - GS\Desktop [eric]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\eric\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [eric]: AAA Logo.lnk . (.Copyright (C) 2013 SWGSoft - jeta-aaalogo.) C:\Program Files (x86)\AAALOGO\alogo.exe
O4 - GS\Quicklaunch [eric]: Free Download Manager 5.lnk . (.FreeDownloadManager.org - Free Download Manager.) C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\fdm.exe =>.Softdeluxe Ltd.®
O4 - GS\Quicklaunch [eric]: GESCMS.lnk . (.pad - .) C:\Program Files (x86)\GESCMS\GESCMS.exe
O4 - GS\Quicklaunch [eric]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [eric]: Web Navigation.lnk . (...) C:\Program Files (x86)\USB Disk Security\linkzb.exe =>.Lanzhou Itanium Software Technology Co., Ltd.®
O4 - GS\sendTo [eric]: Destinataire de télécopie.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [eric]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [eric]: Format Factory.lnk . (.Free Time Co., Ltd. - FormatFactory.) C:\Program Files (x86)\FormatFactory\FormatFactory.exe =>.Free Time Co., Ltd.®
O4 - GS\sendTo [eric]: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\TaskBar [eric]: Adobe Dreamweaver CC.lnk . (.Adobe Systems, Inc. - Adobe Dreamweaver CC.) C:\Program Files (x86)\Adobe\Adobe Dreamweaver CC\Dreamweaver.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [eric]: Adobe Photoshop CS6 Portable.lnk . (.PortableAppZ.blogspot.com - Adobe Photoshop CS6 Portable.) F:\PhotoshopPortable\PhotoshopCS6Portable.exe =>.PortableAppZ.blogspot.com
O4 - GS\TaskBar [eric]: RevoUPort.lnk . (.VS Revo Group - .) C:\Users\eric\Desktop\projet de gestion de centre de sante\RevoUninstaller_Portable\RevoUninstaller_Portable\RevoUPort.exe =>.VS Revo Group®
O4 - GS\TaskBar [eric]: Sublime Text 3.lnk . (.Copyright (C) 2006 - 2016 Sublime HQ Pty Ltd - Sublime Text.) C:\Program Files\Sublime Text 3\sublime_text.exe =>.Sublime HQ Pty Ltd®
O4 - GS\Startup [eric]: Envoyer à OneNote.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\Microsoft Office\Office16\ONENOTEM.EXE /tsr =>.Microsoft Corporation
O4 - GS\Programs [eric]: Fonctionnalités optionnelles.lnk . (.Microsoft Corporation - Assistance des fonctionnalités à la demande.) C:\Windows\System32\fodhelper.exe =>.Microsoft Corporation
O4 - GS\Programs [eric]: Messenger.lnk . (...) C:\Program Files (x86)\Messenger for Desktop\Messenger.exe
O4 - GS\Programs [eric]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\eric\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - GS\Programs [eric]: Uninstall Messenger for Desktop.lnk . (...) C:\Program Files (x86)\Messenger for Desktop\Uninstall Messenger for Desktop.exe
O4 - GS\Desktop [openpgsvc]: AAA Logo.lnk . (.Copyright (C) 2013 SWGSoft - jeta-aaalogo.) C:\Program Files (x86)\AAALOGO\alogo.exe
O4 - GS\Desktop [openpgsvc]: Assistant Mise à niveau de Windows 10.lnk . (.Microsoft Corporation - Assistant Mise à jour de Windows 10.) C:\Windows10Upgrade\Windows10UpgraderApp.exe =>.Microsoft Corporation®
O4 - GS\Desktop [openpgsvc]: CVitae 5.lnk . (...) C:\Users\eric\AppData\Roaming\Microsoft\Installer\{5988C473-7D71-4B59-857B-8DA5C701FBFF}\_0844F546BD9789DAA2ED62.exe
O4 - GS\Desktop [openpgsvc]: Dashlane.lnk . (.Dashlane, Inc. - Dashlane.) C:\Users\eric\AppData\Roaming\Dashlane\Dashlane.exe =>.Dashlane®
O4 - GS\Desktop [openpgsvc]: FlashBoot.lnk . (.Copyright (C) 2005-2013 Mikhail Kupchik - FlashBoot GUI Application.) C:\Program Files\FlashBoot\fb-gui.exe
O4 - GS\Desktop [openpgsvc]: Format Factory.lnk . (.Free Time Co., Ltd. - FormatFactory.) C:\Program Files (x86)\FormatFactory\FormatFactory.exe =>.Free Time Co., Ltd.®
O4 - GS\Desktop [openpgsvc]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Desktop [openpgsvc]: Internet Download Manager.lnk . (.Tonec Inc. - Internet Download Manager (IDM).) C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - GS\Desktop [openpgsvc]: Jargon Informatique.lnk . (...) C:\Program Files (x86)\Jargon Informatique\jargoninformatique.exe
O4 - GS\Desktop [openpgsvc]: Messenger.lnk . (...) C:\Program Files (x86)\Messenger for Desktop\Messenger.exe
O4 - GS\Desktop [openpgsvc]: Sparkle.lnk . (...) C:\Program Files (x86)\Sparkle\sparkle.exe
O4 - GS\Desktop [openpgsvc]: VirtualDJ 8.lnk . (.Atomix Productions - VirtualDJ.) C:\Program Files (x86)\VirtualDJ\virtualdj8.exe =>.Atomix Productions
O4 - GS\Desktop [openpgsvc]: WhatsApp.lnk . (...) C:\Users\eric\AppData\Local\WhatsApp\Update.exe --processStart WhatsApp.exe =>.WhatsApp, Inc.®
O4 - GS\Desktop [openpgsvc]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\eric\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [openpgsvc]: AAA Logo.lnk . (.Copyright (C) 2013 SWGSoft - jeta-aaalogo.) C:\Program Files (x86)\AAALOGO\alogo.exe
O4 - GS\Quicklaunch [openpgsvc]: Free Download Manager 5.lnk . (.FreeDownloadManager.org - Free Download Manager.) C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\fdm.exe =>.Softdeluxe Ltd.®
O4 - GS\Quicklaunch [openpgsvc]: GESCMS.lnk . (.pad - .) C:\Program Files (x86)\GESCMS\GESCMS.exe
O4 - GS\Quicklaunch [openpgsvc]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [openpgsvc]: Web Navigation.lnk . (...) C:\Program Files (x86)\USB Disk Security\linkzb.exe =>.Lanzhou Itanium Software Technology Co., Ltd.®
O4 - GS\sendTo [openpgsvc]: Destinataire de télécopie.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [openpgsvc]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [openpgsvc]: Format Factory.lnk . (.Free Time Co., Ltd. - FormatFactory.) C:\Program Files (x86)\FormatFactory\FormatFactory.exe =>.Free Time Co., Ltd.®
O4 - GS\sendTo [openpgsvc]: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\TaskBar [openpgsvc]: Adobe Dreamweaver CC.lnk . (.Adobe Systems, Inc. - Adobe Dreamweaver CC.) C:\Program Files (x86)\Adobe\Adobe Dreamweaver CC\Dreamweaver.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [openpgsvc]: Adobe Photoshop CS6 Portable.lnk . (.PortableAppZ.blogspot.com - Adobe Photoshop CS6 Portable.) F:\PhotoshopPortable\PhotoshopCS6Portable.exe =>.PortableAppZ.blogspot.com
O4 - GS\TaskBar [openpgsvc]: RevoUPort.lnk . (.VS Revo Group - .) C:\Users\eric\Desktop\projet de gestion de centre de sante\RevoUninstaller_Portable\RevoUninstaller_Portable\RevoUPort.exe =>.VS Revo Group®
O4 - GS\TaskBar [openpgsvc]: Sublime Text 3.lnk . (.Copyright (C) 2006 - 2016 Sublime HQ Pty Ltd - Sublime Text.) C:\Program Files\Sublime Text 3\sublime_text.exe =>.Sublime HQ Pty Ltd®
O4 - GS\Startup [openpgsvc]: Envoyer à OneNote.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\Microsoft Office\Office16\ONENOTEM.EXE /tsr =>.Microsoft Corporation
O4 - GS\Programs [openpgsvc]: Fonctionnalités optionnelles.lnk . (.Microsoft Corporation - Assistance des fonctionnalités à la demande.) C:\Windows\System32\fodhelper.exe =>.Microsoft Corporation
O4 - GS\Programs [openpgsvc]: Messenger.lnk . (...) C:\Program Files (x86)\Messenger for Desktop\Messenger.exe
O4 - GS\Programs [openpgsvc]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\eric\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - GS\Programs [openpgsvc]: Uninstall Messenger for Desktop.lnk . (...) C:\Program Files (x86)\Messenger for Desktop\Uninstall Messenger for Desktop.exe
O4 - GS\CommonDesktop [Public]: 38 Dictionnaires et Recueils de Correspondance.lnk . (.L'Aventure Multimedia - .) C:\Program Files (x86)\Micro Application\38 Dictionnaires et Recueils de Correspondance\LanceMediaDICO38.exe =>.L'Aventure Multimedia
O4 - GS\CommonDesktop [Public]: FileZilla Client.lnk . (.FileZilla Project - FileZilla FTP Client.) C:\Program Files\FileZilla FTP Client\filezilla.exe =>.Tim Kosse®
O4 - GS\CommonDesktop [Public]: Free Download Manager 5.lnk . (.FreeDownloadManager.org - Free Download Manager.) C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\fdm.exe =>.Softdeluxe Ltd.®
O4 - GS\CommonDesktop [Public]: GanttProject.lnk . (...) C:\Program Files (x86)\GanttProject-2.8\ganttproject.exe
O4 - GS\CommonDesktop [Public]: GESCMS.lnk . (.pad - .) C:\Program Files (x86)\GESCMS\GESCMS.exe
O4 - GS\CommonDesktop [Public]: Get Started With Oracle Database 11g Express Edition .lnk . (...) C:\oraclexe\app\oracle\product\11.2.0\server\Get_Started.url
O4 - GS\CommonDesktop [Public]: HP Support Assistant.lnk . (.HP Inc. - HP Support Assistant.) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe /p 2 =>.HP Inc.®
O4 - GS\CommonDesktop [Public]: Intel(R) HD Graphics Control Panel.lnk . (.Intel Corporation - GFXUIEX Module.) C:\WINDOWS\system32\GfxUIEx.exe =>.Intel Corporation
O4 - GS\CommonDesktop [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\CommonDesktop [Public]: NetBeans IDE 8.0.2.lnk . (.Oracle Corporation - .) C:\Program Files (x86)\NetBeans 8.0.2\bin\netbeans64.exe =>.Oracle Corporation
O4 - GS\CommonDesktop [Public]: Nitro Pro 10.lnk . (.Nitro PDF - .) C:\Program Files (x86)\Nitro\Pro 10\NitroPDF.exe =>.Nitro PDF
O4 - GS\CommonDesktop [Public]: PowerISO.lnk . (.Power Software Ltd - PowerISO.) C:\Program Files\PowerISO\PowerISO.exe =>.Power Software Ltd
O4 - GS\CommonDesktop [Public]: UmmyVideoDownloader.lnk . (.Magicbit, Inc - Ummy Video Downloader.) C:\Users\eric\AppData\Local\UmmyVideoDownloader\UmmyVideoDownloader.exe =>.SUP.Magicbit
O4 - GS\Programs [Public]: Fonctionnalités optionnelles.lnk . (.Microsoft Corporation - Assistance des fonctionnalités à la demande.) C:\Windows\System32\fodhelper.exe =>.Microsoft Corporation
O4 - GS\Programs [Public]: Messenger.lnk . (...) C:\Program Files (x86)\Messenger for Desktop\Messenger.exe
O4 - GS\Programs [Public]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\eric\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - GS\Programs [Public]: Uninstall Messenger for Desktop.lnk . (...) C:\Program Files (x86)\Messenger for Desktop\Uninstall Messenger for Desktop.exe
O4 - GS\Accessories [Public]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Accessories [Public]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) C:\Windows\system32\notepad.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Math Input Panel.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\mip.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.) C:\Windows\system32\mspaint.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Quick Assist.lnk . (.Microsoft Corporation - Quick Assist.) C:\Windows\system32\quickassist.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Connexion Bureau à distance.) C:\Windows\system32\mstsc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - Outil Capture d’écran.) C:\Windows\system32\SnippingTool.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Steps Recorder.lnk . (.Microsoft Corporation - Enregistreur d’actions.) C:\Windows\system32\psr.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Fax and Scan.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Application Windows Wordpad.) C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: XPS Viewer.lnk . (.Microsoft Corporation - Visionneuse XPS.) C:\Windows\system32\xpsrchvw.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Table des caractères.) C:\Windows\system32\charmap.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Access 2016.lnk . (...) C:\WINDOWS\Installer\{90160000-0011-0000-1000-0000000FF1CE}\accicons.exe =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: Adobe Application Manager.lnk . (...) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\core\PDapp.exe --appletID=CCM_UI --appletVersion=1.0 --workflow=CCM_workflow_launch
O4 - GS\ProgramsCommon [Public]: Adobe Dreamweaver CC.lnk . (.Adobe Systems, Inc. - Adobe Dreamweaver CC.) C:\Program Files (x86)\Adobe\Adobe Dreamweaver CC\Dreamweaver.exe =>.Adobe Systems Incorporated®
O4 - GS\ProgramsCommon [Public]: Assistant Mise à niveau de Windows 10.lnk . (.Microsoft Corporation - Assistant Mise à jour de Windows 10.) C:\Windows10Upgrade\Windows10UpgraderApp.exe =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: DTS Audio Control.lnk . (.Microsoft Corporation - Processus hôte Windows (Rundll32).) C:\Windows\System32\rundll32.exe shell32.dll,Control_RunDLL RTSnMg64.cpl,, =>..Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Enregistrement OCR I.R.I.S..lnk . (.I.R.I.S. Image Recognition Integarted Systems - Registration Wizard.) C:\Program Files (x86)\HP\IrisOCR_12.3.4.0\regipe.exe =>.IMAGE RECOGNITION INTEGRATED SYSTEMS SA®
O4 - GS\ProgramsCommon [Public]: Excel 2016.lnk . (...) C:\WINDOWS\Installer\{90160000-0011-0000-1000-0000000FF1CE}\xlicons.exe =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\ProgramsCommon [Public]: Immersive Control Panel.lnk . (.Microsoft Corporation - Windows Control Panel.) C:\Windows\System32\Control.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Intel(R) HD Graphics Control Panel.lnk . (.Intel Corporation - GFXUIEX Module.) C:\WINDOWS\system32\GfxUIEx.exe =>.Intel Corporation
O4 - GS\ProgramsCommon [Public]: MiracastView.lnk . (.Microsoft Corporation - MiracastView.) C:\Windows\MiracastView\MiracastView.exe =>.Microsoft Windows®
O4 - GS\ProgramsCommon [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\ProgramsCommon [Public]: Nitro Pro 10.lnk . (.Nitro PDF - .) C:\Program Files (x86)\Nitro\Pro 10\NitroPDF.exe =>.Nitro PDF
O4 - GS\ProgramsCommon [Public]: OneDrive Entreprise.lnk . (...) C:\WINDOWS\Installer\{90160000-0011-0000-1000-0000000FF1CE}\grv_icons.exe =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: OneNote 2016.lnk . (...) C:\WINDOWS\Installer\{90160000-0011-0000-1000-0000000FF1CE}\joticon.exe =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: Outlook 2016.lnk . (...) C:\WINDOWS\Installer\{90160000-0011-0000-1000-0000000FF1CE}\outicon.exe =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: PowerPoint 2016.lnk . (...) C:\WINDOWS\Installer\{90160000-0011-0000-1000-0000000FF1CE}\pptico.exe =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: PrintDialog.lnk . (.Microsoft Corporation - Print Dialog.) C:\Windows\PrintDialog\PrintDialog.exe =>.Microsoft Windows®
O4 - GS\ProgramsCommon [Public]: Publisher 2016.lnk . (...) C:\WINDOWS\Installer\{90160000-0011-0000-1000-0000000FF1CE}\pubs.exe =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: Skype Entreprise 2016.lnk . (...) C:\WINDOWS\Installer\{90160000-0011-0000-1000-0000000FF1CE}\lyncicon.exe =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: Sublime Text 3.lnk . (.Copyright (C) 2006 - 2016 Sublime HQ Pty Ltd - Sublime Text.) C:\Program Files\Sublime Text 3\sublime_text.exe =>.Sublime HQ Pty Ltd®
O4 - GS\ProgramsCommon [Public]: True Key.lnk . (...) C:\Program Files\Intel Security\True Key\Application\truekey.exe --open-source=startmenu =>.McAfee, Inc.®
O4 - GS\ProgramsCommon [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Word 2016.lnk . (...) C:\WINDOWS\Installer\{90160000-0011-0000-1000-0000000FF1CE}\wordicon.exe =>.Microsoft Corporation®
---\\ Modification Domaine/Adresses DNS (7) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = portdedouala.lan =>.Local Domain
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpDomain = portdedouala.lan =>.Local Domain
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 194.194.1.2 192.168.20.150 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{6fa96e37-86a5-4d12-92ea-34505b7285a0}: DhcpNameServer = 192.168.42.129 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{942905e8-b196-46fd-8774-2f72973ad90e}: DhcpNameServer = 194.194.1.2 192.168.20.150 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{dce7f7f0-d520-4177-bdd6-2dccc73654c7}: DhcpNameServer = 192.168.43.1 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{942905e8-b196-46fd-8774-2f72973ad90e}: DhcpDomain = portdedouala.lan =>.Local Domain
---\\ Protocole additionnel (25) - 2s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\SysWOW64\itss.dll =>.Microsoft Corporation
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\SysWOW64\inetcomm.dll =>.Microsoft Corporation
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\SysWOW64\itss.dll =>.Microsoft Corporation
O18 - Handler: mso-minsb.16 [64Bits] - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} . (.Microsoft Corporation - Microsoft Office 2016 component.) -- C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL =>.Microsoft Corporation®
O18 - Handler: osf.16 [64Bits] - {5504BE45-A83B-4808-900A-3A5C36E7F77A} . (.Microsoft Corporation - Microsoft Office 2016 component.) -- C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL =>.Microsoft Corporation®
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\SysWOW64\tbauth.dll =>.Microsoft Corporation
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: windows.tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\SysWOW64\tbauth.dll =>.Microsoft Corporation
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll =>.Microsoft Corporation
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll =>.Microsoft Corporation
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll =>.Microsoft Corporation
O18 - Filter: text/xml [64Bits] - {807583E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE16\MSOXMLMF.DLL =>.Microsoft Corporation®
---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (1) - 0s
O20 - AppInit_DLLs: . (...) - C:\ProgramData\xifs\Dingjob.dll (.not file.)
---\\ Logiciels installés (142) - 76s
O42 - Logiciel: 64 Bit HP CIO Components Installer - (.Hewlett-Packard.) [HKLM][64Bits] -- {3138F992-045B-4F55-825C-53B231E647CA} =>.Hewlett-Packard
O42 - Logiciel: AAA Logo 2014 v4.11 FULL - (.SWGSoft.) [HKLM][64Bits] -- AAA Logo 2014_is1 =>.SWGSoft
O42 - Logiciel: Adobe Dreamweaver CC - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {00E094E1-A852-11E2-803D-ACEA632352B4} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Flash Player 27 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI =>.Adobe Systems Incorporated®
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {07287123-B8AC-41CE-8346-3D777245C35B} =>.Apple Inc.
O42 - Logiciel: CloudNet - (.EpicNet Inc..) [HKCU][64Bits] -- CloudNet =>Adware.MSIL
O42 - Logiciel: ContentPush - (..) [HKLM][64Bits] -- ContentPush
O42 - Logiciel: CVitae 5 - (.Semantis.) [HKLM][64Bits] -- {5988C473-7D71-4B59-857B-8DA5C701FBFF} =>.Semantis
O42 - Logiciel: Dashlane - (.Dashlane, Inc..) [HKCU][64Bits] -- Dashlane =>.Dashlane, Inc.
O42 - Logiciel: Driver Fixer - (.Baisvik.) [HKLM][64Bits] -- {4F679D8F-2F0A-46EE-BB8C-903E217CEC9E}
O42 - Logiciel: DriverPack Notifier - (.DriverPack Solution.) [HKLM][64Bits] -- DriverPack Notifier =>.DriverPack Solution
O42 - Logiciel: FastDataX 1.20 - (..) [HKLM][64Bits] -- FastDataX_is1 =>Adware.FastDataX
O42 - Logiciel: FileZilla Client 3.25.1 - (.Tim Kosse.) [HKLM][64Bits] -- FileZilla Client =>.Tim Kosse
O42 - Logiciel: FlashBoot 2.2e - (.Mikhail Kupchik.) [HKLM][64Bits] -- FlashBoot_is1 =>.Mikhail Kupchik
O42 - Logiciel: FormatFactory 4.1.0.0 - (.Free Time.) [HKLM][64Bits] -- FormatFactory =>.Free Time
O42 - Logiciel: Free Download Manager - (.FreeDownloadManager.ORG.) [HKLM][64Bits] -- {43781dff-e0df-49ce-a6d2-47da96a485e7}}_is1 =>.FreeDownloadManager.org
O42 - Logiciel: GanttProject - (..) [HKLM][64Bits] -- GanttProject
O42 - Logiciel: GESCMS - (.PC SOFT.) [HKLM][64Bits] -- GESCMS =>.PC SOFT
O42 - Logiciel: GlassFish Server Open Source Edition 4.1 - (.Sun Microsystems.) [HKLM][64Bits] -- nbi-glassfish-mod-4.1.0.13.0 =>.Sun Microsystems
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome =>.Google Inc®
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} =>.Google Inc.
O42 - Logiciel: gupdate 2.00 - (.xtex.) [HKLM][64Bits] -- gupdate 2.00 =>Adware.GUpdate
O42 - Logiciel: Hi uninstall - (.Hi-Rez studios Games.) [HKLM][64Bits] -- Hiru
O42 - Logiciel: HP 3D DriveGuard - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {E8D0E2B8-B64B-44BC-8E01-00DDACBDF78A} =>.Hewlett-Packard Company
O42 - Logiciel: HP Customer Experience Enhancements - (.Hewlett-Packard.) [HKLM][64Bits] -- {0CC8AE1D-F5AA-4143-8FAD-E017E0E9EE70} =>.Hewlett-Packard
O42 - Logiciel: HP PC Hardware Diagnostics UEFI - (..) [HKLM][64Bits] -- {924D3ABC-FC75-4042-9DDB-FB846A45848D}
O42 - Logiciel: HP Support Assistant - (.HP.) [HKLM][64Bits] -- {78E2C850-ADA6-420D-BA35-2F4A9BE733CC} =>.HP
O42 - Logiciel: HP Support Solutions Framework - (.HP.) [HKLM][64Bits] -- {EB72DB50-C935-4C26-8349-69828F198902} =>.HP
O42 - Logiciel: HP System Event Utility - (.HP Inc..) [HKLM][64Bits] -- {29E20347-C62F-4657-938E-876A182B67F1} =>.HP Inc.
O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM][64Bits] -- {912D30CF-F39E-4B31-AD9A-123C6B794EE2} =>.Hewlett-Packard
O42 - Logiciel: I.R.I.S. OCR - (.HP.) [HKLM][64Bits] -- {CA6BCA2F-EDEB-408F-850B-31404BE16A61} =>.HP
O42 - Logiciel: Intel Security True Key - (.Intel Security.) [HKLM][64Bits] -- TrueKey =>.McAfee, Inc.®
O42 - Logiciel: Intel(R) Biometric and Context Agent - (.Intel Corporation.) [HKLM][64Bits] -- {526002E5-7D5B-4703-A4E3-BA566AED5D8A} =>.Intel Corporation
O42 - Logiciel: Intel(R) Biometric and Context Agent Redistributables - (.Intel Corporation.) [HKLM][64Bits] -- {E6D505B9-1A18-4F67-9BE0-D37B5164D581} =>.Intel Corporation
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA} =>.Intel Corporation - pGFX®
O42 - Logiciel: Intel® RealSense™ SDK 2014 Runtime (x64): Core - (.Intel Corporation.) [HKLM][64Bits] -- {37D41A97-6B02-4C30-8753-85107BE1D674} =>.Intel Corporation
O42 - Logiciel: Internet Download Manager - (.Tonec Inc..) [HKLM][64Bits] -- Internet Download Manager =>.Tonec Inc.®
O42 - Logiciel: Jargon Informatique - (.tuxfamily.org.) [HKLM][64Bits] -- Jargon Informatique
O42 - Logiciel: Java 8 Update 141 (64-bit) - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F64180141F0} =>.Oracle Corporation
O42 - Logiciel: Java 8 Update 144 - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F32180144F0} =>.Oracle Corporation
O42 - Logiciel: Java 8 Update 144 (64-bit) - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F64180144F0} =>.Oracle Corporation
O42 - Logiciel: Java Auto Updater - (.Oracle Corporation.) [HKLM][64Bits] -- {4A03706F-666A-4037-7777-5F2748764D10} =>.Oracle Corporation
O42 - Logiciel: Java SE Development Kit 7 Update 45 - (.Oracle.) [HKLM][64Bits] -- {32A3A4F4-B792-11D6-A78A-00B0D0170450} =>.Oracle
O42 - Logiciel: Java SE Development Kit 8 Update 141 (64-bit) - (.Oracle Corporation.) [HKLM][64Bits] -- {64A3A4F4-B792-11D6-A78A-00B0D0180141} =>.Oracle Corporation
O42 - Logiciel: Java SE Development Kit 8 Update 144 (64-bit) - (.Oracle Corporation.) [HKLM][64Bits] -- {64A3A4F4-B792-11D6-A78A-00B0D0180144} =>.Oracle Corporation
O42 - Logiciel: Java SE Development Kit 8 Update 45 (64-bit) - (.Oracle Corporation.) [HKLM][64Bits] -- {64A3A4F4-B792-11D6-A78A-00B0D0180450} =>.Oracle Corporation
O42 - Logiciel: Java SE Development Kit 8 Update 73 (64-bit) - (.Oracle Corporation.) [HKLM][64Bits] -- {64A3A4F4-B792-11D6-A78A-00B0D0180730} =>.Oracle Corporation
O42 - Logiciel: K-Lite Codec Pack 13.4.5 Full - (.KLCP.) [HKLM][64Bits] -- KLiteCodecPack_is1 =>.KLCP
O42 - Logiciel: KMSpico - (..) [HKLM][64Bits] -- {8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1 =>HackTool.KMSpico
O42 - Logiciel: Macromedia Extension Manager - (.Macromedia.) [HKLM][64Bits] -- {3C8C9FB3-5FDF-40B4-B314-EAD722728C76} =>.Macromedia
O42 - Logiciel: Micro Application - 38 Dictionnaires et Recueils de Correspondance - (.Micro Application.) [HKLM][64Bits] -- {B410328C-0E8C-4DD2-9DB4-DE7766D0DFE0} =>.Micro Application
O42 - Logiciel: Microsoft Access MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-0015-040C-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft DCF MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-0090-040C-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Excel MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-0016-040C-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Games for Windows - LIVE Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {F2508213-9989-4E85-A078-72BE483917EF} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Games for Windows Marketplace - (.Microsoft Corporation.) [HKLM][64Bits] -- {4CB0307C-565E-4441-86BE-0DF2E4FB828C} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Groove MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-00BA-040C-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft InfoPath MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-0044-040C-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft OneDrive - (.Microsoft Corporation.) [HKCU][64Bits] -- OneDriveSetup.exe =>.Microsoft Corporation®
O42 - Logiciel: Microsoft OneNote MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-00A1-040C-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Outlook MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-001A-040C-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft PowerPoint MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-0018-040C-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Publisher MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-0019-040C-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Skype for Business MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-012B-040C-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Word MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-001B-040C-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Mobile Broadband HL Service - (.Huawei Technologies Co.,Ltd.) [HKLM][64Bits] -- Mobile Broadband HL Service =>.Huawei Technologies Co., Ltd.®
O42 - Logiciel: Mozilla Firefox 55.0.3 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 55.0.3 (x86 fr) =>.Mozilla Corporation®
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService =>.Mozilla
O42 - Logiciel: MSVCRT Redists - (.Sony Creative Software Inc..) [HKLM][64Bits] -- {D4BD27CF-BFBC-11E3-9B8F-F04DA23A5C58} =>.Sony Creative Software Inc.
O42 - Logiciel: Music Recorder - (.Nero AG.) [HKLM][64Bits] -- {94A4AE85-9F1D-4687-953F-38371C9D1A4F} =>.Nero AG
O42 - Logiciel: My Web Shield - (.My Web Shield.) [HKLM][64Bits] -- mweshield {39D3FCDE4532A63BD298039D0555D0C2} =>PUP.Optional.WebShield
O42 - Logiciel: Nero 2017 - (.Nero AG.) [HKLM][64Bits] -- {6B81BDC4-3368-4898-8F16-48962F789221} =>.Nero AG
O42 - Logiciel: Nero 2017 Content Pack - (.Nero AG.) [HKLM][64Bits] -- {4E6D3A36-4558-466D-83CC-AE2DCAC06C53} =>.Nero AG
O42 - Logiciel: Nero Abstract Themes - (.Nero AG.) [HKLM][64Bits] -- {150D88F1-40AF-4678-A39D-BCE2332F34E5} =>.Nero AG
O42 - Logiciel: Nero Burning Core - (.Nero AG.) [HKLM][64Bits] -- {6DAEECA5-8208-47DA-82AA-6B653EC31B97} =>.Nero AG
O42 - Logiciel: Nero Burning ROM - (.Nero AG.) [HKLM][64Bits] -- {A4BF6CA6-18AB-4C1A-8E2E-FB9485149DC9} =>.Nero AG
O42 - Logiciel: Nero Cliparts - (.Nero AG.) [HKLM][64Bits] -- {29E2C1C6-D76A-41D3-980F-6E346AA9A6A8} =>.Nero AG
O42 - Logiciel: Nero ControlCenter - (.Nero AG.) [HKLM][64Bits] -- {ABC88553-8770-4B97-B43E-5A90647A5B63} =>.Nero AG
O42 - Logiciel: Nero Core Components - (.Nero AG.) [HKLM][64Bits] -- {BEBEE34D-84A2-4EDD-8BEA-96CC54371263} =>.Nero AG
O42 - Logiciel: Nero CoverDesigner - (.Nero AG.) [HKLM][64Bits] -- {D8CCA6A9-E0CA-4589-BA17-54C909B1C8B5} =>.Nero AG
O42 - Logiciel: Nero Device Updates - (.Nero AG.) [HKLM][64Bits] -- {521087D5-A9CC-4434-9206-FA011ABBDCF3} =>.Nero AG
O42 - Logiciel: Nero Disc Menus 1 - (.Nero AG.) [HKLM][64Bits] -- {EEBF1676-AF87-4266-93D8-0C14A34C4217} =>.Nero AG
O42 - Logiciel: Nero Disc Menus 2 - (.Nero AG.) [HKLM][64Bits] -- {FE81E6B5-652B-40E7-B3B2-7171C6F297DA} =>.Nero AG
O42 - Logiciel: Nero Disc Menus 3 - (.Nero AG.) [HKLM][64Bits] -- {CE675FBD-75C3-45F1-B6AF-8D250861D536} =>.Nero AG
O42 - Logiciel: Nero Disc Menus Basic - (.Nero AG.) [HKLM][64Bits] -- {E17BCB76-9924-4BD5-B6D6-50D3407B4E74} =>.Nero AG
O42 - Logiciel: Nero Disc to Device - (.Nero AG.) [HKLM][64Bits] -- {6E6D453B-AADE-4F14-97F6-9B464488BC53} =>.Nero AG
O42 - Logiciel: Nero Effects Basic - (.Nero AG.) [HKLM][64Bits] -- {29F67D84-3A70-456E-806A-52301B02070B} =>.Nero AG
O42 - Logiciel: Nero Express - (.Nero AG.) [HKLM][64Bits] -- {991572A1-F8B9-42E5-B485-A79724558A84} =>.Nero AG
O42 - Logiciel: Nero Family and Events Themes - (.Nero AG.) [HKLM][64Bits] -- {955BF340-C379-4375-AA2F-F3BCB2A498AB} =>.Nero AG
O42 - Logiciel: Nero Football (Soccer) Themes - (.Nero AG.) [HKLM][64Bits] -- {7BD7A4BF-EA64-4BFE-A9D3-3FDC9B6EFC23} =>.Nero AG
O42 - Logiciel: Nero Holiday and Sports Themes - (.Nero AG.) [HKLM][64Bits] -- {504D84ED-AE75-4F85-A68B-BB3D4CB3E169} =>.Nero AG
O42 - Logiciel: Nero Image Samples - (.Nero AG.) [HKLM][64Bits] -- {C4C6DF25-0E59-46EE-B24B-DF8749D8FF3A} =>.Nero AG
O42 - Logiciel: Nero Info - (.Nero AG.) [HKLM][64Bits] -- {F030BFE8-8476-4C08-A553-233DE80A2BE1} =>.Nero AG
O42 - Logiciel: Nero Kwik Themes Basic - (.Nero AG.) [HKLM][64Bits] -- {1B6F5E51-575E-4693-BCA2-7543570D076D} =>.Nero AG
O42 - Logiciel: Nero Launcher - (.Nero AG.) [HKLM][64Bits] -- {21916D21-F3DD-44F9-952B-FD122CBD1526} =>.Nero AG
O42 - Logiciel: Nero MediaHome - (.Nero AG.) [HKLM][64Bits] -- {DF4748D8-2FC2-4D51-87D0-95A81CCA962B} =>.Nero AG
O42 - Logiciel: Nero PiP Effects 1 - (.Nero AG.) [HKLM][64Bits] -- {4D25D881-7183-462F-95C8-990CA1944E0B} =>.Nero AG
O42 - Logiciel: Nero PiP Effects Basic - (.Nero AG.) [HKLM][64Bits] -- {ACE49D50-19CD-44A6-B192-46F985283B26} =>.Nero AG
O42 - Logiciel: Nero Platinum Effects 12 - (.Nero AG.) [HKLM][64Bits] -- {8B5AD338-7ABC-4ECB-9C2C-687F84AEDDB1} =>.Nero AG
O42 - Logiciel: Nero Recode - (.Nero AG.) [HKLM][64Bits] -- {47C00502-CFAC-42D3-8019-D9C557AD49AD} =>.Nero AG
O42 - Logiciel: Nero RescueAgent - (.Nero AG.) [HKLM][64Bits] -- {D740FC18-FAB2-4DE1-A9F5-E7B81A578CCF} =>.Nero AG
O42 - Logiciel: Nero Retro Film Themes - (.Nero AG.) [HKLM][64Bits] -- {83A4E573-E2C2-46FB-9DA6-6A2BBBF5A588} =>.Nero AG
O42 - Logiciel: Nero SharedVideoCodecs - (.Nero AG.) [HKLM][64Bits] -- {2432E589-6256-4513-B0BF-EFA8E325D5F0} =>.Nero AG
O42 - Logiciel: Nero Update - (.Nero AG.) [HKLM][64Bits] -- {65BB0407-4CC8-4DC7-952E-3EEFDF05602A} =>.Nero AG
O42 - Logiciel: Nero Video - (.Nero AG.) [HKLM][64Bits] -- {EBFB4FEE-C2EB-4EE3-A832-DB850DE54F78} =>.Nero AG
O42 - Logiciel: Nero Video Samples - (.Nero AG.) [HKLM][64Bits] -- {05C6B128-1B40-4495-9CB9-090B368BFA0A} =>.Nero AG
O42 - Logiciel: Nero Video Transitions 1 - (.Nero AG.) [HKLM][64Bits] -- {22856BC3-F893-4CBF-95F2-E1F63CD2B1AB} =>.Nero AG
O42 - Logiciel: NetBeans IDE 8.0.2 - (.NetBeans.org.) [HKLM][64Bits] -- nbi-nb-base-8.0.2.0.201411181905 =>.NetBeans.org
O42 - Logiciel: NewBlue Video Essentials VI for Windows - (.NewBlue.) [HKLM][64Bits] -- NewBlue Video Essentials VI for Windows =>.NewBlue
O42 - Logiciel: Nitro Pro 10 - (.Nitro.) [HKLM][64Bits] -- {C78478E6-8206-470E-B843-0204995371C6} =>.Nitro
O42 - Logiciel: NoterSave version 1.0 - (.WeMonetize.) [HKLM][64Bits] -- NoterSave_is1 =>.SUP.Tuto4PC
O42 - Logiciel: Oracle Database 11g Express Edition - (.Oracle Corporation.) [HKLM][64Bits] -- {05A7B662-80A3-4EB9-AE1D-89A62449431C} =>.Oracle Corporation
O42 - Logiciel: Oracle Database 11g Express Edition - (.Oracle Corporation.) [HKLM][64Bits] -- InstallShield_{05A7B662-80A3-4EB9-AE1D-89A62449431C} =>.Oracle Corporation
O42 - Logiciel: Package de pilotes Windows - Google, Inc. (WinUSB) AndroidUsbDeviceClass ( - (.Google, Inc..) [HKLM][64Bits] -- 092555911492C6959D2596D612F52DCA71881CA2 =>.Google, Inc.
O42 - Logiciel: PowerISO - (.Power Software Ltd.) [HKLM][64Bits] -- PowerISO =>.Power Software Ltd
O42 - Logiciel: Prerequisite installer - (.Nero AG.) [HKLM][64Bits] -- {EB511CD1-C87C-490D-A7B1-D6C47F57820F} =>.Nero AG
O42 - Logiciel: Progr. désin. pilote d'impr. UFR II - (.Canon Inc..) [HKLM][64Bits] -- Canon UFR II Printer Driver =>.CANON INC.®
O42 - Logiciel: RealDownloader - (.RealNetworks, Inc..) [HKLM][64Bits] -- {410F406E-7AFC-4E9F-BF7E-0CB3C72BDAB9} =>.RealNetworks, Inc.
O42 - Logiciel: Realtek Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {5BC2B5AB-80DE-4E83-B8CF-426902051D0A} =>.Realtek Semiconductor Corp.®
O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476} =>.Realtek Semiconductor Corp®
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} =>.Realtek Semiconductor Corp.®
O42 - Logiciel: Reload Icons Cache 1.00 - (.Mr Blade Design's.) [HKLM][64Bits] -- Reload Icons Cache 1.00 =>.Mr Blade Design's
O42 - Logiciel: Samsung USB Driver for Mobile Phones - (.Samsung Electronics Co., Ltd..) [HKLM][64Bits] -- {D0795B21-0CDA-4a92-AB9E-6E92D8111E44} =>.Samsung Electronics CO., LTD.®
O42 - Logiciel: Security Update for Skype for Business 2016 (KB3115408) 64-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-00C1-0000-1000-0000000FF1CE}_Office16.PROPLUS_{C5C666D0-D5BD-4FE8-BE51-938926DC58E1} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Skype for Business 2016 (KB4011040) 64-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0011-0000-1000-0000000FF1CE}_Office16.PROPLUS_{D57DBD71-B426-45C4-9B1D-6347DE27B73D} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Skype for Business 2016 (KB4011040) 64-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-012B-040C-1000-0000000FF1CE}_Office16.PROPLUS_{D57DBD71-B426-45C4-9B1D-6347DE27B73D} =>.Microsoft Corporation®
O42 - Logiciel: Sublime Text Build 3065 - (.Sublime HQ Pty Ltd.) [HKLM][64Bits] -- Sublime Text 3_is1 =>.Sublime HQ Pty Ltd®
O42 - Logiciel: SWI-Prolog (remove only) - (..) [HKLM][64Bits] -- SWI-Prolog
O42 - Logiciel: Sybase PowerAMC 15.1 - (.Sybase Inc..) [HKLM][64Bits] -- {48B0BE4A-EDC9-44C4-A3DB-67D62D75961F} =>.Macrovision Corporation®
O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM][64Bits] -- SynTPDeinstKey =>.Synaptics Incorporated®
O42 - Logiciel: UmmyVideoDownloader - (..) [HKLM][64Bits] -- {E028DBDA-EEE7-48A0-ADF7-D250589A02C5}_is1
O42 - Logiciel: USB Disk Security - (.Zbshareware Lab.) [HKLM][64Bits] -- USB Disk Security_is1 =>.Zbshareware Lab
O42 - Logiciel: UxStyle - (.The Within Network, LLC.) [HKLM][64Bits] -- {28A17CCB-77BB-49C9-847B-60E076DC43D1} =>.The Within Network, LLC
O42 - Logiciel: UxStyle - (.The Within Network, LLC.) [HKLM][64Bits] -- {6bf90d91-c5db-454e-a7b4-81bc6cbbe13f} =>.The Within Network, LLC®
O42 - Logiciel: VirtualDJ 8 - (.Atomix Productions.) [HKLM][64Bits] -- {F7A68F9D-BBF0-48FF-B138-2EFB5165638C} =>.Atomix Productions
O42 - Logiciel: vs2015_redist x64 - (.Realnetworks.) [HKLM][64Bits] -- {EAED8692-5B63-4665-B857-D626633691DA} =>.RealNetworks
O42 - Logiciel: vs2015_redist x86 - (.Realnetworks.) [HKLM][64Bits] -- {BD46163A-0331-4A61-B65A-7B66D7C93F8E} =>.RealNetworks
O42 - Logiciel: WhatsApp - (.WhatsApp.) [HKCU][64Bits] -- WhatsApp =>.WhatsApp, Inc.®
O42 - Logiciel: WinRAR 5.20 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver =>.win.rar GmbH®
O42 - Logiciel: Yubby - (.CRM Ltd.) [HKLM][64Bits] -- {D105DFE2-8DF6-4BA0-ABF1-392716658963}
O42 - Logiciel: ZDServer - (.ZTE Corporation.) [HKLM][64Bits] -- {C8197F5F-E0DC-44f1-8AF2-1AA5A84F695D} =>.ZTE CORPORATION®
O42 - Logiciel: ZTE Mobile Broadband Device Drivers 1.0.0.17 - (.ZTE.) [HKLM][64Bits] -- {9194B665-5134-4B6B-AD73-A5292CB072D3}_is1 =>.ZTE
---\\ HKCU & HKLM Software Keys (229) - 76s
HKLM\SOFTWARE\Wow6432Node\89078A9FA5262B8AF87E572E4F3BA9D1 =>Adware.CrossRider
HKLM\SOFTWARE\Wow6432Node\Apache Software Foundation =>.Apache Inc.
HKLM\SOFTWARE\Wow6432Node\Apple Computer, Inc. =>.Apple Computer, Inc.
HKLM\SOFTWARE\Wow6432Node\Apple Inc. =>.Apple Inc.
HKLM\SOFTWARE\Wow6432Node\Atonitherlibution
HKLM\SOFTWARE\Wow6432Node\Baidu =>.Baidu
HKLM\SOFTWARE\Wow6432Node\BaisvikSoftware
HKLM\SOFTWARE\Wow6432Node\BSD =>.Berkeley
HKLM\SOFTWARE\Wow6432Node\C+W_Mini
HKLM\SOFTWARE\Wow6432Node\CDDB =>.Cddb Software
HKLM\SOFTWARE\Wow6432Node\Connectify =>.Connectify
HKLM\SOFTWARE\Wow6432Node\Cygnus Solutions =>.Cygnus Solutions
HKLM\SOFTWARE\Wow6432Node\Disk Doctor Labs Inc.
HKLM\SOFTWARE\Wow6432Node\drpsu =>.Driver PackSolution
HKLM\SOFTWARE\Wow6432Node\DT Soft =>.DT Soft Ltd
HKLM\SOFTWARE\Wow6432Node\EA Games =>.EA Games
HKLM\SOFTWARE\Wow6432Node\EASEUS =>.EaseUS Software
HKLM\SOFTWARE\Wow6432Node\FileZilla 3 =>.FileZilla
HKLM\SOFTWARE\Wow6432Node\FileZilla Client =>.Tim Kosse
HKLM\SOFTWARE\Wow6432Node\FreeDownloadManager.ORG =>.FreeDownloadManager.org
HKLM\SOFTWARE\Wow6432Node\GanttProject
HKLM\SOFTWARE\Wow6432Node\Google =>.Google
HKLM\SOFTWARE\Wow6432Node\Hewlett-Packard =>.Hewlett-Packard
HKLM\SOFTWARE\Wow6432Node\Huawei technologies =>.Huawei Technologies
HKLM\SOFTWARE\Wow6432Node\Icaros =>.Icaros
HKLM\SOFTWARE\Wow6432Node\InstallShield =>.InstallShield
HKLM\SOFTWARE\Wow6432Node\Intel =>.Intel
HKLM\SOFTWARE\Wow6432Node\Intel Security =>.Intel Security
HKLM\SOFTWARE\Wow6432Node\Internet Download Manager =>.Tonec Inc
HKLM\SOFTWARE\Wow6432Node\IObit =>.IObit
HKLM\SOFTWARE\Wow6432Node\JavaSoft =>.JavaSoft
HKLM\SOFTWARE\Wow6432Node\jawego =>.SUP.JawegoPartners
HKLM\SOFTWARE\Wow6432Node\JetBrains =>.JetBrains
HKLM\SOFTWARE\Wow6432Node\jhdbca
HKLM\SOFTWARE\Wow6432Node\JreMetrics =>.JreMetrics
HKLM\SOFTWARE\Wow6432Node\Khronos =>.Khronos
HKLM\SOFTWARE\Wow6432Node\KLCodecPack =>.KLite Inc
HKLM\SOFTWARE\Wow6432Node\Komeent
HKLM\SOFTWARE\Wow6432Node\LAV =>.LAV Inc
HKLM\SOFTWARE\Wow6432Node\Lavasoft =>.Lavasoft
HKLM\SOFTWARE\Wow6432Node\LAventure =>.L'Aventure
HKLM\SOFTWARE\Wow6432Node\Licenses =>.Microsoft Corporation
HKLM\SOFTWARE\Wow6432Node\LogMeInRescueCallingCard =>.LogMeIn Entreprise
HKLM\SOFTWARE\Wow6432Node\Macromedia =>.Macromedia
HKLM\SOFTWARE\Wow6432Node\McAfee =>.McAfee Inc.
HKLM\SOFTWARE\Wow6432Node\McAfee.com =>.McAfee Inc.
HKLM\SOFTWARE\Wow6432Node\Micro Application =>.Micro Application
HKLM\SOFTWARE\Wow6432Node\Mozilla =>.Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org =>.mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins =>.MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\mtAirtostrong =>PUP.Optional.Salus
HKLM\SOFTWARE\Wow6432Node\mtocep
HKLM\SOFTWARE\Wow6432Node\mtRonzap =>PUP.Optional.Salus
HKLM\SOFTWARE\Wow6432Node\mtxifs
HKLM\SOFTWARE\Wow6432Node\MySQL AB =>.MySQL AB
HKLM\SOFTWARE\Wow6432Node\Namco
HKLM\SOFTWARE\Wow6432Node\Nero =>.Ahead Corporation
HKLM\SOFTWARE\Wow6432Node\NewBlue =>.NewBlue
HKLM\SOFTWARE\Wow6432Node\Nuance =>.Nuance
HKLM\SOFTWARE\Wow6432Node\ODBC =>.DB Connectivity Solutions
HKLM\SOFTWARE\Wow6432Node\OpenVPN-GUI =>.OpenVPN Technologie
HKLM\SOFTWARE\Wow6432Node\ORACLE =>.Oracle
HKLM\SOFTWARE\Wow6432Node\PostgreSQL =>.PostgreSQL
HKLM\SOFTWARE\Wow6432Node\PostgreSQL Global Development Group =>.PostgreSQL Global Development Group
HKLM\SOFTWARE\Wow6432Node\PowerISO =>.PowerISO Computing
HKLM\SOFTWARE\Wow6432Node\PowerPivot =>.PowerPivot
HKLM\SOFTWARE\Wow6432Node\PowerTechnology =>.PowerTechnology
HKLM\SOFTWARE\Wow6432Node\Razer =>.Razer
HKLM\SOFTWARE\Wow6432Node\RealNetworks =>.RealNetworks
HKLM\SOFTWARE\Wow6432Node\Realtek =>.Realtek Semiconductor Corp.
HKLM\SOFTWARE\Wow6432Node\Realtek Semiconductor Corp. =>.Realtek Semiconductor Corp.
HKLM\SOFTWARE\Wow6432Node\Rene.E Laboratory =>.Rene.E Laboratory
HKLM\SOFTWARE\Wow6432Node\Rtp =>.RTP Software
HKLM\SOFTWARE\Wow6432Node\Samsung =>.Samsung Electronics
HKLM\SOFTWARE\Wow6432Node\Skype =>.Skype
HKLM\SOFTWARE\Wow6432Node\Sony Creative Software =>.Sony Creative Software
HKLM\SOFTWARE\Wow6432Node\SOSVirus =>.SosVirus
HKLM\SOFTWARE\Wow6432Node\Speedownloader0099 =>PUP.Optional.SoftwareEngine
HKLM\SOFTWARE\Wow6432Node\SuperBoost =>.QiWang
HKLM\SOFTWARE\Wow6432Node\SWI
HKLM\SOFTWARE\Wow6432Node\Sybase
HKLM\SOFTWARE\Wow6432Node\Symantec =>.Symantec
HKLM\SOFTWARE\Wow6432Node\Tencent =>.SUP.Tencent
HKLM\SOFTWARE\Wow6432Node\ThinPrint =>.ThinPrint
HKLM\SOFTWARE\Wow6432Node\trotuxSoftware =>.SUP.Trotux
HKLM\SOFTWARE\Wow6432Node\TrueKey =>.Intel Corporation
HKLM\SOFTWARE\Wow6432Node\VirtualDJ =>.Atomix Production
HKLM\SOFTWARE\Wow6432Node\VMware, Inc. =>.VMware, Inc.
HKLM\SOFTWARE\Wow6432Node\Volatile =>.Microsoft Corporation
HKLM\SOFTWARE\Wow6432Node\WafCX =>.WafCX
HKLM\SOFTWARE\Wow6432Node\WinZiper =>.SUP.WinZipper
HKLM\SOFTWARE\Wow6432Node\Wondershare =>.Wondershare
HKLM\SOFTWARE\Wow6432Node\WOW6432Node =>.Microsoft Corporation
HKLM\SOFTWARE\Wow6432Node\Xing Technology Corp. =>.Xing Technology Corp.
HKLM\SOFTWARE\Wow6432Node\XinYi Network =>.XinYi Network
HKLM\SOFTWARE\Wow6432Node\Yahoo =>.Yahoo! Inc.
HKLM\SOFTWARE\Wow6432Node\zbshareware =>.Zbshareware
HKLM\SOFTWARE\Wow6432Node\ZTE Mobile Broadband Device Drivers
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications =>.Microsoft Corporation
HKCU\SOFTWARE\2VG
HKCU\SOFTWARE\89078A9FA5262B8AF87E572E4F3BA9D1 =>Adware.CrossRider
HKCU\SOFTWARE\AAA Logo 2014
HKCU\SOFTWARE\AAA_LOGO =>.SWGSoft
HKCU\SOFTWARE\APN PIP =>.SUP.Conduit
HKCU\SOFTWARE\Apowersoft =>.Apowersoft
HKCU\SOFTWARE\AppDataLow =>.Microsoft Corporation
HKCU\SOFTWARE\Baidu =>.Baidu
HKCU\SOFTWARE\BaisvikSoftware
HKCU\SOFTWARE\BSD =>.Berkeley
HKCU\SOFTWARE\BugSplat =>.Bugsplat Game
HKCU\SOFTWARE\Canon =>.Canon
HKCU\SOFTWARE\CDDB =>.Cddb Software
HKCU\SOFTWARE\Chromium =>.Chromium
HKCU\SOFTWARE\Convar =>.Legitimate
HKCU\SOFTWARE\Cygnus Solutions =>.Cygnus Solutions
HKCU\SOFTWARE\Dashlane =>.Dashlane
HKCU\SOFTWARE\Dashlane_profiles =>.Dashlane, Inc
HKCU\SOFTWARE\DirectShow =>.Microsoft Corporation
HKCU\SOFTWARE\Disc Soft =>.Disc Soft
HKCU\SOFTWARE\Disk Doctor Labs Inc.
HKCU\SOFTWARE\Disk Doctors Labs
HKCU\SOFTWARE\DownloadAstro =>.Download Astro
HKCU\SOFTWARE\DownloadManager =>.DownloadManager
HKCU\SOFTWARE\DRP
HKCU\SOFTWARE\drpsu =>.Driver PackSolution
HKCU\SOFTWARE\DT Soft =>.DT Soft Ltd
HKCU\SOFTWARE\EaseUS =>.EaseUS Software
HKCU\SOFTWARE\EffectMgr =>.Legitimate
HKCU\SOFTWARE\ej-technologies =>.ej-technologies
HKCU\SOFTWARE\EMU =>.Games Software
HKCU\SOFTWARE\EpicNet Inc. =>Adware.MSIL
HKCU\SOFTWARE\Facebook =>.Facebook
HKCU\SOFTWARE\FastDataX =>Adware.FastDataX
HKCU\SOFTWARE\FlashBoot =>.PrimeExpert Software
HKCU\SOFTWARE\FLT =>.FLT Software
HKCU\SOFTWARE\FreeDownloadManager.ORG =>.FreeDownloadManager.org
HKCU\SOFTWARE\FreeTime =>.FreeTime Inc
HKCU\SOFTWARE\Freeware =>.VirtualDub.org
HKCU\SOFTWARE\Google =>.Google
HKCU\SOFTWARE\GRETECH =>.Gretech
HKCU\SOFTWARE\Haali =>.Haali Media
HKCU\SOFTWARE\Hewlett-Packard =>.Hewlett-Packard
HKCU\SOFTWARE\HP =>.HP
HKCU\SOFTWARE\I.R.I.S. =>.I.R.I.S.
HKCU\SOFTWARE\Icaros =>.Icaros
HKCU\SOFTWARE\IM =>.Legitimate
HKCU\SOFTWARE\IM Providers =>.IM Providers
HKCU\SOFTWARE\InstallPath =>.Legitimate
HKCU\SOFTWARE\Intel =>.Intel
HKCU\SOFTWARE\Intel Security =>.Intel Security
HKCU\SOFTWARE\IObit =>.IObit
HKCU\SOFTWARE\JavaSoft =>.JavaSoft
HKCU\SOFTWARE\jawego =>.SUP.JawegoPartners
HKCU\SOFTWARE\JetBrains =>.JetBrains
HKCU\SOFTWARE\KasperskyLab =>.Kaspersky Labs
HKCU\SOFTWARE\KasperskyLabSetup =>.Kaspersky Labs
HKCU\SOFTWARE\LAventure =>.L'Aventure
HKCU\SOFTWARE\Licenses =>.Microsoft Corporation
HKCU\SOFTWARE\Macromedia =>.Macromedia
HKCU\SOFTWARE\madshi =>.madshi.net
HKCU\SOFTWARE\Magicbit =>.SUP.Magicbit
HKCU\SOFTWARE\MainConcept =>.MainConcept AG
HKCU\SOFTWARE\MainConcept (Consumer) =>.MainConcept AG
HKCU\SOFTWARE\MediaInfo =>.Jérôme Martinez
HKCU\SOFTWARE\Mine =>.Microsoft Corporation
HKCU\SOFTWARE\Mirage =>.Mirage Game
HKCU\SOFTWARE\Mobirise.com =>.Mobirise.com
HKCU\SOFTWARE\Mozilla =>.Mozilla
HKCU\SOFTWARE\MozillaPlugins =>.MozillaPlugins
HKCU\SOFTWARE\MPC-HC =>.MPC-HC Team
HKCU\SOFTWARE\mtxifs
HKCU\SOFTWARE\Nero =>.Ahead Corporation
HKCU\SOFTWARE\NeroDigital =>.Nero Digital
HKCU\SOFTWARE\Netscape =>.Netscape
HKCU\SOFTWARE\NewBlue =>.NewBlue
HKCU\SOFTWARE\NewHighTech
HKCU\SOFTWARE\Nitro =>.Nitro
HKCU\SOFTWARE\NVIDIA Corporation =>.nVidia Corporation
HKCU\SOFTWARE\ODBC =>.DB Connectivity Solutions
HKCU\SOFTWARE\pad
HKCU\SOFTWARE\PC SOFT =>.PC SOFT
HKCU\SOFTWARE\pgAdmin III
HKCU\SOFTWARE\PluginAddon =>PUP.Optional.Vonteera
HKCU\SOFTWARE\PopCap
HKCU\SOFTWARE\PowerISO =>.PowerISO Computing
HKCU\SOFTWARE\PowerTechnology =>.PowerTechnology
HKCU\SOFTWARE\Psiphon3
HKCU\SOFTWARE\QtProject =>.QtProject
HKCU\SOFTWARE\Real
HKCU\SOFTWARE\RealNetworks =>.RealNetworks
HKCU\SOFTWARE\Realtek =>.Realtek Semiconductor Corp.
HKCU\SOFTWARE\RegisteredApplications =>.Microsoft Corporation
HKCU\SOFTWARE\Rtp =>.RTP Software
HKCU\SOFTWARE\Samsung =>.Samsung Electronics
HKCU\SOFTWARE\SAP =>.SAP
HKCU\SOFTWARE\Semantis =>.Semantis
HKCU\SOFTWARE\Skype =>.Skype
HKCU\SOFTWARE\Sony Creative Software =>.Sony Creative Software
HKCU\SOFTWARE\Speedownloader0099 =>PUP.Optional.SoftwareEngine
HKCU\SOFTWARE\SpinTop
HKCU\SOFTWARE\StackDocklet
HKCU\SOFTWARE\SWI
HKCU\SOFTWARE\Sybase
HKCU\SOFTWARE\Synaptics =>.Synaptics
HKCU\SOFTWARE\SyncEngines =>.Microsoft Corporation
HKCU\SOFTWARE\Sysinternals =>.Sysinternals
HKCU\SOFTWARE\TechSmith =>.TechSmith
HKCU\SOFTWARE\Tencent =>.SUP.Tencent
HKCU\SOFTWARE\Tihiy
HKCU\SOFTWARE\Trolltech =>.Trolltech
HKCU\SOFTWARE\undefined =>.SUP.Downloader
HKCU\SOFTWARE\Valve =>.Valve
HKCU\SOFTWARE\VideoBox =>Adware.Amonetize
HKCU\SOFTWARE\VirtualDJ =>.Atomix Production
HKCU\SOFTWARE\Visan =>.Visan Software
HKCU\SOFTWARE\VMware, Inc. =>.VMware, Inc.
HKCU\SOFTWARE\WindowsUpdater
HKCU\SOFTWARE\WinRAR =>.WinRAR
HKCU\SOFTWARE\WinRAR SFX =>.RarLab
HKCU\SOFTWARE\Wondershare =>.Wondershare
HKCU\SOFTWARE\Wow6432Node =>.Microsoft Corporation
HKCU\SOFTWARE\XinYi Network =>.XinYi Network
HKCU\SOFTWARE\Yahoo =>.Yahoo! Inc.
HKCU\SOFTWARE\ZHP =>.Nicolas Coolman
HKCU\SOFTWARE\AppDataLow\Software =>.Microsoft Corporation
HKCU\SOFTWARE\AppDataLow\Yandex =>.Yandex
HKCU\SOFTWARE\AppDataLow\Software\JavaSoft =>.JavaSoft
HKCU\SOFTWARE\AppDataLow\Software\ThinPrint =>.ThinPrint
HKCU\SOFTWARE\AppDataLow\Software\Yahoo =>.Yahoo! Inc.
---\\ Contenu des dossiers Programmes (492) - 69s
O43 - CFD: 01/08/2017 - [] D -- C:\Program Files\5FGQEJF8EM
O43 - CFD: 19/05/2016 - [] D -- C:\Program Files\Add-ins
O43 - CFD: 24/05/2016 - [0] D -- C:\Program Files\Apache Software Foundation =>.Apache Inc.
O43 - CFD: 18/09/2017 - [] D -- C:\Program Files\BDSCJGDHLE =>Adware.Wizzcaster
O43 - CFD: 25/06/2016 - [] D -- C:\Program Files\BitTorrent
O43 - CFD: 30/12/2016 - [] D -- C:\Program Files\Canon =>.CANON INC.®
O43 - CFD: 03/07/2017 - [] D -- C:\Program Files\Common Files =>.Microsoft Corporation
O43 - CFD: 15/08/2017 - [] D -- C:\Program Files\Communications RND Reflector
O43 - CFD: 16/12/2016 - [] D -- C:\Program Files\DIFX =>.Microsoft Corporation
O43 - CFD: 19/05/2016 - [] D -- C:\Program Files\Documentation
O43 - CFD: 19/05/2016 - [0] D -- C:\Program Files\Données de test
O43 - CFD: 29/03/2016 - [] D -- C:\Program Files\EaseUS =>.EaseUS Software
O43 - CFD: 19/05/2016 - [] D -- C:\Program Files\Exemples
O43 - CFD: 29/03/2016 - [0] SHD -- C:\Program Files\Fichiers communs =>.Microsoft Corporation
O43 - CFD: 17/05/2016 - [] D -- C:\Program Files\Fichiers de ressources
O43 - CFD: 23/03/2017 - [] AD -- C:\Program Files\FileZilla FTP Client =>.Tim Kosse
O43 - CFD: 10/04/2017 - [] AD -- C:\Program Files\FlashBoot =>.PrimeExpert Software
O43 - CFD: 19/05/2016 - [0] D -- C:\Program Files\fr =>.Corel Corporation
O43 - CFD: 03/09/2017 - [] D -- C:\Program Files\FreeDownloadManager.ORG =>.Softdeluxe Ltd.®
O43 - CFD: 04/09/2017 - [] AD -- C:\Program Files\glassfish-4.1 =>.Sun Microsystems
O43 - CFD: 19/07/2016 - [] D -- C:\Program Files\HP =>.Hewlett-Packard
O43 - CFD: 14/08/2017 - [] D -- C:\Program Files\Hyper-V =>.Microsoft Corporation
O43 - CFD: 19/05/2016 - [0] D -- C:\Program Files\Icônes
O43 - CFD: 16/04/2017 - [] D -- C:\Program Files\Intel =>.Intel Corporation
O43 - CFD: 23/04/2016 - [] D -- C:\Program Files\Intel Security =>.Intel Corporation
O43 - CFD: 19/09/2017 - [] D -- C:\Program Files\Internet Explorer =>.Microsoft Corporation
O43 - CFD: 25/08/2017 - [] D -- C:\Program Files\Java =>.Oracle
O43 - CFD: 03/07/2017 - [] AD -- C:\Program Files\KMSpico =>HackTool.KMSpico
O43 - CFD: 18/09/2017 - [] D -- C:\Program Files\L76ZO09L6P =>Adware.Wizzcaster
O43 - CFD: 18/03/2017 - [] D -- C:\Program Files\M2TS Fish Video Survey
O43 - CFD: 19/07/2016 - [] D -- C:\Program Files\Microsoft Analysis Services =>.Microsoft Corporation
O43 - CFD: 19/07/2017 - [] AD -- C:\Program Files\Microsoft Office =>.Microsoft Corporation
O43 - CFD: 19/07/2017 - [] D -- C:\Program Files\Microsoft SQL Server =>.Microsoft Corporation
O43 - CFD: 16/04/2017 - [] D -- C:\Program Files\Microsoft.NET =>.Microsoft Corporation
O43 - CFD: 16/04/2017 - [] D -- C:\Program Files\MSBuild =>.Microsoft Corporation
O43 - CFD: 16/04/2017 - [] D -- C:\Program Files\My Web Shield {39D3FCDE4532A63BD298039D0555D0C2} =>PUP.Optional.WebShield
O43 - CFD: 04/09/2017 - [] AD -- C:\Program Files\NetBeans 8.0.2 =>.NetBeans
O43 - CFD: 15/06/2016 - [] D -- C:\Program Files\NewBlue =>.NewBlue
O43 - CFD: 03/07/2017 - [] D -- C:\Program Files\Nitro =>.Nitro
O43 - CFD: 19/05/2016 - [0] D -- C:\Program Files\Nmap Files
O43 - CFD: 19/05/2016 - [] D -- C:\Program Files\Ole Automation
O43 - CFD: 19/05/2016 - [0] D -- C:\Program Files\Outils
O43 - CFD: 13/04/2016 - [] D -- C:\Program Files\pl
O43 - CFD: 24/05/2016 - [0] D -- C:\Program Files\PostgreSQL =>.PostgreSQL
O43 - CFD: 26/06/2017 - [] AD -- C:\Program Files\PowerISO =>.PowerISO Computing
O43 - CFD: 16/04/2017 - [] D -- C:\Program Files\Realtek =>.Realtek
O43 - CFD: 14/04/2016 - [0] D -- C:\Program Files\Reason
O43 - CFD: 16/04/2017 - [] D -- C:\Program Files\Reference Assemblies =>.Microsoft Corporation
O43 - CFD: 13/10/2016 - [] D -- C:\Program Files\Samsung =>.Samsung Electronics
O43 - CFD: 23/05/2016 - [0] D -- C:\Program Files\SAP =>.SAP
O43 - CFD: 19/05/2016 - [] D -- C:\Program Files\ShellNew
O43 - CFD: 28/03/2017 - [] AD -- C:\Program Files\Sublime Text 3 =>.Sublime HQ Pty Ltd®
O43 - CFD: 16/04/2017 - [] D -- C:\Program Files\Synaptics =>.Synaptics Incorporated®
O43 - CFD: 19/05/2016 - [0] D -- C:\Program Files\ThirdPartyLegal
O43 - CFD: 18/05/2016 - [] D -- C:\Program Files\TrueKey =>.Intel Corporation
O43 - CFD: 16/04/2017 - [0] HD -- C:\Program Files\Uninstall Information =>.Microsoft Corporation
O43 - CFD: 19/05/2016 - [0] D -- C:\Program Files\VB Scripts
O43 - CFD: 19/09/2017 - [] D -- C:\Program Files\W9387PVVFO
O43 - CFD: 25/07/2017 - [] RD -- C:\Program Files\Windows Defender =>.Microsoft Corporation
O43 - CFD: 20/03/2017 - [] D -- C:\Program Files\Windows Defender Advanced Threat Protection =>.Microsoft Corporation
O43 - CFD: 19/09/2017 - [] D -- C:\Program Files\Windows Mail =>.Microsoft Corporation
O43 - CFD: 20/03/2017 - [] D -- C:\Program Files\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] D -- C:\Program Files\Windows Multimedia Platform =>.Microsoft Corporation
O43 - CFD: 16/04/2017 - [] D -- C:\Program Files\Windows NT =>.Microsoft Corporation
O43 - CFD: 19/09/2017 - [] D -- C:\Program Files\Windows Photo Viewer =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] D -- C:\Program Files\Windows Portable Devices =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] D -- C:\Program Files\Windows Security =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] SHD -- C:\Program Files\Windows Sidebar =>.Microsoft Corporation
O43 - CFD: 19/09/2017 - [] HD -- C:\Program Files\WindowsApps =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] D -- C:\Program Files\WindowsPowerShell =>.Microsoft Corporation
O43 - CFD: 03/07/2017 - [] AD -- C:\Program Files\WinRAR =>.win.rar GmbH®
O43 - CFD: 19/09/2017 - [] D -- C:\Program Files\XSBDBY8FNB =>Adware.Wizzcaster
O43 - CFD: 24/03/2017 - [] D -- C:\Program Files (x86)\1a641ce1-bb17-40f5-a1fc-3ea2f4cf1fdb1490347953 =>Adware.CrossRider
O43 - CFD: 11/04/2017 - [] AD -- C:\Program Files (x86)\AAALOGO =>.SWGSoft
O43 - CFD: 17/03/2017 - [] AD -- C:\Program Files (x86)\Adobe =>.Adobe Systems Incorporated®
O43 - CFD: 30/11/2016 - [] D -- C:\Program Files (x86)\Baidu =>.Baidu (China) Co., Ltd.®
O43 - CFD: 18/12/2016 - [] AD -- C:\Program Files (x86)\BaisvikSoftware {7F8276BC4AA97E8E49FBED6A595376F0}
O43 - CFD: 30/11/2016 - [] AD -- C:\Program Files (x86)\Bonjour =>.Apple Inc.
O43 - CFD: 04/09/2017 - [] D -- C:\Program Files (x86)\Common Files =>.Microsoft Corporation
O43 - CFD: 24/03/2017 - [] D -- C:\Program Files (x86)\ContentPush
O43 - CFD: 30/11/2016 - [0] D -- C:\Program Files (x86)\Convar =>.Convar Deutschland GmbH
O43 - CFD: 30/11/2016 - [] D -- C:\Program Files (x86)\CVitae 5
O43 - CFD: 26/03/2017 - [] D -- C:\Program Files (x86)\Dashlane =>.Dashlane
O43 - CFD: 23/12/2016 - [] D -- C:\Program Files (x86)\DriverPack Notifier =>.DriverPack Solution
O43 - CFD: 18/09/2017 - [] D -- C:\Program Files (x86)\driverupdaterplus =>.SUP.EventMonitor
O43 - CFD: 06/12/2016 - [] D -- C:\Program Files (x86)\EASEUS =>.EaseUS Software
O43 - CFD: 01/08/2017 - [] D -- C:\Program Files (x86)\eb3umnclhpo
O43 - CFD: 18/09/2017 - [] AD -- C:\Program Files (x86)\FastDataX =>Adware.FastDataX
O43 - CFD: 16/04/2017 - [] D -- C:\Program Files (x86)\FormatFactory =>.Free Time Co., Ltd.®
O43 - CFD: 13/12/2016 - [0] D -- C:\Program Files (x86)\Foxy Games =>.Foxy Games
O43 - CFD: 30/11/2016 - [0] D -- C:\Program Files (x86)\FreeTime =>.FreeTime
O43 - CFD: 06/12/2016 - [] D -- C:\Program Files (x86)\GanttProject-2.8
O43 - CFD: 04/09/2017 - [] AD -- C:\Program Files (x86)\GESCMS
O43 - CFD: 30/11/2016 - [] D -- C:\Program Files (x86)\Google =>.Google Inc®
O43 - CFD: 25/07/2017 - [] AD -- C:\Program Files (x86)\Hewlett-Packard =>.Hewlett-Packard
O43 - CFD: 24/04/2017 - [] D -- C:\Program Files (x86)\Hiru =>.Hiru
O43 - CFD: 05/08/2017 - [] AD -- C:\Program Files (x86)\HP =>.Hewlett-Packard
O43 - CFD: 19/09/2017 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information =>.InstallShield
O43 - CFD: 30/11/2016 - [] D -- C:\Program Files (x86)\Intel =>.Intel Corporation
O43 - CFD: 05/09/2017 - [] D -- C:\Program Files (x86)\Internet Download Manager =>.Tonec Inc
O43 - CFD: 19/09/2017 - [] D -- C:\Program Files (x86)\Internet Explorer =>.Microsoft Corporation
O43 - CFD: 20/07/2017 - [] D -- C:\Program Files (x86)\IObit =>.IObit
O43 - CFD: 26/03/2017 - [] D -- C:\Program Files (x86)\Jargon Informatique =>.tuxfamily.org
O43 - CFD: 30/11/2016 - [0] D -- C:\Program Files (x86)\Jaspersoft
O43 - CFD: 02/08/2017 - [] D -- C:\Program Files (x86)\Java =>.Oracle
O43 - CFD: 15/06/2017 - [0] D -- C:\Program Files (x86)\JetBrains =>.JetBrains Inc
O43 - CFD: 31/08/2017 - [] AD -- C:\Program Files (x86)\K-Lite Codec Pack =>.KLite Inc
O43 - CFD: 12/12/2016 - [] D -- C:\Program Files (x86)\Macromedia =>.Macromedia
O43 - CFD: 31/07/2017 - [] D -- C:\Program Files (x86)\Messenger for Desktop =>.Alexandru Rosianu
O43 - CFD: 21/01/2017 - [] D -- C:\Program Files (x86)\Micro Application =>.Micro Application
O43 - CFD: 30/11/2016 - [] D -- C:\Program Files (x86)\Microsoft Analysis Services =>.Microsoft Corporation
O43 - CFD: 30/11/2016 - [] D -- C:\Program Files (x86)\Microsoft Games for Windows - LIVE =>.Microsoft Corporation
O43 - CFD: 19/07/2017 - [] D -- C:\Program Files (x86)\Microsoft Office =>.Microsoft Corporation
O43 - CFD: 12/12/2016 - [] D -- C:\Program Files (x86)\Microsoft SQL Server =>.Microsoft Corporation
O43 - CFD: 19/07/2017 - [] AD -- C:\Program Files (x86)\Microsoft.NET =>.Microsoft Corporation
O43 - CFD: 20/09/2017 - [] D -- C:\Program Files (x86)\Mozilla Firefox =>.Mozilla
O43 - CFD: 20/09/2017 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service =>.Mozilla
O43 - CFD: 16/04/2017 - [] D -- C:\Program Files (x86)\MSBuild =>.Microsoft Corporation
O43 - CFD: 30/11/2016 - [] D -- C:\Program Files (x86)\Mykronoz =>.Mykronoz
O43 - CFD: 20/09/2017 - [] D -- C:\Program Files (x86)\Navilog1
O43 - CFD: 28/04/2017 - [] AD -- C:\Program Files (x86)\Nero =>.Ahead Corporation
O43 - CFD: 30/11/2016 - [] D -- C:\Program Files (x86)\NewBlue =>.NewBlue
O43 - CFD: 03/07/2017 - [] D -- C:\Program Files (x86)\Nitro =>.Nitro
O43 - CFD: 18/09/2017 - [] AD -- C:\Program Files (x86)\NoterSave =>.RSA Security
O43 - CFD: 01/08/2017 - [] D -- C:\Program Files (x86)\Oracle =>.Oracle
O43 - CFD: 18/03/2017 - [0] D -- C:\Program Files (x86)\pccleanplus =>.SUP.PCCleanPlus
O43 - CFD: 31/03/2017 - [] AD -- C:\Program Files (x86)\PowerISO =>.PowerISO Computing
O43 - CFD: 02/02/2017 - [0] D -- C:\Program Files (x86)\R.G. Mechanics =>.R.G. Mechanics
O43 - CFD: 21/07/2017 - [] D -- C:\Program Files (x86)\Real =>.RealNetworks Inc.
O43 - CFD: 30/11/2016 - [] D -- C:\Program Files (x86)\Realtek =>.Realtek
O43 - CFD: 16/04/2017 - [] D -- C:\Program Files (x86)\Reference Assemblies =>.Microsoft Corporation
O43 - CFD: 30/11/2016 - [0] D -- C:\Program Files (x86)\Rene.E Laboratory =>.Rene.E Laboratory
O43 - CFD: 30/11/2016 - [] D -- C:\Program Files (x86)\Samsung =>.Samsung Electronics
O43 - CFD: 17/09/2017 - [] D -- C:\Program Files (x86)\Sparkle =>.Ignite Realtime
O43 - CFD: 10/07/2017 - [] D -- C:\Program Files (x86)\SuperBoost =>.QiWang
O43 - CFD: 19/09/2017 - [] D -- C:\Program Files (x86)\Sybase
O43 - CFD: 30/11/2016 - [0] HD -- C:\Program Files (x86)\Temp =>.Microsoft Corporation
O43 - CFD: 30/11/2016 - [] AD -- C:\Program Files (x86)\USB Disk Security =>.FlashPeak Inc
O43 - CFD: 22/06/2017 - [] AD -- C:\Program Files (x86)\VirtualDJ =>.Atomix Production
O43 - CFD: 25/07/2017 - [] D -- C:\Program Files (x86)\Windows Defender =>.Microsoft Corporation
O43 - CFD: 19/09/2017 - [] D -- C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation
O43 - CFD: 20/03/2017 - [] D -- C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] D -- C:\Program Files (x86)\Windows Multimedia Platform =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] D -- C:\Program Files (x86)\Windows NT =>.Microsoft Corporation
O43 - CFD: 19/09/2017 - [] D -- C:\Program Files (x86)\Windows Photo Viewer =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] D -- C:\Program Files (x86)\Windows Portable Devices =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] SHD -- C:\Program Files (x86)\Windows Sidebar =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] D -- C:\Program Files (x86)\WindowsPowerShell =>.Microsoft Corporation
O43 - CFD: 30/11/2016 - [] D -- C:\Program Files (x86)\xtex =>Adware.GUpdate
O43 - CFD: 30/11/2016 - [] D -- C:\Program Files (x86)\Yahoo! =>.Yahoo!
O43 - CFD: 30/11/2016 - [] AD -- C:\Program Files (x86)\ZTEMobileBroadbandDeviceDrivers
O43 - CFD: 16/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AAA Logo
O43 - CFD: 18/03/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility =>.Microsoft Corporation
O43 - CFD: 25/07/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories =>.Microsoft Corporation
O43 - CFD: 19/09/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools
O43 - CFD: 12/12/2016 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Master Collection CC 2015
O43 - CFD: 16/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bacula
O43 - CFD: 16/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BaisvikSoftware
O43 - CFD: 16/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bonjour =>.Apple Inc.
O43 - CFD: 22/12/2016 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Pro =>.The DAEMON Team
O43 - CFD: 16/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Partition Master 10.5 =>.EaseUS Software
O43 - CFD: 16/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client =>.Tim Kosse
O43 - CFD: 16/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FlashBoot =>.PrimeExpert Software
O43 - CFD: 11/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free Download Manager =>.FreeDownloadManager.com
O43 - CFD: 23/08/2016 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games =>.Microsoft Corporation
O43 - CFD: 16/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GanttProject =>.GanttProject Team
O43 - CFD: 04/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GESCMS
O43 - CFD: 03/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager =>.Tonec Inc
O43 - CFD: 25/08/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java =>.Oracle
O43 - CFD: 25/08/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit =>.Oracle
O43 - CFD: 31/08/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack =>.KLite Inc
O43 - CFD: 03/07/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSpico =>HackTool.KMSpico
O43 - CFD: 16/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Macromedia =>.Macromedia
O43 - CFD: 18/03/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance =>.Microsoft Corporation
O43 - CFD: 16/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Micro Application =>.Micro Application
O43 - CFD: 16/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games for Windows Marketplace =>.Microsoft Corporation
O43 - CFD: 03/05/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero =>.Ahead Corporation
O43 - CFD: 16/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero 2016 =>.Ahead Corporation
O43 - CFD: 03/05/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero 2017 =>.Ahead Corporation
O43 - CFD: 04/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NetBeans =>.NetBeans.org
O43 - CFD: 16/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NewBlue =>.NewBlue
O43 - CFD: 05/08/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle Database 11g Express Edition
O43 - CFD: 19/07/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outils Microsoft Office 2016 =>.Microsoft Corporation
O43 - CFD: 04/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outils PC SOFT
O43 - CFD: 26/06/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerISO =>.PowerISO Computing
O43 - CFD: 21/07/2017 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RealNetworks =>.RealNetworks
O43 - CFD: 02/11/2016 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung =>.Samsung Electronics
O43 - CFD: 21/08/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup =>.Microsoft Corporation
O43 - CFD: 16/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SWI-Prolog
O43 - CFD: 19/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sybase
O43 - CFD: 18/03/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools =>.Microsoft Corporation
O43 - CFD: 03/08/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UmmyVideoDownloader =>.UmmyVideoDownloader
O43 - CFD: 16/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\USB Disk Security =>.FlashPeak Inc
O43 - CFD: 03/07/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR
O43 - CFD: 20/05/2016 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip =>.WinZip
O43 - CFD: 03/05/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\百度输入法
O43 - CFD: 18/09/2017 - [] D -- C:\ProgramData\159d8e6ff42042bbae0f0def4445b047 =>Adware.Suspect
O43 - CFD: 18/09/2017 - [] D -- C:\ProgramData\1faff803c0964a86b82fdd284408c283 =>Adware.Suspect
O43 - CFD: 19/09/2017 - [] D -- C:\ProgramData\240cf49e-0e03-1 =>.SUP.Polluteware
O43 - CFD: 19/09/2017 - [] D -- C:\ProgramData\240cf49e-4495-0 =>.SUP.Polluteware
O43 - CFD: 18/09/2017 - [] D -- C:\ProgramData\240cf49e-45b7-0 =>.SUP.Polluteware
O43 - CFD: 19/09/2017 - [] D -- C:\ProgramData\240cf49e-5341-1 =>.SUP.Polluteware
O43 - CFD: 19/09/2017 - [] D -- C:\ProgramData\240cf49e-6c35-0 =>.SUP.Polluteware
O43 - CFD: 18/09/2017 - [] D -- C:\ProgramData\240cf49e-6d97-1 =>.SUP.Polluteware
O43 - CFD: 22/07/2016 - [] D -- C:\ProgramData\Airtostrongs =>PUP.Optional.Salus
O43 - CFD: 27/10/2016 - [] D -- C:\ProgramData\Apple =>.Apple Inc.
O43 - CFD: 16/04/2017 - [0] SHD -- C:\ProgramData\Application Data =>.Microsoft Corporation
O43 - CFD: 30/11/2016 - [] D -- C:\ProgramData\AVAST Software =>.AVAST Software
O43 - CFD: 30/11/2016 - [] D -- C:\ProgramData\Avg =>.AVG Software
O43 - CFD: 30/11/2016 - [] D -- C:\ProgramData\Avira =>.Avira Software
O43 - CFD: 18/09/2017 - [] D -- C:\ProgramData\b945d8214d7047bd89ea300fbaf0006d =>Adware.Suspect
O43 - CFD: 19/05/2016 - [] D -- C:\ProgramData\Baidu =>.Baidu
O43 - CFD: 18/12/2016 - [] D -- C:\ProgramData\BaisvikSoftware
O43 - CFD: 24/04/2016 - [] D -- C:\ProgramData\BDLogging =>.Bitdefender
O43 - CFD: 19/06/2016 - [] D -- C:\ProgramData\BiniSoft.org =>.BiniSoft.org
O43 - CFD: 16/12/2016 - [] D -- C:\ProgramData\BSD =>.Berkeley
O43 - CFD: 29/03/2016 - [0] SHD -- C:\ProgramData\Bureau =>.Microsoft Corporation
O43 - CFD: 26/06/2017 - [0] D -- C:\ProgramData\Camtel EVDO-Huawei
O43 - CFD: 19/07/2016 - [] D -- C:\ProgramData\Canon =>.Canon
O43 - CFD: 29/07/2016 - [] D -- C:\ProgramData\CloudPrinter =>.SUP.Linkury
O43 - CFD: 16/07/2016 - [0] D -- C:\ProgramData\Comms =>.Microsoft Corporation
O43 - CFD: 26/06/2017 - [] D -- C:\ProgramData\DatacardService =>.Entriq, Inc.
O43 - CFD: 16/04/2017 - [0] SHD -- C:\ProgramData\Documents =>.Microsoft Corporation
O43 - CFD: 15/06/2016 - [] D -- C:\ProgramData\eSellerate =>.eSellerate
O43 - CFD: 06/05/2016 - [] D -- C:\ProgramData\Ford Motor Company
O43 - CFD: 04/09/2017 - [] D -- C:\ProgramData\GESCMS
O43 - CFD: 04/05/2017 - [] D -- C:\ProgramData\Hewlett-Packard =>.Hewlett-Packard
O43 - CFD: 05/08/2017 - [] AD -- C:\ProgramData\HP =>.Hewlett-Packard
O43 - CFD: 11/10/2016 - [0] D -- C:\ProgramData\IDM =>.IDM
O43 - CFD: 26/05/2016 - [] D -- C:\ProgramData\install_clap =>.Microsoft Corporation
O43 - CFD: 24/05/2017 - [] D -- C:\ProgramData\IObit =>.IObit
O43 - CFD: 29/05/2017 - [] D -- C:\ProgramData\Kaspersky Lab Setup Files =>.Kaspersky Lab
O43 - CFD: 26/06/2017 - [] D -- C:\ProgramData\KONAMI =>.Konami
O43 - CFD: 01/08/2017 - [] D -- C:\ProgramData\Lavasoft =>.Lavasoft
O43 - CFD: 24/03/2017 - [] D -- C:\ProgramData\Logic Handler =>PUP.Optional.LogicHandler
O43 - CFD: 07/12/2016 - [] D -- C:\ProgramData\Macromedia =>.Macromedia
O43 - CFD: 17/05/2016 - [] D -- C:\ProgramData\McAfee =>.McAfee
O43 - CFD: 29/03/2016 - [0] SHD -- C:\ProgramData\Menu Démarrer =>.Microsoft Corporation
O43 - CFD: 19/07/2017 - [] SD -- C:\ProgramData\Microsoft =>.Microsoft Corporation
O43 - CFD: 18/09/2017 - [] D -- C:\ProgramData\Microsoft Help =>.Microsoft Corporation
O43 - CFD: 16/04/2017 - [] D -- C:\ProgramData\Microsoft OneDrive =>.Microsoft Corporation
O43 - CFD: 28/12/2016 - [] D -- C:\ProgramData\MobileBrServ =>.Huawei Technologies Co.,Ltd
O43 - CFD: 29/03/2016 - [0] SHD -- C:\ProgramData\Modèles =>.Microsoft Corporation
O43 - CFD: 05/04/2016 - [] D -- C:\ProgramData\MTN Xtra Surf =>.Huawei Technologies Co.,Ltd
O43 - CFD: 28/04/2017 - [] AD -- C:\ProgramData\Nero =>.Ahead Corporation
O43 - CFD: 29/03/2016 - [] D -- C:\ProgramData\Nitro =>.Nitro
O43 - CFD: 10/10/2016 - [] D -- C:\ProgramData\oceps
O43 - CFD: 03/08/2017 - [] D -- C:\ProgramData\Oracle =>.Oracle
O43 - CFD: 03/10/2016 - [] D -- C:\ProgramData\Origin =>.Electronic Arts, Inc.
O43 - CFD: 01/08/2017 - [] D -- C:\ProgramData\Package Cache =>.Microsoft Corporation
O43 - CFD: 19/09/2017 - [] D -- C:\ProgramData\PowerAMC 15
O43 - CFD: 20/07/2017 - [] D -- C:\ProgramData\ProductData =>.Microsoft Corporation
O43 - CFD: 21/07/2017 - [] D -- C:\ProgramData\Real =>.RealNetworks Inc.
O43 - CFD: 21/07/2017 - [0] D -- C:\ProgramData\RealNetworks =>.RealNetworks
O43 - CFD: 19/07/2017 - [] AD -- C:\ProgramData\regid.1991-06.com.microsoft =>.Microsoft Corporation
O43 - CFD: 29/07/2016 - [] D -- C:\ProgramData\Ronzap
O43 - CFD: 20/06/2016 - [] D -- C:\ProgramData\Ronzaps
O43 - CFD: 21/10/2016 - [] D -- C:\ProgramData\RzSurroundVAD_1.1.62.0 =>.Razer Inc
O43 - CFD: 13/10/2016 - [] D -- C:\ProgramData\Samsung =>.Samsung Electronics
O43 - CFD: 18/03/2017 - [0] D -- C:\ProgramData\SoftwareDistribution =>.Microsoft Corporation
O43 - CFD: 17/09/2017 - [] D -- C:\ProgramData\SpinTop Games =>.SpinTop Games
O43 - CFD: 16/12/2016 - [] D -- C:\ProgramData\SP_FT_Logs
O43 - CFD: 05/04/2016 - [] D -- C:\ProgramData\Steam =>.Steam Games
O43 - CFD: 24/05/2016 - [] D -- C:\ProgramData\Sun =>.Oracle
O43 - CFD: 23/04/2016 - [] D -- C:\ProgramData\SuperBoost =>.QiWang
O43 - CFD: 29/03/2016 - [] D -- C:\ProgramData\Synaptics =>.Synaptics
O43 - CFD: 17/09/2017 - [] AD -- C:\ProgramData\Temp =>.Microsoft Corporation
O43 - CFD: 23/04/2016 - [] D -- C:\ProgramData\TrueKey =>.Intel Corporation
O43 - CFD: 17/03/2017 - [] D -- C:\ProgramData\Ubisoft =>.Ubisoft
O43 - CFD: 16/04/2017 - [] D -- C:\ProgramData\USOPrivate =>.Microsoft Corporation
O43 - CFD: 16/04/2017 - [] D -- C:\ProgramData\USOShared =>.Microsoft Corporation
O43 - CFD: 19/07/2016 - [] D -- C:\ProgramData\Visan =>.Visan Industries
O43 - CFD: 19/07/2016 - [] D -- C:\ProgramData\VMware =>.VMware
O43 - CFD: 21/07/2017 - [] D -- C:\ProgramData\VS Revo Group =>.VS Revo Group
O43 - CFD: 18/09/2017 - [] D -- C:\ProgramData\WindowsErrorReporting =>Trojan.GenericKD
O43 - CFD: 20/03/2017 - [] D -- C:\ProgramData\WindowsHolographicDevices =>.Microsoft Corporation
O43 - CFD: 04/10/2016 - [] D -- C:\ProgramData\xifss
O43 - CFD: 20/07/2016 - [] D -- C:\ProgramData\ZDSupport
O43 - CFD: 21/01/2017 - [0] D -- C:\ProgramData\{74E9F814-C737-42CC-B721-DBBC4059367A}
O43 - CFD: 06/06/2016 - [] D -- C:\ProgramData\{ACBCD40A-42A8-4FF9-BD42-ABCD14998CBA}
O43 - CFD: 21/04/2016 - [0] D -- C:\ProgramData\{BE2ACE5C-32B7-4777-9BDF-ECF87CDAB705}
O43 - CFD: 06/06/2016 - [] D -- C:\ProgramData\{D76294E6-03B8-4971-AF2E-3F846161A690}
O43 - CFD: 21/04/2016 - [] D -- C:\ProgramData\{FD6F83C0-EC70-4581-8361-C70CD1AA4B98}
O43 - CFD: 01/08/2017 - [] D -- C:\Program Files (x86)\Common Files\Adobe =>.Adobe
O43 - CFD: 30/07/2016 - [] D -- C:\Program Files (x86)\Common Files\Doublelatbam
O43 - CFD: 03/10/2016 - [] HD -- C:\Program Files (x86)\Common Files\EAInstaller =>.Electronic Arts, Inc.
O43 - CFD: 15/06/2016 - [] D -- C:\Program Files (x86)\Common Files\eSellerate =>.eSellerate
O43 - CFD: 22/04/2016 - [] D -- C:\Program Files (x86)\Common Files\InstallShield =>.InstallShield
O43 - CFD: 16/04/2017 - [] D -- C:\Program Files (x86)\Common Files\Intel =>.Intel Corporation
O43 - CFD: 28/09/2016 - [] D -- C:\Program Files (x86)\Common Files\IObit =>.IObit
O43 - CFD: 02/08/2017 - [] D -- C:\Program Files (x86)\Common Files\Java =>.Oracle
O43 - CFD: 12/12/2016 - [] AD -- C:\Program Files (x86)\Common Files\Macromedia =>.Macromedia
O43 - CFD: 23/04/2016 - [] D -- C:\Program Files (x86)\Common Files\McAfee =>.McAfee
O43 - CFD: 01/08/2017 - [] AD -- C:\Program Files (x86)\Common Files\Microsoft Shared =>.Microsoft Corporation
O43 - CFD: 28/04/2017 - [] D -- C:\Program Files (x86)\Common Files\Nero =>.Ahead Corporation
O43 - CFD: 04/09/2017 - [] D -- C:\Program Files (x86)\Common Files\PC SOFT =>.PC Soft
O43 - CFD: 18/03/2017 - [] D -- C:\Program Files (x86)\Common Files\Services =>.Microsoft Corporation
O43 - CFD: 20/03/2017 - [] D -- C:\Program Files (x86)\Common Files\System =>.Microsoft Corporation
O43 - CFD: 01/08/2017 - [0] D -- C:\Users\eric\AppData\Roaming\3p1driaqk4s
O43 - CFD: 18/09/2017 - [] D -- C:\Users\eric\AppData\Roaming\879c261566424c7fba51384d066e660e
O43 - CFD: 26/03/2017 - [] D -- C:\Users\eric\AppData\Roaming\AchrafCherti
O43 - CFD: 01/08/2017 - [] D -- C:\Users\eric\AppData\Roaming\Adobe =>.Adobe
O43 - CFD: 18/09/2017 - [] D -- C:\Users\eric\AppData\Roaming\af688c2fb64e4f05a7eadcc4857dc524
O43 - CFD: 04/08/2017 - [] D -- C:\Users\eric\AppData\Roaming\Apowersoft =>.Apowersoft
O43 - CFD: 21/04/2016 - [] D -- C:\Users\eric\AppData\Roaming\Apple Computer =>.Apple Inc.
O43 - CFD: 19/05/2016 - [] D -- C:\Users\eric\AppData\Roaming\Baidu =>.Baidu
O43 - CFD: 16/12/2016 - [] D -- C:\Users\eric\AppData\Roaming\BaisvikSoftware
O43 - CFD: 04/12/2016 - [] D -- C:\Users\eric\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
O43 - CFD: 25/03/2017 - [0] D -- C:\Users\eric\AppData\Roaming\Clovot
O43 - CFD: 22/04/2016 - [] D -- C:\Users\eric\AppData\Roaming\CVitae 5
O43 - CFD: 22/12/2016 - [0] D -- C:\Users\eric\AppData\Roaming\DAEMON Tools Pro =>.The DAEMON Team
O43 - CFD: 12/09/2017 - [] D -- C:\Users\eric\AppData\Roaming\Dashlane =>.Dashlane
O43 - CFD: 18/09/2017 - [] D -- C:\Users\eric\AppData\Roaming\dll4c4dqy3m =>Heuristic.Wizzcaster
O43 - CFD: 19/09/2017 - [] D -- C:\Users\eric\AppData\Roaming\DMCache =>.DMCache
O43 - CFD: 26/05/2016 - [] D -- C:\Users\eric\AppData\Roaming\Downloaded Installations =>.Microsoft Corporation
O43 - CFD: 23/12/2016 - [] AD -- C:\Users\eric\AppData\Roaming\DriverPack Notifier =>.DriverPack Solution
O43 - CFD: 23/12/2016 - [] D -- C:\Users\eric\AppData\Roaming\DRPNPS
O43 - CFD: 23/12/2016 - [] D -- C:\Users\eric\AppData\Roaming\DRPSu =>.Driver PackSolution
O43 - CFD: 18/09/2017 - [] D -- C:\Users\eric\AppData\Roaming\EpicNet Inc =>Adware.MSIL
O43 - CFD: 06/05/2017 - [] D -- C:\Users\eric\AppData\Roaming\FileZilla =>.FileZilla
O43 - CFD: 21/04/2017 - [] D -- C:\Users\eric\AppData\Roaming\Google =>.Google
O43 - CFD: 18/03/2017 - [] AD -- C:\Users\eric\AppData\Roaming\gplyra =>.SUP.Gplyra
O43 - CFD: 03/04/2016 - [] D -- C:\Users\eric\AppData\Roaming\Hewlett-Packard =>.Hewlett-Packard
O43 - CFD: 25/07/2017 - [] D -- C:\Users\eric\AppData\Roaming\hpqLog =>.Hewlett-Packard
O43 - CFD: 19/07/2017 - [] D -- C:\Users\eric\AppData\Roaming\HpUpdate =>.Hewlett-Packard
O43 - CFD: 18/09/2017 - [] D -- C:\Users\eric\AppData\Roaming\IDM =>.IDM
O43 - CFD: 05/04/2017 - [] D -- C:\Users\eric\AppData\Roaming\Imminent =>PUP.Optional.IMBooster
O43 - CFD: 17/05/2016 - [] D -- C:\Users\eric\AppData\Roaming\InstallShield =>.InstallShield
O43 - CFD: 06/10/2016 - [] D -- C:\Users\eric\AppData\Roaming\Internet Download Accelerator
O43 - CFD: 29/04/2016 - [] D -- C:\Users\eric\AppData\Roaming\IObit =>.IObit
O43 - CFD: 17/03/2017 - [] D -- C:\Users\eric\AppData\Roaming\JetBrains =>.JetBrains Inc
O43 - CFD: 18/09/2017 - [] D -- C:\Users\eric\AppData\Roaming\Macromedia =>.Macromedia
O43 - CFD: 06/06/2016 - [] D -- C:\Users\eric\AppData\Roaming\MetroSidebar =>.MetroSidebar
O43 - CFD: 16/12/2016 - [] D -- C:\Users\eric\AppData\Roaming\mgyun =>.mgyun.com
O43 - CFD: 18/09/2017 - [] D -- C:\Users\eric\AppData\Roaming\Microleaves =>.SUP.Microleaves
O43 - CFD: 13/09/2017 - [] SD -- C:\Users\eric\AppData\Roaming\Microsoft =>.Microsoft Corporation
O43 - CFD: 23/03/2017 - [] D -- C:\Users\eric\AppData\Roaming\Mikrotik
O43 - CFD: 20/09/2017 - [] D -- C:\Users\eric\AppData\Roaming\Mozilla =>.Mozilla Corporation
O43 - CFD: 01/08/2017 - [] D -- C:\Users\eric\AppData\Roaming\MPC-HC =>.MPC-HC Team
O43 - CFD: 19/09/2017 - [] D -- C:\Users\eric\AppData\Roaming\n2dddu3iwrk =>Heuristic.Wizzcaster
O43 - CFD: 04/05/2017 - [] D -- C:\Users\eric\AppData\Roaming\Nero =>.Ahead Corporation
O43 - CFD: 04/09/2017 - [] D -- C:\Users\eric\AppData\Roaming\NetBeans =>.NetBeans.org
O43 - CFD: 03/07/2017 - [] D -- C:\Users\eric\AppData\Roaming\Nitro =>.Nitro
O43 - CFD: 03/06/2016 - [] D -- C:\Users\eric\AppData\Roaming\Opera Software =>.Opera Software
O43 - CFD: 28/07/2016 - [] D -- C:\Users\eric\AppData\Roaming\Oracle =>.Oracle
O43 - CFD: 24/07/2017 - [] D -- C:\Users\eric\AppData\Roaming\OWB
O43 - CFD: 22/04/2016 - [] D -- C:\Users\eric\AppData\Roaming\postgresql =>.PostgreSQL
O43 - CFD: 17/05/2016 - [] D -- C:\Users\eric\AppData\Roaming\PowerDesigner
O43 - CFD: 26/06/2017 - [] D -- C:\Users\eric\AppData\Roaming\PowerISO =>.PowerISO Computing
O43 - CFD: 21/04/2016 - [] D -- C:\Users\eric\AppData\Roaming\ProductData =>.Microsoft Corporation
O43 - CFD: 30/11/2016 - [] D -- C:\Users\eric\AppData\Roaming\Profiles =>.Microsoft Corporation
O43 - CFD: 06/03/2017 - [] D -- C:\Users\eric\AppData\Roaming\Psiphon3
O43 - CFD: 12/06/2016 - [0] D -- C:\Users\eric\AppData\Roaming\Publish Providers =>.Legitimate
O43 - CFD: 19/09/2017 - [] D -- C:\Users\eric\AppData\Roaming\py4fb2s5qpf =>Heuristic.Wizzcaster
O43 - CFD: 21/07/2017 - [] D -- C:\Users\eric\AppData\Roaming\Real =>.RealNetworks Inc.
O43 - CFD: 21/07/2017 - [0] D -- C:\Users\eric\AppData\Roaming\RealNetworks =>.RealNetworks
O43 - CFD: 02/11/2016 - [] D -- C:\Users\eric\AppData\Roaming\Samsung =>.Samsung Electronics
O43 - CFD: 24/07/2017 - [] D -- C:\Users\eric\AppData\Roaming\Skype =>.Skype
O43 - CFD: 05/10/2016 - [0] D -- C:\Users\eric\AppData\Roaming\Solvusoft =>.SUP.Solvusoft
O43 - CFD: 12/06/2016 - [] D -- C:\Users\eric\AppData\Roaming\Sony =>.Sony
O43 - CFD: 02/08/2017 - [] D -- C:\Users\eric\AppData\Roaming\SQL Developer
O43 - CFD: 02/08/2017 - [] D -- C:\Users\eric\AppData\Roaming\sqldeveloper
O43 - CFD: 07/04/2016 - [] D -- C:\Users\eric\AppData\Roaming\Sublime Text 3
O43 - CFD: 26/04/2016 - [] D -- C:\Users\eric\AppData\Roaming\Subversion =>.Games Software
O43 - CFD: 22/04/2016 - [] D -- C:\Users\eric\AppData\Roaming\Sun =>.Oracle
O43 - CFD: 23/04/2016 - [] D -- C:\Users\eric\AppData\Roaming\SuperBoost =>.QiWang
O43 - CFD: 13/04/2016 - [0] D -- C:\Users\eric\AppData\Roaming\SWI-Prolog
O43 - CFD: 29/03/2016 - [] D -- C:\Users\eric\AppData\Roaming\Synaptics =>.Synaptics
O43 - CFD: 07/04/2017 - [] HD -- C:\Users\eric\AppData\Roaming\system =>.Microsoft Corporation
O43 - CFD: 06/06/2016 - [] D -- C:\Users\eric\AppData\Roaming\Tencent =>.SUP.Tencent
O43 - CFD: 03/07/2017 - [] D -- C:\Users\eric\AppData\Roaming\Thinstall =>.VMare
O43 - CFD: 24/07/2017 - [] D -- C:\Users\eric\AppData\Roaming\updatetool
O43 - CFD: 12/06/2016 - [] D -- C:\Users\eric\AppData\Roaming\vlc =>.VideoLan Team
O43 - CFD: 19/07/2016 - [] D -- C:\Users\eric\AppData\Roaming\VMware =>.VMware
O43 - CFD: 18/09/2017 - [] D -- C:\Users\eric\AppData\Roaming\WhatsApp =>.WhatsApp
O43 - CFD: 03/07/2017 - [] D -- C:\Users\eric\AppData\Roaming\WinRAR =>.WinRAR
O43 - CFD: 29/03/2016 - [] D -- C:\Users\eric\AppData\Roaming\www.kiwix.org
O43 - CFD: 12/05/2016 - [] D -- C:\Users\eric\AppData\Roaming\xpce
O43 - CFD: 06/06/2016 - [0] D -- C:\Users\eric\AppData\Roaming\Yahoo! =>.Yahoo!
O43 - CFD: 06/06/2016 - [] D -- C:\Users\eric\AppData\Roaming\Yandex =>.Yandex
O43 - CFD: 01/08/2017 - [] D -- C:\Users\eric\AppData\Roaming\YCanPDF =>.YCanPDF
O43 - CFD: 03/04/2016 - [] D -- C:\Users\eric\AppData\Roaming\Zbshareware Lab =>.Zbshareware Lab
O43 - CFD: 20/09/2017 - [] D -- C:\Users\eric\AppData\Roaming\ZHP =>.Nicolas Coolman
O43 - CFD: 18/09/2017 - [] D -- C:\Users\eric\AppData\Local\2a4969b64a414f6f870b4f560ce8fe62
O43 - CFD: 18/09/2017 - [] D -- C:\Users\eric\AppData\Local\322fbda0a4bf4aaba4279b215d233142
O43 - CFD: 01/08/2016 - [0] D -- C:\Users\eric\AppData\Local\ActiveSync =>.Microsoft Corporation
O43 - CFD: 18/09/2017 - [] D -- C:\Users\eric\AppData\Local\AdvinstAnalytics =>.SUP.Various
O43 - CFD: 16/04/2017 - [0] SHD -- C:\Users\eric\AppData\Local\Application Data =>.Microsoft Corporation
O43 - CFD: 20/05/2016 - [] D -- C:\Users\eric\AppData\Local\Apps =>.Microsoft Corporation
O43 - CFD: 23/04/2016 - [] D -- C:\Users\eric\AppData\Local\CEF =>.CEF
O43 - CFD: 03/06/2016 - [] D -- C:\Users\eric\AppData\Local\Chromium =>.Chromium
O43 - CFD: 08/05/2017 - [] D -- C:\Users\eric\AppData\Local\Comms =>.Microsoft Corporation
O43 - CFD: 16/04/2017 - [] D -- C:\Users\eric\AppData\Local\ConnectedDevicesPlatform =>.Microsoft Corporation
O43 - CFD: 14/05/2017 - [0] D -- C:\Users\eric\AppData\Local\CrashDumps =>.Microsoft Corporation
O43 - CFD: 10/07/2016 - [] D -- C:\Users\eric\AppData\Local\CrashRpt
O43 - CFD: 16/04/2017 - [0] D -- C:\Users\eric\AppData\Local\DBG =>.DBG
O43 - CFD: 18/08/2017 - [0] D -- C:\Users\eric\AppData\Local\Diagnostics =>.Microsoft Corporation
O43 - CFD: 28/11/2016 - [] D -- C:\Users\eric\AppData\Local\Disc_Soft_Ltd =>.Disc Soft Ltd
O43 - CFD: 25/08/2017 - [] D -- C:\Users\eric\AppData\Local\Eclipse =>.Eclipse
O43 - CFD: 28/08/2017 - [] D -- C:\Users\eric\AppData\Local\ElevatedDiagnostics =>.Microsoft Corporation
O43 - CFD: 23/05/2016 - [] D -- C:\Users\eric\AppData\Local\Facebook =>.Facebook
O43 - CFD: 23/03/2017 - [] D -- C:\Users\eric\AppData\Local\FileZilla =>.FileZilla
O43 - CFD: 20/09/2017 - [] D -- C:\Users\eric\AppData\Local\Free Download Manager =>.FreeDownloadManager.com
O43 - CFD: 17/05/2016 - [] D -- C:\Users\eric\AppData\Local\Geckofx =>.Geckofx
O43 - CFD: 17/11/2016 - [] D -- C:\Users\eric\AppData\Local\Google =>.Google
O43 - CFD: 03/04/2016 - [] D -- C:\Users\eric\AppData\Local\Hewlett-Packard =>.Hewlett-Packard
O43 - CFD: 16/04/2017 - [0] SHD -- C:\Users\eric\AppData\Local\Historique =>.Microsoft Corporation
O43 - CFD: 19/07/2016 - [] D -- C:\Users\eric\AppData\Local\HP =>.Hewlett-Packard
O43 - CFD: 18/09/2017 - [] D -- C:\Users\eric\AppData\Local\Macromedia =>.Macromedia
O43 - CFD: 04/09/2017 - [] D -- C:\Users\eric\AppData\Local\Messenger =>.Microsoft Corporation
O43 - CFD: 13/09/2017 - [] D -- C:\Users\eric\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 19/09/2017 - [] D -- C:\Users\eric\AppData\Local\Microsoft Help =>.Microsoft Corporation
O43 - CFD: 03/04/2016 - [] D -- C:\Users\eric\AppData\Local\MicrosoftEdge =>.Microsoft Corporation
O43 - CFD: 31/07/2016 - [] D -- C:\Users\eric\AppData\Local\Microsoft_Corporation =>.Microsoft Corporation
O43 - CFD: 31/03/2017 - [0] D -- C:\Users\eric\AppData\Local\Mobirise.com =>.Mobirise.com
O43 - CFD: 20/09/2017 - [] D -- C:\Users\eric\AppData\Local\Mozilla =>.Mozilla Corporation
O43 - CFD: 26/06/2017 - [] D -- C:\Users\eric\AppData\Local\Nero =>.Ahead Corporation
O43 - CFD: 03/05/2017 - [] D -- C:\Users\eric\AppData\Local\Nero_AG =>.Ahead
O43 - CFD: 04/09/2017 - [] D -- C:\Users\eric\AppData\Local\NetBeans =>.NetBeans.org
O43 - CFD: 02/04/2016 - [0] D -- C:\Users\eric\AppData\Local\NetworkTiles =>.NetworkTiles
O43 - CFD: 27/03/2017 - [] D -- C:\Users\eric\AppData\Local\OpenERP S.A
O43 - CFD: 19/09/2017 - [] D -- C:\Users\eric\AppData\Local\Packages =>.Microsoft Corporation
O43 - CFD: 22/12/2016 - [0] D -- C:\Users\eric\AppData\Local\PackageStaging =>.Apcera
O43 - CFD: 30/03/2016 - [0] D -- C:\Users\eric\AppData\Local\PeerDistRepub =>.Microsoft Corporation
O43 - CFD: 29/03/2016 - [] D -- C:\Users\eric\AppData\Local\Programs =>.Microsoft Corporation
O43 - CFD: 30/03/2016 - [] D -- C:\Users\eric\AppData\Local\Publishers =>.Microsoft Corporation
O43 - CFD: 21/10/2016 - [] D -- C:\Users\eric\AppData\Local\Razer =>.Razer
O43 - CFD: 18/07/2017 - [] D -- C:\Users\eric\AppData\Local\Recovery =>.Recovery Labs
O43 - CFD: 23/04/2016 - [] D -- C:\Users\eric\AppData\Local\Semantis =>.Semantis
O43 - CFD: 13/12/2016 - [] D -- C:\Users\eric\AppData\Local\SKIDROW =>.SKIDROW
O43 - CFD: 12/06/2016 - [] D -- C:\Users\eric\AppData\Local\Sony =>.Sony
O43 - CFD: 02/08/2017 - [] D -- C:\Users\eric\AppData\Local\speech =>.Microsoft Corporation
O43 - CFD: 29/08/2017 - [] D -- C:\Users\eric\AppData\Local\SquirrelTemp =>.Squirrels
O43 - CFD: 13/12/2016 - [] D -- C:\Users\eric\AppData\Local\storage
O43 - CFD: 30/03/2017 - [] D -- C:\Users\eric\AppData\Local\Sublime Text 3
O43 - CFD: 10/06/2016 - [] D -- C:\Users\eric\AppData\Local\TechSmith =>.TechSmith
O43 - CFD: 20/09/2017 - [] D -- C:\Users\eric\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 16/04/2017 - [0] SHD -- C:\Users\eric\AppData\Local\Temporary Internet Files =>.Microsoft Corporation
O43 - CFD: 03/07/2017 - [] D -- C:\Users\eric\AppData\Local\Thinstall =>.VMare
O43 - CFD: 30/03/2016 - [] D -- C:\Users\eric\AppData\Local\TileDataLayer =>.Microsoft Corporation
O43 - CFD: 23/04/2016 - [] D -- C:\Users\eric\AppData\Local\tkdata =>.TK-Data
O43 - CFD: 30/11/2016 - [] D -- C:\Users\eric\AppData\Local\Tlition
O43 - CFD: 16/12/2016 - [] D -- C:\Users\eric\AppData\Local\Trolltech =>.Trolltech
O43 - CFD: 03/08/2017 - [] AD -- C:\Users\eric\AppData\Local\UmmyVideoDownloader =>.UmmyVideoDownloader
O43 - CFD: 29/03/2017 - [] D -- C:\Users\eric\AppData\Local\VirtualStore =>.Microsoft Corporation
O43 - CFD: 28/03/2017 - [] D -- C:\Users\eric\AppData\Local\Visokio
O43 - CFD: 29/03/2017 - [] D -- C:\Users\eric\AppData\Local\Visokio Omniscope app
O43 - CFD: 16/06/2016 - [] D -- C:\Users\eric\AppData\Local\VMware =>.VMware
O43 - CFD: 04/09/2017 - [] D -- C:\Users\eric\AppData\Local\WDSetup =>.WDSetup
O43 - CFD: 29/08/2017 - [] D -- C:\Users\eric\AppData\Local\WhatsApp =>.WhatsApp
O43 - CFD: 29/03/2016 - [] D -- C:\Users\eric\AppData\Local\www.kiwix.org
O43 - CFD: 20/09/2017 - [] D -- C:\Users\eric\AppData\Local\ZHP =>.Nicolas Coolman
O43 - CFD: 29/03/2016 - [0] D -- C:\Users\eric\AppData\Local\Programs\Common =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] RD -- C:\Users\eric\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility =>.Microsoft Corporation
O43 - CFD: 16/04/2017 - [] RD -- C:\Users\eric\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories =>.Microsoft Corporation
O43 - CFD: 19/09/2017 - [] RD -- C:\Users\eric\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools
O43 - CFD: 16/04/2017 - [] D -- C:\Users\eric\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome =>.Google Inc.
O43 - CFD: 16/04/2017 - [] D -- C:\Users\eric\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Convar =>.Convar Deutschland GmbH
O43 - CFD: 12/09/2017 - [] D -- C:\Users\eric\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dashlane =>.Dashlane
O43 - CFD: 16/04/2017 - [] D -- C:\Users\eric\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory =>.FormatFactory
O43 - CFD: 03/09/2017 - [] D -- C:\Users\eric\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager =>.Tonec Inc
O43 - CFD: 16/04/2017 - [] D -- C:\Users\eric\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Jargon Informatique =>.tuxfamily.org
O43 - CFD: 18/03/2017 - [] D -- C:\Users\eric\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance =>.Microsoft Corporation
O43 - CFD: 13/12/2016 - [0] D -- C:\Users\eric\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\New Super Mario Forever 2012 - FULL PC Version - Foxy Games
O43 - CFD: 17/09/2017 - [] D -- C:\Users\eric\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sparkle =>.Ignite Realtime
O43 - CFD: 19/09/2017 - [] RD -- C:\Users\eric\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] RD -- C:\Users\eric\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools =>.Microsoft Corporation
O43 - CFD: 22/06/2017 - [] D -- C:\Users\eric\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ =>.Atomix Production
O43 - CFD: 29/08/2017 - [] D -- C:\Users\eric\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WhatsApp =>.WhatsApp
O43 - CFD: 18/03/2017 - [] RD -- C:\Users\eric\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell =>.Microsoft Corporation
O43 - CFD: 03/07/2017 - [] D -- C:\Users\eric\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR
O43 - CFD: 16/04/2017 - [0] SHD -- C:\Users\Default\AppData\Local\Application Data =>.Microsoft Corporation
O43 - CFD: 22/12/2016 - [0] SHD -- C:\Users\Default\AppData\Local\Historique =>.Microsoft Corporation
O43 - CFD: 20/03/2017 - [] D -- C:\Users\Default\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 22/12/2016 - [0] D -- C:\Users\Default\AppData\Local\Microsoft Help =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [0] D -- C:\Users\Default\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 16/04/2017 - [0] SHD -- C:\Users\Default\AppData\Local\Temporary Internet Files =>.Microsoft Corporation
O43 - CFD: 16/04/2017 - [0] SHD -- C:\Users\Default User\AppData\Local\Application Data =>.Microsoft Corporation
O43 - CFD: 22/12/2016 - [0] SHD -- C:\Users\Default User\AppData\Local\Historique =>.Microsoft Corporation
O43 - CFD: 20/03/2017 - [] D -- C:\Users\Default User\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 22/12/2016 - [0] D -- C:\Users\Default User\AppData\Local\Microsoft Help =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [0] D -- C:\Users\Default User\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 16/04/2017 - [0] SHD -- C:\Users\Default User\AppData\Local\Temporary Internet Files =>.Microsoft Corporation
O43 - CFD: 23/04/2017 - [0] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\DBG =>.DBG
O43 - CFD: 17/04/2017 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 19/07/2017 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\PeerDistRepub =>.Microsoft Corporation
O43 - CFD: 11/09/2017 - [] -- C:\Windows\System32\Config\systemprofile\AppData\Local\Programs =>.Microsoft Corporation
O43 - CFD: 16/04/2017 - [] -- C:\Windows\System32\Config\systemprofile\AppData\Roaming\BaisvikSoftware
O43 - CFD: 16/04/2017 - [] -- C:\Windows\System32\Config\systemprofile\AppData\Roaming\IObit =>.IObit
O43 - CFD: 11/09/2017 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Roaming\Microsoft =>.Microsoft Corporation
O43 - CFD: 19/09/2017 - [] -- C:\Windows\System32\Config\systemprofile\AppData\Roaming\tor =>.Tor
User empty folders CLSID founds (1). Clean with ZHPFix 'EmptyCLSID' command =>.SUP.Empty.CLSID
---\\ ShellExecuteHook (1) - 0s
O46 - SEH:ShellExecuteHooks - (no name) - [HKLM] [64Bits] - {AFC5519E-A73B-11E6-9931-64006A5CFC23} . (...) -- (.not file.)
---\\ ShellIconOverlayIdentifiers (SIOI) (9) - 1s
O106 - SIOI: ErrorOverlayHandler Class [ OneDrive1] - {BBACC218-34EA-4666-9D7A-C78F2274A524}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\eric\AppData\Local\Microsoft\OneDrive\17.3.6966.0824\FileSyncShell.dll =>.Microsoft Corporation®
O106 - SIOI: SharedOverlayHandler Class [ OneDrive2] - {5AB7172C-9C11-405C-8DD5-AF20F3606282}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\eric\AppData\Local\Microsoft\OneDrive\17.3.6966.0824\FileSyncShell.dll =>.Microsoft Corporation®
O106 - SIOI: SharedSyncingOverlayHandler Class [ OneDrive3] - {A78ED123-AB77-406B-9962-2A5D9D2F7F30}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\eric\AppData\Local\Microsoft\OneDrive\17.3.6966.0824\FileSyncShell.dll =>.Microsoft Corporation®
O106 - SIOI: UpToDateOverlayHandler Class [ OneDrive4] - {F241C880-6982-4CE5-8CF7-7085BA96DA5A}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\eric\AppData\Local\Microsoft\OneDrive\17.3.6966.0824\FileSyncShell.dll =>.Microsoft Corporation®
O106 - SIOI: SyncingOverlayHandler Class [ OneDrive5] - {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\eric\AppData\Local\Microsoft\OneDrive\17.3.6966.0824\FileSyncShell.dll =>.Microsoft Corporation®
O106 - SIOI: ReadOnlyOverlayHandler Class [ OneDrive6] - {9AA2F32D-362A-42D9-9328-24A483E2CCC3}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\eric\AppData\Local\Microsoft\OneDrive\17.3.6966.0824\FileSyncShell.dll =>.Microsoft Corporation®
O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 1 (ErrorConflict) [ SkyDrivePro1 (ErrorConflict)] - {8BA85C75-763B-4103-94EB-9470F12FE0F7}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 2 (SyncInProgress) [ SkyDrivePro2 (SyncInProgress)] - {CD55129A-B1A1-438E-A425-CEBC7DC684EE}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 3 (InSync) [ SkyDrivePro3 (InSync)] - {E768CD3B-BDDC-436D-9C13-E1B39CA257B1}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL =>.Microsoft Corporation®
---\\ Image File Execution Options (18) - 3s
O50 - IFEO:C:\Windows\System32\cscript.exe - (.Microsoft Corporation - Microsoft ® Console Based Script Host.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\dllhost.exe - (.Microsoft Corporation - COM Surrogate.) [DisableExceptionChainValidation\\3] =>.Microsoft Windows®
O50 - IFEO:C:\Windows\System32\drvinst.exe - (.Microsoft Corporation - Module d’installation de pilotes.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\ie4uinit.exe - (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\ieUnatt.exe - (.Microsoft Corporation - Outil d’installation sans assistance d’IE 7.) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\mmc.exe - (.Microsoft Corporation - Microsoft Management Console.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\MRT.exe - (.Microsoft Corporation - Outil de suppression de logiciels malveilla.) [CFGOptions\\1] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\msfeedssync.exe - (.Microsoft Corporation - Microsoft Feeds Synchronization.) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\mshta.exe - (.Microsoft Corporation - Hôte des applications HTML de Microsoft(R).) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\PresentationHost.exe - (.Microsoft Corporation - Windows Presentation Foundation Host.) [MitigationOptions\\1118481] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\PrintIsolationHost.exe - (.Microsoft Corporation - PrintIsolationHost.) [MitigationOptions\\2097152] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\rundll32.exe - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\runtimebroker.exe - (.Microsoft Corporation - Runtime Broker.) [MitigationOptions\\4294967296] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\searchprotocolhost.exe - (.Microsoft Corporation - Microsoft Windows Search Protocol Host.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\spoolsv.exe - (.Microsoft Corporation - Application sous-système spouleur.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\spoolsv.exe - (.Microsoft Corporation - Application sous-système spouleur.) [MitigationOptions\\2097152] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\svchost.exe - (.Microsoft Corporation - Processus hôte pour les services Windows.) [MinimumStackCommitInBytes\\32768] =>.Microsoft Windows Publisher®
O50 - IFEO:C:\Windows\System32\wscript.exe - (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
---\\ Liste des pilotes du système (93) - 41s
O58 - SDL:2017/03/18 21:56:25 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\Windows\System32\drivers\3ware.sys [107424] =>.Microsoft Windows®
O58 - SDL:2016/10/12 06:37:52 A . (.HP - HP Accelerometer.) -- C:\Windows\System32\drivers\Accelerometer.sys [56128] =>.HP Inc.®
O58 - SDL:2017/03/18 21:56:25 A . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS.) -- C:\Windows\System32\drivers\adp80xx.sys [1135512] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [83352] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [259488] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [27040] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [132000] =>.Microsoft Windows®
O58 - SDL:2012/06/14 17:39:44 A . (.Beceem communications pvt ltd. - Beceem Communications Inc. WiMAX driver.) -- C:\Windows\System32\drivers\BcmBusCtr_64.sys [62976] =>.Beceem communications pvt ltd.
O58 - SDL:2017/03/18 21:56:25 A . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\Windows\System32\drivers\bcmfn2.sys [9728] =>.Windows (R) Win 7 DDK provider
O58 - SDL:2017/03/18 21:56:23 A . (.QLogic Corporation - QLogic Gigabit Ethernet VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [533920] =>.Microsoft Windows®
O58 - SDL:2017/07/19 09:11:32 A . (.Connectify - Connectify NDISRD helper driver.) -- C:\Windows\System32\drivers\cfywlan2.sys [46088] =>.Connectify (Connectify, Inc.)®
O58 - SDL:2017/03/18 21:56:25 A . (.Chelsio Communications - Chelsio iSCSI Crash Dump Driver.) -- C:\Windows\System32\drivers\cht4dx64.sys [102816] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.Chelsio Communications - Chelsio iSCSI VMiniport Driver.) -- C:\Windows\System32\drivers\cht4sx64.sys [347032] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.Chelsio Communications - Virtual Bus Driver for Chelsio ® T4 Chipset.) -- C:\Windows\System32\drivers\cht4vx64.sys [2104224] =>.Microsoft Windows®
O58 - SDL:2017/07/19 08:54:13 A . (.Connectify - NDISRD helper driver.) -- C:\Windows\System32\drivers\cnnctfy3.sys [42152] =>.Connectify®
O58 - SDL:2017/07/19 09:11:32 A . (.Connectify - CNNCTFY helper driver.) -- C:\Windows\System32\drivers\cnnctfy4.sys [53216] =>.Connectify (Connectify, Inc.)®
O58 - SDL:2015/08/31 19:25:56 A . (.Windows (R) Win 7 DDK provider - Explore Systems Virtual Audio Device.) -- C:\Windows\System32\drivers\dfx11_1x64.sys [28008] =>.Power Technology®
O58 - SDL:2015/11/15 00:07:54 A . (.Windows (R) Win 7 DDK provider - Explore Systems Virtual Audio Device.) -- C:\Windows\System32\drivers\dfx12x64.sys [39048] =>.Power Technology®
O58 - SDL:2012/06/14 17:39:44 A . (.Beceem communications pvt ltd. - Beceem Communications Inc. WiMAX driver.) -- C:\Windows\System32\drivers\drxvi314_64lh.sys [363136] =>.Beceem communications pvt ltd.
O58 - SDL:2016/10/09 00:48:25 A . (.Disc Soft Ltd - DAEMON Tools Pro Virtual SCSI Bus Driver.) -- C:\Windows\System32\drivers\dtproscsibus.sys [30264] =>.Disc Soft Ltd®
O58 - SDL:2016/11/05 08:23:18 A . (.DT Soft Ltd - DAEMON Tools Virtual Bus Driver.) -- C:\Windows\System32\drivers\dtsoftbus01.sys [283200] =>.DT Soft Ltd®
O58 - SDL:2016/11/28 12:11:12 A . (.Disc Soft Ltd - DAEMON Tools Ultra Virtual SCSI Bus Driver.) -- C:\Windows\System32\drivers\dtultrascsibus.sys [30264] =>.Disc Soft Ltd®
O58 - SDL:2016/11/28 12:11:16 A . (.Disc Soft Ltd - DAEMON Tools Ultra Virtual USB Bus Driver.) -- C:\Windows\System32\drivers\dtultrausbbus.sys [47672] =>.Disc Soft Ltd®
O58 - SDL:2015/02/28 23:22:52 A . (.The Within Network, LLC - UxStyle Community Edition Kernel Driver.) -- C:\Windows\System32\drivers\elytsxu.sys [32424] =>.The Within Network, LLC®
O58 - SDL:2016/08/01 23:15:38 A . (.ELAN Microelectronic Corp. - ELAN SMBus Driver.) -- C:\Windows\System32\drivers\ETDSMBus.sys [31832] =>.ELAN MICROELECTRONICS CORPORATION®
O58 - SDL:2017/03/18 21:56:23 A . (.QLogic Corporation - QLogic 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3419040] =>.Microsoft Windows®
O58 - SDL:2017/06/26 16:07:57 A . (.Huawei Technologies Co., Ltd. - ew_jubusenum Driver.) -- C:\Windows\System32\drivers\ew_jubusenum.sys [86016] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2009/09/09 10:23:46 A . (.Intel Corporation - BIOS Update Driver.) -- C:\Windows\System32\drivers\flashud.sys [51712] =>.Intel Corporation
O58 - SDL:2014/10/22 14:29:00 A . (.BitDefender LLC - BitDefender Gonzales FileSystem Driver.) -- C:\Windows\System32\drivers\gzflt.sys [155912] =>.Bitdefender SRL®
O58 - SDL:2016/10/12 06:37:56 A . (.HP - HP Disk Filter - SATA/RAID.) -- C:\Windows\System32\drivers\hpdskflt.sys [42312] =>.HP Inc.®
O58 - SDL:2014/05/15 14:18:36 A . (.Hewlett-Packard Company - Keyboard Filter Driver.) -- C:\Windows\System32\drivers\HpqKbFiltr64.sys [28376] =>.Hewlett-Packard Company®
O58 - SDL:2017/03/18 21:56:25 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [64416] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:28 A . (.Intel(R) Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\Windows\System32\drivers\iagpio.sys [33280] =>.Intel(R) Corporation
O58 - SDL:2017/03/18 21:56:28 A . (.Intel(R) Corporation - Intel(R) Serial IO I2C Driver.) -- C:\Windows\System32\drivers\iai2c.sys [81408] =>.Intel(R) Corporation
O58 - SDL:2017/03/18 21:56:28 A . (.Intel Corporation - Intel(R) Serial IO GPIO Driver v2.) -- C:\Windows\System32\drivers\iaLPSS2i_GPIO2.sys [70656] =>.Intel Corporation
O58 - SDL:2017/03/18 21:56:28 A . (.Intel Corporation - Intel(R) Serial IO GPIO Driver v2.) -- C:\Windows\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [85504] =>.Intel Corporation
O58 - SDL:2017/03/18 21:56:28 A . (.Intel Corporation - Intel(R) Serial IO I2C Driver v2.) -- C:\Windows\System32\drivers\iaLPSS2i_I2C.sys [165376] =>.Intel Corporation
O58 - SDL:2017/03/18 21:56:28 A . (.Intel Corporation - Intel(R) Serial IO I2C Driver v2.) -- C:\Windows\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [168448] =>.Intel Corporation
O58 - SDL:2017/03/18 21:56:23 A . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [38128] =>.Intel Corporation - Client Components Group®
O58 - SDL:2017/03/18 21:56:19 A . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\Windows\System32\drivers\iaLPSSi_I2C.sys [113152] =>.Intel Corporation
O58 - SDL:2016/08/29 21:15:48 A . (.Intel Corporation - Intel(R) Rapid Storage Technology driver -.) -- C:\Windows\System32\drivers\iaStorA.sys [1469944] =>.Intel(R) Rapid Storage Technology®
O58 - SDL:2017/03/18 21:56:26 A . (.Intel Corporation - Intel(R) Rapid Storage Technology driver (i.) -- C:\Windows\System32\drivers\iaStorAV.sys [673184] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:26 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [412064] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.Mellanox - InfiniBand Fabric Bus Driver.) -- C:\Windows\System32\drivers\ibbus.sys [526240] =>.Microsoft Windows®
O58 - SDL:2017/08/05 17:26:42 A . (.Tonec Inc. - Internet Download Manager WFP Driver.) -- C:\Windows\System32\drivers\idmwfp.sys [225568] =>.Tonec Inc.®
O58 - SDL:2015/09/03 12:36:28 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\drivers\igdkmd64.sys [6415256] =>.Intel Corporation - pGFX®
O58 - SDL:2016/05/12 05:32:26 A . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\Windows\System32\drivers\IntcDAud.sys [481768] =>.Intel(R) OWR®
O58 - SDL:2014/01/20 08:19:28 A . (.Ralink Corporation - Bluetooth Filter Driver.) -- C:\Windows\System32\drivers\IvtUrbBtFlt.sys [51936] =>.IVT CORPORATION®
O58 - SDL:2017/03/18 21:56:25 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [108960] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2i.sys [123808] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.Avago Technologies - Avago SAS Gen3 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas3i.sys [103328] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sss.sys [82848] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [59808] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\MegaSas2i.sys [64416] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\megasr.sys [575904] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.Mellanox - MLX4 Bus Driver.) -- C:\Windows\System32\drivers\mlx4_bus.sys [842656] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\Windows\System32\drivers\mvumis.sys [63904] =>.Microsoft Windows®
O58 - SDL:2016/08/31 16:00:32 A . (...) -- C:\Windows\System32\drivers\mwescontroller.sys [57680] {39D3FCDE4532A63BD298039D0555D0C2} =>PUP.Optional.WebShield
O58 - SDL:2017/03/18 21:56:25 A . (.Mellanox - NetworkDirect Support Filter Driver.) -- C:\Windows\System32\drivers\ndfltr.sys [108960] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:23 A . (.MediaTek Inc. - MediaTek 802.11 Wireless Adapter Driver.) -- C:\Windows\System32\drivers\netr28x.sys [2537984] =>.MediaTek Inc.
O58 - SDL:2017/03/18 21:56:25 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [150432] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [166304] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\percsas2i.sys [58784] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\percsas3i.sys [61848] =>.Microsoft Windows®
O58 - SDL:2017/04/23 08:35:25 A . (.Realtek - Realtek 8101E/8168/8169 NDIS 6.40 64-bit Dr.) -- C:\Windows\System32\drivers\rt640x64.sys [950784] =>.Realtek Semiconductor Corp.®
O58 - SDL:2016/04/21 06:44:27 A . (.Ralink Technology, Corp. - Ralink Bluetooth Adapter.) -- C:\Windows\System32\drivers\rtbth.sys [1219200] =>.MEDIATEK INC.®
O58 - SDL:2017/03/23 06:06:54 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\drivers\RTKVHD64.sys [5702144] =>.Realtek Semiconductor Corp.®
O58 - SDL:2017/03/26 19:40:06 A . (.Realsil Semiconductor Corporation - RTS PCIE READER Driver.) -- C:\Windows\System32\drivers\RtsPer.sys [791040] =>.Realtek Semiconductor Corp.®
O58 - SDL:2016/09/17 01:12:20 A . (.Razer, Inc. - Razer Overlay Support.) -- C:\Windows\System32\drivers\rzpmgrk.sys [44144] =>.Razer Inc.®
O58 - SDL:2016/10/16 12:04:08 A . (.Windows (R) Win 7 DDK provider - RazerSurround VAD Audio driver.) -- C:\Windows\System32\drivers\RzSurroundVAD.sys [49176] =>.Razer USA Ltd.®
O58 - SDL:2015/10/08 08:00:24 A . (.Power Software Ltd - PowerISO Virtual Drive.) -- C:\Windows\System32\drivers\scdemu.sys [127760] =>.Power Software Limited®
O58 - SDL:2017/03/18 21:56:26 A . (...) -- C:\Windows\System32\drivers\SDFRd.sys [31128] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [44960] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [81824] =>.Microsoft Windows®
O58 - SDL:2017/02/17 03:14:54 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\Windows\System32\drivers\Smb_driver_AMDASF_Aux.sys [69216] =>.Synaptics Incorporated®
O58 - SDL:2016/04/21 07:04:46 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\Windows\System32\drivers\Smb_driver_Intel.sys [33960] =>.Synaptics Incorporated®
O58 - SDL:2017/02/17 03:15:00 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\Windows\System32\drivers\Smb_driver_Intel_Aux.sys [72800] =>.Synaptics Incorporated®
O58 - SDL:2016/09/05 05:47:06 A . (.Samsung Electronics Co., Ltd. - SAMSUNG USB Composite Device Driver.) -- C:\Windows\System32\drivers\ssudbus.sys [131712] =>.Samsung Electronics CO., LTD.®
O58 - SDL:2017/05/18 22:17:30 A . (.Samsung Electronics Co., Ltd. - SAMSUNG Android Modem Device Driver.) -- C:\Windows\System32\drivers\ssudmdm.sys [166288] =>.Samsung Electronics Co., Ltd.®
O58 - SDL:2017/03/18 21:56:25 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\Windows\System32\drivers\stexstor.sys [31136] =>.Microsoft Windows®
O58 - SDL:2017/02/17 03:15:18 A . (.Synaptics Incorporated - Synaptics I2C Driver.) -- C:\Windows\System32\drivers\SynRMIHID_Aux.sys [66144] =>.Synaptics Incorporated®
O58 - SDL:2017/02/17 03:15:20 A . (.Synaptics Incorporated - Synaptics Touchpad Win64 Driver.) -- C:\Windows\System32\drivers\SynTP.sys [936544] =>.Synaptics Incorporated®
O58 - SDL:2013/08/22 13:40:24 A . (.The OpenVPN Project - TAP-Windows Virtual Network Driver.) -- C:\Windows\System32\drivers\tap0901.sys [40664] =>.OpenVPN Technologies, Inc.®
O58 - SDL:2017/02/15 06:54:08 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\drivers\TeeDriverW8x64.sys [204920] =>.Intel(R) Embedded Subsystems and IP Blocks Group®
O58 - SDL:2016/05/19 05:02:48 A . (.电脑管家 - 电脑管家-驱动模块.) -- C:\Windows\System32\drivers\TFsFltX64.sys [97400] =>.SUP.Tencent
O58 - SDL:2017/03/18 21:56:25 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [166816] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\Windows\System32\drivers\VSTXRAID.SYS [305568] =>.Microsoft Windows®
O58 - SDL:2016/07/18 12:15:39 A . (.Western Digital Technologies, Inc. - Western Digital SCSI Architecture Model (SA.) -- C:\Windows\System32\drivers\wdcsam64.sys [26880] =>.WDKTestCert wdclab,130885612892544312®
O58 - SDL:2017/03/18 21:56:25 A . (.Mellanox - Kernel WinMad.) -- C:\Windows\System32\drivers\winmad.sys [32160] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.Mellanox - Kernel WinVerbs.) -- C:\Windows\System32\drivers\winverbs.sys [64920] =>.Microsoft Windows®
O58 - SDL:2016/08/01 11:32:10 A . (.HP - HP Wireless Button Driver.) -- C:\Windows\System32\drivers\WirelessButtonDriver64.sys [32832] =>.HP Inc.®
O58 - SDL:2014/11/18 14:39:06 A . (...) -- C:\Windows\System32\epmntdrv.sys [18528] =>.CHENGDU YIWO Tech Development Co., Ltd.®
O58 - SDL:2014/11/18 14:39:06 A . (...) -- C:\Windows\System32\EuGdiDrv.sys [10848] =>.CHENGDU YIWO Tech Development Co., Ltd.®
---\\ Derniers fichiers modifiés ou crées (Utilisateur) (11) - 62s
O61 - LFC: 2017/09/18 21:57:47 A . (..) -- C:\Users\eric\AppData\Roaming\af688c2fb64e4f05a7eadcc4857dc524\8TWeFR2T.exe [110080]
O61 - LFC: 2017/09/18 22:01:54 A . (.Banin.) -- C:\Users\eric\AppData\Roaming\dll4c4dqy3m\vlsmh5qj2bq.exe [8192]
O61 - LFC: 2017/09/18 22:06:11 A . (.EpicNet Inc..) -- C:\Users\eric\AppData\Roaming\EpicNet Inc\CloudNet\cloudnet.exe [776704] =>Adware.MSIL
O61 - LFC: 2017/09/19 00:03:05 A . (.Banin.) -- C:\Users\eric\AppData\Roaming\n2dddu3iwrk\yhpppi0pl3s.exe [8192]
O61 - LFC: 2017/09/19 02:04:42 A . (.Banin.) -- C:\Users\eric\AppData\Roaming\py4fb2s5qpf\hsftbemcrx5.exe [8192]
O61 - LFC: 2017/09/20 06:56:03 A . (..) -- C:\Users\eric\Desktop\Navilog1 (2).exe [260562]
O61 - LFC: 2017/09/20 06:54:57 A . (..) -- C:\Users\eric\Downloads\Navilog1 (1).exe [260562]
O61 - LFC: 2017/09/20 06:56:03 A . (..) -- C:\Users\eric\Downloads\Navilog1 (2).exe [260562]
O61 - LFC: 2017/09/20 07:02:55 A . (..) -- C:\Users\eric\Downloads\Navilog1 (3).exe [260562]
O61 - LFC: 2017/09/20 07:03:15 A . (..) -- C:\Users\eric\Downloads\Navilog1 (4).exe [260562]
O61 - LFC: 2017/09/20 06:55:09 A . (..) -- C:\Users\eric\Downloads\Navilog1.exe [260562]
---\\ Associations Shell Spawning (10) - 1s
O67 - Shell Spawning: <.bat>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Ob.) -- C:\Windows\System32\eventvwr.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.exe>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.EXE =>.Microsoft Corporation®
O67 - Shell Spawning: <.js>[HKLM\..\open\Command] (...) -- %1" %*
O67 - Shell Spawning: <.reg>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.scr>[HKLM\..\open\Command] (...) -- "%1" /S
---\\ Menu de démarrage Internet (12) - 0s
O68 - StartMenuInternet: [64Bits][HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O68 - StartMenuInternet: [64Bits][HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O68 - StartMenuInternet: [64Bits][HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
---\\ Recherche d'infection sur les navigateurs (6) - 11s
O69 - SBI: SearchScopes [HKCU] [64Bits]{0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/ =>.Bing.com
O69 - SBI: SearchScopes [HKCU] [64Bits]{85A60A59-D3D8-468F-B598-FB4393789EF4} - (Google) - http://www.google.com/ =>.Google Inc.
O69 - SBI: SearchScopes [HKCU] [64Bits]{AECF2199-92B4-489A-6E9F-05BB7C51B337} - (Bing) - http://www.bing.com/ =>.Bing.com
O69 - SBI: SearchScopes [HKCU] [64Bits]{C0C3A6C6-03BC-4195-8FCB-AEA091301353} - (Yahoo!) - http://search.yahoo.com/ =>.Yahoo! Inc.
O69 - SBI: SearchScopes [HKCU] [64Bits]{ielnksrch} - (Search the web) - http://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBUTxkij9_BzU3kNIXrMgi_S4jMkrzCxpQx778QxHt-0cU5PfYrESwwrZ4zkWiOEBYb2YgiZn5IASpbWsOUYWoazDCn10RFcC58lRtT3cccrUOx3Nf-bCryHzQxwVcelubxxEudFuYo7mU_IkkPOkJwYPMgZg1ehdWiZq2fDcs7sMIJvuE-1LU,&q={searchTerms} =>.SUP.Linkury
O69 - SBI: SearchScopes [HKLM] [64Bits]{0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (@ieframe.dll,-12512) - http://www.bing.com/ =>.Bing.com
---\\ Enumère les services démarrés par Svchost (48) - 3s
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [189952] =>.Microsoft Corporation
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [189952] =>.Microsoft Corporation
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [303104] =>.Microsoft Corporation
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [1269248] =>.Microsoft Corporation
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [934912] =>.Microsoft Corporation
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll [996864] =>.Microsoft Corporation
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\Windows\system32\seclogon.dll [31232] =>.Microsoft Corporation
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [138752] =>.Microsoft Corporation
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [150016] =>.Microsoft Corporation
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [108032] =>.Microsoft Corporation
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [877568] =>.Microsoft Corporation
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [221696] =>.Microsoft Corporation
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [133120] =>.Microsoft Corporation
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [413184] =>.Microsoft Corporation
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\sessenv.dll [385536] =>.Microsoft Corporation
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [93184] =>.Microsoft Corporation
O83 - Search Svchost Services: shpamsvc (shpamsvc) . (.Microsoft Corporation - SharedPC.AccountManager.) -- C:\Windows\System32\Windows.SharedPC.AccountManager.dll [192512] =>.Microsoft Corporation
O83 - Search Svchost Services: XblGameSave (XblGameSave) . (.Microsoft Corporation - Xbox Live Game Save Service.) -- C:\Windows\System32\XblGameSave.dll [1135104] =>.Microsoft Corporation
O83 - Search Svchost Services: NaturalAuthentication (NaturalAuthentication) . (.Microsoft Corporation - Service d’authentification naturelle.) -- C:\Windows\System32\NaturalAuth.dll [723968] =>.Microsoft Corporation
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\Windows\System32\wlidsvc.dll [2153984] =>.Microsoft Corporation
O83 - Search Svchost Services: UserManager (UserManager) . (.Microsoft Corporation - UserMgr.) -- C:\Windows\System32\usermgr.dll [877568] =>.Microsoft Corporation
O83 - Search Svchost Services: XblAuthManager (XblAuthManager) . (.Microsoft Corporation - Xbox Live Auth Manager.) -- C:\Windows\System32\XblAuthManager.dll [1015296] =>.Microsoft Corporation
O83 - Search Svchost Services: DmEnrollmentSvc (DmEnrollmentSvc) . (.Microsoft Corporation - DLL Windows Management Service.) -- C:\Windows\System32\Windows.Internal.Management.dll [536064] =>.Microsoft Corporation
O83 - Search Svchost Services: xbgm (xbgm) . (.Microsoft Corporation - Xbox Game Monitoring Service.) -- C:\Windows\System32\xbgmsvc.dll [301216] =>.Microsoft Windows Publisher®
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [69632] =>.Microsoft Corporation
O83 - Search Svchost Services: TokenBroker (TokenBroker) . (.Microsoft Corporation - Token Broker.) -- C:\Windows\System32\TokenBroker.dll [1052160] =>.Microsoft Corporation
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Service de géolocalisation.) -- C:\Windows\System32\lfsvc.dll [43520] =>.Microsoft Corporation
O83 - Search Svchost Services: Irmon (Irmon) . (.Microsoft Corporation - Moniteur infrarouge.) -- C:\Windows\System32\irmon.dll [24576] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [104448] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d’accès à dista.) -- C:\Windows\System32\rasmans.dll [874496] =>.Microsoft Corporation
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [490496] =>.Microsoft Corporation
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\sens.dll [69632] =>.Microsoft Corporation
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\Windows\System32\ipnathlp.dll [537600] =>.Microsoft Corporation
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [306688] =>.Microsoft Corporation
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\System32\wuaueng.dll [2445824] =>.Microsoft Corporation
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [1159680] =>.Microsoft Corporation
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [612864] =>.Microsoft Corporation
O83 - Search Svchost Services: dmwappushservice (dmwappushservice) . (.Microsoft Corporation - dmwappushsvc.) -- C:\Windows\System32\dmwappushsvc.dll [55296] =>.Microsoft Corporation
O83 - Search Svchost Services: wisvc (wisvc) . (.Microsoft Corporation - Paramètres de vol.) -- C:\Windows\System32\flightsettings.dll [699904] =>.Microsoft Corporation
O83 - Search Svchost Services: WpnService (WpnService) . (.Microsoft Corporation - Service du système de notifications Push Wi.) -- C:\Windows\System32\WpnService.dll [276480] =>.Microsoft Corporation
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [385536] =>.Microsoft Corporation
O83 - Search Svchost Services: XboxNetApiSvc (XboxNetApiSvc) . (.Microsoft Corporation - Xbox Live Networking Service.) -- C:\Windows\System32\XboxNetApiSvc.dll [1067008] =>.Microsoft Corporation
O83 - Search Svchost Services: UsoSvc (UsoSvc) . (.Microsoft Corporation - Mettre à jour la session Orchestrator Core.) -- C:\Windows\System32\usocore.dll [681984] =>.Microsoft Corporation
O83 - Search Svchost Services: NetSetupSvc (NetSetupSvc) . (.Microsoft Corporation - Service Configuration du réseau.) -- C:\Windows\System32\NetSetupSvc.dll [261632] =>.Microsoft Corporation
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d’installation de périphérique.) -- C:\Windows\System32\DeviceSetupManager.dll [233984] =>.Microsoft Corporation
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Micro.) -- C:\Windows\System32\ncasvc.dll [167424] =>.Microsoft Corporation
O83 - Search Svchost Services: XboxGipSvc (XboxGipSvc) . (.Microsoft Corporation - Xbox Gip Management Service.) -- C:\Windows\System32\XboxGipSvc.dll [18944] =>.Microsoft Corporation
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll [196096] =>.Microsoft Corporation
---\\ Liste des exceptions du parefeu Windows (10) - 4s
O87 - FAEL: "UDP Query User{062018FD-1341-4514-9F9C-51183C5EF470}C:\users\eric\desktop\winbox_4.exe" [In-None-P17-TRUE] .(...) -- C:\users\eric\desktop\winbox_4.exe
O87 - FAEL: "TCP Query User{2B47B8DE-CE28-4EB6-B6BA-91A57B277D8C}C:\users\eric\desktop\winbox_4.exe" [In-None-P6-TRUE] .(...) -- C:\users\eric\desktop\winbox_4.exe
O87 - FAEL: "UDP Query User{98F7EB9F-5CF3-4AA4-BAC0-87F565548911}C:\users\eric\downloads\programs\winbox.exe" [In-None-P17-TRUE] .(...) -- C:\users\eric\downloads\programs\winbox.exe
O87 - FAEL: "TCP Query User{D9755CD0-A6F1-4B0A-A14E-F3357C100506}C:\users\eric\downloads\programs\winbox.exe" [In-None-P6-TRUE] .(...) -- C:\users\eric\downloads\programs\winbox.exe
O87 - FAEL: "UDP Query User{90BF81D5-E97C-47C7-808C-1AB451388BCC}C:\program files (x86)\dmc devi may cry\binaries\win32\dmc-devilmaycry.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\dmc devi may cry\binaries\win32\dmc-devilmaycry.exe (.not file.)
O87 - FAEL: "TCP Query User{F9E0ACE8-FA32-4887-9BC7-5E284001048E}C:\program files (x86)\dmc devi may cry\binaries\win32\dmc-devilmaycry.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\dmc devi may cry\binaries\win32\dmc-devilmaycry.exe (.not file.)
O87 - FAEL: "UDP Query User{9B2D0B11-F972-4416-9BCE-839F458A93C2}C:\app\eric\product\11.2.0\client_5\jdk\jre\bin\java.exe" [In-None-P17-TRUE] .(...) -- C:\app\eric\product\11.2.0\client_5\jdk\jre\bin\java.exe (.not file.)
O87 - FAEL: "TCP Query User{01ADD3D6-EED4-47EC-A413-01F29162F071}C:\app\eric\product\11.2.0\client_5\jdk\jre\bin\java.exe" [In-None-P6-TRUE] .(...) -- C:\app\eric\product\11.2.0\client_5\jdk\jre\bin\java.exe (.not file.)
O87 - FAEL: "UDP Query User{6D012195-1718-4813-88BC-AF3678D6274C}C:\app\eric\product\11.2.0\dbhome_1\jdk\jre\bin\java.exe" [In-None-P17-TRUE] .(...) -- C:\app\eric\product\11.2.0\dbhome_1\jdk\jre\bin\java.exe (.not file.)
O87 - FAEL: "TCP Query User{BC46962E-2838-4D96-9DBC-35649AD32761}C:\app\eric\product\11.2.0\dbhome_1\jdk\jre\bin\java.exe" [In-None-P6-TRUE] .(...) -- C:\app\eric\product\11.2.0\dbhome_1\jdk\jre\bin\java.exe (.not file.)
---\\ Recherche de clés de registre Tracing (2) - 8s
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Windows KMS Activator Ultimate 2017 v3_RASAPI32 =>Hacktool.Office
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Windows KMS Activator Ultimate 2017 v3_RASMANCS =>Hacktool.Office
---\\ Scan Additionnel (114) - 6s
HKLM\SYSTEM\CurrentControlSet\Services\mweshield =>PUP.Optional.WebShield
C:\Program Files\My Web Shield\mweshield.exe =>PUP.Optional.WebShield
HKLM\SYSTEM\CurrentControlSet\Services\mweshieldup =>PUP.Optional.WebShield
C:\Program Files\My Web Shield\mweshieldup.exe =>PUP.Optional.WebShield
HKLM\SYSTEM\CurrentControlSet\Services\Service KMSELDI =>HackTool.KMSpico
C:\Program Files\KMSpico\Service_KMS.exe =>HackTool.KMSpico
C:\Users\eric\AppData\Roaming\EpicNet Inc\CloudNet\cloudnet.exe =>Adware.MSIL
C:\Users\eric\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\eojeoeddgeaeahpmfabdfpfialkoplcb =>Adware.CloudAtlas
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{13D67BB7-DB5F-48AA-884D-7A5D94168509} =>.SUP.Orphan
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{13D67BB7-DB5F-48AA-884D-7A5D94168509} =>.SUP.Orphan
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA} =>.SUP.Orphan
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3049C3E9-B461-4BC5-8870-4C09146192CA} =>.SUP.Orphan
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7C260B4B-F7A0-40B5-B403-BEFCDC6A4C3B} =>.SUP.Orphan
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{7C260B4B-F7A0-40B5-B403-BEFCDC6A4C3B} =>.SUP.Orphan
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\mweshield =>PUP.Optional.WebShield
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1 =>HackTool.KMSpico
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\gupdate 2.00 =>Adware.GUpdate
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\NoterSave_is1 =>.SUP.Tuto4PC
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\gupdate 2.00 =>Adware.GUpdate
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\NoterSave_is1 =>.SUP.Tuto4PC
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\CloudNet =>Adware.MSIL
C:\Program Files\BDSCJGDHLE\BDSCJGDHL.exe =>Adware.Wizzcaster
C:\Program Files\BDSCJGDHLE\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\BDSCJGDHLE =>Adware.Wizzcaster
C:\Program Files\KMSpico =>HackTool.KMSpico
C:\Program Files\L76ZO09L6P\L76ZO09L6.exe =>Adware.Wizzcaster
C:\Program Files\L76ZO09L6P\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\L76ZO09L6P =>Adware.Wizzcaster
C:\Program Files\My Web Shield =>PUP.Optional.WebShield
C:\Program Files\XSBDBY8FNB\XSBDBY8FN.exe =>Adware.Wizzcaster
C:\Program Files\XSBDBY8FNB\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\XSBDBY8FNB =>Adware.Wizzcaster
C:\Program Files (x86)\1a641ce1-bb17-40f5-a1fc-3ea2f4cf1fdb1490347953 =>Adware.CrossRider
C:\Program Files (x86)\pccleanplus =>.SUP.PCCleanPlus
C:\Program Files (x86)\xtex =>Adware.GUpdate
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSpico =>HackTool.KMSpico
C:\ProgramData\159d8e6ff42042bbae0f0def4445b047 =>Adware.Suspect
C:\ProgramData\1faff803c0964a86b82fdd284408c283 =>Adware.Suspect
C:\ProgramData\240cf49e-0e03-1 =>.SUP.Polluteware
C:\ProgramData\240cf49e-4495-0 =>.SUP.Polluteware
C:\ProgramData\240cf49e-45b7-0 =>.SUP.Polluteware
C:\ProgramData\240cf49e-5341-1 =>.SUP.Polluteware
C:\ProgramData\240cf49e-6c35-0 =>.SUP.Polluteware
C:\ProgramData\240cf49e-6d97-1 =>.SUP.Polluteware
C:\ProgramData\Airtostrongs =>PUP.Optional.Salus
C:\ProgramData\b945d8214d7047bd89ea300fbaf0006d =>Adware.Suspect
C:\ProgramData\CloudPrinter =>.SUP.Linkury
C:\ProgramData\Logic Handler =>PUP.Optional.LogicHandler
C:\ProgramData\WindowsErrorReporting =>Trojan.GenericKD
C:\Users\eric\AppData\Roaming\dll4c4dqy3m\vlsmh5qj2bq.exe =>Heuristic.Wizzcaster
C:\Users\eric\AppData\Roaming\dll4c4dqy3m =>Heuristic.Wizzcaster
C:\Users\eric\AppData\Roaming\EpicNet Inc =>Adware.MSIL
C:\Users\eric\AppData\Roaming\gplyra =>.SUP.Gplyra
C:\Users\eric\AppData\Roaming\Imminent =>PUP.Optional.IMBooster
C:\Users\eric\AppData\Roaming\Microleaves =>.SUP.Microleaves
C:\Users\eric\AppData\Roaming\n2dddu3iwrk\yhpppi0pl3s.exe =>Heuristic.Wizzcaster
C:\Users\eric\AppData\Roaming\n2dddu3iwrk =>Heuristic.Wizzcaster
C:\Users\eric\AppData\Roaming\py4fb2s5qpf\hsftbemcrx5.exe =>Heuristic.Wizzcaster
C:\Users\eric\AppData\Roaming\py4fb2s5qpf =>Heuristic.Wizzcaster
C:\Users\eric\AppData\Roaming\Solvusoft =>.SUP.Solvusoft
C:\Users\eric\AppData\Roaming\Tencent =>.SUP.Tencent
C:\Users\eric\AppData\Local\AdvinstAnalytics =>.SUP.Various
C:\Windows\System32\drivers\mwescontroller.sys =>PUP.Optional.WebShield
HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{ielnksrch} =>.SUP.Linkury
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Windows KMS Activator Ultimate 2017 v3_RASAPI32 =>Hacktool.Office
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Windows KMS Activator Ultimate 2017 v3_RASMANCS =>Hacktool.Office
C:\Users\eric\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_airdroid.fr.softonic.com_0.localstorage =>.SUP.Softonic
C:\Users\eric\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_search.safefinder.com_0.localstorage =>PUP.Optional.Browser
C:\Users\eric\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_search.snapdo.com_0.localstorage =>PUP.Optional.SmartBar
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\03D22C9C66915D58C88912B64C1F984B8344EF09 =>PUM.Misplaced.Certificate [Comodo Security]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\0F684EC1163281085C6AF20528878103ACEFCAAB =>PUM.Misplaced.Certificate [F-Secure]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\1667908C9E22EFBD0590E088715CC74BE4C60884 =>PUM.Misplaced.Certificate [FRISK]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\18DEA4EFA93B06AE997D234411F3FD72A677EECE =>PUM.Misplaced.Certificate [Bitdefender]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\2026D13756EB0DB753DF26CB3B7EEBE3E70BB2CF =>PUM.Misplaced.Certificate [G-Data]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\249BDA38A611CD746A132FA2AF995A2D3C941264 =>PUM.Misplaced.Certificate [Malwarebytes]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\31AC96A6C17C425222C46D55C3CCA6BA12E54DAF =>PUM.Misplaced.Certificate [Symantec]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\331E2046A1CCA7BFEF766724394BE6112B4CA3F7 =>PUM.Misplaced.Certificate [Trend Micro]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\3353EA609334A9F23A701B9159E30CB6C22D4C59 =>PUM.Misplaced.Certificate [Webroot]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\373C33726722D3A5D1EDD1F1585D5D25B39BEA1A =>PUM.Misplaced.Certificate [SUPERAntiSpyware]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\3850EDD77CC74EC9F4829AE406BBF9C21E0DA87F =>PUM.Misplaced.Certificate [Kaspersky]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\3D496FA682E65FC122351EC29B55AB94F3BB03FC =>PUM.Misplaced.Certificate [AVG Technologies]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\4243A03DB4C3C15149CEA8B38EEA1DA4F26BD159 =>PUM.Misplaced.Certificate [PC Tools]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\42727E052C0C2E1B35AB53E1005FD9EDC9DE8F01 =>PUM.Misplaced.Certificate [K7 Computing]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\4420C99742DF11DD0795BC15B7B0ABF090DC84DF =>PUM.Misplaced.Certificate [Doctor Web]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\4C0AF5719009B7C9D85C5EAEDFA3B7F090FE5FFF =>PUM.Misplaced.Certificate [Emsisoft]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\5240AB5B05D11B37900AC7712A3C6AE42F377C8C =>PUM.Misplaced.Certificate [CheckPoint]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\5DD3D41810F28B2A13E9A004E6412061E28FA48D =>PUM.Misplaced.Certificate [Emsisoft]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\7457A3793086DBB58B3858D6476889E3311E550E =>PUM.Misplaced.Certificate [K7 Computing]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\76A9295EF4343E12DFC5FE05DC57227C1AB00D29 =>PUM.Misplaced.Certificate [BullGuard]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\775B373B33B9D15B58BC02B184704332B97C3CAF =>PUM.Misplaced.Certificate [McAfee]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\872CD334B7E7B3C3D1C6114CD6B221026D505EAB =>PUM.Misplaced.Certificate [Comodo Security]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\88AD5DFE24126872B33175D1778687B642323ACF =>PUM.Misplaced.Certificate [McAfee]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\9132E8B079D080E01D52631690BE18EBC2347C1E =>PUM.Misplaced.Certificate [Adaware Software]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\982D98951CF3C0CA2A02814D474A976CBFF6BDB1 =>PUM.Misplaced.Certificate [Safer Networking]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\9A08641F7C5F2CCA0888388BE3E5DBDDAAA3B361 =>PUM.Misplaced.Certificate [Webroot]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\9C43F665E690AB4D486D4717B456C5554D4BCEB5 =>PUM.Misplaced.Certificate [ThreatTrack]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\9E3F95577B37C74CA2F70C1E1859E798B7FC6B13 =>PUM.Misplaced.Certificate [CurioLab]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\A1F8DCB086E461E2ABB4B46ADCFA0B48C58B6E99 =>PUM.Misplaced.Certificate [Avira Operations]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\A5341949ABE1407DD7BF7DFE75460D9608FBC309 =>PUM.Misplaced.Certificate [BullGuard]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\A59CC32724DD07A6FC33F7806945481A2D13CA2F =>PUM.Misplaced.Certificate [ESET]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\AB7E760DA2485EA9EF5A6EEE7647748D4BA6B947 =>PUM.Misplaced.Certificate [AVG Technologies]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\AD4C5429E10F4FF6C01840C20ABA344D7401209F =>PUM.Misplaced.Certificate [Avast Software]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\AD96BB64BA36379D2E354660780C2067B81DA2E0 =>PUM.Misplaced.Certificate [Symantec]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\B8EBF0E696AF77F51C96DB4D044586E2F4F8FD84 =>PUM.Misplaced.Certificate [Malwarebytes]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\CDC37C22FE9272D8F2610206AD397A45040326B8 =>PUM.Misplaced.Certificate [Trend Micro]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\D3F78D747E7C5D6D3AE8ABFDDA7522BFB4CBD598 =>PUM.Misplaced.Certificate [Kaspersky]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\DB303C9B61282DE525DC754A535CA2D6A9BD3D87 =>PUM.Misplaced.Certificate [ThreatTrack]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\DB77E5CFEC34459146748B667C97B185619251BA =>PUM.Misplaced.Certificate [Avast Software]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\E22240E837B52E691C71DF248F12D27F96441C00 =>PUM.Misplaced.Certificate [Total Defense]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\E513EAB8610CFFD7C87E00BCA15C23AAB407FCEF =>PUM.Misplaced.Certificate [AVG Technologies]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\ED841A61C0F76025598421BC1B00E24189E68D54 =>PUM.Misplaced.Certificate [Bitdefender]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\F83099622B4A9F72CB5081F742164AD1B8D048C9 =>PUM.Misplaced.Certificate [ESET]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\FBB42F089AF2D570F2BF6F493D107A3255A9BB1A =>PUM.Misplaced.Certificate [Panda Security]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\FFFA650F2CB2ABC0D80527B524DD3F9FC172C138 =>PUM.Misplaced.Certificate [Doctor Web]
---\\ Récapitulatif des éléments trouvés sur votre station (38) - 1s
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>PUP.Optional.WebShield
https://nicolascoolman.eu/2017/02/16/hacktool-kmspico/ =>HackTool.KMSpico
https://nicolascoolman.eu/2017/09/13/adware-msil/ =>Adware.MSIL
https://nicolascoolman.eu/2017/08/10/adware-cloudatlas/ =>Adware.CloudAtlas
https://nicolascoolman.eu/2017/09/07/pup-optional-salus/ =>.SUP.Linkury
https://nicolascoolman.eu/2017/09/12/origine-lignes-orphelines/ =>.SUP.Orphan
https://nicolascoolman.eu/2017/01/22/adware-gupdate/ =>Adware.GUpdate
https://www.nicolascoolman.com/fr/pup-optional-tuto4pc/ =>.SUP.Tuto4PC
https://nicolascoolman.eu/2017/03/11/pup-optional-crossrider/ =>Adware.CrossRider
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.JawegoPartners
https://nicolascoolman.eu/2017/09/07/pup-optional-salus/ =>PUP.Optional.Salus
https://www.nicolascoolman.com/fr/hijacker-trovigo/ =>PUP.Optional.SoftwareEngine
https://nicolascoolman.eu/2017/02/23/tencentadressbar/ =>.SUP.Tencent
https://nicolascoolman.eu/2017/03/14/superfluous-trotux/ =>.SUP.Trotux
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.WinZipper
https://nicolascoolman.eu/2017/02/06/superfluous-conduit/ =>.SUP.Conduit
https://nicolascoolman.eu/2017/06/21/adware-fastdatax/ =>Adware.FastDataX
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Magicbit
https://www.nicolascoolman.com/fr/trojan-vonteera/ =>PUP.Optional.Vonteera
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Downloader
https://www.anti-malware.top/2016/05/24/adware-amonetize/ =>Adware.Amonetize
https://nicolascoolman.eu/2017/09/15/adware-wizzcaster/ =>Adware.Wizzcaster
https://www.anti-malware.top/2016/05/10/superfluous-pccleanplus/ =>.SUP.PCCleanPlus
https://nicolascoolman.eu/2017/03/02/adware-suspect/ =>Adware.Suspect
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Polluteware
https://nicolascoolman.eu/2017/01/04/pup-optional-logichandler/ =>PUP.Optional.LogicHandler
https://nicolascoolman.eu/2017/04/25/trojan-generickd/ =>Trojan.GenericKD
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>Heuristic.Wizzcaster
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Gplyra
https://nicolascoolman.eu/2017/09/08/adware-imbooster/ =>PUP.Optional.IMBooster
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Microleaves
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Solvusoft
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Various
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>Hacktool.Office
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Softonic
https://nicolascoolman.eu/2017/01/26/hijacker-browser/ =>PUP.Optional.Browser
https://nicolascoolman.eu/2017/09/09/pup-optional-smartbar/ =>PUP.Optional.SmartBar
https://nicolascoolman.eu/2017/06/26/trojan-certlock/ =>PUM.Misplaced.Certificate
~ Unselected Options: O40, O82,
~ End of the scan, 58807 items in 17mn32s (1753)(0)
~ Démarré par eric (Administrator) (2017/09/20 07:21:40)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Certificate ZHPDiag: Illegal
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\eric\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\eric\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Démarrage du système: Normal (Normal boot)
Windows 10 Pro, 64-bit (Build 15063) =>.Microsoft Corporation
---\\ Navigateurs Internet (4) - 0s
~ GCIE: Google Chrome v60.0.3112.78
~ MFIE: Mozilla Firefox 55.0.3 (x86 fr)
~ MSIE: Microsoft Edge v40
~ MSIE: Internet Explorer v11.608.15063.0
---\\ Informations sur les produits Windows (3) - 3s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK
---\\ Logiciels de protection (1) - 13s
Windows Defender (Activate) (Protection)
---\\ Surveillance de Logiciels (1) - 14s
~ Adobe Flash Player 27 NPAPI (Surveillance)
---\\ Informations sur le système (6) - 0s
~ Operating System: Intel64 Family 6 Model 69 Stepping 1, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 8153.24 MB (22% free) : OK =>.RAM Value
System Restore: Activé (Enable)
System drive C: has 18 GB (6%) free of 264 GB : ATTENTION =>Warning Disk Space
---\\ Mode de connexion au système (3) - 0s
~ Computer Name: LAPPAD-NDJIND
~ User Name: eric
~ Logged in as Administrator
---\\ Enumération des unités disques (2) - 0s
~ Drive C: has 18 GB free of 264 GB (System)
~ Drive F: has 44 GB free of 187 GB
---\\ Etat du Centre de Sécurité Windows (7) - 0s
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM64\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
---\\ Recherche particulière de fichiers génériques (25) - 3s
[MD5.3AF6D6F752EDE013ED15DFD2D44F8EF9] - 05/09/2017 - (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\Explorer.exe [4848960] =>.Microsoft Windows®
[MD5.ECB702B8C5650381C0784F1EEABB97BC] - 18/03/2017 - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\Windows\System32\rundll32.exe [68608] =>.Microsoft Corporation
[MD5.0242626678C83AE788C655C1990A3CC3] - 28/07/2017 - (.Microsoft Corporation - Application de démarrage de Windows.) -- C:\Windows\System32\Wininit.exe [318232] =>.Microsoft Windows Publisher®
[MD5.9AA7516745C98B81FC10227FF2652391] - 05/09/2017 - (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\System32\wininet.dll [3307008] =>.Microsoft Corporation
[MD5.9CDA170849A4F66F4D68B3DBB3AC8394] - 05/09/2017 - (.Microsoft Corporation - Application d’ouverture de session Windows.) -- C:\Windows\System32\Winlogon.exe [706560] =>.Microsoft Corporation
[MD5.50CDF68A8EA8A2A9165CD573FA6C42D8] - 18/03/2017 - (.Microsoft Corporation - Bibliothèque de licences.) -- C:\Windows\System32\sppcomapi.dll [414208] =>.Microsoft Corporation
[MD5.0F9FA6A2D4EAE50393DCE473759A9845] - 18/03/2017 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\Windows\System32\dnsapi.dll [661224] =>.Microsoft Windows®
[MD5.3F969D5ADEAB3284ABD500B37D74A8F8] - 18/03/2017 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\Windows\Syswow64\dnsapi.dll [508344] =>.Microsoft Windows®
[MD5.70E14A01193D817004C0F88E767BC59B] - 19/03/2017 - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) -- C:\Windows\System32\fr-FR\user32.dll.mui [19968] =>.Microsoft Corporation
[MD5.5A6D591D56791BA63CE73FCAD60D89A1] - 05/09/2017 - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) -- C:\Windows\System32\drivers\AFD.sys [610720] =>.Microsoft Windows®
[MD5.01733BEEE02E51F712330D5909BD701C] - 18/03/2017 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\drivers\atapi.sys [29088] =>.Microsoft Windows®
[MD5.B6E5AD7C83A5254DEE9D86023C0E5A81] - 18/03/2017 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\drivers\Cdfs.sys [93184] =>.Microsoft Corporation
[MD5.ABE77AD954BC3D72F559CF0C381E50BC] - 18/03/2017 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\drivers\Cdrom.sys [160256] =>.Microsoft Corporation
[MD5.185A4519B7764F4DEF714D890A7A9FD2] - 18/03/2017 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\drivers\DfsC.sys [150528] =>.Microsoft Corporation
[MD5.02B9639D9997E95CDF2F4C4F3BDCC73D] - 20/06/2017 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\drivers\HDAudBus.sys [86528] =>.Microsoft Corporation
[MD5.C6C8315E3262FAE460529C6DA2951682] - 18/03/2017 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\Windows\System32\drivers\i8042prt.sys [115200] =>.Microsoft Corporation
[MD5.DCC05E5EAA580C97F13B434FAFACED85] - 18/03/2017 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\drivers\IpNat.sys [214528] =>.Microsoft Corporation
[MD5.F2AD1B72C5A6475FB5FF332E1980DF88] - 18/03/2017 - (.Microsoft Corporation - Minirdr SMB Windows NT.) -- C:\Windows\System32\drivers\MRxSmb.sys [467352] =>.Microsoft Windows®
[MD5.BAD3C424788BC071C3EC82CFCDA954D2] - 05/09/2017 - (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\drivers\netBT.sys [305152] =>.Microsoft Corporation
[MD5.075F8C81457804BB79DD33FE69A96C57] - 28/07/2017 - (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\Windows\System32\drivers\ntfs.sys [2327456] =>.Microsoft Windows®
[MD5.2CC6C325B271C7CA60F374F8F868CB45] - 18/03/2017 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\Windows\System32\drivers\Parport.sys [97792] =>.Microsoft Corporation
[MD5.5279EC98F6218D29EADDFECCC0D80E9A] - 18/03/2017 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\drivers\Rasl2tp.sys [107008] =>.Microsoft Corporation
[MD5.53A01D3FDB701AC5D9DDE4140227E3D9] - 20/03/2017 - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RD.) -- C:\Windows\System32\drivers\rdpdr.sys [183296] =>.Microsoft Corporation
[MD5.D74756DD1518D28A09CDA99696273FA4] - 01/08/2017 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\drivers\tdx.sys [119712] =>.Microsoft Windows®
[MD5.E3429DBBEA3965BB96E24B16EF4A2551] - 18/03/2017 - (.Microsoft Corporation - Volume Shadow Copy driver.) -- C:\Windows\System32\drivers\volsnap.sys [397216] =>.Microsoft Windows®
---\\ Liste des services NT non Microsoft et non désactivés (27) - 8s
O23 - Service: BaisvikSoftware Suite Service (BaisvikSoftware Suite Service) . (.Baisvik - BaisvikSoftware Suite Service.) - C:\Program Files (x86)\BaisvikSoftware\SuiteService.exe {7F8276BC4AA97E8E49FBED6A595376F0}
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files (x86)\Bonjour\mDNSResponder.exe =>.Apple Inc.®
O23 - Service: CRMSvc (CRMSvc) . (.Copyright © 2017 - rpIHHjpXI.) - C:\WINDOWS\CRMSvc.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
O23 - Service: @oem45.inf,%hpservice_desc%;HP Service (hpsrv) . (.HP - HP Service.) - C:\Windows\System32\Hpservice.exe =>.HP
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) . (.HP Inc. - HP Support Solutions Framework Service.) - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe =>.HP Inc.®
O23 - Service: HPWMISVC (HPWMISVC) . (.HP Inc. - HP WMI Service.) - C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe =>.Hewlett-Packard Company®
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) . (.Intel Corporation - igfxCUIService Module.) - C:\Windows\System32\igfxCUIService.exe =>.Intel Corporation
O23 - Service: medERP (medERP) . (.Apache Software Foundation - Commons Daemon Service Runner.) - c:\mederp_server\bin\tomcat7.exe =>.Apache Software Foundation
O23 - Service: Mobile Broadband HL Service (Mobile Broadband HL Service) . (.Copyright (C) 2015 - .) - C:\ProgramData\MobileBrServ\mbbservice.exe =>.Huawei Technologies Co.,Ltd.®
O23 - Service: My Web Shield Sentinel (mweshield) . (."My Web Shield" - My Web Shield Sentinel.) - C:\Program Files\My Web Shield\mweshield.exe {39D3FCDE4532A63BD298039D0555D0C2} =>PUP.Optional.WebShield
O23 - Service: My Web Shield Consolidator (mweshieldup) . (."My Web Shield" - My Web Shield Consolidator.) - C:\Program Files\My Web Shield\mweshieldup.exe {39D3FCDE4532A63BD298039D0555D0C2} =>PUP.Optional.WebShield
O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) . (.Nero AG - NeroUpdate.) - C:\Program Files (x86)\Nero\Update\NASvc.exe =>.Nero AG®
O23 - Service: (Net Driver HPZ12) . (.Hewlett-Packard - Dot4Net Module.) - C:\Windows\System32\HPZinw12.dll =>.Hewlett-Packard
O23 - Service: NitroPDFDriverCreatorReadSpool10 (NitroDriverReadSpool10) . (.Nitro PDF Software - Nitro PDF Spool Service.) - C:\Program Files\Nitro\Pro 10\NitroPDFDriverService10x64.exe =>.Nitro Software, Inc.®
O23 - Service: NitroUpdateService (NitroUpdateService) . (...) - C:\Program Files\Nitro\Pro 10\Nitro_UpdateService.exe =>.Nitro Software, Inc.®
O23 - Service: OracleServiceXE (OracleServiceXE) . (.Oracle Corporation - Oracle RDBMS Kernel Executable.) - c:\oraclexe\app\oracle\product\11.2.0\server\bin\ORACLE.EXE =>.Oracle Corporation
O23 - Service: OracleXETNSListener (OracleXETNSListener) . (.Oracle Corporation - Oracle TNSLSNR Executable.) - C:\oraclexe\app\oracle\product\11.2.0\server\bin\TNSLSNR.EXE =>.Oracle Corporation
O23 - Service: (Pml Driver HPZ12) . (.Hewlett-Packard - PmlDrv Module.) - C:\Windows\System32\HPZipm12.dll =>.Hewlett-Packard
O23 - Service: Realtek Audio Service (RtkAudioService) . (.Realtek Semiconductor - Realtek Audio Service.) - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe =>.Realtek Semiconductor Corp.®
O23 - Service: Service KMSELDI (Service KMSELDI) . (.@ByELDI - Service_KMS.) - C:\Program Files\KMSpico\Service_KMS.exe =>HackTool.KMSpico
O23 - Service: SAMSUNG Mobile Connectivity Service (ss_conn_service) . (.DEVGURU Co., LTD. - MSS CS Connectivity Service.) - C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe =>.Samsung Electronics CO., LTD.®
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) . (.Synaptics Incorporated - 64-bit Synaptics Pointing Enhance Service.) - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe =>.Synaptics Incorporated®
O23 - Service: TCPSvc (TCPSvc) . (...) - C:\Users\eric\AppData\Local\Temp\csrss\proxy\Tor\tor.exe
O23 - Service: Unsigned Themes (UnsignedThemes) . (.The Within Network, LLC - Unsigned Themes service executable.) - C:\Windows\unsignedthemes.exe =>.The Within Network, LLC®
O23 - Service: Windows Defender Helper Service (Windows 1703 Creators Upda (WinDefender) . (...) - C:\Windows\windefender.exe
O23 - Service: ZDServ (ZDServ) . (.Copyright (C) 2013 - ZDServ Application.) - C:\ProgramData\ZDSupport\ZDServ\ZDServ.exe =>.ZTE CORPORATION®
---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (40) - 549s
SS - Demand [16/09/2017] [ 272384] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe =>.Adobe Systems Incorporated®
SS - Demand [01/05/2016] [ 875616] BaiduPinyin Updater (BaiduPinyinUpdater) . (.Baidu, Inc..) - C:\Program Files (x86)\Baidu\BaiduPinyinUpdate\bdupdate.exe =>.Baidu (China) Co., Ltd.®
SR - Auto [22/01/2015] [ 1283128] BaisvikSoftware Suite Service (BaisvikSoftware Suite Service) . (.Baisvik.) - C:\Program Files (x86)\BaisvikSoftware\SuiteService.exe {7F8276BC4AA97E8E49FBED6A595376F0}
SR - Auto [12/12/2008] [ 238888] Service Bonjour (Bonjour Service) . (.Apple Inc..) - C:\Program Files (x86)\Bonjour\mDNSResponder.exe =>.Apple Inc.®
SS - Demand [03/09/2015] [ 293272] Intel(R) Content Protection HECI Service (cphs) . (.Intel Corporation.) - C:\Windows\SysWOW64\IntelCpHeciSvc.exe =>.Intel Corporation - pGFX®
SS - Auto [16/09/2017] [ 1238528] CRMSvc (CRMSvc) . (.Copyright © 2017.) - C:\WINDOWS\CRMSvc.exe
SS - Auto [27/08/2016] [ 153752] Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SS - Demand [27/08/2016] [ 153752] Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SS - Demand [28/04/2015] [ 1102472] HP Software Framework Service (hpqwmiex) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe =>.Hewlett-Packard Company®
SR - Auto [12/10/2016] [ 38728] @oem45.inf,%hpservice_desc%;HP Service (hpsrv) . (.HP.) - C:\Windows\System32\Hpservice.exe =>.HP Inc.®
SR - Auto [07/04/2017] [ 33640] HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) . (.HP Inc..) - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe =>.HP Inc.®
SR - Auto [18/04/2016] [ 606224] HPWMISVC (HPWMISVC) . (.HP Inc..) - C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe =>.Hewlett-Packard Company®
SS - Demand [22/10/2004] [ 73728] InstallDriver Table Manager (IDriverT) . (.Macrovision Corporation.) - C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe =>.Macrovision Corporation
SR - Auto [03/09/2015] [ 359848] Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) . (.Intel Corporation.) - C:\Windows\System32\igfxCUIService.exe =>.Intel Corporation - pGFX®
SS - Demand [25/11/2015] [ 3020440] Intel(R) Biometric and Context Agent Service (IntelBCAsvc) . (.Intel(R) Corporation.) - C:\Program Files\Intel\BCA\pabeSvc64.exe =>.Intel(R) Biometric and Context Agent®
SR - Auto [04/12/2012] [ 77312] medERP (medERP) . (.Apache Software Foundation.) - c:\mederp_server\bin\tomcat7.exe =>.Apache Software Foundation
SR - Auto [23/09/2015] [ 242264] Mobile Broadband HL Service (Mobile Broadband HL Service) . (.Copyright (C) 2015.) - C:\ProgramData\MobileBrServ\mbbservice.exe =>.Huawei Technologies Co.,Ltd.®
SS - Demand [24/08/2017] [ 175568] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe =>.Mozilla Corporation®
SR - Auto [31/08/2016] [ 931640] My Web Shield Sentinel (mweshield) . (."My Web Shield".) - C:\Program Files\My Web Shield\mweshield.exe {39D3FCDE4532A63BD298039D0555D0C2} =>PUP.Optional.WebShield
SR - Auto [31/08/2016] [ 348472] My Web Shield Consolidator (mweshieldup) . (."My Web Shield".) - C:\Program Files\My Web Shield\mweshieldup.exe {39D3FCDE4532A63BD298039D0555D0C2} =>PUP.Optional.WebShield
SR - Auto [14/09/2016] [ 805752] @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) . (.Nero AG.) - C:\Program Files (x86)\Nero\Update\NASvc.exe =>.Nero AG®
SS - Auto [31/07/2012] [ 50688] (Net Driver HPZ12) . (.Hewlett-Packard.) - C:\Windows\System32\HPZinw12.dll =>.Hewlett-Packard
SR - Auto [06/05/2015] [ 324760] NitroPDFDriverCreatorReadSpool10 (NitroDriverReadSpool10) . (.Nitro PDF Software.) - C:\Program Files\Nitro\Pro 10\NitroPDFDriverService10x64.exe =>.Nitro Software, Inc.®
SR - Auto [06/05/2015] [ 418968] NitroUpdateService (NitroUpdateService) . (...) - C:\Program Files\Nitro\Pro 10\Nitro_UpdateService.exe =>.Nitro Software, Inc.®
SS - Disabl [29/05/2014] [ 45568] OracleJobSchedulerXE (OracleJobSchedulerXE) . (...) - c:\oraclexe\app\oracle\product\11.2.0\server\Bin\extjob.exe
SS - Demand [29/05/2014] [ 81408] OracleMTSRecoveryService (OracleMTSRecoveryService) . (.Oracle Corporation.) - C:\oraclexe\app\oracle\product\11.2.0\server\BIN\omtsreco.exe =>.Oracle Corporation
SR - Auto [30/05/2014] [147110912] OracleServiceXE (OracleServiceXE) . (.Oracle Corporation.) - c:\oraclexe\app\oracle\product\11.2.0\server\bin\ORACLE.EXE =>.Oracle Corporation
SS - Demand [29/05/2014] [ 83968] (OracleXEClrAgent) . (.Oracle Corporation.) - C:\oraclexe\app\oracle\product\11.2.0\server\bin\OraClrAgnt.exe =>.Oracle Corporation
SR - Auto [29/05/2014] [ 522240] OracleXETNSListener (OracleXETNSListener) . (.Oracle Corporation.) - C:\oraclexe\app\oracle\product\11.2.0\server\bin\TNSLSNR.EXE =>.Oracle Corporation
SS - Auto [31/07/2012] [ 66048] (Pml Driver HPZ12) . (.Hewlett-Packard.) - C:\Windows\System32\HPZipm12.dll =>.Hewlett-Packard
SR - Auto [23/03/2017] [ 324608] Realtek Audio Service (RtkAudioService) . (.Realtek Semiconductor.) - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe =>.Realtek Semiconductor Corp.®
SS - Auto [12/08/2015] [ 985280] Service KMSELDI (Service KMSELDI) . (.@ByELDI.) - C:\Program Files\KMSpico\Service_KMS.exe =>HackTool.KMSpico
SR - Auto [08/01/2016] [ 754784] SAMSUNG Mobile Connectivity Service (ss_conn_service) . (.DEVGURU Co., LTD..) - C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe =>.Samsung Electronics CO., LTD.®
SR - Auto [17/02/2017] [ 278624] SynTPEnh Caller Service (SynTPEnhService) . (.Synaptics Incorporated.) - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe =>.Synaptics Incorporated®
SR - Auto [18/09/2017] [ 3282432] TCPSvc (TCPSvc) . (...) - C:\Users\eric\AppData\Local\Temp\csrss\proxy\Tor\tor.exe
SS - Demand [21/04/2016] [ 874784] Intel Security True Key (TrueKey) . (.McAfee, Inc..) - C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe =>.McAfee, Inc.®
SS - Demand [21/04/2016] [ 15736] Intel Security True Key Scheduler (TrueKeyScheduler) . (.McAfee, Inc..) - C:\Program Files\TrueKey\McTkSchedulerService.exe =>.McAfee, Inc.®
SR - Auto [28/02/2015] [ 22184] Unsigned Themes (UnsignedThemes) . (.The Within Network, LLC.) - C:\Windows\unsignedthemes.exe =>.The Within Network, LLC®
SR - Auto [ 0] [ 0] Windows Defender Helper Service (Windows 1703 Creators Upda (WinDefender) . (...) - C:\Windows\windefender.exe
SR - Auto [24/12/2014] [ 432384] ZDServ (ZDServ) . (.Copyright (C) 2013.) - C:\ProgramData\ZDSupport\ZDServ\ZDServ.exe =>.ZTE CORPORATION®
---\\ Applications lancées au démarrage du système (29) - 8s
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe =>.Realtek Semiconductor Corp.®
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] . (. - Gestionnaire audio HD Realtek.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
O4 - HKLM\..\RunOnce: [Lahin_Raw_barra_al3eb_b3id_SNJTFHPBUK.exe] . (...) -- C:\Users\eric\AppData\Local\Temp\OHPQYDHLSJ\SNJTFHPBUK.exe
O4 - HKLM\..\RunOnce: [LAPPAD-NDJIND] . (...) -- C:\Windows\Temp\g2ED5.tmp.exe
O4 - HKCU\..\Run: [Dashlane] . (.Dashlane, Inc. - Dashlane.) -- C:\Users\eric\AppData\Roaming\Dashlane\Dashlane.exe =>.Dashlane®
O4 - HKCU\..\Run: [DashlanePlugin] . (.Dashlane, Inc. - Dashlane.) -- C:\Users\eric\AppData\Roaming\Dashlane\DashlanePlugin.exe =>.Dashlane®
O4 - HKCU\..\Run: [Free Download Manager] . (.FreeDownloadManager.org - Free Download Manager.) -- C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\fdm.exe =>.Softdeluxe Ltd.®
O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - HKCU\..\Run: [LCYVPKKQRM.exe] . (...) -- C:\Users\eric\AppData\Local\Temp\KNWJUOJDUG\LCYVPKKQRM.exe
O4 - HKCU\..\Run: [8TWeFR2T.exe] . (...) -- C:\Users\eric\AppData\Roaming\af688c2fb64e4f05a7eadcc4857dc524\8TWeFR2T.exe
O4 - HKCU\..\Run: [jGjlY92aj2JZ.exe] . (...) -- C:\ProgramData\b945d8214d7047bd89ea300fbaf0006d\jGjlY92aj2JZ.exe
O4 - HKCU\..\Run: [CloudNet] . (.EpicNet Inc. - Cloud Net.) -- C:\Users\eric\AppData\Roaming\EpicNet Inc\CloudNet\cloudnet.exe =>Adware.MSIL
O4 - HKLM\..\Wow6432Node\Run: [HPMessageService] . (.HP Inc. - HP Message Service.) -- C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe =>.Hewlett-Packard Company®
O4 - HKLM\..\Wow6432Node\Run: [PWRISOVM.EXE] . (.Power Software Ltd - PowerISO Virtual Drive Manager.) -- C:\Program Files\PowerISO\PWRISOVM.EXE =>.Power Software Limited®
O4 - HKLM\..\Wow6432Node\Run: [AccelerometerSysTrayApplet] . (.Hewlett-Packard Company - Hp Accelerometer System Tray.) -- C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe =>.Hewlett-Packard®
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe =>.Oracle America, Inc.®
O4 - HKLM\..\Wow6432Node\Run: [NoterSave] . (.Copyright © 2017 - NoterSave.) -- C:\Program Files (x86)\NoterSave\NoterSave.exe
O4 - HKUS\.DEFAULT\..\Run: [Free Download Manager] . (.FreeDownloadManager.org - Free Download Manager.) -- C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\fdm.exe =>.Softdeluxe Ltd.®
O4 - HKUS\S-1-5-18\..\Run: [Free Download Manager] . (.FreeDownloadManager.org - Free Download Manager.) -- C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\fdm.exe =>.Softdeluxe Ltd.®
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Windows®
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Windows®
O4 - HKUS\S-1-5-21-4040018575-2137455487-4043523077-1001\..\Run: [Dashlane] . (.Dashlane, Inc. - Dashlane.) -- C:\Users\eric\AppData\Roaming\Dashlane\Dashlane.exe =>.Dashlane®
O4 - HKUS\S-1-5-21-4040018575-2137455487-4043523077-1001\..\Run: [DashlanePlugin] . (.Dashlane, Inc. - Dashlane.) -- C:\Users\eric\AppData\Roaming\Dashlane\DashlanePlugin.exe =>.Dashlane®
O4 - HKUS\S-1-5-21-4040018575-2137455487-4043523077-1001\..\Run: [Free Download Manager] . (.FreeDownloadManager.org - Free Download Manager.) -- C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\fdm.exe =>.Softdeluxe Ltd.®
O4 - HKUS\S-1-5-21-4040018575-2137455487-4043523077-1001\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - HKUS\S-1-5-21-4040018575-2137455487-4043523077-1001\..\Run: [LCYVPKKQRM.exe] . (...) -- C:\Users\eric\AppData\Local\Temp\KNWJUOJDUG\LCYVPKKQRM.exe
O4 - HKUS\S-1-5-21-4040018575-2137455487-4043523077-1001\..\Run: [8TWeFR2T.exe] . (...) -- C:\Users\eric\AppData\Roaming\af688c2fb64e4f05a7eadcc4857dc524\8TWeFR2T.exe
O4 - HKUS\S-1-5-21-4040018575-2137455487-4043523077-1001\..\Run: [jGjlY92aj2JZ.exe] . (...) -- C:\ProgramData\b945d8214d7047bd89ea300fbaf0006d\jGjlY92aj2JZ.exe
O4 - HKUS\S-1-5-21-4040018575-2137455487-4043523077-1001\..\Run: [CloudNet] . (.EpicNet Inc. - Cloud Net.) -- C:\Users\eric\AppData\Roaming\EpicNet Inc\CloudNet\cloudnet.exe =>Adware.MSIL
---\\ Google Chrome, Démarrage,Recherche,Extensions (38) - 6s
G0 - GCSP: Preferences [User Data\Default][HomePage] http://bigpicturepop.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://google.cm =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://ythdqualities.oneted.de
G0 - GCSP: Preferences [User Data\Default][HomePage] http://clients5.google.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://lh3.googleusercontent.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://logs.dashlane.com =>.Dashlane, Inc
G0 - GCSP: Preferences [User Data\Default][HomePage] http://ssl.google-analytics.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://ssl.gstatic.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google.cm =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.gstatic.com =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [aapocclcgogkmnckokdopfmhonfmgoek] =>.Google Inc. {Slides}
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] =>.Google Inc. {Docs}
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] http://drive.google.com/ =>.Google Inc. {Drive}
G2 - GCE: Preference [User Data\Default] [bdahgdkcmdnbofpaanmjmfjchopeacka] IDM Integration Module =>.IDM Computer Solutions, Inc.
G2 - GCE: Preference [User Data\Default] [blhjobkfabeopalncconblmakfcllmhk] =>.alekesxstrelof {Internet Download Manager}
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] http://www.youtube.com =>.Youtube {Youtube}
G2 - GCE: Preference [User Data\Default] [eojeoeddgeaeahpmfabdfpfialkoplcb] http://youtubeadblock.net =>Adware.CloudAtlas
G2 - GCE: Preference [User Data\Default] [felcaaldnbdncclmgdcncolpebgiejap] =>.Google Inc. {Sheets}
G2 - GCE: Preference [User Data\Default] [ghbmnnjooekpmoecnnnilnnbdlolhkhi] =>.Google Inc. {Docs hors connexion}
G2 - GCE: Preference [User Data\Default] [gpnhkimbdglndkhfkommdfcfclddonbe]
G2 - GCE: Preference [User Data\Default] [libedajeiljdoodmokbppgapcfbignci] SoundCloud Downloader
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] =>.Google Inc. {Wallet}
G2 - GCE: Preference [User Data\Default] [pbdpajcdgknpendpmecafmopknefafha]
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] http://mail.google.com/ =>.Google Inc. {Gmail}
G2 - GCE: Preference [User Data\Default] [pkedcjkdefgpdelpbcmbmeomcjbeemfm] Chrome Media Router =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [ahmpjcflkgiildlgicmcieglgoilbfdp] =>.Free Download Manager
G2 - GCE: Preference [User Data\Default] [akjbfncbadcmnkopckegnmjgihagponf] HD for YouTube™ =>.DingoSolutions
G2 - GCE: Preference [User Data\Default] [bgnkhhnnamicmpeenaelnjfhikgbkllg] Performix LLC =>.adguard.com {AdBlocker}
G2 - GCE: Preference [User Data\Default] [ccpokhmgacfkdaelielfljggjbbmmdpi] Pass downloads to Internet Download Accelerator
G2 - GCE: Preference [User Data\Default] [dhdgffkkebhmkfjojejmpbldmpobfkfo] Tampermonkey =>.tampermonkey.net
G2 - GCE: Preference [User Data\Default] [fdjamakpfbbddfjaooikfcpapjohcfmg] Dashlane =>.Dashlane, Inc
G2 - GCE: Preference [User Data\Default] [hgocelbnbdmphccojflbhmfoiejfjjlk] http://atavi.com/
G2 - GCE: Preference [User Data\Default] [imhlianhlhdicjchlbmbfaefhhjencbe] NewTab
G2 - GCE: Preference [User Data\Default] [jkfpchpiljkaemlpmpebnglgkomamfeo] =>.Hewlett-Packard {HP Network}
G2 - GCE: Preference [User Data\Default] [jpchabeoojaflbaajmjhfcfiknckabpo] =>.Cifonomag {Atavi}
G2 - GCE: Preference [User Data\Default] [lmjnegcaeklhafolokijcfjliaokphfk] Video DownloadHelper =>.Downloadhelper.net
G2 - GCE: Preference [User Data\Default] [ngpampappnmepgilojfohadhhmbhlaek] IDM Integration Module =>.IDM Computer Solutions, Inc.
G2 - GCE: Preference [User Data\Default] [pinhfkamckbogjgmbmdkdebbbpnmlaef] Bazz Search
---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (12) - 3s
P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\aushelper@mozilla.org.xpi =>.Mozilla Corporation
P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\clicktoplay-rollout@mozilla.org.xpi =>.Mozilla Corporation
P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\e10srollout@mozilla.org.xpi =>.Mozilla Corporation
P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\firefox@getpocket.com.xpi =>.Mozilla Corporation
P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\followonsearch@mozilla.com.xpi =>.Mozilla Corporation
P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\screenshots@mozilla.org.xpi =>.Mozilla Corporation
P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\shield-recipe-client@mozilla.org.xpi =>.Mozilla Corporation
P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\webcompat@mozilla.org.xpi =>.Mozilla Corporation
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_27_0_0_130.dll =>.Adobe Systems Incorporated
P2 - FPN: [HKLM] [@baidu.com/BaiduExpert-npplugin] - (.百度在线网络技术(北京)有限公司.) -- C:\Users\eric\AppData\Roaming\Baidu\BDWebAdapter\3.0.359.0\npBDExNP.dll
P2 - FPN: [HKLM] [@microsoft.com/Lync,version=15.0] - (.Microsoft.) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll =>.Microsoft
P2 - FPN: [HKLM] [adobe.com/AdobeAAMDetect] - (...) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll
---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (19) - 1s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://%66%65%65%64.%68%65%6c%70%65%72%62%61%72.%63%6f%6d/?p=mko_awfzxipyryeqqao2txtgptboxpbnaukw3gsz7dumyk6gyfg3omad4l-xhtqnsvm29zjl8stvufnikjjrjfk6zrjujrbpgorg2by-usevtyrtky9cq_i-9-1jmmnhdjhb5elprtgtg7yeycgmkpargrpcf2qsvmlxhgpgys24f2rrgsnjyprveipedixziw8e0klmdq8,&q={searchterms} =>.SUP.Linkury
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = preserve =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://%66%65%65%64.%68%65%6c%70%65%72%62%61%72.%63%6f%6d/?p=mko_awfzxipyryeqqao2txtgptboxpbnaukw3gsz7dumyk6gyfg3omad4l-xhtqnsvm29zjl8stvufnikjjrjfk6zrjujrbpgorg2by-usevtyrtky9cq_i-9-1jmmnhdjhb5elprtgtg7yeycgmkpargrpcf2qsvmlxhgpgys24f2rrgsnjyprveipedixziw8e0klmdq8,&q={searchterms} =>.SUP.Linkury
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchUrl,Default = http://%66%65%65%64.%68%65%6c%70%65%72%62%61%72.%63%6f%6d/?p=mko_awfzxipyryeqqao2txtgptboxpbnaukw3gsz7dumyk6gyfg3omad4l-xhtqnsvm29zjl8stvufnikjjrjfk6zrjujrbpgorg2by-usevtyrtky9cq_i-9-1jmmnhdjhb5elprtgtg7yeycgmkpargrpcf2qsvmlxhgpgys24f2rrgsnjyprveipedixziw8e0klmdq8,&q={searchterms} =>.SUP.Linkury
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R1 - HKEY_USERS\S-1-5-21-4040018575-2137455487-4043523077-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = preserve =>.Microsoft Corporation
R3 - URLSearchHook: (no name)[HKCU] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (11.00.15063.608 (WinBuild.160101.0800)) -- C:\Windows\SysWOW64\ieframe.dll =>.Microsoft Corporation
---\\ Microsoft Edge, Plugin,Favoris,Démarrage,Recherche,Extension (1) - 0s
E0 - Microsoft Edge: HKU\S-1-5-21-4040018575-2137455487-4043523077-1001\HomeButtonPage = http://www.yandex.ru/
---\\ Internet Explorer,Proxy Management (8) - 0s
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride =
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 192.168.7.1:8080
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 1
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
R5 - HKLM\SYSTEM\CurrentControlSet\services\NlaSvc\Parameters\Internet\ManualProxies [1192.168.7.1:8080]
---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: VMApplet=
---\\ Etude du fichier hosts (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (33)
---\\ Browser Helper Object de navigateur (BHO) (9) - 1s
O2 - BHO: IDM Helper [64Bits] - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Internet Download Manager, Tonec Inc. - IDM Browser Helper Object.) -- C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll =>.Tonec Inc.®
O2 - BHO: (no name) [64Bits] - {13D67BB7-DB5F-48AA-884D-7A5D94168509} (.Orphan.)
O2 - BHO: RealNetworks Download and Record Plugin for Internet Explorer [64Bits] - {3049C3E9-B461-4BC5-8870-4C09146192CA} (.Orphan.)
O2 - BHO: Skype for Business Click to Call BHO [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} . (.Microsoft Corporation - Skype for Business.) -- C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll =>.Microsoft Corporation®
O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre1.8.0_144\bin\ssv.dll =>.Oracle America, Inc.®
O2 - BHO: TSWebMon [64Bits] - {7C260B4B-F7A0-40B5-B403-BEFCDC6A4C3B} (.Orphan.)
O2 - BHO: Microsoft OneDrive for Business Browser Helper [64Bits] - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} . (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL =>.Microsoft Corporation®
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre1.8.0_144\bin\jp2ssv.dll =>.Oracle America, Inc.®
O2 - BHO: HP Network Check Helper [64Bits] - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} . (.HP Inc. - HP Network Check IE Plug-in.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll =>.Hewlett-Packard Company®
---\\ Raccourcis Global Startup (150) - 45s
O4 - GS\Desktop [Administrateur]: AAA Logo.lnk . (.Copyright (C) 2013 SWGSoft - jeta-aaalogo.) C:\Program Files (x86)\AAALOGO\alogo.exe
O4 - GS\Desktop [Administrateur]: Assistant Mise à niveau de Windows 10.lnk . (.Microsoft Corporation - Assistant Mise à jour de Windows 10.) C:\Windows10Upgrade\Windows10UpgraderApp.exe =>.Microsoft Corporation®
O4 - GS\Desktop [Administrateur]: CVitae 5.lnk . (...) C:\Users\eric\AppData\Roaming\Microsoft\Installer\{5988C473-7D71-4B59-857B-8DA5C701FBFF}\_0844F546BD9789DAA2ED62.exe
O4 - GS\Desktop [Administrateur]: Dashlane.lnk . (.Dashlane, Inc. - Dashlane.) C:\Users\eric\AppData\Roaming\Dashlane\Dashlane.exe =>.Dashlane®
O4 - GS\Desktop [Administrateur]: FlashBoot.lnk . (.Copyright (C) 2005-2013 Mikhail Kupchik - FlashBoot GUI Application.) C:\Program Files\FlashBoot\fb-gui.exe
O4 - GS\Desktop [Administrateur]: Format Factory.lnk . (.Free Time Co., Ltd. - FormatFactory.) C:\Program Files (x86)\FormatFactory\FormatFactory.exe =>.Free Time Co., Ltd.®
O4 - GS\Desktop [Administrateur]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Desktop [Administrateur]: Internet Download Manager.lnk . (.Tonec Inc. - Internet Download Manager (IDM).) C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - GS\Desktop [Administrateur]: Jargon Informatique.lnk . (...) C:\Program Files (x86)\Jargon Informatique\jargoninformatique.exe
O4 - GS\Desktop [Administrateur]: Messenger.lnk . (...) C:\Program Files (x86)\Messenger for Desktop\Messenger.exe
O4 - GS\Desktop [Administrateur]: Sparkle.lnk . (...) C:\Program Files (x86)\Sparkle\sparkle.exe
O4 - GS\Desktop [Administrateur]: VirtualDJ 8.lnk . (.Atomix Productions - VirtualDJ.) C:\Program Files (x86)\VirtualDJ\virtualdj8.exe =>.Atomix Productions
O4 - GS\Desktop [Administrateur]: WhatsApp.lnk . (...) C:\Users\eric\AppData\Local\WhatsApp\Update.exe --processStart WhatsApp.exe =>.WhatsApp, Inc.®
O4 - GS\Desktop [Administrateur]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\eric\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Administrateur]: AAA Logo.lnk . (.Copyright (C) 2013 SWGSoft - jeta-aaalogo.) C:\Program Files (x86)\AAALOGO\alogo.exe
O4 - GS\Quicklaunch [Administrateur]: Free Download Manager 5.lnk . (.FreeDownloadManager.org - Free Download Manager.) C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\fdm.exe =>.Softdeluxe Ltd.®
O4 - GS\Quicklaunch [Administrateur]: GESCMS.lnk . (.pad - .) C:\Program Files (x86)\GESCMS\GESCMS.exe
O4 - GS\Quicklaunch [Administrateur]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Administrateur]: Web Navigation.lnk . (...) C:\Program Files (x86)\USB Disk Security\linkzb.exe =>.Lanzhou Itanium Software Technology Co., Ltd.®
O4 - GS\sendTo [Administrateur]: Destinataire de télécopie.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Administrateur]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Administrateur]: Format Factory.lnk . (.Free Time Co., Ltd. - FormatFactory.) C:\Program Files (x86)\FormatFactory\FormatFactory.exe =>.Free Time Co., Ltd.®
O4 - GS\sendTo [Administrateur]: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Administrateur]: Adobe Dreamweaver CC.lnk . (.Adobe Systems, Inc. - Adobe Dreamweaver CC.) C:\Program Files (x86)\Adobe\Adobe Dreamweaver CC\Dreamweaver.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [Administrateur]: Adobe Photoshop CS6 Portable.lnk . (.PortableAppZ.blogspot.com - Adobe Photoshop CS6 Portable.) F:\PhotoshopPortable\PhotoshopCS6Portable.exe =>.PortableAppZ.blogspot.com
O4 - GS\TaskBar [Administrateur]: RevoUPort.lnk . (.VS Revo Group - .) C:\Users\eric\Desktop\projet de gestion de centre de sante\RevoUninstaller_Portable\RevoUninstaller_Portable\RevoUPort.exe =>.VS Revo Group®
O4 - GS\TaskBar [Administrateur]: Sublime Text 3.lnk . (.Copyright (C) 2006 - 2016 Sublime HQ Pty Ltd - Sublime Text.) C:\Program Files\Sublime Text 3\sublime_text.exe =>.Sublime HQ Pty Ltd®
O4 - GS\Startup [Administrateur]: Envoyer à OneNote.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\Microsoft Office\Office16\ONENOTEM.EXE /tsr =>.Microsoft Corporation
O4 - GS\Programs [Administrateur]: Fonctionnalités optionnelles.lnk . (.Microsoft Corporation - Assistance des fonctionnalités à la demande.) C:\Windows\System32\fodhelper.exe =>.Microsoft Corporation
O4 - GS\Programs [Administrateur]: Messenger.lnk . (...) C:\Program Files (x86)\Messenger for Desktop\Messenger.exe
O4 - GS\Programs [Administrateur]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\eric\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - GS\Programs [Administrateur]: Uninstall Messenger for Desktop.lnk . (...) C:\Program Files (x86)\Messenger for Desktop\Uninstall Messenger for Desktop.exe
O4 - GS\Desktop [eric]: AAA Logo.lnk . (.Copyright (C) 2013 SWGSoft - jeta-aaalogo.) C:\Program Files (x86)\AAALOGO\alogo.exe
O4 - GS\Desktop [eric]: Assistant Mise à niveau de Windows 10.lnk . (.Microsoft Corporation - Assistant Mise à jour de Windows 10.) C:\Windows10Upgrade\Windows10UpgraderApp.exe =>.Microsoft Corporation®
O4 - GS\Desktop [eric]: CVitae 5.lnk . (...) C:\Users\eric\AppData\Roaming\Microsoft\Installer\{5988C473-7D71-4B59-857B-8DA5C701FBFF}\_0844F546BD9789DAA2ED62.exe
O4 - GS\Desktop [eric]: Dashlane.lnk . (.Dashlane, Inc. - Dashlane.) C:\Users\eric\AppData\Roaming\Dashlane\Dashlane.exe =>.Dashlane®
O4 - GS\Desktop [eric]: FlashBoot.lnk . (.Copyright (C) 2005-2013 Mikhail Kupchik - FlashBoot GUI Application.) C:\Program Files\FlashBoot\fb-gui.exe
O4 - GS\Desktop [eric]: Format Factory.lnk . (.Free Time Co., Ltd. - FormatFactory.) C:\Program Files (x86)\FormatFactory\FormatFactory.exe =>.Free Time Co., Ltd.®
O4 - GS\Desktop [eric]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Desktop [eric]: Internet Download Manager.lnk . (.Tonec Inc. - Internet Download Manager (IDM).) C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - GS\Desktop [eric]: Jargon Informatique.lnk . (...) C:\Program Files (x86)\Jargon Informatique\jargoninformatique.exe
O4 - GS\Desktop [eric]: Messenger.lnk . (...) C:\Program Files (x86)\Messenger for Desktop\Messenger.exe
O4 - GS\Desktop [eric]: Sparkle.lnk . (...) C:\Program Files (x86)\Sparkle\sparkle.exe
O4 - GS\Desktop [eric]: VirtualDJ 8.lnk . (.Atomix Productions - VirtualDJ.) C:\Program Files (x86)\VirtualDJ\virtualdj8.exe =>.Atomix Productions
O4 - GS\Desktop [eric]: WhatsApp.lnk . (...) C:\Users\eric\AppData\Local\WhatsApp\Update.exe --processStart WhatsApp.exe =>.WhatsApp, Inc.®
O4 - GS\Desktop [eric]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\eric\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [eric]: AAA Logo.lnk . (.Copyright (C) 2013 SWGSoft - jeta-aaalogo.) C:\Program Files (x86)\AAALOGO\alogo.exe
O4 - GS\Quicklaunch [eric]: Free Download Manager 5.lnk . (.FreeDownloadManager.org - Free Download Manager.) C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\fdm.exe =>.Softdeluxe Ltd.®
O4 - GS\Quicklaunch [eric]: GESCMS.lnk . (.pad - .) C:\Program Files (x86)\GESCMS\GESCMS.exe
O4 - GS\Quicklaunch [eric]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [eric]: Web Navigation.lnk . (...) C:\Program Files (x86)\USB Disk Security\linkzb.exe =>.Lanzhou Itanium Software Technology Co., Ltd.®
O4 - GS\sendTo [eric]: Destinataire de télécopie.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [eric]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [eric]: Format Factory.lnk . (.Free Time Co., Ltd. - FormatFactory.) C:\Program Files (x86)\FormatFactory\FormatFactory.exe =>.Free Time Co., Ltd.®
O4 - GS\sendTo [eric]: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\TaskBar [eric]: Adobe Dreamweaver CC.lnk . (.Adobe Systems, Inc. - Adobe Dreamweaver CC.) C:\Program Files (x86)\Adobe\Adobe Dreamweaver CC\Dreamweaver.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [eric]: Adobe Photoshop CS6 Portable.lnk . (.PortableAppZ.blogspot.com - Adobe Photoshop CS6 Portable.) F:\PhotoshopPortable\PhotoshopCS6Portable.exe =>.PortableAppZ.blogspot.com
O4 - GS\TaskBar [eric]: RevoUPort.lnk . (.VS Revo Group - .) C:\Users\eric\Desktop\projet de gestion de centre de sante\RevoUninstaller_Portable\RevoUninstaller_Portable\RevoUPort.exe =>.VS Revo Group®
O4 - GS\TaskBar [eric]: Sublime Text 3.lnk . (.Copyright (C) 2006 - 2016 Sublime HQ Pty Ltd - Sublime Text.) C:\Program Files\Sublime Text 3\sublime_text.exe =>.Sublime HQ Pty Ltd®
O4 - GS\Startup [eric]: Envoyer à OneNote.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\Microsoft Office\Office16\ONENOTEM.EXE /tsr =>.Microsoft Corporation
O4 - GS\Programs [eric]: Fonctionnalités optionnelles.lnk . (.Microsoft Corporation - Assistance des fonctionnalités à la demande.) C:\Windows\System32\fodhelper.exe =>.Microsoft Corporation
O4 - GS\Programs [eric]: Messenger.lnk . (...) C:\Program Files (x86)\Messenger for Desktop\Messenger.exe
O4 - GS\Programs [eric]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\eric\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - GS\Programs [eric]: Uninstall Messenger for Desktop.lnk . (...) C:\Program Files (x86)\Messenger for Desktop\Uninstall Messenger for Desktop.exe
O4 - GS\Desktop [openpgsvc]: AAA Logo.lnk . (.Copyright (C) 2013 SWGSoft - jeta-aaalogo.) C:\Program Files (x86)\AAALOGO\alogo.exe
O4 - GS\Desktop [openpgsvc]: Assistant Mise à niveau de Windows 10.lnk . (.Microsoft Corporation - Assistant Mise à jour de Windows 10.) C:\Windows10Upgrade\Windows10UpgraderApp.exe =>.Microsoft Corporation®
O4 - GS\Desktop [openpgsvc]: CVitae 5.lnk . (...) C:\Users\eric\AppData\Roaming\Microsoft\Installer\{5988C473-7D71-4B59-857B-8DA5C701FBFF}\_0844F546BD9789DAA2ED62.exe
O4 - GS\Desktop [openpgsvc]: Dashlane.lnk . (.Dashlane, Inc. - Dashlane.) C:\Users\eric\AppData\Roaming\Dashlane\Dashlane.exe =>.Dashlane®
O4 - GS\Desktop [openpgsvc]: FlashBoot.lnk . (.Copyright (C) 2005-2013 Mikhail Kupchik - FlashBoot GUI Application.) C:\Program Files\FlashBoot\fb-gui.exe
O4 - GS\Desktop [openpgsvc]: Format Factory.lnk . (.Free Time Co., Ltd. - FormatFactory.) C:\Program Files (x86)\FormatFactory\FormatFactory.exe =>.Free Time Co., Ltd.®
O4 - GS\Desktop [openpgsvc]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Desktop [openpgsvc]: Internet Download Manager.lnk . (.Tonec Inc. - Internet Download Manager (IDM).) C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - GS\Desktop [openpgsvc]: Jargon Informatique.lnk . (...) C:\Program Files (x86)\Jargon Informatique\jargoninformatique.exe
O4 - GS\Desktop [openpgsvc]: Messenger.lnk . (...) C:\Program Files (x86)\Messenger for Desktop\Messenger.exe
O4 - GS\Desktop [openpgsvc]: Sparkle.lnk . (...) C:\Program Files (x86)\Sparkle\sparkle.exe
O4 - GS\Desktop [openpgsvc]: VirtualDJ 8.lnk . (.Atomix Productions - VirtualDJ.) C:\Program Files (x86)\VirtualDJ\virtualdj8.exe =>.Atomix Productions
O4 - GS\Desktop [openpgsvc]: WhatsApp.lnk . (...) C:\Users\eric\AppData\Local\WhatsApp\Update.exe --processStart WhatsApp.exe =>.WhatsApp, Inc.®
O4 - GS\Desktop [openpgsvc]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\eric\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [openpgsvc]: AAA Logo.lnk . (.Copyright (C) 2013 SWGSoft - jeta-aaalogo.) C:\Program Files (x86)\AAALOGO\alogo.exe
O4 - GS\Quicklaunch [openpgsvc]: Free Download Manager 5.lnk . (.FreeDownloadManager.org - Free Download Manager.) C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\fdm.exe =>.Softdeluxe Ltd.®
O4 - GS\Quicklaunch [openpgsvc]: GESCMS.lnk . (.pad - .) C:\Program Files (x86)\GESCMS\GESCMS.exe
O4 - GS\Quicklaunch [openpgsvc]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [openpgsvc]: Web Navigation.lnk . (...) C:\Program Files (x86)\USB Disk Security\linkzb.exe =>.Lanzhou Itanium Software Technology Co., Ltd.®
O4 - GS\sendTo [openpgsvc]: Destinataire de télécopie.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [openpgsvc]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [openpgsvc]: Format Factory.lnk . (.Free Time Co., Ltd. - FormatFactory.) C:\Program Files (x86)\FormatFactory\FormatFactory.exe =>.Free Time Co., Ltd.®
O4 - GS\sendTo [openpgsvc]: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\TaskBar [openpgsvc]: Adobe Dreamweaver CC.lnk . (.Adobe Systems, Inc. - Adobe Dreamweaver CC.) C:\Program Files (x86)\Adobe\Adobe Dreamweaver CC\Dreamweaver.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [openpgsvc]: Adobe Photoshop CS6 Portable.lnk . (.PortableAppZ.blogspot.com - Adobe Photoshop CS6 Portable.) F:\PhotoshopPortable\PhotoshopCS6Portable.exe =>.PortableAppZ.blogspot.com
O4 - GS\TaskBar [openpgsvc]: RevoUPort.lnk . (.VS Revo Group - .) C:\Users\eric\Desktop\projet de gestion de centre de sante\RevoUninstaller_Portable\RevoUninstaller_Portable\RevoUPort.exe =>.VS Revo Group®
O4 - GS\TaskBar [openpgsvc]: Sublime Text 3.lnk . (.Copyright (C) 2006 - 2016 Sublime HQ Pty Ltd - Sublime Text.) C:\Program Files\Sublime Text 3\sublime_text.exe =>.Sublime HQ Pty Ltd®
O4 - GS\Startup [openpgsvc]: Envoyer à OneNote.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\Microsoft Office\Office16\ONENOTEM.EXE /tsr =>.Microsoft Corporation
O4 - GS\Programs [openpgsvc]: Fonctionnalités optionnelles.lnk . (.Microsoft Corporation - Assistance des fonctionnalités à la demande.) C:\Windows\System32\fodhelper.exe =>.Microsoft Corporation
O4 - GS\Programs [openpgsvc]: Messenger.lnk . (...) C:\Program Files (x86)\Messenger for Desktop\Messenger.exe
O4 - GS\Programs [openpgsvc]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\eric\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - GS\Programs [openpgsvc]: Uninstall Messenger for Desktop.lnk . (...) C:\Program Files (x86)\Messenger for Desktop\Uninstall Messenger for Desktop.exe
O4 - GS\CommonDesktop [Public]: 38 Dictionnaires et Recueils de Correspondance.lnk . (.L'Aventure Multimedia - .) C:\Program Files (x86)\Micro Application\38 Dictionnaires et Recueils de Correspondance\LanceMediaDICO38.exe =>.L'Aventure Multimedia
O4 - GS\CommonDesktop [Public]: FileZilla Client.lnk . (.FileZilla Project - FileZilla FTP Client.) C:\Program Files\FileZilla FTP Client\filezilla.exe =>.Tim Kosse®
O4 - GS\CommonDesktop [Public]: Free Download Manager 5.lnk . (.FreeDownloadManager.org - Free Download Manager.) C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\fdm.exe =>.Softdeluxe Ltd.®
O4 - GS\CommonDesktop [Public]: GanttProject.lnk . (...) C:\Program Files (x86)\GanttProject-2.8\ganttproject.exe
O4 - GS\CommonDesktop [Public]: GESCMS.lnk . (.pad - .) C:\Program Files (x86)\GESCMS\GESCMS.exe
O4 - GS\CommonDesktop [Public]: Get Started With Oracle Database 11g Express Edition .lnk . (...) C:\oraclexe\app\oracle\product\11.2.0\server\Get_Started.url
O4 - GS\CommonDesktop [Public]: HP Support Assistant.lnk . (.HP Inc. - HP Support Assistant.) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe /p 2 =>.HP Inc.®
O4 - GS\CommonDesktop [Public]: Intel(R) HD Graphics Control Panel.lnk . (.Intel Corporation - GFXUIEX Module.) C:\WINDOWS\system32\GfxUIEx.exe =>.Intel Corporation
O4 - GS\CommonDesktop [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\CommonDesktop [Public]: NetBeans IDE 8.0.2.lnk . (.Oracle Corporation - .) C:\Program Files (x86)\NetBeans 8.0.2\bin\netbeans64.exe =>.Oracle Corporation
O4 - GS\CommonDesktop [Public]: Nitro Pro 10.lnk . (.Nitro PDF - .) C:\Program Files (x86)\Nitro\Pro 10\NitroPDF.exe =>.Nitro PDF
O4 - GS\CommonDesktop [Public]: PowerISO.lnk . (.Power Software Ltd - PowerISO.) C:\Program Files\PowerISO\PowerISO.exe =>.Power Software Ltd
O4 - GS\CommonDesktop [Public]: UmmyVideoDownloader.lnk . (.Magicbit, Inc - Ummy Video Downloader.) C:\Users\eric\AppData\Local\UmmyVideoDownloader\UmmyVideoDownloader.exe =>.SUP.Magicbit
O4 - GS\Programs [Public]: Fonctionnalités optionnelles.lnk . (.Microsoft Corporation - Assistance des fonctionnalités à la demande.) C:\Windows\System32\fodhelper.exe =>.Microsoft Corporation
O4 - GS\Programs [Public]: Messenger.lnk . (...) C:\Program Files (x86)\Messenger for Desktop\Messenger.exe
O4 - GS\Programs [Public]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\eric\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - GS\Programs [Public]: Uninstall Messenger for Desktop.lnk . (...) C:\Program Files (x86)\Messenger for Desktop\Uninstall Messenger for Desktop.exe
O4 - GS\Accessories [Public]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Accessories [Public]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) C:\Windows\system32\notepad.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Math Input Panel.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\mip.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.) C:\Windows\system32\mspaint.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Quick Assist.lnk . (.Microsoft Corporation - Quick Assist.) C:\Windows\system32\quickassist.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Connexion Bureau à distance.) C:\Windows\system32\mstsc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - Outil Capture d’écran.) C:\Windows\system32\SnippingTool.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Steps Recorder.lnk . (.Microsoft Corporation - Enregistreur d’actions.) C:\Windows\system32\psr.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Fax and Scan.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Application Windows Wordpad.) C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: XPS Viewer.lnk . (.Microsoft Corporation - Visionneuse XPS.) C:\Windows\system32\xpsrchvw.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Table des caractères.) C:\Windows\system32\charmap.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Access 2016.lnk . (...) C:\WINDOWS\Installer\{90160000-0011-0000-1000-0000000FF1CE}\accicons.exe =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: Adobe Application Manager.lnk . (...) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\core\PDapp.exe --appletID=CCM_UI --appletVersion=1.0 --workflow=CCM_workflow_launch
O4 - GS\ProgramsCommon [Public]: Adobe Dreamweaver CC.lnk . (.Adobe Systems, Inc. - Adobe Dreamweaver CC.) C:\Program Files (x86)\Adobe\Adobe Dreamweaver CC\Dreamweaver.exe =>.Adobe Systems Incorporated®
O4 - GS\ProgramsCommon [Public]: Assistant Mise à niveau de Windows 10.lnk . (.Microsoft Corporation - Assistant Mise à jour de Windows 10.) C:\Windows10Upgrade\Windows10UpgraderApp.exe =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: DTS Audio Control.lnk . (.Microsoft Corporation - Processus hôte Windows (Rundll32).) C:\Windows\System32\rundll32.exe shell32.dll,Control_RunDLL RTSnMg64.cpl,, =>..Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Enregistrement OCR I.R.I.S..lnk . (.I.R.I.S. Image Recognition Integarted Systems - Registration Wizard.) C:\Program Files (x86)\HP\IrisOCR_12.3.4.0\regipe.exe =>.IMAGE RECOGNITION INTEGRATED SYSTEMS SA®
O4 - GS\ProgramsCommon [Public]: Excel 2016.lnk . (...) C:\WINDOWS\Installer\{90160000-0011-0000-1000-0000000FF1CE}\xlicons.exe =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\ProgramsCommon [Public]: Immersive Control Panel.lnk . (.Microsoft Corporation - Windows Control Panel.) C:\Windows\System32\Control.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Intel(R) HD Graphics Control Panel.lnk . (.Intel Corporation - GFXUIEX Module.) C:\WINDOWS\system32\GfxUIEx.exe =>.Intel Corporation
O4 - GS\ProgramsCommon [Public]: MiracastView.lnk . (.Microsoft Corporation - MiracastView.) C:\Windows\MiracastView\MiracastView.exe =>.Microsoft Windows®
O4 - GS\ProgramsCommon [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\ProgramsCommon [Public]: Nitro Pro 10.lnk . (.Nitro PDF - .) C:\Program Files (x86)\Nitro\Pro 10\NitroPDF.exe =>.Nitro PDF
O4 - GS\ProgramsCommon [Public]: OneDrive Entreprise.lnk . (...) C:\WINDOWS\Installer\{90160000-0011-0000-1000-0000000FF1CE}\grv_icons.exe =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: OneNote 2016.lnk . (...) C:\WINDOWS\Installer\{90160000-0011-0000-1000-0000000FF1CE}\joticon.exe =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: Outlook 2016.lnk . (...) C:\WINDOWS\Installer\{90160000-0011-0000-1000-0000000FF1CE}\outicon.exe =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: PowerPoint 2016.lnk . (...) C:\WINDOWS\Installer\{90160000-0011-0000-1000-0000000FF1CE}\pptico.exe =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: PrintDialog.lnk . (.Microsoft Corporation - Print Dialog.) C:\Windows\PrintDialog\PrintDialog.exe =>.Microsoft Windows®
O4 - GS\ProgramsCommon [Public]: Publisher 2016.lnk . (...) C:\WINDOWS\Installer\{90160000-0011-0000-1000-0000000FF1CE}\pubs.exe =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: Skype Entreprise 2016.lnk . (...) C:\WINDOWS\Installer\{90160000-0011-0000-1000-0000000FF1CE}\lyncicon.exe =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: Sublime Text 3.lnk . (.Copyright (C) 2006 - 2016 Sublime HQ Pty Ltd - Sublime Text.) C:\Program Files\Sublime Text 3\sublime_text.exe =>.Sublime HQ Pty Ltd®
O4 - GS\ProgramsCommon [Public]: True Key.lnk . (...) C:\Program Files\Intel Security\True Key\Application\truekey.exe --open-source=startmenu =>.McAfee, Inc.®
O4 - GS\ProgramsCommon [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Word 2016.lnk . (...) C:\WINDOWS\Installer\{90160000-0011-0000-1000-0000000FF1CE}\wordicon.exe =>.Microsoft Corporation®
---\\ Modification Domaine/Adresses DNS (7) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = portdedouala.lan =>.Local Domain
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpDomain = portdedouala.lan =>.Local Domain
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 194.194.1.2 192.168.20.150 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{6fa96e37-86a5-4d12-92ea-34505b7285a0}: DhcpNameServer = 192.168.42.129 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{942905e8-b196-46fd-8774-2f72973ad90e}: DhcpNameServer = 194.194.1.2 192.168.20.150 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{dce7f7f0-d520-4177-bdd6-2dccc73654c7}: DhcpNameServer = 192.168.43.1 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{942905e8-b196-46fd-8774-2f72973ad90e}: DhcpDomain = portdedouala.lan =>.Local Domain
---\\ Protocole additionnel (25) - 2s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\SysWOW64\itss.dll =>.Microsoft Corporation
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\SysWOW64\inetcomm.dll =>.Microsoft Corporation
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\SysWOW64\itss.dll =>.Microsoft Corporation
O18 - Handler: mso-minsb.16 [64Bits] - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} . (.Microsoft Corporation - Microsoft Office 2016 component.) -- C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL =>.Microsoft Corporation®
O18 - Handler: osf.16 [64Bits] - {5504BE45-A83B-4808-900A-3A5C36E7F77A} . (.Microsoft Corporation - Microsoft Office 2016 component.) -- C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL =>.Microsoft Corporation®
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\SysWOW64\tbauth.dll =>.Microsoft Corporation
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: windows.tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\SysWOW64\tbauth.dll =>.Microsoft Corporation
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll =>.Microsoft Corporation
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll =>.Microsoft Corporation
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll =>.Microsoft Corporation
O18 - Filter: text/xml [64Bits] - {807583E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE16\MSOXMLMF.DLL =>.Microsoft Corporation®
---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (1) - 0s
O20 - AppInit_DLLs: . (...) - C:\ProgramData\xifs\Dingjob.dll (.not file.)
---\\ Logiciels installés (142) - 76s
O42 - Logiciel: 64 Bit HP CIO Components Installer - (.Hewlett-Packard.) [HKLM][64Bits] -- {3138F992-045B-4F55-825C-53B231E647CA} =>.Hewlett-Packard
O42 - Logiciel: AAA Logo 2014 v4.11 FULL - (.SWGSoft.) [HKLM][64Bits] -- AAA Logo 2014_is1 =>.SWGSoft
O42 - Logiciel: Adobe Dreamweaver CC - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {00E094E1-A852-11E2-803D-ACEA632352B4} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Flash Player 27 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI =>.Adobe Systems Incorporated®
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {07287123-B8AC-41CE-8346-3D777245C35B} =>.Apple Inc.
O42 - Logiciel: CloudNet - (.EpicNet Inc..) [HKCU][64Bits] -- CloudNet =>Adware.MSIL
O42 - Logiciel: ContentPush - (..) [HKLM][64Bits] -- ContentPush
O42 - Logiciel: CVitae 5 - (.Semantis.) [HKLM][64Bits] -- {5988C473-7D71-4B59-857B-8DA5C701FBFF} =>.Semantis
O42 - Logiciel: Dashlane - (.Dashlane, Inc..) [HKCU][64Bits] -- Dashlane =>.Dashlane, Inc.
O42 - Logiciel: Driver Fixer - (.Baisvik.) [HKLM][64Bits] -- {4F679D8F-2F0A-46EE-BB8C-903E217CEC9E}
O42 - Logiciel: DriverPack Notifier - (.DriverPack Solution.) [HKLM][64Bits] -- DriverPack Notifier =>.DriverPack Solution
O42 - Logiciel: FastDataX 1.20 - (..) [HKLM][64Bits] -- FastDataX_is1 =>Adware.FastDataX
O42 - Logiciel: FileZilla Client 3.25.1 - (.Tim Kosse.) [HKLM][64Bits] -- FileZilla Client =>.Tim Kosse
O42 - Logiciel: FlashBoot 2.2e - (.Mikhail Kupchik.) [HKLM][64Bits] -- FlashBoot_is1 =>.Mikhail Kupchik
O42 - Logiciel: FormatFactory 4.1.0.0 - (.Free Time.) [HKLM][64Bits] -- FormatFactory =>.Free Time
O42 - Logiciel: Free Download Manager - (.FreeDownloadManager.ORG.) [HKLM][64Bits] -- {43781dff-e0df-49ce-a6d2-47da96a485e7}}_is1 =>.FreeDownloadManager.org
O42 - Logiciel: GanttProject - (..) [HKLM][64Bits] -- GanttProject
O42 - Logiciel: GESCMS - (.PC SOFT.) [HKLM][64Bits] -- GESCMS =>.PC SOFT
O42 - Logiciel: GlassFish Server Open Source Edition 4.1 - (.Sun Microsystems.) [HKLM][64Bits] -- nbi-glassfish-mod-4.1.0.13.0 =>.Sun Microsystems
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome =>.Google Inc®
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} =>.Google Inc.
O42 - Logiciel: gupdate 2.00 - (.xtex.) [HKLM][64Bits] -- gupdate 2.00 =>Adware.GUpdate
O42 - Logiciel: Hi uninstall - (.Hi-Rez studios Games.) [HKLM][64Bits] -- Hiru
O42 - Logiciel: HP 3D DriveGuard - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {E8D0E2B8-B64B-44BC-8E01-00DDACBDF78A} =>.Hewlett-Packard Company
O42 - Logiciel: HP Customer Experience Enhancements - (.Hewlett-Packard.) [HKLM][64Bits] -- {0CC8AE1D-F5AA-4143-8FAD-E017E0E9EE70} =>.Hewlett-Packard
O42 - Logiciel: HP PC Hardware Diagnostics UEFI - (..) [HKLM][64Bits] -- {924D3ABC-FC75-4042-9DDB-FB846A45848D}
O42 - Logiciel: HP Support Assistant - (.HP.) [HKLM][64Bits] -- {78E2C850-ADA6-420D-BA35-2F4A9BE733CC} =>.HP
O42 - Logiciel: HP Support Solutions Framework - (.HP.) [HKLM][64Bits] -- {EB72DB50-C935-4C26-8349-69828F198902} =>.HP
O42 - Logiciel: HP System Event Utility - (.HP Inc..) [HKLM][64Bits] -- {29E20347-C62F-4657-938E-876A182B67F1} =>.HP Inc.
O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM][64Bits] -- {912D30CF-F39E-4B31-AD9A-123C6B794EE2} =>.Hewlett-Packard
O42 - Logiciel: I.R.I.S. OCR - (.HP.) [HKLM][64Bits] -- {CA6BCA2F-EDEB-408F-850B-31404BE16A61} =>.HP
O42 - Logiciel: Intel Security True Key - (.Intel Security.) [HKLM][64Bits] -- TrueKey =>.McAfee, Inc.®
O42 - Logiciel: Intel(R) Biometric and Context Agent - (.Intel Corporation.) [HKLM][64Bits] -- {526002E5-7D5B-4703-A4E3-BA566AED5D8A} =>.Intel Corporation
O42 - Logiciel: Intel(R) Biometric and Context Agent Redistributables - (.Intel Corporation.) [HKLM][64Bits] -- {E6D505B9-1A18-4F67-9BE0-D37B5164D581} =>.Intel Corporation
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA} =>.Intel Corporation - pGFX®
O42 - Logiciel: Intel® RealSense™ SDK 2014 Runtime (x64): Core - (.Intel Corporation.) [HKLM][64Bits] -- {37D41A97-6B02-4C30-8753-85107BE1D674} =>.Intel Corporation
O42 - Logiciel: Internet Download Manager - (.Tonec Inc..) [HKLM][64Bits] -- Internet Download Manager =>.Tonec Inc.®
O42 - Logiciel: Jargon Informatique - (.tuxfamily.org.) [HKLM][64Bits] -- Jargon Informatique
O42 - Logiciel: Java 8 Update 141 (64-bit) - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F64180141F0} =>.Oracle Corporation
O42 - Logiciel: Java 8 Update 144 - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F32180144F0} =>.Oracle Corporation
O42 - Logiciel: Java 8 Update 144 (64-bit) - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F64180144F0} =>.Oracle Corporation
O42 - Logiciel: Java Auto Updater - (.Oracle Corporation.) [HKLM][64Bits] -- {4A03706F-666A-4037-7777-5F2748764D10} =>.Oracle Corporation
O42 - Logiciel: Java SE Development Kit 7 Update 45 - (.Oracle.) [HKLM][64Bits] -- {32A3A4F4-B792-11D6-A78A-00B0D0170450} =>.Oracle
O42 - Logiciel: Java SE Development Kit 8 Update 141 (64-bit) - (.Oracle Corporation.) [HKLM][64Bits] -- {64A3A4F4-B792-11D6-A78A-00B0D0180141} =>.Oracle Corporation
O42 - Logiciel: Java SE Development Kit 8 Update 144 (64-bit) - (.Oracle Corporation.) [HKLM][64Bits] -- {64A3A4F4-B792-11D6-A78A-00B0D0180144} =>.Oracle Corporation
O42 - Logiciel: Java SE Development Kit 8 Update 45 (64-bit) - (.Oracle Corporation.) [HKLM][64Bits] -- {64A3A4F4-B792-11D6-A78A-00B0D0180450} =>.Oracle Corporation
O42 - Logiciel: Java SE Development Kit 8 Update 73 (64-bit) - (.Oracle Corporation.) [HKLM][64Bits] -- {64A3A4F4-B792-11D6-A78A-00B0D0180730} =>.Oracle Corporation
O42 - Logiciel: K-Lite Codec Pack 13.4.5 Full - (.KLCP.) [HKLM][64Bits] -- KLiteCodecPack_is1 =>.KLCP
O42 - Logiciel: KMSpico - (..) [HKLM][64Bits] -- {8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1 =>HackTool.KMSpico
O42 - Logiciel: Macromedia Extension Manager - (.Macromedia.) [HKLM][64Bits] -- {3C8C9FB3-5FDF-40B4-B314-EAD722728C76} =>.Macromedia
O42 - Logiciel: Micro Application - 38 Dictionnaires et Recueils de Correspondance - (.Micro Application.) [HKLM][64Bits] -- {B410328C-0E8C-4DD2-9DB4-DE7766D0DFE0} =>.Micro Application
O42 - Logiciel: Microsoft Access MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-0015-040C-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft DCF MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-0090-040C-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Excel MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-0016-040C-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Games for Windows - LIVE Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {F2508213-9989-4E85-A078-72BE483917EF} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Games for Windows Marketplace - (.Microsoft Corporation.) [HKLM][64Bits] -- {4CB0307C-565E-4441-86BE-0DF2E4FB828C} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Groove MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-00BA-040C-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft InfoPath MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-0044-040C-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft OneDrive - (.Microsoft Corporation.) [HKCU][64Bits] -- OneDriveSetup.exe =>.Microsoft Corporation®
O42 - Logiciel: Microsoft OneNote MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-00A1-040C-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Outlook MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-001A-040C-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft PowerPoint MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-0018-040C-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Publisher MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-0019-040C-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Skype for Business MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-012B-040C-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Word MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-001B-040C-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Mobile Broadband HL Service - (.Huawei Technologies Co.,Ltd.) [HKLM][64Bits] -- Mobile Broadband HL Service =>.Huawei Technologies Co., Ltd.®
O42 - Logiciel: Mozilla Firefox 55.0.3 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 55.0.3 (x86 fr) =>.Mozilla Corporation®
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService =>.Mozilla
O42 - Logiciel: MSVCRT Redists - (.Sony Creative Software Inc..) [HKLM][64Bits] -- {D4BD27CF-BFBC-11E3-9B8F-F04DA23A5C58} =>.Sony Creative Software Inc.
O42 - Logiciel: Music Recorder - (.Nero AG.) [HKLM][64Bits] -- {94A4AE85-9F1D-4687-953F-38371C9D1A4F} =>.Nero AG
O42 - Logiciel: My Web Shield - (.My Web Shield.) [HKLM][64Bits] -- mweshield {39D3FCDE4532A63BD298039D0555D0C2} =>PUP.Optional.WebShield
O42 - Logiciel: Nero 2017 - (.Nero AG.) [HKLM][64Bits] -- {6B81BDC4-3368-4898-8F16-48962F789221} =>.Nero AG
O42 - Logiciel: Nero 2017 Content Pack - (.Nero AG.) [HKLM][64Bits] -- {4E6D3A36-4558-466D-83CC-AE2DCAC06C53} =>.Nero AG
O42 - Logiciel: Nero Abstract Themes - (.Nero AG.) [HKLM][64Bits] -- {150D88F1-40AF-4678-A39D-BCE2332F34E5} =>.Nero AG
O42 - Logiciel: Nero Burning Core - (.Nero AG.) [HKLM][64Bits] -- {6DAEECA5-8208-47DA-82AA-6B653EC31B97} =>.Nero AG
O42 - Logiciel: Nero Burning ROM - (.Nero AG.) [HKLM][64Bits] -- {A4BF6CA6-18AB-4C1A-8E2E-FB9485149DC9} =>.Nero AG
O42 - Logiciel: Nero Cliparts - (.Nero AG.) [HKLM][64Bits] -- {29E2C1C6-D76A-41D3-980F-6E346AA9A6A8} =>.Nero AG
O42 - Logiciel: Nero ControlCenter - (.Nero AG.) [HKLM][64Bits] -- {ABC88553-8770-4B97-B43E-5A90647A5B63} =>.Nero AG
O42 - Logiciel: Nero Core Components - (.Nero AG.) [HKLM][64Bits] -- {BEBEE34D-84A2-4EDD-8BEA-96CC54371263} =>.Nero AG
O42 - Logiciel: Nero CoverDesigner - (.Nero AG.) [HKLM][64Bits] -- {D8CCA6A9-E0CA-4589-BA17-54C909B1C8B5} =>.Nero AG
O42 - Logiciel: Nero Device Updates - (.Nero AG.) [HKLM][64Bits] -- {521087D5-A9CC-4434-9206-FA011ABBDCF3} =>.Nero AG
O42 - Logiciel: Nero Disc Menus 1 - (.Nero AG.) [HKLM][64Bits] -- {EEBF1676-AF87-4266-93D8-0C14A34C4217} =>.Nero AG
O42 - Logiciel: Nero Disc Menus 2 - (.Nero AG.) [HKLM][64Bits] -- {FE81E6B5-652B-40E7-B3B2-7171C6F297DA} =>.Nero AG
O42 - Logiciel: Nero Disc Menus 3 - (.Nero AG.) [HKLM][64Bits] -- {CE675FBD-75C3-45F1-B6AF-8D250861D536} =>.Nero AG
O42 - Logiciel: Nero Disc Menus Basic - (.Nero AG.) [HKLM][64Bits] -- {E17BCB76-9924-4BD5-B6D6-50D3407B4E74} =>.Nero AG
O42 - Logiciel: Nero Disc to Device - (.Nero AG.) [HKLM][64Bits] -- {6E6D453B-AADE-4F14-97F6-9B464488BC53} =>.Nero AG
O42 - Logiciel: Nero Effects Basic - (.Nero AG.) [HKLM][64Bits] -- {29F67D84-3A70-456E-806A-52301B02070B} =>.Nero AG
O42 - Logiciel: Nero Express - (.Nero AG.) [HKLM][64Bits] -- {991572A1-F8B9-42E5-B485-A79724558A84} =>.Nero AG
O42 - Logiciel: Nero Family and Events Themes - (.Nero AG.) [HKLM][64Bits] -- {955BF340-C379-4375-AA2F-F3BCB2A498AB} =>.Nero AG
O42 - Logiciel: Nero Football (Soccer) Themes - (.Nero AG.) [HKLM][64Bits] -- {7BD7A4BF-EA64-4BFE-A9D3-3FDC9B6EFC23} =>.Nero AG
O42 - Logiciel: Nero Holiday and Sports Themes - (.Nero AG.) [HKLM][64Bits] -- {504D84ED-AE75-4F85-A68B-BB3D4CB3E169} =>.Nero AG
O42 - Logiciel: Nero Image Samples - (.Nero AG.) [HKLM][64Bits] -- {C4C6DF25-0E59-46EE-B24B-DF8749D8FF3A} =>.Nero AG
O42 - Logiciel: Nero Info - (.Nero AG.) [HKLM][64Bits] -- {F030BFE8-8476-4C08-A553-233DE80A2BE1} =>.Nero AG
O42 - Logiciel: Nero Kwik Themes Basic - (.Nero AG.) [HKLM][64Bits] -- {1B6F5E51-575E-4693-BCA2-7543570D076D} =>.Nero AG
O42 - Logiciel: Nero Launcher - (.Nero AG.) [HKLM][64Bits] -- {21916D21-F3DD-44F9-952B-FD122CBD1526} =>.Nero AG
O42 - Logiciel: Nero MediaHome - (.Nero AG.) [HKLM][64Bits] -- {DF4748D8-2FC2-4D51-87D0-95A81CCA962B} =>.Nero AG
O42 - Logiciel: Nero PiP Effects 1 - (.Nero AG.) [HKLM][64Bits] -- {4D25D881-7183-462F-95C8-990CA1944E0B} =>.Nero AG
O42 - Logiciel: Nero PiP Effects Basic - (.Nero AG.) [HKLM][64Bits] -- {ACE49D50-19CD-44A6-B192-46F985283B26} =>.Nero AG
O42 - Logiciel: Nero Platinum Effects 12 - (.Nero AG.) [HKLM][64Bits] -- {8B5AD338-7ABC-4ECB-9C2C-687F84AEDDB1} =>.Nero AG
O42 - Logiciel: Nero Recode - (.Nero AG.) [HKLM][64Bits] -- {47C00502-CFAC-42D3-8019-D9C557AD49AD} =>.Nero AG
O42 - Logiciel: Nero RescueAgent - (.Nero AG.) [HKLM][64Bits] -- {D740FC18-FAB2-4DE1-A9F5-E7B81A578CCF} =>.Nero AG
O42 - Logiciel: Nero Retro Film Themes - (.Nero AG.) [HKLM][64Bits] -- {83A4E573-E2C2-46FB-9DA6-6A2BBBF5A588} =>.Nero AG
O42 - Logiciel: Nero SharedVideoCodecs - (.Nero AG.) [HKLM][64Bits] -- {2432E589-6256-4513-B0BF-EFA8E325D5F0} =>.Nero AG
O42 - Logiciel: Nero Update - (.Nero AG.) [HKLM][64Bits] -- {65BB0407-4CC8-4DC7-952E-3EEFDF05602A} =>.Nero AG
O42 - Logiciel: Nero Video - (.Nero AG.) [HKLM][64Bits] -- {EBFB4FEE-C2EB-4EE3-A832-DB850DE54F78} =>.Nero AG
O42 - Logiciel: Nero Video Samples - (.Nero AG.) [HKLM][64Bits] -- {05C6B128-1B40-4495-9CB9-090B368BFA0A} =>.Nero AG
O42 - Logiciel: Nero Video Transitions 1 - (.Nero AG.) [HKLM][64Bits] -- {22856BC3-F893-4CBF-95F2-E1F63CD2B1AB} =>.Nero AG
O42 - Logiciel: NetBeans IDE 8.0.2 - (.NetBeans.org.) [HKLM][64Bits] -- nbi-nb-base-8.0.2.0.201411181905 =>.NetBeans.org
O42 - Logiciel: NewBlue Video Essentials VI for Windows - (.NewBlue.) [HKLM][64Bits] -- NewBlue Video Essentials VI for Windows =>.NewBlue
O42 - Logiciel: Nitro Pro 10 - (.Nitro.) [HKLM][64Bits] -- {C78478E6-8206-470E-B843-0204995371C6} =>.Nitro
O42 - Logiciel: NoterSave version 1.0 - (.WeMonetize.) [HKLM][64Bits] -- NoterSave_is1 =>.SUP.Tuto4PC
O42 - Logiciel: Oracle Database 11g Express Edition - (.Oracle Corporation.) [HKLM][64Bits] -- {05A7B662-80A3-4EB9-AE1D-89A62449431C} =>.Oracle Corporation
O42 - Logiciel: Oracle Database 11g Express Edition - (.Oracle Corporation.) [HKLM][64Bits] -- InstallShield_{05A7B662-80A3-4EB9-AE1D-89A62449431C} =>.Oracle Corporation
O42 - Logiciel: Package de pilotes Windows - Google, Inc. (WinUSB) AndroidUsbDeviceClass ( - (.Google, Inc..) [HKLM][64Bits] -- 092555911492C6959D2596D612F52DCA71881CA2 =>.Google, Inc.
O42 - Logiciel: PowerISO - (.Power Software Ltd.) [HKLM][64Bits] -- PowerISO =>.Power Software Ltd
O42 - Logiciel: Prerequisite installer - (.Nero AG.) [HKLM][64Bits] -- {EB511CD1-C87C-490D-A7B1-D6C47F57820F} =>.Nero AG
O42 - Logiciel: Progr. désin. pilote d'impr. UFR II - (.Canon Inc..) [HKLM][64Bits] -- Canon UFR II Printer Driver =>.CANON INC.®
O42 - Logiciel: RealDownloader - (.RealNetworks, Inc..) [HKLM][64Bits] -- {410F406E-7AFC-4E9F-BF7E-0CB3C72BDAB9} =>.RealNetworks, Inc.
O42 - Logiciel: Realtek Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {5BC2B5AB-80DE-4E83-B8CF-426902051D0A} =>.Realtek Semiconductor Corp.®
O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476} =>.Realtek Semiconductor Corp®
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} =>.Realtek Semiconductor Corp.®
O42 - Logiciel: Reload Icons Cache 1.00 - (.Mr Blade Design's.) [HKLM][64Bits] -- Reload Icons Cache 1.00 =>.Mr Blade Design's
O42 - Logiciel: Samsung USB Driver for Mobile Phones - (.Samsung Electronics Co., Ltd..) [HKLM][64Bits] -- {D0795B21-0CDA-4a92-AB9E-6E92D8111E44} =>.Samsung Electronics CO., LTD.®
O42 - Logiciel: Security Update for Skype for Business 2016 (KB3115408) 64-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-00C1-0000-1000-0000000FF1CE}_Office16.PROPLUS_{C5C666D0-D5BD-4FE8-BE51-938926DC58E1} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Skype for Business 2016 (KB4011040) 64-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0011-0000-1000-0000000FF1CE}_Office16.PROPLUS_{D57DBD71-B426-45C4-9B1D-6347DE27B73D} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Skype for Business 2016 (KB4011040) 64-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-012B-040C-1000-0000000FF1CE}_Office16.PROPLUS_{D57DBD71-B426-45C4-9B1D-6347DE27B73D} =>.Microsoft Corporation®
O42 - Logiciel: Sublime Text Build 3065 - (.Sublime HQ Pty Ltd.) [HKLM][64Bits] -- Sublime Text 3_is1 =>.Sublime HQ Pty Ltd®
O42 - Logiciel: SWI-Prolog (remove only) - (..) [HKLM][64Bits] -- SWI-Prolog
O42 - Logiciel: Sybase PowerAMC 15.1 - (.Sybase Inc..) [HKLM][64Bits] -- {48B0BE4A-EDC9-44C4-A3DB-67D62D75961F} =>.Macrovision Corporation®
O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM][64Bits] -- SynTPDeinstKey =>.Synaptics Incorporated®
O42 - Logiciel: UmmyVideoDownloader - (..) [HKLM][64Bits] -- {E028DBDA-EEE7-48A0-ADF7-D250589A02C5}_is1
O42 - Logiciel: USB Disk Security - (.Zbshareware Lab.) [HKLM][64Bits] -- USB Disk Security_is1 =>.Zbshareware Lab
O42 - Logiciel: UxStyle - (.The Within Network, LLC.) [HKLM][64Bits] -- {28A17CCB-77BB-49C9-847B-60E076DC43D1} =>.The Within Network, LLC
O42 - Logiciel: UxStyle - (.The Within Network, LLC.) [HKLM][64Bits] -- {6bf90d91-c5db-454e-a7b4-81bc6cbbe13f} =>.The Within Network, LLC®
O42 - Logiciel: VirtualDJ 8 - (.Atomix Productions.) [HKLM][64Bits] -- {F7A68F9D-BBF0-48FF-B138-2EFB5165638C} =>.Atomix Productions
O42 - Logiciel: vs2015_redist x64 - (.Realnetworks.) [HKLM][64Bits] -- {EAED8692-5B63-4665-B857-D626633691DA} =>.RealNetworks
O42 - Logiciel: vs2015_redist x86 - (.Realnetworks.) [HKLM][64Bits] -- {BD46163A-0331-4A61-B65A-7B66D7C93F8E} =>.RealNetworks
O42 - Logiciel: WhatsApp - (.WhatsApp.) [HKCU][64Bits] -- WhatsApp =>.WhatsApp, Inc.®
O42 - Logiciel: WinRAR 5.20 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver =>.win.rar GmbH®
O42 - Logiciel: Yubby - (.CRM Ltd.) [HKLM][64Bits] -- {D105DFE2-8DF6-4BA0-ABF1-392716658963}
O42 - Logiciel: ZDServer - (.ZTE Corporation.) [HKLM][64Bits] -- {C8197F5F-E0DC-44f1-8AF2-1AA5A84F695D} =>.ZTE CORPORATION®
O42 - Logiciel: ZTE Mobile Broadband Device Drivers 1.0.0.17 - (.ZTE.) [HKLM][64Bits] -- {9194B665-5134-4B6B-AD73-A5292CB072D3}_is1 =>.ZTE
---\\ HKCU & HKLM Software Keys (229) - 76s
HKLM\SOFTWARE\Wow6432Node\89078A9FA5262B8AF87E572E4F3BA9D1 =>Adware.CrossRider
HKLM\SOFTWARE\Wow6432Node\Apache Software Foundation =>.Apache Inc.
HKLM\SOFTWARE\Wow6432Node\Apple Computer, Inc. =>.Apple Computer, Inc.
HKLM\SOFTWARE\Wow6432Node\Apple Inc. =>.Apple Inc.
HKLM\SOFTWARE\Wow6432Node\Atonitherlibution
HKLM\SOFTWARE\Wow6432Node\Baidu =>.Baidu
HKLM\SOFTWARE\Wow6432Node\BaisvikSoftware
HKLM\SOFTWARE\Wow6432Node\BSD =>.Berkeley
HKLM\SOFTWARE\Wow6432Node\C+W_Mini
HKLM\SOFTWARE\Wow6432Node\CDDB =>.Cddb Software
HKLM\SOFTWARE\Wow6432Node\Connectify =>.Connectify
HKLM\SOFTWARE\Wow6432Node\Cygnus Solutions =>.Cygnus Solutions
HKLM\SOFTWARE\Wow6432Node\Disk Doctor Labs Inc.
HKLM\SOFTWARE\Wow6432Node\drpsu =>.Driver PackSolution
HKLM\SOFTWARE\Wow6432Node\DT Soft =>.DT Soft Ltd
HKLM\SOFTWARE\Wow6432Node\EA Games =>.EA Games
HKLM\SOFTWARE\Wow6432Node\EASEUS =>.EaseUS Software
HKLM\SOFTWARE\Wow6432Node\FileZilla 3 =>.FileZilla
HKLM\SOFTWARE\Wow6432Node\FileZilla Client =>.Tim Kosse
HKLM\SOFTWARE\Wow6432Node\FreeDownloadManager.ORG =>.FreeDownloadManager.org
HKLM\SOFTWARE\Wow6432Node\GanttProject
HKLM\SOFTWARE\Wow6432Node\Google =>.Google
HKLM\SOFTWARE\Wow6432Node\Hewlett-Packard =>.Hewlett-Packard
HKLM\SOFTWARE\Wow6432Node\Huawei technologies =>.Huawei Technologies
HKLM\SOFTWARE\Wow6432Node\Icaros =>.Icaros
HKLM\SOFTWARE\Wow6432Node\InstallShield =>.InstallShield
HKLM\SOFTWARE\Wow6432Node\Intel =>.Intel
HKLM\SOFTWARE\Wow6432Node\Intel Security =>.Intel Security
HKLM\SOFTWARE\Wow6432Node\Internet Download Manager =>.Tonec Inc
HKLM\SOFTWARE\Wow6432Node\IObit =>.IObit
HKLM\SOFTWARE\Wow6432Node\JavaSoft =>.JavaSoft
HKLM\SOFTWARE\Wow6432Node\jawego =>.SUP.JawegoPartners
HKLM\SOFTWARE\Wow6432Node\JetBrains =>.JetBrains
HKLM\SOFTWARE\Wow6432Node\jhdbca
HKLM\SOFTWARE\Wow6432Node\JreMetrics =>.JreMetrics
HKLM\SOFTWARE\Wow6432Node\Khronos =>.Khronos
HKLM\SOFTWARE\Wow6432Node\KLCodecPack =>.KLite Inc
HKLM\SOFTWARE\Wow6432Node\Komeent
HKLM\SOFTWARE\Wow6432Node\LAV =>.LAV Inc
HKLM\SOFTWARE\Wow6432Node\Lavasoft =>.Lavasoft
HKLM\SOFTWARE\Wow6432Node\LAventure =>.L'Aventure
HKLM\SOFTWARE\Wow6432Node\Licenses =>.Microsoft Corporation
HKLM\SOFTWARE\Wow6432Node\LogMeInRescueCallingCard =>.LogMeIn Entreprise
HKLM\SOFTWARE\Wow6432Node\Macromedia =>.Macromedia
HKLM\SOFTWARE\Wow6432Node\McAfee =>.McAfee Inc.
HKLM\SOFTWARE\Wow6432Node\McAfee.com =>.McAfee Inc.
HKLM\SOFTWARE\Wow6432Node\Micro Application =>.Micro Application
HKLM\SOFTWARE\Wow6432Node\Mozilla =>.Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org =>.mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins =>.MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\mtAirtostrong =>PUP.Optional.Salus
HKLM\SOFTWARE\Wow6432Node\mtocep
HKLM\SOFTWARE\Wow6432Node\mtRonzap =>PUP.Optional.Salus
HKLM\SOFTWARE\Wow6432Node\mtxifs
HKLM\SOFTWARE\Wow6432Node\MySQL AB =>.MySQL AB
HKLM\SOFTWARE\Wow6432Node\Namco
HKLM\SOFTWARE\Wow6432Node\Nero =>.Ahead Corporation
HKLM\SOFTWARE\Wow6432Node\NewBlue =>.NewBlue
HKLM\SOFTWARE\Wow6432Node\Nuance =>.Nuance
HKLM\SOFTWARE\Wow6432Node\ODBC =>.DB Connectivity Solutions
HKLM\SOFTWARE\Wow6432Node\OpenVPN-GUI =>.OpenVPN Technologie
HKLM\SOFTWARE\Wow6432Node\ORACLE =>.Oracle
HKLM\SOFTWARE\Wow6432Node\PostgreSQL =>.PostgreSQL
HKLM\SOFTWARE\Wow6432Node\PostgreSQL Global Development Group =>.PostgreSQL Global Development Group
HKLM\SOFTWARE\Wow6432Node\PowerISO =>.PowerISO Computing
HKLM\SOFTWARE\Wow6432Node\PowerPivot =>.PowerPivot
HKLM\SOFTWARE\Wow6432Node\PowerTechnology =>.PowerTechnology
HKLM\SOFTWARE\Wow6432Node\Razer =>.Razer
HKLM\SOFTWARE\Wow6432Node\RealNetworks =>.RealNetworks
HKLM\SOFTWARE\Wow6432Node\Realtek =>.Realtek Semiconductor Corp.
HKLM\SOFTWARE\Wow6432Node\Realtek Semiconductor Corp. =>.Realtek Semiconductor Corp.
HKLM\SOFTWARE\Wow6432Node\Rene.E Laboratory =>.Rene.E Laboratory
HKLM\SOFTWARE\Wow6432Node\Rtp =>.RTP Software
HKLM\SOFTWARE\Wow6432Node\Samsung =>.Samsung Electronics
HKLM\SOFTWARE\Wow6432Node\Skype =>.Skype
HKLM\SOFTWARE\Wow6432Node\Sony Creative Software =>.Sony Creative Software
HKLM\SOFTWARE\Wow6432Node\SOSVirus =>.SosVirus
HKLM\SOFTWARE\Wow6432Node\Speedownloader0099 =>PUP.Optional.SoftwareEngine
HKLM\SOFTWARE\Wow6432Node\SuperBoost =>.QiWang
HKLM\SOFTWARE\Wow6432Node\SWI
HKLM\SOFTWARE\Wow6432Node\Sybase
HKLM\SOFTWARE\Wow6432Node\Symantec =>.Symantec
HKLM\SOFTWARE\Wow6432Node\Tencent =>.SUP.Tencent
HKLM\SOFTWARE\Wow6432Node\ThinPrint =>.ThinPrint
HKLM\SOFTWARE\Wow6432Node\trotuxSoftware =>.SUP.Trotux
HKLM\SOFTWARE\Wow6432Node\TrueKey =>.Intel Corporation
HKLM\SOFTWARE\Wow6432Node\VirtualDJ =>.Atomix Production
HKLM\SOFTWARE\Wow6432Node\VMware, Inc. =>.VMware, Inc.
HKLM\SOFTWARE\Wow6432Node\Volatile =>.Microsoft Corporation
HKLM\SOFTWARE\Wow6432Node\WafCX =>.WafCX
HKLM\SOFTWARE\Wow6432Node\WinZiper =>.SUP.WinZipper
HKLM\SOFTWARE\Wow6432Node\Wondershare =>.Wondershare
HKLM\SOFTWARE\Wow6432Node\WOW6432Node =>.Microsoft Corporation
HKLM\SOFTWARE\Wow6432Node\Xing Technology Corp. =>.Xing Technology Corp.
HKLM\SOFTWARE\Wow6432Node\XinYi Network =>.XinYi Network
HKLM\SOFTWARE\Wow6432Node\Yahoo =>.Yahoo! Inc.
HKLM\SOFTWARE\Wow6432Node\zbshareware =>.Zbshareware
HKLM\SOFTWARE\Wow6432Node\ZTE Mobile Broadband Device Drivers
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications =>.Microsoft Corporation
HKCU\SOFTWARE\2VG
HKCU\SOFTWARE\89078A9FA5262B8AF87E572E4F3BA9D1 =>Adware.CrossRider
HKCU\SOFTWARE\AAA Logo 2014
HKCU\SOFTWARE\AAA_LOGO =>.SWGSoft
HKCU\SOFTWARE\APN PIP =>.SUP.Conduit
HKCU\SOFTWARE\Apowersoft =>.Apowersoft
HKCU\SOFTWARE\AppDataLow =>.Microsoft Corporation
HKCU\SOFTWARE\Baidu =>.Baidu
HKCU\SOFTWARE\BaisvikSoftware
HKCU\SOFTWARE\BSD =>.Berkeley
HKCU\SOFTWARE\BugSplat =>.Bugsplat Game
HKCU\SOFTWARE\Canon =>.Canon
HKCU\SOFTWARE\CDDB =>.Cddb Software
HKCU\SOFTWARE\Chromium =>.Chromium
HKCU\SOFTWARE\Convar =>.Legitimate
HKCU\SOFTWARE\Cygnus Solutions =>.Cygnus Solutions
HKCU\SOFTWARE\Dashlane =>.Dashlane
HKCU\SOFTWARE\Dashlane_profiles =>.Dashlane, Inc
HKCU\SOFTWARE\DirectShow =>.Microsoft Corporation
HKCU\SOFTWARE\Disc Soft =>.Disc Soft
HKCU\SOFTWARE\Disk Doctor Labs Inc.
HKCU\SOFTWARE\Disk Doctors Labs
HKCU\SOFTWARE\DownloadAstro =>.Download Astro
HKCU\SOFTWARE\DownloadManager =>.DownloadManager
HKCU\SOFTWARE\DRP
HKCU\SOFTWARE\drpsu =>.Driver PackSolution
HKCU\SOFTWARE\DT Soft =>.DT Soft Ltd
HKCU\SOFTWARE\EaseUS =>.EaseUS Software
HKCU\SOFTWARE\EffectMgr =>.Legitimate
HKCU\SOFTWARE\ej-technologies =>.ej-technologies
HKCU\SOFTWARE\EMU =>.Games Software
HKCU\SOFTWARE\EpicNet Inc. =>Adware.MSIL
HKCU\SOFTWARE\Facebook =>.Facebook
HKCU\SOFTWARE\FastDataX =>Adware.FastDataX
HKCU\SOFTWARE\FlashBoot =>.PrimeExpert Software
HKCU\SOFTWARE\FLT =>.FLT Software
HKCU\SOFTWARE\FreeDownloadManager.ORG =>.FreeDownloadManager.org
HKCU\SOFTWARE\FreeTime =>.FreeTime Inc
HKCU\SOFTWARE\Freeware =>.VirtualDub.org
HKCU\SOFTWARE\Google =>.Google
HKCU\SOFTWARE\GRETECH =>.Gretech
HKCU\SOFTWARE\Haali =>.Haali Media
HKCU\SOFTWARE\Hewlett-Packard =>.Hewlett-Packard
HKCU\SOFTWARE\HP =>.HP
HKCU\SOFTWARE\I.R.I.S. =>.I.R.I.S.
HKCU\SOFTWARE\Icaros =>.Icaros
HKCU\SOFTWARE\IM =>.Legitimate
HKCU\SOFTWARE\IM Providers =>.IM Providers
HKCU\SOFTWARE\InstallPath =>.Legitimate
HKCU\SOFTWARE\Intel =>.Intel
HKCU\SOFTWARE\Intel Security =>.Intel Security
HKCU\SOFTWARE\IObit =>.IObit
HKCU\SOFTWARE\JavaSoft =>.JavaSoft
HKCU\SOFTWARE\jawego =>.SUP.JawegoPartners
HKCU\SOFTWARE\JetBrains =>.JetBrains
HKCU\SOFTWARE\KasperskyLab =>.Kaspersky Labs
HKCU\SOFTWARE\KasperskyLabSetup =>.Kaspersky Labs
HKCU\SOFTWARE\LAventure =>.L'Aventure
HKCU\SOFTWARE\Licenses =>.Microsoft Corporation
HKCU\SOFTWARE\Macromedia =>.Macromedia
HKCU\SOFTWARE\madshi =>.madshi.net
HKCU\SOFTWARE\Magicbit =>.SUP.Magicbit
HKCU\SOFTWARE\MainConcept =>.MainConcept AG
HKCU\SOFTWARE\MainConcept (Consumer) =>.MainConcept AG
HKCU\SOFTWARE\MediaInfo =>.Jérôme Martinez
HKCU\SOFTWARE\Mine =>.Microsoft Corporation
HKCU\SOFTWARE\Mirage =>.Mirage Game
HKCU\SOFTWARE\Mobirise.com =>.Mobirise.com
HKCU\SOFTWARE\Mozilla =>.Mozilla
HKCU\SOFTWARE\MozillaPlugins =>.MozillaPlugins
HKCU\SOFTWARE\MPC-HC =>.MPC-HC Team
HKCU\SOFTWARE\mtxifs
HKCU\SOFTWARE\Nero =>.Ahead Corporation
HKCU\SOFTWARE\NeroDigital =>.Nero Digital
HKCU\SOFTWARE\Netscape =>.Netscape
HKCU\SOFTWARE\NewBlue =>.NewBlue
HKCU\SOFTWARE\NewHighTech
HKCU\SOFTWARE\Nitro =>.Nitro
HKCU\SOFTWARE\NVIDIA Corporation =>.nVidia Corporation
HKCU\SOFTWARE\ODBC =>.DB Connectivity Solutions
HKCU\SOFTWARE\pad
HKCU\SOFTWARE\PC SOFT =>.PC SOFT
HKCU\SOFTWARE\pgAdmin III
HKCU\SOFTWARE\PluginAddon =>PUP.Optional.Vonteera
HKCU\SOFTWARE\PopCap
HKCU\SOFTWARE\PowerISO =>.PowerISO Computing
HKCU\SOFTWARE\PowerTechnology =>.PowerTechnology
HKCU\SOFTWARE\Psiphon3
HKCU\SOFTWARE\QtProject =>.QtProject
HKCU\SOFTWARE\Real
HKCU\SOFTWARE\RealNetworks =>.RealNetworks
HKCU\SOFTWARE\Realtek =>.Realtek Semiconductor Corp.
HKCU\SOFTWARE\RegisteredApplications =>.Microsoft Corporation
HKCU\SOFTWARE\Rtp =>.RTP Software
HKCU\SOFTWARE\Samsung =>.Samsung Electronics
HKCU\SOFTWARE\SAP =>.SAP
HKCU\SOFTWARE\Semantis =>.Semantis
HKCU\SOFTWARE\Skype =>.Skype
HKCU\SOFTWARE\Sony Creative Software =>.Sony Creative Software
HKCU\SOFTWARE\Speedownloader0099 =>PUP.Optional.SoftwareEngine
HKCU\SOFTWARE\SpinTop
HKCU\SOFTWARE\StackDocklet
HKCU\SOFTWARE\SWI
HKCU\SOFTWARE\Sybase
HKCU\SOFTWARE\Synaptics =>.Synaptics
HKCU\SOFTWARE\SyncEngines =>.Microsoft Corporation
HKCU\SOFTWARE\Sysinternals =>.Sysinternals
HKCU\SOFTWARE\TechSmith =>.TechSmith
HKCU\SOFTWARE\Tencent =>.SUP.Tencent
HKCU\SOFTWARE\Tihiy
HKCU\SOFTWARE\Trolltech =>.Trolltech
HKCU\SOFTWARE\undefined =>.SUP.Downloader
HKCU\SOFTWARE\Valve =>.Valve
HKCU\SOFTWARE\VideoBox =>Adware.Amonetize
HKCU\SOFTWARE\VirtualDJ =>.Atomix Production
HKCU\SOFTWARE\Visan =>.Visan Software
HKCU\SOFTWARE\VMware, Inc. =>.VMware, Inc.
HKCU\SOFTWARE\WindowsUpdater
HKCU\SOFTWARE\WinRAR =>.WinRAR
HKCU\SOFTWARE\WinRAR SFX =>.RarLab
HKCU\SOFTWARE\Wondershare =>.Wondershare
HKCU\SOFTWARE\Wow6432Node =>.Microsoft Corporation
HKCU\SOFTWARE\XinYi Network =>.XinYi Network
HKCU\SOFTWARE\Yahoo =>.Yahoo! Inc.
HKCU\SOFTWARE\ZHP =>.Nicolas Coolman
HKCU\SOFTWARE\AppDataLow\Software =>.Microsoft Corporation
HKCU\SOFTWARE\AppDataLow\Yandex =>.Yandex
HKCU\SOFTWARE\AppDataLow\Software\JavaSoft =>.JavaSoft
HKCU\SOFTWARE\AppDataLow\Software\ThinPrint =>.ThinPrint
HKCU\SOFTWARE\AppDataLow\Software\Yahoo =>.Yahoo! Inc.
---\\ Contenu des dossiers Programmes (492) - 69s
O43 - CFD: 01/08/2017 - [] D -- C:\Program Files\5FGQEJF8EM
O43 - CFD: 19/05/2016 - [] D -- C:\Program Files\Add-ins
O43 - CFD: 24/05/2016 - [0] D -- C:\Program Files\Apache Software Foundation =>.Apache Inc.
O43 - CFD: 18/09/2017 - [] D -- C:\Program Files\BDSCJGDHLE =>Adware.Wizzcaster
O43 - CFD: 25/06/2016 - [] D -- C:\Program Files\BitTorrent
O43 - CFD: 30/12/2016 - [] D -- C:\Program Files\Canon =>.CANON INC.®
O43 - CFD: 03/07/2017 - [] D -- C:\Program Files\Common Files =>.Microsoft Corporation
O43 - CFD: 15/08/2017 - [] D -- C:\Program Files\Communications RND Reflector
O43 - CFD: 16/12/2016 - [] D -- C:\Program Files\DIFX =>.Microsoft Corporation
O43 - CFD: 19/05/2016 - [] D -- C:\Program Files\Documentation
O43 - CFD: 19/05/2016 - [0] D -- C:\Program Files\Données de test
O43 - CFD: 29/03/2016 - [] D -- C:\Program Files\EaseUS =>.EaseUS Software
O43 - CFD: 19/05/2016 - [] D -- C:\Program Files\Exemples
O43 - CFD: 29/03/2016 - [0] SHD -- C:\Program Files\Fichiers communs =>.Microsoft Corporation
O43 - CFD: 17/05/2016 - [] D -- C:\Program Files\Fichiers de ressources
O43 - CFD: 23/03/2017 - [] AD -- C:\Program Files\FileZilla FTP Client =>.Tim Kosse
O43 - CFD: 10/04/2017 - [] AD -- C:\Program Files\FlashBoot =>.PrimeExpert Software
O43 - CFD: 19/05/2016 - [0] D -- C:\Program Files\fr =>.Corel Corporation
O43 - CFD: 03/09/2017 - [] D -- C:\Program Files\FreeDownloadManager.ORG =>.Softdeluxe Ltd.®
O43 - CFD: 04/09/2017 - [] AD -- C:\Program Files\glassfish-4.1 =>.Sun Microsystems
O43 - CFD: 19/07/2016 - [] D -- C:\Program Files\HP =>.Hewlett-Packard
O43 - CFD: 14/08/2017 - [] D -- C:\Program Files\Hyper-V =>.Microsoft Corporation
O43 - CFD: 19/05/2016 - [0] D -- C:\Program Files\Icônes
O43 - CFD: 16/04/2017 - [] D -- C:\Program Files\Intel =>.Intel Corporation
O43 - CFD: 23/04/2016 - [] D -- C:\Program Files\Intel Security =>.Intel Corporation
O43 - CFD: 19/09/2017 - [] D -- C:\Program Files\Internet Explorer =>.Microsoft Corporation
O43 - CFD: 25/08/2017 - [] D -- C:\Program Files\Java =>.Oracle
O43 - CFD: 03/07/2017 - [] AD -- C:\Program Files\KMSpico =>HackTool.KMSpico
O43 - CFD: 18/09/2017 - [] D -- C:\Program Files\L76ZO09L6P =>Adware.Wizzcaster
O43 - CFD: 18/03/2017 - [] D -- C:\Program Files\M2TS Fish Video Survey
O43 - CFD: 19/07/2016 - [] D -- C:\Program Files\Microsoft Analysis Services =>.Microsoft Corporation
O43 - CFD: 19/07/2017 - [] AD -- C:\Program Files\Microsoft Office =>.Microsoft Corporation
O43 - CFD: 19/07/2017 - [] D -- C:\Program Files\Microsoft SQL Server =>.Microsoft Corporation
O43 - CFD: 16/04/2017 - [] D -- C:\Program Files\Microsoft.NET =>.Microsoft Corporation
O43 - CFD: 16/04/2017 - [] D -- C:\Program Files\MSBuild =>.Microsoft Corporation
O43 - CFD: 16/04/2017 - [] D -- C:\Program Files\My Web Shield {39D3FCDE4532A63BD298039D0555D0C2} =>PUP.Optional.WebShield
O43 - CFD: 04/09/2017 - [] AD -- C:\Program Files\NetBeans 8.0.2 =>.NetBeans
O43 - CFD: 15/06/2016 - [] D -- C:\Program Files\NewBlue =>.NewBlue
O43 - CFD: 03/07/2017 - [] D -- C:\Program Files\Nitro =>.Nitro
O43 - CFD: 19/05/2016 - [0] D -- C:\Program Files\Nmap Files
O43 - CFD: 19/05/2016 - [] D -- C:\Program Files\Ole Automation
O43 - CFD: 19/05/2016 - [0] D -- C:\Program Files\Outils
O43 - CFD: 13/04/2016 - [] D -- C:\Program Files\pl
O43 - CFD: 24/05/2016 - [0] D -- C:\Program Files\PostgreSQL =>.PostgreSQL
O43 - CFD: 26/06/2017 - [] AD -- C:\Program Files\PowerISO =>.PowerISO Computing
O43 - CFD: 16/04/2017 - [] D -- C:\Program Files\Realtek =>.Realtek
O43 - CFD: 14/04/2016 - [0] D -- C:\Program Files\Reason
O43 - CFD: 16/04/2017 - [] D -- C:\Program Files\Reference Assemblies =>.Microsoft Corporation
O43 - CFD: 13/10/2016 - [] D -- C:\Program Files\Samsung =>.Samsung Electronics
O43 - CFD: 23/05/2016 - [0] D -- C:\Program Files\SAP =>.SAP
O43 - CFD: 19/05/2016 - [] D -- C:\Program Files\ShellNew
O43 - CFD: 28/03/2017 - [] AD -- C:\Program Files\Sublime Text 3 =>.Sublime HQ Pty Ltd®
O43 - CFD: 16/04/2017 - [] D -- C:\Program Files\Synaptics =>.Synaptics Incorporated®
O43 - CFD: 19/05/2016 - [0] D -- C:\Program Files\ThirdPartyLegal
O43 - CFD: 18/05/2016 - [] D -- C:\Program Files\TrueKey =>.Intel Corporation
O43 - CFD: 16/04/2017 - [0] HD -- C:\Program Files\Uninstall Information =>.Microsoft Corporation
O43 - CFD: 19/05/2016 - [0] D -- C:\Program Files\VB Scripts
O43 - CFD: 19/09/2017 - [] D -- C:\Program Files\W9387PVVFO
O43 - CFD: 25/07/2017 - [] RD -- C:\Program Files\Windows Defender =>.Microsoft Corporation
O43 - CFD: 20/03/2017 - [] D -- C:\Program Files\Windows Defender Advanced Threat Protection =>.Microsoft Corporation
O43 - CFD: 19/09/2017 - [] D -- C:\Program Files\Windows Mail =>.Microsoft Corporation
O43 - CFD: 20/03/2017 - [] D -- C:\Program Files\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] D -- C:\Program Files\Windows Multimedia Platform =>.Microsoft Corporation
O43 - CFD: 16/04/2017 - [] D -- C:\Program Files\Windows NT =>.Microsoft Corporation
O43 - CFD: 19/09/2017 - [] D -- C:\Program Files\Windows Photo Viewer =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] D -- C:\Program Files\Windows Portable Devices =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] D -- C:\Program Files\Windows Security =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] SHD -- C:\Program Files\Windows Sidebar =>.Microsoft Corporation
O43 - CFD: 19/09/2017 - [] HD -- C:\Program Files\WindowsApps =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] D -- C:\Program Files\WindowsPowerShell =>.Microsoft Corporation
O43 - CFD: 03/07/2017 - [] AD -- C:\Program Files\WinRAR =>.win.rar GmbH®
O43 - CFD: 19/09/2017 - [] D -- C:\Program Files\XSBDBY8FNB =>Adware.Wizzcaster
O43 - CFD: 24/03/2017 - [] D -- C:\Program Files (x86)\1a641ce1-bb17-40f5-a1fc-3ea2f4cf1fdb1490347953 =>Adware.CrossRider
O43 - CFD: 11/04/2017 - [] AD -- C:\Program Files (x86)\AAALOGO =>.SWGSoft
O43 - CFD: 17/03/2017 - [] AD -- C:\Program Files (x86)\Adobe =>.Adobe Systems Incorporated®
O43 - CFD: 30/11/2016 - [] D -- C:\Program Files (x86)\Baidu =>.Baidu (China) Co., Ltd.®
O43 - CFD: 18/12/2016 - [] AD -- C:\Program Files (x86)\BaisvikSoftware {7F8276BC4AA97E8E49FBED6A595376F0}
O43 - CFD: 30/11/2016 - [] AD -- C:\Program Files (x86)\Bonjour =>.Apple Inc.
O43 - CFD: 04/09/2017 - [] D -- C:\Program Files (x86)\Common Files =>.Microsoft Corporation
O43 - CFD: 24/03/2017 - [] D -- C:\Program Files (x86)\ContentPush
O43 - CFD: 30/11/2016 - [0] D -- C:\Program Files (x86)\Convar =>.Convar Deutschland GmbH
O43 - CFD: 30/11/2016 - [] D -- C:\Program Files (x86)\CVitae 5
O43 - CFD: 26/03/2017 - [] D -- C:\Program Files (x86)\Dashlane =>.Dashlane
O43 - CFD: 23/12/2016 - [] D -- C:\Program Files (x86)\DriverPack Notifier =>.DriverPack Solution
O43 - CFD: 18/09/2017 - [] D -- C:\Program Files (x86)\driverupdaterplus =>.SUP.EventMonitor
O43 - CFD: 06/12/2016 - [] D -- C:\Program Files (x86)\EASEUS =>.EaseUS Software
O43 - CFD: 01/08/2017 - [] D -- C:\Program Files (x86)\eb3umnclhpo
O43 - CFD: 18/09/2017 - [] AD -- C:\Program Files (x86)\FastDataX =>Adware.FastDataX
O43 - CFD: 16/04/2017 - [] D -- C:\Program Files (x86)\FormatFactory =>.Free Time Co., Ltd.®
O43 - CFD: 13/12/2016 - [0] D -- C:\Program Files (x86)\Foxy Games =>.Foxy Games
O43 - CFD: 30/11/2016 - [0] D -- C:\Program Files (x86)\FreeTime =>.FreeTime
O43 - CFD: 06/12/2016 - [] D -- C:\Program Files (x86)\GanttProject-2.8
O43 - CFD: 04/09/2017 - [] AD -- C:\Program Files (x86)\GESCMS
O43 - CFD: 30/11/2016 - [] D -- C:\Program Files (x86)\Google =>.Google Inc®
O43 - CFD: 25/07/2017 - [] AD -- C:\Program Files (x86)\Hewlett-Packard =>.Hewlett-Packard
O43 - CFD: 24/04/2017 - [] D -- C:\Program Files (x86)\Hiru =>.Hiru
O43 - CFD: 05/08/2017 - [] AD -- C:\Program Files (x86)\HP =>.Hewlett-Packard
O43 - CFD: 19/09/2017 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information =>.InstallShield
O43 - CFD: 30/11/2016 - [] D -- C:\Program Files (x86)\Intel =>.Intel Corporation
O43 - CFD: 05/09/2017 - [] D -- C:\Program Files (x86)\Internet Download Manager =>.Tonec Inc
O43 - CFD: 19/09/2017 - [] D -- C:\Program Files (x86)\Internet Explorer =>.Microsoft Corporation
O43 - CFD: 20/07/2017 - [] D -- C:\Program Files (x86)\IObit =>.IObit
O43 - CFD: 26/03/2017 - [] D -- C:\Program Files (x86)\Jargon Informatique =>.tuxfamily.org
O43 - CFD: 30/11/2016 - [0] D -- C:\Program Files (x86)\Jaspersoft
O43 - CFD: 02/08/2017 - [] D -- C:\Program Files (x86)\Java =>.Oracle
O43 - CFD: 15/06/2017 - [0] D -- C:\Program Files (x86)\JetBrains =>.JetBrains Inc
O43 - CFD: 31/08/2017 - [] AD -- C:\Program Files (x86)\K-Lite Codec Pack =>.KLite Inc
O43 - CFD: 12/12/2016 - [] D -- C:\Program Files (x86)\Macromedia =>.Macromedia
O43 - CFD: 31/07/2017 - [] D -- C:\Program Files (x86)\Messenger for Desktop =>.Alexandru Rosianu
O43 - CFD: 21/01/2017 - [] D -- C:\Program Files (x86)\Micro Application =>.Micro Application
O43 - CFD: 30/11/2016 - [] D -- C:\Program Files (x86)\Microsoft Analysis Services =>.Microsoft Corporation
O43 - CFD: 30/11/2016 - [] D -- C:\Program Files (x86)\Microsoft Games for Windows - LIVE =>.Microsoft Corporation
O43 - CFD: 19/07/2017 - [] D -- C:\Program Files (x86)\Microsoft Office =>.Microsoft Corporation
O43 - CFD: 12/12/2016 - [] D -- C:\Program Files (x86)\Microsoft SQL Server =>.Microsoft Corporation
O43 - CFD: 19/07/2017 - [] AD -- C:\Program Files (x86)\Microsoft.NET =>.Microsoft Corporation
O43 - CFD: 20/09/2017 - [] D -- C:\Program Files (x86)\Mozilla Firefox =>.Mozilla
O43 - CFD: 20/09/2017 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service =>.Mozilla
O43 - CFD: 16/04/2017 - [] D -- C:\Program Files (x86)\MSBuild =>.Microsoft Corporation
O43 - CFD: 30/11/2016 - [] D -- C:\Program Files (x86)\Mykronoz =>.Mykronoz
O43 - CFD: 20/09/2017 - [] D -- C:\Program Files (x86)\Navilog1
O43 - CFD: 28/04/2017 - [] AD -- C:\Program Files (x86)\Nero =>.Ahead Corporation
O43 - CFD: 30/11/2016 - [] D -- C:\Program Files (x86)\NewBlue =>.NewBlue
O43 - CFD: 03/07/2017 - [] D -- C:\Program Files (x86)\Nitro =>.Nitro
O43 - CFD: 18/09/2017 - [] AD -- C:\Program Files (x86)\NoterSave =>.RSA Security
O43 - CFD: 01/08/2017 - [] D -- C:\Program Files (x86)\Oracle =>.Oracle
O43 - CFD: 18/03/2017 - [0] D -- C:\Program Files (x86)\pccleanplus =>.SUP.PCCleanPlus
O43 - CFD: 31/03/2017 - [] AD -- C:\Program Files (x86)\PowerISO =>.PowerISO Computing
O43 - CFD: 02/02/2017 - [0] D -- C:\Program Files (x86)\R.G. Mechanics =>.R.G. Mechanics
O43 - CFD: 21/07/2017 - [] D -- C:\Program Files (x86)\Real =>.RealNetworks Inc.
O43 - CFD: 30/11/2016 - [] D -- C:\Program Files (x86)\Realtek =>.Realtek
O43 - CFD: 16/04/2017 - [] D -- C:\Program Files (x86)\Reference Assemblies =>.Microsoft Corporation
O43 - CFD: 30/11/2016 - [0] D -- C:\Program Files (x86)\Rene.E Laboratory =>.Rene.E Laboratory
O43 - CFD: 30/11/2016 - [] D -- C:\Program Files (x86)\Samsung =>.Samsung Electronics
O43 - CFD: 17/09/2017 - [] D -- C:\Program Files (x86)\Sparkle =>.Ignite Realtime
O43 - CFD: 10/07/2017 - [] D -- C:\Program Files (x86)\SuperBoost =>.QiWang
O43 - CFD: 19/09/2017 - [] D -- C:\Program Files (x86)\Sybase
O43 - CFD: 30/11/2016 - [0] HD -- C:\Program Files (x86)\Temp =>.Microsoft Corporation
O43 - CFD: 30/11/2016 - [] AD -- C:\Program Files (x86)\USB Disk Security =>.FlashPeak Inc
O43 - CFD: 22/06/2017 - [] AD -- C:\Program Files (x86)\VirtualDJ =>.Atomix Production
O43 - CFD: 25/07/2017 - [] D -- C:\Program Files (x86)\Windows Defender =>.Microsoft Corporation
O43 - CFD: 19/09/2017 - [] D -- C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation
O43 - CFD: 20/03/2017 - [] D -- C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] D -- C:\Program Files (x86)\Windows Multimedia Platform =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] D -- C:\Program Files (x86)\Windows NT =>.Microsoft Corporation
O43 - CFD: 19/09/2017 - [] D -- C:\Program Files (x86)\Windows Photo Viewer =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] D -- C:\Program Files (x86)\Windows Portable Devices =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] SHD -- C:\Program Files (x86)\Windows Sidebar =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] D -- C:\Program Files (x86)\WindowsPowerShell =>.Microsoft Corporation
O43 - CFD: 30/11/2016 - [] D -- C:\Program Files (x86)\xtex =>Adware.GUpdate
O43 - CFD: 30/11/2016 - [] D -- C:\Program Files (x86)\Yahoo! =>.Yahoo!
O43 - CFD: 30/11/2016 - [] AD -- C:\Program Files (x86)\ZTEMobileBroadbandDeviceDrivers
O43 - CFD: 16/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AAA Logo
O43 - CFD: 18/03/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility =>.Microsoft Corporation
O43 - CFD: 25/07/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories =>.Microsoft Corporation
O43 - CFD: 19/09/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools
O43 - CFD: 12/12/2016 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Master Collection CC 2015
O43 - CFD: 16/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bacula
O43 - CFD: 16/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BaisvikSoftware
O43 - CFD: 16/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bonjour =>.Apple Inc.
O43 - CFD: 22/12/2016 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Pro =>.The DAEMON Team
O43 - CFD: 16/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Partition Master 10.5 =>.EaseUS Software
O43 - CFD: 16/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client =>.Tim Kosse
O43 - CFD: 16/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FlashBoot =>.PrimeExpert Software
O43 - CFD: 11/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free Download Manager =>.FreeDownloadManager.com
O43 - CFD: 23/08/2016 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games =>.Microsoft Corporation
O43 - CFD: 16/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GanttProject =>.GanttProject Team
O43 - CFD: 04/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GESCMS
O43 - CFD: 03/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager =>.Tonec Inc
O43 - CFD: 25/08/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java =>.Oracle
O43 - CFD: 25/08/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit =>.Oracle
O43 - CFD: 31/08/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack =>.KLite Inc
O43 - CFD: 03/07/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSpico =>HackTool.KMSpico
O43 - CFD: 16/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Macromedia =>.Macromedia
O43 - CFD: 18/03/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance =>.Microsoft Corporation
O43 - CFD: 16/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Micro Application =>.Micro Application
O43 - CFD: 16/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games for Windows Marketplace =>.Microsoft Corporation
O43 - CFD: 03/05/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero =>.Ahead Corporation
O43 - CFD: 16/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero 2016 =>.Ahead Corporation
O43 - CFD: 03/05/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero 2017 =>.Ahead Corporation
O43 - CFD: 04/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NetBeans =>.NetBeans.org
O43 - CFD: 16/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NewBlue =>.NewBlue
O43 - CFD: 05/08/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle Database 11g Express Edition
O43 - CFD: 19/07/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outils Microsoft Office 2016 =>.Microsoft Corporation
O43 - CFD: 04/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outils PC SOFT
O43 - CFD: 26/06/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerISO =>.PowerISO Computing
O43 - CFD: 21/07/2017 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RealNetworks =>.RealNetworks
O43 - CFD: 02/11/2016 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung =>.Samsung Electronics
O43 - CFD: 21/08/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup =>.Microsoft Corporation
O43 - CFD: 16/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SWI-Prolog
O43 - CFD: 19/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sybase
O43 - CFD: 18/03/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools =>.Microsoft Corporation
O43 - CFD: 03/08/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UmmyVideoDownloader =>.UmmyVideoDownloader
O43 - CFD: 16/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\USB Disk Security =>.FlashPeak Inc
O43 - CFD: 03/07/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR
O43 - CFD: 20/05/2016 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip =>.WinZip
O43 - CFD: 03/05/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\百度输入法
O43 - CFD: 18/09/2017 - [] D -- C:\ProgramData\159d8e6ff42042bbae0f0def4445b047 =>Adware.Suspect
O43 - CFD: 18/09/2017 - [] D -- C:\ProgramData\1faff803c0964a86b82fdd284408c283 =>Adware.Suspect
O43 - CFD: 19/09/2017 - [] D -- C:\ProgramData\240cf49e-0e03-1 =>.SUP.Polluteware
O43 - CFD: 19/09/2017 - [] D -- C:\ProgramData\240cf49e-4495-0 =>.SUP.Polluteware
O43 - CFD: 18/09/2017 - [] D -- C:\ProgramData\240cf49e-45b7-0 =>.SUP.Polluteware
O43 - CFD: 19/09/2017 - [] D -- C:\ProgramData\240cf49e-5341-1 =>.SUP.Polluteware
O43 - CFD: 19/09/2017 - [] D -- C:\ProgramData\240cf49e-6c35-0 =>.SUP.Polluteware
O43 - CFD: 18/09/2017 - [] D -- C:\ProgramData\240cf49e-6d97-1 =>.SUP.Polluteware
O43 - CFD: 22/07/2016 - [] D -- C:\ProgramData\Airtostrongs =>PUP.Optional.Salus
O43 - CFD: 27/10/2016 - [] D -- C:\ProgramData\Apple =>.Apple Inc.
O43 - CFD: 16/04/2017 - [0] SHD -- C:\ProgramData\Application Data =>.Microsoft Corporation
O43 - CFD: 30/11/2016 - [] D -- C:\ProgramData\AVAST Software =>.AVAST Software
O43 - CFD: 30/11/2016 - [] D -- C:\ProgramData\Avg =>.AVG Software
O43 - CFD: 30/11/2016 - [] D -- C:\ProgramData\Avira =>.Avira Software
O43 - CFD: 18/09/2017 - [] D -- C:\ProgramData\b945d8214d7047bd89ea300fbaf0006d =>Adware.Suspect
O43 - CFD: 19/05/2016 - [] D -- C:\ProgramData\Baidu =>.Baidu
O43 - CFD: 18/12/2016 - [] D -- C:\ProgramData\BaisvikSoftware
O43 - CFD: 24/04/2016 - [] D -- C:\ProgramData\BDLogging =>.Bitdefender
O43 - CFD: 19/06/2016 - [] D -- C:\ProgramData\BiniSoft.org =>.BiniSoft.org
O43 - CFD: 16/12/2016 - [] D -- C:\ProgramData\BSD =>.Berkeley
O43 - CFD: 29/03/2016 - [0] SHD -- C:\ProgramData\Bureau =>.Microsoft Corporation
O43 - CFD: 26/06/2017 - [0] D -- C:\ProgramData\Camtel EVDO-Huawei
O43 - CFD: 19/07/2016 - [] D -- C:\ProgramData\Canon =>.Canon
O43 - CFD: 29/07/2016 - [] D -- C:\ProgramData\CloudPrinter =>.SUP.Linkury
O43 - CFD: 16/07/2016 - [0] D -- C:\ProgramData\Comms =>.Microsoft Corporation
O43 - CFD: 26/06/2017 - [] D -- C:\ProgramData\DatacardService =>.Entriq, Inc.
O43 - CFD: 16/04/2017 - [0] SHD -- C:\ProgramData\Documents =>.Microsoft Corporation
O43 - CFD: 15/06/2016 - [] D -- C:\ProgramData\eSellerate =>.eSellerate
O43 - CFD: 06/05/2016 - [] D -- C:\ProgramData\Ford Motor Company
O43 - CFD: 04/09/2017 - [] D -- C:\ProgramData\GESCMS
O43 - CFD: 04/05/2017 - [] D -- C:\ProgramData\Hewlett-Packard =>.Hewlett-Packard
O43 - CFD: 05/08/2017 - [] AD -- C:\ProgramData\HP =>.Hewlett-Packard
O43 - CFD: 11/10/2016 - [0] D -- C:\ProgramData\IDM =>.IDM
O43 - CFD: 26/05/2016 - [] D -- C:\ProgramData\install_clap =>.Microsoft Corporation
O43 - CFD: 24/05/2017 - [] D -- C:\ProgramData\IObit =>.IObit
O43 - CFD: 29/05/2017 - [] D -- C:\ProgramData\Kaspersky Lab Setup Files =>.Kaspersky Lab
O43 - CFD: 26/06/2017 - [] D -- C:\ProgramData\KONAMI =>.Konami
O43 - CFD: 01/08/2017 - [] D -- C:\ProgramData\Lavasoft =>.Lavasoft
O43 - CFD: 24/03/2017 - [] D -- C:\ProgramData\Logic Handler =>PUP.Optional.LogicHandler
O43 - CFD: 07/12/2016 - [] D -- C:\ProgramData\Macromedia =>.Macromedia
O43 - CFD: 17/05/2016 - [] D -- C:\ProgramData\McAfee =>.McAfee
O43 - CFD: 29/03/2016 - [0] SHD -- C:\ProgramData\Menu Démarrer =>.Microsoft Corporation
O43 - CFD: 19/07/2017 - [] SD -- C:\ProgramData\Microsoft =>.Microsoft Corporation
O43 - CFD: 18/09/2017 - [] D -- C:\ProgramData\Microsoft Help =>.Microsoft Corporation
O43 - CFD: 16/04/2017 - [] D -- C:\ProgramData\Microsoft OneDrive =>.Microsoft Corporation
O43 - CFD: 28/12/2016 - [] D -- C:\ProgramData\MobileBrServ =>.Huawei Technologies Co.,Ltd
O43 - CFD: 29/03/2016 - [0] SHD -- C:\ProgramData\Modèles =>.Microsoft Corporation
O43 - CFD: 05/04/2016 - [] D -- C:\ProgramData\MTN Xtra Surf =>.Huawei Technologies Co.,Ltd
O43 - CFD: 28/04/2017 - [] AD -- C:\ProgramData\Nero =>.Ahead Corporation
O43 - CFD: 29/03/2016 - [] D -- C:\ProgramData\Nitro =>.Nitro
O43 - CFD: 10/10/2016 - [] D -- C:\ProgramData\oceps
O43 - CFD: 03/08/2017 - [] D -- C:\ProgramData\Oracle =>.Oracle
O43 - CFD: 03/10/2016 - [] D -- C:\ProgramData\Origin =>.Electronic Arts, Inc.
O43 - CFD: 01/08/2017 - [] D -- C:\ProgramData\Package Cache =>.Microsoft Corporation
O43 - CFD: 19/09/2017 - [] D -- C:\ProgramData\PowerAMC 15
O43 - CFD: 20/07/2017 - [] D -- C:\ProgramData\ProductData =>.Microsoft Corporation
O43 - CFD: 21/07/2017 - [] D -- C:\ProgramData\Real =>.RealNetworks Inc.
O43 - CFD: 21/07/2017 - [0] D -- C:\ProgramData\RealNetworks =>.RealNetworks
O43 - CFD: 19/07/2017 - [] AD -- C:\ProgramData\regid.1991-06.com.microsoft =>.Microsoft Corporation
O43 - CFD: 29/07/2016 - [] D -- C:\ProgramData\Ronzap
O43 - CFD: 20/06/2016 - [] D -- C:\ProgramData\Ronzaps
O43 - CFD: 21/10/2016 - [] D -- C:\ProgramData\RzSurroundVAD_1.1.62.0 =>.Razer Inc
O43 - CFD: 13/10/2016 - [] D -- C:\ProgramData\Samsung =>.Samsung Electronics
O43 - CFD: 18/03/2017 - [0] D -- C:\ProgramData\SoftwareDistribution =>.Microsoft Corporation
O43 - CFD: 17/09/2017 - [] D -- C:\ProgramData\SpinTop Games =>.SpinTop Games
O43 - CFD: 16/12/2016 - [] D -- C:\ProgramData\SP_FT_Logs
O43 - CFD: 05/04/2016 - [] D -- C:\ProgramData\Steam =>.Steam Games
O43 - CFD: 24/05/2016 - [] D -- C:\ProgramData\Sun =>.Oracle
O43 - CFD: 23/04/2016 - [] D -- C:\ProgramData\SuperBoost =>.QiWang
O43 - CFD: 29/03/2016 - [] D -- C:\ProgramData\Synaptics =>.Synaptics
O43 - CFD: 17/09/2017 - [] AD -- C:\ProgramData\Temp =>.Microsoft Corporation
O43 - CFD: 23/04/2016 - [] D -- C:\ProgramData\TrueKey =>.Intel Corporation
O43 - CFD: 17/03/2017 - [] D -- C:\ProgramData\Ubisoft =>.Ubisoft
O43 - CFD: 16/04/2017 - [] D -- C:\ProgramData\USOPrivate =>.Microsoft Corporation
O43 - CFD: 16/04/2017 - [] D -- C:\ProgramData\USOShared =>.Microsoft Corporation
O43 - CFD: 19/07/2016 - [] D -- C:\ProgramData\Visan =>.Visan Industries
O43 - CFD: 19/07/2016 - [] D -- C:\ProgramData\VMware =>.VMware
O43 - CFD: 21/07/2017 - [] D -- C:\ProgramData\VS Revo Group =>.VS Revo Group
O43 - CFD: 18/09/2017 - [] D -- C:\ProgramData\WindowsErrorReporting =>Trojan.GenericKD
O43 - CFD: 20/03/2017 - [] D -- C:\ProgramData\WindowsHolographicDevices =>.Microsoft Corporation
O43 - CFD: 04/10/2016 - [] D -- C:\ProgramData\xifss
O43 - CFD: 20/07/2016 - [] D -- C:\ProgramData\ZDSupport
O43 - CFD: 21/01/2017 - [0] D -- C:\ProgramData\{74E9F814-C737-42CC-B721-DBBC4059367A}
O43 - CFD: 06/06/2016 - [] D -- C:\ProgramData\{ACBCD40A-42A8-4FF9-BD42-ABCD14998CBA}
O43 - CFD: 21/04/2016 - [0] D -- C:\ProgramData\{BE2ACE5C-32B7-4777-9BDF-ECF87CDAB705}
O43 - CFD: 06/06/2016 - [] D -- C:\ProgramData\{D76294E6-03B8-4971-AF2E-3F846161A690}
O43 - CFD: 21/04/2016 - [] D -- C:\ProgramData\{FD6F83C0-EC70-4581-8361-C70CD1AA4B98}
O43 - CFD: 01/08/2017 - [] D -- C:\Program Files (x86)\Common Files\Adobe =>.Adobe
O43 - CFD: 30/07/2016 - [] D -- C:\Program Files (x86)\Common Files\Doublelatbam
O43 - CFD: 03/10/2016 - [] HD -- C:\Program Files (x86)\Common Files\EAInstaller =>.Electronic Arts, Inc.
O43 - CFD: 15/06/2016 - [] D -- C:\Program Files (x86)\Common Files\eSellerate =>.eSellerate
O43 - CFD: 22/04/2016 - [] D -- C:\Program Files (x86)\Common Files\InstallShield =>.InstallShield
O43 - CFD: 16/04/2017 - [] D -- C:\Program Files (x86)\Common Files\Intel =>.Intel Corporation
O43 - CFD: 28/09/2016 - [] D -- C:\Program Files (x86)\Common Files\IObit =>.IObit
O43 - CFD: 02/08/2017 - [] D -- C:\Program Files (x86)\Common Files\Java =>.Oracle
O43 - CFD: 12/12/2016 - [] AD -- C:\Program Files (x86)\Common Files\Macromedia =>.Macromedia
O43 - CFD: 23/04/2016 - [] D -- C:\Program Files (x86)\Common Files\McAfee =>.McAfee
O43 - CFD: 01/08/2017 - [] AD -- C:\Program Files (x86)\Common Files\Microsoft Shared =>.Microsoft Corporation
O43 - CFD: 28/04/2017 - [] D -- C:\Program Files (x86)\Common Files\Nero =>.Ahead Corporation
O43 - CFD: 04/09/2017 - [] D -- C:\Program Files (x86)\Common Files\PC SOFT =>.PC Soft
O43 - CFD: 18/03/2017 - [] D -- C:\Program Files (x86)\Common Files\Services =>.Microsoft Corporation
O43 - CFD: 20/03/2017 - [] D -- C:\Program Files (x86)\Common Files\System =>.Microsoft Corporation
O43 - CFD: 01/08/2017 - [0] D -- C:\Users\eric\AppData\Roaming\3p1driaqk4s
O43 - CFD: 18/09/2017 - [] D -- C:\Users\eric\AppData\Roaming\879c261566424c7fba51384d066e660e
O43 - CFD: 26/03/2017 - [] D -- C:\Users\eric\AppData\Roaming\AchrafCherti
O43 - CFD: 01/08/2017 - [] D -- C:\Users\eric\AppData\Roaming\Adobe =>.Adobe
O43 - CFD: 18/09/2017 - [] D -- C:\Users\eric\AppData\Roaming\af688c2fb64e4f05a7eadcc4857dc524
O43 - CFD: 04/08/2017 - [] D -- C:\Users\eric\AppData\Roaming\Apowersoft =>.Apowersoft
O43 - CFD: 21/04/2016 - [] D -- C:\Users\eric\AppData\Roaming\Apple Computer =>.Apple Inc.
O43 - CFD: 19/05/2016 - [] D -- C:\Users\eric\AppData\Roaming\Baidu =>.Baidu
O43 - CFD: 16/12/2016 - [] D -- C:\Users\eric\AppData\Roaming\BaisvikSoftware
O43 - CFD: 04/12/2016 - [] D -- C:\Users\eric\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
O43 - CFD: 25/03/2017 - [0] D -- C:\Users\eric\AppData\Roaming\Clovot
O43 - CFD: 22/04/2016 - [] D -- C:\Users\eric\AppData\Roaming\CVitae 5
O43 - CFD: 22/12/2016 - [0] D -- C:\Users\eric\AppData\Roaming\DAEMON Tools Pro =>.The DAEMON Team
O43 - CFD: 12/09/2017 - [] D -- C:\Users\eric\AppData\Roaming\Dashlane =>.Dashlane
O43 - CFD: 18/09/2017 - [] D -- C:\Users\eric\AppData\Roaming\dll4c4dqy3m =>Heuristic.Wizzcaster
O43 - CFD: 19/09/2017 - [] D -- C:\Users\eric\AppData\Roaming\DMCache =>.DMCache
O43 - CFD: 26/05/2016 - [] D -- C:\Users\eric\AppData\Roaming\Downloaded Installations =>.Microsoft Corporation
O43 - CFD: 23/12/2016 - [] AD -- C:\Users\eric\AppData\Roaming\DriverPack Notifier =>.DriverPack Solution
O43 - CFD: 23/12/2016 - [] D -- C:\Users\eric\AppData\Roaming\DRPNPS
O43 - CFD: 23/12/2016 - [] D -- C:\Users\eric\AppData\Roaming\DRPSu =>.Driver PackSolution
O43 - CFD: 18/09/2017 - [] D -- C:\Users\eric\AppData\Roaming\EpicNet Inc =>Adware.MSIL
O43 - CFD: 06/05/2017 - [] D -- C:\Users\eric\AppData\Roaming\FileZilla =>.FileZilla
O43 - CFD: 21/04/2017 - [] D -- C:\Users\eric\AppData\Roaming\Google =>.Google
O43 - CFD: 18/03/2017 - [] AD -- C:\Users\eric\AppData\Roaming\gplyra =>.SUP.Gplyra
O43 - CFD: 03/04/2016 - [] D -- C:\Users\eric\AppData\Roaming\Hewlett-Packard =>.Hewlett-Packard
O43 - CFD: 25/07/2017 - [] D -- C:\Users\eric\AppData\Roaming\hpqLog =>.Hewlett-Packard
O43 - CFD: 19/07/2017 - [] D -- C:\Users\eric\AppData\Roaming\HpUpdate =>.Hewlett-Packard
O43 - CFD: 18/09/2017 - [] D -- C:\Users\eric\AppData\Roaming\IDM =>.IDM
O43 - CFD: 05/04/2017 - [] D -- C:\Users\eric\AppData\Roaming\Imminent =>PUP.Optional.IMBooster
O43 - CFD: 17/05/2016 - [] D -- C:\Users\eric\AppData\Roaming\InstallShield =>.InstallShield
O43 - CFD: 06/10/2016 - [] D -- C:\Users\eric\AppData\Roaming\Internet Download Accelerator
O43 - CFD: 29/04/2016 - [] D -- C:\Users\eric\AppData\Roaming\IObit =>.IObit
O43 - CFD: 17/03/2017 - [] D -- C:\Users\eric\AppData\Roaming\JetBrains =>.JetBrains Inc
O43 - CFD: 18/09/2017 - [] D -- C:\Users\eric\AppData\Roaming\Macromedia =>.Macromedia
O43 - CFD: 06/06/2016 - [] D -- C:\Users\eric\AppData\Roaming\MetroSidebar =>.MetroSidebar
O43 - CFD: 16/12/2016 - [] D -- C:\Users\eric\AppData\Roaming\mgyun =>.mgyun.com
O43 - CFD: 18/09/2017 - [] D -- C:\Users\eric\AppData\Roaming\Microleaves =>.SUP.Microleaves
O43 - CFD: 13/09/2017 - [] SD -- C:\Users\eric\AppData\Roaming\Microsoft =>.Microsoft Corporation
O43 - CFD: 23/03/2017 - [] D -- C:\Users\eric\AppData\Roaming\Mikrotik
O43 - CFD: 20/09/2017 - [] D -- C:\Users\eric\AppData\Roaming\Mozilla =>.Mozilla Corporation
O43 - CFD: 01/08/2017 - [] D -- C:\Users\eric\AppData\Roaming\MPC-HC =>.MPC-HC Team
O43 - CFD: 19/09/2017 - [] D -- C:\Users\eric\AppData\Roaming\n2dddu3iwrk =>Heuristic.Wizzcaster
O43 - CFD: 04/05/2017 - [] D -- C:\Users\eric\AppData\Roaming\Nero =>.Ahead Corporation
O43 - CFD: 04/09/2017 - [] D -- C:\Users\eric\AppData\Roaming\NetBeans =>.NetBeans.org
O43 - CFD: 03/07/2017 - [] D -- C:\Users\eric\AppData\Roaming\Nitro =>.Nitro
O43 - CFD: 03/06/2016 - [] D -- C:\Users\eric\AppData\Roaming\Opera Software =>.Opera Software
O43 - CFD: 28/07/2016 - [] D -- C:\Users\eric\AppData\Roaming\Oracle =>.Oracle
O43 - CFD: 24/07/2017 - [] D -- C:\Users\eric\AppData\Roaming\OWB
O43 - CFD: 22/04/2016 - [] D -- C:\Users\eric\AppData\Roaming\postgresql =>.PostgreSQL
O43 - CFD: 17/05/2016 - [] D -- C:\Users\eric\AppData\Roaming\PowerDesigner
O43 - CFD: 26/06/2017 - [] D -- C:\Users\eric\AppData\Roaming\PowerISO =>.PowerISO Computing
O43 - CFD: 21/04/2016 - [] D -- C:\Users\eric\AppData\Roaming\ProductData =>.Microsoft Corporation
O43 - CFD: 30/11/2016 - [] D -- C:\Users\eric\AppData\Roaming\Profiles =>.Microsoft Corporation
O43 - CFD: 06/03/2017 - [] D -- C:\Users\eric\AppData\Roaming\Psiphon3
O43 - CFD: 12/06/2016 - [0] D -- C:\Users\eric\AppData\Roaming\Publish Providers =>.Legitimate
O43 - CFD: 19/09/2017 - [] D -- C:\Users\eric\AppData\Roaming\py4fb2s5qpf =>Heuristic.Wizzcaster
O43 - CFD: 21/07/2017 - [] D -- C:\Users\eric\AppData\Roaming\Real =>.RealNetworks Inc.
O43 - CFD: 21/07/2017 - [0] D -- C:\Users\eric\AppData\Roaming\RealNetworks =>.RealNetworks
O43 - CFD: 02/11/2016 - [] D -- C:\Users\eric\AppData\Roaming\Samsung =>.Samsung Electronics
O43 - CFD: 24/07/2017 - [] D -- C:\Users\eric\AppData\Roaming\Skype =>.Skype
O43 - CFD: 05/10/2016 - [0] D -- C:\Users\eric\AppData\Roaming\Solvusoft =>.SUP.Solvusoft
O43 - CFD: 12/06/2016 - [] D -- C:\Users\eric\AppData\Roaming\Sony =>.Sony
O43 - CFD: 02/08/2017 - [] D -- C:\Users\eric\AppData\Roaming\SQL Developer
O43 - CFD: 02/08/2017 - [] D -- C:\Users\eric\AppData\Roaming\sqldeveloper
O43 - CFD: 07/04/2016 - [] D -- C:\Users\eric\AppData\Roaming\Sublime Text 3
O43 - CFD: 26/04/2016 - [] D -- C:\Users\eric\AppData\Roaming\Subversion =>.Games Software
O43 - CFD: 22/04/2016 - [] D -- C:\Users\eric\AppData\Roaming\Sun =>.Oracle
O43 - CFD: 23/04/2016 - [] D -- C:\Users\eric\AppData\Roaming\SuperBoost =>.QiWang
O43 - CFD: 13/04/2016 - [0] D -- C:\Users\eric\AppData\Roaming\SWI-Prolog
O43 - CFD: 29/03/2016 - [] D -- C:\Users\eric\AppData\Roaming\Synaptics =>.Synaptics
O43 - CFD: 07/04/2017 - [] HD -- C:\Users\eric\AppData\Roaming\system =>.Microsoft Corporation
O43 - CFD: 06/06/2016 - [] D -- C:\Users\eric\AppData\Roaming\Tencent =>.SUP.Tencent
O43 - CFD: 03/07/2017 - [] D -- C:\Users\eric\AppData\Roaming\Thinstall =>.VMare
O43 - CFD: 24/07/2017 - [] D -- C:\Users\eric\AppData\Roaming\updatetool
O43 - CFD: 12/06/2016 - [] D -- C:\Users\eric\AppData\Roaming\vlc =>.VideoLan Team
O43 - CFD: 19/07/2016 - [] D -- C:\Users\eric\AppData\Roaming\VMware =>.VMware
O43 - CFD: 18/09/2017 - [] D -- C:\Users\eric\AppData\Roaming\WhatsApp =>.WhatsApp
O43 - CFD: 03/07/2017 - [] D -- C:\Users\eric\AppData\Roaming\WinRAR =>.WinRAR
O43 - CFD: 29/03/2016 - [] D -- C:\Users\eric\AppData\Roaming\www.kiwix.org
O43 - CFD: 12/05/2016 - [] D -- C:\Users\eric\AppData\Roaming\xpce
O43 - CFD: 06/06/2016 - [0] D -- C:\Users\eric\AppData\Roaming\Yahoo! =>.Yahoo!
O43 - CFD: 06/06/2016 - [] D -- C:\Users\eric\AppData\Roaming\Yandex =>.Yandex
O43 - CFD: 01/08/2017 - [] D -- C:\Users\eric\AppData\Roaming\YCanPDF =>.YCanPDF
O43 - CFD: 03/04/2016 - [] D -- C:\Users\eric\AppData\Roaming\Zbshareware Lab =>.Zbshareware Lab
O43 - CFD: 20/09/2017 - [] D -- C:\Users\eric\AppData\Roaming\ZHP =>.Nicolas Coolman
O43 - CFD: 18/09/2017 - [] D -- C:\Users\eric\AppData\Local\2a4969b64a414f6f870b4f560ce8fe62
O43 - CFD: 18/09/2017 - [] D -- C:\Users\eric\AppData\Local\322fbda0a4bf4aaba4279b215d233142
O43 - CFD: 01/08/2016 - [0] D -- C:\Users\eric\AppData\Local\ActiveSync =>.Microsoft Corporation
O43 - CFD: 18/09/2017 - [] D -- C:\Users\eric\AppData\Local\AdvinstAnalytics =>.SUP.Various
O43 - CFD: 16/04/2017 - [0] SHD -- C:\Users\eric\AppData\Local\Application Data =>.Microsoft Corporation
O43 - CFD: 20/05/2016 - [] D -- C:\Users\eric\AppData\Local\Apps =>.Microsoft Corporation
O43 - CFD: 23/04/2016 - [] D -- C:\Users\eric\AppData\Local\CEF =>.CEF
O43 - CFD: 03/06/2016 - [] D -- C:\Users\eric\AppData\Local\Chromium =>.Chromium
O43 - CFD: 08/05/2017 - [] D -- C:\Users\eric\AppData\Local\Comms =>.Microsoft Corporation
O43 - CFD: 16/04/2017 - [] D -- C:\Users\eric\AppData\Local\ConnectedDevicesPlatform =>.Microsoft Corporation
O43 - CFD: 14/05/2017 - [0] D -- C:\Users\eric\AppData\Local\CrashDumps =>.Microsoft Corporation
O43 - CFD: 10/07/2016 - [] D -- C:\Users\eric\AppData\Local\CrashRpt
O43 - CFD: 16/04/2017 - [0] D -- C:\Users\eric\AppData\Local\DBG =>.DBG
O43 - CFD: 18/08/2017 - [0] D -- C:\Users\eric\AppData\Local\Diagnostics =>.Microsoft Corporation
O43 - CFD: 28/11/2016 - [] D -- C:\Users\eric\AppData\Local\Disc_Soft_Ltd =>.Disc Soft Ltd
O43 - CFD: 25/08/2017 - [] D -- C:\Users\eric\AppData\Local\Eclipse =>.Eclipse
O43 - CFD: 28/08/2017 - [] D -- C:\Users\eric\AppData\Local\ElevatedDiagnostics =>.Microsoft Corporation
O43 - CFD: 23/05/2016 - [] D -- C:\Users\eric\AppData\Local\Facebook =>.Facebook
O43 - CFD: 23/03/2017 - [] D -- C:\Users\eric\AppData\Local\FileZilla =>.FileZilla
O43 - CFD: 20/09/2017 - [] D -- C:\Users\eric\AppData\Local\Free Download Manager =>.FreeDownloadManager.com
O43 - CFD: 17/05/2016 - [] D -- C:\Users\eric\AppData\Local\Geckofx =>.Geckofx
O43 - CFD: 17/11/2016 - [] D -- C:\Users\eric\AppData\Local\Google =>.Google
O43 - CFD: 03/04/2016 - [] D -- C:\Users\eric\AppData\Local\Hewlett-Packard =>.Hewlett-Packard
O43 - CFD: 16/04/2017 - [0] SHD -- C:\Users\eric\AppData\Local\Historique =>.Microsoft Corporation
O43 - CFD: 19/07/2016 - [] D -- C:\Users\eric\AppData\Local\HP =>.Hewlett-Packard
O43 - CFD: 18/09/2017 - [] D -- C:\Users\eric\AppData\Local\Macromedia =>.Macromedia
O43 - CFD: 04/09/2017 - [] D -- C:\Users\eric\AppData\Local\Messenger =>.Microsoft Corporation
O43 - CFD: 13/09/2017 - [] D -- C:\Users\eric\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 19/09/2017 - [] D -- C:\Users\eric\AppData\Local\Microsoft Help =>.Microsoft Corporation
O43 - CFD: 03/04/2016 - [] D -- C:\Users\eric\AppData\Local\MicrosoftEdge =>.Microsoft Corporation
O43 - CFD: 31/07/2016 - [] D -- C:\Users\eric\AppData\Local\Microsoft_Corporation =>.Microsoft Corporation
O43 - CFD: 31/03/2017 - [0] D -- C:\Users\eric\AppData\Local\Mobirise.com =>.Mobirise.com
O43 - CFD: 20/09/2017 - [] D -- C:\Users\eric\AppData\Local\Mozilla =>.Mozilla Corporation
O43 - CFD: 26/06/2017 - [] D -- C:\Users\eric\AppData\Local\Nero =>.Ahead Corporation
O43 - CFD: 03/05/2017 - [] D -- C:\Users\eric\AppData\Local\Nero_AG =>.Ahead
O43 - CFD: 04/09/2017 - [] D -- C:\Users\eric\AppData\Local\NetBeans =>.NetBeans.org
O43 - CFD: 02/04/2016 - [0] D -- C:\Users\eric\AppData\Local\NetworkTiles =>.NetworkTiles
O43 - CFD: 27/03/2017 - [] D -- C:\Users\eric\AppData\Local\OpenERP S.A
O43 - CFD: 19/09/2017 - [] D -- C:\Users\eric\AppData\Local\Packages =>.Microsoft Corporation
O43 - CFD: 22/12/2016 - [0] D -- C:\Users\eric\AppData\Local\PackageStaging =>.Apcera
O43 - CFD: 30/03/2016 - [0] D -- C:\Users\eric\AppData\Local\PeerDistRepub =>.Microsoft Corporation
O43 - CFD: 29/03/2016 - [] D -- C:\Users\eric\AppData\Local\Programs =>.Microsoft Corporation
O43 - CFD: 30/03/2016 - [] D -- C:\Users\eric\AppData\Local\Publishers =>.Microsoft Corporation
O43 - CFD: 21/10/2016 - [] D -- C:\Users\eric\AppData\Local\Razer =>.Razer
O43 - CFD: 18/07/2017 - [] D -- C:\Users\eric\AppData\Local\Recovery =>.Recovery Labs
O43 - CFD: 23/04/2016 - [] D -- C:\Users\eric\AppData\Local\Semantis =>.Semantis
O43 - CFD: 13/12/2016 - [] D -- C:\Users\eric\AppData\Local\SKIDROW =>.SKIDROW
O43 - CFD: 12/06/2016 - [] D -- C:\Users\eric\AppData\Local\Sony =>.Sony
O43 - CFD: 02/08/2017 - [] D -- C:\Users\eric\AppData\Local\speech =>.Microsoft Corporation
O43 - CFD: 29/08/2017 - [] D -- C:\Users\eric\AppData\Local\SquirrelTemp =>.Squirrels
O43 - CFD: 13/12/2016 - [] D -- C:\Users\eric\AppData\Local\storage
O43 - CFD: 30/03/2017 - [] D -- C:\Users\eric\AppData\Local\Sublime Text 3
O43 - CFD: 10/06/2016 - [] D -- C:\Users\eric\AppData\Local\TechSmith =>.TechSmith
O43 - CFD: 20/09/2017 - [] D -- C:\Users\eric\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 16/04/2017 - [0] SHD -- C:\Users\eric\AppData\Local\Temporary Internet Files =>.Microsoft Corporation
O43 - CFD: 03/07/2017 - [] D -- C:\Users\eric\AppData\Local\Thinstall =>.VMare
O43 - CFD: 30/03/2016 - [] D -- C:\Users\eric\AppData\Local\TileDataLayer =>.Microsoft Corporation
O43 - CFD: 23/04/2016 - [] D -- C:\Users\eric\AppData\Local\tkdata =>.TK-Data
O43 - CFD: 30/11/2016 - [] D -- C:\Users\eric\AppData\Local\Tlition
O43 - CFD: 16/12/2016 - [] D -- C:\Users\eric\AppData\Local\Trolltech =>.Trolltech
O43 - CFD: 03/08/2017 - [] AD -- C:\Users\eric\AppData\Local\UmmyVideoDownloader =>.UmmyVideoDownloader
O43 - CFD: 29/03/2017 - [] D -- C:\Users\eric\AppData\Local\VirtualStore =>.Microsoft Corporation
O43 - CFD: 28/03/2017 - [] D -- C:\Users\eric\AppData\Local\Visokio
O43 - CFD: 29/03/2017 - [] D -- C:\Users\eric\AppData\Local\Visokio Omniscope app
O43 - CFD: 16/06/2016 - [] D -- C:\Users\eric\AppData\Local\VMware =>.VMware
O43 - CFD: 04/09/2017 - [] D -- C:\Users\eric\AppData\Local\WDSetup =>.WDSetup
O43 - CFD: 29/08/2017 - [] D -- C:\Users\eric\AppData\Local\WhatsApp =>.WhatsApp
O43 - CFD: 29/03/2016 - [] D -- C:\Users\eric\AppData\Local\www.kiwix.org
O43 - CFD: 20/09/2017 - [] D -- C:\Users\eric\AppData\Local\ZHP =>.Nicolas Coolman
O43 - CFD: 29/03/2016 - [0] D -- C:\Users\eric\AppData\Local\Programs\Common =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] RD -- C:\Users\eric\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility =>.Microsoft Corporation
O43 - CFD: 16/04/2017 - [] RD -- C:\Users\eric\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories =>.Microsoft Corporation
O43 - CFD: 19/09/2017 - [] RD -- C:\Users\eric\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools
O43 - CFD: 16/04/2017 - [] D -- C:\Users\eric\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome =>.Google Inc.
O43 - CFD: 16/04/2017 - [] D -- C:\Users\eric\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Convar =>.Convar Deutschland GmbH
O43 - CFD: 12/09/2017 - [] D -- C:\Users\eric\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dashlane =>.Dashlane
O43 - CFD: 16/04/2017 - [] D -- C:\Users\eric\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory =>.FormatFactory
O43 - CFD: 03/09/2017 - [] D -- C:\Users\eric\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager =>.Tonec Inc
O43 - CFD: 16/04/2017 - [] D -- C:\Users\eric\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Jargon Informatique =>.tuxfamily.org
O43 - CFD: 18/03/2017 - [] D -- C:\Users\eric\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance =>.Microsoft Corporation
O43 - CFD: 13/12/2016 - [0] D -- C:\Users\eric\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\New Super Mario Forever 2012 - FULL PC Version - Foxy Games
O43 - CFD: 17/09/2017 - [] D -- C:\Users\eric\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sparkle =>.Ignite Realtime
O43 - CFD: 19/09/2017 - [] RD -- C:\Users\eric\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] RD -- C:\Users\eric\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools =>.Microsoft Corporation
O43 - CFD: 22/06/2017 - [] D -- C:\Users\eric\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ =>.Atomix Production
O43 - CFD: 29/08/2017 - [] D -- C:\Users\eric\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WhatsApp =>.WhatsApp
O43 - CFD: 18/03/2017 - [] RD -- C:\Users\eric\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell =>.Microsoft Corporation
O43 - CFD: 03/07/2017 - [] D -- C:\Users\eric\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR
O43 - CFD: 16/04/2017 - [0] SHD -- C:\Users\Default\AppData\Local\Application Data =>.Microsoft Corporation
O43 - CFD: 22/12/2016 - [0] SHD -- C:\Users\Default\AppData\Local\Historique =>.Microsoft Corporation
O43 - CFD: 20/03/2017 - [] D -- C:\Users\Default\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 22/12/2016 - [0] D -- C:\Users\Default\AppData\Local\Microsoft Help =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [0] D -- C:\Users\Default\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 16/04/2017 - [0] SHD -- C:\Users\Default\AppData\Local\Temporary Internet Files =>.Microsoft Corporation
O43 - CFD: 16/04/2017 - [0] SHD -- C:\Users\Default User\AppData\Local\Application Data =>.Microsoft Corporation
O43 - CFD: 22/12/2016 - [0] SHD -- C:\Users\Default User\AppData\Local\Historique =>.Microsoft Corporation
O43 - CFD: 20/03/2017 - [] D -- C:\Users\Default User\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 22/12/2016 - [0] D -- C:\Users\Default User\AppData\Local\Microsoft Help =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [0] D -- C:\Users\Default User\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 16/04/2017 - [0] SHD -- C:\Users\Default User\AppData\Local\Temporary Internet Files =>.Microsoft Corporation
O43 - CFD: 23/04/2017 - [0] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\DBG =>.DBG
O43 - CFD: 17/04/2017 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 19/07/2017 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\PeerDistRepub =>.Microsoft Corporation
O43 - CFD: 11/09/2017 - [] -- C:\Windows\System32\Config\systemprofile\AppData\Local\Programs =>.Microsoft Corporation
O43 - CFD: 16/04/2017 - [] -- C:\Windows\System32\Config\systemprofile\AppData\Roaming\BaisvikSoftware
O43 - CFD: 16/04/2017 - [] -- C:\Windows\System32\Config\systemprofile\AppData\Roaming\IObit =>.IObit
O43 - CFD: 11/09/2017 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Roaming\Microsoft =>.Microsoft Corporation
O43 - CFD: 19/09/2017 - [] -- C:\Windows\System32\Config\systemprofile\AppData\Roaming\tor =>.Tor
User empty folders CLSID founds (1). Clean with ZHPFix 'EmptyCLSID' command =>.SUP.Empty.CLSID
---\\ ShellExecuteHook (1) - 0s
O46 - SEH:ShellExecuteHooks - (no name) - [HKLM] [64Bits] - {AFC5519E-A73B-11E6-9931-64006A5CFC23} . (...) -- (.not file.)
---\\ ShellIconOverlayIdentifiers (SIOI) (9) - 1s
O106 - SIOI: ErrorOverlayHandler Class [ OneDrive1] - {BBACC218-34EA-4666-9D7A-C78F2274A524}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\eric\AppData\Local\Microsoft\OneDrive\17.3.6966.0824\FileSyncShell.dll =>.Microsoft Corporation®
O106 - SIOI: SharedOverlayHandler Class [ OneDrive2] - {5AB7172C-9C11-405C-8DD5-AF20F3606282}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\eric\AppData\Local\Microsoft\OneDrive\17.3.6966.0824\FileSyncShell.dll =>.Microsoft Corporation®
O106 - SIOI: SharedSyncingOverlayHandler Class [ OneDrive3] - {A78ED123-AB77-406B-9962-2A5D9D2F7F30}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\eric\AppData\Local\Microsoft\OneDrive\17.3.6966.0824\FileSyncShell.dll =>.Microsoft Corporation®
O106 - SIOI: UpToDateOverlayHandler Class [ OneDrive4] - {F241C880-6982-4CE5-8CF7-7085BA96DA5A}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\eric\AppData\Local\Microsoft\OneDrive\17.3.6966.0824\FileSyncShell.dll =>.Microsoft Corporation®
O106 - SIOI: SyncingOverlayHandler Class [ OneDrive5] - {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\eric\AppData\Local\Microsoft\OneDrive\17.3.6966.0824\FileSyncShell.dll =>.Microsoft Corporation®
O106 - SIOI: ReadOnlyOverlayHandler Class [ OneDrive6] - {9AA2F32D-362A-42D9-9328-24A483E2CCC3}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\eric\AppData\Local\Microsoft\OneDrive\17.3.6966.0824\FileSyncShell.dll =>.Microsoft Corporation®
O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 1 (ErrorConflict) [ SkyDrivePro1 (ErrorConflict)] - {8BA85C75-763B-4103-94EB-9470F12FE0F7}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 2 (SyncInProgress) [ SkyDrivePro2 (SyncInProgress)] - {CD55129A-B1A1-438E-A425-CEBC7DC684EE}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 3 (InSync) [ SkyDrivePro3 (InSync)] - {E768CD3B-BDDC-436D-9C13-E1B39CA257B1}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL =>.Microsoft Corporation®
---\\ Image File Execution Options (18) - 3s
O50 - IFEO:C:\Windows\System32\cscript.exe - (.Microsoft Corporation - Microsoft ® Console Based Script Host.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\dllhost.exe - (.Microsoft Corporation - COM Surrogate.) [DisableExceptionChainValidation\\3] =>.Microsoft Windows®
O50 - IFEO:C:\Windows\System32\drvinst.exe - (.Microsoft Corporation - Module d’installation de pilotes.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\ie4uinit.exe - (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\ieUnatt.exe - (.Microsoft Corporation - Outil d’installation sans assistance d’IE 7.) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\mmc.exe - (.Microsoft Corporation - Microsoft Management Console.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\MRT.exe - (.Microsoft Corporation - Outil de suppression de logiciels malveilla.) [CFGOptions\\1] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\msfeedssync.exe - (.Microsoft Corporation - Microsoft Feeds Synchronization.) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\mshta.exe - (.Microsoft Corporation - Hôte des applications HTML de Microsoft(R).) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\PresentationHost.exe - (.Microsoft Corporation - Windows Presentation Foundation Host.) [MitigationOptions\\1118481] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\PrintIsolationHost.exe - (.Microsoft Corporation - PrintIsolationHost.) [MitigationOptions\\2097152] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\rundll32.exe - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\runtimebroker.exe - (.Microsoft Corporation - Runtime Broker.) [MitigationOptions\\4294967296] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\searchprotocolhost.exe - (.Microsoft Corporation - Microsoft Windows Search Protocol Host.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\spoolsv.exe - (.Microsoft Corporation - Application sous-système spouleur.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\spoolsv.exe - (.Microsoft Corporation - Application sous-système spouleur.) [MitigationOptions\\2097152] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\svchost.exe - (.Microsoft Corporation - Processus hôte pour les services Windows.) [MinimumStackCommitInBytes\\32768] =>.Microsoft Windows Publisher®
O50 - IFEO:C:\Windows\System32\wscript.exe - (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
---\\ Liste des pilotes du système (93) - 41s
O58 - SDL:2017/03/18 21:56:25 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\Windows\System32\drivers\3ware.sys [107424] =>.Microsoft Windows®
O58 - SDL:2016/10/12 06:37:52 A . (.HP - HP Accelerometer.) -- C:\Windows\System32\drivers\Accelerometer.sys [56128] =>.HP Inc.®
O58 - SDL:2017/03/18 21:56:25 A . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS.) -- C:\Windows\System32\drivers\adp80xx.sys [1135512] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [83352] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [259488] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [27040] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [132000] =>.Microsoft Windows®
O58 - SDL:2012/06/14 17:39:44 A . (.Beceem communications pvt ltd. - Beceem Communications Inc. WiMAX driver.) -- C:\Windows\System32\drivers\BcmBusCtr_64.sys [62976] =>.Beceem communications pvt ltd.
O58 - SDL:2017/03/18 21:56:25 A . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\Windows\System32\drivers\bcmfn2.sys [9728] =>.Windows (R) Win 7 DDK provider
O58 - SDL:2017/03/18 21:56:23 A . (.QLogic Corporation - QLogic Gigabit Ethernet VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [533920] =>.Microsoft Windows®
O58 - SDL:2017/07/19 09:11:32 A . (.Connectify - Connectify NDISRD helper driver.) -- C:\Windows\System32\drivers\cfywlan2.sys [46088] =>.Connectify (Connectify, Inc.)®
O58 - SDL:2017/03/18 21:56:25 A . (.Chelsio Communications - Chelsio iSCSI Crash Dump Driver.) -- C:\Windows\System32\drivers\cht4dx64.sys [102816] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.Chelsio Communications - Chelsio iSCSI VMiniport Driver.) -- C:\Windows\System32\drivers\cht4sx64.sys [347032] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.Chelsio Communications - Virtual Bus Driver for Chelsio ® T4 Chipset.) -- C:\Windows\System32\drivers\cht4vx64.sys [2104224] =>.Microsoft Windows®
O58 - SDL:2017/07/19 08:54:13 A . (.Connectify - NDISRD helper driver.) -- C:\Windows\System32\drivers\cnnctfy3.sys [42152] =>.Connectify®
O58 - SDL:2017/07/19 09:11:32 A . (.Connectify - CNNCTFY helper driver.) -- C:\Windows\System32\drivers\cnnctfy4.sys [53216] =>.Connectify (Connectify, Inc.)®
O58 - SDL:2015/08/31 19:25:56 A . (.Windows (R) Win 7 DDK provider - Explore Systems Virtual Audio Device.) -- C:\Windows\System32\drivers\dfx11_1x64.sys [28008] =>.Power Technology®
O58 - SDL:2015/11/15 00:07:54 A . (.Windows (R) Win 7 DDK provider - Explore Systems Virtual Audio Device.) -- C:\Windows\System32\drivers\dfx12x64.sys [39048] =>.Power Technology®
O58 - SDL:2012/06/14 17:39:44 A . (.Beceem communications pvt ltd. - Beceem Communications Inc. WiMAX driver.) -- C:\Windows\System32\drivers\drxvi314_64lh.sys [363136] =>.Beceem communications pvt ltd.
O58 - SDL:2016/10/09 00:48:25 A . (.Disc Soft Ltd - DAEMON Tools Pro Virtual SCSI Bus Driver.) -- C:\Windows\System32\drivers\dtproscsibus.sys [30264] =>.Disc Soft Ltd®
O58 - SDL:2016/11/05 08:23:18 A . (.DT Soft Ltd - DAEMON Tools Virtual Bus Driver.) -- C:\Windows\System32\drivers\dtsoftbus01.sys [283200] =>.DT Soft Ltd®
O58 - SDL:2016/11/28 12:11:12 A . (.Disc Soft Ltd - DAEMON Tools Ultra Virtual SCSI Bus Driver.) -- C:\Windows\System32\drivers\dtultrascsibus.sys [30264] =>.Disc Soft Ltd®
O58 - SDL:2016/11/28 12:11:16 A . (.Disc Soft Ltd - DAEMON Tools Ultra Virtual USB Bus Driver.) -- C:\Windows\System32\drivers\dtultrausbbus.sys [47672] =>.Disc Soft Ltd®
O58 - SDL:2015/02/28 23:22:52 A . (.The Within Network, LLC - UxStyle Community Edition Kernel Driver.) -- C:\Windows\System32\drivers\elytsxu.sys [32424] =>.The Within Network, LLC®
O58 - SDL:2016/08/01 23:15:38 A . (.ELAN Microelectronic Corp. - ELAN SMBus Driver.) -- C:\Windows\System32\drivers\ETDSMBus.sys [31832] =>.ELAN MICROELECTRONICS CORPORATION®
O58 - SDL:2017/03/18 21:56:23 A . (.QLogic Corporation - QLogic 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3419040] =>.Microsoft Windows®
O58 - SDL:2017/06/26 16:07:57 A . (.Huawei Technologies Co., Ltd. - ew_jubusenum Driver.) -- C:\Windows\System32\drivers\ew_jubusenum.sys [86016] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2009/09/09 10:23:46 A . (.Intel Corporation - BIOS Update Driver.) -- C:\Windows\System32\drivers\flashud.sys [51712] =>.Intel Corporation
O58 - SDL:2014/10/22 14:29:00 A . (.BitDefender LLC - BitDefender Gonzales FileSystem Driver.) -- C:\Windows\System32\drivers\gzflt.sys [155912] =>.Bitdefender SRL®
O58 - SDL:2016/10/12 06:37:56 A . (.HP - HP Disk Filter - SATA/RAID.) -- C:\Windows\System32\drivers\hpdskflt.sys [42312] =>.HP Inc.®
O58 - SDL:2014/05/15 14:18:36 A . (.Hewlett-Packard Company - Keyboard Filter Driver.) -- C:\Windows\System32\drivers\HpqKbFiltr64.sys [28376] =>.Hewlett-Packard Company®
O58 - SDL:2017/03/18 21:56:25 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [64416] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:28 A . (.Intel(R) Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\Windows\System32\drivers\iagpio.sys [33280] =>.Intel(R) Corporation
O58 - SDL:2017/03/18 21:56:28 A . (.Intel(R) Corporation - Intel(R) Serial IO I2C Driver.) -- C:\Windows\System32\drivers\iai2c.sys [81408] =>.Intel(R) Corporation
O58 - SDL:2017/03/18 21:56:28 A . (.Intel Corporation - Intel(R) Serial IO GPIO Driver v2.) -- C:\Windows\System32\drivers\iaLPSS2i_GPIO2.sys [70656] =>.Intel Corporation
O58 - SDL:2017/03/18 21:56:28 A . (.Intel Corporation - Intel(R) Serial IO GPIO Driver v2.) -- C:\Windows\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [85504] =>.Intel Corporation
O58 - SDL:2017/03/18 21:56:28 A . (.Intel Corporation - Intel(R) Serial IO I2C Driver v2.) -- C:\Windows\System32\drivers\iaLPSS2i_I2C.sys [165376] =>.Intel Corporation
O58 - SDL:2017/03/18 21:56:28 A . (.Intel Corporation - Intel(R) Serial IO I2C Driver v2.) -- C:\Windows\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [168448] =>.Intel Corporation
O58 - SDL:2017/03/18 21:56:23 A . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [38128] =>.Intel Corporation - Client Components Group®
O58 - SDL:2017/03/18 21:56:19 A . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\Windows\System32\drivers\iaLPSSi_I2C.sys [113152] =>.Intel Corporation
O58 - SDL:2016/08/29 21:15:48 A . (.Intel Corporation - Intel(R) Rapid Storage Technology driver -.) -- C:\Windows\System32\drivers\iaStorA.sys [1469944] =>.Intel(R) Rapid Storage Technology®
O58 - SDL:2017/03/18 21:56:26 A . (.Intel Corporation - Intel(R) Rapid Storage Technology driver (i.) -- C:\Windows\System32\drivers\iaStorAV.sys [673184] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:26 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [412064] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.Mellanox - InfiniBand Fabric Bus Driver.) -- C:\Windows\System32\drivers\ibbus.sys [526240] =>.Microsoft Windows®
O58 - SDL:2017/08/05 17:26:42 A . (.Tonec Inc. - Internet Download Manager WFP Driver.) -- C:\Windows\System32\drivers\idmwfp.sys [225568] =>.Tonec Inc.®
O58 - SDL:2015/09/03 12:36:28 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\drivers\igdkmd64.sys [6415256] =>.Intel Corporation - pGFX®
O58 - SDL:2016/05/12 05:32:26 A . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\Windows\System32\drivers\IntcDAud.sys [481768] =>.Intel(R) OWR®
O58 - SDL:2014/01/20 08:19:28 A . (.Ralink Corporation - Bluetooth Filter Driver.) -- C:\Windows\System32\drivers\IvtUrbBtFlt.sys [51936] =>.IVT CORPORATION®
O58 - SDL:2017/03/18 21:56:25 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [108960] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2i.sys [123808] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.Avago Technologies - Avago SAS Gen3 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas3i.sys [103328] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sss.sys [82848] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [59808] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\MegaSas2i.sys [64416] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\megasr.sys [575904] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.Mellanox - MLX4 Bus Driver.) -- C:\Windows\System32\drivers\mlx4_bus.sys [842656] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\Windows\System32\drivers\mvumis.sys [63904] =>.Microsoft Windows®
O58 - SDL:2016/08/31 16:00:32 A . (...) -- C:\Windows\System32\drivers\mwescontroller.sys [57680] {39D3FCDE4532A63BD298039D0555D0C2} =>PUP.Optional.WebShield
O58 - SDL:2017/03/18 21:56:25 A . (.Mellanox - NetworkDirect Support Filter Driver.) -- C:\Windows\System32\drivers\ndfltr.sys [108960] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:23 A . (.MediaTek Inc. - MediaTek 802.11 Wireless Adapter Driver.) -- C:\Windows\System32\drivers\netr28x.sys [2537984] =>.MediaTek Inc.
O58 - SDL:2017/03/18 21:56:25 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [150432] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [166304] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\percsas2i.sys [58784] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\percsas3i.sys [61848] =>.Microsoft Windows®
O58 - SDL:2017/04/23 08:35:25 A . (.Realtek - Realtek 8101E/8168/8169 NDIS 6.40 64-bit Dr.) -- C:\Windows\System32\drivers\rt640x64.sys [950784] =>.Realtek Semiconductor Corp.®
O58 - SDL:2016/04/21 06:44:27 A . (.Ralink Technology, Corp. - Ralink Bluetooth Adapter.) -- C:\Windows\System32\drivers\rtbth.sys [1219200] =>.MEDIATEK INC.®
O58 - SDL:2017/03/23 06:06:54 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\drivers\RTKVHD64.sys [5702144] =>.Realtek Semiconductor Corp.®
O58 - SDL:2017/03/26 19:40:06 A . (.Realsil Semiconductor Corporation - RTS PCIE READER Driver.) -- C:\Windows\System32\drivers\RtsPer.sys [791040] =>.Realtek Semiconductor Corp.®
O58 - SDL:2016/09/17 01:12:20 A . (.Razer, Inc. - Razer Overlay Support.) -- C:\Windows\System32\drivers\rzpmgrk.sys [44144] =>.Razer Inc.®
O58 - SDL:2016/10/16 12:04:08 A . (.Windows (R) Win 7 DDK provider - RazerSurround VAD Audio driver.) -- C:\Windows\System32\drivers\RzSurroundVAD.sys [49176] =>.Razer USA Ltd.®
O58 - SDL:2015/10/08 08:00:24 A . (.Power Software Ltd - PowerISO Virtual Drive.) -- C:\Windows\System32\drivers\scdemu.sys [127760] =>.Power Software Limited®
O58 - SDL:2017/03/18 21:56:26 A . (...) -- C:\Windows\System32\drivers\SDFRd.sys [31128] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [44960] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [81824] =>.Microsoft Windows®
O58 - SDL:2017/02/17 03:14:54 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\Windows\System32\drivers\Smb_driver_AMDASF_Aux.sys [69216] =>.Synaptics Incorporated®
O58 - SDL:2016/04/21 07:04:46 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\Windows\System32\drivers\Smb_driver_Intel.sys [33960] =>.Synaptics Incorporated®
O58 - SDL:2017/02/17 03:15:00 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\Windows\System32\drivers\Smb_driver_Intel_Aux.sys [72800] =>.Synaptics Incorporated®
O58 - SDL:2016/09/05 05:47:06 A . (.Samsung Electronics Co., Ltd. - SAMSUNG USB Composite Device Driver.) -- C:\Windows\System32\drivers\ssudbus.sys [131712] =>.Samsung Electronics CO., LTD.®
O58 - SDL:2017/05/18 22:17:30 A . (.Samsung Electronics Co., Ltd. - SAMSUNG Android Modem Device Driver.) -- C:\Windows\System32\drivers\ssudmdm.sys [166288] =>.Samsung Electronics Co., Ltd.®
O58 - SDL:2017/03/18 21:56:25 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\Windows\System32\drivers\stexstor.sys [31136] =>.Microsoft Windows®
O58 - SDL:2017/02/17 03:15:18 A . (.Synaptics Incorporated - Synaptics I2C Driver.) -- C:\Windows\System32\drivers\SynRMIHID_Aux.sys [66144] =>.Synaptics Incorporated®
O58 - SDL:2017/02/17 03:15:20 A . (.Synaptics Incorporated - Synaptics Touchpad Win64 Driver.) -- C:\Windows\System32\drivers\SynTP.sys [936544] =>.Synaptics Incorporated®
O58 - SDL:2013/08/22 13:40:24 A . (.The OpenVPN Project - TAP-Windows Virtual Network Driver.) -- C:\Windows\System32\drivers\tap0901.sys [40664] =>.OpenVPN Technologies, Inc.®
O58 - SDL:2017/02/15 06:54:08 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\drivers\TeeDriverW8x64.sys [204920] =>.Intel(R) Embedded Subsystems and IP Blocks Group®
O58 - SDL:2016/05/19 05:02:48 A . (.电脑管家 - 电脑管家-驱动模块.) -- C:\Windows\System32\drivers\TFsFltX64.sys [97400] =>.SUP.Tencent
O58 - SDL:2017/03/18 21:56:25 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [166816] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\Windows\System32\drivers\VSTXRAID.SYS [305568] =>.Microsoft Windows®
O58 - SDL:2016/07/18 12:15:39 A . (.Western Digital Technologies, Inc. - Western Digital SCSI Architecture Model (SA.) -- C:\Windows\System32\drivers\wdcsam64.sys [26880] =>.WDKTestCert wdclab,130885612892544312®
O58 - SDL:2017/03/18 21:56:25 A . (.Mellanox - Kernel WinMad.) -- C:\Windows\System32\drivers\winmad.sys [32160] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.Mellanox - Kernel WinVerbs.) -- C:\Windows\System32\drivers\winverbs.sys [64920] =>.Microsoft Windows®
O58 - SDL:2016/08/01 11:32:10 A . (.HP - HP Wireless Button Driver.) -- C:\Windows\System32\drivers\WirelessButtonDriver64.sys [32832] =>.HP Inc.®
O58 - SDL:2014/11/18 14:39:06 A . (...) -- C:\Windows\System32\epmntdrv.sys [18528] =>.CHENGDU YIWO Tech Development Co., Ltd.®
O58 - SDL:2014/11/18 14:39:06 A . (...) -- C:\Windows\System32\EuGdiDrv.sys [10848] =>.CHENGDU YIWO Tech Development Co., Ltd.®
---\\ Derniers fichiers modifiés ou crées (Utilisateur) (11) - 62s
O61 - LFC: 2017/09/18 21:57:47 A . (..) -- C:\Users\eric\AppData\Roaming\af688c2fb64e4f05a7eadcc4857dc524\8TWeFR2T.exe [110080]
O61 - LFC: 2017/09/18 22:01:54 A . (.Banin.) -- C:\Users\eric\AppData\Roaming\dll4c4dqy3m\vlsmh5qj2bq.exe [8192]
O61 - LFC: 2017/09/18 22:06:11 A . (.EpicNet Inc..) -- C:\Users\eric\AppData\Roaming\EpicNet Inc\CloudNet\cloudnet.exe [776704] =>Adware.MSIL
O61 - LFC: 2017/09/19 00:03:05 A . (.Banin.) -- C:\Users\eric\AppData\Roaming\n2dddu3iwrk\yhpppi0pl3s.exe [8192]
O61 - LFC: 2017/09/19 02:04:42 A . (.Banin.) -- C:\Users\eric\AppData\Roaming\py4fb2s5qpf\hsftbemcrx5.exe [8192]
O61 - LFC: 2017/09/20 06:56:03 A . (..) -- C:\Users\eric\Desktop\Navilog1 (2).exe [260562]
O61 - LFC: 2017/09/20 06:54:57 A . (..) -- C:\Users\eric\Downloads\Navilog1 (1).exe [260562]
O61 - LFC: 2017/09/20 06:56:03 A . (..) -- C:\Users\eric\Downloads\Navilog1 (2).exe [260562]
O61 - LFC: 2017/09/20 07:02:55 A . (..) -- C:\Users\eric\Downloads\Navilog1 (3).exe [260562]
O61 - LFC: 2017/09/20 07:03:15 A . (..) -- C:\Users\eric\Downloads\Navilog1 (4).exe [260562]
O61 - LFC: 2017/09/20 06:55:09 A . (..) -- C:\Users\eric\Downloads\Navilog1.exe [260562]
---\\ Associations Shell Spawning (10) - 1s
O67 - Shell Spawning: <.bat>
O67 - Shell Spawning: <.cpl>
O67 - Shell Spawning: <.cmd>
O67 - Shell Spawning: <.com>
O67 - Shell Spawning: <.evt>
O67 - Shell Spawning: <.exe>
O67 - Shell Spawning: <.html>
O67 - Shell Spawning: <.js>
O67 - Shell Spawning: <.reg>
O67 - Shell Spawning: <.scr>
---\\ Menu de démarrage Internet (12) - 0s
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
---\\ Recherche d'infection sur les navigateurs (6) - 11s
O69 - SBI: SearchScopes [HKCU] [64Bits]{0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/ =>.Bing.com
O69 - SBI: SearchScopes [HKCU] [64Bits]{85A60A59-D3D8-468F-B598-FB4393789EF4} - (Google) - http://www.google.com/ =>.Google Inc.
O69 - SBI: SearchScopes [HKCU] [64Bits]{AECF2199-92B4-489A-6E9F-05BB7C51B337} - (Bing) - http://www.bing.com/ =>.Bing.com
O69 - SBI: SearchScopes [HKCU] [64Bits]{C0C3A6C6-03BC-4195-8FCB-AEA091301353} - (Yahoo!) - http://search.yahoo.com/ =>.Yahoo! Inc.
O69 - SBI: SearchScopes [HKCU] [64Bits]{ielnksrch} - (Search the web) - http://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBUTxkij9_BzU3kNIXrMgi_S4jMkrzCxpQx778QxHt-0cU5PfYrESwwrZ4zkWiOEBYb2YgiZn5IASpbWsOUYWoazDCn10RFcC58lRtT3cccrUOx3Nf-bCryHzQxwVcelubxxEudFuYo7mU_IkkPOkJwYPMgZg1ehdWiZq2fDcs7sMIJvuE-1LU,&q={searchTerms} =>.SUP.Linkury
O69 - SBI: SearchScopes [HKLM] [64Bits]{0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (@ieframe.dll,-12512) - http://www.bing.com/ =>.Bing.com
---\\ Enumère les services démarrés par Svchost (48) - 3s
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [189952] =>.Microsoft Corporation
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [189952] =>.Microsoft Corporation
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [303104] =>.Microsoft Corporation
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [1269248] =>.Microsoft Corporation
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [934912] =>.Microsoft Corporation
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll [996864] =>.Microsoft Corporation
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\Windows\system32\seclogon.dll [31232] =>.Microsoft Corporation
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [138752] =>.Microsoft Corporation
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [150016] =>.Microsoft Corporation
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [108032] =>.Microsoft Corporation
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [877568] =>.Microsoft Corporation
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [221696] =>.Microsoft Corporation
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [133120] =>.Microsoft Corporation
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [413184] =>.Microsoft Corporation
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\sessenv.dll [385536] =>.Microsoft Corporation
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [93184] =>.Microsoft Corporation
O83 - Search Svchost Services: shpamsvc (shpamsvc) . (.Microsoft Corporation - SharedPC.AccountManager.) -- C:\Windows\System32\Windows.SharedPC.AccountManager.dll [192512] =>.Microsoft Corporation
O83 - Search Svchost Services: XblGameSave (XblGameSave) . (.Microsoft Corporation - Xbox Live Game Save Service.) -- C:\Windows\System32\XblGameSave.dll [1135104] =>.Microsoft Corporation
O83 - Search Svchost Services: NaturalAuthentication (NaturalAuthentication) . (.Microsoft Corporation - Service d’authentification naturelle.) -- C:\Windows\System32\NaturalAuth.dll [723968] =>.Microsoft Corporation
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\Windows\System32\wlidsvc.dll [2153984] =>.Microsoft Corporation
O83 - Search Svchost Services: UserManager (UserManager) . (.Microsoft Corporation - UserMgr.) -- C:\Windows\System32\usermgr.dll [877568] =>.Microsoft Corporation
O83 - Search Svchost Services: XblAuthManager (XblAuthManager) . (.Microsoft Corporation - Xbox Live Auth Manager.) -- C:\Windows\System32\XblAuthManager.dll [1015296] =>.Microsoft Corporation
O83 - Search Svchost Services: DmEnrollmentSvc (DmEnrollmentSvc) . (.Microsoft Corporation - DLL Windows Management Service.) -- C:\Windows\System32\Windows.Internal.Management.dll [536064] =>.Microsoft Corporation
O83 - Search Svchost Services: xbgm (xbgm) . (.Microsoft Corporation - Xbox Game Monitoring Service.) -- C:\Windows\System32\xbgmsvc.dll [301216] =>.Microsoft Windows Publisher®
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [69632] =>.Microsoft Corporation
O83 - Search Svchost Services: TokenBroker (TokenBroker) . (.Microsoft Corporation - Token Broker.) -- C:\Windows\System32\TokenBroker.dll [1052160] =>.Microsoft Corporation
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Service de géolocalisation.) -- C:\Windows\System32\lfsvc.dll [43520] =>.Microsoft Corporation
O83 - Search Svchost Services: Irmon (Irmon) . (.Microsoft Corporation - Moniteur infrarouge.) -- C:\Windows\System32\irmon.dll [24576] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [104448] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d’accès à dista.) -- C:\Windows\System32\rasmans.dll [874496] =>.Microsoft Corporation
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [490496] =>.Microsoft Corporation
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\sens.dll [69632] =>.Microsoft Corporation
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\Windows\System32\ipnathlp.dll [537600] =>.Microsoft Corporation
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [306688] =>.Microsoft Corporation
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\System32\wuaueng.dll [2445824] =>.Microsoft Corporation
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [1159680] =>.Microsoft Corporation
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [612864] =>.Microsoft Corporation
O83 - Search Svchost Services: dmwappushservice (dmwappushservice) . (.Microsoft Corporation - dmwappushsvc.) -- C:\Windows\System32\dmwappushsvc.dll [55296] =>.Microsoft Corporation
O83 - Search Svchost Services: wisvc (wisvc) . (.Microsoft Corporation - Paramètres de vol.) -- C:\Windows\System32\flightsettings.dll [699904] =>.Microsoft Corporation
O83 - Search Svchost Services: WpnService (WpnService) . (.Microsoft Corporation - Service du système de notifications Push Wi.) -- C:\Windows\System32\WpnService.dll [276480] =>.Microsoft Corporation
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [385536] =>.Microsoft Corporation
O83 - Search Svchost Services: XboxNetApiSvc (XboxNetApiSvc) . (.Microsoft Corporation - Xbox Live Networking Service.) -- C:\Windows\System32\XboxNetApiSvc.dll [1067008] =>.Microsoft Corporation
O83 - Search Svchost Services: UsoSvc (UsoSvc) . (.Microsoft Corporation - Mettre à jour la session Orchestrator Core.) -- C:\Windows\System32\usocore.dll [681984] =>.Microsoft Corporation
O83 - Search Svchost Services: NetSetupSvc (NetSetupSvc) . (.Microsoft Corporation - Service Configuration du réseau.) -- C:\Windows\System32\NetSetupSvc.dll [261632] =>.Microsoft Corporation
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d’installation de périphérique.) -- C:\Windows\System32\DeviceSetupManager.dll [233984] =>.Microsoft Corporation
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Micro.) -- C:\Windows\System32\ncasvc.dll [167424] =>.Microsoft Corporation
O83 - Search Svchost Services: XboxGipSvc (XboxGipSvc) . (.Microsoft Corporation - Xbox Gip Management Service.) -- C:\Windows\System32\XboxGipSvc.dll [18944] =>.Microsoft Corporation
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll [196096] =>.Microsoft Corporation
---\\ Liste des exceptions du parefeu Windows (10) - 4s
O87 - FAEL: "UDP Query User{062018FD-1341-4514-9F9C-51183C5EF470}C:\users\eric\desktop\winbox_4.exe" [In-None-P17-TRUE] .(...) -- C:\users\eric\desktop\winbox_4.exe
O87 - FAEL: "TCP Query User{2B47B8DE-CE28-4EB6-B6BA-91A57B277D8C}C:\users\eric\desktop\winbox_4.exe" [In-None-P6-TRUE] .(...) -- C:\users\eric\desktop\winbox_4.exe
O87 - FAEL: "UDP Query User{98F7EB9F-5CF3-4AA4-BAC0-87F565548911}C:\users\eric\downloads\programs\winbox.exe" [In-None-P17-TRUE] .(...) -- C:\users\eric\downloads\programs\winbox.exe
O87 - FAEL: "TCP Query User{D9755CD0-A6F1-4B0A-A14E-F3357C100506}C:\users\eric\downloads\programs\winbox.exe" [In-None-P6-TRUE] .(...) -- C:\users\eric\downloads\programs\winbox.exe
O87 - FAEL: "UDP Query User{90BF81D5-E97C-47C7-808C-1AB451388BCC}C:\program files (x86)\dmc devi may cry\binaries\win32\dmc-devilmaycry.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\dmc devi may cry\binaries\win32\dmc-devilmaycry.exe (.not file.)
O87 - FAEL: "TCP Query User{F9E0ACE8-FA32-4887-9BC7-5E284001048E}C:\program files (x86)\dmc devi may cry\binaries\win32\dmc-devilmaycry.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\dmc devi may cry\binaries\win32\dmc-devilmaycry.exe (.not file.)
O87 - FAEL: "UDP Query User{9B2D0B11-F972-4416-9BCE-839F458A93C2}C:\app\eric\product\11.2.0\client_5\jdk\jre\bin\java.exe" [In-None-P17-TRUE] .(...) -- C:\app\eric\product\11.2.0\client_5\jdk\jre\bin\java.exe (.not file.)
O87 - FAEL: "TCP Query User{01ADD3D6-EED4-47EC-A413-01F29162F071}C:\app\eric\product\11.2.0\client_5\jdk\jre\bin\java.exe" [In-None-P6-TRUE] .(...) -- C:\app\eric\product\11.2.0\client_5\jdk\jre\bin\java.exe (.not file.)
O87 - FAEL: "UDP Query User{6D012195-1718-4813-88BC-AF3678D6274C}C:\app\eric\product\11.2.0\dbhome_1\jdk\jre\bin\java.exe" [In-None-P17-TRUE] .(...) -- C:\app\eric\product\11.2.0\dbhome_1\jdk\jre\bin\java.exe (.not file.)
O87 - FAEL: "TCP Query User{BC46962E-2838-4D96-9DBC-35649AD32761}C:\app\eric\product\11.2.0\dbhome_1\jdk\jre\bin\java.exe" [In-None-P6-TRUE] .(...) -- C:\app\eric\product\11.2.0\dbhome_1\jdk\jre\bin\java.exe (.not file.)
---\\ Recherche de clés de registre Tracing (2) - 8s
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Windows KMS Activator Ultimate 2017 v3_RASAPI32 =>Hacktool.Office
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Windows KMS Activator Ultimate 2017 v3_RASMANCS =>Hacktool.Office
---\\ Scan Additionnel (114) - 6s
HKLM\SYSTEM\CurrentControlSet\Services\mweshield =>PUP.Optional.WebShield
C:\Program Files\My Web Shield\mweshield.exe =>PUP.Optional.WebShield
HKLM\SYSTEM\CurrentControlSet\Services\mweshieldup =>PUP.Optional.WebShield
C:\Program Files\My Web Shield\mweshieldup.exe =>PUP.Optional.WebShield
HKLM\SYSTEM\CurrentControlSet\Services\Service KMSELDI =>HackTool.KMSpico
C:\Program Files\KMSpico\Service_KMS.exe =>HackTool.KMSpico
C:\Users\eric\AppData\Roaming\EpicNet Inc\CloudNet\cloudnet.exe =>Adware.MSIL
C:\Users\eric\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\eojeoeddgeaeahpmfabdfpfialkoplcb =>Adware.CloudAtlas
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{13D67BB7-DB5F-48AA-884D-7A5D94168509} =>.SUP.Orphan
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{13D67BB7-DB5F-48AA-884D-7A5D94168509} =>.SUP.Orphan
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA} =>.SUP.Orphan
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3049C3E9-B461-4BC5-8870-4C09146192CA} =>.SUP.Orphan
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7C260B4B-F7A0-40B5-B403-BEFCDC6A4C3B} =>.SUP.Orphan
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{7C260B4B-F7A0-40B5-B403-BEFCDC6A4C3B} =>.SUP.Orphan
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\mweshield =>PUP.Optional.WebShield
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1 =>HackTool.KMSpico
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\gupdate 2.00 =>Adware.GUpdate
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\NoterSave_is1 =>.SUP.Tuto4PC
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\gupdate 2.00 =>Adware.GUpdate
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\NoterSave_is1 =>.SUP.Tuto4PC
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\CloudNet =>Adware.MSIL
C:\Program Files\BDSCJGDHLE\BDSCJGDHL.exe =>Adware.Wizzcaster
C:\Program Files\BDSCJGDHLE\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\BDSCJGDHLE =>Adware.Wizzcaster
C:\Program Files\KMSpico =>HackTool.KMSpico
C:\Program Files\L76ZO09L6P\L76ZO09L6.exe =>Adware.Wizzcaster
C:\Program Files\L76ZO09L6P\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\L76ZO09L6P =>Adware.Wizzcaster
C:\Program Files\My Web Shield =>PUP.Optional.WebShield
C:\Program Files\XSBDBY8FNB\XSBDBY8FN.exe =>Adware.Wizzcaster
C:\Program Files\XSBDBY8FNB\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\XSBDBY8FNB =>Adware.Wizzcaster
C:\Program Files (x86)\1a641ce1-bb17-40f5-a1fc-3ea2f4cf1fdb1490347953 =>Adware.CrossRider
C:\Program Files (x86)\pccleanplus =>.SUP.PCCleanPlus
C:\Program Files (x86)\xtex =>Adware.GUpdate
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSpico =>HackTool.KMSpico
C:\ProgramData\159d8e6ff42042bbae0f0def4445b047 =>Adware.Suspect
C:\ProgramData\1faff803c0964a86b82fdd284408c283 =>Adware.Suspect
C:\ProgramData\240cf49e-0e03-1 =>.SUP.Polluteware
C:\ProgramData\240cf49e-4495-0 =>.SUP.Polluteware
C:\ProgramData\240cf49e-45b7-0 =>.SUP.Polluteware
C:\ProgramData\240cf49e-5341-1 =>.SUP.Polluteware
C:\ProgramData\240cf49e-6c35-0 =>.SUP.Polluteware
C:\ProgramData\240cf49e-6d97-1 =>.SUP.Polluteware
C:\ProgramData\Airtostrongs =>PUP.Optional.Salus
C:\ProgramData\b945d8214d7047bd89ea300fbaf0006d =>Adware.Suspect
C:\ProgramData\CloudPrinter =>.SUP.Linkury
C:\ProgramData\Logic Handler =>PUP.Optional.LogicHandler
C:\ProgramData\WindowsErrorReporting =>Trojan.GenericKD
C:\Users\eric\AppData\Roaming\dll4c4dqy3m\vlsmh5qj2bq.exe =>Heuristic.Wizzcaster
C:\Users\eric\AppData\Roaming\dll4c4dqy3m =>Heuristic.Wizzcaster
C:\Users\eric\AppData\Roaming\EpicNet Inc =>Adware.MSIL
C:\Users\eric\AppData\Roaming\gplyra =>.SUP.Gplyra
C:\Users\eric\AppData\Roaming\Imminent =>PUP.Optional.IMBooster
C:\Users\eric\AppData\Roaming\Microleaves =>.SUP.Microleaves
C:\Users\eric\AppData\Roaming\n2dddu3iwrk\yhpppi0pl3s.exe =>Heuristic.Wizzcaster
C:\Users\eric\AppData\Roaming\n2dddu3iwrk =>Heuristic.Wizzcaster
C:\Users\eric\AppData\Roaming\py4fb2s5qpf\hsftbemcrx5.exe =>Heuristic.Wizzcaster
C:\Users\eric\AppData\Roaming\py4fb2s5qpf =>Heuristic.Wizzcaster
C:\Users\eric\AppData\Roaming\Solvusoft =>.SUP.Solvusoft
C:\Users\eric\AppData\Roaming\Tencent =>.SUP.Tencent
C:\Users\eric\AppData\Local\AdvinstAnalytics =>.SUP.Various
C:\Windows\System32\drivers\mwescontroller.sys =>PUP.Optional.WebShield
HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{ielnksrch} =>.SUP.Linkury
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Windows KMS Activator Ultimate 2017 v3_RASAPI32 =>Hacktool.Office
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Windows KMS Activator Ultimate 2017 v3_RASMANCS =>Hacktool.Office
C:\Users\eric\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_airdroid.fr.softonic.com_0.localstorage =>.SUP.Softonic
C:\Users\eric\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_search.safefinder.com_0.localstorage =>PUP.Optional.Browser
C:\Users\eric\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_search.snapdo.com_0.localstorage =>PUP.Optional.SmartBar
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\03D22C9C66915D58C88912B64C1F984B8344EF09 =>PUM.Misplaced.Certificate [Comodo Security]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\0F684EC1163281085C6AF20528878103ACEFCAAB =>PUM.Misplaced.Certificate [F-Secure]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\1667908C9E22EFBD0590E088715CC74BE4C60884 =>PUM.Misplaced.Certificate [FRISK]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\18DEA4EFA93B06AE997D234411F3FD72A677EECE =>PUM.Misplaced.Certificate [Bitdefender]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\2026D13756EB0DB753DF26CB3B7EEBE3E70BB2CF =>PUM.Misplaced.Certificate [G-Data]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\249BDA38A611CD746A132FA2AF995A2D3C941264 =>PUM.Misplaced.Certificate [Malwarebytes]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\31AC96A6C17C425222C46D55C3CCA6BA12E54DAF =>PUM.Misplaced.Certificate [Symantec]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\331E2046A1CCA7BFEF766724394BE6112B4CA3F7 =>PUM.Misplaced.Certificate [Trend Micro]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\3353EA609334A9F23A701B9159E30CB6C22D4C59 =>PUM.Misplaced.Certificate [Webroot]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\373C33726722D3A5D1EDD1F1585D5D25B39BEA1A =>PUM.Misplaced.Certificate [SUPERAntiSpyware]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\3850EDD77CC74EC9F4829AE406BBF9C21E0DA87F =>PUM.Misplaced.Certificate [Kaspersky]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\3D496FA682E65FC122351EC29B55AB94F3BB03FC =>PUM.Misplaced.Certificate [AVG Technologies]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\4243A03DB4C3C15149CEA8B38EEA1DA4F26BD159 =>PUM.Misplaced.Certificate [PC Tools]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\42727E052C0C2E1B35AB53E1005FD9EDC9DE8F01 =>PUM.Misplaced.Certificate [K7 Computing]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\4420C99742DF11DD0795BC15B7B0ABF090DC84DF =>PUM.Misplaced.Certificate [Doctor Web]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\4C0AF5719009B7C9D85C5EAEDFA3B7F090FE5FFF =>PUM.Misplaced.Certificate [Emsisoft]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\5240AB5B05D11B37900AC7712A3C6AE42F377C8C =>PUM.Misplaced.Certificate [CheckPoint]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\5DD3D41810F28B2A13E9A004E6412061E28FA48D =>PUM.Misplaced.Certificate [Emsisoft]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\7457A3793086DBB58B3858D6476889E3311E550E =>PUM.Misplaced.Certificate [K7 Computing]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\76A9295EF4343E12DFC5FE05DC57227C1AB00D29 =>PUM.Misplaced.Certificate [BullGuard]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\775B373B33B9D15B58BC02B184704332B97C3CAF =>PUM.Misplaced.Certificate [McAfee]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\872CD334B7E7B3C3D1C6114CD6B221026D505EAB =>PUM.Misplaced.Certificate [Comodo Security]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\88AD5DFE24126872B33175D1778687B642323ACF =>PUM.Misplaced.Certificate [McAfee]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\9132E8B079D080E01D52631690BE18EBC2347C1E =>PUM.Misplaced.Certificate [Adaware Software]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\982D98951CF3C0CA2A02814D474A976CBFF6BDB1 =>PUM.Misplaced.Certificate [Safer Networking]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\9A08641F7C5F2CCA0888388BE3E5DBDDAAA3B361 =>PUM.Misplaced.Certificate [Webroot]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\9C43F665E690AB4D486D4717B456C5554D4BCEB5 =>PUM.Misplaced.Certificate [ThreatTrack]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\9E3F95577B37C74CA2F70C1E1859E798B7FC6B13 =>PUM.Misplaced.Certificate [CurioLab]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\A1F8DCB086E461E2ABB4B46ADCFA0B48C58B6E99 =>PUM.Misplaced.Certificate [Avira Operations]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\A5341949ABE1407DD7BF7DFE75460D9608FBC309 =>PUM.Misplaced.Certificate [BullGuard]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\A59CC32724DD07A6FC33F7806945481A2D13CA2F =>PUM.Misplaced.Certificate [ESET]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\AB7E760DA2485EA9EF5A6EEE7647748D4BA6B947 =>PUM.Misplaced.Certificate [AVG Technologies]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\AD4C5429E10F4FF6C01840C20ABA344D7401209F =>PUM.Misplaced.Certificate [Avast Software]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\AD96BB64BA36379D2E354660780C2067B81DA2E0 =>PUM.Misplaced.Certificate [Symantec]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\B8EBF0E696AF77F51C96DB4D044586E2F4F8FD84 =>PUM.Misplaced.Certificate [Malwarebytes]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\CDC37C22FE9272D8F2610206AD397A45040326B8 =>PUM.Misplaced.Certificate [Trend Micro]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\D3F78D747E7C5D6D3AE8ABFDDA7522BFB4CBD598 =>PUM.Misplaced.Certificate [Kaspersky]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\DB303C9B61282DE525DC754A535CA2D6A9BD3D87 =>PUM.Misplaced.Certificate [ThreatTrack]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\DB77E5CFEC34459146748B667C97B185619251BA =>PUM.Misplaced.Certificate [Avast Software]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\E22240E837B52E691C71DF248F12D27F96441C00 =>PUM.Misplaced.Certificate [Total Defense]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\E513EAB8610CFFD7C87E00BCA15C23AAB407FCEF =>PUM.Misplaced.Certificate [AVG Technologies]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\ED841A61C0F76025598421BC1B00E24189E68D54 =>PUM.Misplaced.Certificate [Bitdefender]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\F83099622B4A9F72CB5081F742164AD1B8D048C9 =>PUM.Misplaced.Certificate [ESET]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\FBB42F089AF2D570F2BF6F493D107A3255A9BB1A =>PUM.Misplaced.Certificate [Panda Security]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\FFFA650F2CB2ABC0D80527B524DD3F9FC172C138 =>PUM.Misplaced.Certificate [Doctor Web]
---\\ Récapitulatif des éléments trouvés sur votre station (38) - 1s
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>PUP.Optional.WebShield
https://nicolascoolman.eu/2017/02/16/hacktool-kmspico/ =>HackTool.KMSpico
https://nicolascoolman.eu/2017/09/13/adware-msil/ =>Adware.MSIL
https://nicolascoolman.eu/2017/08/10/adware-cloudatlas/ =>Adware.CloudAtlas
https://nicolascoolman.eu/2017/09/07/pup-optional-salus/ =>.SUP.Linkury
https://nicolascoolman.eu/2017/09/12/origine-lignes-orphelines/ =>.SUP.Orphan
https://nicolascoolman.eu/2017/01/22/adware-gupdate/ =>Adware.GUpdate
https://www.nicolascoolman.com/fr/pup-optional-tuto4pc/ =>.SUP.Tuto4PC
https://nicolascoolman.eu/2017/03/11/pup-optional-crossrider/ =>Adware.CrossRider
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.JawegoPartners
https://nicolascoolman.eu/2017/09/07/pup-optional-salus/ =>PUP.Optional.Salus
https://www.nicolascoolman.com/fr/hijacker-trovigo/ =>PUP.Optional.SoftwareEngine
https://nicolascoolman.eu/2017/02/23/tencentadressbar/ =>.SUP.Tencent
https://nicolascoolman.eu/2017/03/14/superfluous-trotux/ =>.SUP.Trotux
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.WinZipper
https://nicolascoolman.eu/2017/02/06/superfluous-conduit/ =>.SUP.Conduit
https://nicolascoolman.eu/2017/06/21/adware-fastdatax/ =>Adware.FastDataX
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Magicbit
https://www.nicolascoolman.com/fr/trojan-vonteera/ =>PUP.Optional.Vonteera
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Downloader
https://www.anti-malware.top/2016/05/24/adware-amonetize/ =>Adware.Amonetize
https://nicolascoolman.eu/2017/09/15/adware-wizzcaster/ =>Adware.Wizzcaster
https://www.anti-malware.top/2016/05/10/superfluous-pccleanplus/ =>.SUP.PCCleanPlus
https://nicolascoolman.eu/2017/03/02/adware-suspect/ =>Adware.Suspect
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Polluteware
https://nicolascoolman.eu/2017/01/04/pup-optional-logichandler/ =>PUP.Optional.LogicHandler
https://nicolascoolman.eu/2017/04/25/trojan-generickd/ =>Trojan.GenericKD
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>Heuristic.Wizzcaster
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Gplyra
https://nicolascoolman.eu/2017/09/08/adware-imbooster/ =>PUP.Optional.IMBooster
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Microleaves
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Solvusoft
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Various
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>Hacktool.Office
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Softonic
https://nicolascoolman.eu/2017/01/26/hijacker-browser/ =>PUP.Optional.Browser
https://nicolascoolman.eu/2017/09/09/pup-optional-smartbar/ =>PUP.Optional.SmartBar
https://nicolascoolman.eu/2017/06/26/trojan-certlock/ =>PUM.Misplaced.Certificate
~ Unselected Options: O40, O82,
~ End of the scan, 58807 items in 17mn32s (1753)(0)