Publicité
Publicité
Format du document : text/plain
Prévisualisation
Script ZHPFix
FirewallRaz
EmptyPrefetch
EmptyTemp
EmptyFlash
HKLM\SYSTEM\CurrentControlSet\Services\Service KMSELDI =>HackTool.KMSpico
C:\Program Files\KMSpico\Service_KMS.exe =>HackTool.KMSpico
C:\Program Files\KMSpico\AutoPico.exe =>HackTool.KMSpico
C:\WINDOWS\System32\Tasks\AutoPico Daily Restart =>HackTool.KMSpico
C:\WINDOWS\System32\Tasks\KMSAutoNet =>HackTool.AutoKMS
C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe =>.Superfluous.Skillbrains
C:\Program Files (x86)\TorrentsTime Media Player\bin\npTTPlugin.dll =>.Superfluous.TorrentsTime
HKCU\SOFTWARE\MozillaPlugins\torrents-time.com/TTPlugin =>.Superfluous.TorrentsTime
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\TorrentsTime Media Player_is1 =>.Superfluous.TorrentsTime
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1 =>HackTool.KMSpico
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Popcorn Time_is1 =>.Superfluous.PopcornTime
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} =>Heuristic.Suspect
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C} =>Riskware.QuickTime
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Popcorn Time_is1 =>.Superfluous.PopcornTime
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} =>Heuristic.Suspect
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C} =>Riskware.QuickTime
C:\Program Files\KMSpico =>HackTool.KMSpico
C:\Program Files (x86)\Popcorn Time =>.Superfluous.PopcornTime
C:\Program Files (x86)\TorrentsTime Media Player =>.Superfluous.TorrentsTime
C:\Program Files (x86)\Webteh =>.Superfluous.ABTeam
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSpico =>HackTool.KMSpico
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Popcorn Time =>.Superfluous.PopcornTime
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TorrentsTime Media Player =>.Superfluous.TorrentsTime
C:\ProgramData\KMSAutoS =>HackTool.WinActivator
C:\Users\Mehdi\AppData\Local\CrashReportClient =>.Superfluous.CrashReports
C:\Users\Mehdi\AppData\Local\CrashRpt =>.Superfluous.CrashReports
C:\Users\Mehdi\AppData\Local\MSfree Inc =>HackTool.WinActivator
C:\Users\Mehdi\AppData\Local\PopcornTimeDesktop =>.Superfluous.PopcornTime
C:\Program Files (x86)\Popcorn Time\PopcornTimeDesktop.exe =>.Superfluous.PopcornTime
[HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]:{D1CB9370-526E-43DE-951F-3BA3F922E4D3} =>.Superfluous.PopcornTime
[HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]:{11276052-E398-48EE-907C-FE1D5B63F29A} =>.Superfluous.PopcornTime
[HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]:{BE2C5036-BE13-453B-B45F-1A7C3DAAA1C9} =>.Superfluous.PopcornTime
[HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]:{C681F6C0-BF10-4F69-98F1-6CE36614730F} =>.Superfluous.PopcornTime
C:\Users\Mehdi\AppData\Roaming\ROTTR.exe =>Heuristic.Suspect
C:\Users\Mehdi\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_d10lpsik1i8c69.cloudfront.net_0.localstorage =>.Superfluous.CloudfrontNet
C:\Users\Mehdi\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_d10lpsik1i8c69.cloudfront.net_0.localstorage-journal =>.Superfluous.CloudfrontNet
C:\Users\Mehdi\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_d22j4fzzszoii2.cloudfront.net_0.localstorage =>.Superfluous.CloudfrontNet
C:\Users\Mehdi\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_d22j4fzzszoii2.cloudfront.net_0.localstorage-journal =>.Superfluous.CloudfrontNet
C:\Users\Mehdi\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_popcorntime-online.io_0.localstorage =>.Superfluous.PopcornTime
C:\Users\Mehdi\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_popcorntime-online.io_0.localstorage-journal =>.Superfluous.PopcornTime
C:\Users\Mehdi\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.olark.com_0.localstorage =>PUP.Optional.Generic
C:\Users\Mehdi\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.olark.com_0.localstorage-journal =>PUP.Optional.Generic
C:\Users\Mehdi\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.meistertask.com_0.localstorage =>Toolbar.Ask
C:\Users\Mehdi\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.meistertask.com_0.localstorage-journal =>Toolbar.Ask
C:\Users\Mehdi\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_st.chatango.com_0.localstorage =>PUP.Optional.Chatango
C:\Users\Mehdi\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_st.chatango.com_0.localstorage-journal =>PUP.Optional.Chatango
C:\Users\Mehdi\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.metrolyrics.com_0.localstorage =>PUP.Optional.AddLyrics
C:\Users\Mehdi\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.metrolyrics.com_0.localstorage-journal =>PUP.Optional.AddLyrics
C:\Users\Mehdi\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.solvusoft.com_0.localstorage =>.Superfluous.Solvusoft
C:\Users\Mehdi\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.solvusoft.com_0.localstorage-journal =>.Superfluous.Solvusoft
O4 - HKLM\..\Run: [MouseDriver] . (.Pixart Imaging Inc - pximouse.) -- C:\WINDOWS\System32\TiltWheelMouse.exe =>.Pixart Imaging Inc
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe =>.Realtek Semiconductor Corp®
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe =>.Adobe Systems Incorporated®
O4 - HKLM\..\Run: [Connectify Hotspot] . (.Connectify - Connectify Hotspot.) -- C:\Program Files (x86)\Connectify\Connectify.exe =>.Connectify
O4 - HKCU\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\Mehdi\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - HKCU\..\Run: [Mobile Partner] C:\Program Files (x86)\MobileWiFi\MobileWiFi (.not file.)
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] . (.Disc Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files\DAEMON Tools Lite\DTAgent.exe =>.Disc Soft Ltd®
O4 - HKCU\..\Run: [Steam] . (.Valve Corporation - Steam Client Bootstrapper.) -- C:\Program Files (x86)\Steam\Steam.exe =>.Valve®
O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - HKCU\..\Run: [Lync] . (.Microsoft Corporation - Skype for Business.) -- C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe =>.Microsoft Corporation®
O4 - HKCU\..\Run: [Spotify Web Helper] . (.Spotify Ltd - SpotifyWebHelper.) -- C:\Users\Mehdi\AppData\Roaming\Spotify\SpotifyWebHelper.exe =>.Spotify AB®
O4 - HKCU\..\Run: [Spotify] . (.Spotify Ltd - Spotify.) -- C:\Users\Mehdi\AppData\Roaming\Spotify\Spotify.exe =>.Spotify AB®
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_FBC6E093B3A5B7DB613DCC72400D2FA0] . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Mehdi\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_1\amd64] C:\Users\Mehdi\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_1\amd64 (.not file.)
O4 - HKLM\..\Wow6432Node\Run: [Super Charger] . (.MSI - Super Charger.) -- C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe =>.MICRO-STAR INTERNATIONAL CO., LTD.®
O4 - HKLM\..\Wow6432Node\Run: [Live Update] . (.Micro-Star INT'L CO., LTD. - Live Update 6 Application.) -- C:\Program Files (x86)\MSI\Live Update\Live Update.exe =>.MICRO-STAR INTERNATIONAL CO., LTD.®
O4 - HKLM\..\Wow6432Node\Run: [ADSKAppManager] . (.Autodesk, Inc. - Autodesk Desktop App.) -- C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe =>.Autodesk, Inc®
O4 - HKLM\..\Wow6432Node\Run: [PlaysTV] . (.Copyright (c) 2016 Plays.tv, LLC - Plays.tv Video Recorder by Raptr.) -- C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv_launcher.exe =>.Plays.tv, LLC®
O4 - HKLM\..\Wow6432Node\Run: [Raptr] . (.Raptr, Inc - Raptr Desktop App.) -- C:\Program Files (x86)\Raptr Inc\Raptr\raptrstub.exe =>.Raptr, Inc®
O4 - HKLM\..\Wow6432Node\Run: [APSDaemon] . (.Apple Inc. - Apple Push.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe =>.Apple Inc.®
O4 - HKLM\..\Wow6432Node\Run: [Lightshot] . (.Copyright 2009 - Starter Module.) -- C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe =>.Superfluous.Skillbrains
O4 - HKLM\..\Wow6432Node\Run: [GammingApp] . (.Micro-Star Int'l Co., Ltd. - GamingAPP.) -- C:\Program Files (x86)\MSI\MSI Gaming APP\SGamingApp.exe =>.MICRO-STAR INTERNATIONAL CO., LTD.®
O4 - HKLM\..\Wow6432Node\Run: [InternetEverywhere_InternetEverywhere_Launcher.exe] . (...) -- C:\Program Files (x86)\InternetEverywhere\InternetEverywhere_Launcher.exe =>.WebToGo GmbH®
O4 - HKLM\..\Wow6432Node\Run: [ProductUpdater] . (.Copyright © 2015 - ProductUpdater.) -- C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Corporation®
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Corporation®
O4 - HKUS\S-1-5-21-2507512279-3587274663-2026223091-1001\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\Mehdi\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - HKUS\S-1-5-21-2507512279-3587274663-2026223091-1001\..\Run: [Mobile Partner] C:\Program Files (x86)\MobileWiFi\MobileWiFi (.not file.)
O4 - HKUS\S-1-5-21-2507512279-3587274663-2026223091-1001\..\Run: [DAEMON Tools Lite Automount] . (.Disc Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files\DAEMON Tools Lite\DTAgent.exe =>.Disc Soft Ltd®
O4 - HKUS\S-1-5-21-2507512279-3587274663-2026223091-1001\..\Run: [Steam] . (.Valve Corporation - Steam Client Bootstrapper.) -- C:\Program Files (x86)\Steam\Steam.exe =>.Valve®
O4 - HKUS\S-1-5-21-2507512279-3587274663-2026223091-1001\..\Run: [Lync] . (.Microsoft Corporation - Skype for Business.) -- C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe =>.Microsoft Corporation®
O4 - HKUS\S-1-5-21-2507512279-3587274663-2026223091-1001\..\Run: [Spotify Web Helper] . (.Spotify Ltd - SpotifyWebHelper.) -- C:\Users\Mehdi\AppData\Roaming\Spotify\SpotifyWebHelper.exe =>.Spotify AB®
O4 - HKUS\S-1-5-21-2507512279-3587274663-2026223091-1001\..\Run: [Spotify] . (.Spotify Ltd - Spotify.) -- C:\Users\Mehdi\AppData\Roaming\Spotify\Spotify.exe =>.Spotify AB®
O4 - HKUS\S-1-5-21-2507512279-3587274663-2026223091-1001\..\Run: [GoogleChromeAutoLaunch_FBC6E093B3A5B7DB613DCC72400D2FA0] . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - HKUS\S-1-5-21-2507512279-3587274663-2026223091-1001\..\RunOnce: [Uninstall C:\Users\Mehdi\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_1\amd64] C:\Users\Mehdi\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_1\amd64 (.not file.)
O87 - FAEL: "UDP Query User{BFF47150-9B6F-46D9-B5FD-D8B017DFBBFD}C:\users\mehdi\appdata\roaming\vuze leap\vuzeleap.exe" [In-None-P17-TRUE] .(...) -- C:\users\mehdi\appdata\roaming\vuze leap\vuzeleap.exe (.not file.)
O87 - FAEL: "TCP Query User{E34980CE-D6EF-4DCF-8D81-EF517FB5482D}C:\users\mehdi\appdata\roaming\vuze leap\vuzeleap.exe" [In-None-P6-TRUE] .(...) -- C:\users\mehdi\appdata\roaming\vuze leap\vuzeleap.exe (.not file.)
O87 - FAEL: "UDP Query User{D49E54A7-4103-4CA7-87D9-DCBF006099BA}C:\program files\unity 5.0.0b1\editor\unity.exe" [In-None-P17-TRUE] .(...) -- C:\program files\unity 5.0.0b1\editor\unity.exe (.not file.)
O87 - FAEL: "TCP Query User{ABAFD058-4F23-402E-B49C-9110072ADD55}C:\program files\unity 5.0.0b1\editor\unity.exe" [In-None-P6-TRUE] .(...) -- C:\program files\unity 5.0.0b1\editor\unity.exe (.not file.)
FirewallRaz
EmptyPrefetch
EmptyTemp
EmptyFlash
HKLM\SYSTEM\CurrentControlSet\Services\Service KMSELDI =>HackTool.KMSpico
C:\Program Files\KMSpico\Service_KMS.exe =>HackTool.KMSpico
C:\Program Files\KMSpico\AutoPico.exe =>HackTool.KMSpico
C:\WINDOWS\System32\Tasks\AutoPico Daily Restart =>HackTool.KMSpico
C:\WINDOWS\System32\Tasks\KMSAutoNet =>HackTool.AutoKMS
C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe =>.Superfluous.Skillbrains
C:\Program Files (x86)\TorrentsTime Media Player\bin\npTTPlugin.dll =>.Superfluous.TorrentsTime
HKCU\SOFTWARE\MozillaPlugins\torrents-time.com/TTPlugin =>.Superfluous.TorrentsTime
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\TorrentsTime Media Player_is1 =>.Superfluous.TorrentsTime
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1 =>HackTool.KMSpico
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Popcorn Time_is1 =>.Superfluous.PopcornTime
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} =>Heuristic.Suspect
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C} =>Riskware.QuickTime
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Popcorn Time_is1 =>.Superfluous.PopcornTime
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} =>Heuristic.Suspect
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C} =>Riskware.QuickTime
C:\Program Files\KMSpico =>HackTool.KMSpico
C:\Program Files (x86)\Popcorn Time =>.Superfluous.PopcornTime
C:\Program Files (x86)\TorrentsTime Media Player =>.Superfluous.TorrentsTime
C:\Program Files (x86)\Webteh =>.Superfluous.ABTeam
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSpico =>HackTool.KMSpico
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Popcorn Time =>.Superfluous.PopcornTime
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TorrentsTime Media Player =>.Superfluous.TorrentsTime
C:\ProgramData\KMSAutoS =>HackTool.WinActivator
C:\Users\Mehdi\AppData\Local\CrashReportClient =>.Superfluous.CrashReports
C:\Users\Mehdi\AppData\Local\CrashRpt =>.Superfluous.CrashReports
C:\Users\Mehdi\AppData\Local\MSfree Inc =>HackTool.WinActivator
C:\Users\Mehdi\AppData\Local\PopcornTimeDesktop =>.Superfluous.PopcornTime
C:\Program Files (x86)\Popcorn Time\PopcornTimeDesktop.exe =>.Superfluous.PopcornTime
[HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]:{D1CB9370-526E-43DE-951F-3BA3F922E4D3} =>.Superfluous.PopcornTime
[HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]:{11276052-E398-48EE-907C-FE1D5B63F29A} =>.Superfluous.PopcornTime
[HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]:{BE2C5036-BE13-453B-B45F-1A7C3DAAA1C9} =>.Superfluous.PopcornTime
[HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]:{C681F6C0-BF10-4F69-98F1-6CE36614730F} =>.Superfluous.PopcornTime
C:\Users\Mehdi\AppData\Roaming\ROTTR.exe =>Heuristic.Suspect
C:\Users\Mehdi\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_d10lpsik1i8c69.cloudfront.net_0.localstorage =>.Superfluous.CloudfrontNet
C:\Users\Mehdi\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_d10lpsik1i8c69.cloudfront.net_0.localstorage-journal =>.Superfluous.CloudfrontNet
C:\Users\Mehdi\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_d22j4fzzszoii2.cloudfront.net_0.localstorage =>.Superfluous.CloudfrontNet
C:\Users\Mehdi\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_d22j4fzzszoii2.cloudfront.net_0.localstorage-journal =>.Superfluous.CloudfrontNet
C:\Users\Mehdi\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_popcorntime-online.io_0.localstorage =>.Superfluous.PopcornTime
C:\Users\Mehdi\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_popcorntime-online.io_0.localstorage-journal =>.Superfluous.PopcornTime
C:\Users\Mehdi\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.olark.com_0.localstorage =>PUP.Optional.Generic
C:\Users\Mehdi\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.olark.com_0.localstorage-journal =>PUP.Optional.Generic
C:\Users\Mehdi\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.meistertask.com_0.localstorage =>Toolbar.Ask
C:\Users\Mehdi\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.meistertask.com_0.localstorage-journal =>Toolbar.Ask
C:\Users\Mehdi\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_st.chatango.com_0.localstorage =>PUP.Optional.Chatango
C:\Users\Mehdi\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_st.chatango.com_0.localstorage-journal =>PUP.Optional.Chatango
C:\Users\Mehdi\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.metrolyrics.com_0.localstorage =>PUP.Optional.AddLyrics
C:\Users\Mehdi\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.metrolyrics.com_0.localstorage-journal =>PUP.Optional.AddLyrics
C:\Users\Mehdi\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.solvusoft.com_0.localstorage =>.Superfluous.Solvusoft
C:\Users\Mehdi\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.solvusoft.com_0.localstorage-journal =>.Superfluous.Solvusoft
O4 - HKLM\..\Run: [MouseDriver] . (.Pixart Imaging Inc - pximouse.) -- C:\WINDOWS\System32\TiltWheelMouse.exe =>.Pixart Imaging Inc
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe =>.Realtek Semiconductor Corp®
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe =>.Adobe Systems Incorporated®
O4 - HKLM\..\Run: [Connectify Hotspot] . (.Connectify - Connectify Hotspot.) -- C:\Program Files (x86)\Connectify\Connectify.exe =>.Connectify
O4 - HKCU\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\Mehdi\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - HKCU\..\Run: [Mobile Partner] C:\Program Files (x86)\MobileWiFi\MobileWiFi (.not file.)
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] . (.Disc Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files\DAEMON Tools Lite\DTAgent.exe =>.Disc Soft Ltd®
O4 - HKCU\..\Run: [Steam] . (.Valve Corporation - Steam Client Bootstrapper.) -- C:\Program Files (x86)\Steam\Steam.exe =>.Valve®
O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - HKCU\..\Run: [Lync] . (.Microsoft Corporation - Skype for Business.) -- C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe =>.Microsoft Corporation®
O4 - HKCU\..\Run: [Spotify Web Helper] . (.Spotify Ltd - SpotifyWebHelper.) -- C:\Users\Mehdi\AppData\Roaming\Spotify\SpotifyWebHelper.exe =>.Spotify AB®
O4 - HKCU\..\Run: [Spotify] . (.Spotify Ltd - Spotify.) -- C:\Users\Mehdi\AppData\Roaming\Spotify\Spotify.exe =>.Spotify AB®
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_FBC6E093B3A5B7DB613DCC72400D2FA0] . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Mehdi\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_1\amd64] C:\Users\Mehdi\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_1\amd64 (.not file.)
O4 - HKLM\..\Wow6432Node\Run: [Super Charger] . (.MSI - Super Charger.) -- C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe =>.MICRO-STAR INTERNATIONAL CO., LTD.®
O4 - HKLM\..\Wow6432Node\Run: [Live Update] . (.Micro-Star INT'L CO., LTD. - Live Update 6 Application.) -- C:\Program Files (x86)\MSI\Live Update\Live Update.exe =>.MICRO-STAR INTERNATIONAL CO., LTD.®
O4 - HKLM\..\Wow6432Node\Run: [ADSKAppManager] . (.Autodesk, Inc. - Autodesk Desktop App.) -- C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe =>.Autodesk, Inc®
O4 - HKLM\..\Wow6432Node\Run: [PlaysTV] . (.Copyright (c) 2016 Plays.tv, LLC - Plays.tv Video Recorder by Raptr.) -- C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv_launcher.exe =>.Plays.tv, LLC®
O4 - HKLM\..\Wow6432Node\Run: [Raptr] . (.Raptr, Inc - Raptr Desktop App.) -- C:\Program Files (x86)\Raptr Inc\Raptr\raptrstub.exe =>.Raptr, Inc®
O4 - HKLM\..\Wow6432Node\Run: [APSDaemon] . (.Apple Inc. - Apple Push.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe =>.Apple Inc.®
O4 - HKLM\..\Wow6432Node\Run: [Lightshot] . (.Copyright 2009 - Starter Module.) -- C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe =>.Superfluous.Skillbrains
O4 - HKLM\..\Wow6432Node\Run: [GammingApp] . (.Micro-Star Int'l Co., Ltd. - GamingAPP.) -- C:\Program Files (x86)\MSI\MSI Gaming APP\SGamingApp.exe =>.MICRO-STAR INTERNATIONAL CO., LTD.®
O4 - HKLM\..\Wow6432Node\Run: [InternetEverywhere_InternetEverywhere_Launcher.exe] . (...) -- C:\Program Files (x86)\InternetEverywhere\InternetEverywhere_Launcher.exe =>.WebToGo GmbH®
O4 - HKLM\..\Wow6432Node\Run: [ProductUpdater] . (.Copyright © 2015 - ProductUpdater.) -- C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Corporation®
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Corporation®
O4 - HKUS\S-1-5-21-2507512279-3587274663-2026223091-1001\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\Mehdi\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - HKUS\S-1-5-21-2507512279-3587274663-2026223091-1001\..\Run: [Mobile Partner] C:\Program Files (x86)\MobileWiFi\MobileWiFi (.not file.)
O4 - HKUS\S-1-5-21-2507512279-3587274663-2026223091-1001\..\Run: [DAEMON Tools Lite Automount] . (.Disc Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files\DAEMON Tools Lite\DTAgent.exe =>.Disc Soft Ltd®
O4 - HKUS\S-1-5-21-2507512279-3587274663-2026223091-1001\..\Run: [Steam] . (.Valve Corporation - Steam Client Bootstrapper.) -- C:\Program Files (x86)\Steam\Steam.exe =>.Valve®
O4 - HKUS\S-1-5-21-2507512279-3587274663-2026223091-1001\..\Run: [Lync] . (.Microsoft Corporation - Skype for Business.) -- C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe =>.Microsoft Corporation®
O4 - HKUS\S-1-5-21-2507512279-3587274663-2026223091-1001\..\Run: [Spotify Web Helper] . (.Spotify Ltd - SpotifyWebHelper.) -- C:\Users\Mehdi\AppData\Roaming\Spotify\SpotifyWebHelper.exe =>.Spotify AB®
O4 - HKUS\S-1-5-21-2507512279-3587274663-2026223091-1001\..\Run: [Spotify] . (.Spotify Ltd - Spotify.) -- C:\Users\Mehdi\AppData\Roaming\Spotify\Spotify.exe =>.Spotify AB®
O4 - HKUS\S-1-5-21-2507512279-3587274663-2026223091-1001\..\Run: [GoogleChromeAutoLaunch_FBC6E093B3A5B7DB613DCC72400D2FA0] . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - HKUS\S-1-5-21-2507512279-3587274663-2026223091-1001\..\RunOnce: [Uninstall C:\Users\Mehdi\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_1\amd64] C:\Users\Mehdi\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_1\amd64 (.not file.)
O87 - FAEL: "UDP Query User{BFF47150-9B6F-46D9-B5FD-D8B017DFBBFD}C:\users\mehdi\appdata\roaming\vuze leap\vuzeleap.exe" [In-None-P17-TRUE] .(...) -- C:\users\mehdi\appdata\roaming\vuze leap\vuzeleap.exe (.not file.)
O87 - FAEL: "TCP Query User{E34980CE-D6EF-4DCF-8D81-EF517FB5482D}C:\users\mehdi\appdata\roaming\vuze leap\vuzeleap.exe" [In-None-P6-TRUE] .(...) -- C:\users\mehdi\appdata\roaming\vuze leap\vuzeleap.exe (.not file.)
O87 - FAEL: "UDP Query User{D49E54A7-4103-4CA7-87D9-DCBF006099BA}C:\program files\unity 5.0.0b1\editor\unity.exe" [In-None-P17-TRUE] .(...) -- C:\program files\unity 5.0.0b1\editor\unity.exe (.not file.)
O87 - FAEL: "TCP Query User{ABAFD058-4F23-402E-B49C-9110072ADD55}C:\program files\unity 5.0.0b1\editor\unity.exe" [In-None-P6-TRUE] .(...) -- C:\program files\unity 5.0.0b1\editor\unity.exe (.not file.)