cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPDiag v2016.2.25.60 By Nicolas Coolman (2016/02/25)
~ Run by Khalidou (Administrator) (2016/03/01 20:59:01)
~ Web: http://www.nicolascoolman.com
~ Facebook: https://www.facebook.com/nicolascoolman1
~ State version:
~ Mode: Scan
~ Report: C:\Users\Khalidou\Desktop\ZHPDiag.txt
~ Report: C:\Users\Khalidou\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ System startup: Normal (Normal boot)
Windows 7 Professional, 64-bit Service Pack 1 (Build 7601)

---\\ Internet Browsers (3) - 0s
GCIE: Google Chrome v48.0.2564.116
MFIE: Mozilla Firefox 44.0.2 (x86 fr)
MSIE: Internet Explorer v8.0.7601.17514

---\\ Windows Product Information (4) - 0s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK
Windows Activation Technologies : KO

---\\ System protection software (2) - 2s
ESET Smart Security v8.0.319.1
Malwarebytes Anti-Malware version 2.2.0.1024

---\\ Surveillance software (1) - 3s
Adobe Flash Player 20 NPAPI

---\\ Information on the system (6) - 0s
~ Operating System: Intel64 Family 6 Model 37 Stepping 5, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 3988.16 MB (34% free)
System Restore: Activé (Enable)
System drive C: has 3 GB () free of 99 GB =>Alerte espace disque inférieur à 20 Go

---\\ Connection to the system mode (3) - 0s
~ Computer Name: PC
~ User Name: Khalidou
~ Logged in as Administrator

---\\ Enumeration of the disk units (3) - 0s
~ Drive C: has 3 GB free of 99 GB (System)
~ Drive D: has 47 GB free of 199 GB
~ Drive E: has 19 GB free of 176 GB

---\\ State of the Windows Security Center (11) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK

---\\ Search Generic System Files (25) - 2s
[MD5.AC4C51EB24AA95B77F705AB159189E24] - 20/11/2010 - (.Microsoft Corporation - Windows Explorer.) -- C:\Windows\Explorer.exe [2872320] =>.Microsoft Corporation
[MD5.DD81D91FF3B0763C392422865C9AC12E] - 14/07/2009 - (.Microsoft Corporation - Windows host process (Rundll32).) -- C:\Windows\System32\rundll32.exe [45568] =>.Microsoft Corporation
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - 14/07/2009 - (.Microsoft Corporation - Windows Start-Up Application.) -- C:\Windows\System32\Wininit.exe [129024] =>.Microsoft Corporation
[MD5.F6C5302E1F4813D552F41A0AC82455E5] - 20/11/2010 - (.Microsoft Corporation - Internet Extensions for Win32.) -- C:\Windows\System32\wininet.dll [1188864] =>.Microsoft Corporation
[MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - 20/11/2010 - (.Microsoft Corporation - Windows Logon Application.) -- C:\Windows\System32\Winlogon.exe [390656] =>.Microsoft Corporation
[MD5.067FA52BFB59A56110A12312EF9AF243] - 20/11/2010 - (.Microsoft Corporation - Software Licensing Library.) -- C:\Windows\System32\sppcomapi.dll [232448] =>.Microsoft Corporation
[MD5.A52B6CC24063CC83C78C0E6F24DEEC01] - 20/11/2010 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\Windows\System32\dnsapi.dll [357888] =>.Microsoft Corporation
[MD5.59DF156711A76BCB993253EC6C9BBF41] - 20/11/2010 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\Windows\Syswow64\dnsapi.dll [270336] =>.Microsoft Corporation
[MD5.D31DC7A16DEA4A9BAF179F3D6FBDB38C] - 20/11/2010 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\Windows\System32\drivers\AFD.sys [499712] =>.Microsoft Corporation
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - 14/07/2009 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\drivers\atapi.sys [24128] =>.Microsoft Windows®
[MD5.B8BD2BB284668C84865658C77574381A] - 14/07/2009 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\drivers\Cdfs.sys [92160] =>.Microsoft Corporation
[MD5.F036CE71586E93D94DAB220D7BDF4416] - 20/11/2010 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\drivers\Cdrom.sys [147456] =>.Microsoft Corporation
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - 20/11/2010 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\drivers\DfsC.sys [102400] =>.Microsoft Corporation
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - 20/11/2010 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\drivers\HDAudBus.sys [122368] =>.Microsoft Corporation
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - 14/07/2009 - (.Microsoft Corporation - i8042 Port Driver.) -- C:\Windows\System32\drivers\i8042prt.sys [105472] =>.Microsoft Corporation
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - 14/07/2009 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\drivers\IpNat.sys [116224] =>.Microsoft Corporation
[MD5.FAF015B07E3A2874A790A39B7D2C579F] - 20/11/2010 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\Windows\System32\drivers\MRxSmb.sys [158208] =>.Microsoft Corporation
[MD5.09594D1089C523423B32A4229263F068] - 20/11/2010 - (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\drivers\netBT.sys [261632] =>.Microsoft Corporation
[MD5.05D78AA5CB5F3F5C31160BDB955D0B7C] - 20/11/2010 - (.Microsoft Corporation - NT File System Driver.) -- C:\Windows\System32\drivers\ntfs.sys [1659776] =>.Microsoft Windows®
[MD5.0086431C29C35BE1DBC43F52CC273887] - 14/07/2009 - (.Microsoft Corporation - Parallel Port Driver.) -- C:\Windows\System32\drivers\Parport.sys [97280] =>.Microsoft Corporation
[MD5.471815800AE33E6F1C32FB1B97C490CA] - 20/11/2010 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\drivers\Rasl2tp.sys [129536] =>.Microsoft Corporation
[MD5.1B6163C503398B23FF8B939C67747683] - 20/11/2010 - (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\Windows\System32\drivers\rdpdr.sys [165888] =>.Microsoft Corporation
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - 14/07/2009 - (.Microsoft Corporation - SMB Transport driver.) -- C:\Windows\System32\drivers\smb.sys [93184] =>.Microsoft Corporation
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - 20/11/2010 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\drivers\tdx.sys [119296] =>.Microsoft Corporation
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - 20/11/2010 - (.Microsoft Corporation - Volume Shadow Copy Driver.) -- C:\Windows\System32\drivers\volsnap.sys [295808] =>.Microsoft Windows®

---\\ Non Microsoft non disabled Windows Services (23) - 3s
O23 - Service: Andrea ST Filters Service (AESTFilters) . (.Andrea Electronics Corporation - Andrea filters APO access service (64-bit).) - C:\Program Files\IDT\WDM\AESTSr64.exe =>.Andrea Electronics Corporation
O23 - Service: Dell Digital Delivery Service (DellDigitalDelivery) . (.Dell Products, LP. - Dell Digital Delivery Windows Service.) - C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe =>.Dell Products, LP.
O23 - Service: Djezzy connect. OUC (Djezzy connect. RunOuc) . (...) - C:\Program Files (x86)\Djezzy connect\UpdateDog\ouc.exe =>.Huawei Technologies Co., Ltd.®
O23 - Service: ESET Service (ekrn) . (.ESET - ESET Service.) - C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe =>.ESET, spol. s r.o.®
O23 - Service: ews-dashboard (ews-dashboard) . (.ServiceEx - ServiceEx Console Application.) - C:\Program Files (x86)\EasyPHP-Webserver-14.1b2\dashboard\service-install.exe
O23 - Service: ews-dbserver (ews-dbserver) . (...) - C:\Program Files (x86)\EasyPHP-Webserver-14.1b2\binaries\dbserver\bin\ews-mysqld.exe
O23 - Service: ews-httpserver (ews-httpserver) . (.Apache Software Foundation - Apache HTTP Server.) - C:\Program Files (x86)\EasyPHP-Webserver-14.1b2\binaries\httpserver\bin\ews-httpd.exe =>.Apache Software Foundation
O23 - Service: Google Update Service (gupdate) (gupdate) . (.Google Inc. - Google Installer.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
O23 - Service: HWDeviceService64.exe (HWDeviceService64.exe) . (.Copyright (C) 2014 - DCSHOST.) - C:\ProgramData\DatacardService\HWDeviceService64.exe =>.Huawei Technologies Co., Ltd.®
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) . (.Intel Corporation - IAStorDataSvc.) - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe =>.Intel Corporation®
O23 - Service: Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe =>.Intel Corporation®
O23 - Service: (MBAMScheduler) . (.Malwarebytes - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe =>.Malwarebytes Corporation®
O23 - Service: (MBAMService) . (.Malwarebytes - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe =>.Malwarebytes Corporation®
O23 - Service: MobiConnect. OUC (MobiConnect. RunOuc) . (...) - C:\Program Files (x86)\MobiConnect\UpdateDog\ouc.exe =>.Huawei Technologies Co., Ltd.®
O23 - Service: MyPublicWiFi Service (MyPublicWiFiService) . (...) - C:\Program Files (x86)\MyPublicWiFi\PublicWiFiService.exe
O23 - Service: OpenVPN Access Client (OpenVPNAccessClient) . (...) - C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\capiws.exe
O23 - Service: ChiconyOSDService (OSDSvc) . (.Chicony - OSD Service Application.) - C:\Program Files (x86)\Dell\Dell KM632 Wireless Keyboard Caps Lock Indicator\OSDSrv.exe =>.Chicony
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe =>.Skype Software Sarl®
O23 - Service: SplitCamService (SpliCamService) . (.SplitCam Co. - SplitCam Service.) - C:\Program Files (x86)\SplitCam\SplitCamService.exe {05F4F76AAA27B0659ECCB8D164F987FA}
O23 - Service: @C:\Windows\system32\stlang64.dll (STacSV) . (.IDT, Inc. - IDT PC Audio TPE.) - C:\Program Files\IDT\WDM\stacsv64.exe =>.IDT, Inc.
O23 - Service: UI Assistant Service (UI Assistant Service) . (...) - C:\Program Files (x86)\Mobiconnect\AssistantServices.exe =>.ZTE CORPORATION®
O23 - Service: Intel(R) Management & Security Application User Notificatio (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe =>.Intel Corporation®
O23 - Service: DW WLAN Tray Service (wltrysvc) . (.Dell Inc. - DW WLAN Card Wireless Network Service.) - C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE =>.Dell Inc.

---\\ Services not Microsoft (SR=Run, SS=Stop) (34) - 32s

SS - Demand [11/02/2016] [ 269504] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe =>.Adobe Systems Incorporated®
SR - Auto [03/03/2009] [ 89600] Andrea ST Filters Service (AESTFilters) . (.Andrea Electronics Corporation.) - C:\Program Files\IDT\WDM\AESTSr64.exe =>.Andrea Electronics Corporation
SS - Demand [16/06/2015] [ 433784] BlueStacks Android Service (BstHdAndroidSvc) . (.BlueStack Systems, Inc..) - C:\Program Files (x86)\BlueStacks\HD-Service.exe =>.Bluestack Systems, Inc.®
SS - Demand [16/06/2015] [ 413304] BlueStacks Log Rotator Service (BstHdLogRotatorSvc) . (.BlueStack Systems, Inc..) - C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe =>.Bluestack Systems, Inc.®
SS - Demand [21/07/2015] [ 831096] BlueStacks Updater Service (BstHdUpdaterSvc) . (.BlueStack Systems, Inc..) - C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe =>.Bluestack Systems, Inc.®
SR - Auto [26/10/2011] [ 162816] Dell Digital Delivery Service (DellDigitalDelivery) . (.Dell Products, LP..) - C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe =>.Dell Products, LP.
SS - Auto [26/10/2013] [ 651856] Djezzy connect. OUC (Djezzy connect. RunOuc) . (...) - C:\Program Files (x86)\Djezzy connect\UpdateDog\ouc.exe =>.Huawei Technologies Co., Ltd.®
SR - Auto [08/07/2015] [ 1353720] ESET Service (ekrn) . (.ESET.) - C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe =>.ESET, spol. s r.o.®
SR - Auto [06/04/2014] [ 114688] ews-dashboard (ews-dashboard) . (.ServiceEx.) - C:\Program Files (x86)\EasyPHP-Webserver-14.1b2\dashboard\service-install.exe
SS - Auto [06/05/2014] [10958848] ews-dbserver (ews-dbserver) . (...) - C:\Program Files (x86)\EasyPHP-Webserver-14.1b2\binaries\dbserver\bin\ews-mysqld.exe
SS - Auto [19/07/2014] [ 20992] ews-httpserver (ews-httpserver) . (.Apache Software Foundation.) - C:\Program Files (x86)\EasyPHP-Webserver-14.1b2\binaries\httpserver\bin\ews-httpd.exe =>.Apache Software Foundation
SS - Auto [07/04/2015] [ 107848] Google Update Service (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SS - Demand [07/04/2015] [ 107848] Google Update Service (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SR - Auto [15/01/2014] [ 351824] HWDeviceService64.exe (HWDeviceService64.exe) . (.Copyright (C) 2014.) - C:\ProgramData\DatacardService\HWDeviceService64.exe =>.Huawei Technologies Co., Ltd.®
SR - Auto [12/01/2011] [ 13336] Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe =>.Intel Corporation®
SR - Auto [02/07/2010] [ 325656] Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe =>.Intel Corporation®
SR - Auto [05/10/2015] [ 1513784] (MBAMScheduler) . (.Malwarebytes.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe =>.Malwarebytes Corporation®
SR - Auto [05/10/2015] [ 1135416] (MBAMService) . (.Malwarebytes.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe =>.Malwarebytes Corporation®
SS - Auto [21/05/2013] [ 656976] MobiConnect. OUC (MobiConnect. RunOuc) . (...) - C:\Program Files (x86)\MobiConnect\UpdateDog\ouc.exe =>.Huawei Technologies Co., Ltd.®
SS - Demand [12/02/2016] [ 146888] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe =>.Mozilla Corporation®
SR - Auto [03/04/2013] [ 756224] MyPublicWiFi Service (MyPublicWiFiService) . (...) - C:\Program Files (x86)\MyPublicWiFi\PublicWiFiService.exe
SR - Auto [05/06/2014] [ 24064] OpenVPN Access Client (OpenVPNAccessClient) . (...) - C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\capiws.exe
SR - Auto [01/12/2010] [ 176128] ChiconyOSDService (OSDSvc) . (.Chicony.) - C:\Program Files (x86)\Dell\Dell KM632 Wireless Keyboard Caps Lock Indicator\OSDSrv.exe =>.Chicony
SS - Demand [01/03/2013] [ 118520] Remote Packet Capture Protocol v.0 (experimental) (rpcapd) . (.Riverbed Technology, Inc..) - C:\Program Files (x86)\WinPcap\rpcapd.exe =>.Riverbed Technology, Inc.®
SS - Auto [09/07/2015] [ 327296] Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe =>.Skype Software Sarl®
SR - Auto [15/09/2014] [ 311424] SplitCamService (SpliCamService) . (.SplitCam Co..) - C:\Program Files (x86)\SplitCam\SplitCamService.exe {05F4F76AAA27B0659ECCB8D164F987FA}
SR - Auto [27/05/2011] [ 301568] @C:\Windows\system32\stlang64.dll (STacSV) . (.IDT, Inc..) - C:\Program Files\IDT\WDM\stacsv64.exe =>.IDT, Inc.
SS - Demand [19/02/2010] [ 517096] (SwitchBoard) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe =>.Adobe Systems Incorporated
SR - Auto [03/12/2012] [ 275784] UI Assistant Service (UI Assistant Service) . (...) - C:\Program Files (x86)\Mobiconnect\AssistantServices.exe =>.ZTE CORPORATION®
SR - Auto [02/07/2010] [ 2533400] Intel(R) Management & Security Application User Notificatio (UNS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe =>.Intel Corporation®
SS - Demand [01/05/2014] [ 24576] wampapache64 (wampapache64) . (.Apache Software Foundation.) - c:\wamp\bin\apache\apache2.4.9\bin\httpd.exe =>.Apache Software Foundation
SS - Demand [01/05/2014] [12942848] wampmysqld64 (wampmysqld64) . (...) - c:\wamp\bin\mysql\mysql5.6.17\bin\mysqld.exe
SR - Auto [07/04/2015] [ 48128] DW WLAN Tray Service (wltrysvc) . (.Dell Inc..) - C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE =>.Dell Inc.

---\\ Task Planned Automatically (14) - 4s
[MD5.785FD0E36CA75D90DD50042E2594BC63] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [269504] =>.Adobe Systems Incorporated®
[MD5.E1B44A75947137F4143308D566889837] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848] =>.Google Inc®
[MD5.E1B44A75947137F4143308D566889837] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848] =>.Google Inc®
[MD5.87F1C6B99D0BDE3B654E60B809CE61E9] [APT] [PCDEventLauncherTask] (.PC-Doctor, Inc..) -- C:\Program Files\Dell\SupportAssist\sessionchecker.exe [437944] =>.Dell Inc.®
[MD5.00000000000000000000000000000000] [APT] [SetmemUpdateTaskMachine] (...) -- C:\Program Files (x86)\Facebook Autoresponder\SetmemUpdate.exe (.not file.) [0]
[MD5.63740680B14C2EEE08B11ADADFA98DA1] [APT] [{34B986C6-C578-4A87-B9D8-247C76CD8387}] (.Google Inc..) -- c:\program files (x86)\Google\Chrome\application\chrome.exe [746648] =>.Google Inc®
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [830] =>.Adobe Systems Incorporated®
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [894] =>.Google Inc®
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [898] =>.Google Inc®
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [3768] =>.Adobe Systems Incorporated®
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [3642] =>.Google Inc®
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [3894] =>.Google Inc®
O39 - APT: PCDEventLauncherTask - (.PC-Doctor, Inc..) -- C:\Windows\System32\Tasks\PCDEventLauncherTask [3484] =>.Dell Inc.®
O39 - APT: SetmemUpdateTaskMachine - (...) -- C:\Windows\System32\Tasks\SetmemUpdateTaskMachine [3410] (.Orphean.) =>.Superfluous.Orphean

---\\ Process running (48) - 6s
[MD5.A6B2EC3A2B6AD7C3F7B2F3495CADE4C0] - (.IDT, Inc. - IDT PC Audio TPE.) -- C:\Program Files\IDT\WDM\stacsv64.exe [301568] [PID.120] =>.IDT, Inc.
[MD5.BA0AE42FC698B4E81C003D845E53D2A4] - (.Dell Inc. - DW WLAN Card Wireless Network Service.) -- C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE [48128] [PID.1408] =>.Dell Inc.
[MD5.E5536E2E8C18072587090F0758BB1D57] - (.Dell Inc. - DW WLAN Card Wireless Network Controller.) -- C:\Program Files\Dell\DW WLAN Card\BCMWLTRY.EXE [5820928] [PID.1468] =>.Dell Inc.
[MD5.A6FB9DB8F1A86861D955FD6975977AE0] - (.Andrea Electronics Corporation - Andrea filters APO access service (64-bit).) -- C:\Program Files\IDT\WDM\AESTSr64.exe [89600] [PID.1644] =>.Andrea Electronics Corporation
[MD5.53B8D9B905223CBB6317B0FFF61D155A] - (...) -- C:\ProgramData\Djezzy connect\OnlineUpdate\ouc.exe [651856] [PID.1780] =>.Huawei Technologies Co., Ltd.®
[MD5.0F32048BF3EA2A85FE3AC48E8E7B7C85] - (.ESET - ESET Service.) -- C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [1353720] [PID.1808] =>.ESET, spol. s r.o.®
[MD5.356407BE3264029D8EA928550C4039F5] - (.ServiceEx - ServiceEx Console Application.) -- C:\Program Files (x86)\EasyPHP-Webserver-14.1b2\dashboard\service-install.exe [114688] [PID.1876]
[MD5.76DCED71DB0683DE95BD55DDA3D68C4E] - (.The PHP Group - CLI.) -- C:\Program Files (x86)\EasyPHP-Webserver-14.1b2\dashboard\ews-dashboard.exe [61440] [PID.1904] =>.The PHP Group
[MD5.C08814014290BF3AD581C0E9C5919269] - (.Copyright (C) 2014 - DCSHOST.) -- C:\ProgramData\DatacardService\HWDeviceService64.exe [351824] [PID.1212] =>.Huawei Technologies Co., Ltd.®
[MD5.AB176B9E59C0435499D83047D84EDD59] - (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1513784] [PID.1676] =>.Malwarebytes Corporation®
[MD5.40C126CB15FAB7D6C66490DCA9C1AED2] - (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416] [PID.1756] =>.Malwarebytes Corporation®
[MD5.29DF2514FCED0B7F8E449933EF6E6918] - (...) -- C:\ProgramData\MobiConnect\OnlineUpdate\ouc.exe [656976] [PID.2088] =>.Huawei Technologies Co., Ltd.®
[MD5.CD180A9701D5259E4A30CE25CFF56181] - (...) -- C:\Program Files (x86)\MyPublicWiFi\PublicWiFiService.exe [756224] [PID.2096]
[MD5.8C02B0CC65BEE71124A565062BA77B39] - (...) -- C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\capiws.exe [24064] [PID.2268]
[MD5.FBE1D971EB64ABF4CE37B519307C94F1] - (.Chicony - OSD Service Application.) -- C:\Program Files (x86)\Dell\Dell KM632 Wireless Keyboard Caps Lock Indicator\OSDSrv.exe [176128] [PID.2308] =>.Chicony
[MD5.8FD02AA2AB0A0EB8960E54833C779AC7] - (.SplitCam Co. - SplitCam Service.) -- C:\Program Files (x86)\SplitCam\SplitCamService.exe [311424] [PID.2380] {05F4F76AAA27B0659ECCB8D164F987FA}
[MD5.B995F4A853F5D0FDF8DAECC71C0BC621] - (...) -- C:\Program Files (x86)\Mobiconnect\AssistantServices.exe [275784] [PID.2452] =>.ZTE CORPORATION®
[MD5.357CABBF155AFD1D3926E62539D2A3A7] - (.Microsoft Corp. - Microsoft® Windows Live ID Service.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2292480] [PID.2500] =>.Microsoft Corporation®
[MD5.D790CAFEFF0291D0AF8C76F5A1EE2E4E] - (.Microsoft Corp. - Microsoft® Windows Live ID Service Monitor.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE [223488] [PID.2644] =>.Microsoft Corporation®
[MD5.BABBBDEF9DBB5E012EE5210FCB47C33B] - (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe [9832760] [PID.4048] =>.Malwarebytes Corporation®
[MD5.5C2BF6F94AFE6E585B632EE12F861949] - (.Dell Products, LP. - Dell Digital Delivery Windows Service.) -- C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe [162816] [PID.2560] =>.Dell Products, LP.
[MD5.983FC69644DDF0486C8DFEA262948D1A] - (.Intel Corporation - IAStorDataSvc.) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [13336] [PID.2340] =>.Intel Corporation®
[MD5.23D990150D56B670A62B21B9ABDD45EE] - (.Intel Corporation - Local Manageability Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [325656] [PID.3240] =>.Intel Corporation®
[MD5.CBDEE152D73200EE49031A26310B9D3E] - (.Intel Corporation - User Notification Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2533400] [PID.3716] =>.Intel Corporation®
[MD5.87D32202404483FA9860BC3774F04031] - (.Intel Corporation - igfxTray Module.) -- C:\Windows\System32\igfxtray.exe [167960] [PID.5088] =>.Intel Corporation®
[MD5.E48592D99D6024DDCC76F2FB0347A9C7] - (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe [391704] [PID.4760] =>.Intel Corporation®
[MD5.88A186BC307825427338252EB4A82D87] - (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe [418840] [PID.4112] =>.Intel Corporation®
[MD5.34052A2F2A7836325070AD60B99205E8] - (.Dell Inc. - DW WLAN Card Wireless Network Tray Applet.) -- C:\Program Files\Dell\DW WLAN Card\WLTRAY.EXE [6476288] [PID.5056] =>.Dell Inc.
[MD5.527BA8F96712AB5535A84B3AE15E66E3] - (.Alps Electric Co., Ltd. - Alps Pointing-device Driver.) -- C:\Program Files\DellTPad\Apoint.exe [608112] [PID.2680] =>.Alps Electric Co., LTD.®
[MD5.D5A3EB5ED95E36B643E55F9F489FC8FC] - (.IDT, Inc. - IDT PC Audio TPE.) -- C:\Program Files\IDT\WDM\sttray64.exe [1128448] [PID.688] =>.IDT, Inc.
[MD5.A118C52E94780AEBFA52D05A3313CCF6] - (.ESET - ESET Main GUI.) -- C:\Program Files\ESET\ESET Smart Security\egui.exe [5595848] [PID.1656] =>.ESET, spol. s r.o.®
[MD5.B03F39264477EC8A979C67C789A7B62A] - (.Alps Electric Co., Ltd. - ApMsgFwd.) -- C:\Program Files\DellTPad\ApMsgFwd.exe [66928] [PID.4304] =>.Alps Electric Co., LTD.®
[MD5.1B0E5412AB8F30B8ED2AEAC2C530EB90] - (.Alps Electric Co., Ltd. - Alps Pointing-device Driver.) -- C:\Program Files\DellTPad\hidfind.exe [98672] [PID.4800] =>.Alps Electric Co., LTD.®
[MD5.FD97807051658AE27799BE3A557D3776] - (.Alps Electric Co., Ltd. - Alps Pointing-device Driver for Windows NT/.) -- C:\Program Files\DellTPad\ApntEx.exe [29552] [PID.4460] =>.Alps Electric Co., LTD.®
[MD5.3DDC1784EA5963EFBDF5D528D53820B4] - (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe [3911248] [PID.404] =>.Tonec Inc.
[MD5.01E5B25A973BEA364CA745C3B5658434] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe [57981568] [PID.4544] =>.Skype Software Sarl®
[MD5.41D1214B86A06FD29423A797EBDA17E4] - (.Intel Corporation - IAStorIcon.) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [283160] [PID.4696] =>.Intel Corporation®
[MD5.309BF2F494E57B4C2BFDFA94F8C6A238] - (.Logitech, Inc. - LockStatusTray Application.) -- C:\Windows\LockStatusTray.exe [192512] [PID.3140] =>.Logitech, Inc.
[MD5.E9C6EF9437ECB30911488F9313AD821A] - (.Tonec Inc. - Internet Download Manager agent for click m.) -- C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe [269848] [PID.3924] =>.Tonec Inc.®
[MD5.4234E76A1B12C5F76B264C99540FD736] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [392136] [PID.3772] =>.Mozilla Corporation®
[MD5.63740680B14C2EEE08B11ADADFA98DA1] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [746648] [PID.2924] =>.Google Inc®
[MD5.63740680B14C2EEE08B11ADADFA98DA1] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [746648] [PID.640] =>.Google Inc®
[MD5.63740680B14C2EEE08B11ADADFA98DA1] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [746648] [PID.4600] =>.Google Inc®
[MD5.63740680B14C2EEE08B11ADADFA98DA1] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [746648] [PID.5660] =>.Google Inc®
[MD5.6484DD841376E16DCC59EBB7F5CD2E82] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe [276936] [PID.5320] =>.Mozilla Corporation®
[MD5.FC64E45B9D69BBD40626320DCC25A389] - (.Adobe Systems, Inc. - Adobe Flash Player 20.0 r0.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_20_0_0_306.exe [3442368] [PID.5956] =>.Adobe Systems Incorporated®
[MD5.FC64E45B9D69BBD40626320DCC25A389] - (.Adobe Systems, Inc. - Adobe Flash Player 20.0 r0.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_20_0_0_306.exe [3442368] [PID.3096] =>.Adobe Systems Incorporated®
[MD5.E69EB056AC988D1F77F1D59AF4BEFE4E] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\Khalidou\AppData\Roaming\ZHP\ZHPDiag3.exe [2132480] [PID.4928] =>.Nicolas Coolman

---\\ Google Chrome, Start,Search,Extensions (13) - 1s
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [gdocgbfmddcfnlnpmnghmjicjognhonm] KProxy Extension
G2 - GCE: Preference [User Data\Default] [ghbmnnjooekpmoecnnnilnnbdlolhkhi] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [knipolnnllmklapflnccelgolnpehhpl] __MSG_CHROME_HANGOUTS_SHORT_NAME__
G2 - GCE: Preference [User Data\Default] [lifbcibllhkdhoafpjfnlhfpfgnpldfl] Skype
G2 - GCE: Preference [User Data\Default] [lmfecndfggbanbiodfihlfhpnoelgjbm] KProxy Extensions
G2 - GCE: Preference [User Data\Default] [maicibfoihmlppibfkljeljefamfndbp] KProxy Background App
G2 - GCE: Preference [User Data\Default] [ngpampappnmepgilojfohadhhmbhlaek] IDM Integration Module
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc.

---\\ Mozilla Firefox,Plugins,Start,Search,Extensions (3) - 1s
M0 - MFSP: prefs.js [Khalidou - ucuungvx.default] http://google.com/
P2 - EXT: (.Mozilla - Default.) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} =>.Mozilla
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_306.dll =>.Adobe Systems Incorporated

---\\ Internet Explorer Extensions, Start, Search (17) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer

---\\ Internet Explorer, Proxy Management (4) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

---\\ Line Analysis, IniFiles, Auto loading programs (3) - 0s
F2 - REG:system.ini: UserInit=userinit.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: VMApplet=C:\Windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.) =>.Microsoft Corporation

---\\ Hosts file redirection (5) - 1s
0
127.94
0

127.94

~ Nombre lignes détournées 0

98 (Hosts file redirected)

---\\ Browser Helper Object (BHO) (7) - 0s
O2 - BHO: IDM Helper [64Bits] - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Internet Download Manager, Tonec Inc. - IDM Browser Helper Object.) -- C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll =>.Tonec Inc.®
O2 - BHO: SnagIt Toolbar Loader [64Bits] - {00C6482D-C502-44C8-8409-FCE54AD9C208} . (.TechSmith Corporation - Snagit Browser Helper Object for Internet E.) -- C:\Program Files (x86)\TechSmith\Snagit 9\SnagitBHO.dll =>.TechSmith Corporation®
O2 - BHO: Groove GFS Browser Helper [64Bits] - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} . (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL =>.Microsoft Corporation®
O2 - BHO: Windows Live ID Sign-in Helper [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll =>.Microsoft Corporation®
O2 - BHO: SkypeIEPluginBHO [64Bits] - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} (Orphean)
O2 - BHO: URLRedirectionBHO [64Bits] - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL =>.Microsoft Corporation®
O2 - BHO: Microsoft SkyDrive Pro Browser Helper [64Bits] - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} (Orphean)

---\\ Internet Explorer Toolbars (1) - 0s
O3 - Toolbar: 0x80E1F58FDEABEB46B09ED2AAB95CABE3 - [HKCU]{8FF5E180-ABDE-46EB-B09E-D2AAB95CABE3} . (...) -- (.not file.)

---\\ Auto loading programs from Registry and folders (29) - 7s
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe =>.Intel Corporation®
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe =>.Intel Corporation®
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe =>.Intel Corporation®
O4 - HKLM\..\Run: [Broadcom Wireless Manager UI] . (.Dell Inc. - DW WLAN Card Wireless Network Tray Applet.) -- C:\Program Files\Dell\DW WLAN Card\WLTRAY.EXE =>.Dell Inc.
O4 - HKLM\..\Run: [Apoint] . (.Alps Electric Co., Ltd. - Alps Pointing-device Driver.) -- C:\Program Files\DellTPad\Apoint.exe =>.Alps Electric Co., LTD.®
O4 - HKLM\..\Run: [SysTrayApp] . (.IDT, Inc. - IDT PC Audio TPE.) -- C:\Program Files\IDT\WDM\sttray64.exe =>.IDT, Inc.
O4 - HKLM\..\Run: [egui] . (.ESET - ESET Main GUI.) -- C:\Program Files\ESET\ESET Smart Security\egui.exe =>.ESET, spol. s r.o.®
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe =>.Adobe Systems Incorporated®
O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - HKCU\..\Run: [Viber] . (. - Viber.) -- C:\Users\Khalidou\AppData\Local\Viber\Viber.exe {5AECF5A58104948997EF21A8F3D44AAE}
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Software Sarl®
O4 - HKCU\..\Run: [AdobeBridge] (Orphean)
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_086D7C47B5B1DAAAF81533180C87F4C7] . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - HKLM\..\Wow6432Node\Run: [IAStorIcon] . (.Intel Corporation - IAStorIcon.) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe =>.Intel Corporation®
O4 - HKLM\..\Wow6432Node\Run: [LockStatusTray] . (.Logitech, Inc. - LockStatusTray Application.) -- C:\Windows\LockStatusTray.exe =>.Logitech, Inc.
O4 - HKLM\..\Wow6432Node\Run: [Lightshot] . (.Copyright 2009 - Starter Module.) -- C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe =>PUP.Optional.Skillbrains
O4 - HKLM\..\Wow6432Node\Run: [SwitchBoard] . (.Adobe Systems Incorporated - SwitchBoard Server (32 bit).) -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe =>.Adobe Systems Incorporated
O4 - HKLM\..\Wow6432Node\Run: [AdobeCS6ServiceManager] . (.Adobe Systems Incorporated - Adobe CS6 Service Manager.) -- C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe =>.Adobe Systems Incorporated®
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] . (.Microsoft Corporation - SP Reviewer.) -- C:\Windows\System32\SPReview\spreview.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] . (.Microsoft Corporation - SP Reviewer.) -- C:\Windows\System32\SPReview\spreview.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-625942383-847743001-245719562-1000\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - HKUS\S-1-5-21-625942383-847743001-245719562-1000\..\Run: [Viber] . (. - Viber.) -- C:\Users\Khalidou\AppData\Local\Viber\Viber.exe {5AECF5A58104948997EF21A8F3D44AAE}
O4 - HKUS\S-1-5-21-625942383-847743001-245719562-1000\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Software Sarl®
O4 - HKUS\S-1-5-21-625942383-847743001-245719562-1000\..\Run: [AdobeBridge] (Orphean)
O4 - HKUS\S-1-5-21-625942383-847743001-245719562-1000\..\Run: [GoogleChromeAutoLaunch_086D7C47B5B1DAAAF81533180C87F4C7] . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®

---\\ Global shortcuts Startup (87) - 26s
O4 - GS\Desktop [Administrator]: Internet Download Manager.lnk . (.Tonec Inc. - Internet Download Manager (IDM).) C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - GS\Desktop [Administrator]: LiveSuit.exe.lnk . (.CopyRight (C) - LiveSuit Microsoft Application.) C:\Users\Khalidou\Downloads\Compressed\Spain_a13-vortex-color-v2.0rc3_2\livesuit\LiveSuit.exe
O4 - GS\Desktop [Administrator]: NetBet Poker.lnk . (.Playtech - Playtech Client Engine Application.) C:\Users\Khalidou\AppData\Local\NetBet Poker\casino.exe =>.Playtech Software Limited®
O4 - GS\Desktop [Administrator]: PokerStars.fr.lnk . (.PokerStars - PokerStars Update.) C:\Program Files (x86)\PokerStars.FR\PokerStarsUpdate.exe =>.Amaya Services Limited®
O4 - GS\Desktop [Administrator]: Skype.exe - Shortcut.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Software Sarl®
O4 - GS\Desktop [Administrator]: Skype.exe.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Software Sarl®
O4 - GS\Desktop [Administrator]: Start Tor Browser.lnk . (.Mozilla Corporation - Tor Browser.) C:\Users\Khalidou\Desktop\Tor Browser\Browser\firefox.exe =>.Mozilla Corporation
O4 - GS\Desktop [Administrator]: Viber.lnk . (...) C:\Users\Khalidou\AppData\Local\Viber\Viber.exe {5AECF5A58104948997EF21A8F3D44AAE}
O4 - GS\Desktop [Administrator]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Khalidou\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Desktop [Administrator]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\Khalidou\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - GS\Quicklaunch [Administrator]: Foxit Reader.lnk . (.Foxit Software Inc. - Foxit Reader 7.1, Best Reader for Everyday.) C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitReader.exe =>.Foxit Software Incorporated®
O4 - GS\Quicklaunch [Administrator]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Administrator]: PokerStars.fr.lnk . (.PokerStars - PokerStars Update.) C:\Program Files (x86)\PokerStars.FR\PokerStarsUpdate.exe =>.Amaya Services Limited®
O4 - GS\Quicklaunch [Administrator]: Snagit 9.lnk . (.TechSmith Corporation - Snagit.) C:\Program Files (x86)\TechSmith\Snagit 9\Snagit32.exe =>.TechSmith Corporation®
O4 - GS\Quicklaunch [Administrator]: SPlayer.lnk . (...) C:\Program Files (x86)\SPlayer\splayer.exe {6C587715EE87072E7EB8816807E4BD39}
O4 - GS\Quicklaunch [Administrator]: WampServer64.lnk . (.Aestan Software - Aestan Tray Menu.) C:\wamp\wampmanager.exe =>.Aestan Software
O4 - GS\Quicklaunch [Administrator]: Wireshark.lnk . (.The Wireshark developer community, http://www.wiresha - .) C:\Program Files (x86)\Wireshark\Wireshark.exe
O4 - GS\Quicklaunch [Administrator]: XnView.lnk . (.XnView, http://www.xnview.com - XnView for Windows.) C:\Program Files (x86)\XnView\xnview.exe =>.Pierre GOUGELET®
O4 - GS\Quicklaunch [Administrator]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\Khalidou\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - GS\sendTo [Administrator]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Software Sarl®
O4 - GS\TaskBar [Administrator]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [Administrator]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [Administrator]: Viber.lnk . (...) C:\Users\Khalidou\AppData\Local\Viber\Viber.exe {5AECF5A58104948997EF21A8F3D44AAE}
O4 - GS\Desktop [Guest]: Internet Download Manager.lnk . (.Tonec Inc. - Internet Download Manager (IDM).) C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - GS\Desktop [Guest]: LiveSuit.exe.lnk . (.CopyRight (C) - LiveSuit Microsoft Application.) C:\Users\Khalidou\Downloads\Compressed\Spain_a13-vortex-color-v2.0rc3_2\livesuit\LiveSuit.exe
O4 - GS\Desktop [Guest]: NetBet Poker.lnk . (.Playtech - Playtech Client Engine Application.) C:\Users\Khalidou\AppData\Local\NetBet Poker\casino.exe =>.Playtech Software Limited®
O4 - GS\Desktop [Guest]: PokerStars.fr.lnk . (.PokerStars - PokerStars Update.) C:\Program Files (x86)\PokerStars.FR\PokerStarsUpdate.exe =>.Amaya Services Limited®
O4 - GS\Desktop [Guest]: Skype.exe - Shortcut.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Software Sarl®
O4 - GS\Desktop [Guest]: Skype.exe.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Software Sarl®
O4 - GS\Desktop [Guest]: Start Tor Browser.lnk . (.Mozilla Corporation - Tor Browser.) C:\Users\Khalidou\Desktop\Tor Browser\Browser\firefox.exe =>.Mozilla Corporation
O4 - GS\Desktop [Guest]: Viber.lnk . (...) C:\Users\Khalidou\AppData\Local\Viber\Viber.exe {5AECF5A58104948997EF21A8F3D44AAE}
O4 - GS\Desktop [Guest]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Khalidou\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Desktop [Guest]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\Khalidou\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - GS\Quicklaunch [Guest]: Foxit Reader.lnk . (.Foxit Software Inc. - Foxit Reader 7.1, Best Reader for Everyday.) C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitReader.exe =>.Foxit Software Incorporated®
O4 - GS\Quicklaunch [Guest]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Guest]: PokerStars.fr.lnk . (.PokerStars - PokerStars Update.) C:\Program Files (x86)\PokerStars.FR\PokerStarsUpdate.exe =>.Amaya Services Limited®
O4 - GS\Quicklaunch [Guest]: Snagit 9.lnk . (.TechSmith Corporation - Snagit.) C:\Program Files (x86)\TechSmith\Snagit 9\Snagit32.exe =>.TechSmith Corporation®
O4 - GS\Quicklaunch [Guest]: SPlayer.lnk . (...) C:\Program Files (x86)\SPlayer\splayer.exe {6C587715EE87072E7EB8816807E4BD39}
O4 - GS\Quicklaunch [Guest]: WampServer64.lnk . (.Aestan Software - Aestan Tray Menu.) C:\wamp\wampmanager.exe =>.Aestan Software
O4 - GS\Quicklaunch [Guest]: Wireshark.lnk . (.The Wireshark developer community, http://www.wiresha - .) C:\Program Files (x86)\Wireshark\Wireshark.exe
O4 - GS\Quicklaunch [Guest]: XnView.lnk . (.XnView, http://www.xnview.com - XnView for Windows.) C:\Program Files (x86)\XnView\xnview.exe =>.Pierre GOUGELET®
O4 - GS\Quicklaunch [Guest]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\Khalidou\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - GS\sendTo [Guest]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Software Sarl®
O4 - GS\TaskBar [Guest]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [Guest]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [Guest]: Viber.lnk . (...) C:\Users\Khalidou\AppData\Local\Viber\Viber.exe {5AECF5A58104948997EF21A8F3D44AAE}
O4 - GS\Desktop [Khalidou]: Internet Download Manager.lnk . (.Tonec Inc. - Internet Download Manager (IDM).) C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - GS\Desktop [Khalidou]: LiveSuit.exe.lnk . (.CopyRight (C) - LiveSuit Microsoft Application.) C:\Users\Khalidou\Downloads\Compressed\Spain_a13-vortex-color-v2.0rc3_2\livesuit\LiveSuit.exe
O4 - GS\Desktop [Khalidou]: NetBet Poker.lnk . (.Playtech - Playtech Client Engine Application.) C:\Users\Khalidou\AppData\Local\NetBet Poker\casino.exe =>.Playtech Software Limited®
O4 - GS\Desktop [Khalidou]: PokerStars.fr.lnk . (.PokerStars - PokerStars Update.) C:\Program Files (x86)\PokerStars.FR\PokerStarsUpdate.exe =>.Amaya Services Limited®
O4 - GS\Desktop [Khalidou]: Skype.exe - Shortcut.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Software Sarl®
O4 - GS\Desktop [Khalidou]: Skype.exe.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Software Sarl®
O4 - GS\Desktop [Khalidou]: Start Tor Browser.lnk . (.Mozilla Corporation - Tor Browser.) C:\Users\Khalidou\Desktop\Tor Browser\Browser\firefox.exe =>.Mozilla Corporation
O4 - GS\Desktop [Khalidou]: Viber.lnk . (...) C:\Users\Khalidou\AppData\Local\Viber\Viber.exe {5AECF5A58104948997EF21A8F3D44AAE}
O4 - GS\Desktop [Khalidou]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Khalidou\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Desktop [Khalidou]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\Khalidou\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - GS\Quicklaunch [Khalidou]: Foxit Reader.lnk . (.Foxit Software Inc. - Foxit Reader 7.1, Best Reader for Everyday.) C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitReader.exe =>.Foxit Software Incorporated®
O4 - GS\Quicklaunch [Khalidou]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Khalidou]: PokerStars.fr.lnk . (.PokerStars - PokerStars Update.) C:\Program Files (x86)\PokerStars.FR\PokerStarsUpdate.exe =>.Amaya Services Limited®
O4 - GS\Quicklaunch [Khalidou]: Snagit 9.lnk . (.TechSmith Corporation - Snagit.) C:\Program Files (x86)\TechSmith\Snagit 9\Snagit32.exe =>.TechSmith Corporation®
O4 - GS\Quicklaunch [Khalidou]: SPlayer.lnk . (...) C:\Program Files (x86)\SPlayer\splayer.exe {6C587715EE87072E7EB8816807E4BD39}
O4 - GS\Quicklaunch [Khalidou]: WampServer64.lnk . (.Aestan Software - Aestan Tray Menu.) C:\wamp\wampmanager.exe =>.Aestan Software
O4 - GS\Quicklaunch [Khalidou]: Wireshark.lnk . (.The Wireshark developer community, http://www.wiresha - .) C:\Program Files (x86)\Wireshark\Wireshark.exe
O4 - GS\Quicklaunch [Khalidou]: XnView.lnk . (.XnView, http://www.xnview.com - XnView for Windows.) C:\Program Files (x86)\XnView\xnview.exe =>.Pierre GOUGELET®
O4 - GS\Quicklaunch [Khalidou]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\Khalidou\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - GS\sendTo [Khalidou]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Software Sarl®
O4 - GS\TaskBar [Khalidou]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [Khalidou]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [Khalidou]: Viber.lnk . (...) C:\Users\Khalidou\AppData\Local\Viber\Viber.exe {5AECF5A58104948997EF21A8F3D44AAE}
O4 - GS\CommonDesktop [Public]: Adobe Application Manager.lnk . (.Adobe Systems Incorporated - Adobe Application Manager.) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\core\PDapp.exe =>.Adobe Systems Incorporated®
O4 - GS\CommonDesktop [Public]: Apps.lnk . (...) C:\Users\Public\Libraries\Apps.library-ms
O4 - GS\CommonDesktop [Public]: DigiEuro (DEUR) Scrypt.lnk . (...) C:\Program Files (x86)\DigiEuro (DEUR) Scrypt\DigiEuro-scrypt-qt.exe
O4 - GS\CommonDesktop [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\CommonDesktop [Public]: Malwarebytes Anti-Malware.lnk . (.Malwarebytes - Malwarebytes Anti-Malware.) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe =>.Malwarebytes Corporation®
O4 - GS\CommonDesktop [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\CommonDesktop [Public]: OpenVPN Connect.lnk . (...) C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\ovpntray.exe
O4 - GS\CommonDesktop [Public]: Skype.lnk . (...) C:\Windows\Installer\{6A0549A9-1B96-498C-ACBC-3943001FEB19}\SkypeIcon.exe
O4 - GS\CommonDesktop [Public]: SmartDeblur 2.3 HOME.lnk . (...) C:\Program Files (x86)\SmartDeblur_2.3_HOME\SmartDeblur.exe
O4 - GS\CommonDesktop [Public]: Snagit 9 Editor.lnk . (.TechSmith Corporation - Snagit Editor.) C:\Program Files (x86)\TechSmith\Snagit 9\SnagitEditor.exe =>.TechSmith Corporation®
O4 - GS\CommonDesktop [Public]: Snagit 9.lnk . (.TechSmith Corporation - Snagit.) C:\Program Files (x86)\TechSmith\Snagit 9\Snagit32.exe =>.TechSmith Corporation®
O4 - GS\CommonDesktop [Public]: SPlayer.lnk . (...) C:\Program Files (x86)\SPlayer\splayer.exe {6C587715EE87072E7EB8816807E4BD39}
O4 - GS\CommonDesktop [Public]: Start BlueStacks.lnk . (.BlueStack Systems, Inc. - BlueStacks StartLauncher.) C:\Program Files (x86)\BlueStacks\HD-StartLauncher.exe =>.Bluestack Systems, Inc.®
O4 - GS\CommonDesktop [Public]: VLC media player.lnk . (.VideoLAN - VLC media player.) C:\Program Files (x86)\VideoLAN\VLC\vlc.exe =>.VideoLAN®
O4 - GS\Startup [Public]: OpenVPN Connect.lnk . (...) C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\ovpntray.exe
O4 - GS\Programs [Public]: Start Tor Browser.lnk . (.Mozilla Corporation - Tor Browser.) C:\Users\Khalidou\Desktop\Tor Browser\Browser\firefox.exe =>.Mozilla Corporation
O4 - GS\Programs [Public]: Viber.lnk . (...) C:\Users\Khalidou\AppData\Local\Viber\Viber.exe {5AECF5A58104948997EF21A8F3D44AAE}
O4 - GS\SystemTools [Public]: Task Scheduler.lnk . (...) C:\Windows\system32\taskschd.msc

---\\ Lop.com/Domain Hijackers (6) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{74ADA215-874D-4317-8A86-C34DA2C7F315}: NameServer = 209.244.0.3 8.8.8.8
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C3B913CF-6808-45EE-9A7A-A91C9600BE24}: NameServer = 209.244.0.3 8.8.8.8
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{CC897413-340D-4A30-8251-ECEE94973890}: NameServer = 209.244.0.3 8.8.8.8
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{E0B6A214-845D-4FB5-9A92-BD48EFFE3302}: NameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{2D311FB7-0004-4482-A576-23DF2B2030CF}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{2D311FB7-0004-4482-A576-23DF2B2030CF}: DhcpDomain = domain.name

---\\ Extra protocols (25) - 1s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll =>.Microsoft Corporation
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ms-help [64Bits] - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Help\hxds.dll =>.Microsoft Corporation®
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: osf [64Bits] - {D924BDC6-C83A-4BD5-90D0-095128A113D1} . (.Microsoft Corporation - Microsoft Office 2013 component.) -- C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL =>.Microsoft Corporation®
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: deflate [64Bits] - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Filter: gzip [64Bits] - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Filter: text/xml [64Bits] - {807583E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL =>.Microsoft Corporation®

---\\ Software installed (89) - 30s
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- uTorrent =>.BitTorrent Inc®
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {FE23D063-934D-4829-A0D8-00634CE79B4A} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Dreamweaver CC 2014.1 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {F2321021-4348-11E4-B1DF-BDB415F23EC4} =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Flash Player 20 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Help Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AF37176A-78CA-545B-34EF-8B6A21514DD1} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Help Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1 =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Photoshop CS6 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {74EB3499-8B95-4B5C-96EB-7B342F3FD0C6} =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Widget Browser - (.Adobe Systems Incorporated..) [HKLM][64Bits] -- {EFBE6DD5-B224-96E5-72B9-68D328CB12A6} =>.Adobe Systems Incorporated.
O42 - Logiciel: Adobe Widget Browser - (.Adobe Systems Incorporated..) [HKLM][64Bits] -- com.adobe.WidgetBrowser =>.Adobe Systems Incorporated.
O42 - Logiciel: Aurora 3D Presentation 2012 version 14.08.27 - (.Aurora3D Software.) [HKLM][64Bits] -- {4F6B6582-B9F6-48B2-ABFC-48F097D07837}_is1
O42 - Logiciel: BlueStacks App Player - (.BlueStack Systems, Inc..) [HKLM][64Bits] -- BlueStacks App Player =>.Bluestack Systems, Inc.®
O42 - Logiciel: BlueStacks Notification Center - (.BlueStack Systems, Inc..) [HKLM][64Bits] -- {79809712-A577-4B8C-A9FC-51945690C7DC} =>.BlueStack Systems, Inc.
O42 - Logiciel: Cisco EAP-FAST Module - (.Cisco Systems, Inc..) [HKLM][64Bits] -- {64BF0187-F3D2-498B-99EA-163AF9AE6EC9} =>.Cisco Systems, Inc.
O42 - Logiciel: Cisco LEAP Module - (.Cisco Systems, Inc..) [HKLM][64Bits] -- {51C7AD07-C3F6-4635-8E8A-231306D810FE} =>.Cisco Systems, Inc.
O42 - Logiciel: Cisco Packet Tracer 5.3.3 - (.Cisco Systems, Inc..) [HKLM][64Bits] -- Cisco Packet Tracer 5.3.3_is1 =>.Cisco Systems, Inc.
O42 - Logiciel: Cisco PEAP Module - (.Cisco Systems, Inc..) [HKLM][64Bits] -- {ED5776D5-59B4-46B7-AF81-5F2D94D7C640} =>.Cisco Systems, Inc.
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF} =>.Microsoft
O42 - Logiciel: Dell Digital Delivery - (.Dell Products, LP.) [HKLM][64Bits] -- {31045ECE-019D-4DDF-A5C8-5C51A3FE50EE} =>.Dell Products, LP
O42 - Logiciel: Dell KM632 Wireless Keyboard Caps Lock Indicator - (.Dell.) [HKLM][64Bits] -- {55586382-6704-4237-AAA7-85FF9C055022} =>.Dell
O42 - Logiciel: Dell SupportAssist - (.Dell.) [HKLM][64Bits] -- PC-Doctor for Windows =>.Dell Inc.®
O42 - Logiciel: Dell System Detect - (.Dell.) [HKCU][64Bits] -- 58d94f3ce2c27db0 =>.Dell Inc.®
O42 - Logiciel: Dell Touchpad - (.ALPS ELECTRIC CO., LTD..) [HKLM][64Bits] -- {9F72EF8B-AEC9-4CA5-B483-143980AFD6FD} =>.Alps Electric Co., LTD.®
O42 - Logiciel: DigiEuro (DEUR) Scrypt version v1.0.0.1 - (.The DigiEuro developers.) [HKLM][64Bits] -- {2D4491F5-40F6-4F65-8FB0-4B0827FA808B}_is1
O42 - Logiciel: Djezzy connect - (.Huawei Technologies Co.,Ltd.) [HKLM][64Bits] -- Djezzy connect =>.Huawei Technologies Co.,Ltd
O42 - Logiciel: DW WLAN Card Utility - (.Dell Inc..) [HKLM][64Bits] -- DW WLAN Card Utility =>.Dell Inc.
O42 - Logiciel: ESET Smart Security - (.ESET, spol s r. o..) [HKLM][64Bits] -- {7C4B5814-9E71-4481-9769-00B8C11D0656} =>.ESET, spol s r. o.
O42 - Logiciel: Foxit Cloud - (.Foxit Software Inc..) [HKLM][64Bits] -- {41914D8B-9D6E-4764-A1F9-BC43FB6782C1}_is1 =>.Foxit Software Incorporated®
O42 - Logiciel: Foxit Reader - (.Foxit Software Inc..) [HKLM][64Bits] -- Foxit Reader_is1 =>.Foxit Software Incorporated®
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome =>.Google Inc®
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} =>.Google Inc.
O42 - Logiciel: Greenshot 1.2.4.10 - (.Greenshot.) [HKLM][64Bits] -- Greenshot_is1 =>.Greenshot
O42 - Logiciel: IDT Audio - (.IDT.) [HKLM][64Bits] -- {E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001} =>.IDT
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A} =>.Intel Corporation®
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA} =>.Intel Corporation®
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {3E29EE6C-963A-4aae-86C1-DC237C4A49FC} =>.Intel Corporation®
O42 - Logiciel: Internet Download Manager - (.Tonec Inc..) [HKLM][64Bits] -- Internet Download Manager =>.Tonec Inc.®
O42 - Logiciel: Keyboard Lock Status - (.Logitech.) [HKLM][64Bits] -- {144A1586-E16C-448D-910D-E12ACD65DD98} =>.Macrovision Corporation®
O42 - Logiciel: Lightshot-5.3.0.0 - (.Skillbrains.) [HKLM][64Bits] -- {30A5B3C9-2084-4063-A32A-628A98DE512B}_is1 =>PUP.Optional.Skillbrains
O42 - Logiciel: Malwarebytes Anti-Malware version 2.2.0.1024 - (.Malwarebytes.) [HKLM][64Bits] -- Malwarebytes Anti-Malware_is1 =>.Malwarebytes
O42 - Logiciel: Microsoft Access MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0015-0409-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Access Setup Metadata MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0117-0409-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Application Error Reporting - (.Microsoft Corporation.) [HKLM][64Bits] -- {95120000-00B9-0409-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft DCF MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0090-0409-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Excel MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0016-0409-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Groove MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-00BA-0409-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft InfoPath MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0044-0409-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Lync MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-012B-0409-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft OneNote MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-00A1-0409-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Outlook MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-001A-0409-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft PowerPoint MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0018-0409-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Publisher MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0019-0409-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Word MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-001B-0409-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: MobiConnect - (.Huawei Technologies Co.,Ltd.) [HKLM][64Bits] -- MobiConnect =>.Huawei Technologies Co.,Ltd
O42 - Logiciel: Mobiconnect - (.ZTE Corporation.) [HKLM][64Bits] -- {A9E5EDA7-2E6C-49E7-924B-A32B89C24A04} =>.ZTE CORPORATION®
O42 - Logiciel: Mobistel Cynus F4 Drivers(x64) - (.Mobistel.) [HKLM][64Bits] -- {C3F57607-592D-458F-81AE-349FD05DFA74}
O42 - Logiciel: Mozilla Firefox 44.0.2 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 44.0.2 (x86 fr) =>.Mozilla Corporation®
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService =>.Mozilla
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F} =>.Microsoft
O42 - Logiciel: MSVCRT110 - (.Microsoft.) [HKLM][64Bits] -- {8E14DDC8-EA60-4E18-B3E3-1937104D5BDA} =>.Microsoft
O42 - Logiciel: MSVCRT110_amd64 - (.Microsoft.) [HKLM][64Bits] -- {E9FA781F-3E80-4399-825A-AD3E11C28C77} =>.Microsoft
O42 - Logiciel: MyPublicWiFi 5.1 - (.TRUE Software.) [HKLM][64Bits] -- {C08D782B-9281-406B-ABCE-326DA70B8A1F}_is1
O42 - Logiciel: NetBet Poker - (...) [HKCU][64Bits] -- Netbet Poker
O42 - Logiciel: Notepad++ - (.Notepad++ Team.) [HKLM][64Bits] -- Notepad++ =>.Notepad++ Team
O42 - Logiciel: OpenVPN Connect - (.OpenVPN Technologies.) [HKLM][64Bits] -- {3D9A5267-3236-4BCC-AA45-2CE16F531187} =>.OpenVPN Technologies
O42 - Logiciel: PCSX2 - Playstation 2 Emulator - (...) [HKLM][64Bits] -- pcsx2-r5875
O42 - Logiciel: PDF Settings CS6 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {BFEAAE77-BD7F-4534-B286-9C5CB4697EB1} =>.Adobe Systems Incorporated
O42 - Logiciel: PokerStars.fr - (.PokerStars.fr.) [HKLM][64Bits] -- PokerStars.fr =>.PokerStars.fr
O42 - Logiciel: Prezi - (.Nom de votre société.) [HKLM][64Bits] -- {63B8F931-2BF3-4D5D-9C28-E2EF88D83DFD}
O42 - Logiciel: Pro Evolution Soccer 2012 - (.KONAMI.) [HKLM][64Bits] -- {E737A098-F161-4B6F-AF22-86AAE34F6FBD} =>.Konami
O42 - Logiciel: RAR Recovery Toolbox 1.1 - (.Recovery ToolBox.) [HKLM][64Bits] -- RAR Recovery Toolbox_is1
O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476} =>.Realtek Semiconductor Corp®
O42 - Logiciel: Realtek USB 2.0 Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {96AE7E41-E34E-47D0-AC07-1091A8127911} =>.Realtek Semiconductor Corp®
O42 - Logiciel: RemoteServer - (.RServer.) [HKLM][64Bits] -- {4B025D55-6E0A-4CAD-A93B-64FF9D73ED6C}
O42 - Logiciel: Skype Click to Call - (.Microsoft Corporation.) [HKLM][64Bits] -- {6D1221A9-17BF-4EC0-81F2-27D30EC30701} =>.Microsoft Corporation
O42 - Logiciel: Skype™ 7.12 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {6A0549A9-1B96-498C-ACBC-3943001FEB19} =>.Skype Technologies S.A.
O42 - Logiciel: SmartDeblur 2.3 HOME - (...) [HKLM][64Bits] -- SmartDeblur 2.3 HOME_is1
O42 - Logiciel: Snagit 9.1.1 - (.TechSmith Corporation.) [HKLM][64Bits] -- {F20A984B-9B30-4A9E-A3AC-918AF0D85A48} =>.TechSmith Corporation
O42 - Logiciel: SPlayer - (...) [HKLM][64Bits] -- SPlayer
O42 - Logiciel: SplitCam - (.SplitCam Co.) [HKLM][64Bits] -- SplitCam
O42 - Logiciel: Ultimate Control version 1.2 - (.NEGU Soft.) [HKLM][64Bits] -- {4D649577-47C2-4068-B7B8-09D1FEE7EF03}_is1
O42 - Logiciel: Viber - (.Viber Media Inc.) [HKCU][64Bits] -- Viber =>.Viber Media Inc
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player =>.VideoLAN
O42 - Logiciel: WampServer 2.5 - (.Hervé Leclerc (HeL).) [HKLM][64Bits] -- WampServer 2_is1 =>.Hervé Leclerc (HeL)
O42 - Logiciel: WebcamMax - (.COOLWAREMAX.) [HKLM][64Bits] -- WebcamMax
O42 - Logiciel: WinPcap 4.1.3 - (.Riverbed Technology, Inc..) [HKLM][64Bits] -- WinPcapInst =>.Riverbed Technology, Inc.
O42 - Logiciel: WinRAR 5.21 beta 2 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver =>.win.rar GmbH®
O42 - Logiciel: Wireshark 1.12.5 (64-bit) - (.The Wireshark developer community, http://www.wireshark.org.) [HKLM][64Bits] -- Wireshark =>.Wireshark Foundation®
O42 - Logiciel: XnView 2.33 - (.Gougelet Pierre-e.) [HKLM][64Bits] -- XnView_is1 =>.Pierre GOUGELET®

---\\ HKCU & HKLM Software Keys (98) - 30s
HKLM\SOFTWARE\Wow6432Node\Adobe
HKLM\SOFTWARE\Wow6432Node\AppDataLow
HKLM\SOFTWARE\Wow6432Node\BlueStacks
HKLM\SOFTWARE\Wow6432Node\Dell
HKLM\SOFTWARE\Wow6432Node\Dell Computer Corporation
HKLM\SOFTWARE\Wow6432Node\ESET
HKLM\SOFTWARE\Wow6432Node\Foxit Software
HKLM\SOFTWARE\Wow6432Node\GN2
HKLM\SOFTWARE\Wow6432Node\GNU
HKLM\SOFTWARE\Wow6432Node\Google
HKLM\SOFTWARE\Wow6432Node\Huawei technologies
HKLM\SOFTWARE\Wow6432Node\IDT
HKLM\SOFTWARE\Wow6432Node\IM Providers
HKLM\SOFTWARE\Wow6432Node\InstallShield
HKLM\SOFTWARE\Wow6432Node\Intel
HKLM\SOFTWARE\Wow6432Node\Internet Download Manager
HKLM\SOFTWARE\Wow6432Node\KONAMI
HKLM\SOFTWARE\Wow6432Node\Logitech
HKLM\SOFTWARE\Wow6432Node\LogMeInRescueCallingCard
HKLM\SOFTWARE\Wow6432Node\Macromedia
HKLM\SOFTWARE\Wow6432Node\Malwarebytes' Anti-Malware
HKLM\SOFTWARE\Wow6432Node\Microids
HKLM\SOFTWARE\Wow6432Node\Mobistel
HKLM\SOFTWARE\Wow6432Node\Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\Notepad++
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\PC-Doctor
HKLM\SOFTWARE\Wow6432Node\Realtek
HKLM\SOFTWARE\Wow6432Node\Realtek Semiconductor Corp.
HKLM\SOFTWARE\Wow6432Node\Reg
HKLM\SOFTWARE\Wow6432Node\ServiceAppPath
HKLM\SOFTWARE\Wow6432Node\Skillbrains =>PUP.Optional.Skillbrains
HKLM\SOFTWARE\Wow6432Node\Skype
HKLM\SOFTWARE\Wow6432Node\SPlayer
HKLM\SOFTWARE\Wow6432Node\SplitCam
HKLM\SOFTWARE\Wow6432Node\SuppHelpDir
HKLM\SOFTWARE\Wow6432Node\TechSmith
HKLM\SOFTWARE\Wow6432Node\TrueSoftware
HKLM\SOFTWARE\Wow6432Node\VideoLAN
HKLM\SOFTWARE\Wow6432Node\WebcamMax
HKLM\SOFTWARE\Wow6432Node\WinPcap
HKLM\SOFTWARE\Wow6432Node\XnView
HKLM\SOFTWARE\Wow6432Node\ZTE Corporation
HKLM\SOFTWARE\Wow6432Node\ZTEUSBDriverFlag
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\Alps
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\BcmSetup
HKCU\SOFTWARE\BitTorrent
HKCU\SOFTWARE\Broadcom
HKCU\SOFTWARE\Cisco
HKCU\SOFTWARE\Dell
HKCU\SOFTWARE\DigiEuro
HKCU\SOFTWARE\DownloadManager
HKCU\SOFTWARE\ESET
HKCU\SOFTWARE\Foxit Software
HKCU\SOFTWARE\GN2
HKCU\SOFTWARE\GNU
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\Intel
HKCU\SOFTWARE\Licenses
HKCU\SOFTWARE\LogMeInRescueCallingCard
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\MONOGRAM
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\MTK
HKCU\SOFTWARE\Netbet Poker
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\OpenVPN Technologies
HKCU\SOFTWARE\PCSX2
HKCU\SOFTWARE\PTECH
HKCU\SOFTWARE\QtProject
HKCU\SOFTWARE\RAR Recovery Toolbox
HKCU\SOFTWARE\Reg
HKCU\SOFTWARE\SkillBrains =>PUP.Optional.Skillbrains
HKCU\SOFTWARE\Skype
HKCU\SOFTWARE\SmartDeblur
HKCU\SOFTWARE\SPlayer
HKCU\SOFTWARE\SplitCam
HKCU\SOFTWARE\Sysinternals
HKCU\SOFTWARE\systweak =>.Superfluous.Systweak
HKCU\SOFTWARE\TechSmith
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\VB and VBA Program Settings
HKCU\SOFTWARE\Viber
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\Wintertree
HKCU\SOFTWARE\Wireshark
HKCU\SOFTWARE\Wow6432Node
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software

---\\ Contents of the Common Files folders (224) - 54s
O43 - CFD: 09/01/2016 - [] D -- C:\Program Files (x86)\Adobe =>.Adobe Systems Incorporated®
O43 - CFD: 19/05/2015 - [] D -- C:\Program Files (x86)\Aurora3D
O43 - CFD: 04/08/2015 - [] D -- C:\Program Files (x86)\BlueStacks
O43 - CFD: 07/04/2015 - [] D -- C:\Program Files (x86)\Cisco
O43 - CFD: 09/06/2015 - [] D -- C:\Program Files (x86)\Cisco Packet Tracer 5.3.3
O43 - CFD: 28/01/2016 - [] D -- C:\Program Files (x86)\Common Files
O43 - CFD: 07/04/2015 - [] D -- C:\Program Files (x86)\Dell
O43 - CFD: 07/04/2015 - [] D -- C:\Program Files (x86)\Dell Digital Delivery
O43 - CFD: 01/03/2016 - [] D -- C:\Program Files (x86)\DigiEuro (DEUR) Scrypt
O43 - CFD: 07/04/2015 - [] D -- C:\Program Files (x86)\Djezzy connect =>.HUAWEI Technologies Co., Ltd.®
O43 - CFD: 26/05/2015 - [] D -- C:\Program Files (x86)\EasyPHP-DevServer-14.1VC11
O43 - CFD: 13/06/2015 - [] D -- C:\Program Files (x86)\EasyPHP-Webserver-14.1b2 =>.Microsoft Corporation®
O43 - CFD: 13/06/2015 - [] D -- C:\Program Files (x86)\EasyPHP1-8
O43 - CFD: 08/04/2015 - [] D -- C:\Program Files (x86)\Foxit Software =>.Foxit Software Incorporated®
O43 - CFD: 07/04/2015 - [] D -- C:\Program Files (x86)\Google =>.Google Inc®
O43 - CFD: 20/02/2016 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 07/04/2015 - [] D -- C:\Program Files (x86)\Intel =>.Intel Corporation®
O43 - CFD: 31/10/2015 - [] D -- C:\Program Files (x86)\Internet Download Manager
O43 - CFD: 17/04/2015 - [] D -- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 28/05/2015 - [] D -- C:\Program Files (x86)\KONAMI
O43 - CFD: 01/03/2016 - [] D -- C:\Program Files (x86)\Malwarebytes Anti-Malware =>.Malwarebytes Corporation®
O43 - CFD: 25/04/2015 - [] D -- C:\Program Files (x86)\Microsoft =>.Microsoft Corporation®
O43 - CFD: 19/04/2015 - [] D -- C:\Program Files (x86)\Microsoft Analysis Services
O43 - CFD: 24/05/2015 - [] D -- C:\Program Files (x86)\Microsoft Office =>.Microsoft Corporation®
O43 - CFD: 19/04/2015 - [] D -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 19/04/2015 - [] D -- C:\Program Files (x86)\Microsoft Sync Framework
O43 - CFD: 19/04/2015 - [] D -- C:\Program Files (x86)\Microsoft Synchronization Services
O43 - CFD: 19/04/2015 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio 8
O43 - CFD: 29/01/2016 - [] D -- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 19/05/2015 - [] D -- C:\Program Files (x86)\Mobiconnect =>.HUAWEI Technologies Co., Ltd.®
O43 - CFD: 20/02/2016 - [] D -- C:\Program Files (x86)\Mobistel
O43 - CFD: 13/02/2016 - [] D -- C:\Program Files (x86)\Mozilla Firefox =>.Mozilla Corporation®
O43 - CFD: 13/02/2016 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service =>.Mozilla Corporation®
O43 - CFD: 19/04/2015 - [] D -- C:\Program Files (x86)\MSBuild
O43 - CFD: 25/05/2015 - [] D -- C:\Program Files (x86)\MyPublicWiFi =>.Khalil Azzouzi®
O43 - CFD: 08/04/2015 - [] D -- C:\Program Files (x86)\Notepad++
O43 - CFD: 20/10/2015 - [] D -- C:\Program Files (x86)\OpenVPN Technologies
O43 - CFD: 25/04/2015 - [] D -- C:\Program Files (x86)\PCSX2 1.2.1
O43 - CFD: 20/12/2015 - [] D -- C:\Program Files (x86)\PokerStars.FR =>.Rational Services Ltd®
O43 - CFD: 20/05/2015 - [] D -- C:\Program Files (x86)\Prezi
O43 - CFD: 24/04/2015 - [] D -- C:\Program Files (x86)\RAR Recovery Toolbox
O43 - CFD: 07/04/2015 - [] D -- C:\Program Files (x86)\Realtek =>.Realtek Semiconductor Corp®
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 24/05/2015 - [] D -- C:\Program Files (x86)\RServer
O43 - CFD: 30/09/2015 - [] D -- C:\Program Files (x86)\Skillbrains =>PUP.Optional.Skillbrains
O43 - CFD: 21/09/2015 - [] RD -- C:\Program Files (x86)\Skype =>.Skype Software Sarl®
O43 - CFD: 28/04/2015 - [] D -- C:\Program Files (x86)\SmartDeblur_2.3_HOME
O43 - CFD: 20/12/2015 - [] D -- C:\Program Files (x86)\SPlayer {6C587715EE87072E7EB8816807E4BD39}
O43 - CFD: 14/04/2015 - [] D -- C:\Program Files (x86)\SplitCam
O43 - CFD: 17/04/2015 - [] D -- C:\Program Files (x86)\SupportAppCB =>.ZTE CORPORATION®
O43 - CFD: 31/07/2015 - [] D -- C:\Program Files (x86)\TechSmith =>.TechSmith Corporation®
O43 - CFD: 24/05/2015 - [] D -- C:\Program Files (x86)\Ultimate Control
O43 - CFD: 14/07/2009 - [0] HD -- C:\Program Files (x86)\Uninstall Information
O43 - CFD: 22/04/2015 - [] D -- C:\Program Files (x86)\VideoLAN
O43 - CFD: 24/07/2015 - [] D -- C:\Program Files (x86)\WebcamMax
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Windows Defender
O43 - CFD: 29/01/2016 - [] D -- C:\Program Files (x86)\Windows Live =>.Microsoft Corporation®
O43 - CFD: 17/04/2015 - [] D -- C:\Program Files (x86)\Windows Mail
O43 - CFD: 17/04/2015 - [] D -- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Windows NT
O43 - CFD: 17/04/2015 - [] D -- C:\Program Files (x86)\Windows Photo Viewer =>.Microsoft Corporation®
O43 - CFD: 17/04/2015 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 17/04/2015 - [] D -- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 19/06/2015 - [] D -- C:\Program Files (x86)\WinPcap =>.Riverbed Technology, Inc.®
O43 - CFD: 22/06/2015 - [] D -- C:\Program Files (x86)\XnView =>.Pierre GOUGELET®
O43 - CFD: 08/04/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 17/04/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 06/06/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AppServ
O43 - CFD: 19/05/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Aurora 3D Presentation 2012
O43 - CFD: 01/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks
O43 - CFD: 09/06/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cisco Packet Tracer
O43 - CFD: 20/02/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
O43 - CFD: 01/01/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DigiEuro (DEUR) Scrypt
O43 - CFD: 07/04/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Djezzy connect
O43 - CFD: 07/04/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DW WLAN
O43 - CFD: 26/05/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EasyPHP DevServer 14.1 VC11
O43 - CFD: 30/09/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
O43 - CFD: 08/04/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader
O43 - CFD: 28/05/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 29/04/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Greenshot
O43 - CFD: 07/04/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
O43 - CFD: 07/04/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
O43 - CFD: 02/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lightshot
O43 - CFD: 14/07/2009 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 01/03/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
O43 - CFD: 19/04/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
O43 - CFD: 24/05/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
O43 - CFD: 17/04/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mobiconnect
O43 - CFD: 20/02/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mobistel Cynus F4 Drivers(x64)
O43 - CFD: 25/05/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyPublicWiFi
O43 - CFD: 08/04/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
O43 - CFD: 12/04/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PCSX2
O43 - CFD: 28/05/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PESEdit.com 2012 Patch
O43 - CFD: 20/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PokerStars.FR
O43 - CFD: 24/04/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RAR Recovery Toolbox
O43 - CFD: 19/04/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint
O43 - CFD: 21/09/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
O43 - CFD: 28/04/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SmartDeblur
O43 - CFD: 26/01/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Snagit 9
O43 - CFD: 14/04/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SPlayer
O43 - CFD: 20/10/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 14/07/2009 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 24/05/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ultimate Control
O43 - CFD: 22/04/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
O43 - CFD: 13/06/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WampServer
O43 - CFD: 24/07/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WebcamMax
O43 - CFD: 19/06/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinPcap
O43 - CFD: 07/04/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 22/06/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XnView
O43 - CFD: 09/01/2016 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 01/08/2015 - [] D -- C:\ProgramData\BlueStacks
O43 - CFD: 03/08/2015 - [] D -- C:\ProgramData\BlueStacksSetup
O43 - CFD: 19/05/2015 - [] D -- C:\ProgramData\DatacardService
O43 - CFD: 07/04/2015 - [] D -- C:\ProgramData\Dell
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 07/04/2015 - [] D -- C:\ProgramData\Djezzy connect
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 30/09/2015 - [] D -- C:\ProgramData\ESET
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Favorites
O43 - CFD: 07/04/2015 - [0] D -- C:\ProgramData\IDM
O43 - CFD: 28/05/2015 - [] D -- C:\ProgramData\KONAMI
O43 - CFD: 01/03/2016 - [] D -- C:\ProgramData\Malwarebytes
O43 - CFD: 29/01/2016 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 24/05/2015 - [] D -- C:\ProgramData\Microsoft Help
O43 - CFD: 19/05/2015 - [] D -- C:\ProgramData\MobiConnect
O43 - CFD: 07/04/2015 - [] D -- C:\ProgramData\Mozilla
O43 - CFD: 14/04/2015 - [] D -- C:\ProgramData\Package Cache
O43 - CFD: 20/02/2016 - [] D -- C:\ProgramData\PC-Doctor for Windows
O43 - CFD: 20/02/2016 - [] D -- C:\ProgramData\PCDr
O43 - CFD: 17/04/2015 - [0] D -- C:\ProgramData\PreventPlay
O43 - CFD: 09/01/2016 - [] D -- C:\ProgramData\regid.1986-12.com.adobe
O43 - CFD: 24/05/2015 - [] D -- C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 01/03/2016 - [] D -- C:\ProgramData\RogueKiller
O43 - CFD: 21/10/2015 - [] D -- C:\ProgramData\Skype
O43 - CFD: 20/02/2016 - [] D -- C:\ProgramData\SP_FT_Logs
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 31/07/2015 - [] D -- C:\ProgramData\TechSmith
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 24/07/2015 - [] D -- C:\ProgramData\WebcamMax
O43 - CFD: 09/01/2016 - [] D -- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 30/05/2015 - [] D -- C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 24/05/2015 - [] D -- C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 07/04/2015 - [] D -- C:\Program Files (x86)\Common Files\Intel
O43 - CFD: 28/01/2016 - [] D -- C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 07/04/2015 - [] D -- C:\Program Files (x86)\Common Files\postureAgent
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 21/09/2015 - [] D -- C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 19/04/2015 - [] D -- C:\Program Files (x86)\Common Files\System
O43 - CFD: 28/01/2016 - [] D -- C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 09/01/2016 - [] D -- C:\Users\Khalidou\AppData\Roaming\Adobe
O43 - CFD: 20/05/2015 - [] D -- C:\Users\Khalidou\AppData\Roaming\com.prezi.PreziDesktop
O43 - CFD: 01/01/2016 - [] D -- C:\Users\Khalidou\AppData\Roaming\DigiEuro
O43 - CFD: 01/03/2016 - [] D -- C:\Users\Khalidou\AppData\Roaming\DMCache
O43 - CFD: 07/04/2015 - [] D -- C:\Users\Khalidou\AppData\Roaming\ESET
O43 - CFD: 20/06/2015 - [] D -- C:\Users\Khalidou\AppData\Roaming\Foxit Software
O43 - CFD: 29/04/2015 - [] D -- C:\Users\Khalidou\AppData\Roaming\Greenshot
O43 - CFD: 07/04/2015 - [] D -- C:\Users\Khalidou\AppData\Roaming\Identities
O43 - CFD: 20/12/2015 - [] D -- C:\Users\Khalidou\AppData\Roaming\IDM
O43 - CFD: 13/05/2015 - [] D -- C:\Users\Khalidou\AppData\Roaming\IDT
O43 - CFD: 07/04/2015 - [] D -- C:\Users\Khalidou\AppData\Roaming\InstallShield
O43 - CFD: 07/04/2015 - [] D -- C:\Users\Khalidou\AppData\Roaming\Intel Corporation
O43 - CFD: 08/04/2015 - [] D -- C:\Users\Khalidou\AppData\Roaming\Macromedia
O43 - CFD: 14/07/2009 - [0] D -- C:\Users\Khalidou\AppData\Roaming\Media Center Programs
O43 - CFD: 20/02/2016 - [] SD -- C:\Users\Khalidou\AppData\Roaming\Microsoft
O43 - CFD: 07/04/2015 - [] D -- C:\Users\Khalidou\AppData\Roaming\Mozilla
O43 - CFD: 14/04/2015 - [] D -- C:\Users\Khalidou\AppData\Roaming\Notepad++
O43 - CFD: 20/02/2016 - [] D -- C:\Users\Khalidou\AppData\Roaming\PCDr
O43 - CFD: 25/05/2015 - [] D -- C:\Users\Khalidou\AppData\Roaming\Setmem
O43 - CFD: 01/03/2016 - [] D -- C:\Users\Khalidou\AppData\Roaming\Skype
O43 - CFD: 20/12/2015 - [] D -- C:\Users\Khalidou\AppData\Roaming\SPlayer
O43 - CFD: 14/04/2015 - [] D -- C:\Users\Khalidou\AppData\Roaming\SplitCam
O43 - CFD: 23/04/2015 - [] D -- C:\Users\Khalidou\AppData\Roaming\Thinstall
O43 - CFD: 16/08/2015 - [] D -- C:\Users\Khalidou\AppData\Roaming\uTorrent
O43 - CFD: 01/03/2016 - [] D -- C:\Users\Khalidou\AppData\Roaming\ViberPC
O43 - CFD: 23/02/2016 - [] D -- C:\Users\Khalidou\AppData\Roaming\vlc
O43 - CFD: 24/07/2015 - [] D -- C:\Users\Khalidou\AppData\Roaming\WebcamMax
O43 - CFD: 07/04/2015 - [] D -- C:\Users\Khalidou\AppData\Roaming\WinRAR
O43 - CFD: 21/06/2015 - [] D -- C:\Users\Khalidou\AppData\Roaming\Wireshark
O43 - CFD: 22/06/2015 - [] D -- C:\Users\Khalidou\AppData\Roaming\XnView
O43 - CFD: 01/03/2016 - [] D -- C:\Users\Khalidou\AppData\Roaming\ZHP
O43 - CFD: 12/01/2016 - [] D -- C:\Users\Khalidou\AppData\Local\Adobe
O43 - CFD: 07/04/2015 - [0] SHD -- C:\Users\Khalidou\AppData\Local\Application Data
O43 - CFD: 07/04/2015 - [] D -- C:\Users\Khalidou\AppData\Local\Apps
O43 - CFD: 01/08/2015 - [] D -- C:\Users\Khalidou\AppData\Local\Bluestacks
O43 - CFD: 19/05/2015 - [] D -- C:\Users\Khalidou\AppData\Local\Configure
O43 - CFD: 20/02/2016 - [0] D -- C:\Users\Khalidou\AppData\Local\Deployment
O43 - CFD: 05/01/2016 - [] D -- C:\Users\Khalidou\AppData\Local\Diagnostics
O43 - CFD: 07/04/2015 - [] D -- C:\Users\Khalidou\AppData\Local\ESET
O43 - CFD: 08/05/2015 - [] D -- C:\Users\Khalidou\AppData\Local\Foxit Reader
O43 - CFD: 15/09/2015 - [] D -- C:\Users\Khalidou\AppData\Local\Google
O43 - CFD: 01/08/2015 - [] D -- C:\Users\Khalidou\AppData\Local\Greenshot
O43 - CFD: 07/04/2015 - [0] SHD -- C:\Users\Khalidou\AppData\Local\History
O43 - CFD: 08/04/2015 - [] D -- C:\Users\Khalidou\AppData\Local\Macromedia
O43 - CFD: 20/02/2016 - [] D -- C:\Users\Khalidou\AppData\Local\Microsoft
O43 - CFD: 21/10/2015 - [] D -- C:\Users\Khalidou\AppData\Local\Microsoft Help
O43 - CFD: 07/04/2015 - [] D -- C:\Users\Khalidou\AppData\Local\Mozilla
O43 - CFD: 24/05/2015 - [] D -- C:\Users\Khalidou\AppData\Local\NEGU_Soft
O43 - CFD: 28/12/2015 - [] D -- C:\Users\Khalidou\AppData\Local\NetBet Poker
O43 - CFD: 20/12/2015 - [] D -- C:\Users\Khalidou\AppData\Local\PokerStars.FR
O43 - CFD: 19/05/2015 - [] D -- C:\Users\Khalidou\AppData\Local\Presentation3D
O43 - CFD: 08/04/2015 - [] D -- C:\Users\Khalidou\AppData\Local\Programs
O43 - CFD: 21/09/2015 - [] D -- C:\Users\Khalidou\AppData\Local\Skype
O43 - CFD: 31/07/2015 - [] D -- C:\Users\Khalidou\AppData\Local\TechSmith
O43 - CFD: 01/03/2016 - [] D -- C:\Users\Khalidou\AppData\Local\Temp
O43 - CFD: 07/04/2015 - [0] SHD -- C:\Users\Khalidou\AppData\Local\Temporary Internet Files
O43 - CFD: 23/04/2015 - [] D -- C:\Users\Khalidou\AppData\Local\Thinstall
O43 - CFD: 01/03/2016 - [] D -- C:\Users\Khalidou\AppData\Local\Viber
O43 - CFD: 19/02/2016 - [] D -- C:\Users\Khalidou\AppData\Local\VirtualStore
O43 - CFD: 28/01/2016 - [] D -- C:\Users\Khalidou\AppData\Local\Windows Live
O43 - CFD: 14/07/2009 - [] RD -- C:\Users\Khalidou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 17/04/2015 - [] RD -- C:\Users\Khalidou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 23/10/2015 - [] D -- C:\Users\Khalidou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome
O43 - CFD: 20/02/2016 - [] D -- C:\Users\Khalidou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell
O43 - CFD: 07/01/2016 - [] D -- C:\Users\Khalidou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 16/04/2015 - [] D -- C:\Users\Khalidou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 07/04/2015 - [] D -- C:\Users\Khalidou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
O43 - CFD: 14/07/2009 - [] RD -- C:\Users\Khalidou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 08/04/2015 - [0] D -- C:\Users\Khalidou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++
O43 - CFD: 20/12/2015 - [0] D -- C:\Users\Khalidou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PokerStars.FR
O43 - CFD: 14/04/2015 - [] D -- C:\Users\Khalidou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SplitCam
O43 - CFD: 17/04/2015 - [] RD -- C:\Users\Khalidou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 07/04/2015 - [] D -- C:\Users\Khalidou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR

---\\ ShellIconOverlayIdentifiers (SIOI) (7) - 2s
O106 - SIOI: Enhanced Storage Icon Overlay Handler Class [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - Windows Enhanced Storage Shell Extension DL.) -- C:\Windows\System32\EhStorShell.dll =>.Microsoft Corporation
O106 - SIOI: Groove Explorer Icon Overlay 1 (GFS Unread Stub) [Groove Explorer Icon Overlay 1 (GFS Unread Stub)] - {99FD978C-D287-4F50-827F-B2C658EDA8E7}. (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: Groove Explorer Icon Overlay 2 (GFS Stub) [Groove Explorer Icon Overlay 2 (GFS Stub)] - {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC}. (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: Groove Explorer Icon Overlay 2.5 (GFS Unread Folder) [Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)] - {920E6DB1-9907-4370-B3A0-BAFC03D81399}. (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: Groove Explorer Icon Overlay 3 (GFS Folder) [Groove Explorer Icon Overlay 3 (GFS Folder)] - {16F3DD56-1AF5-4347-846D-7C10C4192619}. (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: Groove Explorer Icon Overlay 4 (GFS Unread Mark) [Groove Explorer Icon Overlay 4 (GFS Unread Mark)] - {2916C86E-86A6-43FE-8112-43ABE6BF8DCC}. (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: Sharing Overlay (Private) [SharingPrivate] - {08244EE6-92F0-47f2-9FC9-929BAA2E7235}. (.Microsoft Corporation - Shell extensions for sharing.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation

---\\ ShareTools MSconfig StartupReg (12) - 1s
O53 - SMSR:HKLM\...\startupreg\AdobeAAMUpdater-1.0 [Key] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe =>.Adobe Systems Incorporated
O53 - SMSR:HKLM\...\startupreg\BCSSync [Key] . (.Microsoft Corporation - Microsoft Office 2010 component.) -- C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe =>.Microsoft Corporation
O53 - SMSR:HKLM\...\startupreg\BlueStacks Agent [Key] . (.BlueStack Systems, Inc. - BlueStacks Agent.) -- C:\Program Files (x86)\BlueStacks\HD-Agent.exe =>.BlueStack Systems, Inc.
O53 - SMSR:HKLM\...\startupreg\CancelAutoPlay_byt [Key] . (...) -- C:\Program Files (x86)\Mobiconnect\CancelAutoPlay_byt.exe
O53 - SMSR:HKLM\...\startupreg\Chicony_OSD [Key] . (...) -- C:\Program Files (x86)\Dell\Dell KM632 Wireless Keyboard Caps Lock Indicator\LaunchOSDSrv.exe
O53 - SMSR:HKLM\...\startupreg\FacebookAutoresponder [Key] . (...) -- C:\Program Files (x86)\Facebook Autoresponder\FacebookAutoresponder.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\Greenshot [Key] . (.Greenshot - Greenshot.) -- C:\Program Files\Greenshot\Greenshot.exe =>.Greenshot
O53 - SMSR:HKLM\...\startupreg\Skype [Key] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O53 - SMSR:HKLM\...\startupreg\UIExec [Key] . (...) -- C:\Program Files (x86)\Mobiconnect\UIExec.exe
O53 - SMSR:HKLM\...\startupreg\uTorrent [Key] . (.BitTorrent Inc. - µTorrent.) -- C:\Users\Khalidou\AppData\Roaming\uTorrent\uTorrent.exe
O53 - SMSR:HKLM\...\startupreg\Viber [Key] . (. - Viber.) -- C:\Users\Khalidou\AppData\Local\Viber\Viber.exe
O53 - SMSR:HKLM\...\startupreg\WebcamMaxAutoRun [Key] . (...) -- C:\Program Files (x86)\WebcamMax\wcmmon.exe

---\\ System Drivers List (90) - 15s
O58 - SDL:2009/07/14 02:52:21 N . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [491088] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:52:21 N . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [339536] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:52:21 N . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\drivers\adpu320.sys [182864] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:52:21 N . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [15440] =>.Microsoft Windows®
O58 - SDL:2010/11/20 14:32:46 N . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [107904] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:52:20 N . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [194128] =>.Microsoft Windows®
O58 - SDL:2010/11/20 14:32:47 N . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [27008] =>.Microsoft Windows®
O58 - SDL:2011/03/31 18:35:12 N . (.Alps Electric Co., Ltd. - Alps Touch Pad Driver.) -- C:\Windows\System32\drivers\Apfiltr.sys [355960] =>.Alps Electric Co., LTD.®
O58 - SDL:2009/07/14 02:52:21 N . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [87632] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:52:21 N . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [97856] =>.Microsoft Windows®
O58 - SDL:2009/06/10 21:34:23 N . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x.) -- C:\Windows\System32\drivers\b57nd60a.sys [270848] =>.Broadcom Corporation
O58 - SDL:2015/04/07 19:03:19 N . (.Broadcom Corporation - Broadcom iLine10(tm) PCI Network Adapter Pr.) -- C:\Windows\System32\drivers\bcm42rly.sys [22592] =>.Broadcom Corporation®
O58 - SDL:2015/04/07 19:03:18 N . (.Broadcom Corporation - Broadcom 802.11 Network Adapter wireless dr.) -- C:\Windows\System32\drivers\BCMWL664.SYS [4719168] =>.Broadcom Corporation®
O58 - SDL:2009/06/10 21:41:06 N . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [18432] =>.Brother Industries, Ltd.
O58 - SDL:2009/06/10 21:41:06 N . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [8704] =>.Brother Industries, Ltd.
O58 - SDL:2009/07/14 02:19:07 N . (.Brother Industries Ltd. - Brotehr Serial I/F Driver (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [286720] =>.Brother Industries Ltd.
O58 - SDL:2009/06/10 21:41:10 N . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [47104] =>.Brother Industries Ltd.
O58 - SDL:2009/06/10 21:41:10 N . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [14976] =>.Brother Industries Ltd.
O58 - SDL:2009/06/10 21:41:10 N . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [14720] =>.Brother Industries Ltd.
O58 - SDL:2009/06/10 21:34:28 N . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [468480] =>.Broadcom Corporation
O58 - SDL:2009/07/14 02:52:31 N . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [17488] =>.Microsoft Windows®
O58 - SDL:2015/07/14 14:29:08 A . (.ESET - Amon monitor.) -- C:\Windows\System32\drivers\eamonm.sys [255240] =>.ESET, spol. s r.o.®
O58 - SDL:2015/07/14 14:29:08 A . (.ESET - Devmon monitor.) -- C:\Windows\System32\drivers\edevmon.sys [251632] =>.ESET, spol. s r.o.®
O58 - SDL:2015/07/14 14:29:08 A . (.ESET - ESET Helper driver.) -- C:\Windows\System32\drivers\ehdrv.sys [178520] =>.ESET, spol. s r.o.®
O58 - SDL:2009/07/14 02:47:48 N . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [530496] =>.Microsoft Windows®
O58 - SDL:2015/07/14 14:29:08 A . (.ESET - ESET Personal Firewall driver.) -- C:\Windows\System32\drivers\epfw.sys [231520] =>.ESET, spol. s r.o.®
O58 - SDL:2015/07/14 14:29:08 A . (.ESET - Epfw NDIS LightWeight Filter.) -- C:\Windows\System32\drivers\EpfwLWF.sys [53360] =>.ESET, spol. s r.o.®
O58 - SDL:2015/07/14 14:29:08 A . (.ESET - ESET Personal Firewall driver.) -- C:\Windows\System32\drivers\epfwwfp.sys [72400] =>.ESET, spol. s r.o.®
O58 - SDL:2009/06/10 21:34:33 N . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3286016] =>.Broadcom Corporation
O58 - SDL:2010/10/08 09:59:40 N . (.Huawei Tech. Co., Ltd. - HUAWEI USB Smart Card Driver.) -- C:\Windows\System32\drivers\ewdcsc.sys [32768] =>.Huawei Tech. Co., Ltd.
O58 - SDL:2013/11/30 09:55:06 N . (.Huawei Technologies Co., Ltd. - USB Modem/Serial Device Driver.) -- C:\Windows\System32\drivers\ewusbmdm.sys [226176] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2013/11/30 10:01:06 N . (.Huawei Technologies Co., Ltd. - USB NDIS Miniport Driver.) -- C:\Windows\System32\drivers\ewusbwwan.sys [456704] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2013/12/10 06:36:14 N . (.Huawei Technologies Co., Ltd. - ew_cdcacm Driver.) -- C:\Windows\System32\drivers\ew_cdcacm.sys [121728] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2010/09/26 11:09:28 N . (.Huawei Technologies Co., Ltd. - ew_hwupgrade Driver.) -- C:\Windows\System32\drivers\ew_hwupgrade.sys [22016] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2013/01/25 02:16:40 N . (.Huawei Technologies Co., Ltd. - USB Modem/Serial Device Driver.) -- C:\Windows\System32\drivers\ew_hwusbdev.sys [109568] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2013/11/30 10:10:20 N . (.Huawei Technologies Co., Ltd. - ew_jubusenum Driver.) -- C:\Windows\System32\drivers\ew_jubusenum.sys [91648] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2013/11/30 10:10:20 N . (.Huawei Technologies Co., Ltd. - ew_jucdcacm Driver.) -- C:\Windows\System32\drivers\ew_jucdcacm.sys [110592] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2013/11/30 10:10:20 N . (.Huawei Technologies Co., Ltd. - ew_jucdcndis Driver.) -- C:\Windows\System32\drivers\ew_jucdcecm.sys [77312] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2013/11/30 10:10:18 N . (.Huawei Technologies Co., Ltd. - ew_juextctrl Driver.) -- C:\Windows\System32\drivers\ew_juextctrl.sys [30720] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2013/11/30 10:11:08 N . (.Huawei Technologies Co., Ltd. - ew_jucdcndis Driver.) -- C:\Windows\System32\drivers\ew_juwwanecm.sys [246272] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2012/12/22 02:46:10 N . (.Huawei Technologies Co., Ltd. - Filter Driver.) -- C:\Windows\System32\drivers\ew_usbenumfilter.sys [14976] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2013/12/10 06:37:32 N . (.Huawei Technologies Co., Ltd. - ew_cdcndis Driver.) -- C:\Windows\System32\drivers\ew_wwanecm.sys [376704] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2009/06/10 21:31:59 N . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [31232] =>.Hauppauge Computer Works, Inc.
O58 - SDL:2009/09/18 02:54:54 N . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\drivers\HECIx64.sys [56344] =>.Intel Corporation®
O58 - SDL:2010/11/20 14:33:35 N . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [78720] =>.Microsoft Windows®
O58 - SDL:2010/03/08 20:03:54 A . (.QUALCOMM Incorporated - USB Modem/Serial Device Driver.) -- C:\Windows\System32\drivers\HtcUsbMdmV64.sys [121800] =>.QUALCOMM Incorporated
O58 - SDL:2011/01/12 16:51:44 N . (.Intel Corporation - Intel Rapid Storage Technology driver - x64.) -- C:\Windows\System32\drivers\iaStor.sys [439320] =>.Intel Corporation®
O58 - SDL:2010/11/20 14:33:38 N . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [410496] =>.Microsoft Windows®
O58 - SDL:2015/06/12 03:00:58 A . (.Tonec Inc. - Internet Download Manager WFP Driver.) -- C:\Windows\System32\drivers\idmwfp.sys [197616] =>.Tonec Inc.®
O58 - SDL:2011/03/25 17:17:48 N . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\drivers\igdkmd64.sys [12262336] =>.Intel Corporation
O58 - SDL:2009/07/14 02:48:04 N . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [44112] =>.Microsoft Windows®
O58 - SDL:2010/02/26 15:32:12 N . (.Intel Corporation - Intel(R) Turbo Boost Technology Driver.) -- C:\Windows\System32\drivers\Impcd.sys [158976] =>.Intel Corporation
O58 - SDL:2010/10/15 00:28:16 N . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\Windows\System32\drivers\IntcDAud.sys [317440] =>.Intel(R) Corporation
O58 - SDL:2009/07/14 02:48:04 N . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [114752] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:48:04 N . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [106560] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:48:04 N . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [65600] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:48:04 N . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [115776] =>.Microsoft Windows®
O58 - SDL:2011/08/29 10:42:56 N . (.MBB Incorporated - CDROM Filter.) -- C:\Windows\System32\drivers\massfilter.sys [11776] =>.MBB Incorporated
O58 - SDL:2015/10/05 09:50:06 A . (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\mbam.sys [25816] =>.Malwarebytes Corporation®
O58 - SDL:2015/10/05 09:50:10 A . (.Malwarebytes - Malwarebytes Chameleon Protection Driver.) -- C:\Windows\System32\drivers\mbamchameleon.sys [109272] =>.Malwarebytes Corporation®
O58 - SDL:2016/03/01 16:54:57 A . (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\MBAMSwissArmy.sys [192216] =>.Malwarebytes Corporation®
O58 - SDL:2009/07/14 02:48:04 N . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [35392] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:48:04 N . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [284736] =>.Microsoft Windows®
O58 - SDL:2015/10/05 09:50:18 A . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\Windows\System32\drivers\mwac.sys [63704] =>.Malwarebytes Corporation®
O58 - SDL:2012/12/07 09:28:06 N . (.Khalil Azzouzi - Azzouzi HotSpot helper driver.) -- C:\Windows\System32\drivers\ndiskhaz.sys [30536] =>.Khalil Azzouzi®
O58 - SDL:2009/07/14 02:48:26 N . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [51264] =>.Microsoft Windows®
O58 - SDL:2013/03/01 02:49:12 N . (.Riverbed Technology, Inc. - npf.sys (NT5/6 AMD64) Kernel Driver.) -- C:\Windows\System32\drivers\npf.sys [36600] =>.Riverbed Technology, Inc.®
O58 - SDL:2010/11/20 14:33:48 N . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [148352] =>.Microsoft Windows®
O58 - SDL:2010/11/20 14:33:48 N . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [166272] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:45:46 N . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1524816] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:45:45 N . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [128592] =>.Microsoft Windows®
O58 - SDL:2011/05/16 21:55:28 N . (.Realtek - Realtek 8136/8168/8169 NDIS 6.20 64-bit Dri.) -- C:\Windows\System32\drivers\Rt64win7.sys [533096] =>.Realtek Semiconductor Corp®
O58 - SDL:2010/10/29 15:11:42 N . (.Realtek Semiconductor Corp. - Realtek USB Mass Storage Driver for 2K/XP/V.) -- C:\Windows\System32\drivers\RtsUStor.sys [250984] =>.Realtek Semiconductor Corp®
O58 - SDL:2009/06/10 21:37:19 N . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [23040] =>.Macrovision Corporation, Macrovision Europe Limited,
O58 - SDL:2009/07/14 02:45:45 N . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [43584] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:45:46 N . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [80464] =>.Microsoft Windows®
O58 - SDL:2014/06/30 06:23:56 N . (.Windows (R) Win 7 DDK provider - SplitCam Virtual Audio Device.) -- C:\Windows\System32\drivers\SplitCamAudio.sys [23552] =>.Windows (R) Win 7 DDK provider
O58 - SDL:2014/06/30 06:23:54 N . (.Windows (R) Win 7 DDK provider - Splitcam hd driver.) -- C:\Windows\System32\drivers\splitcam_hd_driver.sys [37496] {098D382EB706B69C0120DF04A5A719A6} =>.Windows (R) Win 7 DDK provider
O58 - SDL:2009/07/14 02:45:55 N . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [24656] =>.Microsoft Windows®
O58 - SDL:2011/05/27 10:06:16 N . (.IDT, Inc. - IDT PC Audio TPE.) -- C:\Windows\System32\drivers\stwrt64.sys [528384] =>.IDT, Inc.
O58 - SDL:2009/01/22 02:55:48 A . (.The OpenVPN Project - TAP-Win32 Virtual Network Driver.) -- C:\Windows\System32\drivers\tap0901.sys [29696] =>.The OpenVPN Project
O58 - SDL:2014/05/07 22:22:10 A . (.The OpenVPN Project - TAP-Windows Virtual Network Driver (NDIS 6..) -- C:\Windows\System32\drivers\tapoas.sys [26624] =>.The OpenVPN Project
O58 - SDL:2016/03/01 14:06:28 A . (...) -- C:\Windows\System32\drivers\TrueSight.sys [24688] =>.Adlice®
O58 - SDL:2016/01/23 15:05:04 A . (.Scott - usbdriver.) -- C:\Windows\System32\drivers\USBDrv_AMD64.sys [17280] =>.ALL WINNER (HONG KONG) LIMITED®
O58 - SDL:2009/07/14 02:45:55 N . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [17488] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:45:55 N . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [161872] =>.Microsoft Windows®
O58 - SDL:2012/04/15 22:32:14 N . (.Windows (R) Win 7 DDK provider - WebcamMax Capture.) -- C:\Windows\System32\drivers\wcmvcam64.sys [1071032] {6E0A5E2C7C789BDA175F577FFD554961} =>.Windows (R) Win 7 DDK provider
O58 - SDL:2011/08/29 10:42:56 N . (.ZTE Incorporated - ZTE Incorporated.) -- C:\Windows\System32\drivers\ZTEusbmdm6k.sys [123264] =>.ZTE Incorporated
O58 - SDL:2011/08/29 10:42:56 N . (.ZTE Incorporated - ZTE Incorporated.) -- C:\Windows\System32\drivers\ZTEusbnmea.sys [123264] =>.ZTE Incorporated
O58 - SDL:2011/08/29 10:42:56 N . (.ZTE Incorporated - ZTE Incorporated.) -- C:\Windows\System32\drivers\ZTEusbser6k.sys [123264] =>.ZTE Incorporated

---\\ Last modified or created user files (5) - 56s
O61 - LFC: 2016/02/29 23:31:43 A . (..) -- C:\Users\Khalidou\Downloads\Programs\R258276.exe [83806424] {201D2CE40000000003C9}
O61 - LFC: 2016/02/28 13:05:28 A . (..) -- C:\Users\Khalidou\AppData\Roaming\ViberPC\5.9.0.115\ViberUpdater.cmd [1732]
O61 - LFC: 2016/02/28 13:05:28 A . (..) -- C:\Users\Khalidou\AppData\Roaming\ViberPC\5.9.0.115\5.9.0.115\updater.exe [538112]
O61 - LFC: 2016/02/28 13:05:28 A . (..) -- C:\Users\Khalidou\AppData\Roaming\ViberPC\5.9.0.115\5.9.0.115\ViberUpdater.cmd [1732]
O61 - LFC: 2016/02/24 18:34:20 A . (..) -- C:\Users\Khalidou\AppData\Local\TechSmith\Snagit\Tray.bin [1452]

---\\ File Associations Shell Spawning (10) - 0s
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Event Viewer Snapin Launcher.) -- C:\Windows\System32\eventvwr.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Registry Editor.) -- C:\Windows\regedit.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S

---\\ Start Menu Internet (12) - 0s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation

---\\ Search Browser Infection (2) - 14s
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKLM] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (@ieframe.dll,-12512) - http://www.bing.com/

---\\ Search Svchost Services (33) - 1s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Application Experience Service.) -- C:\Windows\System32\aelupsvc.dll [72192] =>.Microsoft Corporation
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\Windows\System32\certprop.dll [80384] =>.Microsoft Corporation
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\Windows\System32\certprop.dll [80384] =>.Microsoft Corporation
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - Server Service DLL.) -- C:\Windows\system32\srvsvc.dll [236032] =>.Microsoft Corporation
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Group Policy Client.) -- C:\Windows\System32\gpsvc.dll [777728] =>.Microsoft Corporation
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - IKE extension.) -- C:\Windows\System32\ikeext.dll [853504] =>.Microsoft Corporation
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Windows Audio Service.) -- C:\Windows\System32\Audiosrv.dll [679424] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Remote Access AutoDial Manager.) -- C:\Windows\System32\rasauto.dll [99328] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Remote Access Connection Manager.) -- C:\Windows\System32\rasmans.dll [344064] =>.Microsoft Corporation
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamic Interface Manager.) -- C:\Windows\System32\mprdim.dll [97792] =>.Microsoft Corporation
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) -- C:\Windows\System32\Sens.dll [64512] =>.Microsoft Corporation
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Microsoft NAT Helper Components.) -- C:\Windows\System32\ipnathlp.dll [359424] =>.Microsoft Corporation
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Microsoft® Windows(TM) Telephony Server.) -- C:\Windows\System32\tapisrv.dll [316928] =>.Microsoft Corporation
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Remote Desktop Session Host Server Remote C.) -- C:\Windows\System32\termsrv.dll [680960] =>.Microsoft Corporation
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update Agent.) -- C:\Windows\system32\wuaueng.dll [2477536] =>.Microsoft Windows Component Publisher®
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Background Intelligent Transfer Service.) -- C:\Windows\System32\qmgr.dll [849920] =>.Microsoft Corporation
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Windows Shell Services Dll.) -- C:\Windows\System32\shsvcs.dll [370688] =>.Microsoft Corporation
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service that offers IPv6 connectivity over.) -- C:\Windows\System32\iphlpsvc.dll [569344] =>.Microsoft Corporation
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - Secondary Logon Service DLL.) -- C:\Windows\system32\seclogon.dll [30720] =>.Microsoft Corporation
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Application Information Service.) -- C:\Windows\System32\appinfo.dll [70656] =>.Microsoft Corporation
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - iSCSI Discovery service.) -- C:\Windows\system32\iscsiexe.dll [156672] =>.Microsoft Corporation
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Multimedia Class Scheduler Service.) -- C:\Windows\system32\mmcss.dll [67584] =>.Microsoft Corporation
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\system32\wbem\WMIsvc.dll [242688] =>.Microsoft Corporation
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Remote Desktop Configuration service.) -- C:\Windows\System32\SessEnv.dll [121856] =>.Microsoft Corporation
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - Computer Browser Service DLL.) -- C:\Windows\System32\browser.dll [136192] =>.Microsoft Corporation
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Microsoft EAPHost service.) -- C:\Windows\System32\eapsvc.dll [111104] =>.Microsoft Corporation
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Task Scheduler Service.) -- C:\Windows\system32\schedsvc.dll [1110016] =>.Microsoft Corporation
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Key Management Service.) -- C:\Windows\system32\kmsvc.dll [90624] =>.Microsoft Corporation
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Problem Reports and Solutions.) -- C:\Windows\System32\wercplsupport.dll [84480] =>.Microsoft Corporation
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\system32\profsvc.dll [209920] =>.Microsoft Corporation
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Windows Shell Theme Service Dll.) -- C:\Windows\system32\themeservice.dll [44544] =>.Microsoft Corporation
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - BDE Service.) -- C:\Windows\System32\bdesvc.dll [100864] =>.Microsoft Corporation
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Software installation Service.) -- C:\Windows\System32\appmgmts.dll [193536] =>.Microsoft Corporation

---\\ Additional Scan (O88) (3) - 0s
HKLM\SOFTWARE\Wow6432Node\Skillbrains =>PUP.Optional.Skillbrains
HKCU\SOFTWARE\SkillBrains =>PUP.Optional.Skillbrains
HKCU\SOFTWARE\systweak =>.Superfluous.Systweak

---\\ Summary of the elements found (2) - 0s
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.Skillbrains
http://www.nicolascoolman.fr/pup-systweak/ =>.Superfluous.Systweak

~ End of the scan, 39905 items in 00h05mn32s (1002)(0)

Publicité


Signaler le contenu de ce document

Publicité