~ ZHPDiag v2017.11.22.202 Par Nicolas Coolman (2017/11/22)
~ Démarré par Tallal (Administrator) (2017/11/26 09:14:27)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Certificate ZHPDiag: Legal
~ Etat de la version:
~ Mode: Scanner
~ Rapport: C:\Users\Tallal.maison\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\Tallal.maison\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Démarrage du système: Normal (Normal boot)
Windows 8.1, 64-bit (Build 9600) =>.Microsoft Corporation

---\\ Navigateurs Internet (1) - 6s
~ MSIE: Internet Explorer v11.0.9600.18350

---\\ Informations sur les produits Windows (3) - 4s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK

---\\ Logiciels de protection (2) - 105s
Norton Internet Security v20.6.0.27 (Protection)
Windows Defender (Deactivate)

---\\ Informations sur le système (6) - 0s
~ Operating System: AMD64 Family 20 Model 2 Stepping 0, AuthenticAMD
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 3746.056 MB (58% free) : OK =>.RAM Value
System Restore: Activé (Enable)
System drive C: has 392 GB (85%) free of 458 GB : OK =>.Disk Space

---\\ Mode de connexion au système (3) - 0s
~ Computer Name: MAISON
~ User Name: Tallal
~ Logged in as Administrator

---\\ Enumération des unités disques (2) - 0s
~ Drive C: has 392 GB free of 458 GB (System)
~ Drive E: has 17 GB free of 17 GB

---\\ Etat du Centre de Sécurité Windows (10) - 5s
[HKLM\Software\WOW6432Node\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\Software\WOW6432Node\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\Software\WOW6432Node\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM64\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK

---\\ Recherche particulière de fichiers génériques (25) - 45s
[MD5.B3541A5A20C6264781909B1B7FE54836] - 09/02/2016 - (.Microsoft Corporation - Explorateur Windows.) -- C:\WINDOWS\Explorer.exe [2757616] =>.Microsoft Windows®
[MD5.6C308D32AFA41D26CE2A0EA8F7B79565] - 21/11/2014 - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\WINDOWS\System32\rundll32.exe [54784] =>.Microsoft Corporation
[MD5.EC302D06155F8E3C383750993FCB6B27] - 05/10/2015 - (.Microsoft Corporation - Application de démarrage de Windows.) -- C:\WINDOWS\System32\Wininit.exe [146432] =>.Microsoft Corporation
[MD5.EA1B9D3C7D11CA407AA89CBB266139CF] - 20/05/2016 - (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\WINDOWS\System32\wininet.dll [2597888] =>.Microsoft Corporation
[MD5.B1102BBDDD9C87B3D609D6C08F7A3DBD] - 05/01/2016 - (.Microsoft Corporation - Application d’ouverture de session Windows.) -- C:\WINDOWS\System32\Winlogon.exe [570880] =>.Microsoft Corporation
[MD5.AFCAB4DC692CCE37E283B00E2D7B438F] - 20/11/2014 - (.Microsoft Corporation - Bibliothèque de licences.) -- C:\WINDOWS\System32\sppcomapi.dll [447488] =>.Microsoft Corporation
[MD5.B12D2252B4FD572CBC279E7D5B27BBF9] - 21/11/2014 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\WINDOWS\System32\dnsapi.dll [657920] =>.Microsoft Corporation
[MD5.D75DC127BE191B54F4669DF34BB06451] - 21/11/2014 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\WINDOWS\Syswow64\dnsapi.dll [498688] =>.Microsoft Corporation
[MD5.E37F897ED7B5AFF79B1398258DB96BD9] - 20/11/2014 - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) -- C:\WINDOWS\System32\fr-FR\user32.dll.mui [19456] =>.Microsoft Corporation
[MD5.A460C3AF3755A2A79A3C8EFE72E147B5] - 13/10/2015 - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) -- C:\WINDOWS\System32\drivers\AFD.sys [559616] =>.Microsoft Corporation
[MD5.74B14192CF79A72F7536B27CB8814FBD] - 22/08/2013 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\WINDOWS\System32\drivers\atapi.sys [26464] =>.Microsoft Windows®
[MD5.2FA6510E33F7DEFEC03658B74101A9B9] - 22/08/2013 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\WINDOWS\System32\drivers\Cdfs.sys [88576] =>.Microsoft Corporation
[MD5.C6796EA22B513E3457514D92DCDB1A3D] - 22/08/2013 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\WINDOWS\System32\drivers\Cdrom.sys [164352] =>.Microsoft Corporation
[MD5.A03F362C5557E238CBFA914689C77248] - 21/11/2014 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\WINDOWS\System32\drivers\DfsC.sys [134144] =>.Microsoft Corporation
[MD5.D4B7ED39C7900384D9E5C1283F1E7926] - 21/11/2014 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\WINDOWS\System32\drivers\HDAudBus.sys [76800] =>.Microsoft Corporation
[MD5.49EE0AE9E5B64FFBBD06D55C4984B598] - 04/11/2014 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\WINDOWS\System32\drivers\i8042prt.sys [108544] =>.Microsoft Corporation
[MD5.B7342B3C58E91107F6E946A93D9D4EFD] - 20/11/2014 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\System32\drivers\IpNat.sys [142848] =>.Microsoft Corporation
[MD5.5DCD41F62F71519D2A46D41F60C69B0C] - 06/04/2016 - (.Microsoft Corporation - Minirdr SMB Windows NT.) -- C:\WINDOWS\System32\drivers\MRxSmb.sys [401920] =>.Microsoft Corporation
[MD5.9DC17B7D9D84C37C102D379FCC7D4942] - 14/05/2016 - (.Microsoft Corporation - MBT Transport driver.) -- C:\WINDOWS\System32\drivers\netBT.sys [281088] =>.Microsoft Corporation
[MD5.9980B262DBE439AE6BDC91AA985F19EE] - 30/12/2015 - (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\WINDOWS\System32\drivers\ntfs.sys [2017624] =>.Microsoft Windows®
[MD5.764B1121867B2D9B31C491668AC72B2B] - 22/08/2013 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\WINDOWS\System32\drivers\Parport.sys [94208] =>.Microsoft Corporation
[MD5.235624C147E3CB4C288D5D3D8E8D64A2] - 02/02/2016 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [112640] =>.Microsoft Corporation
[MD5.680C1DAE268B6FB67FA21B389A8B79EF] - 20/11/2014 - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RD.) -- C:\WINDOWS\System32\drivers\rdpdr.sys [195584] =>.Microsoft Corporation
[MD5.E0BD2D83875464FEEEB242CBA8B7E073] - 13/10/2015 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\WINDOWS\System32\drivers\tdx.sys [108032] =>.Microsoft Corporation
[MD5.17F7B0F2298D97F4B6C7A69511033D3D] - 14/03/2016 - (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\WINDOWS\System32\drivers\volsnap.sys [316760] =>.Microsoft Windows®

---\\ Liste des services NT non Microsoft et non désactivés (31) - 356s
O23 - Service: 0C11E274-5467-4D5F-a231-83D5201E490C (0C11E274-5467-4D5F-a231-83D5201E490C) . (...) - C:\Program Files\Saktups\Rudtimn.exe
O23 - Service: Advanced SystemCare Service 11 (AdvancedSystemCareService11) . (.IObit - Advanced SystemCare Service.) - C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe =>.IObit Information Technology®
O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\WINDOWS\System32\atiesrxx.exe =>.AMD
O23 - Service: AMD FUEL Service (AMD FUEL Service) . (.Advanced Micro Devices, Inc. - Service Fusion Utility.) - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe =>.Advanced Micro Devices, Inc.
O23 - Service: Kaspersky Anti-Virus Service 18.0.0 (AVP18.0.0) . (.AO Kaspersky Lab - Kaspersky Anti-Virus.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 18.0.0\avp.exe =>.Kaspersky Lab®
O23 - Service: CloudPrinter (CloudPrinter) . (...) - C:\ProgramData\CloudPrinter\CloudPrinter.exe =>PUP.Optional.Youndoo
O23 - Service: Renew Single Click (dowidoly) . (...) - C:\Program Files (x86)\EA344200-1467923023-815C-3797-4C72B9ADBCFB\jnsp548D.tmp =>Adware.CrossRider
O23 - Service: Dritek WMI Service (DsiWMIService) . (.Dritek System Inc. - Dritek WMI Service.) - C:\Program Files (x86)\Launch Manager\dsiwmis.exe =>.Dritek System Inc.®
O23 - Service: Dujxab (Dujxab) . (...) - C:\Users\ORDI\AppData\Roaming\LijaejJujeik\Jokganke.exe
O23 - Service: FastCompress (FastCompress) . (.Adlegend Media - Support File.) - C:\Program Files (x86)\FastCompress-Zip\Fast_Support.exe =>.Adlegend Limited®
O23 - Service: Getbok (Getbok) . (...) - C:\Users\ORDI\AppData\Roaming\Unyvgi\Unyvgi.exe
O23 - Service: IconMan_R (IconMan_R) . (.Realsil Microelectronics Inc. - Realtek Card Reader Patch Tool..) - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe =>.Realsil Microelectronics Inc.
O23 - Service: Jotughsteqoge Controls (JtgcontrolsRenseleqiward.exe) . (...) - C:\Program Files (x86)\Ghototionhesush\JtgcontrolsRenseleqiward.exe
O23 - Service: Lamzap (Lamzap) . (...) - C:\ProgramData\Lamzap\Lamzap.exe =>PUP.Optional.Salus
O23 - Service: MPC Core Protect Service (MPCProtectService) . (...) - C:\Program Files (x86)\MPC Cleaner\MPCProtectService.exe =>.SUP.MPCCleaner
O23 - Service: Nero Update (NAUpdate) . (.Nero AG - NeroUpdate.) - C:\Program Files (x86)\Nero\Update\NASvc.exe =>.Nero AG®
O23 - Service: Nimina (Nimina) . (...) - C:\Users\ORDI\AppData\Roaming\Eemea\Eemea.exe
O23 - Service: OtherSearch Service (OtherSearch) . (.1485 June 1547) - MSQJrqCwVQ.) - C:\Program Files (x86)\yytPKyv5VF\kl.dll =>Adware.GoodThingsShow
O23 - Service: Poadzeorbi (Poadzeorbi) . (...) - C:\Users\ORDI\AppData\Roaming\Pecimawroi\Pecimawroi.exe
O23 - Service: Pramase Debuger (pramaseDbgSrv) . (...) - C:\Program Files (x86)\Pramase\pramaseDbgSrv.html5
O23 - Service: Petckjahaght Module (PtcModuleservice) . (...) - C:\Program Files (x86)\Petckjahaght\PtcModuleservice.html5
O23 - Service: Reimage Real Time Protector (ReimageRealTimeProtector) . (.Reimage® - Reimage Real Time Protection.) - C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe =>.SUP.ReimageRepair
O23 - Service: ReviverSoft Smart Monitor Service (ReviverSoft Smart Monitor Service) . (.Copyright © 2017 Corel Corporation. All Rights Reserv - ReviverSoft Smart Monitor Service.) - C:\Program Files\ReviverSoft\Smart Monitor\ReviverSoft Smart Monitor Service.exe =>.Corel Corporation®
O23 - Service: Dritek RF Button Command Service (RfButtonDriverService) . (.Dritek System INC. - RfBtnSvc Application.) - C:\Windows\RfBtnSvc64.exe =>.Dritek System Inc.®
O23 - Service: Reservation Plastic (rijufoze) . (...) - C:\Program Files (x86)\EA344200-1467923023-815C-3797-4C72B9ADBCFB\hnsf6E51.tmp =>Adware.CrossRider
O23 - Service: SidhPawebe (SidhPawebe) . (...) - C:\Program Files\Saktups\SidhPawebe.exe
O23 - Service: TDataSvr (TDataSvr) . (...) - C:\Program Files (x86)\TData\TData.exe
O23 - Service: Viuesjiv (Viuesjiv) . (...) - C:\Users\ORDI\AppData\Roaming\CawsoWhw\Rugnodo.exe
O23 - Service: WinZiper service (winzipersvc) . (...) - C:\Program Files (x86)\WinZipper\winzipersvc.exe =>.SUP.WinZipper
O23 - Service: ZAtheros Wlan Agent (ZAtheros Wlan Agent) . (.Atheros - Atheros Coex Service Application.) - C:\Program Files (x86)\Qualcomm Atheros\Ath_WlanAgent.exe =>.Atheros
O23 - Service: Double Spaced Firewall (zigipyro) . (...) - C:\Users\ORDI\AppData\Local\EA344200-1468160607-815C-3797-4C72B9ADBCFB\qnsiA1F2.tmp

---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (38) - 442s
SR - Auto [10/07/2016] [ 273920] 0C11E274-5467-4D5F-a231-83D5201E490C (0C11E274-5467-4D5F-a231-83D5201E490C) . (...) - C:\Program Files\Saktups\Rudtimn.exe
SR - Auto [01/11/2017] [ 1053984] Advanced SystemCare Service 11 (AdvancedSystemCareService11) . (.IObit.) - C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe =>.IObit Information Technology®
SR - Auto [21/07/2014] [ 239616] (AMD External Events Utility) . (.AMD.) - C:\WINDOWS\System32\atiesrxx.exe =>.AMD
SR - Auto [04/07/2014] [ 344064] AMD FUEL Service (AMD FUEL Service) . (.Advanced Micro Devices, Inc..) - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe =>.Advanced Micro Devices, Inc.
SR - Auto [24/01/2017] [ 354672] Kaspersky Anti-Virus Service 18.0.0 (AVP18.0.0) . (.AO Kaspersky Lab.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 18.0.0\avp.exe =>.Kaspersky Lab®
SS - Auto [ 0] [ 0] CloudPrinter (CloudPrinter) . (...) - C:\ProgramData\CloudPrinter\CloudPrinter.exe =>PUP.Optional.Youndoo
SS - Demand [ 0] [ 0] Search Protect Service (CltMngSvc) . (...) - C:\Program Files (x86)\SearchProtect\Main\bin\CltMngSvc.exe =>PUP.Optional.SearchProtect
SS - Demand [23/08/2012] [ 468624] Device Fast-lane Service (DeviceFastLaneService) . (.Acer Incorporated.) - C:\Program Files\Packard Bell\Packard Bell Device Fast-lane\DeviceFastLaneSvc.exe =>.Acer Incorporated®
SS - Auto [ 0] [ 0] Renew Single Click (dowidoly) . (...) - C:\Program Files (x86)\EA344200-1467923023-815C-3797-4C72B9ADBCFB\jnsp548D.tmp =>Adware.CrossRider
SR - Auto [21/08/2012] [ 348784] Dritek WMI Service (DsiWMIService) . (.Dritek System Inc..) - C:\Program Files (x86)\Launch Manager\dsiwmis.exe =>.Dritek System Inc.®
SS - Auto [ 0] [ 0] Dujxab (Dujxab) . (...) - C:\Users\ORDI\AppData\Roaming\LijaejJujeik\Jokganke.exe
SS - Demand [22/08/2012] [ 658576] ePower Service (ePowerSvc) . (.Acer Incorporated.) - C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe =>.Acer Incorporated®
SR - Auto [05/08/2015] [ 533192] FastCompress (FastCompress) . (.Adlegend Media.) - C:\Program Files (x86)\FastCompress-Zip\Fast_Support.exe =>.Adlegend Limited®
SS - Demand [12/10/2010] [ 206072] GamesAppService (GamesAppService) . (.WildTangent, Inc..) - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe =>.WildTangent Inc®
SR - Auto [07/07/2016] [ 170496] Getbok (Getbok) . (...) - C:\Users\ORDI\AppData\Roaming\Unyvgi\Unyvgi.exe
SR - Auto [13/07/2012] [ 2451456] IconMan_R (IconMan_R) . (.Realsil Microelectronics Inc..) - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe =>.Realsil Microelectronics Inc.
SS - Auto [08/07/2016] [ 723680] Jotughsteqoge Controls (JtgcontrolsRenseleqiward.exe) . (...) - C:\Program Files (x86)\Ghototionhesush\JtgcontrolsRenseleqiward.exe
SS - Demand [23/11/2017] [ 426416] klvssbridge64_18.0.0 (klvssbridge64_18.0.0) . (.AO Kaspersky Lab.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 18.0.0\x64\vssbridge64.exe =>.Kaspersky Lab®
SS - Auto [ 0] [ 0] Lamzap (Lamzap) . (...) - C:\ProgramData\Lamzap\Lamzap.exe =>PUP.Optional.Salus
SS - Auto [ 0] [ 0] MPC Core Protect Service (MPCProtectService) . (...) - C:\Program Files (x86)\MPC Cleaner\MPCProtectService.exe =>.SUP.MPCCleaner
SR - Auto [26/11/2011] [ 687400] Nero Update (NAUpdate) . (.Nero AG.) - C:\Program Files (x86)\Nero\Update\NASvc.exe =>.Nero AG®
SR - Auto [07/07/2016] [ 170496] Nimina (Nimina) . (...) - C:\Users\ORDI\AppData\Roaming\Eemea\Eemea.exe
SS - Demand [21/05/2016] [ 2122248] Origin Client Service (Origin Client Service) . (.Electronic Arts.) - C:\Program Files (x86)\Origin\OriginClientService.exe =>.Electronic Arts, Inc.®
SR - Auto [15/11/2017] [ 362496] OtherSearch Service (OtherSearch) . (.1485 June 1547).) - C:\Program Files (x86)\yytPKyv5VF\kl.dll =>Adware.GoodThingsShow
SR - Auto [18/07/2016] [ 170496] Poadzeorbi (Poadzeorbi) . (...) - C:\Users\ORDI\AppData\Roaming\Pecimawroi\Pecimawroi.exe
SS - Auto [ 0] [ 0] Pramase Debuger (pramaseDbgSrv) . (...) - C:\Program Files (x86)\Pramase\pramaseDbgSrv.html5
SS - Auto [ 0] [ 0] Petckjahaght Module (PtcModuleservice) . (...) - C:\Program Files (x86)\Petckjahaght\PtcModuleservice.html5
SR - Auto [11/09/2017] [ 8602992] Reimage Real Time Protector (ReimageRealTimeProtector) . (.Reimage®.) - C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe =>.SUP.ReimageRepair
SR - Auto [23/10/2017] [ 815872] ReviverSoft Smart Monitor Service (ReviverSoft Smart Monitor Service) . (.Copyright © 2017 Corel Corporation. All Rights Reserv.) - C:\Program Files\ReviverSoft\Smart Monitor\ReviverSoft Smart Monitor Service.exe =>.Corel Corporation®
SR - Auto [16/09/2012] [ 93296] Dritek RF Button Command Service (RfButtonDriverService) . (.Dritek System INC..) - C:\Windows\RfBtnSvc64.exe =>.Dritek System Inc.®
SS - Auto [ 0] [ 0] Reservation Plastic (rijufoze) . (...) - C:\Program Files (x86)\EA344200-1467923023-815C-3797-4C72B9ADBCFB\hnsf6E51.tmp =>Adware.CrossRider
SR - Auto [10/07/2016] [ 1684992] SidhPawebe (SidhPawebe) . (...) - C:\Program Files\Saktups\SidhPawebe.exe
SS - Disabl [07/07/2016] [ 3107328] Search Module Update (SMUpd) . (.Search Module Ltd..) - C:\Program Files\Common Files\Noobzo\GNUpdate\smu.exe =>Adware.YTDownloader
SS - Auto [ 0] [ 0] TDataSvr (TDataSvr) . (...) - C:\Program Files (x86)\TData\TData.exe
SR - Auto [18/07/2016] [ 121344] Viuesjiv (Viuesjiv) . (...) - C:\Users\ORDI\AppData\Roaming\CawsoWhw\Rugnodo.exe
SS - Auto [ 0] [ 0] WinZiper service (winzipersvc) . (...) - C:\Program Files (x86)\WinZipper\winzipersvc.exe =>.SUP.WinZipper
SR - Auto [31/07/2012] [ 81536] ZAtheros Wlan Agent (ZAtheros Wlan Agent) . (.Atheros.) - C:\Program Files (x86)\Qualcomm Atheros\Ath_WlanAgent.exe =>.Atheros
SS - Auto [ 0] [ 0] Double Spaced Firewall (zigipyro) . (...) - C:\Users\ORDI\AppData\Local\EA344200-1468160607-815C-3797-4C72B9ADBCFB\qnsiA1F2.tmp

---\\ Tâches planifiées en automatique (Registre) (79) - 371s
O38 - TASK: {006E650B-C0F4-4DA5-ADB8-C4BD9A2F842B} [64Bits][\Microsoft\Windows\Shell\FamilySafetyMonitor] - (.Microsoft Corporation - Moniteur du contrôle parental.) -- C:\WINDOWS\System32\wpcmon.exe [3118096] =>.Microsoft Windows®
O38 - TASK: {00A354FC-9E2D-4914-AAEE-8FB04287A2D7} [64Bits][\ALU] - (.(C) All rights reserved - Live Updater.) -- C:\Program Files (x86)\Packard Bell\Live Updater\updater.exe [3331216] =>.Acer Incorporated®
O38 - TASK: {044C0ECB-D77C-4D85-A7C5-01275585901D} [64Bits][\Microsoft\Windows\Autochk\Proxy] - (.Microsoft Corporation - DLL de proxy Autochk.) -- C:\Windows\System32\acproxy.dll [12288] =>.Microsoft Corporation
O38 - TASK: {09251657-1AE1-4BFE-A856-3D8F483DFEC2} [64Bits][\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime] - (.Microsoft Corporation - Obtenir Windows 10.) -- C:\WINDOWS\system32\GWX\GWXUXWorker.exe [421488] =>.Microsoft Windows®
O38 - TASK: {0B2E990D-E50A-485B-A015-2B83206E3CFE} [64Bits][\ASC11_SkipUac_Tallal] - (.IObit - Advanced SystemCare 11.) -- C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe [8077600] =>.IObit Information Technology®
O38 - TASK: {0B545118-B563-42FC-8D07-B78F602FCF34} [64Bits][\Microsoft\Windows\WS\WSRefreshBannedAppsListTask] - (.Microsoft Corporation - Client de gestion de licences du Windows St.) -- C:\Windows\System32\WSClient.dll [206336] =>.Microsoft Corporation
O38 - TASK: {14B46BB6-92ED-41A9-8A17-432CE2DF5249} [64Bits][\Microsoft\Windows\DiskCleanup\SilentCleanup] - (.Microsoft Corporation - Gestionnaire de nettoyage de disque pour Wi.) -- C:\WINDOWS\system32\cleanmgr.exe [217600] =>.Microsoft Corporation
O38 - TASK: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} [64Bits][\Microsoft\Windows\Sysmain\WsSwapAssessmentTask] - (.Microsoft Corporation - Hôte de service Superfetch.) -- C:\Windows\System32\sysmain.dll [1217024] =>.Microsoft Corporation
O38 - TASK: {2385910D-605F-4213-A047-19EB482530A9} [64Bits][\Start Driver Reviver with delay for maison@ORDI] - (.Copyright © 2017 Corel Corporation. All Rights Reserv - Driver Reviver.) -- C:\Program Files\ReviverSoft\Driver Reviver\DriverReviver.exe [30170880] =>.Corel Corporation®
O38 - TASK: {26AEC0A7-0464-4DEB-8876-88CEC70C8BB9} [64Bits][\Microsoft\Windows\Setup\gwx\launchtrayprocess] - (.Microsoft Corporation - GWX.) -- C:\WINDOWS\system32\GWX\GWX.exe [534016] =>.Microsoft Corporation
O38 - TASK: {28B4DF88-883F-49AD-8285-B5AAC8455782} [64Bits][\Microsoft\Windows\WindowsUpdate\Scheduled Start] - (.Microsoft Corporation - Outil de configuration du Gestionnaire de c.) -- C:\Windows\System32\sc.exe [68608] =>.Microsoft Corporation
O38 - TASK: {29F285DB-476B-4E96-B045-6297A8FE787B} [64Bits][\Start Driver Reviver Schedule] - (.Copyright © 2017 Corel Corporation. All Rights Reserv - Driver Reviver.) -- C:\Program Files\ReviverSoft\Driver Reviver\DriverReviver.exe [30170880] =>.Corel Corporation®
O38 - TASK: {2BC666B2-C77B-492D-A698-30536C6C4D42} [64Bits][\Microsoft\Windows\Customer Experience Improvement Program\Consolidator] - (.Microsoft Corporation - Consolidateur SQM Windows.) -- C:\WINDOWS\System32\wsqmcons.exe [382976] =>.Microsoft Corporation
O38 - TASK: {302FA904-C7F7-4633-A30D-E5B3B5859F36} [64Bits][\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B] - (.Microsoft Corporation - GWX Detector.) -- C:\WINDOWS\system32\GWX\GWXDetector.exe [358400] =>.Microsoft Corporation
O38 - TASK: {3101883D-BA7D-4E23-B200-D55D261E42B0} [64Bits][\Microsoft\Windows\Customer Experience Improvement Program\Uploader] - (.Microsoft Corporation - Consolidateur SQM Windows.) -- C:\WINDOWS\system32\WSqmCons.exe [382976] =>.Microsoft Corporation
O38 - TASK: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} [64Bits][\Microsoft\Windows\Time Zone\SynchronizeTimeZone] - (.Microsoft Corporation - TimeZone Sync Task.) -- C:\WINDOWS\system32\tzsync.exe [63488] =>.Microsoft Corporation
O38 - TASK: {3D835D37-2799-49CA-A170-00119037A537} [64Bits][\Microsoft\Windows\Setup\gwx\rundetector] - (.Microsoft Corporation - GWX Detector.) -- C:\WINDOWS\system32\GWX\GWXDetector.exe [358400] =>.Microsoft Corporation
O38 - TASK: {3FFB0847-ED30-41DA-A477-88A9C6D36E73} [64Bits][\hostTask] - (.Copyright © 2017 - pingi.) -- C:\ProgramData\CloudPrinter\bush.exe [13824] =>.SUP.Linkury
O38 - TASK: {40525C58-79C2-47A1-9AA2-F1D7FC4F0691} [64Bits][\Microsoft\Windows\WindowsBackup\ConfigNotification] - (.Microsoft Corporation - Sauvegarde Microsoft® Windows.) -- C:\WINDOWS\System32\sdclt.exe [898048] =>.Microsoft Corporation
O38 - TASK: {43D3EF15-C68F-4191-8C15-0CF9A4BB2B95} [64Bits][\QkKtczEmbx] - (.Uffizi, Florenc - fojcfWtWdMuGeREqO.) -- C:\Program Files (x86)\yytPKyv5VF\updengine.exe [1316352]
O38 - TASK: {4BEDFD13-B12A-4924-B044-F48304FA6718} [64Bits][\Microsoft\Windows\Application Experience\ProgramDataUpdater] - (.Microsoft Corporation - Mise à jour des données de compatibilité de.) -- C:\WINDOWS\system32\invagent.dll [276480] =>.Microsoft Corporation
O38 - TASK: {54E14C60-F836-49FD-8F8C-18E22817C293} [64Bits][\Microsoft\Windows\WindowsUpdate\Scheduled Start With Network] - (.Microsoft Corporation - Outil de configuration du Gestionnaire de c.) -- C:\Windows\System32\sc.exe [68608] =>.Microsoft Corporation
O38 - TASK: {56853944-0011-4449-8827-7A478C566368} [64Bits][\dxr3027] - (.SYSTEM - .) -- C:\Program Files (x86)\QuickSearch\dxr3027.exe [59933]
O38 - TASK: {5EA2066B-186E-4CFE-A825-93707BDE227B} [64Bits][\Microsoft\Windows\Setup\gwx\refreshgwxconfig] - (.Microsoft Corporation - GWX Detector.) -- C:\WINDOWS\system32\GWX\GWXDetector.exe [358400] =>.Microsoft Corporation
O38 - TASK: {6642AD83-A280-450D-B6B5-5D33AE5E740E} [64Bits][\WinZip Malware Protector_startup] - (.Nico Mak Computing - WinZip Malware Protector.) -- C:\Program Files (x86)\WinZip Malware Protector\WinZipMalwareProtector.exe [6792944] =>.WinZip Computing LLC®
O38 - TASK: {6D21C8E9-C77F-4EE7-9252-2D30C930528A} [64Bits][\Microsoft\Windows\Defrag\ScheduledDefrag] - (.Microsoft Corp. - Module de défragmenteur de disque.) -- C:\WINDOWS\system32\defrag.exe [184832] =>.Microsoft Corp.
O38 - TASK: {6E2108A2-8DA3-497B-A6BB-4FAF94A2C401} [64Bits][\OnlineIO] - (.Microleaves Ltd - Online.) -- C:\Program Files\Online-IO\Online.exe [49016] =>.SUP.Microleaves
O38 - TASK: {73B1B253-CE67-4501-AE1A-377DD1D68B65} [64Bits][\Microsoft\Windows\Application Experience\StartupAppTask] - (.Microsoft Corporation - DLL de tâche d’analyse de démarrage.) -- C:\Windows\System32\Startupscan.dll [17408] =>.Microsoft Corporation
O38 - TASK: {73D1388C-336E-40EC-B0B4-62CB862AF2BE} [64Bits][\Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers] - (.Microsoft Corporation - Module d’installation de pilotes.) -- C:\WINDOWS\System32\drvinst.exe [112640] =>.Microsoft Corporation
O38 - TASK: {77F1D869-6E65-4079-A2A0-E2023408EF97} [64Bits][\Microsoft\Windows\ApplicationData\CleanupTemporaryState] - (.Microsoft Corporation - Windows Application Data API Server.) -- C:\Windows\System32\Windows.Storage.ApplicationData.dll [214360] =>.Microsoft Windows®
O38 - TASK: {7A1CA63A-3611-4E61-AAFA-1B56F8746F3A} [64Bits][\Microsoft\Windows\AppID\PolicyConverter] - (.Microsoft Corporation - AppID Policy Converter Task.) -- C:\WINDOWS\system32\appidpolicyconverter.exe [197632] =>.Microsoft Corporation
O38 - TASK: {7DD666D5-AC93-428A-B051-BD4F13C8356D} [64Bits][\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask] - (.Microsoft Corporation - Serveur COM d’assistance à distance Windows.) -- C:\Windows\System32\raserver.exe [124416] =>.Microsoft Corporation
O38 - TASK: {821B2A5A-D52F-4580-938B-22F5B4F6A37A} [64Bits][\Chiceingittain Provider] - (.SYSTEM - Chiceingittain service provider..) -- C:\Program Files (x86)\Chociph\chiceingittainProviderchm.exe [348384]
O38 - TASK: {8292E383-29BB-455B-BBAA-B094D46FB668} [64Bits][\Start Driver Reviver Update] - (.Copyright © 2017 Corel Corporation. All Rights Reserv - Driver Reviver.) -- C:\Program Files\ReviverSoft\Driver Reviver\DriverReviver.exe [30170880] =>.Corel Corporation®
O38 - TASK: {84400372-B6DB-4852-B387-6CE186EAE25B} [64Bits][\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser] - (.Microsoft Corporation - Tâche de l’analyseur d’expérience de compte.) -- C:\WINDOWS\System32\MbaeParserTask.exe [112128] =>.Microsoft Corporation
O38 - TASK: {878143F8-3B10-4376-8B0C-832141DA7EED} [64Bits][\Norton WSC Integration] - (.Symantec Corporation - WSCStub.) -- C:\Program Files (x86)\Norton Internet Security\Engine\20.6.0.27\WSCStub.exe [164584] =>.Symantec Corporation®
O38 - TASK: {8CC813C9-712A-41EF-9512-B233444FC669} [64Bits][\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup] - (.Microsoft Corporation - DLL du client de déploiement d’AppX.) -- C:\Windows\System32\AppxDeploymentClient.dll [268800] =>.Microsoft Corporation
O38 - TASK: {9668495F-1C76-496A-95A5-69CC42A9BA4B} [64Bits][\Boxore Update] - (.maison\ORDI - .) -- C:\ProgramData\Boxore\7.1\Boxore.exe [11629572] =>PUP.Optional.Boxore
O38 - TASK: {972CB83C-A9EE-4CAF-B1FC-810A9E9B8DB1} [64Bits][\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime] - (.Microsoft Corporation - GWX Detector.) -- C:\WINDOWS\system32\GWX\GWXDetector.exe [358400] =>.Microsoft Corporation
O38 - TASK: {9C71E93F-9AC4-4483-A390-949780273540} [64Bits][\Reimage Reminder] - (.Reimage ltd. - Reimage Reminder.) -- C:\Program Files\Reimage\Reimage Repair\ReimageReminder.exe [4448616] =>.SUP.ReimageRepair
O38 - TASK: {9F0CC4D8-FE64-4EB0-8B73-1A6FCD2EB38D} [64Bits][\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser] - (.Microsoft Corporation - Microsoft Compatibility Telemetry.) -- C:\WINDOWS\system32\CompatTelRunner.exe [50352] =>.Microsoft Corporation®
O38 - TASK: {A066E5EE-B917-4849-9F2B-933E00498E69} [64Bits][\Start Registry Reviver Schedule] - (.ReviverSoft LLC - Registry Reviver.) -- C:\Program Files\ReviverSoft\Registry Reviver\RegistryReviver.exe [23229192] =>PUP.Optional.RegistryReviver
O38 - TASK: {A216000C-66D3-4E66-8A6E-D98AB5762D3C} [64Bits][\Microsoft\Windows\Bluetooth\UninstallDeviceTask] - (.Microsoft Corporation - Tâche de désinstallation du périphérique Bl.) -- C:\Windows\System32\BthUdTask.exe [37888] =>.Microsoft Corporation
O38 - TASK: {A2E6AF92-A27E-48C6-9213-2231E259B7DF} [64Bits][\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance] - (.Microsoft Corporation - Microsoft Malware Protection Command Line U.) -- C:\Program Files\Windows Defender\MpCmdRun.exe [387336] =>.Microsoft Corporation®
O38 - TASK: {A44A1624-C719-4A46-8833-AA65471469C9} [64Bits][\Microsoft\Windows\SystemRestore\SR] - (.Microsoft Corporation - Tâches de fond de la protection du système.) -- C:\WINDOWS\system32\srtasks.exe [58368] =>.Microsoft Corporation
O38 - TASK: {A5618F9F-F24F-4943-BF3F-8F30B9458999} [64Bits][\User_Feed_Synchronization-{1A13A34A-3FF5-4E64-8ACC-1377012DC498}] - (.Microsoft Corporation - Microsoft Feeds Synchronization.) -- C:\Windows\System32\msfeedssync.exe [12800] =>.Microsoft Corporation
O38 - TASK: {A693A6E9-FB8C-46CA-932B-88DC7684BE1C} [64Bits][\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange] - (.Microsoft Corporation - Moteur de filtrage de base.) -- C:\Windows\System32\bfe.dll [845312] =>.Microsoft Corporation
O38 - TASK: {AAA89DAF-1B4F-447D-AF21-7F0559AC9962} [64Bits][\Microsoft\Windows\Windows Media Sharing\UpdateLibrary] - (.Microsoft Corporation - Application de configuration du service Par.) -- C:\Program Files\Windows Media Player\wmpnscfg.exe [71168] =>.Microsoft Corporation
O38 - TASK: {AB26055C-D45C-4204-8663-66A1DD01EA83} [64Bits][\ASC11_PerformanceMonitor] - (.IObit - Performance Monitor.) -- C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe [3024672] =>.IObit Information Technology®
O38 - TASK: {AC4DA7B6-E6B2-4A4B-805B-EDE5C35AF5B5} [64Bits][\Pramase Debuger] - (.SYSTEM - Upload the info when Pramase crash, make th.) -- C:\Program Files (x86)\Pramase\pramaseDbgTsk.exe [349856]
O38 - TASK: {AD6585A6-8644-49E0-8E44-D3197D735065} [64Bits][\ReimageUpdater] - (.Reimage® - Reimage Real Time Protection.) -- C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe [8602992] =>.SUP.ReimageRepair
O38 - TASK: {ADD16A39-FD33-4E03-91CB-B3E078BDF1B0} [64Bits][\ALUAgent] - (.(C) All rights reserved - Live Updater Agent.) -- C:\Program Files (x86)\Packard Bell\Live Updater\liveupdater_agent.exe [39568] =>.Acer Incorporated®
O38 - TASK: {B5C0C1B1-C030-46BA-811B-74342B1F789E} [64Bits][\WPD\SqmUpload_S-1-5-21-2110472791-2938403961-3750682840-1001] - (.Microsoft Corporation - Composants API de l’appareil mobile Windows.) -- C:\Windows\System32\portabledeviceapi.dll [719360] =>.Microsoft Corporation
O38 - TASK: {BA48FCCD-F364-42BF-B684-E7B4DCC4D3D1} [64Bits][\Microsoft\Windows\UPnP\UPnPHostConfig] - (.Microsoft Corporation - Outil de configuration du Gestionnaire de c.) -- C:\Windows\System32\sc.exe [68608] =>.Microsoft Corporation
O38 - TASK: {BC537794-54F5-4702-8CEB-06F584ECD24A} [64Bits][\Microsoft\Windows\SpacePort\SpaceAgentTask] - (.Microsoft Corporation - Paramètres des espaces de stockage.) -- C:\WINDOWS\system32\SpaceAgent.exe [104960] =>.Microsoft Corporation
O38 - TASK: {C23F4A68-EE54-4FA2-A331-09297ECDC7DB} [64Bits][\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent] - (.Microsoft Corporation - GWX Detector.) -- C:\WINDOWS\system32\GWX\GWXDetector.exe [358400] =>.Microsoft Corporation
O38 - TASK: {C2599556-050C-48B7-98E3-CD224A313FE3} [64Bits][\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck] - (.Microsoft Corporation - AppID Certificate Store Verification Task.) -- C:\WINDOWS\system32\appidcertstorecheck.exe [17920] =>.Microsoft Corporation
O38 - TASK: {C3D61C9D-3FDC-41FB-9889-CAF154DA6709} [64Bits][\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver] - (.Microsoft Corporation - Outil de résolution des défaillances disque.) -- C:\WINDOWS\system32\DFDWiz.exe [78336] =>.Microsoft Corporation
O38 - TASK: {C4DC87C2-761F-49C0-A885-442695DF3F4A} [64Bits][\Petckjahaght Module] - (.SYSTEM - Modules of Petckjahaght, supports all the p.) -- C:\Program Files (x86)\Petckjahaght\PtcModuletask.exe [324248]
O38 - TASK: {C9CA0A9E-7657-4A17-A826-7FFDA78E7AED} [64Bits][\ASC_ASCTray_Auto] - (.IObit - Advanced SystemCare Tray.) -- C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe [3597600] =>.IObit Information Technology®
O38 - TASK: {CBD3EF37-0E38-431A-A6E8-607C56893A63} [64Bits][\Microsoft\Windows\MUI\LPRemove] - (.Microsoft Corporation - MUI Language pack cleanup.) -- C:\WINDOWS\system32\lpremove.exe [67072] =>.Microsoft Corporation
O38 - TASK: {CC7E9366-CF26-4DC9-A66C-3EAB252649E1} [64Bits][\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan] - (.Microsoft Corporation - Microsoft Malware Protection Command Line U.) -- C:\Program Files\Windows Defender\MpCmdRun.exe [387336] =>.Microsoft Corporation®
O38 - TASK: {CD48B133-1A74-48BA-93D6-760E6DE41750} [64Bits][\LaunchPreSignup] - (...) -- C:\Program Files (x86)\OLBPre\OLBPre.exe [2472448] =>PUP.Optional.MyPCBackup
O38 - TASK: {CE36D971-186D-4137-9918-49730F35AD54} [64Bits][\WPD\SqmUpload_S-1-5-21-2110472791-2938403961-3750682840-1005] - (.Microsoft Corporation - Composants API de l’appareil mobile Windows.) -- C:\Windows\System32\portabledeviceapi.dll [719360] =>.Microsoft Corporation
O38 - TASK: {D3BFDE44-A9EB-4D03-AE45-3926E2853349} [64Bits][\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector] - (.Microsoft Corporation - Module de diagnostics des erreurs de disque.) -- C:\Windows\System32\dfdts.dll [45568] =>.Microsoft Corporation
O38 - TASK: {D5DC4A49-237C-44BB-A214-2BC644CBDB5D} [64Bits][\Microsoft\Windows\Setup\gwx\refreshgwxcontent] - (.Microsoft Corporation - GWX ConfigManager.) -- C:\WINDOWS\system32\GWX\GWXConfigManager.exe [755200] =>.Microsoft Corporation
O38 - TASK: {D6F4A061-CEFB-4F38-81EC-6E80ECDD3011} [64Bits][\Microsoft\Windows\Location\Notifications] - (.Microsoft Corporation - Activité de la localisation.) -- C:\Windows\System32\LocationNotifications.exe [86528] =>.Microsoft Corporation
O38 - TASK: {D785815A-3C36-4BD3-91F5-5C158400D28B} [64Bits][\{076B05C6-7492-13C3-23B8-2EAFF7240C0D}] - (...) -- C:\Users\ORDI\AppData\Roaming\{076B05C6-7492-13C3-23B8-2EAFF7240C0D}\pricefountainupdateverupdate.exe [326144] =>PUP.Optional.PriceFountain
O38 - TASK: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} [64Bits][\Microsoft\Windows\WS\License Validation] - (.Microsoft Corporation - Client de gestion de licences du Windows St.) -- C:\Windows\System32\WSClient.dll [206336] =>.Microsoft Corporation
O38 - TASK: {DBE70AB0-7E6C-4B57-A02B-7B00CAA180BB} [64Bits][\User_Feed_Synchronization-{15D962B5-293E-4598-AA06-3284C7E6CA22}] - (.Microsoft Corporation - Microsoft Feeds Synchronization.) -- C:\Windows\System32\msfeedssync.exe [12800] =>.Microsoft Corporation
O38 - TASK: {DD04F937-AB2E-4754-A4AA-85999147F326} [64Bits][\Power Management] - (.Acer Incorporated - ePowerTray.) -- C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe [5294736] =>.Acer Incorporated®
O38 - TASK: {E075AC73-7FC0-4ACD-9F28-DD590C391C1C} [64Bits][\Microsoft\Windows\Windows Error Reporting\QueueReporting] - (.Microsoft Corporation - Windows Problem Reporting.) -- C:\WINDOWS\system32\wermgr.exe [139984] =>.Microsoft Windows®
O38 - TASK: {E2618AAF-0CD7-4C03-93EE-E1B8DF52DD53} [64Bits][\ChelfNotify Task] - (.Tencent - QQ浏览器.) -- C:\ProgramData\ChelfNotify\BrowserUpdate.exe [690144] =>.SUP.Tencent
O38 - TASK: {E288921A-4336-4DEA-A1A6-6F3E6A856E5C} [64Bits][\Microsoft\Windows\Windows Defender\Windows Defender Verification] - (.Microsoft Corporation - Microsoft Malware Protection Command Line U.) -- C:\Program Files\Windows Defender\MpCmdRun.exe [387336] =>.Microsoft Corporation®
O38 - TASK: {E715AFFE-CF93-4CF1-81BF-464DD4B8C62F} [64Bits][\Start Registry Reviver Update] - (.ReviverSoft LLC - Registry Reviver.) -- C:\Program Files\ReviverSoft\Registry Reviver\RegistryReviver.exe [23229192] =>PUP.Optional.RegistryReviver
O38 - TASK: {EDCAD10E-42B8-45F3-AAEF-DE86F7373643} [64Bits][\Microsoft\Windows\Time Synchronization\SynchronizeTime] - (.Microsoft Corporation - Outil de configuration du Gestionnaire de c.) -- C:\WINDOWS\system32\sc.exe [68608] =>.Microsoft Corporation
O38 - TASK: {F3B09097-A5DE-4EEA-882E-219661D1098A} [64Bits][\Start Driver Reviver for maison@ORDI(logon)] - (.Copyright © 2017 Corel Corporation. All Rights Reserv - Driver Reviver.) -- C:\Program Files\ReviverSoft\Driver Reviver\DriverReviver.exe [30170880] =>.Corel Corporation®
O38 - TASK: {F67C3C3C-2EE9-498E-A0D8-AA09F8787FB1} [64Bits][\Microsoft\Windows\Windows Defender\Windows Defender Cleanup] - (.Microsoft Corporation - Microsoft Malware Protection Command Line U.) -- C:\Program Files\Windows Defender\MpCmdRun.exe [387336] =>.Microsoft Corporation®
O38 - TASK: {F90E5194-96E4-4553-B907-FAFCFB323546} [64Bits][\Start Registry Reviver for maison@ORDI(logon)] - (.ReviverSoft LLC - Registry Reviver.) -- C:\Program Files\ReviverSoft\Registry Reviver\RegistryReviver.exe [23229192] =>PUP.Optional.RegistryReviver

---\\ Applications lancées au démarrage du système (55) - 728s
O4 - HKLM\..\Run: [Apoint] . (.Alps Electric Co., Ltd. - Alps Pointing-device Driver.) -- C:\Program Files\Apoint2K\Apoint.exe =>.Alps Electric Co., LTD.®
O4 - HKLM\..\Run: [Sound+] . (.Sound+ - Sound+.) -- C:\Program Files\Sound+\Sound+.exe =>Adware.Kazy
O4 - HKLM\..\Run: [WINCOMZXE] . (...) -- C:\Program Files (x86)\sunnyday\wincom_ZXE.exe =>Adware.SunnyDay
O4 - HKLM\..\Run: [WINCOMUN0] . (...) -- C:\Program Files (x86)\sunnyday\wincom_UN0.exe =>Adware.SunnyDay
O4 - HKLM\..\Run: [WINCOMO31] . (...) -- C:\Program Files (x86)\sunnyday\wincom_O31.exe =>Adware.SunnyDay
O4 - HKLM\..\Run: [WINCOM873] . (...) -- C:\Program Files (x86)\sunnyday\wincom_873.exe =>Adware.SunnyDay
O4 - HKLM\..\Run: [WINCOM4HN] . (...) -- C:\Program Files (x86)\sunnyday\wincom_4HN.exe =>Adware.SunnyDay
O4 - HKLM\..\RunOnce: [OTUTPRODUCT_X5GET] . (.B2BEIp2016 - .) -- C:\Program Files (x86)\sunnyday\otutnetwork.exe =>Adware.SunnyDay
O4 - HKLM\..\RunOnce: [OTUTPRODUCT_ONS6R] . (.B2BEIp2016 - .) -- C:\Program Files (x86)\sunnyday\otutnetwork.exe =>Adware.SunnyDay
O4 - HKCU\..\Run: [Advanced SystemCare 11] . (.IObit - Advanced SystemCare Tray.) -- C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe =>.IObit Information Technology®
O4 - HKLM\..\Wow6432Node\Run: [StartCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe =>.Advanced Micro Devices, Inc.®
O4 - HKLM\..\Wow6432Node\Run: [LManager] (.Orphan.) =>.SUP.Orphan
O4 - HKLM\..\Wow6432Node\Run: [sun21] . (...) -- C:\Program Files (x86)\zebi\SunnyDay.exe =>Adware.SunnyDay
O4 - HKLM\..\Wow6432Node\Run: [win_en_77] . (...) -- C:\Program Files (x86)\win_en_77\win_en_77.exe =>.SUP.CSDI
O4 - HKLM\..\Wow6432Node\Run: [UltimateSpeedTester] . (...) -- C:\Users\ORDI\AppData\Roaming\UltimateSpeedTester\UltimateSpeedTester.exe
O4 - HKUS\S-1-5-21-2110472791-2938403961-3750682840-1001\..\Run: [EADM] . (.Electronic Arts - Origin.) -- C:\Program Files (x86)\Origin\Origin.exe =>.Electronic Arts, Inc.®
O4 - HKUS\S-1-5-21-2110472791-2938403961-3750682840-1001\..\Run: [Caster] . (.2016 - Bxgqtt.) -- C:\Program Files (x86)\host\wizzcaster.exe
O4 - HKUS\S-1-5-21-2110472791-2938403961-3750682840-1001\..\Run: [fastweb] . (.Ghisler Software GmbH - Total Commander 32bit->64bit helper tool.) -- C:\Program Files (x86)\FastWeb\fastweb.exe =>.SUP.FastWeb
O4 - HKUS\S-1-5-21-2110472791-2938403961-3750682840-1001\..\Run: [Bubble Dock] . (.Nosibay - Bubble Dock.) -- C:\Users\ORDI\AppData\Roaming\Nosibay\Bubble Dock\LBubble Dock.exe {15D415FC07F39945D54BD293F72D8A5F} =>Adware.BubbleDock
O4 - HKUS\S-1-5-21-2110472791-2938403961-3750682840-1001\..\Run: [QGuan10in1] . (...) -- C:\Users\ORDI\AppData\Roaming\UPUpdata\service72564.exe
O4 - HKUS\S-1-5-21-2110472791-2938403961-3750682840-1001\..\Run: [msiql] . (.Copyright (C) 2015 - .) -- C:\Users\ORDI\AppData\Roaming\UPUpdata\msiql.exe
O4 - HKUS\S-1-5-21-2110472791-2938403961-3750682840-1001\..\Run: [safe_urls768] . (...) -- C:\Users\ORDI\AppData\Roaming\Browser-Security\s768.exe =>.SUP.VondosMedia
O4 - HKUS\S-1-5-21-2110472791-2938403961-3750682840-1001\..\Run: [Chromium] . (.The Chromium Authors - Chromium.) -- c:\users\ordi\appdata\local\chromium\application\chrome.exe =>.The Chromium Authors
O4 - HKUS\S-1-5-21-2110472791-2938403961-3750682840-1001\..\Run: [RAHMA3CGL7] . (.XCZ - JHXA.) -- C:\Program Files\V9MOKBMXJE\F1HPSDOIC.exe =>Adware.Wizzcaster
O4 - HKUS\S-1-5-21-2110472791-2938403961-3750682840-1001\..\Run: [25SZBUAZOA] . (.XCZ - JHXA.) -- C:\Program Files\PVYC1DGQX0\PVYC1DGQX.exe =>Adware.Wizzcaster
O4 - HKUS\S-1-5-21-2110472791-2938403961-3750682840-1001\..\Run: [DT5OR3BP5D] . (.XCZ - JHXA.) -- C:\Program Files\5I0QYNLMIN\5I0QYNLMI.exe =>Adware.Wizzcaster
O4 - HKUS\S-1-5-21-2110472791-2938403961-3750682840-1001\..\Run: [8ADEFEDZFT] . (.XCZ - JHXA.) -- C:\Program Files\T8TXRKGM0L\6X0CZJMN0.exe =>Adware.Wizzcaster
O4 - HKUS\S-1-5-21-2110472791-2938403961-3750682840-1001\..\Run: [IUOT4F25WVB99J5] . (.HST66PDJL - HS.) -- C:\Program Files\OW58QRWS6L\OW58QRWS6.exe =>Adware.Wizzcaster
O4 - HKUS\S-1-5-21-2110472791-2938403961-3750682840-1001\..\Run: [2MJUCI4QP7XYKZ1] . (.HST66PDJL - HS.) -- C:\Program Files\CTSX8MV17N\67940QLK2.exe =>Adware.Wizzcaster
O4 - HKUS\S-1-5-21-2110472791-2938403961-3750682840-1001\..\Run: [EBQ9KHARP3PGKB8] . (.HST66PDJL - HS.) -- C:\Program Files\J2SYSWI1I1\UR6M84IRY.exe =>Adware.Wizzcaster
O4 - HKUS\S-1-5-21-2110472791-2938403961-3750682840-1001\..\Run: [SI2HJO2VDYEV7KN] . (.HST66PDJL - HS.) -- C:\Program Files\POBR0SSINI\GKTE8YQNA.exe =>Adware.Wizzcaster
O4 - HKUS\S-1-5-21-2110472791-2938403961-3750682840-1001\..\Run: [IVQ8RH3TR84M34S] . (.OR0N - OR0N.) -- C:\Program Files\1H8HMG8QRP\LT64P63U6.exe =>Adware.Wizzcaster
O4 - HKUS\S-1-5-21-2110472791-2938403961-3750682840-1001\..\Run: [00JPIB157USKZAJ] . (.OR0N - OR0N.) -- C:\Program Files\T4IX7Z9Z2E\1UZNYXATX.exe =>Adware.Wizzcaster
O4 - HKUS\S-1-5-21-2110472791-2938403961-3750682840-1001\..\Run: [TWGDKKCZKF8NR7O] . (.OR0N - OR0N.) -- C:\Program Files\EVF6CL43ZN\BWJ8NB58D.exe =>Adware.Wizzcaster
O4 - HKUS\S-1-5-21-2110472791-2938403961-3750682840-1001\..\Run: [GE3F2JA74LSKILC] . (.OR0N - OR0N.) -- C:\Program Files\H72BCD51QF\UGBCF04LB.exe =>Adware.Wizzcaster
O4 - HKUS\S-1-5-21-2110472791-2938403961-3750682840-1001\..\Run: [PNF2TU888HW2YQS] . (.12T - 12TKPRT.) -- C:\Program Files\YIVQHX4WHX\IBPRP06HA.exe =>Adware.Wizzcaster
O4 - HKUS\S-1-5-21-2110472791-2938403961-3750682840-1001\..\Run: [695XOZE120PFEL4] . (.12T - 12TKPRT.) -- C:\Program Files\B4VWW24J7Y\B4VWW24J7.exe =>Adware.Wizzcaster
O4 - HKUS\S-1-5-21-2110472791-2938403961-3750682840-1001\..\Run: [9838LFX3YVYXLYI] . (.12T - 12TKPRT.) -- C:\Program Files\VJK1VZBE18\0LFX2C2ND.exe =>Adware.Wizzcaster
O4 - HKUS\S-1-5-21-2110472791-2938403961-3750682840-1001\..\Run: [XRK0V51N0V7QFMV] . (.12T - 12TKPRT.) -- C:\Program Files\SXCX91UFCG\GAW1X906S.exe =>Adware.Wizzcaster
O4 - HKUS\S-1-5-21-2110472791-2938403961-3750682840-1001\..\Run: [EAFUEWXUG2IVARA] . (.J - J6.) -- C:\Program Files\2LX8PHV1NN\SZA25G73L.exe =>Adware.Wizzcaster
O4 - HKUS\S-1-5-21-2110472791-2938403961-3750682840-1001\..\Run: [QXDSWG4X36VRATM] . (.J - J6.) -- C:\Program Files\KTWYA5YSC4\Y4WH9Z93C.exe =>Adware.Wizzcaster
O4 - HKUS\S-1-5-21-2110472791-2938403961-3750682840-1001\..\Run: [BA45SY5C1D2X5VM] . (.J - J6.) -- C:\Program Files\XI2DI44TB0\CB8P86170.exe =>Adware.Wizzcaster
O4 - HKUS\S-1-5-21-2110472791-2938403961-3750682840-1001\..\Run: [7D3NYYSQ2MS3SXF] . (.J - J6.) -- C:\Program Files\VBCX3V1O67\70JCBU7P6.exe =>Adware.Wizzcaster
O4 - HKUS\S-1-5-21-2110472791-2938403961-3750682840-1001\..\Run: [C3PE0MUPB9F8B5W] . (.J - J6.) -- C:\Program Files\TDAP7B843A\5JT7ERUX9.exe =>Adware.Wizzcaster
O4 - HKUS\S-1-5-21-2110472791-2938403961-3750682840-1001\..\Run: [8COX0BZ38M2EVY9] . (.J - J6.) -- C:\Program Files\N8OB4S54CS\L7VKB1ZTU.exe =>Adware.Wizzcaster
O4 - HKUS\S-1-5-21-2110472791-2938403961-3750682840-1001\..\Run: [8FU5U65IHIGOQLB] . (.B3Z7@GI0P - B.) -- C:\Program Files\RZQS330QFF\66213ASU3.exe =>Adware.Wizzcaster
O4 - HKUS\S-1-5-21-2110472791-2938403961-3750682840-1001\..\Run: [J37UAE57YLJ9NNT] . (.B3Z7@GI0P - B.) -- C:\Program Files\XIH3FSYG5Z\MGYIRE20P.exe =>Adware.Wizzcaster
O4 - HKUS\S-1-5-21-2110472791-2938403961-3750682840-1001\..\Run: [LO36XT322G3R79X] . (.B3Z7@GI0P - B.) -- C:\Program Files\PMOY5O65UN\Q4TRXVS8J.exe =>Adware.Wizzcaster
O4 - HKUS\S-1-5-21-2110472791-2938403961-3750682840-1001\..\Run: [1V6SHLHAZZZSWC5] . (.B3Z7@GI0P - B.) -- C:\Program Files\0YP672YFZN\L8Q07CM2H.exe =>Adware.Wizzcaster
O4 - HKUS\S-1-5-21-2110472791-2938403961-3750682840-1001\..\Run: [I52A5QSHLK0NIL5] . (.B3Z7@GI0P - B.) -- C:\Program Files\A66GIZQN1S\CQ2S5DPH5.exe =>Adware.Wizzcaster
O4 - HKUS\S-1-5-21-2110472791-2938403961-3750682840-1001\..\Run: [1OUDYFQUJ0UC22B] . (.B3Z7@GI0P - B.) -- C:\Program Files\AKCCR4LD0U\E51E79QIN.exe =>Adware.Wizzcaster
O4 - HKUS\S-1-5-21-2110472791-2938403961-3750682840-1001\..\Run: [DDKZGY0RKFAJQBH] . (.Y - Y1LD@Z6.) -- C:\Program Files\U7VFP9CWCW\BHRXCEM3X.exe =>Adware.Wizzcaster
O4 - HKUS\S-1-5-21-2110472791-2938403961-3750682840-1001\..\Run: [KH8LG2WBEU5R1G6] . (.Y - Y1LD@Z6.) -- C:\Program Files\N37TP6GCHG\N37TP6GCH.exe =>Adware.Wizzcaster
O4 - HKUS\S-1-5-21-2110472791-2938403961-3750682840-1001\..\Run: [X6F0O12CDRX81SD] . (.Y - Y1LD@Z6.) -- C:\Program Files\RUTLQUICR4\VFJN6ZMHD.exe =>Adware.Wizzcaster
O4 - HKUS\S-1-5-21-2110472791-2938403961-3750682840-1001\..\Run: [YOKTF8OE2QT5OPL] . (.Y - Y1LD@Z6.) -- C:\Program Files\KR5YRQMSWO\BNOMYWKWK.exe =>Adware.Wizzcaster

---\\ Processus lancés (30) - 211s
[MD5.24CB1F7F39B8E4BBB24B70C9659C8F4A] - (.IObit - Advanced SystemCare Service.) -- C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe [1053984] [PID.1008] =>.IObit Information Technology®
[MD5.00000000000000000000000000000000] - (.AMD - AMD External Events Service Module.) -- C:\WINDOWS\system32\atiesrxx.exe [0] [PID.892] =>.AMD
[MD5.2B9576E6DF68DDEAE43A86A04C185498] - (...) -- C:\Program Files\Saktups\Rudtimn.exe [273920] [PID.1548]
[MD5.9116FCF56613B8C5BEE586BB156FAB35] - (.Advanced Micro Devices, Inc. - Service Fusion Utility.) -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064] [PID.1564] =>.Advanced Micro Devices, Inc.
[MD5.24B91DEBF94F19292C32DB76190036C9] - (.AO Kaspersky Lab - Kaspersky Anti-Virus.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 18.0.0\avp.exe [354672] [PID.1584] =>.Kaspersky Lab®
[MD5.4E2C9C48316B2156B45B58687C7435AC] - (.Dritek System Inc. - Dritek WMI Service.) -- C:\Program Files (x86)\Launch Manager\dsiwmis.exe [348784] [PID.1708] =>.Dritek System Inc.®
[MD5.3CE1D568180B35FEB577F0A2BA88F24A] - (.Adlegend Media - Support File.) -- C:\Program Files (x86)\FastCompress-Zip\Fast_Support.exe [533192] [PID.1804] =>.Adlegend Limited®
[MD5.F2FA0873538CFD8EF7BBB2EE343BA2B0] - (...) -- C:\Users\ORDI\AppData\Roaming\Unyvgi\Unyvgi.exe [170496] [PID.1860]
[MD5.9AFAE1DD759AB4D1AE33F548367DEBE5] - (...) -- C:\Users\ORDI\AppData\Roaming\Eemea\Eemea.exe [170496] [PID.1916]
[MD5.21D20590F5E99B864300344E3162FA03] - (...) -- C:\Users\ORDI\AppData\Roaming\Pecimawroi\Pecimawroi.exe [170496] [PID.1232]
[MD5.87E78CBD03FC0149B586C5EB6078868B] - (.Reimage® - Reimage Real Time Protection.) -- C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe [8602992] [PID.2080] =>.SUP.ReimageRepair
[MD5.70B6FE5DAA2D0ED958C8DC7A755E3607] - (.Copyright © 2017 Corel Corporation. All Rights Reserv - ReviverSoft Smart Monitor Service.) -- C:\Program Files\ReviverSoft\Smart Monitor\ReviverSoft Smart Monitor Service.exe [815872] [PID.2132] =>.Corel Corporation®
[MD5.CF59781FCB68F859EB6C835ED285211D] - (.Dritek System INC. - RfBtnSvc Application.) -- C:\Windows\RfBtnSvc64.exe [93296] [PID.2208] =>.Dritek System Inc.®
[MD5.C62D98288594EAC4E8DF89B86BD3DD66] - (...) -- C:\Program Files\Saktups\SidhPawebe.exe [1684992] [PID.2248]
[MD5.7BDA27BFFCB90CE249BACDBF0E66B7E2] - (...) -- C:\Users\ORDI\AppData\Roaming\CawsoWhw\Rugnodo.exe [121344] [PID.2424]
[MD5.BB1842E3AA602B401F7692718B0D0F9A] - (.Atheros - Atheros Coex Service Application.) -- C:\Program Files (x86)\Qualcomm Atheros\Ath_WlanAgent.exe [81536] [PID.2488] =>.Atheros
[MD5.00000000000000000000000000000000] - (.AMD - AMD External Events Client Module.) -- C:\WINDOWS\system32\atieclxx.exe [0] [PID.2104] =>.AMD
[MD5.ABEFA4BD23329FD9BD47496BF2E58774] - (.Realsil Microelectronics Inc. - Realtek Card Reader Patch Tool..) -- C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2451456] [PID.1900] =>.Realsil Microelectronics Inc.
[MD5.934BB0D23A25C8C136570800A5A149B6] - (.Nero AG - NeroUpdate.) -- C:\Program Files (x86)\Nero\Update\NASvc.exe [687400] [PID.972] =>.Nero AG®
[MD5.BA5CF70217E44A0F8F2C90740B61B2B7] - (.Reimage® - Reimage System Protection.) -- C:\Program Files\Reimage\Reimage Protector\ReiSystem.exe [7783792] [PID.3040] =>.SUP.ReimageRepair
[MD5.AA57E0013CAF1C1A18763A12E72BF1BF] - (.Dritek System Inc. - Launch Manager utility process.) -- C:\Program Files (x86)\Launch Manager\LMutilps32.exe [473712] [PID.3056] =>.Dritek System Inc.®
[MD5.FC7073C0A792093922ACA5E2B2EB0263] - (.IObit - Performance Monitor.) -- C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe [3024672] [PID.3420] =>.IObit Information Technology®
[MD5.11481570F396AF5D196F16E64DF3AAB8] - (.AO Kaspersky Lab - Kaspersky Anti-Virus.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 18.0.0\avpui.exe [334632] [PID.3532] =>.Kaspersky Lab®
[MD5.CE5CA0F6DFBEB2DA07C5E11209DC6452] - (...) -- C:\Program Files\Saktups\Agixchr.exe [562688] [PID.2936]
[MD5.5C016217426D47D735C8F910AD28F282] - (...) -- C:\Program Files\Saktups\Agixchr64.exe [707072] [PID.1260]
[MD5.1B38F4C2BCDB133B757E22BEB61FB3FC] - (.Dritek System Inc. - Launch Manager.) -- C:\Program Files (x86)\Launch Manager\LManager.exe [1176176] [PID.3720] =>.Dritek System Inc.®
[MD5.7EC4C2F0D5FA6734CB80F11965C85045] - (.Dritek System Inc. - MMDx64Fx Application.) -- C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe [227440] [PID.476] =>.Dritek System Inc.®
[MD5.B5F395B54160209257197B0D57D29424] - (.Corel Corporation - Smart Monitor.) -- C:\Program Files\ReviverSoft\Smart Monitor\ReviverSoftSmartMonitor.exe [2117888] [PID.4200] =>.Corel Corporation®
[MD5.19CA13085C6C4B7E6B2A2005E3AC556D] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\Tallal.maison\AppData\Roaming\ZHP\ZHPDiag3.exe [2931584] [PID.3228] =>.Nicolas Coolman
[MD5.5DB0A0C4B090F7991BE7CB31A0340567] - (.Microleaves Ltd - Online.) -- C:\Program Files\Online-IO\Online.exe [49016] [PID.4824] =>.SUP.Microleaves

---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (1) - 2s
P2 - FPN: [HKLM] [@WildTangent.com/GamesAppPresenceDetector,Version=1.0] - (.WildTangent.) -- C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll =>.WildTangent

---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (15) - 5s
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://%66%65%65%64.%68%65%6c%70%65%72%62%61%72.%63%6f%6d/?p=mko_awfzxipyrystty34mamef947lyuzn5x7qpkdh3gixip_bwn4dxeaka_7joxtywkl9uvct4ebozclmi_-cfkyitszljhoznzrhu5i2ts3kqxx2v-1nhu6a6fza_xpsjp-hpbovoautqtc42qhzaalvuegc-ppvckqbvgd5p11agjxe9xgpn-6_ssl&q={searchterms} =>.SUP.Linkury
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://%66%65%65%64.%68%65%6c%70%65%72%62%61%72.%63%6f%6d/?p=mko_awfzxipyrystty34mamef947lyuzn5x7qpkdh3gixip_bwn4dxeaka_7joxtywkl9uvct4ebozclmi_-cfkyitszljhoznzrhu5i2ts3kqxx2v-1nhu6a6fza_xpsjp-hpbovoautqtc42qhzaalvuegc-ppvckqbvgd5p11agjxe9xgpn-6_ssl&q={searchterms} =>.SUP.Linkury
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://%66%65%65%64.%68%65%6c%70%65%72%62%61%72.%63%6f%6d/?p=mko_awfzxipyrystty34mamef947lyuzn5x7qpkdh3gixip_bwn4dxeaka_7joxtywkl9uvct4ebozclmi_-cfkyitszljhoznzrhu5i2ts3kqxx2v-1nhu6a6fza_xpsjp-hpbovoautqtc42qhzaalvuegc-ppvckqbvgd5p11agjxe9xgpn-6_ssl&q={searchterms} =>.SUP.Linkury
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchUrl,Default = http://%66%65%65%64.%68%65%6c%70%65%72%62%61%72.%63%6f%6d/?p=mko_awfzxipyrystty34mamef947lyuzn5x7qpkdh3gixip_bwn4dxeaka_7joxtywkl9uvct4ebozclmi_-cfkyitszljhoznzrhu5i2ts3kqxx2v-1nhu6a6fza_xpsjp-hpbovoautqtc42qhzaalvuegc-ppvckqbvgd5p11agjxe9xgpn-6_ssl&q={searchterms} =>.SUP.Linkury
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R1 - HKEY_USERS\S-1-5-21-2110472791-2938403961-3750682840-1005\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://%66%65%65%64.%68%65%6c%70%65%72%62%61%72.%63%6f%6d/?p=mko_awfzxipyrystty34mamef947lyuzn5x7qpkdh3gixip_bwn4dxeaka_7joxtywkl9uvct4ebozclmi_-cfkyitszljhoznzrhu5i2ts3kqxx2v-1nhu6a6fza_xpsjp-hpbovoautqtc42qhzaalvuegc-ppvckqbvgd5p11agjxe9xgpn-6_ssl&q={searchterms} =>.SUP.Linkury
R3 - URLSearchHook: (no name)[HKCU] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (11.00.9600.18283 (winblue_ltsb_escrow.160330-1405)) -- C:\Windows\System32\ieframe.dll =>.Microsoft Corporation
R4 - HKLM\Software\WOW6432Node\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1

---\\ Internet Explorer,Proxy Management (5) - 1s
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
R5 - HKLM\SYSTEM\CurrentControlSet\services\NlaSvc\Parameters\Internet\ManualProxies [] =>.Microsoft

---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 5s
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: VMApplet=C:\WINDOWS\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.) =>.Microsoft Corporation

---\\ Etude du fichier hosts (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (31)

---\\ Browser Helper Object de navigateur (BHO) (2) - 14s
O2 - BHO: ScriptInjectionPluginBrowserHelperObject [64Bits] - {0E2877D3-2641-4970-B794-A553E295428D} . (.AO Kaspersky Lab - Kaspersky Protection plugins.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 18.0.0\x64\ieext\ie_plugin.dll =>.Kaspersky Lab®
O2 - BHO: Saktups Helper [64Bits] - {AFFE26BD-0551-4436-85E0-E6C53B1932F2} . (...) -- C:\Program Files\Saktups\Gauckab64.dll

---\\ Raccourcis Global Startup (56) - 299s
O4 - GS\Desktop [Administrateur]: Command Prompt.lnk . (.Microsoft Corporation - Interpréteur de commandes Windows.) C:\WINDOWS\system32\cmd.exe =>.Microsoft Corporation
O4 - GS\Desktop [Administrateur]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Tallal.maison\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\sendTo [Administrateur]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\WINDOWS\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\TaskBar [Administrateur]: Advanced SystemCare 11.lnk . (.IObit - Advanced SystemCare 11.) C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe /manual =>.IObit Information Technology®
O4 - GS\TaskBar [Administrateur]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Programs [Administrateur]: Documents.lnk . (...) C:\Users\Tallal.maison\Documents
O4 - GS\Programs [Administrateur]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Programs [Administrateur]: Pictures.lnk . (...) C:\Users\Tallal.maison\Pictures =>.Microsoft Corporation
O4 - GS\Desktop [Tallal]: Command Prompt.lnk . (.Microsoft Corporation - Interpréteur de commandes Windows.) C:\WINDOWS\system32\cmd.exe =>.Microsoft Corporation
O4 - GS\Desktop [Tallal]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Tallal.maison\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\sendTo [Tallal]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\WINDOWS\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\TaskBar [Tallal]: Advanced SystemCare 11.lnk . (.IObit - Advanced SystemCare 11.) C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe /manual =>.IObit Information Technology®
O4 - GS\TaskBar [Tallal]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Programs [Tallal]: Documents.lnk . (...) C:\Users\Tallal.maison\Documents
O4 - GS\Programs [Tallal]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Programs [Tallal]: Pictures.lnk . (...) C:\Users\Tallal.maison\Pictures =>.Microsoft Corporation
O4 - GS\CommonDesktop [Public]: Acheter en ligne.lnk . (...) C:\Program Files (x86)\Accessory Store\StartUrl.exe http://go.packardbell.com/
O4 - GS\CommonDesktop [Public]: Advanced SystemCare 11.lnk . (.IObit - Advanced SystemCare 11.) C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe /manual =>.IObit Information Technology®
O4 - GS\CommonDesktop [Public]: Driver Reviver.lnk . (.Copyright © 2017 Corel Corporation. All Rights Reserv - Driver Reviver.) C:\Program Files\ReviverSoft\Driver Reviver\DriverReviver.exe =>.Corel Corporation®
O4 - GS\CommonDesktop [Public]: eBay.lnk . (...) c:\WINDOWS\Installer\{A694AF57-9891-4D62-824C-7E55A1361A14}\_5D21023432338C3A124C18.exe
O4 - GS\CommonDesktop [Public]: Help.lnk . (.Dritek System Inc. - Launch Manager.) C:\Program Files (x86)\Launch Manager\LManager.exe --launch-help =>.Dritek System Inc.®
O4 - GS\CommonDesktop [Public]: Kaspersky Free.lnk . (.AO Kaspersky Lab - Kaspersky Anti-Virus.) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 18.0.0\avpui.exe =>.Kaspersky Lab®
O4 - GS\CommonDesktop [Public]: Les Sims 3.lnk . (.Electronic Arts Inc. - Sims3Launcher.) C:\Program Files (x86)\Origin Games\The Sims 3\Game\Bin\Sims3Launcher.exe =>.Electronic Arts®
O4 - GS\CommonDesktop [Public]: MPC Cleaner.lnk . (...) C:\Program Files (x86)\MPC Cleaner\MPC.exe =>.SUP.MPCCleaner
O4 - GS\CommonDesktop [Public]: Norton Internet Security.lnk . (.Symantec Corporation - Norton Protection Center UI Stub.) C:\Program Files (x86)\Norton Internet Security\Engine64\20.6.0.27\uistub.exe =>.Symantec Corporation®
O4 - GS\CommonDesktop [Public]: Nouvelles Hot.lnk . (...) C:\Program Files (x86)\MPC Cleaner\MPCNews.exe =>.SUP.MPCCleaner
O4 - GS\CommonDesktop [Public]: Origin.lnk . (.Electronic Arts - Origin.) C:\Program Files (x86)\Origin\Origin.exe =>.Electronic Arts, Inc.®
O4 - GS\CommonDesktop [Public]: PC Scan & Repair by Reimage.lnk . (.Reimage - Reimage Downloader.) C:\Program Files\Reimage\Reimage Repair\ReimageRepair.exe =>.SUP.ReimageRepair
O4 - GS\CommonDesktop [Public]: WildTangent Games App - packardbell.lnk . (.WildTangent - WildTangent Games App.) C:\Program Files (x86)\WildTangent Games\App\GameConsole-wt.exe /src desktopoem /dp packardbelllt =>.WildTangent Inc®
O4 - GS\Programs [Public]: Documents.lnk . (...) C:\Users\Tallal.maison\Documents
O4 - GS\Programs [Public]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Programs [Public]: Pictures.lnk . (...) C:\Users\Tallal.maison\Pictures =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) C:\WINDOWS\system32\notepad.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Calculator.lnk . (.Microsoft Corporation - Calculatrice de Windows.) C:\WINDOWS\system32\calc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Math Input Panel.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\mip.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.) C:\WINDOWS\system32\mspaint.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Connexion Bureau à distance.) C:\WINDOWS\system32\mstsc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - Outil Capture d’écran.) C:\WINDOWS\system32\SnippingTool.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sound Recorder.lnk . (.Microsoft Corporation - Magnétophone Windows.) C:\WINDOWS\system32\SoundRecorder.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Steps Recorder.lnk . (.Microsoft Corporation - Enregistreur d’actions.) C:\WINDOWS\system32\psr.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sticky Notes.lnk . (.Microsoft Corporation - Pense-bête.) C:\WINDOWS\system32\StikyNot.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Fax and Scan.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\WINDOWS\system32\WFS.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Application Windows Wordpad.) C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: XPS Viewer.lnk . (.Microsoft Corporation - Visionneuse XPS.) C:\WINDOWS\system32\xpsrchvw.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Table des caractères.) C:\WINDOWS\system32\charmap.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Camera.lnk . (.Microsoft Corporation - Camera.) C:\WINDOWS\Camera\Camera.exe =>.Microsoft Windows®
O4 - GS\ProgramsCommon [Public]: FileManager.lnk . (.Microsoft Corporation - OneDrive.) C:\WINDOWS\FileManager\FileManager.exe =>.Microsoft Windows®
O4 - GS\ProgramsCommon [Public]: Immersive Control Panel.lnk . (.Microsoft Corporation - Windows Control Panel.) C:\WINDOWS\System32\Control.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Microsoft Office.lnk . (...) C:\Windows\Installer\{95140000-0070-0000-0000-0000000FF1CE}\oobeicon.exe =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: Packard bell User's Manual.lnk . (...) C:\OEM\Preload\AutoRun\GUI\Packard Bell User's Manual\00\User_Manual.pdf
O4 - GS\ProgramsCommon [Public]: PhotosApp.lnk . (.Microsoft Corporation - Photos.) C:\WINDOWS\FileManager\PhotosApp.exe =>.Microsoft Windows®
O4 - GS\ProgramsCommon [Public]: Search.lnk . (.Microsoft Corporation - Processus hôte Windows (Rundll32).) C:\WINDOWS\system32\rundll32.exe -sta {C90FB8CA-3295-4462-A721-2935E83694BA} =>..Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: WildTangent Games App - packardbell.lnk . (.WildTangent - WildTangent Games App.) C:\Program Files (x86)\WildTangent Games\App\GameConsole-wt.exe /src gamesmenu /dp packardbelllt =>.WildTangent Inc®
O4 - GS\ProgramsCommon [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Windows Store.lnk . (...) C:\WINDOWS\WinStore\WinStore.htm =>.Microsoft Corporation

---\\ Winsock hijacker (Layered Service Provider) (5) - 63s
O10 - WLSP:\Catalog_Entries64\000000000001\Winsock LSP File . (...) -- C:\WINDOWS\system32\zdengine64.dll 
¿ÃÇ“ 
ÀÐŒ

 

ÀÌŸü 36 36 f  °ŽMW!à9J° )Á¿®ÛE    é    
 z d e n g i n e o v e r [ T C P / I P M S A F D [ T C P / I P ] ] 1 0 0 =>Hijacker.Winsock
O10 - WLSP:\Catalog_Entries64\000000000002\Winsock LSP File . (...) -- C:\WINDOWS\system32\zdengine64.dll 
¿ÃÇ“ 
ÀÐŒ

 

ÀÌŸü 36 36   Êb‡ÒUÂI†CŸÃÈ+   ê       ÷ÿ z d e n g i n e o v e r [ T C P / I P M S A F D [ U D P / I P ] ] 1 0 1 =>Hijacker.Winsock
O10 - WLSP:\Catalog_Entries64\000000000003\Winsock LSP File . (...) -- C:\WINDOWS\system32\zdengine64.dll 
¿ÃÇ“ 
ÀÐŒ

 

ÀÌŸü 36 36 f  ÐBNJìI™
@M£ýT   ì    
 z d e n g i n e o v e r [ T C P / I P M S A F D [ T C P / I P v 6 ] ] 0 =>Hijacker.Winsock
O10 - WLSP:\Catalog_Entries64\000000000004\Winsock LSP File . (...) -- C:\WINDOWS\system32\zdengine64.dll 
¿ÃÇ“ 
ÀÐŒ

 

ÀÌŸü 36 36   H@Ä>‹ÆI‘ }„s«^Ó   í       ÷ÿ z d e n g i n e o v e r [ T C P / I P M S A F D [ U D P / I P v 6 ] ] 1 =>Hijacker.Winsock
O10 - WLSP:\Catalog_Entries64\000000000015\Winsock LSP File . (...) -- C:\WINDOWS\system32\zdengine64.dll 
¿ÃÇ“ 
ÀÐŒ

 

ÀÌŸü 36 36 f ¸§C ”‹ÓáÄÇE¤ ½
£úé     z d e n g i n e =>Hijacker.Winsock

---\\ Modification Domaine/Adresses DNS (6) - 1s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpDomain = lan =>.Local Domain
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{2B42DAAE-5588-4979-80AD-C4ED5C21B3CD}: NameServer = 104.197.191.4 =>PUP.Optional.Shopperz
O17 - HKLM\System\CCS\Services\Tcpip\..\{8718928D-CBEB-45EA-A621-800A9249001D}: NameServer = 104.197.191.4 =>PUP.Optional.Shopperz
O17 - HKLM\System\CCS\Services\Tcpip\..\{A5853261-9D69-4262-A0A8-F67254E4F727}: NameServer = 104.197.191.4 =>PUP.Optional.Shopperz
O17 - HKLM\System\CCS\Services\Tcpip\..\{FFB49B4B-B5C0-41F0-B683-AF623235A6EB}: NameServer = 104.197.191.4 =>PUP.Optional.Shopperz

---\\ Protocole additionnel (20) - 20s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll =>.Microsoft Corporation
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation

---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (1) - 2s
O20 - AppInit_DLLs: . (...) - C:\ProgramData\Lamzap\Voyaredstring.dll =>PUP.Optional.Salus

---\\ Logiciels installés (89) - 2387s
O42 - Logiciel: Advanced SystemCare 11 - (.IObit.) [HKLM][64Bits] -- Advanced SystemCare_is1 =>.IObit Information Technology®
O42 - Logiciel: Agatha Christie - Death on the Nile - (.WildTangent.) [HKLM][64Bits] -- WTA-52911271-c6da-4672-88e2-c04623e8df7b =>.WildTangent Inc®
O42 - Logiciel: Aloha TriPeaks - (.WildTangent.) [HKLM][64Bits] -- WTA-75ffe001-6030-4ed9-b3a1-76d3abedab62 =>.WildTangent Inc®
O42 - Logiciel: ALPS Touch Pad Driver - (.Alps Electric.) [HKLM][64Bits] -- {9F72EF8B-AEC9-4CA5-B483-143980AFD6FD} =>.Alps Electric Co., LTD.®
O42 - Logiciel: AMD APP SDK Runtime - (.Advanced Micro Devices Inc..) [HKLM][64Bits] -- {503F672D-6C84-448A-8F8F-4BC35AC83441} =>.Advanced Micro Devices Inc.
O42 - Logiciel: AMD VISION Engine Control Center - (.Advanced Micro Devices Inc.) [HKLM][64Bits] -- {136F0577-FF5A-3978-4535-3F8034697982} =>.Advanced Micro Devices Inc
O42 - Logiciel: AnySend - (.CMI Limited.) [HKLM][64Bits] -- ASPackage =>PUP.Optional.ASPackage
O42 - Logiciel: Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver - (.Atheros Communications Inc..) [HKLM][64Bits] -- {3108C217-BE83-42E4-AE9E-A56A2A92E549} =>.Atheros Communications Inc.
O42 - Logiciel: Bejeweled 3 - (.WildTangent.) [HKLM][64Bits] -- WTA-ca27ab67-b0e6-40f8-aae4-8b4fbdc4adff =>.WildTangent Inc®
O42 - Logiciel: Body Text Feathering - (.Body Text Feathering.) [HKLM][64Bits] -- PopupProduct =>.Body Text Feathering
O42 - Logiciel: Browser-Security - (.Vondos Media GmbH.) [HKLM][64Bits] -- Browser-Security =>.SUP.VondosMedia
O42 - Logiciel: Caster - (.Caster.) [HKLM][64Bits] -- {d35e5e88-e5b8-447f-b6f4-66bc7aa638d1} =>Adware.Kazy
O42 - Logiciel: Catalyst Control Center - (.AMD.) [HKLM][64Bits] -- WUCCCApp =>.AMD
O42 - Logiciel: CyberLink PowerDVD 10 - (.CyberLink Corp..) [HKLM][64Bits] -- {DEC235ED-58A4-4517-A278-C41E8DAEAB3B} =>.CyberLink®
O42 - Logiciel: CyberLink PowerDVD 10 - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B} =>.CyberLink®
O42 - Logiciel: Delicious: Emily's True Love Premium Edition - (.WildTangent.) [HKLM][64Bits] -- WTA-bd956e01-93fe-4bed-bf82-e1a221c350c4 =>.WildTangent Inc®
O42 - Logiciel: Driver Reviver - (.Corel Corporation.) [HKLM][64Bits] -- Driver Reviver =>.Corel Corporation®
O42 - Logiciel: eBay Worldwide - (.OEM.) [HKLM][64Bits] -- {A694AF57-9891-4D62-824C-7E55A1361A14} =>.OEM
O42 - Logiciel: FastCompress-Zip_1.0.2.2_Release - (..) [HKLM][64Bits] -- FastCompress-Zip
O42 - Logiciel: Ghostify - (..) [HKLM][64Bits] -- {E1527582-8509-4011-B922-29E3FB548882}_is1 =>.SUP.CSDI
O42 - Logiciel: Governor of Poker 2 Premium Edition - (.WildTangent.) [HKLM][64Bits] -- WTA-65700aaf-b87f-4d2b-acc0-fb079abf7531 =>.WildTangent Inc®
O42 - Logiciel: groover - (.groover.) [HKLM][64Bits] -- {51C0D04F-0119-4CB5-8B03-7BBB8902AE34} =>PUP.Optional.Groover
O42 - Logiciel: hohosearch - Uninstall - (..) [HKLM][64Bits] -- {94297A64-2A7D-475D-B758-845225766BB0} =>.SUP.HohoSearch
O42 - Logiciel: hohosearch - Uninstall - (..) [HKLM][64Bits] -- {CCC8D7D6-0959-42CC-9048-E5EFABF551E5} =>.SUP.HohoSearch
O42 - Logiciel: hohosearch - Uninstall - (..) [HKLM][64Bits] -- {D1EEE223-8448-49D4-99A3-271AA8ABEAC5} =>.SUP.HohoSearch
O42 - Logiciel: host version 1.1 - (.Wizzlabs.) [HKLM][64Bits] -- host_is1 =>.SUP.Tuto4PC
O42 - Logiciel: Hostify version 1.1 - (.Wizzlabs.) [HKLM][64Bits] -- Hostify_is1 =>.SUP.CSDI
O42 - Logiciel: Identity Card - (.Packard Bell.) [HKLM][64Bits] -- {3D9CB654-99AD-4301-89C6-0D12A790767C} =>.Packard Bell
O42 - Logiciel: Island Tribe - (.WildTangent.) [HKLM][64Bits] -- WTA-fa9d22a5-3e8d-4956-9207-871c4d94f502 =>.WildTangent Inc®
O42 - Logiciel: Jewel Match 3 - (.WildTangent.) [HKLM][64Bits] -- WTA-7df18152-1c2d-4f9b-a5de-ced197bfb56b =>.WildTangent Inc®
O42 - Logiciel: John Deere Drive Green - (.WildTangent.) [HKLM][64Bits] -- WTA-a52db098-90fa-4a23-ba19-655d6990b2c5 =>.WildTangent Inc®
O42 - Logiciel: Kaspersky Free - (.Kaspersky Lab.) [HKLM][64Bits] -- {5AAE61FF-858E-453E-B8F3-944618149975} =>.Kaspersky Lab
O42 - Logiciel: Kaspersky Free - (.Kaspersky Lab.) [HKLM][64Bits] -- InstallWIX_{5AAE61FF-858E-453E-B8F3-944618149975} =>.Kaspersky Lab
O42 - Logiciel: Launch Manager - (.Packard Bell.) [HKLM][64Bits] -- LManager =>.Dritek System Inc.®
O42 - Logiciel: Les Sims™ 3 - (.Electronic Arts Inc..) [HKLM][64Bits] -- {C05D8CDB-417D-4335-A38C-A0659EDFD6B8} =>.Electronic Arts, Inc.®
O42 - Logiciel: Live Updater - (.Packard Bell.) [HKLM][64Bits] -- {EE26E302-876A-48D9-9058-3129E5B99999} =>.Packard Bell
O42 - Logiciel: Magic Academy - (.WildTangent.) [HKLM][64Bits] -- WTA-c0bb9599-d75a-47bf-a422-ea06df065342 =>.WildTangent Inc®
O42 - Logiciel: MEGAsync - (.Mega Limited.) [HKLM][64Bits] -- MEGAsync =>.Mega Limited®
O42 - Logiciel: MPC Cleaner - (.DotC United Inc.) [HKLM][64Bits] -- MPC =>.SUP.MPCCleaner
O42 - Logiciel: MyPC Backup - (.MyPC Backup.) [HKLM][64Bits] -- OLBPre =>PUP.Optional.MyPCBackup
O42 - Logiciel: Nero 12 Essentials OEM.a01 - (.Nero AG.) [HKLM][64Bits] -- {9BF0D9FE-9893-4647-81B9-17B7BEA4E6FD} =>.Nero AG
O42 - Logiciel: Nero BackItUp - (.Nero AG.) [HKLM][64Bits] -- {E70B2F2C-94D1-4287-B5B0-CBBE618E2652} =>.Nero AG
O42 - Logiciel: Nero BackItUp 12 Essentials OEM.a01 - (.Nero AG.) [HKLM][64Bits] -- {B2B0EC73-AD4A-4716-A3DE-CEA8440B309B} =>.Nero AG
O42 - Logiciel: Nero BackItUp Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {EF0D1292-8FC1-41BE-9740-DBC134F66415} =>.Nero AG
O42 - Logiciel: Nero ControlCenter - (.Nero AG.) [HKLM][64Bits] -- {ABC88553-8770-4B97-B43E-5A90647A5B63} =>.Nero AG
O42 - Logiciel: Nero ControlCenter Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {C994C746-C6D0-4EBA-B09E-DF7B18381B69} =>.Nero AG
O42 - Logiciel: Nero Core Components - (.Nero AG.) [HKLM][64Bits] -- {BEBEE34D-84A2-4EDD-8BEA-96CC54371263} =>.Nero AG
O42 - Logiciel: Nero Express - (.Nero AG.) [HKLM][64Bits] -- {848A7C68-0ADC-4193-8A89-2CEA78E56A0C} =>.Nero AG
O42 - Logiciel: Nero Express Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {0708FF30-78C0-47B0-81F0-C84604DC769C} =>.Nero AG
O42 - Logiciel: Nero Launcher - (.Nero AG.) [HKLM][64Bits] -- {0E4630AF-0AB7-440E-A978-1A78FC4F43B9} =>.Nero AG
O42 - Logiciel: Nero RescueAgent - (.Nero AG.) [HKLM][64Bits] -- {A2D43081-CF7B-4637-A9F3-E2651AA5C4A8} =>.Nero AG
O42 - Logiciel: Nero RescueAgent Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {0B311221-05A5-4766-8D03-7A6446794156} =>.Nero AG
O42 - Logiciel: Nero Update - (.Nero AG.) [HKLM][64Bits] -- {65BB0407-4CC8-4DC7-952E-3EEFDF05602A} =>.Nero AG
O42 - Logiciel: Norton Internet Security - (.Symantec Corporation.) [HKLM][64Bits] -- NIS =>.Symantec Corporation®
O42 - Logiciel: Online-IO - (.Microleaves LTD.) [HKLM][64Bits] -- Online-IO =>.SUP.Microleaves
O42 - Logiciel: Origin - (.Electronic Arts, Inc..) [HKLM][64Bits] -- Origin =>.Electronic Arts, Inc.
O42 - Logiciel: OtherSearch - (.Ross Che.) [HKLM][64Bits] -- OtherSearch =>Adware.FastSearch
O42 - Logiciel: Packard Bell Device Fast-lane - (.Packard Bell.) [HKLM][64Bits] -- {3F62D2FD-13C1-49A2-8B5D-47623D9460D7} =>.Packard Bell
O42 - Logiciel: Packard Bell Power Management - (.Packard Bell.) [HKLM][64Bits] -- {91F52DE4-B789-42B0-9311-A349F10E5479} =>.Packard Bell
O42 - Logiciel: Packard Bell Recovery Management - (.Packard Bell.) [HKLM][64Bits] -- {07F2005A-8CAC-4A4B-83A2-DA98A722CA61} =>.Packard Bell
O42 - Logiciel: Penguins! - (.WildTangent.) [HKLM][64Bits] -- WTA-aaf237b6-c578-4503-8d02-b1b0da86bbc1 =>.WildTangent Inc®
O42 - Logiciel: Plants vs. Zombies - Game of the Year - (.WildTangent.) [HKLM][64Bits] -- WTA-4411bfa9-330a-4cf4-8bc2-2536cc4365be =>.WildTangent Inc®
O42 - Logiciel: Polar Bowler - (.WildTangent.) [HKLM][64Bits] -- WTA-d3e0eee3-7881-4498-b89e-f1da8a4b059b =>.WildTangent Inc®
O42 - Logiciel: Prerequisite installer - (.Nero AG.) [HKLM][64Bits] -- {3AAB08A3-F129-4BD5-B409-AE674F93759D} =>.Nero AG
O42 - Logiciel: Qualcomm Atheros WiFi Driver Installation - (.Qualcomm Atheros.) [HKLM][64Bits] -- {28006915-2739-4EBE-B5E8-49B25D32EB33} =>.Qualcomm Atheros
O42 - Logiciel: Realtek PCIE Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {C1594429-8296-4652-BF54-9DBE4932A44C} =>.Realtek Semiconductor Corp®
O42 - Logiciel: Registry Reviver - (.ReviverSoft LLC.) [HKLM][64Bits] -- Registry Reviver =>PUP.Optional.RegistryReviver
O42 - Logiciel: Reimage Repair - (.Reimage.) [HKLM][64Bits] -- Reimage Repair =>.SUP.ReimageRepair
O42 - Logiciel: SafeFinder - (.Linkury.) [HKLM][64Bits] -- {A041BEB1-E81B-41EE-A6F0-BAC06B40A923} =>PUP.Optional.SmartBar
O42 - Logiciel: Search module - (.Goobzo.) [HKLM][64Bits] -- Search module =>.SUP.Goobzo
O42 - Logiciel: Search Protect - (.Client Connect LTD.) [HKLM][64Bits] -- SearchProtect =>PUP.Optional.SearchProtect
O42 - Logiciel: Setup - (..) [HKLM][64Bits] -- {7ADF667E-E14D-4D2C-827C-B0108F0D93BC} =>PUP.Optional.DesktopPlay
O42 - Logiciel: Setup - (..) [HKLM][64Bits] -- {7ADF667E-E14D-4D2C-827C-B0108F0D93BC}
O42 - Logiciel: Social2Search - (..) [HKLM][64Bits] -- a783aee2485530a3418fd545c844010e =>PUP.Optional.Wajam
O42 - Logiciel: Sound+ - (..) [HKLM][64Bits] -- SoundPlus =>Adware.Kazy
O42 - Logiciel: SunnyDay - (.SUNNYDAY.) [HKLM][64Bits] -- SunnyDay21_is1 =>Adware.SunnyDay
O42 - Logiciel: sunnyday version 1.1 - (.sunnyday.) [HKLM][64Bits] -- sunnyday_is1 =>Adware.SunnyDay
O42 - Logiciel: Tales of Lagoona - (.WildTangent.) [HKLM][64Bits] -- WTA-d53f444d-9371-4cfa-9aff-13f42eaaf53b =>.WildTangent Inc®
O42 - Logiciel: trotux - Uninstall - (..) [HKLM][64Bits] -- {5E38F39F-7FAE-4F74-863E-62F235E98427} =>.SUP.Trotux
O42 - Logiciel: trotux - Uninstall - (..) [HKLM][64Bits] -- {F833CCF0-4AD3-4FC8-8D19-03676FF9B2E7} =>.SUP.Trotux
O42 - Logiciel: UltimateSpeedTester - Ultimate Speed Tester for Desktop - (.UltimateSpeedTester.) [HKLM][64Bits] -- UltimateSpeedTester
O42 - Logiciel: Update Installer for WildTangent Games App - (.WildTangent.) [HKLM][64Bits] -- {2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App =>.WildTangent Inc®
O42 - Logiciel: WildTangent Games - (.WildTangent.) [HKLM][64Bits] -- WildTangent wildgames Master Uninstall =>.WildTangent Inc
O42 - Logiciel: WildTangent Games App - (.WildTangent.) [HKLM][64Bits] -- {70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-packardbell =>.WildTangent Inc®
O42 - Logiciel: WIN - (..) [HKLM][64Bits] -- win_en_77_is1 =>.SUP.CSDI
O42 - Logiciel: Windows 10 S Installer - (.Microsoft Corporation.) [HKLM][64Bits] -- {37DD8327-DFAE-4498-90DF-E0AC5D44F67E} =>.Microsoft Corporation
O42 - Logiciel: WinZip - (.Winzipper Pvt Ltd..) [HKLM][64Bits] -- WinZip =>.SUP.TaiwanShuiMu
O42 - Logiciel: WinZip Malware Protector - (.WinZip International LLC.) [HKLM][64Bits] -- WinZip Malware Protector_is1 =>.WinZip International LLC
O42 - Logiciel: Zuma's Revenge - (.WildTangent.) [HKLM][64Bits] -- WTA-6660abc3-bb5d-486b-bdd8-c1aeb355b6bb =>.WildTangent Inc®

---\\ HKCU & HKLM Software Keys (75) - 2387s
HKLM\SOFTWARE\Wow6432Node\5da059a482fd494db3f252126fbc3d5b =>Adware.CrossRider
HKLM\SOFTWARE\Wow6432Node\5E1ACF5FA33ECF8AA4BF779E530D8607 =>Adware.CrossRider
HKLM\SOFTWARE\Wow6432Node\AMD =>.AMD
HKLM\SOFTWARE\Wow6432Node\ATHEROS =>.Qualcomm Atheros
HKLM\SOFTWARE\Wow6432Node\Atheros Communications Inc. =>.Qualcomm Atheros
HKLM\SOFTWARE\Wow6432Node\ATI =>.ATI
HKLM\SOFTWARE\Wow6432Node\ATI Technologies =>.ATI Technologies
HKLM\SOFTWARE\Wow6432Node\AVAST Software =>.AVAST Software
HKLM\SOFTWARE\Wow6432Node\Boxore =>PUP.Optional.Boxore
HKLM\SOFTWARE\Wow6432Node\como
HKLM\SOFTWARE\Wow6432Node\CyberLink =>.CyberLink Corporation
HKLM\SOFTWARE\Wow6432Node\dbmkdb
HKLM\SOFTWARE\Wow6432Node\Dritek =>.Dritek
HKLM\SOFTWARE\Wow6432Node\Electronic Arts =>.Electronic Arts
HKLM\SOFTWARE\Wow6432Node\FastCompress-Zip =>.Adlegend Media
HKLM\SOFTWARE\Wow6432Node\Google =>.Google
HKLM\SOFTWARE\Wow6432Node\GTFPOQUOTT Updater
HKLM\SOFTWARE\Wow6432Node\hdcode =>.Legitimate
HKLM\SOFTWARE\Wow6432Node\Intel =>.Intel
HKLM\SOFTWARE\Wow6432Node\IObit =>.IObit
HKLM\SOFTWARE\Wow6432Node\jhdbca
HKLM\SOFTWARE\Wow6432Node\KasperskyLab =>.Kaspersky Labs
HKLM\SOFTWARE\Wow6432Node\Khronos =>.Khronos
HKLM\SOFTWARE\Wow6432Node\Lake =>.Lake Sofware
HKLM\SOFTWARE\Wow6432Node\Macromedia =>.Macromedia
HKLM\SOFTWARE\Wow6432Node\Mozilla =>.Mozilla
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins =>.MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\MPC
HKLM\SOFTWARE\Wow6432Node\MPC AdCleaner =>.SUP.MPCCleaner
HKLM\SOFTWARE\Wow6432Node\MPC Desktop =>.SUP.MPCCleaner
HKLM\SOFTWARE\Wow6432Node\mtApService =>PUP.Optional.Salus
HKLM\SOFTWARE\Wow6432Node\Nero =>.Ahead Corporation
HKLM\SOFTWARE\Wow6432Node\Nico Mak Computing =>.Nico Mak Computing
HKLM\SOFTWARE\Wow6432Node\Norton =>.Symantec Corporation
HKLM\SOFTWARE\Wow6432Node\ODBC =>.DB Connectivity Solutions
HKLM\SOFTWARE\Wow6432Node\OEM =>.OEM
HKLM\SOFTWARE\Wow6432Node\Origin =>.Electronic Arts, Inc.
HKLM\SOFTWARE\Wow6432Node\Origin Games =>.Electronic Arts, Inc.
HKLM\SOFTWARE\Wow6432Node\OtherSearch =>Adware.FastSearch
HKLM\SOFTWARE\Wow6432Node\Qualcomm Atheros WiFi Driver Installation =>.Qualcomm Atheros
HKLM\SOFTWARE\Wow6432Node\QuickSearch =>Adware.FastSearch
HKLM\SOFTWARE\Wow6432Node\Realtek Semiconductor Corp. =>.Realtek Semiconductor Corp.
HKLM\SOFTWARE\Wow6432Node\Saktups
HKLM\SOFTWARE\Wow6432Node\SearchModule =>Adware.SearchModule
HKLM\SOFTWARE\Wow6432Node\SearchProtect =>PUP.Optional.SearchProtect
HKLM\SOFTWARE\Wow6432Node\Sims =>.Electronic Arts, Inc.
HKLM\SOFTWARE\Wow6432Node\Social2Sea =>PUP.Optional.Wajam
HKLM\SOFTWARE\Wow6432Node\SPPDCOM =>.SUP.PCSpeedUp
HKLM\SOFTWARE\Wow6432Node\SUNNYDAY =>Adware.SunnyDay
HKLM\SOFTWARE\Wow6432Node\Symantec =>.Symantec
HKLM\SOFTWARE\Wow6432Node\Tutorials =>PUP.Optional.AgenceExclusive
HKLM\SOFTWARE\Wow6432Node\WildTangent =>.WildTangent
HKLM\SOFTWARE\Wow6432Node\WIN =>.Unknown
HKLM\SOFTWARE\Wow6432Node\WinZiper =>.SUP.WinZipper
HKLM\SOFTWARE\Wow6432Node\Wow6432Node =>.Microsoft Corporation
HKLM\SOFTWARE\Wow6432Node\zdengine =>Adware.FastSearch
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications =>.Microsoft Corporation
HKCU\SOFTWARE\Alps =>.ALPS
HKCU\SOFTWARE\AppDataLow =>.Microsoft Corporation
HKCU\SOFTWARE\ATI =>.ATI
HKCU\SOFTWARE\Dritek =>.Dritek
HKCU\SOFTWARE\FastCompress-Zip =>.Adlegend Media
HKCU\SOFTWARE\KasperskyLab =>.Kaspersky Labs
HKCU\SOFTWARE\KasperskyLabSetup =>.Kaspersky Labs
HKCU\SOFTWARE\Licenses =>.Microsoft Corporation
HKCU\SOFTWARE\Macromedia =>.Macromedia
HKCU\SOFTWARE\Mine =>.Microsoft Corporation
HKCU\SOFTWARE\Nico Mak Computing =>.Nico Mak Computing
HKCU\SOFTWARE\Norton =>.Symantec Corporation
HKCU\SOFTWARE\OEM =>.OEM
HKCU\SOFTWARE\RegisteredApplications =>.Microsoft Corporation
HKCU\SOFTWARE\Tutorials =>PUP.Optional.AgenceExclusive
HKCU\SOFTWARE\Wow6432Node =>.Microsoft Corporation
HKCU\SOFTWARE\ZHP =>.Nicolas Coolman
HKCU\SOFTWARE\AppDataLow\Software =>.Microsoft Corporation

---\\ Contenu des dossiers Programmes (290) - 2859s
O43 - CFD: 27/04/2017 - [] D -- C:\Program Files\0YP672YFZN =>Adware.Wizzcaster
O43 - CFD: 27/04/2017 - [] D -- C:\Program Files\1H8HMG8QRP =>Adware.Wizzcaster
O43 - CFD: 27/04/2017 - [] D -- C:\Program Files\2LX8PHV1NN =>Adware.Wizzcaster
O43 - CFD: 31/07/2016 - [] D -- C:\Program Files\5I0QYNLMIN =>Adware.Wizzcaster
O43 - CFD: 27/04/2017 - [] D -- C:\Program Files\A66GIZQN1S =>Adware.Wizzcaster
O43 - CFD: 07/07/2016 - [] D -- C:\Program Files\a783aee2485530a3418fd545c844010e
O43 - CFD: 18/11/2015 - [] D -- C:\Program Files\Accessory Store =>.Acer Incorporated®
O43 - CFD: 27/04/2017 - [] D -- C:\Program Files\AKCCR4LD0U =>Adware.Wizzcaster
O43 - CFD: 21/11/2014 - [] D -- C:\Program Files\AMD =>.AMD
O43 - CFD: 21/11/2014 - [] D -- C:\Program Files\Apoint2K =>.Alps Electric Co., LTD.®
O43 - CFD: 16/09/2012 - [] D -- C:\Program Files\ATI =>.Advanced Micro Devices, Inc.®
O43 - CFD: 21/11/2014 - [] D -- C:\Program Files\ATI Technologies =>.ATI Technologies
O43 - CFD: 27/04/2017 - [] D -- C:\Program Files\B4VWW24J7Y =>Adware.Wizzcaster
O43 - CFD: 07/07/2016 - [] D -- C:\Program Files\Caster
O43 - CFD: 23/11/2017 - [] D -- C:\Program Files\Common Files =>.Microsoft Corporation
O43 - CFD: 21/11/2014 - [] D -- C:\Program Files\CONEXANT =>.Conexant Systems, Inc.®
O43 - CFD: 27/04/2017 - [] D -- C:\Program Files\CTSX8MV17N =>Adware.Wizzcaster
O43 - CFD: 27/04/2017 - [] D -- C:\Program Files\EVF6CL43ZN =>Adware.Wizzcaster
O43 - CFD: 10/07/2016 - [] D -- C:\Program Files\Fhci
O43 - CFD: 30/09/2015 - [0] SHD -- C:\Program Files\Fichiers communs =>.Microsoft Corporation
O43 - CFD: 27/04/2017 - [] D -- C:\Program Files\H72BCD51QF =>Adware.Wizzcaster
O43 - CFD: 27/04/2017 - [] D -- C:\Program Files\HHOJ71RHEA =>Adware.Wizzcaster
O43 - CFD: 27/06/2016 - [] D -- C:\Program Files\Internet Explorer =>.Microsoft Corporation
O43 - CFD: 27/04/2017 - [] D -- C:\Program Files\J2SYSWI1I1 =>Adware.Wizzcaster
O43 - CFD: 18/11/2017 - [] D -- C:\Program Files\KR5YRQMSWO =>Adware.Wizzcaster
O43 - CFD: 27/04/2017 - [] D -- C:\Program Files\KTBO7TSF63 =>Adware.Wizzcaster
O43 - CFD: 27/04/2017 - [] D -- C:\Program Files\KTWYA5YSC4 =>Adware.Wizzcaster
O43 - CFD: 29/10/2014 - [] D -- C:\Program Files\MSBuild =>.Microsoft Corporation
O43 - CFD: 27/04/2017 - [] D -- C:\Program Files\N37CFX1YJR =>Adware.Wizzcaster
O43 - CFD: 18/11/2017 - [] D -- C:\Program Files\N37TP6GCHG =>Adware.Wizzcaster
O43 - CFD: 27/04/2017 - [] D -- C:\Program Files\N8OB4S54CS =>Adware.Wizzcaster
O43 - CFD: 27/04/2017 - [] D -- C:\Program Files\OLC574N08Q =>Adware.Wizzcaster
O43 - CFD: 31/07/2016 - [] D -- C:\Program Files\Online-IO =>.SUP.Microleaves
O43 - CFD: 27/04/2017 - [] D -- C:\Program Files\OW58QRWS6L =>Adware.Wizzcaster
O43 - CFD: 16/09/2012 - [] D -- C:\Program Files\Packard Bell =>.Packard Bell
O43 - CFD: 27/04/2017 - [] D -- C:\Program Files\PMOY5O65UN =>Adware.Wizzcaster
O43 - CFD: 27/04/2017 - [] D -- C:\Program Files\POBR0SSINI =>Adware.Wizzcaster
O43 - CFD: 31/07/2016 - [] D -- C:\Program Files\PVYC1DGQX0 =>Adware.Wizzcaster
O43 - CFD: 29/10/2014 - [] D -- C:\Program Files\Reference Assemblies =>.Microsoft Corporation
O43 - CFD: 18/07/2016 - [] D -- C:\Program Files\Reimage =>.SUP.ReimageRepair
O43 - CFD: 31/07/2016 - [] D -- C:\Program Files\ReviverSoft =>.Corel Corporation®
O43 - CFD: 18/11/2017 - [] D -- C:\Program Files\RUTLQUICR4 =>Adware.Wizzcaster
O43 - CFD: 27/04/2017 - [] D -- C:\Program Files\RZQS330QFF =>Adware.Wizzcaster
O43 - CFD: 24/11/2017 - [] D -- C:\Program Files\Saktups
O43 - CFD: 10/07/2016 - [] D -- C:\Program Files\SaktupsUn
O43 - CFD: 07/07/2016 - [] D -- C:\Program Files\Sound+ =>Adware.Kazy
O43 - CFD: 27/04/2017 - [] D -- C:\Program Files\SXCX91UFCG =>Adware.Wizzcaster
O43 - CFD: 04/09/2012 - [0] D -- C:\Program Files\Symantec =>.Symantec
O43 - CFD: 27/04/2017 - [] D -- C:\Program Files\T4IX7Z9Z2E =>Adware.Wizzcaster
O43 - CFD: 31/07/2016 - [] D -- C:\Program Files\T8TXRKGM0L =>Adware.Wizzcaster
O43 - CFD: 27/04/2017 - [] D -- C:\Program Files\TDAP7B843A =>Adware.Wizzcaster
O43 - CFD: 18/11/2017 - [] D -- C:\Program Files\U7VFP9CWCW =>Adware.Wizzcaster
O43 - CFD: 26/07/2012 - [0] HD -- C:\Program Files\Uninstall Information =>.Microsoft Corporation
O43 - CFD: 31/07/2016 - [] D -- C:\Program Files\V9MOKBMXJE =>Adware.Wizzcaster
O43 - CFD: 27/04/2017 - [] D -- C:\Program Files\VBCX3V1O67 =>Adware.Wizzcaster
O43 - CFD: 27/04/2017 - [] D -- C:\Program Files\VJK1VZBE18 =>Adware.Wizzcaster
O43 - CFD: 14/05/2016 - [] D -- C:\Program Files\Windows Defender =>.Microsoft Corporation
O43 - CFD: 14/05/2016 - [] D -- C:\Program Files\Windows Journal =>.Microsoft Corporation
O43 - CFD: 21/11/2014 - [] D -- C:\Program Files\Windows Mail =>.Microsoft Corporation
O43 - CFD: 21/11/2014 - [] D -- C:\Program Files\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 21/11/2014 - [] D -- C:\Program Files\Windows Multimedia Platform =>.Microsoft Corporation
O43 - CFD: 21/11/2014 - [] D -- C:\Program Files\Windows NT =>.Microsoft Corporation
O43 - CFD: 21/11/2014 - [] D -- C:\Program Files\Windows Photo Viewer =>.Microsoft Corporation
O43 - CFD: 21/11/2014 - [] D -- C:\Program Files\Windows Portable Devices =>.Microsoft Corporation
O43 - CFD: 21/11/2014 - [] SHD -- C:\Program Files\Windows Sidebar =>.Microsoft Corporation
O43 - CFD: 01/07/2016 - [] HD -- C:\Program Files\WindowsApps =>.Microsoft Corporation
O43 - CFD: 21/11/2014 - [] D -- C:\Program Files\WindowsPowerShell =>.Microsoft Corporation
O43 - CFD: 27/04/2017 - [] D -- C:\Program Files\XI2DI44TB0 =>Adware.Wizzcaster
O43 - CFD: 27/04/2017 - [] D -- C:\Program Files\XIH3FSYG5Z =>Adware.Wizzcaster
O43 - CFD: 27/04/2017 - [] D -- C:\Program Files\YIVQHX4WHX =>Adware.Wizzcaster
O43 - CFD: 18/07/2016 - [0] D -- C:\Program Files (x86)\1yt8pr1c =>.SUP.Empty
O43 - CFD: 18/07/2016 - [0] D -- C:\Program Files (x86)\50po7r3o =>.SUP.Empty
O43 - CFD: 18/11/2017 - [] D -- C:\Program Files (x86)\73mQ61VhkR
O43 - CFD: 18/07/2016 - [0] D -- C:\Program Files (x86)\7yzxxic6 =>.SUP.Empty
O43 - CFD: 16/09/2012 - [] D -- C:\Program Files (x86)\AMD APP =>.Advanced Micro Devices Inc
O43 - CFD: 16/09/2012 - [] D -- C:\Program Files (x86)\AMD AVT =>.Advanced Micro Devices Inc
O43 - CFD: 08/07/2016 - [] D -- C:\Program Files (x86)\Atapotainclemege
O43 - CFD: 21/11/2014 - [] D -- C:\Program Files (x86)\ATI Technologies =>.ATI Technologies
O43 - CFD: 08/07/2016 - [] D -- C:\Program Files (x86)\Chociph
O43 - CFD: 18/07/2016 - [] D -- C:\Program Files (x86)\CleanBrowser =>Adware.CleanBrowser
O43 - CFD: 23/11/2017 - [] D -- C:\Program Files (x86)\Common Files =>.Microsoft Corporation
O43 - CFD: 16/09/2012 - [] D -- C:\Program Files (x86)\CyberLink =>.CyberLink Corporation
O43 - CFD: 18/07/2016 - [0] D -- C:\Program Files (x86)\d1ievt0m =>.SUP.Empty
O43 - CFD: 24/11/2017 - [] D -- C:\Program Files (x86)\EA344200-1467923023-815C-3797-4C72B9ADBCFB =>Adware.CrossRider
O43 - CFD: 08/07/2016 - [] D -- C:\Program Files (x86)\FastCompress-Zip =>.Adlegend Limited®
O43 - CFD: 07/07/2016 - [] D -- C:\Program Files (x86)\FastWeb =>.SUP.FastWeb
O43 - CFD: 24/11/2017 - [] D -- C:\Program Files (x86)\Ghototionhesush =>.SUP.Tencent
O43 - CFD: 27/04/2017 - [0] D -- C:\Program Files (x86)\Gigsedcck
O43 - CFD: 18/07/2016 - [] D -- C:\Program Files (x86)\Golyclufge
O43 - CFD: 18/07/2016 - [0] D -- C:\Program Files (x86)\Golyclufge_
O43 - CFD: 08/07/2016 - [] D -- C:\Program Files (x86)\GreatMaker =>.深圳市猫哈网络科技发展有限公司®
O43 - CFD: 10/07/2016 - [] D -- C:\Program Files (x86)\GTFPOQUOTT
O43 - CFD: 24/11/2017 - [] D -- C:\Program Files (x86)\host
O43 - CFD: 09/07/2016 - [] D -- C:\Program Files (x86)\Hostify =>.SUP.CSDI
O43 - CFD: 09/07/2016 - [] D -- C:\Program Files (x86)\hot
O43 - CFD: 16/09/2012 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information =>.InstallShield
O43 - CFD: 27/06/2016 - [] D -- C:\Program Files (x86)\Internet Explorer =>.Microsoft Corporation
O43 - CFD: 23/11/2017 - [] D -- C:\Program Files (x86)\IObit =>.IObit
O43 - CFD: 23/11/2017 - [] D -- C:\Program Files (x86)\Kaspersky Lab =>.Kaspersky Lab
O43 - CFD: 16/09/2012 - [] D -- C:\Program Files (x86)\Launch Manager =>.Legitimate
O43 - CFD: 16/09/2012 - [] D -- C:\Program Files (x86)\Microsoft Office =>.Microsoft Corporation
O43 - CFD: 22/08/2013 - [] D -- C:\Program Files (x86)\Microsoft.NET =>.Microsoft Corporation
O43 - CFD: 24/11/2017 - [] D -- C:\Program Files (x86)\MPC Cleaner =>.SUP.MPCCleaner
O43 - CFD: 29/10/2014 - [] D -- C:\Program Files (x86)\MSBuild =>.Microsoft Corporation
O43 - CFD: 04/09/2012 - [] D -- C:\Program Files (x86)\Nero =>.Ahead Corporation
O43 - CFD: 04/09/2012 - [] D -- C:\Program Files (x86)\Norton Internet Security =>.Symantec
O43 - CFD: 22/11/2017 - [] D -- C:\Program Files (x86)\NortonInstaller =>.Symantec
O43 - CFD: 18/11/2015 - [] D -- C:\Program Files (x86)\OEM =>.OEM
O43 - CFD: 31/07/2016 - [] D -- C:\Program Files (x86)\OLBPre =>PUP.Optional.MyPCBackup
O43 - CFD: 21/05/2016 - [] D -- C:\Program Files (x86)\Origin =>.Electronic Arts, Inc.
O43 - CFD: 07/02/2016 - [] D -- C:\Program Files (x86)\Origin Games =>.Electronic Arts, Inc.
O43 - CFD: 04/09/2012 - [] D -- C:\Program Files (x86)\Packard Bell =>.Packard Bell
O43 - CFD: 08/07/2016 - [] D -- C:\Program Files (x86)\Petckjahaght
O43 - CFD: 08/07/2016 - [] D -- C:\Program Files (x86)\Pramase
O43 - CFD: 16/09/2012 - [] D -- C:\Program Files (x86)\Qualcomm Atheros =>.Qualcomm Atheros
O43 - CFD: 26/11/2017 - [] D -- C:\Program Files (x86)\QuickSearch =>Adware.FastSearch
O43 - CFD: 16/09/2012 - [] D -- C:\Program Files (x86)\Realtek =>.Realtek
O43 - CFD: 29/10/2014 - [] D -- C:\Program Files (x86)\Reference Assemblies =>.Microsoft Corporation
O43 - CFD: 23/11/2017 - [] D -- C:\Program Files (x86)\SearchProtect =>PUP.Optional.SearchProtect
O43 - CFD: 08/07/2016 - [0] D -- C:\Program Files (x86)\Shepickrisok
O43 - CFD: 07/07/2016 - [] D -- C:\Program Files (x86)\Shepickrisok_
O43 - CFD: 31/07/2016 - [] D -- C:\Program Files (x86)\sunnyday =>Adware.SunnyDay
O43 - CFD: 18/07/2016 - [] D -- C:\Program Files (x86)\SunnyDay21 =>Adware.SunnyDay
O43 - CFD: 04/09/2012 - [] D -- C:\Program Files (x86)\SymSilent =>.Symantec Corporation®
O43 - CFD: 18/07/2016 - [] D -- C:\Program Files (x86)\TData
O43 - CFD: 04/09/2012 - [] D -- C:\Program Files (x86)\WildGames =>.WildGames
O43 - CFD: 04/09/2012 - [] D -- C:\Program Files (x86)\WildTangent Games =>.WildTangent Games
O43 - CFD: 14/05/2016 - [] D -- C:\Program Files (x86)\Windows Defender =>.Microsoft Corporation
O43 - CFD: 21/11/2014 - [] D -- C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation
O43 - CFD: 21/11/2014 - [] D -- C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 21/11/2014 - [] D -- C:\Program Files (x86)\Windows Multimedia Platform =>.Microsoft Corporation
O43 - CFD: 22/08/2013 - [] D -- C:\Program Files (x86)\Windows NT =>.Microsoft Corporation
O43 - CFD: 21/11/2014 - [] D -- C:\Program Files (x86)\Windows Photo Viewer =>.Microsoft Corporation
O43 - CFD: 21/11/2014 - [] D -- C:\Program Files (x86)\Windows Portable Devices =>.Microsoft Corporation
O43 - CFD: 21/11/2014 - [] SHD -- C:\Program Files (x86)\Windows Sidebar =>.Microsoft Corporation
O43 - CFD: 22/08/2013 - [] D -- C:\Program Files (x86)\WindowsPowerShell =>.Microsoft Corporation
O43 - CFD: 23/11/2017 - [] D -- C:\Program Files (x86)\WinZip Malware Protector =>.WinZip Computing LLC®
O43 - CFD: 23/11/2017 - [] D -- C:\Program Files (x86)\WinZipper =>.SUP.TaiwanShuiMu
O43 - CFD: 10/07/2016 - [] D -- C:\Program Files (x86)\win_en_77 =>.SUP.CSDI
O43 - CFD: 27/04/2017 - [] D -- C:\Program Files (x86)\XpMLPq0OHH
O43 - CFD: 26/11/2017 - [] D -- C:\Program Files (x86)\yytPKyv5VF
O43 - CFD: 07/07/2016 - [] D -- C:\Program Files (x86)\zebi
O43 - CFD: 18/07/2016 - [0] D -- C:\Program Files (x86)\zww0k1oy =>.SUP.Empty
O43 - CFD: 21/11/2014 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility =>.Microsoft Corporation
O43 - CFD: 28/06/2016 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories =>.Microsoft Corporation
O43 - CFD: 27/06/2016 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools
O43 - CFD: 23/11/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare =>.IObit
O43 - CFD: 21/11/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center =>.Advanced Micro Devices Inc
O43 - CFD: 21/11/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD VISION Engine Control Center =>.Advanced Micro Devices Inc
O43 - CFD: 21/11/2014 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD 10 =>.CyberLink Corporation
O43 - CFD: 08/07/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FastCompress-Zip
O43 - CFD: 21/11/2014 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games =>.Microsoft Corporation
O43 - CFD: 23/11/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Free =>.Kaspersky Labs
O43 - CFD: 28/06/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Les Sims 3 =>.Electronic Arts, Inc.
O43 - CFD: 22/08/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance =>.Microsoft Corporation
O43 - CFD: 23/11/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MPC
O43 - CFD: 25/11/2017 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MPC AdCleaner =>.SUP.MPCCleaner
O43 - CFD: 25/11/2017 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MPC Desktop
O43 - CFD: 21/11/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero =>.Ahead Corporation
O43 - CFD: 21/11/2014 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Internet Security =>.Symantec
O43 - CFD: 21/11/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin =>.Electronic Arts, Inc.
O43 - CFD: 21/11/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Packard Bell =>.Packard Bell
O43 - CFD: 18/07/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Reimage Repair =>.SUP.ReimageRepair
O43 - CFD: 27/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ReviverSoft =>.ReviverSoft
O43 - CFD: 22/08/2013 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp =>.Microsoft Corporation
O43 - CFD: 21/11/2014 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools =>.Microsoft Corporation
O43 - CFD: 20/11/2014 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC =>.Wacom Technology
O43 - CFD: 25/11/2017 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip =>.WinZip
O43 - CFD: 25/11/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip Malware Protector
O43 - CFD: 18/07/2016 - [] D -- C:\ProgramData\6winp6
O43 - CFD: 21/11/2014 - [] D -- C:\ProgramData\AMD =>.AMD
O43 - CFD: 22/08/2013 - [0] SHD -- C:\ProgramData\Application Data =>.Microsoft Corporation
O43 - CFD: 21/11/2014 - [] D -- C:\ProgramData\ATI =>.ATI
O43 - CFD: 25/11/2017 - [] D -- C:\ProgramData\AVAST Software =>.AVAST Software
O43 - CFD: 18/11/2017 - [0] D -- C:\ProgramData\b5c2bb2f-18f3-0 =>.SUP.Polluteware
O43 - CFD: 18/11/2017 - [0] D -- C:\ProgramData\b5c2bb2f-1e55-1 =>.SUP.Polluteware
O43 - CFD: 18/11/2017 - [0] D -- C:\ProgramData\b5c2bb2f-2ae7-0 =>.SUP.Polluteware
O43 - CFD: 18/11/2017 - [0] D -- C:\ProgramData\b5c2bb2f-4471-1 =>.SUP.Polluteware
O43 - CFD: 07/07/2016 - [] D -- C:\ProgramData\Boxore =>PUP.Optional.Boxore
O43 - CFD: 30/09/2015 - [0] SHD -- C:\ProgramData\Bureau =>.Microsoft Corporation
O43 - CFD: 18/07/2016 - [] D -- C:\ProgramData\ChelfNotify =>.SUP.Tencent
O43 - CFD: 18/11/2017 - [] D -- C:\ProgramData\CloudPrinter =>.SUP.Linkury
O43 - CFD: 16/09/2012 - [] D -- C:\ProgramData\CLSK =>.CLSK
O43 - CFD: 22/08/2013 - [0] SHD -- C:\ProgramData\Desktop =>.Microsoft Corporation
O43 - CFD: 22/08/2013 - [0] SHD -- C:\ProgramData\Documents =>.Microsoft Corporation
O43 - CFD: 29/06/2016 - [] D -- C:\ProgramData\Electronic Arts =>.Electronic Arts
O43 - CFD: 18/07/2016 - [] D -- C:\ProgramData\EwinpE
O43 - CFD: 23/11/2017 - [] D -- C:\ProgramData\IObit =>.IObit
O43 - CFD: 26/11/2017 - [] D -- C:\ProgramData\Kaspersky Lab =>.Kaspersky Lab
O43 - CFD: 23/11/2017 - [] D -- C:\ProgramData\Kaspersky Lab Setup Files =>.Kaspersky Lab
O43 - CFD: 24/11/2017 - [] D -- C:\ProgramData\Lamzap =>PUP.Optional.Salus
O43 - CFD: 08/07/2016 - [] D -- C:\ProgramData\Logic Handler =>PUP.Optional.LogicHandler
O43 - CFD: 30/09/2015 - [0] SHD -- C:\ProgramData\Menu Démarrer =>.Microsoft Corporation
O43 - CFD: 21/11/2014 - [] SD -- C:\ProgramData\Microsoft =>.Microsoft Corporation
O43 - CFD: 30/09/2015 - [0] SHD -- C:\ProgramData\Modèles =>.Microsoft Corporation
O43 - CFD: 04/09/2012 - [] D -- C:\ProgramData\Nero =>.Ahead Corporation
O43 - CFD: 10/07/2016 - [] D -- C:\ProgramData\Nico Mak Computing =>.Nico Mak Computing
O43 - CFD: 07/07/2016 - [] D -- C:\ProgramData\Nimfind =>PUP.Optional.Salus
O43 - CFD: 12/12/2015 - [] D -- C:\ProgramData\Norton =>.Symantec Corporation
O43 - CFD: 22/11/2017 - [] D -- C:\ProgramData\NortonInstaller =>.Symantec
O43 - CFD: 18/11/2015 - [] D -- C:\ProgramData\OEM =>.OEM
O43 - CFD: 18/11/2017 - [] D -- C:\ProgramData\Origin =>.Electronic Arts, Inc.
O43 - CFD: 07/02/2016 - [] D -- C:\ProgramData\Package Cache =>.Microsoft Corporation
O43 - CFD: 04/09/2012 - [] D -- C:\ProgramData\Packard Bell =>.Packard Bell
O43 - CFD: 21/11/2014 - [] D -- C:\ProgramData\PRICache =>.Microsoft Corporation
O43 - CFD: 23/11/2017 - [] D -- C:\ProgramData\ProductData =>.Microsoft Corporation
O43 - CFD: 16/09/2012 - [] D -- C:\ProgramData\Qualcomm Atheros =>.Qualcomm Atheros
O43 - CFD: 21/11/2014 - [] D -- C:\ProgramData\regid.1991-06.com.microsoft =>.Microsoft Corporation
O43 - CFD: 22/11/2017 - [] D -- C:\ProgramData\Reimage Protector =>.SUP.ReimageRepair
O43 - CFD: 27/04/2017 - [] D -- C:\ProgramData\ReviverSoft =>.ReviverSoft
O43 - CFD: 07/07/2016 - [] D -- C:\ProgramData\SearchModule =>Adware.InstallCore
O43 - CFD: 22/08/2013 - [0] SHD -- C:\ProgramData\Start Menu =>.Microsoft Corporation
O43 - CFD: 16/09/2012 - [] D -- C:\ProgramData\Temp =>.Microsoft Corporation
O43 - CFD: 22/08/2013 - [0] SHD -- C:\ProgramData\Templates =>.Microsoft Corporation
O43 - CFD: 24/11/2017 - [] D -- C:\ProgramData\tiser
O43 - CFD: 04/09/2012 - [] D -- C:\ProgramData\WildTangent =>.WildTangent
O43 - CFD: 18/07/2016 - [] D -- C:\ProgramData\WwinpW
O43 - CFD: 18/07/2016 - [] D -- C:\ProgramData\YwinpY
O43 - CFD: 18/07/2016 - [] D -- C:\ProgramData\zwinpz
O43 - CFD: 23/11/2017 - [0] D -- C:\ProgramData\{74E9F814-C737-42CC-B721-DBBC4059367A}
O43 - CFD: 16/09/2012 - [] D -- C:\Program Files (x86)\Common Files\ATI Technologies =>.ATI Technologies
O43 - CFD: 28/06/2016 - [] HD -- C:\Program Files (x86)\Common Files\EAInstaller =>.Electronic Arts, Inc.
O43 - CFD: 23/11/2017 - [] D -- C:\Program Files (x86)\Common Files\IObit =>.IObit
O43 - CFD: 08/07/2016 - [] D -- C:\Program Files (x86)\Common Files\Lighthome
O43 - CFD: 21/11/2014 - [] D -- C:\Program Files (x86)\Common Files\Microsoft Shared =>.Microsoft Corporation
O43 - CFD: 04/09/2012 - [] D -- C:\Program Files (x86)\Common Files\Nero =>.Ahead Corporation
O43 - CFD: 22/08/2013 - [] D -- C:\Program Files (x86)\Common Files\Services =>.Microsoft Corporation
O43 - CFD: 12/12/2015 - [] D -- C:\Program Files (x86)\Common Files\Symantec Shared =>.Symantec Corporation
O43 - CFD: 21/11/2014 - [] D -- C:\Program Files (x86)\Common Files\System =>.Microsoft Corporation
O43 - CFD: 18/11/2017 - [] D -- C:\Users\Tallal.maison\AppData\Roaming\Adobe =>.Adobe
O43 - CFD: 18/11/2017 - [] D -- C:\Users\Tallal.maison\AppData\Roaming\Desktop =>.Microsoft Corporation
O43 - CFD: 19/11/2017 - [] D -- C:\Users\Tallal.maison\AppData\Roaming\eCyber =>.SUP.Elex
O43 - CFD: 24/11/2017 - [] D -- C:\Users\Tallal.maison\AppData\Roaming\IObit =>.IObit
O43 - CFD: 18/11/2017 - [] D -- C:\Users\Tallal.maison\AppData\Roaming\lm
O43 - CFD: 19/11/2017 - [] D -- C:\Users\Tallal.maison\AppData\Roaming\Macromedia =>.Macromedia
O43 - CFD: 18/11/2017 - [] D -- C:\Users\Tallal.maison\AppData\Roaming\MCorp
O43 - CFD: 19/11/2017 - [] SD -- C:\Users\Tallal.maison\AppData\Roaming\Microsoft =>.Microsoft Corporation
O43 - CFD: 18/11/2017 - [] D -- C:\Users\Tallal.maison\AppData\Roaming\Mozilla =>.Mozilla Corporation
O43 - CFD: 18/11/2017 - [] D -- C:\Users\Tallal.maison\AppData\Roaming\Nico Mak Computing =>.Nico Mak Computing
O43 - CFD: 19/11/2017 - [] D -- C:\Users\Tallal.maison\AppData\Roaming\WinZiper =>.SUP.WinZipper
O43 - CFD: 26/11/2017 - [] D -- C:\Users\Tallal.maison\AppData\Roaming\ZHP =>.Nicolas Coolman
O43 - CFD: 18/11/2017 - [0] SHD -- C:\Users\Tallal.maison\AppData\Local\Application Data =>.Microsoft Corporation
O43 - CFD: 26/11/2017 - [] D -- C:\Users\Tallal.maison\AppData\Local\CrashDumps =>.Microsoft Corporation
O43 - CFD: 23/11/2017 - [] D -- C:\Users\Tallal.maison\AppData\Local\Diagnostics =>.Microsoft Corporation
O43 - CFD: 19/11/2017 - [] D -- C:\Users\Tallal.maison\AppData\Local\ElevatedDiagnostics =>.Microsoft Corporation
O43 - CFD: 19/11/2017 - [] D -- C:\Users\Tallal.maison\AppData\Local\GWX =>.GWX
O43 - CFD: 18/11/2017 - [0] SHD -- C:\Users\Tallal.maison\AppData\Local\Historique =>.Microsoft Corporation
O43 - CFD: 19/11/2017 - [] D -- C:\Users\Tallal.maison\AppData\Local\Mega Limited =>.MEGA Limited
O43 - CFD: 19/11/2017 - [] D -- C:\Users\Tallal.maison\AppData\Local\MEGAsync =>.MegaSystems
O43 - CFD: 21/11/2017 - [] D -- C:\Users\Tallal.maison\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 19/11/2017 - [] D -- C:\Users\Tallal.maison\AppData\Local\Packages =>.Microsoft Corporation
O43 - CFD: 23/11/2017 - [] D -- C:\Users\Tallal.maison\AppData\Local\Programs =>.Microsoft Corporation
O43 - CFD: 18/11/2017 - [] D -- C:\Users\Tallal.maison\AppData\Local\SunnyDay21 =>Adware.SunnyDay
O43 - CFD: 23/11/2017 - [] D -- C:\Users\Tallal.maison\AppData\Local\Systweak =>.SUP.Systweak
O43 - CFD: 26/11/2017 - [] D -- C:\Users\Tallal.maison\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 18/11/2017 - [0] SHD -- C:\Users\Tallal.maison\AppData\Local\Temporary Internet Files =>.Microsoft Corporation
O43 - CFD: 18/11/2017 - [] D -- C:\Users\Tallal.maison\AppData\Local\tuto_monetize_120160705 =>.SUP.TutoMonetize
O43 - CFD: 18/11/2017 - [] D -- C:\Users\Tallal.maison\AppData\Local\tuto_monetize_120160708 =>.SUP.TutoMonetize
O43 - CFD: 18/11/2017 - [] D -- C:\Users\Tallal.maison\AppData\Local\tuto_monetize_120160730 =>.SUP.TutoMonetize
O43 - CFD: 18/11/2017 - [0] D -- C:\Users\Tallal.maison\AppData\Local\VirtualStore =>.Microsoft Corporation
O43 - CFD: 18/11/2017 - [] D -- C:\Users\Tallal.maison\AppData\Local\win_en_77 =>.SUP.CSDI
O43 - CFD: 26/11/2017 - [] D -- C:\Users\Tallal.maison\AppData\Local\ZHP =>.Nicolas Coolman
O43 - CFD: 21/11/2017 - [0] D -- C:\Users\Tallal.maison\AppData\Local\ZsgZdffQuyygsiLtM
O43 - CFD: 23/11/2017 - [0] D -- C:\Users\Tallal.maison\AppData\Local\Programs\Common =>.Microsoft Corporation
O43 - CFD: 21/11/2014 - [] RD -- C:\Users\Tallal.maison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility =>.Microsoft Corporation
O43 - CFD: 14/05/2016 - [] RD -- C:\Users\Tallal.maison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories =>.Microsoft Corporation
O43 - CFD: 18/11/2017 - [] RD -- C:\Users\Tallal.maison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools
O43 - CFD: 22/08/2013 - [] D -- C:\Users\Tallal.maison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance =>.Microsoft Corporation
O43 - CFD: 19/11/2017 - [] D -- C:\Users\Tallal.maison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MEGAsync =>.MegaSystems
O43 - CFD: 18/11/2017 - [] RD -- C:\Users\Tallal.maison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup =>.Microsoft Corporation
O43 - CFD: 24/11/2017 - [] RD -- C:\Users\Tallal.maison\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools =>.Microsoft Corporation
O43 - CFD: 22/08/2013 - [0] SHD -- C:\Users\Default\AppData\Local\Application Data =>.Microsoft Corporation
O43 - CFD: 21/11/2014 - [0] SHD -- C:\Users\Default\AppData\Local\Historique =>.Microsoft Corporation
O43 - CFD: 22/08/2013 - [0] SHD -- C:\Users\Default\AppData\Local\History =>.Microsoft Corporation
O43 - CFD: 20/11/2014 - [] D -- C:\Users\Default\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 22/08/2013 - [0] D -- C:\Users\Default\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 22/08/2013 - [0] SHD -- C:\Users\Default\AppData\Local\Temporary Internet Files =>.Microsoft Corporation
O43 - CFD: 22/08/2013 - [0] SHD -- C:\Users\Default User\AppData\Local\Application Data =>.Microsoft Corporation
O43 - CFD: 21/11/2014 - [0] SHD -- C:\Users\Default User\AppData\Local\Historique =>.Microsoft Corporation
O43 - CFD: 22/08/2013 - [0] SHD -- C:\Users\Default User\AppData\Local\History =>.Microsoft Corporation
O43 - CFD: 20/11/2014 - [] D -- C:\Users\Default User\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 22/08/2013 - [0] D -- C:\Users\Default User\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 22/08/2013 - [0] SHD -- C:\Users\Default User\AppData\Local\Temporary Internet Files =>.Microsoft Corporation
O43 - CFD: 08/07/2016 - [] -- C:\WINDOWS\System32\Config\systemprofile\AppData\Local\Boxore =>PUP.Optional.Boxore
O43 - CFD: 25/11/2017 - [] -- C:\WINDOWS\System32\Config\systemprofile\AppData\Local\CrashDumps =>.Microsoft Corporation
O43 - CFD: 18/07/2016 - [] D -- C:\WINDOWS\System32\Config\systemprofile\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 08/07/2016 - [] -- C:\WINDOWS\System32\Config\systemprofile\AppData\Local\zdengine =>Adware.FastSearch
O43 - CFD: 27/04/2017 - [] -- C:\WINDOWS\System32\Config\systemprofile\AppData\Roaming\Desktop =>.Microsoft Corporation
O43 - CFD: 23/11/2017 - [] -- C:\WINDOWS\System32\Config\systemprofile\AppData\Roaming\IObit =>.IObit
O43 - CFD: 20/11/2017 - [] -- C:\WINDOWS\System32\Config\systemprofile\AppData\Roaming\Mozilla =>.Mozilla Corporation

---\\ Derniers fichiers créés dans Windows Prefetcher (26) - 4726s
O45 - LFCP:[MD5.62E90B86D621A7D1321A768980D0ABD8] 08/07/2016 A -- C:\WINDOWS\Prefetch\ASPACKAGE.EXE-0C9A6BFD.pf =>PUP.Optional.ASPackage
O45 - LFCP:[MD5.EDB1F7FB5F07BE87B1FF2865F17F4978] 22/11/2017 A -- C:\WINDOWS\Prefetch\BOXORE.EXE-B5365AAB.pf =>PUP.Optional.Boxore
O45 - LFCP:[MD5.F62648D411048BA5BCA8581286AAD9D5] 08/07/2016 A -- C:\WINDOWS\Prefetch\BUBBLE DOCK SETUP.EXE-DAFE0234.pf =>Adware.BubbleDock
O45 - LFCP:[MD5.1F67D2C3624CB177F7D4A38FF83BD524] 08/07/2016 A -- C:\WINDOWS\Prefetch\BUBBLE DOCK UPDATE.EXE-2D79EE63.pf =>Adware.BubbleDock
O45 - LFCP:[MD5.74CF0D8966DF2FC758AAA537A9DEB084] 27/04/2017 A -- C:\WINDOWS\Prefetch\BUBBLE DOCK.EXE-34A9956C.pf =>Adware.BubbleDock
O45 - LFCP:[MD5.51301ADE5086EB0055C1DB08332B02A2] 09/07/2016 A -- C:\WINDOWS\Prefetch\BUNDLE_NATIONZOOM.EXE-7CA8D483.pf =>PUP.Optional.NationZoom
O45 - LFCP:[MD5.6F956FE39FAFA783F4E466480BD142E7] 18/07/2016 A -- C:\WINDOWS\Prefetch\BUNDLE_NATIONZOOM.EXE-AFDC123B.pf =>PUP.Optional.NationZoom
O45 - LFCP:[MD5.6AF28F44EDE3813CFA5BF4ADF6FEFE22] 08/07/2016 A -- C:\WINDOWS\Prefetch\BUNDLE_NATIONZOOM.EXE-BC1D85EB.pf =>PUP.Optional.NationZoom
O45 - LFCP:[MD5.1D516EDDC7D89D1E66F165FC18AFB149] 31/07/2016 A -- C:\WINDOWS\Prefetch\DRIVERREVIVER.EXE-4D7926B4.pf =>.SUP.DriverReviver
O45 - LFCP:[MD5.20A32AA6DF8EF2DB18D49EE9949C54AE] 25/04/2017 A -- C:\WINDOWS\Prefetch\DRIVERREVIVER.EXE-D0049E95.pf =>.SUP.DriverReviver
O45 - LFCP:[MD5.A81324916CA8F03B2A47F53A67294BED] 31/07/2016 A -- C:\WINDOWS\Prefetch\DRIVERREVIVERSETUP.EXE-928F5382.pf =>.SUP.DriverReviver
O45 - LFCP:[MD5.C364226AE76B0B2389BCC26EF0A277EC] 27/04/2017 A -- C:\WINDOWS\Prefetch\FASTWEB.EXE-4CDB3FDB.pf =>.SUP.FastWeb
O45 - LFCP:[MD5.BD0C4C873D357E37024A6E6323D58CF1] 21/11/2017 A -- C:\WINDOWS\Prefetch\LAMZAP.EXE-423F5D4D.pf =>PUP.Optional.Salus
O45 - LFCP:[MD5.57DB6C7DA38FADB09EAEC66293251AF3] 18/11/2017 A -- C:\WINDOWS\Prefetch\LBUBBLE DOCK.EXE-800352D0.pf =>Adware.BubbleDock
O45 - LFCP:[MD5.FF7B769DBE190CCE0D3572C018257E8E] 09/07/2016 A -- C:\WINDOWS\Prefetch\NATIONZOOM.EXE-E84BB813.pf =>PUP.Optional.NationZoom
O45 - LFCP:[MD5.EA8CCFB6E18CBE67909737879BDD6ABE] 18/07/2016 A -- C:\WINDOWS\Prefetch\NATIONZOOM.EXE-F8FBE756.pf =>PUP.Optional.NationZoom
O45 - LFCP:[MD5.29DB147BE84FC1628EBF40651995380B] 27/04/2017 A -- C:\WINDOWS\Prefetch\OLBPRE.EXE-5FD45ACB.pf =>PUP.Optional.MyPCBackup
O45 - LFCP:[MD5.996F4E5C5C56462EA5444C27E4529D91] 18/07/2016 A -- C:\WINDOWS\Prefetch\PRICEFOUNTAINUPDATEVERUPDATE.-F01C2854.pf =>PUP.Optional.PriceFountain
O45 - LFCP:[MD5.DB839B0A3979780F342BCC46DABE1C59] 25/04/2017 A -- C:\WINDOWS\Prefetch\REGISTRYREVIVER.EXE-8994800F.pf =>PUP.Optional.RegistryReviver
O45 - LFCP:[MD5.D9298995ADF3A7D1D33DE5B998492E36] 25/11/2017 A -- C:\WINDOWS\Prefetch\SOUND+.EXE-46F470A8.pf =>Adware.Kazy
O45 - LFCP:[MD5.0E698EB66BC8AE438F6016CB50806F7B] 07/07/2016 A -- C:\WINDOWS\Prefetch\SOUNDPLUS-INSTALLER.EXE-89A3EF99.pf =>Adware.Kazy
O45 - LFCP:[MD5.E7EF3DC5CD09527FF28E2D58FCBA1061] 23/11/2017 A -- C:\WINDOWS\Prefetch\SUNNYDAY.EXE-3445F164.pf =>Adware.SunnyDay
O45 - LFCP:[MD5.755CBA04C5ECDEE126DEA4B14F6ECAA4] 07/07/2016 A -- C:\WINDOWS\Prefetch\TROTUX.EXE-B36D33E7.pf =>.SUP.Trotux
O45 - LFCP:[MD5.55EC48E7FE9B1F0F8905B893EE3E5BA3] 23/11/2017 A -- C:\WINDOWS\Prefetch\WIN_EN_77.EXE-D222EC65.pf =>.SUP.CSDI
O45 - LFCP:[MD5.82A546B768A89C4CC73F86B6E6EFBEC7] 08/07/2016 A -- C:\WINDOWS\Prefetch\ZDENGINE.EXE-023D421E.pf =>Adware.FastSearch
O45 - LFCP:[MD5.BBBB6564DBD2E299EDDBBC95567944E2] 27/04/2017 A -- C:\WINDOWS\Prefetch\ZDENGINE.EXE-4C7734B7.pf =>Adware.FastSearch

---\\ ShellExecuteHook (1) - 8s
O46 - SEH:ShellExecuteHooks - (no name) - [HKLM] [64Bits] - {6710C780-E20E-4C49-A87D-321850ED3D7C} . (...) -- (.not file.)

---\\ ShellIconOverlayIdentifiers (SIOI) (4) - 40s
O106 - SIOI:
MEGA (Pending) [
MEGA (Pending)] - {056D528D-CE28-4194-9BA3-BA2E9197FF8C}. (...) -- C:\Users\Tallal.maison\AppData\Local\MEGAsync\ShellExtX64.dll
O106 - SIOI:
MEGA (Synced) [
MEGA (Synced)] - {05B38830-F4E9-4329-978B-1DD28605D202}. (...) -- C:\Users\Tallal.maison\AppData\Local\MEGAsync\ShellExtX64.dll
O106 - SIOI:
MEGA (Syncing) [
MEGA (Syncing)] - {0596C850-7BDD-4C9D-AFDF-873BE6890637}. (...) -- C:\Users\Tallal.maison\AppData\Local\MEGAsync\ShellExtX64.dll
O106 - SIOI: [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - DLL d’extension d’environnement de stockage.) -- C:\Windows\System32\EhStorShell.dll =>.Microsoft Corporation

---\\ Raccourcis de menus conceptuels (SCMH) (41) - 151s
O108 - CMH1: Advanced SystemCare [64Bits] - {2803063F-4B8D-4dc6-8874-D1802487FE2D} . (.IObit - ASCExtMenu Module.) -- C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll =>.IObit Information Technology®
O108 - CMH1: BriefcaseMenu [64Bits] - {85BBD920-42A0-1069-A2E4-08002B30309D} . (.Microsoft Corporation - Porte-documents Windows.) -- C:\Windows\System32\syncui.dll =>.Microsoft Corporation
O108 - CMH1: FastCompress-Zip [64Bits] - {22BB7841-43C8-451B-1000-000100020000} . (.Igor Pavlov - FastCompress-zip Shell Extension.) -- C:\Program Files (x86)\FastCompress-Zip\FastCompress-Zipx64.dll =>.Adlegend Limited®
O108 - CMH1: Kaspersky Anti-Virus 18.0.0 [64Bits] - {FF48AD48-74C7-4260-B385-FAEB80947450} . (.AO Kaspersky Lab - Shell Extension.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 18.0.0\x64\shellex.dll =>.Kaspersky Lab®
O108 - CMH1: MEGA (Context menu) [64Bits] - {0229E5E7-09E9-45CF-9228-0228EC7D5F17} . (...) -- C:\Users\Tallal.maison\AppData\Local\MEGAsync\ShellExtX64.dll
O108 - CMH1: Open With [64Bits] - {09799AFB-AD67-11d1-ABCD-00C04FC30936} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH1: Open With EncryptionMenu [64Bits] - {A470F8CF-A1E8-4f65-8335-227475AA5C46} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH1: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation
O108 - CMH1: Symantec.Norton.Antivirus.IEContextMenu [64Bits] - {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} . (.Symantec Corporation - Symantec Shared Component Shell Extension M.) -- C:\Program Files (x86)\Norton Internet Security\Engine64\20.6.0.27\navshext.dll =>.Symantec Corporation®
O108 - CMH1: WinZipper [64Bits] - {DC638EEA-2BA2-4459-9C46-85A2F0BE6040} . (.Orphan.) =>.SUP.TaiwanShuiMu
O108 - CMH1: WorkFolders [64Bits] - {E61BF828-5E63-4287-BEF1-60B1A4FDE0E3} . (.Microsoft Corporation - Extension d’environnement de Dossiers de tr.) -- C:\Windows\System32\WorkfoldersShell.dll =>.Microsoft Corporation
O108 - CMH2: Advanced SystemCare [64Bits] - {2803063F-4B8D-4dc6-8874-D1802487FE2D} . (.IObit - ASCExtMenu Module.) -- C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll =>.IObit Information Technology®
O108 - CMH2: OpenContainingFolderMenu [64Bits] - {37ea3a21-7493-4208-a011-7f9ea79ce9f5} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH2: WinZipper [64Bits] - {DC638EEA-2BA2-4459-9C46-85A2F0BE6040} . (.Orphan.) =>.SUP.TaiwanShuiMu
O108 - CMH3: CopyAsPathMenu [64Bits] - {f3d06e7c-1e45-4a26-847e-f9fcdee59be0} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH3: MEGA (Context menu) [64Bits] - {0229E5E7-09E9-45CF-9228-0228EC7D5F17} . (...) -- C:\Users\Tallal.maison\AppData\Local\MEGAsync\ShellExtX64.dll
O108 - CMH3: SendTo [64Bits] - {7BA4C740-9E81-11CF-99D3-00AA004AE837} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH4: Advanced SystemCare [64Bits] - {2803063F-4B8D-4dc6-8874-D1802487FE2D} . (.IObit - ASCExtMenu Module.) -- C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll =>.IObit Information Technology®
O108 - CMH4: EncryptionMenu [64Bits] - {A470F8CF-A1E8-4f65-8335-227475AA5C46} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH4: FastCompress-Zip [64Bits] - {22BB7841-43C8-451B-1000-000100020000} . (.Igor Pavlov - FastCompress-zip Shell Extension.) -- C:\Program Files (x86)\FastCompress-Zip\FastCompress-Zipx64.dll =>.Adlegend Limited®
O108 - CMH4: Kaspersky Anti-Virus 18.0.0 [64Bits] - {FF48AD48-74C7-4260-B385-FAEB80947450} . (.AO Kaspersky Lab - Shell Extension.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 18.0.0\x64\shellex.dll =>.Kaspersky Lab®
O108 - CMH4: MEGA (Context menu) [64Bits] - {0229E5E7-09E9-45CF-9228-0228EC7D5F17} . (...) -- C:\Users\Tallal.maison\AppData\Local\MEGAsync\ShellExtX64.dll
O108 - CMH4: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation
O108 - CMH4: WinZipper [64Bits] - {DC638EEA-2BA2-4459-9C46-85A2F0BE6040} . (.Orphan.) =>.SUP.TaiwanShuiMu
O108 - CMH4: WorkFolders [64Bits] - {E61BF828-5E63-4287-BEF1-60B1A4FDE0E3} . (.Microsoft Corporation - Extension d’environnement de Dossiers de tr.) -- C:\Windows\System32\WorkfoldersShell.dll =>.Microsoft Corporation
O108 - CMH5: ACE [64Bits] - {5E2121EE-0300-11D4-8D3B-444553540000} . (.Advanced Micro Devices, Inc. - AMD Desktop Control Panel.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll =>.Advanced Micro Devices, Inc.
O108 - CMH5: New [64Bits] - {D969A300-E7FF-11d0-A93B-00A0C90F2719} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH5: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation
O108 - CMH5: WorkFolders [64Bits] - {E61BF828-5E63-4287-BEF1-60B1A4FDE0E3} . (.Microsoft Corporation - Extension d’environnement de Dossiers de tr.) -- C:\Windows\System32\WorkfoldersShell.dll =>.Microsoft Corporation
O108 - CMH6: BriefcaseMenu [64Bits] - {85BBD920-42A0-1069-A2E4-08002B30309D} . (.Microsoft Corporation - Porte-documents Windows.) -- C:\Windows\System32\syncui.dll =>.Microsoft Corporation
O108 - CMH6: Kaspersky Anti-Virus 18.0.0 [64Bits] - {FF48AD48-74C7-4260-B385-FAEB80947450} . (.AO Kaspersky Lab - Shell Extension.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 18.0.0\x64\shellex.dll =>.Kaspersky Lab®
O108 - CMH6: Library Location [64Bits] - {3dad6c5d-2167-4cae-9914-f99e41c12cfa} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH6: PintoStartScreen [64Bits] - {470C0EBD-5D73-4d58-9CED-E91E22E23282} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH6: Symantec.Norton.Antivirus.IEContextMenu [64Bits] - {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} . (.Symantec Corporation - Symantec Shared Component Shell Extension M.) -- C:\Program Files (x86)\Norton Internet Security\Engine64\20.6.0.27\navshext.dll =>.Symantec Corporation®
O108 - CMH6: WinZipper [64Bits] - {DC638EEA-2BA2-4459-9C46-85A2F0BE6040} . (.Orphan.) =>.SUP.TaiwanShuiMu
O108 - CMH7: Advanced SystemCare [64Bits] - {2803063F-4B8D-4dc6-8874-D1802487FE2D} . (.IObit - ASCExtMenu Module.) -- C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll =>.IObit Information Technology®
O108 - CMH7: EnhancedStorageShell [64Bits] - {2854F705-3548-414C-A113-93E27C808C85} . (.Microsoft Corporation - DLL d’extension d’environnement de stockage.) -- C:\Windows\System32\EhStorShell.dll =>.Microsoft Corporation
O108 - CMH7: Kaspersky Anti-Virus 18.0.0 [64Bits] - {FF48AD48-74C7-4260-B385-FAEB80947450} . (.AO Kaspersky Lab - Shell Extension.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 18.0.0\x64\shellex.dll =>.Kaspersky Lab®
O108 - CMH7: MEGA (Context menu) [64Bits] - {0229E5E7-09E9-45CF-9228-0228EC7D5F17} . (...) -- C:\Users\Tallal.maison\AppData\Local\MEGAsync\ShellExtX64.dll
O108 - CMH7: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation
O108 - CMH7: Symantec.Norton.Antivirus.IEContextMenu [64Bits] - {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} . (.Symantec Corporation - Symantec Shared Component Shell Extension M.) -- C:\Program Files (x86)\Norton Internet Security\Engine64\20.6.0.27\navshext.dll =>.Symantec Corporation®

---\\ Image File Execution Options (16) - 23s
O50 - IFEO:C:\Windows\System32\cscript.exe - (.Microsoft Corporation - Microsoft ® Console Based Script Host.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\dllhost.exe - (.Microsoft Corporation - COM Surrogate.) [DisableExceptionChainValidation\\3] =>.Microsoft Windows®
O50 - IFEO:C:\Windows\System32\drvinst.exe - (.Microsoft Corporation - Module d’installation de pilotes.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\ie4uinit.exe - (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\ieUnatt.exe - (.Microsoft Corporation - Outil d’installation sans assistance d’IE 7.) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\mmc.exe - (.Microsoft Corporation - Microsoft Management Console.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\msfeedssync.exe - (.Microsoft Corporation - Microsoft Feeds Synchronization.) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\mshta.exe - (.Microsoft Corporation - Hôte des applications HTML de Microsoft(R).) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\PresentationHost.exe - (.Microsoft Corporation - Windows Presentation Foundation Host.) [MitigationOptions\\1118481] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\PrintIsolationHost.exe - (.Microsoft Corporation - PrintIsolationHost.) [MitigationOptions\\2097152] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\rundll32.exe - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\runtimebroker.exe - (.Microsoft Corporation - Runtime Broker.) [MitigationOptions\\4294967296] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\searchprotocolhost.exe - (.Microsoft Corporation - Microsoft Windows Search Protocol Host.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\spoolsv.exe - (.Microsoft Corporation - Application sous-système spouleur.) [MitigationOptions\\2097152] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\spoolsv.exe - (.Microsoft Corporation - Application sous-système spouleur.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\wscript.exe - (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation

---\\ Liste des pilotes du système (62) - 253s
O58 - SDL:2013/08/22 13:43:41 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\WINDOWS\System32\drivers\3ware.sys [108896] =>.Microsoft Windows®
O58 - SDL:2013/08/22 13:43:41 A . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS.) -- C:\WINDOWS\System32\drivers\adp80xx.sys [782176] =>.Microsoft Windows®
O58 - SDL:2013/08/22 13:43:41 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\WINDOWS\System32\drivers\amdsata.sys [79200] =>.Microsoft Windows®
O58 - SDL:2013/08/22 13:43:41 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\WINDOWS\System32\drivers\amdsbs.sys [259424] =>.Microsoft Windows®
O58 - SDL:2013/08/22 13:43:40 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\WINDOWS\System32\drivers\amdxata.sys [25952] =>.Microsoft Windows®
O58 - SDL:2012/08/27 13:14:36 A . (.Alps Electric Co., Ltd. - Alps Touch Pad Driver.) -- C:\WINDOWS\System32\drivers\Apfiltr.sys [447352] =>.Alps Electric Co., LTD.®
O58 - SDL:2012/09/16 15:24:03 A . (.Dritek System Inc. - PS/2 KB to HID Device Driver.) -- C:\WINDOWS\System32\drivers\aPs2Kb2Hid.sys [26736] =>.Dritek System Inc.®
O58 - SDL:2013/08/22 13:43:41 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\WINDOWS\System32\drivers\arcsas.sys [114016] =>.Microsoft Windows®
O58 - SDL:2013/06/18 15:45:02 A . (.Qualcomm Atheros Communications, Inc. - Qualcomm Atheros Extensible Wireless LAN de.) -- C:\WINDOWS\System32\drivers\athw8x.sys [3680256] =>.Qualcomm Atheros Communications, Inc.
O58 - SDL:2012/07/17 01:59:12 A . (.Advanced Micro Devices - AMD High Definition Audio Function Driver.) -- C:\WINDOWS\System32\drivers\AtihdW86.sys [98472] =>.Advanced Micro Devices, Inc.®
O58 - SDL:2014/07/21 21:04:28 A . (.Advanced Micro Devices, Inc. - ATI Radeon Kernel Mode Driver.) -- C:\WINDOWS\System32\drivers\atikmdag.sys [13209088] =>.Advanced Micro Devices, Inc.
O58 - SDL:2014/07/21 21:04:28 A . (.Advanced Micro Devices, Inc. - AMD multi-vendor Miniport Driver.) -- C:\WINDOWS\System32\drivers\atikmpag.sys [626688] =>.Advanced Micro Devices, Inc.
O58 - SDL:2013/08/13 00:25:46 A . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\WINDOWS\System32\drivers\bcmfn2.sys [17624] =>.Broadcom Corporation®
O58 - SDL:2013/08/22 13:43:41 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\WINDOWS\System32\drivers\bxvbda.sys [531296] =>.Microsoft Windows®
O58 - SDL:2016/07/10 13:02:26 A . (.Windows (R) Win 7 DDK provider - Cherimoya Ltd.) -- C:\WINDOWS\System32\drivers\cherimoya.sys [65344] =>PUP.Optional.Shopper
O58 - SDL:2016/12/26 20:27:10 A . (.AO Kaspersky Lab - Cryptographic Module Driver x64 (56 bit).) -- C:\WINDOWS\System32\drivers\cm_km.sys [247008] =>.Kaspersky Lab®
O58 - SDL:2013/08/22 13:43:45 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\WINDOWS\System32\drivers\evbda.sys [3357024] =>.Microsoft Windows®
O58 - SDL:2013/08/22 13:43:45 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\WINDOWS\System32\drivers\HpSAMD.sys [64352] =>.Microsoft Windows®
O58 - SDL:2013/07/30 19:47:35 A . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [24568] =>.Intel Corporation - Software and Firmware Products®
O58 - SDL:2013/07/25 20:05:39 A . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [99320] =>.Intel Corporation - Software and Firmware Products®
O58 - SDL:2013/08/10 01:39:30 A . (.Intel Corporation - Intel Rapid Storage Technology driver (inbo.) -- C:\WINDOWS\System32\drivers\iaStorAV.sys [651248] =>.Intel Corporation - Intel® Rapid Storage Technology®
O58 - SDL:2013/08/22 13:43:45 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\WINDOWS\System32\drivers\iaStorV.sys [412000] =>.Microsoft Windows®
O58 - SDL:2016/10/01 02:26:00 A . (.AO Kaspersky Lab - Kaspersky Unified Driver.) -- C:\WINDOWS\System32\drivers\kl1.sys [554408] =>.Kaspersky Lab®
O58 - SDL:2017/10/15 00:53:58 A . (.AO Kaspersky Lab - Backup Disk Filter [fre_wnet_x64].) -- C:\WINDOWS\System32\drivers\klbackupdisk.sys [70872] =>.Kaspersky Lab®
O58 - SDL:2017/10/15 00:53:58 A . (.AO Kaspersky Lab - Backup File Filter [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klbackupflt.sys [89952] =>.Kaspersky Lab®
O58 - SDL:2016/05/31 23:24:06 A . (.AO Kaspersky Lab - Virtual Disk [fre_wnet_x64].) -- C:\WINDOWS\System32\drivers\kldisk.sys [78216] =>.Kaspersky Lab®
O58 - SDL:2016/10/14 02:44:02 A . (.AO Kaspersky Lab - Early Launch Anti-Malware Filter [fre_win8_.) -- C:\WINDOWS\System32\drivers\klelam.sys [29816] =>.Microsoft Windows Early Launch Anti-malware Publisher®
O58 - SDL:2017/11/23 21:45:15 A . (.AO Kaspersky Lab - Filter Core [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klflt.sys [207576] =>.Kaspersky Lab®
O58 - SDL:2017/11/23 21:45:13 A . (.AO Kaspersky Lab - klhk [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klhk.sys [594144] =>.Kaspersky Lab®
O58 - SDL:2017/11/23 21:45:15 A . (.AO Kaspersky Lab - Core System Interceptors [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klif.sys [1055448] =>.Kaspersky Lab®
O58 - SDL:2016/10/12 12:29:22 A . (.AO Kaspersky Lab - Packet Network Filter [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klim6.sys [57424] =>.Kaspersky Lab®
O58 - SDL:2016/12/23 09:20:56 A . (.AO Kaspersky Lab - Keyboard Device Filter [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klkbdflt.sys [57056] =>.Kaspersky Lab®
O58 - SDL:2016/12/07 09:30:58 A . (.AO Kaspersky Lab - Mouse Device Filter [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klmouflt.sys [58592] =>.Kaspersky Lab®
O58 - SDL:2017/10/15 00:54:00 A . (.AO Kaspersky Lab - Format Recognizer [fre_wnet_x64].) -- C:\WINDOWS\System32\drivers\klpd.sys [50672] =>.Kaspersky Lab®
O58 - SDL:2017/01/20 13:22:24 A . (.AO Kaspersky Lab - Generic PnP filter [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klpnpflt.sys [44768] =>.Kaspersky Lab®
O58 - SDL:2016/06/07 01:31:06 A . (.The OpenVPN Project - TAP-Windows Virtual Network Driver (NDIS 6..) -- C:\WINDOWS\System32\drivers\kltap.sys [52152] =>.AnchorFree Inc®
O58 - SDL:2016/12/20 17:51:06 A . (.AO Kaspersky Lab - WFP Network Filter [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klwfp.sys [93920] =>.Kaspersky Lab®
O58 - SDL:2017/10/15 00:54:00 A . (.AO Kaspersky Lab - WFP Network Connection Filter Driver [fre_w.) -- C:\WINDOWS\System32\drivers\klwtp.sys [136176] =>.Kaspersky Lab®
O58 - SDL:2017/10/15 00:54:00 A . (.AO Kaspersky Lab - Network Processor [fre_wnet_x64].) -- C:\WINDOWS\System32\drivers\kneps.sys [199360] =>.Kaspersky Lab®
O58 - SDL:2013/06/18 15:44:59 A . (.Qualcomm Atheros Co., Ltd. - Qualcomm Atheros Ar81xx series PCI-E Gigabi.) -- C:\WINDOWS\System32\drivers\L1C63x64.sys [129224] =>.Qualcomm Atheros®
O58 - SDL:2017/11/15 16:05:52 A . (.Driver Lace 514 - .) -- C:\WINDOWS\System32\drivers\Lace_wpf_x64.sys [108824] =>Adware.Suspect
O58 - SDL:2013/08/22 13:43:44 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas.sys [109408] =>.Microsoft Windows®
O58 - SDL:2013/08/22 13:43:45 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas2.sys [93536] =>.Microsoft Windows®
O58 - SDL:2013/08/22 13:43:44 A . (.LSI Corporation - LSI SAS Gen3 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas3.sys [81760] =>.Microsoft Windows®
O58 - SDL:2013/08/22 13:43:45 A . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sss.sys [82784] =>.Microsoft Windows®
O58 - SDL:2013/08/22 13:43:45 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\megasas.sys [56672] =>.Microsoft Windows®
O58 - SDL:2013/08/22 13:43:45 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\WINDOWS\System32\drivers\megasr.sys [575840] =>.Microsoft Windows®
O58 - SDL:2017/11/19 09:30:26 A . (.DotC United Inc - MPC Driver.) -- C:\WINDOWS\System32\drivers\MPCKpt.sys [60136] =>.SUP.MPCCleaner
O58 - SDL:2013/08/22 13:43:49 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\WINDOWS\System32\drivers\mvumis.sys [63840] =>.Microsoft Windows®
O58 - SDL:2013/08/22 13:43:31 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\WINDOWS\System32\drivers\nvraid.sys [150368] =>.Microsoft Windows®
O58 - SDL:2013/08/22 13:43:32 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\WINDOWS\System32\drivers\nvstor.sys [168288] =>.Microsoft Windows®
O58 - SDL:2012/07/04 03:41:58 A . (.Realtek Semiconductor Corp. - Realtek Pcie CardReader Driver for 2K/XP/Vi.) -- C:\WINDOWS\System32\drivers\RtsPStor.sys [339600] =>.Realtek Semiconductor Corp®
O58 - SDL:2013/08/22 16:35:09 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\WINDOWS\System32\drivers\secdrv.sys [23040] =>.Macrovision Corporation, Macrovision Europe Limited,
O58 - SDL:2013/08/22 13:43:31 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid2.sys [44896] =>.Microsoft Windows®
O58 - SDL:2013/08/22 13:43:32 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid4.sys [81760] =>.Microsoft Windows®
O58 - SDL:2013/08/22 13:43:32 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\WINDOWS\System32\drivers\stexstor.sys [31072] =>.Microsoft Windows®
O58 - SDL:2015/12/13 01:27:12 A . (.Symantec Corporation - Symantec Event Library.) -- C:\WINDOWS\System32\drivers\SYMEVENT64x86.SYS [177312] =>.Symantec Corporation®
O58 - SDL:2012/06/18 11:07:50 A . (.Advanced Micro Devices - AMD USB Filter Driver.) -- C:\WINDOWS\System32\drivers\usbfilter.sys [57000] =>.Advanced Micro Devices, Inc.®
O58 - SDL:2013/08/22 13:43:34 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\WINDOWS\System32\drivers\viaide.sys [19808] =>.Microsoft Windows®
O58 - SDL:2013/08/22 13:43:34 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\WINDOWS\System32\drivers\vsmraid.sys [168800] =>.Microsoft Windows®
O58 - SDL:2013/08/22 13:43:34 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\WINDOWS\System32\drivers\VSTXRAID.SYS [305504] =>.Microsoft Windows®
O58 - SDL:2016/03/04 15:13:18 A . (.zdengine - WFP driver.) -- C:\WINDOWS\System32\drivers\zdwfp64.sys [46352] =>Adware.FastSearch

---\\ Associations Shell Spawning (10) - 33s
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\WINDOWS\System32\control.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Ob.) -- C:\WINDOWS\System32\eventvwr.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.EXE =>.Microsoft Corporation®
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (...) -- %1" %*
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S

---\\ Menu de démarrage Internet (4) - 14s
O68 - StartMenuInternet: [64Bits][HKLM\..\Shell\open\Command] (...) -- iexplore.exe
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation

---\\ Recherche d'infection sur les navigateurs (8) - 13s
O69 - SBI: SearchScopes [HKCU] [64Bits]{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com/ =>.Bing.com
O69 - SBI: SearchScopes [HKCU] [64Bits]{B3A986DC-C2DD-40A0-8C0C-FEF66B783511} [DefaultScope] - (Yahoo) - http://search.yahoo.com/ =>.Yahoo! Inc.
O69 - SBI: SearchScopes [HKCU] [64Bits]{D9B44506-785C-426C-A298-9882176EDBBE} [NTURL] - () - http://www.bing.com/ =>.Bing.com
O69 - SBI: SearchScopes [HKCU] [64Bits]{ielnksrch} - (Search the web) - http://%66%65%65%64.%68%65%6C%70%65%72%62%61%72.%63%6F%6D/?p=mKO_AwFzXIpYRYSttY34mamef947lyuZn5X7qpkDH3GIxiP_Bwn4DxeaKa_7jOXtywkl9uvCT4eBOzcLMI_-CfkyitsZLjhoznZRhU5i2tS3kQxx2v-1nhu6a6fZa_XpSJP-hpBovOAUtQTc42QHZaALVuEgC-PpvCKqBVGD5p11AgJxe9xGpn-6_ssL&q={searchTerms} =>.SUP.Linkury
O69 - SBI: SearchScopes [HKLM] [64Bits]{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (@ieframe.dll,-12512) - http://www.bing.com/ =>.Bing.com
O69 - SBI: SearchScopes [HKLM] [64Bits]{6586d803-df30-46d3-a89a-4136c8571d45} - (Palikan) - http://www.palikan.com/ =>PUP.Optional.GoPalikan
O69 - SBI: SearchScopes [HKLM] [64Bits]{D9B44506-785C-426C-A298-9882176EDBBE} [DefaultScope] - (Bing) - http://www.bing.com/ =>.Bing.com
O69 - SBI: SearchScopes [HKLM] [64Bits]{ielnksrch} - (Palikan) - http://www.palikan.com/ =>PUP.Optional.GoPalikan

---\\ Enumère les services démarrés par Svchost (34) - 52s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\WINDOWS\System32\aelupsvc.dll [214528] =>.Microsoft Corporation
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\WINDOWS\System32\certprop.dll [156160] =>.Microsoft Corporation
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\WINDOWS\System32\certprop.dll [156160] =>.Microsoft Corporation
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\WINDOWS\System32\srvsvc.dll [329216] =>.Microsoft Corporation
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\WINDOWS\System32\gpsvc.dll [1360896] =>.Microsoft Corporation
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\WINDOWS\System32\ikeext.dll [1083904] =>.Microsoft Corporation
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\WINDOWS\System32\iphlpsvc.dll [926208] =>.Microsoft Corporation
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\WINDOWS\system32\seclogon.dll [31744] =>.Microsoft Corporation
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\WINDOWS\System32\appinfo.dll [110080] =>.Microsoft Corporation
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\WINDOWS\System32\iscsiexe.dll [151040] =>.Microsoft Corporation
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\WINDOWS\System32\eapsvc.dll [110592] =>.Microsoft Corporation
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\WINDOWS\System32\schedsvc.dll [1265152] =>.Microsoft Corporation
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\WINDOWS\System32\wbem\WMIsvc.dll [230400] =>.Microsoft Corporation
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédia.) -- C:\WINDOWS\System32\mmcss.dll [71168] =>.Microsoft Corporation
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\WINDOWS\System32\browser.dll [135168] =>.Microsoft Corporation
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\WINDOWS\System32\profsvc.dll [228864] =>.Microsoft Corporation
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\WINDOWS\System32\sessenv.dll [339968] =>.Microsoft Corporation
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\WINDOWS\System32\wercplsupport.dll [84992] =>.Microsoft Corporation
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\WINDOWS\System32\kmsvc.dll [101376] =>.Microsoft Corporation
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\WINDOWS\System32\bdesvc.dll [348672] =>.Microsoft Corporation
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Service d’infrastructure de localisation Wi.) -- C:\WINDOWS\System32\GeofenceMonitorService.dll [522240] =>.Microsoft Corporation
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\WINDOWS\System32\wlidsvc.dll [1639424] =>.Microsoft Corporation
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\WINDOWS\System32\themeservice.dll [59392] =>.Microsoft Corporation
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d’installation de périphérique.) -- C:\WINDOWS\System32\DeviceSetupManager.dll [206848] =>.Microsoft Corporation
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Micro.) -- C:\WINDOWS\System32\ncasvc.dll [166400] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\WINDOWS\System32\rasauto.dll [102912] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d’accès à dista.) -- C:\WINDOWS\System32\rasmans.dll [542208] =>.Microsoft Corporation
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\WINDOWS\System32\mprdim.dll [226816] =>.Microsoft Corporation
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\WINDOWS\System32\sens.dll [73728] =>.Microsoft Corporation
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\WINDOWS\System32\ipnathlp.dll [452608] =>.Microsoft Corporation
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\WINDOWS\System32\tapisrv.dll [313344] =>.Microsoft Corporation
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\WINDOWS\System32\wuaueng.dll [3708416] =>.Microsoft Corporation
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\WINDOWS\System32\qmgr.dll [933376] =>.Microsoft Corporation
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS\System32\shsvcs.dll [640000] =>.Microsoft Corporation

---\\ Liste des exceptions du parefeu Windows (10) - 124s
O87 - FAEL: "{FC4E110D-F697-49DB-A7CF-953BA4329090}" [In-None-P17-TRUE] .(...) -- C:\Users\ORDI\AppData\Local\Temp\KGOERK29LS\chromedriver.exe
O87 - FAEL: "TCP Query User{56E88007-F300-499F-890E-C87E62F7A419}C:\users\ordi\appdata\local\temp\qtkqviql8k\chromedriver.exe" [In-None-P6-TRUE] .(...) -- C:\users\ordi\appdata\local\temp\qtkqviql8k\chromedriver.exe
O87 - FAEL: "UDP Query User{187BEB66-FEF6-471B-B948-D61BD535C884}C:\users\ordi\appdata\local\temp\qtkqviql8k\chromedriver.exe" [In-None-P17-TRUE] .(...) -- C:\users\ordi\appdata\local\temp\qtkqviql8k\chromedriver.exe
O87 - FAEL: "{D1624816-9786-4BC7-AA7B-B8CA1DC6DD9A}" [In-None-P17-TRUE] .(...) -- C:\Users\ORDI\AppData\Local\Temp\QTKQVIQL8K\chromedriver.exe
O87 - FAEL: "{93C6AE01-5DBB-47C2-BDDA-9DBA1DB42FB9}" [In-None-P17-TRUE] .(...) -- C:\Users\ORDI\AppData\Local\Temp\WY2SRW8EPY\chromedriver.exe
O87 - FAEL: "{D2F4520B-F878-4A0B-8D8F-4CCC7F36032C}" [In-None-P17-TRUE] .(...) -- C:\Users\ORDI\AppData\Local\Temp\F155I0LJ5B\chromedriver.exe
O87 - FAEL: "{782F42A3-01F1-4A0D-927B-F9B85F74A79F}" [In-None-P17-TRUE] .(...) -- C:\Users\ORDI\AppData\Local\Temp\Z5ET6POE06\chromedriver.exe
O87 - FAEL: "{004129E5-A374-47CD-B0E1-86C1EC298B65}" [In-None-P17-TRUE] .(...) -- C:\Users\ORDI\AppData\Local\Temp\NMRBPSDXXN\chromedriver.exe
O87 - FAEL: "{AD34203F-5E7E-4359-B895-FC0B732E9064}" [In-None-P17-TRUE] .(...) -- C:\Users\ORDI\AppData\Local\Temp\7WIAUQ9UWE\chromedriver.exe
O87 - FAEL: "{1367FD09-2E2F-4680-84EA-FE968364CFB0}" [In-None-P17-TRUE] .(...) -- C:\Users\ORDI\AppData\Local\Temp\chromedriver.exe

---\\ Recherche des packages WindowsInstaller (81) - 273s
[MD5.EB68C751D75D1607F317FD4839FD2C07] [WIS][2014/07/14 21:47:56] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\35691.msi [778240] =>.Advanced Micro Devices, Inc.
[MD5.4E213FD366CA4315CDC458A077CE5065] [WIS][2014/04/17 12:21:34] (.Advanced Micro Devices, Inc. - Branding.) -- C:\WINDOWS\Installer\35695.msi [449536] =>.Advanced Micro Devices, Inc.
[MD5.E7B899109D1C38D9E2C5A1A96B1643FE] [WIS][2014/07/14 21:47:50] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\35699.msi [900608] =>.Advanced Micro Devices, Inc.
[MD5.5876F36CBBB78BDB4F399A97558FBDA6] [WIS][2014/07/14 21:45:28] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\3569d.msi [792576] =>.Advanced Micro Devices, Inc.
[MD5.0BBE5DB2EC685E35194670AA4D6D125E] [WIS][2014/07/14 21:45:34] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\356a1.msi [755200] =>.Advanced Micro Devices, Inc.
[MD5.345FE0F25815D12C5A7808DDB045839F] [WIS][2014/07/14 21:45:40] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\356a5.msi [780288] =>.Advanced Micro Devices, Inc.
[MD5.29DDAD2C915B195F204E5DCC2984CFFF] [WIS][2014/07/14 21:45:48] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\356a9.msi [897024] =>.Advanced Micro Devices, Inc.
[MD5.CE082C052C3A2BC75CAC4F7B29687188] [WIS][2014/07/14 21:45:54] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\356ad.msi [748032] =>.Advanced Micro Devices, Inc.
[MD5.245EC92F39E8CA789876070EEC4949D0] [WIS][2014/07/14 21:46:00] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\356b1.msi [766976] =>.Advanced Micro Devices, Inc.
[MD5.CBF990B59F6273CA5C69A18BE7B926D4] [WIS][2014/07/14 21:46:06] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\356b5.msi [762880] =>.Advanced Micro Devices, Inc.
[MD5.E3302B77142A1636801E2F49C70FF456] [WIS][2014/07/14 21:46:12] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\356b9.msi [772608] =>.Advanced Micro Devices, Inc.
[MD5.B4BA782DED9E009C77ECAB6742561159] [WIS][2014/07/14 21:46:18] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\356bd.msi [791040] =>.Advanced Micro Devices, Inc.
[MD5.7DE314ACD53F3169ABC325F6B712C6AB] [WIS][2014/07/14 21:46:24] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\356c1.msi [763904] =>.Advanced Micro Devices, Inc.
[MD5.177F95B2ACE6ED832224CD4A30FD5F9F] [WIS][2014/07/14 21:46:30] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\356c5.msi [814592] =>.Advanced Micro Devices, Inc.
[MD5.06B11C0E7DAAC1824262BC8503433C4B] [WIS][2014/07/14 21:46:36] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\356c9.msi [794112] =>.Advanced Micro Devices, Inc.
[MD5.1AB1162AA6C6C6FFFFE269EA122FE9B4] [WIS][2014/07/14 21:46:42] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\356cd.msi [755200] =>.Advanced Micro Devices, Inc.
[MD5.192BB726F7CC022675CA769824D5136F] [WIS][2014/07/14 21:46:48] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\356d1.msi [747520] =>.Advanced Micro Devices, Inc.
[MD5.05FCF12D79752DDFA38EBA450CDC913D] [WIS][2014/07/14 21:46:54] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\356d5.msi [780800] =>.Advanced Micro Devices, Inc.
[MD5.EB9B5432A18D68D3123CC17465A02236] [WIS][2014/07/14 21:47:00] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\356d9.msi [765952] =>.Advanced Micro Devices, Inc.
[MD5.7AE0224C86049163677D3D084D62F7C1] [WIS][2014/07/14 21:47:06] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\356dd.msi [876032] =>.Advanced Micro Devices, Inc.
[MD5.07372F031F28D62BB02415CBA3AF857C] [WIS][2014/07/14 21:47:12] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\356e1.msi [754176] =>.Advanced Micro Devices, Inc.
[MD5.F7A1CE7BEFE332DA5AA1F18DE9747F55] [WIS][2014/07/14 21:47:18] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\356e5.msi [847872] =>.Advanced Micro Devices, Inc.
[MD5.B876C8D36D0FCBDA82C73812BAFD076B] [WIS][2014/07/14 21:47:28] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\356e9.msi [772096] =>.Advanced Micro Devices, Inc.
[MD5.D504DB5AF1D14DDA66C4B85B05A07E12] [WIS][2014/07/14 21:47:34] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\356ed.msi [760832] =>.Advanced Micro Devices, Inc.
[MD5.306E41036B0D58A93E7472893199CD4F] [WIS][2014/07/14 21:47:40] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\356f1.msi [759296] =>.Advanced Micro Devices, Inc.
[MD5.0EDFEAF7B56E0E98F00E8787E8E44A3B] [WIS][2014/07/14 21:48:08] (.Advanced Micro Devices, Inc. - Catalyst Control Center Utility 64.) -- C:\WINDOWS\Installer\356f5.msi [392192] =>.Advanced Micro Devices, Inc.
[MD5.5B916A14BF1F6D2775550F5C786A4ECE] [WIS][2014/07/14 21:48:54] (.Advanced Micro Devices, Inc. - AMD Fuel.) -- C:\WINDOWS\Installer\356f9.msi [2937856] =>.Advanced Micro Devices, Inc.
[MD5.B6B2FA6744C28735A1CA8893634EBACF] [WIS][2014/07/14 21:45:20] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\356fd.msi [16394752] =>.Advanced Micro Devices, Inc.
[MD5.746B25FEDC36D30FBAC522E134AF1F3D] [WIS][2012/06/29 17:37:08] (..) -- C:\WINDOWS\Installer\408c9.msi [712704]
[MD5.9A194C173DE42CA8FC44278A1AE6D62A] [WIS][2012/08/22 14:41:16] (.Acer Incorporated - Device Fast-lane.) -- C:\WINDOWS\Installer\66173.msi [3448832] =>.Acer Incorporated
[MD5.203657BD4947184166582072C4A712D7] [WIS][2012/08/24 17:30:29] (.Acer Incorporated - Identity Card.) -- C:\WINDOWS\Installer\66177.msi [3223552] =>.Acer Incorporated
[MD5.9BF4F8A06673A3F7CA8A93F362DC4F63] [WIS][2012/08/31 09:35:32] (.Acer Incorporated - Live Updater.) -- C:\WINDOWS\Installer\6617b.msi [3964928] =>.Acer Incorporated
[MD5.875DCE4747CFEB2BAC3E1BDF3542FAB0] [WIS][2012/07/11 22:25:38] (.Nero AG - Nero 12 Essentials OEM.a01.) -- C:\WINDOWS\Installer\72b09.msi [15713280] =>.Nero AG
[MD5.8E59CB184B624DDB7D447822A036F8CB] [WIS][2012/07/11 21:31:52] (.Nero AG - NeroControlCenter.) -- C:\WINDOWS\Installer\72b0e.msi [2037248] =>.Nero AG
[MD5.2190B9F774B51EC8718E33905D36D6A1] [WIS][2012/07/11 21:31:50] (.Nero AG - Nero Core Components.) -- C:\WINDOWS\Installer\72b14.msi [2507776] =>.Nero AG
[MD5.C863AAB085ADA0C92BC012801FA5544F] [WIS][2012/07/11 21:31:42] (.Nero AG - Nero Prerequisites 1.) -- C:\WINDOWS\Installer\72b1a.msi [1148416] =>.Nero AG
[MD5.6B7C11393BF64CBDA8FDC48F4E03D344] [WIS][2012/07/26 14:47:36] (.Nero AG - Nero Express 12.) -- C:\WINDOWS\Installer\72b20.msi [8925184] =>.Nero AG
[MD5.5B81E56C9C9556A1905773A15D8CB6E8] [WIS][2012/07/11 21:31:52] (.Nero AG - Nero ControlCenter Help (CHM).) -- C:\WINDOWS\Installer\72b26.msi [964608] =>.Nero AG
[MD5.D55ED406C78870E0B8BAC80982C2D7D9] [WIS][2012/07/26 14:47:36] (.Nero AG - Nero Express Help (CHM).) -- C:\WINDOWS\Installer\72b2c.msi [964096] =>.Nero AG
[MD5.1533E3123982FE709E3A515384D87853] [WIS][2012/07/11 21:31:42] (.Nero AG - Nero Update.) -- C:\WINDOWS\Installer\72b31.msi [1149440] =>.Nero AG
[MD5.F61CB102CBC824FA38E141005693C390] [WIS][2012/07/11 21:31:42] (.Nero AG - Nero Launcher.) -- C:\WINDOWS\Installer\72b36.msi [1014784] =>.Nero AG
[MD5.3C906D9D7F0DC10872FD9B0D4B284994] [WIS][2012/07/12 13:09:50] (.Nero AG - Nero BackItUp 12 Essentials OEM.a01.) -- C:\WINDOWS\Installer\72b3c.msi [15719936] =>.Nero AG
[MD5.5EC18BCFC24156CEA357BA518F5DC981] [WIS][2012/07/12 12:51:10] (.Nero AG - Nero BackItUp 12.) -- C:\WINDOWS\Installer\72b41.msi [6303232] =>.Nero AG
[MD5.961DB3CE66DF50C7433687871CFBE759] [WIS][2012/07/12 12:51:06] (.Nero AG - Nero RescueAgent 12.) -- C:\WINDOWS\Installer\72b47.msi [1962496] =>.Nero AG
[MD5.EA8B3C841ED7BB41DC2C8D23506C7256] [WIS][2012/07/12 12:51:10] (.Nero AG - Nero BackItUp Help (CHM).) -- C:\WINDOWS\Installer\72b4d.msi [964096] =>.Nero AG
[MD5.C4EF7C8308AD5E911FE8BB1DEA84AADE] [WIS][2012/07/12 12:51:06] (.Nero AG - Nero RescueAgent Help (CHM).) -- C:\WINDOWS\Installer\72b53.msi [963584] =>.Nero AG
[MD5.6664EE6C5BF480607EC7F16050C19501] [WIS][2012/08/23 14:18:58] (.Acer Incorporated - Recovery Management.) -- C:\WINDOWS\Installer\72b58.msi [7454720] =>.Acer Incorporated
[MD5.7F469C8B18EC5448B60092A44571DBA0] [WIS][2012/08/26 16:19:58] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\7c3af.msi [622592] =>.Advanced Micro Devices, Inc.
[MD5.A38E409725F3932575E83E1AA260F103] [WIS][2012/08/26 16:24:30] (.Advanced Micro Devices, Inc. - AMD Catalyst Install Manager Installer (64 bit).) -- C:\WINDOWS\Installer\7c3b4.msi [8311296] =>.Advanced Micro Devices, Inc.
[MD5.CE90A5E7FFB58EA27C84ED0466FC6189] [WIS][2012/05/04 09:51:34] (.Advanced Micro Devices, Inc. - Branding.) -- C:\WINDOWS\Installer\7c3b8.msi [418304] =>.Advanced Micro Devices, Inc.
[MD5.15F3C3225ED10F21437B2B27351061D5] [WIS][2012/08/26 16:20:38] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\7c3bc.msi [1885184] =>.Advanced Micro Devices, Inc.
[MD5.2917A0136588FCF907E0467853A69B74] [WIS][2012/08/26 16:17:50] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\7c3c0.msi [806912] =>.Advanced Micro Devices, Inc.
[MD5.ADF97446B3E0A30DF7661F14ADD36065] [WIS][2012/08/26 16:17:56] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\7c3c4.msi [776704] =>.Advanced Micro Devices, Inc.
[MD5.EDAA5328B71CFEBE1A4771DAEF2DD0AD] [WIS][2012/08/26 16:18:00] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\7c3c8.msi [802304] =>.Advanced Micro Devices, Inc.
[MD5.E1C9B69A50AA8229D65514DAC63E067E] [WIS][2012/08/26 16:18:06] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\7c3cc.msi [925184] =>.Advanced Micro Devices, Inc.
[MD5.0F7B10EF8763E129E481DE64EEFC5D1D] [WIS][2012/08/26 16:18:12] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\7c3d0.msi [726016] =>.Advanced Micro Devices, Inc.
[MD5.C60E052308A205CE9A39BF51875D051B] [WIS][2012/08/26 16:18:16] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\7c3d4.msi [785920] =>.Advanced Micro Devices, Inc.
[MD5.FDAFEFE2B5EF68C4895F378E33C9318B] [WIS][2012/08/26 16:18:22] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\7c3d8.msi [773120] =>.Advanced Micro Devices, Inc.
[MD5.4AF8164C5233884859220DDF333F07E9] [WIS][2012/08/26 16:18:26] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\7c3dc.msi [794112] =>.Advanced Micro Devices, Inc.
[MD5.3D021B92F1B0366A7D0F01C674DA28B4] [WIS][2012/08/26 16:18:32] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\7c3e0.msi [811520] =>.Advanced Micro Devices, Inc.
[MD5.120E66BAB58658C6603349E673093B0A] [WIS][2012/08/26 16:18:38] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\7c3e4.msi [782336] =>.Advanced Micro Devices, Inc.
[MD5.BB0DB260F9412F5E73007F6D5D738472] [WIS][2012/08/26 16:18:42] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\7c3e8.msi [837632] =>.Advanced Micro Devices, Inc.
[MD5.EE55CC8782D29A8928C8FC6CB99585A4] [WIS][2012/08/26 16:18:46] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\7c3ec.msi [818176] =>.Advanced Micro Devices, Inc.
[MD5.58EF1CA1179E1F2BBC84B105EEFAEFA9] [WIS][2012/08/26 16:18:52] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\7c3f0.msi [772096] =>.Advanced Micro Devices, Inc.
[MD5.A1E85BF815A899E52170BC5FE7615E1B] [WIS][2012/08/26 16:18:58] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\7c3f4.msi [765952] =>.Advanced Micro Devices, Inc.
[MD5.423EA051702AEA2781408FA40AE446A5] [WIS][2012/08/26 16:19:02] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\7c3f8.msi [802304] =>.Advanced Micro Devices, Inc.
[MD5.915F71E9B0727AAEF0DDC6AEEEBBF705] [WIS][2012/08/26 16:19:08] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\7c3fc.msi [783360] =>.Advanced Micro Devices, Inc.
[MD5.4260A2B9E77F63BC3A03F3B1E176F7B9] [WIS][2012/08/26 16:19:12] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\7c400.msi [901632] =>.Advanced Micro Devices, Inc.
[MD5.AEBDA1A51D104B6BABF5868161079445] [WIS][2012/08/26 16:19:18] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\7c404.msi [770560] =>.Advanced Micro Devices, Inc.
[MD5.5673BAC47D75BE940D566802D3314CAB] [WIS][2012/08/26 16:19:24] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\7c408.msi [874496] =>.Advanced Micro Devices, Inc.
[MD5.829F1764E699E381EA775263DFEDC2D9] [WIS][2012/08/26 16:19:28] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\7c40c.msi [790528] =>.Advanced Micro Devices, Inc.
[MD5.C836AC7601106FA6801FF967BEB5CD97] [WIS][2012/08/26 16:19:34] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\7c410.msi [782848] =>.Advanced Micro Devices, Inc.
[MD5.FF9923CE0EE747000178ECE8ECC459A9] [WIS][2012/08/26 16:19:38] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\7c414.msi [796160] =>.Advanced Micro Devices, Inc.
[MD5.57AF7960958E738E03D9F75C913C4D3C] [WIS][2012/08/26 16:19:46] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\7c418.msi [919552] =>.Advanced Micro Devices, Inc.
[MD5.1ED49926730936169D2C5AE59256260B] [WIS][2012/08/26 16:20:16] (.Advanced Micro Devices, Inc. - Catalyst Control Center Utility 64.) -- C:\WINDOWS\Installer\7c41c.msi [386560] =>.Advanced Micro Devices, Inc.
[MD5.193C6F579B138EECEBC74438512E003E] [WIS][2012/08/26 16:17:40] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\7c421.msi [13811200] =>.Advanced Micro Devices, Inc.
[MD5.A0D4F0D8DBDE7A79E7A1E798B4F743D4] [WIS][2012/08/26 16:25:36] (.Advanced Micro Devices Inc. - AMD Accelerated Parallel Processing SDK.) -- C:\WINDOWS\Installer\7c425.msi [16922112] =>.Advanced Micro Devices Inc.
[MD5.CDF5ADA3A65173E145B9ECD9C8F47F6C] [WIS][2012/08/26 16:25:02] (.Advanced Micro Devices, Inc. - AMD Accelerated Video Transcoding INstallation package.) -- C:\WINDOWS\Installer\7c429.msi [2352640] =>.Advanced Micro Devices, Inc.
[MD5.66EB5D22AFBC80A345A79038E3423471] [WIS][2012/06/20 16:23:38] (.CyberLink Corp. - InstallShield® 12 - Premier Edition 12.0.) -- C:\WINDOWS\Installer\9dbf3.msi [6882304] =>.CyberLink Corp.
[MD5.777CEC1891A3ADF43EB35A6D7451C839] [WIS][2012/08/22 13:13:56] (.Acer Incorporated - Power Management.) -- C:\WINDOWS\Installer\9dbfb.msi [11894784] =>.Acer Incorporated
[MD5.5328E844CDE4DF5E89F86C9CFAA48CF1] [WIS][2017/11/23 21:11:43] (.Kaspersky Lab - Kaspersky Free.) -- C:\WINDOWS\Installer\be28e.msi [11030528] =>.Kaspersky Lab

---\\ Recherche de clés de registre Tracing (7) - 1278s
HKLM\SOFTWARE\Microsoft\Tracing\soundplus-installer_RASAPI32 =>Adware.Kazy
HKLM\SOFTWARE\Microsoft\Tracing\soundplus-installer_RASMANCS =>Adware.Kazy
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\CloudPrinter_RASAPI32 =>.SUP.Linkury
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\CloudPrinter_RASMANCS =>.SUP.Linkury
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Lamzap_RASAPI32 =>PUP.Optional.Salus
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Lamzap_RASMANCS =>PUP.Optional.Salus
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Sound+_RASAPI32 =>Adware.Kazy

---\\ Scan Additionnel (282) - 65s
HKLM\SYSTEM\CurrentControlSet\Services\CloudPrinter =>PUP.Optional.Youndoo
C:\ProgramData\CloudPrinter\CloudPrinter.exe =>PUP.Optional.Youndoo
HKLM\SYSTEM\CurrentControlSet\Services\dowidoly =>Adware.CrossRider
C:\Program Files (x86)\EA344200-1467923023-815C-3797-4C72B9ADBCFB\jnsp548D.tmp =>Adware.CrossRider
HKLM\SYSTEM\CurrentControlSet\Services\Lamzap =>PUP.Optional.Salus
C:\ProgramData\Lamzap\Lamzap.exe =>PUP.Optional.Salus
HKLM\SYSTEM\CurrentControlSet\Services\MPCProtectService =>.SUP.MPCCleaner
C:\Program Files (x86)\MPC Cleaner\MPCProtectService.exe =>.SUP.MPCCleaner
HKLM\SYSTEM\CurrentControlSet\Services\OtherSearch =>Adware.GoodThingsShow
C:\Program Files (x86)\yytPKyv5VF\kl.dll =>Adware.GoodThingsShow
HKLM\SYSTEM\CurrentControlSet\Services\rijufoze =>Adware.CrossRider
C:\Program Files (x86)\EA344200-1467923023-815C-3797-4C72B9ADBCFB\hnsf6E51.tmp =>Adware.CrossRider
HKLM\SYSTEM\CurrentControlSet\Services\winzipersvc =>.SUP.WinZipper
C:\Program Files (x86)\WinZipper\winzipersvc.exe =>.SUP.WinZipper
HKLM\SYSTEM\CurrentControlSet\Services\CltMngSvc =>PUP.Optional.SearchProtect
C:\Program Files (x86)\SearchProtect\Main\bin\CltMngSvc.exe =>PUP.Optional.SearchProtect
HKLM\SYSTEM\CurrentControlSet\Services\SMUpd =>Adware.YTDownloader
C:\Program Files\Common Files\Noobzo\GNUpdate\smu.exe =>Adware.YTDownloader
C:\ProgramData\CloudPrinter\bush.exe =>.SUP.Linkury
C:\WINDOWS\System32\Tasks\hostTask =>.SUP.Linkury
C:\ProgramData\Boxore\7.1\Boxore.exe =>PUP.Optional.Boxore
C:\WINDOWS\System32\Tasks\Boxore Update =>PUP.Optional.Boxore
C:\Program Files\ReviverSoft\Registry Reviver\RegistryReviver.exe =>PUP.Optional.RegistryReviver
C:\WINDOWS\System32\Tasks\Start Registry Reviver Schedule =>PUP.Optional.RegistryReviver
C:\Program Files (x86)\OLBPre\OLBPre.exe =>PUP.Optional.MyPCBackup
C:\WINDOWS\System32\Tasks\LaunchPreSignup =>PUP.Optional.MyPCBackup
C:\Users\ORDI\AppData\Roaming\{076B05C6-7492-13C3-23B8-2EAFF7240C0D}\pricefountainupdateverupdate.exe =>PUP.Optional.PriceFountain
C:\WINDOWS\System32\Tasks\{076B05C6-7492-13C3-23B8-2EAFF7240C0D} =>PUP.Optional.PriceFountain
C:\WINDOWS\System32\Tasks\Start Registry Reviver Update =>PUP.Optional.RegistryReviver
C:\WINDOWS\System32\Tasks\Start Registry Reviver for maison@ORDI(logon) =>PUP.Optional.RegistryReviver
C:\Program Files\Sound+\Sound+.exe =>Adware.Kazy
C:\Program Files (x86)\sunnyday\wincom_ZXE.exe =>Adware.SunnyDay
C:\Program Files (x86)\sunnyday\wincom_UN0.exe =>Adware.SunnyDay
C:\Program Files (x86)\sunnyday\wincom_O31.exe =>Adware.SunnyDay
C:\Program Files (x86)\sunnyday\wincom_873.exe =>Adware.SunnyDay
C:\Program Files (x86)\sunnyday\wincom_4HN.exe =>Adware.SunnyDay
C:\Program Files (x86)\sunnyday\otutnetwork.exe =>Adware.SunnyDay
C:\Program Files (x86)\zebi\SunnyDay.exe =>Adware.SunnyDay
C:\Program Files (x86)\win_en_77\win_en_77.exe =>.SUP.CSDI
C:\Program Files (x86)\FastWeb\fastweb.exe =>.SUP.FastWeb
C:\Users\ORDI\AppData\Roaming\Nosibay\Bubble Dock\LBubble Dock.exe =>Adware.BubbleDock
C:\Program Files\V9MOKBMXJE\F1HPSDOIC.exe =>Adware.Wizzcaster
C:\Program Files\PVYC1DGQX0\PVYC1DGQX.exe =>Adware.Wizzcaster
C:\Program Files\5I0QYNLMIN\5I0QYNLMI.exe =>Adware.Wizzcaster
C:\Program Files\T8TXRKGM0L\6X0CZJMN0.exe =>Adware.Wizzcaster
C:\Program Files\OW58QRWS6L\OW58QRWS6.exe =>Adware.Wizzcaster
C:\Program Files\CTSX8MV17N\67940QLK2.exe =>Adware.Wizzcaster
C:\Program Files\J2SYSWI1I1\UR6M84IRY.exe =>Adware.Wizzcaster
C:\Program Files\POBR0SSINI\GKTE8YQNA.exe =>Adware.Wizzcaster
C:\Program Files\1H8HMG8QRP\LT64P63U6.exe =>Adware.Wizzcaster
C:\Program Files\T4IX7Z9Z2E\1UZNYXATX.exe =>Adware.Wizzcaster
C:\Program Files\EVF6CL43ZN\BWJ8NB58D.exe =>Adware.Wizzcaster
C:\Program Files\H72BCD51QF\UGBCF04LB.exe =>Adware.Wizzcaster
C:\Program Files\YIVQHX4WHX\IBPRP06HA.exe =>Adware.Wizzcaster
C:\Program Files\B4VWW24J7Y\B4VWW24J7.exe =>Adware.Wizzcaster
C:\Program Files\VJK1VZBE18\0LFX2C2ND.exe =>Adware.Wizzcaster
C:\Program Files\SXCX91UFCG\GAW1X906S.exe =>Adware.Wizzcaster
C:\Program Files\2LX8PHV1NN\SZA25G73L.exe =>Adware.Wizzcaster
C:\Program Files\KTWYA5YSC4\Y4WH9Z93C.exe =>Adware.Wizzcaster
C:\Program Files\XI2DI44TB0\CB8P86170.exe =>Adware.Wizzcaster
C:\Program Files\VBCX3V1O67\70JCBU7P6.exe =>Adware.Wizzcaster
C:\Program Files\TDAP7B843A\5JT7ERUX9.exe =>Adware.Wizzcaster
C:\Program Files\N8OB4S54CS\L7VKB1ZTU.exe =>Adware.Wizzcaster
C:\Program Files\RZQS330QFF\66213ASU3.exe =>Adware.Wizzcaster
C:\Program Files\XIH3FSYG5Z\MGYIRE20P.exe =>Adware.Wizzcaster
C:\Program Files\PMOY5O65UN\Q4TRXVS8J.exe =>Adware.Wizzcaster
C:\Program Files\0YP672YFZN\L8Q07CM2H.exe =>Adware.Wizzcaster
C:\Program Files\A66GIZQN1S\CQ2S5DPH5.exe =>Adware.Wizzcaster
C:\Program Files\AKCCR4LD0U\E51E79QIN.exe =>Adware.Wizzcaster
C:\Program Files\U7VFP9CWCW\BHRXCEM3X.exe =>Adware.Wizzcaster
C:\Program Files\N37TP6GCHG\N37TP6GCH.exe =>Adware.Wizzcaster
C:\Program Files\RUTLQUICR4\VFJN6ZMHD.exe =>Adware.Wizzcaster
C:\Program Files\KR5YRQMSWO\BNOMYWKWK.exe =>Adware.Wizzcaster
C:\WINDOWS\system32\zdengine64.dll 
¿ÃÇ“ 
ÀÐŒ

 

ÀÌŸü 36 36 f  °ŽMW!à9J° )Á¿®ÛE    é    
 z d e n g i n e o v e r [ T C P / I P M S A F D [ T C P / I P ] ] 1 0 0 =>Hijacker.Winsock
C:\WINDOWS\system32\zdengine64.dll 
¿ÃÇ“ 
ÀÐŒ

 

ÀÌŸü 36 36   Êb‡ÒUÂI†CŸÃÈ+   ê       ÷ÿ z d e n g i n e o v e r [ T C P / I P M S A F D [ U D P / I P ] ] 1 0 1 =>Hijacker.Winsock
C:\WINDOWS\system32\zdengine64.dll 
¿ÃÇ“ 
ÀÐŒ

 

ÀÌŸü 36 36 f  ÐBNJìI™
@M£ýT   ì    
 z d e n g i n e o v e r [ T C P / I P M S A F D [ T C P / I P v 6 ] ] 0 =>Hijacker.Winsock
C:\WINDOWS\system32\zdengine64.dll 
¿ÃÇ“ 
ÀÐŒ

 

ÀÌŸü 36 36   H@Ä>‹ÆI‘ }„s«^Ó   í       ÷ÿ z d e n g i n e o v e r [ T C P / I P M S A F D [ U D P / I P v 6 ] ] 1 =>Hijacker.Winsock
C:\WINDOWS\system32\zdengine64.dll 
¿ÃÇ“ 
ÀÐŒ

 

ÀÌŸü 36 36 f ¸§C ”‹ÓáÄÇE¤ ½
£úé     z d e n g i n e =>Hijacker.Winsock
C:\ProgramData\Lamzap\Voyaredstring.dll =>PUP.Optional.Salus
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\OLBPre =>PUP.Optional.MyPCBackup
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Registry Reviver =>PUP.Optional.RegistryReviver
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SoundPlus =>Adware.Kazy
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{d35e5e88-e5b8-447f-b6f4-66bc7aa638d1} =>Adware.Kazy
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\a783aee2485530a3418fd545c844010e =>PUP.Optional.Wajam
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ASPackage =>PUP.Optional.ASPackage
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Hostify_is1 =>.SUP.CSDI
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\host_is1 =>.SUP.Tuto4PC
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MPC =>.SUP.MPCCleaner
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Online-IO =>.SUP.Microleaves
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\OtherSearch =>Adware.FastSearch
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Search module =>.SUP.Goobzo
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect =>PUP.Optional.SearchProtect
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SunnyDay21_is1 =>Adware.SunnyDay
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\sunnyday_is1 =>Adware.SunnyDay
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WinZip =>.SUP.TaiwanShuiMu
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\win_en_77_is1 =>.SUP.CSDI
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{51C0D04F-0119-4CB5-8B03-7BBB8902AE34} =>PUP.Optional.Groover
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{5E38F39F-7FAE-4F74-863E-62F235E98427} =>.SUP.Trotux
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{7ADF667E-E14D-4D2C-827C-B0108F0D93BC} =>PUP.Optional.DesktopPlay
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{94297A64-2A7D-475D-B758-845225766BB0} =>.SUP.HohoSearch
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A041BEB1-E81B-41EE-A6F0-BAC06B40A923} =>PUP.Optional.SmartBar
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{CCC8D7D6-0959-42CC-9048-E5EFABF551E5} =>.SUP.HohoSearch
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{D1EEE223-8448-49D4-99A3-271AA8ABEAC5} =>.SUP.HohoSearch
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{E1527582-8509-4011-B922-29E3FB548882}_is1 =>.SUP.CSDI
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{F833CCF0-4AD3-4FC8-8D19-03676FF9B2E7} =>.SUP.Trotux
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\a783aee2485530a3418fd545c844010e =>PUP.Optional.Wajam
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\ASPackage =>PUP.Optional.ASPackage
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Hostify_is1 =>.SUP.CSDI
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\host_is1 =>.SUP.Tuto4PC
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\MPC =>.SUP.MPCCleaner
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Online-IO =>.SUP.Microleaves
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\OtherSearch =>Adware.FastSearch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Search module =>.SUP.Goobzo
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect =>PUP.Optional.SearchProtect
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SunnyDay21_is1 =>Adware.SunnyDay
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\sunnyday_is1 =>Adware.SunnyDay
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\WinZip =>.SUP.TaiwanShuiMu
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\win_en_77_is1 =>.SUP.CSDI
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{51C0D04F-0119-4CB5-8B03-7BBB8902AE34} =>PUP.Optional.Groover
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{5E38F39F-7FAE-4F74-863E-62F235E98427} =>.SUP.Trotux
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{94297A64-2A7D-475D-B758-845225766BB0} =>.SUP.HohoSearch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A041BEB1-E81B-41EE-A6F0-BAC06B40A923} =>PUP.Optional.SmartBar
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{CCC8D7D6-0959-42CC-9048-E5EFABF551E5} =>.SUP.HohoSearch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{D1EEE223-8448-49D4-99A3-271AA8ABEAC5} =>.SUP.HohoSearch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{E1527582-8509-4011-B922-29E3FB548882}_is1 =>.SUP.CSDI
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{F833CCF0-4AD3-4FC8-8D19-03676FF9B2E7} =>.SUP.Trotux
C:\Program Files\0YP672YFZN\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\0YP672YFZN =>Adware.Wizzcaster
C:\Program Files\1H8HMG8QRP\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\1H8HMG8QRP =>Adware.Wizzcaster
C:\Program Files\2LX8PHV1NN\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\2LX8PHV1NN =>Adware.Wizzcaster
C:\Program Files\5I0QYNLMIN\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\5I0QYNLMIN =>Adware.Wizzcaster
C:\Program Files\A66GIZQN1S\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\A66GIZQN1S =>Adware.Wizzcaster
C:\Program Files\AKCCR4LD0U\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\AKCCR4LD0U =>Adware.Wizzcaster
C:\Program Files\B4VWW24J7Y\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\B4VWW24J7Y =>Adware.Wizzcaster
C:\Program Files\CTSX8MV17N\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\CTSX8MV17N =>Adware.Wizzcaster
C:\Program Files\EVF6CL43ZN\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\EVF6CL43ZN =>Adware.Wizzcaster
C:\Program Files\H72BCD51QF\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\H72BCD51QF =>Adware.Wizzcaster
C:\Program Files\HHOJ71RHEA\HHOJ71RHE.exe =>Adware.Wizzcaster
C:\Program Files\HHOJ71RHEA\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\HHOJ71RHEA =>Adware.Wizzcaster
C:\Program Files\J2SYSWI1I1\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\J2SYSWI1I1 =>Adware.Wizzcaster
C:\Program Files\KR5YRQMSWO\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\KR5YRQMSWO =>Adware.Wizzcaster
C:\Program Files\KTBO7TSF63\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\KTBO7TSF63 =>Adware.Wizzcaster
C:\Program Files\KTWYA5YSC4\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\KTWYA5YSC4 =>Adware.Wizzcaster
C:\Program Files\N37CFX1YJR\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\N37CFX1YJR =>Adware.Wizzcaster
C:\Program Files\N37TP6GCHG\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\N37TP6GCHG =>Adware.Wizzcaster
C:\Program Files\N8OB4S54CS\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\N8OB4S54CS =>Adware.Wizzcaster
C:\Program Files\OLC574N08Q\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\OLC574N08Q =>Adware.Wizzcaster
C:\Program Files\OW58QRWS6L\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\OW58QRWS6L =>Adware.Wizzcaster
C:\Program Files\PMOY5O65UN\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\PMOY5O65UN =>Adware.Wizzcaster
C:\Program Files\POBR0SSINI\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\POBR0SSINI =>Adware.Wizzcaster
C:\Program Files\PVYC1DGQX0\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\PVYC1DGQX0 =>Adware.Wizzcaster
C:\Program Files\RUTLQUICR4\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\RUTLQUICR4 =>Adware.Wizzcaster
C:\Program Files\RZQS330QFF\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\RZQS330QFF =>Adware.Wizzcaster
C:\Program Files\Sound+ =>Adware.Kazy
C:\Program Files\SXCX91UFCG\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\SXCX91UFCG =>Adware.Wizzcaster
C:\Program Files\T4IX7Z9Z2E\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\T4IX7Z9Z2E =>Adware.Wizzcaster
C:\Program Files\T8TXRKGM0L\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\T8TXRKGM0L =>Adware.Wizzcaster
C:\Program Files\TDAP7B843A\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\TDAP7B843A =>Adware.Wizzcaster
C:\Program Files\U7VFP9CWCW\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\U7VFP9CWCW =>Adware.Wizzcaster
C:\Program Files\V9MOKBMXJE\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\V9MOKBMXJE =>Adware.Wizzcaster
C:\Program Files\VBCX3V1O67\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\VBCX3V1O67 =>Adware.Wizzcaster
C:\Program Files\VJK1VZBE18\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\VJK1VZBE18 =>Adware.Wizzcaster
C:\Program Files\XI2DI44TB0\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\XI2DI44TB0 =>Adware.Wizzcaster
C:\Program Files\XIH3FSYG5Z\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\XIH3FSYG5Z =>Adware.Wizzcaster
C:\Program Files\YIVQHX4WHX\uninstaller.exe =>Adware.Wizzcaster
C:\Program Files\YIVQHX4WHX =>Adware.Wizzcaster
C:\Program Files (x86)\1yt8pr1c =>.SUP.Empty
C:\Program Files (x86)\50po7r3o =>.SUP.Empty
C:\Program Files (x86)\7yzxxic6 =>.SUP.Empty
C:\Program Files (x86)\CleanBrowser =>Adware.CleanBrowser
C:\Program Files (x86)\d1ievt0m =>.SUP.Empty
C:\Program Files (x86)\EA344200-1467923023-815C-3797-4C72B9ADBCFB =>Adware.CrossRider
C:\Program Files (x86)\FastWeb =>.SUP.FastWeb
C:\Program Files (x86)\Hostify =>.SUP.CSDI
C:\Program Files (x86)\MPC Cleaner =>.SUP.MPCCleaner
C:\Program Files (x86)\OLBPre =>PUP.Optional.MyPCBackup
C:\Program Files (x86)\QuickSearch =>Adware.FastSearch
C:\Program Files (x86)\SearchProtect =>PUP.Optional.SearchProtect
C:\Program Files (x86)\sunnyday =>Adware.SunnyDay
C:\Program Files (x86)\SunnyDay21 =>Adware.SunnyDay
C:\Program Files (x86)\WinZipper =>.SUP.TaiwanShuiMu
C:\Program Files (x86)\win_en_77 =>.SUP.CSDI
C:\Program Files (x86)\zww0k1oy =>.SUP.Empty
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MPC AdCleaner =>.SUP.MPCCleaner
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Reimage Repair =>.SUP.ReimageRepair
C:\ProgramData\b5c2bb2f-18f3-0 =>.SUP.Polluteware
C:\ProgramData\b5c2bb2f-1e55-1 =>.SUP.Polluteware
C:\ProgramData\b5c2bb2f-2ae7-0 =>.SUP.Polluteware
C:\ProgramData\b5c2bb2f-4471-1 =>.SUP.Polluteware
C:\ProgramData\Boxore =>PUP.Optional.Boxore
C:\ProgramData\ChelfNotify =>.SUP.Tencent
C:\ProgramData\CloudPrinter =>.SUP.Linkury
C:\ProgramData\Lamzap =>PUP.Optional.Salus
C:\ProgramData\Logic Handler =>PUP.Optional.LogicHandler
C:\ProgramData\Nimfind =>PUP.Optional.Salus
C:\ProgramData\Reimage Protector =>.SUP.ReimageRepair
C:\ProgramData\SearchModule =>Adware.InstallCore
C:\Users\Tallal.maison\AppData\Roaming\eCyber =>.SUP.Elex
C:\Users\Tallal.maison\AppData\Roaming\WinZiper =>.SUP.WinZipper
C:\Users\Tallal.maison\AppData\Local\SunnyDay21 =>Adware.SunnyDay
C:\Users\Tallal.maison\AppData\Local\Systweak =>.SUP.Systweak
C:\Users\Tallal.maison\AppData\Local\tuto_monetize_120160705 =>.SUP.TutoMonetize
C:\Users\Tallal.maison\AppData\Local\tuto_monetize_120160708 =>.SUP.TutoMonetize
C:\Users\Tallal.maison\AppData\Local\tuto_monetize_120160730 =>.SUP.TutoMonetize
C:\Users\Tallal.maison\AppData\Local\win_en_77 =>.SUP.CSDI
C:\WINDOWS\Prefetch\ASPACKAGE.EXE-0C9A6BFD.pf =>PUP.Optional.ASPackage
C:\WINDOWS\Prefetch\BOXORE.EXE-B5365AAB.pf =>PUP.Optional.Boxore
C:\WINDOWS\Prefetch\BUBBLE DOCK SETUP.EXE-DAFE0234.pf =>Adware.BubbleDock
C:\WINDOWS\Prefetch\BUBBLE DOCK UPDATE.EXE-2D79EE63.pf =>Adware.BubbleDock
C:\WINDOWS\Prefetch\BUBBLE DOCK.EXE-34A9956C.pf =>Adware.BubbleDock
C:\WINDOWS\Prefetch\BUNDLE_NATIONZOOM.EXE-7CA8D483.pf =>PUP.Optional.NationZoom
C:\WINDOWS\Prefetch\BUNDLE_NATIONZOOM.EXE-AFDC123B.pf =>PUP.Optional.NationZoom
C:\WINDOWS\Prefetch\BUNDLE_NATIONZOOM.EXE-BC1D85EB.pf =>PUP.Optional.NationZoom
C:\WINDOWS\Prefetch\DRIVERREVIVER.EXE-4D7926B4.pf =>.SUP.DriverReviver
C:\WINDOWS\Prefetch\DRIVERREVIVER.EXE-D0049E95.pf =>.SUP.DriverReviver
C:\WINDOWS\Prefetch\DRIVERREVIVERSETUP.EXE-928F5382.pf =>.SUP.DriverReviver
C:\WINDOWS\Prefetch\FASTWEB.EXE-4CDB3FDB.pf =>.SUP.FastWeb
C:\WINDOWS\Prefetch\LAMZAP.EXE-423F5D4D.pf =>PUP.Optional.Salus
C:\WINDOWS\Prefetch\LBUBBLE DOCK.EXE-800352D0.pf =>Adware.BubbleDock
C:\WINDOWS\Prefetch\NATIONZOOM.EXE-E84BB813.pf =>PUP.Optional.NationZoom
C:\WINDOWS\Prefetch\NATIONZOOM.EXE-F8FBE756.pf =>PUP.Optional.NationZoom
C:\WINDOWS\Prefetch\OLBPRE.EXE-5FD45ACB.pf =>PUP.Optional.MyPCBackup
C:\WINDOWS\Prefetch\PRICEFOUNTAINUPDATEVERUPDATE.-F01C2854.pf =>PUP.Optional.PriceFountain
C:\WINDOWS\Prefetch\REGISTRYREVIVER.EXE-8994800F.pf =>PUP.Optional.RegistryReviver
C:\WINDOWS\Prefetch\SOUND+.EXE-46F470A8.pf =>Adware.Kazy
C:\WINDOWS\Prefetch\SOUNDPLUS-INSTALLER.EXE-89A3EF99.pf =>Adware.Kazy
C:\WINDOWS\Prefetch\SUNNYDAY.EXE-3445F164.pf =>Adware.SunnyDay
C:\WINDOWS\Prefetch\TROTUX.EXE-B36D33E7.pf =>.SUP.Trotux
C:\WINDOWS\Prefetch\WIN_EN_77.EXE-D222EC65.pf =>.SUP.CSDI
C:\WINDOWS\Prefetch\ZDENGINE.EXE-023D421E.pf =>Adware.FastSearch
C:\WINDOWS\Prefetch\ZDENGINE.EXE-4C7734B7.pf =>Adware.FastSearch
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\WinZipper =>.SUP.TaiwanShuiMu
HKLM\Software\Classes\lnkfile\shellex\ContextMenuHandlers\WinZipper =>.SUP.TaiwanShuiMu
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\WinZipper =>.SUP.TaiwanShuiMu
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\WinZipper =>.SUP.TaiwanShuiMu
C:\WINDOWS\System32\drivers\cherimoya.sys =>PUP.Optional.Shopper
C:\WINDOWS\System32\drivers\Lace_wpf_x64.sys =>Adware.Suspect
C:\WINDOWS\System32\drivers\zdwfp64.sys =>Adware.FastSearch
HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{ielnksrch} =>.SUP.Linkury
HKLM\Software\WOW6432Node\Microsoft\Internet Explorer\SearchScopes\{6586d803-df30-46d3-a89a-4136c8571d45} =>PUP.Optional.GoPalikan
HKLM\Software\WOW6432Node\Microsoft\Internet Explorer\SearchScopes\{ielnksrch} =>PUP.Optional.GoPalikan
HKLM\Software\WOW6432Node\Microsoft\Tracing\soundplus-installer_RASAPI32 =>Adware.Kazy
HKLM\Software\WOW6432Node\Microsoft\Tracing\soundplus-installer_RASMANCS =>Adware.Kazy
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\CloudPrinter_RASAPI32 =>.SUP.Linkury
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\CloudPrinter_RASMANCS =>.SUP.Linkury
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Lamzap_RASAPI32 =>PUP.Optional.Salus
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Lamzap_RASMANCS =>PUP.Optional.Salus
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Sound+_RASAPI32 =>Adware.Kazy

---\\ Récapitulatif des éléments trouvés sur votre station (51) - 20s
https://nicolascoolman.eu/2017/03/11/superfluous-youndoo/ =>PUP.Optional.Youndoo
https://nicolascoolman.eu/2017/03/11/pup-optional-crossrider/ =>Adware.CrossRider
https://nicolascoolman.eu/2017/09/07/pup-optional-salus/ =>PUP.Optional.Salus
https://www.anti-malware.top/2016/08/24/superfluous-mpccleaner/ =>.SUP.MPCCleaner
https://nicolascoolman.eu/2017/02/15/adware-crossrider-goodthingsshow/ =>Adware.GoodThingsShow
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.WinZipper
https://nicolascoolman.eu/2017/02/07/pup-optional-searchprotect/ =>PUP.Optional.SearchProtect
https://nicolascoolman.eu/2017/09/12/adware-ytdownloader/ =>Adware.YTDownloader
https://nicolascoolman.eu/2017/09/07/pup-optional-salus/ =>.SUP.Linkury
https://nicolascoolman.eu/2017/03/14/pup-optional-boxore/ =>PUP.Optional.Boxore
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>PUP.Optional.RegistryReviver
https://nicolascoolman.eu/2017/09/23/adware-mypcbackup/ =>PUP.Optional.MyPCBackup
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>PUP.Optional.PriceFountain
https://www.anti-malware.top/2016/08/09/adware-kazy/ =>Adware.Kazy
https://nicolascoolman.eu/2017/02/02/adware-sunnyday/ =>Adware.SunnyDay
https://nicolascoolman.eu/2017/09/12/origine-lignes-orphelines/ =>.SUP.Orphan
https://www.anti-malware.top/2016/05/03/superfluous-csdi/ =>.SUP.CSDI
https://www.anti-malware.top/2016/07/12/superfluous-fastweb/ =>.SUP.FastWeb
https://nicolascoolman.eu/2017/09/08/adware-bubbledock/ =>Adware.BubbleDock
https://nicolascoolman.eu/2017/09/15/adware-wizzcaster/ =>Adware.Wizzcaster
https://www.anti-malware.top/2016/04/21/pup-optional-shopperz/ =>PUP.Optional.Shopperz
https://nicolascoolman.eu/2017/02/24/pup-optional-wajam/ =>PUP.Optional.Wajam
https://www.nicolascoolman.com/fr/pup-optional-aspackage/ =>PUP.Optional.ASPackage
https://nicolascoolman.eu/2017/01/01/adware-tuto4pc-publichotspot/ =>.SUP.Tuto4PC
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Microleaves
https://nicolascoolman.eu/22017/04/04/adware-fastsearch/ =>Adware.FastSearch
https://www.anti-malware.top/2016/07/20/superfluous-goobzo/ =>.SUP.Goobzo
https://www.anti-malware.top/2016/05/05/superfluous-taiwanshuimu/ =>.SUP.TaiwanShuiMu
https://www.anti-malware.top/2016/05/02/pup-optional-groover/ =>PUP.Optional.Groover
https://nicolascoolman.eu/2017/03/14/superfluous-trotux/ =>.SUP.Trotux
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>PUP.Optional.DesktopPlay
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.HohoSearch
https://nicolascoolman.eu/2017/09/09/pup-optional-smartbar/ =>PUP.Optional.SmartBar
https://nicolascoolman.eu/2017/09/19/adware-installcore-3/ =>Adware.SearchModule
https://nicolascoolman.eu/2017/03/05/superfluous-pcspeeduppro/ =>.SUP.PCSpeedUp
https://www.nicolascoolman.com/fr/spyware-agenceexclusive/ =>PUP.Optional.AgenceExclusive
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Empty
https://nicolascoolman.eu/2017/01/28/adware-cleanbrowser/ =>Adware.CleanBrowser
https://nicolascoolman.eu/2017/01/27/superfluous-reimagerepair/ =>.SUP.ReimageRepair
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Polluteware
https://nicolascoolman.eu/2017/02/23/tencentadressbar/ =>.SUP.Tencent
https://nicolascoolman.eu/2017/01/04/pup-optional-logichandler/ =>PUP.Optional.LogicHandler
https://nicolascoolman.eu/2017/09/19/adware-installcore-3/ =>Adware.InstallCore
https://nicolascoolman.eu/2017/03/28/superfluous-elex/ =>.SUP.Elex
https://nicolascoolman.eu/2017/09/14/sup-systweak/ =>.SUP.Systweak
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.TutoMonetize
https://www.nicolascoolman.com/fr/hijacker-nationzoom/ =>PUP.Optional.NationZoom
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.DriverReviver
https://www.anti-malware.top/2016/05/02/pup-optional-shopper/ =>PUP.Optional.Shopper
https://nicolascoolman.eu/2017/03/02/adware-suspect/ =>Adware.Suspect
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>PUP.Optional.GoPalikan

~ Unselected Options: O82,
~ End of the scan, 28200 items in 21mn27s (1605)(0)