Publicité
Publicité
Format du document : text/plain
Prévisualisation
~ ZHPDiag v2016.11.15.218 Par Nicolas Coolman (2016/11/15)
~ Démarré par Mohammed (Administrator) (2016/11/15 22:43:42)
~ Web: https://www.nicolascoolman.com
~ Blog: https://www.anti-malware.top
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\Mohammed\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\Mohammed\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Démarrage du système: Normal (Normal boot)
Windows 7 Professional, 64-bit (Build 7600)
---\\ Navigateurs Internet (2) - 0s
~ MFIE: Mozilla Firefox 49.0.2 (x64 fr)
~ MSIE: Internet Explorer v8.0.7600.16385
---\\ Informations sur les produits Windows (4) - 3s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK
Windows Activation Technologies : KO
---\\ Surveillance de Logiciels (2) - 0s
Adobe Flash Player 23 NPAPI =>.Software.Surveillance
Adobe Acrobat Reader DC - Français =>.Software.Surveillance
---\\ Informations sur le système (6) - 0s
~ Operating System: Intel64 Family 6 Model 37 Stepping 5, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 3980.676 MB (58% free)
System Restore: Activé (Enable)
System drive C: has 5 GB () free of 108 GB =>Alerte espace disque inférieur à 20 Go
---\\ Mode de connexion au système (3) - 0s
~ Computer Name: MOHAMMED-PC
~ User Name: Mohammed
~ Logged in as Administrator
---\\ Enumération des unités disques (2) - 0s
~ Drive C: has 5 GB free of 108 GB (System)
~ Drive D: has 50 GB free of 129 GB
---\\ Etat du Centre de Sécurité Windows (10) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
---\\ Recherche particulière de fichiers génériques (26) - 1s
[MD5.F170B4A061C9E026437B193B4D571799] - 16/08/2009 - (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\Explorer.exe [2868224] =>.Microsoft Corporation
[MD5.DD81D91FF3B0763C392422865C9AC12E] - 14/07/2009 - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\Windows\System32\rundll32.exe [45568] =>.Microsoft Corporation
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - 14/07/2009 - (.Microsoft Corporation - Application de démarrage de Windows.) -- C:\Windows\System32\Wininit.exe [129024] =>.Microsoft Corporation
[MD5.B1037F0131C9A010D611F6914E03CD92] - 14/07/2009 - (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\System32\wininet.dll [1193472] =>.Microsoft Corporation
[MD5.132328DF455B0028F13BF0ABEE51A63A] - 14/07/2009 - (.Microsoft Corporation - Application d’ouverture de session Windows.) -- C:\Windows\System32\Winlogon.exe [389120] =>.Microsoft Corporation
[MD5.75341574F21E766748732BDF530C74BD] - 14/07/2009 - (.Microsoft Corporation - Bibliothèque de licences.) -- C:\Windows\System32\sppcomapi.dll [231936] =>.Microsoft Corporation
[MD5.05A2D26ACF0939A4E97160315F1FA12E] - 14/07/2009 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\Windows\System32\dnsapi.dll [356352] =>.Microsoft Corporation
[MD5.6D5A49D6479EB753C7879F73A4C35E0F] - 14/07/2009 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\Windows\Syswow64\dnsapi.dll [269824] =>.Microsoft Corporation
[MD5.F2521C3173E6027B3FBD5E44272BDF6C] - 14/07/2009 - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) -- C:\Windows\System32\fr-FR\user32.dll.mui [19968] =>.Microsoft Corporation
[MD5.B9384E03479D2506BC924C16A3DB87BC] - 13/07/2009 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\Windows\System32\drivers\AFD.sys [500224] =>.Microsoft Corporation
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - 14/07/2009 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\drivers\atapi.sys [24128] =>.Microsoft Windows®
[MD5.B8BD2BB284668C84865658C77574381A] - 13/07/2009 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\drivers\Cdfs.sys [92160] =>.Microsoft Corporation
[MD5.83D2D75E1EFB81B3450C18131443F7DB] - 13/07/2009 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\drivers\Cdrom.sys [147456] =>.Microsoft Corporation
[MD5.3F1DC527070ACB87E40AFE46EF6DA749] - 13/07/2009 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\drivers\DfsC.sys [102400] =>.Microsoft Corporation
[MD5.0A49913402747A0B67DE940FB42CBDBB] - 14/07/2009 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\drivers\HDAudBus.sys [122368] =>.Microsoft Corporation
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - 13/07/2009 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\Windows\System32\drivers\i8042prt.sys [105472] =>.Microsoft Corporation
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - 14/07/2009 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\drivers\IpNat.sys [116224] =>.Microsoft Corporation
[MD5.CFDCD8CA87C2A657DEBC150AC35B5E08] - 13/07/2009 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\Windows\System32\drivers\MRxSmb.sys [157184] =>.Microsoft Corporation
[MD5.9162B273A44AB9DCE5B44362731D062A] - 13/07/2009 - (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\drivers\netBT.sys [259072] =>.Microsoft Corporation
[MD5.356698A13C4630D5B31C37378D469196] - 14/07/2009 - (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\Windows\System32\drivers\ntfs.sys [1659984] =>.Microsoft Windows®
[MD5.0086431C29C35BE1DBC43F52CC273887] - 14/07/2009 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\Windows\System32\drivers\Parport.sys [97280] =>.Microsoft Corporation
[MD5.87A6E852A22991580D6D39ADC4790463] - 14/07/2009 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\drivers\Rasl2tp.sys [130048] =>.Microsoft Corporation
[MD5.9706B84DBABFC4B4CA46C5A82B14DFA3] - 14/07/2009 - (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\Windows\System32\drivers\rdpdr.sys [165376] =>.Microsoft Corporation
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - 14/07/2009 - (.Microsoft Corporation - SMB Transport driver.) -- C:\Windows\System32\drivers\smb.sys [93184] =>.Microsoft Corporation
[MD5.079125C4B17B01FCAEEBCE0BCB290C0F] - 13/07/2009 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\drivers\tdx.sys [99840] =>.Microsoft Corporation
[MD5.58F82EED8CA24B461441F9C3E4F0BF5C] - 14/07/2009 - (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\Windows\System32\drivers\volsnap.sys [294992] =>.Microsoft Windows®
---\\ Liste des services NT non Microsoft et non désactivés (15) - 2s
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated®
O23 - Service: Andrea ST Filters Service (AESTFilters) . (.Andrea Electronics Corporation - Andrea filters APO access service (64-bit).) - C:\Program Files\IDT\WDM\AESTSr64.exe =>.Andrea Electronics Corporation
O23 - Service: HP Service (hpsrv) . (.Hewlett-Packard Company - HpService.) - C:\Windows\system32\Hpservice.exe =>.Hewlett-Packard Company
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) . (.HP Inc. - HP Support Solutions Framework Service.) - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe =>.HP Inc.®
O23 - Service: Intel(R) PROSet Monitoring Service (Intel(R) PROSet Monitoring Service) . (.Intel Corporation - Intel® PROSet Monitoring Service.) - C:\Windows\system32\IProsetMonitor.exe =>.Intel Corporation
O23 - Service: Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe =>.Intel Corporation®
O23 - Service: SRepairDrv (SRepairDrv) . (...) - C:\Windows\GJFix\SRepairDrv (.not file.)
O23 - Service: @C:\Windows\system32\stlang64.dll (STacSV) . (.IDT, Inc. - IDT PC Audio.) - C:\Program Files\IDT\WDM\stacsv64.exe =>.IDT, Inc.
O23 - Service: AVG PC TuneUp Service (TuneUp.UtilitiesSvc) . (.AVG Technologies - AVG PC TuneUp Service.) - C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe =>.AVG Netherlands B.V.®
O23 - Service: Intel(R) Management & Security Application User Notificatio (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe =>.Intel Corporation®
O23 - Service: VMware Authorization Service (VMAuthdService) . (.VMware, Inc. - VMware Authorization Service.) - C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe =>.VMware, Inc.®
O23 - Service: VMware DHCP Service (VMnetDHCP) . (.VMware, Inc. - VMware VMnet DHCP service.) - C:\Windows\SysWOW64\vmnetdhcp.exe =>.VMware, Inc.®
O23 - Service: VMware USB Arbitration Service (VMUSBArbService) . (.VMware, Inc. - VMware USB Arbitration Service.) - C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe =>.VMware, Inc.®
O23 - Service: VMware NAT Service (VMware NAT Service) . (.VMware, Inc. - VMware NAT Service.) - C:\Windows\SysWOW64\vmnat.exe =>.VMware, Inc.®
O23 - Service: VMware Workstation Server (VMwareHostd) . (...) - C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe =>.VMware, Inc.®
---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (16) - 13s
SR - Auto [21/10/2016] [ 82128] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated®
SR - Auto [04/03/2016] [ 89600] Andrea ST Filters Service (AESTFilters) . (.Andrea Electronics Corporation.) - C:\Program Files\IDT\WDM\AESTSr64.exe =>.Andrea Electronics Corporation
SS - Demand [28/04/2015] [ 1102472] HP Software Framework Service (hpqwmiex) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe =>.Hewlett-Packard Company®
SR - Auto [13/05/2011] [ 30520] HP Service (hpsrv) . (.Hewlett-Packard Company.) - C:\Windows\system32\Hpservice.exe =>.Hewlett-Packard Company®
SR - Auto [15/08/2016] [ 29728] HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) . (.HP Inc..) - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe =>.HP Inc.®
SR - Auto [30/07/2013] [ 204552] Intel(R) PROSet Monitoring Service (Intel(R) PROSet Monitoring Service) . (.Intel Corporation.) - C:\Windows\system32\IProsetMonitor.exe =>.Intel Corporation®
SR - Auto [15/04/2010] [ 325656] Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe =>.Intel Corporation®
SS - Demand [20/10/2016] [ 197576] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe =>.Mozilla Corporation®
SR - Auto [04/03/2016] [ 271360] @C:\Windows\system32\stlang64.dll (STacSV) . (.IDT, Inc..) - C:\Program Files\IDT\WDM\stacsv64.exe =>.IDT, Inc.
SR - Auto [15/05/2015] [ 2967864] AVG PC TuneUp Service (TuneUp.UtilitiesSvc) . (.AVG Technologies.) - C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe =>.AVG Netherlands B.V.®
SR - Auto [15/04/2010] [ 2533400] Intel(R) Management & Security Application User Notificatio (UNS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe =>.Intel Corporation®
SR - Auto [25/11/2015] [ 89792] VMware Authorization Service (VMAuthdService) . (.VMware, Inc..) - C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe =>.VMware, Inc.®
SR - Auto [25/11/2015] [ 358080] VMware DHCP Service (VMnetDHCP) . (.VMware, Inc..) - C:\Windows\SysWOW64\vmnetdhcp.exe =>.VMware, Inc.®
SR - Auto [06/11/2015] [ 906944] VMware USB Arbitration Service (VMUSBArbService) . (.VMware, Inc..) - C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe =>.VMware, Inc.®
SR - Auto [25/11/2015] [ 392896] VMware NAT Service (VMware NAT Service) . (.VMware, Inc..) - C:\Windows\SysWOW64\vmnat.exe =>.VMware, Inc.®
SR - Auto [25/11/2015] [12462784] VMware Workstation Server (VMwareHostd) . (...) - C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe =>.VMware, Inc.®
---\\ Tâches planifiées en automatique (31) - 6s
[MD5.220ADB2D8475CF40556F61688D3A3EA3] [APT] [Adobe Acrobat Update Task] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1156824] (.Activate.) =>.Adobe Systems, Incorporated®
[MD5.00000000000000000000000000000000] [APT] [Browser Updater Task(Core)] (...) -- C:\Program Files (x86)\TXQQBrowser\Update\DA272ABBB670D4844BDA69B30EBA7044\Update\BrowserUpdate.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty
[MD5.ACC30D86DBDCD6ABED7F9AFF816F53A6] [APT] [DriverNavigator Scheduled Scan] (.Easeware.) -- C:\Program Files\Easeware\DriverNavigator\DriverNavigator.exe [1732464] (.Activate.) =>.Easeware Technology Limited®
[MD5.3DA2B70325A5947E981387DB9A9BD843] [APT] [HPCeeScheduleForMohammed] (.Hewlett-Packard.) -- C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [96568] (.Activate.) =>.Hewlett-Packard Company®
[MD5.00000000000000000000000000000000] [APT] [LefttoeUpdateTaskMachineCore] (...) -- C:\Program Files (x86)\Lefttoe\Update\LefttoeUpdate.exe (.not file.) [0] (.Activate.) =>Adware.Lefttoe
[MD5.00000000000000000000000000000000] [APT] [LefttoeUpdateTaskMachineUA] (...) -- C:\Program Files (x86)\Lefttoe\Update\LefttoeUpdate.exe (.not file.) [0] (.Activate.) =>Adware.Lefttoe
[MD5.00000000000000000000000000000000] [APT] [ToolrainUpdateTaskMachineCore] (...) -- C:\Program Files (x86)\Toolrain\Update\ToolrainUpdate.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty
[MD5.00000000000000000000000000000000] [APT] [ToolrainUpdateTaskMachineUA] (...) -- C:\Program Files (x86)\Toolrain\Update\ToolrainUpdate.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty
[MD5.427BBFB82EBBBB57BA47F0C6DDA6E481] [APT] [TuneUpUtilities_Task_BkGndMaintenance2013] (.AVG Technologies.) -- C:\Program Files (x86)\AVG\AVG PC TuneUp\OneClick.exe [552760] (.Activate.) =>.AVG Netherlands B.V.®
[MD5.00000000000000000000000000000000] [APT] [{33852289-E02F-461F-AB9C-663F7038C9D9}] (...) -- C:\Users\Mohammed\Downloads\aroundtheworldin80days(1).exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty
[MD5.E40C1867D16DD880E7A6C8156D06D27E] [APT] [{37448C43-6829-4D73-840D-776677B620F6}] (.InstallShield Software Corporation.) -- C:\Windows\IsUn040c.exe [308224] (.Activate.) =>.InstallShield Software Corporation
[MD5.00000000000000000000000000000000] [APT] [{9D9C4B4D-B2BC-444F-96D0-B363ECE6F074}] (...) -- C:\Users\Mohammed\Downloads\Programs\kav17.0.0.611fr-fr_full.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty
[MD5.00000000000000000000000000000000] [APT] [{EB8ADF83-2A2F-483D-8776-03626529DD3D}] (...) -- C:\Users\Mohammed\Downloads\Programs\kis17.0.0.611fr-fr_full.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty
[MD5.00000000000000000000000000000000] [APT] [AVAST Software\Avast settings backup] (...) -- C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty
[MD5.4FF880AFFCAC2EC8B26AE13BC1EF779D] [APT] [Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA)] (.HP Inc..) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [199512] (.Activate.) =>.Hewlett-Packard Company®
[MD5.00000000000000000000000000000000] [APT] [Microsoft\Windows\Media Center\mcupdate_scheduled] (...) -- C:\Windows\ehome\mcupd (.not file.) [0] (.Activate.) =>.Superfluous.Empty
O39 - APT: DriverNavigator Scheduled Scan - (.Easeware.) -- C:\Windows\Tasks\DriverNavigator Scheduled Scan.job [442] =>.Easeware Technology Limited®
O39 - APT: HPCeeScheduleForMohammed - (.Hewlett-Packard.) -- C:\Windows\Tasks\HPCeeScheduleForMohammed.job [344] =>.Hewlett-Packard Company®
O39 - APT: Adobe Acrobat Update Task - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Acrobat Update Task [4476] =>.Adobe Systems, Incorporated®
O39 - APT: Browser Updater Task(Core) - (...) -- C:\Windows\System32\Tasks\Browser Updater Task(Core) [9430] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: DriverNavigator Scheduled Scan - (.Easeware.) -- C:\Windows\System32\Tasks\DriverNavigator Scheduled Scan [3854] =>.Easeware Technology Limited®
O39 - APT: HPCeeScheduleForMohammed - (.Hewlett-Packard.) -- C:\Windows\System32\Tasks\HPCeeScheduleForMohammed [3204] =>.Hewlett-Packard Company®
O39 - APT: LefttoeUpdateTaskMachineCore - (...) -- C:\Windows\System32\Tasks\LefttoeUpdateTaskMachineCore [3560] (.Orphan.) =>Adware.Lefttoe
O39 - APT: LefttoeUpdateTaskMachineUA - (...) -- C:\Windows\System32\Tasks\LefttoeUpdateTaskMachineUA [3468] (.Orphan.) =>Adware.Lefttoe
O39 - APT: ToolrainUpdateTaskMachineCore - (...) -- C:\Windows\System32\Tasks\ToolrainUpdateTaskMachineCore [3468] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: ToolrainUpdateTaskMachineUA - (...) -- C:\Windows\System32\Tasks\ToolrainUpdateTaskMachineUA [3470] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: TuneUpUtilities_Task_BkGndMaintenance2013 - (.AVG Technologies.) -- C:\Windows\System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 [2762] =>.AVG Netherlands B.V.®
O39 - APT: {33852289-E02F-461F-AB9C-663F7038C9D9} - (...) -- C:\Windows\System32\Tasks\{33852289-E02F-461F-AB9C-663F7038C9D9} [3182] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: {37448C43-6829-4D73-840D-776677B620F6} - (.InstallShield Software Corporation.) -- C:\Windows\System32\Tasks\{37448C43-6829-4D73-840D-776677B620F6} [3346] =>.InstallShield Software Corporation
O39 - APT: {9D9C4B4D-B2BC-444F-96D0-B363ECE6F074} - (...) -- C:\Windows\System32\Tasks\{9D9C4B4D-B2BC-444F-96D0-B363ECE6F074} [3216] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: {EB8ADF83-2A2F-483D-8776-03626529DD3D} - (...) -- C:\Windows\System32\Tasks\{EB8ADF83-2A2F-483D-8776-03626529DD3D} [3216] (.Orphan.) =>.Superfluous.Orphan
---\\ Applications lancées au démarrage du système (16) - 0s
O4 - HKLM\..\Run: [SysTrayApp] . (.IDT, Inc. - IDT PC Audio.) -- C:\Program Files\IDT\WDM\sttray64.exe =>.IDT, Inc.
O4 - HKCU\..\Run: [Gestionnaire Antidote.exe] . (.Druide informatique inc. - Gestionnaire Antidote.) -- C:\Program Files (x86)\Druide\Antidote\Gestionnaire Antidote.exe {6BB03C90304C005E4CCC61F615410A86} =>.Druide informatique inc.
O4 - HKCU\..\Run: [Torrentex] . (...) -- C:\Torrentex\Torrentex.exe
O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - HKLM\..\Wow6432Node\Run: [vmware-tray.exe] . (.VMware, Inc. - VMware Tray Process.) -- C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe =>.VMware, Inc.®
O4 - HKLM\..\Wow6432Node\Run: [Lingo] . (...) -- C:\Windows\sservice controller\service.exe
O4 - HKLM\..\Wow6432Node\Run: [USB Security] . (.Zbshareware Lab - USB Disk Security.) -- C:\Program Files (x86)\USB Disk Security\USBGuard.exe =>.Lanzhou Itanium Software Technology Co., Ltd.®
O4 - HKUS\.DEFAULT\..\Run: [Gestionnaire Antidote.exe] . (.Druide informatique inc. - Gestionnaire Antidote.) -- C:\Program Files (x86)\Druide\Antidote\Gestionnaire Antidote.exe {6BB03C90304C005E4CCC61F615410A86} =>.Druide informatique inc.
O4 - HKUS\S-1-5-18\..\Run: [Gestionnaire Antidote.exe] . (.Druide informatique inc. - Gestionnaire Antidote.) -- C:\Program Files (x86)\Druide\Antidote\Gestionnaire Antidote.exe {6BB03C90304C005E4CCC61F615410A86} =>.Druide informatique inc.
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-2615603941-3448307637-3253308936-1000\..\Run: [Gestionnaire Antidote.exe] . (.Druide informatique inc. - Gestionnaire Antidote.) -- C:\Program Files (x86)\Druide\Antidote\Gestionnaire Antidote.exe {6BB03C90304C005E4CCC61F615410A86} =>.Druide informatique inc.
O4 - HKUS\S-1-5-21-2615603941-3448307637-3253308936-1000\..\Run: [Torrentex] . (...) -- C:\Torrentex\Torrentex.exe
O4 - HKUS\S-1-5-21-2615603941-3448307637-3253308936-1000\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.
---\\ Processus lancés (25) - 1s
[MD5.F8807AAF697E1D20C9D7716A4941E574] - (.IDT, Inc. - IDT PC Audio.) -- C:\Program Files\IDT\WDM\stacsv64.exe [271360] [PID.984] =>.IDT, Inc.
[MD5.00000000000000000000000000000000] - (.Hewlett-Packard Company - HpService.) -- C:\Windows\system32\Hpservice.exe [0] [PID.1068] =>.Hewlett-Packard Company
[MD5.C92B0A0957ACAD3CEEF502A2CA10ACB8] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [82128] [PID.1564] =>.Adobe Systems, Incorporated®
[MD5.A6FB9DB8F1A86861D955FD6975977AE0] - (.Andrea Electronics Corporation - Andrea filters APO access service (64-bit).) -- C:\Program Files\IDT\WDM\AESTSr64.exe [89600] [PID.1592] =>.Andrea Electronics Corporation
[MD5.00000000000000000000000000000000] - (.Intel Corporation - Intel® PROSet Monitoring Service.) -- C:\Windows\system32\IProsetMonitor.exe [0] [PID.1812] =>.Intel Corporation
[MD5.86B110346271EFF6D256A1615405AB7D] - (.AVG Technologies - AVG PC TuneUp Service.) -- C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2967864] [PID.1712] =>.AVG Netherlands B.V.®
[MD5.DF89A1667D769377CA5441A6F62F9031] - (.VMware, Inc. - VMware NAT Service.) -- C:\Windows\SysWOW64\vmnat.exe [392896] [PID.1176] =>.VMware, Inc.®
[MD5.C84A6FA836262BD7CBE611F08B554E8B] - (.VMware, Inc. - VMware VMnet DHCP service.) -- C:\Windows\SysWOW64\vmnetdhcp.exe [358080] [PID.1904] =>.VMware, Inc.®
[MD5.5F9CBD6D40E32CAEB55DB4A0799EBA72] - (.VMware, Inc. - VMware Authorization Service.) -- C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe [89792] [PID.1936] =>.VMware, Inc.®
[MD5.B30B940E999CC59A701B564A7E359D09] - (.VMware, Inc. - VMware USB Arbitration Service.) -- C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe [906944] [PID.2168] =>.VMware, Inc.®
[MD5.6B5BB4F597113997DBE1BE6091675F6C] - (...) -- C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe [12462784] [PID.2220] =>.VMware, Inc.®
[MD5.02F1253476B7F5F818364443DFED3264] - (.HP Inc. - HP Support Solutions Framework Service.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [29728] [PID.2812] =>.HP Inc.®
[MD5.73A1F958FCAC3438046DBB829DC92FE6] - (.Intel Corporation - Local Manageability Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [325656] [PID.1144] =>.Intel Corporation®
[MD5.F51C224B79D338BDE125FD8035D2418B] - (.Intel Corporation - User Notification Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2533400] [PID.2244] =>.Intel Corporation®
[MD5.496A18F4C61B13656E90953656434657] - (.AVG Technologies - AVG PC TuneUp.) -- C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe [2450232] [PID.484] =>.AVG Netherlands B.V.®
[MD5.63DF58EA2963E8C6ABDBBA45B7273C39] - (.IDT, Inc. - IDT PC Audio.) -- C:\Program Files\IDT\WDM\sttray64.exe [489472] [PID.2396] =>.IDT, Inc.
[MD5.0DE926F6EB16EAB82202CB878B1D6A42] - (.Druide informatique inc. - Gestionnaire Antidote.) -- C:\Program Files (x86)\Druide\Antidote\Gestionnaire Antidote.exe [533944] [PID.2888] {6BB03C90304C005E4CCC61F615410A86} =>.Druide informatique inc.
[MD5.DD6FCDC54731BD9812E450E9317B62D7] - (...) -- C:\Torrentex\Torrentex.exe [417744] [PID.2476]
[MD5.EE451AFC24AF84979429FAC7DF6188A0] - (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe [3994736] [PID.308] =>.Tonec Inc.
[MD5.65F39E4C0A0119E5BA5911C524EAA9A7] - (.VMware, Inc. - VMware Tray Process.) -- C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe [104128] [PID.1004] =>.VMware, Inc.®
[MD5.AEDB078BFE5E29C95EB5DA9292734537] - (...) -- C:\Windows\sservice controller\service.exe [18124564] [PID.2848]
[MD5.BAC15D03EFC8249216D1D610F3B1E67F] - (.Zbshareware Lab - USB Disk Security.) -- C:\Program Files (x86)\USB Disk Security\USBGuard.exe [695528] [PID.776] =>.Lanzhou Itanium Software Technology Co., Ltd.®
[MD5.B289C20C10B241F6016FECD92B267098] - (.Tonec Inc. - Internet Download Manager agent for click m.) -- C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe [275512] [PID.3500] =>.Tonec Inc.®
[MD5.415BF0E6EE611DFF2CFDF0EBB4DD802C] - (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe [468424] [PID.3136] =>.Mozilla Corporation®
[MD5.E8DE9984CEEE4B232974046AE35569F4] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\Mohammed\Downloads\Programs\ZHPDiag3.exe [2449408] [PID.3872] =>.Nicolas Coolman
---\\ Google Chrome, Démarrage,Recherche,Extensions (20) - 1s
G0 - GCSP: Preferences [User Data\Default][HomePage] http://tools.google.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://youtube.com =>.Youtube
G0 - GCSP: Preferences [User Data\Default][HomePage] http://accounts.google.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://accounts.youtube.com =>.Youtube
G0 - GCSP: Preferences [User Data\Default][HomePage] http://docs.google.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://fonts.gstatic.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://i.ytimg.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://s.ytimg.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://ssl.gstatic.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.gstatic.com =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [aapocclcgogkmnckokdopfmhonfmgoek] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [felcaaldnbdncclmgdcncolpebgiejap] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [ghbmnnjooekpmoecnnnilnnbdlolhkhi] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [ngpampappnmepgilojfohadhhmbhlaek] IDM Integration Module
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [pkedcjkdefgpdelpbcmbmeomcjbeemfm] Chrome Media Router =>.Google Inc.
---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (10) - 3s
M0 - MFSP: prefs.js [Mohammed - 5hbh86t1.default] http://linkzb.com
P2 - EXT FILE: (.mysites123 - mysites123 Search.) -- C:\Users\Mohammed\AppData\Roaming\Mozilla\Firefox\Profiles\5hbh86t1.default\searchplugins\mysites123.xml =>PUP.Optional.Mysites123
P2 - EXT FILE: (.nice - nice Search.) -- C:\Users\Mohammed\AppData\Roaming\Mozilla\Firefox\Profiles\5hbh86t1.default\searchplugins\nice.xml
P2 - EXT FILE: (.nuesearch - nuesearch Search.) -- C:\Users\Mohammed\AppData\Roaming\Mozilla\Firefox\Profiles\5hbh86t1.default\searchplugins\nuesearch.xml =>Hijacker.Browser
P2 - EXT FILE: (.piesearch - piesearch Search.) -- C:\Users\Mohammed\AppData\Roaming\Mozilla\Firefox\Profiles\5hbh86t1.default\searchplugins\piesearch.xml =>PUP.Optional.PieSearch
P2 - EXT FILE: (.so-v - so-v Search.) -- C:\Users\Mohammed\AppData\Roaming\Mozilla\Firefox\Profiles\5hbh86t1.default\searchplugins\so-v.xml
P2 - EXT FILE: (.MEGA - Secure Cloud Storage.) -- C:\Users\Mohammed\AppData\Roaming\Mozilla\Firefox\Profiles\uyaqs5sw.Utilisateur par défaut\extensions\firefox@mega.co.nz.xpi =>.MEGA
P2 - EXT: (.Jason Bourne - xRocket Toolbar.) -- C:\Users\Mohammed\AppData\Roaming\Mozilla\Firefox\Profiles\5hbh86t1.default\extensions\arthurj8283@gmail.com =>.Jason Bourne
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_162.dll =>.Adobe Systems Incorporated
P2 - FPN: [HKLM] [@qq.com/npAndroidAssistant] - (.腾讯公司.) -- C:\Program Files (x86)\Common Files\Tencent\QQPhoneManager\2.0.201.3192\npQQPhoneManagerExt.dll =>.Superfluous.Tencent
---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (18) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://start.myplaycity.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://start.myplaycity.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://start.myplaycity.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.attirerpage.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.attirerpage.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.attirerpage.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.attirerpage.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.attirerpage.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.attirerpage.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.attirerpage.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphan =>.Microsoft Internet Explorer
---\\ Internet Explorer,Proxy Management (4) - 0s
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=userinit.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: VMApplet=C:\Windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.) =>.Microsoft Corporation
---\\ Etude du fichier hosts (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (21)
---\\ Browser Helper Object de navigateur (BHO) (1) - 0s
O2 - BHO: IDM Helper [64Bits] - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Internet Download Manager, Tonec Inc. - IDM Browser Helper Object.) -- C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll =>.Tonec Inc.®
---\\ Internet Explorer, Barre d'outil (3) - 0s
O3 - Toolbar: 0xE3EFEB7F196B494398D2FFB09D4B49CA01F4020000 - [HKCU]{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} . (...) -- (.not file.)
O3 - Toolbar: 0xB1C218236549D4119B18009027A5CD4F - [HKCU]{2318C2B1-4965-11D4-9B18-009027A5CD4F} . (...) -- (.not file.)
O3 - Toolbar: 0xB8C1AA4B0008C9428FA608B211F356B8 - [HKCU]{4BAAC1B8-0800-42C9-8FA6-08B211F356B8} . (...) -- (.not file.)
---\\ Raccourcis Global Startup (92) - 4s
O4 - GS\Desktop [Administrateur]: FreeGamePick.lnk . (...) C:\Program Files (x86)\FreeGamePick\Around The World In 80 Days\website.url
O4 - GS\Desktop [Administrateur]: HP Support Assistant.lnk . (.HP Inc. - HP Support Assistant.) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe /p 2 =>.HP Inc.®
O4 - GS\Desktop [Administrateur]: Internet Download Manager.lnk . (.Tonec Inc. - Internet Download Manager (IDM).) C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - GS\Desktop [Administrateur]: PhotoScape.lnk . (.Copyright (C) 2005 - PhotoScape.) C:\Program Files (x86)\PhotoScape\PhotoScape.exe =>.Mooii Tech®
O4 - GS\Desktop [Administrateur]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Mohammed\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Administrateur]: Around The World in 80 Days.lnk . (...) C:\Program Files (x86)\MyPlayCity.com\Around The World in 80 Days\Around The World in 80 Days.exe =>.MyPlayCity Inc®
O4 - GS\Quicklaunch [Administrateur]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [Administrateur]: PhotoScape.lnk . (.Copyright (C) 2005 - PhotoScape.) C:\Program Files (x86)\PhotoScape\PhotoScape.exe =>.Mooii Tech®
O4 - GS\sendTo [Administrateur]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Administrateur]: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Administrateur]: AVG PC TuneUp - Interface de démarrage.lnk . (.AVG Technologies - AVG PC TuneUp - Interface de démarrage.) C:\Program Files (x86)\AVG\AVG PC TuneUp\Integrator.exe =>.AVG Netherlands B.V.®
O4 - GS\TaskBar [Administrateur]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\TaskBar [Administrateur]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [Administrateur]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Administrateur]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\Programs [Administrateur]: Internet Explorer (64-bit).lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Programs [Administrateur]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [Mohammed]: FreeGamePick.lnk . (...) C:\Program Files (x86)\FreeGamePick\Around The World In 80 Days\website.url
O4 - GS\Desktop [Mohammed]: HP Support Assistant.lnk . (.HP Inc. - HP Support Assistant.) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe /p 2 =>.HP Inc.®
O4 - GS\Desktop [Mohammed]: Internet Download Manager.lnk . (.Tonec Inc. - Internet Download Manager (IDM).) C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - GS\Desktop [Mohammed]: PhotoScape.lnk . (.Copyright (C) 2005 - PhotoScape.) C:\Program Files (x86)\PhotoScape\PhotoScape.exe =>.Mooii Tech®
O4 - GS\Desktop [Mohammed]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Mohammed\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Mohammed]: Around The World in 80 Days.lnk . (...) C:\Program Files (x86)\MyPlayCity.com\Around The World in 80 Days\Around The World in 80 Days.exe =>.MyPlayCity Inc®
O4 - GS\Quicklaunch [Mohammed]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [Mohammed]: PhotoScape.lnk . (.Copyright (C) 2005 - PhotoScape.) C:\Program Files (x86)\PhotoScape\PhotoScape.exe =>.Mooii Tech®
O4 - GS\sendTo [Mohammed]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Mohammed]: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Mohammed]: AVG PC TuneUp - Interface de démarrage.lnk . (.AVG Technologies - AVG PC TuneUp - Interface de démarrage.) C:\Program Files (x86)\AVG\AVG PC TuneUp\Integrator.exe =>.AVG Netherlands B.V.®
O4 - GS\TaskBar [Mohammed]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\TaskBar [Mohammed]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [Mohammed]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Mohammed]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\Programs [Mohammed]: Internet Explorer (64-bit).lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Programs [Mohammed]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\CommonDesktop [Public]: Acrobat Reader DC.lnk . (.Adobe Systems Incorporated - Adobe Acrobat Reader DC.) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe =>.Adobe Systems, Incorporated®
O4 - GS\CommonDesktop [Public]: AVG Maintenance en 1 clic.lnk . (.AVG Technologies - AVG Maintenance en 1 clic.) C:\Program Files (x86)\AVG\AVG PC TuneUp\OneClick.exe =>.AVG Netherlands B.V.®
O4 - GS\CommonDesktop [Public]: AVG PC TuneUp 2015.lnk . (.AVG Technologies - AVG PC TuneUp - Interface de démarrage.) C:\Program Files (x86)\AVG\AVG PC TuneUp\Integrator.exe =>.AVG Netherlands B.V.®
O4 - GS\CommonDesktop [Public]: DriverNavigator.lnk . (.Easeware - DriverNavigator.) C:\Program Files\Easeware\DriverNavigator\DriverNavigator.exe =>.Easeware Technology Limited®
O4 - GS\CommonDesktop [Public]: EPSON Scan.lnk . (.SEIKO EPSON CORP. - EPSON Scan.) C:\Windows\twain_32\escndv\escndv.exe =>.SEIKO EPSON CORP.
O4 - GS\CommonDesktop [Public]: face2face Second edition Pre-intermediate.lnk . (...) C:\Program Files (x86)\Cambridge\face2face Second edition Pre-intermediate\face2face Second edition Pre-intermediate.exe
O4 - GS\CommonDesktop [Public]: Internet Mobile.lnk . (...) C:\Program Files (x86)\Internet Mobile\Internet Mobile.exe
O4 - GS\CommonDesktop [Public]: Jeux.lnk . (...) C:\Program Files (x86)\bfgclient\bfgclient.exe -u
O4 - GS\CommonDesktop [Public]: Lingo.lnk . (...) C:\Program Files (x86)\Lingo\Lingo.exe
O4 - GS\CommonDesktop [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\CommonDesktop [Public]: Torrentex.lnk . (...) C:\Torrentex\Torrentex.exe
O4 - GS\CommonDesktop [Public]: USB Disk Security.lnk . (.Zbshareware Lab - USB Disk Security.) C:\Program Files (x86)\USB Disk Security\USBGuard.exe =>.Lanzhou Itanium Software Technology Co., Ltd.®
O4 - GS\CommonDesktop [Public]: VLC media player.lnk . (.VideoLAN - VLC media player.) C:\Program Files\VideoLAN\VLC\vlc.exe =>.VideoLAN®
O4 - GS\CommonDesktop [Public]: VMware Workstation Pro.lnk . (.VMware, Inc. - VMware Workstation.) C:\Program Files (x86)\VMware\VMware Workstation\vmware.exe =>.VMware, Inc.®
O4 - GS\CommonDesktop [Public]: Web Navigation.lnk . (...) C:\Program Files (x86)\USB Disk Security\linkzb.exe =>.Lanzhou Itanium Software Technology Co., Ltd.®
O4 - GS\CommonDesktop [Public]: Zuma's Revenge!.lnk . (.PopCap Games, Inc. - Zuma's Revenge!.) C:\Program Files (x86)\PopCap Games\Zuma's Revenge\ZumasRevenge.exe =>.PopCap Games®
O4 - GS\Programs [Public]: Internet Explorer (64-bit).lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Programs [Public]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Accessories [Public]: Command Prompt.lnk . (.Microsoft Corporation - Interpréteur de commandes Windows.) C:\Windows\system32\cmd.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) C:\Windows\system32\notepad.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe -extoff =>.Microsoft Corporation®
O4 - GS\SystemTools [Public]: Private Character Editor.lnk . (.Microsoft Corporation - Éditeur de caractères privés.) C:\Windows\system32\eudcedit.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Bluetooth File Transfer Wizard.lnk . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Calculator.lnk . (.Microsoft Corporation - Calculatrice de Windows.) C:\Windows\system32\calc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: displayswitch.lnk . (.Microsoft Corporation - Afficher le commutateur.) C:\Windows\system32\displayswitch.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Math Input Panel.lnk . (.Microsoft Corporation - Accessoire du panneau de saisie mathématiqu.) C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\mip.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Mobility Center.lnk . (.Microsoft Corporation - Centre de mobilité Windows.) C:\Windows\system32\mblctr.exe /open =>.Microsoft Corporation
O4 - GS\Accessories [Public]: NetworkProjection.lnk . (.Microsoft Corporation - Connect to a Network Projector.) C:\Windows\system32\NetProj.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.) C:\Windows\system32\mspaint.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Connexion Bureau à distance.) C:\Windows\system32\mstsc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - Outil Capture.) C:\Windows\system32\SnippingTool.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sound Recorder.lnk . (.Microsoft Corporation - Magnétophone Windows.) C:\Windows\system32\SoundRecorder.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sticky Notes.lnk . (.Microsoft Corporation - Pense-bête.) C:\Windows\system32\StikyNot.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sync Center.lnk . (.Microsoft Corporation - Microsoft Sync Center.) C:\Windows\System32\mobsync.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Welcome Center.lnk . (.Microsoft Corporation - Processus hôte Windows (Rundll32).) C:\Windows\system32\rundll32.exe %SystemRoot%\system32\OobeFldr.dll,ShowWelcomeCenter LaunchedBy_StartMenuShortcut =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Application Windows Wordpad.) C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Table des caractères.) C:\Windows\system32\charmap.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: dfrgui.lnk . (.Microsoft Corporation - Défragmenteur de disque Microsoft®.) C:\Windows\system32\dfrgui.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Disk Cleanup.lnk . (.Microsoft Corporation - Gestionnaire de nettoyage de disque pour Wi.) C:\Windows\system32\cleanmgr.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Resource Monitor.lnk . (.Microsoft Corporation - Moniteur de ressources et de performances.) C:\Windows\system32\perfmon.exe /res =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: System Information.lnk . (.Microsoft Corporation - Informations système.) C:\Windows\system32\msinfo32.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: System Restore.lnk . (.Microsoft Corporation - Restauration du système de Microsoft® Windo.) C:\Windows\system32\rstrui.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Task Scheduler.lnk . (...) C:\Windows\system32\taskschd.msc /s
O4 - GS\SystemTools [Public]: Windows Easy Transfer Reports.lnk . (.Microsoft Corporation - Application post-migration de transfert de.) C:\Windows\system32\migwiz\postmig.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Windows Easy Transfer.lnk . (.Microsoft Corporation - Application Transfert de fichiers et paramè.) C:\Windows\system32\migwiz\migwiz.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Acrobat Reader DC.lnk . (.Flexera Software LLC - InstallShield.) C:\Windows\Installer\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}\SC_Reader.ico =>.Flexera Software LLC
O4 - GS\ProgramsCommon [Public]: AVG PC TuneUp 2015.lnk . (.AVG Technologies - AVG PC TuneUp - Interface de démarrage.) C:\Program Files (x86)\AVG\AVG PC TuneUp\Integrator.exe =>.AVG Netherlands B.V.®
O4 - GS\ProgramsCommon [Public]: IDT HD Audio.lnk . (.IDT, Inc. - IDT PC Audio.) C:\Windows\System32\idtcpl64.cpl =>.IDT, Inc.
O4 - GS\ProgramsCommon [Public]: Lingo.lnk . (...) C:\Program Files (x86)\Lingo\Lingo.exe
O4 - GS\ProgramsCommon [Public]: Media Center.lnk . (.Microsoft Corporation - Windows Media Center.) C:\Windows\ehome\ehshell.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\ProgramsCommon [Public]: Sidebar.lnk . (.Microsoft Corporation - Gadgets du Bureau Windows.) C:\Program Files (x86)\Windows Sidebar\sidebar.exe /showgadgets =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Windows Anytime Upgrade.lnk . (.Microsoft Corporation - Interface utilisateur de Mise à niveau expr.) C:\Windows\system32\WindowsAnytimeUpgradeUI.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Windows DVD Maker.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\DVD Maker\DVDMaker.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Windows Fax and Scan.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: XPS Viewer.lnk . (.Microsoft Corporation - Visionneuse XPS.) C:\Windows\system32\xpsrchvw.exe =>.Microsoft Corporation
---\\ Modification Domaine/Adresses DNS (7) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{381EF6C0-591A-47B7-A723-74D64E9D309C}: NameServer = 208.67.222.222,208.67.220.220,192.168.7.1 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{B2FF68A0-5319-46BF-94BE-DCC794CCD696}: NameServer = 208.67.222.222,208.67.220.220 =>.OpenDNS DNS
O17 - HKLM\System\CCS\Services\Tcpip\..\{BFDF8398-3BCE-44F7-82A6-A61B8CC80CF9}: NameServer = 208.67.222.222,208.67.220.220 =>.OpenDNS DNS
O17 - HKLM\System\CCS\Services\Tcpip\..\{CCC59A0E-2554-4061-8D5C-5AC7386C8F13}: NameServer = 208.67.222.222,208.67.220.220 =>.OpenDNS DNS
O17 - HKLM\System\CCS\Services\Tcpip\..\{E2612551-D7DD-46FB-AA0B-7114E82EFCA3}: NameServer = 208.67.222.222,208.67.220.220 =>.OpenDNS DNS
O17 - HKLM\System\CCS\Services\Tcpip\..\{F5A520A8-0314-44A0-A1F5-20DFE57350AE}: DhcpNameServer = 192.168.1.1 =>.Local IP Adress
---\\ Protocole additionnel (24) - 1s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll =>.Microsoft Corporation
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ms-help [64Bits] - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Help\hxds.dll =>.Microsoft Corporation®
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: deflate [64Bits] - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Filter: gzip [64Bits] - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL =>.Microsoft Corporation®
---\\ Logiciels installés (37) - 8s
O42 - Logiciel: Adobe Acrobat Reader DC - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AC0F074E4100} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Flash Player 23 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001824205020} =>.Adobe Systems Incorporated
O42 - Logiciel: Antidote RX v2 - (.Druide informatique inc..) [HKLM][64Bits] -- {A474EA56-5DBD-4181-8230-806A4762EA7F} =>.Druide informatique inc.
O42 - Logiciel: AVG 2016 - (.AVG Technologies.) [HKLM][64Bits] -- {500609C4-E46C-4887-9466-A20EB783C57A} =>.AVG Technologies
O42 - Logiciel: AVG PC TuneUp 2015 - (.AVG Technologies.) [HKLM][64Bits] -- {A996C182-3724-4DF1-A4BC-66154FE57DFE} =>.AVG Technologies
O42 - Logiciel: AVG PC TuneUp 2015 - (.AVG Technologies.) [HKLM][64Bits] -- AVG PC TuneUp =>.AVG Netherlands B.V.®
O42 - Logiciel: AVG PC TuneUp 2015 (fr-FR) - (.AVG Technologies.) [HKLM][64Bits] -- {A740869A-1BFF-4688-AEA3-8F4A3F74B212} =>.AVG Technologies
O42 - Logiciel: DriverNavigator 3.6.8 - (.Easeware.) [HKLM][64Bits] -- DriverNavigator_is1 =>.Easeware Technology Limited®
O42 - Logiciel: EPSON Scan - (.Seiko Epson Corporation.) [HKLM][64Bits] -- EPSON Scanner =>.SEIKO EPSON Corporation®
O42 - Logiciel: face2face Second edition Pre-intermediate application - (.Cambridge University Press Holdings Limited.) [HKLM][64Bits] -- {210C278A-62B7-09FF-6F68-03B21F285397}
O42 - Logiciel: face2face Second edition Pre-intermediate application - (.Cambridge University Press Holdings Limited.) [HKLM][64Bits] -- face2faceSecondeditionPreintermediate
O42 - Logiciel: face2face Second edition Pre-intermediate content - (.Cambridge University Press.) [HKLM][64Bits] -- face2face Second edition Pre-intermediate content =>.Cambridge University Press
O42 - Logiciel: HP Customer Experience Enhancements - (.Hewlett-Packard.) [HKLM][64Bits] -- {C9EF1AAF-B542-41C8-A537-1142DA5D4AEC} =>.Hewlett-Packard
O42 - Logiciel: HP Support Assistant - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {79C54A05-F146-4EA0-8A70-D4EFE6181E52} =>.Hewlett-Packard Company
O42 - Logiciel: HP Support Solutions Framework - (.HP.) [HKLM][64Bits] -- {C18278AC-049A-4F02-A97F-4FD7294CC4F5} =>.HP
O42 - Logiciel: IDT Audio - (.IDT.) [HKLM][64Bits] -- {E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001} =>.IDT
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A} =>.Intel Corporation®
O42 - Logiciel: Intel(R) Network Connections 18.7.28.0 - (.Intel.) [HKLM][64Bits] -- {594AEAFB-0822-4EA9-A5B8-309485A515EE} =>.Intel
O42 - Logiciel: Intel(R) Network Connections 18.7.28.0 - (.Intel.) [HKLM][64Bits] -- PROSetDX =>.Intel
O42 - Logiciel: Internet Download Manager - (.Tonec Inc..) [HKLM][64Bits] -- Internet Download Manager =>.Tonec Inc.®
O42 - Logiciel: Internet Mobile - (.Huawei Technologies Co.,Ltd.) [HKLM][64Bits] -- Internet Mobile =>.Huawei Technologies Co.,Ltd
O42 - Logiciel: ISIS Drivers - (.EMC Corporation.) [HKLM][64Bits] -- {7C4A09A7-C641-4330-95B5-23F64DDEE1C2} =>.EMC Corporation
O42 - Logiciel: Lingo version 1.0.0 - (.FOFO-SOFT.) [HKLM][64Bits] -- {0893A168-4115-4E8C-9975-A1A7615F1041}_is1
O42 - Logiciel: Mozilla Firefox 49.0.2 (x64 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 49.0.2 (x64 fr) =>.Mozilla Corporation®
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService =>.Mozilla
O42 - Logiciel: NirSoft Wireless Network Watcher - (...) [HKLM][64Bits] -- NirSoft Wireless Network Watcher
O42 - Logiciel: PhotoScape - (...) [HKLM][64Bits] -- PhotoScape
O42 - Logiciel: Torrentex version 0.1.4b - (.Torrentex Inc..) [HKLM][64Bits] -- {B36CE58D-F635-4F82-97EE-BC6DE158BC6E}_is1 =>.Torrentex Inc.
O42 - Logiciel: USB Disk Security - (.Zbshareware Lab.) [HKLM][64Bits] -- USB Disk Security_is1 =>.Zbshareware Lab
O42 - Logiciel: VC_CRT_x64 - (.Intel Corporation.) [HKLM][64Bits] -- {54F2237F-018C-483B-8884-9FC0D88840C3} =>.Intel Corporation
O42 - Logiciel: Visual Studio 2012 x64 Redistributables - (.AVG Technologies.) [HKLM][64Bits] -- {8C775E70-A791-4DA8-BCC3-6AB7136F4484} =>.AVG Technologies
O42 - Logiciel: Visual Studio 2012 x86 Redistributables - (.AVG Technologies CZ, s.r.o..) [HKLM][64Bits] -- {98EFF19A-30AB-4E4B-B943-F06B1C63EBF8} =>.AVG Technologies CZ, s.r.o.
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player =>.VideoLAN
O42 - Logiciel: VMware Workstation - (.VMware, Inc..) [HKLM][64Bits] -- {0AD91785-F9BD-47FD-84F7-9E27B5A1853D} =>.VMware, Inc.
O42 - Logiciel: WinRAR 5.00 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver =>.win.rar GmbH®
O42 - Logiciel: Zuma's Revenge! - (.PopCap Games.) [HKLM][64Bits] -- Zuma's Revenge! =>.PopCap Games®
---\\ HKCU & HKLM Software Keys (95) - 8s
HKLM\SOFTWARE\Wow6432Node\Adobe =>.Adobe
HKLM\SOFTWARE\Wow6432Node\attirerpageSoftware
HKLM\SOFTWARE\Wow6432Node\AVAST Software =>.AVAST Software
HKLM\SOFTWARE\Wow6432Node\Avg
HKLM\SOFTWARE\Wow6432Node\AVS4YOU =>.AVS4YOU
HKLM\SOFTWARE\Wow6432Node\Big Fish Games =>.Big Fish Games
HKLM\SOFTWARE\Wow6432Node\CLSID
HKLM\SOFTWARE\Wow6432Node\Druide informatique inc. =>.Druide informatique inc.
HKLM\SOFTWARE\Wow6432Node\EMC Corporation =>.EMC Corporation
HKLM\SOFTWARE\Wow6432Node\EPSON =>.EPSON
HKLM\SOFTWARE\Wow6432Node\FastStone Image Viewer
HKLM\SOFTWARE\Wow6432Node\FFinder LTD
HKLM\SOFTWARE\Wow6432Node\Google =>.Google
HKLM\SOFTWARE\Wow6432Node\hdcode
HKLM\SOFTWARE\Wow6432Node\Hewlett-Packard =>.Hewlett-Packard
HKLM\SOFTWARE\Wow6432Node\Huawei technologies =>.Huawei Technologies
HKLM\SOFTWARE\Wow6432Node\IDT =>.IDT
HKLM\SOFTWARE\Wow6432Node\ihpmserver =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\Intel =>.Intel
HKLM\SOFTWARE\Wow6432Node\Internet Download Manager
HKLM\SOFTWARE\Wow6432Node\KasperskyLab =>.KasperskyLab
HKLM\SOFTWARE\Wow6432Node\Lefttoe =>Adware.Lefttoe
HKLM\SOFTWARE\Wow6432Node\Licenses
HKLM\SOFTWARE\Wow6432Node\LogMeInRescueCallingCard
HKLM\SOFTWARE\Wow6432Node\Macromedia =>.Macromedia
HKLM\SOFTWARE\Wow6432Node\McAfee.com =>.McAfee.com
HKLM\SOFTWARE\Wow6432Node\MimarSinan
HKLM\SOFTWARE\Wow6432Node\Mooii =>.Mooii
HKLM\SOFTWARE\Wow6432Node\Mozilla =>.Mozilla
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins =>.MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\mysites123Software =>PUP.Optional.Mysites123
HKLM\SOFTWARE\Wow6432Node\Novell =>.Novell
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\PopCap
HKLM\SOFTWARE\Wow6432Node\RayDld =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\SrpnFiles =>.Superfluous.SpringFiles
HKLM\SOFTWARE\Wow6432Node\TData =>.Superfluous.TDataCom
HKLM\SOFTWARE\Wow6432Node\Tencent =>.Superfluous.Tencent
HKLM\SOFTWARE\Wow6432Node\ThinPrint =>.ThinPrint
HKLM\SOFTWARE\Wow6432Node\Toolrain
HKLM\SOFTWARE\Wow6432Node\TSv =>.Superfluous.Elex
HKLM\SOFTWARE\Wow6432Node\TuneUp =>.TuneUp
HKLM\SOFTWARE\Wow6432Node\UCBrowserPID
HKLM\SOFTWARE\Wow6432Node\VideoLAN =>.VideoLAN
HKLM\SOFTWARE\Wow6432Node\VMware, Inc. =>.VMware, Inc.
HKLM\SOFTWARE\Wow6432Node\WinSaberSvc =>.Superfluous.WinSaber
HKLM\SOFTWARE\Wow6432Node\yessearchesSoftware =>Adware.YesSearches
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\8322898
HKCU\SOFTWARE\Adobe =>.Adobe
HKCU\SOFTWARE\Ahusoft =>.Ahusoft
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\Avg
HKCU\SOFTWARE\AVG SafePrice
HKCU\SOFTWARE\AVS4YOU =>.AVS4YOU
HKCU\SOFTWARE\Big Fish Games =>.Big Fish Games
HKCU\SOFTWARE\Chromium =>.Chromium
HKCU\SOFTWARE\Cisco =>.Cisco
HKCU\SOFTWARE\DicoVerb
HKCU\SOFTWARE\DownloadManager
HKCU\SOFTWARE\Druide informatique inc. =>.Druide informatique inc.
HKCU\SOFTWARE\EPSON =>.EPSON
HKCU\SOFTWARE\ESET =>.ESET
HKCU\SOFTWARE\FreeDownloadManager.ORG =>.FreeDownloadManager.ORG
HKCU\SOFTWARE\Google =>.Google
HKCU\SOFTWARE\Hewlett-Packard =>.Hewlett-Packard
HKCU\SOFTWARE\IM =>Adware.InstallCore
HKCU\SOFTWARE\IMDownloader
HKCU\SOFTWARE\Installer
HKCU\SOFTWARE\InstallMonster
HKCU\SOFTWARE\JavaSoft =>.JavaSoft
HKCU\SOFTWARE\KasperskyLabSetup
HKCU\SOFTWARE\Lefttoe =>Adware.Lefttoe
HKCU\SOFTWARE\Licenses
HKCU\SOFTWARE\Macromedia =>.Macromedia
HKCU\SOFTWARE\Mooii =>.Mooii
HKCU\SOFTWARE\Mozilla =>.Mozilla
HKCU\SOFTWARE\Netscape =>.Netscape
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\PopCap
HKCU\SOFTWARE\SecuROM
HKCU\SOFTWARE\SMADΔV
HKCU\SOFTWARE\SrpnFiles =>.Superfluous.SpringFiles
HKCU\SOFTWARE\Tencent =>.Superfluous.Tencent
HKCU\SOFTWARE\Torrentex Inc. =>.Torrentex Inc.
HKCU\SOFTWARE\Trolltech =>.Trolltech
HKCU\SOFTWARE\UCBrowserPID
HKCU\SOFTWARE\USB Disk Security
HKCU\SOFTWARE\VMware, Inc. =>.VMware, Inc.
HKCU\SOFTWARE\WinRAR =>.WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\Wow6432Node
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\PasswordBox
---\\ Contenu des dossiers Programmes (265) - 25s
O43 - CFD: 28/10/2016 - [] D -- C:\Program Files\Common Files =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\DVD Maker =>.Aone Software
O43 - CFD: 13/11/2016 - [] D -- C:\Program Files\Easeware =>.Easeware Technology Limited®
O43 - CFD: 30/10/2016 - [] D -- C:\Program Files\ESET =>.ESET
O43 - CFD: 20/02/2016 - [0] SHD -- C:\Program Files\Fichiers communs =>.Microsoft Corporation
O43 - CFD: 01/10/2016 - [0] D -- C:\Program Files\Google =>.Google
O43 - CFD: 04/03/2016 - [] D -- C:\Program Files\IDT =>.IDT
O43 - CFD: 20/02/2016 - [] D -- C:\Program Files\Intel =>.Intel Corporation®
O43 - CFD: 16/08/2009 - [] D -- C:\Program Files\Internet Explorer =>.Microsoft Corporation
O43 - CFD: 24/02/2016 - [] D -- C:\Program Files\Microsoft Office =>.Microsoft Corporation
O43 - CFD: 29/10/2016 - [] D -- C:\Program Files\Mozilla Firefox =>.Mozilla Corporation®
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\MSBuild =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Reference Assemblies =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [0] HD -- C:\Program Files\Uninstall Information =>.Microsoft Corporation
O43 - CFD: 01/10/2016 - [] D -- C:\Program Files\VideoLAN =>.VideoLAN
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Windows Defender =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Windows Journal =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Windows Mail =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 20/02/2016 - [] D -- C:\Program Files\Windows NT =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Windows Photo Viewer =>.Microsoft Corporation®
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Windows Portable Devices =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Windows Sidebar =>.Microsoft Corporation
O43 - CFD: 22/02/2016 - [] D -- C:\Program Files\WinRAR =>.win.rar GmbH®
O43 - CFD: 03/11/2016 - [] D -- C:\Program Files (x86)\Adobe =>.Adobe Systems, Incorporated®
O43 - CFD: 15/11/2016 - [] D -- C:\Program Files (x86)\AVG =>.AVG Netherlands B.V.®
O43 - CFD: 28/10/2016 - [] D -- C:\Program Files (x86)\Cambridge =>.Cambridge
O43 - CFD: 13/11/2016 - [] D -- C:\Program Files (x86)\Common Files =>.Microsoft Corporation
O43 - CFD: 26/10/2016 - [] D -- C:\Program Files (x86)\Druide {6BB03C90304C005E4CCC61F615410A86} =>.Druide
O43 - CFD: 13/11/2016 - [] D -- C:\Program Files (x86)\epson =>.EPSON
O43 - CFD: 08/11/2016 - [] D -- C:\Program Files (x86)\FreeGamePick =>.FreeGamePick
O43 - CFD: 14/10/2016 - [] D -- C:\Program Files (x86)\Google =>.Google
O43 - CFD: 04/03/2016 - [] D -- C:\Program Files (x86)\Hewlett-Packard =>.Hewlett-Packard Company®
O43 - CFD: 13/11/2016 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information =>.InstallShield Software
O43 - CFD: 20/02/2016 - [] D -- C:\Program Files (x86)\Intel =>.Intel Corporation®
O43 - CFD: 14/11/2016 - [] D -- C:\Program Files (x86)\Internet Download Manager =>.Tonec Inc
O43 - CFD: 25/02/2016 - [] D -- C:\Program Files (x86)\Internet Explorer =>.Microsoft Corporation
O43 - CFD: 31/10/2016 - [] D -- C:\Program Files (x86)\Internet Mobile
O43 - CFD: 21/10/2016 - [] D -- C:\Program Files (x86)\Lingo
O43 - CFD: 24/02/2016 - [] D -- C:\Program Files (x86)\Microsoft Office =>.Microsoft Corporation®
O43 - CFD: 01/10/2016 - [] D -- C:\Program Files (x86)\Mozilla Firefox =>.Mozilla
O43 - CFD: 29/10/2016 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service =>.Mozilla Corporation®
O43 - CFD: 24/02/2016 - [] D -- C:\Program Files (x86)\MSBuild =>.Microsoft Corporation
O43 - CFD: 07/11/2016 - [] D -- C:\Program Files (x86)\MyPlayCity.com =>.MyPlayCity Inc®
O43 - CFD: 21/10/2016 - [] D -- C:\Program Files (x86)\NirSoft =>.NirSoft
O43 - CFD: 13/10/2016 - [] D -- C:\Program Files (x86)\PhotoScape =>.Mooii Tech®
O43 - CFD: 14/11/2016 - [] D -- C:\Program Files (x86)\Playrix Entertainment =>.Playrix Entertainment
O43 - CFD: 14/11/2016 - [] D -- C:\Program Files (x86)\PopCap Games =>.PopCap Games®
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Reference Assemblies =>.Microsoft Corporation
O43 - CFD: 01/10/2016 - [] D -- C:\Program Files (x86)\SearchesToYesbnd =>Adware.YesSearches
O43 - CFD: 01/10/2016 - [] D -- C:\Program Files (x86)\SFK =>PUP.Optional.MyWebSearch
O43 - CFD: 14/07/2009 - [0] HD -- C:\Program Files (x86)\Uninstall Information =>.Microsoft Corporation
O43 - CFD: 29/10/2016 - [] D -- C:\Program Files (x86)\USB Disk Security =>.Lanzhou Itanium Software Technology Co., Ltd.®
O43 - CFD: 22/02/2016 - [] D -- C:\Program Files (x86)\VMware =>.VMware, Inc.®
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Windows Defender =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Windows NT =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Windows Photo Viewer =>.Microsoft Corporation®
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Windows Portable Devices =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Windows Sidebar =>.Microsoft Corporation
O43 - CFD: 16/08/2009 - [] D -- C:\Program Files (x86)\Windows Virtual PC =>.Microsoft Corporation
O43 - CFD: 01/10/2016 - [] D -- C:\Program Files (x86)\WinSaber =>.Superfluous.WinSaber
O43 - CFD: 04/03/2016 - [] D -- C:\Program Files (x86)\Winsere =>Adware.YesSearches
O43 - CFD: 04/03/2016 - [] D -- C:\Program Files (x86)\WinTaske =>Adware.YesSearches
O43 - CFD: 26/10/2016 - [] HD -- C:\Program Files (x86)\Zero G Registry =>.Flexera
O43 - CFD: 20/02/2016 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories =>.Microsoft Corporation
O43 - CFD: 20/02/2016 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools
O43 - CFD: 26/10/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Antidote =>.Druide informatique
O43 - CFD: 31/10/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp 2015
O43 - CFD: 31/10/2016 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVS4YOU =>.AVS4YOU
O43 - CFD: 28/10/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cambridge =>.Cambridge
O43 - CFD: 13/11/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverNavigator
O43 - CFD: 13/11/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON =>.EPSON
O43 - CFD: 08/11/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FreeGamePick =>.FreeGamePick
O43 - CFD: 14/11/2016 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games =>.Microsoft Corporation
O43 - CFD: 04/03/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support =>.Hewlett-Packard
O43 - CFD: 11/11/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager =>.Tonec Inc
O43 - CFD: 31/10/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Mobile
O43 - CFD: 13/11/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ISIS Scanner Drivers
O43 - CFD: 14/07/2009 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance =>.Microsoft Corporation
O43 - CFD: 24/02/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office =>.Microsoft Corporation
O43 - CFD: 07/11/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyPlayCity.com =>.MyPlayCity.com
O43 - CFD: 13/10/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoScape =>.Mooii Tech Software
O43 - CFD: 14/11/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PopCap Games =>.PopCap Games
O43 - CFD: 29/10/2016 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC =>.Wacom Technology
O43 - CFD: 30/10/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Torrentex
O43 - CFD: 29/10/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\USB Disk Security
O43 - CFD: 22/02/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN =>.VideoLAN
O43 - CFD: 22/02/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VMware =>.VMware
O43 - CFD: 20/02/2016 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Virtual PC =>.Microsoft Corporation
O43 - CFD: 22/02/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR
O43 - CFD: 28/10/2016 - [] D -- C:\ProgramData\Adobe =>.Adobe
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Application Data =>.Microsoft Corporation
O43 - CFD: 15/11/2016 - [] D -- C:\ProgramData\AVAST Software =>.AVAST Software
O43 - CFD: 15/11/2016 - [] D -- C:\ProgramData\Avg =>.AVG Software
O43 - CFD: 14/08/2016 - [] D -- C:\ProgramData\AVS4YOU =>.AVS4YOU
O43 - CFD: 07/11/2016 - [] D -- C:\ProgramData\Big Fish =>.Big Fish
O43 - CFD: 20/02/2016 - [0] SHD -- C:\ProgramData\Bureau =>.Microsoft Corporation
O43 - CFD: 30/10/2016 - [] D -- C:\ProgramData\ChelfNotify =>.Superfluous.Tencent
O43 - CFD: 30/09/2016 - [] HD -- C:\ProgramData\Common Files =>.Microsoft Corporation
O43 - CFD: 01/10/2016 - [] D -- C:\ProgramData\CwinpC
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Desktop =>.Microsoft Corporation
O43 - CFD: 28/10/2016 - [] D -- C:\ProgramData\desktopfind =>HackTool.WinActivator
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Documents =>.Microsoft Corporation
O43 - CFD: 20/02/2016 - [0] SHD -- C:\ProgramData\Favoris =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Favorites =>.Microsoft Corporation
O43 - CFD: 30/10/2016 - [0] D -- C:\ProgramData\FFinder LTD =>.Superfluous.WebitarProduction
O43 - CFD: 21/02/2016 - [] D -- C:\ProgramData\Free Download Manager
O43 - CFD: 21/02/2016 - [] D -- C:\ProgramData\FreeDownloadManager.ORG =>.FreeDownloadManager.ORG
O43 - CFD: 04/03/2016 - [] D -- C:\ProgramData\Hewlett-Packard =>.Hewlett-Packard
O43 - CFD: 01/10/2016 - [0] D -- C:\ProgramData\IDM =>.IDM
O43 - CFD: 01/10/2016 - [] D -- C:\ProgramData\iwinpi
O43 - CFD: 28/10/2016 - [] D -- C:\ProgramData\Kaspersky Lab Setup Files =>.Kaspersky Lab
O43 - CFD: 01/10/2016 - [] D -- C:\ProgramData\kwinpk =>PUP.Optional.WdsManPro
O43 - CFD: 01/10/2016 - [0] D -- C:\ProgramData\Lefttoe =>Adware.Lefttoe
O43 - CFD: 01/10/2016 - [] D -- C:\ProgramData\lwinpl
O43 - CFD: 01/10/2016 - [] D -- C:\ProgramData\McAfee =>.McAfee
O43 - CFD: 20/02/2016 - [0] SHD -- C:\ProgramData\Menu Démarrer =>.Microsoft Corporation
O43 - CFD: 15/11/2016 - [] D -- C:\ProgramData\MFAData =>.AVG
O43 - CFD: 01/03/2016 - [] SD -- C:\ProgramData\Microsoft =>.Microsoft
O43 - CFD: 24/02/2016 - [] D -- C:\ProgramData\Microsoft Help =>.Microsoft Corporation
O43 - CFD: 20/02/2016 - [0] SHD -- C:\ProgramData\Modèles =>.Microsoft Corporation
O43 - CFD: 01/10/2016 - [] D -- C:\ProgramData\MwinpM
O43 - CFD: 30/09/2016 - [] D -- C:\ProgramData\Norton =>.Norton
O43 - CFD: 30/09/2016 - [] D -- C:\ProgramData\NortonInstaller =>.Symantec
O43 - CFD: 01/10/2016 - [] D -- C:\ProgramData\NwinpN
O43 - CFD: 30/09/2016 - [] D -- C:\ProgramData\Package Cache =>.Microsoft Corporation
O43 - CFD: 04/11/2016 - [] D -- C:\ProgramData\Playrix Entertainment =>.Playrix Entertainment
O43 - CFD: 14/11/2016 - [] D -- C:\ProgramData\PopCap Games =>.PopCap Games
O43 - CFD: 01/10/2016 - [] D -- C:\ProgramData\pWdMp =>PUP.Optional.WdsManPro
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Start Menu =>.Microsoft Corporation
O43 - CFD: 07/11/2016 - [0] AD -- C:\ProgramData\TEMP =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Templates =>.Microsoft Corporation
O43 - CFD: 04/03/2016 - [] D -- C:\ProgramData\Tencent =>.Superfluous.Tencent
O43 - CFD: 30/09/2016 - [] D -- C:\ProgramData\Toolrain
O43 - CFD: 08/03/2016 - [] D -- C:\ProgramData\TXQMPC =>.Superfluous.TXQMPC
O43 - CFD: 24/08/2016 - [] D -- C:\ProgramData\uckt
O43 - CFD: 10/08/2016 - [0] D -- C:\ProgramData\Uncheckit =>.Superfluous.Elex
O43 - CFD: 15/11/2016 - [] D -- C:\ProgramData\VMware =>.VMware
O43 - CFD: 01/10/2016 - [] D -- C:\ProgramData\ywinpy
O43 - CFD: 09/10/2016 - [] D -- C:\Program Files (x86)\Common Files\Adobe =>.Adobe
O43 - CFD: 30/09/2016 - [] D -- C:\Program Files (x86)\Common Files\AV =>.Avast
O43 - CFD: 30/09/2016 - [] D -- C:\Program Files (x86)\Common Files\AVSMedia =>.AVSMedia
O43 - CFD: 24/02/2016 - [] D -- C:\Program Files (x86)\Common Files\DESIGNER =>.Designer
O43 - CFD: 13/11/2016 - [] D -- C:\Program Files (x86)\Common Files\EMC
O43 - CFD: 26/10/2016 - [] D -- C:\Program Files (x86)\Common Files\microsoft shared =>.Microsoft Corporation
O43 - CFD: 20/02/2016 - [] D -- C:\Program Files (x86)\Common Files\postureAgent =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Common Files\Services =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Common Files\SpeechEngines =>.Microsoft Corporation
O43 - CFD: 24/02/2016 - [] D -- C:\Program Files (x86)\Common Files\System =>.Microsoft Corporation
O43 - CFD: 06/03/2016 - [] D -- C:\Program Files (x86)\Common Files\Tencent =>.Superfluous.Tencent
O43 - CFD: 22/02/2016 - [] D -- C:\Program Files (x86)\Common Files\ThinPrint =>.ThinPrint
O43 - CFD: 22/02/2016 - [] D -- C:\Program Files (x86)\Common Files\VMware =>.VMware
O43 - CFD: 28/10/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\Adobe =>.Adobe
O43 - CFD: 31/10/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\AVG =>.AVG Software
O43 - CFD: 27/09/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\AVS4YOU =>.AVS4YOU
O43 - CFD: 28/10/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\Bump Technologies, Inc
O43 - CFD: 28/10/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\Cambridge =>.Cambridge
O43 - CFD: 15/11/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\DMCache =>.DMCache
O43 - CFD: 26/10/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\Druide =>.Druide
O43 - CFD: 13/11/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\Easeware =>.Easeware
O43 - CFD: 28/10/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\face2faceSecondeditionPreintermediate
O43 - CFD: 13/10/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\FastStone =>.FastStone
O43 - CFD: 21/02/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\FreeDownloadManager.ORG =>.FreeDownloadManager.ORG
O43 - CFD: 04/03/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\Hewlett-Packard =>.Hewlett-Packard
O43 - CFD: 31/10/2016 - [0] D -- C:\Users\Mohammed\AppData\Roaming\hpqLog =>.Hewlett-Packard
O43 - CFD: 20/02/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\Identities =>.Microsoft Corporation
O43 - CFD: 11/11/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\IDM =>.IDM
O43 - CFD: 11/03/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\Macromedia =>.Macromedia
O43 - CFD: 14/07/2009 - [0] D -- C:\Users\Mohammed\AppData\Roaming\Media Center Programs =>.Microsoft Corporation
O43 - CFD: 22/02/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\Media-Assistant
O43 - CFD: 26/10/2016 - [] SD -- C:\Users\Mohammed\AppData\Roaming\Microsoft =>.Microsoft
O43 - CFD: 20/02/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\Mozilla =>.Mozilla Corporation
O43 - CFD: 16/10/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\PhotoScape =>.Mooii Tech Software
O43 - CFD: 28/10/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\setup1
O43 - CFD: 30/09/2016 - [0] D -- C:\Users\Mohammed\AppData\Roaming\Smadav =>.SmadAV
O43 - CFD: 07/04/2016 - [0] D -- C:\Users\Mohammed\AppData\Roaming\SpringFiles =>.Superfluous.SpringFiles
O43 - CFD: 23/04/2016 - [] RSHD -- C:\Users\Mohammed\AppData\Roaming\sys
O43 - CFD: 04/03/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\Tencent =>.Superfluous.Tencent
O43 - CFD: 15/11/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\Torrentex
O43 - CFD: 01/10/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\TSv =>.Superfluous.Elex
O43 - CFD: 01/10/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\TuneUp Software =>.TuneUp Software
O43 - CFD: 10/08/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\Uncheckit =>.Superfluous.Elex
O43 - CFD: 15/11/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\vlc =>.VideoLAN
O43 - CFD: 30/09/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\VMware =>.VMware
O43 - CFD: 22/02/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\WinRAR =>.WinRAR
O43 - CFD: 30/06/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\WinZiper =>.Superfluous.WinZipper
O43 - CFD: 29/10/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\Zbshareware Lab =>.Zbshareware Lab
O43 - CFD: 15/11/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\ZHP =>.Nicolas Coolman
O43 - CFD: 04/03/2016 - [0] D -- C:\Users\Mohammed\AppData\Local\3810282D-6C19-47B0-8283-5C6C29A7E108
O43 - CFD: 28/10/2016 - [] D -- C:\Users\Mohammed\AppData\Local\Adobe =>.Adobe
O43 - CFD: 13/08/2016 - [] D -- C:\Users\Mohammed\AppData\Local\adslTV =>.adslTV
O43 - CFD: 20/02/2016 - [0] SHD -- C:\Users\Mohammed\AppData\Local\Application Data =>.Microsoft Corporation
O43 - CFD: 15/11/2016 - [] D -- C:\Users\Mohammed\AppData\Local\Avg =>.AVG Software
O43 - CFD: 30/09/2016 - [] D -- C:\Users\Mohammed\AppData\Local\Avg2015
O43 - CFD: 15/11/2016 - [] D -- C:\Users\Mohammed\AppData\Local\AvgSetupLog =>.AVG
O43 - CFD: 07/11/2016 - [] D -- C:\Users\Mohammed\AppData\Local\Big Fish =>.Big Fish
O43 - CFD: 28/10/2016 - [] D -- C:\Users\Mohammed\AppData\Local\Bump Technologies, Inc
O43 - CFD: 25/02/2016 - [] D -- C:\Users\Mohammed\AppData\Local\CEF =>.CEF
O43 - CFD: 13/11/2016 - [] D -- C:\Users\Mohammed\AppData\Local\CrashDumps =>.Microsoft Corporation
O43 - CFD: 21/10/2016 - [] D -- C:\Users\Mohammed\AppData\Local\Diagnostics =>.Microsoft Corporation
O43 - CFD: 24/07/2016 - [0] D -- C:\Users\Mohammed\AppData\Local\ElevatedDiagnostics =>.Microsoft Corporation
O43 - CFD: 30/09/2016 - [] D -- C:\Users\Mohammed\AppData\Local\ESET =>.ESET
O43 - CFD: 04/03/2016 - [0] D -- C:\Users\Mohammed\AppData\Local\F727A298-4DB4-456A-AC54-A93EA5F8554D
O43 - CFD: 13/10/2016 - [] D -- C:\Users\Mohammed\AppData\Local\FastStone =>.FastStone
O43 - CFD: 08/05/2016 - [] D -- C:\Users\Mohammed\AppData\Local\Geckofx =>.Geckofx
O43 - CFD: 14/10/2016 - [] D -- C:\Users\Mohammed\AppData\Local\Google =>.Google
O43 - CFD: 05/03/2016 - [] D -- C:\Users\Mohammed\AppData\Local\Hewlett-Packard =>.Hewlett-Packard
O43 - CFD: 20/02/2016 - [0] SHD -- C:\Users\Mohammed\AppData\Local\Historique =>.Microsoft Corporation
O43 - CFD: 13/11/2016 - [] D -- C:\Users\Mohammed\AppData\Local\IIIQF =>.Scrabblo
O43 - CFD: 30/06/2016 - [] D -- C:\Users\Mohammed\AppData\Local\Lefttoe =>Adware.Lefttoe
O43 - CFD: 08/05/2016 - [] D -- C:\Users\Mohammed\AppData\Local\Macromedia =>.Macromedia
O43 - CFD: 30/09/2016 - [] D -- C:\Users\Mohammed\AppData\Local\MFAData =>.AVG
O43 - CFD: 25/04/2016 - [] D -- C:\Users\Mohammed\AppData\Local\Microsoft =>.Microsoft
O43 - CFD: 22/02/2016 - [0] D -- C:\Users\Mohammed\AppData\Local\Microsoft Help =>.Microsoft Corporation
O43 - CFD: 20/02/2016 - [] D -- C:\Users\Mohammed\AppData\Local\Mozilla =>.Mozilla Corporation
O43 - CFD: 15/08/2016 - [] D -- C:\Users\Mohammed\AppData\Local\Popcorn Time =>.Superfluous.PopcornTime
O43 - CFD: 30/09/2016 - [] D -- C:\Users\Mohammed\AppData\Local\Popcorn-Time =>.Superfluous.PopcornTime
O43 - CFD: 20/02/2016 - [] D -- C:\Users\Mohammed\AppData\Local\Programs =>.Microsoft Corporation
O43 - CFD: 08/05/2016 - [] D -- C:\Users\Mohammed\AppData\Local\Readon_Technology
O43 - CFD: 08/05/2016 - [] D -- C:\Users\Mohammed\AppData\Local\Smart_PC_Soft =>.Smart PC Soft
O43 - CFD: 14/08/2016 - [] D -- C:\Users\Mohammed\AppData\Local\Super Internet TV =>.Ahusoft
O43 - CFD: 15/11/2016 - [] D -- C:\Users\Mohammed\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 20/02/2016 - [0] SHD -- C:\Users\Mohammed\AppData\Local\Temporary Internet Files =>.Microsoft Corporation
O43 - CFD: 04/03/2016 - [] D -- C:\Users\Mohammed\AppData\Local\UCBrowser =>.UCWeb Inc
O43 - CFD: 18/08/2016 - [] D -- C:\Users\Mohammed\AppData\Local\VirtualStore =>.Microsoft Corporation
O43 - CFD: 30/09/2016 - [] D -- C:\Users\Mohammed\AppData\Local\VMware =>.VMware
O43 - CFD: 20/02/2016 - [0] D -- C:\Users\Mohammed\AppData\Local\Programs\Common =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] RD -- C:\Users\Mohammed\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories =>.Microsoft Corporation
O43 - CFD: 20/02/2016 - [] RD -- C:\Users\Mohammed\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools
O43 - CFD: 26/10/2016 - [0] D -- C:\Users\Mohammed\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Antidote =>.Druide informatique
O43 - CFD: 11/11/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager =>.Tonec Inc
O43 - CFD: 14/07/2009 - [] RD -- C:\Users\Mohammed\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance =>.Microsoft Corporation
O43 - CFD: 21/10/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NirSoft Wireless Network Watcher
O43 - CFD: 15/08/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Popcorn Time =>.Superfluous.PopcornTime
O43 - CFD: 20/02/2016 - [] RD -- C:\Users\Mohammed\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup =>.Microsoft Corporation
O43 - CFD: 22/02/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR
O43 - CFD: 08/03/2016 - [0] D -- C:\Users\Mohammed\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\腾讯软件
O43 - CFD: 14/07/2009 - [0] SHD -- C:\Users\Default\AppData\Local\Application Data =>.Microsoft Corporation
O43 - CFD: 20/02/2016 - [0] SHD -- C:\Users\Default\AppData\Local\Historique =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [0] SHD -- C:\Users\Default\AppData\Local\History =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] D -- C:\Users\Default\AppData\Local\Microsoft =>.Microsoft
O43 - CFD: 14/07/2009 - [0] D -- C:\Users\Default\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [0] SHD -- C:\Users\Default\AppData\Local\Temporary Internet Files =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [0] SHD -- C:\Users\Default User\AppData\Local\Application Data =>.Microsoft Corporation
O43 - CFD: 20/02/2016 - [0] SHD -- C:\Users\Default User\AppData\Local\Historique =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [0] SHD -- C:\Users\Default User\AppData\Local\History =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] D -- C:\Users\Default User\AppData\Local\Microsoft =>.Microsoft
O43 - CFD: 14/07/2009 - [0] D -- C:\Users\Default User\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [0] SHD -- C:\Users\Default User\AppData\Local\Temporary Internet Files =>.Microsoft Corporation
O43 - CFD: 15/11/2016 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\Avg =>.AVG Software
O43 - CFD: 15/11/2016 - [] -- C:\Windows\System32\Config\systemprofile\AppData\Local\AvgSetupLog =>.AVG
O43 - CFD: 28/10/2016 - [] -- C:\Windows\System32\Config\systemprofile\AppData\Local\CrashDumps =>.Microsoft Corporation
O43 - CFD: 30/09/2016 - [] -- C:\Windows\System32\Config\systemprofile\AppData\Local\Google =>.Google
O43 - CFD: 31/10/2016 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\MFAData =>.AVG
O43 - CFD: 14/07/2009 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\Microsoft =>.Microsoft
O43 - CFD: 12/10/2016 - [0] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 01/11/2016 - [] -- C:\Windows\System32\Config\systemprofile\AppData\Roaming\AVG =>.AVG Software
O43 - CFD: 30/06/2016 - [] SD -- C:\Windows\System32\Config\systemprofile\AppData\Roaming\Microsoft =>.Microsoft
O43 - CFD: 11/11/2016 - [] -- C:\Windows\System32\Config\systemprofile\AppData\Roaming\Solvusoft =>.Superfluous.Solvusoft
O43 - CFD: 04/03/2016 - [] -- C:\Windows\System32\Config\systemprofile\AppData\Roaming\Tencent =>.Superfluous.Tencent
O43 - CFD: 10/08/2016 - [] -- C:\Windows\System32\Config\systemprofile\AppData\Roaming\Uncheckit =>.Superfluous.Elex
O43 - CFD: 15/11/2016 - [0] D -- C:\Windows\System32\Config\systemprofile\AppData\Roaming\VMware =>.VMware
---\\ ShellIconOverlayIdentifiers (SIOI) (2) - 0s
O106 - SIOI: Enhanced Storage Icon Overlay Handler Class [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - DLL d’extension d’environnement de stockage.) -- C:\Windows\System32\EhStorShell.dll =>.Microsoft Corporation
O106 - SIOI: Sharing Overlay (Private) [SharingPrivate] - {08244EE6-92F0-47f2-9FC9-929BAA2E7235}. (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation
---\\ Liste des pilotes du système (71) - 7s
O58 - SDL:2011/05/13 18:57:58 A . (.Hewlett-Packard Company - HP Accelerometer.) -- C:\Windows\System32\drivers\Accelerometer.sys [43320] =>.Hewlett-Packard Company®
O58 - SDL:2009/07/14 01:52:21 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [491088] =>.Microsoft Windows®
O58 - SDL:2009/07/14 01:52:21 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [339536] =>.Microsoft Windows®
O58 - SDL:2009/07/14 01:52:21 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\drivers\adpu320.sys [182864] =>.Microsoft Windows®
O58 - SDL:2009/06/10 21:01:06 A . (.LSI Corp - SoftModem Device Driver.) -- C:\Windows\System32\drivers\agrsm64.sys [1146880] =>.LSI Corp
O58 - SDL:2009/07/14 01:52:21 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [15440] =>.Microsoft Windows®
O58 - SDL:2009/07/14 01:52:21 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [106576] =>.Microsoft Windows®
O58 - SDL:2009/07/14 01:52:20 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [194128] =>.Microsoft Windows®
O58 - SDL:2009/07/14 01:52:21 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [28752] =>.Microsoft Windows®
O58 - SDL:2009/07/14 01:52:21 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [87632] =>.Microsoft Windows®
O58 - SDL:2009/07/14 01:52:21 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [97856] =>.Microsoft Windows®
O58 - SDL:2009/06/10 20:34:23 A . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x.) -- C:\Windows\System32\drivers\b57nd60a.sys [270848] =>.Broadcom Corporation
O58 - SDL:2009/06/10 20:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [18432] =>.Brother Industries, Ltd.
O58 - SDL:2009/06/10 20:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [8704] =>.Brother Industries, Ltd.
O58 - SDL:2009/07/14 01:19:07 A . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [286720] =>.Brother Industries Ltd.
O58 - SDL:2009/06/10 20:41:10 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [47104] =>.Brother Industries Ltd.
O58 - SDL:2009/06/10 20:41:10 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [14976] =>.Brother Industries Ltd.
O58 - SDL:2009/06/10 20:41:10 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [14720] =>.Brother Industries Ltd.
O58 - SDL:2009/06/10 20:34:28 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [468480] =>.Broadcom Corporation
O58 - SDL:2009/07/14 01:52:31 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [17488] =>.Microsoft Windows®
O58 - SDL:2013/07/18 08:47:56 A . (.Intel Corporation - Intel(R) Gigabit Adapter NDIS 6.x driver.) -- C:\Windows\System32\drivers\e1k62x64.sys [497424] =>.Intel Corporation®
O58 - SDL:2009/07/14 01:47:48 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [530496] =>.Microsoft Windows®
O58 - SDL:2016/10/13 14:39:14 A . (.ESET - Epfw NDIS LightWeight Filter.) -- C:\Windows\System32\drivers\EpfwLWF.sys [59528] =>.ESET, spol. s r.o.®
O58 - SDL:2009/06/10 20:34:33 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3286016] =>.Broadcom Corporation
O58 - SDL:2007/08/09 04:10:54 A . (.Huawei Tech. Co., Ltd. - HUAWEI USB Smart Card Driver.) -- C:\Windows\System32\drivers\ewdcsc.sys [29696] =>.Huawei Tech. Co., Ltd.
O58 - SDL:2009/06/22 19:26:40 A . (.Huawei Technologies Co., Ltd. - USB Modem/Serial Device Driver.) -- C:\Windows\System32\drivers\ewusbdev.sys [113792] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2009/06/22 19:38:34 A . (.Huawei Technologies Co., Ltd. - USB Modem/Serial Device Driver.) -- C:\Windows\System32\drivers\ewusbmdm.sys [116992] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2009/06/22 20:01:16 A . (.Huawei Technologies Co., Ltd. - USB NDIS Miniport Driver.) -- C:\Windows\System32\drivers\ewusbnet.sys [132608] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2015/11/06 11:57:44 A . (.VMware, Inc. - VMware USB monitor.) -- C:\Windows\System32\drivers\hcmon.sys [57536] =>.VMware, Inc.®
O58 - SDL:2009/06/10 20:31:59 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [31232] =>.Hauppauge Computer Works, Inc.
O58 - SDL:2009/09/18 03:54:54 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\drivers\HECIx64.sys [56344] =>.Intel Corporation®
O58 - SDL:2011/05/13 18:58:16 A . (.Hewlett-Packard Company - HP Disk Filter - SATA/RAID.) -- C:\Windows\System32\drivers\hpdskflt.sys [30008] =>.Hewlett-Packard Company®
O58 - SDL:2009/07/14 01:47:48 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [77888] =>.Microsoft Windows®
O58 - SDL:2013/04/22 15:06:33 A . (.Intel Corporation - NDIS 6.1 Advanced Networking Services..) -- C:\Windows\System32\drivers\iANSW60e.sys [163400] =>.Intel Corporation®
O58 - SDL:2009/07/14 01:48:04 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [410688] =>.Microsoft Windows®
O58 - SDL:2016/09/21 16:43:48 A . (.Tonec Inc. - Internet Download Manager WFP Driver.) -- C:\Windows\System32\drivers\idmwfp.sys [222952] =>.Tonec Inc.®
O58 - SDL:2009/07/14 01:48:04 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [44112] =>.Microsoft Windows®
O58 - SDL:2013/08/12 12:50:00 A . (.Intel Corporation - Intel(R) Network Adapter Diagnostic Driver.) -- C:\Windows\System32\drivers\iqvw64e.sys [33616] =>.Intel Corporation®
O58 - SDL:2009/07/14 01:48:04 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [114752] =>.Microsoft Windows®
O58 - SDL:2009/07/14 01:48:04 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [106560] =>.Microsoft Windows®
O58 - SDL:2009/07/14 01:48:04 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [65600] =>.Microsoft Windows®
O58 - SDL:2009/07/14 01:48:04 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [115776] =>.Microsoft Windows®
O58 - SDL:2009/07/14 01:48:04 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [35392] =>.Microsoft Windows®
O58 - SDL:2009/07/14 01:48:04 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [284736] =>.Microsoft Windows®
O58 - SDL:2016/03/04 22:28:27 A . (.Intel Corporation - Intel® Wireless WiFi Link Driver.) -- C:\Windows\System32\drivers\NETwNs64.sys [8604672] =>.Intel Corporation
O58 - SDL:2016/03/04 22:22:10 A . (.Intel Corporation - Intel® Wireless WiFi Link Driver.) -- C:\Windows\System32\drivers\Netwsw00.sys [11499008] =>.Intel Corporation
O58 - SDL:2015/05/04 13:14:24 A . (.Intel Corporation - Intel® Wireless WiFi Link Driver.) -- C:\Windows\System32\drivers\NETwsw01.sys [11534096] =>.Intel Corporation-Wireless Connectivity Solutions®
O58 - SDL:2009/07/14 01:48:26 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [51264] =>.Microsoft Windows®
O58 - SDL:2009/07/14 01:48:27 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [149056] =>.Microsoft Windows®
O58 - SDL:2009/07/14 01:45:45 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [167488] =>.Microsoft Windows®
O58 - SDL:2009/07/14 01:45:46 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1524816] =>.Microsoft Windows®
O58 - SDL:2009/07/14 01:45:45 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [128592] =>.Microsoft Windows®
O58 - SDL:2006/10/03 01:07:00 A . (.RICOH Company, Ltd. - PC-SC Driver for RICOH SmartCard Reader.) -- C:\Windows\System32\drivers\rismcx64.sys [79488]
O58 - SDL:2009/06/10 20:37:19 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [23040] =>.Macrovision Corporation, Macrovision Europe Limited,
O58 - SDL:2009/07/14 01:45:45 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [43584] =>.Microsoft Windows®
O58 - SDL:2009/07/14 01:45:46 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [80464] =>.Microsoft Windows®
O58 - SDL:2009/07/14 01:45:55 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [24656] =>.Microsoft Windows®
O58 - SDL:2016/03/04 22:15:36 A . (.IDT, Inc. - IDT PC Audio.) -- C:\Windows\System32\drivers\stwrt64.sys [515584] =>.IDT, Inc.
O58 - SDL:2016/03/04 23:59:55 A . (.电脑管家 - 电脑管家-驱动模块.) -- C:\Windows\System32\drivers\TFsFltX64.sys [87800] =>.Superfluous.Tencent
O58 - SDL:2016/03/04 23:59:55 A . (.电脑管家 - 电脑管家-TSSK Driver.) -- C:\Windows\System32\drivers\TSSKX64.sys [45304] =>.Superfluous.Tencent
O58 - SDL:2009/07/14 01:45:55 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [17488] =>.Microsoft Windows®
O58 - SDL:2015/11/05 19:25:42 A . (.VMware, Inc. - VMware PCI VMCI Bus Device.) -- C:\Windows\System32\drivers\vmci.sys [90816] =>.VMware, Inc.®
O58 - SDL:2015/11/25 17:51:56 A . (.VMware, Inc. - VMware virtual network driver (64-bit).) -- C:\Windows\System32\drivers\vmnet.sys [27328] =>.VMware, Inc.®
O58 - SDL:2015/11/25 17:51:56 A . (.VMware, Inc. - VMware virtual network adapter driver (64-b.) -- C:\Windows\System32\drivers\vmnetadapter.sys [28864] =>.VMware, Inc.®
O58 - SDL:2015/11/25 17:51:56 A . (.VMware, Inc. - VMware bridge driver (64-bit).) -- C:\Windows\System32\drivers\vmnetbridge.sys [48832] =>.VMware, Inc.®
O58 - SDL:2015/11/25 17:52:52 A . (.VMware, Inc. - VMware network application interface driver.) -- C:\Windows\System32\drivers\vmnetuserif.sys [26816] =>.VMware, Inc.®
O58 - SDL:2015/11/25 18:10:16 A . (.VMware, Inc. - VMware parallel port driver.) -- C:\Windows\System32\drivers\VMparport.sys [31936] =>.VMware, Inc.®
O58 - SDL:2015/11/06 11:57:32 A . (.VMware, Inc. - VMware USB driver.) -- C:\Windows\System32\drivers\vmusb.sys [50256] =>.VMware, Inc.®
O58 - SDL:2015/11/25 18:10:28 A . (.VMware, Inc. - VMware kernel driver.) -- C:\Windows\System32\drivers\vmx86.sys [66752] =>.VMware, Inc.®
O58 - SDL:2009/07/14 01:45:55 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [161872] =>.Microsoft Windows®
O58 - SDL:2015/11/05 19:25:42 A . (.VMware, Inc. - VMware vSockets Service.) -- C:\Windows\System32\drivers\vsock.sys [75512] =>.VMware, Inc.®
---\\ Derniers fichiers modifiés ou crées (Utilisateur) (1) - 29s
O61 - LFC: 2016/11/13 21:22:09 A . (..) -- C:\Users\Mohammed\AppData\Local\Adobe\Acrobat\DC\UserCache.bin [74076]
---\\ Associations Shell Spawning (11) - 0s
O67 - Shell Spawning: <.bat>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Ob.) -- C:\Windows\System32\eventvwr.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.exe>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O67 - Shell Spawning: <.js>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.reg>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.scr>[HKLM\..\open\Command] (...) -- "%1" /S
O67 - Shell Spawning: <.html>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
---\\ Menu de démarrage Internet (8) - 0s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- c:\program files (x86)\internet explorer\iexplore.exe =>.Microsoft Corporation®
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d’initialisation d’Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d’initialisation d’Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d’initialisation d’Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
---\\ Recherche d'infection sur les navigateurs (9) - 18s
O69 - SBI: prefs.js [Mohammed - 5hbh86t1.default] user_pref("browser.newtab.url", "http://www.mysites123.com/newtab/?type=nt&ts=1457131664&z=98755c26784b98cccd6a592gaz6w6m7g4c7g1q7[...] =>PUP.Optional.Mysites123
O69 - SBI: prefs.js [Mohammed - 5hbh86t1.default] user_pref("extensions.enabledAddons", "deskCutv2%40gmail.com:0.1.13,%7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:44.0.2"); =>PUP.Optional.DeskCut
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com/ =>.Microsoft Corporation
O69 - SBI: SearchScopes [HKCU] {33BB0A4E-99AF-4226-BDF6-49120163DE86} - (attirerpage) - http://www.attirerpage.com/
O69 - SBI: SearchScopes [HKCU] {95B7759C-8C7F-4BF1-B163-73684A933233} - (AVG Secure Search) - http://mysearch.avg.com/
O69 - SBI: SearchScopes [HKCU] {9AD09901-06DD-4DDD-A62D-6D2243B771AB} [DefaultScope] - (MyPlayCity) - http://start.myplaycity.com/
O69 - SBI: SearchScopes [HKCU] {AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} - (Norton Safe Search) - http://nortonsafe.search.ask.com/
O69 - SBI: SearchScopes [HKLM] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (@ieframe.dll,-12512) - http://www.bing.com/ =>.Microsoft Corporation
O69 - SBI: SearchScopes [HKLM] {33BB0A4E-99AF-4226-BDF6-49120163DE86} [DefaultScope] - (attirerpage) - http://www.attirerpage.com/
---\\ Enumère les services démarrés par Svchost (33) - 0s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [72192] =>.Microsoft Corporation
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [80384] =>.Microsoft Corporation
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [80384] =>.Microsoft Corporation
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\system32\srvsvc.dll [235520] =>.Microsoft Corporation
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [776192] =>.Microsoft Corporation
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [845824] =>.Microsoft Corporation
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll [676864] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [99328] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll [343552] =>.Microsoft Corporation
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [97792] =>.Microsoft Corporation
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\Sens.dll [64512] =>.Microsoft Corporation
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\Windows\System32\ipnathlp.dll [359424] =>.Microsoft Corporation
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [316416] =>.Microsoft Corporation
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du se.) -- C:\Windows\System32\termsrv.dll [706560] =>.Microsoft Corporation
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\system32\wuaueng.dll [2418176] =>.Microsoft Corporation
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [848384] =>.Microsoft Corporation
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [369664] =>.Microsoft Corporation
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll [565760] =>.Microsoft Corporation
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\Windows\system32\seclogon.dll [30720] =>.Microsoft Corporation
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [70144] =>.Microsoft Corporation
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\system32\iscsiexe.dll [156672] =>.Microsoft Corporation
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédia.) -- C:\Windows\system32\mmcss.dll [67584] =>.Microsoft Corporation
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\system32\wbem\WMIsvc.dll [242688] =>.Microsoft Corporation
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [104960] =>.Microsoft Corporation
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [136192] =>.Microsoft Corporation
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [111104] =>.Microsoft Corporation
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\system32\schedsvc.dll [1104384] =>.Microsoft Corporation
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\system32\kmsvc.dll [90624] =>.Microsoft Corporation
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [84480] =>.Microsoft Corporation
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\system32\profsvc.dll [208384] =>.Microsoft Corporation
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\system32\themeservice.dll [44544] =>.Microsoft Corporation
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [100864] =>.Microsoft Corporation
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll [193536] =>.Microsoft Corporation
---\\ Liste des exceptions du parefeu Windows (5) - 1s
O87 - FAEL: "{FF3E7139-6EF0-43AA-AA13-679DD8CB83CF}" [In-None-P6-TRUE] .(...) -- C:\Program Files\DriversCloud.com\MCDetection.exe (.not file.)
O87 - FAEL: "{722DDA99-EE8B-4D29-B5E1-75B042B0A2C8}" [In-None-P17-TRUE] .(...) -- C:\Program Files\DriversCloud.com\MCDetection.exe (.not file.)
O87 - FAEL: "{F8816F1A-9256-48B4-8E61-65D751B9CC5A}" [In-None-P6-TRUE] .(.Copyright © 2014 - Media-Assistant.) -- C:\Users\Mohammed\AppData\Roaming\Media-Assistant\Media-Assistant.exe
O87 - FAEL: "{BB73F806-2544-484B-ACEC-276474DB9B50}" [In-None-P6-TRUE] .(...) -- C:\Torrentex\Torrentex.exe
O87 - FAEL: "{EC70A9F6-1F09-4AB4-8533-0E02C76A0875}" [In-None-P17-TRUE] .(...) -- C:\Torrentex\Torrentex.exe
---\\ Liste des émulateurs de CD/DVD (MBR Hook) (10) - 6s
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\amt_mysites123_RASAPI32 =>PUP.Optional.Mysites123
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\amt_mysites123_RASMANCS =>PUP.Optional.Mysites123
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\AskInstallChecker-1_RASAPI32 =>Toolbar.Ask
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\AskInstallChecker-1_RASMANCS =>Toolbar.Ask
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ihpmServer_RASAPI32 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ihpmServer_RASMANCS =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\LefttoeUpdate_RASAPI32 =>Adware.Lefttoe
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\LefttoeUpdate_RASMANCS =>Adware.Lefttoe
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Lefttoe_RASAPI32 =>Adware.Lefttoe
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Lefttoe_RASMANCS =>Adware.Lefttoe
---\\ Scan Additionnel (57) - 0s
C:\Windows\System32\Tasks\LefttoeUpdateTaskMachineCore =>Adware.Lefttoe
C:\Windows\System32\Tasks\LefttoeUpdateTaskMachineUA =>Adware.Lefttoe
C:\Users\Mohammed\AppData\Roaming\Mozilla\Firefox\Profiles\5hbh86t1.default\searchplugins\mysites123.xml =>PUP.Optional.Mysites123
C:\Users\Mohammed\AppData\Roaming\Mozilla\Firefox\Profiles\5hbh86t1.default\searchplugins\nuesearch.xml =>Hijacker.Browser
C:\Users\Mohammed\AppData\Roaming\Mozilla\Firefox\Profiles\5hbh86t1.default\searchplugins\piesearch.xml =>PUP.Optional.PieSearch
C:\Program Files (x86)\Common Files\Tencent\QQPhoneManager\2.0.201.3192\npQQPhoneManagerExt.dll =>.Superfluous.Tencent
HKLM\SOFTWARE\Wow6432Node\ihpmserver =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\Lefttoe =>Adware.Lefttoe
HKLM\SOFTWARE\Wow6432Node\mysites123Software =>PUP.Optional.Mysites123
HKLM\SOFTWARE\Wow6432Node\RayDld =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\SrpnFiles =>.Superfluous.SpringFiles
HKLM\SOFTWARE\Wow6432Node\TData =>.Superfluous.TDataCom
HKLM\SOFTWARE\Wow6432Node\Tencent =>.Superfluous.Tencent
HKLM\SOFTWARE\Wow6432Node\TSv =>.Superfluous.Elex
HKLM\SOFTWARE\Wow6432Node\WinSaberSvc =>.Superfluous.WinSaber
HKLM\SOFTWARE\Wow6432Node\yessearchesSoftware =>Adware.YesSearches
HKCU\SOFTWARE\IM =>Adware.InstallCore
HKCU\SOFTWARE\Lefttoe =>Adware.Lefttoe
HKCU\SOFTWARE\SrpnFiles =>.Superfluous.SpringFiles
HKCU\SOFTWARE\Tencent =>.Superfluous.Tencent
C:\Program Files (x86)\SearchesToYesbnd =>Adware.YesSearches
C:\Program Files (x86)\SFK =>PUP.Optional.MyWebSearch
C:\Program Files (x86)\WinSaber =>.Superfluous.WinSaber
C:\Program Files (x86)\Winsere =>Adware.YesSearches
C:\Program Files (x86)\WinTaske =>Adware.YesSearches
C:\ProgramData\ChelfNotify =>.Superfluous.Tencent
C:\ProgramData\desktopfind =>HackTool.WinActivator
C:\ProgramData\FFinder LTD =>.Superfluous.WebitarProduction
C:\ProgramData\kwinpk =>PUP.Optional.WdsManPro
C:\ProgramData\Lefttoe =>Adware.Lefttoe
C:\ProgramData\pWdMp =>PUP.Optional.WdsManPro
C:\ProgramData\Tencent =>.Superfluous.Tencent
C:\ProgramData\TXQMPC =>.Superfluous.TXQMPC
C:\ProgramData\Uncheckit =>.Superfluous.Elex
C:\Program Files (x86)\Common Files\Tencent =>.Superfluous.Tencent
C:\Users\Mohammed\AppData\Roaming\SpringFiles =>.Superfluous.SpringFiles
C:\Users\Mohammed\AppData\Roaming\Tencent =>.Superfluous.Tencent
C:\Users\Mohammed\AppData\Roaming\TSv =>.Superfluous.Elex
C:\Users\Mohammed\AppData\Roaming\Uncheckit =>.Superfluous.Elex
C:\Users\Mohammed\AppData\Roaming\WinZiper =>.Superfluous.WinZipper
C:\Users\Mohammed\AppData\Local\Lefttoe =>Adware.Lefttoe
C:\Users\Mohammed\AppData\Local\Popcorn Time =>.Superfluous.PopcornTime
C:\Users\Mohammed\AppData\Local\Popcorn-Time =>.Superfluous.PopcornTime
C:\Users\Mohammed\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Popcorn Time =>.Superfluous.PopcornTime
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\amt_mysites123_RASAPI32 =>PUP.Optional.Mysites123
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\amt_mysites123_RASMANCS =>PUP.Optional.Mysites123
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\AskInstallChecker-1_RASAPI32 =>Toolbar.Ask
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\AskInstallChecker-1_RASMANCS =>Toolbar.Ask
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ihpmServer_RASAPI32 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ihpmServer_RASMANCS =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\LefttoeUpdate_RASAPI32 =>Adware.Lefttoe
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\LefttoeUpdate_RASMANCS =>Adware.Lefttoe
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Lefttoe_RASAPI32 =>Adware.Lefttoe
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Lefttoe_RASMANCS =>Adware.Lefttoe
C:\Users\Mohammed\AppData\Roaming\47889.exe =>Heuristic.Suspect
C:\Users\Mohammed\AppData\Roaming\641401.exe =>Heuristic.Suspect
C:\Users\Mohammed\AppData\Roaming\8251.exe =>Heuristic.Suspect
---\\ Récapitulatif des éléments trouvés sur votre station (23) - 0s
https://www.anti-malware.top/2016/09/04/adware-lefttoe/ =>Adware.Lefttoe
https://www.nicolascoolman.com/fr/pup-optional-mysites123 =>PUP.Optional.Mysites123
https://www.nicolascoolman.com/fr/hijacker-browser/ =>Hijacker.Browser
https://www.nicolascoolman.com/fr/repaquetage-et_infections/ =>PUP.Optional.PieSearch
https://www.nicolascoolman.com/fr/adware-tencentaddressbar/ =>.Superfluous.Tencent
https://www.anti-malware.top/2016/04/30/pup-optional-crossrider/ =>PUP.Optional.CrossRider
https://www.anti-malware.top/2016/04/26/superfluous-springfiles/ =>.Superfluous.SpringFiles
https://www.nicolascoolman.com/fr/logiciels-superflus =>.Superfluous.TDataCom
https://www.anti-malware.top/2016/05/18/superfluous-elex/ =>.Superfluous.Elex
https://www.nicolascoolman.com/fr/logiciels-superflus =>.Superfluous.WinSaber
https://www.anti-malware.top/2016/05/12/adware-yessearches/ =>Adware.YesSearches
https://www.anti-malware.top/2016/04/22/adware-installcore/ =>Adware.InstallCore
https://www.nicolascoolman.com/fr/adware-mywebsearch/ =>PUP.Optional.MyWebSearch
https://www.nicolascoolman.com/fr/hijacker-windows/ =>HackTool.WinActivator
https://www.nicolascoolman.com/fr/logiciels-superflus =>.Superfluous.WebitarProduction
https://www.anti-malware.top/2016/05/20/pup-optional-wdsmanpro/ =>PUP.Optional.WdsManPro
https://www.nicolascoolman.com/fr/logiciels-superflus =>.Superfluous.TXQMPC
https://www.nicolascoolman.com/fr/logiciels-superflus =>.Superfluous.WinZipper
https://www.anti-malware.top/2016/09/28/superfluous-popcorntime/ =>.Superfluous.PopcornTime
https://www.nicolascoolman.com/fr/logiciels-superflus =>.Superfluous.Solvusoft
https://www.nicolascoolman.com/fr/repaquetage-et_infections/ =>PUP.Optional.DeskCut
https://www.anti-malware.top/2016/09/22/toolbar-ask/ =>Toolbar.Ask
https://www.anti-malware.top/2016/04/22/heuristic-suspect/ =>Heuristic.Suspect
~ End of the scan, 16456 items in 00h02mn37s (1058)
~ Démarré par Mohammed (Administrator) (2016/11/15 22:43:42)
~ Web: https://www.nicolascoolman.com
~ Blog: https://www.anti-malware.top
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\Mohammed\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\Mohammed\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Démarrage du système: Normal (Normal boot)
Windows 7 Professional, 64-bit (Build 7600)
---\\ Navigateurs Internet (2) - 0s
~ MFIE: Mozilla Firefox 49.0.2 (x64 fr)
~ MSIE: Internet Explorer v8.0.7600.16385
---\\ Informations sur les produits Windows (4) - 3s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK
Windows Activation Technologies : KO
---\\ Surveillance de Logiciels (2) - 0s
Adobe Flash Player 23 NPAPI =>.Software.Surveillance
Adobe Acrobat Reader DC - Français =>.Software.Surveillance
---\\ Informations sur le système (6) - 0s
~ Operating System: Intel64 Family 6 Model 37 Stepping 5, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 3980.676 MB (58% free)
System Restore: Activé (Enable)
System drive C: has 5 GB () free of 108 GB =>Alerte espace disque inférieur à 20 Go
---\\ Mode de connexion au système (3) - 0s
~ Computer Name: MOHAMMED-PC
~ User Name: Mohammed
~ Logged in as Administrator
---\\ Enumération des unités disques (2) - 0s
~ Drive C: has 5 GB free of 108 GB (System)
~ Drive D: has 50 GB free of 129 GB
---\\ Etat du Centre de Sécurité Windows (10) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
---\\ Recherche particulière de fichiers génériques (26) - 1s
[MD5.F170B4A061C9E026437B193B4D571799] - 16/08/2009 - (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\Explorer.exe [2868224] =>.Microsoft Corporation
[MD5.DD81D91FF3B0763C392422865C9AC12E] - 14/07/2009 - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\Windows\System32\rundll32.exe [45568] =>.Microsoft Corporation
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - 14/07/2009 - (.Microsoft Corporation - Application de démarrage de Windows.) -- C:\Windows\System32\Wininit.exe [129024] =>.Microsoft Corporation
[MD5.B1037F0131C9A010D611F6914E03CD92] - 14/07/2009 - (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\System32\wininet.dll [1193472] =>.Microsoft Corporation
[MD5.132328DF455B0028F13BF0ABEE51A63A] - 14/07/2009 - (.Microsoft Corporation - Application d’ouverture de session Windows.) -- C:\Windows\System32\Winlogon.exe [389120] =>.Microsoft Corporation
[MD5.75341574F21E766748732BDF530C74BD] - 14/07/2009 - (.Microsoft Corporation - Bibliothèque de licences.) -- C:\Windows\System32\sppcomapi.dll [231936] =>.Microsoft Corporation
[MD5.05A2D26ACF0939A4E97160315F1FA12E] - 14/07/2009 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\Windows\System32\dnsapi.dll [356352] =>.Microsoft Corporation
[MD5.6D5A49D6479EB753C7879F73A4C35E0F] - 14/07/2009 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\Windows\Syswow64\dnsapi.dll [269824] =>.Microsoft Corporation
[MD5.F2521C3173E6027B3FBD5E44272BDF6C] - 14/07/2009 - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) -- C:\Windows\System32\fr-FR\user32.dll.mui [19968] =>.Microsoft Corporation
[MD5.B9384E03479D2506BC924C16A3DB87BC] - 13/07/2009 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\Windows\System32\drivers\AFD.sys [500224] =>.Microsoft Corporation
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - 14/07/2009 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\drivers\atapi.sys [24128] =>.Microsoft Windows®
[MD5.B8BD2BB284668C84865658C77574381A] - 13/07/2009 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\drivers\Cdfs.sys [92160] =>.Microsoft Corporation
[MD5.83D2D75E1EFB81B3450C18131443F7DB] - 13/07/2009 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\drivers\Cdrom.sys [147456] =>.Microsoft Corporation
[MD5.3F1DC527070ACB87E40AFE46EF6DA749] - 13/07/2009 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\drivers\DfsC.sys [102400] =>.Microsoft Corporation
[MD5.0A49913402747A0B67DE940FB42CBDBB] - 14/07/2009 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\drivers\HDAudBus.sys [122368] =>.Microsoft Corporation
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - 13/07/2009 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\Windows\System32\drivers\i8042prt.sys [105472] =>.Microsoft Corporation
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - 14/07/2009 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\drivers\IpNat.sys [116224] =>.Microsoft Corporation
[MD5.CFDCD8CA87C2A657DEBC150AC35B5E08] - 13/07/2009 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\Windows\System32\drivers\MRxSmb.sys [157184] =>.Microsoft Corporation
[MD5.9162B273A44AB9DCE5B44362731D062A] - 13/07/2009 - (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\drivers\netBT.sys [259072] =>.Microsoft Corporation
[MD5.356698A13C4630D5B31C37378D469196] - 14/07/2009 - (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\Windows\System32\drivers\ntfs.sys [1659984] =>.Microsoft Windows®
[MD5.0086431C29C35BE1DBC43F52CC273887] - 14/07/2009 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\Windows\System32\drivers\Parport.sys [97280] =>.Microsoft Corporation
[MD5.87A6E852A22991580D6D39ADC4790463] - 14/07/2009 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\drivers\Rasl2tp.sys [130048] =>.Microsoft Corporation
[MD5.9706B84DBABFC4B4CA46C5A82B14DFA3] - 14/07/2009 - (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\Windows\System32\drivers\rdpdr.sys [165376] =>.Microsoft Corporation
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - 14/07/2009 - (.Microsoft Corporation - SMB Transport driver.) -- C:\Windows\System32\drivers\smb.sys [93184] =>.Microsoft Corporation
[MD5.079125C4B17B01FCAEEBCE0BCB290C0F] - 13/07/2009 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\drivers\tdx.sys [99840] =>.Microsoft Corporation
[MD5.58F82EED8CA24B461441F9C3E4F0BF5C] - 14/07/2009 - (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\Windows\System32\drivers\volsnap.sys [294992] =>.Microsoft Windows®
---\\ Liste des services NT non Microsoft et non désactivés (15) - 2s
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated®
O23 - Service: Andrea ST Filters Service (AESTFilters) . (.Andrea Electronics Corporation - Andrea filters APO access service (64-bit).) - C:\Program Files\IDT\WDM\AESTSr64.exe =>.Andrea Electronics Corporation
O23 - Service: HP Service (hpsrv) . (.Hewlett-Packard Company - HpService.) - C:\Windows\system32\Hpservice.exe =>.Hewlett-Packard Company
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) . (.HP Inc. - HP Support Solutions Framework Service.) - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe =>.HP Inc.®
O23 - Service: Intel(R) PROSet Monitoring Service (Intel(R) PROSet Monitoring Service) . (.Intel Corporation - Intel® PROSet Monitoring Service.) - C:\Windows\system32\IProsetMonitor.exe =>.Intel Corporation
O23 - Service: Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe =>.Intel Corporation®
O23 - Service: SRepairDrv (SRepairDrv) . (...) - C:\Windows\GJFix\SRepairDrv (.not file.)
O23 - Service: @C:\Windows\system32\stlang64.dll (STacSV) . (.IDT, Inc. - IDT PC Audio.) - C:\Program Files\IDT\WDM\stacsv64.exe =>.IDT, Inc.
O23 - Service: AVG PC TuneUp Service (TuneUp.UtilitiesSvc) . (.AVG Technologies - AVG PC TuneUp Service.) - C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe =>.AVG Netherlands B.V.®
O23 - Service: Intel(R) Management & Security Application User Notificatio (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe =>.Intel Corporation®
O23 - Service: VMware Authorization Service (VMAuthdService) . (.VMware, Inc. - VMware Authorization Service.) - C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe =>.VMware, Inc.®
O23 - Service: VMware DHCP Service (VMnetDHCP) . (.VMware, Inc. - VMware VMnet DHCP service.) - C:\Windows\SysWOW64\vmnetdhcp.exe =>.VMware, Inc.®
O23 - Service: VMware USB Arbitration Service (VMUSBArbService) . (.VMware, Inc. - VMware USB Arbitration Service.) - C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe =>.VMware, Inc.®
O23 - Service: VMware NAT Service (VMware NAT Service) . (.VMware, Inc. - VMware NAT Service.) - C:\Windows\SysWOW64\vmnat.exe =>.VMware, Inc.®
O23 - Service: VMware Workstation Server (VMwareHostd) . (...) - C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe =>.VMware, Inc.®
---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (16) - 13s
SR - Auto [21/10/2016] [ 82128] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated®
SR - Auto [04/03/2016] [ 89600] Andrea ST Filters Service (AESTFilters) . (.Andrea Electronics Corporation.) - C:\Program Files\IDT\WDM\AESTSr64.exe =>.Andrea Electronics Corporation
SS - Demand [28/04/2015] [ 1102472] HP Software Framework Service (hpqwmiex) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe =>.Hewlett-Packard Company®
SR - Auto [13/05/2011] [ 30520] HP Service (hpsrv) . (.Hewlett-Packard Company.) - C:\Windows\system32\Hpservice.exe =>.Hewlett-Packard Company®
SR - Auto [15/08/2016] [ 29728] HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) . (.HP Inc..) - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe =>.HP Inc.®
SR - Auto [30/07/2013] [ 204552] Intel(R) PROSet Monitoring Service (Intel(R) PROSet Monitoring Service) . (.Intel Corporation.) - C:\Windows\system32\IProsetMonitor.exe =>.Intel Corporation®
SR - Auto [15/04/2010] [ 325656] Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe =>.Intel Corporation®
SS - Demand [20/10/2016] [ 197576] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe =>.Mozilla Corporation®
SR - Auto [04/03/2016] [ 271360] @C:\Windows\system32\stlang64.dll (STacSV) . (.IDT, Inc..) - C:\Program Files\IDT\WDM\stacsv64.exe =>.IDT, Inc.
SR - Auto [15/05/2015] [ 2967864] AVG PC TuneUp Service (TuneUp.UtilitiesSvc) . (.AVG Technologies.) - C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe =>.AVG Netherlands B.V.®
SR - Auto [15/04/2010] [ 2533400] Intel(R) Management & Security Application User Notificatio (UNS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe =>.Intel Corporation®
SR - Auto [25/11/2015] [ 89792] VMware Authorization Service (VMAuthdService) . (.VMware, Inc..) - C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe =>.VMware, Inc.®
SR - Auto [25/11/2015] [ 358080] VMware DHCP Service (VMnetDHCP) . (.VMware, Inc..) - C:\Windows\SysWOW64\vmnetdhcp.exe =>.VMware, Inc.®
SR - Auto [06/11/2015] [ 906944] VMware USB Arbitration Service (VMUSBArbService) . (.VMware, Inc..) - C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe =>.VMware, Inc.®
SR - Auto [25/11/2015] [ 392896] VMware NAT Service (VMware NAT Service) . (.VMware, Inc..) - C:\Windows\SysWOW64\vmnat.exe =>.VMware, Inc.®
SR - Auto [25/11/2015] [12462784] VMware Workstation Server (VMwareHostd) . (...) - C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe =>.VMware, Inc.®
---\\ Tâches planifiées en automatique (31) - 6s
[MD5.220ADB2D8475CF40556F61688D3A3EA3] [APT] [Adobe Acrobat Update Task] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1156824] (.Activate.) =>.Adobe Systems, Incorporated®
[MD5.00000000000000000000000000000000] [APT] [Browser Updater Task(Core)] (...) -- C:\Program Files (x86)\TXQQBrowser\Update\DA272ABBB670D4844BDA69B30EBA7044\Update\BrowserUpdate.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty
[MD5.ACC30D86DBDCD6ABED7F9AFF816F53A6] [APT] [DriverNavigator Scheduled Scan] (.Easeware.) -- C:\Program Files\Easeware\DriverNavigator\DriverNavigator.exe [1732464] (.Activate.) =>.Easeware Technology Limited®
[MD5.3DA2B70325A5947E981387DB9A9BD843] [APT] [HPCeeScheduleForMohammed] (.Hewlett-Packard.) -- C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [96568] (.Activate.) =>.Hewlett-Packard Company®
[MD5.00000000000000000000000000000000] [APT] [LefttoeUpdateTaskMachineCore] (...) -- C:\Program Files (x86)\Lefttoe\Update\LefttoeUpdate.exe (.not file.) [0] (.Activate.) =>Adware.Lefttoe
[MD5.00000000000000000000000000000000] [APT] [LefttoeUpdateTaskMachineUA] (...) -- C:\Program Files (x86)\Lefttoe\Update\LefttoeUpdate.exe (.not file.) [0] (.Activate.) =>Adware.Lefttoe
[MD5.00000000000000000000000000000000] [APT] [ToolrainUpdateTaskMachineCore] (...) -- C:\Program Files (x86)\Toolrain\Update\ToolrainUpdate.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty
[MD5.00000000000000000000000000000000] [APT] [ToolrainUpdateTaskMachineUA] (...) -- C:\Program Files (x86)\Toolrain\Update\ToolrainUpdate.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty
[MD5.427BBFB82EBBBB57BA47F0C6DDA6E481] [APT] [TuneUpUtilities_Task_BkGndMaintenance2013] (.AVG Technologies.) -- C:\Program Files (x86)\AVG\AVG PC TuneUp\OneClick.exe [552760] (.Activate.) =>.AVG Netherlands B.V.®
[MD5.00000000000000000000000000000000] [APT] [{33852289-E02F-461F-AB9C-663F7038C9D9}] (...) -- C:\Users\Mohammed\Downloads\aroundtheworldin80days(1).exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty
[MD5.E40C1867D16DD880E7A6C8156D06D27E] [APT] [{37448C43-6829-4D73-840D-776677B620F6}] (.InstallShield Software Corporation.) -- C:\Windows\IsUn040c.exe [308224] (.Activate.) =>.InstallShield Software Corporation
[MD5.00000000000000000000000000000000] [APT] [{9D9C4B4D-B2BC-444F-96D0-B363ECE6F074}] (...) -- C:\Users\Mohammed\Downloads\Programs\kav17.0.0.611fr-fr_full.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty
[MD5.00000000000000000000000000000000] [APT] [{EB8ADF83-2A2F-483D-8776-03626529DD3D}] (...) -- C:\Users\Mohammed\Downloads\Programs\kis17.0.0.611fr-fr_full.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty
[MD5.00000000000000000000000000000000] [APT] [AVAST Software\Avast settings backup] (...) -- C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty
[MD5.4FF880AFFCAC2EC8B26AE13BC1EF779D] [APT] [Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA)] (.HP Inc..) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [199512] (.Activate.) =>.Hewlett-Packard Company®
[MD5.00000000000000000000000000000000] [APT] [Microsoft\Windows\Media Center\mcupdate_scheduled] (...) -- C:\Windows\ehome\mcupd (.not file.) [0] (.Activate.) =>.Superfluous.Empty
O39 - APT: DriverNavigator Scheduled Scan - (.Easeware.) -- C:\Windows\Tasks\DriverNavigator Scheduled Scan.job [442] =>.Easeware Technology Limited®
O39 - APT: HPCeeScheduleForMohammed - (.Hewlett-Packard.) -- C:\Windows\Tasks\HPCeeScheduleForMohammed.job [344] =>.Hewlett-Packard Company®
O39 - APT: Adobe Acrobat Update Task - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Acrobat Update Task [4476] =>.Adobe Systems, Incorporated®
O39 - APT: Browser Updater Task(Core) - (...) -- C:\Windows\System32\Tasks\Browser Updater Task(Core) [9430] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: DriverNavigator Scheduled Scan - (.Easeware.) -- C:\Windows\System32\Tasks\DriverNavigator Scheduled Scan [3854] =>.Easeware Technology Limited®
O39 - APT: HPCeeScheduleForMohammed - (.Hewlett-Packard.) -- C:\Windows\System32\Tasks\HPCeeScheduleForMohammed [3204] =>.Hewlett-Packard Company®
O39 - APT: LefttoeUpdateTaskMachineCore - (...) -- C:\Windows\System32\Tasks\LefttoeUpdateTaskMachineCore [3560] (.Orphan.) =>Adware.Lefttoe
O39 - APT: LefttoeUpdateTaskMachineUA - (...) -- C:\Windows\System32\Tasks\LefttoeUpdateTaskMachineUA [3468] (.Orphan.) =>Adware.Lefttoe
O39 - APT: ToolrainUpdateTaskMachineCore - (...) -- C:\Windows\System32\Tasks\ToolrainUpdateTaskMachineCore [3468] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: ToolrainUpdateTaskMachineUA - (...) -- C:\Windows\System32\Tasks\ToolrainUpdateTaskMachineUA [3470] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: TuneUpUtilities_Task_BkGndMaintenance2013 - (.AVG Technologies.) -- C:\Windows\System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 [2762] =>.AVG Netherlands B.V.®
O39 - APT: {33852289-E02F-461F-AB9C-663F7038C9D9} - (...) -- C:\Windows\System32\Tasks\{33852289-E02F-461F-AB9C-663F7038C9D9} [3182] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: {37448C43-6829-4D73-840D-776677B620F6} - (.InstallShield Software Corporation.) -- C:\Windows\System32\Tasks\{37448C43-6829-4D73-840D-776677B620F6} [3346] =>.InstallShield Software Corporation
O39 - APT: {9D9C4B4D-B2BC-444F-96D0-B363ECE6F074} - (...) -- C:\Windows\System32\Tasks\{9D9C4B4D-B2BC-444F-96D0-B363ECE6F074} [3216] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: {EB8ADF83-2A2F-483D-8776-03626529DD3D} - (...) -- C:\Windows\System32\Tasks\{EB8ADF83-2A2F-483D-8776-03626529DD3D} [3216] (.Orphan.) =>.Superfluous.Orphan
---\\ Applications lancées au démarrage du système (16) - 0s
O4 - HKLM\..\Run: [SysTrayApp] . (.IDT, Inc. - IDT PC Audio.) -- C:\Program Files\IDT\WDM\sttray64.exe =>.IDT, Inc.
O4 - HKCU\..\Run: [Gestionnaire Antidote.exe] . (.Druide informatique inc. - Gestionnaire Antidote.) -- C:\Program Files (x86)\Druide\Antidote\Gestionnaire Antidote.exe {6BB03C90304C005E4CCC61F615410A86} =>.Druide informatique inc.
O4 - HKCU\..\Run: [Torrentex] . (...) -- C:\Torrentex\Torrentex.exe
O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - HKLM\..\Wow6432Node\Run: [vmware-tray.exe] . (.VMware, Inc. - VMware Tray Process.) -- C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe =>.VMware, Inc.®
O4 - HKLM\..\Wow6432Node\Run: [Lingo] . (...) -- C:\Windows\sservice controller\service.exe
O4 - HKLM\..\Wow6432Node\Run: [USB Security] . (.Zbshareware Lab - USB Disk Security.) -- C:\Program Files (x86)\USB Disk Security\USBGuard.exe =>.Lanzhou Itanium Software Technology Co., Ltd.®
O4 - HKUS\.DEFAULT\..\Run: [Gestionnaire Antidote.exe] . (.Druide informatique inc. - Gestionnaire Antidote.) -- C:\Program Files (x86)\Druide\Antidote\Gestionnaire Antidote.exe {6BB03C90304C005E4CCC61F615410A86} =>.Druide informatique inc.
O4 - HKUS\S-1-5-18\..\Run: [Gestionnaire Antidote.exe] . (.Druide informatique inc. - Gestionnaire Antidote.) -- C:\Program Files (x86)\Druide\Antidote\Gestionnaire Antidote.exe {6BB03C90304C005E4CCC61F615410A86} =>.Druide informatique inc.
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-2615603941-3448307637-3253308936-1000\..\Run: [Gestionnaire Antidote.exe] . (.Druide informatique inc. - Gestionnaire Antidote.) -- C:\Program Files (x86)\Druide\Antidote\Gestionnaire Antidote.exe {6BB03C90304C005E4CCC61F615410A86} =>.Druide informatique inc.
O4 - HKUS\S-1-5-21-2615603941-3448307637-3253308936-1000\..\Run: [Torrentex] . (...) -- C:\Torrentex\Torrentex.exe
O4 - HKUS\S-1-5-21-2615603941-3448307637-3253308936-1000\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.
---\\ Processus lancés (25) - 1s
[MD5.F8807AAF697E1D20C9D7716A4941E574] - (.IDT, Inc. - IDT PC Audio.) -- C:\Program Files\IDT\WDM\stacsv64.exe [271360] [PID.984] =>.IDT, Inc.
[MD5.00000000000000000000000000000000] - (.Hewlett-Packard Company - HpService.) -- C:\Windows\system32\Hpservice.exe [0] [PID.1068] =>.Hewlett-Packard Company
[MD5.C92B0A0957ACAD3CEEF502A2CA10ACB8] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [82128] [PID.1564] =>.Adobe Systems, Incorporated®
[MD5.A6FB9DB8F1A86861D955FD6975977AE0] - (.Andrea Electronics Corporation - Andrea filters APO access service (64-bit).) -- C:\Program Files\IDT\WDM\AESTSr64.exe [89600] [PID.1592] =>.Andrea Electronics Corporation
[MD5.00000000000000000000000000000000] - (.Intel Corporation - Intel® PROSet Monitoring Service.) -- C:\Windows\system32\IProsetMonitor.exe [0] [PID.1812] =>.Intel Corporation
[MD5.86B110346271EFF6D256A1615405AB7D] - (.AVG Technologies - AVG PC TuneUp Service.) -- C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2967864] [PID.1712] =>.AVG Netherlands B.V.®
[MD5.DF89A1667D769377CA5441A6F62F9031] - (.VMware, Inc. - VMware NAT Service.) -- C:\Windows\SysWOW64\vmnat.exe [392896] [PID.1176] =>.VMware, Inc.®
[MD5.C84A6FA836262BD7CBE611F08B554E8B] - (.VMware, Inc. - VMware VMnet DHCP service.) -- C:\Windows\SysWOW64\vmnetdhcp.exe [358080] [PID.1904] =>.VMware, Inc.®
[MD5.5F9CBD6D40E32CAEB55DB4A0799EBA72] - (.VMware, Inc. - VMware Authorization Service.) -- C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe [89792] [PID.1936] =>.VMware, Inc.®
[MD5.B30B940E999CC59A701B564A7E359D09] - (.VMware, Inc. - VMware USB Arbitration Service.) -- C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe [906944] [PID.2168] =>.VMware, Inc.®
[MD5.6B5BB4F597113997DBE1BE6091675F6C] - (...) -- C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe [12462784] [PID.2220] =>.VMware, Inc.®
[MD5.02F1253476B7F5F818364443DFED3264] - (.HP Inc. - HP Support Solutions Framework Service.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [29728] [PID.2812] =>.HP Inc.®
[MD5.73A1F958FCAC3438046DBB829DC92FE6] - (.Intel Corporation - Local Manageability Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [325656] [PID.1144] =>.Intel Corporation®
[MD5.F51C224B79D338BDE125FD8035D2418B] - (.Intel Corporation - User Notification Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2533400] [PID.2244] =>.Intel Corporation®
[MD5.496A18F4C61B13656E90953656434657] - (.AVG Technologies - AVG PC TuneUp.) -- C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe [2450232] [PID.484] =>.AVG Netherlands B.V.®
[MD5.63DF58EA2963E8C6ABDBBA45B7273C39] - (.IDT, Inc. - IDT PC Audio.) -- C:\Program Files\IDT\WDM\sttray64.exe [489472] [PID.2396] =>.IDT, Inc.
[MD5.0DE926F6EB16EAB82202CB878B1D6A42] - (.Druide informatique inc. - Gestionnaire Antidote.) -- C:\Program Files (x86)\Druide\Antidote\Gestionnaire Antidote.exe [533944] [PID.2888] {6BB03C90304C005E4CCC61F615410A86} =>.Druide informatique inc.
[MD5.DD6FCDC54731BD9812E450E9317B62D7] - (...) -- C:\Torrentex\Torrentex.exe [417744] [PID.2476]
[MD5.EE451AFC24AF84979429FAC7DF6188A0] - (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe [3994736] [PID.308] =>.Tonec Inc.
[MD5.65F39E4C0A0119E5BA5911C524EAA9A7] - (.VMware, Inc. - VMware Tray Process.) -- C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe [104128] [PID.1004] =>.VMware, Inc.®
[MD5.AEDB078BFE5E29C95EB5DA9292734537] - (...) -- C:\Windows\sservice controller\service.exe [18124564] [PID.2848]
[MD5.BAC15D03EFC8249216D1D610F3B1E67F] - (.Zbshareware Lab - USB Disk Security.) -- C:\Program Files (x86)\USB Disk Security\USBGuard.exe [695528] [PID.776] =>.Lanzhou Itanium Software Technology Co., Ltd.®
[MD5.B289C20C10B241F6016FECD92B267098] - (.Tonec Inc. - Internet Download Manager agent for click m.) -- C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe [275512] [PID.3500] =>.Tonec Inc.®
[MD5.415BF0E6EE611DFF2CFDF0EBB4DD802C] - (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe [468424] [PID.3136] =>.Mozilla Corporation®
[MD5.E8DE9984CEEE4B232974046AE35569F4] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\Mohammed\Downloads\Programs\ZHPDiag3.exe [2449408] [PID.3872] =>.Nicolas Coolman
---\\ Google Chrome, Démarrage,Recherche,Extensions (20) - 1s
G0 - GCSP: Preferences [User Data\Default][HomePage] http://tools.google.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://youtube.com =>.Youtube
G0 - GCSP: Preferences [User Data\Default][HomePage] http://accounts.google.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://accounts.youtube.com =>.Youtube
G0 - GCSP: Preferences [User Data\Default][HomePage] http://docs.google.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://fonts.gstatic.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://i.ytimg.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://s.ytimg.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://ssl.gstatic.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.gstatic.com =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [aapocclcgogkmnckokdopfmhonfmgoek] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [felcaaldnbdncclmgdcncolpebgiejap] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [ghbmnnjooekpmoecnnnilnnbdlolhkhi] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [ngpampappnmepgilojfohadhhmbhlaek] IDM Integration Module
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [pkedcjkdefgpdelpbcmbmeomcjbeemfm] Chrome Media Router =>.Google Inc.
---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (10) - 3s
M0 - MFSP: prefs.js [Mohammed - 5hbh86t1.default] http://linkzb.com
P2 - EXT FILE: (.mysites123 - mysites123 Search.) -- C:\Users\Mohammed\AppData\Roaming\Mozilla\Firefox\Profiles\5hbh86t1.default\searchplugins\mysites123.xml =>PUP.Optional.Mysites123
P2 - EXT FILE: (.nice - nice Search.) -- C:\Users\Mohammed\AppData\Roaming\Mozilla\Firefox\Profiles\5hbh86t1.default\searchplugins\nice.xml
P2 - EXT FILE: (.nuesearch - nuesearch Search.) -- C:\Users\Mohammed\AppData\Roaming\Mozilla\Firefox\Profiles\5hbh86t1.default\searchplugins\nuesearch.xml =>Hijacker.Browser
P2 - EXT FILE: (.piesearch - piesearch Search.) -- C:\Users\Mohammed\AppData\Roaming\Mozilla\Firefox\Profiles\5hbh86t1.default\searchplugins\piesearch.xml =>PUP.Optional.PieSearch
P2 - EXT FILE: (.so-v - so-v Search.) -- C:\Users\Mohammed\AppData\Roaming\Mozilla\Firefox\Profiles\5hbh86t1.default\searchplugins\so-v.xml
P2 - EXT FILE: (.MEGA - Secure Cloud Storage.) -- C:\Users\Mohammed\AppData\Roaming\Mozilla\Firefox\Profiles\uyaqs5sw.Utilisateur par défaut\extensions\firefox@mega.co.nz.xpi =>.MEGA
P2 - EXT: (.Jason Bourne - xRocket Toolbar.) -- C:\Users\Mohammed\AppData\Roaming\Mozilla\Firefox\Profiles\5hbh86t1.default\extensions\arthurj8283@gmail.com =>.Jason Bourne
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_162.dll =>.Adobe Systems Incorporated
P2 - FPN: [HKLM] [@qq.com/npAndroidAssistant] - (.腾讯公司.) -- C:\Program Files (x86)\Common Files\Tencent\QQPhoneManager\2.0.201.3192\npQQPhoneManagerExt.dll =>.Superfluous.Tencent
---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (18) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://start.myplaycity.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://start.myplaycity.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://start.myplaycity.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.attirerpage.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.attirerpage.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.attirerpage.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.attirerpage.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.attirerpage.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.attirerpage.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.attirerpage.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphan =>.Microsoft Internet Explorer
---\\ Internet Explorer,Proxy Management (4) - 0s
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=userinit.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: VMApplet=C:\Windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.) =>.Microsoft Corporation
---\\ Etude du fichier hosts (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (21)
---\\ Browser Helper Object de navigateur (BHO) (1) - 0s
O2 - BHO: IDM Helper [64Bits] - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Internet Download Manager, Tonec Inc. - IDM Browser Helper Object.) -- C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll =>.Tonec Inc.®
---\\ Internet Explorer, Barre d'outil (3) - 0s
O3 - Toolbar: 0xE3EFEB7F196B494398D2FFB09D4B49CA01F4020000 - [HKCU]{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} . (...) -- (.not file.)
O3 - Toolbar: 0xB1C218236549D4119B18009027A5CD4F - [HKCU]{2318C2B1-4965-11D4-9B18-009027A5CD4F} . (...) -- (.not file.)
O3 - Toolbar: 0xB8C1AA4B0008C9428FA608B211F356B8 - [HKCU]{4BAAC1B8-0800-42C9-8FA6-08B211F356B8} . (...) -- (.not file.)
---\\ Raccourcis Global Startup (92) - 4s
O4 - GS\Desktop [Administrateur]: FreeGamePick.lnk . (...) C:\Program Files (x86)\FreeGamePick\Around The World In 80 Days\website.url
O4 - GS\Desktop [Administrateur]: HP Support Assistant.lnk . (.HP Inc. - HP Support Assistant.) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe /p 2 =>.HP Inc.®
O4 - GS\Desktop [Administrateur]: Internet Download Manager.lnk . (.Tonec Inc. - Internet Download Manager (IDM).) C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - GS\Desktop [Administrateur]: PhotoScape.lnk . (.Copyright (C) 2005 - PhotoScape.) C:\Program Files (x86)\PhotoScape\PhotoScape.exe =>.Mooii Tech®
O4 - GS\Desktop [Administrateur]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Mohammed\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Administrateur]: Around The World in 80 Days.lnk . (...) C:\Program Files (x86)\MyPlayCity.com\Around The World in 80 Days\Around The World in 80 Days.exe =>.MyPlayCity Inc®
O4 - GS\Quicklaunch [Administrateur]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [Administrateur]: PhotoScape.lnk . (.Copyright (C) 2005 - PhotoScape.) C:\Program Files (x86)\PhotoScape\PhotoScape.exe =>.Mooii Tech®
O4 - GS\sendTo [Administrateur]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Administrateur]: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Administrateur]: AVG PC TuneUp - Interface de démarrage.lnk . (.AVG Technologies - AVG PC TuneUp - Interface de démarrage.) C:\Program Files (x86)\AVG\AVG PC TuneUp\Integrator.exe =>.AVG Netherlands B.V.®
O4 - GS\TaskBar [Administrateur]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\TaskBar [Administrateur]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [Administrateur]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Administrateur]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\Programs [Administrateur]: Internet Explorer (64-bit).lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Programs [Administrateur]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [Mohammed]: FreeGamePick.lnk . (...) C:\Program Files (x86)\FreeGamePick\Around The World In 80 Days\website.url
O4 - GS\Desktop [Mohammed]: HP Support Assistant.lnk . (.HP Inc. - HP Support Assistant.) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe /p 2 =>.HP Inc.®
O4 - GS\Desktop [Mohammed]: Internet Download Manager.lnk . (.Tonec Inc. - Internet Download Manager (IDM).) C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - GS\Desktop [Mohammed]: PhotoScape.lnk . (.Copyright (C) 2005 - PhotoScape.) C:\Program Files (x86)\PhotoScape\PhotoScape.exe =>.Mooii Tech®
O4 - GS\Desktop [Mohammed]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Mohammed\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Mohammed]: Around The World in 80 Days.lnk . (...) C:\Program Files (x86)\MyPlayCity.com\Around The World in 80 Days\Around The World in 80 Days.exe =>.MyPlayCity Inc®
O4 - GS\Quicklaunch [Mohammed]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [Mohammed]: PhotoScape.lnk . (.Copyright (C) 2005 - PhotoScape.) C:\Program Files (x86)\PhotoScape\PhotoScape.exe =>.Mooii Tech®
O4 - GS\sendTo [Mohammed]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Mohammed]: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Mohammed]: AVG PC TuneUp - Interface de démarrage.lnk . (.AVG Technologies - AVG PC TuneUp - Interface de démarrage.) C:\Program Files (x86)\AVG\AVG PC TuneUp\Integrator.exe =>.AVG Netherlands B.V.®
O4 - GS\TaskBar [Mohammed]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\TaskBar [Mohammed]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [Mohammed]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Mohammed]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\Programs [Mohammed]: Internet Explorer (64-bit).lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Programs [Mohammed]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\CommonDesktop [Public]: Acrobat Reader DC.lnk . (.Adobe Systems Incorporated - Adobe Acrobat Reader DC.) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe =>.Adobe Systems, Incorporated®
O4 - GS\CommonDesktop [Public]: AVG Maintenance en 1 clic.lnk . (.AVG Technologies - AVG Maintenance en 1 clic.) C:\Program Files (x86)\AVG\AVG PC TuneUp\OneClick.exe =>.AVG Netherlands B.V.®
O4 - GS\CommonDesktop [Public]: AVG PC TuneUp 2015.lnk . (.AVG Technologies - AVG PC TuneUp - Interface de démarrage.) C:\Program Files (x86)\AVG\AVG PC TuneUp\Integrator.exe =>.AVG Netherlands B.V.®
O4 - GS\CommonDesktop [Public]: DriverNavigator.lnk . (.Easeware - DriverNavigator.) C:\Program Files\Easeware\DriverNavigator\DriverNavigator.exe =>.Easeware Technology Limited®
O4 - GS\CommonDesktop [Public]: EPSON Scan.lnk . (.SEIKO EPSON CORP. - EPSON Scan.) C:\Windows\twain_32\escndv\escndv.exe =>.SEIKO EPSON CORP.
O4 - GS\CommonDesktop [Public]: face2face Second edition Pre-intermediate.lnk . (...) C:\Program Files (x86)\Cambridge\face2face Second edition Pre-intermediate\face2face Second edition Pre-intermediate.exe
O4 - GS\CommonDesktop [Public]: Internet Mobile.lnk . (...) C:\Program Files (x86)\Internet Mobile\Internet Mobile.exe
O4 - GS\CommonDesktop [Public]: Jeux.lnk . (...) C:\Program Files (x86)\bfgclient\bfgclient.exe -u
O4 - GS\CommonDesktop [Public]: Lingo.lnk . (...) C:\Program Files (x86)\Lingo\Lingo.exe
O4 - GS\CommonDesktop [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\CommonDesktop [Public]: Torrentex.lnk . (...) C:\Torrentex\Torrentex.exe
O4 - GS\CommonDesktop [Public]: USB Disk Security.lnk . (.Zbshareware Lab - USB Disk Security.) C:\Program Files (x86)\USB Disk Security\USBGuard.exe =>.Lanzhou Itanium Software Technology Co., Ltd.®
O4 - GS\CommonDesktop [Public]: VLC media player.lnk . (.VideoLAN - VLC media player.) C:\Program Files\VideoLAN\VLC\vlc.exe =>.VideoLAN®
O4 - GS\CommonDesktop [Public]: VMware Workstation Pro.lnk . (.VMware, Inc. - VMware Workstation.) C:\Program Files (x86)\VMware\VMware Workstation\vmware.exe =>.VMware, Inc.®
O4 - GS\CommonDesktop [Public]: Web Navigation.lnk . (...) C:\Program Files (x86)\USB Disk Security\linkzb.exe =>.Lanzhou Itanium Software Technology Co., Ltd.®
O4 - GS\CommonDesktop [Public]: Zuma's Revenge!.lnk . (.PopCap Games, Inc. - Zuma's Revenge!.) C:\Program Files (x86)\PopCap Games\Zuma's Revenge\ZumasRevenge.exe =>.PopCap Games®
O4 - GS\Programs [Public]: Internet Explorer (64-bit).lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Programs [Public]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Accessories [Public]: Command Prompt.lnk . (.Microsoft Corporation - Interpréteur de commandes Windows.) C:\Windows\system32\cmd.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) C:\Windows\system32\notepad.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe -extoff =>.Microsoft Corporation®
O4 - GS\SystemTools [Public]: Private Character Editor.lnk . (.Microsoft Corporation - Éditeur de caractères privés.) C:\Windows\system32\eudcedit.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Bluetooth File Transfer Wizard.lnk . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Calculator.lnk . (.Microsoft Corporation - Calculatrice de Windows.) C:\Windows\system32\calc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: displayswitch.lnk . (.Microsoft Corporation - Afficher le commutateur.) C:\Windows\system32\displayswitch.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Math Input Panel.lnk . (.Microsoft Corporation - Accessoire du panneau de saisie mathématiqu.) C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\mip.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Mobility Center.lnk . (.Microsoft Corporation - Centre de mobilité Windows.) C:\Windows\system32\mblctr.exe /open =>.Microsoft Corporation
O4 - GS\Accessories [Public]: NetworkProjection.lnk . (.Microsoft Corporation - Connect to a Network Projector.) C:\Windows\system32\NetProj.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.) C:\Windows\system32\mspaint.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Connexion Bureau à distance.) C:\Windows\system32\mstsc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - Outil Capture.) C:\Windows\system32\SnippingTool.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sound Recorder.lnk . (.Microsoft Corporation - Magnétophone Windows.) C:\Windows\system32\SoundRecorder.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sticky Notes.lnk . (.Microsoft Corporation - Pense-bête.) C:\Windows\system32\StikyNot.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sync Center.lnk . (.Microsoft Corporation - Microsoft Sync Center.) C:\Windows\System32\mobsync.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Welcome Center.lnk . (.Microsoft Corporation - Processus hôte Windows (Rundll32).) C:\Windows\system32\rundll32.exe %SystemRoot%\system32\OobeFldr.dll,ShowWelcomeCenter LaunchedBy_StartMenuShortcut =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Application Windows Wordpad.) C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Table des caractères.) C:\Windows\system32\charmap.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: dfrgui.lnk . (.Microsoft Corporation - Défragmenteur de disque Microsoft®.) C:\Windows\system32\dfrgui.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Disk Cleanup.lnk . (.Microsoft Corporation - Gestionnaire de nettoyage de disque pour Wi.) C:\Windows\system32\cleanmgr.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Resource Monitor.lnk . (.Microsoft Corporation - Moniteur de ressources et de performances.) C:\Windows\system32\perfmon.exe /res =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: System Information.lnk . (.Microsoft Corporation - Informations système.) C:\Windows\system32\msinfo32.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: System Restore.lnk . (.Microsoft Corporation - Restauration du système de Microsoft® Windo.) C:\Windows\system32\rstrui.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Task Scheduler.lnk . (...) C:\Windows\system32\taskschd.msc /s
O4 - GS\SystemTools [Public]: Windows Easy Transfer Reports.lnk . (.Microsoft Corporation - Application post-migration de transfert de.) C:\Windows\system32\migwiz\postmig.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Windows Easy Transfer.lnk . (.Microsoft Corporation - Application Transfert de fichiers et paramè.) C:\Windows\system32\migwiz\migwiz.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Acrobat Reader DC.lnk . (.Flexera Software LLC - InstallShield.) C:\Windows\Installer\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}\SC_Reader.ico =>.Flexera Software LLC
O4 - GS\ProgramsCommon [Public]: AVG PC TuneUp 2015.lnk . (.AVG Technologies - AVG PC TuneUp - Interface de démarrage.) C:\Program Files (x86)\AVG\AVG PC TuneUp\Integrator.exe =>.AVG Netherlands B.V.®
O4 - GS\ProgramsCommon [Public]: IDT HD Audio.lnk . (.IDT, Inc. - IDT PC Audio.) C:\Windows\System32\idtcpl64.cpl =>.IDT, Inc.
O4 - GS\ProgramsCommon [Public]: Lingo.lnk . (...) C:\Program Files (x86)\Lingo\Lingo.exe
O4 - GS\ProgramsCommon [Public]: Media Center.lnk . (.Microsoft Corporation - Windows Media Center.) C:\Windows\ehome\ehshell.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\ProgramsCommon [Public]: Sidebar.lnk . (.Microsoft Corporation - Gadgets du Bureau Windows.) C:\Program Files (x86)\Windows Sidebar\sidebar.exe /showgadgets =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Windows Anytime Upgrade.lnk . (.Microsoft Corporation - Interface utilisateur de Mise à niveau expr.) C:\Windows\system32\WindowsAnytimeUpgradeUI.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Windows DVD Maker.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\DVD Maker\DVDMaker.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Windows Fax and Scan.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: XPS Viewer.lnk . (.Microsoft Corporation - Visionneuse XPS.) C:\Windows\system32\xpsrchvw.exe =>.Microsoft Corporation
---\\ Modification Domaine/Adresses DNS (7) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{381EF6C0-591A-47B7-A723-74D64E9D309C}: NameServer = 208.67.222.222,208.67.220.220,192.168.7.1 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{B2FF68A0-5319-46BF-94BE-DCC794CCD696}: NameServer = 208.67.222.222,208.67.220.220 =>.OpenDNS DNS
O17 - HKLM\System\CCS\Services\Tcpip\..\{BFDF8398-3BCE-44F7-82A6-A61B8CC80CF9}: NameServer = 208.67.222.222,208.67.220.220 =>.OpenDNS DNS
O17 - HKLM\System\CCS\Services\Tcpip\..\{CCC59A0E-2554-4061-8D5C-5AC7386C8F13}: NameServer = 208.67.222.222,208.67.220.220 =>.OpenDNS DNS
O17 - HKLM\System\CCS\Services\Tcpip\..\{E2612551-D7DD-46FB-AA0B-7114E82EFCA3}: NameServer = 208.67.222.222,208.67.220.220 =>.OpenDNS DNS
O17 - HKLM\System\CCS\Services\Tcpip\..\{F5A520A8-0314-44A0-A1F5-20DFE57350AE}: DhcpNameServer = 192.168.1.1 =>.Local IP Adress
---\\ Protocole additionnel (24) - 1s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll =>.Microsoft Corporation
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ms-help [64Bits] - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Help\hxds.dll =>.Microsoft Corporation®
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: deflate [64Bits] - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Filter: gzip [64Bits] - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL =>.Microsoft Corporation®
---\\ Logiciels installés (37) - 8s
O42 - Logiciel: Adobe Acrobat Reader DC - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AC0F074E4100} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Flash Player 23 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001824205020} =>.Adobe Systems Incorporated
O42 - Logiciel: Antidote RX v2 - (.Druide informatique inc..) [HKLM][64Bits] -- {A474EA56-5DBD-4181-8230-806A4762EA7F} =>.Druide informatique inc.
O42 - Logiciel: AVG 2016 - (.AVG Technologies.) [HKLM][64Bits] -- {500609C4-E46C-4887-9466-A20EB783C57A} =>.AVG Technologies
O42 - Logiciel: AVG PC TuneUp 2015 - (.AVG Technologies.) [HKLM][64Bits] -- {A996C182-3724-4DF1-A4BC-66154FE57DFE} =>.AVG Technologies
O42 - Logiciel: AVG PC TuneUp 2015 - (.AVG Technologies.) [HKLM][64Bits] -- AVG PC TuneUp =>.AVG Netherlands B.V.®
O42 - Logiciel: AVG PC TuneUp 2015 (fr-FR) - (.AVG Technologies.) [HKLM][64Bits] -- {A740869A-1BFF-4688-AEA3-8F4A3F74B212} =>.AVG Technologies
O42 - Logiciel: DriverNavigator 3.6.8 - (.Easeware.) [HKLM][64Bits] -- DriverNavigator_is1 =>.Easeware Technology Limited®
O42 - Logiciel: EPSON Scan - (.Seiko Epson Corporation.) [HKLM][64Bits] -- EPSON Scanner =>.SEIKO EPSON Corporation®
O42 - Logiciel: face2face Second edition Pre-intermediate application - (.Cambridge University Press Holdings Limited.) [HKLM][64Bits] -- {210C278A-62B7-09FF-6F68-03B21F285397}
O42 - Logiciel: face2face Second edition Pre-intermediate application - (.Cambridge University Press Holdings Limited.) [HKLM][64Bits] -- face2faceSecondeditionPreintermediate
O42 - Logiciel: face2face Second edition Pre-intermediate content - (.Cambridge University Press.) [HKLM][64Bits] -- face2face Second edition Pre-intermediate content =>.Cambridge University Press
O42 - Logiciel: HP Customer Experience Enhancements - (.Hewlett-Packard.) [HKLM][64Bits] -- {C9EF1AAF-B542-41C8-A537-1142DA5D4AEC} =>.Hewlett-Packard
O42 - Logiciel: HP Support Assistant - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {79C54A05-F146-4EA0-8A70-D4EFE6181E52} =>.Hewlett-Packard Company
O42 - Logiciel: HP Support Solutions Framework - (.HP.) [HKLM][64Bits] -- {C18278AC-049A-4F02-A97F-4FD7294CC4F5} =>.HP
O42 - Logiciel: IDT Audio - (.IDT.) [HKLM][64Bits] -- {E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001} =>.IDT
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A} =>.Intel Corporation®
O42 - Logiciel: Intel(R) Network Connections 18.7.28.0 - (.Intel.) [HKLM][64Bits] -- {594AEAFB-0822-4EA9-A5B8-309485A515EE} =>.Intel
O42 - Logiciel: Intel(R) Network Connections 18.7.28.0 - (.Intel.) [HKLM][64Bits] -- PROSetDX =>.Intel
O42 - Logiciel: Internet Download Manager - (.Tonec Inc..) [HKLM][64Bits] -- Internet Download Manager =>.Tonec Inc.®
O42 - Logiciel: Internet Mobile - (.Huawei Technologies Co.,Ltd.) [HKLM][64Bits] -- Internet Mobile =>.Huawei Technologies Co.,Ltd
O42 - Logiciel: ISIS Drivers - (.EMC Corporation.) [HKLM][64Bits] -- {7C4A09A7-C641-4330-95B5-23F64DDEE1C2} =>.EMC Corporation
O42 - Logiciel: Lingo version 1.0.0 - (.FOFO-SOFT.) [HKLM][64Bits] -- {0893A168-4115-4E8C-9975-A1A7615F1041}_is1
O42 - Logiciel: Mozilla Firefox 49.0.2 (x64 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 49.0.2 (x64 fr) =>.Mozilla Corporation®
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService =>.Mozilla
O42 - Logiciel: NirSoft Wireless Network Watcher - (...) [HKLM][64Bits] -- NirSoft Wireless Network Watcher
O42 - Logiciel: PhotoScape - (...) [HKLM][64Bits] -- PhotoScape
O42 - Logiciel: Torrentex version 0.1.4b - (.Torrentex Inc..) [HKLM][64Bits] -- {B36CE58D-F635-4F82-97EE-BC6DE158BC6E}_is1 =>.Torrentex Inc.
O42 - Logiciel: USB Disk Security - (.Zbshareware Lab.) [HKLM][64Bits] -- USB Disk Security_is1 =>.Zbshareware Lab
O42 - Logiciel: VC_CRT_x64 - (.Intel Corporation.) [HKLM][64Bits] -- {54F2237F-018C-483B-8884-9FC0D88840C3} =>.Intel Corporation
O42 - Logiciel: Visual Studio 2012 x64 Redistributables - (.AVG Technologies.) [HKLM][64Bits] -- {8C775E70-A791-4DA8-BCC3-6AB7136F4484} =>.AVG Technologies
O42 - Logiciel: Visual Studio 2012 x86 Redistributables - (.AVG Technologies CZ, s.r.o..) [HKLM][64Bits] -- {98EFF19A-30AB-4E4B-B943-F06B1C63EBF8} =>.AVG Technologies CZ, s.r.o.
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player =>.VideoLAN
O42 - Logiciel: VMware Workstation - (.VMware, Inc..) [HKLM][64Bits] -- {0AD91785-F9BD-47FD-84F7-9E27B5A1853D} =>.VMware, Inc.
O42 - Logiciel: WinRAR 5.00 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver =>.win.rar GmbH®
O42 - Logiciel: Zuma's Revenge! - (.PopCap Games.) [HKLM][64Bits] -- Zuma's Revenge! =>.PopCap Games®
---\\ HKCU & HKLM Software Keys (95) - 8s
HKLM\SOFTWARE\Wow6432Node\Adobe =>.Adobe
HKLM\SOFTWARE\Wow6432Node\attirerpageSoftware
HKLM\SOFTWARE\Wow6432Node\AVAST Software =>.AVAST Software
HKLM\SOFTWARE\Wow6432Node\Avg
HKLM\SOFTWARE\Wow6432Node\AVS4YOU =>.AVS4YOU
HKLM\SOFTWARE\Wow6432Node\Big Fish Games =>.Big Fish Games
HKLM\SOFTWARE\Wow6432Node\CLSID
HKLM\SOFTWARE\Wow6432Node\Druide informatique inc. =>.Druide informatique inc.
HKLM\SOFTWARE\Wow6432Node\EMC Corporation =>.EMC Corporation
HKLM\SOFTWARE\Wow6432Node\EPSON =>.EPSON
HKLM\SOFTWARE\Wow6432Node\FastStone Image Viewer
HKLM\SOFTWARE\Wow6432Node\FFinder LTD
HKLM\SOFTWARE\Wow6432Node\Google =>.Google
HKLM\SOFTWARE\Wow6432Node\hdcode
HKLM\SOFTWARE\Wow6432Node\Hewlett-Packard =>.Hewlett-Packard
HKLM\SOFTWARE\Wow6432Node\Huawei technologies =>.Huawei Technologies
HKLM\SOFTWARE\Wow6432Node\IDT =>.IDT
HKLM\SOFTWARE\Wow6432Node\ihpmserver =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\Intel =>.Intel
HKLM\SOFTWARE\Wow6432Node\Internet Download Manager
HKLM\SOFTWARE\Wow6432Node\KasperskyLab =>.KasperskyLab
HKLM\SOFTWARE\Wow6432Node\Lefttoe =>Adware.Lefttoe
HKLM\SOFTWARE\Wow6432Node\Licenses
HKLM\SOFTWARE\Wow6432Node\LogMeInRescueCallingCard
HKLM\SOFTWARE\Wow6432Node\Macromedia =>.Macromedia
HKLM\SOFTWARE\Wow6432Node\McAfee.com =>.McAfee.com
HKLM\SOFTWARE\Wow6432Node\MimarSinan
HKLM\SOFTWARE\Wow6432Node\Mooii =>.Mooii
HKLM\SOFTWARE\Wow6432Node\Mozilla =>.Mozilla
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins =>.MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\mysites123Software =>PUP.Optional.Mysites123
HKLM\SOFTWARE\Wow6432Node\Novell =>.Novell
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\PopCap
HKLM\SOFTWARE\Wow6432Node\RayDld =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\SrpnFiles =>.Superfluous.SpringFiles
HKLM\SOFTWARE\Wow6432Node\TData =>.Superfluous.TDataCom
HKLM\SOFTWARE\Wow6432Node\Tencent =>.Superfluous.Tencent
HKLM\SOFTWARE\Wow6432Node\ThinPrint =>.ThinPrint
HKLM\SOFTWARE\Wow6432Node\Toolrain
HKLM\SOFTWARE\Wow6432Node\TSv =>.Superfluous.Elex
HKLM\SOFTWARE\Wow6432Node\TuneUp =>.TuneUp
HKLM\SOFTWARE\Wow6432Node\UCBrowserPID
HKLM\SOFTWARE\Wow6432Node\VideoLAN =>.VideoLAN
HKLM\SOFTWARE\Wow6432Node\VMware, Inc. =>.VMware, Inc.
HKLM\SOFTWARE\Wow6432Node\WinSaberSvc =>.Superfluous.WinSaber
HKLM\SOFTWARE\Wow6432Node\yessearchesSoftware =>Adware.YesSearches
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\8322898
HKCU\SOFTWARE\Adobe =>.Adobe
HKCU\SOFTWARE\Ahusoft =>.Ahusoft
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\Avg
HKCU\SOFTWARE\AVG SafePrice
HKCU\SOFTWARE\AVS4YOU =>.AVS4YOU
HKCU\SOFTWARE\Big Fish Games =>.Big Fish Games
HKCU\SOFTWARE\Chromium =>.Chromium
HKCU\SOFTWARE\Cisco =>.Cisco
HKCU\SOFTWARE\DicoVerb
HKCU\SOFTWARE\DownloadManager
HKCU\SOFTWARE\Druide informatique inc. =>.Druide informatique inc.
HKCU\SOFTWARE\EPSON =>.EPSON
HKCU\SOFTWARE\ESET =>.ESET
HKCU\SOFTWARE\FreeDownloadManager.ORG =>.FreeDownloadManager.ORG
HKCU\SOFTWARE\Google =>.Google
HKCU\SOFTWARE\Hewlett-Packard =>.Hewlett-Packard
HKCU\SOFTWARE\IM =>Adware.InstallCore
HKCU\SOFTWARE\IMDownloader
HKCU\SOFTWARE\Installer
HKCU\SOFTWARE\InstallMonster
HKCU\SOFTWARE\JavaSoft =>.JavaSoft
HKCU\SOFTWARE\KasperskyLabSetup
HKCU\SOFTWARE\Lefttoe =>Adware.Lefttoe
HKCU\SOFTWARE\Licenses
HKCU\SOFTWARE\Macromedia =>.Macromedia
HKCU\SOFTWARE\Mooii =>.Mooii
HKCU\SOFTWARE\Mozilla =>.Mozilla
HKCU\SOFTWARE\Netscape =>.Netscape
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\PopCap
HKCU\SOFTWARE\SecuROM
HKCU\SOFTWARE\SMADΔV
HKCU\SOFTWARE\SrpnFiles =>.Superfluous.SpringFiles
HKCU\SOFTWARE\Tencent =>.Superfluous.Tencent
HKCU\SOFTWARE\Torrentex Inc. =>.Torrentex Inc.
HKCU\SOFTWARE\Trolltech =>.Trolltech
HKCU\SOFTWARE\UCBrowserPID
HKCU\SOFTWARE\USB Disk Security
HKCU\SOFTWARE\VMware, Inc. =>.VMware, Inc.
HKCU\SOFTWARE\WinRAR =>.WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\Wow6432Node
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\PasswordBox
---\\ Contenu des dossiers Programmes (265) - 25s
O43 - CFD: 28/10/2016 - [] D -- C:\Program Files\Common Files =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\DVD Maker =>.Aone Software
O43 - CFD: 13/11/2016 - [] D -- C:\Program Files\Easeware =>.Easeware Technology Limited®
O43 - CFD: 30/10/2016 - [] D -- C:\Program Files\ESET =>.ESET
O43 - CFD: 20/02/2016 - [0] SHD -- C:\Program Files\Fichiers communs =>.Microsoft Corporation
O43 - CFD: 01/10/2016 - [0] D -- C:\Program Files\Google =>.Google
O43 - CFD: 04/03/2016 - [] D -- C:\Program Files\IDT =>.IDT
O43 - CFD: 20/02/2016 - [] D -- C:\Program Files\Intel =>.Intel Corporation®
O43 - CFD: 16/08/2009 - [] D -- C:\Program Files\Internet Explorer =>.Microsoft Corporation
O43 - CFD: 24/02/2016 - [] D -- C:\Program Files\Microsoft Office =>.Microsoft Corporation
O43 - CFD: 29/10/2016 - [] D -- C:\Program Files\Mozilla Firefox =>.Mozilla Corporation®
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\MSBuild =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Reference Assemblies =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [0] HD -- C:\Program Files\Uninstall Information =>.Microsoft Corporation
O43 - CFD: 01/10/2016 - [] D -- C:\Program Files\VideoLAN =>.VideoLAN
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Windows Defender =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Windows Journal =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Windows Mail =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 20/02/2016 - [] D -- C:\Program Files\Windows NT =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Windows Photo Viewer =>.Microsoft Corporation®
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Windows Portable Devices =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Windows Sidebar =>.Microsoft Corporation
O43 - CFD: 22/02/2016 - [] D -- C:\Program Files\WinRAR =>.win.rar GmbH®
O43 - CFD: 03/11/2016 - [] D -- C:\Program Files (x86)\Adobe =>.Adobe Systems, Incorporated®
O43 - CFD: 15/11/2016 - [] D -- C:\Program Files (x86)\AVG =>.AVG Netherlands B.V.®
O43 - CFD: 28/10/2016 - [] D -- C:\Program Files (x86)\Cambridge =>.Cambridge
O43 - CFD: 13/11/2016 - [] D -- C:\Program Files (x86)\Common Files =>.Microsoft Corporation
O43 - CFD: 26/10/2016 - [] D -- C:\Program Files (x86)\Druide {6BB03C90304C005E4CCC61F615410A86} =>.Druide
O43 - CFD: 13/11/2016 - [] D -- C:\Program Files (x86)\epson =>.EPSON
O43 - CFD: 08/11/2016 - [] D -- C:\Program Files (x86)\FreeGamePick =>.FreeGamePick
O43 - CFD: 14/10/2016 - [] D -- C:\Program Files (x86)\Google =>.Google
O43 - CFD: 04/03/2016 - [] D -- C:\Program Files (x86)\Hewlett-Packard =>.Hewlett-Packard Company®
O43 - CFD: 13/11/2016 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information =>.InstallShield Software
O43 - CFD: 20/02/2016 - [] D -- C:\Program Files (x86)\Intel =>.Intel Corporation®
O43 - CFD: 14/11/2016 - [] D -- C:\Program Files (x86)\Internet Download Manager =>.Tonec Inc
O43 - CFD: 25/02/2016 - [] D -- C:\Program Files (x86)\Internet Explorer =>.Microsoft Corporation
O43 - CFD: 31/10/2016 - [] D -- C:\Program Files (x86)\Internet Mobile
O43 - CFD: 21/10/2016 - [] D -- C:\Program Files (x86)\Lingo
O43 - CFD: 24/02/2016 - [] D -- C:\Program Files (x86)\Microsoft Office =>.Microsoft Corporation®
O43 - CFD: 01/10/2016 - [] D -- C:\Program Files (x86)\Mozilla Firefox =>.Mozilla
O43 - CFD: 29/10/2016 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service =>.Mozilla Corporation®
O43 - CFD: 24/02/2016 - [] D -- C:\Program Files (x86)\MSBuild =>.Microsoft Corporation
O43 - CFD: 07/11/2016 - [] D -- C:\Program Files (x86)\MyPlayCity.com =>.MyPlayCity Inc®
O43 - CFD: 21/10/2016 - [] D -- C:\Program Files (x86)\NirSoft =>.NirSoft
O43 - CFD: 13/10/2016 - [] D -- C:\Program Files (x86)\PhotoScape =>.Mooii Tech®
O43 - CFD: 14/11/2016 - [] D -- C:\Program Files (x86)\Playrix Entertainment =>.Playrix Entertainment
O43 - CFD: 14/11/2016 - [] D -- C:\Program Files (x86)\PopCap Games =>.PopCap Games®
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Reference Assemblies =>.Microsoft Corporation
O43 - CFD: 01/10/2016 - [] D -- C:\Program Files (x86)\SearchesToYesbnd =>Adware.YesSearches
O43 - CFD: 01/10/2016 - [] D -- C:\Program Files (x86)\SFK =>PUP.Optional.MyWebSearch
O43 - CFD: 14/07/2009 - [0] HD -- C:\Program Files (x86)\Uninstall Information =>.Microsoft Corporation
O43 - CFD: 29/10/2016 - [] D -- C:\Program Files (x86)\USB Disk Security =>.Lanzhou Itanium Software Technology Co., Ltd.®
O43 - CFD: 22/02/2016 - [] D -- C:\Program Files (x86)\VMware =>.VMware, Inc.®
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Windows Defender =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Windows NT =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Windows Photo Viewer =>.Microsoft Corporation®
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Windows Portable Devices =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Windows Sidebar =>.Microsoft Corporation
O43 - CFD: 16/08/2009 - [] D -- C:\Program Files (x86)\Windows Virtual PC =>.Microsoft Corporation
O43 - CFD: 01/10/2016 - [] D -- C:\Program Files (x86)\WinSaber =>.Superfluous.WinSaber
O43 - CFD: 04/03/2016 - [] D -- C:\Program Files (x86)\Winsere =>Adware.YesSearches
O43 - CFD: 04/03/2016 - [] D -- C:\Program Files (x86)\WinTaske =>Adware.YesSearches
O43 - CFD: 26/10/2016 - [] HD -- C:\Program Files (x86)\Zero G Registry =>.Flexera
O43 - CFD: 20/02/2016 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories =>.Microsoft Corporation
O43 - CFD: 20/02/2016 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools
O43 - CFD: 26/10/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Antidote =>.Druide informatique
O43 - CFD: 31/10/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp 2015
O43 - CFD: 31/10/2016 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVS4YOU =>.AVS4YOU
O43 - CFD: 28/10/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cambridge =>.Cambridge
O43 - CFD: 13/11/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverNavigator
O43 - CFD: 13/11/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON =>.EPSON
O43 - CFD: 08/11/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FreeGamePick =>.FreeGamePick
O43 - CFD: 14/11/2016 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games =>.Microsoft Corporation
O43 - CFD: 04/03/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support =>.Hewlett-Packard
O43 - CFD: 11/11/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager =>.Tonec Inc
O43 - CFD: 31/10/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Mobile
O43 - CFD: 13/11/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ISIS Scanner Drivers
O43 - CFD: 14/07/2009 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance =>.Microsoft Corporation
O43 - CFD: 24/02/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office =>.Microsoft Corporation
O43 - CFD: 07/11/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyPlayCity.com =>.MyPlayCity.com
O43 - CFD: 13/10/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoScape =>.Mooii Tech Software
O43 - CFD: 14/11/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PopCap Games =>.PopCap Games
O43 - CFD: 29/10/2016 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC =>.Wacom Technology
O43 - CFD: 30/10/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Torrentex
O43 - CFD: 29/10/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\USB Disk Security
O43 - CFD: 22/02/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN =>.VideoLAN
O43 - CFD: 22/02/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VMware =>.VMware
O43 - CFD: 20/02/2016 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Virtual PC =>.Microsoft Corporation
O43 - CFD: 22/02/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR
O43 - CFD: 28/10/2016 - [] D -- C:\ProgramData\Adobe =>.Adobe
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Application Data =>.Microsoft Corporation
O43 - CFD: 15/11/2016 - [] D -- C:\ProgramData\AVAST Software =>.AVAST Software
O43 - CFD: 15/11/2016 - [] D -- C:\ProgramData\Avg =>.AVG Software
O43 - CFD: 14/08/2016 - [] D -- C:\ProgramData\AVS4YOU =>.AVS4YOU
O43 - CFD: 07/11/2016 - [] D -- C:\ProgramData\Big Fish =>.Big Fish
O43 - CFD: 20/02/2016 - [0] SHD -- C:\ProgramData\Bureau =>.Microsoft Corporation
O43 - CFD: 30/10/2016 - [] D -- C:\ProgramData\ChelfNotify =>.Superfluous.Tencent
O43 - CFD: 30/09/2016 - [] HD -- C:\ProgramData\Common Files =>.Microsoft Corporation
O43 - CFD: 01/10/2016 - [] D -- C:\ProgramData\CwinpC
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Desktop =>.Microsoft Corporation
O43 - CFD: 28/10/2016 - [] D -- C:\ProgramData\desktopfind =>HackTool.WinActivator
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Documents =>.Microsoft Corporation
O43 - CFD: 20/02/2016 - [0] SHD -- C:\ProgramData\Favoris =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Favorites =>.Microsoft Corporation
O43 - CFD: 30/10/2016 - [0] D -- C:\ProgramData\FFinder LTD =>.Superfluous.WebitarProduction
O43 - CFD: 21/02/2016 - [] D -- C:\ProgramData\Free Download Manager
O43 - CFD: 21/02/2016 - [] D -- C:\ProgramData\FreeDownloadManager.ORG =>.FreeDownloadManager.ORG
O43 - CFD: 04/03/2016 - [] D -- C:\ProgramData\Hewlett-Packard =>.Hewlett-Packard
O43 - CFD: 01/10/2016 - [0] D -- C:\ProgramData\IDM =>.IDM
O43 - CFD: 01/10/2016 - [] D -- C:\ProgramData\iwinpi
O43 - CFD: 28/10/2016 - [] D -- C:\ProgramData\Kaspersky Lab Setup Files =>.Kaspersky Lab
O43 - CFD: 01/10/2016 - [] D -- C:\ProgramData\kwinpk =>PUP.Optional.WdsManPro
O43 - CFD: 01/10/2016 - [0] D -- C:\ProgramData\Lefttoe =>Adware.Lefttoe
O43 - CFD: 01/10/2016 - [] D -- C:\ProgramData\lwinpl
O43 - CFD: 01/10/2016 - [] D -- C:\ProgramData\McAfee =>.McAfee
O43 - CFD: 20/02/2016 - [0] SHD -- C:\ProgramData\Menu Démarrer =>.Microsoft Corporation
O43 - CFD: 15/11/2016 - [] D -- C:\ProgramData\MFAData =>.AVG
O43 - CFD: 01/03/2016 - [] SD -- C:\ProgramData\Microsoft =>.Microsoft
O43 - CFD: 24/02/2016 - [] D -- C:\ProgramData\Microsoft Help =>.Microsoft Corporation
O43 - CFD: 20/02/2016 - [0] SHD -- C:\ProgramData\Modèles =>.Microsoft Corporation
O43 - CFD: 01/10/2016 - [] D -- C:\ProgramData\MwinpM
O43 - CFD: 30/09/2016 - [] D -- C:\ProgramData\Norton =>.Norton
O43 - CFD: 30/09/2016 - [] D -- C:\ProgramData\NortonInstaller =>.Symantec
O43 - CFD: 01/10/2016 - [] D -- C:\ProgramData\NwinpN
O43 - CFD: 30/09/2016 - [] D -- C:\ProgramData\Package Cache =>.Microsoft Corporation
O43 - CFD: 04/11/2016 - [] D -- C:\ProgramData\Playrix Entertainment =>.Playrix Entertainment
O43 - CFD: 14/11/2016 - [] D -- C:\ProgramData\PopCap Games =>.PopCap Games
O43 - CFD: 01/10/2016 - [] D -- C:\ProgramData\pWdMp =>PUP.Optional.WdsManPro
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Start Menu =>.Microsoft Corporation
O43 - CFD: 07/11/2016 - [0] AD -- C:\ProgramData\TEMP =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Templates =>.Microsoft Corporation
O43 - CFD: 04/03/2016 - [] D -- C:\ProgramData\Tencent =>.Superfluous.Tencent
O43 - CFD: 30/09/2016 - [] D -- C:\ProgramData\Toolrain
O43 - CFD: 08/03/2016 - [] D -- C:\ProgramData\TXQMPC =>.Superfluous.TXQMPC
O43 - CFD: 24/08/2016 - [] D -- C:\ProgramData\uckt
O43 - CFD: 10/08/2016 - [0] D -- C:\ProgramData\Uncheckit =>.Superfluous.Elex
O43 - CFD: 15/11/2016 - [] D -- C:\ProgramData\VMware =>.VMware
O43 - CFD: 01/10/2016 - [] D -- C:\ProgramData\ywinpy
O43 - CFD: 09/10/2016 - [] D -- C:\Program Files (x86)\Common Files\Adobe =>.Adobe
O43 - CFD: 30/09/2016 - [] D -- C:\Program Files (x86)\Common Files\AV =>.Avast
O43 - CFD: 30/09/2016 - [] D -- C:\Program Files (x86)\Common Files\AVSMedia =>.AVSMedia
O43 - CFD: 24/02/2016 - [] D -- C:\Program Files (x86)\Common Files\DESIGNER =>.Designer
O43 - CFD: 13/11/2016 - [] D -- C:\Program Files (x86)\Common Files\EMC
O43 - CFD: 26/10/2016 - [] D -- C:\Program Files (x86)\Common Files\microsoft shared =>.Microsoft Corporation
O43 - CFD: 20/02/2016 - [] D -- C:\Program Files (x86)\Common Files\postureAgent =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Common Files\Services =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Common Files\SpeechEngines =>.Microsoft Corporation
O43 - CFD: 24/02/2016 - [] D -- C:\Program Files (x86)\Common Files\System =>.Microsoft Corporation
O43 - CFD: 06/03/2016 - [] D -- C:\Program Files (x86)\Common Files\Tencent =>.Superfluous.Tencent
O43 - CFD: 22/02/2016 - [] D -- C:\Program Files (x86)\Common Files\ThinPrint =>.ThinPrint
O43 - CFD: 22/02/2016 - [] D -- C:\Program Files (x86)\Common Files\VMware =>.VMware
O43 - CFD: 28/10/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\Adobe =>.Adobe
O43 - CFD: 31/10/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\AVG =>.AVG Software
O43 - CFD: 27/09/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\AVS4YOU =>.AVS4YOU
O43 - CFD: 28/10/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\Bump Technologies, Inc
O43 - CFD: 28/10/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\Cambridge =>.Cambridge
O43 - CFD: 15/11/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\DMCache =>.DMCache
O43 - CFD: 26/10/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\Druide =>.Druide
O43 - CFD: 13/11/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\Easeware =>.Easeware
O43 - CFD: 28/10/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\face2faceSecondeditionPreintermediate
O43 - CFD: 13/10/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\FastStone =>.FastStone
O43 - CFD: 21/02/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\FreeDownloadManager.ORG =>.FreeDownloadManager.ORG
O43 - CFD: 04/03/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\Hewlett-Packard =>.Hewlett-Packard
O43 - CFD: 31/10/2016 - [0] D -- C:\Users\Mohammed\AppData\Roaming\hpqLog =>.Hewlett-Packard
O43 - CFD: 20/02/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\Identities =>.Microsoft Corporation
O43 - CFD: 11/11/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\IDM =>.IDM
O43 - CFD: 11/03/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\Macromedia =>.Macromedia
O43 - CFD: 14/07/2009 - [0] D -- C:\Users\Mohammed\AppData\Roaming\Media Center Programs =>.Microsoft Corporation
O43 - CFD: 22/02/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\Media-Assistant
O43 - CFD: 26/10/2016 - [] SD -- C:\Users\Mohammed\AppData\Roaming\Microsoft =>.Microsoft
O43 - CFD: 20/02/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\Mozilla =>.Mozilla Corporation
O43 - CFD: 16/10/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\PhotoScape =>.Mooii Tech Software
O43 - CFD: 28/10/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\setup1
O43 - CFD: 30/09/2016 - [0] D -- C:\Users\Mohammed\AppData\Roaming\Smadav =>.SmadAV
O43 - CFD: 07/04/2016 - [0] D -- C:\Users\Mohammed\AppData\Roaming\SpringFiles =>.Superfluous.SpringFiles
O43 - CFD: 23/04/2016 - [] RSHD -- C:\Users\Mohammed\AppData\Roaming\sys
O43 - CFD: 04/03/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\Tencent =>.Superfluous.Tencent
O43 - CFD: 15/11/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\Torrentex
O43 - CFD: 01/10/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\TSv =>.Superfluous.Elex
O43 - CFD: 01/10/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\TuneUp Software =>.TuneUp Software
O43 - CFD: 10/08/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\Uncheckit =>.Superfluous.Elex
O43 - CFD: 15/11/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\vlc =>.VideoLAN
O43 - CFD: 30/09/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\VMware =>.VMware
O43 - CFD: 22/02/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\WinRAR =>.WinRAR
O43 - CFD: 30/06/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\WinZiper =>.Superfluous.WinZipper
O43 - CFD: 29/10/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\Zbshareware Lab =>.Zbshareware Lab
O43 - CFD: 15/11/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\ZHP =>.Nicolas Coolman
O43 - CFD: 04/03/2016 - [0] D -- C:\Users\Mohammed\AppData\Local\3810282D-6C19-47B0-8283-5C6C29A7E108
O43 - CFD: 28/10/2016 - [] D -- C:\Users\Mohammed\AppData\Local\Adobe =>.Adobe
O43 - CFD: 13/08/2016 - [] D -- C:\Users\Mohammed\AppData\Local\adslTV =>.adslTV
O43 - CFD: 20/02/2016 - [0] SHD -- C:\Users\Mohammed\AppData\Local\Application Data =>.Microsoft Corporation
O43 - CFD: 15/11/2016 - [] D -- C:\Users\Mohammed\AppData\Local\Avg =>.AVG Software
O43 - CFD: 30/09/2016 - [] D -- C:\Users\Mohammed\AppData\Local\Avg2015
O43 - CFD: 15/11/2016 - [] D -- C:\Users\Mohammed\AppData\Local\AvgSetupLog =>.AVG
O43 - CFD: 07/11/2016 - [] D -- C:\Users\Mohammed\AppData\Local\Big Fish =>.Big Fish
O43 - CFD: 28/10/2016 - [] D -- C:\Users\Mohammed\AppData\Local\Bump Technologies, Inc
O43 - CFD: 25/02/2016 - [] D -- C:\Users\Mohammed\AppData\Local\CEF =>.CEF
O43 - CFD: 13/11/2016 - [] D -- C:\Users\Mohammed\AppData\Local\CrashDumps =>.Microsoft Corporation
O43 - CFD: 21/10/2016 - [] D -- C:\Users\Mohammed\AppData\Local\Diagnostics =>.Microsoft Corporation
O43 - CFD: 24/07/2016 - [0] D -- C:\Users\Mohammed\AppData\Local\ElevatedDiagnostics =>.Microsoft Corporation
O43 - CFD: 30/09/2016 - [] D -- C:\Users\Mohammed\AppData\Local\ESET =>.ESET
O43 - CFD: 04/03/2016 - [0] D -- C:\Users\Mohammed\AppData\Local\F727A298-4DB4-456A-AC54-A93EA5F8554D
O43 - CFD: 13/10/2016 - [] D -- C:\Users\Mohammed\AppData\Local\FastStone =>.FastStone
O43 - CFD: 08/05/2016 - [] D -- C:\Users\Mohammed\AppData\Local\Geckofx =>.Geckofx
O43 - CFD: 14/10/2016 - [] D -- C:\Users\Mohammed\AppData\Local\Google =>.Google
O43 - CFD: 05/03/2016 - [] D -- C:\Users\Mohammed\AppData\Local\Hewlett-Packard =>.Hewlett-Packard
O43 - CFD: 20/02/2016 - [0] SHD -- C:\Users\Mohammed\AppData\Local\Historique =>.Microsoft Corporation
O43 - CFD: 13/11/2016 - [] D -- C:\Users\Mohammed\AppData\Local\IIIQF =>.Scrabblo
O43 - CFD: 30/06/2016 - [] D -- C:\Users\Mohammed\AppData\Local\Lefttoe =>Adware.Lefttoe
O43 - CFD: 08/05/2016 - [] D -- C:\Users\Mohammed\AppData\Local\Macromedia =>.Macromedia
O43 - CFD: 30/09/2016 - [] D -- C:\Users\Mohammed\AppData\Local\MFAData =>.AVG
O43 - CFD: 25/04/2016 - [] D -- C:\Users\Mohammed\AppData\Local\Microsoft =>.Microsoft
O43 - CFD: 22/02/2016 - [0] D -- C:\Users\Mohammed\AppData\Local\Microsoft Help =>.Microsoft Corporation
O43 - CFD: 20/02/2016 - [] D -- C:\Users\Mohammed\AppData\Local\Mozilla =>.Mozilla Corporation
O43 - CFD: 15/08/2016 - [] D -- C:\Users\Mohammed\AppData\Local\Popcorn Time =>.Superfluous.PopcornTime
O43 - CFD: 30/09/2016 - [] D -- C:\Users\Mohammed\AppData\Local\Popcorn-Time =>.Superfluous.PopcornTime
O43 - CFD: 20/02/2016 - [] D -- C:\Users\Mohammed\AppData\Local\Programs =>.Microsoft Corporation
O43 - CFD: 08/05/2016 - [] D -- C:\Users\Mohammed\AppData\Local\Readon_Technology
O43 - CFD: 08/05/2016 - [] D -- C:\Users\Mohammed\AppData\Local\Smart_PC_Soft =>.Smart PC Soft
O43 - CFD: 14/08/2016 - [] D -- C:\Users\Mohammed\AppData\Local\Super Internet TV =>.Ahusoft
O43 - CFD: 15/11/2016 - [] D -- C:\Users\Mohammed\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 20/02/2016 - [0] SHD -- C:\Users\Mohammed\AppData\Local\Temporary Internet Files =>.Microsoft Corporation
O43 - CFD: 04/03/2016 - [] D -- C:\Users\Mohammed\AppData\Local\UCBrowser =>.UCWeb Inc
O43 - CFD: 18/08/2016 - [] D -- C:\Users\Mohammed\AppData\Local\VirtualStore =>.Microsoft Corporation
O43 - CFD: 30/09/2016 - [] D -- C:\Users\Mohammed\AppData\Local\VMware =>.VMware
O43 - CFD: 20/02/2016 - [0] D -- C:\Users\Mohammed\AppData\Local\Programs\Common =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] RD -- C:\Users\Mohammed\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories =>.Microsoft Corporation
O43 - CFD: 20/02/2016 - [] RD -- C:\Users\Mohammed\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools
O43 - CFD: 26/10/2016 - [0] D -- C:\Users\Mohammed\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Antidote =>.Druide informatique
O43 - CFD: 11/11/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager =>.Tonec Inc
O43 - CFD: 14/07/2009 - [] RD -- C:\Users\Mohammed\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance =>.Microsoft Corporation
O43 - CFD: 21/10/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NirSoft Wireless Network Watcher
O43 - CFD: 15/08/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Popcorn Time =>.Superfluous.PopcornTime
O43 - CFD: 20/02/2016 - [] RD -- C:\Users\Mohammed\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup =>.Microsoft Corporation
O43 - CFD: 22/02/2016 - [] D -- C:\Users\Mohammed\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR
O43 - CFD: 08/03/2016 - [0] D -- C:\Users\Mohammed\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\腾讯软件
O43 - CFD: 14/07/2009 - [0] SHD -- C:\Users\Default\AppData\Local\Application Data =>.Microsoft Corporation
O43 - CFD: 20/02/2016 - [0] SHD -- C:\Users\Default\AppData\Local\Historique =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [0] SHD -- C:\Users\Default\AppData\Local\History =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] D -- C:\Users\Default\AppData\Local\Microsoft =>.Microsoft
O43 - CFD: 14/07/2009 - [0] D -- C:\Users\Default\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [0] SHD -- C:\Users\Default\AppData\Local\Temporary Internet Files =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [0] SHD -- C:\Users\Default User\AppData\Local\Application Data =>.Microsoft Corporation
O43 - CFD: 20/02/2016 - [0] SHD -- C:\Users\Default User\AppData\Local\Historique =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [0] SHD -- C:\Users\Default User\AppData\Local\History =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] D -- C:\Users\Default User\AppData\Local\Microsoft =>.Microsoft
O43 - CFD: 14/07/2009 - [0] D -- C:\Users\Default User\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [0] SHD -- C:\Users\Default User\AppData\Local\Temporary Internet Files =>.Microsoft Corporation
O43 - CFD: 15/11/2016 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\Avg =>.AVG Software
O43 - CFD: 15/11/2016 - [] -- C:\Windows\System32\Config\systemprofile\AppData\Local\AvgSetupLog =>.AVG
O43 - CFD: 28/10/2016 - [] -- C:\Windows\System32\Config\systemprofile\AppData\Local\CrashDumps =>.Microsoft Corporation
O43 - CFD: 30/09/2016 - [] -- C:\Windows\System32\Config\systemprofile\AppData\Local\Google =>.Google
O43 - CFD: 31/10/2016 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\MFAData =>.AVG
O43 - CFD: 14/07/2009 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\Microsoft =>.Microsoft
O43 - CFD: 12/10/2016 - [0] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 01/11/2016 - [] -- C:\Windows\System32\Config\systemprofile\AppData\Roaming\AVG =>.AVG Software
O43 - CFD: 30/06/2016 - [] SD -- C:\Windows\System32\Config\systemprofile\AppData\Roaming\Microsoft =>.Microsoft
O43 - CFD: 11/11/2016 - [] -- C:\Windows\System32\Config\systemprofile\AppData\Roaming\Solvusoft =>.Superfluous.Solvusoft
O43 - CFD: 04/03/2016 - [] -- C:\Windows\System32\Config\systemprofile\AppData\Roaming\Tencent =>.Superfluous.Tencent
O43 - CFD: 10/08/2016 - [] -- C:\Windows\System32\Config\systemprofile\AppData\Roaming\Uncheckit =>.Superfluous.Elex
O43 - CFD: 15/11/2016 - [0] D -- C:\Windows\System32\Config\systemprofile\AppData\Roaming\VMware =>.VMware
---\\ ShellIconOverlayIdentifiers (SIOI) (2) - 0s
O106 - SIOI: Enhanced Storage Icon Overlay Handler Class [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - DLL d’extension d’environnement de stockage.) -- C:\Windows\System32\EhStorShell.dll =>.Microsoft Corporation
O106 - SIOI: Sharing Overlay (Private) [SharingPrivate] - {08244EE6-92F0-47f2-9FC9-929BAA2E7235}. (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation
---\\ Liste des pilotes du système (71) - 7s
O58 - SDL:2011/05/13 18:57:58 A . (.Hewlett-Packard Company - HP Accelerometer.) -- C:\Windows\System32\drivers\Accelerometer.sys [43320] =>.Hewlett-Packard Company®
O58 - SDL:2009/07/14 01:52:21 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [491088] =>.Microsoft Windows®
O58 - SDL:2009/07/14 01:52:21 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [339536] =>.Microsoft Windows®
O58 - SDL:2009/07/14 01:52:21 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\drivers\adpu320.sys [182864] =>.Microsoft Windows®
O58 - SDL:2009/06/10 21:01:06 A . (.LSI Corp - SoftModem Device Driver.) -- C:\Windows\System32\drivers\agrsm64.sys [1146880] =>.LSI Corp
O58 - SDL:2009/07/14 01:52:21 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [15440] =>.Microsoft Windows®
O58 - SDL:2009/07/14 01:52:21 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [106576] =>.Microsoft Windows®
O58 - SDL:2009/07/14 01:52:20 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [194128] =>.Microsoft Windows®
O58 - SDL:2009/07/14 01:52:21 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [28752] =>.Microsoft Windows®
O58 - SDL:2009/07/14 01:52:21 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [87632] =>.Microsoft Windows®
O58 - SDL:2009/07/14 01:52:21 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [97856] =>.Microsoft Windows®
O58 - SDL:2009/06/10 20:34:23 A . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x.) -- C:\Windows\System32\drivers\b57nd60a.sys [270848] =>.Broadcom Corporation
O58 - SDL:2009/06/10 20:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [18432] =>.Brother Industries, Ltd.
O58 - SDL:2009/06/10 20:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [8704] =>.Brother Industries, Ltd.
O58 - SDL:2009/07/14 01:19:07 A . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [286720] =>.Brother Industries Ltd.
O58 - SDL:2009/06/10 20:41:10 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [47104] =>.Brother Industries Ltd.
O58 - SDL:2009/06/10 20:41:10 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [14976] =>.Brother Industries Ltd.
O58 - SDL:2009/06/10 20:41:10 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [14720] =>.Brother Industries Ltd.
O58 - SDL:2009/06/10 20:34:28 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [468480] =>.Broadcom Corporation
O58 - SDL:2009/07/14 01:52:31 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [17488] =>.Microsoft Windows®
O58 - SDL:2013/07/18 08:47:56 A . (.Intel Corporation - Intel(R) Gigabit Adapter NDIS 6.x driver.) -- C:\Windows\System32\drivers\e1k62x64.sys [497424] =>.Intel Corporation®
O58 - SDL:2009/07/14 01:47:48 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [530496] =>.Microsoft Windows®
O58 - SDL:2016/10/13 14:39:14 A . (.ESET - Epfw NDIS LightWeight Filter.) -- C:\Windows\System32\drivers\EpfwLWF.sys [59528] =>.ESET, spol. s r.o.®
O58 - SDL:2009/06/10 20:34:33 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3286016] =>.Broadcom Corporation
O58 - SDL:2007/08/09 04:10:54 A . (.Huawei Tech. Co., Ltd. - HUAWEI USB Smart Card Driver.) -- C:\Windows\System32\drivers\ewdcsc.sys [29696] =>.Huawei Tech. Co., Ltd.
O58 - SDL:2009/06/22 19:26:40 A . (.Huawei Technologies Co., Ltd. - USB Modem/Serial Device Driver.) -- C:\Windows\System32\drivers\ewusbdev.sys [113792] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2009/06/22 19:38:34 A . (.Huawei Technologies Co., Ltd. - USB Modem/Serial Device Driver.) -- C:\Windows\System32\drivers\ewusbmdm.sys [116992] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2009/06/22 20:01:16 A . (.Huawei Technologies Co., Ltd. - USB NDIS Miniport Driver.) -- C:\Windows\System32\drivers\ewusbnet.sys [132608] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2015/11/06 11:57:44 A . (.VMware, Inc. - VMware USB monitor.) -- C:\Windows\System32\drivers\hcmon.sys [57536] =>.VMware, Inc.®
O58 - SDL:2009/06/10 20:31:59 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [31232] =>.Hauppauge Computer Works, Inc.
O58 - SDL:2009/09/18 03:54:54 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\drivers\HECIx64.sys [56344] =>.Intel Corporation®
O58 - SDL:2011/05/13 18:58:16 A . (.Hewlett-Packard Company - HP Disk Filter - SATA/RAID.) -- C:\Windows\System32\drivers\hpdskflt.sys [30008] =>.Hewlett-Packard Company®
O58 - SDL:2009/07/14 01:47:48 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [77888] =>.Microsoft Windows®
O58 - SDL:2013/04/22 15:06:33 A . (.Intel Corporation - NDIS 6.1 Advanced Networking Services..) -- C:\Windows\System32\drivers\iANSW60e.sys [163400] =>.Intel Corporation®
O58 - SDL:2009/07/14 01:48:04 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [410688] =>.Microsoft Windows®
O58 - SDL:2016/09/21 16:43:48 A . (.Tonec Inc. - Internet Download Manager WFP Driver.) -- C:\Windows\System32\drivers\idmwfp.sys [222952] =>.Tonec Inc.®
O58 - SDL:2009/07/14 01:48:04 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [44112] =>.Microsoft Windows®
O58 - SDL:2013/08/12 12:50:00 A . (.Intel Corporation - Intel(R) Network Adapter Diagnostic Driver.) -- C:\Windows\System32\drivers\iqvw64e.sys [33616] =>.Intel Corporation®
O58 - SDL:2009/07/14 01:48:04 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [114752] =>.Microsoft Windows®
O58 - SDL:2009/07/14 01:48:04 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [106560] =>.Microsoft Windows®
O58 - SDL:2009/07/14 01:48:04 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [65600] =>.Microsoft Windows®
O58 - SDL:2009/07/14 01:48:04 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [115776] =>.Microsoft Windows®
O58 - SDL:2009/07/14 01:48:04 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [35392] =>.Microsoft Windows®
O58 - SDL:2009/07/14 01:48:04 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [284736] =>.Microsoft Windows®
O58 - SDL:2016/03/04 22:28:27 A . (.Intel Corporation - Intel® Wireless WiFi Link Driver.) -- C:\Windows\System32\drivers\NETwNs64.sys [8604672] =>.Intel Corporation
O58 - SDL:2016/03/04 22:22:10 A . (.Intel Corporation - Intel® Wireless WiFi Link Driver.) -- C:\Windows\System32\drivers\Netwsw00.sys [11499008] =>.Intel Corporation
O58 - SDL:2015/05/04 13:14:24 A . (.Intel Corporation - Intel® Wireless WiFi Link Driver.) -- C:\Windows\System32\drivers\NETwsw01.sys [11534096] =>.Intel Corporation-Wireless Connectivity Solutions®
O58 - SDL:2009/07/14 01:48:26 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [51264] =>.Microsoft Windows®
O58 - SDL:2009/07/14 01:48:27 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [149056] =>.Microsoft Windows®
O58 - SDL:2009/07/14 01:45:45 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [167488] =>.Microsoft Windows®
O58 - SDL:2009/07/14 01:45:46 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1524816] =>.Microsoft Windows®
O58 - SDL:2009/07/14 01:45:45 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [128592] =>.Microsoft Windows®
O58 - SDL:2006/10/03 01:07:00 A . (.RICOH Company, Ltd. - PC-SC Driver for RICOH SmartCard Reader.) -- C:\Windows\System32\drivers\rismcx64.sys [79488]
O58 - SDL:2009/06/10 20:37:19 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [23040] =>.Macrovision Corporation, Macrovision Europe Limited,
O58 - SDL:2009/07/14 01:45:45 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [43584] =>.Microsoft Windows®
O58 - SDL:2009/07/14 01:45:46 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [80464] =>.Microsoft Windows®
O58 - SDL:2009/07/14 01:45:55 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [24656] =>.Microsoft Windows®
O58 - SDL:2016/03/04 22:15:36 A . (.IDT, Inc. - IDT PC Audio.) -- C:\Windows\System32\drivers\stwrt64.sys [515584] =>.IDT, Inc.
O58 - SDL:2016/03/04 23:59:55 A . (.电脑管家 - 电脑管家-驱动模块.) -- C:\Windows\System32\drivers\TFsFltX64.sys [87800] =>.Superfluous.Tencent
O58 - SDL:2016/03/04 23:59:55 A . (.电脑管家 - 电脑管家-TSSK Driver.) -- C:\Windows\System32\drivers\TSSKX64.sys [45304] =>.Superfluous.Tencent
O58 - SDL:2009/07/14 01:45:55 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [17488] =>.Microsoft Windows®
O58 - SDL:2015/11/05 19:25:42 A . (.VMware, Inc. - VMware PCI VMCI Bus Device.) -- C:\Windows\System32\drivers\vmci.sys [90816] =>.VMware, Inc.®
O58 - SDL:2015/11/25 17:51:56 A . (.VMware, Inc. - VMware virtual network driver (64-bit).) -- C:\Windows\System32\drivers\vmnet.sys [27328] =>.VMware, Inc.®
O58 - SDL:2015/11/25 17:51:56 A . (.VMware, Inc. - VMware virtual network adapter driver (64-b.) -- C:\Windows\System32\drivers\vmnetadapter.sys [28864] =>.VMware, Inc.®
O58 - SDL:2015/11/25 17:51:56 A . (.VMware, Inc. - VMware bridge driver (64-bit).) -- C:\Windows\System32\drivers\vmnetbridge.sys [48832] =>.VMware, Inc.®
O58 - SDL:2015/11/25 17:52:52 A . (.VMware, Inc. - VMware network application interface driver.) -- C:\Windows\System32\drivers\vmnetuserif.sys [26816] =>.VMware, Inc.®
O58 - SDL:2015/11/25 18:10:16 A . (.VMware, Inc. - VMware parallel port driver.) -- C:\Windows\System32\drivers\VMparport.sys [31936] =>.VMware, Inc.®
O58 - SDL:2015/11/06 11:57:32 A . (.VMware, Inc. - VMware USB driver.) -- C:\Windows\System32\drivers\vmusb.sys [50256] =>.VMware, Inc.®
O58 - SDL:2015/11/25 18:10:28 A . (.VMware, Inc. - VMware kernel driver.) -- C:\Windows\System32\drivers\vmx86.sys [66752] =>.VMware, Inc.®
O58 - SDL:2009/07/14 01:45:55 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [161872] =>.Microsoft Windows®
O58 - SDL:2015/11/05 19:25:42 A . (.VMware, Inc. - VMware vSockets Service.) -- C:\Windows\System32\drivers\vsock.sys [75512] =>.VMware, Inc.®
---\\ Derniers fichiers modifiés ou crées (Utilisateur) (1) - 29s
O61 - LFC: 2016/11/13 21:22:09 A . (..) -- C:\Users\Mohammed\AppData\Local\Adobe\Acrobat\DC\UserCache.bin [74076]
---\\ Associations Shell Spawning (11) - 0s
O67 - Shell Spawning: <.bat>
O67 - Shell Spawning: <.cpl>
O67 - Shell Spawning: <.cmd>
O67 - Shell Spawning: <.com>
O67 - Shell Spawning: <.evt>
O67 - Shell Spawning: <.exe>
O67 - Shell Spawning: <.html>
O67 - Shell Spawning: <.js>
O67 - Shell Spawning: <.reg>
O67 - Shell Spawning: <.scr>
O67 - Shell Spawning: <.html>
---\\ Menu de démarrage Internet (8) - 0s
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
---\\ Recherche d'infection sur les navigateurs (9) - 18s
O69 - SBI: prefs.js [Mohammed - 5hbh86t1.default] user_pref("browser.newtab.url", "http://www.mysites123.com/newtab/?type=nt&ts=1457131664&z=98755c26784b98cccd6a592gaz6w6m7g4c7g1q7[...] =>PUP.Optional.Mysites123
O69 - SBI: prefs.js [Mohammed - 5hbh86t1.default] user_pref("extensions.enabledAddons", "deskCutv2%40gmail.com:0.1.13,%7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:44.0.2"); =>PUP.Optional.DeskCut
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com/ =>.Microsoft Corporation
O69 - SBI: SearchScopes [HKCU] {33BB0A4E-99AF-4226-BDF6-49120163DE86} - (attirerpage) - http://www.attirerpage.com/
O69 - SBI: SearchScopes [HKCU] {95B7759C-8C7F-4BF1-B163-73684A933233} - (AVG Secure Search) - http://mysearch.avg.com/
O69 - SBI: SearchScopes [HKCU] {9AD09901-06DD-4DDD-A62D-6D2243B771AB} [DefaultScope] - (MyPlayCity) - http://start.myplaycity.com/
O69 - SBI: SearchScopes [HKCU] {AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} - (Norton Safe Search) - http://nortonsafe.search.ask.com/
O69 - SBI: SearchScopes [HKLM] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (@ieframe.dll,-12512) - http://www.bing.com/ =>.Microsoft Corporation
O69 - SBI: SearchScopes [HKLM] {33BB0A4E-99AF-4226-BDF6-49120163DE86} [DefaultScope] - (attirerpage) - http://www.attirerpage.com/
---\\ Enumère les services démarrés par Svchost (33) - 0s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [72192] =>.Microsoft Corporation
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [80384] =>.Microsoft Corporation
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [80384] =>.Microsoft Corporation
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\system32\srvsvc.dll [235520] =>.Microsoft Corporation
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [776192] =>.Microsoft Corporation
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [845824] =>.Microsoft Corporation
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll [676864] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [99328] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll [343552] =>.Microsoft Corporation
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [97792] =>.Microsoft Corporation
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\Sens.dll [64512] =>.Microsoft Corporation
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\Windows\System32\ipnathlp.dll [359424] =>.Microsoft Corporation
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [316416] =>.Microsoft Corporation
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du se.) -- C:\Windows\System32\termsrv.dll [706560] =>.Microsoft Corporation
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\system32\wuaueng.dll [2418176] =>.Microsoft Corporation
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [848384] =>.Microsoft Corporation
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [369664] =>.Microsoft Corporation
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll [565760] =>.Microsoft Corporation
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\Windows\system32\seclogon.dll [30720] =>.Microsoft Corporation
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [70144] =>.Microsoft Corporation
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\system32\iscsiexe.dll [156672] =>.Microsoft Corporation
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédia.) -- C:\Windows\system32\mmcss.dll [67584] =>.Microsoft Corporation
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\system32\wbem\WMIsvc.dll [242688] =>.Microsoft Corporation
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [104960] =>.Microsoft Corporation
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [136192] =>.Microsoft Corporation
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [111104] =>.Microsoft Corporation
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\system32\schedsvc.dll [1104384] =>.Microsoft Corporation
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\system32\kmsvc.dll [90624] =>.Microsoft Corporation
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [84480] =>.Microsoft Corporation
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\system32\profsvc.dll [208384] =>.Microsoft Corporation
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\system32\themeservice.dll [44544] =>.Microsoft Corporation
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [100864] =>.Microsoft Corporation
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll [193536] =>.Microsoft Corporation
---\\ Liste des exceptions du parefeu Windows (5) - 1s
O87 - FAEL: "{FF3E7139-6EF0-43AA-AA13-679DD8CB83CF}" [In-None-P6-TRUE] .(...) -- C:\Program Files\DriversCloud.com\MCDetection.exe (.not file.)
O87 - FAEL: "{722DDA99-EE8B-4D29-B5E1-75B042B0A2C8}" [In-None-P17-TRUE] .(...) -- C:\Program Files\DriversCloud.com\MCDetection.exe (.not file.)
O87 - FAEL: "{F8816F1A-9256-48B4-8E61-65D751B9CC5A}" [In-None-P6-TRUE] .(.Copyright © 2014 - Media-Assistant.) -- C:\Users\Mohammed\AppData\Roaming\Media-Assistant\Media-Assistant.exe
O87 - FAEL: "{BB73F806-2544-484B-ACEC-276474DB9B50}" [In-None-P6-TRUE] .(...) -- C:\Torrentex\Torrentex.exe
O87 - FAEL: "{EC70A9F6-1F09-4AB4-8533-0E02C76A0875}" [In-None-P17-TRUE] .(...) -- C:\Torrentex\Torrentex.exe
---\\ Liste des émulateurs de CD/DVD (MBR Hook) (10) - 6s
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\amt_mysites123_RASAPI32 =>PUP.Optional.Mysites123
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\amt_mysites123_RASMANCS =>PUP.Optional.Mysites123
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\AskInstallChecker-1_RASAPI32 =>Toolbar.Ask
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\AskInstallChecker-1_RASMANCS =>Toolbar.Ask
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ihpmServer_RASAPI32 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ihpmServer_RASMANCS =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\LefttoeUpdate_RASAPI32 =>Adware.Lefttoe
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\LefttoeUpdate_RASMANCS =>Adware.Lefttoe
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Lefttoe_RASAPI32 =>Adware.Lefttoe
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Lefttoe_RASMANCS =>Adware.Lefttoe
---\\ Scan Additionnel (57) - 0s
C:\Windows\System32\Tasks\LefttoeUpdateTaskMachineCore =>Adware.Lefttoe
C:\Windows\System32\Tasks\LefttoeUpdateTaskMachineUA =>Adware.Lefttoe
C:\Users\Mohammed\AppData\Roaming\Mozilla\Firefox\Profiles\5hbh86t1.default\searchplugins\mysites123.xml =>PUP.Optional.Mysites123
C:\Users\Mohammed\AppData\Roaming\Mozilla\Firefox\Profiles\5hbh86t1.default\searchplugins\nuesearch.xml =>Hijacker.Browser
C:\Users\Mohammed\AppData\Roaming\Mozilla\Firefox\Profiles\5hbh86t1.default\searchplugins\piesearch.xml =>PUP.Optional.PieSearch
C:\Program Files (x86)\Common Files\Tencent\QQPhoneManager\2.0.201.3192\npQQPhoneManagerExt.dll =>.Superfluous.Tencent
HKLM\SOFTWARE\Wow6432Node\ihpmserver =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\Lefttoe =>Adware.Lefttoe
HKLM\SOFTWARE\Wow6432Node\mysites123Software =>PUP.Optional.Mysites123
HKLM\SOFTWARE\Wow6432Node\RayDld =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\SrpnFiles =>.Superfluous.SpringFiles
HKLM\SOFTWARE\Wow6432Node\TData =>.Superfluous.TDataCom
HKLM\SOFTWARE\Wow6432Node\Tencent =>.Superfluous.Tencent
HKLM\SOFTWARE\Wow6432Node\TSv =>.Superfluous.Elex
HKLM\SOFTWARE\Wow6432Node\WinSaberSvc =>.Superfluous.WinSaber
HKLM\SOFTWARE\Wow6432Node\yessearchesSoftware =>Adware.YesSearches
HKCU\SOFTWARE\IM =>Adware.InstallCore
HKCU\SOFTWARE\Lefttoe =>Adware.Lefttoe
HKCU\SOFTWARE\SrpnFiles =>.Superfluous.SpringFiles
HKCU\SOFTWARE\Tencent =>.Superfluous.Tencent
C:\Program Files (x86)\SearchesToYesbnd =>Adware.YesSearches
C:\Program Files (x86)\SFK =>PUP.Optional.MyWebSearch
C:\Program Files (x86)\WinSaber =>.Superfluous.WinSaber
C:\Program Files (x86)\Winsere =>Adware.YesSearches
C:\Program Files (x86)\WinTaske =>Adware.YesSearches
C:\ProgramData\ChelfNotify =>.Superfluous.Tencent
C:\ProgramData\desktopfind =>HackTool.WinActivator
C:\ProgramData\FFinder LTD =>.Superfluous.WebitarProduction
C:\ProgramData\kwinpk =>PUP.Optional.WdsManPro
C:\ProgramData\Lefttoe =>Adware.Lefttoe
C:\ProgramData\pWdMp =>PUP.Optional.WdsManPro
C:\ProgramData\Tencent =>.Superfluous.Tencent
C:\ProgramData\TXQMPC =>.Superfluous.TXQMPC
C:\ProgramData\Uncheckit =>.Superfluous.Elex
C:\Program Files (x86)\Common Files\Tencent =>.Superfluous.Tencent
C:\Users\Mohammed\AppData\Roaming\SpringFiles =>.Superfluous.SpringFiles
C:\Users\Mohammed\AppData\Roaming\Tencent =>.Superfluous.Tencent
C:\Users\Mohammed\AppData\Roaming\TSv =>.Superfluous.Elex
C:\Users\Mohammed\AppData\Roaming\Uncheckit =>.Superfluous.Elex
C:\Users\Mohammed\AppData\Roaming\WinZiper =>.Superfluous.WinZipper
C:\Users\Mohammed\AppData\Local\Lefttoe =>Adware.Lefttoe
C:\Users\Mohammed\AppData\Local\Popcorn Time =>.Superfluous.PopcornTime
C:\Users\Mohammed\AppData\Local\Popcorn-Time =>.Superfluous.PopcornTime
C:\Users\Mohammed\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Popcorn Time =>.Superfluous.PopcornTime
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\amt_mysites123_RASAPI32 =>PUP.Optional.Mysites123
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\amt_mysites123_RASMANCS =>PUP.Optional.Mysites123
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\AskInstallChecker-1_RASAPI32 =>Toolbar.Ask
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\AskInstallChecker-1_RASMANCS =>Toolbar.Ask
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ihpmServer_RASAPI32 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ihpmServer_RASMANCS =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\LefttoeUpdate_RASAPI32 =>Adware.Lefttoe
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\LefttoeUpdate_RASMANCS =>Adware.Lefttoe
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Lefttoe_RASAPI32 =>Adware.Lefttoe
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Lefttoe_RASMANCS =>Adware.Lefttoe
C:\Users\Mohammed\AppData\Roaming\47889.exe =>Heuristic.Suspect
C:\Users\Mohammed\AppData\Roaming\641401.exe =>Heuristic.Suspect
C:\Users\Mohammed\AppData\Roaming\8251.exe =>Heuristic.Suspect
---\\ Récapitulatif des éléments trouvés sur votre station (23) - 0s
https://www.anti-malware.top/2016/09/04/adware-lefttoe/ =>Adware.Lefttoe
https://www.nicolascoolman.com/fr/pup-optional-mysites123 =>PUP.Optional.Mysites123
https://www.nicolascoolman.com/fr/hijacker-browser/ =>Hijacker.Browser
https://www.nicolascoolman.com/fr/repaquetage-et_infections/ =>PUP.Optional.PieSearch
https://www.nicolascoolman.com/fr/adware-tencentaddressbar/ =>.Superfluous.Tencent
https://www.anti-malware.top/2016/04/30/pup-optional-crossrider/ =>PUP.Optional.CrossRider
https://www.anti-malware.top/2016/04/26/superfluous-springfiles/ =>.Superfluous.SpringFiles
https://www.nicolascoolman.com/fr/logiciels-superflus =>.Superfluous.TDataCom
https://www.anti-malware.top/2016/05/18/superfluous-elex/ =>.Superfluous.Elex
https://www.nicolascoolman.com/fr/logiciels-superflus =>.Superfluous.WinSaber
https://www.anti-malware.top/2016/05/12/adware-yessearches/ =>Adware.YesSearches
https://www.anti-malware.top/2016/04/22/adware-installcore/ =>Adware.InstallCore
https://www.nicolascoolman.com/fr/adware-mywebsearch/ =>PUP.Optional.MyWebSearch
https://www.nicolascoolman.com/fr/hijacker-windows/ =>HackTool.WinActivator
https://www.nicolascoolman.com/fr/logiciels-superflus =>.Superfluous.WebitarProduction
https://www.anti-malware.top/2016/05/20/pup-optional-wdsmanpro/ =>PUP.Optional.WdsManPro
https://www.nicolascoolman.com/fr/logiciels-superflus =>.Superfluous.TXQMPC
https://www.nicolascoolman.com/fr/logiciels-superflus =>.Superfluous.WinZipper
https://www.anti-malware.top/2016/09/28/superfluous-popcorntime/ =>.Superfluous.PopcornTime
https://www.nicolascoolman.com/fr/logiciels-superflus =>.Superfluous.Solvusoft
https://www.nicolascoolman.com/fr/repaquetage-et_infections/ =>PUP.Optional.DeskCut
https://www.anti-malware.top/2016/09/22/toolbar-ask/ =>Toolbar.Ask
https://www.anti-malware.top/2016/04/22/heuristic-suspect/ =>Heuristic.Suspect
~ End of the scan, 16456 items in 00h02mn37s (1058)