Publicité
Publicité
Commentaire : merci pour fair ca ^^
Format du document : text/plain
Prévisualisation
~ ZHPDiag v2018.5.9.102 Par Nicolas Coolman (2018/05/09)
~ Démarré par Utilisateur (Administrator) (2018/05/09 20:38:34)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Certificate ZHPDiag: Legal
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\Utilisateur\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\Utilisateur\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Démarrage du système: Normal (Normal boot)
Windows 8.1 Pro, 64-bit (Build 9600) =>.Microsoft Corporation
---\\ NAVIGATEURS INTERNET (4) - 0s
~ GCIE: Google Chrome v66.0.3359.139
~ MFIE: Mozilla Firefox 47.0.2 (x86 fr)
~ MFIE: Ground Control 2 - Operation Exodus_Seraph1_is1
~ MSIE: Internet Explorer v11.0.9600.19003
---\\ INFORMATIONS SUR LES PRODUITS WINDOWS (3) - 3s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK
---\\ LOGICIELS DE PROTECTION (2) - 5s
Windows Defender (Deactivate)
Malwarebytes version 3.5.1.2522 v3.5.1.2522 (Protection)
---\\ SURVEILLANCE LOGICIEL (3) - 5s
~ Adobe Flash Player 15 Plugin (Surveillance)
~ Adobe Flash Player 29 PPAPI (Surveillance)
~ Adobe Reader XI (Surveillance)
---\\ LOGICIELS DE PARTAGE P2P (1) - 5s
~ µTorrent v3.5.3.44396 (P2P)
---\\ INFORMATIONS SUR LE SYSTÈME (6) - 0s
~ Operating System: Intel64 Family 6 Model 23 Stepping 10, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 3140.436 MB (47% free) : OK =>.RAM Value
System Restore: Activé (Enable)
System drive C: has 172 GB (69%) free of 249 GB : OK =>.Disk Space
---\\ MODE DE CONNEXION AU SYSTÈME (3) - 0s
~ Computer Name: BOUZID
~ User Name: Utilisateur
~ Logged in as Administrator
---\\ ÉNUMÉRATION DES UNITÉS DE STOCKAGE (2) - 0s
~ Drive C: has 172 GB free of 249 GB (System)
~ Drive D: has 39 GB free of 39 GB
---\\ ÉTAT DU CENTRE DE SÉCURITÉ WINDOWS (11) - 0s
[HKLM\Software\WOW6432Node\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\Software\WOW6432Node\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\Software\WOW6432Node\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM64\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
---\\ RECHERCHE PARTICULIÈRE DE FICHIERS GÉNÉRIQUES (25) - 3s
[MD5.ED6B4C95E2A6D67480B9DBB8A8E7D9B4] - 27/08/2016 - (.Microsoft Corporation - Explorateur Windows.) -- C:\windows\Explorer.exe [2755504] =>.Microsoft Windows®
[MD5.6C308D32AFA41D26CE2A0EA8F7B79565] - 29/10/2014 - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\windows\System32\rundll32.exe [54784] =>.Microsoft Corporation
[MD5.D9516405E05F24EDCD90B1988FAF3948] - 14/01/2017 - (.Microsoft Corporation - Application de démarrage de Windows.) -- C:\windows\System32\Wininit.exe [146944] =>.Microsoft Corporation
[MD5.79A5C72A23A56FC20D2572F9095AE7F5] - 22/04/2018 - (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\windows\System32\wininet.dll [3241472] =>.Microsoft Corporation
[MD5.4294D7AD504EA206A4A03DB29311B6C2] - 02/01/2018 - (.Microsoft Corporation - Application d’ouverture de session Windows.) -- C:\windows\System32\Winlogon.exe [571392] =>.Microsoft Corporation
[MD5.AFCAB4DC692CCE37E283B00E2D7B438F] - 21/12/2013 - (.Microsoft Corporation - Bibliothèque de licences.) -- C:\windows\System32\sppcomapi.dll [447488] =>.Microsoft Corporation
[MD5.764E397D1664C3CE690AC35D3DD7085A] - 07/09/2017 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\windows\System32\dnsapi.dll [656896] =>.Microsoft Corporation
[MD5.19992FFEC28B2CE8BDFCE1E7F51C4FAF] - 07/09/2017 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\windows\Syswow64\dnsapi.dll [499200] =>.Microsoft Corporation
[MD5.E37F897ED7B5AFF79B1398258DB96BD9] - 30/09/2013 - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) -- C:\windows\System32\fr-FR\user32.dll.mui [19456] =>.Microsoft Corporation
[MD5.B246BEE99740A2A357E21D863A18774D] - 10/01/2018 - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) -- C:\windows\System32\drivers\AFD.sys [559616] =>.Microsoft Corporation
[MD5.74B14192CF79A72F7536B27CB8814FBD] - 22/08/2013 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\windows\System32\drivers\atapi.sys [26464] =>.Microsoft Corporation
[MD5.2FA6510E33F7DEFEC03658B74101A9B9] - 22/08/2013 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\windows\System32\drivers\Cdfs.sys [88576] =>.Microsoft Corporation
[MD5.D61EDE3D49B04E703AEC3B111C763F42] - 05/12/2017 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\windows\System32\drivers\Cdrom.sys [165376] =>.Microsoft Corporation
[MD5.D1049D4D1311D43F6FCF180CAA5BF78B] - 02/01/2018 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\windows\System32\drivers\DfsC.sys [138752] =>.Microsoft Corporation
[MD5.D4B7ED39C7900384D9E5C1283F1E7926] - 24/07/2014 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\windows\System32\drivers\HDAudBus.sys [76800] =>.Microsoft Corporation
[MD5.49EE0AE9E5B64FFBBD06D55C4984B598] - 04/11/2014 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\windows\System32\drivers\i8042prt.sys [108544] =>.Microsoft Corporation
[MD5.B7342B3C58E91107F6E946A93D9D4EFD] - 27/11/2013 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\windows\System32\drivers\IpNat.sys [142848] =>.Microsoft Corporation
[MD5.CF49856813FFDF2EB251762BB8B675C8] - 10/02/2018 - (.Microsoft Corporation - Minirdr SMB Windows NT.) -- C:\windows\System32\drivers\MRxSmb.sys [401408] =>.Microsoft Corporation
[MD5.0FE750800DEEE91D22399D081371BA79] - 11/08/2017 - (.Microsoft Corporation - MBT Transport driver.) -- C:\windows\System32\drivers\netBT.sys [281600] =>.Microsoft Corporation
[MD5.EE9B628D84DE372953A6D30AAB02DBD6] - 02/01/2018 - (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\windows\System32\drivers\ntfs.sys [2013016] =>.Microsoft Corporation
[MD5.57DCE4FB0467986AE78E1C6FC5240D32] - 11/08/2016 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\windows\System32\drivers\Parport.sys [96256] =>.Microsoft Corporation
[MD5.235624C147E3CB4C288D5D3D8E8D64A2] - 02/02/2016 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\windows\System32\drivers\Rasl2tp.sys [112640] =>.Microsoft Corporation
[MD5.680C1DAE268B6FB67FA21B389A8B79EF] - 30/09/2013 - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RD.) -- C:\windows\System32\drivers\rdpdr.sys [195584] =>.Microsoft Corporation
[MD5.576FA545FAB846B06E79B324160DE25C] - 02/08/2017 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\windows\System32\drivers\tdx.sys [107520] =>.Microsoft Corporation
[MD5.17F7B0F2298D97F4B6C7A69511033D3D] - 14/03/2016 - (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\windows\System32\drivers\volsnap.sys [316760] =>.Microsoft Corporation
---\\ LISTE DES SERVICES (Non Microsoft et non désactivés) (5) - 3s
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated®
O23 - Service: egGetSvc (egGetSvc) . (.Copyright (C) EagleGet 2014~2015 - EGMonitor.) - C:\Program Files (x86)\EagleGet\EGMonitor.exe {4B97BFE2D80C6C48}
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) . (.Intel Corporation - igfxCUIService Module.) - C:\windows\System32\igfxCUIService.exe =>.Intel Corporation
O23 - Service: Malwarebytes Service (MBAMService) . (.Malwarebytes - Malwarebytes Service.) - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe =>.Malwarebytes Corporation®
---\\ SERVICES NON MICROSOFT (SR=Démarré,SS=Stoppé) (20) - 21s
SR - Auto [28/03/2017] [ 82640] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated®
SS - Demand [08/05/2018] [ 272384] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe =>.Adobe Systems Incorporated®
SS - Demand [09/04/2014] [ 279024] Intel(R) Content Protection HECI Service (cphs) . (.Intel Corporation.) - C:\Windows\SysWOW64\IntelCpHeciSvc.exe =>.Intel Corporation - Software and Firmware Products®
SS - Disabl [17/01/2018] [ 22304] Intel(R) Driver & Support Assistant (DSAService) . (.Intel.) - C:\Program Files (x86)\Intel Driver and Support Assistant\DSAService.exe =>.Intel(R) Driver & Support Assistant®
SS - Auto [20/09/2017] [ 247992] egGetSvc (egGetSvc) . (.Copyright (C) EagleGet 2014~2015.) - C:\Program Files (x86)\EagleGet\EGMonitor.exe {4B97BFE2D80C6C48}
SS - Disabl [07/03/2018] [ 888080] Energy Server Service queencreek (ESRV_SVC_QUEENCREEK) . (.Copyright (C) 2018 Intel Corporation. All rights rese.) - C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe =>.Intel(R) Software Development Products®
SS - Auto [28/02/2018] [ 153168] Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SS - Demand [28/02/2018] [ 153168] Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SS - Disabl [11/04/2014] [ 16232] Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) . (.Intel Corporation.) - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe =>.Intel Corporation - Intel® Rapid Storage Technology®
SS - Demand [24/04/2012] [ 169752] Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe =>.Intel Corporation®
SS - Auto [09/04/2014] [ 296432] Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) . (.Intel Corporation.) - C:\windows\System32\igfxCUIService.exe =>.Intel Corporation - Software and Firmware Products®
SS - Disabl [27/08/2013] [ 747520] Intel(R) Capability Licensing Service Interface (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe =>.Intel(R) Corporation
SS - Disabl [27/08/2013] [ 828376] Intel(R) Capability Licensing Service TCP IP Interface (Intel(R) Capability Licensing Service TCP IP Interface) . (.Intel(R) Corporation.) - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe =>.Intel® Trusted Connect Service®
SS - Disabl [13/07/2017] [ 18168] Intel(R) SUR QC Software Asset Manager (Intel(R) SUR QC SAM) . (.Intel Corporation.) - C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe =>.Intel(R) Software Asset Manager®
SS - Disabl [16/09/2013] [ 169432] Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe =>.Intel Corporation - Intel® Management Engine Firmware®
SS - Disabl [16/09/2013] [ 390616] Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe =>.Intel Corporation - Software and Firmware Products®
SR - Auto [03/05/2018] [ 6541008] Malwarebytes Service (MBAMService) . (.Malwarebytes.) - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe =>.Malwarebytes Corporation®
SS - Disabl [26/05/2015] [ 148080] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe =>.Mozilla Corporation®
SS - Disabl [07/03/2018] [ 183568] Intel(R) System Usage Report Service SystemUsageReportSvc_Q (SystemUsageReportSvc_QUEENCREEK) . (.Copyright (C) 2018 Intel Corporation. All rights rese.) - C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe =>.Intel(R) Software Development Products®
SS - Disabl [07/03/2018] [ 888080] User Energy Server Service queencreek (USER_ESRV_SVC_QUEENCREEK) . (.Copyright (C) 2018 Intel Corporation. All rights rese.) - C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe =>.Intel(R) Software Development Products®
---\\ TÂCHES PLANIFIÉES EN AUTOMATIQUE (Registre) (8) - 11s
O38 - TASK: {7A3681E3-9A2A-403D-AAB2-6E68647929B7} [64Bits][\GoogleUpdateTaskMachineUA] - (.Google Inc. - Programme d'installation de Google.) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168] =>.Google Inc.
O38 - TASK: {8568CE40-6AD1-494A-9DB0-095C78248437} [64Bits][\GoogleUpdateTaskMachineCore] - (.Google Inc. - Programme d'installation de Google.) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168] =>.Google Inc.
O38 - TASK: {B2311023-CF8E-4C00-93A8-C1BF945F5EB1} [64Bits][\Adobe Flash Player Updater] - (.Adobe Systems Incorporated - Adobe® Flash® Player Update Service 29.0 r0.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [272384] =>.Adobe Systems Incorporated
O38 - TASK: {DE122730-2FA3-44B5-96B9-3DB1259A7CD8} [64Bits][\Adobe Flash Player PPAPI Notifier] - (.Adobe Systems Incorporated - Adobe® Flash® Player Installer/Uninstaller.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_29_0_0_171_pepper.exe [1367552] =>.Adobe Systems Incorporated
C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [/ua] =>.Google Inc.
C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [/c] =>.Google Inc.
C:\windows\System32\Tasks\Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [] =>.Adobe Systems Incorporated
C:\windows\System32\Tasks\Adobe Flash Player PPAPI Notifier - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_29_0_0_171_pepper.exe [-check pepperplugin] =>.Adobe Systems Incorporated
---\\ APPLICATIONS LANCÉES AU DÉMARRAGE DU SYSTÈME (8) - 1s
O4 - HKLM\..\Run: [Classic Start Menu] . (.IvoSoft - Classic Start Menu.) -- C:\Program Files\Classic Shell\ClassicStartMenu.exe =>.IvoSoft
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe =>.Realtek Semiconductor Corp®
O4 - HKLM\..\Run: [IAStorIcon] . (.Intel Corporation - Delayed launcher.) -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe =>.Intel Corporation
O4 - HKCU\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Users\Utilisateur\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe =>.Adobe Systems, Incorporated®
O4 - HKLM\..\Wow6432Node\Run: [PWRISOVM.EXE] . (.Power Software Ltd - PowerISO Virtual Drive Manager.) -- C:\Program Files\PowerISO\PWRISOVM.EXE =>.Power Software Ltd
O4 - HKLM\..\Wow6432Node\Run: [DSATray] . (.Intel - Intel Driver & Support Assistant Tray.) -- C:\Program Files (x86)\Intel Driver and Support Assistant\DSATray.exe =>.Intel(R) Driver & Support Assistant®
O4 - HKUS\S-1-5-21-509030791-535364451-1462276753-1001\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Users\Utilisateur\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
---\\ PROCESSUS LANCÉS (17) - 3s
[MD5.52997B1282BDAFC4275874B8990F9BE3] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [82640] [PID.1452] =>.Adobe Systems, Incorporated®
[MD5.F7265B7490428499F2FE409FA9247866] - (.Malwarebytes - Malwarebytes Service.) -- C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6541008] [PID.1764] =>.Malwarebytes Corporation®
[MD5.F05FB26B5F0E45700803F122E1764FA4] - (.Malwarebytes - Malwarebytes Tray Application.) -- C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe [3768528] [PID.3076] =>.Malwarebytes Corporation®
[MD5.4984CCE4890E3AB3206C01E1F70E804E] - (.IvoSoft - Classic Start Menu.) -- C:\Program Files\Classic Shell\ClassicStartMenu.exe [164080] [PID.3160] =>.IvoSoft
[MD5.EA66582423B8ED237DAAE8B927191F22] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1586008] [PID.4088] =>.Google Inc®
[MD5.EA66582423B8ED237DAAE8B927191F22] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1586008] [PID.2068] =>.Google Inc®
[MD5.11F0645B98A899B8DEA50807D94C62A2] - (.Facebook - FacebookGameroom.) -- C:\Users\Utilisateur\AppData\Local\Facebook\Games\FacebookGameroom.exe [570232] [PID.220] =>.Facebook, Inc.®
[MD5.EA66582423B8ED237DAAE8B927191F22] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1586008] [PID.612] =>.Google Inc®
[MD5.EA66582423B8ED237DAAE8B927191F22] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1586008] [PID.1716] =>.Google Inc®
[MD5.EA66582423B8ED237DAAE8B927191F22] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1586008] [PID.2592] =>.Google Inc®
[MD5.EA66582423B8ED237DAAE8B927191F22] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1586008] [PID.2276] =>.Google Inc®
[MD5.900236357482B00944826354EEC6B93F] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe [288848] [PID.4440] =>.Google Inc®
[MD5.F107219B133E7E574DA052C5C88FFBF3] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe [366672] [PID.4448] =>.Google Inc®
[MD5.EA66582423B8ED237DAAE8B927191F22] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1586008] [PID.4996] =>.Google Inc®
[MD5.EB7620B5338B13D2338C809E7622842B] - (.The CefSharp Authors - Facebook Gameroom Browser.) -- C:\Users\Utilisateur\AppData\Local\Facebook\Games\Facebook Gameroom Browser.exe [43896] [PID.2644] =>.Facebook, Inc.®
[MD5.EA66582423B8ED237DAAE8B927191F22] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1586008] [PID.2664] =>.Google Inc®
[MD5.51E3CAFCDF2871AC391551FEAD2CBFFA] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\Utilisateur\Downloads\ZHPDiag3.exe [3092864] [PID.2824] =>.Nicolas Coolman
---\\ CHROME, Démarrage, Recherche, Extensions (15) - 1s
G0 - GCSP: Preferences [User Data\Default][HomePage] http://api.userstyles.org
G0 - GCSP: Preferences [User Data\Default][HomePage] http://apis.google.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://clients5.google.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://lh3.googleusercontent.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://ogs.google.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://s2.googleusercontent.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://ssl.gstatic.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google-analytics.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google.dz =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.gstatic.com =>.Google Inc.
G2 - GCE: Preference [Utilisateur][User Data\Default] [fjnbnpbmkenffdnngjfgmeleoegfcffe] Stylish =>.userstyles.org
G2 - GCE: Preference [Utilisateur][User Data\Default] [gighmmpiobklfepjocnamgkkbiglidom] Michael Gundlach =>.Wladimir Palant {AdBlock}
G2 - GCE: Preference [Utilisateur][User Data\Default] [gkojfkhlekighikafcpjkiklfbnlmeio] =>.Hola.org {Unlimited Free VPN}
G2 - GCE: Preference [Utilisateur][User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] =>.Google Inc. {Wallet}
G2 - GCE: Preference [Utilisateur][User Data\Default] [pkedcjkdefgpdelpbcmbmeomcjbeemfm] Chrome Media Router =>.Google Inc.
---\\ FIREFOX, Plugins,Démarrage,Recherche,Extensions (6) - 4s
P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\e10srollout@mozilla.org.xpi =>.Mozilla Corporation
P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\firefox@getpocket.com.xpi =>.Mozilla Corporation
P2 - EXT FILE: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\loop@mozilla.org.xpi
P2 - EXT FILE: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\websensehelper@mozilla.org.xpi
P2 - FPN: [HKCU] [ubisoft.com/uplaypc] - (...) -- C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_223.dll =>.Adobe Systems Incorporated
---\\ INTERNET EXPLORER,Démarrage,Recherche,URLSearchHook (16) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R3 - URLSearchHook: (no name)[HKCU] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (11.00.9600.18817 (winblue_ltsb.170907-0600)) -- C:\Windows\System32\ieframe.dll =>.Microsoft Corporation
R4 - HKLM\Software\WOW6432Node\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 0
---\\ INTERNET EXPLORER, Site de confiance et site sensible (2) - 0s
~ Microsoft Internet Explorer Restricted Site(s) Domains: 0(Good) / 0(Bad)
~ Microsoft Internet Explorer Restricted Site(s) EscDomains: 0(Good) / 0(Bad)
---\\ INTERNET EXPLORER,Proxy Management (5) - 1s
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 =>.Default.Value
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 =>.Default.Value
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 =>.Default.Value
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
R5 - HKLM\SYSTEM\CurrentControlSet\services\NlaSvc\Parameters\Internet\ManualProxies [] =>.Microsoft
---\\ INTERNET EXPLORER,IniFiles, Autoloading Programs (3) - 0s
F2 - REG:system.ini: UserInit=userinit.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: Shell=C:\windows\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: VMApplet=C:\windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.) =>.Microsoft Corporation
---\\ ÉTUDE DU FICHIER HOSTS (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (22)
---\\ RACCOURCIS GLOBAL STARTUP (87) - 18s
O4 - GS\Desktop [Administrateur]: Cheat Engine.lnk . (...) C:\Program Files (x86)\Cheat Engine 6.7\Cheat Engine.exe =>.Cheat Engine®
O4 - GS\Desktop [Administrateur]: Facebook Gameroom.lnk . (.Facebook - FacebookGameroom.) C:\Users\Utilisateur\AppData\Local\Facebook\Games\FacebookGameroom.exe =>.Facebook, Inc.®
O4 - GS\Desktop [Administrateur]: Ground Control 2 - Operation Exodus.lnk . (.Massive Entertainment AB - Ground Control II.) C:\Program Files (x86)\Ground Control 2 - Operation Exodus\gcii.exe
O4 - GS\Desktop [Administrateur]: Luxor 4 Quest For The Afterlife.lnk . (...) C:\Program Files (x86)\Games\Luxor 4 Quest For The Afterlife\LuxorQuestForTheAfterlife.exe
O4 - GS\Desktop [Administrateur]: Might & Magic Heroes VI.lnk . (.Virtuos - Might & Magic® Heroes VI Shades of Darkness.) C:\Program Files (x86)\Ubisoft\Might & Magic Heroes VI\Might & Magic Heroes VI.exe /offline {1D7A471ED75B2DFDFEFB0F64341859AD} =>.Virtuos
O4 - GS\Desktop [Administrateur]: Play Desperados.LNK . (.Spellbound Software - Desperados Loader.) C:\Desperados\Desperados.exe
O4 - GS\Desktop [Administrateur]: Uplay.lnk . (.Ubisoft - Uplay launcher.) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\Uplay.exe =>.Ubisoft Entertainment Sweden AB®
O4 - GS\Desktop [Administrateur]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Utilisateur\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Desktop [Administrateur]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\Utilisateur\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - GS\Quicklaunch [Administrateur]: Bigasoft Total Video Converter 5.lnk . (.Bigasoft Corporation - Total Video Converter.) C:\Program Files (x86)\Bigasoft\Total Video Converter 5\videoconverter.exe =>.Bigasoft Corporation
O4 - GS\Quicklaunch [Administrateur]: Bigasoft WTV Converter 5.lnk . (.Bigasoft Corporation - WTV Converter.) C:\Program Files (x86)\Bigasoft\WTV Converter 5\videoconverter.exe =>.Bigasoft Corporation
O4 - GS\Quicklaunch [Administrateur]: EagleGet.lnk . (.EagleGet.com - EagleGet Free Downloader.) C:\Program Files (x86)\EagleGet\EagleGet.exe {4B97BFE2D80C6C48} =>.EagleGet.com
O4 - GS\Quicklaunch [Administrateur]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Administrateur]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [Administrateur]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\Utilisateur\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - GS\sendTo [Administrateur]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\windows\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\TaskBar [Administrateur]: Counter Strike Global Offensive Warzone.lnk . (...) C:\Program Files (x86)\Warzone\CSGO WaRzOnE\csgo_launcher.exe
O4 - GS\TaskBar [Administrateur]: Facebook Gameroom (2).lnk . (.Facebook - FacebookGameroom.) C:\Users\Utilisateur\AppData\Local\Facebook\Games\FacebookGameroom.exe fbgames://windows_startup/ =>.Facebook, Inc.®
O4 - GS\TaskBar [Administrateur]: Google Chrome (2).lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [Administrateur]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [Administrateur]: Internet Explorer (2).lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\TaskBar [Administrateur]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Startup [Administrateur]: Facebook Gameroom.lnk . (.Facebook - FacebookGameroom.) C:\Users\Utilisateur\AppData\Local\Facebook\Games\FacebookGameroom.exe fbgames://windows_startup/ =>.Facebook, Inc.®
O4 - GS\Programs [Administrateur]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [Utilisateur]: Cheat Engine.lnk . (...) C:\Program Files (x86)\Cheat Engine 6.7\Cheat Engine.exe =>.Cheat Engine®
O4 - GS\Desktop [Utilisateur]: Facebook Gameroom.lnk . (.Facebook - FacebookGameroom.) C:\Users\Utilisateur\AppData\Local\Facebook\Games\FacebookGameroom.exe =>.Facebook, Inc.®
O4 - GS\Desktop [Utilisateur]: Ground Control 2 - Operation Exodus.lnk . (.Massive Entertainment AB - Ground Control II.) C:\Program Files (x86)\Ground Control 2 - Operation Exodus\gcii.exe
O4 - GS\Desktop [Utilisateur]: Luxor 4 Quest For The Afterlife.lnk . (...) C:\Program Files (x86)\Games\Luxor 4 Quest For The Afterlife\LuxorQuestForTheAfterlife.exe
O4 - GS\Desktop [Utilisateur]: Might & Magic Heroes VI.lnk . (.Virtuos - Might & Magic® Heroes VI Shades of Darkness.) C:\Program Files (x86)\Ubisoft\Might & Magic Heroes VI\Might & Magic Heroes VI.exe /offline {1D7A471ED75B2DFDFEFB0F64341859AD} =>.Virtuos
O4 - GS\Desktop [Utilisateur]: Play Desperados.LNK . (.Spellbound Software - Desperados Loader.) C:\Desperados\Desperados.exe
O4 - GS\Desktop [Utilisateur]: Uplay.lnk . (.Ubisoft - Uplay launcher.) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\Uplay.exe =>.Ubisoft Entertainment Sweden AB®
O4 - GS\Desktop [Utilisateur]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Utilisateur\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Desktop [Utilisateur]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\Utilisateur\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - GS\Quicklaunch [Utilisateur]: Bigasoft Total Video Converter 5.lnk . (.Bigasoft Corporation - Total Video Converter.) C:\Program Files (x86)\Bigasoft\Total Video Converter 5\videoconverter.exe =>.Bigasoft Corporation
O4 - GS\Quicklaunch [Utilisateur]: Bigasoft WTV Converter 5.lnk . (.Bigasoft Corporation - WTV Converter.) C:\Program Files (x86)\Bigasoft\WTV Converter 5\videoconverter.exe =>.Bigasoft Corporation
O4 - GS\Quicklaunch [Utilisateur]: EagleGet.lnk . (.EagleGet.com - EagleGet Free Downloader.) C:\Program Files (x86)\EagleGet\EagleGet.exe {4B97BFE2D80C6C48} =>.EagleGet.com
O4 - GS\Quicklaunch [Utilisateur]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Utilisateur]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [Utilisateur]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\Utilisateur\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - GS\sendTo [Utilisateur]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\windows\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\TaskBar [Utilisateur]: Counter Strike Global Offensive Warzone.lnk . (...) C:\Program Files (x86)\Warzone\CSGO WaRzOnE\csgo_launcher.exe
O4 - GS\TaskBar [Utilisateur]: Facebook Gameroom (2).lnk . (.Facebook - FacebookGameroom.) C:\Users\Utilisateur\AppData\Local\Facebook\Games\FacebookGameroom.exe fbgames://windows_startup/ =>.Facebook, Inc.®
O4 - GS\TaskBar [Utilisateur]: Google Chrome (2).lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [Utilisateur]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [Utilisateur]: Internet Explorer (2).lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\TaskBar [Utilisateur]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Startup [Utilisateur]: Facebook Gameroom.lnk . (.Facebook - FacebookGameroom.) C:\Users\Utilisateur\AppData\Local\Facebook\Games\FacebookGameroom.exe fbgames://windows_startup/ =>.Facebook, Inc.®
O4 - GS\Programs [Utilisateur]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\CommonDesktop [Public]: Adobe Reader XI.lnk . (.Adobe Systems Incorporated - Adobe Reader.) C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe =>.Adobe Systems, Incorporated®
O4 - GS\CommonDesktop [Public]: Age of Empires II HD The Forgotten.lnk . (.Microsoft Corporation - Age of Empires II HD.) C:\Program Files (x86)\Age of Empires II HD The Forgotten\AoK HD.exe =>.Microsoft Corporation
O4 - GS\CommonDesktop [Public]: Avidemux 2.7 - 64 bits.lnk . (.Free Software Foundation - Avidemux 2.7.0.) C:\Program Files\Avidemux 2.7 - 64 bits\avidemux.exe =>.Free Software Foundation
O4 - GS\CommonDesktop [Public]: Bigasoft Total Video Converter 5.lnk . (.Bigasoft Corporation - Total Video Converter.) C:\Program Files (x86)\Bigasoft\Total Video Converter 5\videoconverter.exe =>.Bigasoft Corporation
O4 - GS\CommonDesktop [Public]: Bigasoft WTV Converter 5.lnk . (.Bigasoft Corporation - WTV Converter.) C:\Program Files (x86)\Bigasoft\WTV Converter 5\videoconverter.exe =>.Bigasoft Corporation
O4 - GS\CommonDesktop [Public]: Counter Strike Global Offensive Warzone.lnk . (...) C:\Program Files (x86)\Warzone\CSGO WaRzOnE\csgo_launcher.exe
O4 - GS\CommonDesktop [Public]: CPUID CPU-Z.lnk . (.CPUID - CPU-Z Application.) C:\Program Files\CPUID\CPU-Z\cpuz.exe =>.CPUID®
O4 - GS\CommonDesktop [Public]: EagleGet.lnk . (.EagleGet.com - EagleGet Free Downloader.) C:\Program Files (x86)\EagleGet\EagleGet.exe {4B97BFE2D80C6C48} =>.EagleGet.com
O4 - GS\CommonDesktop [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\CommonDesktop [Public]: Heroes of Might and Magic V - Tribes of the East.lnk . (.Copyright В© Nival Interactive 2006. - Heroes of Might and Magic V.) C:\Program Files (x86)\Ubisoft\Heroes of Might and Magic V - Tribes of the East\bin\H5_Game.exe {4EEFD0B3B29244A76B5BDC4C5D86841C}
O4 - GS\CommonDesktop [Public]: Malwarebytes.lnk . (.Malwarebytes - Malwarebytes.) C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe =>.Malwarebytes Corporation®
O4 - GS\CommonDesktop [Public]: PowerISO.lnk . (.Power Software Ltd - PowerISO.) C:\Program Files\PowerISO\PowerISO.exe =>.Power Software Ltd
O4 - GS\CommonDesktop [Public]: VLC media player.lnk . (.VideoLAN - VLC media player.) C:\Program Files (x86)\VideoLAN\VLC\vlc.exe =>.VideoLAN®
O4 - GS\Programs [Public]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Accessories [Public]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) C:\windows\system32\notepad.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Calculator.lnk . (.Microsoft Corporation - Calculatrice de Windows.) C:\windows\system32\calc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Math Input Panel.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\mip.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.) C:\windows\system32\mspaint.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Connexion Bureau à distance.) C:\windows\system32\mstsc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - Outil Capture d’écran.) C:\windows\system32\SnippingTool.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sound Recorder.lnk . (.Microsoft Corporation - Magnétophone Windows.) C:\windows\system32\SoundRecorder.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Steps Recorder.lnk . (.Microsoft Corporation - Enregistreur d’actions.) C:\windows\system32\psr.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sticky Notes.lnk . (.Microsoft Corporation - Pense-bête.) C:\windows\system32\StikyNot.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Fax and Scan.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\windows\system32\WFS.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Application Windows Wordpad.) C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: XPS Viewer.lnk . (.Microsoft Corporation - Visionneuse XPS.) C:\windows\system32\xpsrchvw.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Table des caractères.) C:\windows\system32\charmap.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Adobe Reader XI.lnk . (...) C:\windows\Installer\{AC76BA86-7AD7-1036-7B44-AB0000000001}\SC_Reader.ico =>.Adobe Inc.
O4 - GS\ProgramsCommon [Public]: Age of Empires II HD The Forgotten.lnk . (.Microsoft Corporation - Age of Empires II HD.) C:\Program Files (x86)\Age of Empires II HD The Forgotten\AoK HD.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Camera.lnk . (.Microsoft Corporation - Camera.) C:\windows\Camera\Camera.exe =>.Microsoft Windows®
O4 - GS\ProgramsCommon [Public]: FileManager.lnk . (.Microsoft Corporation - OneDrive.) C:\windows\FileManager\FileManager.exe =>.Microsoft Windows®
O4 - GS\ProgramsCommon [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\ProgramsCommon [Public]: Immersive Control Panel.lnk . (.Microsoft Corporation - Windows Control Panel.) C:\windows\System32\Control.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Intel(R) HD Graphics Control Panel.lnk . (.Intel Corporation - GFXUIEX Module.) C:\windows\system32\GfxUIEx.exe =>.Intel Corporation
O4 - GS\ProgramsCommon [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\ProgramsCommon [Public]: PhotosApp.lnk . (.Microsoft Corporation - Photos.) C:\windows\FileManager\PhotosApp.exe =>.Microsoft Windows®
O4 - GS\ProgramsCommon [Public]: Search.lnk . (.Microsoft Corporation - Processus hôte Windows (Rundll32).) C:\windows\system32\rundll32.exe -sta {C90FB8CA-3295-4462-A721-2935E83694BA} =>..Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Windows Store.lnk . (...) C:\windows\WinStore\WinStore.htm =>.Microsoft Corporation
---\\ MODIFICATION DOMAINE/ADRESSES (DNS) (4) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpDomain = 2750U
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{3A90B4ED-038D-4D2C-B273-ECCC0BC2DA1D}: DhcpNameServer = 192.168.1.1 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{3A90B4ED-038D-4D2C-B273-ECCC0BC2DA1D}: DhcpDomain = 2750U
---\\ PROTOCOLE ADDITIONNEL (17) - 2s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll =>.Microsoft Corporation
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
---\\ REGISTRE AppInit_DLLs et Winlogon Notify (1) - 0s
O20 - Winlogon : UserInit . (.Microsoft Corporation - Application d’ouverture de session Userinit.) - C:\Windows\system32\userinit.exe =>.Microsoft Corporation
---\\ COMPOSANTS ACTIVESETUP INSTALLÉS (ASIC) (8) - 1s
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\System32\wmpdxm.dll =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files\Windows Mail\WinMail.exe =>.Microsoft Corporation
O40 - ASIC: Enable TLS1.1 and 1.2 [64Bits] - {66C64F22-FC60-4E6C-A6B5-F0D580E680CE} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\windows\System32\ie4uinit.exe =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Utilitaire d’installation du Lecteur Window.) -- C:\Windows\System32\unregmp2.exe =>.Microsoft Corporation
O40 - ASIC: Disable SSL3 [64Bits] - {7D715857-A67C-4C2F-A929-038448584D63} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\windows\System32\ie4uinit.exe =>.Microsoft Corporation
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\System32\mscories.dll =>.Microsoft Corporation®
O40 - ASIC: Google Chrome [64Bits] - {8A69D345-D564-463c-AFF1-A69D9E530F96} . (.Google Inc. - Google Chrome Installer.) -- C:\Program Files (x86)\Google\Chrome\Application\66.0.3359.139\Installer\chrmstp.exe =>.Google Inc®
---\\ LOGICIELS INSTALLÉS (43) - 15s
O42 - Logiciel: . . - (.Intel.) [HKLM][64Bits] -- {569F29BA-2D46-439B-8B7C-01D999B9201D} =>.Intel
O42 - Logiciel: . . . - (.Intel.) [HKLM][64Bits] -- {9F460796-0348-4B11-BCA0-714C4B85E3D7} =>.Intel
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- uTorrent =>.BitTorrent Inc®
O42 - Logiciel: 7-Zip 18.05 (x64 edition) - (.Igor Pavlov.) [HKLM][64Bits] -- {23170F69-40C1-2702-1805-000001000000} =>.Igor Pavlov
O42 - Logiciel: Adobe Flash Player 15 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Flash Player 29 PPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player PPAPI =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Reader XI (11.0.20) - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AB0000000001} =>.Adobe Systems Incorporated
O42 - Logiciel: Age of Empires II HD The Forgotten - (..) [HKLM][64Bits] -- QWdlb2ZFbXBpcmVzSUlIRFRoZUZvcmdvdHRlbg==_is1
O42 - Logiciel: Avidemux 2.7 - 64 bits - (.Mean.) [HKLM][64Bits] -- Avidemux 2.7 - 64 bits (64-bit) =>.Mean
O42 - Logiciel: Bigasoft Total Video Converter 5.0.7.5732 - (.Bigasoft Corporation.) [HKLM][64Bits] -- {A72CE741-1F32-4D79-BFFB-A714375C6750}_is1 =>.Bigasoft Corporation
O42 - Logiciel: Bigasoft WTV Converter 5.0.7.5736 - (.Bigasoft Corporation.) [HKLM][64Bits] -- {BF28F7E1-F3A0-40E5-B4E7-B6CFE20D5A50}_is1 =>.Bigasoft Corporation
O42 - Logiciel: Cheat Engine 6.7 - (.Cheat Engine.) [HKLM][64Bits] -- Cheat Engine 6.7_is1 =>.Cheat Engine®
O42 - Logiciel: Classic Shell - (.IvoSoft.) [HKLM][64Bits] -- {7C129CF8-199F-4269-AAEE-60B5D8D716E2} =>.IvoSoft
O42 - Logiciel: CPUID CPU-Z 1.83 - (.CPUID, Inc..) [HKLM][64Bits] -- CPUID CPU-Z_is1 =>.CPUID, Inc.
O42 - Logiciel: CSGO WaRzOnE - (.Warzone.) [HKLM][64Bits] -- {2F939E80-8D55-4E2E-BBA4-06AFCB9FA75C} =>.Warzone
O42 - Logiciel: CSGO WaRzOnE - (.Warzone.) [HKLM][64Bits] -- CSGO WaRzOnE 1.35.6.3 =>.Warzone
O42 - Logiciel: EagleGet version 2.0.4.28 - (.EagleGet.) [HKLM][64Bits] -- {F6D8142A-B30B-454B-9EE0-08A7B997DFE4}_is1 =>.EagleGet
O42 - Logiciel: Facebook Gameroom 1.21.6697.19829 - (.Facebook.) [HKLM][64Bits] -- {7BE2211B-F86C-40CA-A6CC-69564D9BD5E2} =>.Facebook
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome =>.Google Inc®
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} =>.Google Inc.
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} =>.Google Inc.
O42 - Logiciel: Ground Control 2 - Operation Exodus - (.Seraph1.) [HKLM][64Bits] -- Ground Control 2 - Operation Exodus_Seraph1_is1
O42 - Logiciel: Heroes of Might and Magic V - Tribes of the East - (..) [HKLM][64Bits] -- {66FF4C48-0083-4E60-8556-B883AB200092}
O42 - Logiciel: Intel(R) Computing Improvement Program - (.Intel Corporation.) [HKLM][64Bits] -- {F0385150-FF86-4A18-AA55-6ED9E5F87DA7} =>.Intel Corporation
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A} =>.Intel Corporation - Software and Firmware Products®
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA} =>.Intel Corporation - Software and Firmware Products®
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {409CB30E-E457-4008-9B1A-ED1B9EA21140} =>.Intel Corporation
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {B9C27F57-AB84-425F-9D00-E18C5D65C18D} =>.Intel Corporation
O42 - Logiciel: Intel® Driver & Support Assistant - (.Intel.) [HKLM][64Bits] -- {e7adbf16-34ad-490a-a4e8-feb60fb99973} =>.Intel(R) Driver & Support Assistant®
O42 - Logiciel: Intel® Trusted Connect Service Client - (.Intel Corporation.) [HKLM][64Bits] -- {B5E06417-A4AC-4225-B36E-7E34C91616E7} =>.Intel Corporation
O42 - Logiciel: Luxor 4 Quest For The Afterlife 1.00 - (..) [HKLM][64Bits] -- Luxor 4 Quest For The Afterlife 1.00
O42 - Logiciel: Malwarebytes version 3.5.1.2522 - (.Malwarebytes.) [HKLM][64Bits] -- {35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1 =>.Malwarebytes Corporation®
O42 - Logiciel: Might & Magic Heroes VI - Shades of Darkness - (.Ubisoft.) [HKLM][64Bits] -- {745D37C2-26F4-4B65-BA13-F9840EBFA75B} {1D7A471ED75B2DFDFEFB0F64341859AD} =>.Ubisoft
O42 - Logiciel: Mozilla Firefox 47.0.2 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 47.0.2 (x86 fr) =>.Mozilla Corporation®
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService =>.Mozilla
O42 - Logiciel: PHDGD Virtual VRAM Tool version 1.0 - (.PHDGD/IntelliModder32.) [HKLM][64Bits] -- {FB97A218-8B43-43BE-A721-C199C6589D08}_is1
O42 - Logiciel: PowerISO - (.Power Software Ltd.) [HKLM][64Bits] -- PowerISO =>.Power Software Ltd
O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476} =>.Realtek Semiconductor Corp®
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} =>.Realtek Semiconductor Corp®
O42 - Logiciel: Unlocker 1.9.2 - (.Cedrick Collomb.) [HKLM][64Bits] -- Unlocker =>.Cedrick Collomb
O42 - Logiciel: Uplay - (.Ubisoft.) [HKLM][64Bits] -- Uplay =>.Ubisoft Entertainment Sweden AB®
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player =>.VideoLAN
O42 - Logiciel: WinRAR 5.50 (32-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver =>.win.rar GmbH®
---\\ CLÉ DE REGISTRE SOFTWARE HKCU & HKLM (92) - 15s
HKLM\SOFTWARE\Adobe =>.Adobe
HKLM\SOFTWARE\ahead =>.Ahead
HKLM\SOFTWARE\AVAST Software =>.AVAST Software
HKLM\SOFTWARE\Avidemux 2.7 - 64 bits (64-bit) =>.Mean
HKLM\SOFTWARE\Bigasoft =>.Bigasoft Corporation
HKLM\SOFTWARE\Caphyon =>.Caphyon
HKLM\SOFTWARE\DownloadCenter =>.DownloadCenter
HKLM\SOFTWARE\EagleGet =>.EagleGet
HKLM\SOFTWARE\Google =>.Google
HKLM\SOFTWARE\Intel =>.Intel
HKLM\SOFTWARE\Khronos =>.Khronos
HKLM\SOFTWARE\Lavasoft =>.Lavasoft
HKLM\SOFTWARE\Macromedia =>.Macromedia
HKLM\SOFTWARE\Massive Entertainment AB =>.Massive Entertainment AB
HKLM\SOFTWARE\Mozilla =>.Mozilla
HKLM\SOFTWARE\mozilla.org =>.mozilla.org
HKLM\SOFTWARE\MozillaPlugins =>.MozillaPlugins
HKLM\SOFTWARE\Nero =>.Ahead Corporation
HKLM\SOFTWARE\Nuance =>.Nuance
HKLM\SOFTWARE\ODBC =>.DB Connectivity Solutions
HKLM\SOFTWARE\PowerISO =>.PowerISO Computing
HKLM\SOFTWARE\Realtek =>.Realtek Semiconductor Corp.
HKLM\SOFTWARE\Realtek Semiconductor Corp. =>.Realtek Semiconductor Corp.
HKLM\SOFTWARE\Spellbound Software
HKLM\SOFTWARE\Ubisoft =>.Ubisoft
HKLM\SOFTWARE\VideoLAN =>.VideoLAN
HKLM\SOFTWARE\Warzone =>.Warzone
HKLM\SOFTWARE\WinRAR =>.WinRAR
HKLM\SOFTWARE\RegisteredApplications =>.Microsoft Corporation
HKLM\SOFTWARE\WOW6432Node\Adobe =>.Adobe
HKLM\SOFTWARE\WOW6432Node\ahead =>.Ahead
HKLM\SOFTWARE\WOW6432Node\AVAST Software =>.AVAST Software
HKLM\SOFTWARE\WOW6432Node\Avidemux 2.7 - 64 bits (64-bit) =>.Mean
HKLM\SOFTWARE\WOW6432Node\Bigasoft =>.Bigasoft Corporation
HKLM\SOFTWARE\WOW6432Node\Caphyon =>.Caphyon
HKLM\SOFTWARE\WOW6432Node\DownloadCenter =>.DownloadCenter
HKLM\SOFTWARE\WOW6432Node\EagleGet =>.EagleGet
HKLM\SOFTWARE\WOW6432Node\Google =>.Google
HKLM\SOFTWARE\WOW6432Node\Intel =>.Intel
HKLM\SOFTWARE\WOW6432Node\Khronos =>.Khronos
HKLM\SOFTWARE\WOW6432Node\Lavasoft =>.Lavasoft
HKLM\SOFTWARE\WOW6432Node\Macromedia =>.Macromedia
HKLM\SOFTWARE\WOW6432Node\Massive Entertainment AB =>.Massive Entertainment AB
HKLM\SOFTWARE\WOW6432Node\Mozilla =>.Mozilla
HKLM\SOFTWARE\WOW6432Node\mozilla.org =>.mozilla.org
HKLM\SOFTWARE\WOW6432Node\MozillaPlugins =>.MozillaPlugins
HKLM\SOFTWARE\WOW6432Node\Nero =>.Ahead Corporation
HKLM\SOFTWARE\WOW6432Node\Nuance =>.Nuance
HKLM\SOFTWARE\WOW6432Node\ODBC =>.DB Connectivity Solutions
HKLM\SOFTWARE\WOW6432Node\PowerISO =>.PowerISO Computing
HKLM\SOFTWARE\WOW6432Node\Realtek =>.Realtek Semiconductor Corp.
HKLM\SOFTWARE\WOW6432Node\Realtek Semiconductor Corp. =>.Realtek Semiconductor Corp.
HKLM\SOFTWARE\WOW6432Node\Spellbound Software
HKLM\SOFTWARE\WOW6432Node\Ubisoft =>.Ubisoft
HKLM\SOFTWARE\WOW6432Node\VideoLAN =>.VideoLAN
HKLM\SOFTWARE\WOW6432Node\Warzone =>.Warzone
HKLM\SOFTWARE\WOW6432Node\WinRAR =>.WinRAR
HKLM\SOFTWARE\WOW6432Node\RegisteredApplications =>.Microsoft Corporation
HKCU\SOFTWARE\7-Zip =>.Igor Pavlov
HKCU\SOFTWARE\Adobe =>.Adobe
HKCU\SOFTWARE\AppDataLow =>.Microsoft Corporation
HKCU\SOFTWARE\Bigasoft =>.Bigasoft Corporation
HKCU\SOFTWARE\BitTorrent =>.BitTorrent (P2P)
HKCU\SOFTWARE\Browser Cleanup =>.Avast Software s.r.o
HKCU\SOFTWARE\Caphyon =>.Caphyon
HKCU\SOFTWARE\Cheat Engine =>.Dark Byte
HKCU\SOFTWARE\Chromium =>.Chromium
HKCU\SOFTWARE\EagleGet =>.EagleGet
HKCU\SOFTWARE\Facebook =>.Facebook
HKCU\SOFTWARE\Google =>.Google
HKCU\SOFTWARE\IGA =>.Legitimate
HKCU\SOFTWARE\Intel =>.Intel
HKCU\SOFTWARE\IvoSoft =>.IvoSoft
HKCU\SOFTWARE\Malwarebytes =>.Malwarebytes
HKCU\SOFTWARE\Mine =>.Microsoft Corporation
HKCU\SOFTWARE\Mozilla =>.Mozilla
HKCU\SOFTWARE\MozillaPlugins =>.MozillaPlugins
HKCU\SOFTWARE\My Company
HKCU\SOFTWARE\Netscape =>.Netscape
HKCU\SOFTWARE\PowerISO =>.PowerISO Computing
HKCU\SOFTWARE\QtProject =>.QtProject
HKCU\SOFTWARE\Realtek =>.Realtek Semiconductor Corp.
HKCU\SOFTWARE\RegisteredApplications =>.Microsoft Corporation
HKCU\SOFTWARE\RtkPCEE3sMsg
HKCU\SOFTWARE\Trolltech =>.Trolltech
HKCU\SOFTWARE\Ubisoft =>.Ubisoft
HKCU\SOFTWARE\Valve =>.Valve
HKCU\SOFTWARE\WinRAR =>.WinRAR
HKCU\SOFTWARE\WinRAR SFX =>.RarLab
HKCU\SOFTWARE\Wow6432Node =>.Microsoft Corporation
HKCU\SOFTWARE\ZHP =>.Nicolas Coolman
HKCU\SOFTWARE\AppDataLow\Software =>.Microsoft Corporation
---\\ CONTENU DES DOSSIERS PROGRAMMES (99) - 9s
O43 - CFD: 09/05/2018 - [] D -- C:\Program Files\7-Zip =>.Igor Pavlov
O43 - CFD: 04/03/2018 - [] D -- C:\Program Files\Avidemux 2.7 - 64 bits =>.Mean
O43 - CFD: 08/12/2015 - [] D -- C:\Program Files\Classic Shell =>.Ivo Beltchev
O43 - CFD: 01/03/2018 - [] D -- C:\Program Files\CPUID =>.CPUID Inc
O43 - CFD: 01/03/2018 - [] D -- C:\Program Files\Intel =>.Intel Corporation
O43 - CFD: 09/05/2018 - [] D -- C:\Program Files\Malwarebytes =>.Malwarebytes
O43 - CFD: 28/02/2018 - [] D -- C:\Program Files\PowerISO =>.PowerISO Computing
O43 - CFD: 08/12/2015 - [] D -- C:\Program Files\Realtek =>.Realtek
O43 - CFD: 09/05/2018 - [] D -- C:\Program Files\Unlocker =>.Cedrick Collomb
O43 - CFD: 08/12/2015 - [] D -- C:\Program Files (x86)\Adobe =>.Adobe Systems, Incorporated®
O43 - CFD: 09/05/2018 - [] D -- C:\Program Files (x86)\Age of Empires II HD The Forgotten
O43 - CFD: 06/05/2018 - [] D -- C:\Program Files (x86)\Bigasoft =>.Bigasoft Corporation
O43 - CFD: 09/05/2018 - [] D -- C:\Program Files (x86)\Cheat Engine 6.7 =>.Dark Byte
O43 - CFD: 09/05/2018 - [] D -- C:\Program Files (x86)\EagleGet {4B97BFE2D80C6C48} =>.EagleGet
O43 - CFD: 08/12/2015 - [] D -- C:\Program Files (x86)\Google =>.Google Inc®
O43 - CFD: 05/03/2018 - [] D -- C:\Program Files (x86)\Ground Control 2 - Operation Exodus
O43 - CFD: 02/03/2018 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information =>.InstallShield
O43 - CFD: 08/12/2015 - [] D -- C:\Program Files (x86)\Intel =>.Intel Corporation
O43 - CFD: 06/05/2018 - [] D -- C:\Program Files (x86)\Intel Driver and Support Assistant =>.Intel(R) Driver & Support Assistant®
O43 - CFD: 09/05/2018 - [0] D -- C:\Program Files (x86)\Lavasoft =>.Lavasoft
O43 - CFD: 09/05/2018 - [] D -- C:\Program Files (x86)\Mozilla Firefox =>.Mozilla
O43 - CFD: 08/12/2015 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service =>.Mozilla
O43 - CFD: 08/12/2015 - [] D -- C:\Program Files (x86)\Realtek =>.Realtek
O43 - CFD: 02/03/2018 - [] D -- C:\Program Files (x86)\Ubisoft =>.Ubisoft
O43 - CFD: 08/12/2015 - [] D -- C:\Program Files (x86)\VideoLAN =>.VideoLan Team
O43 - CFD: 03/03/2018 - [] D -- C:\Program Files (x86)\Warzone =>.Warzone
O43 - CFD: 09/05/2018 - [] D -- C:\Program Files (x86)\WinRAR =>.win.rar GmbH®
O43 - CFD: 09/05/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip =>.Igor Pavlov
O43 - CFD: 11/04/2018 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools
O43 - CFD: 09/05/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avidemux (64 bits) =>.SourceForge
O43 - CFD: 22/04/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.7 =>.Dark Byte
O43 - CFD: 08/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Classic Shell =>.Ivo Beltchev
O43 - CFD: 01/03/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID =>.CPUID Inc
O43 - CFD: 03/03/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CSGO WaRzOnE
O43 - CFD: 09/05/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EagleGet =>.EagleGet
O43 - CFD: 05/03/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ground Control 2 - Operation Exodus
O43 - CFD: 08/12/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel =>.Intel Corporation
O43 - CFD: 01/03/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Driver and Support Assistant
O43 - CFD: 09/05/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes =>.Malwarebytes
O43 - CFD: 02/03/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PHDGD Virtual VRAM Tool
O43 - CFD: 28/02/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerISO =>.PowerISO Computing
O43 - CFD: 28/02/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ubisoft =>.Ubisoft
O43 - CFD: 08/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN =>.VideoLan Team
O43 - CFD: 09/05/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR
O43 - CFD: 08/12/2015 - [] D -- C:\ProgramData\Adobe =>.Adobe
O43 - CFD: 09/05/2018 - [] D -- C:\ProgramData\AVAST Software =>.AVAST Software
O43 - CFD: 03/03/2018 - [] D -- C:\ProgramData\Caphyon =>.Caphyon
O43 - CFD: 09/05/2018 - [] D -- C:\ProgramData\EagleGet =>.EagleGet
O43 - CFD: 01/03/2018 - [] D -- C:\ProgramData\Intel =>.Intel Corporation
O43 - CFD: 09/05/2018 - [0] D -- C:\ProgramData\Lavasoft =>.Lavasoft
O43 - CFD: 09/05/2018 - [] D -- C:\ProgramData\Malwarebytes =>.Malwarebytes
O43 - CFD: 13/04/2018 - [] D -- C:\ProgramData\McAfee =>.McAfee
O43 - CFD: 08/12/2015 - [] D -- C:\ProgramData\Mozilla =>.Mozilla Corporation
O43 - CFD: 01/03/2018 - [] D -- C:\ProgramData\MumboJumbo =>.MumboJumbo
O43 - CFD: 03/03/2018 - [] D -- C:\ProgramData\Steam =>.Steam Games
O43 - CFD: 08/12/2015 - [] D -- C:\Program Files (x86)\Common Files\Adobe =>.Adobe
O43 - CFD: 09/05/2018 - [] D -- C:\Program Files (x86)\Common Files\EagleGet =>.EagleGet
O43 - CFD: 28/02/2018 - [] D -- C:\Program Files (x86)\Common Files\InstallShield =>.InstallShield
O43 - CFD: 25/01/2015 - [] D -- C:\Program Files (x86)\Common Files\Intel =>.Intel Corporation
O43 - CFD: 08/12/2015 - [] D -- C:\Program Files (x86)\Common Files\Intel Corporation =>.Intel Corporation
O43 - CFD: 08/12/2015 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Adobe =>.Adobe
O43 - CFD: 06/05/2018 - [] D -- C:\Users\Utilisateur\AppData\Roaming\avidemux =>.Mean
O43 - CFD: 06/05/2018 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Bigasoft Total Video Converter 5 =>.Bigasoft Corporation
O43 - CFD: 06/05/2018 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Bigasoft WTV Converter 5 =>.Bigasoft Corporation
O43 - CFD: 28/02/2018 - [] D -- C:\Users\Utilisateur\AppData\Roaming\ClassicShell =>.SourceForge
O43 - CFD: 09/05/2018 - [] D -- C:\Users\Utilisateur\AppData\Roaming\EagleGet =>.EagleGet
O43 - CFD: 28/02/2018 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Google =>.Google
O43 - CFD: 05/03/2018 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Ground Control 2 - Operation Exodus_unistall
O43 - CFD: 28/02/2018 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Intel Corporation =>.Intel Corporation
O43 - CFD: 13/04/2018 - [] D -- C:\Users\Utilisateur\AppData\Roaming\McAfee Safe Connect =>.McAfee Inc.
O43 - CFD: 29/04/2018 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Might & Magic Heroes VI =>.Games Software
O43 - CFD: 28/02/2018 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Mozilla =>.Mozilla Corporation
O43 - CFD: 01/03/2018 - [] D -- C:\Users\Utilisateur\AppData\Roaming\PowerISO =>.PowerISO Computing
O43 - CFD: 09/05/2018 - [] D -- C:\Users\Utilisateur\AppData\Roaming\uTorrent
O43 - CFD: 06/05/2018 - [] D -- C:\Users\Utilisateur\AppData\Roaming\vlc =>.VideoLan Team
O43 - CFD: 28/02/2018 - [] D -- C:\Users\Utilisateur\AppData\Roaming\WinRAR =>.WinRAR
O43 - CFD: 09/05/2018 - [] D -- C:\Users\Utilisateur\AppData\Roaming\ZHP =>.Nicolas Coolman
O43 - CFD: 13/04/2018 - [0] D -- C:\Users\Utilisateur\AppData\Local\Adobe =>.Adobe
O43 - CFD: 09/05/2018 - [] D -- C:\Users\Utilisateur\AppData\Local\AVAST Software =>.AVAST Software
O43 - CFD: 04/03/2018 - [] D -- C:\Users\Utilisateur\AppData\Local\avidemux =>.Mean
O43 - CFD: 28/02/2018 - [] D -- C:\Users\Utilisateur\AppData\Local\CEF =>.CEF
O43 - CFD: 02/03/2018 - [] D -- C:\Users\Utilisateur\AppData\Local\Chromium =>.Chromium
O43 - CFD: 09/05/2018 - [] D -- C:\Users\Utilisateur\AppData\Local\ClassicShell =>.SourceForge
O43 - CFD: 03/05/2018 - [] D -- C:\Users\Utilisateur\AppData\Local\Facebook =>.Facebook
O43 - CFD: 28/02/2018 - [] D -- C:\Users\Utilisateur\AppData\Local\Google =>.Google
O43 - CFD: 13/04/2018 - [] D -- C:\Users\Utilisateur\AppData\Local\McAfee_Inc =>.McAfee Inc.
O43 - CFD: 28/02/2018 - [] D -- C:\Users\Utilisateur\AppData\Local\Mozilla =>.Mozilla Corporation
O43 - CFD: 02/03/2018 - [] D -- C:\Users\Utilisateur\AppData\Local\Ubisoft Game Launcher =>.Ubisoft
O43 - CFD: 09/05/2018 - [] D -- C:\Users\Utilisateur\AppData\Local\ZHP =>.Nicolas Coolman
O43 - CFD: 04/05/2018 - [] D -- C:\Users\Utilisateur\AppData\LocalLow\uTorrent
O43 - CFD: 08/03/2018 - [] RD -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools
O43 - CFD: 06/05/2018 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bigasoft =>.Bigasoft Corporation
O43 - CFD: 03/05/2018 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Facebook =>.Facebook
O43 - CFD: 01/03/2018 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Infogrames =>.Infogrames
O43 - CFD: 01/03/2018 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Luxor 4 Quest For The Afterlife 1.00
O43 - CFD: 02/03/2018 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft =>.Ubisoft
O43 - CFD: 09/05/2018 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker =>.Cedrick Collomb
O43 - CFD: 09/05/2018 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR
O43 - CFD: 09/05/2018 - [] -- C:\windows\System32\Config\systemprofile\AppData\Local\AVAST Software =>.AVAST Software
---\\ ShellIconOverlayIdentifiers (SIOI) (2) - 0s
O106 - SIOI: [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - DLL d’extension d’environnement de stockage.) -- C:\Windows\System32\EhStorShell.dll =>.Microsoft Corporation
O106 - SIOI: [Offline Files] - {4E77131D-3629-431c-9818-C5679DC83E81}. (.Microsoft Corporation - IU de cache côté client.) -- C:\windows\System32\cscui.dll =>.Microsoft Corporation
---\\ RACCOURCIS DES MENUS CONCEPTUELS (SCMH) (39) - 4s
O108 - CMH1: 7-Zip [64Bits] - {23170F69-40C1-278A-1000-000100020000} . (.Igor Pavlov - 7-Zip Shell Extension.) -- C:\Program Files\7-Zip\7-zip.dll =>.Igor Pavlov
O108 - CMH1: BriefcaseMenu [64Bits] - {85BBD920-42A0-1069-A2E4-08002B30309D} . (.Microsoft Corporation - Porte-documents Windows.) -- C:\Windows\System32\syncui.dll =>.Microsoft Corporation
O108 - CMH1: Open With [64Bits] - {09799AFB-AD67-11d1-ABCD-00C04FC30936} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH1: Open With EncryptionMenu [64Bits] - {A470F8CF-A1E8-4f65-8335-227475AA5C46} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH1: PowerISO [64Bits] - {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} . (.Power Software Ltd - PowerISOShell DLL.) -- C:\Program Files\PowerISO\PWRISOSH.DLL =>.Power Software Ltd
O108 - CMH1: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation
O108 - CMH1: WinRAR [64Bits] - {B41DB860-64E4-11D2-9906-E49FADC173CA} . (.Alexander Roshal - WinRAR shell extension.) -- C:\Program Files (x86)\WinRAR\RarExt64.dll =>.win.rar GmbH®
O108 - CMH1: WinRAR32 [64Bits] - {B41DB860-8EE4-11D2-9906-E49FADC173CA} . (.Orphan.)
O108 - CMH1: WorkFolders [64Bits] - {E61BF828-5E63-4287-BEF1-60B1A4FDE0E3} . (.Microsoft Corporation - Extension d’environnement de Dossiers de tr.) -- C:\Windows\System32\WorkfoldersShell.dll =>.Microsoft Corporation
O108 - CMH2: OpenContainingFolderMenu [64Bits] - {37ea3a21-7493-4208-a011-7f9ea79ce9f5} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH2: StartMenuExt [64Bits] - {E595F05F-903F-4318-8B0A-7F633B520D2B} . (.IvoSoft - Start Menu Helper Extension.) -- C:\windows\system32\StartMenuHelper64.dll =>.IvoSoft
O108 - CMH3: CopyAsPathMenu [64Bits] - {f3d06e7c-1e45-4a26-847e-f9fcdee59be0} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH3: MBAMShlExt [64Bits] - {57CE581A-0CB6-4266-9CA0-19364C90A0B3} . (.Malwarebytes - Malwarebytes.) -- C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll =>.Malwarebytes Corporation®
O108 - CMH3: SendTo [64Bits] - {7BA4C740-9E81-11CF-99D3-00AA004AE837} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH3: UnlockerShellExtension [64Bits] - {DDE4BEEB-DDE6-48fd-8EB5-035C09923F83} . (...) -- C:\Program Files\Unlocker\UnlockerCOM.dll =>.Empty Loop®
O108 - CMH4: 7-Zip [64Bits] - {23170F69-40C1-278A-1000-000100020000} . (.Igor Pavlov - 7-Zip Shell Extension.) -- C:\Program Files\7-Zip\7-zip.dll =>.Igor Pavlov
O108 - CMH4: EncryptionMenu [64Bits] - {A470F8CF-A1E8-4f65-8335-227475AA5C46} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH4: Offline Files [64Bits] - {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} . (.Microsoft Corporation - IU de cache côté client.) -- C:\windows\System32\cscui.dll =>.Microsoft Corporation
O108 - CMH4: PowerISO [64Bits] - {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} . (.Power Software Ltd - PowerISOShell DLL.) -- C:\Program Files\PowerISO\PWRISOSH.DLL =>.Power Software Ltd
O108 - CMH4: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation
O108 - CMH4: WorkFolders [64Bits] - {E61BF828-5E63-4287-BEF1-60B1A4FDE0E3} . (.Microsoft Corporation - Extension d’environnement de Dossiers de tr.) -- C:\Windows\System32\WorkfoldersShell.dll =>.Microsoft Corporation
O108 - CMH5: igfxDTCM [64Bits] - {9B5F5829-A529-4B12-814A-E81BCB8D93FC} . (.Intel Corporation - igfxDTCM Module.) -- C:\windows\system32\igfxDTCM.dll =>.Intel Corporation
O108 - CMH5: igfxOSP [64Bits] - {FA507C3F-30C6-4DCA-9EE5-2656072EEC14} . (.Intel Corporation - igfxOSP Module.) -- C:\windows\system32\igfxOSP.dll =>.Intel Corporation
O108 - CMH5: New [64Bits] - {D969A300-E7FF-11d0-A93B-00A0C90F2719} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH5: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation
O108 - CMH5: WorkFolders [64Bits] - {E61BF828-5E63-4287-BEF1-60B1A4FDE0E3} . (.Microsoft Corporation - Extension d’environnement de Dossiers de tr.) -- C:\Windows\System32\WorkfoldersShell.dll =>.Microsoft Corporation
O108 - CMH6: 7-Zip [64Bits] - {23170F69-40C1-278A-1000-000100020000} . (.Igor Pavlov - 7-Zip Shell Extension.) -- C:\Program Files\7-Zip\7-zip.dll =>.Igor Pavlov
O108 - CMH6: BriefcaseMenu [64Bits] - {85BBD920-42A0-1069-A2E4-08002B30309D} . (.Microsoft Corporation - Porte-documents Windows.) -- C:\Windows\System32\syncui.dll =>.Microsoft Corporation
O108 - CMH6: Library Location [64Bits] - {3dad6c5d-2167-4cae-9914-f99e41c12cfa} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH6: MBAMShlExt [64Bits] - {57CE581A-0CB6-4266-9CA0-19364C90A0B3} . (.Malwarebytes - Malwarebytes.) -- C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll =>.Malwarebytes Corporation®
O108 - CMH6: Offline Files [64Bits] - {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} . (.Microsoft Corporation - IU de cache côté client.) -- C:\windows\System32\cscui.dll =>.Microsoft Corporation
O108 - CMH6: PintoStartScreen [64Bits] - {470C0EBD-5D73-4d58-9CED-E91E22E23282} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH6: PowerISO [64Bits] - {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} . (.Power Software Ltd - PowerISOShell DLL.) -- C:\Program Files\PowerISO\PWRISOSH.DLL =>.Power Software Ltd
O108 - CMH6: StartMenuExt [64Bits] - {E595F05F-903F-4318-8B0A-7F633B520D2B} . (.IvoSoft - Start Menu Helper Extension.) -- C:\windows\system32\StartMenuHelper64.dll =>.IvoSoft
O108 - CMH6: UnlockerShellExtension [64Bits] - {DDE4BEEB-DDE6-48fd-8EB5-035C09923F83} . (...) -- C:\Program Files\Unlocker\UnlockerCOM.dll =>.Empty Loop®
O108 - CMH6: WinRAR [64Bits] - {B41DB860-64E4-11D2-9906-E49FADC173CA} . (.Alexander Roshal - WinRAR shell extension.) -- C:\Program Files (x86)\WinRAR\RarExt64.dll =>.win.rar GmbH®
O108 - CMH6: WinRAR32 [64Bits] - {B41DB860-8EE4-11D2-9906-E49FADC173CA} . (.Orphan.)
O108 - CMH7: EnhancedStorageShell [64Bits] - {2854F705-3548-414C-A113-93E27C808C85} . (.Microsoft Corporation - DLL d’extension d’environnement de stockage.) -- C:\Windows\System32\EhStorShell.dll =>.Microsoft Corporation
O108 - CMH7: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation
---\\ IMAGE FILE EXECUTION OPTIONS (IFEO) (16) - 1s
O50 - IFEO:C:\Windows\System32\cscript.exe - (.Microsoft Corporation - Microsoft ® Console Based Script Host.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\dllhost.exe - (.Microsoft Corporation - COM Surrogate.) [DisableExceptionChainValidation\\3] =>.Microsoft Windows®
O50 - IFEO:C:\Windows\System32\drvinst.exe - (.Microsoft Corporation - Module d’installation de pilotes.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\windows\System32\ie4uinit.exe - (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\ieUnatt.exe - (.Microsoft Corporation - Outil d’installation sans assistance d’IE 7.) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\mmc.exe - (.Microsoft Corporation - Microsoft Management Console.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\msfeedssync.exe - (.Microsoft Corporation - Microsoft Feeds Synchronization.) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\mshta.exe - (.Microsoft Corporation - Hôte des applications HTML de Microsoft(R).) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\PresentationHost.exe - (.Microsoft Corporation - Windows Presentation Foundation Host.) [MitigationOptions\\1118481] =>.Microsoft Corporation
O50 - IFEO:C:\windows\System32\PrintIsolationHost.exe - (.Microsoft Corporation - PrintIsolationHost.) [MitigationOptions\\2097152] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\rundll32.exe - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\windows\System32\runtimebroker.exe - (.Microsoft Corporation - Runtime Broker.) [MitigationOptions\\4294967296] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\searchprotocolhost.exe - (.Microsoft Corporation - Microsoft Windows Search Protocol Host.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\windows\System32\spoolsv.exe - (.Microsoft Corporation - Application sous-système spouleur.) [MitigationOptions\\2097152] =>.Microsoft Corporation
O50 - IFEO:C:\windows\System32\spoolsv.exe - (.Microsoft Corporation - Application sous-système spouleur.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\wscript.exe - (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
---\\ LISTE DES PILOTES DU SYSTÈME (57) - 14s
O58 - SDL:2013/08/22 13:43:41 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\windows\System32\drivers\3ware.sys [108896] =>.Microsoft Windows®
O58 - SDL:2013/08/22 13:43:41 A . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS.) -- C:\windows\System32\drivers\adp80xx.sys [782176] =>.Microsoft Windows®
O58 - SDL:2018/03/06 18:26:26 A . (.The OpenVPN Project - TAP-Windows Virtual Network Driver (NDIS 6..) -- C:\windows\System32\drivers\aftap0901.sys [48624] =>.AnchorFree Inc®
O58 - SDL:2013/08/22 13:43:41 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\windows\System32\drivers\amdsata.sys [79200] =>.Microsoft Windows®
O58 - SDL:2013/08/22 13:43:41 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\windows\System32\drivers\amdsbs.sys [259424] =>.Microsoft Windows®
O58 - SDL:2013/08/22 13:43:40 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\windows\System32\drivers\amdxata.sys [25952] =>.Microsoft Windows®
O58 - SDL:2013/08/22 13:43:41 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\windows\System32\drivers\arcsas.sys [114016] =>.Microsoft Windows®
O58 - SDL:2018/05/09 13:43:46 A . (.The OpenVPN Project - TAP-Windows Virtual Network Driver.) -- C:\windows\System32\drivers\aswTap.sys [53904] =>.AVAST Software s.r.o.®
O58 - SDL:2013/06/18 15:45:05 A . (.Qualcomm Atheros Communications, Inc. - Qualcomm Atheros Extensible Wireless LAN de.) -- C:\windows\System32\drivers\athwnx.sys [3680256] =>.Qualcomm Atheros Communications, Inc.
O58 - SDL:2012/02/17 19:33:38 A . (.Advanced Micro Devices, Inc. - ATI Radeon Kernel Mode Driver.) -- C:\windows\System32\drivers\atikmdag.sys [10657792] =>.Advanced Micro Devices, Inc.
O58 - SDL:2012/02/17 19:36:56 A . (.Advanced Micro Devices, Inc. - AMD multi-vendor Miniport Driver.) -- C:\windows\System32\drivers\atikmpag.sys [334336] =>.Advanced Micro Devices, Inc.
O58 - SDL:2013/08/13 00:25:46 A . (. - BCM Function 2 Device Driver.) -- C:\windows\System32\drivers\bcmfn2.sys [17624] =>.Broadcom Corporation®
O58 - SDL:2013/08/22 13:43:41 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\windows\System32\drivers\bxvbda.sys [531296] =>.Microsoft Windows®
O58 - SDL:2017/08/28 20:24:50 A . (.eagleGet - eagleGet Network Filter.) -- C:\windows\System32\drivers\eagleGet.sys [77424] =>.Beijing Jiupu Technology Co., Ltd.®
O58 - SDL:2013/08/22 13:43:45 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\windows\System32\drivers\evbda.sys [3357024] =>.Microsoft Windows®
O58 - SDL:2018/05/09 20:32:50 A . (.Malwarebytes - Malwarebytes Anti-Ransomware Protection.) -- C:\windows\System32\drivers\farflt.sys [112864] =>.Malwarebytes Corporation®
O58 - SDL:2013/08/22 13:43:45 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\windows\System32\drivers\HpSAMD.sys [64352] =>.Microsoft Windows®
O58 - SDL:2013/07/30 19:47:35 A . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\windows\System32\drivers\iaLPSSi_GPIO.sys [24568] =>.Intel Corporation - Software and Firmware Products®
O58 - SDL:2013/07/25 20:05:39 A . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\windows\System32\drivers\iaLPSSi_I2C.sys [99320] =>.Intel Corporation - Software and Firmware Products®
O58 - SDL:2014/04/11 09:30:44 A . (.Intel Corporation - Intel(R) Rapid Storage Technology driver -.) -- C:\windows\System32\drivers\iaStorA.sys [645480] =>.Intel Corporation - Intel® Rapid Storage Technology®
O58 - SDL:2013/08/10 01:39:30 A . (.Intel Corporation - Intel Rapid Storage Technology driver (inbo.) -- C:\windows\System32\drivers\iaStorAV.sys [651248] =>.Intel Corporation - Intel® Rapid Storage Technology®
O58 - SDL:2013/08/22 13:43:45 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\windows\System32\drivers\iaStorV.sys [412000] =>.Microsoft Windows®
O58 - SDL:2014/03/31 06:24:09 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\windows\System32\drivers\igdkmd64.sys [3785216] =>.Intel Corporation
O58 - SDL:2014/03/31 06:28:35 A . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\windows\System32\drivers\IntcDAud.sys [450520] =>.Intel Corporation - Software and Firmware Products®
O58 - SDL:2014/03/26 00:31:04 A . (.Intel Corporation - Intel® WiDi Solution.) -- C:\windows\System32\drivers\intelaud.sys [38296] =>.Intel Wireless Display®
O58 - SDL:2013/08/07 11:01:32 A . (.Copyright (C) 2011-2012 - Intel(R) Smart Connect Technology Device Dr.) -- C:\windows\System32\drivers\ISCTD64.sys [46568] =>.Intel(R) Smart Connect software®
O58 - SDL:2014/03/26 00:31:04 A . (.Intel Corporation - Intel® WiDi Solution.) -- C:\windows\System32\drivers\iwdbus.sys [27032] =>.Intel Wireless Display®
O58 - SDL:2013/06/18 15:45:14 A . (.Broadcom Corporation - Broadcom NetLink (TM) Gigabit Ethernet NDIS.) -- C:\windows\System32\drivers\k57nd60a.sys [425984] =>.Broadcom Corporation
O58 - SDL:2013/08/22 13:43:44 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\windows\System32\drivers\lsi_sas.sys [109408] =>.Microsoft Windows®
O58 - SDL:2013/08/22 13:43:45 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\windows\System32\drivers\lsi_sas2.sys [93536] =>.Microsoft Windows®
O58 - SDL:2013/08/22 13:43:44 A . (.LSI Corporation - LSI SAS Gen3 Driver (StorPort).) -- C:\windows\System32\drivers\lsi_sas3.sys [81760] =>.Microsoft Windows®
O58 - SDL:2013/08/22 13:43:45 A . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\windows\System32\drivers\lsi_sss.sys [82784] =>.Microsoft Windows®
O58 - SDL:2018/04/26 05:36:50 A . (.Malwarebytes - Malwarebytes Anti-Exploit.) -- C:\windows\System32\drivers\mbae64.sys [152184] =>.Malwarebytes Corporation®
O58 - SDL:2018/05/09 20:32:58 A . (.Malwarebytes - Malwarebytes Real-Time Protection.) -- C:\windows\System32\drivers\mbam.sys [44768] =>.Malwarebytes Corporation®
O58 - SDL:2018/05/09 20:13:07 A . (.Malwarebytes - Malwarebytes Chameleon.) -- C:\windows\System32\drivers\MbamChameleon.sys [190696] =>.Malwarebytes Corporation®
O58 - SDL:2018/05/09 20:32:45 A . (.Malwarebytes - Malwarebytes SwissArmy.) -- C:\windows\System32\drivers\mbamswissarmy.sys [253664] =>.Malwarebytes Corporation®
O58 - SDL:2013/08/22 13:43:45 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\windows\System32\drivers\megasas.sys [56672] =>.Microsoft Windows®
O58 - SDL:2013/08/22 13:43:45 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\windows\System32\drivers\megasr.sys [575840] =>.Microsoft Windows®
O58 - SDL:2013/08/22 13:43:49 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\windows\System32\drivers\mvumis.sys [63840] =>.Microsoft Windows®
O58 - SDL:2018/05/09 20:32:49 A . (.Malwarebytes - Malwarebytes Web Protection.) -- C:\windows\System32\drivers\mwac.sys [103648] =>.Malwarebytes Corporation®
O58 - SDL:2013/08/22 13:43:31 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\windows\System32\drivers\nvraid.sys [150368] =>.Microsoft Windows®
O58 - SDL:2013/08/22 13:43:32 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\windows\System32\drivers\nvstor.sys [168288] =>.Microsoft Windows®
O58 - SDL:2014/03/17 10:57:10 A . (.Realtek - Realtek 8101E/8168/8169 NDIS 6.30 64-bit Dr.) -- C:\windows\System32\drivers\Rt630x64.sys [843480] =>.Realtek Semiconductor Corp®
O58 - SDL:2014/03/14 12:08:10 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\windows\System32\drivers\RTKVHD64.sys [3896920] =>.Realtek Semiconductor Corp®
O58 - SDL:2017/06/07 01:36:28 A . (.Power Software Ltd - PowerISO Virtual Drive.) -- C:\windows\System32\drivers\scdemu.sys [138296] =>.Power Software Limited®
O58 - SDL:2013/08/22 16:35:09 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\windows\System32\drivers\secdrv.sys [23040] =>.Rovi Corporation
O58 - SDL:2018/03/07 16:56:30 A . (...) -- C:\windows\System32\drivers\semav6msr64.sys [43008] {00CD951DEBFAD69ED74E5974C37B5F1512} =>.Intel Corporation
O58 - SDL:2013/08/22 13:43:31 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\windows\System32\drivers\sisraid2.sys [44896] =>.Microsoft Windows®
O58 - SDL:2013/08/22 13:43:32 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\windows\System32\drivers\sisraid4.sys [81760] =>.Microsoft Windows®
O58 - SDL:2013/08/22 13:43:32 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\windows\System32\drivers\stexstor.sys [31072] =>.Microsoft Windows®
O58 - SDL:2013/09/16 12:17:42 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\windows\System32\drivers\TeeDriverx64.sys [99288] =>.Intel Corporation - Intel® Management Engine Firmware®
O58 - SDL:2013/08/22 13:43:34 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\windows\System32\drivers\viaide.sys [19808] =>.Microsoft Windows®
O58 - SDL:2013/08/22 13:43:34 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\windows\System32\drivers\vsmraid.sys [168800] =>.Microsoft Windows®
O58 - SDL:2013/06/18 16:05:46 A . (.Conexant Systems, Inc. - HSF_HWAZL WDM driver.) -- C:\windows\System32\drivers\VSTAZL6.SYS [292864] =>.Conexant Systems, Inc.
O58 - SDL:2013/06/18 16:05:48 A . (.Conexant Systems, Inc. - HSF_CNXT driver.) -- C:\windows\System32\drivers\VSTCNXT6.SYS [740864] =>.Conexant Systems, Inc.
O58 - SDL:2013/06/18 16:05:48 A . (.Conexant Systems, Inc. - HSF_DP driver.) -- C:\windows\System32\drivers\VSTDPV6.SYS [1485312] =>.Conexant Systems, Inc.
O58 - SDL:2013/08/22 13:43:34 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\windows\System32\drivers\VSTXRAID.SYS [305504] =>.Microsoft Windows®
---\\ DERNIERS FICHIERS MODIFIÉS OU CRÉÉS (Utilisateur) (11) - 16s
O61 - LFC: 2018/05/03 11:03:28 A . (..) -- C:\Users\Utilisateur\AppData\Local\Facebook\Games\CefSharp.BrowserSubprocess.Core.dll [774656]
O61 - LFC: 2018/05/03 11:03:28 A . (..) -- C:\Users\Utilisateur\AppData\Local\Facebook\Games\CefSharp.Core.dll [1184256]
O61 - LFC: 2018/05/03 11:03:28 A . (..) -- C:\Users\Utilisateur\AppData\Local\Facebook\Games\DaybreakNative.dll [90624]
O61 - LFC: 2018/05/03 11:03:28 A . (..) -- C:\Users\Utilisateur\AppData\Local\Facebook\Games\FBCapture.dll [617984]
O61 - LFC: 2018/05/03 11:06:02 A . (..) -- C:\Users\Utilisateur\AppData\Local\Facebook\Games\GameroomLivestreamHelper.exe [39424]
O61 - LFC: 2018/05/03 11:03:30 A . (.Copyright (C) 2018 The Chromium Embedded Framework Au.) -- C:\Users\Utilisateur\AppData\Local\Facebook\Games\libcef.dll [71641088]
O61 - LFC: 2018/05/03 11:03:28 A . (..) -- C:\Users\Utilisateur\AppData\Local\Facebook\Games\LibFBGPlatform32.dll [117248]
O61 - LFC: 2018/05/03 11:03:28 A . (..) -- C:\Users\Utilisateur\AppData\Local\Facebook\Games\LibFBGPlatform64.dll [146432]
O61 - LFC: 2018/05/03 11:03:28 A . (..) -- C:\Users\Utilisateur\AppData\Local\Facebook\Games\OutputDuplication.dll [117760]
O61 - LFC: 2018/05/03 11:03:28 A . (..) -- C:\Users\Utilisateur\AppData\Local\Facebook\Games\OutputDuplicationChecker.dll [39424]
O61 - LFC: 2018/05/03 11:03:26 A . (.xidar solutions.) -- C:\Users\Utilisateur\AppData\Local\Facebook\Games\SharpBITS.Base.dll [45568]
---\\ ASSOCIATION Shell Spawning (10) - 0s
O67 - Shell Spawning: <.bat>[HKLM\..\open\Command] (...) -- "%1" %* =>.Default.Value
O67 - Shell Spawning: <.cpl>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd>[HKLM\..\open\Command] (...) -- "%1" %* =>.Default.Value
O67 - Shell Spawning: <.com>[HKLM\..\open\Command] (...) -- "%1" %* =>.Default.Value
O67 - Shell Spawning: <.evt>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Ob.) -- C:\Windows\System32\eventvwr.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.exe>[HKLM\..\open\Command] (...) -- "%1" %* =>.Default.Value
O67 - Shell Spawning: <.html>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O67 - Shell Spawning: <.js>[HKLM\..\open\Command] (...) -- C:\Windows\System32\WScript.exe "%1" %* =>.Default.Value
O67 - Shell Spawning: <.reg>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.scr>[HKLM\..\open\Command] (...) -- "%1" /S =>.Default.Value
---\\ MENU DE DÉMARRAGE INTERNET (12) - 0s
O68 - StartMenuInternet: [64Bits][HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O68 - StartMenuInternet: [64Bits][HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O68 - StartMenuInternet: [64Bits][HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
---\\ RECHERCHE D'INFECTION SUR LES NAVIGATEURS (2) - 5s
O69 - SBI: SearchScopes [HKCU] [64Bits]{0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/ =>.Bing.com
O69 - SBI: SearchScopes [HKLM] [64Bits]{0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (@ieframe.dll,-12512) - http://www.bing.com/ =>.Bing.com
---\\ ÉNUMÈRE LES SERVICES DÉMARRÉS PAR Svchost (36) - 1s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\windows\System32\aelupsvc.dll [214528] =>.Microsoft Corporation
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [158720] =>.Microsoft Corporation
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [158720] =>.Microsoft Corporation
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [329216] =>.Microsoft Corporation
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [1362432] =>.Microsoft Corporation
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\IKEEXT.DLL [1080320] =>.Microsoft Corporation
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll [927744] =>.Microsoft Corporation
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\Windows\System32\seclogon.dll [31744] =>.Microsoft Corporation
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [110080] =>.Microsoft Corporation
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [151040] =>.Microsoft Corporation
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [110592] =>.Microsoft Corporation
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [1265664] =>.Microsoft Corporation
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [230400] =>.Microsoft Corporation
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédia.) -- C:\Windows\System32\mmcss.dll [71168] =>.Microsoft Corporation
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [135168] =>.Microsoft Corporation
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [228864] =>.Microsoft Corporation
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [346112] =>.Microsoft Corporation
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [84992] =>.Microsoft Corporation
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\KMSVC.DLL [101376] =>.Microsoft Corporation
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [348672] =>.Microsoft Corporation
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Service d’infrastructure de localisation Wi.) -- C:\Windows\System32\GeofenceMonitorService.dll [522240] =>.Microsoft Corporation
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\Windows\System32\wlidsvc.dll [1639424] =>.Microsoft Corporation
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [59392] =>.Microsoft Corporation
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d’installation de périphérique.) -- C:\Windows\System32\DeviceSetupManager.dll [206848] =>.Microsoft Corporation
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Micro.) -- C:\Windows\System32\NcaSvc.dll [166400] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [102912] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d’accès à dista.) -- C:\Windows\System32\rasmans.dll [542720] =>.Microsoft Corporation
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [233472] =>.Microsoft Corporation
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\Sens.dll [73728] =>.Microsoft Corporation
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\Windows\System32\ipnathlp.dll [452608] =>.Microsoft Corporation
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [313344] =>.Microsoft Corporation
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\System32\wuaueng.dll [3717632] =>.Microsoft Corporation
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [933376] =>.Microsoft Corporation
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [640000] =>.Microsoft Corporation
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll [187904] =>.Microsoft Corporation
O83 - Search Svchost Services: MsKeyboardFilter (MsKeyboardFilter) . (.Microsoft Corporation - SvcHost Service for Microsoft Keyboard Filt.) -- C:\Windows\System32\KeyboardFilterSvc.dll [93008] =>.Microsoft Windows®
---\\ LISTE DES EXCEPTIONS DU PAREFEU WINDOWS (16) - 4s
O87 - FAEL: "{A78DCE42-AA2B-4991-9B79-AF2AED367884}" [In-None-P6-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\Utilisateur\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O87 - FAEL: "{7E69DB36-1F51-4C24-814F-CD201B4471C5}" [In-None-P17-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\Utilisateur\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O87 - FAEL: "TCP Query User{85AF1D77-BD32-4D3E-A48C-D46F5003856C}C:\users\utilisateur\downloads\counter strike\counter strike go edition\start.exe" [In-None-P6-TRUE] .(...) -- C:\users\utilisateur\downloads\counter strike\counter strike go edition\start.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "UDP Query User{EBBBB8DC-5988-4392-B792-929AD31C6A12}C:\users\utilisateur\downloads\counter strike\counter strike go edition\start.exe" [In-None-P17-TRUE] .(...) -- C:\users\utilisateur\downloads\counter strike\counter strike go edition\start.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "{F2FAC2D3-FF0B-42CF-A8B2-AFDA353052D4}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Warzone\CSGO WaRzOnE\csgo_launcher.exe
O87 - FAEL: "{7627691A-655C-4A7F-BDFD-099C7E790646}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Warzone\CSGO WaRzOnE\Loader.exe
O87 - FAEL: "TCP Query User{938ABFE1-1ED1-402C-8893-C1D055D7B32A}C:\program files (x86)\warzone\csgo warzone\csgo.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\warzone\csgo warzone\csgo.exe
O87 - FAEL: "UDP Query User{F3B1CF90-46A5-441F-AFD1-7264DDF71FDE}C:\program files (x86)\warzone\csgo warzone\csgo.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\warzone\csgo warzone\csgo.exe
O87 - FAEL: "TCP Query User{2EEF905D-7430-4C49-87AB-C3967E5E605E}C:\program files (x86)\ground control 2 - operation exodus\gcii.exe" [In-None-P6-TRUE] .(.Massive Entertainment AB - Ground Control II.) -- C:\program files (x86)\ground control 2 - operation exodus\gcii.exe
O87 - FAEL: "UDP Query User{A0D108FC-E742-4225-B40C-B63DC1BC0F19}C:\program files (x86)\ground control 2 - operation exodus\gcii.exe" [In-None-P17-TRUE] .(.Massive Entertainment AB - Ground Control II.) -- C:\program files (x86)\ground control 2 - operation exodus\gcii.exe
O87 - FAEL: "{E389C1BB-B78D-4E80-B65A-8771B6C0A1E3}" [In-None-P17-TRUE] .(.Copyright (C) 2018 Intel Corporation. All rights rese - Intel(R) System Usage Report.) -- C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe =>.Intel(R) Software Development Products®
O87 - FAEL: "{4FEED3C2-84E5-40BD-9960-B5472D424214}" [In-None-P6-TRUE] .(.Copyright (C) 2018 Intel Corporation. All rights rese - Intel(R) System Usage Report.) -- C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe =>.Intel(R) Software Development Products®
O87 - FAEL: "{2BCBA7EC-F3D0-46F3-9EC1-352943A86D19}" [In-None-P17-TRUE] .(.Copyright (C) 2018 Intel Corporation. All rights rese - Intel(R) System Usage Report.) -- C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe =>.Intel(R) Software Development Products®
O87 - FAEL: "{A14CDEAC-45C2-49D2-A995-785398964B03}" [In-None-P6-TRUE] .(.Copyright (C) 2018 Intel Corporation. All rights rese - Intel(R) System Usage Report.) -- C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe =>.Intel(R) Software Development Products®
O87 - FAEL: "TCP Query User{94F6611C-4543-4EDB-906D-B935066E8062}C:\program files (x86)\warzone\csgo warzone\csgo.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\warzone\csgo warzone\csgo.exe
O87 - FAEL: "UDP Query User{87282D8E-03B7-4AA8-B811-06774F14AFC6}C:\program files (x86)\warzone\csgo warzone\csgo.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\warzone\csgo warzone\csgo.exe
---\\ CODES PRODUITS LOGICIELS (33) - 1s
O90 - PUC: "0515830F68FF81A4AA55E69D5E8FD77A" [HKLM] . (.Intel(R) Computing Improvement Program.) -- C:\windows\Installer\{F0385150-FF86-4A18-AA55-6ED9E5F87DA7}\vmp
O90 - PUC: "08E939F255D8E2E4BB4A60FABCF97AC5" [HKLM] . (.CSGO WaRzOnE.) -- C:\windows\Installer\{2F939E80-8D55-4E2E-BBA4-06AFCB9FA75C}\csgo_launcher_1.exe
O90 - PUC: "12B8D03ED28D112328CCF0A0D541598E" [HKLM] . (.Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40660.)
O90 - PUC: "1926E8D15D0BCE53481466615F760A7F" [HKLM] . (.Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219.)
O90 - PUC: "1af2a8da7e60d0b429d7e6453b3d0182" [HKLM] . (.Microsoft Visual C++ 2005 Redistributable (x64).)
O90 - PUC: "1D5E3C0FEDA1E123187686FED06E995A" [HKLM] . (.Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219.)
O90 - PUC: "2A51BE4B2856E64358106B9E702FB308" [HKLM] . (.Microsoft Visual C++ 2015 x86 Additional Runtime - 14.0.24516.)
O90 - PUC: "328F28B7622A36434B83FAD4DD2E8B01" [HKLM] . (.Microsoft Visual C++ 2015 x86 Minimum Runtime - 14.0.24516.)
O90 - PUC: "44DB0475D85BA123FA0CD6D35465DDC6" [HKLM] . (.Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40660.)
O90 - PUC: "4F46D9DF5FAC32D348A58B347CC81C5A" [HKLM] . (.Microsoft Visual Studio 2010 Tools for Office Runtime (x64).)
O90 - PUC: "67D6ECF5CD5FBA732B8B22BAC8DE1B4D" [HKLM] . (.Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.7523.)
O90 - PUC: "68AB67CA7DA76301B744BA0000000010" [HKLM] . (.Adobe Reader XI (11.0.20) - Français.) -- C:\windows\Installer\{AC76BA86-7AD7-1036-7B44-AB0000000001}\SC_Reader.ico
O90 - PUC: "697064F9843011B4CB0A17C4B4583E7D" [HKLM] . (.. . ..) -- C:\windows\Installer\{9F460796-0348-4B11-BCA0-714C4B85E3D7}\ProductIcon
O90 - PUC: "6E815EB96CCE9A53884E7857C57002F0" [HKLM] . (.Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.7523.)
O90 - PUC: "71460E5BCA4A52243BE6E7439C61617E" [HKLM] . (.Intel® Trusted Connect Service Client.)
O90 - PUC: "75F72C9B48BAF524D9001EC8D5561CD8" [HKLM] . (.Intel(R) Rapid Storage Technology.)
O90 - PUC: "7C9F8B73BF303523781852719CD9C700" [HKLM] . (.Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61135.)
O90 - PUC: "8520DAD7C5154DD39846DB1714990E7F" [HKLM] . (.Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40660.)
O90 - PUC: "8FC921C7F9919624AAEE065B8D7D612E" [HKLM] . (.Classic Shell.) -- C:\windows\Installer\{7C129CF8-199F-4269-AAEE-60B5D8D716E2}\icon.ico
O90 - PUC: "93BAD29AC2E44034A96BCB446EB8552E" [HKLM] . (.Google Update Helper.)
O90 - PUC: "96F071321C0420728150000010000000" [HKLM] . (.7-Zip 18.05 (x64 edition).)
O90 - PUC: "A089CE062ADB6BC44A720BA745894BAC" [HKLM] . (.Google Update Helper.)
O90 - PUC: "AB92F96564D2B934B8C7109D999B02D1" [HKLM] . (.. ..)
O90 - PUC: "C025571B2A687A53689168CD7369889B" [HKLM] . (.Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61135.)
O90 - PUC: "c1c4f01781cc94c4c8fb1542c0981a2a" [HKLM] . (.Microsoft Visual C++ 2005 Redistributable.)
O90 - PUC: "C36666B6F550E2A30AD96188048A3226" [HKLM] . (.Microsoft Visual C++ 2015 x64 Additional Runtime - 14.0.24516.)
O90 - PUC: "C3AEB2FCAE628F23AAB933F1E743AB79" [HKLM] . (.Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61135.)
O90 - PUC: "CE6380BC270BD863282B3D74B09F7570" [HKLM] . (.Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40660.)
O90 - PUC: "D20352A90C039D93DBF6126ECE614057" [HKLM] . (.Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17.)
O90 - PUC: "DC8A59DBF9D1DA5389A1E3975220E6BB" [HKLM] . (.Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61135.)
O90 - PUC: "FB43E6EE528DC483FA5F03D55FFCFAA5" [HKLM] . (.Microsoft Visual C++ 2015 x64 Minimum Runtime - 14.0.24516.)
O90 - PUC: "B1122EB7C68FAC046ACC9665D4B95D2E" [HKCU] . (.Facebook Gameroom 1.21.6697.19829.) -- %APPDATA%\Microsoft\Installer\{7BE2211B-F86C-40CA-A6CC-69564D9BD5E2}\icon.ico
O90 - PUC: "B1122EB7C68FAC046ACC9665D4B95D2E" [HKU] . (.Facebook Gameroom 1.21.6697.19829.) -- %APPDATA%\Microsoft\Installer\{7BE2211B-F86C-40CA-A6CC-69564D9BD5E2}\icon.ico
---\\ PACKAGES WINDOWS INSTALLER (16) - 7s
[MD5.12120B64CFF0FECB42BC64EBE5F73121] [WIS][2018/05/09 14:50:02] (.Igor Pavlov - 7-Zip (x64 edition) Package.) -- C:\windows\Installer\1a863a76.msi [1735168] =>.Igor Pavlov
[MD5.A5D387C6F731FDEFF112740D3B355E78] [WIS][2018/05/03 19:09:11] (.Facebook - Facebook Gameroom 1.21.6697.19829.) -- C:\windows\Installer\3b24f82c.msi [52627456] =>.Facebook
[MD5.A97B2D3D2DD85241D5B8BBF33136A2BF] [WIS][2018/01/17 15:32:26] (.Intel - . ..) -- C:\windows\Installer\462f436.msi [32768] =>.Intel
[MD5.7DAA0F79A9927DF425611A1C0164F729] [WIS][2018/01/17 15:33:02] (.Intel - Intel(R) Driver & Support Assistant 3.1.2.) -- C:\windows\Installer\462f440.msi [2502656] =>.Intel
[MD5.DCCB3A6DF648F7305B8393B907F1E68E] [WIS][2018/04/22 09:25:21] (.Intel Corporation - Intel(R) Computing Improvement Program.) -- C:\windows\Installer\4692d.msi [12535296] =>.Intel Corporation
[MD5.EE3C7D44B16E7959ABF7F5A603AD9883] [WIS][2013/09/16 12:17:36] (.Intel Corporation - Intel(R) Trusted Connect Service Client.) -- C:\windows\Installer\6a467.msi [8753152] =>.Intel Corporation
[MD5.695D904CADA5060EEEB0F12A496E7280] [WIS][2015/12/08 11:00:04] (.Google Inc. - Google Update Helper.) -- C:\windows\Installer\6a46f.msi [25600] =>.Google Inc.
[MD5.E0F6BF6473AB5BDA43847F5A8872ACFE] [WIS][2015/12/08 11:05:03] (.IvoSoft - Classic Shell.) -- C:\windows\Installer\6a472.msi [5144576] =>.IvoSoft
[MD5.E398BDE08879A89EA7AD414157BAD086] [WIS][2012/09/24 04:48:11] (.Adobe Systems Incorporated.) -- C:\windows\Installer\6a4ba.msi [2398208] =>.Adobe Systems Incorporated
[MD5.07AC7563FFE4E7E6354D595A47D89E1B] [WIS][2014/04/11 09:33:00] (.Intel Corporation - Intel(R) Rapid Storage Technology.) -- C:\windows\Installer\6a4c0.msi [2805760] =>.Intel Corporation
[MD5.B1A59D64EE5343155048D8497329EE23] [WIS][2018/03/03 11:21:29] (.Warzone - CSGO WaRzOnE.) -- C:\windows\Installer\777017c.msi [2871808] =>.Warzone
[MD5.F0EE2E7F283866A2A0FEA9BE2D12A979] [WIS][2018/02/28 20:34:52] (.Google Inc. - Google Update Helper.) -- C:\windows\Installer\c5b0b.msi [40960] =>.Google Inc.
[MD5.91E56177CC2DD244914D990542411547] [WIS][2018/05/09 14:59:13] (.Adobe Systems, Incorporated.) -- C:\windows\Installer\1a863b6d.msp [43950080] =>.Adobe Systems, Incorporated
[MD5.84891AC5487B67A75AEBA6D0454E3734] [WIS][2018/05/09 14:59:33] (.Adobe Systems, Incorporated.) -- C:\windows\Installer\1a863b82.msp [2424832] =>.Adobe Systems, Incorporated
[MD5.01E00B02D2BD37746B25A653895FB896] [WIS][2018/05/09 15:05:25] (.Adobe Systems, Incorporated.) -- C:\windows\Installer\1a863cb6.msp [48599040] =>.Adobe Systems, Incorporated
[MD5.14B87B2871A2B6FC0D86F3CFC472CB44] [WIS][2013/05/11 13:24:03] (.Adobe Systems, Incorporated.) -- C:\windows\Installer\6a4bb.msp [18702336] =>.SUP.Obsolete.Adobe
---\\ SCAN ADDITIONNEL (5) - 17s
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\WinRAR32 =>.SUP.Orphan
HKLM\Software\Classes\CLSID\{B41DB860-8EE4-11D2-9906-E49FADC173CA} =>.SUP.Orphan
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\WinRAR32 =>.SUP.Orphan
C:\windows\Installer\6a4bb.msp =>.SUP.Obsolete.Adobe
C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\File System\009 =>.SUP.Temporary.Chrome
---\\ RÉCAPITULATIF DES ÉLÉMENTS TROUVÉS SUR VOTRE STATION (4) - 0s
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>BitTorrent (P2P)
https://nicolascoolman.eu/2017/09/12/origine-lignes-orphelines/ =>.SUP.Orphan
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Obsolete.Adobe
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Temporary.Chrome
~ Unselected Options: O82,
~ End of the scan, 5427 items in 03mn17s (880)(0)
~ Démarré par Utilisateur (Administrator) (2018/05/09 20:38:34)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Certificate ZHPDiag: Legal
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\Utilisateur\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\Utilisateur\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Démarrage du système: Normal (Normal boot)
Windows 8.1 Pro, 64-bit (Build 9600) =>.Microsoft Corporation
---\\ NAVIGATEURS INTERNET (4) - 0s
~ GCIE: Google Chrome v66.0.3359.139
~ MFIE: Mozilla Firefox 47.0.2 (x86 fr)
~ MFIE: Ground Control 2 - Operation Exodus_Seraph1_is1
~ MSIE: Internet Explorer v11.0.9600.19003
---\\ INFORMATIONS SUR LES PRODUITS WINDOWS (3) - 3s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK
---\\ LOGICIELS DE PROTECTION (2) - 5s
Windows Defender (Deactivate)
Malwarebytes version 3.5.1.2522 v3.5.1.2522 (Protection)
---\\ SURVEILLANCE LOGICIEL (3) - 5s
~ Adobe Flash Player 15 Plugin (Surveillance)
~ Adobe Flash Player 29 PPAPI (Surveillance)
~ Adobe Reader XI (Surveillance)
---\\ LOGICIELS DE PARTAGE P2P (1) - 5s
~ µTorrent v3.5.3.44396 (P2P)
---\\ INFORMATIONS SUR LE SYSTÈME (6) - 0s
~ Operating System: Intel64 Family 6 Model 23 Stepping 10, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 3140.436 MB (47% free) : OK =>.RAM Value
System Restore: Activé (Enable)
System drive C: has 172 GB (69%) free of 249 GB : OK =>.Disk Space
---\\ MODE DE CONNEXION AU SYSTÈME (3) - 0s
~ Computer Name: BOUZID
~ User Name: Utilisateur
~ Logged in as Administrator
---\\ ÉNUMÉRATION DES UNITÉS DE STOCKAGE (2) - 0s
~ Drive C: has 172 GB free of 249 GB (System)
~ Drive D: has 39 GB free of 39 GB
---\\ ÉTAT DU CENTRE DE SÉCURITÉ WINDOWS (11) - 0s
[HKLM\Software\WOW6432Node\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\Software\WOW6432Node\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\Software\WOW6432Node\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM64\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
---\\ RECHERCHE PARTICULIÈRE DE FICHIERS GÉNÉRIQUES (25) - 3s
[MD5.ED6B4C95E2A6D67480B9DBB8A8E7D9B4] - 27/08/2016 - (.Microsoft Corporation - Explorateur Windows.) -- C:\windows\Explorer.exe [2755504] =>.Microsoft Windows®
[MD5.6C308D32AFA41D26CE2A0EA8F7B79565] - 29/10/2014 - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\windows\System32\rundll32.exe [54784] =>.Microsoft Corporation
[MD5.D9516405E05F24EDCD90B1988FAF3948] - 14/01/2017 - (.Microsoft Corporation - Application de démarrage de Windows.) -- C:\windows\System32\Wininit.exe [146944] =>.Microsoft Corporation
[MD5.79A5C72A23A56FC20D2572F9095AE7F5] - 22/04/2018 - (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\windows\System32\wininet.dll [3241472] =>.Microsoft Corporation
[MD5.4294D7AD504EA206A4A03DB29311B6C2] - 02/01/2018 - (.Microsoft Corporation - Application d’ouverture de session Windows.) -- C:\windows\System32\Winlogon.exe [571392] =>.Microsoft Corporation
[MD5.AFCAB4DC692CCE37E283B00E2D7B438F] - 21/12/2013 - (.Microsoft Corporation - Bibliothèque de licences.) -- C:\windows\System32\sppcomapi.dll [447488] =>.Microsoft Corporation
[MD5.764E397D1664C3CE690AC35D3DD7085A] - 07/09/2017 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\windows\System32\dnsapi.dll [656896] =>.Microsoft Corporation
[MD5.19992FFEC28B2CE8BDFCE1E7F51C4FAF] - 07/09/2017 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\windows\Syswow64\dnsapi.dll [499200] =>.Microsoft Corporation
[MD5.E37F897ED7B5AFF79B1398258DB96BD9] - 30/09/2013 - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) -- C:\windows\System32\fr-FR\user32.dll.mui [19456] =>.Microsoft Corporation
[MD5.B246BEE99740A2A357E21D863A18774D] - 10/01/2018 - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) -- C:\windows\System32\drivers\AFD.sys [559616] =>.Microsoft Corporation
[MD5.74B14192CF79A72F7536B27CB8814FBD] - 22/08/2013 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\windows\System32\drivers\atapi.sys [26464] =>.Microsoft Corporation
[MD5.2FA6510E33F7DEFEC03658B74101A9B9] - 22/08/2013 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\windows\System32\drivers\Cdfs.sys [88576] =>.Microsoft Corporation
[MD5.D61EDE3D49B04E703AEC3B111C763F42] - 05/12/2017 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\windows\System32\drivers\Cdrom.sys [165376] =>.Microsoft Corporation
[MD5.D1049D4D1311D43F6FCF180CAA5BF78B] - 02/01/2018 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\windows\System32\drivers\DfsC.sys [138752] =>.Microsoft Corporation
[MD5.D4B7ED39C7900384D9E5C1283F1E7926] - 24/07/2014 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\windows\System32\drivers\HDAudBus.sys [76800] =>.Microsoft Corporation
[MD5.49EE0AE9E5B64FFBBD06D55C4984B598] - 04/11/2014 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\windows\System32\drivers\i8042prt.sys [108544] =>.Microsoft Corporation
[MD5.B7342B3C58E91107F6E946A93D9D4EFD] - 27/11/2013 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\windows\System32\drivers\IpNat.sys [142848] =>.Microsoft Corporation
[MD5.CF49856813FFDF2EB251762BB8B675C8] - 10/02/2018 - (.Microsoft Corporation - Minirdr SMB Windows NT.) -- C:\windows\System32\drivers\MRxSmb.sys [401408] =>.Microsoft Corporation
[MD5.0FE750800DEEE91D22399D081371BA79] - 11/08/2017 - (.Microsoft Corporation - MBT Transport driver.) -- C:\windows\System32\drivers\netBT.sys [281600] =>.Microsoft Corporation
[MD5.EE9B628D84DE372953A6D30AAB02DBD6] - 02/01/2018 - (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\windows\System32\drivers\ntfs.sys [2013016] =>.Microsoft Corporation
[MD5.57DCE4FB0467986AE78E1C6FC5240D32] - 11/08/2016 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\windows\System32\drivers\Parport.sys [96256] =>.Microsoft Corporation
[MD5.235624C147E3CB4C288D5D3D8E8D64A2] - 02/02/2016 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\windows\System32\drivers\Rasl2tp.sys [112640] =>.Microsoft Corporation
[MD5.680C1DAE268B6FB67FA21B389A8B79EF] - 30/09/2013 - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RD.) -- C:\windows\System32\drivers\rdpdr.sys [195584] =>.Microsoft Corporation
[MD5.576FA545FAB846B06E79B324160DE25C] - 02/08/2017 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\windows\System32\drivers\tdx.sys [107520] =>.Microsoft Corporation
[MD5.17F7B0F2298D97F4B6C7A69511033D3D] - 14/03/2016 - (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\windows\System32\drivers\volsnap.sys [316760] =>.Microsoft Corporation
---\\ LISTE DES SERVICES (Non Microsoft et non désactivés) (5) - 3s
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated®
O23 - Service: egGetSvc (egGetSvc) . (.Copyright (C) EagleGet 2014~2015 - EGMonitor.) - C:\Program Files (x86)\EagleGet\EGMonitor.exe {4B97BFE2D80C6C48}
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) . (.Intel Corporation - igfxCUIService Module.) - C:\windows\System32\igfxCUIService.exe =>.Intel Corporation
O23 - Service: Malwarebytes Service (MBAMService) . (.Malwarebytes - Malwarebytes Service.) - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe =>.Malwarebytes Corporation®
---\\ SERVICES NON MICROSOFT (SR=Démarré,SS=Stoppé) (20) - 21s
SR - Auto [28/03/2017] [ 82640] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated®
SS - Demand [08/05/2018] [ 272384] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe =>.Adobe Systems Incorporated®
SS - Demand [09/04/2014] [ 279024] Intel(R) Content Protection HECI Service (cphs) . (.Intel Corporation.) - C:\Windows\SysWOW64\IntelCpHeciSvc.exe =>.Intel Corporation - Software and Firmware Products®
SS - Disabl [17/01/2018] [ 22304] Intel(R) Driver & Support Assistant (DSAService) . (.Intel.) - C:\Program Files (x86)\Intel Driver and Support Assistant\DSAService.exe =>.Intel(R) Driver & Support Assistant®
SS - Auto [20/09/2017] [ 247992] egGetSvc (egGetSvc) . (.Copyright (C) EagleGet 2014~2015.) - C:\Program Files (x86)\EagleGet\EGMonitor.exe {4B97BFE2D80C6C48}
SS - Disabl [07/03/2018] [ 888080] Energy Server Service queencreek (ESRV_SVC_QUEENCREEK) . (.Copyright (C) 2018 Intel Corporation. All rights rese.) - C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe =>.Intel(R) Software Development Products®
SS - Auto [28/02/2018] [ 153168] Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SS - Demand [28/02/2018] [ 153168] Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SS - Disabl [11/04/2014] [ 16232] Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) . (.Intel Corporation.) - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe =>.Intel Corporation - Intel® Rapid Storage Technology®
SS - Demand [24/04/2012] [ 169752] Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe =>.Intel Corporation®
SS - Auto [09/04/2014] [ 296432] Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) . (.Intel Corporation.) - C:\windows\System32\igfxCUIService.exe =>.Intel Corporation - Software and Firmware Products®
SS - Disabl [27/08/2013] [ 747520] Intel(R) Capability Licensing Service Interface (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe =>.Intel(R) Corporation
SS - Disabl [27/08/2013] [ 828376] Intel(R) Capability Licensing Service TCP IP Interface (Intel(R) Capability Licensing Service TCP IP Interface) . (.Intel(R) Corporation.) - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe =>.Intel® Trusted Connect Service®
SS - Disabl [13/07/2017] [ 18168] Intel(R) SUR QC Software Asset Manager (Intel(R) SUR QC SAM) . (.Intel Corporation.) - C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe =>.Intel(R) Software Asset Manager®
SS - Disabl [16/09/2013] [ 169432] Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe =>.Intel Corporation - Intel® Management Engine Firmware®
SS - Disabl [16/09/2013] [ 390616] Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe =>.Intel Corporation - Software and Firmware Products®
SR - Auto [03/05/2018] [ 6541008] Malwarebytes Service (MBAMService) . (.Malwarebytes.) - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe =>.Malwarebytes Corporation®
SS - Disabl [26/05/2015] [ 148080] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe =>.Mozilla Corporation®
SS - Disabl [07/03/2018] [ 183568] Intel(R) System Usage Report Service SystemUsageReportSvc_Q (SystemUsageReportSvc_QUEENCREEK) . (.Copyright (C) 2018 Intel Corporation. All rights rese.) - C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe =>.Intel(R) Software Development Products®
SS - Disabl [07/03/2018] [ 888080] User Energy Server Service queencreek (USER_ESRV_SVC_QUEENCREEK) . (.Copyright (C) 2018 Intel Corporation. All rights rese.) - C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe =>.Intel(R) Software Development Products®
---\\ TÂCHES PLANIFIÉES EN AUTOMATIQUE (Registre) (8) - 11s
O38 - TASK: {7A3681E3-9A2A-403D-AAB2-6E68647929B7} [64Bits][\GoogleUpdateTaskMachineUA] - (.Google Inc. - Programme d'installation de Google.) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168] =>.Google Inc.
O38 - TASK: {8568CE40-6AD1-494A-9DB0-095C78248437} [64Bits][\GoogleUpdateTaskMachineCore] - (.Google Inc. - Programme d'installation de Google.) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168] =>.Google Inc.
O38 - TASK: {B2311023-CF8E-4C00-93A8-C1BF945F5EB1} [64Bits][\Adobe Flash Player Updater] - (.Adobe Systems Incorporated - Adobe® Flash® Player Update Service 29.0 r0.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [272384] =>.Adobe Systems Incorporated
O38 - TASK: {DE122730-2FA3-44B5-96B9-3DB1259A7CD8} [64Bits][\Adobe Flash Player PPAPI Notifier] - (.Adobe Systems Incorporated - Adobe® Flash® Player Installer/Uninstaller.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_29_0_0_171_pepper.exe [1367552] =>.Adobe Systems Incorporated
C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [/ua] =>.Google Inc.
C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [/c] =>.Google Inc.
C:\windows\System32\Tasks\Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [] =>.Adobe Systems Incorporated
C:\windows\System32\Tasks\Adobe Flash Player PPAPI Notifier - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_29_0_0_171_pepper.exe [-check pepperplugin] =>.Adobe Systems Incorporated
---\\ APPLICATIONS LANCÉES AU DÉMARRAGE DU SYSTÈME (8) - 1s
O4 - HKLM\..\Run: [Classic Start Menu] . (.IvoSoft - Classic Start Menu.) -- C:\Program Files\Classic Shell\ClassicStartMenu.exe =>.IvoSoft
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe =>.Realtek Semiconductor Corp®
O4 - HKLM\..\Run: [IAStorIcon] . (.Intel Corporation - Delayed launcher.) -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe =>.Intel Corporation
O4 - HKCU\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Users\Utilisateur\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe =>.Adobe Systems, Incorporated®
O4 - HKLM\..\Wow6432Node\Run: [PWRISOVM.EXE] . (.Power Software Ltd - PowerISO Virtual Drive Manager.) -- C:\Program Files\PowerISO\PWRISOVM.EXE =>.Power Software Ltd
O4 - HKLM\..\Wow6432Node\Run: [DSATray] . (.Intel - Intel Driver & Support Assistant Tray.) -- C:\Program Files (x86)\Intel Driver and Support Assistant\DSATray.exe =>.Intel(R) Driver & Support Assistant®
O4 - HKUS\S-1-5-21-509030791-535364451-1462276753-1001\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Users\Utilisateur\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
---\\ PROCESSUS LANCÉS (17) - 3s
[MD5.52997B1282BDAFC4275874B8990F9BE3] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [82640] [PID.1452] =>.Adobe Systems, Incorporated®
[MD5.F7265B7490428499F2FE409FA9247866] - (.Malwarebytes - Malwarebytes Service.) -- C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6541008] [PID.1764] =>.Malwarebytes Corporation®
[MD5.F05FB26B5F0E45700803F122E1764FA4] - (.Malwarebytes - Malwarebytes Tray Application.) -- C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe [3768528] [PID.3076] =>.Malwarebytes Corporation®
[MD5.4984CCE4890E3AB3206C01E1F70E804E] - (.IvoSoft - Classic Start Menu.) -- C:\Program Files\Classic Shell\ClassicStartMenu.exe [164080] [PID.3160] =>.IvoSoft
[MD5.EA66582423B8ED237DAAE8B927191F22] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1586008] [PID.4088] =>.Google Inc®
[MD5.EA66582423B8ED237DAAE8B927191F22] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1586008] [PID.2068] =>.Google Inc®
[MD5.11F0645B98A899B8DEA50807D94C62A2] - (.Facebook - FacebookGameroom.) -- C:\Users\Utilisateur\AppData\Local\Facebook\Games\FacebookGameroom.exe [570232] [PID.220] =>.Facebook, Inc.®
[MD5.EA66582423B8ED237DAAE8B927191F22] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1586008] [PID.612] =>.Google Inc®
[MD5.EA66582423B8ED237DAAE8B927191F22] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1586008] [PID.1716] =>.Google Inc®
[MD5.EA66582423B8ED237DAAE8B927191F22] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1586008] [PID.2592] =>.Google Inc®
[MD5.EA66582423B8ED237DAAE8B927191F22] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1586008] [PID.2276] =>.Google Inc®
[MD5.900236357482B00944826354EEC6B93F] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe [288848] [PID.4440] =>.Google Inc®
[MD5.F107219B133E7E574DA052C5C88FFBF3] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe [366672] [PID.4448] =>.Google Inc®
[MD5.EA66582423B8ED237DAAE8B927191F22] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1586008] [PID.4996] =>.Google Inc®
[MD5.EB7620B5338B13D2338C809E7622842B] - (.The CefSharp Authors - Facebook Gameroom Browser.) -- C:\Users\Utilisateur\AppData\Local\Facebook\Games\Facebook Gameroom Browser.exe [43896] [PID.2644] =>.Facebook, Inc.®
[MD5.EA66582423B8ED237DAAE8B927191F22] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1586008] [PID.2664] =>.Google Inc®
[MD5.51E3CAFCDF2871AC391551FEAD2CBFFA] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\Utilisateur\Downloads\ZHPDiag3.exe [3092864] [PID.2824] =>.Nicolas Coolman
---\\ CHROME, Démarrage, Recherche, Extensions (15) - 1s
G0 - GCSP: Preferences [User Data\Default][HomePage] http://api.userstyles.org
G0 - GCSP: Preferences [User Data\Default][HomePage] http://apis.google.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://clients5.google.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://lh3.googleusercontent.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://ogs.google.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://s2.googleusercontent.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://ssl.gstatic.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google-analytics.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google.dz =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.gstatic.com =>.Google Inc.
G2 - GCE: Preference [Utilisateur][User Data\Default] [fjnbnpbmkenffdnngjfgmeleoegfcffe] Stylish =>.userstyles.org
G2 - GCE: Preference [Utilisateur][User Data\Default] [gighmmpiobklfepjocnamgkkbiglidom] Michael Gundlach =>.Wladimir Palant {AdBlock}
G2 - GCE: Preference [Utilisateur][User Data\Default] [gkojfkhlekighikafcpjkiklfbnlmeio] =>.Hola.org {Unlimited Free VPN}
G2 - GCE: Preference [Utilisateur][User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] =>.Google Inc. {Wallet}
G2 - GCE: Preference [Utilisateur][User Data\Default] [pkedcjkdefgpdelpbcmbmeomcjbeemfm] Chrome Media Router =>.Google Inc.
---\\ FIREFOX, Plugins,Démarrage,Recherche,Extensions (6) - 4s
P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\e10srollout@mozilla.org.xpi =>.Mozilla Corporation
P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\firefox@getpocket.com.xpi =>.Mozilla Corporation
P2 - EXT FILE: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\loop@mozilla.org.xpi
P2 - EXT FILE: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\websensehelper@mozilla.org.xpi
P2 - FPN: [HKCU] [ubisoft.com/uplaypc] - (...) -- C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_223.dll =>.Adobe Systems Incorporated
---\\ INTERNET EXPLORER,Démarrage,Recherche,URLSearchHook (16) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R3 - URLSearchHook: (no name)[HKCU] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (11.00.9600.18817 (winblue_ltsb.170907-0600)) -- C:\Windows\System32\ieframe.dll =>.Microsoft Corporation
R4 - HKLM\Software\WOW6432Node\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 0
---\\ INTERNET EXPLORER, Site de confiance et site sensible (2) - 0s
~ Microsoft Internet Explorer Restricted Site(s) Domains: 0(Good) / 0(Bad)
~ Microsoft Internet Explorer Restricted Site(s) EscDomains: 0(Good) / 0(Bad)
---\\ INTERNET EXPLORER,Proxy Management (5) - 1s
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 =>.Default.Value
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 =>.Default.Value
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 =>.Default.Value
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
R5 - HKLM\SYSTEM\CurrentControlSet\services\NlaSvc\Parameters\Internet\ManualProxies [] =>.Microsoft
---\\ INTERNET EXPLORER,IniFiles, Autoloading Programs (3) - 0s
F2 - REG:system.ini: UserInit=userinit.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: Shell=C:\windows\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: VMApplet=C:\windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.) =>.Microsoft Corporation
---\\ ÉTUDE DU FICHIER HOSTS (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (22)
---\\ RACCOURCIS GLOBAL STARTUP (87) - 18s
O4 - GS\Desktop [Administrateur]: Cheat Engine.lnk . (...) C:\Program Files (x86)\Cheat Engine 6.7\Cheat Engine.exe =>.Cheat Engine®
O4 - GS\Desktop [Administrateur]: Facebook Gameroom.lnk . (.Facebook - FacebookGameroom.) C:\Users\Utilisateur\AppData\Local\Facebook\Games\FacebookGameroom.exe =>.Facebook, Inc.®
O4 - GS\Desktop [Administrateur]: Ground Control 2 - Operation Exodus.lnk . (.Massive Entertainment AB - Ground Control II.) C:\Program Files (x86)\Ground Control 2 - Operation Exodus\gcii.exe
O4 - GS\Desktop [Administrateur]: Luxor 4 Quest For The Afterlife.lnk . (...) C:\Program Files (x86)\Games\Luxor 4 Quest For The Afterlife\LuxorQuestForTheAfterlife.exe
O4 - GS\Desktop [Administrateur]: Might & Magic Heroes VI.lnk . (.Virtuos - Might & Magic® Heroes VI Shades of Darkness.) C:\Program Files (x86)\Ubisoft\Might & Magic Heroes VI\Might & Magic Heroes VI.exe /offline {1D7A471ED75B2DFDFEFB0F64341859AD} =>.Virtuos
O4 - GS\Desktop [Administrateur]: Play Desperados.LNK . (.Spellbound Software - Desperados Loader.) C:\Desperados\Desperados.exe
O4 - GS\Desktop [Administrateur]: Uplay.lnk . (.Ubisoft - Uplay launcher.) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\Uplay.exe =>.Ubisoft Entertainment Sweden AB®
O4 - GS\Desktop [Administrateur]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Utilisateur\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Desktop [Administrateur]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\Utilisateur\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - GS\Quicklaunch [Administrateur]: Bigasoft Total Video Converter 5.lnk . (.Bigasoft Corporation - Total Video Converter.) C:\Program Files (x86)\Bigasoft\Total Video Converter 5\videoconverter.exe =>.Bigasoft Corporation
O4 - GS\Quicklaunch [Administrateur]: Bigasoft WTV Converter 5.lnk . (.Bigasoft Corporation - WTV Converter.) C:\Program Files (x86)\Bigasoft\WTV Converter 5\videoconverter.exe =>.Bigasoft Corporation
O4 - GS\Quicklaunch [Administrateur]: EagleGet.lnk . (.EagleGet.com - EagleGet Free Downloader.) C:\Program Files (x86)\EagleGet\EagleGet.exe {4B97BFE2D80C6C48} =>.EagleGet.com
O4 - GS\Quicklaunch [Administrateur]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Administrateur]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [Administrateur]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\Utilisateur\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - GS\sendTo [Administrateur]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\windows\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\TaskBar [Administrateur]: Counter Strike Global Offensive Warzone.lnk . (...) C:\Program Files (x86)\Warzone\CSGO WaRzOnE\csgo_launcher.exe
O4 - GS\TaskBar [Administrateur]: Facebook Gameroom (2).lnk . (.Facebook - FacebookGameroom.) C:\Users\Utilisateur\AppData\Local\Facebook\Games\FacebookGameroom.exe fbgames://windows_startup/ =>.Facebook, Inc.®
O4 - GS\TaskBar [Administrateur]: Google Chrome (2).lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [Administrateur]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [Administrateur]: Internet Explorer (2).lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\TaskBar [Administrateur]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Startup [Administrateur]: Facebook Gameroom.lnk . (.Facebook - FacebookGameroom.) C:\Users\Utilisateur\AppData\Local\Facebook\Games\FacebookGameroom.exe fbgames://windows_startup/ =>.Facebook, Inc.®
O4 - GS\Programs [Administrateur]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [Utilisateur]: Cheat Engine.lnk . (...) C:\Program Files (x86)\Cheat Engine 6.7\Cheat Engine.exe =>.Cheat Engine®
O4 - GS\Desktop [Utilisateur]: Facebook Gameroom.lnk . (.Facebook - FacebookGameroom.) C:\Users\Utilisateur\AppData\Local\Facebook\Games\FacebookGameroom.exe =>.Facebook, Inc.®
O4 - GS\Desktop [Utilisateur]: Ground Control 2 - Operation Exodus.lnk . (.Massive Entertainment AB - Ground Control II.) C:\Program Files (x86)\Ground Control 2 - Operation Exodus\gcii.exe
O4 - GS\Desktop [Utilisateur]: Luxor 4 Quest For The Afterlife.lnk . (...) C:\Program Files (x86)\Games\Luxor 4 Quest For The Afterlife\LuxorQuestForTheAfterlife.exe
O4 - GS\Desktop [Utilisateur]: Might & Magic Heroes VI.lnk . (.Virtuos - Might & Magic® Heroes VI Shades of Darkness.) C:\Program Files (x86)\Ubisoft\Might & Magic Heroes VI\Might & Magic Heroes VI.exe /offline {1D7A471ED75B2DFDFEFB0F64341859AD} =>.Virtuos
O4 - GS\Desktop [Utilisateur]: Play Desperados.LNK . (.Spellbound Software - Desperados Loader.) C:\Desperados\Desperados.exe
O4 - GS\Desktop [Utilisateur]: Uplay.lnk . (.Ubisoft - Uplay launcher.) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\Uplay.exe =>.Ubisoft Entertainment Sweden AB®
O4 - GS\Desktop [Utilisateur]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Utilisateur\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Desktop [Utilisateur]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\Utilisateur\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - GS\Quicklaunch [Utilisateur]: Bigasoft Total Video Converter 5.lnk . (.Bigasoft Corporation - Total Video Converter.) C:\Program Files (x86)\Bigasoft\Total Video Converter 5\videoconverter.exe =>.Bigasoft Corporation
O4 - GS\Quicklaunch [Utilisateur]: Bigasoft WTV Converter 5.lnk . (.Bigasoft Corporation - WTV Converter.) C:\Program Files (x86)\Bigasoft\WTV Converter 5\videoconverter.exe =>.Bigasoft Corporation
O4 - GS\Quicklaunch [Utilisateur]: EagleGet.lnk . (.EagleGet.com - EagleGet Free Downloader.) C:\Program Files (x86)\EagleGet\EagleGet.exe {4B97BFE2D80C6C48} =>.EagleGet.com
O4 - GS\Quicklaunch [Utilisateur]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Utilisateur]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [Utilisateur]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\Utilisateur\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - GS\sendTo [Utilisateur]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\windows\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\TaskBar [Utilisateur]: Counter Strike Global Offensive Warzone.lnk . (...) C:\Program Files (x86)\Warzone\CSGO WaRzOnE\csgo_launcher.exe
O4 - GS\TaskBar [Utilisateur]: Facebook Gameroom (2).lnk . (.Facebook - FacebookGameroom.) C:\Users\Utilisateur\AppData\Local\Facebook\Games\FacebookGameroom.exe fbgames://windows_startup/ =>.Facebook, Inc.®
O4 - GS\TaskBar [Utilisateur]: Google Chrome (2).lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [Utilisateur]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [Utilisateur]: Internet Explorer (2).lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\TaskBar [Utilisateur]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Startup [Utilisateur]: Facebook Gameroom.lnk . (.Facebook - FacebookGameroom.) C:\Users\Utilisateur\AppData\Local\Facebook\Games\FacebookGameroom.exe fbgames://windows_startup/ =>.Facebook, Inc.®
O4 - GS\Programs [Utilisateur]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\CommonDesktop [Public]: Adobe Reader XI.lnk . (.Adobe Systems Incorporated - Adobe Reader.) C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe =>.Adobe Systems, Incorporated®
O4 - GS\CommonDesktop [Public]: Age of Empires II HD The Forgotten.lnk . (.Microsoft Corporation - Age of Empires II HD.) C:\Program Files (x86)\Age of Empires II HD The Forgotten\AoK HD.exe =>.Microsoft Corporation
O4 - GS\CommonDesktop [Public]: Avidemux 2.7 - 64 bits.lnk . (.Free Software Foundation - Avidemux 2.7.0.) C:\Program Files\Avidemux 2.7 - 64 bits\avidemux.exe =>.Free Software Foundation
O4 - GS\CommonDesktop [Public]: Bigasoft Total Video Converter 5.lnk . (.Bigasoft Corporation - Total Video Converter.) C:\Program Files (x86)\Bigasoft\Total Video Converter 5\videoconverter.exe =>.Bigasoft Corporation
O4 - GS\CommonDesktop [Public]: Bigasoft WTV Converter 5.lnk . (.Bigasoft Corporation - WTV Converter.) C:\Program Files (x86)\Bigasoft\WTV Converter 5\videoconverter.exe =>.Bigasoft Corporation
O4 - GS\CommonDesktop [Public]: Counter Strike Global Offensive Warzone.lnk . (...) C:\Program Files (x86)\Warzone\CSGO WaRzOnE\csgo_launcher.exe
O4 - GS\CommonDesktop [Public]: CPUID CPU-Z.lnk . (.CPUID - CPU-Z Application.) C:\Program Files\CPUID\CPU-Z\cpuz.exe =>.CPUID®
O4 - GS\CommonDesktop [Public]: EagleGet.lnk . (.EagleGet.com - EagleGet Free Downloader.) C:\Program Files (x86)\EagleGet\EagleGet.exe {4B97BFE2D80C6C48} =>.EagleGet.com
O4 - GS\CommonDesktop [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\CommonDesktop [Public]: Heroes of Might and Magic V - Tribes of the East.lnk . (.Copyright В© Nival Interactive 2006. - Heroes of Might and Magic V.) C:\Program Files (x86)\Ubisoft\Heroes of Might and Magic V - Tribes of the East\bin\H5_Game.exe {4EEFD0B3B29244A76B5BDC4C5D86841C}
O4 - GS\CommonDesktop [Public]: Malwarebytes.lnk . (.Malwarebytes - Malwarebytes.) C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe =>.Malwarebytes Corporation®
O4 - GS\CommonDesktop [Public]: PowerISO.lnk . (.Power Software Ltd - PowerISO.) C:\Program Files\PowerISO\PowerISO.exe =>.Power Software Ltd
O4 - GS\CommonDesktop [Public]: VLC media player.lnk . (.VideoLAN - VLC media player.) C:\Program Files (x86)\VideoLAN\VLC\vlc.exe =>.VideoLAN®
O4 - GS\Programs [Public]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Accessories [Public]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) C:\windows\system32\notepad.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Calculator.lnk . (.Microsoft Corporation - Calculatrice de Windows.) C:\windows\system32\calc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Math Input Panel.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\mip.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.) C:\windows\system32\mspaint.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Connexion Bureau à distance.) C:\windows\system32\mstsc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - Outil Capture d’écran.) C:\windows\system32\SnippingTool.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sound Recorder.lnk . (.Microsoft Corporation - Magnétophone Windows.) C:\windows\system32\SoundRecorder.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Steps Recorder.lnk . (.Microsoft Corporation - Enregistreur d’actions.) C:\windows\system32\psr.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sticky Notes.lnk . (.Microsoft Corporation - Pense-bête.) C:\windows\system32\StikyNot.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Fax and Scan.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\windows\system32\WFS.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Application Windows Wordpad.) C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: XPS Viewer.lnk . (.Microsoft Corporation - Visionneuse XPS.) C:\windows\system32\xpsrchvw.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Table des caractères.) C:\windows\system32\charmap.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Adobe Reader XI.lnk . (...) C:\windows\Installer\{AC76BA86-7AD7-1036-7B44-AB0000000001}\SC_Reader.ico =>.Adobe Inc.
O4 - GS\ProgramsCommon [Public]: Age of Empires II HD The Forgotten.lnk . (.Microsoft Corporation - Age of Empires II HD.) C:\Program Files (x86)\Age of Empires II HD The Forgotten\AoK HD.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Camera.lnk . (.Microsoft Corporation - Camera.) C:\windows\Camera\Camera.exe =>.Microsoft Windows®
O4 - GS\ProgramsCommon [Public]: FileManager.lnk . (.Microsoft Corporation - OneDrive.) C:\windows\FileManager\FileManager.exe =>.Microsoft Windows®
O4 - GS\ProgramsCommon [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\ProgramsCommon [Public]: Immersive Control Panel.lnk . (.Microsoft Corporation - Windows Control Panel.) C:\windows\System32\Control.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Intel(R) HD Graphics Control Panel.lnk . (.Intel Corporation - GFXUIEX Module.) C:\windows\system32\GfxUIEx.exe =>.Intel Corporation
O4 - GS\ProgramsCommon [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\ProgramsCommon [Public]: PhotosApp.lnk . (.Microsoft Corporation - Photos.) C:\windows\FileManager\PhotosApp.exe =>.Microsoft Windows®
O4 - GS\ProgramsCommon [Public]: Search.lnk . (.Microsoft Corporation - Processus hôte Windows (Rundll32).) C:\windows\system32\rundll32.exe -sta {C90FB8CA-3295-4462-A721-2935E83694BA} =>..Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Windows Store.lnk . (...) C:\windows\WinStore\WinStore.htm =>.Microsoft Corporation
---\\ MODIFICATION DOMAINE/ADRESSES (DNS) (4) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpDomain = 2750U
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{3A90B4ED-038D-4D2C-B273-ECCC0BC2DA1D}: DhcpNameServer = 192.168.1.1 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{3A90B4ED-038D-4D2C-B273-ECCC0BC2DA1D}: DhcpDomain = 2750U
---\\ PROTOCOLE ADDITIONNEL (17) - 2s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll =>.Microsoft Corporation
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
---\\ REGISTRE AppInit_DLLs et Winlogon Notify (1) - 0s
O20 - Winlogon : UserInit . (.Microsoft Corporation - Application d’ouverture de session Userinit.) - C:\Windows\system32\userinit.exe =>.Microsoft Corporation
---\\ COMPOSANTS ACTIVESETUP INSTALLÉS (ASIC) (8) - 1s
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\System32\wmpdxm.dll =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files\Windows Mail\WinMail.exe =>.Microsoft Corporation
O40 - ASIC: Enable TLS1.1 and 1.2 [64Bits] - {66C64F22-FC60-4E6C-A6B5-F0D580E680CE} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\windows\System32\ie4uinit.exe =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Utilitaire d’installation du Lecteur Window.) -- C:\Windows\System32\unregmp2.exe =>.Microsoft Corporation
O40 - ASIC: Disable SSL3 [64Bits] - {7D715857-A67C-4C2F-A929-038448584D63} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\windows\System32\ie4uinit.exe =>.Microsoft Corporation
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\System32\mscories.dll =>.Microsoft Corporation®
O40 - ASIC: Google Chrome [64Bits] - {8A69D345-D564-463c-AFF1-A69D9E530F96} . (.Google Inc. - Google Chrome Installer.) -- C:\Program Files (x86)\Google\Chrome\Application\66.0.3359.139\Installer\chrmstp.exe =>.Google Inc®
---\\ LOGICIELS INSTALLÉS (43) - 15s
O42 - Logiciel: . . - (.Intel.) [HKLM][64Bits] -- {569F29BA-2D46-439B-8B7C-01D999B9201D} =>.Intel
O42 - Logiciel: . . . - (.Intel.) [HKLM][64Bits] -- {9F460796-0348-4B11-BCA0-714C4B85E3D7} =>.Intel
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- uTorrent =>.BitTorrent Inc®
O42 - Logiciel: 7-Zip 18.05 (x64 edition) - (.Igor Pavlov.) [HKLM][64Bits] -- {23170F69-40C1-2702-1805-000001000000} =>.Igor Pavlov
O42 - Logiciel: Adobe Flash Player 15 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Flash Player 29 PPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player PPAPI =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Reader XI (11.0.20) - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AB0000000001} =>.Adobe Systems Incorporated
O42 - Logiciel: Age of Empires II HD The Forgotten - (..) [HKLM][64Bits] -- QWdlb2ZFbXBpcmVzSUlIRFRoZUZvcmdvdHRlbg==_is1
O42 - Logiciel: Avidemux 2.7 - 64 bits - (.Mean.) [HKLM][64Bits] -- Avidemux 2.7 - 64 bits (64-bit) =>.Mean
O42 - Logiciel: Bigasoft Total Video Converter 5.0.7.5732 - (.Bigasoft Corporation.) [HKLM][64Bits] -- {A72CE741-1F32-4D79-BFFB-A714375C6750}_is1 =>.Bigasoft Corporation
O42 - Logiciel: Bigasoft WTV Converter 5.0.7.5736 - (.Bigasoft Corporation.) [HKLM][64Bits] -- {BF28F7E1-F3A0-40E5-B4E7-B6CFE20D5A50}_is1 =>.Bigasoft Corporation
O42 - Logiciel: Cheat Engine 6.7 - (.Cheat Engine.) [HKLM][64Bits] -- Cheat Engine 6.7_is1 =>.Cheat Engine®
O42 - Logiciel: Classic Shell - (.IvoSoft.) [HKLM][64Bits] -- {7C129CF8-199F-4269-AAEE-60B5D8D716E2} =>.IvoSoft
O42 - Logiciel: CPUID CPU-Z 1.83 - (.CPUID, Inc..) [HKLM][64Bits] -- CPUID CPU-Z_is1 =>.CPUID, Inc.
O42 - Logiciel: CSGO WaRzOnE - (.Warzone.) [HKLM][64Bits] -- {2F939E80-8D55-4E2E-BBA4-06AFCB9FA75C} =>.Warzone
O42 - Logiciel: CSGO WaRzOnE - (.Warzone.) [HKLM][64Bits] -- CSGO WaRzOnE 1.35.6.3 =>.Warzone
O42 - Logiciel: EagleGet version 2.0.4.28 - (.EagleGet.) [HKLM][64Bits] -- {F6D8142A-B30B-454B-9EE0-08A7B997DFE4}_is1 =>.EagleGet
O42 - Logiciel: Facebook Gameroom 1.21.6697.19829 - (.Facebook.) [HKLM][64Bits] -- {7BE2211B-F86C-40CA-A6CC-69564D9BD5E2} =>.Facebook
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome =>.Google Inc®
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} =>.Google Inc.
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} =>.Google Inc.
O42 - Logiciel: Ground Control 2 - Operation Exodus - (.Seraph1.) [HKLM][64Bits] -- Ground Control 2 - Operation Exodus_Seraph1_is1
O42 - Logiciel: Heroes of Might and Magic V - Tribes of the East - (..) [HKLM][64Bits] -- {66FF4C48-0083-4E60-8556-B883AB200092}
O42 - Logiciel: Intel(R) Computing Improvement Program - (.Intel Corporation.) [HKLM][64Bits] -- {F0385150-FF86-4A18-AA55-6ED9E5F87DA7} =>.Intel Corporation
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A} =>.Intel Corporation - Software and Firmware Products®
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA} =>.Intel Corporation - Software and Firmware Products®
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {409CB30E-E457-4008-9B1A-ED1B9EA21140} =>.Intel Corporation
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {B9C27F57-AB84-425F-9D00-E18C5D65C18D} =>.Intel Corporation
O42 - Logiciel: Intel® Driver & Support Assistant - (.Intel.) [HKLM][64Bits] -- {e7adbf16-34ad-490a-a4e8-feb60fb99973} =>.Intel(R) Driver & Support Assistant®
O42 - Logiciel: Intel® Trusted Connect Service Client - (.Intel Corporation.) [HKLM][64Bits] -- {B5E06417-A4AC-4225-B36E-7E34C91616E7} =>.Intel Corporation
O42 - Logiciel: Luxor 4 Quest For The Afterlife 1.00 - (..) [HKLM][64Bits] -- Luxor 4 Quest For The Afterlife 1.00
O42 - Logiciel: Malwarebytes version 3.5.1.2522 - (.Malwarebytes.) [HKLM][64Bits] -- {35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1 =>.Malwarebytes Corporation®
O42 - Logiciel: Might & Magic Heroes VI - Shades of Darkness - (.Ubisoft.) [HKLM][64Bits] -- {745D37C2-26F4-4B65-BA13-F9840EBFA75B} {1D7A471ED75B2DFDFEFB0F64341859AD} =>.Ubisoft
O42 - Logiciel: Mozilla Firefox 47.0.2 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 47.0.2 (x86 fr) =>.Mozilla Corporation®
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService =>.Mozilla
O42 - Logiciel: PHDGD Virtual VRAM Tool version 1.0 - (.PHDGD/IntelliModder32.) [HKLM][64Bits] -- {FB97A218-8B43-43BE-A721-C199C6589D08}_is1
O42 - Logiciel: PowerISO - (.Power Software Ltd.) [HKLM][64Bits] -- PowerISO =>.Power Software Ltd
O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476} =>.Realtek Semiconductor Corp®
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} =>.Realtek Semiconductor Corp®
O42 - Logiciel: Unlocker 1.9.2 - (.Cedrick Collomb.) [HKLM][64Bits] -- Unlocker =>.Cedrick Collomb
O42 - Logiciel: Uplay - (.Ubisoft.) [HKLM][64Bits] -- Uplay =>.Ubisoft Entertainment Sweden AB®
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player =>.VideoLAN
O42 - Logiciel: WinRAR 5.50 (32-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver =>.win.rar GmbH®
---\\ CLÉ DE REGISTRE SOFTWARE HKCU & HKLM (92) - 15s
HKLM\SOFTWARE\Adobe =>.Adobe
HKLM\SOFTWARE\ahead =>.Ahead
HKLM\SOFTWARE\AVAST Software =>.AVAST Software
HKLM\SOFTWARE\Avidemux 2.7 - 64 bits (64-bit) =>.Mean
HKLM\SOFTWARE\Bigasoft =>.Bigasoft Corporation
HKLM\SOFTWARE\Caphyon =>.Caphyon
HKLM\SOFTWARE\DownloadCenter =>.DownloadCenter
HKLM\SOFTWARE\EagleGet =>.EagleGet
HKLM\SOFTWARE\Google =>.Google
HKLM\SOFTWARE\Intel =>.Intel
HKLM\SOFTWARE\Khronos =>.Khronos
HKLM\SOFTWARE\Lavasoft =>.Lavasoft
HKLM\SOFTWARE\Macromedia =>.Macromedia
HKLM\SOFTWARE\Massive Entertainment AB =>.Massive Entertainment AB
HKLM\SOFTWARE\Mozilla =>.Mozilla
HKLM\SOFTWARE\mozilla.org =>.mozilla.org
HKLM\SOFTWARE\MozillaPlugins =>.MozillaPlugins
HKLM\SOFTWARE\Nero =>.Ahead Corporation
HKLM\SOFTWARE\Nuance =>.Nuance
HKLM\SOFTWARE\ODBC =>.DB Connectivity Solutions
HKLM\SOFTWARE\PowerISO =>.PowerISO Computing
HKLM\SOFTWARE\Realtek =>.Realtek Semiconductor Corp.
HKLM\SOFTWARE\Realtek Semiconductor Corp. =>.Realtek Semiconductor Corp.
HKLM\SOFTWARE\Spellbound Software
HKLM\SOFTWARE\Ubisoft =>.Ubisoft
HKLM\SOFTWARE\VideoLAN =>.VideoLAN
HKLM\SOFTWARE\Warzone =>.Warzone
HKLM\SOFTWARE\WinRAR =>.WinRAR
HKLM\SOFTWARE\RegisteredApplications =>.Microsoft Corporation
HKLM\SOFTWARE\WOW6432Node\Adobe =>.Adobe
HKLM\SOFTWARE\WOW6432Node\ahead =>.Ahead
HKLM\SOFTWARE\WOW6432Node\AVAST Software =>.AVAST Software
HKLM\SOFTWARE\WOW6432Node\Avidemux 2.7 - 64 bits (64-bit) =>.Mean
HKLM\SOFTWARE\WOW6432Node\Bigasoft =>.Bigasoft Corporation
HKLM\SOFTWARE\WOW6432Node\Caphyon =>.Caphyon
HKLM\SOFTWARE\WOW6432Node\DownloadCenter =>.DownloadCenter
HKLM\SOFTWARE\WOW6432Node\EagleGet =>.EagleGet
HKLM\SOFTWARE\WOW6432Node\Google =>.Google
HKLM\SOFTWARE\WOW6432Node\Intel =>.Intel
HKLM\SOFTWARE\WOW6432Node\Khronos =>.Khronos
HKLM\SOFTWARE\WOW6432Node\Lavasoft =>.Lavasoft
HKLM\SOFTWARE\WOW6432Node\Macromedia =>.Macromedia
HKLM\SOFTWARE\WOW6432Node\Massive Entertainment AB =>.Massive Entertainment AB
HKLM\SOFTWARE\WOW6432Node\Mozilla =>.Mozilla
HKLM\SOFTWARE\WOW6432Node\mozilla.org =>.mozilla.org
HKLM\SOFTWARE\WOW6432Node\MozillaPlugins =>.MozillaPlugins
HKLM\SOFTWARE\WOW6432Node\Nero =>.Ahead Corporation
HKLM\SOFTWARE\WOW6432Node\Nuance =>.Nuance
HKLM\SOFTWARE\WOW6432Node\ODBC =>.DB Connectivity Solutions
HKLM\SOFTWARE\WOW6432Node\PowerISO =>.PowerISO Computing
HKLM\SOFTWARE\WOW6432Node\Realtek =>.Realtek Semiconductor Corp.
HKLM\SOFTWARE\WOW6432Node\Realtek Semiconductor Corp. =>.Realtek Semiconductor Corp.
HKLM\SOFTWARE\WOW6432Node\Spellbound Software
HKLM\SOFTWARE\WOW6432Node\Ubisoft =>.Ubisoft
HKLM\SOFTWARE\WOW6432Node\VideoLAN =>.VideoLAN
HKLM\SOFTWARE\WOW6432Node\Warzone =>.Warzone
HKLM\SOFTWARE\WOW6432Node\WinRAR =>.WinRAR
HKLM\SOFTWARE\WOW6432Node\RegisteredApplications =>.Microsoft Corporation
HKCU\SOFTWARE\7-Zip =>.Igor Pavlov
HKCU\SOFTWARE\Adobe =>.Adobe
HKCU\SOFTWARE\AppDataLow =>.Microsoft Corporation
HKCU\SOFTWARE\Bigasoft =>.Bigasoft Corporation
HKCU\SOFTWARE\BitTorrent =>.BitTorrent (P2P)
HKCU\SOFTWARE\Browser Cleanup =>.Avast Software s.r.o
HKCU\SOFTWARE\Caphyon =>.Caphyon
HKCU\SOFTWARE\Cheat Engine =>.Dark Byte
HKCU\SOFTWARE\Chromium =>.Chromium
HKCU\SOFTWARE\EagleGet =>.EagleGet
HKCU\SOFTWARE\Facebook =>.Facebook
HKCU\SOFTWARE\Google =>.Google
HKCU\SOFTWARE\IGA =>.Legitimate
HKCU\SOFTWARE\Intel =>.Intel
HKCU\SOFTWARE\IvoSoft =>.IvoSoft
HKCU\SOFTWARE\Malwarebytes =>.Malwarebytes
HKCU\SOFTWARE\Mine =>.Microsoft Corporation
HKCU\SOFTWARE\Mozilla =>.Mozilla
HKCU\SOFTWARE\MozillaPlugins =>.MozillaPlugins
HKCU\SOFTWARE\My Company
HKCU\SOFTWARE\Netscape =>.Netscape
HKCU\SOFTWARE\PowerISO =>.PowerISO Computing
HKCU\SOFTWARE\QtProject =>.QtProject
HKCU\SOFTWARE\Realtek =>.Realtek Semiconductor Corp.
HKCU\SOFTWARE\RegisteredApplications =>.Microsoft Corporation
HKCU\SOFTWARE\RtkPCEE3sMsg
HKCU\SOFTWARE\Trolltech =>.Trolltech
HKCU\SOFTWARE\Ubisoft =>.Ubisoft
HKCU\SOFTWARE\Valve =>.Valve
HKCU\SOFTWARE\WinRAR =>.WinRAR
HKCU\SOFTWARE\WinRAR SFX =>.RarLab
HKCU\SOFTWARE\Wow6432Node =>.Microsoft Corporation
HKCU\SOFTWARE\ZHP =>.Nicolas Coolman
HKCU\SOFTWARE\AppDataLow\Software =>.Microsoft Corporation
---\\ CONTENU DES DOSSIERS PROGRAMMES (99) - 9s
O43 - CFD: 09/05/2018 - [] D -- C:\Program Files\7-Zip =>.Igor Pavlov
O43 - CFD: 04/03/2018 - [] D -- C:\Program Files\Avidemux 2.7 - 64 bits =>.Mean
O43 - CFD: 08/12/2015 - [] D -- C:\Program Files\Classic Shell =>.Ivo Beltchev
O43 - CFD: 01/03/2018 - [] D -- C:\Program Files\CPUID =>.CPUID Inc
O43 - CFD: 01/03/2018 - [] D -- C:\Program Files\Intel =>.Intel Corporation
O43 - CFD: 09/05/2018 - [] D -- C:\Program Files\Malwarebytes =>.Malwarebytes
O43 - CFD: 28/02/2018 - [] D -- C:\Program Files\PowerISO =>.PowerISO Computing
O43 - CFD: 08/12/2015 - [] D -- C:\Program Files\Realtek =>.Realtek
O43 - CFD: 09/05/2018 - [] D -- C:\Program Files\Unlocker =>.Cedrick Collomb
O43 - CFD: 08/12/2015 - [] D -- C:\Program Files (x86)\Adobe =>.Adobe Systems, Incorporated®
O43 - CFD: 09/05/2018 - [] D -- C:\Program Files (x86)\Age of Empires II HD The Forgotten
O43 - CFD: 06/05/2018 - [] D -- C:\Program Files (x86)\Bigasoft =>.Bigasoft Corporation
O43 - CFD: 09/05/2018 - [] D -- C:\Program Files (x86)\Cheat Engine 6.7 =>.Dark Byte
O43 - CFD: 09/05/2018 - [] D -- C:\Program Files (x86)\EagleGet {4B97BFE2D80C6C48} =>.EagleGet
O43 - CFD: 08/12/2015 - [] D -- C:\Program Files (x86)\Google =>.Google Inc®
O43 - CFD: 05/03/2018 - [] D -- C:\Program Files (x86)\Ground Control 2 - Operation Exodus
O43 - CFD: 02/03/2018 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information =>.InstallShield
O43 - CFD: 08/12/2015 - [] D -- C:\Program Files (x86)\Intel =>.Intel Corporation
O43 - CFD: 06/05/2018 - [] D -- C:\Program Files (x86)\Intel Driver and Support Assistant =>.Intel(R) Driver & Support Assistant®
O43 - CFD: 09/05/2018 - [0] D -- C:\Program Files (x86)\Lavasoft =>.Lavasoft
O43 - CFD: 09/05/2018 - [] D -- C:\Program Files (x86)\Mozilla Firefox =>.Mozilla
O43 - CFD: 08/12/2015 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service =>.Mozilla
O43 - CFD: 08/12/2015 - [] D -- C:\Program Files (x86)\Realtek =>.Realtek
O43 - CFD: 02/03/2018 - [] D -- C:\Program Files (x86)\Ubisoft =>.Ubisoft
O43 - CFD: 08/12/2015 - [] D -- C:\Program Files (x86)\VideoLAN =>.VideoLan Team
O43 - CFD: 03/03/2018 - [] D -- C:\Program Files (x86)\Warzone =>.Warzone
O43 - CFD: 09/05/2018 - [] D -- C:\Program Files (x86)\WinRAR =>.win.rar GmbH®
O43 - CFD: 09/05/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip =>.Igor Pavlov
O43 - CFD: 11/04/2018 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools
O43 - CFD: 09/05/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avidemux (64 bits) =>.SourceForge
O43 - CFD: 22/04/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.7 =>.Dark Byte
O43 - CFD: 08/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Classic Shell =>.Ivo Beltchev
O43 - CFD: 01/03/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID =>.CPUID Inc
O43 - CFD: 03/03/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CSGO WaRzOnE
O43 - CFD: 09/05/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EagleGet =>.EagleGet
O43 - CFD: 05/03/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ground Control 2 - Operation Exodus
O43 - CFD: 08/12/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel =>.Intel Corporation
O43 - CFD: 01/03/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Driver and Support Assistant
O43 - CFD: 09/05/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes =>.Malwarebytes
O43 - CFD: 02/03/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PHDGD Virtual VRAM Tool
O43 - CFD: 28/02/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerISO =>.PowerISO Computing
O43 - CFD: 28/02/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ubisoft =>.Ubisoft
O43 - CFD: 08/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN =>.VideoLan Team
O43 - CFD: 09/05/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR
O43 - CFD: 08/12/2015 - [] D -- C:\ProgramData\Adobe =>.Adobe
O43 - CFD: 09/05/2018 - [] D -- C:\ProgramData\AVAST Software =>.AVAST Software
O43 - CFD: 03/03/2018 - [] D -- C:\ProgramData\Caphyon =>.Caphyon
O43 - CFD: 09/05/2018 - [] D -- C:\ProgramData\EagleGet =>.EagleGet
O43 - CFD: 01/03/2018 - [] D -- C:\ProgramData\Intel =>.Intel Corporation
O43 - CFD: 09/05/2018 - [0] D -- C:\ProgramData\Lavasoft =>.Lavasoft
O43 - CFD: 09/05/2018 - [] D -- C:\ProgramData\Malwarebytes =>.Malwarebytes
O43 - CFD: 13/04/2018 - [] D -- C:\ProgramData\McAfee =>.McAfee
O43 - CFD: 08/12/2015 - [] D -- C:\ProgramData\Mozilla =>.Mozilla Corporation
O43 - CFD: 01/03/2018 - [] D -- C:\ProgramData\MumboJumbo =>.MumboJumbo
O43 - CFD: 03/03/2018 - [] D -- C:\ProgramData\Steam =>.Steam Games
O43 - CFD: 08/12/2015 - [] D -- C:\Program Files (x86)\Common Files\Adobe =>.Adobe
O43 - CFD: 09/05/2018 - [] D -- C:\Program Files (x86)\Common Files\EagleGet =>.EagleGet
O43 - CFD: 28/02/2018 - [] D -- C:\Program Files (x86)\Common Files\InstallShield =>.InstallShield
O43 - CFD: 25/01/2015 - [] D -- C:\Program Files (x86)\Common Files\Intel =>.Intel Corporation
O43 - CFD: 08/12/2015 - [] D -- C:\Program Files (x86)\Common Files\Intel Corporation =>.Intel Corporation
O43 - CFD: 08/12/2015 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Adobe =>.Adobe
O43 - CFD: 06/05/2018 - [] D -- C:\Users\Utilisateur\AppData\Roaming\avidemux =>.Mean
O43 - CFD: 06/05/2018 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Bigasoft Total Video Converter 5 =>.Bigasoft Corporation
O43 - CFD: 06/05/2018 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Bigasoft WTV Converter 5 =>.Bigasoft Corporation
O43 - CFD: 28/02/2018 - [] D -- C:\Users\Utilisateur\AppData\Roaming\ClassicShell =>.SourceForge
O43 - CFD: 09/05/2018 - [] D -- C:\Users\Utilisateur\AppData\Roaming\EagleGet =>.EagleGet
O43 - CFD: 28/02/2018 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Google =>.Google
O43 - CFD: 05/03/2018 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Ground Control 2 - Operation Exodus_unistall
O43 - CFD: 28/02/2018 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Intel Corporation =>.Intel Corporation
O43 - CFD: 13/04/2018 - [] D -- C:\Users\Utilisateur\AppData\Roaming\McAfee Safe Connect =>.McAfee Inc.
O43 - CFD: 29/04/2018 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Might & Magic Heroes VI =>.Games Software
O43 - CFD: 28/02/2018 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Mozilla =>.Mozilla Corporation
O43 - CFD: 01/03/2018 - [] D -- C:\Users\Utilisateur\AppData\Roaming\PowerISO =>.PowerISO Computing
O43 - CFD: 09/05/2018 - [] D -- C:\Users\Utilisateur\AppData\Roaming\uTorrent
O43 - CFD: 06/05/2018 - [] D -- C:\Users\Utilisateur\AppData\Roaming\vlc =>.VideoLan Team
O43 - CFD: 28/02/2018 - [] D -- C:\Users\Utilisateur\AppData\Roaming\WinRAR =>.WinRAR
O43 - CFD: 09/05/2018 - [] D -- C:\Users\Utilisateur\AppData\Roaming\ZHP =>.Nicolas Coolman
O43 - CFD: 13/04/2018 - [0] D -- C:\Users\Utilisateur\AppData\Local\Adobe =>.Adobe
O43 - CFD: 09/05/2018 - [] D -- C:\Users\Utilisateur\AppData\Local\AVAST Software =>.AVAST Software
O43 - CFD: 04/03/2018 - [] D -- C:\Users\Utilisateur\AppData\Local\avidemux =>.Mean
O43 - CFD: 28/02/2018 - [] D -- C:\Users\Utilisateur\AppData\Local\CEF =>.CEF
O43 - CFD: 02/03/2018 - [] D -- C:\Users\Utilisateur\AppData\Local\Chromium =>.Chromium
O43 - CFD: 09/05/2018 - [] D -- C:\Users\Utilisateur\AppData\Local\ClassicShell =>.SourceForge
O43 - CFD: 03/05/2018 - [] D -- C:\Users\Utilisateur\AppData\Local\Facebook =>.Facebook
O43 - CFD: 28/02/2018 - [] D -- C:\Users\Utilisateur\AppData\Local\Google =>.Google
O43 - CFD: 13/04/2018 - [] D -- C:\Users\Utilisateur\AppData\Local\McAfee_Inc =>.McAfee Inc.
O43 - CFD: 28/02/2018 - [] D -- C:\Users\Utilisateur\AppData\Local\Mozilla =>.Mozilla Corporation
O43 - CFD: 02/03/2018 - [] D -- C:\Users\Utilisateur\AppData\Local\Ubisoft Game Launcher =>.Ubisoft
O43 - CFD: 09/05/2018 - [] D -- C:\Users\Utilisateur\AppData\Local\ZHP =>.Nicolas Coolman
O43 - CFD: 04/05/2018 - [] D -- C:\Users\Utilisateur\AppData\LocalLow\uTorrent
O43 - CFD: 08/03/2018 - [] RD -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools
O43 - CFD: 06/05/2018 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bigasoft =>.Bigasoft Corporation
O43 - CFD: 03/05/2018 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Facebook =>.Facebook
O43 - CFD: 01/03/2018 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Infogrames =>.Infogrames
O43 - CFD: 01/03/2018 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Luxor 4 Quest For The Afterlife 1.00
O43 - CFD: 02/03/2018 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft =>.Ubisoft
O43 - CFD: 09/05/2018 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker =>.Cedrick Collomb
O43 - CFD: 09/05/2018 - [] D -- C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR
O43 - CFD: 09/05/2018 - [] -- C:\windows\System32\Config\systemprofile\AppData\Local\AVAST Software =>.AVAST Software
---\\ ShellIconOverlayIdentifiers (SIOI) (2) - 0s
O106 - SIOI: [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - DLL d’extension d’environnement de stockage.) -- C:\Windows\System32\EhStorShell.dll =>.Microsoft Corporation
O106 - SIOI: [Offline Files] - {4E77131D-3629-431c-9818-C5679DC83E81}. (.Microsoft Corporation - IU de cache côté client.) -- C:\windows\System32\cscui.dll =>.Microsoft Corporation
---\\ RACCOURCIS DES MENUS CONCEPTUELS (SCMH) (39) - 4s
O108 - CMH1: 7-Zip [64Bits] - {23170F69-40C1-278A-1000-000100020000} . (.Igor Pavlov - 7-Zip Shell Extension.) -- C:\Program Files\7-Zip\7-zip.dll =>.Igor Pavlov
O108 - CMH1: BriefcaseMenu [64Bits] - {85BBD920-42A0-1069-A2E4-08002B30309D} . (.Microsoft Corporation - Porte-documents Windows.) -- C:\Windows\System32\syncui.dll =>.Microsoft Corporation
O108 - CMH1: Open With [64Bits] - {09799AFB-AD67-11d1-ABCD-00C04FC30936} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH1: Open With EncryptionMenu [64Bits] - {A470F8CF-A1E8-4f65-8335-227475AA5C46} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH1: PowerISO [64Bits] - {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} . (.Power Software Ltd - PowerISOShell DLL.) -- C:\Program Files\PowerISO\PWRISOSH.DLL =>.Power Software Ltd
O108 - CMH1: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation
O108 - CMH1: WinRAR [64Bits] - {B41DB860-64E4-11D2-9906-E49FADC173CA} . (.Alexander Roshal - WinRAR shell extension.) -- C:\Program Files (x86)\WinRAR\RarExt64.dll =>.win.rar GmbH®
O108 - CMH1: WinRAR32 [64Bits] - {B41DB860-8EE4-11D2-9906-E49FADC173CA} . (.Orphan.)
O108 - CMH1: WorkFolders [64Bits] - {E61BF828-5E63-4287-BEF1-60B1A4FDE0E3} . (.Microsoft Corporation - Extension d’environnement de Dossiers de tr.) -- C:\Windows\System32\WorkfoldersShell.dll =>.Microsoft Corporation
O108 - CMH2: OpenContainingFolderMenu [64Bits] - {37ea3a21-7493-4208-a011-7f9ea79ce9f5} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH2: StartMenuExt [64Bits] - {E595F05F-903F-4318-8B0A-7F633B520D2B} . (.IvoSoft - Start Menu Helper Extension.) -- C:\windows\system32\StartMenuHelper64.dll =>.IvoSoft
O108 - CMH3: CopyAsPathMenu [64Bits] - {f3d06e7c-1e45-4a26-847e-f9fcdee59be0} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH3: MBAMShlExt [64Bits] - {57CE581A-0CB6-4266-9CA0-19364C90A0B3} . (.Malwarebytes - Malwarebytes.) -- C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll =>.Malwarebytes Corporation®
O108 - CMH3: SendTo [64Bits] - {7BA4C740-9E81-11CF-99D3-00AA004AE837} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH3: UnlockerShellExtension [64Bits] - {DDE4BEEB-DDE6-48fd-8EB5-035C09923F83} . (...) -- C:\Program Files\Unlocker\UnlockerCOM.dll =>.Empty Loop®
O108 - CMH4: 7-Zip [64Bits] - {23170F69-40C1-278A-1000-000100020000} . (.Igor Pavlov - 7-Zip Shell Extension.) -- C:\Program Files\7-Zip\7-zip.dll =>.Igor Pavlov
O108 - CMH4: EncryptionMenu [64Bits] - {A470F8CF-A1E8-4f65-8335-227475AA5C46} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH4: Offline Files [64Bits] - {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} . (.Microsoft Corporation - IU de cache côté client.) -- C:\windows\System32\cscui.dll =>.Microsoft Corporation
O108 - CMH4: PowerISO [64Bits] - {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} . (.Power Software Ltd - PowerISOShell DLL.) -- C:\Program Files\PowerISO\PWRISOSH.DLL =>.Power Software Ltd
O108 - CMH4: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation
O108 - CMH4: WorkFolders [64Bits] - {E61BF828-5E63-4287-BEF1-60B1A4FDE0E3} . (.Microsoft Corporation - Extension d’environnement de Dossiers de tr.) -- C:\Windows\System32\WorkfoldersShell.dll =>.Microsoft Corporation
O108 - CMH5: igfxDTCM [64Bits] - {9B5F5829-A529-4B12-814A-E81BCB8D93FC} . (.Intel Corporation - igfxDTCM Module.) -- C:\windows\system32\igfxDTCM.dll =>.Intel Corporation
O108 - CMH5: igfxOSP [64Bits] - {FA507C3F-30C6-4DCA-9EE5-2656072EEC14} . (.Intel Corporation - igfxOSP Module.) -- C:\windows\system32\igfxOSP.dll =>.Intel Corporation
O108 - CMH5: New [64Bits] - {D969A300-E7FF-11d0-A93B-00A0C90F2719} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH5: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation
O108 - CMH5: WorkFolders [64Bits] - {E61BF828-5E63-4287-BEF1-60B1A4FDE0E3} . (.Microsoft Corporation - Extension d’environnement de Dossiers de tr.) -- C:\Windows\System32\WorkfoldersShell.dll =>.Microsoft Corporation
O108 - CMH6: 7-Zip [64Bits] - {23170F69-40C1-278A-1000-000100020000} . (.Igor Pavlov - 7-Zip Shell Extension.) -- C:\Program Files\7-Zip\7-zip.dll =>.Igor Pavlov
O108 - CMH6: BriefcaseMenu [64Bits] - {85BBD920-42A0-1069-A2E4-08002B30309D} . (.Microsoft Corporation - Porte-documents Windows.) -- C:\Windows\System32\syncui.dll =>.Microsoft Corporation
O108 - CMH6: Library Location [64Bits] - {3dad6c5d-2167-4cae-9914-f99e41c12cfa} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH6: MBAMShlExt [64Bits] - {57CE581A-0CB6-4266-9CA0-19364C90A0B3} . (.Malwarebytes - Malwarebytes.) -- C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll =>.Malwarebytes Corporation®
O108 - CMH6: Offline Files [64Bits] - {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} . (.Microsoft Corporation - IU de cache côté client.) -- C:\windows\System32\cscui.dll =>.Microsoft Corporation
O108 - CMH6: PintoStartScreen [64Bits] - {470C0EBD-5D73-4d58-9CED-E91E22E23282} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH6: PowerISO [64Bits] - {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} . (.Power Software Ltd - PowerISOShell DLL.) -- C:\Program Files\PowerISO\PWRISOSH.DLL =>.Power Software Ltd
O108 - CMH6: StartMenuExt [64Bits] - {E595F05F-903F-4318-8B0A-7F633B520D2B} . (.IvoSoft - Start Menu Helper Extension.) -- C:\windows\system32\StartMenuHelper64.dll =>.IvoSoft
O108 - CMH6: UnlockerShellExtension [64Bits] - {DDE4BEEB-DDE6-48fd-8EB5-035C09923F83} . (...) -- C:\Program Files\Unlocker\UnlockerCOM.dll =>.Empty Loop®
O108 - CMH6: WinRAR [64Bits] - {B41DB860-64E4-11D2-9906-E49FADC173CA} . (.Alexander Roshal - WinRAR shell extension.) -- C:\Program Files (x86)\WinRAR\RarExt64.dll =>.win.rar GmbH®
O108 - CMH6: WinRAR32 [64Bits] - {B41DB860-8EE4-11D2-9906-E49FADC173CA} . (.Orphan.)
O108 - CMH7: EnhancedStorageShell [64Bits] - {2854F705-3548-414C-A113-93E27C808C85} . (.Microsoft Corporation - DLL d’extension d’environnement de stockage.) -- C:\Windows\System32\EhStorShell.dll =>.Microsoft Corporation
O108 - CMH7: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation
---\\ IMAGE FILE EXECUTION OPTIONS (IFEO) (16) - 1s
O50 - IFEO:C:\Windows\System32\cscript.exe - (.Microsoft Corporation - Microsoft ® Console Based Script Host.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\dllhost.exe - (.Microsoft Corporation - COM Surrogate.) [DisableExceptionChainValidation\\3] =>.Microsoft Windows®
O50 - IFEO:C:\Windows\System32\drvinst.exe - (.Microsoft Corporation - Module d’installation de pilotes.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\windows\System32\ie4uinit.exe - (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\ieUnatt.exe - (.Microsoft Corporation - Outil d’installation sans assistance d’IE 7.) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\mmc.exe - (.Microsoft Corporation - Microsoft Management Console.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\msfeedssync.exe - (.Microsoft Corporation - Microsoft Feeds Synchronization.) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\mshta.exe - (.Microsoft Corporation - Hôte des applications HTML de Microsoft(R).) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\PresentationHost.exe - (.Microsoft Corporation - Windows Presentation Foundation Host.) [MitigationOptions\\1118481] =>.Microsoft Corporation
O50 - IFEO:C:\windows\System32\PrintIsolationHost.exe - (.Microsoft Corporation - PrintIsolationHost.) [MitigationOptions\\2097152] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\rundll32.exe - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\windows\System32\runtimebroker.exe - (.Microsoft Corporation - Runtime Broker.) [MitigationOptions\\4294967296] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\searchprotocolhost.exe - (.Microsoft Corporation - Microsoft Windows Search Protocol Host.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\windows\System32\spoolsv.exe - (.Microsoft Corporation - Application sous-système spouleur.) [MitigationOptions\\2097152] =>.Microsoft Corporation
O50 - IFEO:C:\windows\System32\spoolsv.exe - (.Microsoft Corporation - Application sous-système spouleur.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\wscript.exe - (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
---\\ LISTE DES PILOTES DU SYSTÈME (57) - 14s
O58 - SDL:2013/08/22 13:43:41 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\windows\System32\drivers\3ware.sys [108896] =>.Microsoft Windows®
O58 - SDL:2013/08/22 13:43:41 A . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS.) -- C:\windows\System32\drivers\adp80xx.sys [782176] =>.Microsoft Windows®
O58 - SDL:2018/03/06 18:26:26 A . (.The OpenVPN Project - TAP-Windows Virtual Network Driver (NDIS 6..) -- C:\windows\System32\drivers\aftap0901.sys [48624] =>.AnchorFree Inc®
O58 - SDL:2013/08/22 13:43:41 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\windows\System32\drivers\amdsata.sys [79200] =>.Microsoft Windows®
O58 - SDL:2013/08/22 13:43:41 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\windows\System32\drivers\amdsbs.sys [259424] =>.Microsoft Windows®
O58 - SDL:2013/08/22 13:43:40 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\windows\System32\drivers\amdxata.sys [25952] =>.Microsoft Windows®
O58 - SDL:2013/08/22 13:43:41 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\windows\System32\drivers\arcsas.sys [114016] =>.Microsoft Windows®
O58 - SDL:2018/05/09 13:43:46 A . (.The OpenVPN Project - TAP-Windows Virtual Network Driver.) -- C:\windows\System32\drivers\aswTap.sys [53904] =>.AVAST Software s.r.o.®
O58 - SDL:2013/06/18 15:45:05 A . (.Qualcomm Atheros Communications, Inc. - Qualcomm Atheros Extensible Wireless LAN de.) -- C:\windows\System32\drivers\athwnx.sys [3680256] =>.Qualcomm Atheros Communications, Inc.
O58 - SDL:2012/02/17 19:33:38 A . (.Advanced Micro Devices, Inc. - ATI Radeon Kernel Mode Driver.) -- C:\windows\System32\drivers\atikmdag.sys [10657792] =>.Advanced Micro Devices, Inc.
O58 - SDL:2012/02/17 19:36:56 A . (.Advanced Micro Devices, Inc. - AMD multi-vendor Miniport Driver.) -- C:\windows\System32\drivers\atikmpag.sys [334336] =>.Advanced Micro Devices, Inc.
O58 - SDL:2013/08/13 00:25:46 A . (. - BCM Function 2 Device Driver.) -- C:\windows\System32\drivers\bcmfn2.sys [17624] =>.Broadcom Corporation®
O58 - SDL:2013/08/22 13:43:41 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\windows\System32\drivers\bxvbda.sys [531296] =>.Microsoft Windows®
O58 - SDL:2017/08/28 20:24:50 A . (.eagleGet - eagleGet Network Filter.) -- C:\windows\System32\drivers\eagleGet.sys [77424] =>.Beijing Jiupu Technology Co., Ltd.®
O58 - SDL:2013/08/22 13:43:45 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\windows\System32\drivers\evbda.sys [3357024] =>.Microsoft Windows®
O58 - SDL:2018/05/09 20:32:50 A . (.Malwarebytes - Malwarebytes Anti-Ransomware Protection.) -- C:\windows\System32\drivers\farflt.sys [112864] =>.Malwarebytes Corporation®
O58 - SDL:2013/08/22 13:43:45 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\windows\System32\drivers\HpSAMD.sys [64352] =>.Microsoft Windows®
O58 - SDL:2013/07/30 19:47:35 A . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\windows\System32\drivers\iaLPSSi_GPIO.sys [24568] =>.Intel Corporation - Software and Firmware Products®
O58 - SDL:2013/07/25 20:05:39 A . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\windows\System32\drivers\iaLPSSi_I2C.sys [99320] =>.Intel Corporation - Software and Firmware Products®
O58 - SDL:2014/04/11 09:30:44 A . (.Intel Corporation - Intel(R) Rapid Storage Technology driver -.) -- C:\windows\System32\drivers\iaStorA.sys [645480] =>.Intel Corporation - Intel® Rapid Storage Technology®
O58 - SDL:2013/08/10 01:39:30 A . (.Intel Corporation - Intel Rapid Storage Technology driver (inbo.) -- C:\windows\System32\drivers\iaStorAV.sys [651248] =>.Intel Corporation - Intel® Rapid Storage Technology®
O58 - SDL:2013/08/22 13:43:45 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\windows\System32\drivers\iaStorV.sys [412000] =>.Microsoft Windows®
O58 - SDL:2014/03/31 06:24:09 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\windows\System32\drivers\igdkmd64.sys [3785216] =>.Intel Corporation
O58 - SDL:2014/03/31 06:28:35 A . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\windows\System32\drivers\IntcDAud.sys [450520] =>.Intel Corporation - Software and Firmware Products®
O58 - SDL:2014/03/26 00:31:04 A . (.Intel Corporation - Intel® WiDi Solution.) -- C:\windows\System32\drivers\intelaud.sys [38296] =>.Intel Wireless Display®
O58 - SDL:2013/08/07 11:01:32 A . (.Copyright (C) 2011-2012 - Intel(R) Smart Connect Technology Device Dr.) -- C:\windows\System32\drivers\ISCTD64.sys [46568] =>.Intel(R) Smart Connect software®
O58 - SDL:2014/03/26 00:31:04 A . (.Intel Corporation - Intel® WiDi Solution.) -- C:\windows\System32\drivers\iwdbus.sys [27032] =>.Intel Wireless Display®
O58 - SDL:2013/06/18 15:45:14 A . (.Broadcom Corporation - Broadcom NetLink (TM) Gigabit Ethernet NDIS.) -- C:\windows\System32\drivers\k57nd60a.sys [425984] =>.Broadcom Corporation
O58 - SDL:2013/08/22 13:43:44 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\windows\System32\drivers\lsi_sas.sys [109408] =>.Microsoft Windows®
O58 - SDL:2013/08/22 13:43:45 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\windows\System32\drivers\lsi_sas2.sys [93536] =>.Microsoft Windows®
O58 - SDL:2013/08/22 13:43:44 A . (.LSI Corporation - LSI SAS Gen3 Driver (StorPort).) -- C:\windows\System32\drivers\lsi_sas3.sys [81760] =>.Microsoft Windows®
O58 - SDL:2013/08/22 13:43:45 A . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\windows\System32\drivers\lsi_sss.sys [82784] =>.Microsoft Windows®
O58 - SDL:2018/04/26 05:36:50 A . (.Malwarebytes - Malwarebytes Anti-Exploit.) -- C:\windows\System32\drivers\mbae64.sys [152184] =>.Malwarebytes Corporation®
O58 - SDL:2018/05/09 20:32:58 A . (.Malwarebytes - Malwarebytes Real-Time Protection.) -- C:\windows\System32\drivers\mbam.sys [44768] =>.Malwarebytes Corporation®
O58 - SDL:2018/05/09 20:13:07 A . (.Malwarebytes - Malwarebytes Chameleon.) -- C:\windows\System32\drivers\MbamChameleon.sys [190696] =>.Malwarebytes Corporation®
O58 - SDL:2018/05/09 20:32:45 A . (.Malwarebytes - Malwarebytes SwissArmy.) -- C:\windows\System32\drivers\mbamswissarmy.sys [253664] =>.Malwarebytes Corporation®
O58 - SDL:2013/08/22 13:43:45 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\windows\System32\drivers\megasas.sys [56672] =>.Microsoft Windows®
O58 - SDL:2013/08/22 13:43:45 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\windows\System32\drivers\megasr.sys [575840] =>.Microsoft Windows®
O58 - SDL:2013/08/22 13:43:49 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\windows\System32\drivers\mvumis.sys [63840] =>.Microsoft Windows®
O58 - SDL:2018/05/09 20:32:49 A . (.Malwarebytes - Malwarebytes Web Protection.) -- C:\windows\System32\drivers\mwac.sys [103648] =>.Malwarebytes Corporation®
O58 - SDL:2013/08/22 13:43:31 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\windows\System32\drivers\nvraid.sys [150368] =>.Microsoft Windows®
O58 - SDL:2013/08/22 13:43:32 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\windows\System32\drivers\nvstor.sys [168288] =>.Microsoft Windows®
O58 - SDL:2014/03/17 10:57:10 A . (.Realtek - Realtek 8101E/8168/8169 NDIS 6.30 64-bit Dr.) -- C:\windows\System32\drivers\Rt630x64.sys [843480] =>.Realtek Semiconductor Corp®
O58 - SDL:2014/03/14 12:08:10 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\windows\System32\drivers\RTKVHD64.sys [3896920] =>.Realtek Semiconductor Corp®
O58 - SDL:2017/06/07 01:36:28 A . (.Power Software Ltd - PowerISO Virtual Drive.) -- C:\windows\System32\drivers\scdemu.sys [138296] =>.Power Software Limited®
O58 - SDL:2013/08/22 16:35:09 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\windows\System32\drivers\secdrv.sys [23040] =>.Rovi Corporation
O58 - SDL:2018/03/07 16:56:30 A . (...) -- C:\windows\System32\drivers\semav6msr64.sys [43008] {00CD951DEBFAD69ED74E5974C37B5F1512} =>.Intel Corporation
O58 - SDL:2013/08/22 13:43:31 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\windows\System32\drivers\sisraid2.sys [44896] =>.Microsoft Windows®
O58 - SDL:2013/08/22 13:43:32 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\windows\System32\drivers\sisraid4.sys [81760] =>.Microsoft Windows®
O58 - SDL:2013/08/22 13:43:32 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\windows\System32\drivers\stexstor.sys [31072] =>.Microsoft Windows®
O58 - SDL:2013/09/16 12:17:42 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\windows\System32\drivers\TeeDriverx64.sys [99288] =>.Intel Corporation - Intel® Management Engine Firmware®
O58 - SDL:2013/08/22 13:43:34 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\windows\System32\drivers\viaide.sys [19808] =>.Microsoft Windows®
O58 - SDL:2013/08/22 13:43:34 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\windows\System32\drivers\vsmraid.sys [168800] =>.Microsoft Windows®
O58 - SDL:2013/06/18 16:05:46 A . (.Conexant Systems, Inc. - HSF_HWAZL WDM driver.) -- C:\windows\System32\drivers\VSTAZL6.SYS [292864] =>.Conexant Systems, Inc.
O58 - SDL:2013/06/18 16:05:48 A . (.Conexant Systems, Inc. - HSF_CNXT driver.) -- C:\windows\System32\drivers\VSTCNXT6.SYS [740864] =>.Conexant Systems, Inc.
O58 - SDL:2013/06/18 16:05:48 A . (.Conexant Systems, Inc. - HSF_DP driver.) -- C:\windows\System32\drivers\VSTDPV6.SYS [1485312] =>.Conexant Systems, Inc.
O58 - SDL:2013/08/22 13:43:34 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\windows\System32\drivers\VSTXRAID.SYS [305504] =>.Microsoft Windows®
---\\ DERNIERS FICHIERS MODIFIÉS OU CRÉÉS (Utilisateur) (11) - 16s
O61 - LFC: 2018/05/03 11:03:28 A . (..) -- C:\Users\Utilisateur\AppData\Local\Facebook\Games\CefSharp.BrowserSubprocess.Core.dll [774656]
O61 - LFC: 2018/05/03 11:03:28 A . (..) -- C:\Users\Utilisateur\AppData\Local\Facebook\Games\CefSharp.Core.dll [1184256]
O61 - LFC: 2018/05/03 11:03:28 A . (..) -- C:\Users\Utilisateur\AppData\Local\Facebook\Games\DaybreakNative.dll [90624]
O61 - LFC: 2018/05/03 11:03:28 A . (..) -- C:\Users\Utilisateur\AppData\Local\Facebook\Games\FBCapture.dll [617984]
O61 - LFC: 2018/05/03 11:06:02 A . (..) -- C:\Users\Utilisateur\AppData\Local\Facebook\Games\GameroomLivestreamHelper.exe [39424]
O61 - LFC: 2018/05/03 11:03:30 A . (.Copyright (C) 2018 The Chromium Embedded Framework Au.) -- C:\Users\Utilisateur\AppData\Local\Facebook\Games\libcef.dll [71641088]
O61 - LFC: 2018/05/03 11:03:28 A . (..) -- C:\Users\Utilisateur\AppData\Local\Facebook\Games\LibFBGPlatform32.dll [117248]
O61 - LFC: 2018/05/03 11:03:28 A . (..) -- C:\Users\Utilisateur\AppData\Local\Facebook\Games\LibFBGPlatform64.dll [146432]
O61 - LFC: 2018/05/03 11:03:28 A . (..) -- C:\Users\Utilisateur\AppData\Local\Facebook\Games\OutputDuplication.dll [117760]
O61 - LFC: 2018/05/03 11:03:28 A . (..) -- C:\Users\Utilisateur\AppData\Local\Facebook\Games\OutputDuplicationChecker.dll [39424]
O61 - LFC: 2018/05/03 11:03:26 A . (.xidar solutions.) -- C:\Users\Utilisateur\AppData\Local\Facebook\Games\SharpBITS.Base.dll [45568]
---\\ ASSOCIATION Shell Spawning (10) - 0s
O67 - Shell Spawning: <.bat>
O67 - Shell Spawning: <.cpl>
O67 - Shell Spawning: <.cmd>
O67 - Shell Spawning: <.com>
O67 - Shell Spawning: <.evt>
O67 - Shell Spawning: <.exe>
O67 - Shell Spawning: <.html>
O67 - Shell Spawning: <.js>
O67 - Shell Spawning: <.reg>
O67 - Shell Spawning: <.scr>
---\\ MENU DE DÉMARRAGE INTERNET (12) - 0s
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
---\\ RECHERCHE D'INFECTION SUR LES NAVIGATEURS (2) - 5s
O69 - SBI: SearchScopes [HKCU] [64Bits]{0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/ =>.Bing.com
O69 - SBI: SearchScopes [HKLM] [64Bits]{0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (@ieframe.dll,-12512) - http://www.bing.com/ =>.Bing.com
---\\ ÉNUMÈRE LES SERVICES DÉMARRÉS PAR Svchost (36) - 1s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\windows\System32\aelupsvc.dll [214528] =>.Microsoft Corporation
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [158720] =>.Microsoft Corporation
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [158720] =>.Microsoft Corporation
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [329216] =>.Microsoft Corporation
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [1362432] =>.Microsoft Corporation
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\IKEEXT.DLL [1080320] =>.Microsoft Corporation
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll [927744] =>.Microsoft Corporation
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\Windows\System32\seclogon.dll [31744] =>.Microsoft Corporation
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [110080] =>.Microsoft Corporation
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [151040] =>.Microsoft Corporation
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [110592] =>.Microsoft Corporation
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [1265664] =>.Microsoft Corporation
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [230400] =>.Microsoft Corporation
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédia.) -- C:\Windows\System32\mmcss.dll [71168] =>.Microsoft Corporation
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [135168] =>.Microsoft Corporation
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [228864] =>.Microsoft Corporation
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [346112] =>.Microsoft Corporation
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [84992] =>.Microsoft Corporation
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\KMSVC.DLL [101376] =>.Microsoft Corporation
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [348672] =>.Microsoft Corporation
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Service d’infrastructure de localisation Wi.) -- C:\Windows\System32\GeofenceMonitorService.dll [522240] =>.Microsoft Corporation
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\Windows\System32\wlidsvc.dll [1639424] =>.Microsoft Corporation
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [59392] =>.Microsoft Corporation
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d’installation de périphérique.) -- C:\Windows\System32\DeviceSetupManager.dll [206848] =>.Microsoft Corporation
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Micro.) -- C:\Windows\System32\NcaSvc.dll [166400] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [102912] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d’accès à dista.) -- C:\Windows\System32\rasmans.dll [542720] =>.Microsoft Corporation
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [233472] =>.Microsoft Corporation
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\Sens.dll [73728] =>.Microsoft Corporation
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\Windows\System32\ipnathlp.dll [452608] =>.Microsoft Corporation
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [313344] =>.Microsoft Corporation
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\System32\wuaueng.dll [3717632] =>.Microsoft Corporation
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [933376] =>.Microsoft Corporation
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [640000] =>.Microsoft Corporation
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll [187904] =>.Microsoft Corporation
O83 - Search Svchost Services: MsKeyboardFilter (MsKeyboardFilter) . (.Microsoft Corporation - SvcHost Service for Microsoft Keyboard Filt.) -- C:\Windows\System32\KeyboardFilterSvc.dll [93008] =>.Microsoft Windows®
---\\ LISTE DES EXCEPTIONS DU PAREFEU WINDOWS (16) - 4s
O87 - FAEL: "{A78DCE42-AA2B-4991-9B79-AF2AED367884}" [In-None-P6-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\Utilisateur\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O87 - FAEL: "{7E69DB36-1F51-4C24-814F-CD201B4471C5}" [In-None-P17-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\Utilisateur\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O87 - FAEL: "TCP Query User{85AF1D77-BD32-4D3E-A48C-D46F5003856C}C:\users\utilisateur\downloads\counter strike\counter strike go edition\start.exe" [In-None-P6-TRUE] .(...) -- C:\users\utilisateur\downloads\counter strike\counter strike go edition\start.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "UDP Query User{EBBBB8DC-5988-4392-B792-929AD31C6A12}C:\users\utilisateur\downloads\counter strike\counter strike go edition\start.exe" [In-None-P17-TRUE] .(...) -- C:\users\utilisateur\downloads\counter strike\counter strike go edition\start.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "{F2FAC2D3-FF0B-42CF-A8B2-AFDA353052D4}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Warzone\CSGO WaRzOnE\csgo_launcher.exe
O87 - FAEL: "{7627691A-655C-4A7F-BDFD-099C7E790646}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Warzone\CSGO WaRzOnE\Loader.exe
O87 - FAEL: "TCP Query User{938ABFE1-1ED1-402C-8893-C1D055D7B32A}C:\program files (x86)\warzone\csgo warzone\csgo.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\warzone\csgo warzone\csgo.exe
O87 - FAEL: "UDP Query User{F3B1CF90-46A5-441F-AFD1-7264DDF71FDE}C:\program files (x86)\warzone\csgo warzone\csgo.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\warzone\csgo warzone\csgo.exe
O87 - FAEL: "TCP Query User{2EEF905D-7430-4C49-87AB-C3967E5E605E}C:\program files (x86)\ground control 2 - operation exodus\gcii.exe" [In-None-P6-TRUE] .(.Massive Entertainment AB - Ground Control II.) -- C:\program files (x86)\ground control 2 - operation exodus\gcii.exe
O87 - FAEL: "UDP Query User{A0D108FC-E742-4225-B40C-B63DC1BC0F19}C:\program files (x86)\ground control 2 - operation exodus\gcii.exe" [In-None-P17-TRUE] .(.Massive Entertainment AB - Ground Control II.) -- C:\program files (x86)\ground control 2 - operation exodus\gcii.exe
O87 - FAEL: "{E389C1BB-B78D-4E80-B65A-8771B6C0A1E3}" [In-None-P17-TRUE] .(.Copyright (C) 2018 Intel Corporation. All rights rese - Intel(R) System Usage Report.) -- C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe =>.Intel(R) Software Development Products®
O87 - FAEL: "{4FEED3C2-84E5-40BD-9960-B5472D424214}" [In-None-P6-TRUE] .(.Copyright (C) 2018 Intel Corporation. All rights rese - Intel(R) System Usage Report.) -- C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe =>.Intel(R) Software Development Products®
O87 - FAEL: "{2BCBA7EC-F3D0-46F3-9EC1-352943A86D19}" [In-None-P17-TRUE] .(.Copyright (C) 2018 Intel Corporation. All rights rese - Intel(R) System Usage Report.) -- C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe =>.Intel(R) Software Development Products®
O87 - FAEL: "{A14CDEAC-45C2-49D2-A995-785398964B03}" [In-None-P6-TRUE] .(.Copyright (C) 2018 Intel Corporation. All rights rese - Intel(R) System Usage Report.) -- C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe =>.Intel(R) Software Development Products®
O87 - FAEL: "TCP Query User{94F6611C-4543-4EDB-906D-B935066E8062}C:\program files (x86)\warzone\csgo warzone\csgo.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\warzone\csgo warzone\csgo.exe
O87 - FAEL: "UDP Query User{87282D8E-03B7-4AA8-B811-06774F14AFC6}C:\program files (x86)\warzone\csgo warzone\csgo.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\warzone\csgo warzone\csgo.exe
---\\ CODES PRODUITS LOGICIELS (33) - 1s
O90 - PUC: "0515830F68FF81A4AA55E69D5E8FD77A" [HKLM] . (.Intel(R) Computing Improvement Program.) -- C:\windows\Installer\{F0385150-FF86-4A18-AA55-6ED9E5F87DA7}\vmp
O90 - PUC: "08E939F255D8E2E4BB4A60FABCF97AC5" [HKLM] . (.CSGO WaRzOnE.) -- C:\windows\Installer\{2F939E80-8D55-4E2E-BBA4-06AFCB9FA75C}\csgo_launcher_1.exe
O90 - PUC: "12B8D03ED28D112328CCF0A0D541598E" [HKLM] . (.Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40660.)
O90 - PUC: "1926E8D15D0BCE53481466615F760A7F" [HKLM] . (.Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219.)
O90 - PUC: "1af2a8da7e60d0b429d7e6453b3d0182" [HKLM] . (.Microsoft Visual C++ 2005 Redistributable (x64).)
O90 - PUC: "1D5E3C0FEDA1E123187686FED06E995A" [HKLM] . (.Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219.)
O90 - PUC: "2A51BE4B2856E64358106B9E702FB308" [HKLM] . (.Microsoft Visual C++ 2015 x86 Additional Runtime - 14.0.24516.)
O90 - PUC: "328F28B7622A36434B83FAD4DD2E8B01" [HKLM] . (.Microsoft Visual C++ 2015 x86 Minimum Runtime - 14.0.24516.)
O90 - PUC: "44DB0475D85BA123FA0CD6D35465DDC6" [HKLM] . (.Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40660.)
O90 - PUC: "4F46D9DF5FAC32D348A58B347CC81C5A" [HKLM] . (.Microsoft Visual Studio 2010 Tools for Office Runtime (x64).)
O90 - PUC: "67D6ECF5CD5FBA732B8B22BAC8DE1B4D" [HKLM] . (.Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.7523.)
O90 - PUC: "68AB67CA7DA76301B744BA0000000010" [HKLM] . (.Adobe Reader XI (11.0.20) - Français.) -- C:\windows\Installer\{AC76BA86-7AD7-1036-7B44-AB0000000001}\SC_Reader.ico
O90 - PUC: "697064F9843011B4CB0A17C4B4583E7D" [HKLM] . (.. . ..) -- C:\windows\Installer\{9F460796-0348-4B11-BCA0-714C4B85E3D7}\ProductIcon
O90 - PUC: "6E815EB96CCE9A53884E7857C57002F0" [HKLM] . (.Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.7523.)
O90 - PUC: "71460E5BCA4A52243BE6E7439C61617E" [HKLM] . (.Intel® Trusted Connect Service Client.)
O90 - PUC: "75F72C9B48BAF524D9001EC8D5561CD8" [HKLM] . (.Intel(R) Rapid Storage Technology.)
O90 - PUC: "7C9F8B73BF303523781852719CD9C700" [HKLM] . (.Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61135.)
O90 - PUC: "8520DAD7C5154DD39846DB1714990E7F" [HKLM] . (.Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40660.)
O90 - PUC: "8FC921C7F9919624AAEE065B8D7D612E" [HKLM] . (.Classic Shell.) -- C:\windows\Installer\{7C129CF8-199F-4269-AAEE-60B5D8D716E2}\icon.ico
O90 - PUC: "93BAD29AC2E44034A96BCB446EB8552E" [HKLM] . (.Google Update Helper.)
O90 - PUC: "96F071321C0420728150000010000000" [HKLM] . (.7-Zip 18.05 (x64 edition).)
O90 - PUC: "A089CE062ADB6BC44A720BA745894BAC" [HKLM] . (.Google Update Helper.)
O90 - PUC: "AB92F96564D2B934B8C7109D999B02D1" [HKLM] . (.. ..)
O90 - PUC: "C025571B2A687A53689168CD7369889B" [HKLM] . (.Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61135.)
O90 - PUC: "c1c4f01781cc94c4c8fb1542c0981a2a" [HKLM] . (.Microsoft Visual C++ 2005 Redistributable.)
O90 - PUC: "C36666B6F550E2A30AD96188048A3226" [HKLM] . (.Microsoft Visual C++ 2015 x64 Additional Runtime - 14.0.24516.)
O90 - PUC: "C3AEB2FCAE628F23AAB933F1E743AB79" [HKLM] . (.Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61135.)
O90 - PUC: "CE6380BC270BD863282B3D74B09F7570" [HKLM] . (.Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40660.)
O90 - PUC: "D20352A90C039D93DBF6126ECE614057" [HKLM] . (.Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17.)
O90 - PUC: "DC8A59DBF9D1DA5389A1E3975220E6BB" [HKLM] . (.Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61135.)
O90 - PUC: "FB43E6EE528DC483FA5F03D55FFCFAA5" [HKLM] . (.Microsoft Visual C++ 2015 x64 Minimum Runtime - 14.0.24516.)
O90 - PUC: "B1122EB7C68FAC046ACC9665D4B95D2E" [HKCU] . (.Facebook Gameroom 1.21.6697.19829.) -- %APPDATA%\Microsoft\Installer\{7BE2211B-F86C-40CA-A6CC-69564D9BD5E2}\icon.ico
O90 - PUC: "B1122EB7C68FAC046ACC9665D4B95D2E" [HKU] . (.Facebook Gameroom 1.21.6697.19829.) -- %APPDATA%\Microsoft\Installer\{7BE2211B-F86C-40CA-A6CC-69564D9BD5E2}\icon.ico
---\\ PACKAGES WINDOWS INSTALLER (16) - 7s
[MD5.12120B64CFF0FECB42BC64EBE5F73121] [WIS][2018/05/09 14:50:02] (.Igor Pavlov - 7-Zip (x64 edition) Package.) -- C:\windows\Installer\1a863a76.msi [1735168] =>.Igor Pavlov
[MD5.A5D387C6F731FDEFF112740D3B355E78] [WIS][2018/05/03 19:09:11] (.Facebook - Facebook Gameroom 1.21.6697.19829.) -- C:\windows\Installer\3b24f82c.msi [52627456] =>.Facebook
[MD5.A97B2D3D2DD85241D5B8BBF33136A2BF] [WIS][2018/01/17 15:32:26] (.Intel - . ..) -- C:\windows\Installer\462f436.msi [32768] =>.Intel
[MD5.7DAA0F79A9927DF425611A1C0164F729] [WIS][2018/01/17 15:33:02] (.Intel - Intel(R) Driver & Support Assistant 3.1.2.) -- C:\windows\Installer\462f440.msi [2502656] =>.Intel
[MD5.DCCB3A6DF648F7305B8393B907F1E68E] [WIS][2018/04/22 09:25:21] (.Intel Corporation - Intel(R) Computing Improvement Program.) -- C:\windows\Installer\4692d.msi [12535296] =>.Intel Corporation
[MD5.EE3C7D44B16E7959ABF7F5A603AD9883] [WIS][2013/09/16 12:17:36] (.Intel Corporation - Intel(R) Trusted Connect Service Client.) -- C:\windows\Installer\6a467.msi [8753152] =>.Intel Corporation
[MD5.695D904CADA5060EEEB0F12A496E7280] [WIS][2015/12/08 11:00:04] (.Google Inc. - Google Update Helper.) -- C:\windows\Installer\6a46f.msi [25600] =>.Google Inc.
[MD5.E0F6BF6473AB5BDA43847F5A8872ACFE] [WIS][2015/12/08 11:05:03] (.IvoSoft - Classic Shell.) -- C:\windows\Installer\6a472.msi [5144576] =>.IvoSoft
[MD5.E398BDE08879A89EA7AD414157BAD086] [WIS][2012/09/24 04:48:11] (.Adobe Systems Incorporated.) -- C:\windows\Installer\6a4ba.msi [2398208] =>.Adobe Systems Incorporated
[MD5.07AC7563FFE4E7E6354D595A47D89E1B] [WIS][2014/04/11 09:33:00] (.Intel Corporation - Intel(R) Rapid Storage Technology.) -- C:\windows\Installer\6a4c0.msi [2805760] =>.Intel Corporation
[MD5.B1A59D64EE5343155048D8497329EE23] [WIS][2018/03/03 11:21:29] (.Warzone - CSGO WaRzOnE.) -- C:\windows\Installer\777017c.msi [2871808] =>.Warzone
[MD5.F0EE2E7F283866A2A0FEA9BE2D12A979] [WIS][2018/02/28 20:34:52] (.Google Inc. - Google Update Helper.) -- C:\windows\Installer\c5b0b.msi [40960] =>.Google Inc.
[MD5.91E56177CC2DD244914D990542411547] [WIS][2018/05/09 14:59:13] (.Adobe Systems, Incorporated.) -- C:\windows\Installer\1a863b6d.msp [43950080] =>.Adobe Systems, Incorporated
[MD5.84891AC5487B67A75AEBA6D0454E3734] [WIS][2018/05/09 14:59:33] (.Adobe Systems, Incorporated.) -- C:\windows\Installer\1a863b82.msp [2424832] =>.Adobe Systems, Incorporated
[MD5.01E00B02D2BD37746B25A653895FB896] [WIS][2018/05/09 15:05:25] (.Adobe Systems, Incorporated.) -- C:\windows\Installer\1a863cb6.msp [48599040] =>.Adobe Systems, Incorporated
[MD5.14B87B2871A2B6FC0D86F3CFC472CB44] [WIS][2013/05/11 13:24:03] (.Adobe Systems, Incorporated.) -- C:\windows\Installer\6a4bb.msp [18702336] =>.SUP.Obsolete.Adobe
---\\ SCAN ADDITIONNEL (5) - 17s
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\WinRAR32 =>.SUP.Orphan
HKLM\Software\Classes\CLSID\{B41DB860-8EE4-11D2-9906-E49FADC173CA} =>.SUP.Orphan
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\WinRAR32 =>.SUP.Orphan
C:\windows\Installer\6a4bb.msp =>.SUP.Obsolete.Adobe
C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\File System\009 =>.SUP.Temporary.Chrome
---\\ RÉCAPITULATIF DES ÉLÉMENTS TROUVÉS SUR VOTRE STATION (4) - 0s
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>BitTorrent (P2P)
https://nicolascoolman.eu/2017/09/12/origine-lignes-orphelines/ =>.SUP.Orphan
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Obsolete.Adobe
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Temporary.Chrome
~ Unselected Options: O82,
~ End of the scan, 5427 items in 03mn17s (880)(0)