Publicité
Publicité
Format du document : text/plain
Prévisualisation
~ ZHPDiag v2019.2.7.19 Par Nicolas Coolman (2019/02/07)
~ Démarré par LENOVO (Administrator) (2019/02/11 21:13:59)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Certificate ZHPDiag: Legal
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\LENOVO\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\LENOVO\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Démarrage du système: Normal (Normal boot)
Windows 10 Pro, 64-bit (Build 17134) =>.Microsoft Corporation
---\\ NAVIGATEURS INTERNET (4) - 0s
~ GCIE: Google Chrome v71.0.3578.98
~ MFIE: Mozilla Firefox 45.0.2 (x86 en-US)
~ MSIE: Microsoft Edge v40
~ MSIE: Internet Explorer v11.523.17134.0
---\\ INFORMATIONS SUR LES PRODUITS WINDOWS (9) - 0s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
~ Windows(R) Operating System, VOLUME_KMSCLIENT channel
Windows ID Activation : OK
~ Windows Partial Key : T83GX
Windows License : OK
Expiration Licence Windows : 243510 minute(s) (170 jour(s))
~ Windows Remaining Initializations Number : 1001
Windows Automatic Updates : OK
---\\ LOGICIELS DE PROTECTION (4) - 6s
Avast Free Antivirus v19.2.2364 (Protection)
SMADAV version 11.3 v11.3 (Protection)
Windows Defender W10 (Activate) (Protection)
Malwarebytes version 3.7.1.2839 v3.7.1.2839 (Protection)
---\\ SURVEILLANCE LOGICIEL (2) - 6s
~ Adobe Flash Player 32 PPAPI (Surveillance)
~ Adobe Reader X (Surveillance)
---\\ LOGICIELS DE PARTAGE P2P (1) - 6s
~ µTorrent v3.5.5.44994 (P2P)
---\\ INFORMATIONS SUR LE SYSTÈME (6) - 0s
~ Operating System: Intel64 Family 6 Model 69 Stepping 1, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 4088.172 MB (11% free) : OK =>.RAM Value
System Restore: Activé (Enable)
System drive C: has 5 GB (3%) free of 158 GB : ATTENTION =>Warning Disk Space
---\\ MODE DE CONNEXION AU SYSTÈME (3) - 0s
~ Computer Name: DESKTOP-4E8LQS4
~ User Name: LENOVO
~ Logged in as Administrator
---\\ ÉNUMÉRATION DES UNITÉS DE STOCKAGE (3) - 0s
~ Drive C: has 5 GB free of 158 GB (System)
~ Drive E: has 23 GB free of 100 GB
~ Drive F: has 10 GB free of 216 GB
---\\ ÉTAT DU CENTRE DE SÉCURITÉ WINDOWS (7) - 0s
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM64\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
---\\ RECHERCHE PARTICULIÈRE DE FICHIERS GÉNÉRIQUES (25) - 2s
[MD5.E4A81EDDFF8B844D85C8B45354E4144E] - 06/07/2018 - (.Microsoft Corporation - Explorateur Windows.) -- C:\WINDOWS\Explorer.exe [3932672] =>.Microsoft Windows®
[MD5.73C519F050C20580F8A62C849D49215A] - 12/04/2018 - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\WINDOWS\System32\rundll32.exe [69632] =>.Microsoft Corporation
[MD5.A58B0CB069DA7840B935872ADCD7F0C2] - 12/04/2018 - (.Microsoft Corporation - Application de démarrage de Windows.) -- C:\WINDOWS\System32\Wininit.exe [366792] =>.Microsoft Corporation
[MD5.0D02868B0E1DFCD934F2417231BBCC79] - 01/01/2019 - (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\WINDOWS\System32\wininet.dll [4939776] =>.Microsoft Corporation
[MD5.749CA1F1B638E4E4A8A1F0990377012F] - 08/09/2018 - (.Microsoft Corporation - Application d’ouverture de session Windows.) -- C:\WINDOWS\System32\Winlogon.exe [677888] =>.Microsoft Corporation
[MD5.7A377800FF15426B7D89768A8727CFEF] - 12/04/2018 - (.Microsoft Corporation - Bibliothèque de licences.) -- C:\WINDOWS\System32\sppcomapi.dll [415232] =>.Microsoft Corporation
[MD5.86FE93AFDD8B2BCD389E30839A652181] - 09/11/2018 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\WINDOWS\System32\dnsapi.dll [766704] =>.Microsoft Windows®
[MD5.B668D6FD24465E11155B47808553DA61] - 09/11/2018 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\WINDOWS\Syswow64\dnsapi.dll [573504] =>.Microsoft Windows®
[MD5.80BC3B8D2055BC38ECD84769C074C18F] - 12/04/2018 - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) -- C:\WINDOWS\System32\fr-FR\user32.dll.mui [19968] =>.Microsoft Corporation
[MD5.4DCCC3E02A22ED4A4ADB11386F226071] - 12/04/2018 - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) -- C:\WINDOWS\System32\drivers\AFD.sys [626592] =>.Microsoft Corporation
[MD5.90AB4ED8EBD72A1C096A40CC35404B91] - 12/04/2018 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\WINDOWS\System32\drivers\atapi.sys [28568] =>.Microsoft Corporation
[MD5.D3CBC6DE5955D014407C7BD1FFE80F00] - 12/04/2018 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\WINDOWS\System32\drivers\Cdfs.sys [93696] =>.Microsoft Corporation
[MD5.6834DBBA2A1DBA5B9B6360D0B9A3CBB5] - 15/06/2018 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\WINDOWS\System32\drivers\Cdrom.sys [159744] =>.Microsoft Corporation
[MD5.8A1C10410FDA4287A76EC5A64371E221] - 15/06/2018 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\WINDOWS\System32\drivers\DfsC.sys [141312] =>.Microsoft Corporation
[MD5.DED74127C7A2266715C0B8EA2EE75214] - 12/04/2018 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\WINDOWS\System32\drivers\HDAudBus.sys [86016] =>.Microsoft Corporation
[MD5.DA179667B8CEC22E4ECBBF4210DC0E35] - 12/04/2018 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\WINDOWS\System32\drivers\i8042prt.sys [105984] =>.Microsoft Corporation
[MD5.7408B83959A4B8271EF67FD06A6B366B] - 12/04/2018 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\System32\drivers\IpNat.sys [214528] =>.Microsoft Corporation
[MD5.6C321DB795F5EF5FF870737177825FC9] - 20/09/2018 - (.Microsoft Corporation - Minirdr SMB Windows NT.) -- C:\WINDOWS\System32\drivers\MRxSmb.sys [500536] =>.Microsoft Corporation
[MD5.A6C01E478CD9ED26F6FB7ABCF9A2C773] - 03/08/2018 - (.Microsoft Corporation - MBT Transport driver.) -- C:\WINDOWS\System32\drivers\netBT.sys [311296] =>.Microsoft Corporation
[MD5.D17E3E9423FC7493DECD896B699E5407] - 01/01/2019 - (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\WINDOWS\System32\drivers\ntfs.sys [2421288] =>.Microsoft Corporation
[MD5.13B175715A4391E4E5D2AB2EBC8CDBB5] - 12/04/2018 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\WINDOWS\System32\drivers\Parport.sys [98816] =>.Microsoft Corporation
[MD5.775ED7E51B58CF9EB415A1DBA540DACF] - 12/04/2018 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [106496] =>.Microsoft Corporation
[MD5.3DE4216324BE32FC3AF7667AE2406EE5] - 15/06/2018 - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RD.) -- C:\WINDOWS\System32\drivers\rdpdr.sys [182784] =>.Microsoft Corporation
[MD5.16071C42E21CE3378FA449322FB9AB1D] - 12/04/2018 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\WINDOWS\System32\drivers\tdx.sys [121248] =>.Microsoft Corporation
[MD5.F0EE4E6028CCA58BEA9A04E7BEAB7DB4] - 12/04/2018 - (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\WINDOWS\System32\drivers\volsnap.sys [398240] =>.Microsoft Corporation
---\\ LISTE DES SERVICES (Non désactivés) (22) - 9s
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated®
O23 - Service: Apple Mobile Device Service (Apple Mobile Device Service) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe =>.Apple Inc.®
O23 - Service: Avast Antivirus (avast! Antivirus) . (.AVAST Software - Avast Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe =>.AVAST Software s.r.o.®
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe =>.Apple Inc.®
O23 - Service: Service CryptoTab Update (cryptobrowser) (cryptobrowser) . (.CRYPTOCOMPANY OU - CryptoTab Update.) - C:\Program Files (x86)\CryptoCompany\Update\CryptoTabUpdate.exe =>.CRYPTOCOMPANY OÜ®
O23 - Service: @C:\WINDOWS\system32\CxAudMsg64.exe,-100 (CxAudMsg) . (.Conexant Systems Inc. - Conexant Audio Message Service.) - C:\WINDOWS\system32\CxAudMsg64.exe =>.Conexant Systems Inc.
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
O23 - Service: HuaweiHiSuiteService64.exe (HuaweiHiSuiteService64.exe) . (. - HuaweiHiSuiteService.) - C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe =>.Huawei Technologies Co.,Ltd
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) . (.Intel Corporation - igfxCUIService Module.) - C:\WINDOWS\System32\igfxCUIService.exe =>.Intel Corporation
O23 - Service: Malwarebytes Service (MBAMService) . (.Malwarebytes - Malwarebytes Service.) - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe =>.Malwarebytes Corporation®
O23 - Service: Realtek Bluetooth Device Manager Service (RtkBtManServ) . (.Realtek Semiconductor Corp. - Realtek Bluetooth BTDevManager Service Appl.) - C:\Windows\RtkBtManServ.exe =>.Realtek Semiconductor Corp.®
O23 - Service: Conexant SmartAudio service (SAService) . (...) - C:\Windows\System32\SASrv.exe (.not file.) =>.Conexant Systems, Inc.
O23 - Service: Seed4.Me Service (Seed4.Me Service) . (.Seed4.Me - Seed4.Me VPN Client.) - C:\Program Files\Seed4.Me VPN\bin\Seed4.Me_service.exe {00DE1B9DC4EAA6900D2B299969506B4D8A} =>.Seed4.Me
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe =>.Microsoft Corporation®
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) . (.Synaptics Incorporated - 64-bit Synaptics Pointing Enhance Service.) - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe =>.Synaptics Incorporated®
O23 - Service: VMware Authorization Service (VMAuthdService) . (.VMware, Inc. - VMware Authorization Service.) - C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe =>.VMware, Inc.®
O23 - Service: VMware DHCP Service (VMnetDHCP) . (.VMware, Inc. - VMware VMnet DHCP service.) - C:\Windows\SysWOW64\vmnetdhcp.exe =>.VMware, Inc.®
O23 - Service: VMware USB Arbitration Service (VMUSBArbService) . (.VMware, Inc. - VMware USB Arbitration Service.) - C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe =>.VMware, Inc.®
O23 - Service: VMware NAT Service (VMware NAT Service) . (.VMware, Inc. - VMware NAT Service.) - C:\Windows\SysWOW64\vmnat.exe =>.VMware, Inc.®
O23 - Service: VMware Workstation Server (VMwareHostd) . (...) - C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe =>.VMware, Inc.®
O23 - Service: WinZip Compression Smart Monitor Service (WinZip Compression Smart Monitor Service) . (. - WinZip Compression Smart Monitor Service.) - C:\Program Files\WinZip\WinZip Smart Monitor\WinZip Compression Smart Monitor Service.exe =>.Corel Corporation®
O23 - Service: Wondershare Application Framework Service (WsAppService) . (.Wondershare - Wondershare Passport.) - C:\Program Files (x86)\Wondershare\WAF\2.4.2.223\WsAppService.exe =>.Wondershare Technology Co.,Ltd®
---\\ SERVICES NON MICROSOFT (SR=Démarré,SS=Stoppé) (136) - 55s
SR - Boot [12/04/2018] [ 107416] (3ware) . (.LSI.) - C:\WINDOWS\System32\drivers\3ware.sys =>.Microsoft Windows®
SR - Demand [08/12/2011] [ 29792] Lenovo Virtual Power Controlle (ACPIVPC) . (.Lenovo Corporation.) - C:\WINDOWS\System32\drivers\AcpiVpc.sys =>.Lenovo (Beijing) Limited®
SR - Auto [27/07/2012] [ 63960] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated®
SS - Demand [01/02/2019] [ 337408] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe =>.Adobe Systems Incorporated®
SR - Boot [12/04/2018] [ 1135520] (ADP80XX) . (.PMC-Sierra.) - C:\WINDOWS\System32\drivers\ADP80XX.SYS =>.Microsoft Windows®
SR - Boot [12/04/2018] [ 83360] (amdsata) . (.Advanced Micro Devices.) - C:\WINDOWS\System32\drivers\amdsata.sys =>.Microsoft Windows®
SR - Boot [12/04/2018] [ 259480] (amdsbs) . (.AMD Technologies Inc..) - C:\WINDOWS\System32\drivers\amdsbs.sys =>.Microsoft Windows®
SR - Boot [12/04/2018] [ 27032] (amdxata) . (.Advanced Micro Devices.) - C:\WINDOWS\System32\drivers\amdxata.sys =>.Microsoft Windows®
SR - Demand [21/07/2010] [ 305784] Alps Pointing-device Filter Driver (ApfiltrService) . (.Alps Electric Co., Ltd..) - C:\WINDOWS\System32\DRIVERS\Apfiltr.sys =>.Alps Electric Co., LTD.®
SR - Auto [07/09/2017] [ 83768] Apple Mobile Device Service (Apple Mobile Device Service) . (.Apple Inc..) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe =>.Apple Inc.®
SR - Boot [12/04/2018] [ 132000] Adaptec SAS/SATA-II RAID S (arcsas) . (.PMC-Sierra, Inc..) - C:\WINDOWS\System32\drivers\arcsas.sys =>.Microsoft Windows®
SR - Boot [08/02/2019] [ 37104] aswArDisk (aswArDisk) . (.AVAST Software.) - C:\WINDOWS\System32\drivers\aswArDisk.sys =>.AVAST Software s.r.o.®
SR - System [08/02/2019] [ 205400] aswArPot (aswArPot) . (.AVAST Software.) - C:\WINDOWS\System32\drivers\aswArPot.sys =>.AVAST Software s.r.o.®
SR - System [08/02/2019] [ 225680] aswbidsdriver (aswbidsdriver) . (.AVAST Software.) - C:\WINDOWS\System32\drivers\aswbidsdriver.sys =>.AVAST Software s.r.o.®
SR - Boot [08/02/2019] [ 196072] aswbidsh (aswbidsh) . (.AVAST Software.) - C:\WINDOWS\System32\drivers\aswbidsh.sys =>.AVAST Software s.r.o.®
SR - Boot [08/02/2019] [ 320696] aswblog (aswblog) . (.AVAST Software.) - C:\WINDOWS\System32\drivers\aswblog.sys =>.AVAST Software s.r.o.®
SR - Boot [08/02/2019] [ 57960] aswbuniv (aswbuniv) . (.AVAST Software.) - C:\WINDOWS\System32\drivers\aswbuniv.sys =>.AVAST Software s.r.o.®
SR - Boot [05/01/2019] [ 15488] aswElam (aswElam) . (.AVAST Software.) - C:\WINDOWS\System32\drivers\aswElam.sys =>.Microsoft Corporation®
SR - System [08/02/2019] [ 249456] aswHdsKe (aswHdsKe) . (.AVAST Software.) - C:\WINDOWS\System32\drivers\aswHdsKe.sys =>.AVAST Software s.r.o.®
SR - System [08/02/2019] [ 42288] aswKbd (aswKbd) . (.AVAST Software.) - C:\WINDOWS\System32\drivers\aswKbd.sys =>.AVAST Software s.r.o.®
SR - Auto [08/02/2019] [ 167304] aswMonFlt (aswMonFlt) . (.AVAST Software.) - C:\WINDOWS\System32\drivers\aswMonFlt.sys =>.AVAST Software s.r.o.®
SR - System [08/02/2019] [ 112312] aswRdr (aswRdr) . (.AVAST Software.) - C:\WINDOWS\System32\drivers\aswRdr2.sys =>.AVAST Software s.r.o.®
SR - Boot [08/02/2019] [ 87944] aswRvrt (aswRvrt) . (.AVAST Software.) - C:\WINDOWS\System32\drivers\aswRvrt.sys =>.AVAST Software s.r.o.®
SR - System [08/02/2019] [ 1034432] aswSnx (aswSnx) . (.AVAST Software.) - C:\WINDOWS\System32\drivers\aswSnx.sys =>.AVAST Software s.r.o.®
SR - System [08/02/2019] [ 474456] aswSP (aswSP) . (.AVAST Software.) - C:\WINDOWS\System32\drivers\aswSP.sys =>.AVAST Software s.r.o.®
SR - Auto [08/02/2019] [ 216784] aswStm (aswStm) . (.AVAST Software.) - C:\WINDOWS\System32\drivers\aswStm.sys =>.AVAST Software s.r.o.®
SR - Boot [08/02/2019] [ 379952] aswVmm (aswVmm) . (.AVAST Software.) - C:\WINDOWS\System32\drivers\aswVmm.sys =>.AVAST Software s.r.o.®
SR - Auto [08/02/2019] [ 357304] Avast Antivirus (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe =>.AVAST Software s.r.o.®
SS - Demand [08/02/2019] [ 57504] (AvastWscReporter) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\wsc_proxy.exe =>.AVAST Software s.r.o.®
SR - Boot [12/04/2018] [ 533912] QLogic Network Adapter VBD (b06bdrv) . (.QLogic Corporation.) - C:\WINDOWS\System32\drivers\bxvbda.sys =>.Microsoft Windows®
SR - Demand [12/04/2018] [ 9728] bcmfn2 Service (bcmfn2) . (...) - C:\WINDOWS\System32\drivers\bcmfn2.sys =>.Broadcom Corporation
SR - Auto [30/08/2011] [ 462184] Service Bonjour (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe =>.Apple Inc.®
SR - System [11/02/2019] [ 621928] VideoDriver service (CBB5C8FFF512) . (.VxDriver.) - C:\Windows\CBB5C8FFF512.sys =>Trojan.Agent =>Trojan.Agent
SR - Boot [12/04/2018] [ 321432] (cht4iscsi) . (.Chelsio Communications.) - C:\WINDOWS\System32\drivers\cht4sx64.sys =>.Microsoft Windows®
SR - Demand [12/04/2018] [ 1836952] Chelsio Virtual Bus Driver (cht4vbd) . (.Chelsio Communications.) - C:\WINDOWS\System32\drivers\cht4vx64.sys =>.Microsoft Windows®
SR - Demand [07/07/2016] [ 1560616] Conexant U (CnxtHdAudService) . (.Conexant Systems Inc..) - C:\WINDOWS\System32\drivers\CHDRT64.sys =>.Conexant Systems, Inc.®
SS - Demand [12/06/2017] [ 301496] Intel(R) Content Protection HECI Service (cphs) . (.Intel Corporation.) - C:\Windows\SysWOW64\IntelCpHeciSvc.exe =>.Intel(R) pGFX®
SR - Auto [02/02/2019] [ 185896] Service CryptoTab Update (cryptobrowser) (cryptobrowser) . (.CRYPTOCOMPANY OU.) - C:\Program Files (x86)\CryptoCompany\Update\CryptoTabUpdate.exe =>.CRYPTOCOMPANY OÜ®
SS - Demand [02/02/2019] [ 185896] Service CryptoTab Update (cryptobrowserm) (cryptobrowserm) . (.CRYPTOCOMPANY OU.) - C:\Program Files (x86)\CryptoCompany\Update\CryptoTabUpdate.exe =>.CRYPTOCOMPANY OÜ®
SS - Demand [24/01/2019] [ 431104] CryptoTab Browser Elevation Service (CryptoTabBrowserElevationService) . (.The Chromium and CryptoTab Browser Authors.) - C:\Program Files (x86)\CryptoTab Browser\Application\71.0.3578.98\elevation_service.exe =>.The Chromium and CryptoTab Browser Authors
SR - Auto [16/09/2015] [ 225624] @C:\WINDOWS\system32\CxAudMsg64.exe,-100 (CxAudMsg) . (.Conexant Systems Inc..) - C:\WINDOWS\system32\CxAudMsg64.exe =>.Conexant Systems, Inc.®
SR - Demand [05/09/2016] [ 131712] SAMSUNG Mobile USB Com (dg_ssudbus) . (.Samsung Electronics Co., Ltd..) - C:\WINDOWS\System32\DRIVERS\ssudbus.sys =>.Samsung Electronics CO., LTD.®
SR - Boot [12/04/2018] [ 3419032] QLogic 10 Gigabit Ethernet Ada (ebdrv) . (.QLogic Corporation.) - C:\WINDOWS\System32\drivers\evbda.sys =>.Microsoft Windows®
SR - System [08/01/2019] [ 153328] Malwarebytes Anti-Exploit (ESProtectionDriver) . (.Malwarebytes.) - C:\WINDOWS\system32\drivers\mbae64.sys =>.Malwarebytes Corporation®
SR - Demand [03/10/2012] [ 323920] ELAN PS/2 Port Input Device (ETD) . (.ELAN Microelectronics Corp..) - C:\WINDOWS\System32\DRIVERS\ETD.sys =>.ELAN Microelectronics Corporation®
SR - Demand [12/12/2018] [ 18944] HwHandSet_CompositeFilter (ew_usbccgpfilter) . (.Huawei Technologies Co., Ltd..) - C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys =>.Huawei Technologies Co., Ltd.
SR - Demand [21/08/2012] [ 33240] GEAR ASPI Filter Driver (GEARAspiWDM) . (.GEAR Software Inc..) - C:\WINDOWS\System32\DRIVERS\GEARAspiWDM.sys =>.GEAR Software Inc.®
SS - Demand [12/12/2018] [ 443872] Google Chrome Elevation Service (GoogleChromeElevationService) . (.Google Inc..) - C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\elevation_service.exe =>.Google Inc®
SR - Auto [19/03/2017] [ 153752] Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SS - Demand [19/03/2017] [ 153752] Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SR - Auto [02/11/2018] [ 84752] VMware hcmon (hcmon) . (.VMware, Inc..) - C:\WINDOWS\System32\DRIVERS\hcmon.sys =>.VMware, Inc.®
SR - Boot [12/04/2018] [ 64408] (HpSAMD) . (.Hewlett-Packard Company.) - C:\WINDOWS\System32\drivers\HpSAMD.sys =>.Microsoft Windows®
SR - Auto [12/12/2018] [ 190784] HuaweiHiSuiteService64.exe (HuaweiHiSuiteService64.exe) . (...) - C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe =>.Huawei Technologies Co.,Ltd
SR - Demand [12/04/2018] [ 36864] Intel Serial IO GPIO Controlle (iagpio) . (.Intel(R) Corporation.) - C:\WINDOWS\System32\drivers\iagpio.sys =>.Intel(R) Corporation
SR - Demand [12/04/2018] [ 91648] Intel(R) Serial IO I2C Host Cont (iai2c) . (.Intel(R) Corporation.) - C:\WINDOWS\System32\drivers\iai2c.sys =>.Intel(R) Corporation
SR - Demand [12/04/2018] [ 79360] Intel(R) S (iaLPSS2i_GPIO2) . (.Intel Corporation.) - C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys =>.Intel Corporation
SR - Demand [12/04/2018] [ 88576] In (iaLPSS2i_GPIO2_BXT_P) . (.Intel Corporation.) - C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys =>.Intel Corporation
SR - Demand [12/04/2018] [ 171520] Intel(R) Seria (iaLPSS2i_I2C) . (.Intel Corporation.) - C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys =>.Intel Corporation
SR - Demand [12/04/2018] [ 174592] Intel( (iaLPSS2i_I2C_BXT_P) . (.Intel Corporation.) - C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys =>.Intel Corporation
SR - Demand [12/04/2018] [ 38128] Intel(R) Serial IO (iaLPSSi_GPIO) . (.Intel Corporation.) - C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys =>.Intel Corporation - Client Components Group®
SR - Demand [12/04/2018] [ 113152] Intel(R) Serial IO I (iaLPSSi_I2C) . (.Intel Corporation.) - C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys =>.Intel Corporation
SR - Boot [12/04/2018] [ 885144] Intel Chipset SATA RAI (iaStorAVC) . (.Intel Corporation.) - C:\WINDOWS\System32\drivers\iaStorAVC.sys =>.Microsoft Windows®
SR - Boot [12/04/2018] [ 412064] Intel RAID Controller Wi (iaStorV) . (.Intel Corporation.) - C:\WINDOWS\System32\drivers\iaStorV.sys =>.Microsoft Windows®
SR - Demand [12/04/2018] [ 526232] Mellanox InfiniBand Bus/A (ibbus) . (.Mellanox.) - C:\WINDOWS\System32\drivers\ibbus.sys =>.Microsoft Windows®
SR - Auto [17/10/2016] [ 223464] IDMWFP (IDMWFP) . (.Tonec Inc..) - C:\WINDOWS\System32\DRIVERS\idmwfp.sys =>.Tonec Inc.®
SR - Demand [12/06/2017] [ 7970232] (igfx) . (.Intel Corporation.) - C:\WINDOWS\System32\DRIVERS\igdkmd64.sys =>.Intel(R) pGFX®
SR - Auto [12/06/2017] [ 373688] Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) . (.Intel Corporation.) - C:\WINDOWS\System32\igfxCUIService.exe =>.Intel(R) pGFX®
SR - Demand [12/05/2016] [ 481768] Son Intel(R) pour écrans (IntcDAud) . (.Intel(R) Corporation.) - C:\WINDOWS\System32\DRIVERS\IntcDAud.sys =>.Intel(R) OWR®
SS - Demand [11/09/2017] [ 673080] Service de l’iPod (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe =>.Apple Inc.®
SR - Boot [12/04/2018] [ 145816] (ItSas35i) . (.Avago Technologies.) - C:\WINDOWS\System32\drivers\ItSas35i.sys =>.Microsoft Windows®
SR - Boot [12/04/2018] [ 108952] (LSI_SAS) . (.LSI Corporation.) - C:\WINDOWS\System32\drivers\lsi_sas.sys =>.Microsoft Windows®
SR - Boot [12/04/2018] [ 124312] (LSI_SAS2i) . (.LSI Corporation.) - C:\WINDOWS\System32\drivers\lsi_sas2i.sys =>.Microsoft Windows®
SR - Boot [12/04/2018] [ 128408] (LSI_SAS3i) . (.Avago Technologies.) - C:\WINDOWS\System32\drivers\lsi_sas3i.sys =>.Microsoft Windows®
SR - Boot [12/04/2018] [ 82848] (LSI_SSS) . (.LSI Corporation.) - C:\WINDOWS\System32\drivers\lsi_sss.sys =>.Microsoft Windows®
SR - Demand [20/11/2012] [ 11776] ZTE LTE Device Mass Storage Filter Driver (massfilter_lte) . (.HandSet Incorporated.) - C:\WINDOWS\system32\drivers\massfilter_lte.sys =>.HandSet Incorporated
SR - Auto [11/02/2019] [ 198512] MBAMChameleon (MBAMChameleon) . (.Malwarebytes.) - C:\WINDOWS\System32\Drivers\MbamChameleon.sys =>.Malwarebytes Corporation®
SR - Boot [01/02/2019] [ 20936] MbamElam (MbamElam) . (.Malwarebytes.) - C:\WINDOWS\System32\DRIVERS\MbamElam.sys =>.Microsoft Corporation®
SR - Demand [11/02/2019] [ 127136] MBAMFarflt (MBAMFarflt) . (.Malwarebytes.) - C:\WINDOWS\System32\DRIVERS\farflt.sys =>.Malwarebytes Corporation®
SR - Demand [11/02/2019] [ 72864] MBAMProtection (MBAMProtection) . (.Malwarebytes.) - C:\WINDOWS\system32\DRIVERS\mbam.sys =>.Malwarebytes Corporation®
SR - Auto [01/02/2019] [ 6562472] Malwarebytes Service (MBAMService) . (.Malwarebytes.) - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe =>.Malwarebytes Corporation®
SR - Boot [11/02/2019] [ 274416] MBAMSwissArmy (MBAMSwissArmy) . (.Malwarebytes.) - C:\WINDOWS\System32\Drivers\mbamswissarmy.sys =>.Malwarebytes Corporation®
SR - Demand [11/02/2019] [ 114040] MBAMWebProtection (MBAMWebProtection) . (.Malwarebytes.) - C:\WINDOWS\System32\DRIVERS\mwac.sys =>.Malwarebytes Corporation®
SR - Boot [12/04/2018] [ 59800] (megasas) . (.Avago Technologies.) - C:\WINDOWS\System32\drivers\megasas.sys =>.Microsoft Windows®
SR - Boot [12/04/2018] [ 75160] (megasas2i) . (.Avago Technologies.) - C:\WINDOWS\System32\drivers\MegaSas2i.sys =>.Microsoft Windows®
SR - Boot [12/04/2018] [ 82328] (megasas35i) . (.Avago Technologies.) - C:\WINDOWS\System32\drivers\megasas35i.sys =>.Microsoft Windows®
SR - Boot [12/04/2018] [ 575896] (megasr) . (.LSI Corporation, Inc..) - C:\WINDOWS\System32\drivers\megasr.sys =>.Microsoft Windows®
SR - Demand [14/04/2016] [ 202848] Intel(R) Management Engine Interfac (MEIx64) . (.Intel Corporation.) - C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys =>.Intel(R) Embedded Subsystems and IP Blocks Group®
SR - Demand [12/04/2018] [ 842648] Mellanox ConnectX Bus E (mlx4_bus) . (.Mellanox.) - C:\WINDOWS\System32\drivers\mlx4_bus.sys =>.Microsoft Windows®
SS - Demand [08/04/2016] [ 146888] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe =>.Mozilla Corporation®
SR - Boot [12/04/2018] [ 63904] (mvumis) . (.Marvell Semiconductor, Inc..) - C:\WINDOWS\System32\drivers\mvumis.sys =>.Microsoft Windows®
SR - Demand [12/04/2018] [ 108952] NetworkDirect Service (ndfltr) . (.Mellanox.) - C:\WINDOWS\System32\drivers\ndfltr.sys =>.Microsoft Windows®
SR - Boot [12/04/2018] [ 150424] (nvraid) . (.NVIDIA Corporation.) - C:\WINDOWS\System32\drivers\nvraid.sys =>.Microsoft Windows®
SR - Boot [12/04/2018] [ 166304] (nvstor) . (.NVIDIA Corporation.) - C:\WINDOWS\System32\drivers\nvstor.sys =>.Microsoft Windows®
SR - Boot [12/04/2018] [ 58776] (percsas2i) . (.Avago Technologies.) - C:\WINDOWS\System32\drivers\percsas2i.sys =>.Microsoft Windows®
SR - Boot [12/04/2018] [ 61848] (percsas3i) . (.Avago Technologies.) - C:\WINDOWS\System32\drivers\percsas3i.sys =>.Microsoft Windows®
SR - Demand [03/01/2014] [ 331992] RtsUVStor.Sys Realtek USB Card Reader (RSUSBVSTOR) . (.Realtek Semiconductor Corp..) - C:\WINDOWS\System32\Drivers\RtsUVStor.sys =>.Realtek Semiconductor Corp®
SR - Demand [22/07/2015] [ 886528] Realtek RT640 NT Driver (rt640x64) . (.Realtek.) - C:\WINDOWS\System32\drivers\rt640x64.sys =>.Realtek Semiconductor Corp®
SR - Demand [26/09/2018] [ 758312] Realtek Bluetooth Filter Driver (RtkBtFilter) . (.Realtek Semiconductor Corporation.) - C:\WINDOWS\System32\DRIVERS\RtkBtfilter.sys =>.Realtek Semiconductor Corp.®
SR - Auto [26/09/2018] [ 713816] Realtek Bluetooth Device (RtkBtManServ) . (.Realtek Semiconductor Corp..) - C:\Windows\RtkBtManServ.exe =>.Realtek Semiconductor Corp.®
SR - Demand [03/07/2015] [ 410880] Realtek USB Card Reader - UER (RTSUER) . (.Realsil Semiconductor Corporation.) - C:\WINDOWS\System32\Drivers\RtsUer.sys =>.Realtek Semiconductor Corp®
SR - Demand [16/06/2015] [ 3068160] Lenovo EasyCamera (rtsuvc) . (.Realtek Semiconductor Corp..) - C:\WINDOWS\System32\DRIVERS\rtsuvc.sys =>.Realtek Semiconductor Corp®
SR - Demand [12/04/2018] [ 6320640] Realtek Wirel (RTWlanE) . (.Realtek Semiconductor Corporation.) - C:\WINDOWS\System32\drivers\rtwlane.sys =>.Realtek Semiconductor Corporation
SR - Auto [00/00/0000] [ 0] Conexant SmartAudio service (SAService) . (...) - C:\Windows\System32\SASrv.exe (.not file.) =>.Conexant Systems, Inc.
SR - Auto [09/01/2019] [ 3918168] Seed4.Me Service (Seed4.Me Service) . (.Seed4.Me.) - C:\Program Files\Seed4.Me VPN\bin\Seed4.Me_service.exe {00DE1B9DC4EAA6900D2B299969506B4D8A} =>.Seed4.Me
SR - Boot [12/04/2018] [ 44952] (SiSRaid2) . (.Silicon Integrated Systems Corp..) - C:\WINDOWS\System32\drivers\SiSRaid2.sys =>.Microsoft Windows®
SR - Boot [12/04/2018] [ 81816] (SiSRaid4) . (.Silicon Integrated Systems.) - C:\WINDOWS\System32\drivers\sisraid4.sys =>.Microsoft Windows®
SR - Auto [23/10/2013] [ 172192] Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe =>.Microsoft Corporation®
SR - Demand [27/07/2015] [ 42696] SmbDrvI (SmbDrvI) . (.Synaptics Incorporated.) - C:\WINDOWS\System32\DRIVERS\Smb_driver_Intel.sys =>.Synaptics Incorporated®
SR - Demand [05/05/2010] [ 811520] SMI Grabber Device Tuner Filter (SMIGrabber3C) . (...) - C:\WINDOWS\System32\Drivers\SmiUsbGrabber3C.sys
SR - Demand [05/09/2016] [ 165504] SAMSUNG Mobile USB Modem Dr (ssudmdm) . (.Samsung Electronics Co., Ltd..) - C:\WINDOWS\System32\DRIVERS\ssudmdm.sys =>.Samsung Electronics CO., LTD.®
SR - Boot [12/04/2018] [ 31128] (stexstor) . (.Promise Technology, Inc..) - C:\WINDOWS\System32\drivers\stexstor.sys =>.Microsoft Windows®
SR - Demand [23/01/2017] [ 912992] Synaptics TouchPad Driver (SynTP) . (.Synaptics Incorporated.) - C:\WINDOWS\System32\DRIVERS\SynTP.sys =>.Synaptics Incorporated®
SR - Auto [23/01/2017] [ 267360] SynTPEnh Caller Service (SynTPEnhService) . (.Synaptics Incorporated.) - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe =>.Synaptics Incorporated®
SR - Demand [26/09/2016] [ 27136] TAP-Windows Adapter V9 (tap0901) . (.The OpenVPN Project.) - C:\WINDOWS\System32\drivers\tap0901.sys =>.The OpenVPN Project
SR - Demand [07/09/2017] [ 54784] Apple Mobile USB Driver (USBAAPL64) . (.Apple, Inc..) - C:\WINDOWS\System32\Drivers\usbaapl64.sys =>.Apple, Inc.
SS - Demand [11/09/2017] [ 33224] SHAREit Hotspot Service (uSHAREitSvc) . (.SHAREit Technologies Co.Ltd.) - C:\Program Files (x86)\SHAREit Technologies\SHAREit\SHAREit.Service.exe =>.SHAREit Technologies Co.Ltd®
SR - Auto [21/11/2018] [ 100784] VMware Authorization Service (VMAuthdService) . (.VMware, Inc..) - C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe =>.VMware, Inc.®
SR - Boot [30/09/2016] [ 105024] VMware VMCI Bus Dri (vmci) . (.VMware, Inc..) - C:\WINDOWS\System32\drivers\vmci.sys =>.VMware, Inc.®
SR - Demand [21/11/2018] [ 46040] VMware Virtual E (VMnetAdapter) . (.VMware, Inc..) - C:\WINDOWS\System32\DRIVERS\vmnetadapter.sys =>.VMware, Inc.®
SR - Auto [21/11/2018] [ 66600] VMware Bridge Protocol (VMnetBridge) . (.VMware, Inc..) - C:\WINDOWS\System32\DRIVERS\vmnetbridge.sys =>.VMware, Inc.®
SR - Auto [21/11/2018] [ 374192] VMware DHCP Service (VMnetDHCP) . (.VMware, Inc..) - C:\Windows\SysWOW64\vmnetdhcp.exe =>.VMware, Inc.®
SR - Auto [21/11/2018] [ 43992] VMware Virtual Ethernet Userif for VMnet (VMnetuserif) . (.VMware, Inc..) - C:\WINDOWS\System32\DRIVERS\vmnetuserif.sys =>.VMware, Inc.®
SR - Demand [02/11/2018] [ 69696] VMware USB Client Driver (vmusb) . (.VMware, Inc..) - C:\WINDOWS\System32\drivers\vmusb.sys =>.VMware, Inc.®
SR - Auto [02/11/2018] [ 929712] VMware USB Arbitration Service (VMUSBArbService) . (.VMware, Inc..) - C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe =>.VMware, Inc.®
SR - Auto [21/11/2018] [ 396208] VMware NAT Service (VMware NAT Service) . (.VMware, Inc..) - C:\Windows\SysWOW64\vmnat.exe =>.VMware, Inc.®
SR - Auto [21/11/2018] [15446960] VMware Workstation Server (VMwareHostd) . (...) - C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe =>.VMware, Inc.®
SR - Auto [21/11/2018] [ 99272] VMware vmx86 (vmx86) . (.VMware, Inc..) - C:\WINDOWS\System32\DRIVERS\vmx86.sys =>.VMware, Inc.®
SR - Boot [12/04/2018] [ 166808] (vsmraid) . (.VIA Technologies Inc.,Ltd.) - C:\WINDOWS\System32\drivers\vsmraid.sys =>.Microsoft Windows®
SR - Boot [22/06/2018] [ 92040] vSockets Virtual Machine Communication Interface Sockets dr (vsock) . (.VMware, Inc..) - C:\WINDOWS\System32\DRIVERS\vsock.sys =>.VMware, Inc.®
SR - Auto [28/02/2018] [ 52576] Vstor2 MntApi 2.0 Driver (shared) (vstor2-mntapi20-shared) . (.VMware, Inc..) - C:\Windows\SysWOW64\drivers\vstor2-x64.sys =>.VMware, Inc.®
SR - Boot [12/04/2018] [ 305560] VIA StorX Storage RAID Co (VSTXRAID) . (.VIA Corporation.) - C:\WINDOWS\System32\drivers\vstxraid.sys =>.Microsoft Windows®
SR - Demand [12/04/2018] [ 32152] WinMad Service (WinMad) . (.Mellanox.) - C:\WINDOWS\System32\drivers\winmad.sys =>.Microsoft Windows®
SR - Demand [12/04/2018] [ 64920] WinVerbs Service (WinVerbs) . (.Mellanox.) - C:\WINDOWS\System32\drivers\winverbs.sys =>.Microsoft Windows®
SR - Auto [01/09/2017] [ 495872] WinZip Compression Smart Monitor Service (WinZip Compression Smart Monitor Service) . (...) - C:\Program Files\WinZip\WinZip Smart Monitor\WinZip Compression Smart Monitor Service.exe =>.Corel Corporation®
SR - Auto [20/03/2017] [ 473312] Wondershare Application Framework Service (WsAppService) . (.Wondershare.) - C:\Program Files (x86)\Wondershare\WAF\2.4.2.223\WsAppService.exe =>.Wondershare Technology Co.,Ltd®
SS - Demand [01/06/2017] [ 101152] Wondershare Driver Install Service (WsDrvInst) . (.Wondershare.) - C:\Program Files (x86)\Wondershare\MobileGo\DriverInstall.exe =>.Wondershare Technology Co.,Ltd®
---\\ APPLICATIONS LANCÉES AU DÉMARRAGE DU SYSTÈME (45) - 7s
O4 - HKLM\..\Run: [SecurityHealth] . (.Microsoft Corporation - Windows Defender notification icon.) -- C:\Program Files\Windows Defender\MSASCuiL.exe =>.Microsoft Windows®
O4 - HKLM\..\Run: [cAudioFilterAgent] . (.Conexant Systems, Inc. - Conexant High Definition Audio Filter Agent.) -- C:\Program Files\CONEXANT\cAudioFilterAgent\cAudioFilterAgent64.exe =>.Conexant Systems, Inc.®
O4 - HKLM\..\Run: [Apoint] . (.Alps Electric Co., Ltd. - Alps Pointing-device Driver.) -- C:\Program Files\Apoint2K\Apoint.exe =>.Alps Electric Co., LTD.®
O4 - HKLM\..\Run: [ETDCtrl] . (.ELAN Microelectronics Corp. - ETD Control Center.) -- C:\Program Files\Elantech\ETDCtrl.exe =>.ELAN Microelectronics Corporation®
O4 - HKLM\..\Run: [RtsFT] . (.Realtek semiconductor - RTFTrack.) -- C:\WINDOWS\RTFTrack.exe =>.Realtek Semiconductor Corp®
O4 - HKLM\..\Run: [SynLenovoGestureMgr] . (.Synaptics - Lenovo GestureAPI tools.) -- C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe =>.Synaptics Incorporated®
O4 - HKLM\..\Run: [WinZip UN] . (.WinZip - WinZip Update Notifier.) -- C:\Program Files\WinZip\WZUpdateNotifier.exe =>.Corel Corporation®
O4 - HKLM\..\Run: [WinZip PreLoader] . (.WinZip Computing, S.L. - WinZip Preloader.) -- C:\Program Files\WinZip\WzPreloader.exe =>.Corel Corporation®
O4 - HKLM\..\Run: [SmartAudio] . (.Conexant Systems, Inc. - SmartAudio CPL (32bit).) -- C:\Program Files\CONEXANT\SAII\SACpl.exe =>.Conexant Systems, Inc.®
O4 - HKLM\..\Run: [AvastUI.exe] . (.AVAST Software - AvLaunch component.) -- C:\Program Files\AVAST Software\Avast\AvLaunch.exe =>.AVAST Software s.r.o.®
O4 - HKLM\..\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe =>.Apple Inc.®
O4 - HKCU\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\LENOVO\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Microsoft Corporation®
O4 - HKCU\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Users\LENOVO\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - HKCU\..\Run: [Web Companion] . (.Lavasoft - Web Companion.) -- C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe =>.Lavasoft Software Canada®
O4 - HKCU\..\Run: [Globus] . (. - .) -- Menu\Programs\GLOBUS INTERCOM\GLOBUS\Globus.appref-ms =>.SUP.Orphan
O4 - HKCU\..\Run: [EarnMoney] . (. - .) -- C:\Users\LENOVO\AppData\Local\Programs\EarnMoney\EarnMoney.exe (.Not File.) =>.SUP.Orphan
O4 - HKCU\..\Run: [DesktopMining] . (.Desktop Mining - DesktopMining.) -- C:\Users\LENOVO\AppData\Local\Programs\DesktopMining\DesktopMining.exe
O4 - HKCU\..\Run: [CyberGhost] . (...) -- .
O4 - HKCU\..\Run: [Seed4Me] . (.Seed4.Me - Seed4.Me VPN Client.) -- C:\Program Files\Seed4.Me VPN\bin\Seed4.Me_VPN.exe {00DE1B9DC4EAA6900D2B299969506B4D8A} =>.Seed4.Me
O4 - HKCU\..\Run: [HashFish] . (.北京哈希章鱼科技有限公司 - HashFish.) -- C:\Users\LENOVO\AppData\Roaming\HashFish\HashFish.exe {062820B4032BA0BB194BB09E1C728FED}
O4 - HKCU\..\Run: [MailRuUpdater] . (.Mail.Ru - Mail.Ru updater.) -- C:\Users\LENOVO\AppData\Local\Mail.Ru\MailRuUpdater.exe =>.LLC Mail.Ru®
O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe =>.Adobe Systems, Incorporated®
O4 - HKLM\..\Wow6432Node\Run: [SMΔRT-Protection] . (.Smadsoft - Smadav USB Antivirus & Additional Protectio.) -- C:\Program Files (x86)\SMADAV\SMΔRTP.exe =>.SmadSoft
O4 - HKLM\..\Wow6432Node\Run: [APSDaemon] . (.Apple Inc. - Apple Push.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe =>.Apple Inc.®
O4 - HKLM\..\Wow6432Node\Run: [CryptoTab Browser] . (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe =>.CRYPTOCOMPANY OÜ®
O4 - HKLM\..\Wow6432Node\Run: [AvastUI.exe] . (.AVAST Software - AvLaunch component.) -- C:\Program Files\AVAST Software\Avast\AvLaunch.exe =>.AVAST Software s.r.o.®
O4 - HKLM\..\Wow6432Node\Run: [vmware-tray.exe] . (.VMware, Inc. - VMware Tray Process.) -- C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe =>.VMware, Inc.®
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Windows®
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Windows®
O4 - HKUS\S-1-5-19\..\RunOnce: [WAB Migrate] . (.Microsoft Corporation - Windows Contacts.) -- C:\Program Files\Windows Mail\wab.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\RunOnce: [WAB Migrate] . (.Microsoft Corporation - Windows Contacts.) -- C:\Program Files\Windows Mail\wab.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-3743779890-750918602-2797629546-1001\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\LENOVO\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - HKUS\S-1-5-21-3743779890-750918602-2797629546-1001\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - HKUS\S-1-5-21-3743779890-750918602-2797629546-1001\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Microsoft Corporation®
O4 - HKUS\S-1-5-21-3743779890-750918602-2797629546-1001\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Users\LENOVO\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - HKUS\S-1-5-21-3743779890-750918602-2797629546-1001\..\Run: [Web Companion] . (.Lavasoft - Web Companion.) -- C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe =>.Lavasoft Software Canada®
O4 - HKUS\S-1-5-21-3743779890-750918602-2797629546-1001\..\Run: [Globus] . (. - .) -- Menu\Programs\GLOBUS INTERCOM\GLOBUS\Globus.appref-ms =>.SUP.Orphan
O4 - HKUS\S-1-5-21-3743779890-750918602-2797629546-1001\..\Run: [EarnMoney] . (. - .) -- C:\Users\LENOVO\AppData\Local\Programs\EarnMoney\EarnMoney.exe (.Not File.) =>.SUP.Orphan
O4 - HKUS\S-1-5-21-3743779890-750918602-2797629546-1001\..\Run: [DesktopMining] . (.Desktop Mining - DesktopMining.) -- C:\Users\LENOVO\AppData\Local\Programs\DesktopMining\DesktopMining.exe
O4 - HKUS\S-1-5-21-3743779890-750918602-2797629546-1001\..\Run: [CyberGhost] . (...) -- .
O4 - HKUS\S-1-5-21-3743779890-750918602-2797629546-1001\..\Run: [Seed4Me] . (.Seed4.Me - Seed4.Me VPN Client.) -- C:\Program Files\Seed4.Me VPN\bin\Seed4.Me_VPN.exe {00DE1B9DC4EAA6900D2B299969506B4D8A} =>.Seed4.Me
O4 - HKUS\S-1-5-21-3743779890-750918602-2797629546-1001\..\Run: [HashFish] . (.北京哈希章鱼科技有限公司 - HashFish.) -- C:\Users\LENOVO\AppData\Roaming\HashFish\HashFish.exe {062820B4032BA0BB194BB09E1C728FED}
O4 - HKUS\S-1-5-21-3743779890-750918602-2797629546-1001\..\Run: [MailRuUpdater] . (.Mail.Ru - Mail.Ru updater.) -- C:\Users\LENOVO\AppData\Local\Mail.Ru\MailRuUpdater.exe =>.LLC Mail.Ru®
---\\ PROCESSUS LANCÉS (80) - 23s
[MD5.670F652C0738992BF94E0F2D1CF2DFF7] - (.Intel Corporation - igfxCUIService Module.) -- C:\Windows\System32\igfxCUIService.exe [373688] [PID.2016] =>.Intel Corporation
[MD5.EBBCD5DFBB1DE70E8F4AF8FA59E401FD] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe [462184] [PID.3632] =>.Apple Inc.®
[MD5.FF44271C20386D6D782D058EF632BD40] - (.Conexant Systems Inc. - Conexant Audio Message Service.) -- C:\WINDOWS\system32\CxAudMsg64.exe [225624] [PID.3644] =>.Conexant Systems Inc.
[MD5.49D234989341C2D16419C1043A63CE68] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768] [PID.3652] =>.Apple Inc.®
[MD5.313C17CF1072E0D18C5147D072E2CD7C] - (.Realtek Semiconductor Corp. - Realtek Bluetooth BTDevManager Service Appl.) -- C:\Windows\RtkBtManServ.exe [713816] [PID.3668] =>.Realtek Semiconductor Corp.®
[MD5.54449CA12BC77B7E30B608EA7AAEC4F4] - (.Synaptics Incorporated - 64-bit Synaptics Pointing Enhance Service.) -- C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [267360] [PID.3684] =>.Synaptics Incorporated®
[MD5.E0A69AAB9D8F6EFDAD11AE261E3FE986] - (.Wondershare - Wondershare Passport.) -- C:\Program Files (x86)\Wondershare\WAF\2.4.2.223\WsAppService.exe [473312] [PID.3700] =>.Wondershare Technology Co.,Ltd®
[MD5.A53E5B3408B00F0CAED73C9BE999EF00] - (.Seed4.Me - Seed4.Me VPN Client.) -- C:\Program Files\Seed4.Me VPN\bin\Seed4.Me_service.exe [3918168] [PID.3708] {00DE1B9DC4EAA6900D2B299969506B4D8A} =>.Seed4.Me
[MD5.9CEE2BBB060DC4B7062BE4461774A7A0] - (. - HuaweiHiSuiteService.) -- C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [190784] [PID.3724] =>.Huawei Technologies Co.,Ltd
[MD5.D19C4EE2AC7C47B8F5F84FFF1A789D8A] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [63960] [PID.3732] =>.Adobe Systems, Incorporated®
[MD5.327B7C73A4485A178F0861C492A16F8D] - (. - WinZip Compression Smart Monitor Service.) -- C:\Program Files\WinZip\WinZip Smart Monitor\WinZip Compression Smart Monitor Service.exe [495872] [PID.3792] =>.Corel Corporation®
[MD5.59C8BF1A8C9CBB6EC136DC7F7476250D] - (.VMware, Inc. - VMware USB Arbitration Service.) -- C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe [929712] [PID.3876] =>.VMware, Inc.®
[MD5.CF3EDFAA9CC87E223F9316B5D0F1AA84] - (.VMware, Inc. - VMware VMnet DHCP service.) -- C:\Windows\SysWOW64\vmnetdhcp.exe [374192] [PID.3904] =>.VMware, Inc.®
[MD5.3CA1424FABB0A803294F42047EE0024F] - (.Conexant Systems, Inc. - SmartAudio Service Application.) -- C:\Windows\SysWOW64\SASrv.exe [423128] [PID.3912] =>.Conexant Systems, Inc.®
[MD5.92BBB76CDF269E7373F153A8296B13E2] - (.VMware, Inc. - VMware NAT Service.) -- C:\Windows\SysWOW64\vmnat.exe [396208] [PID.3920] =>.VMware, Inc.®
[MD5.ADC2A1F46DA3BF1D5B6F53976290FB7D] - (.VMware, Inc. - VMware Authorization Service.) -- C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe [100784] [PID.4092] =>.VMware, Inc.®
[MD5.51566E8D791634C58A2445B37B8E51BE] - (.Synaptics Incorporated - Synaptics TouchPad 64-bit Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [4187744] [PID.6112] =>.Synaptics Incorporated®
[MD5.A4A8C11A8E390035EA8B8E16D5473203] - (.Intel Corporation - igfxEM Module.) -- C:\Windows\System32\igfxEM.exe [354232] [PID.6776] =>.Intel Corporation
[MD5.07835DDE149CB26CBEE93BE73B3BC9D4] - (.Intel Corporation - igfxHK Module.) -- C:\Windows\System32\igfxHK.exe [268216] [PID.6880] =>.Intel Corporation
[MD5.AEDAEB361A737E1E4F520E40780E0D3F] - (...) -- C:\WINDOWS\system32\igfxTray.exe [401848] [PID.6916] =>.Intel Corporation
[MD5.EB3D7C3FE7AD6AD4F8AC50A7A3F28CD4] - (.Synaptics Incorporated - Synaptics Pointing Device Helper.) -- C:\PROGRAM FILES\SYNAPTICS\SynTP\SYNTPHELPER.EXE [228960] [PID.7104] =>.Synaptics Incorporated®
[MD5.5B146F42DB8A41071BDC1B4828BA4DE6] - (...) -- C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.38.138.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe [182272] [PID.7868]
[MD5.E3D62D0733858942FFCDAA20C2241D00] - (.Corel Corporation - WinZip Compression Smart Monitor.) -- C:\Program Files\WinZip\WinZip Smart Monitor\WinZipCompressionSmartMonitor.exe [2158848] [PID.8848] =>.Corel Corporation®
[MD5.63A202232176A0EF37E4D2994AC88F95] - (.Conexant Systems, Inc. - Conexant High Definition Audio Filter Agent.) -- C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe [916184] [PID.4304] =>.Conexant Systems, Inc.®
[MD5.4A38E62BF4D93E14D9F634EA493FA20A] - (.ELAN Microelectronics Corp. - ETD Control Center.) -- C:\Program Files\Elantech\ETDCtrl.exe [2872720] [PID.8588] =>.ELAN Microelectronics Corporation®
[MD5.9048BC79ACCB4F59934EF2212755905E] - (.Realtek semiconductor - RTFTrack.) -- C:\Windows\RTFTrack.exe [6340312] [PID.5748] =>.Realtek Semiconductor Corp®
[MD5.25FE95FD7AE88395F5100B69D71A4205] - (.Synaptics - Lenovo GestureAPI tools.) -- C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe [675568] [PID.9108] =>.Synaptics Incorporated®
[MD5.8C5DA974F2F73B9DFB66F66E55983400] - (.WinZip Computing, S.L. - WinZip Preloader.) -- C:\Program Files\WinZip\WzPreloader.exe [123848] [PID.6572] =>.Corel Corporation®
[MD5.76FE2B9656AD81EBB9477E30B4A738FD] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe [297784] [PID.3564] =>.Apple Inc.®
[MD5.C679A23D2CA97E30F59F73603E29EA03] - (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe [3981368] [PID.9348] =>.Tonec Inc.
[MD5.615E58F9963734185756AEE4959BA964] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe [20728480] [PID.9388] =>.Microsoft Corporation®
[MD5.615E58F9963734185756AEE4959BA964] - (.BitTorrent Inc. - µTorrent.) -- C:\Users\LENOVO\AppData\Roaming\uTorrent\uTorrent.exe [1908920] [PID.9568] =>.BitTorrent Inc®
[MD5.615E58F9963734185756AEE4959BA964] - (.Lavasoft - Web Companion.) -- C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe [7717480] [PID.9612] =>.Lavasoft Software Canada®
[MD5.615E58F9963734185756AEE4959BA964] - (.Mail.Ru - Mail.Ru updater.) -- C:\Users\LENOVO\AppData\Local\Mail.Ru\MailRuUpdater.exe [3620536] [PID.10156] =>.LLC Mail.Ru®
[MD5.615E58F9963734185756AEE4959BA964] - (.Wondershare - MobileGoService.) -- C:\Program Files (x86)\Wondershare\MobileGo\MobileGoService.exe [95008] [PID.1400] =>.Wondershare Technology Co.,Ltd®
[MD5.615E58F9963734185756AEE4959BA964] - (.Conexant Systems, Inc - SmartAudio.) -- C:\Program Files\CONEXANT\SAII\SmartAudio.exe [1078616] [PID.7212] =>.Conexant Systems, Inc.®
[MD5.615E58F9963734185756AEE4959BA964] - (.Tonec Inc. - Internet Download Manager agent for click m.) -- C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe [275512] [PID.5824] =>.Tonec Inc.®
[MD5.615E58F9963734185756AEE4959BA964] - (.Smadsoft - Smadav USB Antivirus & Additional Protectio.) -- C:\Program Files (x86)\SMADAV\SMΔRTP.exe [1846384] [PID.2748] =>.SmadSoft
[MD5.615E58F9963734185756AEE4959BA964] - (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [1752616] [PID.8016] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.BitTorrent Inc. - WebHelper.) -- C:\Users\LENOVO\AppData\Roaming\uTorrent\updates\3.5.5_44994\utorrentie.exe [398520] [PID.3600] =>.BitTorrent Inc®
[MD5.615E58F9963734185756AEE4959BA964] - (.AVAST Software - Avast Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe [11580296] [PID.732] =>.AVAST Software s.r.o.®
[MD5.615E58F9963734185756AEE4959BA964] - (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [1752616] [PID.9252] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.BitTorrent Inc. - WebHelper.) -- C:\Users\LENOVO\AppData\Roaming\uTorrent\updates\3.5.5_44994\utorrentie.exe [398520] [PID.8612] =>.BitTorrent Inc®
[MD5.615E58F9963734185756AEE4959BA964] - (.Apple Inc. - iPod Service.) -- C:\Program Files\iPod\bin\iPodService.exe [673080] [PID.10768] =>.Apple Inc.®
[MD5.615E58F9963734185756AEE4959BA964] - (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [1752616] [PID.10920] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.CRYPTOCOMPANY OU - CryptoTab Update.) -- C:\Program Files (x86)\CryptoCompany\Update\CryptoTabUpdate.exe [185896] [PID.10992] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.CRYPTOCOMPANY OU - CryptoTab Update.) -- C:\Program Files (x86)\CryptoCompany\Update\1.3.99.17\CryptoTabCrashHandler.exe [318504] [PID.11064] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.CRYPTOCOMPANY OU - CryptoTab Update.) -- C:\Program Files (x86)\CryptoCompany\Update\1.3.99.17\CryptoTabCrashHandler64.exe [395304] [PID.11140] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [1752616] [PID.10548] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [1752616] [PID.4232] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [1752616] [PID.10828] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.Google Inc. - Programme d'installation de Google.) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752] [PID.10484] =>.Google Inc®
[MD5.615E58F9963734185756AEE4959BA964] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files (x86)\Google\Update\1.3.33.23\GoogleCrashHandler.exe [292648] [PID.8884] =>.Google Inc®
[MD5.615E58F9963734185756AEE4959BA964] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files (x86)\Google\Update\1.3.33.23\GoogleCrashHandler64.exe [369960] [PID.9972] =>.Google Inc®
[MD5.615E58F9963734185756AEE4959BA964] - (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [1752616] [PID.10152] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [1752616] [PID.3484] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [1752616] [PID.5828] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [1752616] [PID.10560] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [1752616] [PID.11572] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [1752616] [PID.11656] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [1752616] [PID.11808] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [1752616] [PID.11892] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [1752616] [PID.12032] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [1752616] [PID.10516] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [1752616] [PID.8436] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [1752616] [PID.4404] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [1752616] [PID.12160] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [1752616] [PID.12204] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [1752616] [PID.12804] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [1752616] [PID.12948] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [1752616] [PID.13072] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [1752616] [PID.13208] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [1752616] [PID.10592] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [1752616] [PID.12668] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [1752616] [PID.12672] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [1752616] [PID.11732] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [1752616] [PID.5960] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.Malwarebytes - Malwarebytes Tray Application.) -- C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe [3951008] [PID.5916] =>.Malwarebytes Corporation®
[MD5.615E58F9963734185756AEE4959BA964] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\LENOVO\AppData\Roaming\ZHP\ZHPDiag3.exe [3198336] [PID.13604] =>.Nicolas Coolman
[MD5.615E58F9963734185756AEE4959BA964] - (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [1752616] [PID.13364] =>.CRYPTOCOMPANY OÜ®
---\\ CHROME, Démarrage, Recherche, Extensions (16) - 2s
G0 - GCSP: Secure Preferences [User Data\Default][HomePage] http://www.google.com =>.Google Inc.
G2 - GCE: Preference [LENOVO][User Data\Default] [apnknbibfbgnngbcdodfnieopfhenakc] All-in-One Office =>.allinoneoffice.net
G2 - GCE: Preference [LENOVO][User Data\Default] [eofcbnmajmjmplflapaojjnihcjkigck] Avast =>.Avast Software s.r.o
G2 - GCE: Preference [LENOVO][User Data\Default] [fbknefhkjhbolemlchjhacbgckdjggod] Presearch.org Start With Us
G2 - GCE: Preference [LENOVO][User Data\Default] [fngmhnnpilhplaeedifhccceomclgfbg] EditThisCookie =>.editthiscookie.com
G2 - GCE: Preference [LENOVO][User Data\Default] [gbchcmhmhahfdphkhkmpfmihenigjmpp] { =>.Google Inc. {Bureau à distance}
G2 - GCE: Preference [LENOVO][User Data\Default] [gomekmidlodglbbmalcneegieacbdmki] Avast Online Security =>.Avast Software s.r.o
G2 - GCE: Preference [LENOVO][User Data\Default] [hnmpcagpplmpfojmgmnngilcnanddlhb] Windscribe =>.Windscribe
G2 - GCE: Preference [LENOVO][User Data\Default] [ioideiondjmgiofhijgakpodnfohdkcm] AllinOneOffice =>.allinoneoffice.net
G2 - GCE: Preference [LENOVO][User Data\Default] [jipinfggejlkpkomnccoocbdndjalicp] adf.ly KILLER
G2 - GCE: Preference [LENOVO][User Data\Default] [manjolceoachljppbjhfgkoomnlidkna] Surfe.be
G2 - GCE: Preference [LENOVO][User Data\Default] [ngpampappnmepgilojfohadhhmbhlaek] IDM Integration Module =>.IDM Computer Solutions, Inc.
G2 - GCE: Preference [LENOVO][User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] =>.Google Inc. {Wallet}
G2 - GCE: Preference [LENOVO][User Data\Default] [pfmgfdlgomnbgkofeojodiodmgpgmkac] =>.Google Inc. {Économiseur de données}
G2 - GCE: Preference [LENOVO][User Data\Default] [pholijjkpkpeopfbbhfhnpolfipbojfa] chrome_filter
G2 - GCE: Preference [LENOVO][User Data\Default] [pkedcjkdefgpdelpbcmbmeomcjbeemfm] Chrome Media Router =>.Google Inc.
---\\ FIREFOX, Plugins,Démarrage,Recherche,Extensions (7) - 3s
M0 - MFSP: prefs.js [LENOVO - 34iilwz7.default] http://inline.go.mail.ru/
P2 - EXT FILE: (.Yahoo! Search Engine - yahoo-search-engine.) -- C:\Users\LENOVO\AppData\Roaming\Mozilla\Firefox\Profiles\34iilwz7.default\searchplugins\yahoo-lavasoft-ff59.xml =>.Yahoo! Search Engine
P2 - EXT FILE: (.Microsoft Corporation - The plugin allows you to have a better expe.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npMeetingJoinPluginOC.dll =>.Microsoft Corporation®
P2 - EXT FILE: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\loop@mozilla.org.xpi
P2 - EXT FILE: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\{51143AA8-3F13-47BA-AE9A-A9600A32A53E}.xpi
P2 - FPN: [HKLM] [@tools.CryptoTab.com/CryptoTab Update;version=3] - (.CRYPTOCOMPANY OU.) -- C:\Program Files (x86)\CryptoCompany\Update\1.3.99.17\npCryptoTabUpdate3.dll
P2 - FPN: [HKLM] [@tools.CryptoTab.com/CryptoTab Update;version=9] - (.CRYPTOCOMPANY OU.) -- C:\Program Files (x86)\CryptoCompany\Update\1.3.99.17\npCryptoTabUpdate3.dll
---\\ INTERNET EXPLORER,Démarrage,Recherche,URLSearchHook (18) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = www.google.com =>.Google Inc.
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = www.google.com =>.Google Inc.
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = www.google.com =>.Google Inc.
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = www.google.com =>.Google Inc.
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R1 - HKEY_USERS\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = www.google.com =>.Google Inc.
R3 - URLSearchHook: (no name)[HKCU] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (11.00.17134.582 (WinBuild.160101.0800)) -- C:\Windows\System32\ieframe.dll =>.Microsoft Corporation
---\\ INTERNET EXPLORER, Site de confiance et site sensible (6) - 0s
~ IE Restricted Site Good: localhost
IE Restricted Site Good: webcompanion.com =>PUP.Optional.LavasoftWebCompanion
~ Microsoft Internet Explorer Restricted Site(s) Domains: 2(Good) / 0(Bad)
~ IE Restricted Site Good: connectify.me
~ IE Restricted Site Good: fastspring.com
~ Microsoft Internet Explorer Restricted Site(s) EscDomains: 2(Good) / 0(Bad)
---\\ INTERNET EXPLORER,Proxy Management (6) - 0s
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 =>.Default.Value
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 =>.Default.Value
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 =>.Default.Value
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1 =>.Default.Value
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
R5 - HKLM\SYSTEM\CurrentControlSet\services\NlaSvc\Parameters\Internet\ManualProxies [] =>.Microsoft
---\\ INTERNET EXPLORER,IniFiles, Autoloading Programs (3) - 0s
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: VMApplet=
---\\ ÉTUDE DU FICHIER HOSTS (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (1)
---\\ BROWSER HELPER OBJECT DE NAVIGATEUR (BHO) (3) - 1s
O2 - BHO: IDM Helper [64Bits] - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Internet Download Manager, Tonec Inc. - IDM Browser Helper Object.) -- C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll =>.Tonec Inc.®
O2 - BHO: Skype for Business Click to Call BHO [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} . (.Microsoft Corporation - Skype for Business.) -- C:\Program Files\Microsoft Office\Office15\OCHelper.dll =>.Microsoft Corporation®
O2 - BHO: Microsoft SkyDrive Pro Browser Helper [64Bits] - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} . (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL =>.Microsoft Corporation®
---\\ RACCOURCIS GLOBAL STARTUP (162) - 28s
O4 - GS\Desktop [Administrateur]: Amalika Start.lnk . (...) C:\Users\LENOVO\Desktop\Dzair Shoot\Amalika live 1\Set.exe /movetime 01\05\2017 16:50:19 "C:\Users\LENOVO\Desktop\Dzair Shoot\Amalika live 1\Amalika Start.exe"
O4 - GS\Desktop [Administrateur]: AVS Video Recorder.lnk . (.Online Media Technologies Ltd. - .) C:\Program Files (x86)\AVS4YOU\AVSVideoRecorder\AVSVideoRecorder.exe =>.Online Media Technologies Ltd.
O4 - GS\Desktop [Administrateur]: Bighits4u Viewer.lnk . (.Bighits4U LLC - Bighits4U Viewer application.) C:\Program Files (x86)\Bighits4u\Bighits4u Viewer\Bighits4u.exe
O4 - GS\Desktop [Administrateur]: CardRecovery.lnk . (.WinRecovery Software - CardRecovery.) C:\Program Files (x86)\CardRecovery\CardRecovery.exe {7A0F35A5D301113B4C50984A67E2F638} =>.WinRecovery Software
O4 - GS\Desktop [Administrateur]: DesktopMining.lnk . (.Desktop Mining - DesktopMining.) C:\Users\LENOVO\AppData\Local\Programs\DesktopMining\DesktopMining.exe
O4 - GS\Desktop [Administrateur]: Hein 4.5.2.lnk . (...) C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\Hein.exe
O4 - GS\Desktop [Administrateur]: Hein Recovery 1.8.lnk . (...) C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\Hein Recovery.exe
O4 - GS\Desktop [Administrateur]: HitLeap Viewer.lnk . (...) C:\Users\LENOVO\AppData\Local\HitLeap Viewer\app\lua.exe HitLeap-Viewer.lua Windows {079247800C8B42AFD7C0F33D4F5252C4}
O4 - GS\Desktop [Administrateur]: Lecteur de CD - Raccourci.lnk . (...) G:\
O4 - GS\Desktop [Administrateur]: NiceHash Miner 2.lnk . (.H-BIT d.o.o. - NiceHash Miner 2.) C:\Users\LENOVO\AppData\Local\Programs\NiceHash Miner 2\NiceHash Miner 2.exe {03E63209FAED806141C146807097F872}
O4 - GS\Desktop [Administrateur]: Recuva.lnk . (.Piriform Ltd - Recuva.) C:\Program Files (x86)\Recuva\Recuva.exe =>.Piriform Ltd®
O4 - GS\Desktop [Administrateur]: ZHPCleaner.lnk . (.Nicolas Coolman - ZHPCleaner.) C:\Users\LENOVO\AppData\Roaming\ZHP\ZHPCleaner.exe =>.Nicolas Coolman
O4 - GS\Desktop [Administrateur]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\LENOVO\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Desktop [Administrateur]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\LENOVO\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - GS\Quicklaunch [Administrateur]: CryptoTab Browser.lnk . (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe =>.CRYPTOCOMPANY OÜ®
O4 - GS\Quicklaunch [Administrateur]: JPEG to Word Converter.lnk . (.Soft Solutions - JPEG to Word Converter.) C:\Program Files (x86)\Soft Solutions\Image to OCR Converter\JPEG to Word Converter.exe {43B2354BD3A5CBAFE6CCBEE1C1C54B55} =>.Soft Solutions
O4 - GS\Quicklaunch [Administrateur]: Wondershare MobileGo.lnk . (.Wondershare - Wondershare MobileGo.) C:\Program Files (x86)\Wondershare\MobileGo\MobileGo.exe =>.Wondershare Technology Co.,Ltd®
O4 - GS\Quicklaunch [Administrateur]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\LENOVO\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - GS\sendTo [Administrateur]: AVS Mobile Uploader.lnk . (.Online Media Technologies Ltd. - AVS Mobile Uploader.) C:\Program Files (x86)\Common Files\AVSMedia\MobileUploader\AVSMobileUploader.exe =>.Online Media Technologies Ltd.
O4 - GS\sendTo [Administrateur]: AVS Video Burner.lnk . (.Online Media Technologies Ltd. - AVS Video Burner.) C:\Program Files (x86)\Common Files\AVSMedia\BurnerService\AVSVideoBurner.exe =>.Online Media Technologies Ltd.
O4 - GS\sendTo [Administrateur]: AVS Video Uploader.lnk . (.Online Media Technologies Ltd. - AVS Video Uploader.) C:\Program Files (x86)\Common Files\AVSMedia\VideoUploader\AVSVideoUploader.exe =>.Online Media Technologies Ltd.
O4 - GS\sendTo [Administrateur]: Destinataire de télécopie.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Administrateur]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\WINDOWS\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Administrateur]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe /sendto: =>.Microsoft Corporation®
O4 - GS\sendTo [Administrateur]: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - Transfère les fichiers entre l.) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\sendTo [Administrateur]: Wondershare MobileGo.lnk . (.Wondershare - Wondershare MobileGo.) C:\Program Files (x86)\Wondershare\MobileGo\MobileGo.exe =>.Wondershare Technology Co.,Ltd®
O4 - GS\TaskBar [Administrateur]: CryptoTab Browser.lnk . (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe =>.CRYPTOCOMPANY OÜ®
O4 - GS\TaskBar [Administrateur]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [Administrateur]: MPC-HC x64.lnk . (.MPC-HC Team - MPC-HC 1.7.13 (64-bit).) C:\Program Files (x86)\MPC-HC\mpc-hc64.exe =>.MPC-HC Team
O4 - GS\TaskBar [Administrateur]: Pale Moon.lnk . (.Moonchild Productions - Pale Moon web browser.) C:\Program Files\Pale Moon\palemoon.exe =>.Markus Straver®
O4 - GS\TaskBar [Administrateur]: Skype.lnk . (...) C:\Windows\Installer\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}\SkypeIcon.exe =>.Skype Technologies
O4 - GS\TaskBar [Administrateur]: Task Manager.lnk . (.Microsoft Corporation - Gestionnaire des tâches.) C:\WINDOWS\system32\taskmgr.exe /7 =>.Microsoft Windows®
O4 - GS\Programs [Administrateur]: DesktopMining.lnk . (.Desktop Mining - DesktopMining.) C:\Users\LENOVO\AppData\Local\Programs\DesktopMining\DesktopMining.exe
O4 - GS\Programs [Administrateur]: Fonctionnalités optionnelles.lnk . (.Microsoft Corporation - Assistance des fonctionnalités à la demande.) C:\Windows\System32\fodhelper.exe =>.Microsoft Corporation
O4 - GS\Programs [Administrateur]: Lecteur USB (H).lnk . (...) H:\
O4 - GS\Programs [Administrateur]: NiceHash Miner 2.lnk . (.H-BIT d.o.o. - NiceHash Miner 2.) C:\Users\LENOVO\AppData\Local\Programs\NiceHash Miner 2\NiceHash Miner 2.exe {03E63209FAED806141C146807097F872}
O4 - GS\Programs [Administrateur]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\LENOVO\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - GS\Desktop [LENOVO]: Amalika Start.lnk . (...) C:\Users\LENOVO\Desktop\Dzair Shoot\Amalika live 1\Set.exe /movetime 01\05\2017 16:50:19 "C:\Users\LENOVO\Desktop\Dzair Shoot\Amalika live 1\Amalika Start.exe"
O4 - GS\Desktop [LENOVO]: AVS Video Recorder.lnk . (.Online Media Technologies Ltd. - .) C:\Program Files (x86)\AVS4YOU\AVSVideoRecorder\AVSVideoRecorder.exe =>.Online Media Technologies Ltd.
O4 - GS\Desktop [LENOVO]: Bighits4u Viewer.lnk . (.Bighits4U LLC - Bighits4U Viewer application.) C:\Program Files (x86)\Bighits4u\Bighits4u Viewer\Bighits4u.exe
O4 - GS\Desktop [LENOVO]: CardRecovery.lnk . (.WinRecovery Software - CardRecovery.) C:\Program Files (x86)\CardRecovery\CardRecovery.exe {7A0F35A5D301113B4C50984A67E2F638} =>.WinRecovery Software
O4 - GS\Desktop [LENOVO]: DesktopMining.lnk . (.Desktop Mining - DesktopMining.) C:\Users\LENOVO\AppData\Local\Programs\DesktopMining\DesktopMining.exe
O4 - GS\Desktop [LENOVO]: Hein 4.5.2.lnk . (...) C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\Hein.exe
O4 - GS\Desktop [LENOVO]: Hein Recovery 1.8.lnk . (...) C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\Hein Recovery.exe
O4 - GS\Desktop [LENOVO]: HitLeap Viewer.lnk . (...) C:\Users\LENOVO\AppData\Local\HitLeap Viewer\app\lua.exe HitLeap-Viewer.lua Windows {079247800C8B42AFD7C0F33D4F5252C4}
O4 - GS\Desktop [LENOVO]: Lecteur de CD - Raccourci.lnk . (...) G:\
O4 - GS\Desktop [LENOVO]: NiceHash Miner 2.lnk . (.H-BIT d.o.o. - NiceHash Miner 2.) C:\Users\LENOVO\AppData\Local\Programs\NiceHash Miner 2\NiceHash Miner 2.exe {03E63209FAED806141C146807097F872}
O4 - GS\Desktop [LENOVO]: Recuva.lnk . (.Piriform Ltd - Recuva.) C:\Program Files (x86)\Recuva\Recuva.exe =>.Piriform Ltd®
O4 - GS\Desktop [LENOVO]: ZHPCleaner.lnk . (.Nicolas Coolman - ZHPCleaner.) C:\Users\LENOVO\AppData\Roaming\ZHP\ZHPCleaner.exe =>.Nicolas Coolman
O4 - GS\Desktop [LENOVO]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\LENOVO\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Desktop [LENOVO]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\LENOVO\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - GS\Quicklaunch [LENOVO]: CryptoTab Browser.lnk . (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe =>.CRYPTOCOMPANY OÜ®
O4 - GS\Quicklaunch [LENOVO]: JPEG to Word Converter.lnk . (.Soft Solutions - JPEG to Word Converter.) C:\Program Files (x86)\Soft Solutions\Image to OCR Converter\JPEG to Word Converter.exe {43B2354BD3A5CBAFE6CCBEE1C1C54B55} =>.Soft Solutions
O4 - GS\Quicklaunch [LENOVO]: Wondershare MobileGo.lnk . (.Wondershare - Wondershare MobileGo.) C:\Program Files (x86)\Wondershare\MobileGo\MobileGo.exe =>.Wondershare Technology Co.,Ltd®
O4 - GS\Quicklaunch [LENOVO]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\LENOVO\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - GS\sendTo [LENOVO]: AVS Mobile Uploader.lnk . (.Online Media Technologies Ltd. - AVS Mobile Uploader.) C:\Program Files (x86)\Common Files\AVSMedia\MobileUploader\AVSMobileUploader.exe =>.Online Media Technologies Ltd.
O4 - GS\sendTo [LENOVO]: AVS Video Burner.lnk . (.Online Media Technologies Ltd. - AVS Video Burner.) C:\Program Files (x86)\Common Files\AVSMedia\BurnerService\AVSVideoBurner.exe =>.Online Media Technologies Ltd.
O4 - GS\sendTo [LENOVO]: AVS Video Uploader.lnk . (.Online Media Technologies Ltd. - AVS Video Uploader.) C:\Program Files (x86)\Common Files\AVSMedia\VideoUploader\AVSVideoUploader.exe =>.Online Media Technologies Ltd.
O4 - GS\sendTo [LENOVO]: Destinataire de télécopie.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [LENOVO]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\WINDOWS\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [LENOVO]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe /sendto: =>.Microsoft Corporation®
O4 - GS\sendTo [LENOVO]: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - Transfère les fichiers entre l.) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\sendTo [LENOVO]: Wondershare MobileGo.lnk . (.Wondershare - Wondershare MobileGo.) C:\Program Files (x86)\Wondershare\MobileGo\MobileGo.exe =>.Wondershare Technology Co.,Ltd®
O4 - GS\TaskBar [LENOVO]: CryptoTab Browser.lnk . (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe =>.CRYPTOCOMPANY OÜ®
O4 - GS\TaskBar [LENOVO]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [LENOVO]: MPC-HC x64.lnk . (.MPC-HC Team - MPC-HC 1.7.13 (64-bit).) C:\Program Files (x86)\MPC-HC\mpc-hc64.exe =>.MPC-HC Team
O4 - GS\TaskBar [LENOVO]: Pale Moon.lnk . (.Moonchild Productions - Pale Moon web browser.) C:\Program Files\Pale Moon\palemoon.exe =>.Markus Straver®
O4 - GS\TaskBar [LENOVO]: Skype.lnk . (...) C:\Windows\Installer\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}\SkypeIcon.exe =>.Skype Technologies
O4 - GS\TaskBar [LENOVO]: Task Manager.lnk . (.Microsoft Corporation - Gestionnaire des tâches.) C:\WINDOWS\system32\taskmgr.exe /7 =>.Microsoft Windows®
O4 - GS\Programs [LENOVO]: DesktopMining.lnk . (.Desktop Mining - DesktopMining.) C:\Users\LENOVO\AppData\Local\Programs\DesktopMining\DesktopMining.exe
O4 - GS\Programs [LENOVO]: Fonctionnalités optionnelles.lnk . (.Microsoft Corporation - Assistance des fonctionnalités à la demande.) C:\Windows\System32\fodhelper.exe =>.Microsoft Corporation
O4 - GS\Programs [LENOVO]: Lecteur USB (H).lnk . (...) H:\
O4 - GS\Programs [LENOVO]: NiceHash Miner 2.lnk . (.H-BIT d.o.o. - NiceHash Miner 2.) C:\Users\LENOVO\AppData\Local\Programs\NiceHash Miner 2\NiceHash Miner 2.exe {03E63209FAED806141C146807097F872}
O4 - GS\Programs [LENOVO]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\LENOVO\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - GS\Desktop [WDAGUtilityAccount]: Amalika Start.lnk . (...) C:\Users\LENOVO\Desktop\Dzair Shoot\Amalika live 1\Set.exe /movetime 01\05\2017 16:50:19 "C:\Users\LENOVO\Desktop\Dzair Shoot\Amalika live 1\Amalika Start.exe"
O4 - GS\Desktop [WDAGUtilityAccount]: AVS Video Recorder.lnk . (.Online Media Technologies Ltd. - .) C:\Program Files (x86)\AVS4YOU\AVSVideoRecorder\AVSVideoRecorder.exe =>.Online Media Technologies Ltd.
O4 - GS\Desktop [WDAGUtilityAccount]: Bighits4u Viewer.lnk . (.Bighits4U LLC - Bighits4U Viewer application.) C:\Program Files (x86)\Bighits4u\Bighits4u Viewer\Bighits4u.exe
O4 - GS\Desktop [WDAGUtilityAccount]: CardRecovery.lnk . (.WinRecovery Software - CardRecovery.) C:\Program Files (x86)\CardRecovery\CardRecovery.exe {7A0F35A5D301113B4C50984A67E2F638} =>.WinRecovery Software
O4 - GS\Desktop [WDAGUtilityAccount]: DesktopMining.lnk . (.Desktop Mining - DesktopMining.) C:\Users\LENOVO\AppData\Local\Programs\DesktopMining\DesktopMining.exe
O4 - GS\Desktop [WDAGUtilityAccount]: Hein 4.5.2.lnk . (...) C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\Hein.exe
O4 - GS\Desktop [WDAGUtilityAccount]: Hein Recovery 1.8.lnk . (...) C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\Hein Recovery.exe
O4 - GS\Desktop [WDAGUtilityAccount]: HitLeap Viewer.lnk . (...) C:\Users\LENOVO\AppData\Local\HitLeap Viewer\app\lua.exe HitLeap-Viewer.lua Windows {079247800C8B42AFD7C0F33D4F5252C4}
O4 - GS\Desktop [WDAGUtilityAccount]: Lecteur de CD - Raccourci.lnk . (...) G:\
O4 - GS\Desktop [WDAGUtilityAccount]: NiceHash Miner 2.lnk . (.H-BIT d.o.o. - NiceHash Miner 2.) C:\Users\LENOVO\AppData\Local\Programs\NiceHash Miner 2\NiceHash Miner 2.exe {03E63209FAED806141C146807097F872}
O4 - GS\Desktop [WDAGUtilityAccount]: Recuva.lnk . (.Piriform Ltd - Recuva.) C:\Program Files (x86)\Recuva\Recuva.exe =>.Piriform Ltd®
O4 - GS\Desktop [WDAGUtilityAccount]: ZHPCleaner.lnk . (.Nicolas Coolman - ZHPCleaner.) C:\Users\LENOVO\AppData\Roaming\ZHP\ZHPCleaner.exe =>.Nicolas Coolman
O4 - GS\Desktop [WDAGUtilityAccount]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\LENOVO\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Desktop [WDAGUtilityAccount]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\LENOVO\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - GS\Quicklaunch [WDAGUtilityAccount]: CryptoTab Browser.lnk . (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe =>.CRYPTOCOMPANY OÜ®
O4 - GS\Quicklaunch [WDAGUtilityAccount]: JPEG to Word Converter.lnk . (.Soft Solutions - JPEG to Word Converter.) C:\Program Files (x86)\Soft Solutions\Image to OCR Converter\JPEG to Word Converter.exe {43B2354BD3A5CBAFE6CCBEE1C1C54B55} =>.Soft Solutions
O4 - GS\Quicklaunch [WDAGUtilityAccount]: Wondershare MobileGo.lnk . (.Wondershare - Wondershare MobileGo.) C:\Program Files (x86)\Wondershare\MobileGo\MobileGo.exe =>.Wondershare Technology Co.,Ltd®
O4 - GS\Quicklaunch [WDAGUtilityAccount]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\LENOVO\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - GS\sendTo [WDAGUtilityAccount]: AVS Mobile Uploader.lnk . (.Online Media Technologies Ltd. - AVS Mobile Uploader.) C:\Program Files (x86)\Common Files\AVSMedia\MobileUploader\AVSMobileUploader.exe =>.Online Media Technologies Ltd.
O4 - GS\sendTo [WDAGUtilityAccount]: AVS Video Burner.lnk . (.Online Media Technologies Ltd. - AVS Video Burner.) C:\Program Files (x86)\Common Files\AVSMedia\BurnerService\AVSVideoBurner.exe =>.Online Media Technologies Ltd.
O4 - GS\sendTo [WDAGUtilityAccount]: AVS Video Uploader.lnk . (.Online Media Technologies Ltd. - AVS Video Uploader.) C:\Program Files (x86)\Common Files\AVSMedia\VideoUploader\AVSVideoUploader.exe =>.Online Media Technologies Ltd.
O4 - GS\sendTo [WDAGUtilityAccount]: Destinataire de télécopie.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [WDAGUtilityAccount]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\WINDOWS\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [WDAGUtilityAccount]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe /sendto: =>.Microsoft Corporation®
O4 - GS\sendTo [WDAGUtilityAccount]: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - Transfère les fichiers entre l.) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\sendTo [WDAGUtilityAccount]: Wondershare MobileGo.lnk . (.Wondershare - Wondershare MobileGo.) C:\Program Files (x86)\Wondershare\MobileGo\MobileGo.exe =>.Wondershare Technology Co.,Ltd®
O4 - GS\TaskBar [WDAGUtilityAccount]: CryptoTab Browser.lnk . (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe =>.CRYPTOCOMPANY OÜ®
O4 - GS\TaskBar [WDAGUtilityAccount]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [WDAGUtilityAccount]: MPC-HC x64.lnk . (.MPC-HC Team - MPC-HC 1.7.13 (64-bit).) C:\Program Files (x86)\MPC-HC\mpc-hc64.exe =>.MPC-HC Team
O4 - GS\TaskBar [WDAGUtilityAccount]: Pale Moon.lnk . (.Moonchild Productions - Pale Moon web browser.) C:\Program Files\Pale Moon\palemoon.exe =>.Markus Straver®
O4 - GS\TaskBar [WDAGUtilityAccount]: Skype.lnk . (...) C:\Windows\Installer\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}\SkypeIcon.exe =>.Skype Technologies
O4 - GS\TaskBar [WDAGUtilityAccount]: Task Manager.lnk . (.Microsoft Corporation - Gestionnaire des tâches.) C:\WINDOWS\system32\taskmgr.exe /7 =>.Microsoft Windows®
O4 - GS\Programs [WDAGUtilityAccount]: DesktopMining.lnk . (.Desktop Mining - DesktopMining.) C:\Users\LENOVO\AppData\Local\Programs\DesktopMining\DesktopMining.exe
O4 - GS\Programs [WDAGUtilityAccount]: Fonctionnalités optionnelles.lnk . (.Microsoft Corporation - Assistance des fonctionnalités à la demande.) C:\Windows\System32\fodhelper.exe =>.Microsoft Corporation
O4 - GS\Programs [WDAGUtilityAccount]: Lecteur USB (H).lnk . (...) H:\
O4 - GS\Programs [WDAGUtilityAccount]: NiceHash Miner 2.lnk . (.H-BIT d.o.o. - NiceHash Miner 2.) C:\Users\LENOVO\AppData\Local\Programs\NiceHash Miner 2\NiceHash Miner 2.exe {03E63209FAED806141C146807097F872}
O4 - GS\Programs [WDAGUtilityAccount]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\LENOVO\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - GS\CommonDesktop [Public]: Betternet.lnk . (.Betternet Technologies Inc. - Betternet for Windows.) C:\Program Files (x86)\Betternet\4.1.1\Betternet.exe =>.BetterNet LLC®
O4 - GS\CommonDesktop [Public]: Blockchain Miner Pro.lnk . (...) C:\Program Files (x86)\Blockchain\Blockchain Miner Pro.exe
O4 - GS\CommonDesktop [Public]: CDBurnerXP.lnk . (.Canneverbe Limited - CDBurnerXP.) C:\Program Files (x86)\CDBurnerXP\cdbxpp.exe =>.Canneverbe Limited®
O4 - GS\CommonDesktop [Public]: CryptoTab Browser.lnk . (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe =>.CRYPTOCOMPANY OÜ®
O4 - GS\CommonDesktop [Public]: HashFish.lnk . (.北京哈希章鱼科技有限公司 - HashFish.) C:\Users\LENOVO\AppData\Roaming\HashFish\HashFish.exe {062820B4032BA0BB194BB09E1C728FED}
O4 - GS\CommonDesktop [Public]: HiSuite.lnk . (.Huawei - Huawei PC suite.) C:\Program Files (x86)\HiSuite\HiSuite.exe {6BFEC00B525C0B29E84B80BFFD846F67} =>.Huawei
O4 - GS\CommonDesktop [Public]: iTunes.lnk . (.Apple Inc. - .) C:\Program Files (x86)\iTunes\iTunes.exe =>.Apple Inc.
O4 - GS\CommonDesktop [Public]: JPEG to Word Converter.lnk . (.Soft Solutions - JPEG to Word Converter.) C:\Program Files (x86)\Soft Solutions\Image to OCR Converter\JPEG to Word Converter.exe {43B2354BD3A5CBAFE6CCBEE1C1C54B55} =>.Soft Solutions
O4 - GS\CommonDesktop [Public]: Malwarebytes.lnk . (.Malwarebytes - Malwarebytes.) C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe =>.Malwarebytes Corporation®
O4 - GS\CommonDesktop [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\CommonDesktop [Public]: Otohits App.lnk . (...) C:\OtohitsNetwork\OtohitsApp\OtohitsApp.exe {067CEC33CA120908353CDB45294C6A8E}
O4 - GS\CommonDesktop [Public]: Seed4.Me.lnk . (.Seed4.Me - Seed4.Me VPN Client.) C:\Program Files\Seed4.Me VPN\bin\Seed4.Me_VPN.exe --show {00DE1B9DC4EAA6900D2B299969506B4D8A} =>.Seed4.Me
O4 - GS\CommonDesktop [Public]: SHAREit.lnk . (.SHAREit Technologies Co.Ltd - SHAREit.) C:\Program Files (x86)\SHAREit Technologies\SHAREit\SHAREit.exe =>.SHAREit Technologies Co.Ltd®
O4 - GS\CommonDesktop [Public]: SMADΔV.lnk . (.Smadsoft - Smadav USB Antivirus & Additional Protectio.) C:\Program Files (x86)\SMADAV\SMΔRTP.exe =>.SmadSoft
O4 - GS\CommonDesktop [Public]: The KMPlayer FR.lnk . (.Pandora.TV - The KMPlayer.) C:\Program Files (x86)\The KMPlayer FR\KMPlayer.exe =>.Pandora.TV
O4 - GS\CommonDesktop [Public]: Virtual Router Plus.lnk . (.Flexera Software LLC - InstallShield.) C:\WINDOWS\Installer\{0AEE4D51-3657-4F40-A689-533429CAEE0C}\_C5AD3031C36546DE99F844D62957DA44.exe =>.临沂润夏电器有限公司®
O4 - GS\CommonDesktop [Public]: VLC media player.lnk . (.VideoLAN - VLC media player.) C:\Program Files (x86)\VideoLAN\VLC\vlc.exe =>.VideoLAN®
O4 - GS\CommonDesktop [Public]: VMware Workstation Pro.lnk . (.VMware, Inc. - VMware Workstation.) C:\Program Files (x86)\VMware\VMware Workstation\vmware.exe =>.VMware, Inc.®
O4 - GS\CommonDesktop [Public]: WinZip.lnk . (.WinZip Computing, S.L. - .) C:\Program Files (x86)\WinZip\winzip64.exe =>.WinZip Computing, S.L.
O4 - GS\CommonDesktop [Public]: Wondershare MobileGo.lnk . (.Wondershare - Wondershare MobileGo.) C:\Program Files (x86)\Wondershare\MobileGo\MobileGo.exe =>.Wondershare Technology Co.,Ltd®
O4 - GS\Programs [Public]: DesktopMining.lnk . (.Desktop Mining - DesktopMining.) C:\Users\LENOVO\AppData\Local\Programs\DesktopMining\DesktopMining.exe
O4 - GS\Programs [Public]: Fonctionnalités optionnelles.lnk . (.Microsoft Corporation - Assistance des fonctionnalités à la demande.) C:\Windows\System32\fodhelper.exe =>.Microsoft Corporation
O4 - GS\Programs [Public]: Lecteur USB (H).lnk . (...) H:\
O4 - GS\Programs [Public]: NiceHash Miner 2.lnk . (.H-BIT d.o.o. - NiceHash Miner 2.) C:\Users\LENOVO\AppData\Local\Programs\NiceHash Miner 2\NiceHash Miner 2.exe {03E63209FAED806141C146807097F872}
O4 - GS\Programs [Public]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\LENOVO\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - GS\Accessories [Public]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\internet explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Accessories [Public]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) C:\WINDOWS\system32\notepad.exe =>.Microsoft Corporation
O4 - GS\Startup [Public]: MobileGo Service.lnk . (.Wondershare - MobileGoService.) C:\Program Files (x86)\Wondershare\MobileGo\MobileGoService.exe =>.Wondershare Technology Co.,Ltd®
O4 - GS\Accessories [Public]: Math Input Panel.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\mip.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.) C:\WINDOWS\system32\mspaint.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Quick Assist.lnk . (.Microsoft Corporation - Quick Assist.) C:\WINDOWS\system32\quickassist.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Connexion Bureau à distance.) C:\WINDOWS\system32\mstsc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - Outil Capture d’écran.) C:\WINDOWS\system32\SnippingTool.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Steps Recorder.lnk . (.Microsoft Corporation - Enregistreur d’actions.) C:\WINDOWS\system32\psr.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Fax and Scan.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\WINDOWS\system32\WFS.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Application Windows Wordpad.) C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: XPS Viewer.lnk . (.Microsoft Corporation - Visionneuse XPS.) C:\WINDOWS\system32\xpsrchvw.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Table des caractères.) C:\WINDOWS\system32\charmap.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Adobe Reader X.lnk . (...) C:\Windows\Installer\{AC76BA86-7AD7-1036-7B44-AA1000000001}\SC_Reader.ico =>.Adobe Inc.
O4 - GS\ProgramsCommon [Public]: Avast Free Antivirus.lnk . (.AVAST Software - .) C:\Program Files (x86)\AVAST Software\Avast\AvastUI.exe =>.AVAST Software
O4 - GS\ProgramsCommon [Public]: Blockchain Miner Pro.lnk . (...) C:\Program Files (x86)\Blockchain\Blockchain Miner Pro.exe
O4 - GS\ProgramsCommon [Public]: CryptoTab Browser.lnk . (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe =>.CRYPTOCOMPANY OÜ®
O4 - GS\ProgramsCommon [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\ProgramsCommon [Public]: Immersive Control Panel.lnk . (.Microsoft Corporation - Windows Control Panel.) C:\WINDOWS\System32\Control.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Intel(R) HD Graphics Control Panel.lnk . (.Intel Corporation - GFXUIEX Module.) C:\Windows\system32\GfxUIEx.exe =>.Intel Corporation
O4 - GS\ProgramsCommon [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\ProgramsCommon [Public]: Pale Moon.lnk . (.Moonchild Productions - Pale Moon web browser.) C:\Program Files\Pale Moon\palemoon.exe =>.Markus Straver®
O4 - GS\ProgramsCommon [Public]: Seed4.Me.lnk . (.Seed4.Me - Seed4.Me VPN Client.) C:\Program Files\Seed4.Me VPN\bin\Seed4.Me_VPN.exe --show {00DE1B9DC4EAA6900D2B299969506B4D8A} =>.Seed4.Me
O4 - GS\ProgramsCommon [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: WinZip.lnk . (.WinZip Computing, S.L. - .) C:\Program Files (x86)\WinZip\winzip64.exe =>.WinZip Computing, S.L.
---\\ MODIFICATION DOMAINE/ADRESSES (DNS) (7) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\..\{96a74820-7dcd-4401-8cf6-7e926e982e2d}: NameServer = 158.43.240.4,212.127.151.92
O17 - HKLM\System\CCS\Services\Tcpip\..\{7c7d372a-a8ec-445c-92ab-63bb5dde303e}: DhcpNameServer = 192.168.1.1 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{928cb7d9-e44f-4755-a1eb-98124ba8ac84}: DhcpNameServer = 192.168.1.1 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{96a74820-7dcd-4401-8cf6-7e926e982e2d}: DhcpNameServer = 192.168.1.1 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{a5151a37-eec0-4569-b9a3-325aac31b6e8}: DhcpNameServer = 192.168.0.1 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{b5c2ac4b-a132-4f73-a899-b1fc3212438e}: DhcpNameServer = 192.168.0.254 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{b93fba76-e1d1-45d6-8d4d-f2b43c22073d}: DhcpNameServer = 192.168.0.1 =>.Local IP Adress
---\\ PROTOCOLE ADDITIONNEL (25) - 1s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll =>.Microsoft Corporation
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ms-help [64Bits] - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll =>.Microsoft Corporation®
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: osf [64Bits] - {D924BDC6-C83A-4BD5-90D0-095128A113D1} . (.Microsoft Corporation - Microsoft Office 2013 component.) -- C:\Program Files\Microsoft Office\Office15\MSOSB.DLL =>.Microsoft Corporation®
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\System32\tbauth.dll =>.Microsoft Corporation
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: windows.tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\System32\tbauth.dll =>.Microsoft Corporation
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation
O18 - Filter: text/xml [64Bits] - {807583E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL =>.Microsoft Corporation®
---\\ REGISTRE AppInit_DLLs et Winlogon Notify (1) - 0s
O20 - Winlogon : UserInit . (.Microsoft Corporation - Application d’ouverture de session Userinit.) - C:\Windows\system32\userinit.exe =>.Microsoft Corporation
---\\ CLÉ DE REGISTRE EXPLORER StartupApproved (2) - 2s
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:Web Companion =>PUP.Optional.LavasoftWebCompanion
[HKEY_USERS\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:Web Companion =>PUP.Optional.LavasoftWebCompanion
---\\ LOGICIELS INSTALLÉS (86) - 44s
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- uTorrent =>.BitTorrent Inc®
O42 - Logiciel: 7-Zip 18.01 (x64) - (.Igor Pavlov.) [HKLM][64Bits] -- 7-Zip =>.Igor Pavlov
O42 - Logiciel: Adobe Flash Player 32 PPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player PPAPI =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Reader X (10.1.4) - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AA1000000001} =>.Adobe Systems Incorporated
O42 - Logiciel: ALPS Touch Pad Driver - (.Alps Electric.) [HKLM][64Bits] -- {9F72EF8B-AEC9-4CA5-B483-143980AFD6FD} =>.Alps Electric Co., LTD.®
O42 - Logiciel: Apple Application Support (32 bits) - (.Apple Inc..) [HKLM][64Bits] -- {3D1290E6-1F77-46D5-A715-A56679C8D4E3} =>.Apple Inc.
O42 - Logiciel: Apple Application Support (64 bits) - (.Apple Inc..) [HKLM][64Bits] -- {D0E45DEC-F4B9-4370-A9DF-66837789C2EF} =>.Apple Inc.
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM][64Bits] -- {E3C4B99B-BE71-4C27-8E3C-4FAE3C46E1D5} =>.Apple Inc.
O42 - Logiciel: Avast Free Antivirus - (.AVAST Software.) [HKLM][64Bits] -- Avast Antivirus =>.AVAST Software s.r.o.®
O42 - Logiciel: AVS Video Editor 6.5 - (.Online Media Technologies Ltd..) [HKLM][64Bits] -- AVS Video Editor_is1 =>.Online Media Technologies Ltd.
O42 - Logiciel: AVS Video Recorder 2.6 - (.Online Media Technologies Ltd..) [HKLM][64Bits] -- AVS Video Recorder_is1 =>.Online Media Technologies Ltd.
O42 - Logiciel: Betternet for Windows 4.1.1 - (.Betternet Technologies Inc..) [HKLM][64Bits] -- {2E77104D-96E1-4A9C-86F2-C7CF8C805999} =>.Betternet Technologies Inc.
O42 - Logiciel: Bighits4u Viewer - (.Bighits4U.) [HKLM][64Bits] -- Bighits4u
O42 - Logiciel: Blockchain Miner Pro version 9.2 - (.Blockchain Miner Pro.) [HKLM][64Bits] -- {3933B97A-F081-478A-86A4-EBBDD9F56B81}_is1
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D} =>.Apple Inc.
O42 - Logiciel: bubans 1.00 - (.bubans.) [HKLM][64Bits] -- bubans 1.00
O42 - Logiciel: CardRecovery - (..) [HKLM][64Bits] -- CardRecovery
O42 - Logiciel: CDBurnerXP - (.Canneverbe Limited.) [HKLM][64Bits] -- {0F047784-7E23-4A4F-BFA8-8F28978C6A30} =>.Canneverbe Limited
O42 - Logiciel: Conexant HD Audio - (.Conexant.) [HKLM][64Bits] -- CNXT_AUDIO_HDA =>.Conexant Systems, Inc.®
O42 - Logiciel: CryptoTab Browser - (.Auteurs de CryptoTab Browser.) [HKLM][64Bits] -- CryptoTab Browser =>.CRYPTOCOMPANY OÜ®
O42 - Logiciel: DesktopMining 4.0.0 (only current user) - (.Desktop Mining.) [HKCU][64Bits] -- 93424205-2af0-5059-8a08-fa93c09cad51
O42 - Logiciel: DRAGON ver1.0 - (.DRAGON ver1.0.) [HKCU][64Bits] -- c111f9a501dfe943
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome =>.Google Inc®
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} =>.Google Inc. (Hidden)
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} =>.Google Inc. (Hidden)
O42 - Logiciel: HashFish - (.HashFish.) [HKCU][64Bits] -- HashFish {062820B4032BA0BB194BB09E1C728FED}
O42 - Logiciel: Helium - (.ClockworkMod.) [HKLM][64Bits] -- {9A781940-AC41-4D5E-8E1E-76A04B916FB9} =>.ClockworkMod
O42 - Logiciel: HiSuite - (.Huawei Technologies Co.,Ltd.) [HKLM][64Bits] -- Hi Suite =>.Huawei Technologies Co.,Ltd
O42 - Logiciel: HitLeap Viewer - (.HitLeap Ltd..) [HKCU][64Bits] -- HitLeap Viewer =>.HitLeap Ltd.
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA} =>.Intel(R) pGFX®
O42 - Logiciel: Internet Download Manager - (.Tonec Inc..) [HKLM][64Bits] -- Internet Download Manager =>.Tonec Inc.®
O42 - Logiciel: IPweb Surf - (.IPweb.ru.) [HKLM][64Bits] -- {12F8CF7A-1E47-44BE-A605-C9B182332610}
O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM][64Bits] -- {89B08926-B965-43B5-8C71-C10433760B14} =>.Apple Inc.
O42 - Logiciel: JPEG to Word Converter 1.0 - (.Soft Solutions.) [HKLM][64Bits] -- {B987EEA5-CC61-4ECE-B84D-99C6213BDED9}_is1 =>.Soft Solutions
O42 - Logiciel: Lenovo EasyCamera - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {E0A7ED39-8CD6-4351-93C3-69CCA00D12B4} =>.Realtek Semiconductor Corp®
O42 - Logiciel: Lenovo EasyCamera - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {E399A5B3-ED53-4DEA-AF04-8011E1EB1EAC} =>.Realtek Semiconductor Corp®
O42 - Logiciel: Malwarebytes version 3.7.1.2839 - (.Malwarebytes.) [HKLM][64Bits] -- {35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1 =>.Malwarebytes Corporation®
O42 - Logiciel: MEmu - (.Microvirt Software Technology Co. Ltd.) [HKLM][64Bits] -- MEmu =>.Microvirt Software Technology Co. Ltd
O42 - Logiciel: Microsoft Access MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0015-040C-1000-0000000FF1CE} =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Audio Enhancement Troubleshooter installer - (.Microsoft Corporation.) [HKLM][64Bits] -- {6E0351FF-6A71-45C5-A041-D4D9D8067EAF} =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft DCF MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0090-040C-1000-0000000FF1CE} =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Excel MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0016-040C-1000-0000000FF1CE} =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Groove MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-00BA-040C-1000-0000000FF1CE} =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft HEVC Media Extension Installation for Microsoft.HEVCVideoExtensio - (.Microsoft Corporation.) [HKLM][64Bits] -- {B0169E83-757B-EF66-E2F0-391944D785BC} =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft InfoPath MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0044-040C-1000-0000000FF1CE} =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Lync MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-012B-040C-1000-0000000FF1CE} =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft OneDrive - (.Microsoft Corporation.) [HKCU][64Bits] -- OneDriveSetup.exe =>.Microsoft Corporation®
O42 - Logiciel: Microsoft OneNote MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-00A1-040C-1000-0000000FF1CE} =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Outlook MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-001A-040C-1000-0000000FF1CE} =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft PowerPoint MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0018-040C-1000-0000000FF1CE} =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Publisher MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0019-040C-1000-0000000FF1CE} =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Word MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-001B-040C-1000-0000000FF1CE} =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Mozilla Firefox 45.0.2 (x86 en-US) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 45.0.2 (x86 en-US) =>.Mozilla Corporation®
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService =>.Mozilla
O42 - Logiciel: MPC-HC 1.7.13 (64-bit) - (.MPC-HC Team.) [HKLM][64Bits] -- {2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1 =>.Fotis Zafiropoulos®
O42 - Logiciel: NiceHash Miner 2 0.3.0 (only current user) - (.H-BIT d.o.o..) [HKCU][64Bits] -- 08059810-bc78-5c10-942c-2092eebb5ec8
O42 - Logiciel: OPPO USB Drivers 2.2.6.0 - (.OPPO mobile telecommunications Corp., LTD.) [HKLM][64Bits] -- {60092746-6A0F-46A9-B9F1-53B62EC0E0A4}_is1 =>.OPPO mobile telecommunications Corp., LTD
O42 - Logiciel: OtohitsApp - (.Otohits Network.) [HKLM][64Bits] -- {9B85C70F-D649-4290-8C1D-5356A5262066}_is1 {067CEC33CA120908353CDB45294C6A8E}
O42 - Logiciel: Pale Moon 27.3.0 (x64 en-US) - (.Moonchild Productions.) [HKLM][64Bits] -- Pale Moon 27.3.0 (x64 en-US) =>.Markus Straver®
O42 - Logiciel: PlayReady PC Runtime amd64 - (.Microsoft Corporation.) [HKLM][64Bits] -- {BCA9334F-B6C9-4F65-9A73-AC5A329A4D04} =>.Microsoft Corporation
O42 - Logiciel: Recuva (remove only) - (.Piriform.) [HKLM][64Bits] -- Recuva =>.Piriform
O42 - Logiciel: Security Update for Skype for Business 2015 (KB3213568) 64-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90150000-012B-040C-1000-0000000FF1CE}_Office15.PROPLUS_{70EE6BB9-3D3C-4BA1-8B88-2647A0567100} =>.Microsoft Corporation®
O42 - Logiciel: Seed4.Me VPN 1.0.46 - (.Seed4.me.) [HKLM][64Bits] -- Seed4.Me VPN =>.Seed4.Me
O42 - Logiciel: SHAREit - (.SHAREit Technologies Co.Ltd.) [HKLM][64Bits] -- www.ushareit.com_is1 =>.SHAREit Technologies Co.Ltd
O42 - Logiciel: Skype™ 6.13 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7} =>.Skype Technologies S.A.
O42 - Logiciel: SMADAV version 11.3 - (.Smadsoft.) [HKLM][64Bits] -- {8B9FA5FF-3E61-4658-B0DA-E6DDB46D6BAD}_is1 =>.SmadSoft
O42 - Logiciel: The KMPlayer v2.9.4.1435 FR - (.www.kmplayer.com/fr.) [HKLM][64Bits] -- The KMPlayer FR_is1
O42 - Logiciel: ThinkPad UltraNav Driver - (.ELAN Microelectronic Corp..) [HKLM][64Bits] -- Elantech =>.ELAN Microelectronics Corporation®
O42 - Logiciel: TP-LINK TL-WN821N(C)_TL-WN822N_TL-WN823N Driver - (.TP-LINK.) [HKLM][64Bits] -- {852E893E-E4FD-45BB-8B17-72ADDF686974} =>.TP-LINK
O42 - Logiciel: Update for Skype for Business 2015 (KB4461557) 64-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{06CB9397-D762-4A2F-8D91-DFAD58D2BAED} =>.Microsoft Corporation®
O42 - Logiciel: Update for Skype for Business 2015 (KB4461557) 64-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{06CB9397-D762-4A2F-8D91-DFAD58D2BAED} =>.Microsoft Corporation®
O42 - Logiciel: Update for Skype for Business 2015 (KB4461557) 64-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90150000-012B-040C-1000-0000000FF1CE}_Office15.PROPLUS_{06CB9397-D762-4A2F-8D91-DFAD58D2BAED} =>.Microsoft Corporation®
O42 - Logiciel: Update for Windows 10 for x64-based Systems (KB4023057) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F814D094-197F-43C8-87FA-3210BB780486} =>.Microsoft Corporation
O42 - Logiciel: UsbFix - (.www.SOSVirus.Net.) [HKLM][64Bits] -- Usbfix =>.www.SOSVirus.Net
O42 - Logiciel: Virtual Router Plus - (.Runxia Electronics.) [HKLM][64Bits] -- {0AEE4D51-3657-4F40-A689-533429CAEE0C} =>.Runxia Electronics
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player =>.VideoLAN
O42 - Logiciel: VMware Workstation - (.VMware, Inc..) [HKLM][64Bits] -- {431EEEDD-6D71-4269-8F7F-836CFAF69A17} =>.VMware, Inc.
O42 - Logiciel: Web Companion - (.Lavasoft.) [HKLM][64Bits] -- {a7abb974-4edd-4edc-bdcc-9eddfdef43cd} =>PUP.Optional.LavasoftWebCompanion
O42 - Logiciel: WinRAR 4.20 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver =>.win.rar GmbH
O42 - Logiciel: WinZip 22.0 - (.Corel Corporation.) [HKLM][64Bits] -- {CD95F661-A5C4-44F5-A6AA-ECDD91C24119} =>.Corel Corporation
O42 - Logiciel: Wondershare MobileGo(Version 8.5.0) - (.Wondershare.) [HKLM][64Bits] -- {1E04C795-7359-4E05-8A0E-5644F777AA09}_is1 =>.Wondershare
O42 - Logiciel: Yahoo! Toolbar - (.Yahoo! Inc..) [HKLM][64Bits] -- Yahoo! Companion =>.Yahoo! Inc.
O42 - Logiciel: ZTE LTE Device USB Driver - (.ZTE Corporation.) [HKLM][64Bits] -- {00C1EF09-B5B7-4082-B1F4-C35CE7A7FCA9} =>.ZTE Corporation
O42 - Logiciel: ZTE_Datacard_Product_USB_Driver - (.ZTE Corporation.) [HKLM][64Bits] -- {EFC74370-3A7B-4BFE-B4CD-43C2B496EB34}_is1 =>.ZTE Corporation
O42 - Logiciel: Служба автоматического обновления программ - (.Mail.Ru.) [HKCU][64Bits] -- MailRuUpdater =>.LLC Mail.Ru®
---\\ CLÉ DE REGISTRE SOFTWARE HKCU & HKLM (274) - 44s
HKU\.DEFAULT\Software\ByteFence =>.SUP.ByteFence
HKU\S-1-5-18\Software\ByteFence =>.SUP.ByteFence
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com =>PUP.Optional.LavasoftWebCompanion
HKEY_USERS\S-1-5-21-3743779890-750918602-2797629546-1001\Software\csastats =>Adware.InstallCore
HKCU\Software\Yahoo\YFriendsBar =>PUP.Optional.WinYahoo
HKCU\Software\Lavasoft\Web Companion =>PUP.Optional.LavasoftWebCompanion
HKCU\Software\csastats =>Adware.InstallCore
HKCU\SOFTWARE\AppDataLow\Software\Yahoo\Companion =>PUP.Optional.WinYahoo
HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com =>PUP.Optional.LavasoftWebCompanion
HKLM\SOFTWARE\Wow6432Node\Yahoo\Companion =>PUP.Optional.WinYahoo
HKLM\SOFTWARE\Wow6432Node\Lavasoft\Web Companion =>PUP.Optional.LavasoftWebCompanion
HKLM\System\CurrentControlSet\Services\EventLog\Reason\ReasonByteFence =>.SUP.ByteFence
HKLM\SOFTWARE\7-Zip =>.Igor Pavlov
HKLM\SOFTWARE\Alps =>.ALPS
HKLM\SOFTWARE\Apple Computer, Inc. =>.Apple Computer, Inc.
HKLM\SOFTWARE\Apple Inc. =>.Apple Inc.
HKLM\SOFTWARE\AVAST Software =>.AVAST Software
HKLM\SOFTWARE\Cnxt_Uiu_Parms =>.Conexant Systems, Inc.
HKLM\SOFTWARE\Conexant =>.Conexant Systems, Inc.
HKLM\SOFTWARE\Corel =>.Corel
HKLM\SOFTWARE\CyberGhost =>.CyberGhost S.R.L
HKLM\SOFTWARE\Dolby =>.Dolby
HKLM\SOFTWARE\EASEUS =>.EaseUS Software
HKLM\SOFTWARE\ej-technologies =>.ej-technologies
HKLM\SOFTWARE\Elantech =>.Elantech Inc.
HKLM\SOFTWARE\GEAR Software =>.GEAR Software
HKLM\SOFTWARE\Google =>.Google
HKLM\SOFTWARE\Huawei technologies =>.Huawei Technologies
HKLM\SOFTWARE\IM Providers =>.IM Providers
HKLM\SOFTWARE\InstalledOptions =>.Installed Options
HKLM\SOFTWARE\Intel =>.Intel
HKLM\SOFTWARE\IntelVolatile =>.Intel Corporation
HKLM\SOFTWARE\JavaSoft =>.JavaSoft
HKLM\SOFTWARE\Khronos =>.Khronos
HKLM\SOFTWARE\Lenovo =>.Lenovo
HKLM\SOFTWARE\Macromedia =>.Macromedia
HKLM\SOFTWARE\Mozilla =>.Mozilla
HKLM\SOFTWARE\mozilla.org =>.mozilla.org
HKLM\SOFTWARE\MozillaPlugins =>.MozillaPlugins
HKLM\SOFTWARE\Nico Mak Computing =>.Nico Mak Computing
HKLM\SOFTWARE\ODBC =>.DB Connectivity Solutions
HKLM\SOFTWARE\OEM =>.OEM
HKLM\SOFTWARE\OpenVPN =>.OpenVPN Technologie
HKLM\SOFTWARE\Partner =>.Google Inc.
HKLM\SOFTWARE\Printers
HKLM\SOFTWARE\RegisteredApplications =>.Microsoft Corporation
HKLM\SOFTWARE\Scanner_bot
HKLM\SOFTWARE\Seed4.Me VPN
HKLM\SOFTWARE\Synaptics =>.Synaptics
HKLM\SOFTWARE\UIU =>.Legitimate
HKLM\SOFTWARE\UIUTask
HKLM\SOFTWARE\VMware, Inc. =>.VMware, Inc.
HKLM\SOFTWARE\WinChipHead
HKLM\SOFTWARE\WinRAR =>.WinRAR
HKLM\SOFTWARE\WOW6432Node =>.Microsoft Corporation
HKLM\SOFTWARE\WOW6432Node\Adobe =>.Adobe
HKLM\SOFTWARE\WOW6432Node\Apple Inc. =>.Apple Inc.
HKLM\SOFTWARE\WOW6432Node\AVAST Software =>.AVAST Software
HKLM\SOFTWARE\WOW6432Node\AVS4YOU =>.AVS4YOU
HKLM\SOFTWARE\WOW6432Node\Baidu_Drp_pos =>.Baidu Technology
HKLM\SOFTWARE\WOW6432Node\Betternet =>.Betternet
HKLM\SOFTWARE\WOW6432Node\Bighits4u
HKLM\SOFTWARE\WOW6432Node\CDBurnerXP.axp =>.Stefan Haglund
HKLM\SOFTWARE\WOW6432Node\CDBurnerXP.dxp =>.Stefan Haglund
HKLM\SOFTWARE\WOW6432Node\CDBurnerXP.iso =>.Stefan Haglund
HKLM\SOFTWARE\WOW6432Node\Conexant =>.Conexant Systems, Inc.
HKLM\SOFTWARE\WOW6432Node\Connectify =>.Connectify
HKLM\SOFTWARE\WOW6432Node\CryptoCompany
HKLM\SOFTWARE\WOW6432Node\CryptoTab Browser =>.CryptoTab Browser
HKLM\SOFTWARE\WOW6432Node\CyberGhost =>.CyberGhost S.R.L
HKLM\SOFTWARE\WOW6432Node\DC-Unlocker
HKLM\SOFTWARE\WOW6432Node\DeskSoft =>.DeskSoft
HKLM\SOFTWARE\WOW6432Node\Google =>.Google
HKLM\SOFTWARE\WOW6432Node\IM Providers =>.IM Providers
HKLM\SOFTWARE\WOW6432Node\Innovative Solutions =>.Innovative Solutions
HKLM\SOFTWARE\WOW6432Node\Intel =>.Intel
HKLM\SOFTWARE\WOW6432Node\Internet Download Manager =>.Tonec Inc
HKLM\SOFTWARE\WOW6432Node\KasperskyLab =>.Kaspersky Labs
HKLM\SOFTWARE\WOW6432Node\Khronos =>.Khronos
HKLM\SOFTWARE\WOW6432Node\Lavasoft =>.Lavasoft
HKLM\SOFTWARE\WOW6432Node\Macromedia =>.Macromedia
HKLM\SOFTWARE\WOW6432Node\Mail.Ru =>.Mail.Ru
HKLM\SOFTWARE\WOW6432Node\Mozilla =>.Mozilla
HKLM\SOFTWARE\WOW6432Node\mozilla.org =>.mozilla.org
HKLM\SOFTWARE\WOW6432Node\MozillaPlugins =>.MozillaPlugins
HKLM\SOFTWARE\WOW6432Node\Nero =>.Ahead Corporation
HKLM\SOFTWARE\WOW6432Node\Nico Mak Computing =>.Nico Mak Computing
HKLM\SOFTWARE\WOW6432Node\ODBC =>.DB Connectivity Solutions
HKLM\SOFTWARE\WOW6432Node\Piriform =>.Piriform
HKLM\SOFTWARE\WOW6432Node\PowerPivot =>.PowerPivot
HKLM\SOFTWARE\WOW6432Node\SHAREit Technologies =>..SUP.SHAREit
HKLM\SOFTWARE\WOW6432Node\Skype =>.Skype
HKLM\SOFTWARE\WOW6432Node\SOSVirus =>.SosVirus
HKLM\SOFTWARE\WOW6432Node\ThinPrint =>.ThinPrint
HKLM\SOFTWARE\WOW6432Node\TP-LINK =>.TP-LINK
HKLM\SOFTWARE\WOW6432Node\VideoLAN =>.VideoLan Team
HKLM\SOFTWARE\WOW6432Node\VMware, Inc. =>.VMware, Inc.
HKLM\SOFTWARE\WOW6432Node\Volatile =>.Microsoft Corporation
HKLM\SOFTWARE\WOW6432Node\WafCX =>.WafCX
HKLM\SOFTWARE\WOW6432Node\Wondershare =>.Wondershare
HKLM\SOFTWARE\WOW6432Node\WOW6432Node =>.Microsoft Corporation
HKLM\SOFTWARE\WOW6432Node\Yahoo =>.Yahoo! Inc.
HKLM\SOFTWARE\WOW6432Node\RegisteredApplications =>.Microsoft Corporation
HKCU\SOFTWARE\08059810-bc78-5c10-942c-2092eebb5ec8 =>Adware.CrossRider
HKCU\SOFTWARE\7-Zip =>.Igor Pavlov
HKCU\SOFTWARE\93424205-2af0-5059-8a08-fa93c09cad51 =>Adware.CrossRider
HKCU\SOFTWARE\Adobe =>.Adobe
HKCU\SOFTWARE\Akeo Consulting =>.Akeo Consulting
HKCU\SOFTWARE\AppDataLow =>.Microsoft Corporation
HKCU\SOFTWARE\Apple Computer, Inc. =>.Apple Computer, Inc.
HKCU\SOFTWARE\Apple Inc. =>.Apple Inc.
HKCU\SOFTWARE\Applications WinDev =>.WinDev
HKCU\SOFTWARE\Atola
HKCU\SOFTWARE\avast software =>.AVAST Software
HKCU\SOFTWARE\AVS4YOU =>.AVS4YOU
HKCU\SOFTWARE\Baidu Security =>.Baidu Technology
HKCU\SOFTWARE\Baidu WiFiHotspot
HKCU\SOFTWARE\Betternet =>.Betternet
HKCU\SOFTWARE\BitTorrent =>.BitTorrent (P2P)
HKCU\SOFTWARE\Browser Cleanup =>.Avast Software s.r.o
HKCU\SOFTWARE\Canneverbe Limited =>.Canneverbe Limited
HKCU\SOFTWARE\Chromium =>.Chromium
HKCU\SOFTWARE\Conexant =>.Conexant Systems, Inc.
HKCU\SOFTWARE\CoolROM
HKCU\SOFTWARE\Corel =>.Corel
HKCU\SOFTWARE\CryptoCompany
HKCU\SOFTWARE\CryptoTab Browser =>.CryptoTab Browser
HKCU\SOFTWARE\CyberGhost =>.CyberGhost S.R.L
HKCU\SOFTWARE\DownloadManager =>.DownloadManager
HKCU\SOFTWARE\ej-technologies =>.ej-technologies
HKCU\SOFTWARE\ForceInterfaceCOM
HKCU\SOFTWARE\Freeware =>.VirtualDub.org
HKCU\SOFTWARE\Gabest =>.Gabest
HKCU\SOFTWARE\Google =>.Google
HKCU\SOFTWARE\HitLeap
HKCU\SOFTWARE\IM Providers =>.IM Providers
HKCU\SOFTWARE\IMDownloader =>.Legitimate
HKCU\SOFTWARE\Innovative Solutions =>.Innovative Solutions
HKCU\SOFTWARE\Intel =>.Intel
HKCU\SOFTWARE\JavaSoft =>.JavaSoft
HKCU\SOFTWARE\KasperskyLab =>.Kaspersky Labs
HKCU\SOFTWARE\KasperskyLabSetup =>.Kaspersky Labs
HKCU\SOFTWARE\KMPlayer =>.KMPlayer
HKCU\SOFTWARE\Lavasoft =>.Lavasoft
HKCU\SOFTWARE\Macromedia =>.Macromedia
HKCU\SOFTWARE\Mail.Ru =>.Mail.Ru
HKCU\SOFTWARE\Malwarebytes =>.Malwarebytes
HKCU\SOFTWARE\MinerUser
HKCU\SOFTWARE\Mozilla =>.Mozilla
HKCU\SOFTWARE\MozillaPlugins =>.MozillaPlugins
HKCU\SOFTWARE\MPC-HC =>.MPC-HC Team
HKCU\SOFTWARE\Nero =>.Ahead Corporation
HKCU\SOFTWARE\Netscape =>.Netscape
HKCU\SOFTWARE\Nico Mak Computing =>.Nico Mak Computing
HKCU\SOFTWARE\ODBC =>.DB Connectivity Solutions
HKCU\SOFTWARE\OPPO
HKCU\SOFTWARE\PC SOFT =>.PC SOFT
HKCU\SOFTWARE\Piriform =>.Piriform
HKCU\SOFTWARE\QtProject =>.QtProject
HKCU\SOFTWARE\redsn0w =>.Jailbreak
HKCU\SOFTWARE\RegisteredApplications =>.Microsoft Corporation
HKCU\SOFTWARE\Rtp =>.RTP Software
HKCU\SOFTWARE\SHAREit Technologies =>..SUP.SHAREit
HKCU\SOFTWARE\Skype =>.Skype
HKCU\SOFTWARE\SMADΔV
HKCU\SOFTWARE\surfeasy
HKCU\SOFTWARE\Synaptics =>.Synaptics
HKCU\SOFTWARE\Sysinternals =>.Sysinternals
HKCU\SOFTWARE\UsbFix =>.El Desaparecido
HKCU\SOFTWARE\VB and VBA Program Settings =>.Microsoft Corporation
HKCU\SOFTWARE\VMware, Inc. =>.VMware, Inc.
HKCU\SOFTWARE\Wine
HKCU\SOFTWARE\WinRAR =>.WinRAR
HKCU\SOFTWARE\WinRAR SFX =>.RarLab
HKCU\SOFTWARE\WinRecovery =>.WinRecovery Software
HKCU\SOFTWARE\WinZip Computing =>.WinZip Computing
HKCU\SOFTWARE\WixSharp =>.Legitimate
HKCU\SOFTWARE\Wondershare =>.Wondershare
HKCU\SOFTWARE\Wow6432Node =>.Microsoft Corporation
HKCU\SOFTWARE\Yahoo =>.Yahoo! Inc.
HKCU\SOFTWARE\ZHP =>.Nicolas Coolman
HKCU\SOFTWARE\AppDataLow\Software =>.Microsoft Corporation
HKCU\SOFTWARE\AppDataLow\Software\Mail.Ru =>.Mail.Ru
HKCU\SOFTWARE\AppDataLow\Software\Yahoo =>.Yahoo! Inc.
HKU\.DEFAULT\SOFTWARE\AppDataLow =>.Microsoft Corporation
HKU\.DEFAULT\SOFTWARE\Apple Inc. =>.Apple Inc.
HKU\.DEFAULT\SOFTWARE\avast software =>.AVAST Software
HKU\.DEFAULT\SOFTWARE\Conexant =>.Conexant Systems, Inc.
HKU\.DEFAULT\SOFTWARE\Corel =>.Corel
HKU\.DEFAULT\SOFTWARE\CyberGhost =>.CyberGhost S.R.L
HKU\.DEFAULT\SOFTWARE\Mail.Ru =>.Mail.Ru
HKU\.DEFAULT\SOFTWARE\Nico Mak Computing =>.Nico Mak Computing
HKU\.DEFAULT\SOFTWARE\RegisteredApplications =>.Microsoft Corporation
HKU\.DEFAULT\SOFTWARE\WinRAR =>.WinRAR
HKU\.DEFAULT\SOFTWARE\WinZip Computing =>.WinZip Computing
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\08059810-bc78-5c10-942c-2092eebb5ec8 =>Adware.CrossRider
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\7-Zip =>.Igor Pavlov
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\93424205-2af0-5059-8a08-fa93c09cad51 =>Adware.CrossRider
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Adobe =>.Adobe
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Akeo Consulting =>.Akeo Consulting
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\AppDataLow =>.Microsoft Corporation
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Apple Computer, Inc. =>.Apple Computer, Inc.
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Apple Inc. =>.Apple Inc.
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Applications WinDev =>.WinDev
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Atola
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\avast software =>.AVAST Software
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\AVS4YOU =>.AVS4YOU
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Baidu Security =>.Baidu Technology
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Baidu WiFiHotspot
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Betternet =>.Betternet
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\BitTorrent =>.BitTorrent (P2P)
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Browser Cleanup =>.Avast Software s.r.o
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Canneverbe Limited =>.Canneverbe Limited
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Chromium =>.Chromium
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Conexant =>.Conexant Systems, Inc.
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\CoolROM
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Corel =>.Corel
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\CryptoCompany
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\CryptoTab Browser =>.CryptoTab Browser
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\csastats =>Adware.InstallCore
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\CyberGhost =>.CyberGhost S.R.L
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\DownloadManager =>.DownloadManager
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\ej-technologies =>.ej-technologies
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\ForceInterfaceCOM
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Freeware =>.VirtualDub.org
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Gabest =>.Gabest
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Google =>.Google
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\HitLeap
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\IM Providers =>.IM Providers
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\IMDownloader =>.Legitimate
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Innovative Solutions =>.Innovative Solutions
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Intel =>.Intel
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\JavaSoft =>.JavaSoft
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\KasperskyLab =>.Kaspersky Labs
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\KasperskyLabSetup =>.Kaspersky Labs
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\KMPlayer =>.KMPlayer
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Lavasoft =>.Lavasoft
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Macromedia =>.Macromedia
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Mail.Ru =>.Mail.Ru
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Malwarebytes =>.Malwarebytes
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\MinerUser
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Mozilla =>.Mozilla
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\MozillaPlugins =>.MozillaPlugins
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\MPC-HC =>.MPC-HC Team
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Nero =>.Ahead Corporation
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Netscape =>.Netscape
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Nico Mak Computing =>.Nico Mak Computing
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\ODBC =>.DB Connectivity Solutions
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\OPPO
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\PC SOFT =>.PC SOFT
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Piriform =>.Piriform
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\QtProject =>.QtProject
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\redsn0w =>.Jailbreak
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\RegisteredApplications =>.Microsoft Corporation
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Rtp =>.RTP Software
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\SHAREit Technologies =>..SUP.SHAREit
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Skype =>.Skype
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\SMADΔV
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\surfeasy
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Synaptics =>.Synaptics
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Sysinternals =>.Sysinternals
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\UsbFix =>.El Desaparecido
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\VB and VBA Program Settings =>.Microsoft Corporation
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\VMware, Inc. =>.VMware, Inc.
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Wine
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\WinRAR =>.WinRAR
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\WinRAR SFX =>.RarLab
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\WinRecovery =>.WinRecovery Software
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\WinZip Computing =>.WinZip Computing
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\WixSharp =>.Legitimate
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Wondershare =>.Wondershare
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Wow6432Node =>.Microsoft Corporation
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Yahoo =>.Yahoo! Inc.
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\ZHP =>.Nicolas Coolman
---\\ CONTENU DES DOSSIERS PROGRAMMES (244) - 41s
O43 - CFD: 03/03/2018 - [] D -- C:\Program Files\7-Zip =>.Igor Pavlov
O43 - CFD: 20/03/2017 - [] AD -- C:\Program Files\Apoint2K =>.Alps Electric Co., LTD.®
O43 - CFD: 22/06/2018 - [] D -- C:\Program Files\AVAST Software =>.AVAST Software s.r.o.®
O43 - CFD: 09/10/2017 - [] AD -- C:\Program Files\Bonjour =>.Apple Inc.
O43 - CFD: 11/02/2019 - [] D -- C:\Program Files\CONEXANT =>.Conexant Systems, Inc.
O43 - CFD: 20/03/2017 - [] D -- C:\Program Files\Elantech =>.ELAN Microelectronics Corporation®
O43 - CFD: 11/02/2019 - [] D -- C:\Program Files\Intel =>.Intel Corporation
O43 - CFD: 26/07/2018 - [] D -- C:\Program Files\iPod =>.Apple Inc.®
O43 - CFD: 26/07/2018 - [] D -- C:\Program Files\iTunes =>.Apple Inc.
O43 - CFD: 16/06/2018 - [] D -- C:\Program Files\KMSnano =>HackTool.AutoKMS
O43 - CFD: 18/06/2018 - [] AD -- C:\Program Files\KMSpico =>HackTool.KMSpico
O43 - CFD: 30/03/2017 - [] D -- C:\Program Files\Malwarebytes =>.Malwarebytes
O43 - CFD: 16/01/2018 - [] AD -- C:\Program Files\MPC-HC =>.MPC-HC Team
O43 - CFD: 06/04/2017 - [] D -- C:\Program Files\OPPO
O43 - CFD: 12/05/2017 - [] AD -- C:\Program Files\Pale Moon =>.Markus Straver®
O43 - CFD: 05/02/2019 - [] D -- C:\Program Files\Seed4.Me VPN
O43 - CFD: 12/06/2018 - [] D -- C:\Program Files\Synaptics =>.Synaptics Incorporated®
O43 - CFD: 19/03/2017 - [] AD -- C:\Program Files\WinRAR =>.WinRAR
O43 - CFD: 03/03/2018 - [] D -- C:\Program Files\WinZip =>.Add-in Express®
O43 - CFD: 16/05/2018 - [] D -- C:\Program Files\ZTE LTE Datacard Product USB Driver =>.ZTE CORPORATION ®
O43 - CFD: 19/03/2017 - [] D -- C:\Program Files (x86)\Adobe =>.Adobe Systems, Incorporated®
O43 - CFD: 31/03/2017 - [] D -- C:\Program Files (x86)\AVS4YOU =>.AVS4YOU
O43 - CFD: 05/02/2019 - [] D -- C:\Program Files (x86)\Betternet =>.Betternet
O43 - CFD: 27/01/2019 - [] D -- C:\Program Files (x86)\Bighits4u
O43 - CFD: 10/02/2019 - [] D -- C:\Program Files (x86)\Blockchain
O43 - CFD: 09/10/2017 - [] AD -- C:\Program Files (x86)\Bonjour =>.Apple Inc.
O43 - CFD: 11/02/2019 - [] D -- C:\Program Files (x86)\bubans
O43 - CFD: 05/02/2018 - [] D -- C:\Program Files (x86)\CardRecovery =>.WinRecovery Software
O43 - CFD: 29/04/2017 - [] AD -- C:\Program Files (x86)\CDBurnerXP =>.Stefan Haglund
O43 - CFD: 06/06/2018 - [] D -- C:\Program Files (x86)\ClockworkMod =>.ClockworkMod
O43 - CFD: 02/02/2019 - [] D -- C:\Program Files (x86)\CryptoCompany =>.CRYPTOCOMPANY OÜ®
O43 - CFD: 02/02/2019 - [] D -- C:\Program Files (x86)\CryptoTab Browser =>.CryptoTab Browser
O43 - CFD: 31/03/2017 - [] AD -- C:\Program Files (x86)\CyberGhost =>.CyberGhost S.R.L
O43 - CFD: 31/03/2017 - [0] D -- C:\Program Files (x86)\Didsoft
O43 - CFD: 03/05/2017 - [0] AD -- C:\Program Files (x86)\EarthView
O43 - CFD: 19/03/2017 - [] D -- C:\Program Files (x86)\Google =>.Google Inc®
O43 - CFD: 27/01/2019 - [] D -- C:\Program Files (x86)\HiSuite =>.Huawei Technologies Co.,Ltd
O43 - CFD: 28/11/2017 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information =>.InstallShield
O43 - CFD: 20/03/2017 - [] D -- C:\Program Files (x86)\Intel =>.Intel Corporation
O43 - CFD: 20/03/2017 - [] D -- C:\Program Files (x86)\Internet Download Manager =>.Tonec Inc
O43 - CFD: 11/02/2019 - [] D -- C:\Program Files (x86)\jkghj
O43 - CFD: 22/06/2018 - [] D -- C:\Program Files (x86)\Lavasoft =>.Lavasoft
O43 - CFD: 03/05/2017 - [] AD -- C:\Program Files (x86)\Mozilla Firefox =>.Mozilla
O43 - CFD: 25/03/2017 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service =>.Mozilla
O43 - CFD: 03/05/2017 - [0] AD -- C:\Program Files (x86)\MY TV GRATUIT
O43 - CFD: 29/01/2019 - [] D -- C:\Program Files (x86)\Recuva =>.Piriform
O43 - CFD: 28/01/2018 - [] D -- C:\Program Files (x86)\Runxia Electronics =>.Runxia Electronics
O43 - CFD: 16/09/2017 - [] D -- C:\Program Files (x86)\SHAREit Technologies =>.SHAREit Technologies Co.Ltd®
O43 - CFD: 20/03/2017 - [] RD -- C:\Program Files (x86)\Skype =>.Skype
O43 - CFD: 30/12/2018 - [] AD -- C:\Program Files (x86)\SMADAV =>.SmadAV
O43 - CFD: 03/02/2018 - [] D -- C:\Program Files (x86)\Soft Solutions {43B2354BD3A5CBAFE6CCBEE1C1C54B55} =>.Soft Solutions
O43 - CFD: 19/03/2017 - [] AD -- C:\Program Files (x86)\The KMPlayer FR
O43 - CFD: 20/03/2017 - [] D -- C:\Program Files (x86)\VideoLAN =>.VideoLan Team
O43 - CFD: 09/02/2019 - [] D -- C:\Program Files (x86)\VMware =>.VMware, Inc.®
O43 - CFD: 05/02/2019 - [] D -- C:\Program Files (x86)\VPN Unlimited
O43 - CFD: 06/06/2018 - [] D -- C:\Program Files (x86)\Wondershare =>.Wondershare
O43 - CFD: 29/01/2019 - [] D -- C:\Program Files (x86)\Yahoo! =>.Yahoo!
O43 - CFD: 12/06/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip =>.Igor Pavlov
O43 - CFD: 12/04/2018 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools
O43 - CFD: 12/06/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVS4YOU =>.AVS4YOU
O43 - CFD: 05/02/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Betternet Technologies Inc =>.Betternet
O43 - CFD: 12/06/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDBurnerXP =>.Stefan Haglund
O43 - CFD: 12/06/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ClockworkMod =>.ClockworkMod
O43 - CFD: 12/06/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Conexant =>.Conexant Systems, Inc.
O43 - CFD: 09/02/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HashFish
O43 - CFD: 27/01/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HiSuite =>.Huawei Technologies Co.,Ltd
O43 - CFD: 12/06/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iMyFone =>.iMyFone
O43 - CFD: 12/06/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager =>.Tonec Inc
O43 - CFD: 26/07/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes =>.Apple Inc.
O43 - CFD: 16/06/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSnano =>HackTool.AutoKMS
O43 - CFD: 12/06/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSpico =>HackTool.KMSpico
O43 - CFD: 22/06/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft =>.Lavasoft
O43 - CFD: 11/02/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes =>.Malwarebytes
O43 - CFD: 12/06/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MPC-HC x64 =>.MPC-HC Team
O43 - CFD: 25/01/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Otohits Network
O43 - CFD: 12/06/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Runxia Electronics =>.Runxia Electronics
O43 - CFD: 12/06/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SHAREit =>.Lenovo Group Limited
O43 - CFD: 12/06/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype =>.Skype
O43 - CFD: 12/06/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SMADAV Antivirus =>.SmadAV
O43 - CFD: 12/06/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Soft Solutions =>.Soft Solutions
O43 - CFD: 12/06/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The KMPlayer FR
O43 - CFD: 12/06/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TP-LINK =>.TP-LINK
O43 - CFD: 12/06/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN =>.VideoLan Team
O43 - CFD: 09/02/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VMware =>.VMware
O43 - CFD: 12/06/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR
O43 - CFD: 12/06/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip 22.0
O43 - CFD: 12/06/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare =>.Wondershare
O43 - CFD: 25/07/2018 - [] D -- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69 =>.GEAR Software, Inc.
O43 - CFD: 27/03/2017 - [] D -- C:\ProgramData\Adobe =>.Adobe
O43 - CFD: 26/09/2017 - [] D -- C:\ProgramData\AMProLocalSettings
O43 - CFD: 18/10/2017 - [] D -- C:\ProgramData\Apple =>.Apple Inc.
O43 - CFD: 26/07/2018 - [] D -- C:\ProgramData\Apple Computer =>.Apple Inc.
O43 - CFD: 22/06/2018 - [] D -- C:\ProgramData\AVAST Software =>.AVAST Software
O43 - CFD: 31/03/2017 - [] D -- C:\ProgramData\AVS4YOU =>.AVS4YOU
O43 - CFD: 05/02/2019 - [] D -- C:\ProgramData\Betternet =>.Betternet
O43 - CFD: 29/04/2017 - [] D -- C:\ProgramData\Canneverbe Limited =>.Canneverbe Limited
O43 - CFD: 31/08/2017 - [] D -- C:\ProgramData\Conexant =>.Conexant Systems, Inc.
O43 - CFD: 26/07/2018 - [] D -- C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7 =>.Gearbox Software
O43 - CFD: 31/03/2017 - [] D -- C:\ProgramData\EPS
O43 - CFD: 11/02/2019 - [] D -- C:\ProgramData\GHQ
O43 - CFD: 20/03/2017 - [0] D -- C:\ProgramData\IDM =>.IDM
O43 - CFD: 11/02/2019 - [] SHD -- C:\ProgramData\IEOJJK
O43 - CFD: 03/01/2018 - [] D -- C:\ProgramData\Kaspersky Lab =>.Kaspersky Lab
O43 - CFD: 03/01/2018 - [] D -- C:\ProgramData\Kaspersky Lab Setup Files =>.Kaspersky Lab
O43 - CFD: 22/06/2018 - [] D -- C:\ProgramData\Lavasoft =>.Lavasoft
O43 - CFD: 10/02/2019 - [] D -- C:\ProgramData\Mail.Ru =>.Mail.Ru
O43 - CFD: 11/02/2019 - [] D -- C:\ProgramData\Malwarebytes =>.Malwarebytes
O43 - CFD: 29/04/2017 - [] D -- C:\ProgramData\Nero =>.Ahead Corporation
O43 - CFD: 10/10/2017 - [] D -- C:\ProgramData\Oracle =>.Oracle
O43 - CFD: 16/01/2018 - [] D -- C:\ProgramData\PC Faster
O43 - CFD: 23/10/2018 - [] D -- C:\ProgramData\Realtek =>.Realtek
O43 - CFD: 31/10/2017 - [] D -- C:\ProgramData\SEUpdInstaller
O43 - CFD: 20/03/2017 - [] D -- C:\ProgramData\Skype =>.Skype
O43 - CFD: 31/03/2017 - [] D -- C:\ProgramData\SurfEasy VPN
O43 - CFD: 31/03/2017 - [] D -- C:\ProgramData\SurfEasyService
O43 - CFD: 23/10/2017 - [] D -- C:\ProgramData\SystemAcCrux
O43 - CFD: 28/11/2017 - [] D -- C:\ProgramData\TP-LINK =>.TP-LINK
O43 - CFD: 11/02/2019 - [] AD -- C:\ProgramData\VMware =>.VMware
O43 - CFD: 25/05/2018 - [] D -- C:\ProgramData\WinZip =>.WinZip
O43 - CFD: 22/01/2018 - [] D -- C:\ProgramData\Wondershare =>.Wondershare
O43 - CFD: 29/01/2019 - [] D -- C:\ProgramData\Yahoo! Companion =>.Yahoo! Inc.
O43 - CFD: 11/02/2019 - [] D -- C:\ProgramData\{60C77695-5F0B-3E37-7342-B4B273A5EDE3}
O43 - CFD: 11/02/2019 - [] D -- C:\ProgramData\{8F04E9E6-C078-D1F4-00DD-775D003A2E0C}
O43 - CFD: 19/03/2017 - [] AD -- C:\Program Files (x86)\Common Files\Adobe =>.Adobe
O43 - CFD: 25/07/2018 - [] D -- C:\Program Files (x86)\Common Files\Apple =>.Apple Inc.
O43 - CFD: 31/03/2017 - [] D -- C:\Program Files (x86)\Common Files\AVSMedia =>.AVSMedia
O43 - CFD: 12/06/2018 - [] D -- C:\Program Files (x86)\Common Files\Intel =>.Intel Corporation
O43 - CFD: 20/03/2017 - [] AD -- C:\Program Files (x86)\Common Files\Skype =>.Skype
O43 - CFD: 09/02/2019 - [] D -- C:\Program Files (x86)\Common Files\ThinPrint =>.ThinPrint
O43 - CFD: 09/02/2019 - [] D -- C:\Program Files (x86)\Common Files\VMware =>.VMware
O43 - CFD: 27/03/2017 - [] D -- C:\Users\LENOVO\AppData\Roaming\Adobe =>.Adobe
O43 - CFD: 02/12/2017 - [] D -- C:\Users\LENOVO\AppData\Roaming\Apple Computer =>.Apple Inc.
O43 - CFD: 16/12/2017 - [] D -- C:\Users\LENOVO\AppData\Roaming\Appԁata
O43 - CFD: 22/06/2018 - [] D -- C:\Users\LENOVO\AppData\Roaming\AVAST Software =>.AVAST Software
O43 - CFD: 16/01/2018 - [] D -- C:\Users\LENOVO\AppData\Roaming\Baidu =>.Baidu
O43 - CFD: 29/04/2017 - [] D -- C:\Users\LENOVO\AppData\Roaming\Canneverbe Limited =>.Canneverbe Limited
O43 - CFD: 02/02/2019 - [] D -- C:\Users\LENOVO\AppData\Roaming\CryptoTab Browser =>.CryptoTab Browser
O43 - CFD: 21/04/2017 - [] D -- C:\Users\LENOVO\AppData\Roaming\DeskSoft =>.DeskSoft
O43 - CFD: 11/02/2019 - [] D -- C:\Users\LENOVO\AppData\Roaming\DesktopMining
O43 - CFD: 27/01/2019 - [] D -- C:\Users\LENOVO\AppData\Roaming\Diabolic Labs
O43 - CFD: 11/02/2019 - [] D -- C:\Users\LENOVO\AppData\Roaming\DMCache =>.DMCache
O43 - CFD: 18/09/2018 - [] D -- C:\Users\LENOVO\AppData\Roaming\dvdcss =>.VideoLan Team
O43 - CFD: 09/02/2019 - [] D -- C:\Users\LENOVO\AppData\Roaming\EarnMoney
O43 - CFD: 11/02/2019 - [0] D -- C:\Users\LENOVO\AppData\Roaming\etdapfwez5f
O43 - CFD: 17/01/2019 - [] D -- C:\Users\LENOVO\AppData\Roaming\Google =>.Google
O43 - CFD: 09/02/2019 - [] D -- C:\Users\LENOVO\AppData\Roaming\HashFish
O43 - CFD: 06/06/2018 - [] D -- C:\Users\LENOVO\AppData\Roaming\HMYGSetting =>Adware.Suspect
O43 - CFD: 31/01/2019 - [] D -- C:\Users\LENOVO\AppData\Roaming\IDM =>.IDM
O43 - CFD: 25/03/2017 - [] D -- C:\Users\LENOVO\AppData\Roaming\Innovative Solutions =>.Innovative Solutions
O43 - CFD: 11/02/2019 - [] D -- C:\Users\LENOVO\AppData\Roaming\IPweb Surf
O43 - CFD: 19/10/2017 - [] SHD -- C:\Users\LENOVO\AppData\Roaming\Latas
O43 - CFD: 22/06/2018 - [] D -- C:\Users\LENOVO\AppData\Roaming\Lavasoft =>.Lavasoft
O43 - CFD: 20/03/2017 - [] D -- C:\Users\LENOVO\AppData\Roaming\Macromedia =>.Macromedia
O43 - CFD: 19/03/2017 - [] D -- C:\Users\LENOVO\AppData\Roaming\Moonchild Productions =>.Moonchild Productions
O43 - CFD: 25/03/2017 - [] D -- C:\Users\LENOVO\AppData\Roaming\Mozilla =>.Mozilla Corporation
O43 - CFD: 01/04/2017 - [] D -- C:\Users\LENOVO\AppData\Roaming\MPC-HC =>.MPC-HC Team
O43 - CFD: 29/04/2017 - [] D -- C:\Users\LENOVO\AppData\Roaming\Nero =>.Ahead Corporation
O43 - CFD: 06/02/2019 - [] D -- C:\Users\LENOVO\AppData\Roaming\nhm2
O43 - CFD: 06/02/2019 - [] D -- C:\Users\LENOVO\AppData\Roaming\NiceHash Miner 2
O43 - CFD: 17/01/2018 - [] D -- C:\Users\LENOVO\AppData\Roaming\PC Faster
O43 - CFD: 08/02/2019 - [] D -- C:\Users\LENOVO\AppData\Roaming\poclbm
O43 - CFD: 16/12/2017 - [] SHD -- C:\Users\LENOVO\AppData\Roaming\Pr
O43 - CFD: 11/10/2017 - [] D -- C:\Users\LENOVO\AppData\Roaming\redsn0w
O43 - CFD: 11/02/2019 - [0] D -- C:\Users\LENOVO\AppData\Roaming\s5jtxt2vlww
O43 - CFD: 11/02/2019 - [] D -- C:\Users\LENOVO\AppData\Roaming\Skype =>.Skype
O43 - CFD: 16/06/2017 - [] D -- C:\Users\LENOVO\AppData\Roaming\Smadav =>.SmadAV
O43 - CFD: 03/02/2018 - [] D -- C:\Users\LENOVO\AppData\Roaming\Soft Solutions =>.Soft Solutions
O43 - CFD: 16/09/2017 - [] D -- C:\Users\LENOVO\AppData\Roaming\Umeng
O43 - CFD: 11/02/2019 - [] D -- C:\Users\LENOVO\AppData\Roaming\uTorrent
O43 - CFD: 12/10/2018 - [] D -- C:\Users\LENOVO\AppData\Roaming\vlc =>.VideoLan Team
O43 - CFD: 10/02/2019 - [] D -- C:\Users\LENOVO\AppData\Roaming\VMware =>.VMware
O43 - CFD: 11/02/2019 - [0] D -- C:\Users\LENOVO\AppData\Roaming\wi05ffhglgo
O43 - CFD: 20/03/2017 - [] D -- C:\Users\LENOVO\AppData\Roaming\WinRAR =>.WinRAR
O43 - CFD: 06/06/2018 - [] D -- C:\Users\LENOVO\AppData\Roaming\Wondershare =>.Wondershare
O43 - CFD: 29/01/2019 - [] D -- C:\Users\LENOVO\AppData\Roaming\Yahoo! =>.Yahoo!
O43 - CFD: 11/02/2019 - [0] D -- C:\Users\LENOVO\AppData\Roaming\ypq1zsgqdp4
O43 - CFD: 11/02/2019 - [] D -- C:\Users\LENOVO\AppData\Roaming\ZHP =>.Nicolas Coolman
O43 - CFD: 27/03/2017 - [] D -- C:\Users\LENOVO\AppData\Local\Adobe =>.Adobe
O43 - CFD: 09/10/2017 - [] D -- C:\Users\LENOVO\AppData\Local\Apple =>.Apple Inc.
O43 - CFD: 09/10/2017 - [] D -- C:\Users\LENOVO\AppData\Local\Apple Computer =>.Apple Inc.
O43 - CFD: 24/07/2018 - [] D -- C:\Users\LENOVO\AppData\Local\assembly =>.Assembly
O43 - CFD: 05/01/2019 - [] D -- C:\Users\LENOVO\AppData\Local\AVAST Software =>.AVAST Software
O43 - CFD: 10/02/2019 - [] D -- C:\Users\LENOVO\AppData\Local\Blockchain_Miner_Pro
O43 - CFD: 22/06/2018 - [] D -- C:\Users\LENOVO\AppData\Local\CEF =>.CEF
O43 - CFD: 18/01/2018 - [] D -- C:\Users\LENOVO\AppData\Local\com.surfeasy.se0211
O43 - CFD: 20/03/2017 - [] D -- C:\Users\LENOVO\AppData\Local\Conexant =>.Conexant Systems, Inc.
O43 - CFD: 02/02/2019 - [] D -- C:\Users\LENOVO\AppData\Local\CryptoCompany
O43 - CFD: 02/02/2019 - [] D -- C:\Users\LENOVO\AppData\Local\CryptoTab Browser =>.CryptoTab Browser
O43 - CFD: 26/08/2018 - [] D -- C:\Users\LENOVO\AppData\Local\D3DSCache =>.Legitimate
O43 - CFD: 14/09/2017 - [0] D -- C:\Users\LENOVO\AppData\Local\DBG =>.DBG
O43 - CFD: 18/10/2017 - [] D -- C:\Users\LENOVO\AppData\Local\Embratoria =>.Embratoria
O43 - CFD: 06/04/2017 - [] D -- C:\Users\LENOVO\AppData\Local\Geckofx =>.Geckofx
O43 - CFD: 20/03/2017 - [] D -- C:\Users\LENOVO\AppData\Local\Google =>.Google
O43 - CFD: 27/01/2019 - [] D -- C:\Users\LENOVO\AppData\Local\Hisuite =>.Huawei Technologies Co.,Ltd
O43 - CFD: 27/01/2019 - [] D -- C:\Users\LENOVO\AppData\Local\HitLeap Viewer
O43 - CFD: 25/03/2017 - [] D -- C:\Users\LENOVO\AppData\Local\Innovative Solutions =>.Innovative Solutions
O43 - CFD: 17/12/2017 - [] D -- C:\Users\LENOVO\AppData\Local\IsolatedStorage =>.id Software
O43 - CFD: 05/02/2019 - [] D -- C:\Users\LENOVO\AppData\Local\KeepSolid Inc
O43 - CFD: 22/06/2018 - [] D -- C:\Users\LENOVO\AppData\Local\Lavasoft =>.Lavasoft
O43 - CFD: 10/02/2019 - [] D -- C:\Users\LENOVO\AppData\Local\Mail.Ru =>.Mail.Ru
O43 - CFD: 11/08/2017 - [] D -- C:\Users\LENOVO\AppData\Local\Mamcom_Tv
O43 - CFD: 11/02/2019 - [] D -- C:\Users\LENOVO\AppData\Local\mbam =>.Malwarebytes
O43 - CFD: 11/02/2019 - [] D -- C:\Users\LENOVO\AppData\Local\mbamtray =>.Malwarebytes
O43 - CFD: 04/10/2017 - [] D -- C:\Users\LENOVO\AppData\Local\MobTV
O43 - CFD: 19/03/2017 - [] D -- C:\Users\LENOVO\AppData\Local\Moonchild Productions =>.Moonchild Productions
O43 - CFD: 25/03/2017 - [] D -- C:\Users\LENOVO\AppData\Local\Mozilla =>.Mozilla Corporation
O43 - CFD: 29/04/2017 - [] D -- C:\Users\LENOVO\AppData\Local\Nero =>.Ahead Corporation
O43 - CFD: 29/04/2017 - [] D -- C:\Users\LENOVO\AppData\Local\Nero_AG =>.Ahead
O43 - CFD: 20/03/2017 - [0] D -- C:\Users\LENOVO\AppData\Local\NetworkTiles =>.NetworkTiles
O43 - CFD: 02/12/2017 - [0] D -- C:\Users\LENOVO\AppData\Local\pangu =>.Pangu Team
O43 - CFD: 11/02/2019 - [] D -- C:\Users\LENOVO\AppData\Local\Seed4Me
O43 - CFD: 16/09/2017 - [] D -- C:\Users\LENOVO\AppData\Local\SHAREit Technologies
O43 - CFD: 20/03/2017 - [] D -- C:\Users\LENOVO\AppData\Local\Skype =>.Skype
O43 - CFD: 17/08/2017 - [] D -- C:\Users\LENOVO\AppData\Local\Smart PC Soft =>.Smart PC Soft
O43 - CFD: 17/08/2017 - [] D -- C:\Users\LENOVO\AppData\Local\Smart_PC_Soft =>.Smart PC Soft
O43 - CFD: 28/01/2018 - [] D -- C:\Users\LENOVO\AppData\Local\VirtualRouterPlus
O43 - CFD: 10/02/2019 - [] D -- C:\Users\LENOVO\AppData\Local\VMware =>.VMware
O43 - CFD: 11/04/2017 - [] D -- C:\Users\LENOVO\AppData\Local\WDSetup =>.WDSetup
O43 - CFD: 02/06/2018 - [] D -- C:\Users\LENOVO\AppData\Local\WinZip =>.WinZip
O43 - CFD: 11/02/2019 - [] D -- C:\Users\LENOVO\AppData\Local\ZHP =>.Nicolas Coolman
O43 - CFD: 05/02/2019 - [] D -- C:\Users\LENOVO\AppData\Local\Programs\DesktopMining
O43 - CFD: 06/02/2019 - [] D -- C:\Users\LENOVO\AppData\Local\Programs\NiceHash Miner 2
O43 - CFD: 27/03/2017 - [] D -- C:\Users\LENOVO\AppData\LocalLow\Adobe =>.Adobe
O43 - CFD: 19/10/2017 - [] D -- C:\Users\LENOVO\AppData\LocalLow\Apple Computer =>.Apple Inc.
O43 - CFD: 11/02/2019 - [] D -- C:\Users\LENOVO\AppData\LocalLow\uTorrent
O43 - CFD: 05/02/2019 - [] D -- C:\Users\LENOVO\Desktop\ali C
O43 - CFD: 09/02/2019 - [] D -- C:\Users\LENOVO\Desktop\Nouveau dossier
O43 - CFD: 12/12/2018 - [] RD -- C:\Users\LENOVO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools
O43 - CFD: 17/01/2019 - [] D -- C:\Users\LENOVO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome =>.Google Inc.
O43 - CFD: 12/06/2018 - [] D -- C:\Users\LENOVO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AVS4YOU =>.AVS4YOU
O43 - CFD: 27/01/2019 - [] D -- C:\Users\LENOVO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bighits4u
O43 - CFD: 12/06/2018 - [] D -- C:\Users\LENOVO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CardRecovery =>.WinRecovery Software
O43 - CFD: 12/06/2018 - [] D -- C:\Users\LENOVO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DRAGON ver1.0
O43 - CFD: 25/01/2019 - [] D -- C:\Users\LENOVO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GLOBUS INTERCOM
O43 - CFD: 09/02/2019 - [] D -- C:\Users\LENOVO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HashFish
O43 - CFD: 27/01/2019 - [] D -- C:\Users\LENOVO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HitLeap
O43 - CFD: 12/06/2018 - [] D -- C:\Users\LENOVO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager =>.Tonec Inc
O43 - CFD: 23/03/2018 - [0] D -- C:\Users\LENOVO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MEmu =>.Microvirt Software Technology Ltd.
O43 - CFD: 29/01/2019 - [] D -- C:\Users\LENOVO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Recuva =>.Piriform
O43 - CFD: 12/06/2018 - [] D -- C:\Users\LENOVO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR
O43 - CFD: 10/02/2019 - [] -- C:\WINDOWS\System32\Config\systemprofile\AppData\Local\Mail.Ru =>.Mail.Ru
O43 - CFD: 05/02/2019 - [] -- C:\WINDOWS\System32\Config\systemprofile\AppData\Local\Seed4
O43 - CFD: 18/06/2018 - [] -- C:\WINDOWS\System32\Config\systemprofile\AppData\Local\SHAREit Technologies
O43 - CFD: 11/02/2019 - [0] D -- C:\WINDOWS\System32\Config\systemprofile\AppData\Roaming\VMware =>.VMware
---\\ DERNIERS FICHIERS CRÉÉS DANS WINDOWS Prefetcher (2) - 63s
O45 - LFCP:[MD5.A2B0CEAF2ABD13BCBB1D6A59F5042D1B] 15/06/2018 A -- C:\WINDOWS\Prefetch\KMSNANO SETUP.TMP-ED76468D.pf =>HackTool.AutoKMS
O45 - LFCP:[MD5.BF9E6715273DAB4E7C962F8E4D73D63F] 10/02/2019 A -- C:\WINDOWS\Prefetch\QUOTEEX.EXE-8DEA0167.pf =>PUP.Optional.Graftor
---\\ ShellIconOverlayIdentifiers (SIOI) (7) - 1s
O106 - SIOI: [ IDM Shell Extension] - {CDC95B92-E27C-4745-A8C5-64A52A78855D}. (.Tonec Inc. - Internet Download Manager module.) -- C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll =>.Tonec Inc.®
O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 1 (ErrorConflict) [ SkyDrivePro1 (ErrorConflict)] - {8BA85C75-763B-4103-94EB-9470F12FE0F7}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 2 (SyncInProgress) [ SkyDrivePro2 (SyncInProgress)] - {CD55129A-B1A1-438E-A425-CEBC7DC684EE}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 3 (InSync) [ SkyDrivePro3 (InSync)] - {E768CD3B-BDDC-436D-9C13-E1B39CA257B1}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: avast [00asw] - {472083B0-C522-11CF-8763-00608CC02F24}. (.AVAST Software - Avast Shell Extension.) -- C:\Program Files\AVAST Software\Avast\ashShell.dll =>.AVAST Software s.r.o.®
O106 - SIOI: [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - DLL d’extension d’environnement de stockage.) -- C:\Windows\System32\EhStorShell.dll =>.Microsoft Corporation
O106 - SIOI: [Offline Files] - {4E77131D-3629-431c-9818-C5679DC83E81}. (.Microsoft Corporation - IU de cache côté client.) -- C:\WINDOWS\System32\cscui.dll =>.Microsoft Corporation
---\\ IMAGE FILE EXECUTION OPTIONS (IFEO) (18) - 3s
O50 - IFEO:C:\Windows\System32\cscript.exe - (.Microsoft Corporation - Microsoft ® Console Based Script Host.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\dllhost.exe - (.Microsoft Corporation - COM Surrogate.) [DisableExceptionChainValidation\\3] =>.Microsoft Windows®
O50 - IFEO:C:\WINDOWS\System32\drvinst.exe - (.Microsoft Corporation - Module d’installation de pilotes.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\ie4uinit.exe - (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\ieUnatt.exe - (.Microsoft Corporation - Outil d’installation sans assistance d’IE 7.) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\mmc.exe - (.Microsoft Corporation - Microsoft Management Console.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\MRT.exe - (.Microsoft Corporation - Outil de suppression de logiciels malveilla.) [CFGOptions\\1] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\msfeedssync.exe - (.Microsoft Corporation - Microsoft Feeds Synchronization.) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\mshta.exe - (.Microsoft Corporation - Hôte des applications HTML de Microsoft(R).) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\PresentationHost.exe - (.Microsoft Corporation - Windows Presentation Foundation Host.) [MitigationOptions\\1118481] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\PrintIsolationHost.exe - (.Microsoft Corporation - PrintIsolationHost.) [MitigationOptions\\2097152] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\rundll32.exe - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\runtimebroker.exe - (.Microsoft Corporation - Runtime Broker.) [MitigationOptions\\4294967296] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\searchprotocolhost.exe - (.Microsoft Corporation - Microsoft Windows Search Protocol Host.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\spoolsv.exe - (.Microsoft Corporation - Application sous-système spouleur.) [MitigationOptions\\2097152] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\svchost.exe - (.Microsoft Corporation - Processus hôte pour les services Windows.) [MinimumStackCommitInBytes\\32768] =>.Microsoft Windows Publisher®
O50 - IFEO:C:\Windows\System32\svchost.exe - (.Microsoft Corporation - Processus hôte pour les services Windows.) [MitigationAuditOptions\\17660905521152] =>.Microsoft Windows Publisher®
O50 - IFEO:C:\Windows\System32\wscript.exe - (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
---\\ LISTE DES PILOTES DU SYSTÈME (125) - 53s
O58 - SDL:2018/04/12 00:33:48 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\WINDOWS\System32\drivers\3ware.sys [107416] =>.Microsoft Windows®
O58 - SDL:2017/09/22 20:56:58 A . (.Malwarebytes - Malwarebytes SwissArmy.) -- C:\WINDOWS\System32\drivers\716C2463.sys [251832] =>.Malwarebytes Corporation®
O58 - SDL:2011/12/08 11:01:48 A . (.Lenovo Corporation - ACPI Virtual Power Controller Driver.) -- C:\WINDOWS\System32\drivers\AcpiVpc.sys [29792] =>.Lenovo (Beijing) Limited®
O58 - SDL:2018/04/12 00:33:48 A . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS.) -- C:\WINDOWS\System32\drivers\adp80xx.sys [1135520] =>.Microsoft Windows®
O58 - SDL:2018/04/12 00:33:48 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\WINDOWS\System32\drivers\amdsata.sys [83360] =>.Microsoft Windows®
O58 - SDL:2018/04/12 00:33:48 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\WINDOWS\System32\drivers\amdsbs.sys [259480] =>.Microsoft Windows®
O58 - SDL:2018/04/12 00:33:48 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\WINDOWS\System32\drivers\amdxata.sys [27032] =>.Microsoft Windows®
O58 - SDL:2010/07/21 15:38:54 A . (.Alps Electric Co., Ltd. - Alps Touch Pad Driver.) -- C:\WINDOWS\System32\drivers\Apfiltr.sys [305784] =>.Alps Electric Co., LTD.®
O58 - SDL:2018/04/12 00:33:48 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\WINDOWS\System32\drivers\arcsas.sys [132000] =>.Microsoft Windows®
O58 - SDL:2019/02/08 01:45:34 A . (.AVAST Software - Avast anti rootkit disk filter.) -- C:\WINDOWS\System32\drivers\aswArDisk.sys [37104] =>.AVAST Software s.r.o.®
O58 - SDL:2019/02/08 01:45:35 A . (.AVAST Software - Avast anti rootkit.) -- C:\WINDOWS\System32\drivers\aswArPot.sys [205400] =>.AVAST Software s.r.o.®
O58 - SDL:2019/02/08 01:45:20 A . (.AVAST Software - IDS Application Activity Monitor Driver..) -- C:\WINDOWS\System32\drivers\aswbidsdriver.sys [225680] =>.AVAST Software s.r.o.®
O58 - SDL:2019/02/08 01:45:20 A . (.AVAST Software - Application Activity Monitor Helper Driver.) -- C:\WINDOWS\System32\drivers\aswbidsh.sys [196072] =>.AVAST Software s.r.o.®
O58 - SDL:2019/02/08 01:45:20 A . (.AVAST Software - Logging Driver.) -- C:\WINDOWS\System32\drivers\aswblog.sys [320696] =>.AVAST Software s.r.o.®
O58 - SDL:2019/02/08 01:45:20 A . (.AVAST Software - Universal Driver.) -- C:\WINDOWS\System32\drivers\aswbuniv.sys [57960] =>.AVAST Software s.r.o.®
O58 - SDL:2019/01/05 15:03:06 A . (.AVAST Software - Avast ELAM Driver.) -- C:\WINDOWS\System32\drivers\aswElam.sys [15488] =>.Microsoft Corporation®
O58 - SDL:2019/02/08 01:46:05 A . (.AVAST Software - Home Network Security.) -- C:\WINDOWS\System32\drivers\aswHdsKe.sys [249456] =>.AVAST Software s.r.o.®
O58 - SDL:2019/02/08 01:46:06 A . (.AVAST Software - Avast Keyboard Filter Driver.) -- C:\WINDOWS\System32\drivers\aswKbd.sys [42288] =>.AVAST Software s.r.o.®
O58 - SDL:2019/02/08 01:46:07 A . (.AVAST Software - Avast File System Minifilter for Windows 20.) -- C:\WINDOWS\System32\drivers\aswMonFlt.sys [167304] =>.AVAST Software s.r.o.®
O58 - SDL:2019/02/08 01:46:06 A . (.AVAST Software - Avast WFP Redirect Driver.) -- C:\WINDOWS\System32\drivers\aswRdr2.sys [112312] =>.AVAST Software s.r.o.®
O58 - SDL:2019/02/08 01:46:07 A . (.AVAST Software - Avast Revert.) -- C:\WINDOWS\System32\drivers\aswRvrt.sys [87944] =>.AVAST Software s.r.o.® (Avast Software s.r.o)
O58 - SDL:2019/02/08 01:45:33 A . (.AVAST Software - Avast Virtualization Driver.) -- C:\WINDOWS\System32\drivers\aswSnx.sys [1034432] =>.AVAST Software s.r.o.®
O58 - SDL:2019/02/08 01:46:07 A . (.AVAST Software - Avast self protection module.) -- C:\WINDOWS\System32\drivers\aswSP.sys [474456] =>.AVAST Software s.r.o.®
O58 - SDL:2019/02/08 01:46:08 A . (.AVAST Software - Stream Filter.) -- C:\WINDOWS\System32\drivers\aswStm.sys [216784] =>.AVAST Software s.r.o.®
O58 - SDL:2019/02/08 01:46:15 A . (.AVAST Software - Avast VM Monitor.) -- C:\WINDOWS\System32\drivers\aswVmm.sys [379952] =>.AVAST Software s.r.o.® (Avast Software s.r.o)
O58 - SDL:2018/04/12 00:33:48 A . (. - BCM Function 2 Device Driver.) -- C:\WINDOWS\System32\drivers\bcmfn2.sys [9728] =>.Broadcom Corporation
O58 - SDL:2018/04/12 00:33:48 A . (.QLogic Corporation - QLogic Gigabit Ethernet VBD.) -- C:\WINDOWS\System32\drivers\bxvbda.sys [533912] =>.Microsoft Windows®
O58 - SDL:2018/01/18 21:20:35 A . (.Connectify - Connectify NDISRD helper driver.) -- C:\WINDOWS\System32\drivers\cfywlan2.sys [46088] =>.Connectify (Connectify, Inc.)®
O58 - SDL:2016/07/07 02:53:40 A . (.Conexant Systems Inc. - 64-bit High Definition Audio Function Drive.) -- C:\WINDOWS\System32\drivers\CHDRT64.sys [1560616] =>.Conexant Systems, Inc.®
O58 - SDL:2018/04/12 00:33:49 A . (.Chelsio Communications - Chelsio iSCSI Crash Dump Driver.) -- C:\WINDOWS\System32\drivers\cht4dx64.sys [143768] =>.Microsoft Windows®
O58 - SDL:2018/04/12 00:33:49 A . (.Chelsio Communications - Chelsio iSCSI VMiniport Driver.) -- C:\WINDOWS\System32\drivers\cht4sx64.sys [321432] =>.Microsoft Windows®
O58 - SDL:2018/04/12 00:33:49 A . (.Chelsio Communications - VF library for Chelsio ® T5/T6 Chipset.) -- C:\WINDOWS\System32\drivers\cht4vfx.sys [29184] =>.Chelsio Communications
O58 - SDL:2018/04/12 00:33:49 A . (.Chelsio Communications - Virtual Bus Driver for Chelsio ® T5/T6 Chip.) -- C:\WINDOWS\System32\drivers\cht4vx64.sys [1836952] =>.Microsoft Windows®
O58 - SDL:2018/01/20 14:41:43 A . (.Connectify - NDISRD helper driver.) -- C:\WINDOWS\System32\drivers\cnnctfy3.sys [35352] =>.Connectify®
O58 - SDL:2018/01/18 21:20:35 A . (.Connectify - CNNCTFY helper driver.) -- C:\WINDOWS\System32\drivers\cnnctfy4.sys [53216] =>.Connectify (Connectify, Inc.)®
O58 - SDL:2012/10/03 14:12:32 A . (.ELAN Microelectronics Corp. - ETD Kernel Center.) -- C:\WINDOWS\System32\drivers\ETD.sys [323920] =>.ELAN Microelectronics Corporation®
O58 - SDL:2018/04/12 00:33:48 A . (.QLogic Corporation - QLogic 10 GigE VBD.) -- C:\WINDOWS\System32\drivers\evbda.sys [3419032] =>.Microsoft Windows®
O58 - SDL:2018/12/12 11:32:56 A . (.Huawei Technologies Co., Ltd. - Filter Driver.) -- C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2019/02/11 16:56:51 A . (.Malwarebytes - Malwarebytes Anti-Ransomware Protection.) -- C:\WINDOWS\System32\drivers\farflt.sys [127136] =>.Malwarebytes Corporation®
O58 - SDL:2012/08/21 13:01:20 A . (.GEAR Software Inc. - CD DVD Filter.) -- C:\WINDOWS\System32\drivers\GEARAspiWDM.sys [33240] =>.GEAR Software Inc.®
O58 - SDL:2018/11/02 05:21:58 A . (.VMware, Inc. - VMware USB monitor.) -- C:\WINDOWS\System32\drivers\hcmon.sys [84752] =>.VMware, Inc.®
O58 - SDL:2018/04/12 00:33:48 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\WINDOWS\System32\drivers\HpSAMD.sys [64408] =>.Microsoft Windows®
O58 - SDL:2018/12/12 11:32:56 A . (.Huawei Technologies Co., Ltd. - ew_cdcacm Driver.) -- C:\WINDOWS\System32\drivers\hw_cdcacm.sys [127360] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2018/12/12 11:32:56 A . (.Huawei Technologies Co., Ltd. - USB Modem/Serial Device Driver.) -- C:\WINDOWS\System32\drivers\hw_quusbmdm.sys [226560] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2018/12/12 11:32:56 A . (.Huawei Technologies Co., Ltd. - USB NDIS Miniport Driver.) -- C:\WINDOWS\System32\drivers\hw_quusbnet.sys [287232] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2018/12/12 11:32:56 A . (.Huawei Technologies Co., Ltd. - USB Modem/Serial Device Driver.) -- C:\WINDOWS\System32\drivers\hw_usbdev.sys [116864] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2018/04/12 00:33:45 A . (.Intel(R) Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\iagpio.sys [36864] =>.Intel(R) Corporation
O58 - SDL:2018/04/12 00:33:45 A . (.Intel(R) Corporation - Intel(R) Serial IO I2C Driver.) -- C:\WINDOWS\System32\drivers\iai2c.sys [91648] =>.Intel(R) Corporation
O58 - SDL:2018/04/12 00:33:45 A . (.Intel Corporation - Intel(R) Serial IO GPIO Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [79360] =>.Intel Corporation
O58 - SDL:2018/04/12 00:33:45 A . (.Intel Corporation - Intel(R) Serial IO GPIO Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [88576] =>.Intel Corporation
O58 - SDL:2018/04/12 00:33:45 A . (.Intel Corporation - Intel(R) Serial IO I2C Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [171520] =>.Intel Corporation
O58 - SDL:2018/04/12 00:33:45 A . (.Intel Corporation - Intel(R) Serial IO I2C Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [174592] =>.Intel Corporation
O58 - SDL:2018/04/12 00:33:48 A . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [38128] =>.Intel Corporation - Client Components Group®
O58 - SDL:2018/04/12 00:33:45 A . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [113152] =>.Intel Corporation
O58 - SDL:2018/04/12 00:33:49 A . (.Intel Corporation - Intel(R) Rapid Storage Technology driver (i.) -- C:\WINDOWS\System32\drivers\iaStorAVC.sys [885144] =>.Microsoft Windows®
O58 - SDL:2018/04/12 00:33:49 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\WINDOWS\System32\drivers\iaStorV.sys [412064] =>.Microsoft Windows®
O58 - SDL:2018/04/12 00:33:49 A . (.Mellanox - InfiniBand Fabric Bus Driver.) -- C:\WINDOWS\System32\drivers\ibbus.sys [526232] =>.Microsoft Windows®
O58 - SDL:2016/10/17 16:35:48 A . (.Tonec Inc. - Internet Download Manager WFP Driver.) -- C:\WINDOWS\System32\drivers\idmwfp.sys [223464] =>.Tonec Inc.®
O58 - SDL:2017/06/12 01:56:24 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\WINDOWS\System32\drivers\igdkmd64.sys [7970232] =>.Intel(R) pGFX®
O58 - SDL:2016/05/12 05:32:26 N . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\WINDOWS\System32\drivers\IntcDAud.sys [481768] =>.Intel(R) OWR®
O58 - SDL:2018/04/12 00:33:48 A . (.Avago Technologies - Avago SAS Gen3.5 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\ItSas35i.sys [145816] =>.Microsoft Windows®
O58 - SDL:2018/04/12 00:33:48 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas.sys [108952] =>.Microsoft Windows®
O58 - SDL:2018/04/12 00:33:48 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas2i.sys [124312] =>.Microsoft Windows®
O58 - SDL:2018/04/12 00:33:48 A . (.Avago Technologies - Avago SAS Gen3 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas3i.sys [128408] =>.Microsoft Windows®
O58 - SDL:2018/04/12 00:33:48 A . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sss.sys [82848] =>.Microsoft Windows®
O58 - SDL:2012/11/20 10:48:32 A . (.HandSet Incorporated - HandSet CDROM Filter.) -- C:\WINDOWS\System32\drivers\massfilter_LTE.sys [11776] =>.HandSet Incorporated
O58 - SDL:2019/01/08 15:32:04 A . (.Malwarebytes - Malwarebytes Anti-Exploit.) -- C:\WINDOWS\System32\drivers\mbae64.sys [153328] =>.Malwarebytes Corporation®
O58 - SDL:2019/02/11 21:08:13 A . (.Malwarebytes - Malwarebytes Real-Time Protection.) -- C:\WINDOWS\System32\drivers\mbam.sys [72864] =>.Malwarebytes Corporation®
O58 - SDL:2019/02/11 15:43:45 A . (.Malwarebytes - Malwarebytes Chameleon.) -- C:\WINDOWS\System32\drivers\MbamChameleon.sys [198512] =>.Malwarebytes Corporation®
O58 - SDL:2019/02/01 11:20:22 A . (.Malwarebytes - Malwarebytes Early Launch Anti-Malware Driv.) -- C:\WINDOWS\System32\drivers\MbamElam.sys [20936] =>.Microsoft Corporation®
O58 - SDL:2019/02/11 15:43:33 A . (.Malwarebytes - Malwarebytes SwissArmy.) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys [274416] =>.Malwarebytes Corporation®
O58 - SDL:2018/04/12 00:33:48 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\megasas.sys [59800] =>.Microsoft Windows®
O58 - SDL:2018/04/12 00:33:48 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\MegaSas2i.sys [75160] =>.Microsoft Windows®
O58 - SDL:2018/04/12 00:33:48 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\megasas35i.sys [82328] =>.Microsoft Windows®
O58 - SDL:2018/04/12 00:33:48 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\WINDOWS\System32\drivers\megasr.sys [575896] =>.Microsoft Windows®
O58 - SDL:2018/04/12 00:33:49 A . (.Mellanox - MLX4 Bus Driver.) -- C:\WINDOWS\System32\drivers\mlx4_bus.sys [842648] =>.Microsoft Windows®
O58 - SDL:2018/04/12 00:33:48 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\WINDOWS\System32\drivers\mvumis.sys [63904] =>.Microsoft Windows®
O58 - SDL:2019/02/11 16:56:41 A . (.Malwarebytes - Malwarebytes Web Protection.) -- C:\WINDOWS\System32\drivers\mwac.sys [114040] =>.Malwarebytes Corporation®
O58 - SDL:2018/04/12 00:33:49 A . (.Mellanox - NetworkDirect Support Filter Driver.) -- C:\WINDOWS\System32\drivers\ndfltr.sys [108952] =>.Microsoft Windows®
O58 - SDL:2018/04/12 00:33:48 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\WINDOWS\System32\drivers\nvraid.sys [150424] =>.Microsoft Windows®
O58 - SDL:2018/04/12 00:33:48 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\WINDOWS\System32\drivers\nvstor.sys [166304] =>.Microsoft Windows®
O58 - SDL:2018/04/12 00:33:49 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas2i.sys [58776] =>.Microsoft Windows®
O58 - SDL:2018/04/12 00:33:49 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas3i.sys [61848] =>.Microsoft Windows®
O58 - SDL:2018/01/21 20:59:55 A . (.Sysinternals - www.sysinternals.com - Process Explorer.) -- C:\WINDOWS\System32\drivers\PROCEXP152.SYS [34328] =>.Sysinternals®
O58 - SDL:2015/07/22 18:56:22 A . (.Realtek - Realtek 8101E/8168/8169 NDIS 6.40 64-bit Dr.) -- C:\WINDOWS\System32\drivers\rt640x64.sys [886528] =>.Realtek Semiconductor Corp®
O58 - SDL:2018/04/12 00:33:53 RA . (.Realtek - Realtek PCIe GBE Family Controller Flight.) -- C:\WINDOWS\System32\drivers\rteth.sys [65536] =>.Realtek
O58 - SDL:2018/09/26 00:22:32 A . (.Realtek Semiconductor Corporation - Realtek Bluetooth Filter Driver.) -- C:\WINDOWS\System32\drivers\RtkBtfilter.sys [758312] =>.Realtek Semiconductor Corp.®
O58 - SDL:2015/07/03 10:00:52 A . (.Realsil Semiconductor Corporation - RTS USB READER Driver.) -- C:\WINDOWS\System32\drivers\RtsUer.sys [410880] =>.Realtek Semiconductor Corp®
O58 - SDL:2015/06/16 08:22:00 A . (.Realtek Semiconductor Corp. - Realtek UVC Driver for Vista/Win7/Win8/Win8.) -- C:\WINDOWS\System32\drivers\rtsuvc.sys [3068160] =>.Realtek Semiconductor Corp®
O58 - SDL:2014/01/03 08:14:10 A . (.Realtek Semiconductor Corp. - Realtek USB Mass Storage Driver for 2K/XP/V.) -- C:\WINDOWS\System32\drivers\RtsUVStor.sys [331992] =>.Realtek Semiconductor Corp®
O58 - SDL:2018/04/12 00:33:45 A . (.Realtek Semiconductor Corporation - Realtek PCIE NDIS Driver 47528 20362.) -- C:\WINDOWS\System32\drivers\rtwlane.sys [6320640] =>.Realtek Semiconductor Corporation
O58 - SDL:2018/04/12 00:33:49 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid2.sys [44952] =>.Microsoft Windows®
O58 - SDL:2018/04/12 00:33:49 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid4.sys [81816] =>.Microsoft Windows®
O58 - SDL:2017/01/23 02:30:14 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\WINDOWS\System32\drivers\Smb_driver_AMDASF_Aux.sys [68704] =>.Synaptics Incorporated®
O58 - SDL:2015/07/27 03:30:00 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\WINDOWS\System32\drivers\Smb_driver_Intel.sys [42696] =>.Synaptics Incorporated®
O58 - SDL:2017/01/23 02:30:16 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\WINDOWS\System32\drivers\Smb_driver_Intel_Aux.sys [72800] =>.Synaptics Incorporated®
O58 - SDL:2010/05/05 06:33:00 A . (. - Analog Tuner Sample.) -- C:\WINDOWS\System32\drivers\SmiUsbGrabber3C.sys [811520]
O58 - SDL:2016/09/05 05:47:06 A . (.Samsung Electronics Co., Ltd. - SAMSUNG USB Composite Device Driver.) -- C:\WINDOWS\System32\drivers\ssudbus.sys [131712] =>.Samsung Electronics CO., LTD.®
O58 - SDL:2016/09/05 05:47:12 A . (.Samsung Electronics Co., Ltd. - SAMSUNG Android Modem Device Driver.) -- C:\WINDOWS\System32\drivers\ssudmdm.sys [165504] =>.Samsung Electronics CO., LTD.®
O58 - SDL:2018/04/12 00:33:49 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\WINDOWS\System32\drivers\stexstor.sys [31128] =>.Microsoft Windows®
O58 - SDL:2017/01/23 02:30:20 A . (.Synaptics Incorporated - Synaptics HIDI2C Driver.) -- C:\WINDOWS\System32\drivers\SynHidI2C_Aux.sys [101472] =>.Synaptics Incorporated®
O58 - SDL:2017/01/23 02:30:28 A . (.Synaptics Incorporated - Synaptics I2C Driver.) -- C:\WINDOWS\System32\drivers\SynRMIHID_Aux.sys [66144] =>.Synaptics Incorporated®
O58 - SDL:2017/01/23 02:30:28 A . (.Synaptics Incorporated - Synaptics Touchpad Win64 Driver.) -- C:\WINDOWS\System32\drivers\SynTP.sys [912992] =>.Synaptics Incorporated®
O58 - SDL:2016/09/26 21:40:08 A . (.The OpenVPN Project - TAP-Windows Virtual Network Driver (NDIS 6..) -- C:\WINDOWS\System32\drivers\tap0901.sys [27136] =>.The OpenVPN Project
O58 - SDL:2016/04/14 09:37:54 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [202848] =>.Intel(R) Embedded Subsystems and IP Blocks Group®
O58 - SDL:2017/09/07 13:04:56 A . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\WINDOWS\System32\drivers\usbaapl64.sys [54784] =>.Apple, Inc.
O58 - SDL:2018/04/12 00:34:14 A . (...) -- C:\WINDOWS\System32\drivers\UsbPmApi.sys [39936] =>.Microsoft Corporation
O58 - SDL:2016/09/30 01:12:02 A . (.VMware, Inc. - VMware PCI VMCI Bus Device.) -- C:\WINDOWS\System32\drivers\vmci.sys [105024] =>.VMware, Inc.®
O58 - SDL:2018/11/21 01:27:46 A . (.VMware, Inc. - VMware virtual network driver (64-bit).) -- C:\WINDOWS\System32\drivers\vmnet.sys [46040] =>.VMware, Inc.®
O58 - SDL:2018/11/21 01:27:52 A . (.VMware, Inc. - VMware virtual network adapter driver (64-b.) -- C:\WINDOWS\System32\drivers\vmnetadapter.sys [46040] =>.VMware, Inc.®
O58 - SDL:2018/11/21 01:27:52 A . (.VMware, Inc. - VMware bridge driver (64-bit).) -- C:\WINDOWS\System32\drivers\vmnetbridge.sys [66600] =>.VMware, Inc.®
O58 - SDL:2018/11/21 01:27:52 A . (.VMware, Inc. - VMware network application interface driver.) -- C:\WINDOWS\System32\drivers\vmnetuserif.sys [43992] =>.VMware, Inc.®
O58 - SDL:2018/11/02 05:21:58 A . (.VMware, Inc. - VMware USB driver.) -- C:\WINDOWS\System32\drivers\vmusb.sys [69696] =>.VMware, Inc.®
O58 - SDL:2018/11/21 01:21:42 A . (.VMware, Inc. - VMware kernel driver.) -- C:\WINDOWS\System32\drivers\vmx86.sys [99272] =>.VMware, Inc.®
O58 - SDL:2018/04/12 00:33:49 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\WINDOWS\System32\drivers\vsmraid.sys [166808] =>.Microsoft Windows®
O58 - SDL:2018/06/22 01:31:02 A . (.VMware, Inc. - VMware vSockets Service.) -- C:\WINDOWS\System32\drivers\vsock.sys [92040] =>.VMware, Inc.®
O58 - SDL:2018/04/12 00:33:49 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\WINDOWS\System32\drivers\VSTXRAID.SYS [305560] =>.Microsoft Windows®
O58 - SDL:2018/04/12 00:33:49 A . (.Mellanox - Kernel WinMad.) -- C:\WINDOWS\System32\drivers\winmad.sys [32152] =>.Microsoft Windows®
O58 - SDL:2018/04/12 00:33:49 A . (.Mellanox - Kernel WinVerbs.) -- C:\WINDOWS\System32\drivers\winverbs.sys [64920] =>.Microsoft Windows®
O58 - SDL:2012/11/15 19:21:34 A . (.ZTE Incorporated - USB Modem/Serial Device Driver.) -- C:\WINDOWS\System32\drivers\zgdcat.sys [123520] =>.ZTE Incorporated
O58 - SDL:2012/11/15 19:21:34 A . (.ZTE Incorporated - USB Modem/Serial Device Driver.) -- C:\WINDOWS\System32\drivers\zgdcdiag.sys [123520] =>.ZTE Incorporated
O58 - SDL:2012/11/15 19:21:34 A . (.ZTE Incorporated - USB Modem/Serial Device Driver.) -- C:\WINDOWS\System32\drivers\zgdcmdm.sys [123520] =>.ZTE Incorporated
O58 - SDL:2012/11/20 15:39:54 A . (.ZTE Incorporated - USB NDIS Miniport Driver.) -- C:\WINDOWS\System32\drivers\zgdcnet.sys [162816] =>.ZTE Incorporated
O58 - SDL:2012/11/15 19:21:34 A . (.ZTE Incorporated - USB Modem/Serial Device Driver.) -- C:\WINDOWS\System32\drivers\zgdcnmea.sys [123520] =>.ZTE Incorporated
O58 - SDL:2012/12/05 21:57:40 A . (.Realtek Semiconductor Corporation - Realtek WLAN USB NDIS Driver.) -- C:\WINDOWS\System32\rtwlanu.sys [1578128] =>.Realtek Semiconductor Corp®
---\\ DERNIERS FICHIERS MODIFIÉS OU CRÉÉS (Utilisateur) (8) - 206s
O61 - LFC: 2019/02/09 10:14:59 A . (..) -- C:\ProgramData\AVAST Software\Avast\Cache\InstallLocation\OneDriveSetup.exe [268]
O61 - LFC: 2019/02/06 00:48:23 A . (..) -- C:\Users\LENOVO\AppData\Roaming\nhm2\bin\xmr-stak-cpu\libhwloc-15.dll [1691504] {03E63209FAED806141C146807097F872}
O61 - LFC: 2019/02/10 13:54:27 A . (..) -- C:\Users\LENOVO\Desktop\ali C\Bluetooth\Blockchain Miner Pro.exe [9648640]
O61 - LFC: 2019/02/04 22:37:34 A . (..) -- C:\Users\LENOVO\Desktop\ali C\Bluetooth\BTCBYTEMINER.exe [13232640]
O61 - LFC: 2019/02/06 00:28:44 A . (.H-BIT d.o.o..) -- C:\Users\LENOVO\Desktop\ali C\Bluetooth\nhm_windows_2.0.3.0 (1).exe [64606664] {03E63209FAED806141C146807097F872}
O61 - LFC: 2019/02/04 22:56:30 A . (.Computta.com.) -- C:\Users\LENOVO\Downloads\Computta_windows-x64_0_92.exe [75800560] {7B26EAFE7B1F663B7A8930695A353D27}
O61 - LFC: 2019/02/09 23:16:22 A . (.北京哈希章鱼科技有限公司.) -- C:\Users\LENOVO\Downloads\hashfish_1.4.0.1091.exe [16911056] {062820B4032BA0BB194BB09E1C728FED}
O61 - LFC: 2019/02/05 15:52:32 A . (..) -- C:\Users\LENOVO\Downloads\seed4me-vpn-1.0.46.exe [10825904] {00DE1B9DC4EAA6900D2B299969506B4D8A}
---\\ ASSOCIATION Shell Spawning (10) - 0s
O67 - Shell Spawning: <.bat>[HKLM\..\open\Command] (...) -- "%1" %* =>.Default.Value
O67 - Shell Spawning: <.cpl>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd>[HKLM\..\open\Command] (...) -- "%1" %* =>.Default.Value
O67 - Shell Spawning: <.com>[HKLM\..\open\Command] (...) -- "%1" %* =>.Default.Value
O67 - Shell Spawning: <.evt>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Ob.) -- C:\Windows\System32\eventvwr.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.exe>[HKLM\..\open\Command] (...) -- "%1" %* =>.Default.Value
O67 - Shell Spawning: <.html>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O67 - Shell Spawning: <.js>[HKLM\..\open\Command] (...) -- C:\Windows\System32\WScript.exe "%1" %* =>.Default.Value
O67 - Shell Spawning: <.reg>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.scr>[HKLM\..\open\Command] (...) -- "%1" /S =>.Default.Value
---\\ MENU DE DÉMARRAGE INTERNET (20) - 1s
O68 - StartMenuInternet: [64Bits][HKLM\..\Shell\open\Command] (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe =>.CRYPTOCOMPANY OÜ®
O68 - StartMenuInternet: [64Bits][HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O68 - StartMenuInternet: [64Bits][HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O68 - StartMenuInternet: [64Bits][HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O68 - StartMenuInternet: [64Bits][HKLM\..\Shell\open\Command] (.Moonchild Productions - Pale Moon web browser.) -- C:\Program Files\Pale Moon\palemoon.exe =>.Markus Straver®
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ShowIconsCommand] (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe =>.The Chromium and CryptoTab Browser Authors
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ShowIconsCommand] (.Moonchild Productions - PaleMoon Helper.) -- C:\Program Files\Pale Moon\uninstall\helper.exe =>.Moonchild Productions
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ReinstallCommand] (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe =>.The Chromium and CryptoTab Browser Authors
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ReinstallCommand] (.Moonchild Productions - PaleMoon Helper.) -- C:\Program Files\Pale Moon\uninstall\helper.exe =>.Moonchild Productions
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\HideIconsCommand] (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe =>.The Chromium and CryptoTab Browser Authors
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\HideIconsCommand] (.Moonchild Productions - PaleMoon Helper.) -- C:\Program Files\Pale Moon\uninstall\helper.exe =>.Moonchild Productions
---\\ RECHERCHE D'INFECTION SUR LES NAVIGATEURS (3) - 12s
O69 - SBI: SearchScopes [HKCU] [64Bits]{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com/ =>.Bing.com
O69 - SBI: SearchScopes [HKCU] [64Bits]{C0C3A6C6-03BC-4195-8FCB-AEA091301353} - (Yahoo!) - http://maktoob.search.yahoo.com/ =>.Yahoo! Inc.
O69 - SBI: SearchScopes [HKLM] [64Bits]{0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (@ieframe.dll,-12512) - http://www.bing.com/ =>.Bing.com
---\\ ÉNUMÈRE LES SERVICES DÉMARRÉS PAR Svchost (49) - 3s
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\WINDOWS\System32\certprop.dll [188928] =>.Microsoft Corporation
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [188928] =>.Microsoft Corporation
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [271360] =>.Microsoft Corporation
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [1267712] =>.Microsoft Corporation
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\IKEEXT.DLL [990720] =>.Microsoft Corporation
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll [786432] =>.Microsoft Corporation
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\Windows\System32\seclogon.dll [30720] =>.Microsoft Corporation
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [150528] =>.Microsoft Corporation
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [109568] =>.Microsoft Corporation
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [889344] =>.Microsoft Corporation
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [224256] =>.Microsoft Corporation
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [396800] =>.Microsoft Corporation
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [397312] =>.Microsoft Corporation
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [119808] =>.Microsoft Corporation
O83 - Search Svchost Services: InstallService (InstallService) . (.Microsoft Corporation - InstallService.) -- C:\Windows\System32\InstallService.dll [1487360] =>.Microsoft Corporation
O83 - Search Svchost Services: LxpSvc (LxpSvc) . (.Microsoft Corporation - Fournit une prise en charge de l'infrastruc.) -- C:\Windows\System32\LanguageOverlayServer.dll [199680] =>.Microsoft Corporation
O83 - Search Svchost Services: shpamsvc (shpamsvc) . (.Microsoft Corporation - SharedPC.AccountManager.) -- C:\Windows\System32\Windows.SharedPC.AccountManager.dll [195584] =>.Microsoft Corporation
O83 - Search Svchost Services: PushToInstall (PushToInstall) . (.Microsoft Corporation - PushToInstall.) -- C:\Windows\System32\PushToInstall.dll [262144] =>.Microsoft Corporation
O83 - Search Svchost Services: XblGameSave (XblGameSave) . (.Microsoft Corporation - Xbox Live Game Save Service.) -- C:\Windows\System32\XblGameSave.dll [1308672] =>.Microsoft Corporation
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Micro.) -- C:\Windows\System32\NcaSvc.dll [167936] =>.Microsoft Corporation
O83 - Search Svchost Services: DmEnrollmentSvc (DmEnrollmentSvc) . (.Microsoft Corporation - DLL Windows Management Service.) -- C:\Windows\System32\Windows.Internal.Management.dll [827392] =>.Microsoft Corporation
O83 - Search Svchost Services: XblAuthManager (XblAuthManager) . (.Microsoft Corporation - Xbox Live Auth Manager.) -- C:\Windows\System32\XblAuthManager.dll [1115648] =>.Microsoft Corporation
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [402944] =>.Microsoft Corporation
O83 - Search Svchost Services: NaturalAuthentication (NaturalAuthentication) . (.Microsoft Corporation - Service d’authentification naturelle.) -- C:\Windows\System32\NaturalAuth.dll [824832] =>.Microsoft Corporation
O83 - Search Svchost Services: NetSetupSvc (NetSetupSvc) . (.Microsoft Corporation - Service Configuration du réseau.) -- C:\Windows\System32\NetSetupSvc.dll [335360] =>.Microsoft Corporation
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\Windows\System32\wlidsvc.dll [2247680] =>.Microsoft Corporation
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d’installation de périphérique.) -- C:\Windows\System32\DeviceSetupManager.dll [235520] =>.Microsoft Corporation
O83 - Search Svchost Services: UserManager (UserManager) . (.Microsoft Corporation - UserMgr.) -- C:\Windows\System32\usermgr.dll [1027584] =>.Microsoft Corporation
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [69632] =>.Microsoft Corporation
O83 - Search Svchost Services: XboxGipSvc (XboxGipSvc) . (.Microsoft Corporation - Xbox Gip Management Service.) -- C:\Windows\System32\XboxGipSvc.dll [58880] =>.Microsoft Corporation
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [166912] =>.Microsoft Corporation
O83 - Search Svchost Services: TokenBroker (TokenBroker) . (.Microsoft Corporation - Broker à jetons.) -- C:\Windows\System32\TokenBroker.dll [1395200] =>.Microsoft Corporation
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Service de géolocalisation.) -- C:\Windows\System32\lfsvc.dll [44544] =>.Microsoft Corporation
O83 - Search Svchost Services: Irmon (Irmon) . (.Microsoft Corporation - Moniteur infrarouge.) -- C:\Windows\System32\irmon.dll [24576] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [104960] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d’accès à dista.) -- C:\Windows\System32\rasmans.dll [933888] =>.Microsoft Corporation
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [497664] =>.Microsoft Corporation
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\Sens.dll [73216] =>.Microsoft Corporation
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\Windows\System32\ipnathlp.dll [604672] =>.Microsoft Corporation
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [308224] =>.Microsoft Corporation
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\System32\wuaueng.dll [2904064] =>.Microsoft Corporation
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [1374208] =>.Microsoft Corporation
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [613376] =>.Microsoft Corporation
O83 - Search Svchost Services: dmwappushservice (dmwappushservice) . (.Microsoft Corporation - dmwappushsvc.) -- C:\Windows\System32\dmwappushsvc.dll [57856] =>.Microsoft Corporation
O83 - Search Svchost Services: wisvc (wisvc) . (.Microsoft Corporation - Paramètres de vol.) -- C:\Windows\System32\flightsettings.dll [858112] =>.Microsoft Corporation
O83 - Search Svchost Services: WpnService (WpnService) . (.Microsoft Corporation - Service du système de notifications Push Wi.) -- C:\Windows\System32\WpnService.dll [280576] =>.Microsoft Corporation
O83 - Search Svchost Services: XboxNetApiSvc (XboxNetApiSvc) . (.Microsoft Corporation - Xbox Live Networking Service.) -- C:\Windows\System32\XboxNetApiSvc.dll [1148928] =>.Microsoft Corporation
O83 - Search Svchost Services: UsoSvc (UsoSvc) . (.Microsoft Corporation - Mettre à jour la session Orchestrator Core.) -- C:\Windows\System32\usocore.dll [1373696] =>.Microsoft Corporation
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll [197120] =>.Microsoft Corporation
---\\ LISTE DES EXCEPTIONS DU PAREFEU WINDOWS (49) - 22s
O87 - FAEL: "UDP Query User{665CCC2F-4A3C-4824-AA37-2F4965B495D1}C:\users\lenovo\desktop\mamcom tv 1.1.6\mamcom tv.exe" [In-None-P17-TRUE] .(...) -- C:\users\lenovo\desktop\mamcom tv 1.1.6\mamcom tv.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "TCP Query User{EF4F01CB-5E66-4387-AEF5-8B875B8DFB1F}C:\users\lenovo\desktop\mamcom tv 1.1.6\mamcom tv.exe" [In-None-P6-TRUE] .(...) -- C:\users\lenovo\desktop\mamcom tv 1.1.6\mamcom tv.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "{5F5F4E6F-98BE-4062-ADB2-13F2055F77D5}" [In-None-P6-TRUE] .(...) -- C:\users\lenovo\desktop\mamcom tv 1.1.5\mamcom tv.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "{5FA47862-E146-45F8-BBB6-F613DF84A85F}" [In-None-P17-TRUE] .(...) -- C:\users\lenovo\desktop\mamcom tv 1.1.5\mamcom tv.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "UDP Query User{7497ECF7-7926-47F1-9185-36D41D88D881}C:\users\lenovo\desktop\mamcom tv 1.1.5\mamcom tv.exe" [In-None-P17-TRUE] .(...) -- C:\users\lenovo\desktop\mamcom tv 1.1.5\mamcom tv.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "TCP Query User{07BE5088-5A0F-4CBD-8436-25C1A934CE32}C:\users\lenovo\desktop\mamcom tv 1.1.5\mamcom tv.exe" [In-None-P6-TRUE] .(...) -- C:\users\lenovo\desktop\mamcom tv 1.1.5\mamcom tv.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "{F4695CEC-814D-4D29-8775-2178FD06DEBB}" [In-None-P6-TRUE] .(...) -- C:\Users\LENOVO\Desktop\EmbratoriaG6.5.2\libs.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "{37BF8BF8-15E7-429C-8AF7-EB6EBE9645E3}" [In-None-P17-TRUE] .(...) -- C:\Users\LENOVO\Desktop\EmbratoriaG6.5.2\libs.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "{1C07545A-C8BA-4B3B-B252-FC2E744BAF8D}" [In-None-P6-TRUE] .(...) -- C:\Users\LENOVO\Desktop\EmbratoriaG6.5.2\libs.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "{E4B40355-A48E-48B1-B287-4666B07636CC}" [In-None-P17-TRUE] .(...) -- C:\Users\LENOVO\Desktop\EmbratoriaG6.5.2\libs.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "{5DF7F543-F73C-43C5-BEC9-6F81732C7D86}" [In-None-P6-TRUE] .(...) -- C:\Users\LENOVO\Desktop\HeinInstaller Libs\EmbratoriaG6.5.2\libs.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "{18CA3953-3B60-4815-83B7-A69E10DFBBA0}" [In-None-P17-TRUE] .(...) -- C:\Users\LENOVO\Desktop\HeinInstaller Libs\EmbratoriaG6.5.2\libs.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "{13220876-1B29-4BDC-BFD7-CDCE3B19155A}" [Out-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Innovative Solutions\VPN PRO\vpnpro.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "{61CAB7A5-3F44-4C54-A5C9-4FEF15FE3E69}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Hide My IP 6\HideMyIP.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "{EFF98D3A-D119-4435-9BC8-45209A89E765}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Hide My IP 6\HideMyIpSrv.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "{6BE269FC-1329-427C-8274-6ACAD1421208}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Hide My IP 6\hideipsh.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "{7AC9A61E-69AE-40D8-B7D9-C981AC7C1873}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Hide My IP 6\hideipshp.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "{44C4AD91-2EAA-4222-AA29-DF40CE2B3C2F}" [In-None-P6-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\LENOVO\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O87 - FAEL: "{61FD3791-A494-4D4A-893E-CAEE4C34D805}" [In-None-P17-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\LENOVO\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O87 - FAEL: "TCP Query User{77F846D3-3745-4D4D-98AF-954660DBB2E7}C:\program files (x86)\surfeasy vpn\client\surfeasyvpn.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\surfeasy vpn\client\surfeasyvpn.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "UDP Query User{8D005296-8929-43D8-9A0B-5BD6CC36BFCE}C:\program files (x86)\surfeasy vpn\client\surfeasyvpn.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\surfeasy vpn\client\surfeasyvpn.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "{EC30FE69-41B8-41DD-9A53-C621C443BC6D}" [In-None-P6-TRUE] .(...) -- C:\Users\LENOVO\Desktop\EmbratoriaG7\libs.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "{4F51A740-7A69-4306-AB9F-16BD535CC203}" [In-None-P17-TRUE] .(...) -- C:\Users\LENOVO\Desktop\EmbratoriaG7\libs.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "{4388F8C3-B115-4627-AA7D-3904736CF156}" [In-None-P6-TRUE] .(...) -- C:\Users\LENOVO\Desktop\g\EmbratoriaG7\libs.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "{F1E44F0E-1B37-486C-998B-F69E3402E1A3}" [In-None-P6-TRUE] .(...) -- C:\Users\LENOVO\Desktop\g\EmbratoriaG7\libs.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "{DBA2B264-B292-4457-AC46-BE516BDAE30C}" [In-None-P17-TRUE] .(...) -- C:\Users\LENOVO\Desktop\g\EmbratoriaG7\libs.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "{CAA71565-C3FA-4943-B939-C401AD4288D7}" [In-None-P17-TRUE] .(...) -- C:\Users\LENOVO\Desktop\g\EmbratoriaG7\libs.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "TCP Query User{9478EEF2-43EB-42E1-8E9C-92CCBAF10D42}C:\program files (x86)\surfeasy vpn\client\surfeasyvpn.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\surfeasy vpn\client\surfeasyvpn.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "UDP Query User{5B808C08-DA59-49B3-8E01-3445A0705C5D}C:\program files (x86)\surfeasy vpn\client\surfeasyvpn.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\surfeasy vpn\client\surfeasyvpn.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "{45C6DDD7-B765-4334-9720-662CB6701D26}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Baidu WiFiHotspot\WifiHotspot.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "{3BC7BA6A-EFA1-41E7-AD42-8EFACFCEE3A6}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Baidu WiFiHotspot\WifiHotspot.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "TCP Query User{6F8FCB6A-7120-4006-AD24-DC1CF2025C8C}C:\program files (x86)\connectify\connectify.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\connectify\connectify.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "UDP Query User{BDFD2350-57FE-4406-B392-022A088A39AA}C:\program files (x86)\connectify\connectify.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\connectify\connectify.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "{E37C1E29-8770-41A9-AFDA-B5E92AC76CBB}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Virtual WiFi Router\VirtualWiFiRouterLibrary.dll (.not file.) =>.SUP.Orphan
O87 - FAEL: "{12C60051-0BB4-4473-8C2D-44D4AF4FF9DD}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Virtual WiFi Router\VirtualWiFiRouterLibrary.dll (.not file.) =>.SUP.Orphan
O87 - FAEL: "TCP Query User{2290E7BD-DF4D-46CB-A677-2043A446AC92}C:\users\lenovo\desktop\ali c\embratoria_g10\libsg10.exe" [In-None-P6-TRUE] .(...) -- C:\users\lenovo\desktop\ali c\embratoria_g10\libsg10.exe
O87 - FAEL: "UDP Query User{9FECBDF4-3E2C-4C6E-8969-F603B0FE4BB8}C:\users\lenovo\desktop\ali c\embratoria_g10\libsg10.exe" [In-None-P17-TRUE] .(...) -- C:\users\lenovo\desktop\ali c\embratoria_g10\libsg10.exe
O87 - FAEL: "{B58300A9-C615-40B6-ABDD-63F9170C1D06}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\VPN Unlimited\vpn-unlimited.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "{CCE3DD97-6390-4E7F-9F2D-FE0BE4CF9EB1}" [Out-None-P17-TRUE] .(...) -- C:\Program Files (x86)\VPN Unlimited\vpn-unlimited.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "{BAE65B27-5FE7-4313-BB77-1B8ABB8198CE}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\VPN Unlimited\openvpn.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "{B59E6FE4-0854-4EB9-8A97-7A58D123AAB2}" [Out-None-P17-TRUE] .(...) -- C:\Program Files (x86)\VPN Unlimited\openvpn.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "{1B40E457-C233-4C05-A0F8-F54FF3A4D3BF}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe =>.VMware, Inc.®
O87 - FAEL: "{18C00285-4142-4F41-BCB2-2FF8B4138315}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe =>.VMware, Inc.®
O87 - FAEL: "{F615DFE1-B406-4C89-930C-3534BC5892E4}" [In-None-P6-TRUE] .(.北京哈希章鱼科技有限公司 - HashFish.) -- C:\Users\LENOVO\AppData\Roaming\HashFish\HashFish.exe {062820B4032BA0BB194BB09E1C728FED}
O87 - FAEL: "{903C25B5-BF2B-4B2E-A3B0-584CB631BEA5}" [In-None-P17-TRUE] .(.北京哈希章鱼科技有限公司 - HashFish.) -- C:\Users\LENOVO\AppData\Roaming\HashFish\HashFish.exe {062820B4032BA0BB194BB09E1C728FED}
O87 - FAEL: "{5B1CB815-A473-4251-BF96-96F79B34D1F3}" [In-None-P6-TRUE] .(.北京哈希章鱼科技有限公司 - HashFish.) -- C:\Users\LENOVO\AppData\Roaming\HashFish\bin\HFHelper32.exe {062820B4032BA0BB194BB09E1C728FED}
O87 - FAEL: "{64CFF568-DA43-4AC1-BE6B-4E7FF072EBAC}" [In-None-P17-TRUE] .(.北京哈希章鱼科技有限公司 - HashFish.) -- C:\Users\LENOVO\AppData\Roaming\HashFish\bin\HFHelper32.exe {062820B4032BA0BB194BB09E1C728FED}
O87 - FAEL: "{0E16B14F-D72E-4C60-A6FA-6BDCAE26A9E5}" [In-None-P6-TRUE] .(.北京哈希章鱼科技有限公司 - HashFish.) -- C:\Users\LENOVO\AppData\Roaming\HashFish\bin\HFHelper64.exe {062820B4032BA0BB194BB09E1C728FED}
O87 - FAEL: "{AC362C57-243D-4828-9939-1120AC7E59DC}" [In-None-P17-TRUE] .(.北京哈希章鱼科技有限公司 - HashFish.) -- C:\Users\LENOVO\AppData\Roaming\HashFish\bin\HFHelper64.exe {062820B4032BA0BB194BB09E1C728FED}
---\\ CODES PRODUITS LOGICIELS (3) - 3s
O90 - PUC: "049187A914CAE5D4E8E1670AB419F69B" [HKLM] . (.Helium.)
O90 - PUC: "15D4EEA0756304F46A98354392ACEEC0" [HKLM] . (.Virtual Router Plus.) -- C:\WINDOWS\Installer\{0AEE4D51-3657-4F40-A689-533429CAEE0C}\ARPPRODUCTICON.exe
O90 - PUC: "166F59DC4C5A5F446AAACEDD192C1491" [HKLM] . (.WinZip 22.0.) -- C:\WINDOWS\Installer\{CD95F661-A5C4-44F5-A6AA-ECDD91C24119}\ARPPRODUCTICON.exe
---\\ PACKAGES WINDOWS INSTALLER (16) - 47s
[MD5.2C3787E8787B8275CD023F21735DB76D] [WIS][2017/03/20 16:20:13] (.Skype Technologies S.A. - Skype.) -- C:\WINDOWS\Installer\17437fb.msi [25432064] =>.Skype Technologies S.A.
[MD5.D35B45B6EE36005243203FAC496125FB] [WIS][2018/12/19 21:47:51] (.Google Inc. - Google Update Helper.) -- C:\WINDOWS\Installer\1a46d2e.msi [40960] =>.Google Inc.
[MD5.958C66E83252BE404063ED4FEC5D7520] [WIS][2018/03/03 23:15:50] (.Corel Corporation - Utilitaire de Compression WinZip.) -- C:\WINDOWS\Installer\21efc98.msi [58131968] =>.Corel Corporation
[MD5.A6B96516D619D33C470E3CA09F0EF1C5] [WIS][2019/02/09 22:44:16] (.VMware, Inc. - VMware Workstation.) -- C:\WINDOWS\Installer\2bb7286.msi [505221120] =>.VMware, Inc.
[MD5.4ABD366D85D8E2512C99DBC5E9F2BBFB] [WIS][2018/06/06 18:20:06] (.ClockworkMod.) -- C:\WINDOWS\Installer\37ddc4.msi [18114048] =>.ClockworkMod
[MD5.CC0BB26820D3A999D032DE6E89290D91] [WIS][2018/01/28 21:57:14] (.Runxia Electronics - Virtual Router Plus.) -- C:\WINDOWS\Installer\3f9970.msi [1243136] =>.Runxia Electronics
[MD5.7E57B1876A57979197D23A22CECED5E5] [WIS][2019/02/05 14:30:16] (.Betternet Technologies Inc. - Betternet for Windows 4.1.1.) -- C:\WINDOWS\Installer\45d88f.msi [12636160] =>.Betternet Technologies Inc.
[MD5.B446C0DA35323D45DBD037E0E69AC275] [WIS][2017/09/11 14:43:52] (.Apple Inc. - Apple Application Support Installer.) -- C:\WINDOWS\Installer\468a1e4.msi [45940736] =>.Apple Inc.
[MD5.CD4D479C497DD935952F8AF29FA6224C] [WIS][2017/09/11 14:43:54] (.Apple Inc. - Apple Application Support Installer.) -- C:\WINDOWS\Installer\468a38e.msi [50974720] =>.Apple Inc.
[MD5.4A1DD7237D5264C781FCDE1AE347383E] [WIS][2017/09/08 12:25:00] (.Apple Inc. - Apple Mobile Device Support Installer.) -- C:\WINDOWS\Installer\468a3d4.msi [14041088] =>.Apple Inc.
[MD5.8DCF5C9EAACDAF4568220D103F393DEA] [WIS][2013/10/01 18:19:22] (.Apple Inc. - [ProductName] Installer.) -- C:\WINDOWS\Installer\828ac.msi [2682368] =>.Apple Inc.
[MD5.28E0C740B938DF4C90DAFE654BC0F64A] [WIS][2017/04/29 20:03:01] (.Canneverbe Limited - CDBurnerXP 4.5.7.6499 Windows Installer.) -- C:\WINDOWS\Installer\d4ba99.msi [8937472] =>.Canneverbe Limited
[MD5.0EF6618EE65ACB6263FB4AD78D706093] [WIS][2017/09/11 16:19:46] (.Apple Inc. - iTunes Installer.) -- C:\WINDOWS\Installer\f6feb.msi [159580160] =>.Apple Inc.
[MD5.FCA1EEB4107FF4AA9DCB6FA2371A6837] [WIS][2011/06/06 21:52:05] (.Adobe Systems Incorporated - ADOBER~1.0Adobe Reader X (10.0.1).) -- C:\WINDOWS\Installer\fafdb.msi [2332672] =>.Adobe Systems Incorporated
[MD5.54C4A1CA2A85BB1FA10553CCF5A022C3] [WIS][2017/03/19 23:51:35] (.Google Inc. - Google Update Helper.) -- C:\WINDOWS\Installer\fafe2.msi [25600] =>.Google Inc.
[MD5.39A573338A47038E9AC75E7D257BDC48] [WIS][2012/07/28 02:20:55] (.Adobe Systems, Incorporated.) -- C:\WINDOWS\Installer\fafdc.msp [13123584] =>.SUP.Obsolete.Adobe
---\\ RÉCAPITULATIF DES ÉLÉMENTS TROUVÉS SUR VOTRE STATION (12) - 0s
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>Trojan.Agent
https://nicolascoolman.eu/2017/09/12/origine-lignes-orphelines/ =>.SUP.Orphan
https://nicolascoolman.eu/2017/03/12/superfluous-lavasoftwebcompanion/ =>PUP.Optional.LavasoftWebCompanion
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>BitTorrent (P2P)
https://nicolascoolman.eu/2017/03/11/pup-optional-crossrider/ =>Adware.CrossRider
https://nicolascoolman.eu/2017/09/19/adware-installcore-3/ =>Adware.InstallCore
https://nicolascoolman.eu/2017/03/13/superfluous-bytefence/ =>.SUP.ByteFence
https://nicolascoolman.eu/2017/02/02/hacktool-autokms/ =>HackTool.AutoKMS
https://nicolascoolman.eu/2017/02/16/hacktool-kmspico/ =>HackTool.KMSpico
https://nicolascoolman.eu/2017/03/02/adware-suspect/ =>Adware.Suspect
https://nicolascoolman.eu/2017/03/30/adware-graftor/ =>PUP.Optional.Graftor
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Obsolete.Adobe
~ Unselected Options: NoFilter, MR, O38, O40, O108, O82, O109, O88,
~ End of the scan, 7186 items in 10mn45s (1632)(0)
~ Démarré par LENOVO (Administrator) (2019/02/11 21:13:59)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Certificate ZHPDiag: Legal
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\LENOVO\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\LENOVO\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Démarrage du système: Normal (Normal boot)
Windows 10 Pro, 64-bit (Build 17134) =>.Microsoft Corporation
---\\ NAVIGATEURS INTERNET (4) - 0s
~ GCIE: Google Chrome v71.0.3578.98
~ MFIE: Mozilla Firefox 45.0.2 (x86 en-US)
~ MSIE: Microsoft Edge v40
~ MSIE: Internet Explorer v11.523.17134.0
---\\ INFORMATIONS SUR LES PRODUITS WINDOWS (9) - 0s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
~ Windows(R) Operating System, VOLUME_KMSCLIENT channel
Windows ID Activation : OK
~ Windows Partial Key : T83GX
Windows License : OK
Expiration Licence Windows : 243510 minute(s) (170 jour(s))
~ Windows Remaining Initializations Number : 1001
Windows Automatic Updates : OK
---\\ LOGICIELS DE PROTECTION (4) - 6s
Avast Free Antivirus v19.2.2364 (Protection)
SMADAV version 11.3 v11.3 (Protection)
Windows Defender W10 (Activate) (Protection)
Malwarebytes version 3.7.1.2839 v3.7.1.2839 (Protection)
---\\ SURVEILLANCE LOGICIEL (2) - 6s
~ Adobe Flash Player 32 PPAPI (Surveillance)
~ Adobe Reader X (Surveillance)
---\\ LOGICIELS DE PARTAGE P2P (1) - 6s
~ µTorrent v3.5.5.44994 (P2P)
---\\ INFORMATIONS SUR LE SYSTÈME (6) - 0s
~ Operating System: Intel64 Family 6 Model 69 Stepping 1, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 4088.172 MB (11% free) : OK =>.RAM Value
System Restore: Activé (Enable)
System drive C: has 5 GB (3%) free of 158 GB : ATTENTION =>Warning Disk Space
---\\ MODE DE CONNEXION AU SYSTÈME (3) - 0s
~ Computer Name: DESKTOP-4E8LQS4
~ User Name: LENOVO
~ Logged in as Administrator
---\\ ÉNUMÉRATION DES UNITÉS DE STOCKAGE (3) - 0s
~ Drive C: has 5 GB free of 158 GB (System)
~ Drive E: has 23 GB free of 100 GB
~ Drive F: has 10 GB free of 216 GB
---\\ ÉTAT DU CENTRE DE SÉCURITÉ WINDOWS (7) - 0s
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM64\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
---\\ RECHERCHE PARTICULIÈRE DE FICHIERS GÉNÉRIQUES (25) - 2s
[MD5.E4A81EDDFF8B844D85C8B45354E4144E] - 06/07/2018 - (.Microsoft Corporation - Explorateur Windows.) -- C:\WINDOWS\Explorer.exe [3932672] =>.Microsoft Windows®
[MD5.73C519F050C20580F8A62C849D49215A] - 12/04/2018 - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\WINDOWS\System32\rundll32.exe [69632] =>.Microsoft Corporation
[MD5.A58B0CB069DA7840B935872ADCD7F0C2] - 12/04/2018 - (.Microsoft Corporation - Application de démarrage de Windows.) -- C:\WINDOWS\System32\Wininit.exe [366792] =>.Microsoft Corporation
[MD5.0D02868B0E1DFCD934F2417231BBCC79] - 01/01/2019 - (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\WINDOWS\System32\wininet.dll [4939776] =>.Microsoft Corporation
[MD5.749CA1F1B638E4E4A8A1F0990377012F] - 08/09/2018 - (.Microsoft Corporation - Application d’ouverture de session Windows.) -- C:\WINDOWS\System32\Winlogon.exe [677888] =>.Microsoft Corporation
[MD5.7A377800FF15426B7D89768A8727CFEF] - 12/04/2018 - (.Microsoft Corporation - Bibliothèque de licences.) -- C:\WINDOWS\System32\sppcomapi.dll [415232] =>.Microsoft Corporation
[MD5.86FE93AFDD8B2BCD389E30839A652181] - 09/11/2018 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\WINDOWS\System32\dnsapi.dll [766704] =>.Microsoft Windows®
[MD5.B668D6FD24465E11155B47808553DA61] - 09/11/2018 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\WINDOWS\Syswow64\dnsapi.dll [573504] =>.Microsoft Windows®
[MD5.80BC3B8D2055BC38ECD84769C074C18F] - 12/04/2018 - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) -- C:\WINDOWS\System32\fr-FR\user32.dll.mui [19968] =>.Microsoft Corporation
[MD5.4DCCC3E02A22ED4A4ADB11386F226071] - 12/04/2018 - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) -- C:\WINDOWS\System32\drivers\AFD.sys [626592] =>.Microsoft Corporation
[MD5.90AB4ED8EBD72A1C096A40CC35404B91] - 12/04/2018 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\WINDOWS\System32\drivers\atapi.sys [28568] =>.Microsoft Corporation
[MD5.D3CBC6DE5955D014407C7BD1FFE80F00] - 12/04/2018 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\WINDOWS\System32\drivers\Cdfs.sys [93696] =>.Microsoft Corporation
[MD5.6834DBBA2A1DBA5B9B6360D0B9A3CBB5] - 15/06/2018 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\WINDOWS\System32\drivers\Cdrom.sys [159744] =>.Microsoft Corporation
[MD5.8A1C10410FDA4287A76EC5A64371E221] - 15/06/2018 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\WINDOWS\System32\drivers\DfsC.sys [141312] =>.Microsoft Corporation
[MD5.DED74127C7A2266715C0B8EA2EE75214] - 12/04/2018 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\WINDOWS\System32\drivers\HDAudBus.sys [86016] =>.Microsoft Corporation
[MD5.DA179667B8CEC22E4ECBBF4210DC0E35] - 12/04/2018 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\WINDOWS\System32\drivers\i8042prt.sys [105984] =>.Microsoft Corporation
[MD5.7408B83959A4B8271EF67FD06A6B366B] - 12/04/2018 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\System32\drivers\IpNat.sys [214528] =>.Microsoft Corporation
[MD5.6C321DB795F5EF5FF870737177825FC9] - 20/09/2018 - (.Microsoft Corporation - Minirdr SMB Windows NT.) -- C:\WINDOWS\System32\drivers\MRxSmb.sys [500536] =>.Microsoft Corporation
[MD5.A6C01E478CD9ED26F6FB7ABCF9A2C773] - 03/08/2018 - (.Microsoft Corporation - MBT Transport driver.) -- C:\WINDOWS\System32\drivers\netBT.sys [311296] =>.Microsoft Corporation
[MD5.D17E3E9423FC7493DECD896B699E5407] - 01/01/2019 - (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\WINDOWS\System32\drivers\ntfs.sys [2421288] =>.Microsoft Corporation
[MD5.13B175715A4391E4E5D2AB2EBC8CDBB5] - 12/04/2018 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\WINDOWS\System32\drivers\Parport.sys [98816] =>.Microsoft Corporation
[MD5.775ED7E51B58CF9EB415A1DBA540DACF] - 12/04/2018 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [106496] =>.Microsoft Corporation
[MD5.3DE4216324BE32FC3AF7667AE2406EE5] - 15/06/2018 - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RD.) -- C:\WINDOWS\System32\drivers\rdpdr.sys [182784] =>.Microsoft Corporation
[MD5.16071C42E21CE3378FA449322FB9AB1D] - 12/04/2018 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\WINDOWS\System32\drivers\tdx.sys [121248] =>.Microsoft Corporation
[MD5.F0EE4E6028CCA58BEA9A04E7BEAB7DB4] - 12/04/2018 - (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\WINDOWS\System32\drivers\volsnap.sys [398240] =>.Microsoft Corporation
---\\ LISTE DES SERVICES (Non désactivés) (22) - 9s
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated®
O23 - Service: Apple Mobile Device Service (Apple Mobile Device Service) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe =>.Apple Inc.®
O23 - Service: Avast Antivirus (avast! Antivirus) . (.AVAST Software - Avast Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe =>.AVAST Software s.r.o.®
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe =>.Apple Inc.®
O23 - Service: Service CryptoTab Update (cryptobrowser) (cryptobrowser) . (.CRYPTOCOMPANY OU - CryptoTab Update.) - C:\Program Files (x86)\CryptoCompany\Update\CryptoTabUpdate.exe =>.CRYPTOCOMPANY OÜ®
O23 - Service: @C:\WINDOWS\system32\CxAudMsg64.exe,-100 (CxAudMsg) . (.Conexant Systems Inc. - Conexant Audio Message Service.) - C:\WINDOWS\system32\CxAudMsg64.exe =>.Conexant Systems Inc.
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
O23 - Service: HuaweiHiSuiteService64.exe (HuaweiHiSuiteService64.exe) . (. - HuaweiHiSuiteService.) - C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe =>.Huawei Technologies Co.,Ltd
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) . (.Intel Corporation - igfxCUIService Module.) - C:\WINDOWS\System32\igfxCUIService.exe =>.Intel Corporation
O23 - Service: Malwarebytes Service (MBAMService) . (.Malwarebytes - Malwarebytes Service.) - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe =>.Malwarebytes Corporation®
O23 - Service: Realtek Bluetooth Device Manager Service (RtkBtManServ) . (.Realtek Semiconductor Corp. - Realtek Bluetooth BTDevManager Service Appl.) - C:\Windows\RtkBtManServ.exe =>.Realtek Semiconductor Corp.®
O23 - Service: Conexant SmartAudio service (SAService) . (...) - C:\Windows\System32\SASrv.exe (.not file.) =>.Conexant Systems, Inc.
O23 - Service: Seed4.Me Service (Seed4.Me Service) . (.Seed4.Me - Seed4.Me VPN Client.) - C:\Program Files\Seed4.Me VPN\bin\Seed4.Me_service.exe {00DE1B9DC4EAA6900D2B299969506B4D8A} =>.Seed4.Me
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe =>.Microsoft Corporation®
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) . (.Synaptics Incorporated - 64-bit Synaptics Pointing Enhance Service.) - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe =>.Synaptics Incorporated®
O23 - Service: VMware Authorization Service (VMAuthdService) . (.VMware, Inc. - VMware Authorization Service.) - C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe =>.VMware, Inc.®
O23 - Service: VMware DHCP Service (VMnetDHCP) . (.VMware, Inc. - VMware VMnet DHCP service.) - C:\Windows\SysWOW64\vmnetdhcp.exe =>.VMware, Inc.®
O23 - Service: VMware USB Arbitration Service (VMUSBArbService) . (.VMware, Inc. - VMware USB Arbitration Service.) - C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe =>.VMware, Inc.®
O23 - Service: VMware NAT Service (VMware NAT Service) . (.VMware, Inc. - VMware NAT Service.) - C:\Windows\SysWOW64\vmnat.exe =>.VMware, Inc.®
O23 - Service: VMware Workstation Server (VMwareHostd) . (...) - C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe =>.VMware, Inc.®
O23 - Service: WinZip Compression Smart Monitor Service (WinZip Compression Smart Monitor Service) . (. - WinZip Compression Smart Monitor Service.) - C:\Program Files\WinZip\WinZip Smart Monitor\WinZip Compression Smart Monitor Service.exe =>.Corel Corporation®
O23 - Service: Wondershare Application Framework Service (WsAppService) . (.Wondershare - Wondershare Passport.) - C:\Program Files (x86)\Wondershare\WAF\2.4.2.223\WsAppService.exe =>.Wondershare Technology Co.,Ltd®
---\\ SERVICES NON MICROSOFT (SR=Démarré,SS=Stoppé) (136) - 55s
SR - Boot [12/04/2018] [ 107416] (3ware) . (.LSI.) - C:\WINDOWS\System32\drivers\3ware.sys =>.Microsoft Windows®
SR - Demand [08/12/2011] [ 29792] Lenovo Virtual Power Controlle (ACPIVPC) . (.Lenovo Corporation.) - C:\WINDOWS\System32\drivers\AcpiVpc.sys =>.Lenovo (Beijing) Limited®
SR - Auto [27/07/2012] [ 63960] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated®
SS - Demand [01/02/2019] [ 337408] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe =>.Adobe Systems Incorporated®
SR - Boot [12/04/2018] [ 1135520] (ADP80XX) . (.PMC-Sierra.) - C:\WINDOWS\System32\drivers\ADP80XX.SYS =>.Microsoft Windows®
SR - Boot [12/04/2018] [ 83360] (amdsata) . (.Advanced Micro Devices.) - C:\WINDOWS\System32\drivers\amdsata.sys =>.Microsoft Windows®
SR - Boot [12/04/2018] [ 259480] (amdsbs) . (.AMD Technologies Inc..) - C:\WINDOWS\System32\drivers\amdsbs.sys =>.Microsoft Windows®
SR - Boot [12/04/2018] [ 27032] (amdxata) . (.Advanced Micro Devices.) - C:\WINDOWS\System32\drivers\amdxata.sys =>.Microsoft Windows®
SR - Demand [21/07/2010] [ 305784] Alps Pointing-device Filter Driver (ApfiltrService) . (.Alps Electric Co., Ltd..) - C:\WINDOWS\System32\DRIVERS\Apfiltr.sys =>.Alps Electric Co., LTD.®
SR - Auto [07/09/2017] [ 83768] Apple Mobile Device Service (Apple Mobile Device Service) . (.Apple Inc..) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe =>.Apple Inc.®
SR - Boot [12/04/2018] [ 132000] Adaptec SAS/SATA-II RAID S (arcsas) . (.PMC-Sierra, Inc..) - C:\WINDOWS\System32\drivers\arcsas.sys =>.Microsoft Windows®
SR - Boot [08/02/2019] [ 37104] aswArDisk (aswArDisk) . (.AVAST Software.) - C:\WINDOWS\System32\drivers\aswArDisk.sys =>.AVAST Software s.r.o.®
SR - System [08/02/2019] [ 205400] aswArPot (aswArPot) . (.AVAST Software.) - C:\WINDOWS\System32\drivers\aswArPot.sys =>.AVAST Software s.r.o.®
SR - System [08/02/2019] [ 225680] aswbidsdriver (aswbidsdriver) . (.AVAST Software.) - C:\WINDOWS\System32\drivers\aswbidsdriver.sys =>.AVAST Software s.r.o.®
SR - Boot [08/02/2019] [ 196072] aswbidsh (aswbidsh) . (.AVAST Software.) - C:\WINDOWS\System32\drivers\aswbidsh.sys =>.AVAST Software s.r.o.®
SR - Boot [08/02/2019] [ 320696] aswblog (aswblog) . (.AVAST Software.) - C:\WINDOWS\System32\drivers\aswblog.sys =>.AVAST Software s.r.o.®
SR - Boot [08/02/2019] [ 57960] aswbuniv (aswbuniv) . (.AVAST Software.) - C:\WINDOWS\System32\drivers\aswbuniv.sys =>.AVAST Software s.r.o.®
SR - Boot [05/01/2019] [ 15488] aswElam (aswElam) . (.AVAST Software.) - C:\WINDOWS\System32\drivers\aswElam.sys =>.Microsoft Corporation®
SR - System [08/02/2019] [ 249456] aswHdsKe (aswHdsKe) . (.AVAST Software.) - C:\WINDOWS\System32\drivers\aswHdsKe.sys =>.AVAST Software s.r.o.®
SR - System [08/02/2019] [ 42288] aswKbd (aswKbd) . (.AVAST Software.) - C:\WINDOWS\System32\drivers\aswKbd.sys =>.AVAST Software s.r.o.®
SR - Auto [08/02/2019] [ 167304] aswMonFlt (aswMonFlt) . (.AVAST Software.) - C:\WINDOWS\System32\drivers\aswMonFlt.sys =>.AVAST Software s.r.o.®
SR - System [08/02/2019] [ 112312] aswRdr (aswRdr) . (.AVAST Software.) - C:\WINDOWS\System32\drivers\aswRdr2.sys =>.AVAST Software s.r.o.®
SR - Boot [08/02/2019] [ 87944] aswRvrt (aswRvrt) . (.AVAST Software.) - C:\WINDOWS\System32\drivers\aswRvrt.sys =>.AVAST Software s.r.o.®
SR - System [08/02/2019] [ 1034432] aswSnx (aswSnx) . (.AVAST Software.) - C:\WINDOWS\System32\drivers\aswSnx.sys =>.AVAST Software s.r.o.®
SR - System [08/02/2019] [ 474456] aswSP (aswSP) . (.AVAST Software.) - C:\WINDOWS\System32\drivers\aswSP.sys =>.AVAST Software s.r.o.®
SR - Auto [08/02/2019] [ 216784] aswStm (aswStm) . (.AVAST Software.) - C:\WINDOWS\System32\drivers\aswStm.sys =>.AVAST Software s.r.o.®
SR - Boot [08/02/2019] [ 379952] aswVmm (aswVmm) . (.AVAST Software.) - C:\WINDOWS\System32\drivers\aswVmm.sys =>.AVAST Software s.r.o.®
SR - Auto [08/02/2019] [ 357304] Avast Antivirus (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe =>.AVAST Software s.r.o.®
SS - Demand [08/02/2019] [ 57504] (AvastWscReporter) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\wsc_proxy.exe =>.AVAST Software s.r.o.®
SR - Boot [12/04/2018] [ 533912] QLogic Network Adapter VBD (b06bdrv) . (.QLogic Corporation.) - C:\WINDOWS\System32\drivers\bxvbda.sys =>.Microsoft Windows®
SR - Demand [12/04/2018] [ 9728] bcmfn2 Service (bcmfn2) . (...) - C:\WINDOWS\System32\drivers\bcmfn2.sys =>.Broadcom Corporation
SR - Auto [30/08/2011] [ 462184] Service Bonjour (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe =>.Apple Inc.®
SR - System [11/02/2019] [ 621928] VideoDriver service (CBB5C8FFF512) . (.VxDriver.) - C:\Windows\CBB5C8FFF512.sys =>Trojan.Agent =>Trojan.Agent
SR - Boot [12/04/2018] [ 321432] (cht4iscsi) . (.Chelsio Communications.) - C:\WINDOWS\System32\drivers\cht4sx64.sys =>.Microsoft Windows®
SR - Demand [12/04/2018] [ 1836952] Chelsio Virtual Bus Driver (cht4vbd) . (.Chelsio Communications.) - C:\WINDOWS\System32\drivers\cht4vx64.sys =>.Microsoft Windows®
SR - Demand [07/07/2016] [ 1560616] Conexant U (CnxtHdAudService) . (.Conexant Systems Inc..) - C:\WINDOWS\System32\drivers\CHDRT64.sys =>.Conexant Systems, Inc.®
SS - Demand [12/06/2017] [ 301496] Intel(R) Content Protection HECI Service (cphs) . (.Intel Corporation.) - C:\Windows\SysWOW64\IntelCpHeciSvc.exe =>.Intel(R) pGFX®
SR - Auto [02/02/2019] [ 185896] Service CryptoTab Update (cryptobrowser) (cryptobrowser) . (.CRYPTOCOMPANY OU.) - C:\Program Files (x86)\CryptoCompany\Update\CryptoTabUpdate.exe =>.CRYPTOCOMPANY OÜ®
SS - Demand [02/02/2019] [ 185896] Service CryptoTab Update (cryptobrowserm) (cryptobrowserm) . (.CRYPTOCOMPANY OU.) - C:\Program Files (x86)\CryptoCompany\Update\CryptoTabUpdate.exe =>.CRYPTOCOMPANY OÜ®
SS - Demand [24/01/2019] [ 431104] CryptoTab Browser Elevation Service (CryptoTabBrowserElevationService) . (.The Chromium and CryptoTab Browser Authors.) - C:\Program Files (x86)\CryptoTab Browser\Application\71.0.3578.98\elevation_service.exe =>.The Chromium and CryptoTab Browser Authors
SR - Auto [16/09/2015] [ 225624] @C:\WINDOWS\system32\CxAudMsg64.exe,-100 (CxAudMsg) . (.Conexant Systems Inc..) - C:\WINDOWS\system32\CxAudMsg64.exe =>.Conexant Systems, Inc.®
SR - Demand [05/09/2016] [ 131712] SAMSUNG Mobile USB Com (dg_ssudbus) . (.Samsung Electronics Co., Ltd..) - C:\WINDOWS\System32\DRIVERS\ssudbus.sys =>.Samsung Electronics CO., LTD.®
SR - Boot [12/04/2018] [ 3419032] QLogic 10 Gigabit Ethernet Ada (ebdrv) . (.QLogic Corporation.) - C:\WINDOWS\System32\drivers\evbda.sys =>.Microsoft Windows®
SR - System [08/01/2019] [ 153328] Malwarebytes Anti-Exploit (ESProtectionDriver) . (.Malwarebytes.) - C:\WINDOWS\system32\drivers\mbae64.sys =>.Malwarebytes Corporation®
SR - Demand [03/10/2012] [ 323920] ELAN PS/2 Port Input Device (ETD) . (.ELAN Microelectronics Corp..) - C:\WINDOWS\System32\DRIVERS\ETD.sys =>.ELAN Microelectronics Corporation®
SR - Demand [12/12/2018] [ 18944] HwHandSet_CompositeFilter (ew_usbccgpfilter) . (.Huawei Technologies Co., Ltd..) - C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys =>.Huawei Technologies Co., Ltd.
SR - Demand [21/08/2012] [ 33240] GEAR ASPI Filter Driver (GEARAspiWDM) . (.GEAR Software Inc..) - C:\WINDOWS\System32\DRIVERS\GEARAspiWDM.sys =>.GEAR Software Inc.®
SS - Demand [12/12/2018] [ 443872] Google Chrome Elevation Service (GoogleChromeElevationService) . (.Google Inc..) - C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\elevation_service.exe =>.Google Inc®
SR - Auto [19/03/2017] [ 153752] Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SS - Demand [19/03/2017] [ 153752] Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SR - Auto [02/11/2018] [ 84752] VMware hcmon (hcmon) . (.VMware, Inc..) - C:\WINDOWS\System32\DRIVERS\hcmon.sys =>.VMware, Inc.®
SR - Boot [12/04/2018] [ 64408] (HpSAMD) . (.Hewlett-Packard Company.) - C:\WINDOWS\System32\drivers\HpSAMD.sys =>.Microsoft Windows®
SR - Auto [12/12/2018] [ 190784] HuaweiHiSuiteService64.exe (HuaweiHiSuiteService64.exe) . (...) - C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe =>.Huawei Technologies Co.,Ltd
SR - Demand [12/04/2018] [ 36864] Intel Serial IO GPIO Controlle (iagpio) . (.Intel(R) Corporation.) - C:\WINDOWS\System32\drivers\iagpio.sys =>.Intel(R) Corporation
SR - Demand [12/04/2018] [ 91648] Intel(R) Serial IO I2C Host Cont (iai2c) . (.Intel(R) Corporation.) - C:\WINDOWS\System32\drivers\iai2c.sys =>.Intel(R) Corporation
SR - Demand [12/04/2018] [ 79360] Intel(R) S (iaLPSS2i_GPIO2) . (.Intel Corporation.) - C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys =>.Intel Corporation
SR - Demand [12/04/2018] [ 88576] In (iaLPSS2i_GPIO2_BXT_P) . (.Intel Corporation.) - C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys =>.Intel Corporation
SR - Demand [12/04/2018] [ 171520] Intel(R) Seria (iaLPSS2i_I2C) . (.Intel Corporation.) - C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys =>.Intel Corporation
SR - Demand [12/04/2018] [ 174592] Intel( (iaLPSS2i_I2C_BXT_P) . (.Intel Corporation.) - C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys =>.Intel Corporation
SR - Demand [12/04/2018] [ 38128] Intel(R) Serial IO (iaLPSSi_GPIO) . (.Intel Corporation.) - C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys =>.Intel Corporation - Client Components Group®
SR - Demand [12/04/2018] [ 113152] Intel(R) Serial IO I (iaLPSSi_I2C) . (.Intel Corporation.) - C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys =>.Intel Corporation
SR - Boot [12/04/2018] [ 885144] Intel Chipset SATA RAI (iaStorAVC) . (.Intel Corporation.) - C:\WINDOWS\System32\drivers\iaStorAVC.sys =>.Microsoft Windows®
SR - Boot [12/04/2018] [ 412064] Intel RAID Controller Wi (iaStorV) . (.Intel Corporation.) - C:\WINDOWS\System32\drivers\iaStorV.sys =>.Microsoft Windows®
SR - Demand [12/04/2018] [ 526232] Mellanox InfiniBand Bus/A (ibbus) . (.Mellanox.) - C:\WINDOWS\System32\drivers\ibbus.sys =>.Microsoft Windows®
SR - Auto [17/10/2016] [ 223464] IDMWFP (IDMWFP) . (.Tonec Inc..) - C:\WINDOWS\System32\DRIVERS\idmwfp.sys =>.Tonec Inc.®
SR - Demand [12/06/2017] [ 7970232] (igfx) . (.Intel Corporation.) - C:\WINDOWS\System32\DRIVERS\igdkmd64.sys =>.Intel(R) pGFX®
SR - Auto [12/06/2017] [ 373688] Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) . (.Intel Corporation.) - C:\WINDOWS\System32\igfxCUIService.exe =>.Intel(R) pGFX®
SR - Demand [12/05/2016] [ 481768] Son Intel(R) pour écrans (IntcDAud) . (.Intel(R) Corporation.) - C:\WINDOWS\System32\DRIVERS\IntcDAud.sys =>.Intel(R) OWR®
SS - Demand [11/09/2017] [ 673080] Service de l’iPod (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe =>.Apple Inc.®
SR - Boot [12/04/2018] [ 145816] (ItSas35i) . (.Avago Technologies.) - C:\WINDOWS\System32\drivers\ItSas35i.sys =>.Microsoft Windows®
SR - Boot [12/04/2018] [ 108952] (LSI_SAS) . (.LSI Corporation.) - C:\WINDOWS\System32\drivers\lsi_sas.sys =>.Microsoft Windows®
SR - Boot [12/04/2018] [ 124312] (LSI_SAS2i) . (.LSI Corporation.) - C:\WINDOWS\System32\drivers\lsi_sas2i.sys =>.Microsoft Windows®
SR - Boot [12/04/2018] [ 128408] (LSI_SAS3i) . (.Avago Technologies.) - C:\WINDOWS\System32\drivers\lsi_sas3i.sys =>.Microsoft Windows®
SR - Boot [12/04/2018] [ 82848] (LSI_SSS) . (.LSI Corporation.) - C:\WINDOWS\System32\drivers\lsi_sss.sys =>.Microsoft Windows®
SR - Demand [20/11/2012] [ 11776] ZTE LTE Device Mass Storage Filter Driver (massfilter_lte) . (.HandSet Incorporated.) - C:\WINDOWS\system32\drivers\massfilter_lte.sys =>.HandSet Incorporated
SR - Auto [11/02/2019] [ 198512] MBAMChameleon (MBAMChameleon) . (.Malwarebytes.) - C:\WINDOWS\System32\Drivers\MbamChameleon.sys =>.Malwarebytes Corporation®
SR - Boot [01/02/2019] [ 20936] MbamElam (MbamElam) . (.Malwarebytes.) - C:\WINDOWS\System32\DRIVERS\MbamElam.sys =>.Microsoft Corporation®
SR - Demand [11/02/2019] [ 127136] MBAMFarflt (MBAMFarflt) . (.Malwarebytes.) - C:\WINDOWS\System32\DRIVERS\farflt.sys =>.Malwarebytes Corporation®
SR - Demand [11/02/2019] [ 72864] MBAMProtection (MBAMProtection) . (.Malwarebytes.) - C:\WINDOWS\system32\DRIVERS\mbam.sys =>.Malwarebytes Corporation®
SR - Auto [01/02/2019] [ 6562472] Malwarebytes Service (MBAMService) . (.Malwarebytes.) - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe =>.Malwarebytes Corporation®
SR - Boot [11/02/2019] [ 274416] MBAMSwissArmy (MBAMSwissArmy) . (.Malwarebytes.) - C:\WINDOWS\System32\Drivers\mbamswissarmy.sys =>.Malwarebytes Corporation®
SR - Demand [11/02/2019] [ 114040] MBAMWebProtection (MBAMWebProtection) . (.Malwarebytes.) - C:\WINDOWS\System32\DRIVERS\mwac.sys =>.Malwarebytes Corporation®
SR - Boot [12/04/2018] [ 59800] (megasas) . (.Avago Technologies.) - C:\WINDOWS\System32\drivers\megasas.sys =>.Microsoft Windows®
SR - Boot [12/04/2018] [ 75160] (megasas2i) . (.Avago Technologies.) - C:\WINDOWS\System32\drivers\MegaSas2i.sys =>.Microsoft Windows®
SR - Boot [12/04/2018] [ 82328] (megasas35i) . (.Avago Technologies.) - C:\WINDOWS\System32\drivers\megasas35i.sys =>.Microsoft Windows®
SR - Boot [12/04/2018] [ 575896] (megasr) . (.LSI Corporation, Inc..) - C:\WINDOWS\System32\drivers\megasr.sys =>.Microsoft Windows®
SR - Demand [14/04/2016] [ 202848] Intel(R) Management Engine Interfac (MEIx64) . (.Intel Corporation.) - C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys =>.Intel(R) Embedded Subsystems and IP Blocks Group®
SR - Demand [12/04/2018] [ 842648] Mellanox ConnectX Bus E (mlx4_bus) . (.Mellanox.) - C:\WINDOWS\System32\drivers\mlx4_bus.sys =>.Microsoft Windows®
SS - Demand [08/04/2016] [ 146888] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe =>.Mozilla Corporation®
SR - Boot [12/04/2018] [ 63904] (mvumis) . (.Marvell Semiconductor, Inc..) - C:\WINDOWS\System32\drivers\mvumis.sys =>.Microsoft Windows®
SR - Demand [12/04/2018] [ 108952] NetworkDirect Service (ndfltr) . (.Mellanox.) - C:\WINDOWS\System32\drivers\ndfltr.sys =>.Microsoft Windows®
SR - Boot [12/04/2018] [ 150424] (nvraid) . (.NVIDIA Corporation.) - C:\WINDOWS\System32\drivers\nvraid.sys =>.Microsoft Windows®
SR - Boot [12/04/2018] [ 166304] (nvstor) . (.NVIDIA Corporation.) - C:\WINDOWS\System32\drivers\nvstor.sys =>.Microsoft Windows®
SR - Boot [12/04/2018] [ 58776] (percsas2i) . (.Avago Technologies.) - C:\WINDOWS\System32\drivers\percsas2i.sys =>.Microsoft Windows®
SR - Boot [12/04/2018] [ 61848] (percsas3i) . (.Avago Technologies.) - C:\WINDOWS\System32\drivers\percsas3i.sys =>.Microsoft Windows®
SR - Demand [03/01/2014] [ 331992] RtsUVStor.Sys Realtek USB Card Reader (RSUSBVSTOR) . (.Realtek Semiconductor Corp..) - C:\WINDOWS\System32\Drivers\RtsUVStor.sys =>.Realtek Semiconductor Corp®
SR - Demand [22/07/2015] [ 886528] Realtek RT640 NT Driver (rt640x64) . (.Realtek.) - C:\WINDOWS\System32\drivers\rt640x64.sys =>.Realtek Semiconductor Corp®
SR - Demand [26/09/2018] [ 758312] Realtek Bluetooth Filter Driver (RtkBtFilter) . (.Realtek Semiconductor Corporation.) - C:\WINDOWS\System32\DRIVERS\RtkBtfilter.sys =>.Realtek Semiconductor Corp.®
SR - Auto [26/09/2018] [ 713816] Realtek Bluetooth Device (RtkBtManServ) . (.Realtek Semiconductor Corp..) - C:\Windows\RtkBtManServ.exe =>.Realtek Semiconductor Corp.®
SR - Demand [03/07/2015] [ 410880] Realtek USB Card Reader - UER (RTSUER) . (.Realsil Semiconductor Corporation.) - C:\WINDOWS\System32\Drivers\RtsUer.sys =>.Realtek Semiconductor Corp®
SR - Demand [16/06/2015] [ 3068160] Lenovo EasyCamera (rtsuvc) . (.Realtek Semiconductor Corp..) - C:\WINDOWS\System32\DRIVERS\rtsuvc.sys =>.Realtek Semiconductor Corp®
SR - Demand [12/04/2018] [ 6320640] Realtek Wirel (RTWlanE) . (.Realtek Semiconductor Corporation.) - C:\WINDOWS\System32\drivers\rtwlane.sys =>.Realtek Semiconductor Corporation
SR - Auto [00/00/0000] [ 0] Conexant SmartAudio service (SAService) . (...) - C:\Windows\System32\SASrv.exe (.not file.) =>.Conexant Systems, Inc.
SR - Auto [09/01/2019] [ 3918168] Seed4.Me Service (Seed4.Me Service) . (.Seed4.Me.) - C:\Program Files\Seed4.Me VPN\bin\Seed4.Me_service.exe {00DE1B9DC4EAA6900D2B299969506B4D8A} =>.Seed4.Me
SR - Boot [12/04/2018] [ 44952] (SiSRaid2) . (.Silicon Integrated Systems Corp..) - C:\WINDOWS\System32\drivers\SiSRaid2.sys =>.Microsoft Windows®
SR - Boot [12/04/2018] [ 81816] (SiSRaid4) . (.Silicon Integrated Systems.) - C:\WINDOWS\System32\drivers\sisraid4.sys =>.Microsoft Windows®
SR - Auto [23/10/2013] [ 172192] Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe =>.Microsoft Corporation®
SR - Demand [27/07/2015] [ 42696] SmbDrvI (SmbDrvI) . (.Synaptics Incorporated.) - C:\WINDOWS\System32\DRIVERS\Smb_driver_Intel.sys =>.Synaptics Incorporated®
SR - Demand [05/05/2010] [ 811520] SMI Grabber Device Tuner Filter (SMIGrabber3C) . (...) - C:\WINDOWS\System32\Drivers\SmiUsbGrabber3C.sys
SR - Demand [05/09/2016] [ 165504] SAMSUNG Mobile USB Modem Dr (ssudmdm) . (.Samsung Electronics Co., Ltd..) - C:\WINDOWS\System32\DRIVERS\ssudmdm.sys =>.Samsung Electronics CO., LTD.®
SR - Boot [12/04/2018] [ 31128] (stexstor) . (.Promise Technology, Inc..) - C:\WINDOWS\System32\drivers\stexstor.sys =>.Microsoft Windows®
SR - Demand [23/01/2017] [ 912992] Synaptics TouchPad Driver (SynTP) . (.Synaptics Incorporated.) - C:\WINDOWS\System32\DRIVERS\SynTP.sys =>.Synaptics Incorporated®
SR - Auto [23/01/2017] [ 267360] SynTPEnh Caller Service (SynTPEnhService) . (.Synaptics Incorporated.) - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe =>.Synaptics Incorporated®
SR - Demand [26/09/2016] [ 27136] TAP-Windows Adapter V9 (tap0901) . (.The OpenVPN Project.) - C:\WINDOWS\System32\drivers\tap0901.sys =>.The OpenVPN Project
SR - Demand [07/09/2017] [ 54784] Apple Mobile USB Driver (USBAAPL64) . (.Apple, Inc..) - C:\WINDOWS\System32\Drivers\usbaapl64.sys =>.Apple, Inc.
SS - Demand [11/09/2017] [ 33224] SHAREit Hotspot Service (uSHAREitSvc) . (.SHAREit Technologies Co.Ltd.) - C:\Program Files (x86)\SHAREit Technologies\SHAREit\SHAREit.Service.exe =>.SHAREit Technologies Co.Ltd®
SR - Auto [21/11/2018] [ 100784] VMware Authorization Service (VMAuthdService) . (.VMware, Inc..) - C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe =>.VMware, Inc.®
SR - Boot [30/09/2016] [ 105024] VMware VMCI Bus Dri (vmci) . (.VMware, Inc..) - C:\WINDOWS\System32\drivers\vmci.sys =>.VMware, Inc.®
SR - Demand [21/11/2018] [ 46040] VMware Virtual E (VMnetAdapter) . (.VMware, Inc..) - C:\WINDOWS\System32\DRIVERS\vmnetadapter.sys =>.VMware, Inc.®
SR - Auto [21/11/2018] [ 66600] VMware Bridge Protocol (VMnetBridge) . (.VMware, Inc..) - C:\WINDOWS\System32\DRIVERS\vmnetbridge.sys =>.VMware, Inc.®
SR - Auto [21/11/2018] [ 374192] VMware DHCP Service (VMnetDHCP) . (.VMware, Inc..) - C:\Windows\SysWOW64\vmnetdhcp.exe =>.VMware, Inc.®
SR - Auto [21/11/2018] [ 43992] VMware Virtual Ethernet Userif for VMnet (VMnetuserif) . (.VMware, Inc..) - C:\WINDOWS\System32\DRIVERS\vmnetuserif.sys =>.VMware, Inc.®
SR - Demand [02/11/2018] [ 69696] VMware USB Client Driver (vmusb) . (.VMware, Inc..) - C:\WINDOWS\System32\drivers\vmusb.sys =>.VMware, Inc.®
SR - Auto [02/11/2018] [ 929712] VMware USB Arbitration Service (VMUSBArbService) . (.VMware, Inc..) - C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe =>.VMware, Inc.®
SR - Auto [21/11/2018] [ 396208] VMware NAT Service (VMware NAT Service) . (.VMware, Inc..) - C:\Windows\SysWOW64\vmnat.exe =>.VMware, Inc.®
SR - Auto [21/11/2018] [15446960] VMware Workstation Server (VMwareHostd) . (...) - C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe =>.VMware, Inc.®
SR - Auto [21/11/2018] [ 99272] VMware vmx86 (vmx86) . (.VMware, Inc..) - C:\WINDOWS\System32\DRIVERS\vmx86.sys =>.VMware, Inc.®
SR - Boot [12/04/2018] [ 166808] (vsmraid) . (.VIA Technologies Inc.,Ltd.) - C:\WINDOWS\System32\drivers\vsmraid.sys =>.Microsoft Windows®
SR - Boot [22/06/2018] [ 92040] vSockets Virtual Machine Communication Interface Sockets dr (vsock) . (.VMware, Inc..) - C:\WINDOWS\System32\DRIVERS\vsock.sys =>.VMware, Inc.®
SR - Auto [28/02/2018] [ 52576] Vstor2 MntApi 2.0 Driver (shared) (vstor2-mntapi20-shared) . (.VMware, Inc..) - C:\Windows\SysWOW64\drivers\vstor2-x64.sys =>.VMware, Inc.®
SR - Boot [12/04/2018] [ 305560] VIA StorX Storage RAID Co (VSTXRAID) . (.VIA Corporation.) - C:\WINDOWS\System32\drivers\vstxraid.sys =>.Microsoft Windows®
SR - Demand [12/04/2018] [ 32152] WinMad Service (WinMad) . (.Mellanox.) - C:\WINDOWS\System32\drivers\winmad.sys =>.Microsoft Windows®
SR - Demand [12/04/2018] [ 64920] WinVerbs Service (WinVerbs) . (.Mellanox.) - C:\WINDOWS\System32\drivers\winverbs.sys =>.Microsoft Windows®
SR - Auto [01/09/2017] [ 495872] WinZip Compression Smart Monitor Service (WinZip Compression Smart Monitor Service) . (...) - C:\Program Files\WinZip\WinZip Smart Monitor\WinZip Compression Smart Monitor Service.exe =>.Corel Corporation®
SR - Auto [20/03/2017] [ 473312] Wondershare Application Framework Service (WsAppService) . (.Wondershare.) - C:\Program Files (x86)\Wondershare\WAF\2.4.2.223\WsAppService.exe =>.Wondershare Technology Co.,Ltd®
SS - Demand [01/06/2017] [ 101152] Wondershare Driver Install Service (WsDrvInst) . (.Wondershare.) - C:\Program Files (x86)\Wondershare\MobileGo\DriverInstall.exe =>.Wondershare Technology Co.,Ltd®
---\\ APPLICATIONS LANCÉES AU DÉMARRAGE DU SYSTÈME (45) - 7s
O4 - HKLM\..\Run: [SecurityHealth] . (.Microsoft Corporation - Windows Defender notification icon.) -- C:\Program Files\Windows Defender\MSASCuiL.exe =>.Microsoft Windows®
O4 - HKLM\..\Run: [cAudioFilterAgent] . (.Conexant Systems, Inc. - Conexant High Definition Audio Filter Agent.) -- C:\Program Files\CONEXANT\cAudioFilterAgent\cAudioFilterAgent64.exe =>.Conexant Systems, Inc.®
O4 - HKLM\..\Run: [Apoint] . (.Alps Electric Co., Ltd. - Alps Pointing-device Driver.) -- C:\Program Files\Apoint2K\Apoint.exe =>.Alps Electric Co., LTD.®
O4 - HKLM\..\Run: [ETDCtrl] . (.ELAN Microelectronics Corp. - ETD Control Center.) -- C:\Program Files\Elantech\ETDCtrl.exe =>.ELAN Microelectronics Corporation®
O4 - HKLM\..\Run: [RtsFT] . (.Realtek semiconductor - RTFTrack.) -- C:\WINDOWS\RTFTrack.exe =>.Realtek Semiconductor Corp®
O4 - HKLM\..\Run: [SynLenovoGestureMgr] . (.Synaptics - Lenovo GestureAPI tools.) -- C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe =>.Synaptics Incorporated®
O4 - HKLM\..\Run: [WinZip UN] . (.WinZip - WinZip Update Notifier.) -- C:\Program Files\WinZip\WZUpdateNotifier.exe =>.Corel Corporation®
O4 - HKLM\..\Run: [WinZip PreLoader] . (.WinZip Computing, S.L. - WinZip Preloader.) -- C:\Program Files\WinZip\WzPreloader.exe =>.Corel Corporation®
O4 - HKLM\..\Run: [SmartAudio] . (.Conexant Systems, Inc. - SmartAudio CPL (32bit).) -- C:\Program Files\CONEXANT\SAII\SACpl.exe =>.Conexant Systems, Inc.®
O4 - HKLM\..\Run: [AvastUI.exe] . (.AVAST Software - AvLaunch component.) -- C:\Program Files\AVAST Software\Avast\AvLaunch.exe =>.AVAST Software s.r.o.®
O4 - HKLM\..\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe =>.Apple Inc.®
O4 - HKCU\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\LENOVO\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Microsoft Corporation®
O4 - HKCU\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Users\LENOVO\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - HKCU\..\Run: [Web Companion] . (.Lavasoft - Web Companion.) -- C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe =>.Lavasoft Software Canada®
O4 - HKCU\..\Run: [Globus] . (. - .) -- Menu\Programs\GLOBUS INTERCOM\GLOBUS\Globus.appref-ms =>.SUP.Orphan
O4 - HKCU\..\Run: [EarnMoney] . (. - .) -- C:\Users\LENOVO\AppData\Local\Programs\EarnMoney\EarnMoney.exe (.Not File.) =>.SUP.Orphan
O4 - HKCU\..\Run: [DesktopMining] . (.Desktop Mining - DesktopMining.) -- C:\Users\LENOVO\AppData\Local\Programs\DesktopMining\DesktopMining.exe
O4 - HKCU\..\Run: [CyberGhost] . (...) -- .
O4 - HKCU\..\Run: [Seed4Me] . (.Seed4.Me - Seed4.Me VPN Client.) -- C:\Program Files\Seed4.Me VPN\bin\Seed4.Me_VPN.exe {00DE1B9DC4EAA6900D2B299969506B4D8A} =>.Seed4.Me
O4 - HKCU\..\Run: [HashFish] . (.北京哈希章鱼科技有限公司 - HashFish.) -- C:\Users\LENOVO\AppData\Roaming\HashFish\HashFish.exe {062820B4032BA0BB194BB09E1C728FED}
O4 - HKCU\..\Run: [MailRuUpdater] . (.Mail.Ru - Mail.Ru updater.) -- C:\Users\LENOVO\AppData\Local\Mail.Ru\MailRuUpdater.exe =>.LLC Mail.Ru®
O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe =>.Adobe Systems, Incorporated®
O4 - HKLM\..\Wow6432Node\Run: [SMΔRT-Protection] . (.Smadsoft - Smadav USB Antivirus & Additional Protectio.) -- C:\Program Files (x86)\SMADAV\SMΔRTP.exe =>.SmadSoft
O4 - HKLM\..\Wow6432Node\Run: [APSDaemon] . (.Apple Inc. - Apple Push.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe =>.Apple Inc.®
O4 - HKLM\..\Wow6432Node\Run: [CryptoTab Browser] . (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe =>.CRYPTOCOMPANY OÜ®
O4 - HKLM\..\Wow6432Node\Run: [AvastUI.exe] . (.AVAST Software - AvLaunch component.) -- C:\Program Files\AVAST Software\Avast\AvLaunch.exe =>.AVAST Software s.r.o.®
O4 - HKLM\..\Wow6432Node\Run: [vmware-tray.exe] . (.VMware, Inc. - VMware Tray Process.) -- C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe =>.VMware, Inc.®
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Windows®
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Windows®
O4 - HKUS\S-1-5-19\..\RunOnce: [WAB Migrate] . (.Microsoft Corporation - Windows Contacts.) -- C:\Program Files\Windows Mail\wab.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\RunOnce: [WAB Migrate] . (.Microsoft Corporation - Windows Contacts.) -- C:\Program Files\Windows Mail\wab.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-3743779890-750918602-2797629546-1001\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\LENOVO\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - HKUS\S-1-5-21-3743779890-750918602-2797629546-1001\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - HKUS\S-1-5-21-3743779890-750918602-2797629546-1001\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Microsoft Corporation®
O4 - HKUS\S-1-5-21-3743779890-750918602-2797629546-1001\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Users\LENOVO\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - HKUS\S-1-5-21-3743779890-750918602-2797629546-1001\..\Run: [Web Companion] . (.Lavasoft - Web Companion.) -- C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe =>.Lavasoft Software Canada®
O4 - HKUS\S-1-5-21-3743779890-750918602-2797629546-1001\..\Run: [Globus] . (. - .) -- Menu\Programs\GLOBUS INTERCOM\GLOBUS\Globus.appref-ms =>.SUP.Orphan
O4 - HKUS\S-1-5-21-3743779890-750918602-2797629546-1001\..\Run: [EarnMoney] . (. - .) -- C:\Users\LENOVO\AppData\Local\Programs\EarnMoney\EarnMoney.exe (.Not File.) =>.SUP.Orphan
O4 - HKUS\S-1-5-21-3743779890-750918602-2797629546-1001\..\Run: [DesktopMining] . (.Desktop Mining - DesktopMining.) -- C:\Users\LENOVO\AppData\Local\Programs\DesktopMining\DesktopMining.exe
O4 - HKUS\S-1-5-21-3743779890-750918602-2797629546-1001\..\Run: [CyberGhost] . (...) -- .
O4 - HKUS\S-1-5-21-3743779890-750918602-2797629546-1001\..\Run: [Seed4Me] . (.Seed4.Me - Seed4.Me VPN Client.) -- C:\Program Files\Seed4.Me VPN\bin\Seed4.Me_VPN.exe {00DE1B9DC4EAA6900D2B299969506B4D8A} =>.Seed4.Me
O4 - HKUS\S-1-5-21-3743779890-750918602-2797629546-1001\..\Run: [HashFish] . (.北京哈希章鱼科技有限公司 - HashFish.) -- C:\Users\LENOVO\AppData\Roaming\HashFish\HashFish.exe {062820B4032BA0BB194BB09E1C728FED}
O4 - HKUS\S-1-5-21-3743779890-750918602-2797629546-1001\..\Run: [MailRuUpdater] . (.Mail.Ru - Mail.Ru updater.) -- C:\Users\LENOVO\AppData\Local\Mail.Ru\MailRuUpdater.exe =>.LLC Mail.Ru®
---\\ PROCESSUS LANCÉS (80) - 23s
[MD5.670F652C0738992BF94E0F2D1CF2DFF7] - (.Intel Corporation - igfxCUIService Module.) -- C:\Windows\System32\igfxCUIService.exe [373688] [PID.2016] =>.Intel Corporation
[MD5.EBBCD5DFBB1DE70E8F4AF8FA59E401FD] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe [462184] [PID.3632] =>.Apple Inc.®
[MD5.FF44271C20386D6D782D058EF632BD40] - (.Conexant Systems Inc. - Conexant Audio Message Service.) -- C:\WINDOWS\system32\CxAudMsg64.exe [225624] [PID.3644] =>.Conexant Systems Inc.
[MD5.49D234989341C2D16419C1043A63CE68] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768] [PID.3652] =>.Apple Inc.®
[MD5.313C17CF1072E0D18C5147D072E2CD7C] - (.Realtek Semiconductor Corp. - Realtek Bluetooth BTDevManager Service Appl.) -- C:\Windows\RtkBtManServ.exe [713816] [PID.3668] =>.Realtek Semiconductor Corp.®
[MD5.54449CA12BC77B7E30B608EA7AAEC4F4] - (.Synaptics Incorporated - 64-bit Synaptics Pointing Enhance Service.) -- C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [267360] [PID.3684] =>.Synaptics Incorporated®
[MD5.E0A69AAB9D8F6EFDAD11AE261E3FE986] - (.Wondershare - Wondershare Passport.) -- C:\Program Files (x86)\Wondershare\WAF\2.4.2.223\WsAppService.exe [473312] [PID.3700] =>.Wondershare Technology Co.,Ltd®
[MD5.A53E5B3408B00F0CAED73C9BE999EF00] - (.Seed4.Me - Seed4.Me VPN Client.) -- C:\Program Files\Seed4.Me VPN\bin\Seed4.Me_service.exe [3918168] [PID.3708] {00DE1B9DC4EAA6900D2B299969506B4D8A} =>.Seed4.Me
[MD5.9CEE2BBB060DC4B7062BE4461774A7A0] - (. - HuaweiHiSuiteService.) -- C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [190784] [PID.3724] =>.Huawei Technologies Co.,Ltd
[MD5.D19C4EE2AC7C47B8F5F84FFF1A789D8A] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [63960] [PID.3732] =>.Adobe Systems, Incorporated®
[MD5.327B7C73A4485A178F0861C492A16F8D] - (. - WinZip Compression Smart Monitor Service.) -- C:\Program Files\WinZip\WinZip Smart Monitor\WinZip Compression Smart Monitor Service.exe [495872] [PID.3792] =>.Corel Corporation®
[MD5.59C8BF1A8C9CBB6EC136DC7F7476250D] - (.VMware, Inc. - VMware USB Arbitration Service.) -- C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe [929712] [PID.3876] =>.VMware, Inc.®
[MD5.CF3EDFAA9CC87E223F9316B5D0F1AA84] - (.VMware, Inc. - VMware VMnet DHCP service.) -- C:\Windows\SysWOW64\vmnetdhcp.exe [374192] [PID.3904] =>.VMware, Inc.®
[MD5.3CA1424FABB0A803294F42047EE0024F] - (.Conexant Systems, Inc. - SmartAudio Service Application.) -- C:\Windows\SysWOW64\SASrv.exe [423128] [PID.3912] =>.Conexant Systems, Inc.®
[MD5.92BBB76CDF269E7373F153A8296B13E2] - (.VMware, Inc. - VMware NAT Service.) -- C:\Windows\SysWOW64\vmnat.exe [396208] [PID.3920] =>.VMware, Inc.®
[MD5.ADC2A1F46DA3BF1D5B6F53976290FB7D] - (.VMware, Inc. - VMware Authorization Service.) -- C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe [100784] [PID.4092] =>.VMware, Inc.®
[MD5.51566E8D791634C58A2445B37B8E51BE] - (.Synaptics Incorporated - Synaptics TouchPad 64-bit Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [4187744] [PID.6112] =>.Synaptics Incorporated®
[MD5.A4A8C11A8E390035EA8B8E16D5473203] - (.Intel Corporation - igfxEM Module.) -- C:\Windows\System32\igfxEM.exe [354232] [PID.6776] =>.Intel Corporation
[MD5.07835DDE149CB26CBEE93BE73B3BC9D4] - (.Intel Corporation - igfxHK Module.) -- C:\Windows\System32\igfxHK.exe [268216] [PID.6880] =>.Intel Corporation
[MD5.AEDAEB361A737E1E4F520E40780E0D3F] - (...) -- C:\WINDOWS\system32\igfxTray.exe [401848] [PID.6916] =>.Intel Corporation
[MD5.EB3D7C3FE7AD6AD4F8AC50A7A3F28CD4] - (.Synaptics Incorporated - Synaptics Pointing Device Helper.) -- C:\PROGRAM FILES\SYNAPTICS\SynTP\SYNTPHELPER.EXE [228960] [PID.7104] =>.Synaptics Incorporated®
[MD5.5B146F42DB8A41071BDC1B4828BA4DE6] - (...) -- C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.38.138.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe [182272] [PID.7868]
[MD5.E3D62D0733858942FFCDAA20C2241D00] - (.Corel Corporation - WinZip Compression Smart Monitor.) -- C:\Program Files\WinZip\WinZip Smart Monitor\WinZipCompressionSmartMonitor.exe [2158848] [PID.8848] =>.Corel Corporation®
[MD5.63A202232176A0EF37E4D2994AC88F95] - (.Conexant Systems, Inc. - Conexant High Definition Audio Filter Agent.) -- C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe [916184] [PID.4304] =>.Conexant Systems, Inc.®
[MD5.4A38E62BF4D93E14D9F634EA493FA20A] - (.ELAN Microelectronics Corp. - ETD Control Center.) -- C:\Program Files\Elantech\ETDCtrl.exe [2872720] [PID.8588] =>.ELAN Microelectronics Corporation®
[MD5.9048BC79ACCB4F59934EF2212755905E] - (.Realtek semiconductor - RTFTrack.) -- C:\Windows\RTFTrack.exe [6340312] [PID.5748] =>.Realtek Semiconductor Corp®
[MD5.25FE95FD7AE88395F5100B69D71A4205] - (.Synaptics - Lenovo GestureAPI tools.) -- C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe [675568] [PID.9108] =>.Synaptics Incorporated®
[MD5.8C5DA974F2F73B9DFB66F66E55983400] - (.WinZip Computing, S.L. - WinZip Preloader.) -- C:\Program Files\WinZip\WzPreloader.exe [123848] [PID.6572] =>.Corel Corporation®
[MD5.76FE2B9656AD81EBB9477E30B4A738FD] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe [297784] [PID.3564] =>.Apple Inc.®
[MD5.C679A23D2CA97E30F59F73603E29EA03] - (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe [3981368] [PID.9348] =>.Tonec Inc.
[MD5.615E58F9963734185756AEE4959BA964] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe [20728480] [PID.9388] =>.Microsoft Corporation®
[MD5.615E58F9963734185756AEE4959BA964] - (.BitTorrent Inc. - µTorrent.) -- C:\Users\LENOVO\AppData\Roaming\uTorrent\uTorrent.exe [1908920] [PID.9568] =>.BitTorrent Inc®
[MD5.615E58F9963734185756AEE4959BA964] - (.Lavasoft - Web Companion.) -- C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe [7717480] [PID.9612] =>.Lavasoft Software Canada®
[MD5.615E58F9963734185756AEE4959BA964] - (.Mail.Ru - Mail.Ru updater.) -- C:\Users\LENOVO\AppData\Local\Mail.Ru\MailRuUpdater.exe [3620536] [PID.10156] =>.LLC Mail.Ru®
[MD5.615E58F9963734185756AEE4959BA964] - (.Wondershare - MobileGoService.) -- C:\Program Files (x86)\Wondershare\MobileGo\MobileGoService.exe [95008] [PID.1400] =>.Wondershare Technology Co.,Ltd®
[MD5.615E58F9963734185756AEE4959BA964] - (.Conexant Systems, Inc - SmartAudio.) -- C:\Program Files\CONEXANT\SAII\SmartAudio.exe [1078616] [PID.7212] =>.Conexant Systems, Inc.®
[MD5.615E58F9963734185756AEE4959BA964] - (.Tonec Inc. - Internet Download Manager agent for click m.) -- C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe [275512] [PID.5824] =>.Tonec Inc.®
[MD5.615E58F9963734185756AEE4959BA964] - (.Smadsoft - Smadav USB Antivirus & Additional Protectio.) -- C:\Program Files (x86)\SMADAV\SMΔRTP.exe [1846384] [PID.2748] =>.SmadSoft
[MD5.615E58F9963734185756AEE4959BA964] - (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [1752616] [PID.8016] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.BitTorrent Inc. - WebHelper.) -- C:\Users\LENOVO\AppData\Roaming\uTorrent\updates\3.5.5_44994\utorrentie.exe [398520] [PID.3600] =>.BitTorrent Inc®
[MD5.615E58F9963734185756AEE4959BA964] - (.AVAST Software - Avast Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe [11580296] [PID.732] =>.AVAST Software s.r.o.®
[MD5.615E58F9963734185756AEE4959BA964] - (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [1752616] [PID.9252] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.BitTorrent Inc. - WebHelper.) -- C:\Users\LENOVO\AppData\Roaming\uTorrent\updates\3.5.5_44994\utorrentie.exe [398520] [PID.8612] =>.BitTorrent Inc®
[MD5.615E58F9963734185756AEE4959BA964] - (.Apple Inc. - iPod Service.) -- C:\Program Files\iPod\bin\iPodService.exe [673080] [PID.10768] =>.Apple Inc.®
[MD5.615E58F9963734185756AEE4959BA964] - (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [1752616] [PID.10920] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.CRYPTOCOMPANY OU - CryptoTab Update.) -- C:\Program Files (x86)\CryptoCompany\Update\CryptoTabUpdate.exe [185896] [PID.10992] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.CRYPTOCOMPANY OU - CryptoTab Update.) -- C:\Program Files (x86)\CryptoCompany\Update\1.3.99.17\CryptoTabCrashHandler.exe [318504] [PID.11064] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.CRYPTOCOMPANY OU - CryptoTab Update.) -- C:\Program Files (x86)\CryptoCompany\Update\1.3.99.17\CryptoTabCrashHandler64.exe [395304] [PID.11140] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [1752616] [PID.10548] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [1752616] [PID.4232] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [1752616] [PID.10828] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.Google Inc. - Programme d'installation de Google.) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752] [PID.10484] =>.Google Inc®
[MD5.615E58F9963734185756AEE4959BA964] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files (x86)\Google\Update\1.3.33.23\GoogleCrashHandler.exe [292648] [PID.8884] =>.Google Inc®
[MD5.615E58F9963734185756AEE4959BA964] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files (x86)\Google\Update\1.3.33.23\GoogleCrashHandler64.exe [369960] [PID.9972] =>.Google Inc®
[MD5.615E58F9963734185756AEE4959BA964] - (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [1752616] [PID.10152] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [1752616] [PID.3484] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [1752616] [PID.5828] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [1752616] [PID.10560] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [1752616] [PID.11572] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [1752616] [PID.11656] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [1752616] [PID.11808] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [1752616] [PID.11892] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [1752616] [PID.12032] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [1752616] [PID.10516] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [1752616] [PID.8436] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [1752616] [PID.4404] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [1752616] [PID.12160] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [1752616] [PID.12204] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [1752616] [PID.12804] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [1752616] [PID.12948] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [1752616] [PID.13072] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [1752616] [PID.13208] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [1752616] [PID.10592] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [1752616] [PID.12668] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [1752616] [PID.12672] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [1752616] [PID.11732] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [1752616] [PID.5960] =>.CRYPTOCOMPANY OÜ®
[MD5.615E58F9963734185756AEE4959BA964] - (.Malwarebytes - Malwarebytes Tray Application.) -- C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe [3951008] [PID.5916] =>.Malwarebytes Corporation®
[MD5.615E58F9963734185756AEE4959BA964] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\LENOVO\AppData\Roaming\ZHP\ZHPDiag3.exe [3198336] [PID.13604] =>.Nicolas Coolman
[MD5.615E58F9963734185756AEE4959BA964] - (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) -- C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe [1752616] [PID.13364] =>.CRYPTOCOMPANY OÜ®
---\\ CHROME, Démarrage, Recherche, Extensions (16) - 2s
G0 - GCSP: Secure Preferences [User Data\Default][HomePage] http://www.google.com =>.Google Inc.
G2 - GCE: Preference [LENOVO][User Data\Default] [apnknbibfbgnngbcdodfnieopfhenakc] All-in-One Office =>.allinoneoffice.net
G2 - GCE: Preference [LENOVO][User Data\Default] [eofcbnmajmjmplflapaojjnihcjkigck] Avast =>.Avast Software s.r.o
G2 - GCE: Preference [LENOVO][User Data\Default] [fbknefhkjhbolemlchjhacbgckdjggod] Presearch.org Start With Us
G2 - GCE: Preference [LENOVO][User Data\Default] [fngmhnnpilhplaeedifhccceomclgfbg] EditThisCookie =>.editthiscookie.com
G2 - GCE: Preference [LENOVO][User Data\Default] [gbchcmhmhahfdphkhkmpfmihenigjmpp] { =>.Google Inc. {Bureau à distance}
G2 - GCE: Preference [LENOVO][User Data\Default] [gomekmidlodglbbmalcneegieacbdmki] Avast Online Security =>.Avast Software s.r.o
G2 - GCE: Preference [LENOVO][User Data\Default] [hnmpcagpplmpfojmgmnngilcnanddlhb] Windscribe =>.Windscribe
G2 - GCE: Preference [LENOVO][User Data\Default] [ioideiondjmgiofhijgakpodnfohdkcm] AllinOneOffice =>.allinoneoffice.net
G2 - GCE: Preference [LENOVO][User Data\Default] [jipinfggejlkpkomnccoocbdndjalicp] adf.ly KILLER
G2 - GCE: Preference [LENOVO][User Data\Default] [manjolceoachljppbjhfgkoomnlidkna] Surfe.be
G2 - GCE: Preference [LENOVO][User Data\Default] [ngpampappnmepgilojfohadhhmbhlaek] IDM Integration Module =>.IDM Computer Solutions, Inc.
G2 - GCE: Preference [LENOVO][User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] =>.Google Inc. {Wallet}
G2 - GCE: Preference [LENOVO][User Data\Default] [pfmgfdlgomnbgkofeojodiodmgpgmkac] =>.Google Inc. {Économiseur de données}
G2 - GCE: Preference [LENOVO][User Data\Default] [pholijjkpkpeopfbbhfhnpolfipbojfa] chrome_filter
G2 - GCE: Preference [LENOVO][User Data\Default] [pkedcjkdefgpdelpbcmbmeomcjbeemfm] Chrome Media Router =>.Google Inc.
---\\ FIREFOX, Plugins,Démarrage,Recherche,Extensions (7) - 3s
M0 - MFSP: prefs.js [LENOVO - 34iilwz7.default] http://inline.go.mail.ru/
P2 - EXT FILE: (.Yahoo! Search Engine - yahoo-search-engine.) -- C:\Users\LENOVO\AppData\Roaming\Mozilla\Firefox\Profiles\34iilwz7.default\searchplugins\yahoo-lavasoft-ff59.xml =>.Yahoo! Search Engine
P2 - EXT FILE: (.Microsoft Corporation - The plugin allows you to have a better expe.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npMeetingJoinPluginOC.dll =>.Microsoft Corporation®
P2 - EXT FILE: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\loop@mozilla.org.xpi
P2 - EXT FILE: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\{51143AA8-3F13-47BA-AE9A-A9600A32A53E}.xpi
P2 - FPN: [HKLM] [@tools.CryptoTab.com/CryptoTab Update;version=3] - (.CRYPTOCOMPANY OU.) -- C:\Program Files (x86)\CryptoCompany\Update\1.3.99.17\npCryptoTabUpdate3.dll
P2 - FPN: [HKLM] [@tools.CryptoTab.com/CryptoTab Update;version=9] - (.CRYPTOCOMPANY OU.) -- C:\Program Files (x86)\CryptoCompany\Update\1.3.99.17\npCryptoTabUpdate3.dll
---\\ INTERNET EXPLORER,Démarrage,Recherche,URLSearchHook (18) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = www.google.com =>.Google Inc.
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = www.google.com =>.Google Inc.
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = www.google.com =>.Google Inc.
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = www.google.com =>.Google Inc.
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R1 - HKEY_USERS\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = www.google.com =>.Google Inc.
R3 - URLSearchHook: (no name)[HKCU] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (11.00.17134.582 (WinBuild.160101.0800)) -- C:\Windows\System32\ieframe.dll =>.Microsoft Corporation
---\\ INTERNET EXPLORER, Site de confiance et site sensible (6) - 0s
~ IE Restricted Site Good: localhost
IE Restricted Site Good: webcompanion.com =>PUP.Optional.LavasoftWebCompanion
~ Microsoft Internet Explorer Restricted Site(s) Domains: 2(Good) / 0(Bad)
~ IE Restricted Site Good: connectify.me
~ IE Restricted Site Good: fastspring.com
~ Microsoft Internet Explorer Restricted Site(s) EscDomains: 2(Good) / 0(Bad)
---\\ INTERNET EXPLORER,Proxy Management (6) - 0s
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 =>.Default.Value
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 =>.Default.Value
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 =>.Default.Value
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1 =>.Default.Value
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
R5 - HKLM\SYSTEM\CurrentControlSet\services\NlaSvc\Parameters\Internet\ManualProxies [] =>.Microsoft
---\\ INTERNET EXPLORER,IniFiles, Autoloading Programs (3) - 0s
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: VMApplet=
---\\ ÉTUDE DU FICHIER HOSTS (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (1)
---\\ BROWSER HELPER OBJECT DE NAVIGATEUR (BHO) (3) - 1s
O2 - BHO: IDM Helper [64Bits] - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Internet Download Manager, Tonec Inc. - IDM Browser Helper Object.) -- C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll =>.Tonec Inc.®
O2 - BHO: Skype for Business Click to Call BHO [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} . (.Microsoft Corporation - Skype for Business.) -- C:\Program Files\Microsoft Office\Office15\OCHelper.dll =>.Microsoft Corporation®
O2 - BHO: Microsoft SkyDrive Pro Browser Helper [64Bits] - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} . (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL =>.Microsoft Corporation®
---\\ RACCOURCIS GLOBAL STARTUP (162) - 28s
O4 - GS\Desktop [Administrateur]: Amalika Start.lnk . (...) C:\Users\LENOVO\Desktop\Dzair Shoot\Amalika live 1\Set.exe /movetime 01\05\2017 16:50:19 "C:\Users\LENOVO\Desktop\Dzair Shoot\Amalika live 1\Amalika Start.exe"
O4 - GS\Desktop [Administrateur]: AVS Video Recorder.lnk . (.Online Media Technologies Ltd. - .) C:\Program Files (x86)\AVS4YOU\AVSVideoRecorder\AVSVideoRecorder.exe =>.Online Media Technologies Ltd.
O4 - GS\Desktop [Administrateur]: Bighits4u Viewer.lnk . (.Bighits4U LLC - Bighits4U Viewer application.) C:\Program Files (x86)\Bighits4u\Bighits4u Viewer\Bighits4u.exe
O4 - GS\Desktop [Administrateur]: CardRecovery.lnk . (.WinRecovery Software - CardRecovery.) C:\Program Files (x86)\CardRecovery\CardRecovery.exe {7A0F35A5D301113B4C50984A67E2F638} =>.WinRecovery Software
O4 - GS\Desktop [Administrateur]: DesktopMining.lnk . (.Desktop Mining - DesktopMining.) C:\Users\LENOVO\AppData\Local\Programs\DesktopMining\DesktopMining.exe
O4 - GS\Desktop [Administrateur]: Hein 4.5.2.lnk . (...) C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\Hein.exe
O4 - GS\Desktop [Administrateur]: Hein Recovery 1.8.lnk . (...) C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\Hein Recovery.exe
O4 - GS\Desktop [Administrateur]: HitLeap Viewer.lnk . (...) C:\Users\LENOVO\AppData\Local\HitLeap Viewer\app\lua.exe HitLeap-Viewer.lua Windows {079247800C8B42AFD7C0F33D4F5252C4}
O4 - GS\Desktop [Administrateur]: Lecteur de CD - Raccourci.lnk . (...) G:\
O4 - GS\Desktop [Administrateur]: NiceHash Miner 2.lnk . (.H-BIT d.o.o. - NiceHash Miner 2.) C:\Users\LENOVO\AppData\Local\Programs\NiceHash Miner 2\NiceHash Miner 2.exe {03E63209FAED806141C146807097F872}
O4 - GS\Desktop [Administrateur]: Recuva.lnk . (.Piriform Ltd - Recuva.) C:\Program Files (x86)\Recuva\Recuva.exe =>.Piriform Ltd®
O4 - GS\Desktop [Administrateur]: ZHPCleaner.lnk . (.Nicolas Coolman - ZHPCleaner.) C:\Users\LENOVO\AppData\Roaming\ZHP\ZHPCleaner.exe =>.Nicolas Coolman
O4 - GS\Desktop [Administrateur]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\LENOVO\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Desktop [Administrateur]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\LENOVO\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - GS\Quicklaunch [Administrateur]: CryptoTab Browser.lnk . (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe =>.CRYPTOCOMPANY OÜ®
O4 - GS\Quicklaunch [Administrateur]: JPEG to Word Converter.lnk . (.Soft Solutions - JPEG to Word Converter.) C:\Program Files (x86)\Soft Solutions\Image to OCR Converter\JPEG to Word Converter.exe {43B2354BD3A5CBAFE6CCBEE1C1C54B55} =>.Soft Solutions
O4 - GS\Quicklaunch [Administrateur]: Wondershare MobileGo.lnk . (.Wondershare - Wondershare MobileGo.) C:\Program Files (x86)\Wondershare\MobileGo\MobileGo.exe =>.Wondershare Technology Co.,Ltd®
O4 - GS\Quicklaunch [Administrateur]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\LENOVO\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - GS\sendTo [Administrateur]: AVS Mobile Uploader.lnk . (.Online Media Technologies Ltd. - AVS Mobile Uploader.) C:\Program Files (x86)\Common Files\AVSMedia\MobileUploader\AVSMobileUploader.exe =>.Online Media Technologies Ltd.
O4 - GS\sendTo [Administrateur]: AVS Video Burner.lnk . (.Online Media Technologies Ltd. - AVS Video Burner.) C:\Program Files (x86)\Common Files\AVSMedia\BurnerService\AVSVideoBurner.exe =>.Online Media Technologies Ltd.
O4 - GS\sendTo [Administrateur]: AVS Video Uploader.lnk . (.Online Media Technologies Ltd. - AVS Video Uploader.) C:\Program Files (x86)\Common Files\AVSMedia\VideoUploader\AVSVideoUploader.exe =>.Online Media Technologies Ltd.
O4 - GS\sendTo [Administrateur]: Destinataire de télécopie.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Administrateur]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\WINDOWS\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Administrateur]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe /sendto: =>.Microsoft Corporation®
O4 - GS\sendTo [Administrateur]: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - Transfère les fichiers entre l.) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\sendTo [Administrateur]: Wondershare MobileGo.lnk . (.Wondershare - Wondershare MobileGo.) C:\Program Files (x86)\Wondershare\MobileGo\MobileGo.exe =>.Wondershare Technology Co.,Ltd®
O4 - GS\TaskBar [Administrateur]: CryptoTab Browser.lnk . (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe =>.CRYPTOCOMPANY OÜ®
O4 - GS\TaskBar [Administrateur]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [Administrateur]: MPC-HC x64.lnk . (.MPC-HC Team - MPC-HC 1.7.13 (64-bit).) C:\Program Files (x86)\MPC-HC\mpc-hc64.exe =>.MPC-HC Team
O4 - GS\TaskBar [Administrateur]: Pale Moon.lnk . (.Moonchild Productions - Pale Moon web browser.) C:\Program Files\Pale Moon\palemoon.exe =>.Markus Straver®
O4 - GS\TaskBar [Administrateur]: Skype.lnk . (...) C:\Windows\Installer\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}\SkypeIcon.exe =>.Skype Technologies
O4 - GS\TaskBar [Administrateur]: Task Manager.lnk . (.Microsoft Corporation - Gestionnaire des tâches.) C:\WINDOWS\system32\taskmgr.exe /7 =>.Microsoft Windows®
O4 - GS\Programs [Administrateur]: DesktopMining.lnk . (.Desktop Mining - DesktopMining.) C:\Users\LENOVO\AppData\Local\Programs\DesktopMining\DesktopMining.exe
O4 - GS\Programs [Administrateur]: Fonctionnalités optionnelles.lnk . (.Microsoft Corporation - Assistance des fonctionnalités à la demande.) C:\Windows\System32\fodhelper.exe =>.Microsoft Corporation
O4 - GS\Programs [Administrateur]: Lecteur USB (H).lnk . (...) H:\
O4 - GS\Programs [Administrateur]: NiceHash Miner 2.lnk . (.H-BIT d.o.o. - NiceHash Miner 2.) C:\Users\LENOVO\AppData\Local\Programs\NiceHash Miner 2\NiceHash Miner 2.exe {03E63209FAED806141C146807097F872}
O4 - GS\Programs [Administrateur]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\LENOVO\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - GS\Desktop [LENOVO]: Amalika Start.lnk . (...) C:\Users\LENOVO\Desktop\Dzair Shoot\Amalika live 1\Set.exe /movetime 01\05\2017 16:50:19 "C:\Users\LENOVO\Desktop\Dzair Shoot\Amalika live 1\Amalika Start.exe"
O4 - GS\Desktop [LENOVO]: AVS Video Recorder.lnk . (.Online Media Technologies Ltd. - .) C:\Program Files (x86)\AVS4YOU\AVSVideoRecorder\AVSVideoRecorder.exe =>.Online Media Technologies Ltd.
O4 - GS\Desktop [LENOVO]: Bighits4u Viewer.lnk . (.Bighits4U LLC - Bighits4U Viewer application.) C:\Program Files (x86)\Bighits4u\Bighits4u Viewer\Bighits4u.exe
O4 - GS\Desktop [LENOVO]: CardRecovery.lnk . (.WinRecovery Software - CardRecovery.) C:\Program Files (x86)\CardRecovery\CardRecovery.exe {7A0F35A5D301113B4C50984A67E2F638} =>.WinRecovery Software
O4 - GS\Desktop [LENOVO]: DesktopMining.lnk . (.Desktop Mining - DesktopMining.) C:\Users\LENOVO\AppData\Local\Programs\DesktopMining\DesktopMining.exe
O4 - GS\Desktop [LENOVO]: Hein 4.5.2.lnk . (...) C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\Hein.exe
O4 - GS\Desktop [LENOVO]: Hein Recovery 1.8.lnk . (...) C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\Hein Recovery.exe
O4 - GS\Desktop [LENOVO]: HitLeap Viewer.lnk . (...) C:\Users\LENOVO\AppData\Local\HitLeap Viewer\app\lua.exe HitLeap-Viewer.lua Windows {079247800C8B42AFD7C0F33D4F5252C4}
O4 - GS\Desktop [LENOVO]: Lecteur de CD - Raccourci.lnk . (...) G:\
O4 - GS\Desktop [LENOVO]: NiceHash Miner 2.lnk . (.H-BIT d.o.o. - NiceHash Miner 2.) C:\Users\LENOVO\AppData\Local\Programs\NiceHash Miner 2\NiceHash Miner 2.exe {03E63209FAED806141C146807097F872}
O4 - GS\Desktop [LENOVO]: Recuva.lnk . (.Piriform Ltd - Recuva.) C:\Program Files (x86)\Recuva\Recuva.exe =>.Piriform Ltd®
O4 - GS\Desktop [LENOVO]: ZHPCleaner.lnk . (.Nicolas Coolman - ZHPCleaner.) C:\Users\LENOVO\AppData\Roaming\ZHP\ZHPCleaner.exe =>.Nicolas Coolman
O4 - GS\Desktop [LENOVO]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\LENOVO\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Desktop [LENOVO]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\LENOVO\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - GS\Quicklaunch [LENOVO]: CryptoTab Browser.lnk . (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe =>.CRYPTOCOMPANY OÜ®
O4 - GS\Quicklaunch [LENOVO]: JPEG to Word Converter.lnk . (.Soft Solutions - JPEG to Word Converter.) C:\Program Files (x86)\Soft Solutions\Image to OCR Converter\JPEG to Word Converter.exe {43B2354BD3A5CBAFE6CCBEE1C1C54B55} =>.Soft Solutions
O4 - GS\Quicklaunch [LENOVO]: Wondershare MobileGo.lnk . (.Wondershare - Wondershare MobileGo.) C:\Program Files (x86)\Wondershare\MobileGo\MobileGo.exe =>.Wondershare Technology Co.,Ltd®
O4 - GS\Quicklaunch [LENOVO]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\LENOVO\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - GS\sendTo [LENOVO]: AVS Mobile Uploader.lnk . (.Online Media Technologies Ltd. - AVS Mobile Uploader.) C:\Program Files (x86)\Common Files\AVSMedia\MobileUploader\AVSMobileUploader.exe =>.Online Media Technologies Ltd.
O4 - GS\sendTo [LENOVO]: AVS Video Burner.lnk . (.Online Media Technologies Ltd. - AVS Video Burner.) C:\Program Files (x86)\Common Files\AVSMedia\BurnerService\AVSVideoBurner.exe =>.Online Media Technologies Ltd.
O4 - GS\sendTo [LENOVO]: AVS Video Uploader.lnk . (.Online Media Technologies Ltd. - AVS Video Uploader.) C:\Program Files (x86)\Common Files\AVSMedia\VideoUploader\AVSVideoUploader.exe =>.Online Media Technologies Ltd.
O4 - GS\sendTo [LENOVO]: Destinataire de télécopie.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [LENOVO]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\WINDOWS\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [LENOVO]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe /sendto: =>.Microsoft Corporation®
O4 - GS\sendTo [LENOVO]: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - Transfère les fichiers entre l.) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\sendTo [LENOVO]: Wondershare MobileGo.lnk . (.Wondershare - Wondershare MobileGo.) C:\Program Files (x86)\Wondershare\MobileGo\MobileGo.exe =>.Wondershare Technology Co.,Ltd®
O4 - GS\TaskBar [LENOVO]: CryptoTab Browser.lnk . (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe =>.CRYPTOCOMPANY OÜ®
O4 - GS\TaskBar [LENOVO]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [LENOVO]: MPC-HC x64.lnk . (.MPC-HC Team - MPC-HC 1.7.13 (64-bit).) C:\Program Files (x86)\MPC-HC\mpc-hc64.exe =>.MPC-HC Team
O4 - GS\TaskBar [LENOVO]: Pale Moon.lnk . (.Moonchild Productions - Pale Moon web browser.) C:\Program Files\Pale Moon\palemoon.exe =>.Markus Straver®
O4 - GS\TaskBar [LENOVO]: Skype.lnk . (...) C:\Windows\Installer\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}\SkypeIcon.exe =>.Skype Technologies
O4 - GS\TaskBar [LENOVO]: Task Manager.lnk . (.Microsoft Corporation - Gestionnaire des tâches.) C:\WINDOWS\system32\taskmgr.exe /7 =>.Microsoft Windows®
O4 - GS\Programs [LENOVO]: DesktopMining.lnk . (.Desktop Mining - DesktopMining.) C:\Users\LENOVO\AppData\Local\Programs\DesktopMining\DesktopMining.exe
O4 - GS\Programs [LENOVO]: Fonctionnalités optionnelles.lnk . (.Microsoft Corporation - Assistance des fonctionnalités à la demande.) C:\Windows\System32\fodhelper.exe =>.Microsoft Corporation
O4 - GS\Programs [LENOVO]: Lecteur USB (H).lnk . (...) H:\
O4 - GS\Programs [LENOVO]: NiceHash Miner 2.lnk . (.H-BIT d.o.o. - NiceHash Miner 2.) C:\Users\LENOVO\AppData\Local\Programs\NiceHash Miner 2\NiceHash Miner 2.exe {03E63209FAED806141C146807097F872}
O4 - GS\Programs [LENOVO]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\LENOVO\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - GS\Desktop [WDAGUtilityAccount]: Amalika Start.lnk . (...) C:\Users\LENOVO\Desktop\Dzair Shoot\Amalika live 1\Set.exe /movetime 01\05\2017 16:50:19 "C:\Users\LENOVO\Desktop\Dzair Shoot\Amalika live 1\Amalika Start.exe"
O4 - GS\Desktop [WDAGUtilityAccount]: AVS Video Recorder.lnk . (.Online Media Technologies Ltd. - .) C:\Program Files (x86)\AVS4YOU\AVSVideoRecorder\AVSVideoRecorder.exe =>.Online Media Technologies Ltd.
O4 - GS\Desktop [WDAGUtilityAccount]: Bighits4u Viewer.lnk . (.Bighits4U LLC - Bighits4U Viewer application.) C:\Program Files (x86)\Bighits4u\Bighits4u Viewer\Bighits4u.exe
O4 - GS\Desktop [WDAGUtilityAccount]: CardRecovery.lnk . (.WinRecovery Software - CardRecovery.) C:\Program Files (x86)\CardRecovery\CardRecovery.exe {7A0F35A5D301113B4C50984A67E2F638} =>.WinRecovery Software
O4 - GS\Desktop [WDAGUtilityAccount]: DesktopMining.lnk . (.Desktop Mining - DesktopMining.) C:\Users\LENOVO\AppData\Local\Programs\DesktopMining\DesktopMining.exe
O4 - GS\Desktop [WDAGUtilityAccount]: Hein 4.5.2.lnk . (...) C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\Hein.exe
O4 - GS\Desktop [WDAGUtilityAccount]: Hein Recovery 1.8.lnk . (...) C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\Hein Recovery.exe
O4 - GS\Desktop [WDAGUtilityAccount]: HitLeap Viewer.lnk . (...) C:\Users\LENOVO\AppData\Local\HitLeap Viewer\app\lua.exe HitLeap-Viewer.lua Windows {079247800C8B42AFD7C0F33D4F5252C4}
O4 - GS\Desktop [WDAGUtilityAccount]: Lecteur de CD - Raccourci.lnk . (...) G:\
O4 - GS\Desktop [WDAGUtilityAccount]: NiceHash Miner 2.lnk . (.H-BIT d.o.o. - NiceHash Miner 2.) C:\Users\LENOVO\AppData\Local\Programs\NiceHash Miner 2\NiceHash Miner 2.exe {03E63209FAED806141C146807097F872}
O4 - GS\Desktop [WDAGUtilityAccount]: Recuva.lnk . (.Piriform Ltd - Recuva.) C:\Program Files (x86)\Recuva\Recuva.exe =>.Piriform Ltd®
O4 - GS\Desktop [WDAGUtilityAccount]: ZHPCleaner.lnk . (.Nicolas Coolman - ZHPCleaner.) C:\Users\LENOVO\AppData\Roaming\ZHP\ZHPCleaner.exe =>.Nicolas Coolman
O4 - GS\Desktop [WDAGUtilityAccount]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\LENOVO\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Desktop [WDAGUtilityAccount]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\LENOVO\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - GS\Quicklaunch [WDAGUtilityAccount]: CryptoTab Browser.lnk . (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe =>.CRYPTOCOMPANY OÜ®
O4 - GS\Quicklaunch [WDAGUtilityAccount]: JPEG to Word Converter.lnk . (.Soft Solutions - JPEG to Word Converter.) C:\Program Files (x86)\Soft Solutions\Image to OCR Converter\JPEG to Word Converter.exe {43B2354BD3A5CBAFE6CCBEE1C1C54B55} =>.Soft Solutions
O4 - GS\Quicklaunch [WDAGUtilityAccount]: Wondershare MobileGo.lnk . (.Wondershare - Wondershare MobileGo.) C:\Program Files (x86)\Wondershare\MobileGo\MobileGo.exe =>.Wondershare Technology Co.,Ltd®
O4 - GS\Quicklaunch [WDAGUtilityAccount]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\LENOVO\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - GS\sendTo [WDAGUtilityAccount]: AVS Mobile Uploader.lnk . (.Online Media Technologies Ltd. - AVS Mobile Uploader.) C:\Program Files (x86)\Common Files\AVSMedia\MobileUploader\AVSMobileUploader.exe =>.Online Media Technologies Ltd.
O4 - GS\sendTo [WDAGUtilityAccount]: AVS Video Burner.lnk . (.Online Media Technologies Ltd. - AVS Video Burner.) C:\Program Files (x86)\Common Files\AVSMedia\BurnerService\AVSVideoBurner.exe =>.Online Media Technologies Ltd.
O4 - GS\sendTo [WDAGUtilityAccount]: AVS Video Uploader.lnk . (.Online Media Technologies Ltd. - AVS Video Uploader.) C:\Program Files (x86)\Common Files\AVSMedia\VideoUploader\AVSVideoUploader.exe =>.Online Media Technologies Ltd.
O4 - GS\sendTo [WDAGUtilityAccount]: Destinataire de télécopie.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [WDAGUtilityAccount]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\WINDOWS\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [WDAGUtilityAccount]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe /sendto: =>.Microsoft Corporation®
O4 - GS\sendTo [WDAGUtilityAccount]: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - Transfère les fichiers entre l.) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\sendTo [WDAGUtilityAccount]: Wondershare MobileGo.lnk . (.Wondershare - Wondershare MobileGo.) C:\Program Files (x86)\Wondershare\MobileGo\MobileGo.exe =>.Wondershare Technology Co.,Ltd®
O4 - GS\TaskBar [WDAGUtilityAccount]: CryptoTab Browser.lnk . (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe =>.CRYPTOCOMPANY OÜ®
O4 - GS\TaskBar [WDAGUtilityAccount]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [WDAGUtilityAccount]: MPC-HC x64.lnk . (.MPC-HC Team - MPC-HC 1.7.13 (64-bit).) C:\Program Files (x86)\MPC-HC\mpc-hc64.exe =>.MPC-HC Team
O4 - GS\TaskBar [WDAGUtilityAccount]: Pale Moon.lnk . (.Moonchild Productions - Pale Moon web browser.) C:\Program Files\Pale Moon\palemoon.exe =>.Markus Straver®
O4 - GS\TaskBar [WDAGUtilityAccount]: Skype.lnk . (...) C:\Windows\Installer\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}\SkypeIcon.exe =>.Skype Technologies
O4 - GS\TaskBar [WDAGUtilityAccount]: Task Manager.lnk . (.Microsoft Corporation - Gestionnaire des tâches.) C:\WINDOWS\system32\taskmgr.exe /7 =>.Microsoft Windows®
O4 - GS\Programs [WDAGUtilityAccount]: DesktopMining.lnk . (.Desktop Mining - DesktopMining.) C:\Users\LENOVO\AppData\Local\Programs\DesktopMining\DesktopMining.exe
O4 - GS\Programs [WDAGUtilityAccount]: Fonctionnalités optionnelles.lnk . (.Microsoft Corporation - Assistance des fonctionnalités à la demande.) C:\Windows\System32\fodhelper.exe =>.Microsoft Corporation
O4 - GS\Programs [WDAGUtilityAccount]: Lecteur USB (H).lnk . (...) H:\
O4 - GS\Programs [WDAGUtilityAccount]: NiceHash Miner 2.lnk . (.H-BIT d.o.o. - NiceHash Miner 2.) C:\Users\LENOVO\AppData\Local\Programs\NiceHash Miner 2\NiceHash Miner 2.exe {03E63209FAED806141C146807097F872}
O4 - GS\Programs [WDAGUtilityAccount]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\LENOVO\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - GS\CommonDesktop [Public]: Betternet.lnk . (.Betternet Technologies Inc. - Betternet for Windows.) C:\Program Files (x86)\Betternet\4.1.1\Betternet.exe =>.BetterNet LLC®
O4 - GS\CommonDesktop [Public]: Blockchain Miner Pro.lnk . (...) C:\Program Files (x86)\Blockchain\Blockchain Miner Pro.exe
O4 - GS\CommonDesktop [Public]: CDBurnerXP.lnk . (.Canneverbe Limited - CDBurnerXP.) C:\Program Files (x86)\CDBurnerXP\cdbxpp.exe =>.Canneverbe Limited®
O4 - GS\CommonDesktop [Public]: CryptoTab Browser.lnk . (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe =>.CRYPTOCOMPANY OÜ®
O4 - GS\CommonDesktop [Public]: HashFish.lnk . (.北京哈希章鱼科技有限公司 - HashFish.) C:\Users\LENOVO\AppData\Roaming\HashFish\HashFish.exe {062820B4032BA0BB194BB09E1C728FED}
O4 - GS\CommonDesktop [Public]: HiSuite.lnk . (.Huawei - Huawei PC suite.) C:\Program Files (x86)\HiSuite\HiSuite.exe {6BFEC00B525C0B29E84B80BFFD846F67} =>.Huawei
O4 - GS\CommonDesktop [Public]: iTunes.lnk . (.Apple Inc. - .) C:\Program Files (x86)\iTunes\iTunes.exe =>.Apple Inc.
O4 - GS\CommonDesktop [Public]: JPEG to Word Converter.lnk . (.Soft Solutions - JPEG to Word Converter.) C:\Program Files (x86)\Soft Solutions\Image to OCR Converter\JPEG to Word Converter.exe {43B2354BD3A5CBAFE6CCBEE1C1C54B55} =>.Soft Solutions
O4 - GS\CommonDesktop [Public]: Malwarebytes.lnk . (.Malwarebytes - Malwarebytes.) C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe =>.Malwarebytes Corporation®
O4 - GS\CommonDesktop [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\CommonDesktop [Public]: Otohits App.lnk . (...) C:\OtohitsNetwork\OtohitsApp\OtohitsApp.exe {067CEC33CA120908353CDB45294C6A8E}
O4 - GS\CommonDesktop [Public]: Seed4.Me.lnk . (.Seed4.Me - Seed4.Me VPN Client.) C:\Program Files\Seed4.Me VPN\bin\Seed4.Me_VPN.exe --show {00DE1B9DC4EAA6900D2B299969506B4D8A} =>.Seed4.Me
O4 - GS\CommonDesktop [Public]: SHAREit.lnk . (.SHAREit Technologies Co.Ltd - SHAREit.) C:\Program Files (x86)\SHAREit Technologies\SHAREit\SHAREit.exe =>.SHAREit Technologies Co.Ltd®
O4 - GS\CommonDesktop [Public]: SMADΔV.lnk . (.Smadsoft - Smadav USB Antivirus & Additional Protectio.) C:\Program Files (x86)\SMADAV\SMΔRTP.exe =>.SmadSoft
O4 - GS\CommonDesktop [Public]: The KMPlayer FR.lnk . (.Pandora.TV - The KMPlayer.) C:\Program Files (x86)\The KMPlayer FR\KMPlayer.exe =>.Pandora.TV
O4 - GS\CommonDesktop [Public]: Virtual Router Plus.lnk . (.Flexera Software LLC - InstallShield.) C:\WINDOWS\Installer\{0AEE4D51-3657-4F40-A689-533429CAEE0C}\_C5AD3031C36546DE99F844D62957DA44.exe =>.临沂润夏电器有限公司®
O4 - GS\CommonDesktop [Public]: VLC media player.lnk . (.VideoLAN - VLC media player.) C:\Program Files (x86)\VideoLAN\VLC\vlc.exe =>.VideoLAN®
O4 - GS\CommonDesktop [Public]: VMware Workstation Pro.lnk . (.VMware, Inc. - VMware Workstation.) C:\Program Files (x86)\VMware\VMware Workstation\vmware.exe =>.VMware, Inc.®
O4 - GS\CommonDesktop [Public]: WinZip.lnk . (.WinZip Computing, S.L. - .) C:\Program Files (x86)\WinZip\winzip64.exe =>.WinZip Computing, S.L.
O4 - GS\CommonDesktop [Public]: Wondershare MobileGo.lnk . (.Wondershare - Wondershare MobileGo.) C:\Program Files (x86)\Wondershare\MobileGo\MobileGo.exe =>.Wondershare Technology Co.,Ltd®
O4 - GS\Programs [Public]: DesktopMining.lnk . (.Desktop Mining - DesktopMining.) C:\Users\LENOVO\AppData\Local\Programs\DesktopMining\DesktopMining.exe
O4 - GS\Programs [Public]: Fonctionnalités optionnelles.lnk . (.Microsoft Corporation - Assistance des fonctionnalités à la demande.) C:\Windows\System32\fodhelper.exe =>.Microsoft Corporation
O4 - GS\Programs [Public]: Lecteur USB (H).lnk . (...) H:\
O4 - GS\Programs [Public]: NiceHash Miner 2.lnk . (.H-BIT d.o.o. - NiceHash Miner 2.) C:\Users\LENOVO\AppData\Local\Programs\NiceHash Miner 2\NiceHash Miner 2.exe {03E63209FAED806141C146807097F872}
O4 - GS\Programs [Public]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\LENOVO\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - GS\Accessories [Public]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\internet explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Accessories [Public]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) C:\WINDOWS\system32\notepad.exe =>.Microsoft Corporation
O4 - GS\Startup [Public]: MobileGo Service.lnk . (.Wondershare - MobileGoService.) C:\Program Files (x86)\Wondershare\MobileGo\MobileGoService.exe =>.Wondershare Technology Co.,Ltd®
O4 - GS\Accessories [Public]: Math Input Panel.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\mip.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.) C:\WINDOWS\system32\mspaint.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Quick Assist.lnk . (.Microsoft Corporation - Quick Assist.) C:\WINDOWS\system32\quickassist.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Connexion Bureau à distance.) C:\WINDOWS\system32\mstsc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - Outil Capture d’écran.) C:\WINDOWS\system32\SnippingTool.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Steps Recorder.lnk . (.Microsoft Corporation - Enregistreur d’actions.) C:\WINDOWS\system32\psr.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Fax and Scan.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\WINDOWS\system32\WFS.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Application Windows Wordpad.) C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: XPS Viewer.lnk . (.Microsoft Corporation - Visionneuse XPS.) C:\WINDOWS\system32\xpsrchvw.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Table des caractères.) C:\WINDOWS\system32\charmap.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Adobe Reader X.lnk . (...) C:\Windows\Installer\{AC76BA86-7AD7-1036-7B44-AA1000000001}\SC_Reader.ico =>.Adobe Inc.
O4 - GS\ProgramsCommon [Public]: Avast Free Antivirus.lnk . (.AVAST Software - .) C:\Program Files (x86)\AVAST Software\Avast\AvastUI.exe =>.AVAST Software
O4 - GS\ProgramsCommon [Public]: Blockchain Miner Pro.lnk . (...) C:\Program Files (x86)\Blockchain\Blockchain Miner Pro.exe
O4 - GS\ProgramsCommon [Public]: CryptoTab Browser.lnk . (.The Chromium and CryptoTab Browser Authors - CryptoTab Browser.) C:\Program Files (x86)\CryptoTab Browser\Application\browser.exe =>.CRYPTOCOMPANY OÜ®
O4 - GS\ProgramsCommon [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\ProgramsCommon [Public]: Immersive Control Panel.lnk . (.Microsoft Corporation - Windows Control Panel.) C:\WINDOWS\System32\Control.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Intel(R) HD Graphics Control Panel.lnk . (.Intel Corporation - GFXUIEX Module.) C:\Windows\system32\GfxUIEx.exe =>.Intel Corporation
O4 - GS\ProgramsCommon [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\ProgramsCommon [Public]: Pale Moon.lnk . (.Moonchild Productions - Pale Moon web browser.) C:\Program Files\Pale Moon\palemoon.exe =>.Markus Straver®
O4 - GS\ProgramsCommon [Public]: Seed4.Me.lnk . (.Seed4.Me - Seed4.Me VPN Client.) C:\Program Files\Seed4.Me VPN\bin\Seed4.Me_VPN.exe --show {00DE1B9DC4EAA6900D2B299969506B4D8A} =>.Seed4.Me
O4 - GS\ProgramsCommon [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: WinZip.lnk . (.WinZip Computing, S.L. - .) C:\Program Files (x86)\WinZip\winzip64.exe =>.WinZip Computing, S.L.
---\\ MODIFICATION DOMAINE/ADRESSES (DNS) (7) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\..\{96a74820-7dcd-4401-8cf6-7e926e982e2d}: NameServer = 158.43.240.4,212.127.151.92
O17 - HKLM\System\CCS\Services\Tcpip\..\{7c7d372a-a8ec-445c-92ab-63bb5dde303e}: DhcpNameServer = 192.168.1.1 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{928cb7d9-e44f-4755-a1eb-98124ba8ac84}: DhcpNameServer = 192.168.1.1 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{96a74820-7dcd-4401-8cf6-7e926e982e2d}: DhcpNameServer = 192.168.1.1 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{a5151a37-eec0-4569-b9a3-325aac31b6e8}: DhcpNameServer = 192.168.0.1 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{b5c2ac4b-a132-4f73-a899-b1fc3212438e}: DhcpNameServer = 192.168.0.254 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{b93fba76-e1d1-45d6-8d4d-f2b43c22073d}: DhcpNameServer = 192.168.0.1 =>.Local IP Adress
---\\ PROTOCOLE ADDITIONNEL (25) - 1s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll =>.Microsoft Corporation
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ms-help [64Bits] - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll =>.Microsoft Corporation®
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: osf [64Bits] - {D924BDC6-C83A-4BD5-90D0-095128A113D1} . (.Microsoft Corporation - Microsoft Office 2013 component.) -- C:\Program Files\Microsoft Office\Office15\MSOSB.DLL =>.Microsoft Corporation®
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\System32\tbauth.dll =>.Microsoft Corporation
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: windows.tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\System32\tbauth.dll =>.Microsoft Corporation
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation
O18 - Filter: text/xml [64Bits] - {807583E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL =>.Microsoft Corporation®
---\\ REGISTRE AppInit_DLLs et Winlogon Notify (1) - 0s
O20 - Winlogon : UserInit . (.Microsoft Corporation - Application d’ouverture de session Userinit.) - C:\Windows\system32\userinit.exe =>.Microsoft Corporation
---\\ CLÉ DE REGISTRE EXPLORER StartupApproved (2) - 2s
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:Web Companion =>PUP.Optional.LavasoftWebCompanion
[HKEY_USERS\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:Web Companion =>PUP.Optional.LavasoftWebCompanion
---\\ LOGICIELS INSTALLÉS (86) - 44s
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- uTorrent =>.BitTorrent Inc®
O42 - Logiciel: 7-Zip 18.01 (x64) - (.Igor Pavlov.) [HKLM][64Bits] -- 7-Zip =>.Igor Pavlov
O42 - Logiciel: Adobe Flash Player 32 PPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player PPAPI =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Reader X (10.1.4) - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AA1000000001} =>.Adobe Systems Incorporated
O42 - Logiciel: ALPS Touch Pad Driver - (.Alps Electric.) [HKLM][64Bits] -- {9F72EF8B-AEC9-4CA5-B483-143980AFD6FD} =>.Alps Electric Co., LTD.®
O42 - Logiciel: Apple Application Support (32 bits) - (.Apple Inc..) [HKLM][64Bits] -- {3D1290E6-1F77-46D5-A715-A56679C8D4E3} =>.Apple Inc.
O42 - Logiciel: Apple Application Support (64 bits) - (.Apple Inc..) [HKLM][64Bits] -- {D0E45DEC-F4B9-4370-A9DF-66837789C2EF} =>.Apple Inc.
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM][64Bits] -- {E3C4B99B-BE71-4C27-8E3C-4FAE3C46E1D5} =>.Apple Inc.
O42 - Logiciel: Avast Free Antivirus - (.AVAST Software.) [HKLM][64Bits] -- Avast Antivirus =>.AVAST Software s.r.o.®
O42 - Logiciel: AVS Video Editor 6.5 - (.Online Media Technologies Ltd..) [HKLM][64Bits] -- AVS Video Editor_is1 =>.Online Media Technologies Ltd.
O42 - Logiciel: AVS Video Recorder 2.6 - (.Online Media Technologies Ltd..) [HKLM][64Bits] -- AVS Video Recorder_is1 =>.Online Media Technologies Ltd.
O42 - Logiciel: Betternet for Windows 4.1.1 - (.Betternet Technologies Inc..) [HKLM][64Bits] -- {2E77104D-96E1-4A9C-86F2-C7CF8C805999} =>.Betternet Technologies Inc.
O42 - Logiciel: Bighits4u Viewer - (.Bighits4U.) [HKLM][64Bits] -- Bighits4u
O42 - Logiciel: Blockchain Miner Pro version 9.2 - (.Blockchain Miner Pro.) [HKLM][64Bits] -- {3933B97A-F081-478A-86A4-EBBDD9F56B81}_is1
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D} =>.Apple Inc.
O42 - Logiciel: bubans 1.00 - (.bubans.) [HKLM][64Bits] -- bubans 1.00
O42 - Logiciel: CardRecovery - (..) [HKLM][64Bits] -- CardRecovery
O42 - Logiciel: CDBurnerXP - (.Canneverbe Limited.) [HKLM][64Bits] -- {0F047784-7E23-4A4F-BFA8-8F28978C6A30} =>.Canneverbe Limited
O42 - Logiciel: Conexant HD Audio - (.Conexant.) [HKLM][64Bits] -- CNXT_AUDIO_HDA =>.Conexant Systems, Inc.®
O42 - Logiciel: CryptoTab Browser - (.Auteurs de CryptoTab Browser.) [HKLM][64Bits] -- CryptoTab Browser =>.CRYPTOCOMPANY OÜ®
O42 - Logiciel: DesktopMining 4.0.0 (only current user) - (.Desktop Mining.) [HKCU][64Bits] -- 93424205-2af0-5059-8a08-fa93c09cad51
O42 - Logiciel: DRAGON ver1.0 - (.DRAGON ver1.0.) [HKCU][64Bits] -- c111f9a501dfe943
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome =>.Google Inc®
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} =>.Google Inc. (Hidden)
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} =>.Google Inc. (Hidden)
O42 - Logiciel: HashFish - (.HashFish.) [HKCU][64Bits] -- HashFish {062820B4032BA0BB194BB09E1C728FED}
O42 - Logiciel: Helium - (.ClockworkMod.) [HKLM][64Bits] -- {9A781940-AC41-4D5E-8E1E-76A04B916FB9} =>.ClockworkMod
O42 - Logiciel: HiSuite - (.Huawei Technologies Co.,Ltd.) [HKLM][64Bits] -- Hi Suite =>.Huawei Technologies Co.,Ltd
O42 - Logiciel: HitLeap Viewer - (.HitLeap Ltd..) [HKCU][64Bits] -- HitLeap Viewer =>.HitLeap Ltd.
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA} =>.Intel(R) pGFX®
O42 - Logiciel: Internet Download Manager - (.Tonec Inc..) [HKLM][64Bits] -- Internet Download Manager =>.Tonec Inc.®
O42 - Logiciel: IPweb Surf - (.IPweb.ru.) [HKLM][64Bits] -- {12F8CF7A-1E47-44BE-A605-C9B182332610}
O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM][64Bits] -- {89B08926-B965-43B5-8C71-C10433760B14} =>.Apple Inc.
O42 - Logiciel: JPEG to Word Converter 1.0 - (.Soft Solutions.) [HKLM][64Bits] -- {B987EEA5-CC61-4ECE-B84D-99C6213BDED9}_is1 =>.Soft Solutions
O42 - Logiciel: Lenovo EasyCamera - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {E0A7ED39-8CD6-4351-93C3-69CCA00D12B4} =>.Realtek Semiconductor Corp®
O42 - Logiciel: Lenovo EasyCamera - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {E399A5B3-ED53-4DEA-AF04-8011E1EB1EAC} =>.Realtek Semiconductor Corp®
O42 - Logiciel: Malwarebytes version 3.7.1.2839 - (.Malwarebytes.) [HKLM][64Bits] -- {35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1 =>.Malwarebytes Corporation®
O42 - Logiciel: MEmu - (.Microvirt Software Technology Co. Ltd.) [HKLM][64Bits] -- MEmu =>.Microvirt Software Technology Co. Ltd
O42 - Logiciel: Microsoft Access MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0015-040C-1000-0000000FF1CE} =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Audio Enhancement Troubleshooter installer - (.Microsoft Corporation.) [HKLM][64Bits] -- {6E0351FF-6A71-45C5-A041-D4D9D8067EAF} =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft DCF MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0090-040C-1000-0000000FF1CE} =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Excel MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0016-040C-1000-0000000FF1CE} =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Groove MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-00BA-040C-1000-0000000FF1CE} =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft HEVC Media Extension Installation for Microsoft.HEVCVideoExtensio - (.Microsoft Corporation.) [HKLM][64Bits] -- {B0169E83-757B-EF66-E2F0-391944D785BC} =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft InfoPath MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0044-040C-1000-0000000FF1CE} =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Lync MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-012B-040C-1000-0000000FF1CE} =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft OneDrive - (.Microsoft Corporation.) [HKCU][64Bits] -- OneDriveSetup.exe =>.Microsoft Corporation®
O42 - Logiciel: Microsoft OneNote MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-00A1-040C-1000-0000000FF1CE} =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Outlook MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-001A-040C-1000-0000000FF1CE} =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft PowerPoint MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0018-040C-1000-0000000FF1CE} =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Publisher MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0019-040C-1000-0000000FF1CE} =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Word MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-001B-040C-1000-0000000FF1CE} =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Mozilla Firefox 45.0.2 (x86 en-US) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 45.0.2 (x86 en-US) =>.Mozilla Corporation®
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService =>.Mozilla
O42 - Logiciel: MPC-HC 1.7.13 (64-bit) - (.MPC-HC Team.) [HKLM][64Bits] -- {2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1 =>.Fotis Zafiropoulos®
O42 - Logiciel: NiceHash Miner 2 0.3.0 (only current user) - (.H-BIT d.o.o..) [HKCU][64Bits] -- 08059810-bc78-5c10-942c-2092eebb5ec8
O42 - Logiciel: OPPO USB Drivers 2.2.6.0 - (.OPPO mobile telecommunications Corp., LTD.) [HKLM][64Bits] -- {60092746-6A0F-46A9-B9F1-53B62EC0E0A4}_is1 =>.OPPO mobile telecommunications Corp., LTD
O42 - Logiciel: OtohitsApp - (.Otohits Network.) [HKLM][64Bits] -- {9B85C70F-D649-4290-8C1D-5356A5262066}_is1 {067CEC33CA120908353CDB45294C6A8E}
O42 - Logiciel: Pale Moon 27.3.0 (x64 en-US) - (.Moonchild Productions.) [HKLM][64Bits] -- Pale Moon 27.3.0 (x64 en-US) =>.Markus Straver®
O42 - Logiciel: PlayReady PC Runtime amd64 - (.Microsoft Corporation.) [HKLM][64Bits] -- {BCA9334F-B6C9-4F65-9A73-AC5A329A4D04} =>.Microsoft Corporation
O42 - Logiciel: Recuva (remove only) - (.Piriform.) [HKLM][64Bits] -- Recuva =>.Piriform
O42 - Logiciel: Security Update for Skype for Business 2015 (KB3213568) 64-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90150000-012B-040C-1000-0000000FF1CE}_Office15.PROPLUS_{70EE6BB9-3D3C-4BA1-8B88-2647A0567100} =>.Microsoft Corporation®
O42 - Logiciel: Seed4.Me VPN 1.0.46 - (.Seed4.me.) [HKLM][64Bits] -- Seed4.Me VPN =>.Seed4.Me
O42 - Logiciel: SHAREit - (.SHAREit Technologies Co.Ltd.) [HKLM][64Bits] -- www.ushareit.com_is1 =>.SHAREit Technologies Co.Ltd
O42 - Logiciel: Skype™ 6.13 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7} =>.Skype Technologies S.A.
O42 - Logiciel: SMADAV version 11.3 - (.Smadsoft.) [HKLM][64Bits] -- {8B9FA5FF-3E61-4658-B0DA-E6DDB46D6BAD}_is1 =>.SmadSoft
O42 - Logiciel: The KMPlayer v2.9.4.1435 FR - (.www.kmplayer.com/fr.) [HKLM][64Bits] -- The KMPlayer FR_is1
O42 - Logiciel: ThinkPad UltraNav Driver - (.ELAN Microelectronic Corp..) [HKLM][64Bits] -- Elantech =>.ELAN Microelectronics Corporation®
O42 - Logiciel: TP-LINK TL-WN821N(C)_TL-WN822N_TL-WN823N Driver - (.TP-LINK.) [HKLM][64Bits] -- {852E893E-E4FD-45BB-8B17-72ADDF686974} =>.TP-LINK
O42 - Logiciel: Update for Skype for Business 2015 (KB4461557) 64-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{06CB9397-D762-4A2F-8D91-DFAD58D2BAED} =>.Microsoft Corporation®
O42 - Logiciel: Update for Skype for Business 2015 (KB4461557) 64-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{06CB9397-D762-4A2F-8D91-DFAD58D2BAED} =>.Microsoft Corporation®
O42 - Logiciel: Update for Skype for Business 2015 (KB4461557) 64-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90150000-012B-040C-1000-0000000FF1CE}_Office15.PROPLUS_{06CB9397-D762-4A2F-8D91-DFAD58D2BAED} =>.Microsoft Corporation®
O42 - Logiciel: Update for Windows 10 for x64-based Systems (KB4023057) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F814D094-197F-43C8-87FA-3210BB780486} =>.Microsoft Corporation
O42 - Logiciel: UsbFix - (.www.SOSVirus.Net.) [HKLM][64Bits] -- Usbfix =>.www.SOSVirus.Net
O42 - Logiciel: Virtual Router Plus - (.Runxia Electronics.) [HKLM][64Bits] -- {0AEE4D51-3657-4F40-A689-533429CAEE0C} =>.Runxia Electronics
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player =>.VideoLAN
O42 - Logiciel: VMware Workstation - (.VMware, Inc..) [HKLM][64Bits] -- {431EEEDD-6D71-4269-8F7F-836CFAF69A17} =>.VMware, Inc.
O42 - Logiciel: Web Companion - (.Lavasoft.) [HKLM][64Bits] -- {a7abb974-4edd-4edc-bdcc-9eddfdef43cd} =>PUP.Optional.LavasoftWebCompanion
O42 - Logiciel: WinRAR 4.20 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver =>.win.rar GmbH
O42 - Logiciel: WinZip 22.0 - (.Corel Corporation.) [HKLM][64Bits] -- {CD95F661-A5C4-44F5-A6AA-ECDD91C24119} =>.Corel Corporation
O42 - Logiciel: Wondershare MobileGo(Version 8.5.0) - (.Wondershare.) [HKLM][64Bits] -- {1E04C795-7359-4E05-8A0E-5644F777AA09}_is1 =>.Wondershare
O42 - Logiciel: Yahoo! Toolbar - (.Yahoo! Inc..) [HKLM][64Bits] -- Yahoo! Companion =>.Yahoo! Inc.
O42 - Logiciel: ZTE LTE Device USB Driver - (.ZTE Corporation.) [HKLM][64Bits] -- {00C1EF09-B5B7-4082-B1F4-C35CE7A7FCA9} =>.ZTE Corporation
O42 - Logiciel: ZTE_Datacard_Product_USB_Driver - (.ZTE Corporation.) [HKLM][64Bits] -- {EFC74370-3A7B-4BFE-B4CD-43C2B496EB34}_is1 =>.ZTE Corporation
O42 - Logiciel: Служба автоматического обновления программ - (.Mail.Ru.) [HKCU][64Bits] -- MailRuUpdater =>.LLC Mail.Ru®
---\\ CLÉ DE REGISTRE SOFTWARE HKCU & HKLM (274) - 44s
HKU\.DEFAULT\Software\ByteFence =>.SUP.ByteFence
HKU\S-1-5-18\Software\ByteFence =>.SUP.ByteFence
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com =>PUP.Optional.LavasoftWebCompanion
HKEY_USERS\S-1-5-21-3743779890-750918602-2797629546-1001\Software\csastats =>Adware.InstallCore
HKCU\Software\Yahoo\YFriendsBar =>PUP.Optional.WinYahoo
HKCU\Software\Lavasoft\Web Companion =>PUP.Optional.LavasoftWebCompanion
HKCU\Software\csastats =>Adware.InstallCore
HKCU\SOFTWARE\AppDataLow\Software\Yahoo\Companion =>PUP.Optional.WinYahoo
HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com =>PUP.Optional.LavasoftWebCompanion
HKLM\SOFTWARE\Wow6432Node\Yahoo\Companion =>PUP.Optional.WinYahoo
HKLM\SOFTWARE\Wow6432Node\Lavasoft\Web Companion =>PUP.Optional.LavasoftWebCompanion
HKLM\System\CurrentControlSet\Services\EventLog\Reason\ReasonByteFence =>.SUP.ByteFence
HKLM\SOFTWARE\7-Zip =>.Igor Pavlov
HKLM\SOFTWARE\Alps =>.ALPS
HKLM\SOFTWARE\Apple Computer, Inc. =>.Apple Computer, Inc.
HKLM\SOFTWARE\Apple Inc. =>.Apple Inc.
HKLM\SOFTWARE\AVAST Software =>.AVAST Software
HKLM\SOFTWARE\Cnxt_Uiu_Parms =>.Conexant Systems, Inc.
HKLM\SOFTWARE\Conexant =>.Conexant Systems, Inc.
HKLM\SOFTWARE\Corel =>.Corel
HKLM\SOFTWARE\CyberGhost =>.CyberGhost S.R.L
HKLM\SOFTWARE\Dolby =>.Dolby
HKLM\SOFTWARE\EASEUS =>.EaseUS Software
HKLM\SOFTWARE\ej-technologies =>.ej-technologies
HKLM\SOFTWARE\Elantech =>.Elantech Inc.
HKLM\SOFTWARE\GEAR Software =>.GEAR Software
HKLM\SOFTWARE\Google =>.Google
HKLM\SOFTWARE\Huawei technologies =>.Huawei Technologies
HKLM\SOFTWARE\IM Providers =>.IM Providers
HKLM\SOFTWARE\InstalledOptions =>.Installed Options
HKLM\SOFTWARE\Intel =>.Intel
HKLM\SOFTWARE\IntelVolatile =>.Intel Corporation
HKLM\SOFTWARE\JavaSoft =>.JavaSoft
HKLM\SOFTWARE\Khronos =>.Khronos
HKLM\SOFTWARE\Lenovo =>.Lenovo
HKLM\SOFTWARE\Macromedia =>.Macromedia
HKLM\SOFTWARE\Mozilla =>.Mozilla
HKLM\SOFTWARE\mozilla.org =>.mozilla.org
HKLM\SOFTWARE\MozillaPlugins =>.MozillaPlugins
HKLM\SOFTWARE\Nico Mak Computing =>.Nico Mak Computing
HKLM\SOFTWARE\ODBC =>.DB Connectivity Solutions
HKLM\SOFTWARE\OEM =>.OEM
HKLM\SOFTWARE\OpenVPN =>.OpenVPN Technologie
HKLM\SOFTWARE\Partner =>.Google Inc.
HKLM\SOFTWARE\Printers
HKLM\SOFTWARE\RegisteredApplications =>.Microsoft Corporation
HKLM\SOFTWARE\Scanner_bot
HKLM\SOFTWARE\Seed4.Me VPN
HKLM\SOFTWARE\Synaptics =>.Synaptics
HKLM\SOFTWARE\UIU =>.Legitimate
HKLM\SOFTWARE\UIUTask
HKLM\SOFTWARE\VMware, Inc. =>.VMware, Inc.
HKLM\SOFTWARE\WinChipHead
HKLM\SOFTWARE\WinRAR =>.WinRAR
HKLM\SOFTWARE\WOW6432Node =>.Microsoft Corporation
HKLM\SOFTWARE\WOW6432Node\Adobe =>.Adobe
HKLM\SOFTWARE\WOW6432Node\Apple Inc. =>.Apple Inc.
HKLM\SOFTWARE\WOW6432Node\AVAST Software =>.AVAST Software
HKLM\SOFTWARE\WOW6432Node\AVS4YOU =>.AVS4YOU
HKLM\SOFTWARE\WOW6432Node\Baidu_Drp_pos =>.Baidu Technology
HKLM\SOFTWARE\WOW6432Node\Betternet =>.Betternet
HKLM\SOFTWARE\WOW6432Node\Bighits4u
HKLM\SOFTWARE\WOW6432Node\CDBurnerXP.axp =>.Stefan Haglund
HKLM\SOFTWARE\WOW6432Node\CDBurnerXP.dxp =>.Stefan Haglund
HKLM\SOFTWARE\WOW6432Node\CDBurnerXP.iso =>.Stefan Haglund
HKLM\SOFTWARE\WOW6432Node\Conexant =>.Conexant Systems, Inc.
HKLM\SOFTWARE\WOW6432Node\Connectify =>.Connectify
HKLM\SOFTWARE\WOW6432Node\CryptoCompany
HKLM\SOFTWARE\WOW6432Node\CryptoTab Browser =>.CryptoTab Browser
HKLM\SOFTWARE\WOW6432Node\CyberGhost =>.CyberGhost S.R.L
HKLM\SOFTWARE\WOW6432Node\DC-Unlocker
HKLM\SOFTWARE\WOW6432Node\DeskSoft =>.DeskSoft
HKLM\SOFTWARE\WOW6432Node\Google =>.Google
HKLM\SOFTWARE\WOW6432Node\IM Providers =>.IM Providers
HKLM\SOFTWARE\WOW6432Node\Innovative Solutions =>.Innovative Solutions
HKLM\SOFTWARE\WOW6432Node\Intel =>.Intel
HKLM\SOFTWARE\WOW6432Node\Internet Download Manager =>.Tonec Inc
HKLM\SOFTWARE\WOW6432Node\KasperskyLab =>.Kaspersky Labs
HKLM\SOFTWARE\WOW6432Node\Khronos =>.Khronos
HKLM\SOFTWARE\WOW6432Node\Lavasoft =>.Lavasoft
HKLM\SOFTWARE\WOW6432Node\Macromedia =>.Macromedia
HKLM\SOFTWARE\WOW6432Node\Mail.Ru =>.Mail.Ru
HKLM\SOFTWARE\WOW6432Node\Mozilla =>.Mozilla
HKLM\SOFTWARE\WOW6432Node\mozilla.org =>.mozilla.org
HKLM\SOFTWARE\WOW6432Node\MozillaPlugins =>.MozillaPlugins
HKLM\SOFTWARE\WOW6432Node\Nero =>.Ahead Corporation
HKLM\SOFTWARE\WOW6432Node\Nico Mak Computing =>.Nico Mak Computing
HKLM\SOFTWARE\WOW6432Node\ODBC =>.DB Connectivity Solutions
HKLM\SOFTWARE\WOW6432Node\Piriform =>.Piriform
HKLM\SOFTWARE\WOW6432Node\PowerPivot =>.PowerPivot
HKLM\SOFTWARE\WOW6432Node\SHAREit Technologies =>..SUP.SHAREit
HKLM\SOFTWARE\WOW6432Node\Skype =>.Skype
HKLM\SOFTWARE\WOW6432Node\SOSVirus =>.SosVirus
HKLM\SOFTWARE\WOW6432Node\ThinPrint =>.ThinPrint
HKLM\SOFTWARE\WOW6432Node\TP-LINK =>.TP-LINK
HKLM\SOFTWARE\WOW6432Node\VideoLAN =>.VideoLan Team
HKLM\SOFTWARE\WOW6432Node\VMware, Inc. =>.VMware, Inc.
HKLM\SOFTWARE\WOW6432Node\Volatile =>.Microsoft Corporation
HKLM\SOFTWARE\WOW6432Node\WafCX =>.WafCX
HKLM\SOFTWARE\WOW6432Node\Wondershare =>.Wondershare
HKLM\SOFTWARE\WOW6432Node\WOW6432Node =>.Microsoft Corporation
HKLM\SOFTWARE\WOW6432Node\Yahoo =>.Yahoo! Inc.
HKLM\SOFTWARE\WOW6432Node\RegisteredApplications =>.Microsoft Corporation
HKCU\SOFTWARE\08059810-bc78-5c10-942c-2092eebb5ec8 =>Adware.CrossRider
HKCU\SOFTWARE\7-Zip =>.Igor Pavlov
HKCU\SOFTWARE\93424205-2af0-5059-8a08-fa93c09cad51 =>Adware.CrossRider
HKCU\SOFTWARE\Adobe =>.Adobe
HKCU\SOFTWARE\Akeo Consulting =>.Akeo Consulting
HKCU\SOFTWARE\AppDataLow =>.Microsoft Corporation
HKCU\SOFTWARE\Apple Computer, Inc. =>.Apple Computer, Inc.
HKCU\SOFTWARE\Apple Inc. =>.Apple Inc.
HKCU\SOFTWARE\Applications WinDev =>.WinDev
HKCU\SOFTWARE\Atola
HKCU\SOFTWARE\avast software =>.AVAST Software
HKCU\SOFTWARE\AVS4YOU =>.AVS4YOU
HKCU\SOFTWARE\Baidu Security =>.Baidu Technology
HKCU\SOFTWARE\Baidu WiFiHotspot
HKCU\SOFTWARE\Betternet =>.Betternet
HKCU\SOFTWARE\BitTorrent =>.BitTorrent (P2P)
HKCU\SOFTWARE\Browser Cleanup =>.Avast Software s.r.o
HKCU\SOFTWARE\Canneverbe Limited =>.Canneverbe Limited
HKCU\SOFTWARE\Chromium =>.Chromium
HKCU\SOFTWARE\Conexant =>.Conexant Systems, Inc.
HKCU\SOFTWARE\CoolROM
HKCU\SOFTWARE\Corel =>.Corel
HKCU\SOFTWARE\CryptoCompany
HKCU\SOFTWARE\CryptoTab Browser =>.CryptoTab Browser
HKCU\SOFTWARE\CyberGhost =>.CyberGhost S.R.L
HKCU\SOFTWARE\DownloadManager =>.DownloadManager
HKCU\SOFTWARE\ej-technologies =>.ej-technologies
HKCU\SOFTWARE\ForceInterfaceCOM
HKCU\SOFTWARE\Freeware =>.VirtualDub.org
HKCU\SOFTWARE\Gabest =>.Gabest
HKCU\SOFTWARE\Google =>.Google
HKCU\SOFTWARE\HitLeap
HKCU\SOFTWARE\IM Providers =>.IM Providers
HKCU\SOFTWARE\IMDownloader =>.Legitimate
HKCU\SOFTWARE\Innovative Solutions =>.Innovative Solutions
HKCU\SOFTWARE\Intel =>.Intel
HKCU\SOFTWARE\JavaSoft =>.JavaSoft
HKCU\SOFTWARE\KasperskyLab =>.Kaspersky Labs
HKCU\SOFTWARE\KasperskyLabSetup =>.Kaspersky Labs
HKCU\SOFTWARE\KMPlayer =>.KMPlayer
HKCU\SOFTWARE\Lavasoft =>.Lavasoft
HKCU\SOFTWARE\Macromedia =>.Macromedia
HKCU\SOFTWARE\Mail.Ru =>.Mail.Ru
HKCU\SOFTWARE\Malwarebytes =>.Malwarebytes
HKCU\SOFTWARE\MinerUser
HKCU\SOFTWARE\Mozilla =>.Mozilla
HKCU\SOFTWARE\MozillaPlugins =>.MozillaPlugins
HKCU\SOFTWARE\MPC-HC =>.MPC-HC Team
HKCU\SOFTWARE\Nero =>.Ahead Corporation
HKCU\SOFTWARE\Netscape =>.Netscape
HKCU\SOFTWARE\Nico Mak Computing =>.Nico Mak Computing
HKCU\SOFTWARE\ODBC =>.DB Connectivity Solutions
HKCU\SOFTWARE\OPPO
HKCU\SOFTWARE\PC SOFT =>.PC SOFT
HKCU\SOFTWARE\Piriform =>.Piriform
HKCU\SOFTWARE\QtProject =>.QtProject
HKCU\SOFTWARE\redsn0w =>.Jailbreak
HKCU\SOFTWARE\RegisteredApplications =>.Microsoft Corporation
HKCU\SOFTWARE\Rtp =>.RTP Software
HKCU\SOFTWARE\SHAREit Technologies =>..SUP.SHAREit
HKCU\SOFTWARE\Skype =>.Skype
HKCU\SOFTWARE\SMADΔV
HKCU\SOFTWARE\surfeasy
HKCU\SOFTWARE\Synaptics =>.Synaptics
HKCU\SOFTWARE\Sysinternals =>.Sysinternals
HKCU\SOFTWARE\UsbFix =>.El Desaparecido
HKCU\SOFTWARE\VB and VBA Program Settings =>.Microsoft Corporation
HKCU\SOFTWARE\VMware, Inc. =>.VMware, Inc.
HKCU\SOFTWARE\Wine
HKCU\SOFTWARE\WinRAR =>.WinRAR
HKCU\SOFTWARE\WinRAR SFX =>.RarLab
HKCU\SOFTWARE\WinRecovery =>.WinRecovery Software
HKCU\SOFTWARE\WinZip Computing =>.WinZip Computing
HKCU\SOFTWARE\WixSharp =>.Legitimate
HKCU\SOFTWARE\Wondershare =>.Wondershare
HKCU\SOFTWARE\Wow6432Node =>.Microsoft Corporation
HKCU\SOFTWARE\Yahoo =>.Yahoo! Inc.
HKCU\SOFTWARE\ZHP =>.Nicolas Coolman
HKCU\SOFTWARE\AppDataLow\Software =>.Microsoft Corporation
HKCU\SOFTWARE\AppDataLow\Software\Mail.Ru =>.Mail.Ru
HKCU\SOFTWARE\AppDataLow\Software\Yahoo =>.Yahoo! Inc.
HKU\.DEFAULT\SOFTWARE\AppDataLow =>.Microsoft Corporation
HKU\.DEFAULT\SOFTWARE\Apple Inc. =>.Apple Inc.
HKU\.DEFAULT\SOFTWARE\avast software =>.AVAST Software
HKU\.DEFAULT\SOFTWARE\Conexant =>.Conexant Systems, Inc.
HKU\.DEFAULT\SOFTWARE\Corel =>.Corel
HKU\.DEFAULT\SOFTWARE\CyberGhost =>.CyberGhost S.R.L
HKU\.DEFAULT\SOFTWARE\Mail.Ru =>.Mail.Ru
HKU\.DEFAULT\SOFTWARE\Nico Mak Computing =>.Nico Mak Computing
HKU\.DEFAULT\SOFTWARE\RegisteredApplications =>.Microsoft Corporation
HKU\.DEFAULT\SOFTWARE\WinRAR =>.WinRAR
HKU\.DEFAULT\SOFTWARE\WinZip Computing =>.WinZip Computing
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\08059810-bc78-5c10-942c-2092eebb5ec8 =>Adware.CrossRider
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\7-Zip =>.Igor Pavlov
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\93424205-2af0-5059-8a08-fa93c09cad51 =>Adware.CrossRider
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Adobe =>.Adobe
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Akeo Consulting =>.Akeo Consulting
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\AppDataLow =>.Microsoft Corporation
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Apple Computer, Inc. =>.Apple Computer, Inc.
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Apple Inc. =>.Apple Inc.
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Applications WinDev =>.WinDev
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Atola
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\avast software =>.AVAST Software
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\AVS4YOU =>.AVS4YOU
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Baidu Security =>.Baidu Technology
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Baidu WiFiHotspot
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Betternet =>.Betternet
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\BitTorrent =>.BitTorrent (P2P)
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Browser Cleanup =>.Avast Software s.r.o
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Canneverbe Limited =>.Canneverbe Limited
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Chromium =>.Chromium
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Conexant =>.Conexant Systems, Inc.
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\CoolROM
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Corel =>.Corel
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\CryptoCompany
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\CryptoTab Browser =>.CryptoTab Browser
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\csastats =>Adware.InstallCore
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\CyberGhost =>.CyberGhost S.R.L
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\DownloadManager =>.DownloadManager
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\ej-technologies =>.ej-technologies
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\ForceInterfaceCOM
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Freeware =>.VirtualDub.org
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Gabest =>.Gabest
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Google =>.Google
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\HitLeap
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\IM Providers =>.IM Providers
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\IMDownloader =>.Legitimate
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Innovative Solutions =>.Innovative Solutions
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Intel =>.Intel
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\JavaSoft =>.JavaSoft
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\KasperskyLab =>.Kaspersky Labs
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\KasperskyLabSetup =>.Kaspersky Labs
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\KMPlayer =>.KMPlayer
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Lavasoft =>.Lavasoft
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Macromedia =>.Macromedia
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Mail.Ru =>.Mail.Ru
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Malwarebytes =>.Malwarebytes
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\MinerUser
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Mozilla =>.Mozilla
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\MozillaPlugins =>.MozillaPlugins
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\MPC-HC =>.MPC-HC Team
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Nero =>.Ahead Corporation
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Netscape =>.Netscape
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Nico Mak Computing =>.Nico Mak Computing
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\ODBC =>.DB Connectivity Solutions
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\OPPO
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\PC SOFT =>.PC SOFT
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Piriform =>.Piriform
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\QtProject =>.QtProject
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\redsn0w =>.Jailbreak
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\RegisteredApplications =>.Microsoft Corporation
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Rtp =>.RTP Software
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\SHAREit Technologies =>..SUP.SHAREit
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Skype =>.Skype
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\SMADΔV
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\surfeasy
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Synaptics =>.Synaptics
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Sysinternals =>.Sysinternals
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\UsbFix =>.El Desaparecido
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\VB and VBA Program Settings =>.Microsoft Corporation
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\VMware, Inc. =>.VMware, Inc.
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Wine
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\WinRAR =>.WinRAR
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\WinRAR SFX =>.RarLab
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\WinRecovery =>.WinRecovery Software
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\WinZip Computing =>.WinZip Computing
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\WixSharp =>.Legitimate
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Wondershare =>.Wondershare
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Wow6432Node =>.Microsoft Corporation
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\Yahoo =>.Yahoo! Inc.
HKU\S-1-5-21-3743779890-750918602-2797629546-1001\SOFTWARE\ZHP =>.Nicolas Coolman
---\\ CONTENU DES DOSSIERS PROGRAMMES (244) - 41s
O43 - CFD: 03/03/2018 - [] D -- C:\Program Files\7-Zip =>.Igor Pavlov
O43 - CFD: 20/03/2017 - [] AD -- C:\Program Files\Apoint2K =>.Alps Electric Co., LTD.®
O43 - CFD: 22/06/2018 - [] D -- C:\Program Files\AVAST Software =>.AVAST Software s.r.o.®
O43 - CFD: 09/10/2017 - [] AD -- C:\Program Files\Bonjour =>.Apple Inc.
O43 - CFD: 11/02/2019 - [] D -- C:\Program Files\CONEXANT =>.Conexant Systems, Inc.
O43 - CFD: 20/03/2017 - [] D -- C:\Program Files\Elantech =>.ELAN Microelectronics Corporation®
O43 - CFD: 11/02/2019 - [] D -- C:\Program Files\Intel =>.Intel Corporation
O43 - CFD: 26/07/2018 - [] D -- C:\Program Files\iPod =>.Apple Inc.®
O43 - CFD: 26/07/2018 - [] D -- C:\Program Files\iTunes =>.Apple Inc.
O43 - CFD: 16/06/2018 - [] D -- C:\Program Files\KMSnano =>HackTool.AutoKMS
O43 - CFD: 18/06/2018 - [] AD -- C:\Program Files\KMSpico =>HackTool.KMSpico
O43 - CFD: 30/03/2017 - [] D -- C:\Program Files\Malwarebytes =>.Malwarebytes
O43 - CFD: 16/01/2018 - [] AD -- C:\Program Files\MPC-HC =>.MPC-HC Team
O43 - CFD: 06/04/2017 - [] D -- C:\Program Files\OPPO
O43 - CFD: 12/05/2017 - [] AD -- C:\Program Files\Pale Moon =>.Markus Straver®
O43 - CFD: 05/02/2019 - [] D -- C:\Program Files\Seed4.Me VPN
O43 - CFD: 12/06/2018 - [] D -- C:\Program Files\Synaptics =>.Synaptics Incorporated®
O43 - CFD: 19/03/2017 - [] AD -- C:\Program Files\WinRAR =>.WinRAR
O43 - CFD: 03/03/2018 - [] D -- C:\Program Files\WinZip =>.Add-in Express®
O43 - CFD: 16/05/2018 - [] D -- C:\Program Files\ZTE LTE Datacard Product USB Driver =>.ZTE CORPORATION ®
O43 - CFD: 19/03/2017 - [] D -- C:\Program Files (x86)\Adobe =>.Adobe Systems, Incorporated®
O43 - CFD: 31/03/2017 - [] D -- C:\Program Files (x86)\AVS4YOU =>.AVS4YOU
O43 - CFD: 05/02/2019 - [] D -- C:\Program Files (x86)\Betternet =>.Betternet
O43 - CFD: 27/01/2019 - [] D -- C:\Program Files (x86)\Bighits4u
O43 - CFD: 10/02/2019 - [] D -- C:\Program Files (x86)\Blockchain
O43 - CFD: 09/10/2017 - [] AD -- C:\Program Files (x86)\Bonjour =>.Apple Inc.
O43 - CFD: 11/02/2019 - [] D -- C:\Program Files (x86)\bubans
O43 - CFD: 05/02/2018 - [] D -- C:\Program Files (x86)\CardRecovery =>.WinRecovery Software
O43 - CFD: 29/04/2017 - [] AD -- C:\Program Files (x86)\CDBurnerXP =>.Stefan Haglund
O43 - CFD: 06/06/2018 - [] D -- C:\Program Files (x86)\ClockworkMod =>.ClockworkMod
O43 - CFD: 02/02/2019 - [] D -- C:\Program Files (x86)\CryptoCompany =>.CRYPTOCOMPANY OÜ®
O43 - CFD: 02/02/2019 - [] D -- C:\Program Files (x86)\CryptoTab Browser =>.CryptoTab Browser
O43 - CFD: 31/03/2017 - [] AD -- C:\Program Files (x86)\CyberGhost =>.CyberGhost S.R.L
O43 - CFD: 31/03/2017 - [0] D -- C:\Program Files (x86)\Didsoft
O43 - CFD: 03/05/2017 - [0] AD -- C:\Program Files (x86)\EarthView
O43 - CFD: 19/03/2017 - [] D -- C:\Program Files (x86)\Google =>.Google Inc®
O43 - CFD: 27/01/2019 - [] D -- C:\Program Files (x86)\HiSuite =>.Huawei Technologies Co.,Ltd
O43 - CFD: 28/11/2017 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information =>.InstallShield
O43 - CFD: 20/03/2017 - [] D -- C:\Program Files (x86)\Intel =>.Intel Corporation
O43 - CFD: 20/03/2017 - [] D -- C:\Program Files (x86)\Internet Download Manager =>.Tonec Inc
O43 - CFD: 11/02/2019 - [] D -- C:\Program Files (x86)\jkghj
O43 - CFD: 22/06/2018 - [] D -- C:\Program Files (x86)\Lavasoft =>.Lavasoft
O43 - CFD: 03/05/2017 - [] AD -- C:\Program Files (x86)\Mozilla Firefox =>.Mozilla
O43 - CFD: 25/03/2017 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service =>.Mozilla
O43 - CFD: 03/05/2017 - [0] AD -- C:\Program Files (x86)\MY TV GRATUIT
O43 - CFD: 29/01/2019 - [] D -- C:\Program Files (x86)\Recuva =>.Piriform
O43 - CFD: 28/01/2018 - [] D -- C:\Program Files (x86)\Runxia Electronics =>.Runxia Electronics
O43 - CFD: 16/09/2017 - [] D -- C:\Program Files (x86)\SHAREit Technologies =>.SHAREit Technologies Co.Ltd®
O43 - CFD: 20/03/2017 - [] RD -- C:\Program Files (x86)\Skype =>.Skype
O43 - CFD: 30/12/2018 - [] AD -- C:\Program Files (x86)\SMADAV =>.SmadAV
O43 - CFD: 03/02/2018 - [] D -- C:\Program Files (x86)\Soft Solutions {43B2354BD3A5CBAFE6CCBEE1C1C54B55} =>.Soft Solutions
O43 - CFD: 19/03/2017 - [] AD -- C:\Program Files (x86)\The KMPlayer FR
O43 - CFD: 20/03/2017 - [] D -- C:\Program Files (x86)\VideoLAN =>.VideoLan Team
O43 - CFD: 09/02/2019 - [] D -- C:\Program Files (x86)\VMware =>.VMware, Inc.®
O43 - CFD: 05/02/2019 - [] D -- C:\Program Files (x86)\VPN Unlimited
O43 - CFD: 06/06/2018 - [] D -- C:\Program Files (x86)\Wondershare =>.Wondershare
O43 - CFD: 29/01/2019 - [] D -- C:\Program Files (x86)\Yahoo! =>.Yahoo!
O43 - CFD: 12/06/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip =>.Igor Pavlov
O43 - CFD: 12/04/2018 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools
O43 - CFD: 12/06/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVS4YOU =>.AVS4YOU
O43 - CFD: 05/02/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Betternet Technologies Inc =>.Betternet
O43 - CFD: 12/06/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDBurnerXP =>.Stefan Haglund
O43 - CFD: 12/06/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ClockworkMod =>.ClockworkMod
O43 - CFD: 12/06/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Conexant =>.Conexant Systems, Inc.
O43 - CFD: 09/02/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HashFish
O43 - CFD: 27/01/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HiSuite =>.Huawei Technologies Co.,Ltd
O43 - CFD: 12/06/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iMyFone =>.iMyFone
O43 - CFD: 12/06/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager =>.Tonec Inc
O43 - CFD: 26/07/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes =>.Apple Inc.
O43 - CFD: 16/06/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSnano =>HackTool.AutoKMS
O43 - CFD: 12/06/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSpico =>HackTool.KMSpico
O43 - CFD: 22/06/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft =>.Lavasoft
O43 - CFD: 11/02/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes =>.Malwarebytes
O43 - CFD: 12/06/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MPC-HC x64 =>.MPC-HC Team
O43 - CFD: 25/01/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Otohits Network
O43 - CFD: 12/06/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Runxia Electronics =>.Runxia Electronics
O43 - CFD: 12/06/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SHAREit =>.Lenovo Group Limited
O43 - CFD: 12/06/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype =>.Skype
O43 - CFD: 12/06/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SMADAV Antivirus =>.SmadAV
O43 - CFD: 12/06/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Soft Solutions =>.Soft Solutions
O43 - CFD: 12/06/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The KMPlayer FR
O43 - CFD: 12/06/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TP-LINK =>.TP-LINK
O43 - CFD: 12/06/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN =>.VideoLan Team
O43 - CFD: 09/02/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VMware =>.VMware
O43 - CFD: 12/06/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR
O43 - CFD: 12/06/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip 22.0
O43 - CFD: 12/06/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare =>.Wondershare
O43 - CFD: 25/07/2018 - [] D -- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69 =>.GEAR Software, Inc.
O43 - CFD: 27/03/2017 - [] D -- C:\ProgramData\Adobe =>.Adobe
O43 - CFD: 26/09/2017 - [] D -- C:\ProgramData\AMProLocalSettings
O43 - CFD: 18/10/2017 - [] D -- C:\ProgramData\Apple =>.Apple Inc.
O43 - CFD: 26/07/2018 - [] D -- C:\ProgramData\Apple Computer =>.Apple Inc.
O43 - CFD: 22/06/2018 - [] D -- C:\ProgramData\AVAST Software =>.AVAST Software
O43 - CFD: 31/03/2017 - [] D -- C:\ProgramData\AVS4YOU =>.AVS4YOU
O43 - CFD: 05/02/2019 - [] D -- C:\ProgramData\Betternet =>.Betternet
O43 - CFD: 29/04/2017 - [] D -- C:\ProgramData\Canneverbe Limited =>.Canneverbe Limited
O43 - CFD: 31/08/2017 - [] D -- C:\ProgramData\Conexant =>.Conexant Systems, Inc.
O43 - CFD: 26/07/2018 - [] D -- C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7 =>.Gearbox Software
O43 - CFD: 31/03/2017 - [] D -- C:\ProgramData\EPS
O43 - CFD: 11/02/2019 - [] D -- C:\ProgramData\GHQ
O43 - CFD: 20/03/2017 - [0] D -- C:\ProgramData\IDM =>.IDM
O43 - CFD: 11/02/2019 - [] SHD -- C:\ProgramData\IEOJJK
O43 - CFD: 03/01/2018 - [] D -- C:\ProgramData\Kaspersky Lab =>.Kaspersky Lab
O43 - CFD: 03/01/2018 - [] D -- C:\ProgramData\Kaspersky Lab Setup Files =>.Kaspersky Lab
O43 - CFD: 22/06/2018 - [] D -- C:\ProgramData\Lavasoft =>.Lavasoft
O43 - CFD: 10/02/2019 - [] D -- C:\ProgramData\Mail.Ru =>.Mail.Ru
O43 - CFD: 11/02/2019 - [] D -- C:\ProgramData\Malwarebytes =>.Malwarebytes
O43 - CFD: 29/04/2017 - [] D -- C:\ProgramData\Nero =>.Ahead Corporation
O43 - CFD: 10/10/2017 - [] D -- C:\ProgramData\Oracle =>.Oracle
O43 - CFD: 16/01/2018 - [] D -- C:\ProgramData\PC Faster
O43 - CFD: 23/10/2018 - [] D -- C:\ProgramData\Realtek =>.Realtek
O43 - CFD: 31/10/2017 - [] D -- C:\ProgramData\SEUpdInstaller
O43 - CFD: 20/03/2017 - [] D -- C:\ProgramData\Skype =>.Skype
O43 - CFD: 31/03/2017 - [] D -- C:\ProgramData\SurfEasy VPN
O43 - CFD: 31/03/2017 - [] D -- C:\ProgramData\SurfEasyService
O43 - CFD: 23/10/2017 - [] D -- C:\ProgramData\SystemAcCrux
O43 - CFD: 28/11/2017 - [] D -- C:\ProgramData\TP-LINK =>.TP-LINK
O43 - CFD: 11/02/2019 - [] AD -- C:\ProgramData\VMware =>.VMware
O43 - CFD: 25/05/2018 - [] D -- C:\ProgramData\WinZip =>.WinZip
O43 - CFD: 22/01/2018 - [] D -- C:\ProgramData\Wondershare =>.Wondershare
O43 - CFD: 29/01/2019 - [] D -- C:\ProgramData\Yahoo! Companion =>.Yahoo! Inc.
O43 - CFD: 11/02/2019 - [] D -- C:\ProgramData\{60C77695-5F0B-3E37-7342-B4B273A5EDE3}
O43 - CFD: 11/02/2019 - [] D -- C:\ProgramData\{8F04E9E6-C078-D1F4-00DD-775D003A2E0C}
O43 - CFD: 19/03/2017 - [] AD -- C:\Program Files (x86)\Common Files\Adobe =>.Adobe
O43 - CFD: 25/07/2018 - [] D -- C:\Program Files (x86)\Common Files\Apple =>.Apple Inc.
O43 - CFD: 31/03/2017 - [] D -- C:\Program Files (x86)\Common Files\AVSMedia =>.AVSMedia
O43 - CFD: 12/06/2018 - [] D -- C:\Program Files (x86)\Common Files\Intel =>.Intel Corporation
O43 - CFD: 20/03/2017 - [] AD -- C:\Program Files (x86)\Common Files\Skype =>.Skype
O43 - CFD: 09/02/2019 - [] D -- C:\Program Files (x86)\Common Files\ThinPrint =>.ThinPrint
O43 - CFD: 09/02/2019 - [] D -- C:\Program Files (x86)\Common Files\VMware =>.VMware
O43 - CFD: 27/03/2017 - [] D -- C:\Users\LENOVO\AppData\Roaming\Adobe =>.Adobe
O43 - CFD: 02/12/2017 - [] D -- C:\Users\LENOVO\AppData\Roaming\Apple Computer =>.Apple Inc.
O43 - CFD: 16/12/2017 - [] D -- C:\Users\LENOVO\AppData\Roaming\Appԁata
O43 - CFD: 22/06/2018 - [] D -- C:\Users\LENOVO\AppData\Roaming\AVAST Software =>.AVAST Software
O43 - CFD: 16/01/2018 - [] D -- C:\Users\LENOVO\AppData\Roaming\Baidu =>.Baidu
O43 - CFD: 29/04/2017 - [] D -- C:\Users\LENOVO\AppData\Roaming\Canneverbe Limited =>.Canneverbe Limited
O43 - CFD: 02/02/2019 - [] D -- C:\Users\LENOVO\AppData\Roaming\CryptoTab Browser =>.CryptoTab Browser
O43 - CFD: 21/04/2017 - [] D -- C:\Users\LENOVO\AppData\Roaming\DeskSoft =>.DeskSoft
O43 - CFD: 11/02/2019 - [] D -- C:\Users\LENOVO\AppData\Roaming\DesktopMining
O43 - CFD: 27/01/2019 - [] D -- C:\Users\LENOVO\AppData\Roaming\Diabolic Labs
O43 - CFD: 11/02/2019 - [] D -- C:\Users\LENOVO\AppData\Roaming\DMCache =>.DMCache
O43 - CFD: 18/09/2018 - [] D -- C:\Users\LENOVO\AppData\Roaming\dvdcss =>.VideoLan Team
O43 - CFD: 09/02/2019 - [] D -- C:\Users\LENOVO\AppData\Roaming\EarnMoney
O43 - CFD: 11/02/2019 - [0] D -- C:\Users\LENOVO\AppData\Roaming\etdapfwez5f
O43 - CFD: 17/01/2019 - [] D -- C:\Users\LENOVO\AppData\Roaming\Google =>.Google
O43 - CFD: 09/02/2019 - [] D -- C:\Users\LENOVO\AppData\Roaming\HashFish
O43 - CFD: 06/06/2018 - [] D -- C:\Users\LENOVO\AppData\Roaming\HMYGSetting =>Adware.Suspect
O43 - CFD: 31/01/2019 - [] D -- C:\Users\LENOVO\AppData\Roaming\IDM =>.IDM
O43 - CFD: 25/03/2017 - [] D -- C:\Users\LENOVO\AppData\Roaming\Innovative Solutions =>.Innovative Solutions
O43 - CFD: 11/02/2019 - [] D -- C:\Users\LENOVO\AppData\Roaming\IPweb Surf
O43 - CFD: 19/10/2017 - [] SHD -- C:\Users\LENOVO\AppData\Roaming\Latas
O43 - CFD: 22/06/2018 - [] D -- C:\Users\LENOVO\AppData\Roaming\Lavasoft =>.Lavasoft
O43 - CFD: 20/03/2017 - [] D -- C:\Users\LENOVO\AppData\Roaming\Macromedia =>.Macromedia
O43 - CFD: 19/03/2017 - [] D -- C:\Users\LENOVO\AppData\Roaming\Moonchild Productions =>.Moonchild Productions
O43 - CFD: 25/03/2017 - [] D -- C:\Users\LENOVO\AppData\Roaming\Mozilla =>.Mozilla Corporation
O43 - CFD: 01/04/2017 - [] D -- C:\Users\LENOVO\AppData\Roaming\MPC-HC =>.MPC-HC Team
O43 - CFD: 29/04/2017 - [] D -- C:\Users\LENOVO\AppData\Roaming\Nero =>.Ahead Corporation
O43 - CFD: 06/02/2019 - [] D -- C:\Users\LENOVO\AppData\Roaming\nhm2
O43 - CFD: 06/02/2019 - [] D -- C:\Users\LENOVO\AppData\Roaming\NiceHash Miner 2
O43 - CFD: 17/01/2018 - [] D -- C:\Users\LENOVO\AppData\Roaming\PC Faster
O43 - CFD: 08/02/2019 - [] D -- C:\Users\LENOVO\AppData\Roaming\poclbm
O43 - CFD: 16/12/2017 - [] SHD -- C:\Users\LENOVO\AppData\Roaming\Pr
O43 - CFD: 11/10/2017 - [] D -- C:\Users\LENOVO\AppData\Roaming\redsn0w
O43 - CFD: 11/02/2019 - [0] D -- C:\Users\LENOVO\AppData\Roaming\s5jtxt2vlww
O43 - CFD: 11/02/2019 - [] D -- C:\Users\LENOVO\AppData\Roaming\Skype =>.Skype
O43 - CFD: 16/06/2017 - [] D -- C:\Users\LENOVO\AppData\Roaming\Smadav =>.SmadAV
O43 - CFD: 03/02/2018 - [] D -- C:\Users\LENOVO\AppData\Roaming\Soft Solutions =>.Soft Solutions
O43 - CFD: 16/09/2017 - [] D -- C:\Users\LENOVO\AppData\Roaming\Umeng
O43 - CFD: 11/02/2019 - [] D -- C:\Users\LENOVO\AppData\Roaming\uTorrent
O43 - CFD: 12/10/2018 - [] D -- C:\Users\LENOVO\AppData\Roaming\vlc =>.VideoLan Team
O43 - CFD: 10/02/2019 - [] D -- C:\Users\LENOVO\AppData\Roaming\VMware =>.VMware
O43 - CFD: 11/02/2019 - [0] D -- C:\Users\LENOVO\AppData\Roaming\wi05ffhglgo
O43 - CFD: 20/03/2017 - [] D -- C:\Users\LENOVO\AppData\Roaming\WinRAR =>.WinRAR
O43 - CFD: 06/06/2018 - [] D -- C:\Users\LENOVO\AppData\Roaming\Wondershare =>.Wondershare
O43 - CFD: 29/01/2019 - [] D -- C:\Users\LENOVO\AppData\Roaming\Yahoo! =>.Yahoo!
O43 - CFD: 11/02/2019 - [0] D -- C:\Users\LENOVO\AppData\Roaming\ypq1zsgqdp4
O43 - CFD: 11/02/2019 - [] D -- C:\Users\LENOVO\AppData\Roaming\ZHP =>.Nicolas Coolman
O43 - CFD: 27/03/2017 - [] D -- C:\Users\LENOVO\AppData\Local\Adobe =>.Adobe
O43 - CFD: 09/10/2017 - [] D -- C:\Users\LENOVO\AppData\Local\Apple =>.Apple Inc.
O43 - CFD: 09/10/2017 - [] D -- C:\Users\LENOVO\AppData\Local\Apple Computer =>.Apple Inc.
O43 - CFD: 24/07/2018 - [] D -- C:\Users\LENOVO\AppData\Local\assembly =>.Assembly
O43 - CFD: 05/01/2019 - [] D -- C:\Users\LENOVO\AppData\Local\AVAST Software =>.AVAST Software
O43 - CFD: 10/02/2019 - [] D -- C:\Users\LENOVO\AppData\Local\Blockchain_Miner_Pro
O43 - CFD: 22/06/2018 - [] D -- C:\Users\LENOVO\AppData\Local\CEF =>.CEF
O43 - CFD: 18/01/2018 - [] D -- C:\Users\LENOVO\AppData\Local\com.surfeasy.se0211
O43 - CFD: 20/03/2017 - [] D -- C:\Users\LENOVO\AppData\Local\Conexant =>.Conexant Systems, Inc.
O43 - CFD: 02/02/2019 - [] D -- C:\Users\LENOVO\AppData\Local\CryptoCompany
O43 - CFD: 02/02/2019 - [] D -- C:\Users\LENOVO\AppData\Local\CryptoTab Browser =>.CryptoTab Browser
O43 - CFD: 26/08/2018 - [] D -- C:\Users\LENOVO\AppData\Local\D3DSCache =>.Legitimate
O43 - CFD: 14/09/2017 - [0] D -- C:\Users\LENOVO\AppData\Local\DBG =>.DBG
O43 - CFD: 18/10/2017 - [] D -- C:\Users\LENOVO\AppData\Local\Embratoria =>.Embratoria
O43 - CFD: 06/04/2017 - [] D -- C:\Users\LENOVO\AppData\Local\Geckofx =>.Geckofx
O43 - CFD: 20/03/2017 - [] D -- C:\Users\LENOVO\AppData\Local\Google =>.Google
O43 - CFD: 27/01/2019 - [] D -- C:\Users\LENOVO\AppData\Local\Hisuite =>.Huawei Technologies Co.,Ltd
O43 - CFD: 27/01/2019 - [] D -- C:\Users\LENOVO\AppData\Local\HitLeap Viewer
O43 - CFD: 25/03/2017 - [] D -- C:\Users\LENOVO\AppData\Local\Innovative Solutions =>.Innovative Solutions
O43 - CFD: 17/12/2017 - [] D -- C:\Users\LENOVO\AppData\Local\IsolatedStorage =>.id Software
O43 - CFD: 05/02/2019 - [] D -- C:\Users\LENOVO\AppData\Local\KeepSolid Inc
O43 - CFD: 22/06/2018 - [] D -- C:\Users\LENOVO\AppData\Local\Lavasoft =>.Lavasoft
O43 - CFD: 10/02/2019 - [] D -- C:\Users\LENOVO\AppData\Local\Mail.Ru =>.Mail.Ru
O43 - CFD: 11/08/2017 - [] D -- C:\Users\LENOVO\AppData\Local\Mamcom_Tv
O43 - CFD: 11/02/2019 - [] D -- C:\Users\LENOVO\AppData\Local\mbam =>.Malwarebytes
O43 - CFD: 11/02/2019 - [] D -- C:\Users\LENOVO\AppData\Local\mbamtray =>.Malwarebytes
O43 - CFD: 04/10/2017 - [] D -- C:\Users\LENOVO\AppData\Local\MobTV
O43 - CFD: 19/03/2017 - [] D -- C:\Users\LENOVO\AppData\Local\Moonchild Productions =>.Moonchild Productions
O43 - CFD: 25/03/2017 - [] D -- C:\Users\LENOVO\AppData\Local\Mozilla =>.Mozilla Corporation
O43 - CFD: 29/04/2017 - [] D -- C:\Users\LENOVO\AppData\Local\Nero =>.Ahead Corporation
O43 - CFD: 29/04/2017 - [] D -- C:\Users\LENOVO\AppData\Local\Nero_AG =>.Ahead
O43 - CFD: 20/03/2017 - [0] D -- C:\Users\LENOVO\AppData\Local\NetworkTiles =>.NetworkTiles
O43 - CFD: 02/12/2017 - [0] D -- C:\Users\LENOVO\AppData\Local\pangu =>.Pangu Team
O43 - CFD: 11/02/2019 - [] D -- C:\Users\LENOVO\AppData\Local\Seed4Me
O43 - CFD: 16/09/2017 - [] D -- C:\Users\LENOVO\AppData\Local\SHAREit Technologies
O43 - CFD: 20/03/2017 - [] D -- C:\Users\LENOVO\AppData\Local\Skype =>.Skype
O43 - CFD: 17/08/2017 - [] D -- C:\Users\LENOVO\AppData\Local\Smart PC Soft =>.Smart PC Soft
O43 - CFD: 17/08/2017 - [] D -- C:\Users\LENOVO\AppData\Local\Smart_PC_Soft =>.Smart PC Soft
O43 - CFD: 28/01/2018 - [] D -- C:\Users\LENOVO\AppData\Local\VirtualRouterPlus
O43 - CFD: 10/02/2019 - [] D -- C:\Users\LENOVO\AppData\Local\VMware =>.VMware
O43 - CFD: 11/04/2017 - [] D -- C:\Users\LENOVO\AppData\Local\WDSetup =>.WDSetup
O43 - CFD: 02/06/2018 - [] D -- C:\Users\LENOVO\AppData\Local\WinZip =>.WinZip
O43 - CFD: 11/02/2019 - [] D -- C:\Users\LENOVO\AppData\Local\ZHP =>.Nicolas Coolman
O43 - CFD: 05/02/2019 - [] D -- C:\Users\LENOVO\AppData\Local\Programs\DesktopMining
O43 - CFD: 06/02/2019 - [] D -- C:\Users\LENOVO\AppData\Local\Programs\NiceHash Miner 2
O43 - CFD: 27/03/2017 - [] D -- C:\Users\LENOVO\AppData\LocalLow\Adobe =>.Adobe
O43 - CFD: 19/10/2017 - [] D -- C:\Users\LENOVO\AppData\LocalLow\Apple Computer =>.Apple Inc.
O43 - CFD: 11/02/2019 - [] D -- C:\Users\LENOVO\AppData\LocalLow\uTorrent
O43 - CFD: 05/02/2019 - [] D -- C:\Users\LENOVO\Desktop\ali C
O43 - CFD: 09/02/2019 - [] D -- C:\Users\LENOVO\Desktop\Nouveau dossier
O43 - CFD: 12/12/2018 - [] RD -- C:\Users\LENOVO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools
O43 - CFD: 17/01/2019 - [] D -- C:\Users\LENOVO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome =>.Google Inc.
O43 - CFD: 12/06/2018 - [] D -- C:\Users\LENOVO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AVS4YOU =>.AVS4YOU
O43 - CFD: 27/01/2019 - [] D -- C:\Users\LENOVO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bighits4u
O43 - CFD: 12/06/2018 - [] D -- C:\Users\LENOVO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CardRecovery =>.WinRecovery Software
O43 - CFD: 12/06/2018 - [] D -- C:\Users\LENOVO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DRAGON ver1.0
O43 - CFD: 25/01/2019 - [] D -- C:\Users\LENOVO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GLOBUS INTERCOM
O43 - CFD: 09/02/2019 - [] D -- C:\Users\LENOVO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HashFish
O43 - CFD: 27/01/2019 - [] D -- C:\Users\LENOVO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HitLeap
O43 - CFD: 12/06/2018 - [] D -- C:\Users\LENOVO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager =>.Tonec Inc
O43 - CFD: 23/03/2018 - [0] D -- C:\Users\LENOVO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MEmu =>.Microvirt Software Technology Ltd.
O43 - CFD: 29/01/2019 - [] D -- C:\Users\LENOVO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Recuva =>.Piriform
O43 - CFD: 12/06/2018 - [] D -- C:\Users\LENOVO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR
O43 - CFD: 10/02/2019 - [] -- C:\WINDOWS\System32\Config\systemprofile\AppData\Local\Mail.Ru =>.Mail.Ru
O43 - CFD: 05/02/2019 - [] -- C:\WINDOWS\System32\Config\systemprofile\AppData\Local\Seed4
O43 - CFD: 18/06/2018 - [] -- C:\WINDOWS\System32\Config\systemprofile\AppData\Local\SHAREit Technologies
O43 - CFD: 11/02/2019 - [0] D -- C:\WINDOWS\System32\Config\systemprofile\AppData\Roaming\VMware =>.VMware
---\\ DERNIERS FICHIERS CRÉÉS DANS WINDOWS Prefetcher (2) - 63s
O45 - LFCP:[MD5.A2B0CEAF2ABD13BCBB1D6A59F5042D1B] 15/06/2018 A -- C:\WINDOWS\Prefetch\KMSNANO SETUP.TMP-ED76468D.pf =>HackTool.AutoKMS
O45 - LFCP:[MD5.BF9E6715273DAB4E7C962F8E4D73D63F] 10/02/2019 A -- C:\WINDOWS\Prefetch\QUOTEEX.EXE-8DEA0167.pf =>PUP.Optional.Graftor
---\\ ShellIconOverlayIdentifiers (SIOI) (7) - 1s
O106 - SIOI: [ IDM Shell Extension] - {CDC95B92-E27C-4745-A8C5-64A52A78855D}. (.Tonec Inc. - Internet Download Manager module.) -- C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll =>.Tonec Inc.®
O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 1 (ErrorConflict) [ SkyDrivePro1 (ErrorConflict)] - {8BA85C75-763B-4103-94EB-9470F12FE0F7}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 2 (SyncInProgress) [ SkyDrivePro2 (SyncInProgress)] - {CD55129A-B1A1-438E-A425-CEBC7DC684EE}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 3 (InSync) [ SkyDrivePro3 (InSync)] - {E768CD3B-BDDC-436D-9C13-E1B39CA257B1}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: avast [00asw] - {472083B0-C522-11CF-8763-00608CC02F24}. (.AVAST Software - Avast Shell Extension.) -- C:\Program Files\AVAST Software\Avast\ashShell.dll =>.AVAST Software s.r.o.®
O106 - SIOI: [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - DLL d’extension d’environnement de stockage.) -- C:\Windows\System32\EhStorShell.dll =>.Microsoft Corporation
O106 - SIOI: [Offline Files] - {4E77131D-3629-431c-9818-C5679DC83E81}. (.Microsoft Corporation - IU de cache côté client.) -- C:\WINDOWS\System32\cscui.dll =>.Microsoft Corporation
---\\ IMAGE FILE EXECUTION OPTIONS (IFEO) (18) - 3s
O50 - IFEO:C:\Windows\System32\cscript.exe - (.Microsoft Corporation - Microsoft ® Console Based Script Host.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\dllhost.exe - (.Microsoft Corporation - COM Surrogate.) [DisableExceptionChainValidation\\3] =>.Microsoft Windows®
O50 - IFEO:C:\WINDOWS\System32\drvinst.exe - (.Microsoft Corporation - Module d’installation de pilotes.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\ie4uinit.exe - (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\ieUnatt.exe - (.Microsoft Corporation - Outil d’installation sans assistance d’IE 7.) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\mmc.exe - (.Microsoft Corporation - Microsoft Management Console.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\MRT.exe - (.Microsoft Corporation - Outil de suppression de logiciels malveilla.) [CFGOptions\\1] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\msfeedssync.exe - (.Microsoft Corporation - Microsoft Feeds Synchronization.) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\mshta.exe - (.Microsoft Corporation - Hôte des applications HTML de Microsoft(R).) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\PresentationHost.exe - (.Microsoft Corporation - Windows Presentation Foundation Host.) [MitigationOptions\\1118481] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\PrintIsolationHost.exe - (.Microsoft Corporation - PrintIsolationHost.) [MitigationOptions\\2097152] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\rundll32.exe - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\runtimebroker.exe - (.Microsoft Corporation - Runtime Broker.) [MitigationOptions\\4294967296] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\searchprotocolhost.exe - (.Microsoft Corporation - Microsoft Windows Search Protocol Host.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\spoolsv.exe - (.Microsoft Corporation - Application sous-système spouleur.) [MitigationOptions\\2097152] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\svchost.exe - (.Microsoft Corporation - Processus hôte pour les services Windows.) [MinimumStackCommitInBytes\\32768] =>.Microsoft Windows Publisher®
O50 - IFEO:C:\Windows\System32\svchost.exe - (.Microsoft Corporation - Processus hôte pour les services Windows.) [MitigationAuditOptions\\17660905521152] =>.Microsoft Windows Publisher®
O50 - IFEO:C:\Windows\System32\wscript.exe - (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
---\\ LISTE DES PILOTES DU SYSTÈME (125) - 53s
O58 - SDL:2018/04/12 00:33:48 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\WINDOWS\System32\drivers\3ware.sys [107416] =>.Microsoft Windows®
O58 - SDL:2017/09/22 20:56:58 A . (.Malwarebytes - Malwarebytes SwissArmy.) -- C:\WINDOWS\System32\drivers\716C2463.sys [251832] =>.Malwarebytes Corporation®
O58 - SDL:2011/12/08 11:01:48 A . (.Lenovo Corporation - ACPI Virtual Power Controller Driver.) -- C:\WINDOWS\System32\drivers\AcpiVpc.sys [29792] =>.Lenovo (Beijing) Limited®
O58 - SDL:2018/04/12 00:33:48 A . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS.) -- C:\WINDOWS\System32\drivers\adp80xx.sys [1135520] =>.Microsoft Windows®
O58 - SDL:2018/04/12 00:33:48 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\WINDOWS\System32\drivers\amdsata.sys [83360] =>.Microsoft Windows®
O58 - SDL:2018/04/12 00:33:48 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\WINDOWS\System32\drivers\amdsbs.sys [259480] =>.Microsoft Windows®
O58 - SDL:2018/04/12 00:33:48 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\WINDOWS\System32\drivers\amdxata.sys [27032] =>.Microsoft Windows®
O58 - SDL:2010/07/21 15:38:54 A . (.Alps Electric Co., Ltd. - Alps Touch Pad Driver.) -- C:\WINDOWS\System32\drivers\Apfiltr.sys [305784] =>.Alps Electric Co., LTD.®
O58 - SDL:2018/04/12 00:33:48 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\WINDOWS\System32\drivers\arcsas.sys [132000] =>.Microsoft Windows®
O58 - SDL:2019/02/08 01:45:34 A . (.AVAST Software - Avast anti rootkit disk filter.) -- C:\WINDOWS\System32\drivers\aswArDisk.sys [37104] =>.AVAST Software s.r.o.®
O58 - SDL:2019/02/08 01:45:35 A . (.AVAST Software - Avast anti rootkit.) -- C:\WINDOWS\System32\drivers\aswArPot.sys [205400] =>.AVAST Software s.r.o.®
O58 - SDL:2019/02/08 01:45:20 A . (.AVAST Software - IDS Application Activity Monitor Driver..) -- C:\WINDOWS\System32\drivers\aswbidsdriver.sys [225680] =>.AVAST Software s.r.o.®
O58 - SDL:2019/02/08 01:45:20 A . (.AVAST Software - Application Activity Monitor Helper Driver.) -- C:\WINDOWS\System32\drivers\aswbidsh.sys [196072] =>.AVAST Software s.r.o.®
O58 - SDL:2019/02/08 01:45:20 A . (.AVAST Software - Logging Driver.) -- C:\WINDOWS\System32\drivers\aswblog.sys [320696] =>.AVAST Software s.r.o.®
O58 - SDL:2019/02/08 01:45:20 A . (.AVAST Software - Universal Driver.) -- C:\WINDOWS\System32\drivers\aswbuniv.sys [57960] =>.AVAST Software s.r.o.®
O58 - SDL:2019/01/05 15:03:06 A . (.AVAST Software - Avast ELAM Driver.) -- C:\WINDOWS\System32\drivers\aswElam.sys [15488] =>.Microsoft Corporation®
O58 - SDL:2019/02/08 01:46:05 A . (.AVAST Software - Home Network Security.) -- C:\WINDOWS\System32\drivers\aswHdsKe.sys [249456] =>.AVAST Software s.r.o.®
O58 - SDL:2019/02/08 01:46:06 A . (.AVAST Software - Avast Keyboard Filter Driver.) -- C:\WINDOWS\System32\drivers\aswKbd.sys [42288] =>.AVAST Software s.r.o.®
O58 - SDL:2019/02/08 01:46:07 A . (.AVAST Software - Avast File System Minifilter for Windows 20.) -- C:\WINDOWS\System32\drivers\aswMonFlt.sys [167304] =>.AVAST Software s.r.o.®
O58 - SDL:2019/02/08 01:46:06 A . (.AVAST Software - Avast WFP Redirect Driver.) -- C:\WINDOWS\System32\drivers\aswRdr2.sys [112312] =>.AVAST Software s.r.o.®
O58 - SDL:2019/02/08 01:46:07 A . (.AVAST Software - Avast Revert.) -- C:\WINDOWS\System32\drivers\aswRvrt.sys [87944] =>.AVAST Software s.r.o.® (Avast Software s.r.o)
O58 - SDL:2019/02/08 01:45:33 A . (.AVAST Software - Avast Virtualization Driver.) -- C:\WINDOWS\System32\drivers\aswSnx.sys [1034432] =>.AVAST Software s.r.o.®
O58 - SDL:2019/02/08 01:46:07 A . (.AVAST Software - Avast self protection module.) -- C:\WINDOWS\System32\drivers\aswSP.sys [474456] =>.AVAST Software s.r.o.®
O58 - SDL:2019/02/08 01:46:08 A . (.AVAST Software - Stream Filter.) -- C:\WINDOWS\System32\drivers\aswStm.sys [216784] =>.AVAST Software s.r.o.®
O58 - SDL:2019/02/08 01:46:15 A . (.AVAST Software - Avast VM Monitor.) -- C:\WINDOWS\System32\drivers\aswVmm.sys [379952] =>.AVAST Software s.r.o.® (Avast Software s.r.o)
O58 - SDL:2018/04/12 00:33:48 A . (. - BCM Function 2 Device Driver.) -- C:\WINDOWS\System32\drivers\bcmfn2.sys [9728] =>.Broadcom Corporation
O58 - SDL:2018/04/12 00:33:48 A . (.QLogic Corporation - QLogic Gigabit Ethernet VBD.) -- C:\WINDOWS\System32\drivers\bxvbda.sys [533912] =>.Microsoft Windows®
O58 - SDL:2018/01/18 21:20:35 A . (.Connectify - Connectify NDISRD helper driver.) -- C:\WINDOWS\System32\drivers\cfywlan2.sys [46088] =>.Connectify (Connectify, Inc.)®
O58 - SDL:2016/07/07 02:53:40 A . (.Conexant Systems Inc. - 64-bit High Definition Audio Function Drive.) -- C:\WINDOWS\System32\drivers\CHDRT64.sys [1560616] =>.Conexant Systems, Inc.®
O58 - SDL:2018/04/12 00:33:49 A . (.Chelsio Communications - Chelsio iSCSI Crash Dump Driver.) -- C:\WINDOWS\System32\drivers\cht4dx64.sys [143768] =>.Microsoft Windows®
O58 - SDL:2018/04/12 00:33:49 A . (.Chelsio Communications - Chelsio iSCSI VMiniport Driver.) -- C:\WINDOWS\System32\drivers\cht4sx64.sys [321432] =>.Microsoft Windows®
O58 - SDL:2018/04/12 00:33:49 A . (.Chelsio Communications - VF library for Chelsio ® T5/T6 Chipset.) -- C:\WINDOWS\System32\drivers\cht4vfx.sys [29184] =>.Chelsio Communications
O58 - SDL:2018/04/12 00:33:49 A . (.Chelsio Communications - Virtual Bus Driver for Chelsio ® T5/T6 Chip.) -- C:\WINDOWS\System32\drivers\cht4vx64.sys [1836952] =>.Microsoft Windows®
O58 - SDL:2018/01/20 14:41:43 A . (.Connectify - NDISRD helper driver.) -- C:\WINDOWS\System32\drivers\cnnctfy3.sys [35352] =>.Connectify®
O58 - SDL:2018/01/18 21:20:35 A . (.Connectify - CNNCTFY helper driver.) -- C:\WINDOWS\System32\drivers\cnnctfy4.sys [53216] =>.Connectify (Connectify, Inc.)®
O58 - SDL:2012/10/03 14:12:32 A . (.ELAN Microelectronics Corp. - ETD Kernel Center.) -- C:\WINDOWS\System32\drivers\ETD.sys [323920] =>.ELAN Microelectronics Corporation®
O58 - SDL:2018/04/12 00:33:48 A . (.QLogic Corporation - QLogic 10 GigE VBD.) -- C:\WINDOWS\System32\drivers\evbda.sys [3419032] =>.Microsoft Windows®
O58 - SDL:2018/12/12 11:32:56 A . (.Huawei Technologies Co., Ltd. - Filter Driver.) -- C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2019/02/11 16:56:51 A . (.Malwarebytes - Malwarebytes Anti-Ransomware Protection.) -- C:\WINDOWS\System32\drivers\farflt.sys [127136] =>.Malwarebytes Corporation®
O58 - SDL:2012/08/21 13:01:20 A . (.GEAR Software Inc. - CD DVD Filter.) -- C:\WINDOWS\System32\drivers\GEARAspiWDM.sys [33240] =>.GEAR Software Inc.®
O58 - SDL:2018/11/02 05:21:58 A . (.VMware, Inc. - VMware USB monitor.) -- C:\WINDOWS\System32\drivers\hcmon.sys [84752] =>.VMware, Inc.®
O58 - SDL:2018/04/12 00:33:48 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\WINDOWS\System32\drivers\HpSAMD.sys [64408] =>.Microsoft Windows®
O58 - SDL:2018/12/12 11:32:56 A . (.Huawei Technologies Co., Ltd. - ew_cdcacm Driver.) -- C:\WINDOWS\System32\drivers\hw_cdcacm.sys [127360] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2018/12/12 11:32:56 A . (.Huawei Technologies Co., Ltd. - USB Modem/Serial Device Driver.) -- C:\WINDOWS\System32\drivers\hw_quusbmdm.sys [226560] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2018/12/12 11:32:56 A . (.Huawei Technologies Co., Ltd. - USB NDIS Miniport Driver.) -- C:\WINDOWS\System32\drivers\hw_quusbnet.sys [287232] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2018/12/12 11:32:56 A . (.Huawei Technologies Co., Ltd. - USB Modem/Serial Device Driver.) -- C:\WINDOWS\System32\drivers\hw_usbdev.sys [116864] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2018/04/12 00:33:45 A . (.Intel(R) Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\iagpio.sys [36864] =>.Intel(R) Corporation
O58 - SDL:2018/04/12 00:33:45 A . (.Intel(R) Corporation - Intel(R) Serial IO I2C Driver.) -- C:\WINDOWS\System32\drivers\iai2c.sys [91648] =>.Intel(R) Corporation
O58 - SDL:2018/04/12 00:33:45 A . (.Intel Corporation - Intel(R) Serial IO GPIO Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [79360] =>.Intel Corporation
O58 - SDL:2018/04/12 00:33:45 A . (.Intel Corporation - Intel(R) Serial IO GPIO Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [88576] =>.Intel Corporation
O58 - SDL:2018/04/12 00:33:45 A . (.Intel Corporation - Intel(R) Serial IO I2C Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [171520] =>.Intel Corporation
O58 - SDL:2018/04/12 00:33:45 A . (.Intel Corporation - Intel(R) Serial IO I2C Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [174592] =>.Intel Corporation
O58 - SDL:2018/04/12 00:33:48 A . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [38128] =>.Intel Corporation - Client Components Group®
O58 - SDL:2018/04/12 00:33:45 A . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [113152] =>.Intel Corporation
O58 - SDL:2018/04/12 00:33:49 A . (.Intel Corporation - Intel(R) Rapid Storage Technology driver (i.) -- C:\WINDOWS\System32\drivers\iaStorAVC.sys [885144] =>.Microsoft Windows®
O58 - SDL:2018/04/12 00:33:49 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\WINDOWS\System32\drivers\iaStorV.sys [412064] =>.Microsoft Windows®
O58 - SDL:2018/04/12 00:33:49 A . (.Mellanox - InfiniBand Fabric Bus Driver.) -- C:\WINDOWS\System32\drivers\ibbus.sys [526232] =>.Microsoft Windows®
O58 - SDL:2016/10/17 16:35:48 A . (.Tonec Inc. - Internet Download Manager WFP Driver.) -- C:\WINDOWS\System32\drivers\idmwfp.sys [223464] =>.Tonec Inc.®
O58 - SDL:2017/06/12 01:56:24 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\WINDOWS\System32\drivers\igdkmd64.sys [7970232] =>.Intel(R) pGFX®
O58 - SDL:2016/05/12 05:32:26 N . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\WINDOWS\System32\drivers\IntcDAud.sys [481768] =>.Intel(R) OWR®
O58 - SDL:2018/04/12 00:33:48 A . (.Avago Technologies - Avago SAS Gen3.5 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\ItSas35i.sys [145816] =>.Microsoft Windows®
O58 - SDL:2018/04/12 00:33:48 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas.sys [108952] =>.Microsoft Windows®
O58 - SDL:2018/04/12 00:33:48 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas2i.sys [124312] =>.Microsoft Windows®
O58 - SDL:2018/04/12 00:33:48 A . (.Avago Technologies - Avago SAS Gen3 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas3i.sys [128408] =>.Microsoft Windows®
O58 - SDL:2018/04/12 00:33:48 A . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sss.sys [82848] =>.Microsoft Windows®
O58 - SDL:2012/11/20 10:48:32 A . (.HandSet Incorporated - HandSet CDROM Filter.) -- C:\WINDOWS\System32\drivers\massfilter_LTE.sys [11776] =>.HandSet Incorporated
O58 - SDL:2019/01/08 15:32:04 A . (.Malwarebytes - Malwarebytes Anti-Exploit.) -- C:\WINDOWS\System32\drivers\mbae64.sys [153328] =>.Malwarebytes Corporation®
O58 - SDL:2019/02/11 21:08:13 A . (.Malwarebytes - Malwarebytes Real-Time Protection.) -- C:\WINDOWS\System32\drivers\mbam.sys [72864] =>.Malwarebytes Corporation®
O58 - SDL:2019/02/11 15:43:45 A . (.Malwarebytes - Malwarebytes Chameleon.) -- C:\WINDOWS\System32\drivers\MbamChameleon.sys [198512] =>.Malwarebytes Corporation®
O58 - SDL:2019/02/01 11:20:22 A . (.Malwarebytes - Malwarebytes Early Launch Anti-Malware Driv.) -- C:\WINDOWS\System32\drivers\MbamElam.sys [20936] =>.Microsoft Corporation®
O58 - SDL:2019/02/11 15:43:33 A . (.Malwarebytes - Malwarebytes SwissArmy.) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys [274416] =>.Malwarebytes Corporation®
O58 - SDL:2018/04/12 00:33:48 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\megasas.sys [59800] =>.Microsoft Windows®
O58 - SDL:2018/04/12 00:33:48 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\MegaSas2i.sys [75160] =>.Microsoft Windows®
O58 - SDL:2018/04/12 00:33:48 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\megasas35i.sys [82328] =>.Microsoft Windows®
O58 - SDL:2018/04/12 00:33:48 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\WINDOWS\System32\drivers\megasr.sys [575896] =>.Microsoft Windows®
O58 - SDL:2018/04/12 00:33:49 A . (.Mellanox - MLX4 Bus Driver.) -- C:\WINDOWS\System32\drivers\mlx4_bus.sys [842648] =>.Microsoft Windows®
O58 - SDL:2018/04/12 00:33:48 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\WINDOWS\System32\drivers\mvumis.sys [63904] =>.Microsoft Windows®
O58 - SDL:2019/02/11 16:56:41 A . (.Malwarebytes - Malwarebytes Web Protection.) -- C:\WINDOWS\System32\drivers\mwac.sys [114040] =>.Malwarebytes Corporation®
O58 - SDL:2018/04/12 00:33:49 A . (.Mellanox - NetworkDirect Support Filter Driver.) -- C:\WINDOWS\System32\drivers\ndfltr.sys [108952] =>.Microsoft Windows®
O58 - SDL:2018/04/12 00:33:48 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\WINDOWS\System32\drivers\nvraid.sys [150424] =>.Microsoft Windows®
O58 - SDL:2018/04/12 00:33:48 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\WINDOWS\System32\drivers\nvstor.sys [166304] =>.Microsoft Windows®
O58 - SDL:2018/04/12 00:33:49 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas2i.sys [58776] =>.Microsoft Windows®
O58 - SDL:2018/04/12 00:33:49 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas3i.sys [61848] =>.Microsoft Windows®
O58 - SDL:2018/01/21 20:59:55 A . (.Sysinternals - www.sysinternals.com - Process Explorer.) -- C:\WINDOWS\System32\drivers\PROCEXP152.SYS [34328] =>.Sysinternals®
O58 - SDL:2015/07/22 18:56:22 A . (.Realtek - Realtek 8101E/8168/8169 NDIS 6.40 64-bit Dr.) -- C:\WINDOWS\System32\drivers\rt640x64.sys [886528] =>.Realtek Semiconductor Corp®
O58 - SDL:2018/04/12 00:33:53 RA . (.Realtek - Realtek PCIe GBE Family Controller Flight.) -- C:\WINDOWS\System32\drivers\rteth.sys [65536] =>.Realtek
O58 - SDL:2018/09/26 00:22:32 A . (.Realtek Semiconductor Corporation - Realtek Bluetooth Filter Driver.) -- C:\WINDOWS\System32\drivers\RtkBtfilter.sys [758312] =>.Realtek Semiconductor Corp.®
O58 - SDL:2015/07/03 10:00:52 A . (.Realsil Semiconductor Corporation - RTS USB READER Driver.) -- C:\WINDOWS\System32\drivers\RtsUer.sys [410880] =>.Realtek Semiconductor Corp®
O58 - SDL:2015/06/16 08:22:00 A . (.Realtek Semiconductor Corp. - Realtek UVC Driver for Vista/Win7/Win8/Win8.) -- C:\WINDOWS\System32\drivers\rtsuvc.sys [3068160] =>.Realtek Semiconductor Corp®
O58 - SDL:2014/01/03 08:14:10 A . (.Realtek Semiconductor Corp. - Realtek USB Mass Storage Driver for 2K/XP/V.) -- C:\WINDOWS\System32\drivers\RtsUVStor.sys [331992] =>.Realtek Semiconductor Corp®
O58 - SDL:2018/04/12 00:33:45 A . (.Realtek Semiconductor Corporation - Realtek PCIE NDIS Driver 47528 20362.) -- C:\WINDOWS\System32\drivers\rtwlane.sys [6320640] =>.Realtek Semiconductor Corporation
O58 - SDL:2018/04/12 00:33:49 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid2.sys [44952] =>.Microsoft Windows®
O58 - SDL:2018/04/12 00:33:49 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid4.sys [81816] =>.Microsoft Windows®
O58 - SDL:2017/01/23 02:30:14 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\WINDOWS\System32\drivers\Smb_driver_AMDASF_Aux.sys [68704] =>.Synaptics Incorporated®
O58 - SDL:2015/07/27 03:30:00 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\WINDOWS\System32\drivers\Smb_driver_Intel.sys [42696] =>.Synaptics Incorporated®
O58 - SDL:2017/01/23 02:30:16 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\WINDOWS\System32\drivers\Smb_driver_Intel_Aux.sys [72800] =>.Synaptics Incorporated®
O58 - SDL:2010/05/05 06:33:00 A . (. - Analog Tuner Sample.) -- C:\WINDOWS\System32\drivers\SmiUsbGrabber3C.sys [811520]
O58 - SDL:2016/09/05 05:47:06 A . (.Samsung Electronics Co., Ltd. - SAMSUNG USB Composite Device Driver.) -- C:\WINDOWS\System32\drivers\ssudbus.sys [131712] =>.Samsung Electronics CO., LTD.®
O58 - SDL:2016/09/05 05:47:12 A . (.Samsung Electronics Co., Ltd. - SAMSUNG Android Modem Device Driver.) -- C:\WINDOWS\System32\drivers\ssudmdm.sys [165504] =>.Samsung Electronics CO., LTD.®
O58 - SDL:2018/04/12 00:33:49 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\WINDOWS\System32\drivers\stexstor.sys [31128] =>.Microsoft Windows®
O58 - SDL:2017/01/23 02:30:20 A . (.Synaptics Incorporated - Synaptics HIDI2C Driver.) -- C:\WINDOWS\System32\drivers\SynHidI2C_Aux.sys [101472] =>.Synaptics Incorporated®
O58 - SDL:2017/01/23 02:30:28 A . (.Synaptics Incorporated - Synaptics I2C Driver.) -- C:\WINDOWS\System32\drivers\SynRMIHID_Aux.sys [66144] =>.Synaptics Incorporated®
O58 - SDL:2017/01/23 02:30:28 A . (.Synaptics Incorporated - Synaptics Touchpad Win64 Driver.) -- C:\WINDOWS\System32\drivers\SynTP.sys [912992] =>.Synaptics Incorporated®
O58 - SDL:2016/09/26 21:40:08 A . (.The OpenVPN Project - TAP-Windows Virtual Network Driver (NDIS 6..) -- C:\WINDOWS\System32\drivers\tap0901.sys [27136] =>.The OpenVPN Project
O58 - SDL:2016/04/14 09:37:54 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [202848] =>.Intel(R) Embedded Subsystems and IP Blocks Group®
O58 - SDL:2017/09/07 13:04:56 A . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\WINDOWS\System32\drivers\usbaapl64.sys [54784] =>.Apple, Inc.
O58 - SDL:2018/04/12 00:34:14 A . (...) -- C:\WINDOWS\System32\drivers\UsbPmApi.sys [39936] =>.Microsoft Corporation
O58 - SDL:2016/09/30 01:12:02 A . (.VMware, Inc. - VMware PCI VMCI Bus Device.) -- C:\WINDOWS\System32\drivers\vmci.sys [105024] =>.VMware, Inc.®
O58 - SDL:2018/11/21 01:27:46 A . (.VMware, Inc. - VMware virtual network driver (64-bit).) -- C:\WINDOWS\System32\drivers\vmnet.sys [46040] =>.VMware, Inc.®
O58 - SDL:2018/11/21 01:27:52 A . (.VMware, Inc. - VMware virtual network adapter driver (64-b.) -- C:\WINDOWS\System32\drivers\vmnetadapter.sys [46040] =>.VMware, Inc.®
O58 - SDL:2018/11/21 01:27:52 A . (.VMware, Inc. - VMware bridge driver (64-bit).) -- C:\WINDOWS\System32\drivers\vmnetbridge.sys [66600] =>.VMware, Inc.®
O58 - SDL:2018/11/21 01:27:52 A . (.VMware, Inc. - VMware network application interface driver.) -- C:\WINDOWS\System32\drivers\vmnetuserif.sys [43992] =>.VMware, Inc.®
O58 - SDL:2018/11/02 05:21:58 A . (.VMware, Inc. - VMware USB driver.) -- C:\WINDOWS\System32\drivers\vmusb.sys [69696] =>.VMware, Inc.®
O58 - SDL:2018/11/21 01:21:42 A . (.VMware, Inc. - VMware kernel driver.) -- C:\WINDOWS\System32\drivers\vmx86.sys [99272] =>.VMware, Inc.®
O58 - SDL:2018/04/12 00:33:49 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\WINDOWS\System32\drivers\vsmraid.sys [166808] =>.Microsoft Windows®
O58 - SDL:2018/06/22 01:31:02 A . (.VMware, Inc. - VMware vSockets Service.) -- C:\WINDOWS\System32\drivers\vsock.sys [92040] =>.VMware, Inc.®
O58 - SDL:2018/04/12 00:33:49 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\WINDOWS\System32\drivers\VSTXRAID.SYS [305560] =>.Microsoft Windows®
O58 - SDL:2018/04/12 00:33:49 A . (.Mellanox - Kernel WinMad.) -- C:\WINDOWS\System32\drivers\winmad.sys [32152] =>.Microsoft Windows®
O58 - SDL:2018/04/12 00:33:49 A . (.Mellanox - Kernel WinVerbs.) -- C:\WINDOWS\System32\drivers\winverbs.sys [64920] =>.Microsoft Windows®
O58 - SDL:2012/11/15 19:21:34 A . (.ZTE Incorporated - USB Modem/Serial Device Driver.) -- C:\WINDOWS\System32\drivers\zgdcat.sys [123520] =>.ZTE Incorporated
O58 - SDL:2012/11/15 19:21:34 A . (.ZTE Incorporated - USB Modem/Serial Device Driver.) -- C:\WINDOWS\System32\drivers\zgdcdiag.sys [123520] =>.ZTE Incorporated
O58 - SDL:2012/11/15 19:21:34 A . (.ZTE Incorporated - USB Modem/Serial Device Driver.) -- C:\WINDOWS\System32\drivers\zgdcmdm.sys [123520] =>.ZTE Incorporated
O58 - SDL:2012/11/20 15:39:54 A . (.ZTE Incorporated - USB NDIS Miniport Driver.) -- C:\WINDOWS\System32\drivers\zgdcnet.sys [162816] =>.ZTE Incorporated
O58 - SDL:2012/11/15 19:21:34 A . (.ZTE Incorporated - USB Modem/Serial Device Driver.) -- C:\WINDOWS\System32\drivers\zgdcnmea.sys [123520] =>.ZTE Incorporated
O58 - SDL:2012/12/05 21:57:40 A . (.Realtek Semiconductor Corporation - Realtek WLAN USB NDIS Driver.) -- C:\WINDOWS\System32\rtwlanu.sys [1578128] =>.Realtek Semiconductor Corp®
---\\ DERNIERS FICHIERS MODIFIÉS OU CRÉÉS (Utilisateur) (8) - 206s
O61 - LFC: 2019/02/09 10:14:59 A . (..) -- C:\ProgramData\AVAST Software\Avast\Cache\InstallLocation\OneDriveSetup.exe [268]
O61 - LFC: 2019/02/06 00:48:23 A . (..) -- C:\Users\LENOVO\AppData\Roaming\nhm2\bin\xmr-stak-cpu\libhwloc-15.dll [1691504] {03E63209FAED806141C146807097F872}
O61 - LFC: 2019/02/10 13:54:27 A . (..) -- C:\Users\LENOVO\Desktop\ali C\Bluetooth\Blockchain Miner Pro.exe [9648640]
O61 - LFC: 2019/02/04 22:37:34 A . (..) -- C:\Users\LENOVO\Desktop\ali C\Bluetooth\BTCBYTEMINER.exe [13232640]
O61 - LFC: 2019/02/06 00:28:44 A . (.H-BIT d.o.o..) -- C:\Users\LENOVO\Desktop\ali C\Bluetooth\nhm_windows_2.0.3.0 (1).exe [64606664] {03E63209FAED806141C146807097F872}
O61 - LFC: 2019/02/04 22:56:30 A . (.Computta.com.) -- C:\Users\LENOVO\Downloads\Computta_windows-x64_0_92.exe [75800560] {7B26EAFE7B1F663B7A8930695A353D27}
O61 - LFC: 2019/02/09 23:16:22 A . (.北京哈希章鱼科技有限公司.) -- C:\Users\LENOVO\Downloads\hashfish_1.4.0.1091.exe [16911056] {062820B4032BA0BB194BB09E1C728FED}
O61 - LFC: 2019/02/05 15:52:32 A . (..) -- C:\Users\LENOVO\Downloads\seed4me-vpn-1.0.46.exe [10825904] {00DE1B9DC4EAA6900D2B299969506B4D8A}
---\\ ASSOCIATION Shell Spawning (10) - 0s
O67 - Shell Spawning: <.bat>
O67 - Shell Spawning: <.cpl>
O67 - Shell Spawning: <.cmd>
O67 - Shell Spawning: <.com>
O67 - Shell Spawning: <.evt>
O67 - Shell Spawning: <.exe>
O67 - Shell Spawning: <.html>
O67 - Shell Spawning: <.js>
O67 - Shell Spawning: <.reg>
O67 - Shell Spawning: <.scr>
---\\ MENU DE DÉMARRAGE INTERNET (20) - 1s
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
---\\ RECHERCHE D'INFECTION SUR LES NAVIGATEURS (3) - 12s
O69 - SBI: SearchScopes [HKCU] [64Bits]{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com/ =>.Bing.com
O69 - SBI: SearchScopes [HKCU] [64Bits]{C0C3A6C6-03BC-4195-8FCB-AEA091301353} - (Yahoo!) - http://maktoob.search.yahoo.com/ =>.Yahoo! Inc.
O69 - SBI: SearchScopes [HKLM] [64Bits]{0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (@ieframe.dll,-12512) - http://www.bing.com/ =>.Bing.com
---\\ ÉNUMÈRE LES SERVICES DÉMARRÉS PAR Svchost (49) - 3s
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\WINDOWS\System32\certprop.dll [188928] =>.Microsoft Corporation
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [188928] =>.Microsoft Corporation
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [271360] =>.Microsoft Corporation
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [1267712] =>.Microsoft Corporation
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\IKEEXT.DLL [990720] =>.Microsoft Corporation
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll [786432] =>.Microsoft Corporation
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\Windows\System32\seclogon.dll [30720] =>.Microsoft Corporation
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [150528] =>.Microsoft Corporation
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [109568] =>.Microsoft Corporation
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [889344] =>.Microsoft Corporation
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [224256] =>.Microsoft Corporation
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [396800] =>.Microsoft Corporation
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [397312] =>.Microsoft Corporation
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [119808] =>.Microsoft Corporation
O83 - Search Svchost Services: InstallService (InstallService) . (.Microsoft Corporation - InstallService.) -- C:\Windows\System32\InstallService.dll [1487360] =>.Microsoft Corporation
O83 - Search Svchost Services: LxpSvc (LxpSvc) . (.Microsoft Corporation - Fournit une prise en charge de l'infrastruc.) -- C:\Windows\System32\LanguageOverlayServer.dll [199680] =>.Microsoft Corporation
O83 - Search Svchost Services: shpamsvc (shpamsvc) . (.Microsoft Corporation - SharedPC.AccountManager.) -- C:\Windows\System32\Windows.SharedPC.AccountManager.dll [195584] =>.Microsoft Corporation
O83 - Search Svchost Services: PushToInstall (PushToInstall) . (.Microsoft Corporation - PushToInstall.) -- C:\Windows\System32\PushToInstall.dll [262144] =>.Microsoft Corporation
O83 - Search Svchost Services: XblGameSave (XblGameSave) . (.Microsoft Corporation - Xbox Live Game Save Service.) -- C:\Windows\System32\XblGameSave.dll [1308672] =>.Microsoft Corporation
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Micro.) -- C:\Windows\System32\NcaSvc.dll [167936] =>.Microsoft Corporation
O83 - Search Svchost Services: DmEnrollmentSvc (DmEnrollmentSvc) . (.Microsoft Corporation - DLL Windows Management Service.) -- C:\Windows\System32\Windows.Internal.Management.dll [827392] =>.Microsoft Corporation
O83 - Search Svchost Services: XblAuthManager (XblAuthManager) . (.Microsoft Corporation - Xbox Live Auth Manager.) -- C:\Windows\System32\XblAuthManager.dll [1115648] =>.Microsoft Corporation
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [402944] =>.Microsoft Corporation
O83 - Search Svchost Services: NaturalAuthentication (NaturalAuthentication) . (.Microsoft Corporation - Service d’authentification naturelle.) -- C:\Windows\System32\NaturalAuth.dll [824832] =>.Microsoft Corporation
O83 - Search Svchost Services: NetSetupSvc (NetSetupSvc) . (.Microsoft Corporation - Service Configuration du réseau.) -- C:\Windows\System32\NetSetupSvc.dll [335360] =>.Microsoft Corporation
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\Windows\System32\wlidsvc.dll [2247680] =>.Microsoft Corporation
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d’installation de périphérique.) -- C:\Windows\System32\DeviceSetupManager.dll [235520] =>.Microsoft Corporation
O83 - Search Svchost Services: UserManager (UserManager) . (.Microsoft Corporation - UserMgr.) -- C:\Windows\System32\usermgr.dll [1027584] =>.Microsoft Corporation
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [69632] =>.Microsoft Corporation
O83 - Search Svchost Services: XboxGipSvc (XboxGipSvc) . (.Microsoft Corporation - Xbox Gip Management Service.) -- C:\Windows\System32\XboxGipSvc.dll [58880] =>.Microsoft Corporation
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [166912] =>.Microsoft Corporation
O83 - Search Svchost Services: TokenBroker (TokenBroker) . (.Microsoft Corporation - Broker à jetons.) -- C:\Windows\System32\TokenBroker.dll [1395200] =>.Microsoft Corporation
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Service de géolocalisation.) -- C:\Windows\System32\lfsvc.dll [44544] =>.Microsoft Corporation
O83 - Search Svchost Services: Irmon (Irmon) . (.Microsoft Corporation - Moniteur infrarouge.) -- C:\Windows\System32\irmon.dll [24576] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [104960] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d’accès à dista.) -- C:\Windows\System32\rasmans.dll [933888] =>.Microsoft Corporation
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [497664] =>.Microsoft Corporation
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\Sens.dll [73216] =>.Microsoft Corporation
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\Windows\System32\ipnathlp.dll [604672] =>.Microsoft Corporation
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [308224] =>.Microsoft Corporation
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\System32\wuaueng.dll [2904064] =>.Microsoft Corporation
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [1374208] =>.Microsoft Corporation
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [613376] =>.Microsoft Corporation
O83 - Search Svchost Services: dmwappushservice (dmwappushservice) . (.Microsoft Corporation - dmwappushsvc.) -- C:\Windows\System32\dmwappushsvc.dll [57856] =>.Microsoft Corporation
O83 - Search Svchost Services: wisvc (wisvc) . (.Microsoft Corporation - Paramètres de vol.) -- C:\Windows\System32\flightsettings.dll [858112] =>.Microsoft Corporation
O83 - Search Svchost Services: WpnService (WpnService) . (.Microsoft Corporation - Service du système de notifications Push Wi.) -- C:\Windows\System32\WpnService.dll [280576] =>.Microsoft Corporation
O83 - Search Svchost Services: XboxNetApiSvc (XboxNetApiSvc) . (.Microsoft Corporation - Xbox Live Networking Service.) -- C:\Windows\System32\XboxNetApiSvc.dll [1148928] =>.Microsoft Corporation
O83 - Search Svchost Services: UsoSvc (UsoSvc) . (.Microsoft Corporation - Mettre à jour la session Orchestrator Core.) -- C:\Windows\System32\usocore.dll [1373696] =>.Microsoft Corporation
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll [197120] =>.Microsoft Corporation
---\\ LISTE DES EXCEPTIONS DU PAREFEU WINDOWS (49) - 22s
O87 - FAEL: "UDP Query User{665CCC2F-4A3C-4824-AA37-2F4965B495D1}C:\users\lenovo\desktop\mamcom tv 1.1.6\mamcom tv.exe" [In-None-P17-TRUE] .(...) -- C:\users\lenovo\desktop\mamcom tv 1.1.6\mamcom tv.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "TCP Query User{EF4F01CB-5E66-4387-AEF5-8B875B8DFB1F}C:\users\lenovo\desktop\mamcom tv 1.1.6\mamcom tv.exe" [In-None-P6-TRUE] .(...) -- C:\users\lenovo\desktop\mamcom tv 1.1.6\mamcom tv.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "{5F5F4E6F-98BE-4062-ADB2-13F2055F77D5}" [In-None-P6-TRUE] .(...) -- C:\users\lenovo\desktop\mamcom tv 1.1.5\mamcom tv.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "{5FA47862-E146-45F8-BBB6-F613DF84A85F}" [In-None-P17-TRUE] .(...) -- C:\users\lenovo\desktop\mamcom tv 1.1.5\mamcom tv.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "UDP Query User{7497ECF7-7926-47F1-9185-36D41D88D881}C:\users\lenovo\desktop\mamcom tv 1.1.5\mamcom tv.exe" [In-None-P17-TRUE] .(...) -- C:\users\lenovo\desktop\mamcom tv 1.1.5\mamcom tv.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "TCP Query User{07BE5088-5A0F-4CBD-8436-25C1A934CE32}C:\users\lenovo\desktop\mamcom tv 1.1.5\mamcom tv.exe" [In-None-P6-TRUE] .(...) -- C:\users\lenovo\desktop\mamcom tv 1.1.5\mamcom tv.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "{F4695CEC-814D-4D29-8775-2178FD06DEBB}" [In-None-P6-TRUE] .(...) -- C:\Users\LENOVO\Desktop\EmbratoriaG6.5.2\libs.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "{37BF8BF8-15E7-429C-8AF7-EB6EBE9645E3}" [In-None-P17-TRUE] .(...) -- C:\Users\LENOVO\Desktop\EmbratoriaG6.5.2\libs.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "{1C07545A-C8BA-4B3B-B252-FC2E744BAF8D}" [In-None-P6-TRUE] .(...) -- C:\Users\LENOVO\Desktop\EmbratoriaG6.5.2\libs.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "{E4B40355-A48E-48B1-B287-4666B07636CC}" [In-None-P17-TRUE] .(...) -- C:\Users\LENOVO\Desktop\EmbratoriaG6.5.2\libs.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "{5DF7F543-F73C-43C5-BEC9-6F81732C7D86}" [In-None-P6-TRUE] .(...) -- C:\Users\LENOVO\Desktop\HeinInstaller Libs\EmbratoriaG6.5.2\libs.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "{18CA3953-3B60-4815-83B7-A69E10DFBBA0}" [In-None-P17-TRUE] .(...) -- C:\Users\LENOVO\Desktop\HeinInstaller Libs\EmbratoriaG6.5.2\libs.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "{13220876-1B29-4BDC-BFD7-CDCE3B19155A}" [Out-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Innovative Solutions\VPN PRO\vpnpro.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "{61CAB7A5-3F44-4C54-A5C9-4FEF15FE3E69}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Hide My IP 6\HideMyIP.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "{EFF98D3A-D119-4435-9BC8-45209A89E765}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Hide My IP 6\HideMyIpSrv.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "{6BE269FC-1329-427C-8274-6ACAD1421208}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Hide My IP 6\hideipsh.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "{7AC9A61E-69AE-40D8-B7D9-C981AC7C1873}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Hide My IP 6\hideipshp.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "{44C4AD91-2EAA-4222-AA29-DF40CE2B3C2F}" [In-None-P6-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\LENOVO\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O87 - FAEL: "{61FD3791-A494-4D4A-893E-CAEE4C34D805}" [In-None-P17-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\LENOVO\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O87 - FAEL: "TCP Query User{77F846D3-3745-4D4D-98AF-954660DBB2E7}C:\program files (x86)\surfeasy vpn\client\surfeasyvpn.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\surfeasy vpn\client\surfeasyvpn.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "UDP Query User{8D005296-8929-43D8-9A0B-5BD6CC36BFCE}C:\program files (x86)\surfeasy vpn\client\surfeasyvpn.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\surfeasy vpn\client\surfeasyvpn.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "{EC30FE69-41B8-41DD-9A53-C621C443BC6D}" [In-None-P6-TRUE] .(...) -- C:\Users\LENOVO\Desktop\EmbratoriaG7\libs.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "{4F51A740-7A69-4306-AB9F-16BD535CC203}" [In-None-P17-TRUE] .(...) -- C:\Users\LENOVO\Desktop\EmbratoriaG7\libs.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "{4388F8C3-B115-4627-AA7D-3904736CF156}" [In-None-P6-TRUE] .(...) -- C:\Users\LENOVO\Desktop\g\EmbratoriaG7\libs.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "{F1E44F0E-1B37-486C-998B-F69E3402E1A3}" [In-None-P6-TRUE] .(...) -- C:\Users\LENOVO\Desktop\g\EmbratoriaG7\libs.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "{DBA2B264-B292-4457-AC46-BE516BDAE30C}" [In-None-P17-TRUE] .(...) -- C:\Users\LENOVO\Desktop\g\EmbratoriaG7\libs.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "{CAA71565-C3FA-4943-B939-C401AD4288D7}" [In-None-P17-TRUE] .(...) -- C:\Users\LENOVO\Desktop\g\EmbratoriaG7\libs.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "TCP Query User{9478EEF2-43EB-42E1-8E9C-92CCBAF10D42}C:\program files (x86)\surfeasy vpn\client\surfeasyvpn.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\surfeasy vpn\client\surfeasyvpn.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "UDP Query User{5B808C08-DA59-49B3-8E01-3445A0705C5D}C:\program files (x86)\surfeasy vpn\client\surfeasyvpn.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\surfeasy vpn\client\surfeasyvpn.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "{45C6DDD7-B765-4334-9720-662CB6701D26}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Baidu WiFiHotspot\WifiHotspot.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "{3BC7BA6A-EFA1-41E7-AD42-8EFACFCEE3A6}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Baidu WiFiHotspot\WifiHotspot.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "TCP Query User{6F8FCB6A-7120-4006-AD24-DC1CF2025C8C}C:\program files (x86)\connectify\connectify.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\connectify\connectify.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "UDP Query User{BDFD2350-57FE-4406-B392-022A088A39AA}C:\program files (x86)\connectify\connectify.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\connectify\connectify.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "{E37C1E29-8770-41A9-AFDA-B5E92AC76CBB}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Virtual WiFi Router\VirtualWiFiRouterLibrary.dll (.not file.) =>.SUP.Orphan
O87 - FAEL: "{12C60051-0BB4-4473-8C2D-44D4AF4FF9DD}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Virtual WiFi Router\VirtualWiFiRouterLibrary.dll (.not file.) =>.SUP.Orphan
O87 - FAEL: "TCP Query User{2290E7BD-DF4D-46CB-A677-2043A446AC92}C:\users\lenovo\desktop\ali c\embratoria_g10\libsg10.exe" [In-None-P6-TRUE] .(...) -- C:\users\lenovo\desktop\ali c\embratoria_g10\libsg10.exe
O87 - FAEL: "UDP Query User{9FECBDF4-3E2C-4C6E-8969-F603B0FE4BB8}C:\users\lenovo\desktop\ali c\embratoria_g10\libsg10.exe" [In-None-P17-TRUE] .(...) -- C:\users\lenovo\desktop\ali c\embratoria_g10\libsg10.exe
O87 - FAEL: "{B58300A9-C615-40B6-ABDD-63F9170C1D06}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\VPN Unlimited\vpn-unlimited.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "{CCE3DD97-6390-4E7F-9F2D-FE0BE4CF9EB1}" [Out-None-P17-TRUE] .(...) -- C:\Program Files (x86)\VPN Unlimited\vpn-unlimited.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "{BAE65B27-5FE7-4313-BB77-1B8ABB8198CE}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\VPN Unlimited\openvpn.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "{B59E6FE4-0854-4EB9-8A97-7A58D123AAB2}" [Out-None-P17-TRUE] .(...) -- C:\Program Files (x86)\VPN Unlimited\openvpn.exe (.not file.) =>.SUP.Orphan
O87 - FAEL: "{1B40E457-C233-4C05-A0F8-F54FF3A4D3BF}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe =>.VMware, Inc.®
O87 - FAEL: "{18C00285-4142-4F41-BCB2-2FF8B4138315}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe =>.VMware, Inc.®
O87 - FAEL: "{F615DFE1-B406-4C89-930C-3534BC5892E4}" [In-None-P6-TRUE] .(.北京哈希章鱼科技有限公司 - HashFish.) -- C:\Users\LENOVO\AppData\Roaming\HashFish\HashFish.exe {062820B4032BA0BB194BB09E1C728FED}
O87 - FAEL: "{903C25B5-BF2B-4B2E-A3B0-584CB631BEA5}" [In-None-P17-TRUE] .(.北京哈希章鱼科技有限公司 - HashFish.) -- C:\Users\LENOVO\AppData\Roaming\HashFish\HashFish.exe {062820B4032BA0BB194BB09E1C728FED}
O87 - FAEL: "{5B1CB815-A473-4251-BF96-96F79B34D1F3}" [In-None-P6-TRUE] .(.北京哈希章鱼科技有限公司 - HashFish.) -- C:\Users\LENOVO\AppData\Roaming\HashFish\bin\HFHelper32.exe {062820B4032BA0BB194BB09E1C728FED}
O87 - FAEL: "{64CFF568-DA43-4AC1-BE6B-4E7FF072EBAC}" [In-None-P17-TRUE] .(.北京哈希章鱼科技有限公司 - HashFish.) -- C:\Users\LENOVO\AppData\Roaming\HashFish\bin\HFHelper32.exe {062820B4032BA0BB194BB09E1C728FED}
O87 - FAEL: "{0E16B14F-D72E-4C60-A6FA-6BDCAE26A9E5}" [In-None-P6-TRUE] .(.北京哈希章鱼科技有限公司 - HashFish.) -- C:\Users\LENOVO\AppData\Roaming\HashFish\bin\HFHelper64.exe {062820B4032BA0BB194BB09E1C728FED}
O87 - FAEL: "{AC362C57-243D-4828-9939-1120AC7E59DC}" [In-None-P17-TRUE] .(.北京哈希章鱼科技有限公司 - HashFish.) -- C:\Users\LENOVO\AppData\Roaming\HashFish\bin\HFHelper64.exe {062820B4032BA0BB194BB09E1C728FED}
---\\ CODES PRODUITS LOGICIELS (3) - 3s
O90 - PUC: "049187A914CAE5D4E8E1670AB419F69B" [HKLM] . (.Helium.)
O90 - PUC: "15D4EEA0756304F46A98354392ACEEC0" [HKLM] . (.Virtual Router Plus.) -- C:\WINDOWS\Installer\{0AEE4D51-3657-4F40-A689-533429CAEE0C}\ARPPRODUCTICON.exe
O90 - PUC: "166F59DC4C5A5F446AAACEDD192C1491" [HKLM] . (.WinZip 22.0.) -- C:\WINDOWS\Installer\{CD95F661-A5C4-44F5-A6AA-ECDD91C24119}\ARPPRODUCTICON.exe
---\\ PACKAGES WINDOWS INSTALLER (16) - 47s
[MD5.2C3787E8787B8275CD023F21735DB76D] [WIS][2017/03/20 16:20:13] (.Skype Technologies S.A. - Skype.) -- C:\WINDOWS\Installer\17437fb.msi [25432064] =>.Skype Technologies S.A.
[MD5.D35B45B6EE36005243203FAC496125FB] [WIS][2018/12/19 21:47:51] (.Google Inc. - Google Update Helper.) -- C:\WINDOWS\Installer\1a46d2e.msi [40960] =>.Google Inc.
[MD5.958C66E83252BE404063ED4FEC5D7520] [WIS][2018/03/03 23:15:50] (.Corel Corporation - Utilitaire de Compression WinZip.) -- C:\WINDOWS\Installer\21efc98.msi [58131968] =>.Corel Corporation
[MD5.A6B96516D619D33C470E3CA09F0EF1C5] [WIS][2019/02/09 22:44:16] (.VMware, Inc. - VMware Workstation.) -- C:\WINDOWS\Installer\2bb7286.msi [505221120] =>.VMware, Inc.
[MD5.4ABD366D85D8E2512C99DBC5E9F2BBFB] [WIS][2018/06/06 18:20:06] (.ClockworkMod.) -- C:\WINDOWS\Installer\37ddc4.msi [18114048] =>.ClockworkMod
[MD5.CC0BB26820D3A999D032DE6E89290D91] [WIS][2018/01/28 21:57:14] (.Runxia Electronics - Virtual Router Plus.) -- C:\WINDOWS\Installer\3f9970.msi [1243136] =>.Runxia Electronics
[MD5.7E57B1876A57979197D23A22CECED5E5] [WIS][2019/02/05 14:30:16] (.Betternet Technologies Inc. - Betternet for Windows 4.1.1.) -- C:\WINDOWS\Installer\45d88f.msi [12636160] =>.Betternet Technologies Inc.
[MD5.B446C0DA35323D45DBD037E0E69AC275] [WIS][2017/09/11 14:43:52] (.Apple Inc. - Apple Application Support Installer.) -- C:\WINDOWS\Installer\468a1e4.msi [45940736] =>.Apple Inc.
[MD5.CD4D479C497DD935952F8AF29FA6224C] [WIS][2017/09/11 14:43:54] (.Apple Inc. - Apple Application Support Installer.) -- C:\WINDOWS\Installer\468a38e.msi [50974720] =>.Apple Inc.
[MD5.4A1DD7237D5264C781FCDE1AE347383E] [WIS][2017/09/08 12:25:00] (.Apple Inc. - Apple Mobile Device Support Installer.) -- C:\WINDOWS\Installer\468a3d4.msi [14041088] =>.Apple Inc.
[MD5.8DCF5C9EAACDAF4568220D103F393DEA] [WIS][2013/10/01 18:19:22] (.Apple Inc. - [ProductName] Installer.) -- C:\WINDOWS\Installer\828ac.msi [2682368] =>.Apple Inc.
[MD5.28E0C740B938DF4C90DAFE654BC0F64A] [WIS][2017/04/29 20:03:01] (.Canneverbe Limited - CDBurnerXP 4.5.7.6499 Windows Installer.) -- C:\WINDOWS\Installer\d4ba99.msi [8937472] =>.Canneverbe Limited
[MD5.0EF6618EE65ACB6263FB4AD78D706093] [WIS][2017/09/11 16:19:46] (.Apple Inc. - iTunes Installer.) -- C:\WINDOWS\Installer\f6feb.msi [159580160] =>.Apple Inc.
[MD5.FCA1EEB4107FF4AA9DCB6FA2371A6837] [WIS][2011/06/06 21:52:05] (.Adobe Systems Incorporated - ADOBER~1.0Adobe Reader X (10.0.1).) -- C:\WINDOWS\Installer\fafdb.msi [2332672] =>.Adobe Systems Incorporated
[MD5.54C4A1CA2A85BB1FA10553CCF5A022C3] [WIS][2017/03/19 23:51:35] (.Google Inc. - Google Update Helper.) -- C:\WINDOWS\Installer\fafe2.msi [25600] =>.Google Inc.
[MD5.39A573338A47038E9AC75E7D257BDC48] [WIS][2012/07/28 02:20:55] (.Adobe Systems, Incorporated.) -- C:\WINDOWS\Installer\fafdc.msp [13123584] =>.SUP.Obsolete.Adobe
---\\ RÉCAPITULATIF DES ÉLÉMENTS TROUVÉS SUR VOTRE STATION (12) - 0s
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>Trojan.Agent
https://nicolascoolman.eu/2017/09/12/origine-lignes-orphelines/ =>.SUP.Orphan
https://nicolascoolman.eu/2017/03/12/superfluous-lavasoftwebcompanion/ =>PUP.Optional.LavasoftWebCompanion
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>BitTorrent (P2P)
https://nicolascoolman.eu/2017/03/11/pup-optional-crossrider/ =>Adware.CrossRider
https://nicolascoolman.eu/2017/09/19/adware-installcore-3/ =>Adware.InstallCore
https://nicolascoolman.eu/2017/03/13/superfluous-bytefence/ =>.SUP.ByteFence
https://nicolascoolman.eu/2017/02/02/hacktool-autokms/ =>HackTool.AutoKMS
https://nicolascoolman.eu/2017/02/16/hacktool-kmspico/ =>HackTool.KMSpico
https://nicolascoolman.eu/2017/03/02/adware-suspect/ =>Adware.Suspect
https://nicolascoolman.eu/2017/03/30/adware-graftor/ =>PUP.Optional.Graftor
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Obsolete.Adobe
~ Unselected Options: NoFilter, MR, O38, O40, O108, O82, O109, O88,
~ End of the scan, 7186 items in 10mn45s (1632)(0)