~ ZHPDiag v2016.3.8.67 Par Nicolas Coolman (2016/03/08) ~ Démarré par jeje07 (Administrator) (2016/03/08 19:57:38) ~ Site: http://www.nicolascoolman.com ~ Facebook: https://www.facebook.com/nicolascoolman1 ~ Etat de la version: Version OK ~ Mode: Scanner ~ Rapport: C:\Users\jeje07\Desktop\ZHPDiag.txt ~ Rapport: C:\Users\jeje07\AppData\Roaming\ZHP\ZHPDiag.txt ~ UAC: Activate ~ Démarrage du système: Normal (Normal boot) Windows 10 Pro, 64-bit (Build 10586) ---\\ Navigateurs Internet (2) - 0s MFIE: Mozilla Firefox 45.0 (x64 fr) MSIE: Internet Explorer v11.103.10586.0 ---\\ Informations sur les produits Windows (8) - 0s ~ Windows Server License Manager Script : OK ~ Licence Script File Génération : OK ~ Windows(R) Operating System, RETAIL channel Windows ID Activation : OK ~ Windows Partial Key : 3V66T Windows License : OK ~ Windows Remaining Initializations Number : 1001 Windows Automatic Updates : OK ---\\ Logiciels de protection (3) - 1s ESET NOD32 Antivirus v8.0.319.0 Outpost Firewall Pro 9.3 v9.3 Windows Defender (Deactivate) ---\\ Logiciels d'optimisation (1) - 2s Tweaking.com - Windows Repair v3.8.0 ---\\ Surveillance de Logiciels (1) - 2s Adobe Flash Player 20 NPAPI ---\\ Informations sur le système (6) - 0s ~ Operating System: Intel64 Family 6 Model 58 Stepping 9, GenuineIntel ~ Operating System: 64-bit ~ Boot mode: Normal (Normal boot) Total RAM: 16719.72 MB (86% free) System Restore: Activé (Enable) System drive C: has 140 GB () free of 243 GB ---\\ Mode de connexion au système (3) - 0s ~ Computer Name: DESKTOP-UHL3C46 ~ User Name: jeje07 ~ Logged in as Administrator ---\\ Enumération des unités disques (3) - 0s ~ Drive C: has 140 GB free of 243 GB (System) ~ Drive D: has 4736 GB free of 11446 GB ~ Drive J: has 72 GB free of 476 GB ---\\ Etat du Centre de Sécurité Windows (7) - 0s [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK [HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK ---\\ Recherche particulière de fichiers génériques (25) - 0s [MD5.95D730526EF81792CD6848D8D10FAA1C] - 29/01/2016 - (.Microsoft Corporation - Explorateur Windows.) -- C:\WINDOWS\Explorer.exe [4502352] =>.Microsoft Windows® [MD5.0DCB89B1F3689BC6262FF30BBD603171] - 30/10/2015 - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\WINDOWS\System32\rundll32.exe [59392] =>.Microsoft Corporation [MD5.CAD491DD9EC00BB841EA407D9C498C4A] - 30/10/2015 - (.Microsoft Corporation - Application de démarrage de Windows.) -- C:\WINDOWS\System32\Wininit.exe [290856] =>.Microsoft Windows Publisher® [MD5.6807A6D971AA7A26245397ADDFE3B5D8] - 23/02/2016 - (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\WINDOWS\System32\wininet.dll [2755584] =>.Microsoft Corporation [MD5.7B24B823404D53DA4748F21AD2BF04C9] - 05/01/2016 - (.Microsoft Corporation - Application d’ouverture de session Windows.) -- C:\WINDOWS\System32\Winlogon.exe [584704] =>.Microsoft Corporation [MD5.9EEAA1B69DC3FD620AE576CC8F4147DC] - 30/10/2015 - (.Microsoft Corporation - Bibliothèque de licences.) -- C:\WINDOWS\System32\sppcomapi.dll [430592] =>.Microsoft Corporation [MD5.E7B524818100B0FDE2B057C74B0C0DCD] - 30/10/2015 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\WINDOWS\System32\dnsapi.dll [686984] =>.Microsoft Windows® [MD5.2796C0957F6F05A528DD64B8591371B6] - 30/10/2015 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\WINDOWS\Syswow64\dnsapi.dll [535088] =>.Microsoft Windows® [MD5.CE50037751671682D1FDBBE7C9B37F4A] - 30/10/2015 - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) -- C:\WINDOWS\System32\fr-FR\user32.dll.mui [20480] =>.Microsoft Corporation [MD5.70148EFA9A562E7185B75BBE7D376BF7] - 14/11/2015 - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) -- C:\WINDOWS\System32\drivers\AFD.sys [578912] =>.Microsoft Windows® [MD5.492B99D2E3D5D7BFD5F0AE1BE7BD37DD] - 30/10/2015 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\WINDOWS\System32\drivers\atapi.sys [28512] =>.Microsoft Windows® [MD5.7F9C7226D743B232907ED2537B8A574F] - 30/10/2015 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\WINDOWS\System32\drivers\Cdfs.sys [92672] =>.Microsoft Corporation [MD5.82D97776BF982AA143BDC7DFB5054EA8] - 30/10/2015 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\WINDOWS\System32\drivers\Cdrom.sys [173568] =>.Microsoft Corporation [MD5.C9478D7DB7BE5D7ACE65CB1167F07320] - 30/10/2015 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\WINDOWS\System32\drivers\DfsC.sys [148480] =>.Microsoft Corporation [MD5.84BC034B6BB763733C1949B7B9BAF976] - 30/10/2015 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\WINDOWS\System32\drivers\HDAudBus.sys [79872] =>.Microsoft Corporation [MD5.53FDD9E69189E546DE4740F8C4D8AB2F] - 30/10/2015 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\WINDOWS\System32\drivers\i8042prt.sys [114688] =>.Microsoft Corporation [MD5.9E5E8F2A1996F23B7E9687846AA81B01] - 30/10/2015 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\System32\drivers\IpNat.sys [143360] =>.Microsoft Corporation [MD5.0B3B0C1D86050355676640488FA897D3] - 23/02/2016 - (.Microsoft Corporation - Minirdr SMB Windows NT.) -- C:\WINDOWS\System32\drivers\MRxSmb.sys [430944] =>.Microsoft Windows® [MD5.F51C02D992A8D6BC5EC4D990F227D4C7] - 30/10/2015 - (.Microsoft Corporation - MBT Transport driver.) -- C:\WINDOWS\System32\drivers\netBT.sys [279552] =>.Microsoft Corporation [MD5.58BFFEF692A47FCE3FAAEDBC8F3DCBBB] - 23/02/2016 - (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\WINDOWS\System32\drivers\ntfs.sys [2152288] =>.Microsoft Windows® [MD5.7D0FC96264C0F8F2C1321E33E8EB646C] - 30/10/2015 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\WINDOWS\System32\drivers\Parport.sys [96768] =>.Microsoft Corporation [MD5.E3C82823B22463BC38AA4F8ADA852624] - 23/02/2016 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [104960] =>.Microsoft Corporation [MD5.1DC2CC74B51E4DC4CD5A20C1021E4010] - 30/10/2015 - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RD.) -- C:\WINDOWS\System32\drivers\rdpdr.sys [173056] =>.Microsoft Corporation [MD5.91D3F2A6253EF83EFBD7903028F58C4D] - 14/11/2015 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\WINDOWS\System32\drivers\tdx.sys [118624] =>.Microsoft Windows® [MD5.E1F91A727A04C9F8199D04FF3BBBF63C] - 30/10/2015 - (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\WINDOWS\System32\drivers\volsnap.sys [414560] =>.Microsoft Windows® ---\\ Liste des services NT non Microsoft et non désactivés (14) - 1s O23 - Service: Agnitum Client Security Service (acssrv) . (.Agnitum Ltd. - Agnitum Outpost Service.) - C:\Program Files\Agnitum\Outpost Firewall Pro\acs.exe {748661E9174BA5AA2B48492DE4AB423E} O23 - Service: (AdobeUpdateService) . (.Adobe Systems Incorporated - Adobe Update Service.) - C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe =>.Adobe Systems Incorporated® O23 - Service: ArcHttpProxyServer (ArcHttpProxyServer) . (...) - C:\Program Files (x86)\MRAID\ArcHTTP\ArcHttpSrv.exe O23 - Service: ESET Service (ekrn) . (.ESET - ESET Service.) - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe =>.ESET, spol. s r.o.® O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) . (.Intel Corporation - IAStorDataSvc.) - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe =>.Intel Corporation - Rapid Storage Technology® O23 - Service: Internet Off Service (InternetOffService) . (...) - C:\Program Files (x86)\InternetOff\IOffSvc.exe {1A3971F7D5A04EBA878183D0A57E1EC1} O23 - Service: Macrium Reflect Image Mounting Service (ReflectService.exe) . (.Paramount Software UK Ltd - Reflect Service - Enables mounting of image.) - C:\Program Files\Macrium\Reflect\ReflectService.exe =>.Paramount Software UK Ltd® O23 - Service: VMware Authorization Service (VMAuthdService) . (.VMware, Inc. - VMware Authorization Service.) - C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe =>.VMware, Inc.® O23 - Service: VMware DHCP Service (VMnetDHCP) . (.VMware, Inc. - VMware VMnet DHCP service.) - C:\Windows\SysWOW64\vmnetdhcp.exe =>.VMware, Inc.® O23 - Service: VMware USB Arbitration Service (VMUSBArbService) . (.VMware, Inc. - VMware USB Arbitration Service.) - C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe =>.VMware, Inc.® O23 - Service: VMware NAT Service (VMware NAT Service) . (.VMware, Inc. - VMware NAT Service.) - C:\Windows\SysWOW64\vmnat.exe =>.VMware, Inc.® O23 - Service: VMware vCenter Converter Standalone Agent (vmware-converter-agent) . (.VMware, Inc. - VMware Converter Service.) - C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\vmware-converter-a.exe =>.VMware, Inc.® O23 - Service: VMware vCenter Converter Standalone Server (vmware-converter-server) . (.VMware, Inc. - VMware Converter Service.) - C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\vmware-converter.exe =>.VMware, Inc.® O23 - Service: VMware vCenter Converter Standalone Worker (vmware-converter-worker) . (.VMware, Inc. - VMware Converter Service.) - C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\vmware-converter.exe =>.VMware, Inc.® ---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (23) - 20s SR - Auto [30/11/2015] [ 3421008] Agnitum Client Security Service (acssrv) . (.Agnitum Ltd..) - C:\Program Files\Agnitum\Outpost Firewall Pro\acs.exe {748661E9174BA5AA2B48492DE4AB423E} SS - Disabl [17/02/2016] [ 269504] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe =>.Adobe Systems Incorporated® SS - Auto [28/01/2016] [ 693440] (AdobeUpdateService) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe =>.Adobe Systems Incorporated® SS - Disabl [15/01/2016] [ 2016448] Adobe Genuine Software Integrity Service (AGSService) . (.Adobe Systems, Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe =>.Adobe Systems Incorporated® SS - Auto [15/08/2012] [ 866304] ArcHttpProxyServer (ArcHttpProxyServer) . (...) - C:\Program Files (x86)\MRAID\ArcHTTP\ArcHttpSrv.exe SR - Auto [08/07/2015] [ 1353720] ESET Service (ekrn) . (.ESET.) - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe =>.ESET, spol. s r.o.® SS - Disabl [02/12/2015] [ 107912] Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc® SS - Disabl [02/12/2015] [ 107912] Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc® SR - Auto [27/07/2015] [ 18856] Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) . (.Intel Corporation.) - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe =>.Intel Corporation - Rapid Storage Technology® SR - Auto [07/10/2013] [ 1603896] Internet Off Service (InternetOffService) . (...) - C:\Program Files (x86)\InternetOff\IOffSvc.exe {1A3971F7D5A04EBA878183D0A57E1EC1} SS - Disabl [31/01/2016] [ 1264696] NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation.) - C:\WINDOWS\system32\nvvsvc.exe =>.NVIDIA Corporation SR - Auto [12/10/2015] [ 3476432] Macrium Reflect Image Mounting Service (ReflectService.exe) . (.Paramount Software UK Ltd.) - C:\Program Files\Macrium\Reflect\ReflectService.exe =>.Paramount Software UK Ltd® SS - Demand [01/03/2013] [ 118520] Remote Packet Capture Protocol v.0 (experimental) (rpcapd) . (.Riverbed Technology, Inc..) - C:\Program Files (x86)\WinPcap\rpcapd.exe =>.Riverbed Technology, Inc.® SS - Demand [04/02/2016] [ 835152] Steam Client Service (Steam Client Service) . (.Valve Corporation.) - C:\Program Files (x86)\Common Files\Steam\SteamService.exe =>.Valve® SR - Auto [25/11/2015] [ 89792] VMware Authorization Service (VMAuthdService) . (.VMware, Inc..) - C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe =>.VMware, Inc.® SR - Auto [25/11/2015] [ 358080] VMware DHCP Service (VMnetDHCP) . (.VMware, Inc..) - C:\Windows\SysWOW64\vmnetdhcp.exe =>.VMware, Inc.® SR - Auto [06/11/2015] [ 906944] VMware USB Arbitration Service (VMUSBArbService) . (.VMware, Inc..) - C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe =>.VMware, Inc.® SR - Auto [25/11/2015] [ 392896] VMware NAT Service (VMware NAT Service) . (.VMware, Inc..) - C:\Windows\SysWOW64\vmnat.exe =>.VMware, Inc.® SS - Auto [05/05/2015] [ 482008] VMware vCenter Converter Standalone Agent (vmware-converter-agent) . (.VMware, Inc..) - C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\vmware-converter-a.exe =>.VMware, Inc.® SR - Auto [05/05/2015] [ 482008] VMware vCenter Converter Standalone Server (vmware-converter-server) . (.VMware, Inc..) - C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\vmware-converter.exe =>.VMware, Inc.® SR - Auto [05/05/2015] [ 482008] VMware vCenter Converter Standalone Worker (vmware-converter-worker) . (.VMware, Inc..) - C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\vmware-converter.exe =>.VMware, Inc.® SS - Disabl [25/11/2015] [12462784] VMware Workstation Server (VMwareHostd) . (...) - C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe =>.VMware, Inc.® ---\\ Tâches planifiées en automatique (18) - 3s [MD5.785FD0E36CA75D90DD50042E2594BC63] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [269504] =>.Adobe Systems Incorporated® [MD5.20C08CA080F650B730B1E3FDEA9AD532] [APT] [AdobeAAMUpdater-1.0-MicrosoftAccount-gokpok@hotmail.com] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128] =>.Adobe Systems Incorporated® [MD5.A550F9773B1703D49B34206A9D33C911] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107912] =>.Google Inc® [MD5.A550F9773B1703D49B34206A9D33C911] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107912] =>.Google Inc® [MD5.1C078E36F7B441ECC4A548EDAF89BB00] [APT] [Process Lasso Core Engine Only] (.Bitsum LLC.) -- C:\Program Files\Process Lasso\processgovernor.exe [770240] {7486AA0050D4508B72A4FBCFFD5E351F} =>.Bitsum LLC [MD5.86D01C81B57A37899DF3DA11A9184EB7] [APT] [Process Lasso Management Console (GUI)] (.Bitsum LLC.) -- C:\Program Files\Process Lasso\processlasso.exe [1208000] {7486AA0050D4508B72A4FBCFFD5E351F} =>.Bitsum LLC [MD5.51F899764EE5CD5CE33293D03E3446F6] [APT] [Dexpot\] (.Dexpot GbR.) -- C:\Program Files (x86)\Dexpot\autodex.exe [159312] =>.Dexpot GbR® [MD5.C459EC3CD71BA7F495F8331B0B4C0544] [APT] [HardDiskSentinel\] (.H.D.S. Hungary.) -- C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe [4708000] {00E2974858A0A4BC980D957B51159AA7B4} [MD5.E2DB32AAA6D2BFA962E0F715A561B54D] [APT] [Open Hardware Monitor\] (.Copyright © 2009-2014 Michael Möller.) -- C:\Program Files (x86)\OpenHardwareMonitor\OpenHardwareMonitor.exe [492544] O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\WINDOWS\Tasks\Adobe Flash Player Updater.job [1002] =>.Adobe Systems Incorporated® O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job [1096] =>.Google Inc® O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job [1100] =>.Google Inc® O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater [3276] =>.Adobe Systems Incorporated® O39 - APT: AdobeAAMUpdater-1.0-MicrosoftAccount-gokpok@hotmail.com - (.Adobe Systems Incorporated.) -- C:\WINDOWS\System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-gokpok@hotmail.com [3664] =>.Adobe Systems Incorporated® O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore [3448] =>.Google Inc® O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA [3672] =>.Google Inc® O39 - APT: Process Lasso Core Engine Only - (.Bitsum LLC.) -- C:\WINDOWS\System32\Tasks\Process Lasso Core Engine Only [2398] {7486AA0050D4508B72A4FBCFFD5E351F} =>.Bitsum LLC O39 - APT: Process Lasso Management Console (GUI) - (.Bitsum LLC.) -- C:\WINDOWS\System32\Tasks\Process Lasso Management Console (GUI) [2540] {7486AA0050D4508B72A4FBCFFD5E351F} =>.Bitsum LLC ---\\ Processus lancés (44) - 1s [MD5.D4DDA94DAF10B736DF94EE59146F4EEA] - (...) -- C:\Program Files (x86)\InternetOff\IOffSvc.exe [1603896] [PID.1172] {1A3971F7D5A04EBA878183D0A57E1EC1} [MD5.302266897C0E1C64340F2EA0C4029DCB] - (.Paramount Software UK Ltd - Reflect Service - Enables mounting of image.) -- C:\Program Files\Macrium\Reflect\ReflectService.exe [3476432] [PID.2112] =>.Paramount Software UK Ltd® [MD5.5F9CBD6D40E32CAEB55DB4A0799EBA72] - (.VMware, Inc. - VMware Authorization Service.) -- C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe [89792] [PID.2176] =>.VMware, Inc.® [MD5.4B8FB07FFC24F0E82404A14432B3BD63] - (.VMware, Inc. - VMware Converter Service.) -- C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\vmware-converter.exe [482008] [PID.2184] =>.VMware, Inc.® [MD5.4B8FB07FFC24F0E82404A14432B3BD63] - (.VMware, Inc. - VMware Converter Service.) -- C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\vmware-converter.exe [482008] [PID.2192] =>.VMware, Inc.® [MD5.C84A6FA836262BD7CBE611F08B554E8B] - (.VMware, Inc. - VMware VMnet DHCP service.) -- C:\Windows\SysWOW64\vmnetdhcp.exe [358080] [PID.2204] =>.VMware, Inc.® [MD5.0F32048BF3EA2A85FE3AC48E8E7B7C85] - (.ESET - ESET Service.) -- C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [1353720] [PID.2212] =>.ESET, spol. s r.o.® [MD5.DF89A1667D769377CA5441A6F62F9031] - (.VMware, Inc. - VMware NAT Service.) -- C:\Windows\SysWOW64\vmnat.exe [392896] [PID.2240] =>.VMware, Inc.® [MD5.B30B940E999CC59A701B564A7E359D09] - (.VMware, Inc. - VMware USB Arbitration Service.) -- C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe [906944] [PID.2248] =>.VMware, Inc.® [MD5.C459EC3CD71BA7F495F8331B0B4C0544] - (.H.D.S. Hungary - Hard Disk Sentinel Engine.) -- C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe [4708000] [PID.3540] {00E2974858A0A4BC980D957B51159AA7B4} [MD5.E2DB32AAA6D2BFA962E0F715A561B54D] - (.Copyright © 2009-2014 Michael Möller - Open Hardware Monitor.) -- C:\Program Files (x86)\OpenHardwareMonitor\OpenHardwareMonitor.exe [492544] [PID.3600] [MD5.889E56C58F5AC4242E395E3AD5F7780C] - (.IvoSoft - Classic Start Menu.) -- C:\Program Files\Classic Shell\ClassicStartMenu.exe [161728] [PID.3952] =>.Ivaylo Beltchev® [MD5.BB5215BCE8AD071C96B1B2AB5395C4FA] - (.CMedia - AsusAudioCenter.) -- C:\Program Files\ASUS Xonar Essence STX Audio\Customapp\ASUSAUDIOCENTER.EXE [2068480] [PID.4892] [MD5.0740D338A42F7778760F2B0CB6DA5830] - (.Copyright (C) 2007 - HsMgr Application.) -- C:\Windows\SysWOW64\HsMgr.exe [200704] [PID.4924] [MD5.BEF1B23AD0BBF805F02FAA01EAE0AF4E] - (.Copyright (C) 2007 - HsMgr Application.) -- C:\Windows\System\HsMgr64.exe [282112] [PID.4948] [MD5.C6546002BD2B82503B05F66F523593CD] - (.Greenshot - Greenshot.) -- C:\Program Files\Greenshot\Greenshot.exe [540672] [PID.4968] =>.Greenshot [MD5.F2F27BD3362B356A02B5F7889489CC20] - (.SoftPerfect - NetWorx Application (64-bit).) -- C:\Program Files\NetWorx\networx.exe [7907656] [PID.5020] {0C27AF564CE39FCE88D1D96B45054483} =>.SoftPerfect [MD5.A118C52E94780AEBFA52D05A3313CCF6] - (.ESET - ESET Main GUI.) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [5595848] [PID.4248] =>.ESET, spol. s r.o.® [MD5.644CAE15B7D514F8C1DB2E719BB28B69] - (.Guillaume Ryder (http://utilfr42.free.fr) - Clavier+.) -- C:\Users\jeje07\AppData\Local\Clavier+\Clavier.exe [113664] [PID.4588] [MD5.62F982ADCE7D7833F2FD9353E82608A0] - (...) -- C:\Program Files (x86)\InternetOff\InternetOff.exe [3158328] [PID.4652] {1A3971F7D5A04EBA878183D0A57E1EC1} [MD5.7EFF12F029FBBB00BD25FF7FDDDC197D] - (.Nenad Hrg (SoftwareOK.com) - AutoHideDesktopIcons.) -- C:\Program Files (x86)\Auto Hide Desktop Icons\AutoHideDesktopIcons 2.75.exe [49152] [PID.4748] =>.Nenad Hrg (SoftwareOK.com) [MD5.E1F1F5DBDA0FD31A90C482EB24357DE4] - (.My Portable Software - My CPU Monitor.) -- C:\My CPU monitor\My CPU Monitor.exe [280064] [PID.4424] [MD5.F6987FF6C6D683F79FDCE707B071A997] - (.SFX TEAM - SuperCopier 2 (explorer file copy replaceme.) -- C:\Program Files (x86)\SuperCopier2\SuperCopier2.exe [955392] [PID.4728] =>.SFX TEAM [MD5.49ABBB2B8EF50AA7A91C6B722C63944F] - (.Copyright (c) 2011 - WinSplit executable.) -- C:\Program Files (x86)\WinSplit Revolution\WinSplit.exe [3951616] [PID.1140] [MD5.6E4C258EF2FFCC1ABAC0FC5E147B5102] - (.Copyright (c) 2011 - WinSplit Hook System.) -- C:\Program Files (x86)\WinSplit Revolution\WinSplitDrvr32.exe [15872] [PID.4368] [MD5.3BC97E022501EDEDB290B0452E95F916] - (.Copyright (c) 2011 - WinSplit Hook System.) -- C:\Program Files (x86)\WinSplit Revolution\WinSplitDrvr64.exe [17920] [PID.1640] [MD5.81A3429C64A1E4937DCEA742748CA886] - (.NirSoft - Volumouse Utility.) -- C:\volumouse-x64\volumouse.exe [94816] [PID.4592] =>.Nir Sofer® [MD5.30F85413CA7D3C3094A9C93F06A9D800] - (...) -- C:\volumouse-x64\volumouse32.exe [14848] [PID.3832] [MD5.895B4CB3B4095BE53E51E3F75CB6DC97] - (.Matthew Malensek - 3RVX.) -- C:\3RVX3-B5\3RVX.exe [457216] [PID.568] [MD5.7DFCCC67990B6DE7F30F553A4E4612A4] - (...) -- C:\Program Files (x86)\RocketDock\RocketDock.exe [495616] [PID.2700] [MD5.4761A3614A47BD22027BBA49B38A2BF7] - (.Dexpot GbR - Dexpot - Virtual desktops for Windows.) -- C:\Program Files (x86)\Dexpot\dexpot.exe [1845296] [PID.2636] =>.Dexpot GbR® [MD5.A5904B03E6112A3F466C8AE067A848B8] - (.Dexpot GbR - Dexpot64 Message Window.) -- C:\Program Files (x86)\Dexpot\Dexpot64.exe [55344] [PID.5136] =>.Dexpot GbR® [MD5.947736C08004F9C2FB55F486CB8D6B9C] - (.RaMMicHaeL - 7+ Taskbar Tweaker.) -- C:\7+ Taskbar Tweaker\bin\64\7+ Taskbar Tweaker.ex2 [380416] [PID.6036] =>.RaMMicHaeL [MD5.78C0E1B755AD36AE45C1DCBE39944093] - (.Bao_Nguyen - Switcher.) -- C:\Program Files (x86)\Switcher\Switcher.exe [425984] [PID.6056] [MD5.65F39E4C0A0119E5BA5911C524EAA9A7] - (.VMware, Inc. - VMware Tray Process.) -- C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe [104128] [PID.5100] =>.VMware, Inc.® [MD5.126CD279A68CB82E53512B46B18F2B7C] - (.© 2011 - All authors - .) -- C:\Program Files\Rainmeter\Rainmeter.exe [36544] [PID.740] =>.Open Source Developer, Rainmeter® [MD5.FBA624E414909CCB8BFEE7183B0575A0] - (.Elias Fotinis - DeskPins application.) -- C:\Program Files (x86)\DeskPins\DeskPins.exe [62464] [PID.5164] [MD5.8E2EB19C307222723C374D5BE952DBC3] - (...) -- C:\Users\jeje07\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Système\Gest\Gest.exe [2592256] [PID.5304] [MD5.481FA503A3021DDB3BBFE32E99A6C73E] - (.Pierre TORRIS - Sauvegarde et restauration du bureau.) -- C:\Program Files (x86)\IcoSauve\IcoSauve.exe [130048] [PID.5328] =>.Pierre TORRIS [MD5.5819FA78BA86E89D5E611FE5A3B97244] - (.Carthago Software - MemInfo.) -- C:\Program Files (x86)\MemInfo\meminfo.exe [943104] [PID.5528] [MD5.4451C66061F730641157BF549E54BF53] - (.Copyright (C) Georg Fischer 2009-2010 - Manages explorer folder window sizes and po.) -- C:\Program Files (x86)\ShellFolderFix64\ShellFolderFixUI.exe [2625024] [PID.5816] [MD5.FF9F8695FA627E3BE6CF14239B44234D] - (.Intel Corporation - IAStorIcon.) -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322472] [PID.1912] =>.Intel Corporation - Rapid Storage Technology® [MD5.D90885430767C6152AF908D57A5159AC] - (.Intel Corporation - IAStorDataSvc.) -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [18856] [PID.5144] =>.Intel Corporation - Rapid Storage Technology® [MD5.A5A9C15C851F41E985E7C67FE7938E44] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\jeje07\Desktop\ZHPDiag3.exe [2148352] [PID.3796] =>.Nicolas Coolman ---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (76) - 4s M0 - MFSP: prefs.js [jeje07 - nqsbaluf.default] http://www.nextinpact.com/ P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\4or6@hunen.net.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\about-addons-memory@tn123.org.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\aboutaddons@firefox.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\aboutconfigbutton@firefox.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\addonsRecentUpdates@infocatcher.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\addressBarFontSizeBigger@papafresh.com.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\ALone-live@ya.ru.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\amcontextmenu@loucypher.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\cam@sdrocking.com.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\CertPatrol@PSYC.EU.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\ClassicThemeRestorer@ArisT2Noia4dev.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\ColourThatSite@einspeiser.de.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\CSTBB@NArisT2_Noia4dev.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\EscCloseTab@Simplest.Ever.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\firefox@ghostery.com.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\firefoxbookmarkchecker@everhelper.me.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\firegestures@xuldev.org.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\focus-follows-input@spyrosoft.com.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\hidecaptionplus-dp@dummy.addons.mozilla.org.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\HighlightedTextToFile@bobbyrne01.org.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\id@baku.priv8.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\instaclick@leahscape.com.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\ipvfox@dagger2-addons.mozilla.org.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\jid0-9XfBwUWnvPx4wWsfBWMCm4Jj69E@jetpack.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\jid0-DpogclPgnN9OvqNntEBbPZxBinY@jetpack.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\jid0-IPSuVKD0J7yL1cIBwQAdoHTCWmY@jetpack.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\jid0-TBRXf78ZEzGQyccB8SA1ALbcMpE@jetpack.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\jid1-BoFifL9Vbdl2zQ@jetpack.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\jid1-CKHySAadH4nL6Q@jetpack.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\jid1-I1AHb505ZWPehw@jetpack.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\jid1-umaWvsCQwZesUg@jetpack.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\jid1-wkCmfgboni3B1Q@jetpack.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\jid1-ylDsmQrKspNYVg@jetpack.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\memoryrestart@teamextension.com.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\nimbusscreencaptureff@everhelper.me.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\nosquint@urandom.ca.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\osb@quicksaver.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\personas@christopher.beard.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\privateTab@infocatcher.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\s3download@statusbar.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\scrollprogress@com.sppad.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\snaplinks@snaplinks.mozdev.org.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\stefanvandamme@stefanvd.net.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\TabAutoReload@schuzak.jp.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\thumbnailZoom@dadler.github.com.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\tiletabs@DW-dev.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\uBlock0@raymondhill.net.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b}.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\{11483926-db67-4190-91b1-ef20fcec5f33}.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\{146f1820-2b0d-49ef-acbf-d85a6986e10c}.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\{455D905A-D37C-4643-A9E2-F6FEFAA0424A}.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8}.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\{477c4c36-24eb-11da-94d4-00e08161165f}.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\{5F590AA2-1221-4113-A6F4-A4BB62414FAC}.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\{75CEEE46-9B64-46f8-94BF-54012DE155F0}.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\{A5C87640-F7CF-11DA-974D-0800200C9A66}.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\{b9acf540-acba-11e1-8ccb-001fd0e08bd4}.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\{c71ff04d-f001-1fc1-1fc1-c71ff04df001}.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\{d40f5e7b-d2cf-4856-b441-cc613eeffbe3}.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\{dc572301-7619-498c-a57d-39143191b318}.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\{e1aaa9f8-4500-47f1-9a0a-b02bd60e4076}.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\{E6C1199F-E687-42da-8C24-E7770CC3AE66}.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\{f3f219f9-cbce-467e-b8fe-6e076d29665c}.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\{f69e22c7-bc50-414a-9269-0f5c344cd94c}.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\{fa8476cf-a98c-4e08-99b4-65a69cb4b7d4}.xpi P2 - EXT FILE: (...) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\searchplugins\duckduckgo.xml P2 - EXT: (.Giuliano Masseroni - Favicon Restorer.) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\faviconrestorer@masserog.it =>.Giuliano Masseroni P2 - EXT: (.EFF Technologists - HTTPS-Everywhere.) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\https-everywhere-eff@eff.org P2 - EXT: (.y5. Revived for AlexancarlProject - Organize Status Bar (Revived).) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\obsrev@alexancarlproject.net P2 - EXT: (.Eugene G. Suslikov - FireShot.) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\{0b457cAA-602d-484a-8fe7-c1d894a011ba} =>.Eugene G. Suslikov P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_306.dll =>.Adobe Systems Incorporated ---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (15) - 0s R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer ---\\ Internet Explorer,Proxy Management (2) - 1s R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 ---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s F2 - REG:system.ini: UserInit= F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation F2 - REG:system.ini: VMApplet= ---\\ Etude du fichier hosts (1) - 0s ~ Le fichier hôte est sain (The hosts file is clean) (8278) ---\\ Browser Helper Object de navigateur (BHO) (1) - 0s O2 - BHO: (no name) [64Bits] - AutorunsDisabled (Orphean) ---\\ Applications lancées au démarrage du système (43) - 1s O4 - HKLM\..\Run: [IAStorIcon] . (.Intel Corporation - Delayed launcher.) -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe =>.Intel Corporation O4 - HKLM\..\Run: [Cmaudio8788] . (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\Windows\SysWOW64\rundll32.exe =>.Microsoft Corporation O4 - HKLM\..\Run: [Cmaudio8788GX] . (.Copyright (C) 2007 - HsMgr Application.) -- C:\Windows\SysWOW64\HsMgr.exe O4 - HKLM\..\Run: [Cmaudio8788GX64] . (.Copyright (C) 2007 - HsMgr Application.) -- C:\Windows\System\HsMgr64.exe O4 - HKLM\..\Run: [Greenshot] . (.Greenshot - Greenshot.) -- C:\Program Files\Greenshot\Greenshot.exe =>.Greenshot O4 - HKLM\..\Run: [NetWorx] . (.SoftPerfect - NetWorx Application (64-bit).) -- C:\Program Files\NetWorx\networx.exe {0C27AF564CE39FCE88D1D96B45054483} =>.SoftPerfect O4 - HKLM\..\Run: [StartupDelayer] . (.r2 Studios - Startup Launcher.) -- C:\Program Files\r2 Studios\Startup Delayer\Startup Launcher.exe O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe =>.Adobe Systems Incorporated® O4 - HKLM\..\Run: [Classic Start Menu] . (.IvoSoft - Classic Start Menu.) -- C:\Program Files\Classic Shell\ClassicStartMenu.exe =>.Ivaylo Beltchev® O4 - HKLM\..\Run: [egui] . (.ESET - ESET Main GUI.) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe =>.ESET, spol. s r.o.® O4 - HKLM\..\Run: [OutpostMonitor] . (.Agnitum Ltd. - Outpost User Interface.) -- C:\Program Files\Agnitum\Outpost Firewall Pro\op_mon.exe {748661E9174BA5AA2B48492DE4AB423E} O4 - HKCU\..\Run: [Clavier+] . (.Guillaume Ryder (http://utilfr42.free.fr) - Clavier+.) -- C:\Users\jeje07\AppData\Local\Clavier+\Clavier.exe O4 - HKCU\..\Run: [InternetOff] . (...) -- C:\Program Files (x86)\InternetOff\InternetOff.exe {1A3971F7D5A04EBA878183D0A57E1EC1} O4 - HKCU\..\Run: [AutoHideDesktopIcons] . (.Nenad Hrg (SoftwareOK.com) - AutoHideDesktopIcons.) -- C:\Program Files (x86)\Auto Hide Desktop Icons\AutoHideDesktopIcons 2.75.exe =>.Nenad Hrg (SoftwareOK.com) O4 - HKCU\..\Run: [OpenHardwareMonitor] . (.Copyright © 2009-2014 Michael Möller - Open Hardware Monitor.) -- C:\Program Files (x86)\OpenHardwareMonitor\OpenHardwareMonitor.exe O4 - HKCU\..\Run: [My CPU Monitor] . (.My Portable Software - My CPU Monitor.) -- C:\My CPU monitor\My CPU Monitor.exe O4 - HKCU\..\Run: [SuperCopier2.exe] . (.SFX TEAM - SuperCopier 2 (explorer file copy replaceme.) -- C:\Program Files (x86)\SuperCopier2\SuperCopier2.exe =>.SFX TEAM O4 - HKCU\..\Run: [Winsplit] . (.Copyright (c) 2011 - WinSplit executable.) -- C:\Program Files (x86)\WinSplit Revolution\WinSplit.exe O4 - HKCU\..\Run: [$Volumouse$] . (.NirSoft - Volumouse Utility.) -- C:\volumouse-x64\volumouse.exe =>.Nir Sofer® O4 - HKCU\..\Run: [3RVX] . (.Matthew Malensek - 3RVX.) -- C:\3RVX3-B5\3RVX.exe O4 - HKCU\..\Run: [RocketDock] . (...) -- C:\Program Files (x86)\RocketDock\RocketDock.exe O4 - HKCU\..\Run: [Dexpot] . (.Dexpot GbR - Dexpot - Virtual desktops for Windows.) -- C:\Program Files (x86)\Dexpot\dexpot.exe =>.Dexpot GbR® O4 - HKCU\..\Run: [CS Dispatch] . (.Copyright (C) 2011 - EASY KM Link.) -- C:\Users\jeje07\AppData\Roaming\OTi\EASYKMLink\FunctModules\{23863E42-6AAC-482c-81D2-BD6A23CCFEF8}\EASYKMLink.exe {541786083D7A13AE1755009F2D9E30C8} O4 - HKCU\..\Run: [7 Taskbar Tweaker] . (.RaMMicHaeL - 7+ Taskbar Tweaker.) -- C:\7+ Taskbar Tweaker\7+ Taskbar Tweaker.exe =>.RaMMicHaeL O4 - HKCU\..\Run: [Switcher] . (.Bao_Nguyen - Switcher.) -- C:\Program Files (x86)\Switcher\Switcher.exe O4 - HKLM\..\Wow6432Node\Run: [vmware-tray.exe] . (.VMware, Inc. - VMware Tray Process.) -- C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe =>.VMware, Inc.® O4 - HKLM\..\Wow6432Node\RunOnce: [InnoSetupRegFile.0000000001] . (. - Setup/Uninstall.) -- C:\Windows\is-OMPBM.exe O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Corporation® O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Corporation® O4 - HKUS\S-1-5-21-1073624782-3605320356-2191874252-1001\..\Run: [Clavier+] . (.Guillaume Ryder (http://utilfr42.free.fr) - Clavier+.) -- C:\Users\jeje07\AppData\Local\Clavier+\Clavier.exe O4 - HKUS\S-1-5-21-1073624782-3605320356-2191874252-1001\..\Run: [InternetOff] . (...) -- C:\Program Files (x86)\InternetOff\InternetOff.exe {1A3971F7D5A04EBA878183D0A57E1EC1} O4 - HKUS\S-1-5-21-1073624782-3605320356-2191874252-1001\..\Run: [AutoHideDesktopIcons] . (.Nenad Hrg (SoftwareOK.com) - AutoHideDesktopIcons.) -- C:\Program Files (x86)\Auto Hide Desktop Icons\AutoHideDesktopIcons 2.75.exe =>.Nenad Hrg (SoftwareOK.com) O4 - HKUS\S-1-5-21-1073624782-3605320356-2191874252-1001\..\Run: [OpenHardwareMonitor] . (.Copyright © 2009-2014 Michael Möller - Open Hardware Monitor.) -- C:\Program Files (x86)\OpenHardwareMonitor\OpenHardwareMonitor.exe O4 - HKUS\S-1-5-21-1073624782-3605320356-2191874252-1001\..\Run: [My CPU Monitor] . (.My Portable Software - My CPU Monitor.) -- C:\My CPU monitor\My CPU Monitor.exe O4 - HKUS\S-1-5-21-1073624782-3605320356-2191874252-1001\..\Run: [SuperCopier2.exe] . (.SFX TEAM - SuperCopier 2 (explorer file copy replaceme.) -- C:\Program Files (x86)\SuperCopier2\SuperCopier2.exe =>.SFX TEAM O4 - HKUS\S-1-5-21-1073624782-3605320356-2191874252-1001\..\Run: [Winsplit] . (.Copyright (c) 2011 - WinSplit executable.) -- C:\Program Files (x86)\WinSplit Revolution\WinSplit.exe O4 - HKUS\S-1-5-21-1073624782-3605320356-2191874252-1001\..\Run: [$Volumouse$] . (.NirSoft - Volumouse Utility.) -- C:\volumouse-x64\volumouse.exe =>.Nir Sofer® O4 - HKUS\S-1-5-21-1073624782-3605320356-2191874252-1001\..\Run: [3RVX] . (.Matthew Malensek - 3RVX.) -- C:\3RVX3-B5\3RVX.exe O4 - HKUS\S-1-5-21-1073624782-3605320356-2191874252-1001\..\Run: [RocketDock] . (...) -- C:\Program Files (x86)\RocketDock\RocketDock.exe O4 - HKUS\S-1-5-21-1073624782-3605320356-2191874252-1001\..\Run: [Dexpot] . (.Dexpot GbR - Dexpot - Virtual desktops for Windows.) -- C:\Program Files (x86)\Dexpot\dexpot.exe =>.Dexpot GbR® O4 - HKUS\S-1-5-21-1073624782-3605320356-2191874252-1001\..\Run: [CS Dispatch] . (.Copyright (C) 2011 - EASY KM Link.) -- C:\Users\jeje07\AppData\Roaming\OTi\EASYKMLink\FunctModules\{23863E42-6AAC-482c-81D2-BD6A23CCFEF8}\EASYKMLink.exe {541786083D7A13AE1755009F2D9E30C8} O4 - HKUS\S-1-5-21-1073624782-3605320356-2191874252-1001\..\Run: [7 Taskbar Tweaker] . (.RaMMicHaeL - 7+ Taskbar Tweaker.) -- C:\7+ Taskbar Tweaker\7+ Taskbar Tweaker.exe =>.RaMMicHaeL O4 - HKUS\S-1-5-21-1073624782-3605320356-2191874252-1001\..\Run: [Switcher] . (.Bao_Nguyen - Switcher.) -- C:\Program Files (x86)\Switcher\Switcher.exe ---\\ Raccourcis Global Startup (47) - 1s O4 - GS\Quicklaunch [___VMware_Conv_SA___]: Hard Disk Sentinel.lnk . (.H.D.S. Hungary - Hard Disk Sentinel Engine.) C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe {00E2974858A0A4BC980D957B51159AA7B4} O4 - GS\Quicklaunch [___VMware_Conv_SA___]: Wireshark Legacy.lnk . (.The Wireshark developer community, http://www.wiresha - Wireshark.) C:\Program Files\Wireshark\Wireshark-gtk.exe =>.Wireshark Foundation® O4 - GS\Quicklaunch [___VMware_Conv_SA___]: Wireshark.lnk . (.The Wireshark developer community, http://www.wiresha - Wireshark.) C:\Program Files\Wireshark\Wireshark.exe =>.Wireshark Foundation® O4 - GS\Quicklaunch [___VMware_Conv_SA___]: XnConvert.lnk . (.XnView, http://www.xnview.com - XnConvert.) C:\Program Files\XnConvert\xnconvert.exe =>.Pierre GOUGELET® O4 - GS\Quicklaunch [___VMware_Conv_SA___]: XnViewMP.lnk . (.XnView, http://www.xnview.com - XnViewMP.) C:\Program Files\XnViewMP\xnviewmp.exe =>.Pierre GOUGELET® O4 - GS\sendTo [___VMware_Conv_SA___]: The Bat!.LNK . (.Ritlabs, SRL - .) C:\Program Files (x86)\The Bat!\thebat64.exe =>.Ritlabs, SRL O4 - GS\TaskBar [___VMware_Conv_SA___]: AsusAudioCenter.lnk . (.CMedia - .) C:\Program Files (x86)\ASUS Xonar Essence STX Audio\Customapp\AsusAudioCenter.exe O4 - GS\TaskBar [___VMware_Conv_SA___]: Process Lasso User Interface.lnk . (.Bitsum LLC - .) C:\Program Files (x86)\Process Lasso\ProcessLasso.exe =>.Bitsum LLC O4 - GS\TaskBar [___VMware_Conv_SA___]: SwiftSearch.lnk . (...) C:\Program Files (x86)\SwiftSearch.exe =>.Superfluous.SwiftSearch O4 - GS\Startup [___VMware_Conv_SA___]: DeskPins.lnk . (.Elias Fotinis - DeskPins application.) C:\Program Files (x86)\DeskPins\DeskPins.exe O4 - GS\Startup [___VMware_Conv_SA___]: Gest.lnk . (...) C:\Users\jeje07\AppData\Roaming\Gest\GestLauncher.exe O4 - GS\Startup [___VMware_Conv_SA___]: IcoSauve.lnk . (.Pierre TORRIS - Sauvegarde et restauration du bureau.) C:\Program Files (x86)\IcoSauve\IcoSauve.exe =>.Pierre TORRIS O4 - GS\Startup [___VMware_Conv_SA___]: MemInfo.lnk . (.Carthago Software - MemInfo.) C:\Program Files (x86)\MemInfo\meminfo.exe O4 - GS\Startup [___VMware_Conv_SA___]: Rainmeter.lnk . (.© 2011 - All authors - .) C:\Program Files\Rainmeter\Rainmeter.exe =>.Open Source Developer, Rainmeter® O4 - GS\Startup [___VMware_Conv_SA___]: ShellFolderFixUI.exe.lnk . (.Copyright (C) Georg Fischer 2009-2010 - Manages explorer folder window sizes and po.) C:\Program Files (x86)\ShellFolderFix64\ShellFolderFixUI.exe O4 - GS\Quicklaunch [Administrateur]: Hard Disk Sentinel.lnk . (.H.D.S. Hungary - Hard Disk Sentinel Engine.) C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe {00E2974858A0A4BC980D957B51159AA7B4} O4 - GS\Quicklaunch [Administrateur]: Wireshark Legacy.lnk . (.The Wireshark developer community, http://www.wiresha - Wireshark.) C:\Program Files\Wireshark\Wireshark-gtk.exe =>.Wireshark Foundation® O4 - GS\Quicklaunch [Administrateur]: Wireshark.lnk . (.The Wireshark developer community, http://www.wiresha - Wireshark.) C:\Program Files\Wireshark\Wireshark.exe =>.Wireshark Foundation® O4 - GS\Quicklaunch [Administrateur]: XnConvert.lnk . (.XnView, http://www.xnview.com - XnConvert.) C:\Program Files\XnConvert\xnconvert.exe =>.Pierre GOUGELET® O4 - GS\Quicklaunch [Administrateur]: XnViewMP.lnk . (.XnView, http://www.xnview.com - XnViewMP.) C:\Program Files\XnViewMP\xnviewmp.exe =>.Pierre GOUGELET® O4 - GS\sendTo [Administrateur]: The Bat!.LNK . (.Ritlabs, SRL - .) C:\Program Files (x86)\The Bat!\thebat64.exe =>.Ritlabs, SRL O4 - GS\TaskBar [Administrateur]: AsusAudioCenter.lnk . (.CMedia - .) C:\Program Files (x86)\ASUS Xonar Essence STX Audio\Customapp\AsusAudioCenter.exe O4 - GS\TaskBar [Administrateur]: Process Lasso User Interface.lnk . (.Bitsum LLC - .) C:\Program Files (x86)\Process Lasso\ProcessLasso.exe =>.Bitsum LLC O4 - GS\TaskBar [Administrateur]: SwiftSearch.lnk . (...) C:\Program Files (x86)\SwiftSearch.exe =>.Superfluous.SwiftSearch O4 - GS\Startup [Administrateur]: DeskPins.lnk . (.Elias Fotinis - DeskPins application.) C:\Program Files (x86)\DeskPins\DeskPins.exe O4 - GS\Startup [Administrateur]: Gest.lnk . (...) C:\Users\jeje07\AppData\Roaming\Gest\GestLauncher.exe O4 - GS\Startup [Administrateur]: IcoSauve.lnk . (.Pierre TORRIS - Sauvegarde et restauration du bureau.) C:\Program Files (x86)\IcoSauve\IcoSauve.exe =>.Pierre TORRIS O4 - GS\Startup [Administrateur]: MemInfo.lnk . (.Carthago Software - MemInfo.) C:\Program Files (x86)\MemInfo\meminfo.exe O4 - GS\Startup [Administrateur]: Rainmeter.lnk . (.© 2011 - All authors - .) C:\Program Files\Rainmeter\Rainmeter.exe =>.Open Source Developer, Rainmeter® O4 - GS\Startup [Administrateur]: ShellFolderFixUI.exe.lnk . (.Copyright (C) Georg Fischer 2009-2010 - Manages explorer folder window sizes and po.) C:\Program Files (x86)\ShellFolderFix64\ShellFolderFixUI.exe O4 - GS\Quicklaunch [jeje07]: Hard Disk Sentinel.lnk . (.H.D.S. Hungary - Hard Disk Sentinel Engine.) C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe {00E2974858A0A4BC980D957B51159AA7B4} O4 - GS\Quicklaunch [jeje07]: Wireshark Legacy.lnk . (.The Wireshark developer community, http://www.wiresha - Wireshark.) C:\Program Files\Wireshark\Wireshark-gtk.exe =>.Wireshark Foundation® O4 - GS\Quicklaunch [jeje07]: Wireshark.lnk . (.The Wireshark developer community, http://www.wiresha - Wireshark.) C:\Program Files\Wireshark\Wireshark.exe =>.Wireshark Foundation® O4 - GS\Quicklaunch [jeje07]: XnConvert.lnk . (.XnView, http://www.xnview.com - XnConvert.) C:\Program Files\XnConvert\xnconvert.exe =>.Pierre GOUGELET® O4 - GS\Quicklaunch [jeje07]: XnViewMP.lnk . (.XnView, http://www.xnview.com - XnViewMP.) C:\Program Files\XnViewMP\xnviewmp.exe =>.Pierre GOUGELET® O4 - GS\sendTo [jeje07]: The Bat!.LNK . (.Ritlabs, SRL - .) C:\Program Files (x86)\The Bat!\thebat64.exe =>.Ritlabs, SRL O4 - GS\TaskBar [jeje07]: AsusAudioCenter.lnk . (.CMedia - .) C:\Program Files (x86)\ASUS Xonar Essence STX Audio\Customapp\AsusAudioCenter.exe O4 - GS\TaskBar [jeje07]: Process Lasso User Interface.lnk . (.Bitsum LLC - .) C:\Program Files (x86)\Process Lasso\ProcessLasso.exe =>.Bitsum LLC O4 - GS\TaskBar [jeje07]: SwiftSearch.lnk . (...) C:\Program Files (x86)\SwiftSearch.exe =>.Superfluous.SwiftSearch O4 - GS\Startup [jeje07]: DeskPins.lnk . (.Elias Fotinis - DeskPins application.) C:\Program Files (x86)\DeskPins\DeskPins.exe O4 - GS\Startup [jeje07]: Gest.lnk . (...) C:\Users\jeje07\AppData\Roaming\Gest\GestLauncher.exe O4 - GS\Startup [jeje07]: IcoSauve.lnk . (.Pierre TORRIS - Sauvegarde et restauration du bureau.) C:\Program Files (x86)\IcoSauve\IcoSauve.exe =>.Pierre TORRIS O4 - GS\Startup [jeje07]: MemInfo.lnk . (.Carthago Software - MemInfo.) C:\Program Files (x86)\MemInfo\meminfo.exe O4 - GS\Startup [jeje07]: Rainmeter.lnk . (.© 2011 - All authors - .) C:\Program Files\Rainmeter\Rainmeter.exe =>.Open Source Developer, Rainmeter® O4 - GS\Startup [jeje07]: ShellFolderFixUI.exe.lnk . (.Copyright (C) Georg Fischer 2009-2010 - Manages explorer folder window sizes and po.) C:\Program Files (x86)\ShellFolderFix64\ShellFolderFixUI.exe O4 - GS\Startup [Public]: Gest.lnk . (...) C:\Users\jeje07\AppData\Roaming\Gest\GestLauncher.exe O4 - GS\Startup [Public]: Rainmeter.lnk . (.© 2011 - All authors - .) C:\Program Files\Rainmeter\Rainmeter.exe =>.Open Source Developer, Rainmeter® ---\\ Modification Domaine/Adresses DNS (2) - 0s O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{e28a164e-2bfb-47ef-a632-8f2a9569639e}: DhcpNameServer = 192.168.1.1 192.168.1.1 ---\\ Protocole additionnel (26) - 1s O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\SysWOW64\itss.dll =>.Microsoft Corporation O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\SysWOW64\inetcomm.dll =>.Microsoft Corporation O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\SysWOW64\itss.dll =>.Microsoft Corporation O18 - Handler: mso-minsb-roaming.16 [64Bits] - {83C25742-A9F7-49FB-9138-434302C88D07} . (.Microsoft Corporation - Microsoft Office 2016 component.) -- C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL =>.Microsoft Corporation® O18 - Handler: mso-minsb.16 [64Bits] - {42089D2D-912D-4018-9087-2B87803E93FB} . (.Microsoft Corporation - Microsoft Office 2016 component.) -- C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL =>.Microsoft Corporation® O18 - Handler: osf-roaming.16 [64Bits] - {42089D2D-912D-4018-9087-2B87803E93FB} . (.Microsoft Corporation - Microsoft Office 2016 component.) -- C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL =>.Microsoft Corporation® O18 - Handler: osf.16 [64Bits] - {5504BE45-A83B-4808-900A-3A5C36E7F77A} . (.Microsoft Corporation - Microsoft Office 2016 component.) -- C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL =>.Microsoft Corporation® O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation O18 - Handler: tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\SysWOW64\tbauth.dll =>.Microsoft Corporation O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation O18 - Handler: windows.tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\SysWOW64\tbauth.dll =>.Microsoft Corporation O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll =>.Microsoft Corporation O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll =>.Microsoft Corporation O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll =>.Microsoft Corporation ---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (1) - 0s O20 - AppInit_DLLs: . (.Agnitum Ltd. - Outpost Hooking Module.) - c:\Program Files\Agnitum\Outpost Firewall Pro\wl_hook64.dll ---\\ Logiciels installés (102) - 7s O42 - Logiciel: Adobe Creative Cloud - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Creative Cloud =>.Adobe Systems Incorporated® O42 - Logiciel: Adobe Flash Player 20 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {0608F2B6-4E49-4AD0-9128-C122A34CFCE1} =>.Adobe Systems Incorporated O42 - Logiciel: Adobe Lightroom - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {8048A5DF-8A70-5BE1-954B-E0FDE1BD0D0D} =>.Adobe Systems Incorporated® O42 - Logiciel: Adobe Photoshop CC 2015 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {793C2BF7-A4FE-4608-91C9-9282C5801C21} =>.Adobe Systems Incorporated® O42 - Logiciel: Adobe Premiere Pro CC 2015 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {38C72D42-0672-43B1-9E05-E7631684F9A1} =>.Adobe Systems Incorporated® O42 - Logiciel: Alternate DLL Analyzer 1.431 - (.Alternate Tools.) [HKLM][64Bits] -- Alternate DLL Analyzer_is1 O42 - Logiciel: AnmanieSMP 2.4 i - (.Christoph Walter.) [HKLM][64Bits] -- AnmanieSMP_is1 =>.Christoph Walter O42 - Logiciel: Ant Renamer - (.Ant Software.) [HKLM][64Bits] -- Ant Renamer 2_is1 =>.Ant Software O42 - Logiciel: AOMEI Partition Assistant Pro Edition 5.8 (DEMO) - (.AOMEI Technology Co., Ltd..) [HKLM][64Bits] -- {02F850ED-FD0E-4ED1-BE0B-5498165BF3D1}_is1 =>.AOMEI Technology Co., Ltd. O42 - Logiciel: archttp - (...) [HKLM][64Bits] -- archttp O42 - Logiciel: Asmedia ASM106x SATA Host Controller Driver - (.Asmedia Technology.) [HKLM][64Bits] -- {DF6C3726-7E53-4772-9763-E9F147769F51} =>.Asmedia Technology O42 - Logiciel: ASUS Xonar Essence STX Audio - (.ASUSTeK Computer Inc..) [HKLM][64Bits] -- {71B53BA8-4BE3-49AF-BC3E-07F392008788} =>.ASUSTek Computer Inc. O42 - Logiciel: AutoHotkey 1.1.22.09 - (.Lexikos.) [HKLM][64Bits] -- AutoHotkey =>.Lexikos O42 - Logiciel: Classic Shell - (.IvoSoft.) [HKLM][64Bits] -- {D4B3454F-7529-4F5F-851D-2C36933F7D64} =>.IvoSoft O42 - Logiciel: Clavier+ 10.6.7 - (.Guillaume Ryder.) [HKLM][64Bits] -- Clavier+_is1 =>.Guillaume Ryder O42 - Logiciel: DeskPins (remove only) - (...) [HKLM][64Bits] -- DeskPins O42 - Logiciel: Dexpot - (.Dexpot GbR.) [HKCU][64Bits] -- Dexpot =>.Dexpot GbR O42 - Logiciel: DiRT Rally - Patch FR 1.00 - (.TraductionJeux.com.) [HKLM][64Bits] -- DiRT Rally - Patch FR 1.00 =>.TraductionJeux.com O42 - Logiciel: DiRT Rally Update v1.02 - (...) [HKLM][64Bits] -- ZGlydHJhbGx5_is1 O42 - Logiciel: Dual Monitor Tools - (.GNE.) [HKLM][64Bits] -- {14DF3258-CA2F-4166-9713-EB7BB9D55307} O42 - Logiciel: DxO OpticsPro 10 - (.DxO.) [HKLM][64Bits] -- {5D3A3424-828C-4023-9C20-996679CFDA0B} O42 - Logiciel: ESET NOD32 Antivirus - (.ESET, spol s r. o..) [HKLM][64Bits] -- {5F2AE448-CD4B-40BD-B245-5F0CD06A09B0} =>.ESET, spol s r. o. O42 - Logiciel: Everyday Folder Icons v 1.0 - (.ArcticLine Software.) [HKLM][64Bits] -- Everyday Folder Icons_is1 =>.ArcticLine Software O42 - Logiciel: Exact Audio Copy 1.1 - (.Andre Wiethoff.) [HKLM][64Bits] -- Exact Audio Copy =>.Andre Wiethoff O42 - Logiciel: Fallout 4 - (...) [HKLM][64Bits] -- Fallout 4_is1 O42 - Logiciel: Fallout 4 French Language Pack - (...) [HKLM][64Bits] -- Fallout 4 French Language Pack_is1 O42 - Logiciel: foobar2000 v1.3.9 - (.Peter Pawlowski.) [HKLM][64Bits] -- foobar2000 =>.Piotr Pawłowski® O42 - Logiciel: Greenshot 1.2.5.19 - (.Greenshot.) [HKLM][64Bits] -- Greenshot_is1 =>.Greenshot O42 - Logiciel: Hard Disk Sentinel - (.HDS.) [HKLM][64Bits] -- Hard Disk Sentinel_is1 =>.HDS O42 - Logiciel: HashTab 5.2.0.14 - (.Implbits Software.) [HKLM][64Bits] -- HashTab =>.Implbits Software O42 - Logiciel: IcoSauve - (.Pierre TORRIS.) [HKLM][64Bits] -- IcoSauve_is1 =>.Pierre TORRIS O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {409CB30E-E457-4008-9B1A-ED1B9EA21140} =>.Intel Corporation O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {6DADC2C0-C9A9-4814-B59D-1FFA36F147EB} =>.Intel Corporation O42 - Logiciel: InternetOff 2.3, 32\64 bit edition - (.Crystal Rich, Ltd.) [HKLM][64Bits] -- InternetOff_is1 O42 - Logiciel: IObit Unlocker - (.IObit.) [HKLM][64Bits] -- IObit Unlocker_is1 =>.IObit Information Technology® O42 - Logiciel: Java 8 Update 74 (64-bit) - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F86418074F0} =>.Oracle Corporation O42 - Logiciel: Java Auto Updater - (.Oracle Corporation.) [HKLM][64Bits] -- {4A03706F-666A-4037-7777-5F2748764D10} =>.Oracle Corporation O42 - Logiciel: Kyodai Mahjongg 2006 v1.42 - (.Rene-Gilles Deberdt.) [HKLM][64Bits] -- Kyodai Mahjongg 2006_is1 =>.Rene-Gilles Deberdt O42 - Logiciel: Life Is Strange - (.SQUARE ENIX.) [HKLM][64Bits] -- Life Is Strange_is1 =>.Square Enix O42 - Logiciel: LRTimelapse 4.3 - (.Gunther Wegner.) [HKLM][64Bits] -- {3B86296C-F4C8-4FE7-8561-CC5F444098D4}}_is1 O42 - Logiciel: Macrium Reflect Free Edition - (.Paramount Software (UK) Ltd..) [HKLM][64Bits] -- {21CD6FD7-D895-4883-9CBB-3B8F7004C147} O42 - Logiciel: Macrium Reflect Free Edition - (.Paramount Software (UK) Ltd..) [HKLM][64Bits] -- MacriumReflect =>.Paramount Software UK Ltd® O42 - Logiciel: MediaInfo 0.7.83 - (.MediaArea.net.) [HKLM][64Bits] -- MediaInfo =>.MediaArea.net O42 - Logiciel: MemInfo (remove only) - (...) [HKLM][64Bits] -- MemInfo O42 - Logiciel: Module externe DxO OpticsPro 10 pour Adobe Lightroom - (.DxO Labs.) [HKLM][64Bits] -- {79C97462-1598-48CD-B597-8B3C3C5A20B8} =>.DxO Labs O42 - Logiciel: MozBackup 1.5.1 - (.Pavel Cvrcek.) [HKLM][64Bits] -- MozBackup =>.Pavel Cvrcek O42 - Logiciel: Mozilla Firefox 45.0 (x64 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 45.0 (x64 fr) =>.Mozilla Corporation® O42 - Logiciel: MPC-HC 1.7.9 (64-bit) - (.MPC-HC Team.) [HKLM][64Bits] -- {2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1 =>.Open Source Developer, Fotis ZAFIROPOULOS® O42 - Logiciel: MSI Afterburner 4.2.0 - (.MSI Co., LTD.) [HKLM][64Bits] -- Afterburner =>.MSI Co., LTD O42 - Logiciel: NetWorx 5.5.1 - (.Softperfect.) [HKLM][64Bits] -- NetWorx_is1 =>.SoftPerfect O42 - Logiciel: Nik Collection - (.Google.) [HKLM][64Bits] -- Nik Collection =>.Google Inc® O42 - Logiciel: Notepad++ - (.Notepad++ Team.) [HKLM][64Bits] -- Notepad++ =>.Notepad++ Team O42 - Logiciel: NVIDIA Install Application - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer =>.NVIDIA Corporation O42 - Logiciel: NVIDIA Logiciel système PhysX 9.15.0428 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX =>.NVIDIA Corporation O42 - Logiciel: NVIDIA Pilote graphique 361.82 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver =>.NVIDIA Corporation O42 - Logiciel: Office 16 Click-to-Run Extensibility Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-008C-0000-1000-0000000FF1CE} =>.Microsoft Corporation O42 - Logiciel: Office 16 Click-to-Run Licensing Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-007E-0000-1000-0000000FF1CE} =>.Microsoft Corporation O42 - Logiciel: Office 16 Click-to-Run Localization Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-008C-040C-1000-0000000FF1CE} =>.Microsoft Corporation O42 - Logiciel: Old Calculator for Windows 10 - (.http://winaero.com.) [HKLM][64Bits] -- OldCalcForWin10 =>.http://winaero.com O42 - Logiciel: OpenAL - (...) [HKLM][64Bits] -- OpenAL O42 - Logiciel: Outpost Firewall Pro 9.3 - (.Agnitum, Ltd..) [HKLM][64Bits] -- Agnitum Outpost Firewall Pro_is1 {748661E9174BA5AA2B48492DE4AB423E} =>.Agnitum, Ltd. O42 - Logiciel: Panneau de configuration NVIDIA 361.82 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel =>.NVIDIA Corporation O42 - Logiciel: PC8DeviceAgent 2.1.191 - (.SRM, Inc..) [HKLM][64Bits] -- PC8DeviceAgent O42 - Logiciel: PDF-Viewer - (.Tracker Software Products Ltd.) [HKLM][64Bits] -- {A278382D-4F1B-4D47-9885-8523F7261E8D}_is1 =>.Tracker Software Products (Canada) Ltd® O42 - Logiciel: Photomatix Pro version 5.1.1 - (.HDRsoft Ltd.) [HKLM][64Bits] -- PhotomatixPro5x64_is1 =>.HDRsoft Ltd O42 - Logiciel: Process Lasso - (.Bitsum.) [HKLM][64Bits] -- ProcessLasso =>.Bitsum O42 - Logiciel: Rainmeter - (...) [HKLM][64Bits] -- Rainmeter O42 - Logiciel: Recuva - (.Piriform.) [HKLM][64Bits] -- Recuva =>.Piriform Ltd® O42 - Logiciel: Rise of the Tomb Raider - (.Crystal Dynamics.) [HKLM][64Bits] -- Steam App 391220 =>.Valve® O42 - Logiciel: RivaTuner Statistics Server 6.4.1 - (.Unwinder.) [HKLM][64Bits] -- RTSS =>.Unwinder O42 - Logiciel: RocketDock 1.3.5 - (.Punk Software.) [HKLM][64Bits] -- RocketDock_is1 =>.Punk Software O42 - Logiciel: Rockstar Games Social Club - (.Rockstar Games.) [HKLM][64Bits] -- Rockstar Games Social Club =>.Take-Two Interactive Software, Inc.® O42 - Logiciel: scrabbleproB 1.1.7 - (.scrabblepro.) [HKLM][64Bits] -- scrabbleproB_is1 =>.scrabblepro O42 - Logiciel: Ski Challenge 16 - (...) [HKCU][64Bits] -- sc16-GAMETWIST_MAIN O42 - Logiciel: Soldats Inconnus Mémoires de la Grande Guerre 1.0.140373 - (.Huyustus.) [HKLM][64Bits] -- Soldats Inconnus Mémoires de la Grande Guerre 1.0.140373 =>.Huyustus O42 - Logiciel: Speccy - (.Piriform.) [HKLM][64Bits] -- Speccy =>.Piriform Ltd® O42 - Logiciel: SRM Install CDRom 6.42.18 - (.SRM.) [HKLM][64Bits] -- {6B3C0CE2-AB22-4800-9413-5DDB652E95FA} O42 - Logiciel: SRMX - (.SRM.) [HKLM][64Bits] -- {de.srm.srmx.Main}}_is1 O42 - Logiciel: Startup Delayer v3.0 (build 364) - (.r2 Studios.) [HKLM][64Bits] -- Startup Delayer {5124E5DBEBEE4223F3EE9AC482DA2D15} O42 - Logiciel: Steam - (.Valve Corporation.) [HKLM][64Bits] -- Steam =>.Valve® O42 - Logiciel: SuperCopier2 - (...) [HKLM][64Bits] -- SuperCopier2 O42 - Logiciel: Switcher 2.0.0 - (.Bao Nguyen.) [HKLM][64Bits] -- {F7DB6677-661D-4835-AAD8-1B7F4C98D7CE} O42 - Logiciel: SyncBackFree - (.2BrightSparks.) [HKLM][64Bits] -- SyncBackFree_is1 =>.2BrightSparks Pte Ltd® O42 - Logiciel: Technitium MAC Address Changer v6.0 - (.Technitium.) [HKLM][64Bits] -- TMACv6.0 =>.Technitium O42 - Logiciel: The Bat! v7.1.12 (64-bit) - (.Ritlabs, SRL.) [HKLM][64Bits] -- {244BF24D-E799-475F-BA46-0EFC63C39C72} =>.Ritlabs, SRL O42 - Logiciel: Tweaking.com - Windows Repair - (.Tweaking.com.) [HKLM][64Bits] -- Tweaking.com - Windows Repair =>.Tweaking.com O42 - Logiciel: VirtualCloneDrive - (.Elaborate Bytes.) [HKLM][64Bits] -- VirtualCloneDrive =>.Elaborate Bytes O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player =>.VideoLAN O42 - Logiciel: VMware vCenter Converter Standalone - (.VMware, Inc..) [HKLM][64Bits] -- {E9CC0208-D63B-4c63-90B1-598F99981D9F} =>.VMware, Inc. O42 - Logiciel: VMware Workstation - (.VMware, Inc..) [HKLM][64Bits] -- {4E3CD3D0-7F82-4B44-A3D9-A4000522B529} =>.VMware, Inc. O42 - Logiciel: Win7 MAC Address Changer version 1.9.5 - (.Zokali.) [HKLM][64Bits] -- {F9A76116-6D56-4CEA-830E-E95C168DC95B}_is1 O42 - Logiciel: Windows 10 Manager - (.Yamicsoft.) [HKCU][64Bits] -- Windows 10 Manager 1.0.9 =>.Yamicsoft O42 - Logiciel: Windows 10 Manager - (.Yamicsoft.) [HKLM][64Bits] -- {6C1DB2EC-AF6E-419A-A011-6E86DF1EBBDD} =>.Yamicsoft O42 - Logiciel: WinPcap 4.1.3 - (.Riverbed Technology, Inc..) [HKLM][64Bits] -- WinPcapInst =>.Riverbed Technology, Inc. O42 - Logiciel: WinRAR 5.30 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver =>.win.rar GmbH® O42 - Logiciel: WinSplit Revolution (v11.04) - (.Raphael Lencrerot.) [HKLM][64Bits] -- WinSplit Revolution O42 - Logiciel: WinUAE - (.Arabuusimiehet.) [HKLM][64Bits] -- {8AF30406-0DBC-4F26-9F69-073B6EC6C66E} O42 - Logiciel: Wireshark 2.0.0 (64-bit) - (.The Wireshark developer community, https://www.wireshark.org.) [HKLM][64Bits] -- Wireshark =>.Wireshark Foundation® O42 - Logiciel: XnConvert 1.71 - (.Gougelet Pierre-e.) [HKLM][64Bits] -- XnConvert_is1 =>.Gougelet Pierre-e O42 - Logiciel: XnView Shell Extension 3.5.1 (64bits) - (.Gougelet Pierre-e.) [HKLM][64Bits] -- XnView Shell Extension_is1 =>.Pierre GOUGELET® O42 - Logiciel: XnViewMP 0.78 - (.Gougelet Pierre-e.) [HKLM][64Bits] -- XnViewMP_is1 =>.Pierre GOUGELET® O42 - Logiciel: xrecode II 1.0.0.227 - (...) [HKLM][64Bits] -- {AFE83615-88BE-47F6-B3E4-A3FEF8B7B57F}_is1 ---\\ HKCU & HKLM Software Keys (139) - 7s HKLM\SOFTWARE\Wow6432Node\2BrightSparks HKLM\SOFTWARE\Wow6432Node\Adobe HKLM\SOFTWARE\Wow6432Node\AdwCleaner HKLM\SOFTWARE\Wow6432Node\AGEIA Technologies HKLM\SOFTWARE\Wow6432Node\ASIO HKLM\SOFTWARE\Wow6432Node\ASUS Xonar Essence STX Audio HKLM\SOFTWARE\Wow6432Node\Bethesda Softworks HKLM\SOFTWARE\Wow6432Node\Bitsum HKLM\SOFTWARE\Wow6432Node\Cygwin HKLM\SOFTWARE\Wow6432Node\Elaborate Bytes HKLM\SOFTWARE\Wow6432Node\Elias Fotinis HKLM\SOFTWARE\Wow6432Node\ESET HKLM\SOFTWARE\Wow6432Node\foobar2000 HKLM\SOFTWARE\Wow6432Node\GNE HKLM\SOFTWARE\Wow6432Node\Google HKLM\SOFTWARE\Wow6432Node\HD Sentinel HKLM\SOFTWARE\Wow6432Node\Intel HKLM\SOFTWARE\Wow6432Node\JavaSoft HKLM\SOFTWARE\Wow6432Node\JreMetrics HKLM\SOFTWARE\Wow6432Node\Khronos HKLM\SOFTWARE\Wow6432Node\macrium HKLM\SOFTWARE\Wow6432Node\Macromedia HKLM\SOFTWARE\Wow6432Node\Mozilla HKLM\SOFTWARE\Wow6432Node\mozilla.org HKLM\SOFTWARE\Wow6432Node\MozillaPlugins HKLM\SOFTWARE\Wow6432Node\MSI HKLM\SOFTWARE\Wow6432Node\Notepad++ HKLM\SOFTWARE\Wow6432Node\NVIDIA Corporation HKLM\SOFTWARE\Wow6432Node\ODBC HKLM\SOFTWARE\Wow6432Node\OpenAL HKLM\SOFTWARE\Wow6432Node\ProcessLasso HKLM\SOFTWARE\Wow6432Node\r2 Studios HKLM\SOFTWARE\Wow6432Node\Rainmeter HKLM\SOFTWARE\Wow6432Node\Rockstar Games HKLM\SOFTWARE\Wow6432Node\Software HKLM\SOFTWARE\Wow6432Node\TeamViewer HKLM\SOFTWARE\Wow6432Node\ThinPrint HKLM\SOFTWARE\Wow6432Node\Trolltech HKLM\SOFTWARE\Wow6432Node\Unwinder HKLM\SOFTWARE\Wow6432Node\Valve HKLM\SOFTWARE\Wow6432Node\VMware, Inc. HKLM\SOFTWARE\Wow6432Node\WinPcap HKLM\SOFTWARE\Wow6432Node\WinSplit Revolution HKLM\SOFTWARE\Wow6432Node\RegisteredApplications HKCU\SOFTWARE\2BrightSparks HKCU\SOFTWARE\Adobe HKCU\SOFTWARE\Adobe Lightroom HKCU\SOFTWARE\Agnitum HKCU\SOFTWARE\Akeo Consulting HKCU\SOFTWARE\AppDataLow HKCU\SOFTWARE\Arabuusimiehet HKCU\SOFTWARE\AudioFX HKCU\SOFTWARE\AWSoftware HKCU\SOFTWARE\Bitsum HKCU\SOFTWARE\Borland HKCU\SOFTWARE\C-Media HKCU\SOFTWARE\Caphyon HKCU\SOFTWARE\Circitor HKCU\SOFTWARE\CMEDIA HKCU\SOFTWARE\Crazy Monkey Studios HKCU\SOFTWARE\Crystal Dynamics HKCU\SOFTWARE\Cygwin HKCU\SOFTWARE\DebugKHelp HKCU\SOFTWARE\Dexpot HKCU\SOFTWARE\DxO Labs HKCU\SOFTWARE\DxOLabs HKCU\SOFTWARE\EFD Software HKCU\SOFTWARE\Elaborate Bytes HKCU\SOFTWARE\Elias Fotinis HKCU\SOFTWARE\EMU HKCU\SOFTWARE\ESET HKCU\SOFTWARE\foobar2000 HKCU\SOFTWARE\Gest HKCU\SOFTWARE\Google HKCU\SOFTWARE\Greentube HKCU\SOFTWARE\HashTab HKCU\SOFTWARE\HDRsoft HKCU\SOFTWARE\Illustrate HKCU\SOFTWARE\IM Providers HKCU\SOFTWARE\Intel HKCU\SOFTWARE\InternetOff HKCU\SOFTWARE\IvoSoft HKCU\SOFTWARE\JavaSoft HKCU\SOFTWARE\JGsoft HKCU\SOFTWARE\KC Softwares HKCU\SOFTWARE\LHF HKCU\SOFTWARE\LinkEngine HKCU\SOFTWARE\Macrium HKCU\SOFTWARE\Mine HKCU\SOFTWARE\Mozilla HKCU\SOFTWARE\Mozilla Backup HKCU\SOFTWARE\MozillaPlugins HKCU\SOFTWARE\MPC-HC HKCU\SOFTWARE\MSI HKCU\SOFTWARE\Mythicsoft HKCU\SOFTWARE\Namida HKCU\SOFTWARE\Netscape HKCU\SOFTWARE\NVIDIA Corporation HKCU\SOFTWARE\O&O HKCU\SOFTWARE\ODBC HKCU\SOFTWARE\OTi HKCU\SOFTWARE\Pangolin HKCU\SOFTWARE\Paramount Software (UK) Ltd. HKCU\SOFTWARE\Partition Assistant HKCU\SOFTWARE\Pierre Torris HKCU\SOFTWARE\Piriform HKCU\SOFTWARE\ProcessLasso HKCU\SOFTWARE\QtProject HKCU\SOFTWARE\r2 Studios HKCU\SOFTWARE\RegisteredApplications HKCU\SOFTWARE\RIT HKCU\SOFTWARE\Ritlabs HKCU\SOFTWARE\RocketDock HKCU\SOFTWARE\Rockstar Games HKCU\SOFTWARE\SFX TEAM HKCU\SOFTWARE\ShellFolderFix HKCU\SOFTWARE\SRM Training System HKCU\SOFTWARE\Sys HKCU\SOFTWARE\Sysinternals HKCU\SOFTWARE\TCP Optimizer HKCU\SOFTWARE\TeamViewer HKCU\SOFTWARE\techPowerUp HKCU\SOFTWARE\Tracker Software HKCU\SOFTWARE\Trolltech HKCU\SOFTWARE\Unity HKCU\SOFTWARE\Unwinder HKCU\SOFTWARE\Valve HKCU\SOFTWARE\VB and VBA Program Settings HKCU\SOFTWARE\VMware, Inc. HKCU\SOFTWARE\WindowsPrivacyTweaker HKCU\SOFTWARE\WinRAR HKCU\SOFTWARE\WinRAR SFX HKCU\SOFTWARE\Wireshark HKCU\SOFTWARE\Wow6432Node HKCU\SOFTWARE\XnView HKCU\SOFTWARE\Yamicsoft HKCU\SOFTWARE\ZebHelpProcess Helper HKCU\SOFTWARE\AppDataLow\Software HKCU\SOFTWARE\AppDataLow\Software\JavaSoft ---\\ Contenu des dossiers Programmes (237) - 6s O43 - CFD: 15/10/2015 - [] D -- C:\Program Files (x86)\2BrightSparks =>.2BrightSparks Pte Ltd® O43 - CFD: 14/02/2016 - [] D -- C:\Program Files (x86)\Adobe {1FA23856C1CD8320F16E5F00F0CFD258} O43 - CFD: 06/03/2016 - [] D -- C:\Program Files (x86)\AdwCleaner O43 - CFD: 08/03/2016 - [] D -- C:\Program Files (x86)\Alternate O43 - CFD: 06/03/2016 - [] D -- C:\Program Files (x86)\AnmSMP O43 - CFD: 24/12/2015 - [] AD -- C:\Program Files (x86)\Ant Renamer O43 - CFD: 19/11/2015 - [] AD -- C:\Program Files (x86)\AOMEI Partition Assistant Pro Edition 5.8 (DEMO) O43 - CFD: 12/10/2015 - [] AD -- C:\Program Files (x86)\ASM106xSATA O43 - CFD: 12/10/2015 - [] D -- C:\Program Files (x86)\Auto Hide Desktop Icons O43 - CFD: 07/02/2016 - [] D -- C:\Program Files (x86)\Common Files O43 - CFD: 06/02/2016 - [] D -- C:\Program Files (x86)\CrystalDiskInfo =>.Noriyuki MIYAZAKI® O43 - CFD: 06/02/2016 - [] D -- C:\Program Files (x86)\CrystalDiskMark =>.Noriyuki MIYAZAKI® O43 - CFD: 21/10/2015 - [] D -- C:\Program Files (x86)\DeskPins O43 - CFD: 13/10/2015 - [] D -- C:\Program Files (x86)\Dexpot =>.Dexpot GbR® O43 - CFD: 02/03/2016 - [] AD -- C:\Program Files (x86)\Dual Monitor Tools O43 - CFD: 13/10/2015 - [] D -- C:\Program Files (x86)\Elaborate Bytes O43 - CFD: 17/02/2016 - [] D -- C:\Program Files (x86)\Exact Audio Copy O43 - CFD: 30/10/2015 - [] D -- C:\Program Files (x86)\FixWin 10 O43 - CFD: 02/12/2015 - [] D -- C:\Program Files (x86)\Folder Marker O43 - CFD: 02/11/2015 - [] AD -- C:\Program Files (x86)\foobar2000 =>.Piotr Pawłowski® O43 - CFD: 02/12/2015 - [] D -- C:\Program Files (x86)\Google =>.Google Inc® O43 - CFD: 26/02/2016 - [] AD -- C:\Program Files (x86)\Hard Disk Sentinel {00E2974858A0A4BC980D957B51159AA7B4} O43 - CFD: 14/10/2015 - [] AD -- C:\Program Files (x86)\IcoSauve O43 - CFD: 12/10/2015 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information O43 - CFD: 01/03/2016 - [] D -- C:\Program Files (x86)\Internet Explorer O43 - CFD: 23/10/2015 - [] AD -- C:\Program Files (x86)\InternetOff {1A3971F7D5A04EBA878183D0A57E1EC1} O43 - CFD: 05/11/2015 - [] D -- C:\Program Files (x86)\IObit =>.IObit Information Technology® O43 - CFD: 11/11/2015 - [] AD -- C:\Program Files (x86)\Kyodai Mahjongg 2006 O43 - CFD: 15/10/2015 - [] AD -- C:\Program Files (x86)\LRTimelapse 4 O43 - CFD: 12/10/2015 - [] D -- C:\Program Files (x86)\MemInfo O43 - CFD: 14/11/2015 - [] D -- C:\Program Files (x86)\Microsoft LifeCam O43 - CFD: 14/11/2015 - [] D -- C:\Program Files (x86)\Microsoft.NET O43 - CFD: 12/10/2015 - [] D -- C:\Program Files (x86)\MozBackup O43 - CFD: 13/10/2015 - [] D -- C:\Program Files (x86)\MRAID O43 - CFD: 14/11/2015 - [] D -- C:\Program Files (x86)\MSBuild O43 - CFD: 02/02/2016 - [] D -- C:\Program Files (x86)\MSI Afterburner =>.MICRO-STAR INTERNATIONAL CO., LTD.® O43 - CFD: 03/01/2016 - [] D -- C:\Program Files (x86)\Notepad++ O43 - CFD: 19/01/2016 - [] D -- C:\Program Files (x86)\NVIDIA Corporation O43 - CFD: 12/10/2015 - [] D -- C:\Program Files (x86)\OpenAL O43 - CFD: 06/03/2016 - [] D -- C:\Program Files (x86)\OpenHardwareMonitor O43 - CFD: 12/01/2016 - [] D -- C:\Program Files (x86)\Prime 95 O43 - CFD: 14/11/2015 - [] D -- C:\Program Files (x86)\Reference Assemblies O43 - CFD: 13/02/2016 - [] D -- C:\Program Files (x86)\RivaTuner Statistics Server O43 - CFD: 12/10/2015 - [] AD -- C:\Program Files (x86)\RocketDock O43 - CFD: 22/12/2015 - [] D -- C:\Program Files (x86)\Rockstar Games =>.Take-Two Interactive Software, Inc.® O43 - CFD: 06/03/2016 - [] AD -- C:\Program Files (x86)\scrabbleproB1.1 O43 - CFD: 13/10/2015 - [] D -- C:\Program Files (x86)\ShellFolderFix64 O43 - CFD: 21/10/2015 - [] AD -- C:\Program Files (x86)\Soldats Inconnus Mémoires de la Grande Guerre {028F9593D17A7BCD901DC4B8B0F8A55C} O43 - CFD: 04/02/2016 - [] D -- C:\Program Files (x86)\SRM Training System O43 - CFD: 26/02/2016 - [] AD -- C:\Program Files (x86)\SRMX O43 - CFD: 06/03/2016 - [] D -- C:\Program Files (x86)\Steam =>.Valve® O43 - CFD: 13/10/2015 - [] D -- C:\Program Files (x86)\SuperCopier2 O43 - CFD: 28/12/2015 - [] D -- C:\Program Files (x86)\Switcher O43 - CFD: 13/12/2015 - [] D -- C:\Program Files (x86)\Technitium O43 - CFD: 08/11/2015 - [] D -- C:\Program Files (x86)\Tweaking.com =>.Tweaking LLC® O43 - CFD: 11/12/2015 - [] AD -- C:\Program Files (x86)\VMware =>.VMware, Inc.® O43 - CFD: 13/12/2015 - [] AD -- C:\Program Files (x86)\Win7 MAC Address Changer O43 - CFD: 30/10/2015 - [] D -- C:\Program Files (x86)\Windows Defender O43 - CFD: 30/10/2015 - [] D -- C:\Program Files (x86)\Windows Mail O43 - CFD: 30/10/2015 - [] D -- C:\Program Files (x86)\Windows Media Player O43 - CFD: 01/03/2016 - [] D -- C:\Program Files (x86)\Windows Multimedia Platform O43 - CFD: 30/10/2015 - [] D -- C:\Program Files (x86)\Windows NT O43 - CFD: 30/10/2015 - [] D -- C:\Program Files (x86)\Windows Photo Viewer =>.Microsoft Corporation® O43 - CFD: 01/03/2016 - [] D -- C:\Program Files (x86)\Windows Portable Devices O43 - CFD: 30/10/2015 - [] SD -- C:\Program Files (x86)\WindowsPowerShell O43 - CFD: 13/10/2015 - [] D -- C:\Program Files (x86)\WinPcap =>.Riverbed Technology, Inc.® O43 - CFD: 13/10/2015 - [] D -- C:\Program Files (x86)\WinSplit Revolution O43 - CFD: 21/11/2015 - [] AD -- C:\Program Files (x86)\WinUAE {6D642FD59A1BF63398DCD324871FD5A0} O43 - CFD: 29/11/2015 - [] AD -- C:\Program Files (x86)\xrecode II O43 - CFD: 13/10/2015 - [] HD -- C:\Program Files (x86)\Zero G Registry O43 - CFD: 30/10/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility O43 - CFD: 14/11/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories O43 - CFD: 30/10/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools O43 - CFD: 11/02/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe O43 - CFD: 30/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance O43 - CFD: 14/11/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp O43 - CFD: 30/10/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools O43 - CFD: 30/10/2015 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC O43 - CFD: 08/11/2015 - [] D -- C:\ProgramData\Adobe O43 - CFD: 10/12/2015 - [] D -- C:\ProgramData\Agnitum O43 - CFD: 08/03/2016 - [] D -- C:\ProgramData\Alternate O43 - CFD: 24/12/2015 - [] D -- C:\ProgramData\Ant Renamer O43 - CFD: 14/11/2015 - [0] SHD -- C:\ProgramData\Application Data O43 - CFD: 05/12/2015 - [] D -- C:\ProgramData\boost_interprocess O43 - CFD: 12/10/2015 - [0] SHD -- C:\ProgramData\Bureau O43 - CFD: 12/10/2015 - [] D -- C:\ProgramData\ClassicShell O43 - CFD: 19/12/2015 - [] D -- C:\ProgramData\Codemasters O43 - CFD: 30/10/2015 - [0] D -- C:\ProgramData\Comms O43 - CFD: 01/03/2016 - [] D -- C:\ProgramData\D83C629D-C688-4A07-8615-94974D65F157 O43 - CFD: 14/11/2015 - [0] SHD -- C:\ProgramData\Documents O43 - CFD: 11/12/2015 - [] D -- C:\ProgramData\DxO Labs O43 - CFD: 22/11/2015 - [] D -- C:\ProgramData\ESET O43 - CFD: 02/12/2015 - [] D -- C:\ProgramData\Google O43 - CFD: 12/10/2015 - [] D -- C:\ProgramData\Intel O43 - CFD: 05/11/2015 - [] D -- C:\ProgramData\IObit O43 - CFD: 12/10/2015 - [] D -- C:\ProgramData\IOffSvc O43 - CFD: 14/10/2015 - [] D -- C:\ProgramData\Macrium O43 - CFD: 12/10/2015 - [0] SHD -- C:\ProgramData\Menu Démarrer O43 - CFD: 21/12/2015 - [] SD -- C:\ProgramData\Microsoft O43 - CFD: 12/10/2015 - [] D -- C:\ProgramData\Microsoft OneDrive O43 - CFD: 12/10/2015 - [0] SHD -- C:\ProgramData\Modèles O43 - CFD: 02/02/2016 - [] D -- C:\ProgramData\NVIDIA O43 - CFD: 27/12/2015 - [] D -- C:\ProgramData\NVIDIA Corporation O43 - CFD: 15/10/2015 - [] D -- C:\ProgramData\Oracle O43 - CFD: 21/10/2015 - [] D -- C:\ProgramData\Orbit O43 - CFD: 28/12/2015 - [] D -- C:\ProgramData\Package Cache O43 - CFD: 05/11/2015 - [] D -- C:\ProgramData\pat O43 - CFD: 25/02/2016 - [0] D -- C:\ProgramData\ProcessLasso O43 - CFD: 15/10/2015 - [] D -- C:\ProgramData\r2 Studios O43 - CFD: 03/02/2016 - [] D -- C:\ProgramData\regid.1986-12.com.adobe O43 - CFD: 14/11/2015 - [] AD -- C:\ProgramData\regid.1991-06.com.microsoft O43 - CFD: 18/10/2015 - [] D -- C:\ProgramData\Rockstar Games O43 - CFD: 15/10/2015 - [] D -- C:\ProgramData\SoftPerfect O43 - CFD: 30/10/2015 - [0] D -- C:\ProgramData\SoftwareDistribution O43 - CFD: 19/12/2015 - [] D -- C:\ProgramData\Steam O43 - CFD: 14/11/2015 - [] D -- C:\ProgramData\USOPrivate O43 - CFD: 10/07/2015 - [] D -- C:\ProgramData\USOShared O43 - CFD: 08/03/2016 - [] AD -- C:\ProgramData\VMware O43 - CFD: 14/02/2016 - [] D -- C:\Program Files (x86)\Common Files\Adobe O43 - CFD: 12/10/2015 - [] D -- C:\Program Files (x86)\Common Files\Intel Corporation O43 - CFD: 07/02/2016 - [] D -- C:\Program Files (x86)\Common Files\Java O43 - CFD: 14/11/2015 - [] AD -- C:\Program Files (x86)\Common Files\Microsoft Shared O43 - CFD: 30/10/2015 - [] D -- C:\Program Files (x86)\Common Files\Services O43 - CFD: 06/02/2016 - [] D -- C:\Program Files (x86)\Common Files\Steam O43 - CFD: 30/10/2015 - [] D -- C:\Program Files (x86)\Common Files\System O43 - CFD: 11/12/2015 - [] AD -- C:\Program Files (x86)\Common Files\ThinPrint O43 - CFD: 11/12/2015 - [] D -- C:\Program Files (x86)\Common Files\VMware O43 - CFD: 15/10/2015 - [] D -- C:\Users\jeje07\AppData\Roaming\2BrightSparks O43 - CFD: 13/10/2015 - [0] D -- C:\Users\jeje07\AppData\Roaming\AccurateRip O43 - CFD: 05/12/2015 - [] D -- C:\Users\jeje07\AppData\Roaming\Adobe O43 - CFD: 12/10/2015 - [] D -- C:\Users\jeje07\AppData\Roaming\ASUS O43 - CFD: 11/11/2015 - [] D -- C:\Users\jeje07\AppData\Roaming\Bao_Nguyen O43 - CFD: 12/10/2015 - [] D -- C:\Users\jeje07\AppData\Roaming\Carthago O43 - CFD: 28/01/2016 - [] D -- C:\Users\jeje07\AppData\Roaming\Crystal Dynamics O43 - CFD: 11/11/2015 - [] D -- C:\Users\jeje07\AppData\Roaming\CrystalIdea Software O43 - CFD: 08/03/2016 - [] D -- C:\Users\jeje07\AppData\Roaming\Dexpot O43 - CFD: 02/03/2016 - [] D -- C:\Users\jeje07\AppData\Roaming\Dual Monitor Tools O43 - CFD: 15/10/2015 - [] D -- C:\Users\jeje07\AppData\Roaming\DxO Labs O43 - CFD: 13/10/2015 - [] D -- C:\Users\jeje07\AppData\Roaming\EAC O43 - CFD: 08/03/2016 - [] D -- C:\Users\jeje07\AppData\Roaming\FileZilla O43 - CFD: 28/02/2016 - [] D -- C:\Users\jeje07\AppData\Roaming\FitTrackView O43 - CFD: 06/03/2016 - [] D -- C:\Users\jeje07\AppData\Roaming\foobar2000 O43 - CFD: 21/12/2015 - [] D -- C:\Users\jeje07\AppData\Roaming\Gest O43 - CFD: 12/10/2015 - [] D -- C:\Users\jeje07\AppData\Roaming\Greenshot O43 - CFD: 13/10/2015 - [] D -- C:\Users\jeje07\AppData\Roaming\Hard Disk Sentinel O43 - CFD: 16/10/2015 - [] D -- C:\Users\jeje07\AppData\Roaming\HD Tune Pro O43 - CFD: 15/10/2015 - [] D -- C:\Users\jeje07\AppData\Roaming\HDRsoft O43 - CFD: 12/10/2015 - [] D -- C:\Users\jeje07\AppData\Roaming\Intel Corporation O43 - CFD: 12/10/2015 - [] D -- C:\Users\jeje07\AppData\Roaming\InternetOff O43 - CFD: 15/10/2015 - [] D -- C:\Users\jeje07\AppData\Roaming\LRTimelapse O43 - CFD: 08/03/2016 - [0] D -- C:\Users\jeje07\AppData\Roaming\Macromedia O43 - CFD: 24/10/2015 - [] D -- C:\Users\jeje07\AppData\Roaming\MediaInfo O43 - CFD: 21/01/2016 - [] SD -- C:\Users\jeje07\AppData\Roaming\Microsoft O43 - CFD: 12/10/2015 - [] D -- C:\Users\jeje07\AppData\Roaming\Mozilla O43 - CFD: 07/03/2016 - [] D -- C:\Users\jeje07\AppData\Roaming\MPC-HC O43 - CFD: 24/02/2016 - [] D -- C:\Users\jeje07\AppData\Roaming\Mythicsoft O43 - CFD: 03/01/2016 - [] D -- C:\Users\jeje07\AppData\Roaming\Notepad++ O43 - CFD: 09/01/2016 - [] D -- C:\Users\jeje07\AppData\Roaming\NVIDIA O43 - CFD: 11/11/2015 - [] D -- C:\Users\jeje07\AppData\Roaming\OTi O43 - CFD: 25/02/2016 - [] D -- C:\Users\jeje07\AppData\Roaming\ProcessLasso O43 - CFD: 13/10/2015 - [] D -- C:\Users\jeje07\AppData\Roaming\Rainmeter O43 - CFD: 13/10/2015 - [] D -- C:\Users\jeje07\AppData\Roaming\ShellFolderFix O43 - CFD: 10/11/2015 - [] D -- C:\Users\jeje07\AppData\Roaming\Steam O43 - CFD: 15/10/2015 - [] D -- C:\Users\jeje07\AppData\Roaming\Sun O43 - CFD: 23/01/2016 - [] D -- C:\Users\jeje07\AppData\Roaming\TeamViewer O43 - CFD: 08/03/2016 - [] D -- C:\Users\jeje07\AppData\Roaming\The Bat! O43 - CFD: 08/03/2016 - [] D -- C:\Users\jeje07\AppData\Roaming\vlc O43 - CFD: 08/03/2016 - [] D -- C:\Users\jeje07\AppData\Roaming\VMware O43 - CFD: 13/10/2015 - [] D -- C:\Users\jeje07\AppData\Roaming\WinRAR O43 - CFD: 13/10/2015 - [] D -- C:\Users\jeje07\AppData\Roaming\Winsplit Revolution O43 - CFD: 20/11/2015 - [] D -- C:\Users\jeje07\AppData\Roaming\Wireshark O43 - CFD: 30/10/2015 - [] D -- C:\Users\jeje07\AppData\Roaming\XnConvert O43 - CFD: 08/03/2016 - [] D -- C:\Users\jeje07\AppData\Roaming\XnViewMP O43 - CFD: 29/11/2015 - [] D -- C:\Users\jeje07\AppData\Roaming\xrecode2 O43 - CFD: 27/02/2016 - [] D -- C:\Users\jeje07\AppData\Roaming\Yamicsoft O43 - CFD: 08/03/2016 - [] D -- C:\Users\jeje07\AppData\Roaming\ZHP O43 - CFD: 15/10/2015 - [] D -- C:\Users\jeje07\AppData\Local\2BrightSparks O43 - CFD: 14/11/2015 - [0] D -- C:\Users\jeje07\AppData\Local\ActiveSync O43 - CFD: 04/03/2016 - [] D -- C:\Users\jeje07\AppData\Local\Adobe O43 - CFD: 08/03/2016 - [] D -- C:\Users\jeje07\AppData\Local\Alternate O43 - CFD: 14/11/2015 - [0] SHD -- C:\Users\jeje07\AppData\Local\Application Data O43 - CFD: 11/11/2015 - [] D -- C:\Users\jeje07\AppData\Local\Bao_Nguyen O43 - CFD: 08/11/2015 - [] D -- C:\Users\jeje07\AppData\Local\Caphyon O43 - CFD: 17/10/2015 - [] D -- C:\Users\jeje07\AppData\Local\CEF O43 - CFD: 08/03/2016 - [] D -- C:\Users\jeje07\AppData\Local\ClassicShell O43 - CFD: 12/10/2015 - [] AD -- C:\Users\jeje07\AppData\Local\Clavier+ O43 - CFD: 12/10/2015 - [] D -- C:\Users\jeje07\AppData\Local\Comms O43 - CFD: 07/02/2016 - [] D -- C:\Users\jeje07\AppData\Local\Diagnostics O43 - CFD: 23/12/2015 - [] D -- C:\Users\jeje07\AppData\Local\Downloaded Installations O43 - CFD: 15/10/2015 - [] D -- C:\Users\jeje07\AppData\Local\DxO_Labs O43 - CFD: 10/11/2015 - [] D -- C:\Users\jeje07\AppData\Local\Fallout4 O43 - CFD: 28/02/2016 - [] D -- C:\Users\jeje07\AppData\Local\FitTrackView.com O43 - CFD: 02/12/2015 - [] D -- C:\Users\jeje07\AppData\Local\Google O43 - CFD: 26/02/2016 - [] D -- C:\Users\jeje07\AppData\Local\Greenshot O43 - CFD: 14/11/2015 - [0] SHD -- C:\Users\jeje07\AppData\Local\Historique O43 - CFD: 15/10/2015 - [] D -- C:\Users\jeje07\AppData\Local\IsolatedStorage O43 - CFD: 13/10/2015 - [] D -- C:\Users\jeje07\AppData\Local\Macromedia O43 - CFD: 21/01/2016 - [] D -- C:\Users\jeje07\AppData\Local\Microsoft O43 - CFD: 13/10/2015 - [] D -- C:\Users\jeje07\AppData\Local\MicrosoftEdge O43 - CFD: 13/10/2015 - [] D -- C:\Users\jeje07\AppData\Local\Mozilla O43 - CFD: 02/12/2015 - [] D -- C:\Users\jeje07\AppData\Local\NikLicenseFiles O43 - CFD: 12/10/2015 - [] D -- C:\Users\jeje07\AppData\Local\NVIDIA O43 - CFD: 07/03/2016 - [] D -- C:\Users\jeje07\AppData\Local\Packages O43 - CFD: 12/10/2015 - [0] D -- C:\Users\jeje07\AppData\Local\PeerDistRepub O43 - CFD: 07/02/2016 - [] D -- C:\Users\jeje07\AppData\Local\Programs O43 - CFD: 12/10/2015 - [] D -- C:\Users\jeje07\AppData\Local\Publishers O43 - CFD: 17/10/2015 - [] D -- C:\Users\jeje07\AppData\Local\Rockstar Games O43 - CFD: 02/12/2015 - [] D -- C:\Users\jeje07\AppData\Local\Software =>PUP.Optional.Boxore O43 - CFD: 17/10/2015 - [] D -- C:\Users\jeje07\AppData\Local\Steam O43 - CFD: 08/03/2016 - [] D -- C:\Users\jeje07\AppData\Local\Temp O43 - CFD: 14/11/2015 - [0] SHD -- C:\Users\jeje07\AppData\Local\Temporary Internet Files O43 - CFD: 12/10/2015 - [] D -- C:\Users\jeje07\AppData\Local\TileDataLayer O43 - CFD: 13/10/2015 - [] D -- C:\Users\jeje07\AppData\Local\VirtualStore O43 - CFD: 08/03/2016 - [] D -- C:\Users\jeje07\AppData\Local\VMware O43 - CFD: 30/10/2015 - [] RD -- C:\Users\jeje07\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility O43 - CFD: 10/12/2015 - [] RD -- C:\Users\jeje07\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories O43 - CFD: 01/03/2016 - [] RD -- C:\Users\jeje07\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools O43 - CFD: 05/12/2015 - [] D -- C:\Users\jeje07\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Adobe O43 - CFD: 06/03/2016 - [] D -- C:\Users\jeje07\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Custom W10 O43 - CFD: 14/11/2015 - [] D -- C:\Users\jeje07\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\e-verbe O43 - CFD: 06/03/2016 - [] D -- C:\Users\jeje07\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games O43 - CFD: 14/11/2015 - [] D -- C:\Users\jeje07\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Gest O43 - CFD: 29/02/2016 - [] D -- C:\Users\jeje07\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hardware O43 - CFD: 06/03/2016 - [] D -- C:\Users\jeje07\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image O43 - CFD: 06/02/2016 - [] D -- C:\Users\jeje07\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet O43 - CFD: 08/03/2016 - [] D -- C:\Users\jeje07\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance O43 - CFD: 23/01/2016 - [] D -- C:\Users\jeje07\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Multimédia O43 - CFD: 29/11/2015 - [] D -- C:\Users\jeje07\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Musique O43 - CFD: 14/11/2015 - [] D -- C:\Users\jeje07\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Office 2016 O43 - CFD: 07/02/2016 - [] RD -- C:\Users\jeje07\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pilotes O43 - CFD: 06/03/2016 - [] D -- C:\Users\jeje07\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Protection O43 - CFD: 25/02/2016 - [] D -- C:\Users\jeje07\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SRM Training System O43 - CFD: 02/03/2016 - [] RD -- C:\Users\jeje07\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup O43 - CFD: 14/11/2015 - [] RD -- C:\Users\jeje07\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools O43 - CFD: 06/03/2016 - [] RD -- C:\Users\jeje07\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Système O43 - CFD: 30/10/2015 - [] RSD -- C:\Users\jeje07\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell O43 - CFD: 14/11/2015 - [] HD -- C:\Users\jeje07\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\AutorunsDisabled ---\\ Derniers fichiers créés dans Windows Prefetcher (3) - 4s O45 - LFCP:[MD5.41271645F183DE253DE3E45ECE9F734B] 04/03/2016 A -- C:\WINDOWS\Prefetch\AUTOHIDEDESKTOPICONS 2.75.EXE-7871BB51.pf =>PUP.Optional.ADON O45 - LFCP:[MD5.E750837953F28DB454B2A079BF52DECE] 06/03/2016 A -- C:\WINDOWS\Prefetch\SWIFTSEARCH.EXE-F859A106.pf =>.Superfluous.SwiftSearch O45 - LFCP:[MD5.97EE41B4A02C7BE08E5F381C506B6358] 06/03/2016 A -- C:\WINDOWS\Prefetch\SWIFTSEARCH64_{3CACE9B1-EF40--3D212A48.pf =>.Superfluous.SwiftSearch ---\\ ShellIconOverlayIdentifiers (SIOI) (9) - 0s O106 - SIOI: ErrorOverlayHandler Class [ OneDrive1] - {BBACC218-34EA-4666-9D7A-C78F2274A524}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\jeje07\AppData\Local\Microsoft\OneDrive\17.3.6201.1019_1\FileSyncShell.dll =>.Microsoft Corporation® O106 - SIOI: SharedOverlayHandler Class [ OneDrive2] - {5AB7172C-9C11-405C-8DD5-AF20F3606282}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\jeje07\AppData\Local\Microsoft\OneDrive\17.3.6201.1019_1\FileSyncShell.dll =>.Microsoft Corporation® O106 - SIOI: SharedSyncingOverlayHandler Class [ OneDrive3] - {A78ED123-AB77-406B-9962-2A5D9D2F7F30}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\jeje07\AppData\Local\Microsoft\OneDrive\17.3.6201.1019_1\FileSyncShell.dll =>.Microsoft Corporation® O106 - SIOI: UpToDateOverlayHandler Class [ OneDrive4] - {F241C880-6982-4CE5-8CF7-7085BA96DA5A}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\jeje07\AppData\Local\Microsoft\OneDrive\17.3.6201.1019_1\FileSyncShell.dll =>.Microsoft Corporation® O106 - SIOI: SyncingOverlayHandler Class [ OneDrive5] - {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\jeje07\AppData\Local\Microsoft\OneDrive\17.3.6201.1019_1\FileSyncShell.dll =>.Microsoft Corporation® O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 1 (ErrorConflict) [ SkyDrivePro1 (ErrorConflict)] - {8BA85C75-763B-4103-94EB-9470F12FE0F7}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL =>.Microsoft Corporation® O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 2 (SyncInProgress) [ SkyDrivePro2 (SyncInProgress)] - {CD55129A-B1A1-438E-A425-CEBC7DC684EE}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL =>.Microsoft Corporation® O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 3 (InSync) [ SkyDrivePro3 (InSync)] - {E768CD3B-BDDC-436D-9C13-E1B39CA257B1}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL =>.Microsoft Corporation® O106 - SIOI: ShareOverlay Class [ShareOverlay] - {594D4122-1F87-41E2-96C7-825FB4796516}. (.IvoSoft - Adds classic Windows Explorer features.) -- C:\Program Files\Classic Shell\ClassicExplorer32.dll =>.Ivaylo Beltchev® ---\\ Liste des pilotes du système (75) - 4s O58 - SDL:2015/10/30 08:17:22 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\WINDOWS\System32\drivers\3ware.sys [107360] =>.Microsoft Windows® O58 - SDL:2015/10/30 08:17:22 A . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS.) -- C:\WINDOWS\System32\drivers\adp80xx.sys [1135456] =>.Microsoft Windows® O58 - SDL:2015/07/21 20:24:00 A . (.Agnitum Ltd. - Agnitum Firewall NDIS Driver.) -- C:\WINDOWS\System32\drivers\afw.sys [52904] {748661E9174BA5AA2B48492DE4AB423E} O58 - SDL:2015/07/21 22:11:28 A . (.Agnitum Ltd. - Agnitum Firewall Core Driver.) -- C:\WINDOWS\System32\drivers\afwcore.sys [465072] {748661E9174BA5AA2B48492DE4AB423E} O58 - SDL:2015/10/30 08:17:22 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\WINDOWS\System32\drivers\amdsata.sys [83296] =>.Microsoft Windows® O58 - SDL:2015/10/30 08:17:22 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\WINDOWS\System32\drivers\amdsbs.sys [259424] =>.Microsoft Windows® O58 - SDL:2015/10/30 08:17:22 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\WINDOWS\System32\drivers\amdxata.sys [26976] =>.Microsoft Windows® O58 - SDL:2015/10/30 08:17:22 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\WINDOWS\System32\drivers\arcsas.sys [131936] =>.Microsoft Windows® O58 - SDL:2014/11/13 13:50:52 A . (.ARECA Technology Corporation - Areca STORPORT-64 SATA/SAS RAID host contro.) -- C:\WINDOWS\System32\drivers\arcs_a64.sys [51992] {60FDB597BA5BD730D6FD47BF056343DF} O58 - SDL:2015/06/17 10:36:26 A . (.Asmedia Technology - Asmedia 106x SATA Host Controller Driver.) -- C:\WINDOWS\System32\drivers\asstahci64.sys [88936] =>.ASMedia Technology Inc.® O58 - SDL:2015/10/30 08:17:22 A . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\WINDOWS\System32\drivers\bcmfn.sys [9728] =>.Windows (R) Win 7 DDK provider O58 - SDL:2015/10/30 08:17:22 A . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\WINDOWS\System32\drivers\bcmfn2.sys [9728] =>.Windows (R) Win 7 DDK provider O58 - SDL:2015/10/21 08:00:17 A . (.Brother Industries Ltd. - βґθτħεř М₣Č Śëгΐāł Íήтєŗƒąčę Đŕïνėг(ẂĎΜ).) -- C:\WINDOWS\System32\drivers\BrSerIb.sys [284160] =>.Brother Industries Ltd. O58 - SDL:2015/10/21 08:00:17 A . (.Brother Industries Ltd. - Brother MFC Serial USB Driver(WDM).) -- C:\WINDOWS\System32\drivers\BrUsbSIb.sys [15360] =>.Brother Industries Ltd. O58 - SDL:2015/10/30 08:17:22 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\WINDOWS\System32\drivers\bxvbda.sys [531296] =>.Microsoft Windows® O58 - SDL:2015/10/10 22:19:57 A . (.C-Media Inc - C-Media Audio WDM Driver.) -- C:\WINDOWS\System32\drivers\cmudaxp.sys [2735616] O58 - SDL:2015/10/30 08:17:18 A . (.Intel Corporation - Intel(R) Gigabit Adapter NDIS 6.x driver.) -- C:\WINDOWS\System32\drivers\e1i63x64.sys [472576] =>.Intel Corporation O58 - SDL:2015/07/13 07:14:14 A . (.ESET - Amon monitor.) -- C:\WINDOWS\System32\drivers\eamonm.sys [255240] =>.ESET, spol. s r.o.® O58 - SDL:2015/07/13 07:14:14 A . (.ESET - Devmon monitor.) -- C:\WINDOWS\System32\drivers\edevmon.sys [251632] =>.ESET, spol. s r.o.® O58 - SDL:2015/07/13 07:14:14 A . (.ESET - ESET Helper driver.) -- C:\WINDOWS\System32\drivers\ehdrv.sys [178520] =>.ESET, spol. s r.o.® O58 - SDL:2014/12/20 23:31:04 A . (.Elaborate Bytes AG - ElbyCD Windows x64 I/O driver.) -- C:\WINDOWS\System32\drivers\ElbyCDIO.sys [40344] =>.Elaborate Bytes AG® O58 - SDL:2015/07/13 07:14:14 A . (.ESET - ESET Personal Firewall driver.) -- C:\WINDOWS\System32\drivers\epfwwfpr.sys [168208] =>.ESET, spol. s r.o.® O58 - SDL:2015/10/30 08:17:22 A . (.QLogic Corporation - QLogic 10 GigE VBD.) -- C:\WINDOWS\System32\drivers\evbda.sys [3436896] =>.Microsoft Windows® O58 - SDL:2015/11/06 11:57:44 A . (.VMware, Inc. - VMware USB monitor.) -- C:\WINDOWS\System32\drivers\hcmon.sys [57536] =>.VMware, Inc.® O58 - SDL:2015/10/30 08:17:22 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\WINDOWS\System32\drivers\HpSAMD.sys [64352] =>.Microsoft Windows® O58 - SDL:2015/10/30 08:17:18 A . (.Intel(R) Corporation - Intel(R) Serial IO I2C Driver.) -- C:\WINDOWS\System32\drivers\iai2c.sys [81408] =>.Intel(R) Corporation O58 - SDL:2015/10/30 08:17:18 A . (.Intel Corporation - Intel(R) Serial IO I2C Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [165888] =>.Intel Corporation O58 - SDL:2015/10/30 08:17:18 A . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [38128] =>.Intel Corporation - Client Components Group® O58 - SDL:2015/10/30 08:17:18 A . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [113152] =>.Intel Corporation O58 - SDL:2015/07/29 18:44:00 A . (.Intel Corporation - Intel(R) Rapid Storage Technology driver -.) -- C:\WINDOWS\System32\drivers\iaStorA.sys [1462720] =>.Intel Corporation - Rapid Storage Technology® O58 - SDL:2015/10/30 08:17:22 A . (.Intel Corporation - Intel(R) Rapid Storage Technology driver (i.) -- C:\WINDOWS\System32\drivers\iaStorAV.sys [673120] =>.Microsoft Windows® O58 - SDL:2015/10/30 08:17:22 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\WINDOWS\System32\drivers\iaStorV.sys [412000] =>.Microsoft Windows® O58 - SDL:2015/10/30 08:17:23 A . (.Mellanox - InfiniBand Fabric Bus Driver.) -- C:\WINDOWS\System32\drivers\ibbus.sys [424800] =>.Microsoft Windows® O58 - SDL:2015/10/30 08:17:23 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas.sys [108888] =>.Microsoft Windows® O58 - SDL:2015/10/30 08:17:23 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas2i.sys [104800] =>.Microsoft Windows® O58 - SDL:2015/10/30 08:17:23 A . (.Avago Technologies - Avago SAS Gen3 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas3i.sys [99168] =>.Microsoft Windows® O58 - SDL:2015/10/30 08:17:23 A . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sss.sys [82784] =>.Microsoft Windows® O58 - SDL:2015/10/30 08:17:23 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\megasas.sys [59744] =>.Microsoft Windows® O58 - SDL:2015/10/30 08:17:23 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\WINDOWS\System32\drivers\megasr.sys [575840] =>.Microsoft Windows® O58 - SDL:2015/10/30 08:17:23 A . (.Mellanox - MLX4 Bus Driver.) -- C:\WINDOWS\System32\drivers\mlx4_bus.sys [705376] =>.Microsoft Windows® O58 - SDL:2013/02/19 13:16:58 A . (.Marvell Semiconductor, Inc. - Marvell magni Windows Driver.) -- C:\WINDOWS\System32\drivers\mvs91xx.sys [324392] =>.Marvell Semiconductor® O58 - SDL:2015/10/30 08:17:23 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\WINDOWS\System32\drivers\mvumis.sys [63840] =>.Microsoft Windows® O58 - SDL:2013/02/19 13:16:58 A . (.Marvell Semiconductor Inc. - Marvell Aux NV Bridge DLL.) -- C:\WINDOWS\System32\drivers\mvxxmm.sys [16680] =>.Marvell Semiconductor® O58 - SDL:2015/10/30 08:17:23 A . (.Mellanox - NetworkDirect Support Filter Driver.) -- C:\WINDOWS\System32\drivers\ndfltr.sys [76128] =>.Microsoft Windows® O58 - SDL:2016/01/26 22:42:56 A . (.NetFilterSDK.com - NetFilter SDK TDI Hook Driver (WPP).) -- C:\WINDOWS\System32\drivers\networx.sys [72120] {0C27AF564CE39FCE88D1D96B45054483} O58 - SDL:2013/03/01 02:49:12 A . (.Riverbed Technology, Inc. - npf.sys (NT5/6 AMD64) Kernel Driver.) -- C:\WINDOWS\System32\drivers\npf.sys [36600] =>.Riverbed Technology, Inc.® O58 - SDL:2015/10/12 18:17:51 A . (.NVIDIA Corporation - NVIDIA HDMI Audio Driver.) -- C:\WINDOWS\System32\drivers\nvhda64v.sys [213360] =>.NVIDIA Corporation® O58 - SDL:2016/01/31 04:55:30 A . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version.) -- C:\WINDOWS\System32\drivers\nvlddmkm.sys [12466112] =>.NVIDIA Corporation® O58 - SDL:2015/10/30 08:17:23 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\WINDOWS\System32\drivers\nvraid.sys [150368] =>.Microsoft Windows® O58 - SDL:2015/10/30 08:17:23 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\WINDOWS\System32\drivers\nvstor.sys [166240] =>.Microsoft Windows® O58 - SDL:2015/08/11 05:52:30 A . (.NVIDIA Corporation - NVIDIA Virtual Audio Driver.) -- C:\WINDOWS\System32\drivers\nvvad64v.sys [50472] =>.NVIDIA Corporation® O58 - SDL:2015/10/30 08:17:23 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas2i.sys [58208] =>.Microsoft Windows® O58 - SDL:2015/10/30 08:17:23 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas3i.sys [58720] =>.Microsoft Windows® O58 - SDL:2015/10/12 14:39:20 A . (.Windows (R) Win 7 DDK provider - Paramount Software Image Mounting Driver.) -- C:\WINDOWS\System32\drivers\psmounterex.sys [168968] =>.Paramount Software UK Ltd® O58 - SDL:2014/07/21 11:36:48 A . (.Paramount Software UK Ltd - Volume Access driver.) -- C:\WINDOWS\System32\drivers\PSVolAcc.sys [12760] =>.Paramount Software UK Ltd® O58 - SDL:2015/10/01 07:58:36 A . (.Realtek Semiconductor Corporation - Realtek WLAN USB NDIS Driver 38599.) -- C:\WINDOWS\System32\drivers\rtwlanu.sys [3870464] =>.Realtek Semiconductor Corp® O58 - SDL:2015/11/18 01:05:32 A . (.Agnitum Ltd. - Host Protection Component.) -- C:\WINDOWS\System32\drivers\SandBox64.sys [1712168] {748661E9174BA5AA2B48492DE4AB423E} O58 - SDL:2015/10/30 08:17:23 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid2.sys [44896] =>.Microsoft Windows® O58 - SDL:2015/10/30 08:17:23 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid4.sys [81760] =>.Microsoft Windows® O58 - SDL:2015/10/30 08:17:23 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\WINDOWS\System32\drivers\stexstor.sys [31072] =>.Microsoft Windows® O58 - SDL:2015/10/12 18:16:32 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [193336] =>.Intel Corporation - Embedded Subsystems and IP Blocks Group® O58 - SDL:2014/05/03 17:53:40 A . (.Elaborate Bytes AG - Virtual CloneDrive storage miniport.) -- C:\WINDOWS\System32\drivers\VClone.sys [34816] =>.Elaborate Bytes AG O58 - SDL:2015/11/05 19:25:42 A . (.VMware, Inc. - VMware PCI VMCI Bus Device.) -- C:\WINDOWS\System32\drivers\vmci.sys [90816] =>.VMware, Inc.® O58 - SDL:2015/11/25 17:51:56 A . (.VMware, Inc. - VMware virtual network driver (64-bit).) -- C:\WINDOWS\System32\drivers\vmnet.sys [27328] =>.VMware, Inc.® O58 - SDL:2015/11/25 17:51:56 A . (.VMware, Inc. - VMware virtual network adapter driver (64-b.) -- C:\WINDOWS\System32\drivers\vmnetadapter.sys [28864] =>.VMware, Inc.® O58 - SDL:2015/11/25 17:51:56 A . (.VMware, Inc. - VMware bridge driver (64-bit).) -- C:\WINDOWS\System32\drivers\vmnetbridge.sys [48832] =>.VMware, Inc.® O58 - SDL:2015/11/25 17:52:52 A . (.VMware, Inc. - VMware network application interface driver.) -- C:\WINDOWS\System32\drivers\vmnetuserif.sys [26816] =>.VMware, Inc.® O58 - SDL:2015/11/06 11:57:34 A . (.VMware, Inc. - VMware USB driver.) -- C:\WINDOWS\System32\drivers\vmusb.sys [62160] =>.VMware, Inc.® O58 - SDL:2015/11/25 18:10:28 A . (.VMware, Inc. - VMware kernel driver.) -- C:\WINDOWS\System32\drivers\vmx86.sys [66752] =>.VMware, Inc.® O58 - SDL:2015/10/30 08:17:23 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\WINDOWS\System32\drivers\vsmraid.sys [166752] =>.Microsoft Windows® O58 - SDL:2015/11/05 19:25:42 A . (.VMware, Inc. - VMware vSockets Service.) -- C:\WINDOWS\System32\drivers\vsock.sys [75512] =>.VMware, Inc.® O58 - SDL:2015/10/30 08:17:23 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\WINDOWS\System32\drivers\VSTXRAID.SYS [305504] =>.Microsoft Windows® O58 - SDL:2015/10/30 08:17:23 A . (.Mellanox - Kernel WinMad.) -- C:\WINDOWS\System32\drivers\winmad.sys [26976] =>.Microsoft Windows® O58 - SDL:2015/10/30 08:17:23 A . (.Mellanox - Kernel WinVerbs.) -- C:\WINDOWS\System32\drivers\winverbs.sys [59232] =>.Microsoft Windows® O58 - SDL:2013/12/18 11:33:16 A . (...) -- C:\WINDOWS\System32\ampa.sys [17008] =>.ChengDu AoMei Tech Co., Ltd® ---\\ Derniers fichiers modifiés ou crées (Utilisateur) (9) - 2s O61 - LFC: 2016/03/07 22:14:46 A . (.Alternate Tools.) -- C:\Users\jeje07\Desktop\DllAnalyzer.exe [851100] O61 - LFC: 2016/03/08 17:29:54 A . (..) -- C:\Users\jeje07\AppData\Roaming\The Bat!\smimernd.bin [1024] O61 - LFC: 2016/03/01 10:32:17 A . (.http://getfireshot.comn#FileDescription.) -- C:\Users\jeje07\AppData\Roaming\Mozilla\Firefox\Profiles\nqsbaluf.default\extensions\{0b457cAA-602d-484a-8fe7-c1d894a011ba}\library\sss.dll [4958312] {00E9A44B3A323EB804271A1DF61BCB605C} O61 - LFC: 2016/03/06 18:03:45 RA . (..) -- C:\Users\jeje07\AppData\Roaming\Microsoft\Installer\{6C1DB2EC-AF6E-419A-A011-6E86DF1EBBDD}\SystemFoldermsiexec.exe [14534] O61 - LFC: 2016/03/06 18:03:45 RA . (..) -- C:\Users\jeje07\AppData\Roaming\Microsoft\Installer\{6C1DB2EC-AF6E-419A-A011-6E86DF1EBBDD}\W10MLogo256_1.exe [304886] O61 - LFC: 2016/03/08 15:45:16 A . (..) -- C:\Users\jeje07\AppData\Roaming\ASUS\Xonar Essence STX Audio Center\AsusAudioCenter.dll [1671] O61 - LFC: 2016/03/06 10:18:05 A . (.Copyright © 2013.) -- C:\Users\jeje07\AppData\Local\Packages\Euronews.euronews_n39fjr6rrf0qw\AC\Microsoft\CLR_v4.0_32\NativeImages\EuronewsW8\176dd4fec5706e9c4f3d0cf8a076f370\EuronewsW8.ni.exe [754176] O61 - LFC: 2016/03/06 10:18:06 A . (.Copyright © 2013.) -- C:\Users\jeje07\AppData\Local\Packages\Euronews.euronews_n39fjr6rrf0qw\AC\Microsoft\CLR_v4.0_32\NativeImages\EuronewsPCL\08e98ca7a6bec4eec8b9514f4e74aaa5\EuronewsPCL.ni.dll [162304] O61 - LFC: 2016/03/08 19:42:08 A . (..) -- C:\Users\jeje07\AppData\Local\Microsoft\Windows\UPPS\UPPS.bin [16148] ---\\ Associations Shell Spawning (11) - 0s O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Ob.) -- C:\Windows\System32\eventvwr.exe =>.Microsoft Corporation O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation® O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe =>.Microsoft Corporation O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe =>.Microsoft Corporation O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation® ---\\ Menu de démarrage Internet (8) - 1s O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation® O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation® O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation ---\\ Recherche d'infection sur les navigateurs (3) - 21s O69 - SBI: prefs.js [jeje07 - nqsbaluf.default] user_pref("extensions.s3downbar.function.autoShutdownEnable", true); =>PUP.Optional.Wajam O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/ O69 - SBI: SearchScopes [HKLM] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (@ieframe.dll,-12512) - http://www.bing.com/ ---\\ Enumère les services démarrés par Svchost (41) - 0s O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [192000] =>.Microsoft Corporation O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\WINDOWS\System32\certprop.dll [192000] =>.Microsoft Corporation O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\WINDOWS\system32\srvsvc.dll [283136] =>.Microsoft Corporation O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\WINDOWS\System32\gpsvc.dll [1338368] =>.Microsoft Corporation O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\WINDOWS\System32\ikeext.dll [957952] =>.Microsoft Corporation O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\WINDOWS\System32\iphlpsvc.dll [958464] =>.Microsoft Corporation O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\WINDOWS\system32\seclogon.dll [31232] =>.Microsoft Corporation O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\WINDOWS\System32\appinfo.dll [94720] =>.Microsoft Corporation O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\WINDOWS\system32\iscsiexe.dll [151040] =>.Microsoft Corporation O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\WINDOWS\System32\eapsvc.dll [112640] =>.Microsoft Corporation O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\WINDOWS\system32\schedsvc.dll [997376] =>.Microsoft Corporation O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\WINDOWS\system32\wbem\WMIsvc.dll [225280] =>.Microsoft Corporation O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\WINDOWS\system32\profsvc.dll [328192] =>.Microsoft Corporation O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [372736] =>.Microsoft Corporation O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\WINDOWS\System32\wercplsupport.dll [96256] =>.Microsoft Corporation O83 - Search Svchost Services: DcpSvc (DcpSvc) . (.Microsoft Corporation - dcpsvc Task.) -- C:\WINDOWS\system32\dcpsvc.dll [186880] =>.Microsoft Corporation O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\WINDOWS\system32\wlidsvc.dll [2057216] =>.Microsoft Corporation O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Micro.) -- C:\WINDOWS\System32\ncasvc.dll [168960] =>.Microsoft Corporation O83 - Search Svchost Services: NetSetupSvc (NetSetupSvc) . (.Microsoft Corporation - Service Configuration du réseau.) -- C:\WINDOWS\System32\NetSetupSvc.dll [204288] =>.Microsoft Corporation O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\WINDOWS\system32\themeservice.dll [59392] =>.Microsoft Corporation O83 - Search Svchost Services: RetailDemo (RetailDemo) . (.Microsoft Corporation - RDXService.) -- C:\WINDOWS\system32\RDXService.dll [1073152] =>.Microsoft Corporation O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Service de géolocalisation.) -- C:\Windows\System32\lfsvc.dll [27136] =>.Microsoft Corporation O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\WINDOWS\System32\rasauto.dll [106496] =>.Microsoft Corporation O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d’accès à dista.) -- C:\WINDOWS\System32\rasmans.dll [696320] =>.Microsoft Corporation O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [507904] =>.Microsoft Corporation O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\WINDOWS\System32\sens.dll [73216] =>.Microsoft Corporation O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\WINDOWS\System32\ipnathlp.dll [456704] =>.Microsoft Corporation O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [311808] =>.Microsoft Corporation O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\WINDOWS\system32\wuaueng.dll [2275840] =>.Microsoft Corporation O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\WINDOWS\System32\qmgr.dll [1144320] =>.Microsoft Corporation O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [608768] =>.Microsoft Corporation O83 - Search Svchost Services: dmwappushservice (dmwappushservice) . (.Microsoft Corporation - dmwappushsvc.) -- C:\WINDOWS\system32\dmwappushsvc.dll [57856] =>.Microsoft Corporation O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\WINDOWS\System32\bdesvc.dll [360448] =>.Microsoft Corporation O83 - Search Svchost Services: XboxNetApiSvc (XboxNetApiSvc) . (.Microsoft Corporation - Xbox Live Networking Service.) -- C:\WINDOWS\system32\XboxNetApiSvc.dll [1035776] =>.Microsoft Corporation O83 - Search Svchost Services: UsoSvc (UsoSvc) . (.Microsoft Corporation - Mettre à jour la session Orchestrator Core.) -- C:\WINDOWS\system32\usocore.dll [360960] =>.Microsoft Corporation O83 - Search Svchost Services: XblGameSave (XblGameSave) . (.Microsoft Corporation - Xbox Live Game Save Service.) -- C:\WINDOWS\System32\XblGameSave.dll [1139712] =>.Microsoft Corporation O83 - Search Svchost Services: DmEnrollmentSvc (DmEnrollmentSvc) . (.Microsoft Corporation - DLL Windows Management Service.) -- C:\Windows\System32\Windows.Internal.Management.dll [278016] =>.Microsoft Corporation O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d’installation de périphérique.) -- C:\WINDOWS\System32\DeviceSetupManager.dll [205824] =>.Microsoft Corporation O83 - Search Svchost Services: UserManager (UserManager) . (.Microsoft Corporation - UserMgr.) -- C:\WINDOWS\System32\usermgr.dll [912384] =>.Microsoft Corporation O83 - Search Svchost Services: XblAuthManager (XblAuthManager) . (.Microsoft Corporation - Xbox Live Auth Manager.) -- C:\WINDOWS\System32\XblAuthManager.dll [948736] =>.Microsoft Corporation O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll [200192] =>.Microsoft Corporation ---\\ Liste des exceptions du parefeu Windows (2) - 1s O87 - FAEL: "{3B1FBC5D-CC3C-417B-BE98-2CAC858D9EA5}" [In-None-P6-TRUE] .(...) -- C:\Program Files\DriversCloud.com\MCDetection.exe (.not file.) O87 - FAEL: "{F24FFE01-2424-4AA3-9821-C9351CDEB97D}" [In-None-P17-TRUE] .(...) -- C:\Program Files\DriversCloud.com\MCDetection.exe (.not file.) ---\\ Scan Additionnel (4) - 0s C:\Users\jeje07\AppData\Local\Software =>PUP.Optional.Boxore C:\WINDOWS\Prefetch\AUTOHIDEDESKTOPICONS 2.75.EXE-7871BB51.pf =>PUP.Optional.ADON C:\WINDOWS\Prefetch\SWIFTSEARCH.EXE-F859A106.pf =>.Superfluous.SwiftSearch C:\WINDOWS\Prefetch\SWIFTSEARCH64_{3CACE9B1-EF40--3D212A48.pf =>.Superfluous.SwiftSearch ---\\ Récapitulatif des éléments trouvés sur votre station (4) - 0s http://www.nicolascoolman.fr/?p=90 =>PUP.Optional.Boxore http://www.nicolascoolman.fr/?p=960 =>PUP.Optional.ADON http://www.nicolascoolman.fr/ppup-optional-swiftsearch/ =>.Superfluous.SwiftSearch http://www.nicolascoolman.fr/?p=263 =>PUP.Optional.Wajam ~ End of the scan, 28593 items in 00h01mn47s (1061)(0)