~ ZHPDiag v2017.4.20.67 Par Nicolas Coolman (2017/04/20)
~ Démarré par NASRO (Administrator) (2017/04/21 14:33:06)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\NASRO\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\NASRO\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Démarrage du système: Normal (Normal boot)
Windows 10 Pro, 64-bit (Build 15063)

---\\ Navigateurs Internet (4) - 0s
~ GCIE: Google Chrome v57.0.2987.133
~ MFIE: Mozilla Firefox 52.0.2 (x86 fr)
~ OPIE: Opera 44.0.2510.857
~ MSIE: Internet Explorer v11.0.15063.0

---\\ Informations sur les produits Windows (3) - 4s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK

---\\ Logiciels de protection (1) - 8s
Windows Defender (Deactivate)

---\\ Surveillance de Logiciels (1) - 8s
~ Adobe Flash Player 25 PPAPI (Surveillance)

---\\ Logiciels de partage P2P (1) - 8s
~ µTorrent v3.5.0.43580 (P2P)

---\\ Informations sur le système (6) - 0s
~ Operating System: Intel64 Family 6 Model 58 Stepping 9, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 8352.1 MB (54% free) : OK =>.RAM Value
System Restore: Activé (Enable)
System drive C: has 130 GB (27%) free of 476 GB : OK =>.Disk Space

---\\ Mode de connexion au système (3) - 0s
~ Computer Name: NASRO
~ User Name: NASRO
~ Logged in as Administrator

---\\ Enumération des unités disques (3) - 0s
~ Drive C: has 130 GB free of 476 GB (System)
~ Drive E: has 69 GB free of 953 GB
~ Drive N: has 160 GB free of 238 GB

---\\ Etat du Centre de Sécurité Windows (7) - 0s
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK

---\\ Recherche particulière de fichiers génériques (25) - 2s
[MD5.4E09D16BD3D98831C42CFD59E88E5807] - 18/03/2017 - (.Microsoft Corporation - Explorateur Windows.) -- C:\WINDOWS\Explorer.exe [4847928] =>.Microsoft Windows®
[MD5.ECB702B8C5650381C0784F1EEABB97BC] - 18/03/2017 - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\WINDOWS\System32\rundll32.exe [68608] =>.Microsoft Corporation
[MD5.9A4BA96E87A1FD69381249557BDE2BF0] - 18/03/2017 - (.Microsoft Corporation - Application de démarrage de Windows.) -- C:\WINDOWS\System32\Wininit.exe [318232] {330000010E55AA784D99B44BD300000000010E} =>.Microsoft Corporation
[MD5.032BB369103DAC02606FB919F6658F3C] - 18/03/2017 - (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\WINDOWS\System32\wininet.dll [3307008] =>.Microsoft Corporation
[MD5.47FF22F309A19C495E6BDD90DFA92A95] - 18/03/2017 - (.Microsoft Corporation - Application d’ouverture de session Windows.) -- C:\WINDOWS\System32\Winlogon.exe [707584] =>.Microsoft Corporation
[MD5.50CDF68A8EA8A2A9165CD573FA6C42D8] - 18/03/2017 - (.Microsoft Corporation - Bibliothèque de licences.) -- C:\WINDOWS\System32\sppcomapi.dll [414208] =>.Microsoft Corporation
[MD5.0F9FA6A2D4EAE50393DCE473759A9845] - 18/03/2017 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\WINDOWS\System32\dnsapi.dll [661224] =>.Microsoft Windows®
[MD5.3F969D5ADEAB3284ABD500B37D74A8F8] - 18/03/2017 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\WINDOWS\Syswow64\dnsapi.dll [508344] =>.Microsoft Windows®
[MD5.70E14A01193D817004C0F88E767BC59B] - 19/03/2017 - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) -- C:\WINDOWS\System32\fr-FR\user32.dll.mui [19968] =>.Microsoft Corporation
[MD5.AC1928C2F7505BD556C552F153B062AB] - 18/03/2017 - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) -- C:\WINDOWS\System32\drivers\AFD.sys [610712] =>.Microsoft Windows®
[MD5.01733BEEE02E51F712330D5909BD701C] - 18/03/2017 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\WINDOWS\System32\drivers\atapi.sys [29088] =>.Microsoft Windows®
[MD5.B6E5AD7C83A5254DEE9D86023C0E5A81] - 18/03/2017 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\WINDOWS\System32\drivers\Cdfs.sys [93184] =>.Microsoft Corporation
[MD5.ABE77AD954BC3D72F559CF0C381E50BC] - 18/03/2017 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\WINDOWS\System32\drivers\Cdrom.sys [160256] =>.Microsoft Corporation
[MD5.185A4519B7764F4DEF714D890A7A9FD2] - 18/03/2017 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\WINDOWS\System32\drivers\DfsC.sys [150528] =>.Microsoft Corporation
[MD5.DD1A6F4998E7E21564FA9BAFE21C87ED] - 18/03/2017 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\WINDOWS\System32\drivers\HDAudBus.sys [86528] =>.Microsoft Corporation
[MD5.C6C8315E3262FAE460529C6DA2951682] - 18/03/2017 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\WINDOWS\System32\drivers\i8042prt.sys [115200] =>.Microsoft Corporation
[MD5.DCC05E5EAA580C97F13B434FAFACED85] - 18/03/2017 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\System32\drivers\IpNat.sys [214528] =>.Microsoft Corporation
[MD5.F2AD1B72C5A6475FB5FF332E1980DF88] - 18/03/2017 - (.Microsoft Corporation - Minirdr SMB Windows NT.) -- C:\WINDOWS\System32\drivers\MRxSmb.sys [467352] =>.Microsoft Windows®
[MD5.30C2F67EC84EB11B22011620107E0325] - 18/03/2017 - (.Microsoft Corporation - MBT Transport driver.) -- C:\WINDOWS\System32\drivers\netBT.sys [305152] =>.Microsoft Corporation
[MD5.731FD52461C8107E5B19B9AEDBB82BFB] - 18/03/2017 - (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\WINDOWS\System32\drivers\ntfs.sys [2328480] =>.Microsoft Windows®
[MD5.2CC6C325B271C7CA60F374F8F868CB45] - 18/03/2017 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\WINDOWS\System32\drivers\Parport.sys [97792] =>.Microsoft Corporation
[MD5.5279EC98F6218D29EADDFECCC0D80E9A] - 18/03/2017 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [107008] =>.Microsoft Corporation
[MD5.53A01D3FDB701AC5D9DDE4140227E3D9] - 20/03/2017 - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RD.) -- C:\WINDOWS\System32\drivers\rdpdr.sys [183296] =>.Microsoft Corporation
[MD5.2540384EF2EEE5BE930E3FB1061395DC] - 18/03/2017 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\WINDOWS\System32\drivers\tdx.sys [120224] =>.Microsoft Windows®
[MD5.E3429DBBEA3965BB96E24B16EF4A2551] - 18/03/2017 - (.Microsoft Corporation - Volume Shadow Copy driver.) -- C:\WINDOWS\System32\drivers\volsnap.sys [397216] =>.Microsoft Windows®

---\\ Liste des services NT non Microsoft et non désactivés (25) - 3s
O23 - Service: Adguard Service (Adguard Service) . (.Performix LLC - Adguard for Windows.) - C:\Program Files (x86)\Adguard\AdguardSvc.exe =>.Performix LLC®
O23 - Service: AdobeUpdateService (AdobeUpdateService) . (.Adobe Systems Incorporated - Adobe Update Service.) - C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe =>.Adobe Systems Incorporated®
O23 - Service: Advanced SystemCare Service 10 (AdvancedSystemCareService10) . (.IObit - Advanced SystemCare Service.) - C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe =>.IObit Information Technology®
O23 - Service: Adobe Genuine Software Integrity Service (AGSService) . (.Adobe Systems, Incorporated - Adobe Genuine Software Integrity Service.) - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe =>.Adobe Systems Incorporated®
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files (x86)\Bonjour\mDNSResponder.exe =>.Apple Inc.®
O23 - Service: CyberGhost 6 Service (CG6Service) . (.CyberGhost S.R.L - CyberGhost Service.) - C:\Program Files\CyberGhost 6\CyberGhost.Service.exe =>.CyberGhost SRL®
O23 - Service: ESET Service (ekrn) . (.ESET - ESET Service.) - C:\Program Files\ESET\ESET Internet Security\ekrn.exe =>.ESET, spol. s r.o.®
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
O23 - Service: IObit Uninstaller Service (IObitUnSvr) . (.IObit - Uninstall Programs.) - C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe =>.IObit Information Technology®
O23 - Service: Malwarebytes Anti-Exploit Service (MbaeSvc) . (.Malwarebytes Corporation - Malwarebytes Anti-Exploit Service.) - C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-svc.exe =>.Malwarebytes Corporation®
O23 - Service: NLCS Agent (NLCS Agent) . (...) - C:\Program Files (x86)\Classroom Spy Pro\bin\csp_ctrlagentsvc.exe {00E4F4A8FE688E66DA3132725AE1062046}
O23 - Service: NO-IP DUC v4.1.1 (NoIPDUCService4) . (.Copyright © 2012 - ducservice.) - C:\Program Files (x86)\No-IP\ducservice.exe =>.Vitalwerks Internet Solutions
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) . (.NVIDIA Corporation - NVIDIA Container.) - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe =>.NVIDIA Corporation®
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) . (.NVIDIA Corporation - NVIDIA Container.) - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe =>.NVIDIA Corporation®
O23 - Service: NVIDIA Telemetry Container (NvTelemetryContainer) . (.NVIDIA Corporation - NVIDIA Container.) - C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe =>.NVIDIA Corporation®
O23 - Service: RosettaStoneDaemon (RosettaStoneDaemon) . (.Rosetta Stone Ltd. - Rosetta Stone Ltd. application.) - C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneDaemon.exe =>.Rosetta Stone Ltd®
O23 - Service: ScsiAccess (ScsiAccess) . (...) - C:\Program Files (x86)\Photodex\ProShow Producer\ScsiAccess.exe =>.Photodex Corporation®
O23 - Service: TeamViewer 12 (TeamViewer) . (.TeamViewer GmbH - TeamViewer 12.) - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe =>.TeamViewer GmbH®
O23 - Service: Unchecky (Unchecky) . (.RaMMicHaeL - Unchecky Service.) - C:\Program Files (x86)\Unchecky\bin\unchecky_svc.exe =>.Reason Software Company Inc.®
O23 - Service: CLCV0 (UTSCSI) . (...) - C:\Windows\System32\UTSCSI.EXE (.not file.)
O23 - Service: VMware Authorization Service (VMAuthdService) . (.VMware, Inc. - VMware Authorization Service.) - C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe =>.VMware, Inc.®
O23 - Service: VMware DHCP Service (VMnetDHCP) . (.VMware, Inc. - VMware VMnet DHCP service.) - C:\Windows\SysWOW64\vmnetdhcp.exe =>.VMware, Inc.®
O23 - Service: VMware USB Arbitration Service (VMUSBArbService) . (.VMware, Inc. - VMware USB Arbitration Service.) - C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe =>.VMware, Inc.®
O23 - Service: VMware NAT Service (VMware NAT Service) . (.VMware, Inc. - VMware NAT Service.) - C:\Windows\SysWOW64\vmnat.exe =>.VMware, Inc.®
O23 - Service: VMware Workstation Server (VMwareHostd) . (...) - C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe =>.VMware, Inc.®

---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (30) - 20s
SR - Auto [27/03/2017] [ 151312] Adguard Service (Adguard Service) . (.Performix LLC.) - C:\Program Files (x86)\Adguard\AdguardSvc.exe =>.Performix LLC®
SS - Demand [11/04/2017] [ 271448] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe =>.Adobe Systems Incorporated®
SR - Auto [14/03/2017] [ 771672] AdobeUpdateService (AdobeUpdateService) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe =>.Adobe Systems Incorporated®
SR - Auto [21/03/2017] [ 462624] Advanced SystemCare Service 10 (AdvancedSystemCareService10) . (.IObit.) - C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe =>.IObit Information Technology®
SR - Auto [27/02/2017] [ 2227312] Adobe Genuine Software Integrity Service (AGSService) . (.Adobe Systems, Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe =>.Adobe Systems Incorporated®
SR - Auto [12/12/2008] [ 238888] Service Bonjour (Bonjour Service) . (.Apple Inc..) - C:\Program Files (x86)\Bonjour\mDNSResponder.exe =>.Apple Inc.®
SR - Auto [08/03/2017] [ 77872] CyberGhost 6 Service (CG6Service) . (.CyberGhost S.R.L.) - C:\Program Files\CyberGhost 6\CyberGhost.Service.exe =>.CyberGhost SRL®
SR - Auto [14/12/2016] [ 2836296] ESET Service (ekrn) . (.ESET.) - C:\Program Files\ESET\ESET Internet Security\ekrn.exe =>.ESET, spol. s r.o.®
SS - Demand [25/12/2016] [ 1045256] FLEXnet Licensing Service (FLEXnet Licensing Service) . (.Acresso Software Inc..) - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe =>.Acresso Software Inc.®
SS - Auto [10/03/2017] [ 153752] Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SS - Demand [10/03/2017] [ 153752] Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SR - Auto [28/10/2016] [ 360736] IObit Uninstaller Service (IObitUnSvr) . (.IObit.) - C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe =>.IObit Information Technology®
SR - Auto [14/12/2016] [ 155088] Malwarebytes Anti-Exploit Service (MbaeSvc) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-svc.exe =>.Malwarebytes Corporation®
SS - Demand [23/03/2017] [ 172488] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe =>.Mozilla Corporation®
SR - Auto [09/01/2017] [ 2390920] NLCS Agent (NLCS Agent) . (...) - C:\Program Files (x86)\Classroom Spy Pro\bin\csp_ctrlagentsvc.exe {00E4F4A8FE688E66DA3132725AE1062046}
SR - Auto [20/07/2015] [ 12288] NO-IP DUC v4.1.1 (NoIPDUCService4) . (.Copyright © 2012.) - C:\Program Files (x86)\No-IP\ducservice.exe =>.Vitalwerks Internet Solutions
SR - Auto [01/04/2017] [ 464440] NVIDIA LocalSystem Container (NvContainerLocalSystem) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe =>.NVIDIA Corporation®
SS - Demand [01/04/2017] [ 464440] NVIDIA NetworkService Container (NvContainerNetworkService) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe =>.NVIDIA Corporation®
SR - Auto [01/04/2017] [ 462784] NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe =>.NVIDIA Corporation®
SR - Auto [01/04/2017] [ 427064] NVIDIA Telemetry Container (NvTelemetryContainer) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe =>.NVIDIA Corporation®
SR - Auto [19/06/2012] [ 1646608] RosettaStoneDaemon (RosettaStoneDaemon) . (.Rosetta Stone Ltd..) - C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneDaemon.exe =>.Rosetta Stone Ltd®
SR - Auto [30/07/2016] [ 186760] ScsiAccess (ScsiAccess) . (...) - C:\Program Files (x86)\Photodex\ProShow Producer\ScsiAccess.exe =>.Photodex Corporation®
SR - Auto [15/12/2016] [10351856] TeamViewer 12 (TeamViewer) . (.TeamViewer GmbH.) - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe =>.TeamViewer GmbH®
SR - Auto [30/01/2017] [ 304408] Unchecky (Unchecky) . (.RaMMicHaeL.) - C:\Program Files (x86)\Unchecky\bin\unchecky_svc.exe =>.Reason Software Company Inc.®
SS - Demand [20/01/2017] [ 33224] SHAREit Hotspot Service (uSHAREitSvc) . (.SHAREit Technologies Co.Ltd.) - C:\Program Files (x86)\SHAREit Technologies\SHAREit\SHAREit.Service.exe {3E04076D4B53A8436FD2665B5029C627} =>.SHAREit Technologies Co.Ltd
SR - Auto [21/03/2017] [ 99816] VMware Authorization Service (VMAuthdService) . (.VMware, Inc..) - C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe =>.VMware, Inc.®
SR - Auto [21/03/2017] [ 366568] VMware DHCP Service (VMnetDHCP) . (.VMware, Inc..) - C:\Windows\SysWOW64\vmnetdhcp.exe =>.VMware, Inc.®
SR - Auto [20/02/2017] [ 915944] VMware USB Arbitration Service (VMUSBArbService) . (.VMware, Inc..) - C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe =>.VMware, Inc.®
SR - Auto [21/03/2017] [ 400872] VMware NAT Service (VMware NAT Service) . (.VMware, Inc..) - C:\Windows\SysWOW64\vmnat.exe =>.VMware, Inc.®
SR - Auto [21/03/2017] [12482024] VMware Workstation Server (VMwareHostd) . (...) - C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe =>.VMware, Inc.®

---\\ Tâches planifiées en automatique (40) - 8s
[MD5.73395776872F0EE6DA11F92BF6A7A874] [APT] [Adobe Flash Player PPAPI Notifier] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_25_0_0_148_pepper.exe [1277016] (.Activate.) =>.Adobe Systems Incorporated®
[MD5.95FF82767D666AC11CF644FDA976270D] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [271448] (.Activate.) =>.Adobe Systems Incorporated®
[MD5.1AFE04854061063655946BA5B0357385] [APT] [ASC10_PerformanceMonitor] (.IObit.) -- C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe [3332384] (.Activate.) =>.IObit Information Technology®
[MD5.FA7DC6A8D2654BDB57516D20E417FC5E] [APT] [ASC10_SkipUac_NASRO] (.IObit.) -- C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe [7041312] (.Activate.) =>.IObit Information Technology®
[MD5.00000000000000000000000000000000] [APT] [Avast Emergency Update] (...) -- C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty
[MD5.63BB08F1FE94AE8804BCDC4916D4ABCD] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [7175384] (.Activate.) =>.Piriform Ltd®
[MD5.2D8BBF6C7241AAD9EDE7708EBB7B43A4] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752] (.Activate.) =>.Google Inc®
[MD5.2D8BBF6C7241AAD9EDE7708EBB7B43A4] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752] (.Activate.) =>.Google Inc®
[MD5.7C87B6C03A27AF13C97B8DC69DE1E0A8] [APT] [NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}] (.NVIDIA Corporation.) -- C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [464440] (.Activate.) =>.NVIDIA Corporation®
[MD5.1F55B1A2261252AC07AA5D72091A07D4] [APT] [NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}] (.NVIDIA Corporation.) -- C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [947256] (.Activate.) =>.NVIDIA Corporation®
[MD5.69DD9F7494FD774DB0B766310EDD3AAC] [APT] [NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}] (.NVIDIA Corporation.) -- C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [648248] (.Activate.) =>.NVIDIA Corporation®
[MD5.69DD9F7494FD774DB0B766310EDD3AAC] [APT] [NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}] (.NVIDIA Corporation.) -- C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [648248] (.Activate.) =>.NVIDIA Corporation®
[MD5.2A94D2B644B5F0B8BAE2E9A63519F090] [APT] [NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}] (.NVIDIA Corporation.) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [437816] (.Activate.) =>.NVIDIA Corporation®
[MD5.5C1B2A6A17AC43CC01C2C03A238AD1B0] [APT] [NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}] (.NVIDIA Corporation.) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [718904] (.Activate.) =>.NVIDIA Corporation®
[MD5.5C1B2A6A17AC43CC01C2C03A238AD1B0] [APT] [NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}] (.NVIDIA Corporation.) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [718904] (.Activate.) =>.NVIDIA Corporation®
[MD5.06CFB9E9A48F6F6A34E8AEC6B9AF0807] [APT] [Opera scheduled Autoupdate 1484055873] (.Opera Software.) -- C:\Program Files (x86)\Opera\launcher.exe [938072] (.Activate.) =>.Opera Software AS®
[MD5.00000000000000000000000000000000] [APT] [SafeZone scheduled Autoupdate 1491513794] (...) -- C:\Program Files\AVAST Software\SZBrowser\launcher.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty
[MD5.0BD0F3D5DA589B9D1F316F7A61F79A7B] [APT] [Uninstaller_SkipUac_NASRO] (.IObit.) -- C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [4640544] (.Activate.) =>.IObit Information Technology®
[MD5.00000000000000000000000000000000] [APT] [AVAST Software\Avast settings backup] (...) -- C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty
O39 - APT: Unknown - (.Legitimate.) -- C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job [214]
O39 - APT: Adobe Flash Player PPAPI Notifier - (.Adobe Systems Incorporated.) -- C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier [3934] =>.Adobe Systems Incorporated®
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater [3618] =>.Adobe Systems Incorporated®
O39 - APT: ASC10_PerformanceMonitor - (.IObit.) -- C:\WINDOWS\System32\Tasks\ASC10_PerformanceMonitor [2458] =>.IObit Information Technology®
O39 - APT: ASC10_SkipUac_NASRO - (.IObit.) -- C:\WINDOWS\System32\Tasks\ASC10_SkipUac_NASRO [2352] =>.IObit Information Technology®
O39 - APT: Avast Emergency Update - (...) -- C:\WINDOWS\System32\Tasks\Avast Emergency Update [3148] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: CCleanerSkipUAC - (.Piriform Ltd.) -- C:\WINDOWS\System32\Tasks\CCleanerSkipUAC [2218] =>.Piriform Ltd®
O39 - APT: Unknown - (.Legitimate.) -- C:\WINDOWS\System32\Tasks\CreateExplorerShellUnelevatedTask [2588]
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore [3290] =>.Google Inc®
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA [3514] =>.Google Inc®
O39 - APT: NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - (.NVIDIA Corporation.) -- C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} [3398] =>.NVIDIA Corporation®
O39 - APT: NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - (.NVIDIA Corporation.) -- C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} [2968] =>.NVIDIA Corporation®
O39 - APT: NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - (.NVIDIA Corporation.) -- C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} [2984] =>.NVIDIA Corporation®
O39 - APT: NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - (.NVIDIA Corporation.) -- C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} [2744] =>.NVIDIA Corporation®
O39 - APT: NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - (.NVIDIA Corporation.) -- C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} [2838] =>.NVIDIA Corporation®
O39 - APT: NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - (.NVIDIA Corporation.) -- C:\WINDOWS\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} [2786] =>.NVIDIA Corporation®
O39 - APT: NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - (.NVIDIA Corporation.) -- C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} [2956] =>.NVIDIA Corporation®
O39 - APT: Unknown - (.Microsoft Corporation.) -- C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2 [3270] =>.Microsoft Corporation
O39 - APT: Opera scheduled Autoupdate 1484055873 - (.Opera Software.) -- C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1484055873 [3324] =>.Opera Software AS®
O39 - APT: SafeZone scheduled Autoupdate 1491513794 - (...) -- C:\WINDOWS\System32\Tasks\SafeZone scheduled Autoupdate 1491513794 [3376] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: Uninstaller_SkipUac_NASRO - (.IObit.) -- C:\WINDOWS\System32\Tasks\Uninstaller_SkipUac_NASRO [2592] =>.IObit Information Technology®

---\\ Applications lancées au démarrage du système (26) - 2s
O4 - HKLM\..\Run: [SecurityHealth] . (.Microsoft Corporation - Windows Defender notification icon.) -- C:\Program Files\Windows Defender\MSASCuiL.exe =>.Microsoft Windows®
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe =>.Realtek Semiconductor Corp.®
O4 - HKLM\..\Run: [ShadowPlay] . (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\Windows\System32\rundll32.exe =>.Microsoft Corporation
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe =>.Adobe Systems Incorporated®
O4 - HKCU\..\Run: [Advanced SystemCare 10] . (.IObit - Advanced SystemCare 10.) -- C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe =>.IObit Information Technology®
O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - HKCU\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Ltd®
O4 - HKCU\..\Run: [CyberGhost] . (.CyberGhost S.R.L. - CyberGhost.) -- C:\Program Files\CyberGhost 6\CyberGhost.exe =>.CyberGhost SRL®
O4 - HKCU\..\Run: [Adguard] . (.Performix LLC - Adguard for Windows.) -- C:\Program Files (x86)\Adguard\Adguard.exe =>.Performix LLC®
O4 - HKLM\..\Wow6432Node\Run: [NUSB3MON] . (.Renesas Electronics Corporation - USB 3.0 Monitor.) -- C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe =>.Renesas Electronics Corporation®
O4 - HKLM\..\Wow6432Node\Run: [Adobe Creative Cloud] . (.Adobe Systems Incorporated - Adobe Creative Cloud.) -- C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe =>.Adobe Systems Incorporated®
O4 - HKLM\..\Wow6432Node\Run: [SSBkgdUpdate] . (.Nuance Communications, Inc. - SSBkgdUpdate.) -- C:\Program Files (x86)\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe =>.Nuance Communications, Inc.®
O4 - HKLM\..\Wow6432Node\Run: [PaperPort PTD] . (.Nuance Communications, Inc. - PaperPort Print to Desktop for NT.) -- C:\Program Files (x86)\ScanSoft\PaperPort\pptd40nt.exe =>.Nuance Communications, Inc.®
O4 - HKLM\..\Wow6432Node\Run: [PPort11reminder] . (.Nuance Communications, Inc. - Ereg.) -- C:\Program Files (x86)\ScanSoft\PaperPort\Ereg\Ereg.exe =>.Nuance Communications, Inc.®
O4 - HKLM\..\Wow6432Node\Run: [BrMfcWnd] . (.Copyright (C) 2005 - 2012 Brother Industries, Ltd. - Status Monitor Application.) -- C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe
O4 - HKLM\..\Wow6432Node\Run: [ControlCenter3] . (.Brother Industries, Ltd. - ControlCenter Program.) -- C:\Program Files (x86)\Brother\ControlCenter3\BrCtrCen.exe =>.Brother Industries, Ltd.
O4 - HKLM\..\Wow6432Node\Run: [Malwarebytes Anti-Exploit] . (.Malwarebytes Corporation - Malwarebytes Anti-Exploit.) -- C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae.exe =>.Malwarebytes Corporation®
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe =>.Oracle America, Inc.®
O4 - HKLM\..\Wow6432Node\Run: [vmware-tray.exe] . (.VMware, Inc. - VMware Tray Process.) -- C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe =>.VMware, Inc.®
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe {330000004C80D5F9985076B09C00010000004C} =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe {330000004C80D5F9985076B09C00010000004C} =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-1217029009-741007575-3189162165-1001\..\Run: [Advanced SystemCare 10] . (.IObit - Advanced SystemCare 10.) -- C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe =>.IObit Information Technology®
O4 - HKUS\S-1-5-21-1217029009-741007575-3189162165-1001\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - HKUS\S-1-5-21-1217029009-741007575-3189162165-1001\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Ltd®
O4 - HKUS\S-1-5-21-1217029009-741007575-3189162165-1001\..\Run: [CyberGhost] . (.CyberGhost S.R.L. - CyberGhost.) -- C:\Program Files\CyberGhost 6\CyberGhost.exe =>.CyberGhost SRL®
O4 - HKUS\S-1-5-21-1217029009-741007575-3189162165-1001\..\Run: [Adguard] . (.Performix LLC - Adguard for Windows.) -- C:\Program Files (x86)\Adguard\Adguard.exe =>.Performix LLC®

---\\ Processus lancés (63) - 5s
[MD5.F6574CBAB0F38361DA073718E9867001] - (.NVIDIA Corporation - NVIDIA Container.) -- C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462784] [PID.3044] =>.NVIDIA Corporation®
[MD5.D167F5F4F9BB9CF16642C6334E3E231C] - (.Performix LLC - Adguard for Windows.) -- C:\Program Files (x86)\Adguard\AdguardSvc.exe [151312] [PID.1724] =>.Performix LLC®
[MD5.7C87B6C03A27AF13C97B8DC69DE1E0A8] - (.NVIDIA Corporation - NVIDIA Container.) -- C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [464440] [PID.3448] =>.NVIDIA Corporation®
[MD5.3F56903E124E820AEECE6D471583C6C1] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe [238888] [PID.3768] =>.Apple Inc.®
[MD5.79EE5A2B3BF3685AF9B7AC4780371A25] - (.Adobe Systems Incorporated - Adobe Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [771672] [PID.4128] =>.Adobe Systems Incorporated®
[MD5.8AFFFDA081CFF3057391FEDBBB483601] - (.Copyright @. All rights reserved. - UTSCSI Application.) -- C:\Windows\SysWOW64\UTSCSI.EXE [45056] [PID.4140]
[MD5.FE563E18FDB2AB6F0A291FE024200D4C] - (.Malwarebytes Corporation - Malwarebytes Anti-Exploit Service.) -- C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-svc.exe [155088] [PID.4188] =>.Malwarebytes Corporation®
[MD5.2B889AB9973E6620F1E7E651F71D7E0E] - (.VMware, Inc. - VMware VMnet DHCP service.) -- C:\Windows\SysWOW64\vmnetdhcp.exe [366568] [PID.4196] =>.VMware, Inc.®
[MD5.0A3393F99FF0453617169467B1A9E6C5] - (.VMware, Inc. - VMware USB Arbitration Service.) -- C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe [915944] [PID.4204] =>.VMware, Inc.®
[MD5.EAB94587A301A7BDFAC6EA5904EFE1E3] - (...) -- C:\Program Files (x86)\Classroom Spy Pro\bin\csp_ctrlagentsvc.exe [2390920] [PID.4212] {00E4F4A8FE688E66DA3132725AE1062046}
[MD5.518D5E0B00EADB80C3F242E6C4189380] - (.VMware, Inc. - VMware Authorization Service.) -- C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe [99816] [PID.4224] =>.VMware, Inc.®
[MD5.CC465ECBC1700B2D91E152ED9165994A] - (.Rosetta Stone Ltd. - Rosetta Stone Ltd. application.) -- C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneDaemon.exe [1646608] [PID.4264] =>.Rosetta Stone Ltd®
[MD5.958E956E119EB7B9ABA142AFED1B5FF4] - (...) -- C:\Program Files (x86)\Photodex\ProShow Producer\ScsiAccess.exe [186760] [PID.4276] =>.Photodex Corporation®
[MD5.0D2701107D2AA3033660E3F5E9C25AC4] - (.VMware, Inc. - VMware NAT Service.) -- C:\Windows\SysWOW64\vmnat.exe [400872] [PID.4284] =>.VMware, Inc.®
[MD5.64FFFE33EA909D062193DA385964F087] - (.NVIDIA Corporation - NVIDIA Container.) -- C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [427064] [PID.4332] =>.NVIDIA Corporation®
[MD5.20A45C0EBFABDCAF6FB3BCF6867EB145] - (.RaMMicHaeL - Unchecky Service.) -- C:\Program Files (x86)\Unchecky\bin\unchecky_svc.exe [304408] [PID.4340] =>.Reason Software Company Inc.®
[MD5.A32EA26C90A47B2BC93D7B0B94994B11] - (.Adobe Systems, Incorporated - Adobe Genuine Software Integrity Service.) -- C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2227312] [PID.4644] =>.Adobe Systems Incorporated®
[MD5.44449A0EB8EBD8DCBC3ED4BB62BA3A5F] - (.TeamViewer GmbH - TeamViewer 12.) -- C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10351856] [PID.4888] =>.TeamViewer GmbH®
[MD5.3B402C7A9C66772ABFE674E3725C6B99] - (.Malwarebytes Corporation - Malwarebytes Anti-Exploit 64bit tasks.) -- C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.exe [413136] [PID.5284] =>.Malwarebytes Corporation®
[MD5.5D62EFC4A29F41811449027FE11C0963] - (.CyberGhost S.R.L - CyberGhost Service.) -- C:\Program Files\CyberGhost 6\CyberGhost.Service.exe [77872] [PID.5532] =>.CyberGhost SRL®
[MD5.14E2F50D9E361AB98FD216F1765D55FB] - (...) -- C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe [12482024] [PID.3164] =>.VMware, Inc.®
[MD5.FEEB4E9E1B1B6D543D53AD6C75E34838] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files (x86)\Google\Update\1.3.33.3\GoogleCrashHandler.exe [288848] [PID.6772] =>.Google Inc®
[MD5.70300CB4D361A58E8F91C0C36E956D1F] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files (x86)\Google\Update\1.3.33.3\GoogleCrashHandler64.exe [366672] [PID.6804] =>.Google Inc®
[MD5.5A38F3BAD50558F0E09D696ACF612D9E] - (.Copyright © 2012 - ducservice.) -- C:\Program Files (x86)\No-IP\ducservice.exe [12288] [PID.9364] =>.Vitalwerks Internet Solutions
[MD5.CD6FE4D2E29D70D9E2AA587DE5978A15] - (.IObit - Uninstall Programs.) -- C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe [360736] [PID.9656] =>.IObit Information Technology®
[MD5.1CFADAA64D34D92AB64887802D1F33FE] - (.IObit - Advanced SystemCare Service.) -- C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe [462624] [PID.3608] =>.IObit Information Technology®
[MD5.D3590D0F65BBD8A61C814360B5E8AF48] - (.RaMMicHaeL - Unchecky Background Process.) -- C:\Program Files (x86)\Unchecky\bin\unchecky_bg.exe [624920] [PID.2244] =>.Reason Software Company Inc.®
[MD5.07EEB16A187B3019EE10132B1CA55FCA] - (.NVIDIA Corporation - NVIDIA Container.) -- C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe [427064] [PID.5528] =>.NVIDIA Corporation®
[MD5.9CEA55C62D576B462571C590476F682C] - (.ESET - ESET Main GUI.) -- C:\Program Files\ESET\ESET Internet Security\egui.exe [7091840] [PID.6440] =>.ESET, spol. s r.o.®
[MD5.1AFE04854061063655946BA5B0357385] - (.IObit - Performance Monitor.) -- C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe [3332384] [PID.4980] =>.IObit Information Technology®
[MD5.564853B8B14AC6F3A0C9E718EB5E6532] - (...) -- C:\Program Files (x86)\Classroom Spy Pro\bin\csp_ctrlagent.exe [2964872] [PID.12328] {00E4F4A8FE688E66DA3132725AE1062046}
[MD5.52F5B6497C3FDC6499B33B9424E93E93] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16776192] [PID.6940] =>.Realtek Semiconductor Corp.®
[MD5.883FA56199D91A96FE1D1B35659B4248] - (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe [4001848] [PID.6316] =>.Tonec Inc.
[MD5.8840A6E6C26C35D89D890DFFE15C5BDD] - (.CyberGhost S.R.L. - CyberGhost.) -- C:\Program Files\CyberGhost 6\CyberGhost.exe [1191472] [PID.7432] =>.CyberGhost SRL®
[MD5.8C2BE2C8E53180D983C5D4EB8B2C0C73] - (.NVIDIA Corporation - NVIDIA Capture Server.) -- C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe [7548984] [PID.8604] =>.NVIDIA Corporation®
[MD5.2AA682BCE5D0A192EA686B5C3DD93684] - (.Performix LLC - Adguard for Windows.) -- C:\Program Files (x86)\Adguard\Adguard.exe [5622032] [PID.11668] =>.Performix LLC®
[MD5.B289C20C10B241F6016FECD92B267098] - (.Tonec Inc. - Internet Download Manager agent for click m.) -- C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe [275512] [PID.6376] =>.Tonec Inc.®
[MD5.43296C7A3AD60917617EB05DB65FDE55] - (.NVIDIA Corporation - NVIDIA ShadowPlay Helper.) -- C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe [545848] [PID.4152] =>.NVIDIA Corporation®
[MD5.82E06CED2DAB758DAEF0960FCE735849] - (.NVIDIA Corporation - NVIDIA Share.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe [1456184] [PID.7896] =>.NVIDIA Corporation®
[MD5.66661B397F7DF0AD5AD1FA75D72D6F39] - (.IObit - Advanced SystemCare 10.) -- C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe [3920672] [PID.2820] =>.IObit Information Technology®
[MD5.51C8885B6A00904C0252704C9FB0F43A] - (.Renesas Electronics Corporation - USB 3.0 Monitor.) -- C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288] [PID.5508] =>.Renesas Electronics Corporation®
[MD5.86E8837A74367B9F713A441106CCDF7D] - (.Malwarebytes Corporation - Malwarebytes Anti-Exploit.) -- C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae.exe [2645968] [PID.6748] =>.Malwarebytes Corporation®
[MD5.395CB6E8C67BFB1063AD86987909C184] - (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288] [PID.5780] =>.Oracle America, Inc.®
[MD5.82E06CED2DAB758DAEF0960FCE735849] - (.NVIDIA Corporation - NVIDIA Share.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe [1456184] [PID.10420] =>.NVIDIA Corporation®
[MD5.63310237B854B615EF399ED44D4CD3D3] - (.Node.js - NVIDIA Web Helper Service.) -- C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe [15548984] [PID.12572] =>.NVIDIA Corporation®
[MD5.2269768074F6A93E454BA384ED9652E2] - (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe [9288408] [PID.11624] =>.Piriform Ltd®
[MD5.C21B5DD80E635547D807ADA10B44FFAD] - (.IObit - UninstallerMonitor.) -- C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe [2275616] [PID.4468] =>.IObit Information Technology®
[MD5.5D1DBC65EDEE3F51A7B4BB3752444307] - (...) -- C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.11.110.0_x64__kzf8qxf38zg5c\SkypeHost.exe [73728] [PID.4924] =>.Skype Technologies
[MD5.570372DDA58408056F4708F2DBE1CA3B] - (.BitTorrent Inc. - µTorrent.) -- C:\Users\NASRO\AppData\Roaming\uTorrent\uTorrent.exe [2235072] [PID.8048]
[MD5.92A8BF958CAA40BB04BA6547DD7CFAC4] - (.Copyright (C) 2010 - BitTorrent Antivirus - Powered by Bitdefend.) -- C:\Users\NASRO\AppData\Roaming\uTorrent\VirusGuard\BitTorrentAntivirus.exe [128512] [PID.12028]
[MD5.A7FF6C0F51E18EC684C38093C63231F3] - (...) -- C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.214.10010.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe [19456] [PID.12352] =>.Microsoft Corporation
[MD5.EC820250BBF2AC99B27DD3A6F3A995EB] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1111896] [PID.9368] =>.Google Inc®
[MD5.EC820250BBF2AC99B27DD3A6F3A995EB] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1111896] [PID.8176] =>.Google Inc®
[MD5.EC820250BBF2AC99B27DD3A6F3A995EB] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1111896] [PID.10516] =>.Google Inc®
[MD5.EC820250BBF2AC99B27DD3A6F3A995EB] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1111896] [PID.8984] =>.Google Inc®
[MD5.EC820250BBF2AC99B27DD3A6F3A995EB] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1111896] [PID.5080] =>.Google Inc®
[MD5.EC820250BBF2AC99B27DD3A6F3A995EB] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1111896] [PID.10584] =>.Google Inc®
[MD5.EC820250BBF2AC99B27DD3A6F3A995EB] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1111896] [PID.2660] =>.Google Inc®
[MD5.EC820250BBF2AC99B27DD3A6F3A995EB] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1111896] [PID.2344] =>.Google Inc®
[MD5.EC820250BBF2AC99B27DD3A6F3A995EB] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1111896] [PID.3032] =>.Google Inc®
[MD5.EC820250BBF2AC99B27DD3A6F3A995EB] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1111896] [PID.10892] =>.Google Inc®
[MD5.EC820250BBF2AC99B27DD3A6F3A995EB] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1111896] [PID.3468] =>.Google Inc®
[MD5.33595EB453CA775F49A61FE3C1E91B7D] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\NASRO\Downloads\Programs\ZHPDiag3.exe [2719232] [PID.6112] =>.Nicolas Coolman

---\\ Google Chrome, Démarrage,Recherche,Extensions (29) - 0s
G0 - GCSP: Preferences [User Data\Default][HomePage] http://cdn.prophet.rocks
G0 - GCSP: Preferences [User Data\Default][HomePage] http://consent.google.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://local.adguard.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://psych.prophet.rocks
G0 - GCSP: Preferences [User Data\Default][HomePage] http://ssl.google-analytics.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://ssl.gstatic.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google-analytics.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google.fr =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.gstatic.com =>.Google Inc.
G0 - GCSP: Secure Preferences [User Data\Default][HomePage] http://www.google.fr =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [aapbdbdomjkkjkaonfhkkikfgjllcleb] __MSG_8969005060131950570__ =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [aapocclcgogkmnckokdopfmhonfmgoek] Google Chrome manifest =>.Google Inc. =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [aegfbpchoheaflicfmggkmlmcccpjpgd] __MSG_extName__
G2 - GCE: Preference [User Data\Default] [alikckkmddkoooodkchoheabgakpopmg] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Google Chrome manifest =>.Google Inc. =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [bbmegnmpleoagolcnjnejdacakedpcgd] IObit Surfing Protection & Ads Removal =>.IObit
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [ekjblaihiicbgjibfipjoepkmondnnbd] __MSG_extName__
G2 - GCE: Preference [User Data\Default] [elafbihhbfmfihdflghclaclcilcnmie] Show Facebook Computer Vision Tags
G2 - GCE: Preference [User Data\Default] [fcachklhcihfinmagjnlomehfdhndhep] Toolkit For Facebook
G2 - GCE: Preference [User Data\Default] [felcaaldnbdncclmgdcncolpebgiejap] Google Chrome manifest =>.Google Inc. =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [ghbmnnjooekpmoecnnnilnnbdlolhkhi] Google Chrome manifest =>.Google Inc. =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [gighmmpiobklfepjocnamgkkbiglidom] Google Chrome manifest =>.Google Inc. =>.Wladimir Palant
G2 - GCE: Preference [User Data\Default] [ngpampappnmepgilojfohadhhmbhlaek] IDM Integration Module =>.IDM Computer Solutions, Inc.
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [pkedcjkdefgpdelpbcmbmeomcjbeemfm] Chrome Media Router =>.Google Inc.

---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (9) - 3s
M0 - MFSP: prefs.js [NASRO - ps9whlyp.default] http://www.startpage.com/
P2 - EXT FILE: (.CookieKiller - Remove cookies for selected sites..) -- C:\Users\NASRO\AppData\Roaming\Mozilla\Firefox\Profiles\ps9whlyp.default\extensions\cookiekiller@joseph.moran.xpi =>.CookieKiller
P2 - EXT FILE: (.Searchonymous - Search anonymously on Google while sta.) -- C:\Users\NASRO\AppData\Roaming\Mozilla\Firefox\Profiles\ps9whlyp.default\extensions\jid1-WF1v8esuNM9pRg@jetpack.xpi =>.Searchonymous
P2 - EXT FILE: (.S3.Google Translator - Translation of selected text, introduc.) -- C:\Users\NASRO\AppData\Roaming\Mozilla\Firefox\Profiles\ps9whlyp.default\extensions\s3google@translator.xpi =>.S3.Google Translator
P2 - EXT FILE: (.YUKI Piro Hiroshi - Text Link.) -- C:\Users\NASRO\AppData\Roaming\Mozilla\Firefox\Profiles\ps9whlyp.default\extensions\{54BB9F3F-07E5-486c-9B39-C7398B99391C}.xpi =>.YUKI Piro Hiroshi
P2 - EXT FILE: (.Fasterfox - Fasterfox provides performance and net.) -- C:\Users\NASRO\AppData\Roaming\Mozilla\Firefox\Profiles\ps9whlyp.default\extensions\{c36177c0-224a-11da-8cd6-0800200c9a91}.xpi =>.Fasterfox
P2 - EXT FILE: (.Adblock Plus - Ads were yesterday!.) -- C:\Users\NASRO\AppData\Roaming\Mozilla\Firefox\Profiles\ps9whlyp.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi =>.Adblock Plus
P2 - EXT FILE: (.Aaron Boodman; http://youngpup.net/ - A User Script Manager for Firefox.) -- C:\Users\NASRO\AppData\Roaming\Mozilla\Firefox\Profiles\ps9whlyp.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi =>.Aaron Boodman; http://youngpup.net/
P2 - FPN: [HKLM] [@photodex.com/PhotodexPresenter] - (.Photodex Corporation.) -- C:\Program Files (x86)\Photodex Presenter\npPxPlay.dll =>.Photodex Corporation

---\\ Opera, Démarrage,Recherche,Plugins (5) - 0s
B0 - OCSP: Preferences [NASRO][HomePage] http://www.google.fr/
B2 - EXT: [adblockforopera] C:\Users\NASRO\AppData\Roaming\Opera Software\Opera Stable\Extensions\aobdicepooefnbaeokijohmhjlleamfj =>.adblockforopera
B2 - EXT: [yeeliberto] C:\Users\NASRO\AppData\Roaming\Opera Software\Opera Stable\Extensions\ddaaomamldbkhjcaknhnibnefidplcci
B2 - EXT: [richtr] C:\Users\NASRO\AppData\Roaming\Opera Software\Opera Stable\Extensions\ibnombjmjocaccigcefonnipcnlaeaed
B2 - EXT: [derjanb] C:\Users\NASRO\AppData\Roaming\Opera Software\Opera Stable\Extensions\mfdhdgbonjidekjkjmjaneanmdmpmidf

---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (15) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank =>.Microsoft Corporation
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphan =>.Microsoft Internet Explorer

---\\ Internet Explorer,Proxy Management (3) - 0s
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKLM\SYSTEM\CurrentControlSet\services\NlaSvc\Parameters\Internet\ManualProxies [] =>.Microsoft

---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: VMApplet=

---\\ Etude du fichier hosts (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (96)

---\\ Browser Helper Object de navigateur (BHO) (4) - 0s
O2 - BHO: IDM Helper [64Bits] - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Internet Download Manager, Tonec Inc. - IDM Browser Helper Object.) -- C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll =>.Tonec Inc.®
O2 - BHO: ExplorerWnd Helper [64Bits] - {10921475-03CE-4E04-90CE-E2E7EF20C814} (.Orphan.)
O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} (.Orphan.)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} (.Orphan.)

---\\ Raccourcis Global Startup (181) - 15s
O4 - GS\Desktop [Administrateur]: Assistant Mise à niveau de Windows 10.lnk . (.Microsoft Corporation - Assistant Mise à niveau de Windows 10.) C:\Windows10Upgrade\Windows10UpgraderApp.exe =>.Microsoft Corporation®
O4 - GS\Desktop [Administrateur]: CyberGhost 6.lnk . (.CyberGhost S.R.L. - CyberGhost.) C:\Program Files\CyberGhost 6\CyberGhost.exe =>.CyberGhost SRL®
O4 - GS\Desktop [Administrateur]: FL Studio 12 (64bit).lnk . (.Image-Line - FL Studio.) C:\Program Files (x86)\Image-Line\FL Studio 12\FL64.exe =>.Image Line®
O4 - GS\Desktop [Administrateur]: FL Studio 12.lnk . (.Image-Line - FL Studio.) C:\Program Files (x86)\Image-Line\FL Studio 12\FL.exe =>.Image Line®
O4 - GS\Desktop [Administrateur]: Internet Download Manager.lnk . (.Tonec Inc. - Internet Download Manager (IDM).) C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - GS\Desktop [Administrateur]: Macrorit Disk Partition Expert Professional.lnk . (.Macrorit Inc. - .) C:\Program Files (x86)\Macrorit\Disk Partition Expert\dm.exe =>.Macrorit Inc.
O4 - GS\Desktop [Administrateur]: Multi-Drive.lnk . (...) C:\Users\NASRO\AppData\Roaming\Nox\bin\MultiPlayerManager.exe =>.Duodian Online Technology Co. Ltd.®
O4 - GS\Desktop [Administrateur]: Nox.lnk . (.Duodian Technology Co. Ltd. - Nox App Player.) C:\Users\NASRO\AppData\Roaming\Nox\bin\Nox.exe =>.Duodian Online Technology Co. Ltd.®
O4 - GS\Desktop [Administrateur]: Photoshop.lnk . (.Adobe Systems, Incorporated - .) C:\Program Files (x86)\Adobe\Adobe Photoshop CC 2017\Photoshop.exe =>.Adobe Systems, Incorporated
O4 - GS\Desktop [Administrateur]: Qin Rack Version.lnk . (.Kong Audio - Kong Audio Instruments Shell.) C:\Users\NASRO\Documents\Kong Audio\Qin Rack Version\Qin_RV.exe
O4 - GS\Desktop [Administrateur]: Ra.lnk . (.Native Instruments Software Synthesis GmbH - RA.) C:\Program Files (x86)\East West\Ra\RA.exe =>.Native Instruments Software Synthesis GmbH
O4 - GS\Desktop [Administrateur]: Shutdown8.lnk . (.Bandisoft.com - Shutdown8.) C:\Users\NASRO\AppData\Local\Shutdown8\Shutdown8.exe =>.Bandisoft®
O4 - GS\Desktop [Administrateur]: TBS Cover Editor.lnk . (...) C:\Program Files (x86)\TBS Cover Editor\CEditor.exe
O4 - GS\Desktop [Administrateur]: Téléchargements.lnk . (...) C:\Users\NASRO\Downloads
O4 - GS\Desktop [Administrateur]: WNetWatcher.lnk . (.NirSoft - Wireless Network Watcher.) C:\Program Files (x86)\WNetWatcher\WNetWatcher.exe =>.Nir Sofer®
O4 - GS\Desktop [Administrateur]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\NASRO\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Desktop [Administrateur]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\NASRO\AppData\Roaming\uTorrent\uTorrent.exe
O4 - GS\Quicklaunch [Administrateur]: Aiseesoft Convertisseur Vidéo Ultime.lnk . (.Aiseesoft - Aiseesoft Video Converter Ultimate.) C:\Program Files (x86)\Aiseesoft Studio\Aiseesoft Video Converter Ultimate\Aiseesoft Video Converter Ultimate.exe {11219D7B19701B1B2831D82675C408025572} =>.Aiseesoft
O4 - GS\Quicklaunch [Administrateur]: CyberGhost 6.lnk . (.CyberGhost S.R.L. - CyberGhost.) C:\Program Files\CyberGhost 6\CyberGhost.exe =>.CyberGhost SRL®
O4 - GS\Quicklaunch [Administrateur]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Administrateur]: Picasa 3.lnk . (.Google Inc. - Picasa.) C:\Program Files (x86)\Google\Picasa3\Picasa3.exe =>.Google Inc®
O4 - GS\Quicklaunch [Administrateur]: Pro Evolution Soccer 2017.lnk . (.Konami Digital Entertainment Co., Ltd. - Pro Evolution Soccer 2017.) C:\Program Files (x86)\Pro Evolution Soccer 2017\PES2017.exe =>.Konami Digital Entertainment Co., Ltd.
O4 - GS\Quicklaunch [Administrateur]: ProShow Producer.lnk . (.Photodex - ProShow.) C:\Program Files (x86)\Photodex\ProShow Producer\proshow.exe {145A3753C59E90FA1A5409CDD64B0B0E} =>.Photodex
O4 - GS\Quicklaunch [Administrateur]: Shutdown8.lnk . (.Bandisoft.com - Shutdown8.) C:\Users\NASRO\AppData\Local\Shutdown8\Shutdown8.exe =>.Bandisoft®
O4 - GS\Quicklaunch [Administrateur]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\NASRO\AppData\Roaming\uTorrent\uTorrent.exe
O4 - GS\sendTo [Administrateur]: Destinataire de télécopie.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Administrateur]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\WINDOWS\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Administrateur]: TeamViewer.lnk . (.TeamViewer GmbH - TeamViewer 12.) C:\Program Files (x86)\TeamViewer\TeamViewer.exe --sendto =>.TeamViewer GmbH®
O4 - GS\sendTo [Administrateur]: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Administrateur]: AIMP.lnk . (.AIMP DevTeam - AIMP.) C:\Program Files (x86)\AIMP\AIMP.exe =>.Artem Izmaylov®
O4 - GS\TaskBar [Administrateur]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [Administrateur]: Hcon Security Testing Framework.lnk . (.www.Hcon.in - Hcon Security Testing Framework.) C:\Program Files (x86)\HconSTFPortable\HconSTFPortable.exe
O4 - GS\TaskBar [Administrateur]: Media Player Classic.lnk . (.MPC-HC Team - MPC-HC x64.) C:\Program Files (x86)\K-Lite Codec Pack\MPC-HC64\mpc-hc64.exe =>.MPC-HC Team
O4 - GS\TaskBar [Administrateur]: On-Screen Keyboard.lnk . (.Microsoft Corporation - Accessibilité au Clavier visuel.) C:\WINDOWS\system32\osk.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Administrateur]: Opera.lnk . (.Opera Software - Opera Internet Browser.) C:\Program Files (x86)\Opera\launcher.exe =>.Opera Software AS®
O4 - GS\TaskBar [Administrateur]: Start Tor Browser.lnk . (.Mozilla Corporation - Tor Browser.) C:\Users\NASRO\Desktop\Tor Browser\Browser\firefox.exe =>.Mozilla Corporation
O4 - GS\Programs [Administrateur]: CyberGhost 6.lnk . (.CyberGhost S.R.L. - .) C:\Program Files (x86)\CyberGhost 6\CyberGhost.exe =>.CyberGhost S.R.L.
O4 - GS\Programs [Administrateur]: Fonctionnalités optionnelles.lnk . (.Microsoft Corporation - Assistance des fonctionnalités à la demande.) C:\Windows\System32\fodhelper.exe =>.Microsoft Corporation
O4 - GS\Programs [Administrateur]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\NASRO\AppData\Local\Microsoft\OneDrive\OneDrive.exe {330000004C80D5F9985076B09C00010000004C} =>.Microsoft Corporation
O4 - GS\Desktop [defaultuser0]: Assistant Mise à niveau de Windows 10.lnk . (.Microsoft Corporation - Assistant Mise à niveau de Windows 10.) C:\Windows10Upgrade\Windows10UpgraderApp.exe =>.Microsoft Corporation®
O4 - GS\Desktop [defaultuser0]: CyberGhost 6.lnk . (.CyberGhost S.R.L. - CyberGhost.) C:\Program Files\CyberGhost 6\CyberGhost.exe =>.CyberGhost SRL®
O4 - GS\Desktop [defaultuser0]: FL Studio 12 (64bit).lnk . (.Image-Line - FL Studio.) C:\Program Files (x86)\Image-Line\FL Studio 12\FL64.exe =>.Image Line®
O4 - GS\Desktop [defaultuser0]: FL Studio 12.lnk . (.Image-Line - FL Studio.) C:\Program Files (x86)\Image-Line\FL Studio 12\FL.exe =>.Image Line®
O4 - GS\Desktop [defaultuser0]: Internet Download Manager.lnk . (.Tonec Inc. - Internet Download Manager (IDM).) C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - GS\Desktop [defaultuser0]: Macrorit Disk Partition Expert Professional.lnk . (.Macrorit Inc. - .) C:\Program Files (x86)\Macrorit\Disk Partition Expert\dm.exe =>.Macrorit Inc.
O4 - GS\Desktop [defaultuser0]: Multi-Drive.lnk . (...) C:\Users\NASRO\AppData\Roaming\Nox\bin\MultiPlayerManager.exe =>.Duodian Online Technology Co. Ltd.®
O4 - GS\Desktop [defaultuser0]: Nox.lnk . (.Duodian Technology Co. Ltd. - Nox App Player.) C:\Users\NASRO\AppData\Roaming\Nox\bin\Nox.exe =>.Duodian Online Technology Co. Ltd.®
O4 - GS\Desktop [defaultuser0]: Photoshop.lnk . (.Adobe Systems, Incorporated - .) C:\Program Files (x86)\Adobe\Adobe Photoshop CC 2017\Photoshop.exe =>.Adobe Systems, Incorporated
O4 - GS\Desktop [defaultuser0]: Qin Rack Version.lnk . (.Kong Audio - Kong Audio Instruments Shell.) C:\Users\NASRO\Documents\Kong Audio\Qin Rack Version\Qin_RV.exe
O4 - GS\Desktop [defaultuser0]: Ra.lnk . (.Native Instruments Software Synthesis GmbH - RA.) C:\Program Files (x86)\East West\Ra\RA.exe =>.Native Instruments Software Synthesis GmbH
O4 - GS\Desktop [defaultuser0]: Shutdown8.lnk . (.Bandisoft.com - Shutdown8.) C:\Users\NASRO\AppData\Local\Shutdown8\Shutdown8.exe =>.Bandisoft®
O4 - GS\Desktop [defaultuser0]: TBS Cover Editor.lnk . (...) C:\Program Files (x86)\TBS Cover Editor\CEditor.exe
O4 - GS\Desktop [defaultuser0]: Téléchargements.lnk . (...) C:\Users\NASRO\Downloads
O4 - GS\Desktop [defaultuser0]: WNetWatcher.lnk . (.NirSoft - Wireless Network Watcher.) C:\Program Files (x86)\WNetWatcher\WNetWatcher.exe =>.Nir Sofer®
O4 - GS\Desktop [defaultuser0]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\NASRO\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Desktop [defaultuser0]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\NASRO\AppData\Roaming\uTorrent\uTorrent.exe
O4 - GS\Quicklaunch [defaultuser0]: Aiseesoft Convertisseur Vidéo Ultime.lnk . (.Aiseesoft - Aiseesoft Video Converter Ultimate.) C:\Program Files (x86)\Aiseesoft Studio\Aiseesoft Video Converter Ultimate\Aiseesoft Video Converter Ultimate.exe {11219D7B19701B1B2831D82675C408025572} =>.Aiseesoft
O4 - GS\Quicklaunch [defaultuser0]: CyberGhost 6.lnk . (.CyberGhost S.R.L. - CyberGhost.) C:\Program Files\CyberGhost 6\CyberGhost.exe =>.CyberGhost SRL®
O4 - GS\Quicklaunch [defaultuser0]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [defaultuser0]: Picasa 3.lnk . (.Google Inc. - Picasa.) C:\Program Files (x86)\Google\Picasa3\Picasa3.exe =>.Google Inc®
O4 - GS\Quicklaunch [defaultuser0]: Pro Evolution Soccer 2017.lnk . (.Konami Digital Entertainment Co., Ltd. - Pro Evolution Soccer 2017.) C:\Program Files (x86)\Pro Evolution Soccer 2017\PES2017.exe =>.Konami Digital Entertainment Co., Ltd.
O4 - GS\Quicklaunch [defaultuser0]: ProShow Producer.lnk . (.Photodex - ProShow.) C:\Program Files (x86)\Photodex\ProShow Producer\proshow.exe {145A3753C59E90FA1A5409CDD64B0B0E} =>.Photodex
O4 - GS\Quicklaunch [defaultuser0]: Shutdown8.lnk . (.Bandisoft.com - Shutdown8.) C:\Users\NASRO\AppData\Local\Shutdown8\Shutdown8.exe =>.Bandisoft®
O4 - GS\Quicklaunch [defaultuser0]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\NASRO\AppData\Roaming\uTorrent\uTorrent.exe
O4 - GS\sendTo [defaultuser0]: Destinataire de télécopie.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [defaultuser0]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\WINDOWS\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [defaultuser0]: TeamViewer.lnk . (.TeamViewer GmbH - TeamViewer 12.) C:\Program Files (x86)\TeamViewer\TeamViewer.exe --sendto =>.TeamViewer GmbH®
O4 - GS\sendTo [defaultuser0]: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\TaskBar [defaultuser0]: AIMP.lnk . (.AIMP DevTeam - AIMP.) C:\Program Files (x86)\AIMP\AIMP.exe =>.Artem Izmaylov®
O4 - GS\TaskBar [defaultuser0]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [defaultuser0]: Hcon Security Testing Framework.lnk . (.www.Hcon.in - Hcon Security Testing Framework.) C:\Program Files (x86)\HconSTFPortable\HconSTFPortable.exe
O4 - GS\TaskBar [defaultuser0]: Media Player Classic.lnk . (.MPC-HC Team - MPC-HC x64.) C:\Program Files (x86)\K-Lite Codec Pack\MPC-HC64\mpc-hc64.exe =>.MPC-HC Team
O4 - GS\TaskBar [defaultuser0]: On-Screen Keyboard.lnk . (.Microsoft Corporation - Accessibilité au Clavier visuel.) C:\WINDOWS\system32\osk.exe =>.Microsoft Corporation
O4 - GS\TaskBar [defaultuser0]: Opera.lnk . (.Opera Software - Opera Internet Browser.) C:\Program Files (x86)\Opera\launcher.exe =>.Opera Software AS®
O4 - GS\TaskBar [defaultuser0]: Start Tor Browser.lnk . (.Mozilla Corporation - Tor Browser.) C:\Users\NASRO\Desktop\Tor Browser\Browser\firefox.exe =>.Mozilla Corporation
O4 - GS\Programs [defaultuser0]: CyberGhost 6.lnk . (.CyberGhost S.R.L. - .) C:\Program Files (x86)\CyberGhost 6\CyberGhost.exe =>.CyberGhost S.R.L.
O4 - GS\Programs [defaultuser0]: Fonctionnalités optionnelles.lnk . (.Microsoft Corporation - Assistance des fonctionnalités à la demande.) C:\Windows\System32\fodhelper.exe =>.Microsoft Corporation
O4 - GS\Programs [defaultuser0]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\NASRO\AppData\Local\Microsoft\OneDrive\OneDrive.exe {330000004C80D5F9985076B09C00010000004C} =>.Microsoft Corporation
O4 - GS\Desktop [NASRO]: Assistant Mise à niveau de Windows 10.lnk . (.Microsoft Corporation - Assistant Mise à niveau de Windows 10.) C:\Windows10Upgrade\Windows10UpgraderApp.exe =>.Microsoft Corporation®
O4 - GS\Desktop [NASRO]: CyberGhost 6.lnk . (.CyberGhost S.R.L. - CyberGhost.) C:\Program Files\CyberGhost 6\CyberGhost.exe =>.CyberGhost SRL®
O4 - GS\Desktop [NASRO]: FL Studio 12 (64bit).lnk . (.Image-Line - FL Studio.) C:\Program Files (x86)\Image-Line\FL Studio 12\FL64.exe =>.Image Line®
O4 - GS\Desktop [NASRO]: FL Studio 12.lnk . (.Image-Line - FL Studio.) C:\Program Files (x86)\Image-Line\FL Studio 12\FL.exe =>.Image Line®
O4 - GS\Desktop [NASRO]: Internet Download Manager.lnk . (.Tonec Inc. - Internet Download Manager (IDM).) C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - GS\Desktop [NASRO]: Macrorit Disk Partition Expert Professional.lnk . (.Macrorit Inc. - .) C:\Program Files (x86)\Macrorit\Disk Partition Expert\dm.exe =>.Macrorit Inc.
O4 - GS\Desktop [NASRO]: Multi-Drive.lnk . (...) C:\Users\NASRO\AppData\Roaming\Nox\bin\MultiPlayerManager.exe =>.Duodian Online Technology Co. Ltd.®
O4 - GS\Desktop [NASRO]: Nox.lnk . (.Duodian Technology Co. Ltd. - Nox App Player.) C:\Users\NASRO\AppData\Roaming\Nox\bin\Nox.exe =>.Duodian Online Technology Co. Ltd.®
O4 - GS\Desktop [NASRO]: Photoshop.lnk . (.Adobe Systems, Incorporated - .) C:\Program Files (x86)\Adobe\Adobe Photoshop CC 2017\Photoshop.exe =>.Adobe Systems, Incorporated
O4 - GS\Desktop [NASRO]: Qin Rack Version.lnk . (.Kong Audio - Kong Audio Instruments Shell.) C:\Users\NASRO\Documents\Kong Audio\Qin Rack Version\Qin_RV.exe
O4 - GS\Desktop [NASRO]: Ra.lnk . (.Native Instruments Software Synthesis GmbH - RA.) C:\Program Files (x86)\East West\Ra\RA.exe =>.Native Instruments Software Synthesis GmbH
O4 - GS\Desktop [NASRO]: Shutdown8.lnk . (.Bandisoft.com - Shutdown8.) C:\Users\NASRO\AppData\Local\Shutdown8\Shutdown8.exe =>.Bandisoft®
O4 - GS\Desktop [NASRO]: TBS Cover Editor.lnk . (...) C:\Program Files (x86)\TBS Cover Editor\CEditor.exe
O4 - GS\Desktop [NASRO]: Téléchargements.lnk . (...) C:\Users\NASRO\Downloads
O4 - GS\Desktop [NASRO]: WNetWatcher.lnk . (.NirSoft - Wireless Network Watcher.) C:\Program Files (x86)\WNetWatcher\WNetWatcher.exe =>.Nir Sofer®
O4 - GS\Desktop [NASRO]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\NASRO\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Desktop [NASRO]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\NASRO\AppData\Roaming\uTorrent\uTorrent.exe
O4 - GS\Quicklaunch [NASRO]: Aiseesoft Convertisseur Vidéo Ultime.lnk . (.Aiseesoft - Aiseesoft Video Converter Ultimate.) C:\Program Files (x86)\Aiseesoft Studio\Aiseesoft Video Converter Ultimate\Aiseesoft Video Converter Ultimate.exe {11219D7B19701B1B2831D82675C408025572} =>.Aiseesoft
O4 - GS\Quicklaunch [NASRO]: CyberGhost 6.lnk . (.CyberGhost S.R.L. - CyberGhost.) C:\Program Files\CyberGhost 6\CyberGhost.exe =>.CyberGhost SRL®
O4 - GS\Quicklaunch [NASRO]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [NASRO]: Picasa 3.lnk . (.Google Inc. - Picasa.) C:\Program Files (x86)\Google\Picasa3\Picasa3.exe =>.Google Inc®
O4 - GS\Quicklaunch [NASRO]: Pro Evolution Soccer 2017.lnk . (.Konami Digital Entertainment Co., Ltd. - Pro Evolution Soccer 2017.) C:\Program Files (x86)\Pro Evolution Soccer 2017\PES2017.exe =>.Konami Digital Entertainment Co., Ltd.
O4 - GS\Quicklaunch [NASRO]: ProShow Producer.lnk . (.Photodex - ProShow.) C:\Program Files (x86)\Photodex\ProShow Producer\proshow.exe {145A3753C59E90FA1A5409CDD64B0B0E} =>.Photodex
O4 - GS\Quicklaunch [NASRO]: Shutdown8.lnk . (.Bandisoft.com - Shutdown8.) C:\Users\NASRO\AppData\Local\Shutdown8\Shutdown8.exe =>.Bandisoft®
O4 - GS\Quicklaunch [NASRO]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\NASRO\AppData\Roaming\uTorrent\uTorrent.exe
O4 - GS\sendTo [NASRO]: Destinataire de télécopie.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [NASRO]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\WINDOWS\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [NASRO]: TeamViewer.lnk . (.TeamViewer GmbH - TeamViewer 12.) C:\Program Files (x86)\TeamViewer\TeamViewer.exe --sendto =>.TeamViewer GmbH®
O4 - GS\sendTo [NASRO]: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\TaskBar [NASRO]: AIMP.lnk . (.AIMP DevTeam - AIMP.) C:\Program Files (x86)\AIMP\AIMP.exe =>.Artem Izmaylov®
O4 - GS\TaskBar [NASRO]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [NASRO]: Hcon Security Testing Framework.lnk . (.www.Hcon.in - Hcon Security Testing Framework.) C:\Program Files (x86)\HconSTFPortable\HconSTFPortable.exe
O4 - GS\TaskBar [NASRO]: Media Player Classic.lnk . (.MPC-HC Team - MPC-HC x64.) C:\Program Files (x86)\K-Lite Codec Pack\MPC-HC64\mpc-hc64.exe =>.MPC-HC Team
O4 - GS\TaskBar [NASRO]: On-Screen Keyboard.lnk . (.Microsoft Corporation - Accessibilité au Clavier visuel.) C:\WINDOWS\system32\osk.exe =>.Microsoft Corporation
O4 - GS\TaskBar [NASRO]: Opera.lnk . (.Opera Software - Opera Internet Browser.) C:\Program Files (x86)\Opera\launcher.exe =>.Opera Software AS®
O4 - GS\TaskBar [NASRO]: Start Tor Browser.lnk . (.Mozilla Corporation - Tor Browser.) C:\Users\NASRO\Desktop\Tor Browser\Browser\firefox.exe =>.Mozilla Corporation
O4 - GS\Programs [NASRO]: CyberGhost 6.lnk . (.CyberGhost S.R.L. - .) C:\Program Files (x86)\CyberGhost 6\CyberGhost.exe =>.CyberGhost S.R.L.
O4 - GS\Programs [NASRO]: Fonctionnalités optionnelles.lnk . (.Microsoft Corporation - Assistance des fonctionnalités à la demande.) C:\Windows\System32\fodhelper.exe =>.Microsoft Corporation
O4 - GS\Programs [NASRO]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\NASRO\AppData\Local\Microsoft\OneDrive\OneDrive.exe {330000004C80D5F9985076B09C00010000004C} =>.Microsoft Corporation
O4 - GS\CommonDesktop [Public]: Adguard.lnk . (.Performix LLC - Adguard for Windows.) C:\Program Files (x86)\Adguard\Adguard.exe =>.Performix LLC®
O4 - GS\CommonDesktop [Public]: Adobe Creative Cloud.lnk . (.Adobe Systems Incorporated - Adobe Creative Cloud.) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe =>.Adobe Systems Incorporated®
O4 - GS\CommonDesktop [Public]: Advanced SystemCare 10.lnk . (.IObit - Advanced SystemCare 10.) C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe /manual =>.IObit Information Technology®
O4 - GS\CommonDesktop [Public]: AIMP.lnk . (.AIMP DevTeam - AIMP.) C:\Program Files (x86)\AIMP\AIMP.exe =>.Artem Izmaylov®
O4 - GS\CommonDesktop [Public]: Aiseesoft Convertisseur Vidéo Ultime.lnk . (.Aiseesoft - Aiseesoft Video Converter Ultimate.) C:\Program Files (x86)\Aiseesoft Studio\Aiseesoft Video Converter Ultimate\Aiseesoft Video Converter Ultimate.exe {11219D7B19701B1B2831D82675C408025572} =>.Aiseesoft
O4 - GS\CommonDesktop [Public]: Assassins Creed IV Black Flag.lnk . (...) C:\Program Files (x86)\Assassins Creed IV Black Flag\AC4BFSP.exe
O4 - GS\CommonDesktop [Public]: Bandizip.lnk . (...) C:\Program Files\Bandizip\Bandizip64.exe =>.Bandisoft®
O4 - GS\CommonDesktop [Public]: Brother Utilities.lnk . (.Brother Industories, Ltd. - Application Launcher.) C:\Program Files (x86)\Brother\BrLauncher\BrLauncher.exe =>.Brother Industories, Ltd.
O4 - GS\CommonDesktop [Public]: Camtasia 9.lnk . (.TechSmith Corporation - .) C:\Program Files (x86)\TechSmith\Camtasia 9\CamtasiaStudio.exe =>.TechSmith Corporation
O4 - GS\CommonDesktop [Public]: CCleaner.lnk . (.Piriform Ltd - CCleaner.) C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Ltd®
O4 - GS\CommonDesktop [Public]: GeForce Experience.lnk . (.NVIDIA Corporation - NVIDIA GeForce Experience.) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe =>.NVIDIA Corporation®
O4 - GS\CommonDesktop [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\CommonDesktop [Public]: IObit Uninstaller.lnk . (.IObit - Uninstall Programs.) C:\Program Files (x86)\IObit\IObit Uninstaller\Uninstaler_SkipUac.exe =>.IObit Information Technology®
O4 - GS\CommonDesktop [Public]: Kontakt 5.lnk . (.Native Instruments GmbH - .) C:\Program Files (x86)\Native Instruments\Kontakt 5\Kontakt 5.exe =>.Native Instruments GmbH
O4 - GS\CommonDesktop [Public]: LibreOffice 5.2.lnk . (.The Document Foundation - .) C:\Program Files (x86)\LibreOffice 5\program\soffice.exe =>.The Document Foundation
O4 - GS\CommonDesktop [Public]: LUXONIX Purity.lnk . (...) C:\Program Files (x86)\LUXONIX\Purity\Purity.exe
O4 - GS\CommonDesktop [Public]: Maui META 3G ver 6.1316.1.lnk . (.MediaTek Inc. - MauiMETA MFC Application.) C:\Program Files (x86)\MediaTek\Maui META 3G ver 6.1316.1\Meta2_3G.exe =>.MediaTek Inc.
O4 - GS\CommonDesktop [Public]: MegaDownloader.lnk . (.Copyright © 2015 - MegaDownloader.) C:\Program Files\MegaDownloader\MegaDownloader.exe
O4 - GS\CommonDesktop [Public]: Mouse Server.lnk . (.wifimouse.necta.us - MouseServer.) C:\Program Files (x86)\Mouse Server\MouseServer.exe =>.wifimouse.necta.us
O4 - GS\CommonDesktop [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\CommonDesktop [Public]: Notepad++.lnk . (.Don HO don.h@free.fr - Notepad++ : a free (GNU) source code editor.) C:\Program Files\Notepad++\notepad++.exe =>.Notepad++®
O4 - GS\CommonDesktop [Public]: Opera.lnk . (.Opera Software - Opera Internet Browser.) C:\Program Files (x86)\Opera\launcher.exe =>.Opera Software AS®
O4 - GS\CommonDesktop [Public]: Picasa 3.lnk . (.Google Inc. - Picasa.) C:\Program Files (x86)\Google\Picasa3\Picasa3.exe =>.Google Inc®
O4 - GS\CommonDesktop [Public]: ProShow Producer.lnk . (.Photodex - ProShow.) C:\Program Files (x86)\Photodex\ProShow Producer\proshow.exe {145A3753C59E90FA1A5409CDD64B0B0E} =>.Photodex
O4 - GS\CommonDesktop [Public]: Rosetta Stone.lnk . (...) C:\Program Files (x86)\Rosetta Stone\Rosetta Stone Language Training\Rosetta Stone.exe =>.Rosetta Stone Ltd®
O4 - GS\CommonDesktop [Public]: SDFormatter.lnk . (.TRENDY Corporation - Format Tool for SD Card [Normal Area Only].) C:\Program Files (x86)\SDA\SD Formatter\SDFormatter.exe =>.TRENDY Corporation®
O4 - GS\CommonDesktop [Public]: SHAREit.lnk . (.SHAREit Technologies Co.Ltd - SHAREit.) C:\Program Files (x86)\SHAREit Technologies\SHAREit\SHAREit.exe {3E04076D4B53A8436FD2665B5029C627} =>.SHAREit Technologies Co.Ltd
O4 - GS\CommonDesktop [Public]: TeamViewer 12.lnk . (.TeamViewer GmbH - TeamViewer 12.) C:\Program Files (x86)\TeamViewer\TeamViewer.exe =>.TeamViewer GmbH®
O4 - GS\CommonDesktop [Public]: UltraISO.lnk . (.EZB Systems, Inc. - UltraISO Premium.) C:\Program Files (x86)\UltraISO\UltraISO.exe =>.EZB Systems, Inc.
O4 - GS\CommonDesktop [Public]: Unchecky.lnk . (.RaMMicHaeL - Unchecky.) C:\Program Files (x86)\Unchecky\unchecky.exe =>.Reason Software Company Inc.®
O4 - GS\CommonDesktop [Public]: VLC media player.lnk . (.VideoLAN - VLC media player.) C:\Program Files (x86)\VideoLAN\VLC\vlc.exe =>.VideoLAN®
O4 - GS\CommonDesktop [Public]: VMware Workstation Pro.lnk . (.VMware, Inc. - VMware Workstation.) C:\Program Files (x86)\VMware\VMware Workstation\vmware.exe =>.VMware, Inc.®
O4 - GS\CommonDesktop [Public]: حماية الدفع المصرفي.lnk . (.ESET - .) C:\Program Files (x86)\ESET\ESET Internet Security\ecmd.exe /startprotectedbrowser =>.ESET
O4 - GS\Programs [Public]: CyberGhost 6.lnk . (.CyberGhost S.R.L. - .) C:\Program Files (x86)\CyberGhost 6\CyberGhost.exe =>.CyberGhost S.R.L.
O4 - GS\Programs [Public]: Fonctionnalités optionnelles.lnk . (.Microsoft Corporation - Assistance des fonctionnalités à la demande.) C:\Windows\System32\fodhelper.exe =>.Microsoft Corporation
O4 - GS\Programs [Public]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\NASRO\AppData\Local\Microsoft\OneDrive\OneDrive.exe {330000004C80D5F9985076B09C00010000004C} =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Accessories [Public]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) C:\WINDOWS\system32\notepad.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Math Input Panel.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\mip.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.) C:\WINDOWS\system32\mspaint.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Quick Assist.lnk . (.Microsoft Corporation - Quick Assist.) C:\WINDOWS\system32\quickassist.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Connexion Bureau à distance.) C:\WINDOWS\system32\mstsc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - Outil Capture d’écran.) C:\WINDOWS\system32\SnippingTool.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Steps Recorder.lnk . (.Microsoft Corporation - Enregistreur d’actions.) C:\WINDOWS\system32\psr.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Fax and Scan.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\WINDOWS\system32\WFS.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Application Windows Wordpad.) C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: XPS Viewer.lnk . (.Microsoft Corporation - Visionneuse XPS.) C:\WINDOWS\system32\xpsrchvw.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Table des caractères.) C:\WINDOWS\system32\charmap.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Adobe Creative Cloud.lnk . (.Adobe Systems Incorporated - Adobe Creative Cloud.) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe =>.Adobe Systems Incorporated®
O4 - GS\ProgramsCommon [Public]: Adobe Photoshop CC 2017.lnk . (.Adobe Systems, Incorporated - Adobe Photoshop CC 2017.) C:\Program Files\Adobe\Adobe Photoshop CC 2017\Photoshop.exe =>.Adobe Systems Incorporated®
O4 - GS\ProgramsCommon [Public]: Assassins Creed IV Black Flag.lnk . (...) C:\Program Files (x86)\Assassins Creed IV Black Flag\AC4BFSP.exe
O4 - GS\ProgramsCommon [Public]: Assistant Mise à niveau de Windows 10.lnk . (.Microsoft Corporation - Assistant Mise à niveau de Windows 10.) C:\Windows10Upgrade\Windows10UpgraderApp.exe =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\ProgramsCommon [Public]: Grand Theft Auto V.lnk . (.Rockstar Games - Grand Theft Auto V Launcher.) C:\Program Files (x86)\Grand Theft Auto V\GTAVLauncher.exe =>.Rockstar Games
O4 - GS\ProgramsCommon [Public]: Immersive Control Panel.lnk . (.Microsoft Corporation - Windows Control Panel.) C:\WINDOWS\System32\Control.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Maui META 3G ver 6.1316.1.lnk . (.MediaTek Inc. - MauiMETA MFC Application.) C:\Program Files (x86)\MediaTek\Maui META 3G ver 6.1316.1\Meta2_3G.exe =>.MediaTek Inc.
O4 - GS\ProgramsCommon [Public]: MiracastView.lnk . (.Microsoft Corporation - MiracastView.) C:\WINDOWS\MiracastView\MiracastView.exe =>.Microsoft Windows®
O4 - GS\ProgramsCommon [Public]: Mouse Server.lnk . (.wifimouse.necta.us - MouseServer.) C:\Program Files (x86)\Mouse Server\MouseServer.exe =>.wifimouse.necta.us
O4 - GS\ProgramsCommon [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\ProgramsCommon [Public]: Opera.lnk . (.Opera Software - Opera Internet Browser.) C:\Program Files (x86)\Opera\launcher.exe =>.Opera Software AS®
O4 - GS\ProgramsCommon [Public]: PrintDialog.lnk . (.Microsoft Corporation - Print Dialog.) C:\WINDOWS\PrintDialog\PrintDialog.exe =>.Microsoft Windows®
O4 - GS\ProgramsCommon [Public]: TeamViewer 12.lnk . (.TeamViewer GmbH - TeamViewer 12.) C:\Program Files (x86)\TeamViewer\TeamViewer.exe =>.TeamViewer GmbH®
O4 - GS\ProgramsCommon [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation

---\\ Modification Domaine/Adresses DNS (2) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\..\{5B5D74F6-CDA2-11E6-BCE1-D02788706DAB}: NameServer = 208.67.222.123,208.67.220.123 =>.OpenDNS, LLC DNS
O17 - HKLM\System\CCS\Services\Tcpip\..\{f2d375ec-5bd3-4ac3-b0dd-1bf98e981bb3}: DhcpNameServer = 192.168.1.1 0.0.0.0 =>.Local IP Adress

---\\ Protocole additionnel (22) - 0s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\SysWOW64\itss.dll =>.Microsoft Corporation
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\SysWOW64\inetcomm.dll =>.Microsoft Corporation
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\SysWOW64\itss.dll =>.Microsoft Corporation
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\SysWOW64\tbauth.dll =>.Microsoft Corporation
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: windows.tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\SysWOW64\tbauth.dll =>.Microsoft Corporation
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll =>.Microsoft Corporation
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll =>.Microsoft Corporation
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll =>.Microsoft Corporation

---\\ Tâches CLSID du registre (3) - 2s
O40 - TASK: {4520E8A9-AF06-4122-859B-E4B655B29B36} - (...) -- C:\WINDOWS\system32\apprepsync.dll (.not file.) [0] (.Orphan.) =>.Superfluous.Orphan
O40 - TASK: {8BE43714-C64C-4A12-9D4D-E3E869828E9D} - (...) -- C:\WINDOWS\system32\ErrorDetailsUpdate.dll (.not file.) [0] (.Orphan.) =>.Superfluous.Orphan
O40 - TASK: {CD249402-33CE-43E4-B3BC-C1A82FB69456} - (...) -- C:\WINDOWS\system32\ErrorDetailsUpdate.dll (.not file.) [0] (.Orphan.) =>.Superfluous.Orphan

---\\ Logiciels installés (133) - 13s
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- uTorrent
O42 - Logiciel: Adguard - (.Performix LLC.) [HKLM][64Bits] -- {685F6AB3-7C61-42D1-AE5B-3864E48D1035} =>.Performix LLC
O42 - Logiciel: Adguard - (.Performix LLC.) [HKLM][64Bits] -- {e2a82ed3-dba7-43f6-8ef3-e303140c55dd} =>.Performix LLC®
O42 - Logiciel: Adobe Creative Cloud - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Creative Cloud =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Flash Player 25 PPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player PPAPI =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Photoshop - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {4A519918-6F4E-4F67-BAD5-842542094C0C} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Photoshop CC 2017 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- PHSP_18_1 =>.Adobe Systems Incorporated®
O42 - Logiciel: Advanced SystemCare 10 - (.IObit.) [HKLM][64Bits] -- Advanced SystemCare_is1 =>.IObit Information Technology®
O42 - Logiciel: AIMP - (.AIMP DevTeam.) [HKLM][64Bits] -- AIMP =>.Artem Izmaylov®
O42 - Logiciel: Aiseesoft Convertisseur Vidéo Ultime 9.0.20 - (.Aiseesoft Studio.) [HKLM][64Bits] -- {BD446D04-7426-4a27-9B0B-33B0C386F71B}_is1 {11219D7B19701B1B2831D82675C408025572} =>.Aiseesoft Studio
O42 - Logiciel: Android_Driver - (.Android Communication Equipment Co. Ltd..) [HKLM][64Bits] -- Android_Driver =>.Android Communication Equipment Co. Ltd.
O42 - Logiciel: Ansel - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel =>.NVIDIA Corporation
O42 - Logiciel: Arabic World Strings - (.Arabic World PLugins.) [HKLM][64Bits] -- Arabic World Strings1.0
O42 - Logiciel: ASIO4ALL - (.Michael Tippach.) [HKLM][64Bits] -- ASIO4ALL =>.Michael Tippach
O42 - Logiciel: Assassins Creed IV Black Flag - (..) [HKLM][64Bits] -- QXNzYXNzaW5zQ3JlZWRJVkJsYWNrRmxhZw==_is1
O42 - Logiciel: Assistant Mise à niveau de Windows 10 - (.Microsoft Corporation.) [HKLM][64Bits] -- {D5C69738-B486-402E-85AC-2456D98A64E4} =>.Microsoft Corporation®
O42 - Logiciel: Avira Connect v1.2.77.41287 - (.Avira Operations GmbH & Co. KG.) [HKLM][64Bits] -- {7774002B-60B3-4146-BF82-5BF767D468B8} =>.Avira Operations GmbH & Co. KG
O42 - Logiciel: Bandizip - (.Bandisoft.com.) [HKLM][64Bits] -- Bandizip {21DD227A5592B54FCE649D9838FAC06B} =>.Bandisoft.com
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {07287123-B8AC-41CE-8346-3D777245C35B} =>.Apple Inc.
O42 - Logiciel: Brother MFL-Pro Suite DCP-195C - (.Brother Industries, Ltd..) [HKLM][64Bits] -- {6BF66AED-3EA4-4106-B240-5CE96C9B76B0} =>.Macrovision Corporation®
O42 - Logiciel: BugOff 1.10 - (.Soeperman Enterprises Ltd..) [HKLM][64Bits] -- BugOff
O42 - Logiciel: Camtasia 9 - (.TechSmith Corporation.) [HKLM][64Bits] -- {48cb006a-7b5b-4a48-98fd-fbd7af456b0d} =>.TechSmith Corporation®
O42 - Logiciel: Camtasia 9 - (.TechSmith Corporation.) [HKLM][64Bits] -- {D8A1F37A-B11B-4451-830D-6A243ADE2591} =>.TechSmith Corporation
O42 - Logiciel: Camtasia 9 9.0.1.1422 - (.TechSmith Corporation.) [HKLM][64Bits] -- Camtasia 9 9.0.1.1422 =>.TechSmith Corporation
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner =>.Piriform Ltd®
O42 - Logiciel: CyberGhost 6 - (.CyberGhost S.R.L..) [HKLM][64Bits] -- CyberGhost 6_is1 =>.CyberGhost SRL®
O42 - Logiciel: DUNE 2 - (.Synapse Audio Software.) [HKLM][64Bits] -- DUNE 2_is1
O42 - Logiciel: East West Ra - (..) [HKLM][64Bits] -- East West Ra
O42 - Logiciel: ESET Internet Security - (.ESET, spol. s r.o..) [HKLM][64Bits] -- {BCBD68E0-391C-4992-B3D4-9435C36C954D} =>.ESET, spol. s r.o.
O42 - Logiciel: FL Studio 12 - (.Image-Line.) [HKLM][64Bits] -- FL Studio 12 =>.Image Line®
O42 - Logiciel: FL Studio ASIO - (.Image-Line.) [HKLM][64Bits] -- FL Studio ASIO =>.Image Line®
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome =>.Google Inc®
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} =>.Google Inc.
O42 - Logiciel: Grand Theft Auto V Update v1.36 - (..) [HKLM][64Bits] -- R3JhbmRUaGVmdEF1dG9W_is1
O42 - Logiciel: HEAT UP 2 - (.IGNITE VST.) [HKLM][64Bits] -- {60EEA7E1-117D-4342-84C4-ABFB6835DBCE}
O42 - Logiciel: IL Download Manager - (.Image-Line.) [HKLM][64Bits] -- IL Download Manager =>.Image Line®
O42 - Logiciel: Intel(R) C++ Redistributables on IA-32 - (.Intel Corporation.) [HKLM][64Bits] -- {317059CB-7642-4F2E-89C0-62E69D4074B7} =>.Intel Corporation
O42 - Logiciel: Intel(R) C++ Redistributables on Intel(R) 64 - (.Intel Corporation.) [HKLM][64Bits] -- {2DD3C090-2986-4970-B3CB-87BB4C8AC4A5} =>.Intel Corporation
O42 - Logiciel: Internet Download Manager - (.Tonec Inc..) [HKLM][64Bits] -- Internet Download Manager =>.Tonec Inc.®
O42 - Logiciel: IObit Uninstaller - (.IObit.) [HKLM][64Bits] -- IObitUninstall =>.IObit Information Technology®
O42 - Logiciel: IObit Unlocker - (.IObit.) [HKLM][64Bits] -- IObit Unlocker_is1 =>.IObit Information Technology®
O42 - Logiciel: Java 8 Update 121 (64-bit) - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F64180121F0} =>.Oracle Corporation
O42 - Logiciel: Java Auto Updater - (.Oracle Corporation.) [HKLM][64Bits] -- {4A03706F-666A-4037-7777-5F2748764D10} =>.Oracle Corporation
O42 - Logiciel: K-Lite Codec Pack 12.7.5 Full - (.KLCP.) [HKLM][64Bits] -- KLiteCodecPack_is1 =>.KLCP
O42 - Logiciel: Kong Audio Qin Rack Version - (.Kong Audio.) [HKLM][64Bits] -- Qin Rack Version_is1
O42 - Logiciel: LibreOffice 5.2.3.3 - (.The Document Foundation.) [HKLM][64Bits] -- {CDBD2338-897B-432E-8424-EBC1290493DF} =>.The Document Foundation
O42 - Logiciel: LUXONIX Purity - (.LUXONIX.) [HKLM][64Bits] -- LUXONIX_Purity =>.LUXONIX
O42 - Logiciel: Macrorit Disk Partition Expert Professional 2017 - (.Macrorit Inc..) [HKLM][64Bits] -- Macrorit_MDE =>.Macrorit Inc.
O42 - Logiciel: Malwarebytes Anti-Exploit version 1.9.2.1291 - (.Malwarebytes.) [HKLM][64Bits] -- Malwarebytes Anti-Exploit_is1 =>.Malwarebytes
O42 - Logiciel: Maui META 3G ver 6.1316.1 - (.MediaTek.) [HKLM][64Bits] -- {387843EE-375D-4E28-8436-F73E3E3D02D7} =>.Mediatek
O42 - Logiciel: MegaDownloader 1.7 - (.AppsForMega.info.) [HKLM][64Bits] -- {C12C2297-65A4-4E64-9AE1-29F0D947FDA0}}_is1
O42 - Logiciel: Microsoft OneDrive - (.Microsoft Corporation.) [HKCU][64Bits] -- OneDriveSetup.exe {330000004C80D5F9985076B09C00010000004C} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} =>.Microsoft Corporation
O42 - Logiciel: Mises à jour NVIDIA 23.23.30.0 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update =>.NVIDIA Corporation
O42 - Logiciel: Mouse Server version 1.7.2 - (.Necta, Inc..) [HKLM][64Bits] -- {7AFAA880-BB05-4E38-9279-C53EECE1B7BE}_is1
O42 - Logiciel: Mozilla Firefox 52.0.2 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 52.0.2 (x86 fr) =>.Mozilla Corporation®
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService =>.Mozilla
O42 - Logiciel: Native Instruments Kontakt 5 - (.Native Instruments.) [HKLM][64Bits] -- {3cede7e3-b10d-4c72-a6cb-fe5217399507} =>.Native Instruments
O42 - Logiciel: Native Instruments Kontakt 5 - (.Native Instruments.) [HKLM][64Bits] -- Native Instruments Kontakt 5 =>.Native Instruments
O42 - Logiciel: No-IP DUC - (.Vitalwerks Internet Solutions LLC.) [HKLM][64Bits] -- NoIPDUC =>.Vitalwerks Internet Solutions LLC
O42 - Logiciel: Notepad++ (64-bit x64) - (.Notepad++ Team.) [HKLM][64Bits] -- Notepad++ =>.Notepad++ Team
O42 - Logiciel: Nox APP Player - (.Duodian Technology Co. Ltd..) [HKLM][64Bits] -- Nox =>.Duodian Online Technology Co. Ltd.®
O42 - Logiciel: NVIDIA Backend - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvBackend =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Container - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Display Container - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVDisplayContainer =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Display Container LS - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVDisplayContainerLS =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Display Session Container - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVDisplaySessionContainer =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Display Watchdog Plugin - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVDisplayPluginWatchdog =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA GeForce Experience 3.4.0.70 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Install Application - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA LocalSystem Container - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.LocalSystem =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Logiciel système PhysX 9.17.0329 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Message Bus for NvContainer - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.MessageBus =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA NetworkService Container - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NetworkService =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Pilote 3D Vision 381.65 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Pilote audio HD : 1.3.34.26 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Pilote du contrôleur 3D Vision 369.04 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Pilote graphique 381.65 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Session Container - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.Session =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA ShadowPlay 3.4.0.70 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShadowPlay =>.NVIDIA Corporation
O42 - Logiciel: Nvidia Share - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_OSC =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Stereoscopic 3D Driver - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIAStereo =>.NVIDIA Corporation®
O42 - Logiciel: NVIDIA Telemetry Container - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvTelemetryContainer =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Update Core - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Update.Core =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA User Container - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.User =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Virtual Audio 3.60.1 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Watchdog Plugin for NvContainer - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvPlugin.Watchdog =>.NVIDIA Corporation
O42 - Logiciel: NvNodejs - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvNodejs =>.NVIDIA Corporation
O42 - Logiciel: NvTelemetry - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvTelemetry =>.NVIDIA Corporation
O42 - Logiciel: NvvHci - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvvHci =>.NVIDIA Corporation
O42 - Logiciel: Opera Stable 44.0.2510.857 - (.Opera Software.) [HKLM][64Bits] -- Opera 44.0.2510.857 =>.Opera Software AS®
O42 - Logiciel: Panneau de configuration NVIDIA 381.65 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel =>.NVIDIA Corporation
O42 - Logiciel: PaperPort Image Printer 64-bit - (.Nuance Communications, Inc..) [HKLM][64Bits] -- {ABA4FAF1-6389-45F9-92CE-3914A4E5C471} =>.Nuance Communications, Inc.
O42 - Logiciel: PES Professionals Patch 2016 - Data Pack Installer V5 - (.PES Professionals.) [HKLM][64Bits] -- PES Professionals Patch 2016 - Data Pack Installer V5 =>.PES Professionals
O42 - Logiciel: PES Professionals Patch 2016 V5 V5 - (.PES Professionals.) [HKLM][64Bits] -- PES Professionals Patch 2016 V5 V5 =>.PES Professionals
O42 - Logiciel: PES Professionals Patch 2017 FIX V1 - (.PES Professionals.) [HKLM][64Bits] -- PES Professionals Patch 2017 FIX V1 =>.PES Professionals
O42 - Logiciel: PES Professionals Patch 2017 V1 V1 - (.PES Professionals.) [HKLM][64Bits] -- PES Professionals Patch 2017 V1 V1 =>.PES Professionals
O42 - Logiciel: PES Professionals Patch 2017 V2 V2 - (.PES Professionals.) [HKLM][64Bits] -- PES Professionals Patch 2017 V2 V2 =>.PES Professionals
O42 - Logiciel: PES Professionals Patch 2017 V2.1 Fix V2.1 - (.PES Professionals.) [HKLM][64Bits] -- PES Professionals Patch 2017 V2.1 Fix V2.1 =>.PES Professionals
O42 - Logiciel: PES Professionals Patch 2017 V2.1 V2.1 - (.PES Professionals.) [HKLM][64Bits] -- PES Professionals Patch 2017 V2.1 V2.1 =>.PES Professionals
O42 - Logiciel: PES Professionals Patch 2017 V2.2 Fix V2.2 - (.PES Professionals.) [HKLM][64Bits] -- PES Professionals Patch 2017 V2.2 Fix V2.2 =>.PES Professionals
O42 - Logiciel: PES Professionals Patch 2017 V2.2 V2.2 - (.PES Professionals.) [HKLM][64Bits] -- PES Professionals Patch 2017 V2.2 V2.2 =>.PES Professionals
O42 - Logiciel: Photodex Presenter - (.Photodex Corporation.) [HKLM][64Bits] -- Photodex Presenter {145A3753C59E90FA1A5409CDD64B0B0E} =>.Photodex Corporation
O42 - Logiciel: Picasa 3 - (.Google, Inc..) [HKLM][64Bits] -- Picasa 3 =>.Google Inc®
O42 - Logiciel: Pro Evolution Soccer 2017 - (.KONAMI.) [HKLM][64Bits] -- {A3C10274-808C-4ADC-A13D-D94911180B58}_is1 =>.Konami
O42 - Logiciel: ProShow Producer - (.Photodex Corporation.) [HKLM][64Bits] -- ProShow Producer {145A3753C59E90FA1A5409CDD64B0B0E} =>.Photodex Corporation
O42 - Logiciel: ProShow Producer version 8.0.3648 - (.Photodex.) [HKLM][64Bits] -- {5FFCED89-D154-462E-B9EB-9A8D26A7C027}_is1 =>.Photodex
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} =>.Realtek Semiconductor Corp.®
O42 - Logiciel: Renesas Electronics USB 3.0 Host Controller Driver - (.Renesas Electronics Corporation.) [HKLM][64Bits] -- {5442DAB8-7177-49E1-8B22-09A049EA5996} =>.Renesas Electronics Corporation
O42 - Logiciel: Renesas Electronics USB 3.0 Host Controller Driver - (.Renesas Electronics Corporation.) [HKLM][64Bits] -- InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996} =>.Renesas Electronics Corporation
O42 - Logiciel: Rockstar Games Social Club - (.Rockstar Games.) [HKLM][64Bits] -- Rockstar Games Social Club =>.Take-Two Interactive Software, Inc.®
O42 - Logiciel: Rosetta Stone Language Training - (.Rosetta Stone, Ltd.) [HKLM][64Bits] -- {00384623-4937-4D7D-BDD9-23513D1C50AB}
O42 - Logiciel: Rosetta Stone Ltd Services - (.Rosetta Stone Ltd..) [HKLM][64Bits] -- {3165E4A6-D5DE-46B0-8597-D55E2B826B84} =>.Rosetta Stone Ltd.
O42 - Logiciel: ScanSoft PaperPort 11 - (.Nuance Communications, Inc..) [HKLM][64Bits] -- {02570AE0-BEE0-4A6C-BE3F-D806E9F2EA17} =>.Nuance Communications, Inc.
O42 - Logiciel: SDFormatter - (.SD Association.) [HKLM][64Bits] -- {A5355F15-F98B-4704-9BAE-E53B9FE48F48} =>.SD Association
O42 - Logiciel: SHAREit - (.SHAREit Technologies Co.Ltd.) [HKLM][64Bits] -- www.ushareit.com_is1 =>.SHAREit Technologies Co.Ltd
O42 - Logiciel: SHIELD Streaming - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv =>.NVIDIA Corporation
O42 - Logiciel: SHIELD Wireless Controller Driver - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController =>.NVIDIA Corporation
O42 - Logiciel: Shutdown8 - (.Bandisoft.com.) [HKCU][64Bits] -- Shutdown8 =>.Bandisoft.com
O42 - Logiciel: SWAM The Soprano and Bass Clarinets version 1.0.3 64bit - (.Samplemodeling.) [HKLM][64Bits] -- {8DD33B84-8B9C-48A6-9075-9BB7F00EE991}_is1
O42 - Logiciel: Sylenth1 version 2.2.1 - (.Lennar Digital.) [HKLM][64Bits] -- {149CBB8A-19FE-4574-99BE-657926BBE08B}_is1
O42 - Logiciel: TAP-Windows 9.21.2 - (.OpenVPN Technologie.) [HKLM][64Bits] -- TAP-Windows =>.OpenVPN Technologie
O42 - Logiciel: TBS Cover Editor 2.6.1 - (.trueboxshot.com.) [HKLM][64Bits] -- {0F99457D-9D88-4CB8-8E7D-5B7C464CA8CE}}_is1
O42 - Logiciel: TeamViewer 12 - (.TeamViewer.) [HKLM][64Bits] -- TeamViewer =>.TeamViewer GmbH®
O42 - Logiciel: Touchstone 1 - (..) [HKLM][64Bits] -- Touchstone 1
O42 - Logiciel: UltraISO Premium V9.65 - (.ZBShareware Labs.) [HKLM][64Bits] -- UltraISO_is1 =>.ZBShareware Labs
O42 - Logiciel: Unchecky v1.0.2 - (.RaMMicHaeL.) [HKLM][64Bits] -- Unchecky =>.Reason Software Company Inc.®
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player =>.VideoLAN
O42 - Logiciel: VMware Workstation - (.VMware, Inc..) [HKLM][64Bits] -- {A1A0067D-DBE8-4761-8D58-AE8EC84C9D5D} =>.VMware, Inc.
O42 - Logiciel: Vulkan Run Time Libraries 1.0.42.1 - (.LunarG, Inc..) [HKLM][64Bits] -- VulkanRT1.0.42.1 =>.LunarG, Inc.®
O42 - Logiciel: Windows Driver Package - BigNox Corporation VBoxUSBMon System (09/16/2015 - (.BigNox Corporation.) [HKLM][64Bits] -- 39F54A37125643D2E1E90FA7D81F36ACC9441510 =>.Microsoft Windows®
O42 - Logiciel: Windows Driver Package - BigNox Corporation XQHDrv System (09/16/2015 4.3. - (.BigNox Corporation.) [HKLM][64Bits] -- 0147813640F7AF69F569581EE672B6BE1E71798E =>.Microsoft Windows®
O42 - Logiciel: WinRAR 5.40 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver =>.win.rar GmbH®

---\\ HKCU & HKLM Software Keys (171) - 13s
HKLM\SOFTWARE\Wow6432Node\360Safe =>.Qihu 360 Software Co., LTD
HKLM\SOFTWARE\Wow6432Node\360TotalSecurity =>.Qihu 360 Software Co., LTD
HKLM\SOFTWARE\Wow6432Node\Adguard =>.Adguard
HKLM\SOFTWARE\Wow6432Node\Adobe =>.Adobe
HKLM\SOFTWARE\Wow6432Node\AGEIA Technologies =>.AGEIA Technologies
HKLM\SOFTWARE\Wow6432Node\Apple Inc. =>.Apple Inc.
HKLM\SOFTWARE\Wow6432Node\Ashampoo =>.Ashampoo
HKLM\SOFTWARE\Wow6432Node\ASIO =>.Steinberg Media Technologies
HKLM\SOFTWARE\Wow6432Node\ASIO4ALL =>.Michael Tippach
HKLM\SOFTWARE\Wow6432Node\Auslogics =>.Auslogics
HKLM\SOFTWARE\Wow6432Node\AVAST Software =>.AVAST Software
HKLM\SOFTWARE\Wow6432Node\Avira =>.Avira
HKLM\SOFTWARE\Wow6432Node\Brother =>.Brother
HKLM\SOFTWARE\Wow6432Node\Brother Industries, Ltd. =>.Brother Industries, Ltd.
HKLM\SOFTWARE\Wow6432Node\Cakewalk Music Software =>.Cakewalk Music Software
HKLM\SOFTWARE\Wow6432Node\Celemony Software GmbH =>.Celemony Software GmbH
HKLM\SOFTWARE\Wow6432Node\Classroom Spy Pro
HKLM\SOFTWARE\Wow6432Node\Disk Doctor Labs Inc.
HKLM\SOFTWARE\Wow6432Node\DivXNetworks =>.DivXNetworks
HKLM\SOFTWARE\Wow6432Node\DuoDianOnline =>.DuoDian Online
HKLM\SOFTWARE\Wow6432Node\EasyBoot Systems =>.EasyBoot Systems
HKLM\SOFTWARE\Wow6432Node\ESET =>.ESET
HKLM\SOFTWARE\Wow6432Node\Foxconn
HKLM\SOFTWARE\Wow6432Node\Google =>.Google
HKLM\SOFTWARE\Wow6432Node\Greatis =>.Greatis Software
HKLM\SOFTWARE\Wow6432Node\Icaros =>.Icaros
HKLM\SOFTWARE\Wow6432Node\IK Multimedia =>.IK Multimedia
HKLM\SOFTWARE\Wow6432Node\Image-Line =>.Image-Line
HKLM\SOFTWARE\Wow6432Node\InstallShield =>.InstallShield
HKLM\SOFTWARE\Wow6432Node\Intel =>.Intel
HKLM\SOFTWARE\Wow6432Node\Internet Download Manager =>.Tonec Inc
HKLM\SOFTWARE\Wow6432Node\IObit =>.IObit
HKLM\SOFTWARE\Wow6432Node\JavaSoft =>.JavaSoft
HKLM\SOFTWARE\Wow6432Node\JreMetrics =>.JreMetrics
HKLM\SOFTWARE\Wow6432Node\Khronos =>.Khronos
HKLM\SOFTWARE\Wow6432Node\KLCodecPack =>.KLite Inc
HKLM\SOFTWARE\Wow6432Node\Kong Audio
HKLM\SOFTWARE\Wow6432Node\LAV =>.LAV Inc
HKLM\SOFTWARE\Wow6432Node\LUXONIX =>.LUXONIX
HKLM\SOFTWARE\Wow6432Node\Macromedia =>.Macromedia
HKLM\SOFTWARE\Wow6432Node\Macrovision =>.Macrovision
HKLM\SOFTWARE\Wow6432Node\Malwarebytes Anti-Exploit =>.Malwarebytes
HKLM\SOFTWARE\Wow6432Node\MimarSinan =>.Mimar Sinan
HKLM\SOFTWARE\Wow6432Node\Mozilla =>.Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org =>.mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins =>.MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\Native Instruments =>.Native Instruments
HKLM\SOFTWARE\Wow6432Node\Nevron =>.Nevron
HKLM\SOFTWARE\Wow6432Node\Nuance =>.Nuance
HKLM\SOFTWARE\Wow6432Node\NVIDIA Corporation =>.nVidia Corporation
HKLM\SOFTWARE\Wow6432Node\ODBC =>.DB Connectivity Solutions
HKLM\SOFTWARE\Wow6432Node\OpenVPN =>.OpenVPN Technologie
HKLM\SOFTWARE\Wow6432Node\Opera Software =>.Opera Software
HKLM\SOFTWARE\Wow6432Node\Photodex Media Sources =>.Photodex
HKLM\SOFTWARE\Wow6432Node\Photodex Presenter =>.Photodex
HKLM\SOFTWARE\Wow6432Node\Propellerhead Software =>.Propellerhead Software
HKLM\SOFTWARE\Wow6432Node\Realtek =>.Realtek Semiconductor Corp.
HKLM\SOFTWARE\Wow6432Node\REALTEK Semiconductor Corp. =>.Realtek Semiconductor Corp.
HKLM\SOFTWARE\Wow6432Node\Rockstar Games =>.Rockstar Games
HKLM\SOFTWARE\Wow6432Node\ScanSoft =>.Scansoft
HKLM\SOFTWARE\Wow6432Node\SHAREit Technologies
HKLM\SOFTWARE\Wow6432Node\SoftEther Project =>.SoftEther Project
HKLM\SOFTWARE\Wow6432Node\SoftVoice =>.SoftVoice
HKLM\SOFTWARE\Wow6432Node\SRS Labs =>.SRS Labs
HKLM\SOFTWARE\Wow6432Node\Steganos =>.Steganos
HKLM\SOFTWARE\Wow6432Node\TeamViewer =>.TeamViewer
HKLM\SOFTWARE\Wow6432Node\TechSmith =>.TechSmith
HKLM\SOFTWARE\Wow6432Node\ThinPrint =>.ThinPrint
HKLM\SOFTWARE\Wow6432Node\Unchecky =>.RaMMicHaeL
HKLM\SOFTWARE\Wow6432Node\VideoLAN =>.VideoLAN
HKLM\SOFTWARE\Wow6432Node\Visioneer =>.Visioneer
HKLM\SOFTWARE\Wow6432Node\Vitalwerks =>.Vitalwerks
HKLM\SOFTWARE\Wow6432Node\VMware, Inc. =>.VMware, Inc.
HKLM\SOFTWARE\Wow6432Node\Volatile =>.Microsoft Corporation
HKLM\SOFTWARE\Wow6432Node\VST =>.Virtual Studio Technology
HKLM\SOFTWARE\Wow6432Node\Waves =>.Waves
HKLM\SOFTWARE\Wow6432Node\WOW6432Node =>.Microsoft Corporation
HKLM\SOFTWARE\Wow6432Node\X-AVCSD =>.Avira Software
HKLM\SOFTWARE\Wow6432Node\ZEON =>.Zeon
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications =>.Microsoft Corporation
HKCU\SOFTWARE\A.O.M.
HKCU\SOFTWARE\Acoustica =>.Acoustica
HKCU\SOFTWARE\Adguard =>.Adguard
HKCU\SOFTWARE\Adobe =>.Adobe
HKCU\SOFTWARE\Aiseesoft Studio =>.Aiseesoft Studio
HKCU\SOFTWARE\Akeo Consulting =>.Akeo Consulting
HKCU\SOFTWARE\AppDataLow =>.Microsoft Corporation
HKCU\SOFTWARE\Ashampoo =>.Ashampoo
HKCU\SOFTWARE\ASIO4ALL v2 by Wuschel =>.Unknow
HKCU\SOFTWARE\ASProtect =>.ASPack Software
HKCU\SOFTWARE\Bandisoft =>.Bandisoft
HKCU\SOFTWARE\Bandizip =>.Bandisoft
HKCU\SOFTWARE\BitTorrent
HKCU\SOFTWARE\Brother =>.Brother
HKCU\SOFTWARE\Cakewalk Music Software =>.Cakewalk Music Software
HKCU\SOFTWARE\Chromium =>.Chromium
HKCU\SOFTWARE\CyberGhost =>.CyberGhost S.R.L
HKCU\SOFTWARE\Disk Doctor Labs Inc.
HKCU\SOFTWARE\Disk Doctors Labs
HKCU\SOFTWARE\DownloadManager =>.DownloadManager
HKCU\SOFTWARE\East West =>.East West
HKCU\SOFTWARE\EasyBoot Systems =>.EasyBoot Systems
HKCU\SOFTWARE\ESET =>.ESET
HKCU\SOFTWARE\FDRLab =>.FDRLab
HKCU\SOFTWARE\Garritan =>.Garritan
HKCU\SOFTWARE\Google =>.Google
HKCU\SOFTWARE\Greatis =>.Greatis Software
HKCU\SOFTWARE\HideAllIP
HKCU\SOFTWARE\Icaros =>.Icaros
HKCU\SOFTWARE\IK Multimedia =>.IK Multimedia
HKCU\SOFTWARE\Image-Line =>.Image-Line
HKCU\SOFTWARE\JavaSoft =>.JavaSoft
HKCU\SOFTWARE\kde.org =>.kde.org
HKCU\SOFTWARE\Local AppWizard-Generated Applications =>.ZWCAD
HKCU\SOFTWARE\LUXONIX =>.LUXONIX
HKCU\SOFTWARE\Macromedia =>.Macromedia
HKCU\SOFTWARE\madshi =>.madshi.net
HKCU\SOFTWARE\MainConcept =>.MainConcept AG
HKCU\SOFTWARE\Malwarebytes =>.Malwarebytes
HKCU\SOFTWARE\MediaInfo =>.Jérôme Martinez
HKCU\SOFTWARE\Mozilla =>.Mozilla
HKCU\SOFTWARE\MPC-HC =>.MPC-HC Team
HKCU\SOFTWARE\MTK =>.MTK
HKCU\SOFTWARE\MusicLab
HKCU\SOFTWARE\Native Instruments =>.Native Instruments
HKCU\SOFTWARE\NewTechnologyStudio =>.New Technology Studio
HKCU\SOFTWARE\Nilings =>.Nilings
HKCU\SOFTWARE\NTSCorp =>.NTSCorp Ltd
HKCU\SOFTWARE\NVIDIA Corporation =>.nVidia Corporation
HKCU\SOFTWARE\O&O =>.O&O Software GmbH
HKCU\SOFTWARE\OpenAutomate =>.nVidia Corporation
HKCU\SOFTWARE\Opera Software =>.Opera Software
HKCU\SOFTWARE\Photodex =>.Photodex
HKCU\SOFTWARE\Piriform =>.Piriform
HKCU\SOFTWARE\QFX Software =>.QFX Software
HKCU\SOFTWARE\QtProject =>.QtProject
HKCU\SOFTWARE\Realtek =>.Realtek Semiconductor Corp.
HKCU\SOFTWARE\RegisteredApplications =>.Microsoft Corporation
HKCU\SOFTWARE\Regrun
HKCU\SOFTWARE\remixos-installation-tool =>.Legitimate
HKCU\SOFTWARE\Rockstar Games =>.Rockstar Games
HKCU\SOFTWARE\ScanSoft =>.Scansoft
HKCU\SOFTWARE\SHAREit Technologies
HKCU\SOFTWARE\SharewareOnSale =>.SharewareOnSale
HKCU\SOFTWARE\Shutdown8
HKCU\SOFTWARE\SoftEther Corporation =>.SoftEther Corporation
HKCU\SOFTWARE\SoftEther Project =>.SoftEther Project
HKCU\SOFTWARE\SoftVoice =>.SoftVoice
HKCU\SOFTWARE\Steganos =>.Steganos
HKCU\SOFTWARE\Synapse Audio
HKCU\SOFTWARE\SyncEngines =>.Microsoft Corporation
HKCU\SOFTWARE\TBSCoverEditor
HKCU\SOFTWARE\TeamViewer =>.TeamViewer
HKCU\SOFTWARE\TechSmith =>.TechSmith
HKCU\SOFTWARE\The Document Foundation =>.The Document Foundation
HKCU\SOFTWARE\TrackGods
HKCU\SOFTWARE\Trolltech =>.Trolltech
HKCU\SOFTWARE\Ubisoft =>.Ubisoft
HKCU\SOFTWARE\Unchecky =>.RaMMicHaeL
HKCU\SOFTWARE\University of Tsukuba =>.University of Tsukuba
HKCU\SOFTWARE\Valve =>.Valve
HKCU\SOFTWARE\Vitalwerks =>.Vitalwerks
HKCU\SOFTWARE\VMware, Inc. =>.VMware, Inc.
HKCU\SOFTWARE\Waves Audio =>.Waves Audio
HKCU\SOFTWARE\WinRAR =>.WinRAR
HKCU\SOFTWARE\WinRAR SFX =>.RarLab
HKCU\SOFTWARE\Wow6432Node =>.Microsoft Corporation
HKCU\SOFTWARE\Zemana =>.Zemana
HKCU\SOFTWARE\ZHP =>.Nicolas Coolman
HKCU\SOFTWARE\AppDataLow\Software =>.Microsoft Corporation
HKCU\SOFTWARE\AppDataLow\Software\adawarebp =>PUP.Optional.ToolbarCleaner

---\\ Contenu des dossiers Programmes (565) - 45s
O43 - CFD: 08/04/2017 - [] AD -- C:\Program Files\Adobe =>.Adobe Systems Incorporated®
O43 - CFD: 15/04/2017 - [] AD -- C:\Program Files\Bandizip =>.Bandisoft
O43 - CFD: 02/01/2017 - [] AD -- C:\Program Files\CCleaner =>.Piriform Ltd
O43 - CFD: 17/04/2017 - [] D -- C:\Program Files\Common Files =>.Microsoft Corporation
O43 - CFD: 20/03/2017 - [] AD -- C:\Program Files\CyberGhost 6 =>.CyberGhost S.R.L
O43 - CFD: 27/11/2016 - [] D -- C:\Program Files\DIFX =>.Microsoft Corporation
O43 - CFD: 10/04/2017 - [] D -- C:\Program Files\ESET =>.ESET, spol. s r.o.®
O43 - CFD: 01/11/2016 - [0] SHD -- C:\Program Files\Fichiers communs =>.Microsoft Corporation
O43 - CFD: 23/03/2017 - [] D -- C:\Program Files\Image-Line =>.Image-Line
O43 - CFD: 20/03/2017 - [] D -- C:\Program Files\Internet Explorer =>.Microsoft Corporation
O43 - CFD: 23/01/2017 - [] D -- C:\Program Files\Java =>.Oracle
O43 - CFD: 06/12/2016 - [] AD -- C:\Program Files\LibreOffice 5 =>.LibreOffice
O43 - CFD: 19/02/2017 - [] D -- C:\Program Files\Macrorit =>.Macrorit
O43 - CFD: 02/01/2017 - [0] D -- C:\Program Files\Malwarebytes =>.Malwarebytes
O43 - CFD: 27/01/2017 - [] AD -- C:\Program Files\MegaDownloader
O43 - CFD: 11/04/2017 - [] AD -- C:\Program Files\Microsoft Silverlight =>.Microsoft Corporation
O43 - CFD: 17/04/2017 - [] D -- C:\Program Files\MSBuild =>.Microsoft Corporation
O43 - CFD: 20/03/2017 - [] D -- C:\Program Files\Native Instruments =>.Native Instruments
O43 - CFD: 18/03/2017 - [] D -- C:\Program Files\NI Kontakt 5.6.5 SymLink Installer
O43 - CFD: 01/11/2016 - [] D -- C:\Program Files\Notepad++ =>.Don Ho
O43 - CFD: 07/12/2016 - [] D -- C:\Program Files\Nuance =>.Nuance
O43 - CFD: 17/04/2017 - [] D -- C:\Program Files\NVIDIA Corporation =>.nVidia Corporation
O43 - CFD: 19/02/2017 - [0] D -- C:\Program Files\Plogue
O43 - CFD: 16/11/2016 - [0] AD -- C:\Program Files\PowerISO =>.PowerISO Computing
O43 - CFD: 17/04/2017 - [] D -- C:\Program Files\Realtek =>.Realtek
O43 - CFD: 17/04/2017 - [] D -- C:\Program Files\Reference Assemblies =>.Microsoft Corporation
O43 - CFD: 17/12/2016 - [] D -- C:\Program Files\Rockstar Games =>.Take-Two Interactive Software, Inc.®
O43 - CFD: 15/12/2016 - [] D -- C:\Program Files\Samplemodeling
O43 - CFD: 17/12/2016 - [] D -- C:\Program Files\TAP-Windows =>.OpenVPN Technologie
O43 - CFD: 03/01/2017 - [] D -- C:\Program Files\TechSmith =>.TechSmith
O43 - CFD: 01/11/2016 - [0] HD -- C:\Program Files\Uninstall Information =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [] AD -- C:\Program Files\Vstplugins =>.VTS
O43 - CFD: 20/03/2017 - [] D -- C:\Program Files\Windows Defender =>.Microsoft Corporation
O43 - CFD: 20/03/2017 - [] D -- C:\Program Files\Windows Defender Advanced Threat Protection =>.Microsoft Corporation
O43 - CFD: 20/03/2017 - [] D -- C:\Program Files\Windows Mail =>.Microsoft Corporation
O43 - CFD: 20/03/2017 - [] D -- C:\Program Files\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] D -- C:\Program Files\Windows Multimedia Platform =>.Microsoft Corporation
O43 - CFD: 17/04/2017 - [] D -- C:\Program Files\Windows NT =>.Microsoft Corporation
O43 - CFD: 20/03/2017 - [] D -- C:\Program Files\Windows Photo Viewer =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] D -- C:\Program Files\Windows Portable Devices =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] D -- C:\Program Files\Windows Security =>.Unknow
O43 - CFD: 18/03/2017 - [] SHD -- C:\Program Files\Windows Sidebar =>.Microsoft Corporation
O43 - CFD: 18/04/2017 - [] HD -- C:\Program Files\WindowsApps =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] D -- C:\Program Files\WindowsPowerShell =>.Microsoft Corporation
O43 - CFD: 07/03/2017 - [] AD -- C:\Program Files\WinRAR =>.win.rar GmbH®
O43 - CFD: 20/04/2017 - [] AD -- C:\Program Files (x86)\Adguard =>.Insoft LLC
O43 - CFD: 08/04/2017 - [] D -- C:\Program Files (x86)\Adobe =>.Adobe Systems Incorporated®
O43 - CFD: 02/01/2017 - [] D -- C:\Program Files (x86)\AIMP =>.AIMP2 AUdio Software
O43 - CFD: 04/02/2017 - [] D -- C:\Program Files (x86)\AirDroid =>.AirDroid
O43 - CFD: 15/03/2017 - [] D -- C:\Program Files (x86)\Aiseesoft Studio {11219D7B19701B1B2831D82675C408025572} =>.Aiseesoft Studio
O43 - CFD: 09/01/2017 - [] D -- C:\Program Files (x86)\Android =>.Android
O43 - CFD: 01/04/2017 - [] AD -- C:\Program Files (x86)\Arabic World Strings
O43 - CFD: 28/12/2016 - [] D -- C:\Program Files (x86)\ASIO4ALL v2 =>.Michael Tippach
O43 - CFD: 06/04/2017 - [] AD -- C:\Program Files (x86)\Assassins Creed IV Black Flag
O43 - CFD: 27/11/2016 - [] D -- C:\Program Files (x86)\Bignox =>.BigNox
O43 - CFD: 19/01/2017 - [] AD -- C:\Program Files (x86)\Bonjour =>.Apple Inc.
O43 - CFD: 07/12/2016 - [] D -- C:\Program Files (x86)\Brother =>.Brother
O43 - CFD: 28/01/2017 - [] D -- C:\Program Files (x86)\Classroom Spy Pro {00E4F4A8FE688E66DA3132725AE1062046}
O43 - CFD: 17/04/2017 - [] D -- C:\Program Files (x86)\Common Files =>.Microsoft Corporation
O43 - CFD: 09/11/2016 - [0] D -- C:\Program Files (x86)\DSPRobotics =>.DSPRobotics
O43 - CFD: 29/12/2016 - [] D -- C:\Program Files (x86)\East West =>.East West
O43 - CFD: 28/02/2017 - [0] D -- C:\Program Files (x86)\Glarysoft =>.GlarySoft
O43 - CFD: 10/03/2017 - [] D -- C:\Program Files (x86)\Google =>.Google Inc®
O43 - CFD: 17/12/2016 - [] AD -- C:\Program Files (x86)\Grand Theft Auto V
O43 - CFD: 05/04/2013 - [] D -- C:\Program Files (x86)\HconSTFPortable
O43 - CFD: 23/03/2017 - [] D -- C:\Program Files (x86)\Image-Line =>.Image Line®
O43 - CFD: 04/01/2017 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information =>.InstallShield Software
O43 - CFD: 01/11/2016 - [] D -- C:\Program Files (x86)\Intel =>.Intel Corporation
O43 - CFD: 02/01/2017 - [] D -- C:\Program Files (x86)\Internet Download Manager =>.Tonec Inc
O43 - CFD: 20/03/2017 - [] D -- C:\Program Files (x86)\Internet Explorer =>.Microsoft Corporation
O43 - CFD: 06/04/2017 - [] D -- C:\Program Files (x86)\IObit =>.IObit
O43 - CFD: 02/01/2017 - [] AD -- C:\Program Files (x86)\K-Lite Codec Pack =>.KLite Inc
O43 - CFD: 02/01/2017 - [] D -- C:\Program Files (x86)\Kong Audio Library
O43 - CFD: 15/03/2017 - [] D -- C:\Program Files (x86)\LUXONIX =>.LUXONIX
O43 - CFD: 02/01/2017 - [] AD -- C:\Program Files (x86)\Malwarebytes Anti-Exploit =>.Malwarebytes
O43 - CFD: 11/02/2017 - [] D -- C:\Program Files (x86)\MediaTek =>.Mediatek
O43 - CFD: 11/04/2017 - [] AD -- C:\Program Files (x86)\Microsoft Silverlight =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] D -- C:\Program Files (x86)\Microsoft.NET =>.Microsoft Corporation
O43 - CFD: 13/03/2017 - [] AD -- C:\Program Files (x86)\Mouse Server
O43 - CFD: 10/04/2017 - [] AD -- C:\Program Files (x86)\Mozilla Firefox =>.Mozilla
O43 - CFD: 10/04/2017 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service =>.Mozilla
O43 - CFD: 17/04/2017 - [] D -- C:\Program Files (x86)\MSBuild =>.Microsoft Corporation
O43 - CFD: 11/12/2016 - [] D -- C:\Program Files (x86)\MusicLab
O43 - CFD: 30/12/2016 - [0] D -- C:\Program Files (x86)\NirSoft =>.NirSoft
O43 - CFD: 13/01/2017 - [] D -- C:\Program Files (x86)\No-IP =>.No-IP
O43 - CFD: 10/04/2017 - [] D -- C:\Program Files (x86)\Norton Security =>.Symantec
O43 - CFD: 17/04/2017 - [] D -- C:\Program Files (x86)\NVIDIA Corporation =>.nVidia Corporation
O43 - CFD: 16/04/2017 - [] AD -- C:\Program Files (x86)\Opera =>.Opera Software
O43 - CFD: 26/01/2017 - [] D -- C:\Program Files (x86)\Photodex =>.Photodex
O43 - CFD: 26/01/2017 - [] AD -- C:\Program Files (x86)\Photodex Presenter {145A3753C59E90FA1A5409CDD64B0B0E}
O43 - CFD: 28/02/2017 - [] AD -- C:\Program Files (x86)\Pro Evolution Soccer 2017 =>.Games Software
O43 - CFD: 04/01/2017 - [] D -- C:\Program Files (x86)\REALTEK =>.Realtek
O43 - CFD: 17/04/2017 - [] D -- C:\Program Files (x86)\Reference Assemblies =>.Microsoft Corporation
O43 - CFD: 01/11/2016 - [] D -- C:\Program Files (x86)\Renesas Electronics =>.Renesas Electronics Corporation®
O43 - CFD: 17/12/2016 - [] D -- C:\Program Files (x86)\Rockstar Games =>.Take-Two Interactive Software, Inc.®
O43 - CFD: 25/12/2016 - [] D -- C:\Program Files (x86)\Rosetta Stone =>.Rosetta Stone Ltd®
O43 - CFD: 25/12/2016 - [] AD -- C:\Program Files (x86)\RosettaStoneLtdServices =>.Rosetta Stone Ltd®
O43 - CFD: 07/12/2016 - [] D -- C:\Program Files (x86)\ScanSoft =>.Scansoft
O43 - CFD: 22/11/2016 - [] D -- C:\Program Files (x86)\SDA =>.TRENDY Corporation®
O43 - CFD: 19/02/2017 - [0] D -- C:\Program Files (x86)\SecureHunter
O43 - CFD: 04/02/2017 - [] D -- C:\Program Files (x86)\SHAREit Technologies {3E04076D4B53A8436FD2665B5029C627}
O43 - CFD: 19/11/2016 - [] AD -- C:\Program Files (x86)\TBS Cover Editor
O43 - CFD: 24/01/2017 - [] AD -- C:\Program Files (x86)\TeamViewer =>.TeamViewer GmbH®
O43 - CFD: 03/01/2017 - [] D -- C:\Program Files (x86)\TechSmith Corporation =>.TechSmith Corporation
O43 - CFD: 28/03/2017 - [] D -- C:\Program Files (x86)\Touchstone 1
O43 - CFD: 11/12/2016 - [] AD -- C:\Program Files (x86)\UltraISO =>.EZB Systems
O43 - CFD: 01/11/2016 - [] AD -- C:\Program Files (x86)\Unchecky =>.RaMMicHaeL
O43 - CFD: 17/04/2017 - [0] HD -- C:\Program Files (x86)\Uninstall Information =>.Microsoft Corporation
O43 - CFD: 16/01/2017 - [] D -- C:\Program Files (x86)\VideoLAN =>.VideoLan Team
O43 - CFD: 04/04/2017 - [] AD -- C:\Program Files (x86)\VMware =>.VMware, Inc.®
O43 - CFD: 15/04/2017 - [] AD -- C:\Program Files (x86)\VstPlugins =>.VTS
O43 - CFD: 10/04/2017 - [] D -- C:\Program Files (x86)\VulkanRT =>.LunarG, Inc
O43 - CFD: 20/03/2017 - [] D -- C:\Program Files (x86)\Windows Defender =>.Microsoft Corporation
O43 - CFD: 20/03/2017 - [] D -- C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation
O43 - CFD: 20/03/2017 - [] D -- C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] D -- C:\Program Files (x86)\Windows Multimedia Platform =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] D -- C:\Program Files (x86)\Windows NT =>.Microsoft Corporation
O43 - CFD: 20/03/2017 - [] D -- C:\Program Files (x86)\Windows Photo Viewer =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] D -- C:\Program Files (x86)\Windows Portable Devices =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] SHD -- C:\Program Files (x86)\Windows Sidebar =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] D -- C:\Program Files (x86)\WindowsPowerShell =>.Microsoft Corporation
O43 - CFD: 29/01/2017 - [] D -- C:\Program Files (x86)\WNetWatcher =>.Nir Sofer®
O43 - CFD: 18/03/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility =>.Microsoft Corporation
O43 - CFD: 20/03/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories =>.Microsoft Corporation
O43 - CFD: 17/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adguard =>.Insoft LLC
O43 - CFD: 20/03/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools
O43 - CFD: 17/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare =>.IObit
O43 - CFD: 17/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AIMP =>.AIMP2 AUdio Software
O43 - CFD: 17/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Aiseesoft =>.Aiseesoft
O43 - CFD: 20/03/2017 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira =>.Avira Software
O43 - CFD: 17/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bandizip =>.Bandisoft
O43 - CFD: 17/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bonjour =>.Apple Inc.
O43 - CFD: 17/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother =>.Brother
O43 - CFD: 17/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner =>.Piriform Ltd
O43 - CFD: 17/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Classroom Spy Pro
O43 - CFD: 17/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberGhost 6 =>.CyberGhost S.R.L
O43 - CFD: 17/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET =>.ESET
O43 - CFD: 18/03/2017 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games =>.Microsoft Corporation
O43 - CFD: 17/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garritan ARIA Player
O43 - CFD: 02/04/2017 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HEAT UP 2
O43 - CFD: 17/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Image-Line =>.Image-Line
O43 - CFD: 17/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager =>.Tonec Inc
O43 - CFD: 17/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller =>.IObit
O43 - CFD: 17/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Unlocker =>.IObit
O43 - CFD: 17/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java =>.Oracle
O43 - CFD: 17/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack =>.KLite Inc
O43 - CFD: 17/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kong Audio
O43 - CFD: 17/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lennar Digital Sylenth1 v2.2.1
O43 - CFD: 17/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 5.2 =>.LibreOffice
O43 - CFD: 17/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LUXONIX =>.LUXONIX
O43 - CFD: 18/03/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance =>.Microsoft Corporation
O43 - CFD: 17/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Exploit =>.Malwarebytes
O43 - CFD: 17/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MegaDownloader
O43 - CFD: 17/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight =>.Microsoft Corporation
O43 - CFD: 17/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Native Instruments =>.Native Instruments
O43 - CFD: 17/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Net Monitor for Employees Pro
O43 - CFD: 17/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Network LookOut Administrator Pro
O43 - CFD: 17/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++ =>.Don Ho
O43 - CFD: 17/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation =>.nVidia Corporation
O43 - CFD: 17/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picasa 3 =>.Google Inc.
O43 - CFD: 17/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pro Evolution Soccer 2017 =>.Games Software
O43 - CFD: 17/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ProShow Producer
O43 - CFD: 17/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Renesas Electronics =>.Renesas Electronics
O43 - CFD: 17/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rosetta Stone =>.Rosetta Stone
O43 - CFD: 17/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samplemodeling
O43 - CFD: 17/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ScanSoft PaperPort 11 =>.Scansoft
O43 - CFD: 17/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SDFormatter =>.SD Association
O43 - CFD: 17/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SHAREit =>.Lenovo Group Limited
O43 - CFD: 18/03/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup =>.Microsoft Corporation
O43 - CFD: 06/12/2016 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sylenth1
O43 - CFD: 17/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Synapse Audio
O43 - CFD: 18/03/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools =>.Microsoft Corporation
O43 - CFD: 17/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TBS Cover Editor
O43 - CFD: 17/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TechSmith =>.TechSmith
O43 - CFD: 17/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Touchstone 1
O43 - CFD: 17/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UltraISO =>.EZB Systems
O43 - CFD: 17/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unchecky =>.RaMMicHaeL
O43 - CFD: 17/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN =>.VideoLan Team
O43 - CFD: 17/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VMware =>.VMware
O43 - CFD: 17/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Waves =>.Waves
O43 - CFD: 17/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR
O43 - CFD: 21/04/2017 - [] D -- C:\ProgramData\Adguard =>.Insoft LLC
O43 - CFD: 21/12/2016 - [] D -- C:\ProgramData\Adobe =>.Adobe
O43 - CFD: 15/03/2017 - [] D -- C:\ProgramData\Aiseesoft Studio =>.Aiseesoft Studio
O43 - CFD: 19/01/2017 - [] D -- C:\ProgramData\Apple =>.Apple Inc.
O43 - CFD: 17/04/2017 - [0] SHD -- C:\ProgramData\Application Data =>.Microsoft Corporation
O43 - CFD: 19/02/2017 - [] D -- C:\ProgramData\Ashampoo =>.Ashampoo GmbH
O43 - CFD: 17/04/2017 - [] D -- C:\ProgramData\Audyssey Labs =>.Audyssey Labs
O43 - CFD: 06/03/2017 - [0] D -- C:\ProgramData\Auslogics =>.Auslogics
O43 - CFD: 20/03/2017 - [] D -- C:\ProgramData\Avira =>.Avira Software
O43 - CFD: 08/12/2016 - [] D -- C:\ProgramData\boost_interprocess =>.boost.org
O43 - CFD: 07/12/2016 - [] D -- C:\ProgramData\Brother =>.Brother
O43 - CFD: 01/11/2016 - [0] SHD -- C:\ProgramData\Bureau =>.Microsoft Corporation
O43 - CFD: 16/12/2016 - [0] D -- C:\ProgramData\Celemony Software GmbH =>.Celemony Software GmbH
O43 - CFD: 16/07/2016 - [0] D -- C:\ProgramData\Comms =>.Microsoft Corporation
O43 - CFD: 17/04/2017 - [0] SHD -- C:\ProgramData\Documents =>.Microsoft Corporation
O43 - CFD: 01/11/2016 - [] D -- C:\ProgramData\Downloaded Installations =>.Microsoft Corporation
O43 - CFD: 10/04/2017 - [] D -- C:\ProgramData\ESET =>.ESET
O43 - CFD: 25/12/2016 - [] D -- C:\ProgramData\FLEXnet =>.Flexera Software
O43 - CFD: 28/02/2017 - [0] D -- C:\ProgramData\Glarysoft =>.GlarySoft
O43 - CFD: 02/01/2017 - [] D -- C:\ProgramData\GridinSoft =>.GridinSoft
O43 - CFD: 06/12/2016 - [] D -- C:\ProgramData\Identities =>.Microsoft Corporation
O43 - CFD: 01/11/2016 - [0] D -- C:\ProgramData\IDM =>.IDM
O43 - CFD: 07/12/2016 - [] D -- C:\ProgramData\InstallShield =>.InstallShield
O43 - CFD: 05/04/2017 - [] D -- C:\ProgramData\IObit =>.IObit
O43 - CFD: 10/04/2017 - [] D -- C:\ProgramData\Kaspersky Lab Setup Files =>.Kaspersky Lab
O43 - CFD: 16/11/2016 - [] D -- C:\ProgramData\KONAMI =>.Konami
O43 - CFD: 21/04/2017 - [] D -- C:\ProgramData\Malwarebytes Anti-Exploit =>.Malwarebytes
O43 - CFD: 01/11/2016 - [0] SHD -- C:\ProgramData\Menu Démarrer =>.Microsoft Corporation
O43 - CFD: 17/04/2017 - [] SD -- C:\ProgramData\Microsoft =>.Microsoft Corporation
O43 - CFD: 17/04/2017 - [] D -- C:\ProgramData\Microsoft OneDrive =>.Microsoft Corporation
O43 - CFD: 06/12/2016 - [] D -- C:\ProgramData\Microsoft Toolkit =>.Microsoft Corporation
O43 - CFD: 01/11/2016 - [0] SHD -- C:\ProgramData\Modèles =>.Microsoft Corporation
O43 - CFD: 21/12/2016 - [] D -- C:\ProgramData\MusicLab
O43 - CFD: 20/03/2017 - [] D -- C:\ProgramData\Native Instruments =>.Native Instruments
O43 - CFD: 24/01/2017 - [] D -- C:\ProgramData\Net Monitor for Employees Pro
O43 - CFD: 10/04/2017 - [] D -- C:\ProgramData\Norton =>.Symantec Corporation
O43 - CFD: 10/04/2017 - [] D -- C:\ProgramData\NortonInstaller =>.Symantec
O43 - CFD: 19/01/2017 - [] HD -- C:\ProgramData\nspLogs
O43 - CFD: 21/04/2017 - [] D -- C:\ProgramData\NVIDIA =>.nVidia Corporation
O43 - CFD: 17/04/2017 - [] D -- C:\ProgramData\NVIDIA Corporation =>.nVidia Corporation
O43 - CFD: 23/01/2017 - [] D -- C:\ProgramData\Oracle =>.Oracle
O43 - CFD: 21/03/2017 - [] D -- C:\ProgramData\Orbit =>.Orbit
O43 - CFD: 10/04/2017 - [] D -- C:\ProgramData\Package Cache =>.Microsoft Corporation
O43 - CFD: 26/01/2017 - [] D -- C:\ProgramData\Photodex =>.Photodex
O43 - CFD: 21/04/2017 - [] D -- C:\ProgramData\ProductData =>.Microsoft Corporation
O43 - CFD: 02/01/2017 - [] D -- C:\ProgramData\QFX Software =>.QFX Software
O43 - CFD: 17/04/2017 - [] D -- C:\ProgramData\regid.1991-06.com.microsoft =>.Microsoft Corporation
O43 - CFD: 10/04/2017 - [0] D -- C:\ProgramData\RegRun =>.Greatis Software
O43 - CFD: 25/12/2016 - [] D -- C:\ProgramData\Rosetta Stone =>.Rosetta Stone
O43 - CFD: 25/12/2016 - [] D -- C:\ProgramData\Rosetta Stone Backups
O43 - CFD: 25/12/2016 - [] D -- C:\ProgramData\RosettaStoneLtdServices
O43 - CFD: 07/12/2016 - [] AD -- C:\ProgramData\ScanSoft =>.Scansoft
O43 - CFD: 17/12/2016 - [] D -- C:\ProgramData\Socialclub =>.Legitimate
O43 - CFD: 18/03/2017 - [0] D -- C:\ProgramData\SoftwareDistribution =>.Microsoft Corporation
O43 - CFD: 13/04/2017 - [] D -- C:\ProgramData\SP_FT_Logs
O43 - CFD: 14/11/2016 - [] D -- C:\ProgramData\Steam =>.Steam Games
O43 - CFD: 03/01/2017 - [] AD -- C:\ProgramData\TechSmith =>.TechSmith
O43 - CFD: 10/04/2017 - [] D -- C:\ProgramData\Unchecky =>.RaMMicHaeL
O43 - CFD: 17/04/2017 - [] D -- C:\ProgramData\USOPrivate =>.Microsoft Corporation
O43 - CFD: 17/04/2017 - [] D -- C:\ProgramData\USOShared =>.Microsoft Corporation
O43 - CFD: 13/01/2017 - [] D -- C:\ProgramData\Vitalwerks =>.Vitalwerks
O43 - CFD: 18/04/2017 - [] AD -- C:\ProgramData\VMware =>.VMware
O43 - CFD: 29/11/2016 - [] SD -- C:\ProgramData\Waves Audio =>.Waves Audio Ltd
O43 - CFD: 20/03/2017 - [] D -- C:\ProgramData\WindowsHolographicDevices
O43 - CFD: 23/11/2016 - [] D -- C:\ProgramData\X360CE =>.Microsoft Corporation
O43 - CFD: 11/04/2017 - [0] D -- C:\ProgramData\{74E9F814-C737-42CC-B721-DBBC4059367A}
O43 - CFD: 26/02/2017 - [0] HDC -- C:\ProgramData\{ADB7358E-7543-493D-9DF6-B0EE6FC51B47}
O43 - CFD: 05/04/2017 - [0] D -- C:\ProgramData\{BE2ACE5C-32B7-4777-9BDF-ECF87CDAB705}
O43 - CFD: 20/03/2017 - [] HDC -- C:\ProgramData\{F0F3660E-3963-4E9E-B44E-192B34C6DECD}
O43 - CFD: 08/04/2017 - [] AD -- C:\Program Files (x86)\Common Files\Adobe =>.Adobe
O43 - CFD: 06/04/2017 - [0] D -- C:\Program Files (x86)\Common Files\AV =>.Avast
O43 - CFD: 29/11/2016 - [] D -- C:\Program Files (x86)\Common Files\Digidesign =>.Digidesign
O43 - CFD: 11/12/2016 - [] D -- C:\Program Files (x86)\Common Files\EZB Systems =>.EZB Systems
O43 - CFD: 07/12/2016 - [] D -- C:\Program Files (x86)\Common Files\InstallShield =>.InstallShield
O43 - CFD: 29/11/2016 - [] D -- C:\Program Files (x86)\Common Files\Intel =>.Intel Corporation
O43 - CFD: 05/04/2017 - [] D -- C:\Program Files (x86)\Common Files\IObit =>.IObit
O43 - CFD: 23/01/2017 - [] D -- C:\Program Files (x86)\Common Files\Java =>.Oracle
O43 - CFD: 25/12/2016 - [] D -- C:\Program Files (x86)\Common Files\Macrovision Shared =>.Rovi Corporation
O43 - CFD: 17/04/2017 - [] D -- C:\Program Files (x86)\Common Files\Microsoft Shared =>.Microsoft Corporation
O43 - CFD: 02/11/2016 - [] D -- C:\Program Files (x86)\Common Files\Propellerhead Software =>.Propellerhead Software AB
O43 - CFD: 07/12/2016 - [] D -- C:\Program Files (x86)\Common Files\ScanSoft Shared =>.Nuance Communications
O43 - CFD: 18/03/2017 - [] D -- C:\Program Files (x86)\Common Files\Services =>.Microsoft Corporation
O43 - CFD: 01/04/2017 - [] D -- C:\Program Files (x86)\Common Files\Steganos =>.Steganos
O43 - CFD: 20/03/2017 - [] D -- C:\Program Files (x86)\Common Files\System =>.Microsoft Corporation
O43 - CFD: 04/04/2017 - [] AD -- C:\Program Files (x86)\Common Files\ThinPrint =>.ThinPrint
O43 - CFD: 04/04/2017 - [] D -- C:\Program Files (x86)\Common Files\VMware =>.VMware
O43 - CFD: 21/12/2016 - [] AD -- C:\Program Files (x86)\Common Files\VST3
O43 - CFD: 29/11/2016 - [] SD -- C:\Program Files (x86)\Common Files\WPAPI
O43 - CFD: 08/04/2017 - [] D -- C:\Users\NASRO\AppData\Roaming\Adobe =>.Adobe
O43 - CFD: 21/04/2017 - [] D -- C:\Users\NASRO\AppData\Roaming\AIMP =>.AIMP2 AUdio Software
O43 - CFD: 05/11/2016 - [] D -- C:\Users\NASRO\AppData\Roaming\Ashampoo =>.Ashampoo GmbH
O43 - CFD: 06/11/2016 - [] RD -- C:\Users\NASRO\AppData\Roaming\Brother =>.Brother
O43 - CFD: 16/12/2016 - [] D -- C:\Users\NASRO\AppData\Roaming\Celemony Software GmbH =>.Celemony Software GmbH
O43 - CFD: 16/12/2016 - [] D -- C:\Users\NASRO\AppData\Roaming\Cycling '74 =>.Cycling '74
O43 - CFD: 21/04/2017 - [] D -- C:\Users\NASRO\AppData\Roaming\DMCache =>.DMCache
O43 - CFD: 07/04/2017 - [] D -- C:\Users\NASRO\AppData\Roaming\ESET =>.ESET
O43 - CFD: 17/04/2017 - [] D -- C:\Users\NASRO\AppData\Roaming\EurekaLab s.a.s =>.EurekaLab
O43 - CFD: 25/03/2017 - [0] D -- C:\Users\NASRO\AppData\Roaming\extensions
O43 - CFD: 02/12/2016 - [] D -- C:\Users\NASRO\AppData\Roaming\FDRLab =>.FDRLab
O43 - CFD: 29/12/2016 - [] D -- C:\Users\NASRO\AppData\Roaming\Garritan =>.Garritan
O43 - CFD: 19/02/2017 - [] D -- C:\Users\NASRO\AppData\Roaming\GlarySoft =>.GlarySoft
O43 - CFD: 17/04/2017 - [] D -- C:\Users\NASRO\AppData\Roaming\IDM =>.IDM
O43 - CFD: 30/01/2017 - [] D -- C:\Users\NASRO\AppData\Roaming\IgniteVST
O43 - CFD: 20/01/2017 - [] D -- C:\Users\NASRO\AppData\Roaming\IK Multimedia =>.IK Multimedia
O43 - CFD: 02/11/2016 - [] D -- C:\Users\NASRO\AppData\Roaming\Image-Line =>.Image-Line
O43 - CFD: 07/12/2016 - [] D -- C:\Users\NASRO\AppData\Roaming\InstallShield =>.InstallShield
O43 - CFD: 21/01/2017 - [] D -- C:\Users\NASRO\AppData\Roaming\IObit =>.IObit
O43 - CFD: 04/01/2017 - [0] D -- C:\Users\NASRO\AppData\Roaming\Learnpulse =>.LearnPulse
O43 - CFD: 06/12/2016 - [] D -- C:\Users\NASRO\AppData\Roaming\LibreOffice =>.LibreOffice
O43 - CFD: 01/11/2016 - [] D -- C:\Users\NASRO\AppData\Roaming\Macromedia =>.Macromedia
O43 - CFD: 01/04/2017 - [] D -- C:\Users\NASRO\AppData\Roaming\Maize Sampler Player =>.Maizesoft
O43 - CFD: 17/04/2017 - [] SD -- C:\Users\NASRO\AppData\Roaming\Microsoft =>.Microsoft Corporation
O43 - CFD: 26/01/2017 - [] D -- C:\Users\NASRO\AppData\Roaming\Mozilla =>.Mozilla Corporation
O43 - CFD: 17/04/2017 - [] D -- C:\Users\NASRO\AppData\Roaming\MPC-HC =>.MPC-HC Team
O43 - CFD: 11/12/2016 - [] D -- C:\Users\NASRO\AppData\Roaming\MusicLab
O43 - CFD: 26/01/2017 - [] D -- C:\Users\NASRO\AppData\Roaming\Netscape =>.Netscape
O43 - CFD: 17/12/2016 - [0] D -- C:\Users\NASRO\AppData\Roaming\New Technology Studio =>.New Technology Studio
O43 - CFD: 10/04/2017 - [] D -- C:\Users\NASRO\AppData\Roaming\Notepad++ =>.Don Ho
O43 - CFD: 27/11/2016 - [] D -- C:\Users\NASRO\AppData\Roaming\Nox =>.FFmpeg Project
O43 - CFD: 03/11/2016 - [] D -- C:\Users\NASRO\AppData\Roaming\NVIDIA =>.nVidia Corporation
O43 - CFD: 10/01/2017 - [] D -- C:\Users\NASRO\AppData\Roaming\Opera Software =>.Opera Software
O43 - CFD: 10/04/2017 - [] D -- C:\Users\NASRO\AppData\Roaming\Performix LLC =>.Performix LLC
O43 - CFD: 26/01/2017 - [] D -- C:\Users\NASRO\AppData\Roaming\Photodex =>.Photodex
O43 - CFD: 27/12/2016 - [] D -- C:\Users\NASRO\AppData\Roaming\Plogue
O43 - CFD: 02/01/2017 - [] D -- C:\Users\NASRO\AppData\Roaming\QFX Software =>.QFX Software
O43 - CFD: 01/04/2017 - [] D -- C:\Users\NASRO\AppData\Roaming\Steganos =>.Steganos
O43 - CFD: 01/04/2017 - [] D -- C:\Users\NASRO\AppData\Roaming\Steganos Updates
O43 - CFD: 30/03/2017 - [] D -- C:\Users\NASRO\AppData\Roaming\Steganos VPN
O43 - CFD: 01/11/2016 - [] D -- C:\Users\NASRO\AppData\Roaming\Sun =>.Oracle
O43 - CFD: 18/03/2017 - [] D -- C:\Users\NASRO\AppData\Roaming\SWAM
O43 - CFD: 10/04/2017 - [] D -- C:\Users\NASRO\AppData\Roaming\TeamViewer =>.TeamViewer
O43 - CFD: 19/11/2016 - [] D -- C:\Users\NASRO\AppData\Roaming\TechSmith =>.TechSmith
O43 - CFD: 04/02/2017 - [] D -- C:\Users\NASRO\AppData\Roaming\Umeng
O43 - CFD: 21/04/2017 - [] D -- C:\Users\NASRO\AppData\Roaming\uTorrent
O43 - CFD: 04/03/2017 - [] D -- C:\Users\NASRO\AppData\Roaming\vlc =>.VideoLan Team
O43 - CFD: 07/04/2017 - [] D -- C:\Users\NASRO\AppData\Roaming\VMware =>.VMware
O43 - CFD: 29/11/2016 - [] D -- C:\Users\NASRO\AppData\Roaming\Waves Audio =>.Waves Audio Ltd
O43 - CFD: 07/03/2017 - [] D -- C:\Users\NASRO\AppData\Roaming\WinRAR =>.WinRAR
O43 - CFD: 21/04/2017 - [] D -- C:\Users\NASRO\AppData\Roaming\ZHP =>.Nicolas Coolman
O43 - CFD: 03/04/2017 - [] D -- C:\Users\NASRO\AppData\Local\Adobe =>.Adobe
O43 - CFD: 15/03/2017 - [] D -- C:\Users\NASRO\AppData\Local\Aiseesoft Studio =>.Aiseesoft Studio
O43 - CFD: 17/04/2017 - [0] SHD -- C:\Users\NASRO\AppData\Local\Application Data =>.Microsoft Corporation
O43 - CFD: 05/11/2016 - [] D -- C:\Users\NASRO\AppData\Local\ashampoo =>.Ashampoo GmbH
O43 - CFD: 13/11/2016 - [] D -- C:\Users\NASRO\AppData\Local\CEF =>.CEF
O43 - CFD: 15/12/2016 - [] D -- C:\Users\NASRO\AppData\Local\Chromium =>.Chromium
O43 - CFD: 01/11/2016 - [] D -- C:\Users\NASRO\AppData\Local\Comms =>.Microsoft Corporation
O43 - CFD: 18/04/2017 - [] D -- C:\Users\NASRO\AppData\Local\ConnectedDevicesPlatform =>.Microsoft Corporation
O43 - CFD: 17/04/2017 - [] D -- C:\Users\NASRO\AppData\Local\CoverEditor
O43 - CFD: 17/04/2017 - [] D -- C:\Users\NASRO\AppData\Local\CrashDumps =>.Microsoft Corporation
O43 - CFD: 01/04/2017 - [] D -- C:\Users\NASRO\AppData\Local\CyberGhost =>.CyberGhost S.R.L
O43 - CFD: 15/04/2017 - [] D -- C:\Users\NASRO\AppData\Local\Diagnostics =>.Microsoft Corporation
O43 - CFD: 22/11/2016 - [] D -- C:\Users\NASRO\AppData\Local\Downloaded Installations =>.Microsoft Corporation
O43 - CFD: 15/12/2016 - [0] D -- C:\Users\NASRO\AppData\Local\ElevatedDiagnostics =>.Microsoft Corporation
O43 - CFD: 07/04/2017 - [] D -- C:\Users\NASRO\AppData\Local\ESET =>.ESET
O43 - CFD: 21/12/2016 - [] D -- C:\Users\NASRO\AppData\Local\Finch_Innovation
O43 - CFD: 10/03/2017 - [] D -- C:\Users\NASRO\AppData\Local\Google =>.Google
O43 - CFD: 17/04/2017 - [0] SHD -- C:\Users\NASRO\AppData\Local\Historique =>.Microsoft Corporation
O43 - CFD: 06/12/2016 - [] D -- C:\Users\NASRO\AppData\Local\IsolatedStorage =>.id Software
O43 - CFD: 04/01/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Learnpulse =>.LearnPulse
O43 - CFD: 06/02/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Mediatek =>.Mediatek
O43 - CFD: 27/01/2017 - [] D -- C:\Users\NASRO\AppData\Local\MegaDownloader
O43 - CFD: 17/04/2017 - [] D -- C:\Users\NASRO\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 01/11/2016 - [] D -- C:\Users\NASRO\AppData\Local\MicrosoftEdge =>.Microsoft Corporation
O43 - CFD: 15/11/2016 - [] D -- C:\Users\NASRO\AppData\Local\Mozilla =>.Mozilla Corporation
O43 - CFD: 07/02/2017 - [] D -- C:\Users\NASRO\AppData\Local\MultiPlayerManager
O43 - CFD: 11/12/2016 - [] D -- C:\Users\NASRO\AppData\Local\MusicLab
O43 - CFD: 04/03/2017 - [] D -- C:\Users\NASRO\AppData\Local\Native Instruments =>.Native Instruments
O43 - CFD: 29/01/2017 - [0] D -- C:\Users\NASRO\AppData\Local\NetworkTiles =>.NetworkTiles
O43 - CFD: 29/11/2016 - [] D -- C:\Users\NASRO\AppData\Local\New Technology Studio =>.New Technology Studio
O43 - CFD: 01/04/2017 - [] D -- C:\Users\NASRO\AppData\Local\Nox =>.FFmpeg Project
O43 - CFD: 15/12/2016 - [] D -- C:\Users\NASRO\AppData\Local\NVIDIA =>.nVidia Corporation
O43 - CFD: 15/12/2016 - [] D -- C:\Users\NASRO\AppData\Local\NVIDIA Corporation =>.nVidia Corporation
O43 - CFD: 21/01/2017 - [] D -- C:\Users\NASRO\AppData\Local\Opera Software =>.Opera Software
O43 - CFD: 17/04/2017 - [] D -- C:\Users\NASRO\AppData\Local\Packages =>.Microsoft Corporation
O43 - CFD: 02/11/2016 - [0] D -- C:\Users\NASRO\AppData\Local\PeerDistRepub =>.Microsoft Corporation
O43 - CFD: 10/04/2017 - [] D -- C:\Users\NASRO\AppData\Local\Performix_LLC =>.Performix LLC
O43 - CFD: 01/11/2016 - [] D -- C:\Users\NASRO\AppData\Local\Programs =>.Microsoft Corporation
O43 - CFD: 01/11/2016 - [] D -- C:\Users\NASRO\AppData\Local\Publishers =>.Microsoft Corporation
O43 - CFD: 23/11/2016 - [] D -- C:\Users\NASRO\AppData\Local\Rockstar Games =>.Rockstar Games
O43 - CFD: 17/12/2016 - [] D -- C:\Users\NASRO\AppData\Local\Rockstar_Games
O43 - CFD: 07/12/2016 - [] D -- C:\Users\NASRO\AppData\Local\Scansoft =>.Scansoft
O43 - CFD: 04/02/2017 - [] D -- C:\Users\NASRO\AppData\Local\SHAREit Technologies
O43 - CFD: 13/12/2016 - [] D -- C:\Users\NASRO\AppData\Local\Shutdown8
O43 - CFD: 06/12/2016 - [] D -- C:\Users\NASRO\AppData\Local\SquirrelTemp =>.Squirrels
O43 - CFD: 19/11/2016 - [] D -- C:\Users\NASRO\AppData\Local\TechSmith =>.TechSmith
O43 - CFD: 21/04/2017 - [] D -- C:\Users\NASRO\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 17/04/2017 - [0] SHD -- C:\Users\NASRO\AppData\Local\Temporary Internet Files =>.Microsoft Corporation
O43 - CFD: 07/04/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign047044f650f1da63 =>.Superfluous.Temporary
O43 - CFD: 19/12/2016 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign05b26e38a14a9a4a =>.Superfluous.Temporary
O43 - CFD: 08/01/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign0616519a24dfcd29 =>.Superfluous.Temporary
O43 - CFD: 07/04/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign08acc04cc5aa3b95 =>.Superfluous.Temporary
O43 - CFD: 22/03/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign0b1c155fcda44aea =>.Superfluous.Temporary
O43 - CFD: 16/04/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign0d9fabf9fa1b5148 =>.Superfluous.Temporary
O43 - CFD: 03/11/2016 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign11114b5f0257dd5d =>.Superfluous.Temporary
O43 - CFD: 06/03/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign1122cda4f39b9752 =>.Superfluous.Temporary
O43 - CFD: 08/01/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign1143116533d03b21 =>.Superfluous.Temporary
O43 - CFD: 16/04/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign11793414264a870e =>.Superfluous.Temporary
O43 - CFD: 06/12/2016 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign11cd512397b1082d =>.Superfluous.Temporary
O43 - CFD: 08/01/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign1411da6abde78ad1 =>.Superfluous.Temporary
O43 - CFD: 19/11/2016 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign14c8c94f83e95a65 =>.Superfluous.Temporary
O43 - CFD: 07/04/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign1531394dc37b6da4 =>.Superfluous.Temporary
O43 - CFD: 21/12/2016 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign162eb85d7490c5d7 =>.Superfluous.Temporary
O43 - CFD: 19/11/2016 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign167caa89ab78c634 =>.Superfluous.Temporary
O43 - CFD: 04/03/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign19a90e68d55cc257 =>.Superfluous.Temporary
O43 - CFD: 05/01/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign1a59cc9792a1299d =>.Superfluous.Temporary
O43 - CFD: 22/03/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign1b734c0bddfd3ba4 =>.Superfluous.Temporary
O43 - CFD: 08/01/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign1e4176d31837c66c =>.Superfluous.Temporary
O43 - CFD: 08/04/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign202e19b4620dbf20 =>.Superfluous.Temporary
O43 - CFD: 22/03/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign20e3a242283a43f2 =>.Superfluous.Temporary
O43 - CFD: 23/11/2016 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign215f52695ace5117 =>.Superfluous.Temporary
O43 - CFD: 22/03/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign2166bc43ba79fba8 =>.Superfluous.Temporary
O43 - CFD: 21/12/2016 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign21685922e119431c =>.Superfluous.Temporary
O43 - CFD: 06/03/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign21d4481efdb12807 =>.Superfluous.Temporary
O43 - CFD: 22/03/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign2654eadf87cf14c8 =>.Superfluous.Temporary
O43 - CFD: 20/11/2016 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign29cc908862f1f16b =>.Superfluous.Temporary
O43 - CFD: 07/04/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign2af494ff2a29697b =>.Superfluous.Temporary
O43 - CFD: 06/03/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign2cd9dc3d6811a4b9 =>.Superfluous.Temporary
O43 - CFD: 06/11/2016 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign2e58217322083250 =>.Superfluous.Temporary
O43 - CFD: 07/03/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign2f56a0c5f119f29c =>.Superfluous.Temporary
O43 - CFD: 22/03/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign320f79cac24694e9 =>.Superfluous.Temporary
O43 - CFD: 06/03/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign34e3d3b0a549a7b2 =>.Superfluous.Temporary
O43 - CFD: 07/04/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign37a4926b293dd704 =>.Superfluous.Temporary
O43 - CFD: 06/03/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign37a7f0a2e92e8412 =>.Superfluous.Temporary
O43 - CFD: 07/04/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign385bd463f032f512 =>.Superfluous.Temporary
O43 - CFD: 06/03/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign3c78a38503f28811 =>.Superfluous.Temporary
O43 - CFD: 05/01/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign3ce765ee03d0484a =>.Superfluous.Temporary
O43 - CFD: 04/03/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign3f7386dfa02821a3 =>.Superfluous.Temporary
O43 - CFD: 06/03/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign40fa5901a8ba71d5 =>.Superfluous.Temporary
O43 - CFD: 21/12/2016 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign41b127d59c8afd3e =>.Superfluous.Temporary
O43 - CFD: 07/02/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign4387596ac4ef66ce =>.Superfluous.Temporary
O43 - CFD: 06/03/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign442a114b12d40ccb =>.Superfluous.Temporary
O43 - CFD: 22/03/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign4b4d6222e7824442 =>.Superfluous.Temporary
O43 - CFD: 22/03/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign5081160a03d5139b =>.Superfluous.Temporary
O43 - CFD: 16/04/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign52110bed99ecdd3a =>.Superfluous.Temporary
O43 - CFD: 06/03/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign5435795a9264dcae =>.Superfluous.Temporary
O43 - CFD: 07/02/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign5539e30349807175 =>.Superfluous.Temporary
O43 - CFD: 07/04/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign56554d203f01798b =>.Superfluous.Temporary
O43 - CFD: 07/02/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign5a781f2646daa720 =>.Superfluous.Temporary
O43 - CFD: 16/04/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign5b2e2a9c337b836f =>.Superfluous.Temporary
O43 - CFD: 21/12/2016 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign5dc959a883d3532e =>.Superfluous.Temporary
O43 - CFD: 06/03/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign5f975b050b4336b1 =>.Superfluous.Temporary
O43 - CFD: 19/11/2016 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign5fc55487a88d19e2 =>.Superfluous.Temporary
O43 - CFD: 21/12/2016 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign66d7db7f40bfa508 =>.Superfluous.Temporary
O43 - CFD: 05/01/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign682d11b914e6b8d5 =>.Superfluous.Temporary
O43 - CFD: 22/03/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign6906d87231b50484 =>.Superfluous.Temporary
O43 - CFD: 22/03/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign6a1462e10e58741d =>.Superfluous.Temporary
O43 - CFD: 22/03/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign6af6a3a293862908 =>.Superfluous.Temporary
O43 - CFD: 16/04/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign6afea6d205920aec =>.Superfluous.Temporary
O43 - CFD: 08/01/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign6c9eb383f2988999 =>.Superfluous.Temporary
O43 - CFD: 20/11/2016 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign716c402fb4d515b7 =>.Superfluous.Temporary
O43 - CFD: 23/11/2016 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign7310d5a723c16c1b =>.Superfluous.Temporary
O43 - CFD: 06/03/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign73e133a133560c86 =>.Superfluous.Temporary
O43 - CFD: 22/03/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign74fe8ede9193e542 =>.Superfluous.Temporary
O43 - CFD: 08/01/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign74ff7fdc4c8c86f7 =>.Superfluous.Temporary
O43 - CFD: 21/12/2016 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign751c7a3556b113c0 =>.Superfluous.Temporary
O43 - CFD: 06/03/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign77dbf39854cceaef =>.Superfluous.Temporary
O43 - CFD: 07/04/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign78d18b0d30a55f52 =>.Superfluous.Temporary
O43 - CFD: 05/01/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign796fd78686792a04 =>.Superfluous.Temporary
O43 - CFD: 22/03/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign79ed88f7bfb95bcf =>.Superfluous.Temporary
O43 - CFD: 07/04/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign7a3788631a507a1c =>.Superfluous.Temporary
O43 - CFD: 22/03/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign7b1fdcb252ffac79 =>.Superfluous.Temporary
O43 - CFD: 20/11/2016 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign7d8da7eb5b862724 =>.Superfluous.Temporary
O43 - CFD: 07/03/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign7e86ef5f4460a815 =>.Superfluous.Temporary
O43 - CFD: 04/03/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign7ea9268bd9cb62d1 =>.Superfluous.Temporary
O43 - CFD: 06/03/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign7f4db8003ce69673 =>.Superfluous.Temporary
O43 - CFD: 05/01/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign83f805b8f11fb799 =>.Superfluous.Temporary
O43 - CFD: 21/12/2016 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign8641f9461b75dca1 =>.Superfluous.Temporary
O43 - CFD: 08/01/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign89cbc88627f76813 =>.Superfluous.Temporary
O43 - CFD: 20/11/2016 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign8abf9a04661c29c6 =>.Superfluous.Temporary
O43 - CFD: 29/11/2016 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign8d1747c398af7f4c =>.Superfluous.Temporary
O43 - CFD: 19/12/2016 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign8f85dfdcc1c98abe =>.Superfluous.Temporary
O43 - CFD: 07/02/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign92d2797d20633e9c =>.Superfluous.Temporary
O43 - CFD: 06/03/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign938d854980e820fc =>.Superfluous.Temporary
O43 - CFD: 08/01/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign942c7b9ea02b2e0e =>.Superfluous.Temporary
O43 - CFD: 06/03/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign94fcbe50cec2ab06 =>.Superfluous.Temporary
O43 - CFD: 03/11/2016 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign96fbf65c4e220396 =>.Superfluous.Temporary
O43 - CFD: 07/04/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign9840a29fbe26a292 =>.Superfluous.Temporary
O43 - CFD: 05/01/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign9ce26b01707a75e9 =>.Superfluous.Temporary
O43 - CFD: 07/04/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign9d0a44cea1e59a9a =>.Superfluous.Temporary
O43 - CFD: 22/03/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsign9f9dd7bef98a7140 =>.Superfluous.Temporary
O43 - CFD: 22/03/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsigna27beb1a5a2cc387 =>.Superfluous.Temporary
O43 - CFD: 05/01/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsigna401b534be4c8414 =>.Superfluous.Temporary
O43 - CFD: 08/01/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsigna75e118de8ed0b3c =>.Superfluous.Temporary
O43 - CFD: 07/02/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsigna9a58956e05f4305 =>.Superfluous.Temporary
O43 - CFD: 07/02/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsignab57a580c6757362 =>.Superfluous.Temporary
O43 - CFD: 09/12/2016 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsignabc65fcb746c8c67 =>.Superfluous.Temporary
O43 - CFD: 04/03/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsignac657b9d156c9e3c =>.Superfluous.Temporary
O43 - CFD: 07/04/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsignae9e5ab8488058fd =>.Superfluous.Temporary
O43 - CFD: 23/11/2016 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsignafcc96d9faa832cd =>.Superfluous.Temporary
O43 - CFD: 21/12/2016 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsignb1cd3bc1f570e703 =>.Superfluous.Temporary
O43 - CFD: 21/12/2016 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsignb2c10167dc1fe0ba =>.Superfluous.Temporary
O43 - CFD: 06/03/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsignb38b99b3eb3215df =>.Superfluous.Temporary
O43 - CFD: 19/11/2016 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsignb48c0965ac8a83c4 =>.Superfluous.Temporary
O43 - CFD: 16/04/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsignb636b0eb786e5ed0 =>.Superfluous.Temporary
O43 - CFD: 07/04/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsignb6a467d719eea25f =>.Superfluous.Temporary
O43 - CFD: 05/01/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsignb9004838473fbf23 =>.Superfluous.Temporary
O43 - CFD: 03/11/2016 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsignb904717a0c833df2 =>.Superfluous.Temporary
O43 - CFD: 20/11/2016 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsignb9dee86e3657ea46 =>.Superfluous.Temporary
O43 - CFD: 07/04/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsignbb0f6f50c424e42b =>.Superfluous.Temporary
O43 - CFD: 22/03/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsignbb3cb028a1d32842 =>.Superfluous.Temporary
O43 - CFD: 06/03/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsignbc79dd40db78191a =>.Superfluous.Temporary
O43 - CFD: 06/03/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsignbca5c4ced58e2ed5 =>.Superfluous.Temporary
O43 - CFD: 06/03/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsignbe72ef73a2f6b9c2 =>.Superfluous.Temporary
O43 - CFD: 16/04/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsignbedfb7e6977aa177 =>.Superfluous.Temporary
O43 - CFD: 22/03/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsignbf13733e3447cc4a =>.Superfluous.Temporary
O43 - CFD: 07/04/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsignbf5fd80cbb967474 =>.Superfluous.Temporary
O43 - CFD: 19/12/2016 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsignc1fcca52db258598 =>.Superfluous.Temporary
O43 - CFD: 08/04/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsignc51cac775f1ade4e =>.Superfluous.Temporary
O43 - CFD: 06/03/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsignc5c170313c238e4d =>.Superfluous.Temporary
O43 - CFD: 06/03/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsignc738068b64dc8532 =>.Superfluous.Temporary
O43 - CFD: 22/03/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsignc8fb1917d0ec13e1 =>.Superfluous.Temporary
O43 - CFD: 07/04/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsigncacb77586c63434f =>.Superfluous.Temporary
O43 - CFD: 06/03/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsigncb2e031e83a1cc1a =>.Superfluous.Temporary
O43 - CFD: 07/04/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsigncc1a6f4fb904a603 =>.Superfluous.Temporary
O43 - CFD: 22/03/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsigncd0254441fd2538c =>.Superfluous.Temporary
O43 - CFD: 19/12/2016 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsignce7a2a43899a9110 =>.Superfluous.Temporary
O43 - CFD: 16/04/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsignd190194db2a929db =>.Superfluous.Temporary
O43 - CFD: 19/11/2016 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsignd4e29a85ea62f224 =>.Superfluous.Temporary
O43 - CFD: 21/12/2016 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsignd68b78f6243f821e =>.Superfluous.Temporary
O43 - CFD: 21/12/2016 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsignd8ab2c8888619504 =>.Superfluous.Temporary
O43 - CFD: 21/12/2016 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsignd99d1cbeb44ec5df =>.Superfluous.Temporary
O43 - CFD: 06/03/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsignda83f4eebe8512ef =>.Superfluous.Temporary
O43 - CFD: 19/12/2016 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsigndb5fe1f32f5443ae =>.Superfluous.Temporary
O43 - CFD: 05/01/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsigndc66642640b612a5 =>.Superfluous.Temporary
O43 - CFD: 07/04/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsigndec0e43cf6b44a0e =>.Superfluous.Temporary
O43 - CFD: 07/04/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsigne1a482ade696a38f =>.Superfluous.Temporary
O43 - CFD: 19/11/2016 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsigne1f98ea5deae45d7 =>.Superfluous.Temporary
O43 - CFD: 22/03/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsigne269de7153afdb4d =>.Superfluous.Temporary
O43 - CFD: 03/11/2016 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsigne3a4ebdb8962aed0 =>.Superfluous.Temporary
O43 - CFD: 07/04/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsigne503e5f185e03315 =>.Superfluous.Temporary
O43 - CFD: 22/03/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsigne5d7bfea8264277b =>.Superfluous.Temporary
O43 - CFD: 07/04/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsigne5e3ead1a55ffa4d =>.Superfluous.Temporary
O43 - CFD: 07/04/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsigne7cc660a8cd2e331 =>.Superfluous.Temporary
O43 - CFD: 08/01/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsigneb37134268466710 =>.Superfluous.Temporary
O43 - CFD: 07/03/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsignecb3e14b5978ddd4 =>.Superfluous.Temporary
O43 - CFD: 07/04/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsignf2f4e14794e31438 =>.Superfluous.Temporary
O43 - CFD: 07/02/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsignf3259c5d33b5f9b1 =>.Superfluous.Temporary
O43 - CFD: 19/11/2016 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsignf37b48f36cf27021 =>.Superfluous.Temporary
O43 - CFD: 22/03/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsignf64d35f14db0a095 =>.Superfluous.Temporary
O43 - CFD: 22/03/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsignf7a5e054c6a1da8b =>.Superfluous.Temporary
O43 - CFD: 08/01/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsignf8c0a6480dea8582 =>.Superfluous.Temporary
O43 - CFD: 19/12/2016 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsignfb0ee14187b32bc9 =>.Superfluous.Temporary
O43 - CFD: 22/03/2017 - [0] D -- C:\Users\NASRO\AppData\Local\Tempzxpsignfc0b65f266a14393 =>.Superfluous.Temporary
O43 - CFD: 01/11/2016 - [] D -- C:\Users\NASRO\AppData\Local\TileDataLayer =>.Microsoft Corporation
O43 - CFD: 17/11/2016 - [] D -- C:\Users\NASRO\AppData\Local\uts
O43 - CFD: 30/03/2017 - [] D -- C:\Users\NASRO\AppData\Local\VirtualStore =>.Microsoft Corporation
O43 - CFD: 13/01/2017 - [] D -- C:\Users\NASRO\AppData\Local\Vitalwerks =>.Vitalwerks
O43 - CFD: 07/04/2017 - [] D -- C:\Users\NASRO\AppData\Local\VMware =>.VMware
O43 - CFD: 29/11/2016 - [] D -- C:\Users\NASRO\AppData\Local\Waves Audio =>.Waves Audio Ltd
O43 - CFD: 03/02/2017 - [] D -- C:\Users\NASRO\AppData\Local\Zemana =>.Zemana
O43 - CFD: 21/04/2017 - [] D -- C:\Users\NASRO\AppData\Local\ZHP =>.Nicolas Coolman
O43 - CFD: 01/11/2016 - [0] D -- C:\Users\NASRO\AppData\Local\Programs\Common =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] RD -- C:\Users\NASRO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility =>.Microsoft Corporation
O43 - CFD: 17/04/2017 - [] RD -- C:\Users\NASRO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories =>.Microsoft Corporation
O43 - CFD: 17/04/2017 - [] RD -- C:\Users\NASRO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools
O43 - CFD: 17/04/2017 - [] D -- C:\Users\NASRO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AirVPN
O43 - CFD: 17/04/2017 - [] D -- C:\Users\NASRO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Android =>.Android
O43 - CFD: 17/04/2017 - [] D -- C:\Users\NASRO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ASIO4ALL v2 =>.Michael Tippach
O43 - CFD: 19/12/2016 - [0] D -- C:\Users\NASRO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Best Service Orient World
O43 - CFD: 17/04/2017 - [] D -- C:\Users\NASRO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\East West Ra
O43 - CFD: 17/04/2017 - [] D -- C:\Users\NASRO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image-Line =>.Image-Line
O43 - CFD: 17/04/2017 - [] D -- C:\Users\NASRO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager =>.Tonec Inc
O43 - CFD: 17/04/2017 - [] D -- C:\Users\NASRO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Macrorit Disk Partition Expert Professional
O43 - CFD: 18/03/2017 - [] D -- C:\Users\NASRO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance =>.Microsoft Corporation
O43 - CFD: 17/04/2017 - [] D -- C:\Users\NASRO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\No-IP DUC =>.Vitalwerks Internet Solutions
O43 - CFD: 17/04/2017 - [] RD -- C:\Users\NASRO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] RD -- C:\Users\NASRO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] RD -- C:\Users\NASRO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell =>.Microsoft Corporation
O43 - CFD: 17/04/2017 - [] D -- C:\Users\NASRO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR
O43 - CFD: 17/12/2016 - [0] D -- C:\Users\NASRO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ZenGuard GmbH =>.ZenGuard GmbH
O43 - CFD: 17/04/2017 - [0] SHD -- C:\Users\Default\AppData\Local\Application Data =>.Microsoft Corporation
O43 - CFD: 01/11/2016 - [0] SHD -- C:\Users\Default\AppData\Local\Historique =>.Microsoft Corporation
O43 - CFD: 20/03/2017 - [] D -- C:\Users\Default\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [0] D -- C:\Users\Default\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 17/04/2017 - [0] SHD -- C:\Users\Default\AppData\Local\Temporary Internet Files =>.Microsoft Corporation
O43 - CFD: 17/04/2017 - [0] SHD -- C:\Users\Default User\AppData\Local\Application Data =>.Microsoft Corporation
O43 - CFD: 01/11/2016 - [0] SHD -- C:\Users\Default User\AppData\Local\Historique =>.Microsoft Corporation
O43 - CFD: 20/03/2017 - [] D -- C:\Users\Default User\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [0] D -- C:\Users\Default User\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 17/04/2017 - [0] SHD -- C:\Users\Default User\AppData\Local\Temporary Internet Files =>.Microsoft Corporation
O43 - CFD: 17/04/2017 - [] D -- C:\WINDOWS\System32\Config\systemprofile\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 17/04/2017 - [] -- C:\WINDOWS\System32\Config\systemprofile\AppData\Roaming\IObit =>.IObit
O43 - CFD: 17/04/2017 - [] D -- C:\WINDOWS\System32\Config\systemprofile\AppData\Roaming\Performix LLC =>.Performix LLC
O43 - CFD: 18/04/2017 - [0] D -- C:\WINDOWS\System32\Config\systemprofile\AppData\Roaming\VMware =>.VMware

---\\ Derniers fichiers créés dans Windows Prefetcher (1) - 10s
O45 - LFCP:[MD5.5DD9106FA7300A0E0AF0ED629A773B5F] 17/04/2017 A -- C:\WINDOWS\Prefetch\BROWSERPROTECT.EXE-C73693F7.pf =>PUP.Optional.Eazel

---\\ ShellIconOverlayIdentifiers (SIOI) (6) - 0s
O106 - SIOI: ErrorOverlayHandler Class [ OneDrive1] - {BBACC218-34EA-4666-9D7A-C78F2274A524}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\NASRO\AppData\Local\Microsoft\OneDrive\17.3.6816.0313\FileSyncShell.dll {330000004C80D5F9985076B09C00010000004C} =>.Microsoft Corporation
O106 - SIOI: SharedOverlayHandler Class [ OneDrive2] - {5AB7172C-9C11-405C-8DD5-AF20F3606282}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\NASRO\AppData\Local\Microsoft\OneDrive\17.3.6816.0313\FileSyncShell.dll {330000004C80D5F9985076B09C00010000004C} =>.Microsoft Corporation
O106 - SIOI: SharedSyncingOverlayHandler Class [ OneDrive3] - {A78ED123-AB77-406B-9962-2A5D9D2F7F30}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\NASRO\AppData\Local\Microsoft\OneDrive\17.3.6816.0313\FileSyncShell.dll {330000004C80D5F9985076B09C00010000004C} =>.Microsoft Corporation
O106 - SIOI: UpToDateOverlayHandler Class [ OneDrive4] - {F241C880-6982-4CE5-8CF7-7085BA96DA5A}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\NASRO\AppData\Local\Microsoft\OneDrive\17.3.6816.0313\FileSyncShell.dll {330000004C80D5F9985076B09C00010000004C} =>.Microsoft Corporation
O106 - SIOI: SyncingOverlayHandler Class [ OneDrive5] - {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\NASRO\AppData\Local\Microsoft\OneDrive\17.3.6816.0313\FileSyncShell.dll {330000004C80D5F9985076B09C00010000004C} =>.Microsoft Corporation
O106 - SIOI: ReadOnlyOverlayHandler Class [ OneDrive6] - {9AA2F32D-362A-42D9-9328-24A483E2CCC3}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\NASRO\AppData\Local\Microsoft\OneDrive\17.3.6816.0313\FileSyncShell.dll {330000004C80D5F9985076B09C00010000004C} =>.Microsoft Corporation

---\\ Image File Execution Options (18) - 1s
O50 - IFEO:C:\Windows\System32\cscript.exe - (.Microsoft Corporation - Microsoft ® Console Based Script Host.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\dllhost.exe - (.Microsoft Corporation - COM Surrogate.) [DisableExceptionChainValidation\\3] =>.Microsoft Windows®
O50 - IFEO:C:\WINDOWS\System32\drvinst.exe - (.Microsoft Corporation - Module d’installation de pilotes.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\ie4uinit.exe - (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\ieUnatt.exe - (.Microsoft Corporation - Outil d’installation sans assistance d’IE 7.) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\mmc.exe - (.Microsoft Corporation - Microsoft Management Console.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\MRT.exe - (.Microsoft Corporation - Outil de suppression de logiciels malveilla.) [CFGOptions\\1] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\msfeedssync.exe - (.Microsoft Corporation - Microsoft Feeds Synchronization.) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\mshta.exe - (.Microsoft Corporation - Hôte des applications HTML de Microsoft(R).) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\PresentationHost.exe - (.Microsoft Corporation - Windows Presentation Foundation Host.) [MitigationOptions\\1118481] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\PrintIsolationHost.exe - (.Microsoft Corporation - PrintIsolationHost.) [MitigationOptions\\2097152] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\rundll32.exe - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\runtimebroker.exe - (.Microsoft Corporation - Runtime Broker.) [MitigationOptions\\4294967296] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\searchprotocolhost.exe - (.Microsoft Corporation - Microsoft Windows Search Protocol Host.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\spoolsv.exe - (.Microsoft Corporation - Application sous-système spouleur.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\spoolsv.exe - (.Microsoft Corporation - Application sous-système spouleur.) [MitigationOptions\\2097152] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\svchost.exe - (.Microsoft Corporation - Processus hôte pour les services Windows.) [MinimumStackCommitInBytes\\32768] =>.Microsoft Windows Publisher®
O50 - IFEO:C:\Windows\System32\wscript.exe - (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation

---\\ Liste des pilotes du système (87) - 18s
O58 - SDL:2016/12/17 12:38:32 A . (.Malwarebytes - Malwarebytes SwissArmy.) -- C:\WINDOWS\System32\drivers\035151DF.sys [250816] =>.Malwarebytes Corporation®
O58 - SDL:2016/12/31 23:20:53 A . (.Malwarebytes - Malwarebytes SwissArmy.) -- C:\WINDOWS\System32\drivers\347A035F.sys [250816] =>.Malwarebytes Corporation®
O58 - SDL:2017/03/18 22:56:25 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\WINDOWS\System32\drivers\3ware.sys [107424] =>.Microsoft Windows®
O58 - SDL:2017/03/27 08:01:46 A . (.Auteurs - Adguard WFP network driver x64 for Windows.) -- C:\WINDOWS\System32\drivers\adgnetworkwfpdrv.sys [81000] =>.Microsoft Windows Hardware Compatibility Publisher®
O58 - SDL:2017/03/18 22:56:25 A . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS.) -- C:\WINDOWS\System32\drivers\adp80xx.sys [1135512] =>.Microsoft Windows®
O58 - SDL:2017/03/18 22:56:25 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\WINDOWS\System32\drivers\amdsata.sys [83352] =>.Microsoft Windows®
O58 - SDL:2017/03/18 22:56:25 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\WINDOWS\System32\drivers\amdsbs.sys [259488] =>.Microsoft Windows®
O58 - SDL:2017/03/18 22:56:25 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\WINDOWS\System32\drivers\amdxata.sys [27040] =>.Microsoft Windows®
O58 - SDL:2017/03/18 22:56:25 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\WINDOWS\System32\drivers\arcsas.sys [132000] =>.Microsoft Windows®
O58 - SDL:2013/11/20 20:43:50 A . (.Qualcomm Atheros Communications, Inc. - Qualcomm Atheros USB Wireless LAN device dr.) -- C:\WINDOWS\System32\drivers\athuwbx.sys [2702336] =>.Qualcomm Atheros Communications, Inc.
O58 - SDL:2017/03/18 22:56:25 A . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\WINDOWS\System32\drivers\bcmfn2.sys [9728] =>.Windows (R) Win 7 DDK provider
O58 - SDL:2017/03/18 22:56:23 A . (.QLogic Corporation - QLogic Gigabit Ethernet VBD.) -- C:\WINDOWS\System32\drivers\bxvbda.sys [533920] =>.Microsoft Windows®
O58 - SDL:2017/03/18 22:56:25 A . (.Chelsio Communications - Chelsio iSCSI Crash Dump Driver.) -- C:\WINDOWS\System32\drivers\cht4dx64.sys [102816] =>.Microsoft Windows®
O58 - SDL:2017/03/18 22:56:25 A . (.Chelsio Communications - Chelsio iSCSI VMiniport Driver.) -- C:\WINDOWS\System32\drivers\cht4sx64.sys [347032] =>.Microsoft Windows®
O58 - SDL:2017/03/18 22:56:25 A . (.Chelsio Communications - Virtual Bus Driver for Chelsio ® T4 Chipset.) -- C:\WINDOWS\System32\drivers\cht4vx64.sys [2104224] =>.Microsoft Windows®
O58 - SDL:2017/01/17 09:15:38 A . (.ESET - Amon monitor.) -- C:\WINDOWS\System32\drivers\eamonm.sys [132272] =>.ESET, spol. s r.o.®
O58 - SDL:2017/01/17 09:15:38 A . (.ESET - Devmon monitor.) -- C:\WINDOWS\System32\drivers\edevmon.sys [106768] =>.ESET, spol. s r.o.®
O58 - SDL:2017/01/17 09:15:38 A . (.ESET - ESET ELAM driver.) -- C:\WINDOWS\System32\drivers\eelam.sys [15488] =>.Microsoft Windows Early Launch Anti-malware Publisher®
O58 - SDL:2017/01/17 09:15:38 A . (.ESET - ESET Helper driver.) -- C:\WINDOWS\System32\drivers\ehdrv.sys [180544] =>.ESET, spol. s r.o.®
O58 - SDL:2017/01/17 09:15:38 A . (.ESET - ESET OPP Keyboard Filter.) -- C:\WINDOWS\System32\drivers\ekbdflt.sys [49672] =>.ESET, spol. s r.o.®
O58 - SDL:2017/01/17 09:15:38 A . (.ESET - ESET Personal Firewall driver.) -- C:\WINDOWS\System32\drivers\epfw.sys [77616] =>.ESET, spol. s r.o.®
O58 - SDL:2017/01/17 09:15:38 A . (.ESET - ESET Personal Firewall driver.) -- C:\WINDOWS\System32\drivers\epfwwfp.sys [96856] =>.ESET, spol. s r.o.®
O58 - SDL:2017/03/18 22:56:23 A . (.QLogic Corporation - QLogic 10 GigE VBD.) -- C:\WINDOWS\System32\drivers\evbda.sys [3419040] =>.Microsoft Windows®
O58 - SDL:2016/12/05 15:32:38 A . (.BitDefender LLC - BitDefender Gonzales FileSystem Driver.) -- C:\WINDOWS\System32\drivers\gzflt.sys [183576] =>.Bitdefender SRL®
O58 - SDL:2017/02/20 08:02:44 A . (.VMware, Inc. - VMware USB monitor.) -- C:\WINDOWS\System32\drivers\hcmon.sys [83008] =>.VMware, Inc.®
O58 - SDL:2017/03/18 22:56:25 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\WINDOWS\System32\drivers\HpSAMD.sys [64416] =>.Microsoft Windows®
O58 - SDL:2017/03/18 22:56:28 A . (.Intel(R) Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\iagpio.sys [33280] =>.Intel(R) Corporation
O58 - SDL:2017/03/18 22:56:28 A . (.Intel(R) Corporation - Intel(R) Serial IO I2C Driver.) -- C:\WINDOWS\System32\drivers\iai2c.sys [81408] =>.Intel(R) Corporation
O58 - SDL:2017/03/18 22:56:28 A . (.Intel Corporation - Intel(R) Serial IO GPIO Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [70656] =>.Intel Corporation
O58 - SDL:2017/03/18 22:56:28 A . (.Intel Corporation - Intel(R) Serial IO GPIO Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [85504] =>.Intel Corporation
O58 - SDL:2017/03/18 22:56:28 A . (.Intel Corporation - Intel(R) Serial IO I2C Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [165376] =>.Intel Corporation
O58 - SDL:2017/03/18 22:56:28 A . (.Intel Corporation - Intel(R) Serial IO I2C Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [168448] =>.Intel Corporation
O58 - SDL:2017/03/18 22:56:23 A . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [38128] =>.Intel Corporation - Client Components Group®
O58 - SDL:2017/03/18 22:56:19 A . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [113152] =>.Intel Corporation
O58 - SDL:2017/03/18 22:56:26 A . (.Intel Corporation - Intel(R) Rapid Storage Technology driver (i.) -- C:\WINDOWS\System32\drivers\iaStorAV.sys [673184] =>.Microsoft Windows®
O58 - SDL:2017/03/18 22:56:26 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\WINDOWS\System32\drivers\iaStorV.sys [412064] =>.Microsoft Windows®
O58 - SDL:2017/03/18 22:56:25 A . (.Mellanox - InfiniBand Fabric Bus Driver.) -- C:\WINDOWS\System32\drivers\ibbus.sys [526240] =>.Microsoft Windows®
O58 - SDL:2016/10/17 17:35:48 A . (.Tonec Inc. - Internet Download Manager WFP Driver.) -- C:\WINDOWS\System32\drivers\idmwfp.sys [223464] =>.Tonec Inc.®
O58 - SDL:2015/11/24 15:39:24 A . (.ITE Tech. Inc. - ITE Consumer IR Driver for eHome.) -- C:\WINDOWS\System32\drivers\itecir.sys [88184] =>.ITE Tech. Inc.®
O58 - SDL:2015/11/24 15:39:24 A . (.ITE Tech. Inc. - ITECIR Filter Driver.) -- C:\WINDOWS\System32\drivers\ITECIRfilter.sys [36560] =>.ITE Tech. Inc.®
O58 - SDL:2015/08/18 18:25:20 A . (.QFX Software Corporation - KeyScrambler Keyboard Encryption Driver.) -- C:\WINDOWS\System32\drivers\keyscrambler.sys [224720] =>.QFX Software Corporation®
O58 - SDL:2017/03/18 22:56:25 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas.sys [108960] =>.Microsoft Windows®
O58 - SDL:2017/03/18 22:56:25 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas2i.sys [123808] =>.Microsoft Windows®
O58 - SDL:2017/03/18 22:56:25 A . (.Avago Technologies - Avago SAS Gen3 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas3i.sys [103328] =>.Microsoft Windows®
O58 - SDL:2017/03/18 22:56:25 A . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sss.sys [82848] =>.Microsoft Windows®
O58 - SDL:2017/03/18 22:56:25 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\megasas.sys [59808] =>.Microsoft Windows®
O58 - SDL:2017/03/18 22:56:25 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\MegaSas2i.sys [64416] =>.Microsoft Windows®
O58 - SDL:2017/03/18 22:56:25 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\WINDOWS\System32\drivers\megasr.sys [575904] =>.Microsoft Windows®
O58 - SDL:2014/08/30 16:01:30 A . (.MusicLab, Inc. - MusicLab Virtual MIDI Device.) -- C:\WINDOWS\System32\drivers\mlkumidi.sys [55856] {112185F23ECB0DEDF5185610A6F92CA801B0} =>.MusicLab, Inc.
O58 - SDL:2017/03/18 22:56:25 A . (.Mellanox - MLX4 Bus Driver.) -- C:\WINDOWS\System32\drivers\mlx4_bus.sys [842656] =>.Microsoft Windows®
O58 - SDL:2017/03/18 22:56:25 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\WINDOWS\System32\drivers\mvumis.sys [63904] =>.Microsoft Windows®
O58 - SDL:2017/03/18 22:56:25 A . (.Mellanox - NetworkDirect Support Filter Driver.) -- C:\WINDOWS\System32\drivers\ndfltr.sys [108960] =>.Microsoft Windows®
O58 - SDL:2016/12/29 19:25:53 A . (.SoftEther Corporation - SoftEther VPN.) -- C:\WINDOWS\System32\drivers\Neo6_x64_VPN.sys [38216] =>.SoftEther Corporation®
O58 - SDL:2017/04/02 18:12:15 A . (.NVIDIA Corporation - NVIDIA HDMI Audio Driver.) -- C:\WINDOWS\System32\drivers\nvhda64v.sys [218040] =>.NVIDIA Corporation®
O58 - SDL:2017/03/18 22:56:25 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\WINDOWS\System32\drivers\nvraid.sys [150432] =>.Microsoft Windows®
O58 - SDL:2017/03/18 22:56:25 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\WINDOWS\System32\drivers\nvstor.sys [166304] =>.Microsoft Windows®
O58 - SDL:2017/04/01 02:41:27 A . (.NVIDIA Corporation - NVIDIA Virtual Audio Driver.) -- C:\WINDOWS\System32\drivers\nvvad64v.sys [66608] =>.NVIDIA Corporation®
O58 - SDL:2017/04/01 02:41:38 A . (.NVIDIA Corporation - Virtual USB Host Controller driver.) -- C:\WINDOWS\System32\drivers\nvvhci.sys [76840] =>.NVIDIA Corporation®
O58 - SDL:2017/03/18 22:56:25 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas2i.sys [58784] =>.Microsoft Windows®
O58 - SDL:2017/03/18 22:56:25 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas3i.sys [61848] =>.Microsoft Windows®
O58 - SDL:2016/12/21 20:24:28 A . (.Realtek - Realtek 8101E/8168/8169 NDIS 6.40 64-bit Dr.) -- C:\WINDOWS\System32\drivers\rt640x64.sys [946696] =>.Realtek Semiconductor Corp.®
O58 - SDL:2016/12/21 20:25:07 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\WINDOWS\System32\drivers\RTKVHD64.sys [5523456] =>.Realtek Semiconductor Corp.®
O58 - SDL:2016/10/02 02:50:20 A . (.Power Software Ltd - PowerISO Virtual Drive.) -- C:\WINDOWS\System32\drivers\scdemu.sys [137280] =>.Power Software Limited®
O58 - SDL:2017/03/18 22:56:26 A . (.Auteurs - .) -- C:\WINDOWS\System32\drivers\SDFRd.sys [31128] =>.Microsoft Windows®
O58 - SDL:2016/12/29 19:28:40 A . (.SoftEther Corporation - SoftEther VPN.) -- C:\WINDOWS\System32\drivers\SeLow_x64.sys [51024] =>.SoftEther Corporation®
O58 - SDL:2017/03/18 22:56:25 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid2.sys [44960] =>.Microsoft Windows®
O58 - SDL:2017/03/18 22:56:25 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid4.sys [81824] =>.Microsoft Windows®
O58 - SDL:2017/03/18 22:56:25 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\WINDOWS\System32\drivers\stexstor.sys [31136] =>.Microsoft Windows®
O58 - SDL:2016/04/21 11:10:04 A . (.The OpenVPN Project - TAP-Windows Virtual Network Driver (NDIS 6..) -- C:\WINDOWS\System32\drivers\tap0901.sys [27136] =>.The OpenVPN Project
O58 - SDL:2016/03/29 07:01:56 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [186424] =>.Intel(R) Embedded Subsystems and IP Blocks Group®
O58 - SDL:2016/11/27 09:59:27 A . (.BigNox Corporation - VirtualBox USB Monitor Driver.) -- C:\WINDOWS\System32\drivers\VBoxUSBMon.sys [127432] =>.Duodian Online Technology Co. Ltd.®
O58 - SDL:2016/09/30 01:12:02 A . (.VMware, Inc. - VMware PCI VMCI Bus Device.) -- C:\WINDOWS\System32\drivers\vmci.sys [105024] =>.VMware, Inc.®
O58 - SDL:2017/03/21 19:01:38 A . (.VMware, Inc. - VMware virtual network driver (64-bit).) -- C:\WINDOWS\System32\drivers\vmnet.sys [46032] =>.VMware, Inc.®
O58 - SDL:2017/03/21 19:01:38 A . (.VMware, Inc. - VMware virtual network adapter driver (64-b.) -- C:\WINDOWS\System32\drivers\vmnetadapter.sys [46040] =>.VMware, Inc.®
O58 - SDL:2017/03/21 19:01:38 A . (.VMware, Inc. - VMware bridge driver (64-bit).) -- C:\WINDOWS\System32\drivers\vmnetbridge.sys [66520] =>.VMware, Inc.®
O58 - SDL:2017/03/21 19:01:38 A . (.VMware, Inc. - VMware network application interface driver.) -- C:\WINDOWS\System32\drivers\vmnetuserif.sys [43992] =>.VMware, Inc.®
O58 - SDL:2017/03/21 19:13:04 A . (.VMware, Inc. - VMware kernel driver.) -- C:\WINDOWS\System32\drivers\vmx86.sys [88128] =>.VMware, Inc.®
O58 - SDL:2017/03/18 22:56:25 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\WINDOWS\System32\drivers\vsmraid.sys [166816] =>.Microsoft Windows®
O58 - SDL:2016/09/30 01:12:02 A . (.VMware, Inc. - VMware vSockets Service.) -- C:\WINDOWS\System32\drivers\vsock.sys [91712] =>.VMware, Inc.®
O58 - SDL:2017/03/18 22:56:25 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\WINDOWS\System32\drivers\VSTXRAID.SYS [305568] =>.Microsoft Windows®
O58 - SDL:2015/11/12 23:50:10 A . (.Western Digital Technologies, Inc. - Western Digital SCSI Architecture Model (SA.) -- C:\WINDOWS\System32\drivers\wdcsam64.sys [26880] =>.WDKTestCert wdclab,130885612892544312®
O58 - SDL:2017/03/18 22:56:25 A . (.Mellanox - Kernel WinMad.) -- C:\WINDOWS\System32\drivers\winmad.sys [32160] =>.Microsoft Windows®
O58 - SDL:2017/03/18 22:56:25 A . (.Mellanox - Kernel WinVerbs.) -- C:\WINDOWS\System32\drivers\winverbs.sys [64920] =>.Microsoft Windows®
O58 - SDL:2016/11/27 09:59:27 A . (.BigNox Corporation - VirtualBox Support Driver.) -- C:\WINDOWS\System32\drivers\XQHDrv.sys [253384] =>.Duodian Online Technology Co. Ltd.®
O58 - SDL:2015/07/10 14:48:50 A . (.Intel Corporation - Intel(R) Acpi Control Driver.) -- C:\WINDOWS\System32\drivers\XtuAcpiDriver.sys [63840] =>.Intel(R) Software®
O58 - SDL:2017/02/03 13:55:38 A . (.Zemana Ltd. - ZAM.) -- C:\WINDOWS\System32\drivers\zamguard64.sys [203680] =>.Zemana Ltd.®
O58 - SDL:2013/02/25 11:10:02 A . (.Auteurs - .) -- C:\WINDOWS\System32\MDA_NTDRV.sys [21208] {0AD643854376C0595A51FE449D7A7A64}

---\\ Associations Shell Spawning (10) - 0s
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Ob.) -- C:\Windows\System32\eventvwr.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S

---\\ Menu de démarrage Internet (20) - 0s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\Launcher.exe =>.Opera Software AS®
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- C:\Program Files\AVAST Software\SZBrowser\Launcher.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\launcher.exe =>.Opera Software
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (...) -- C:\Program Files\AVAST Software\SZBrowser\Launcher.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\launcher.exe =>.Opera Software
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (...) -- C:\Program Files\AVAST Software\SZBrowser\Launcher.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\launcher.exe =>.Opera Software
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (...) -- C:\Program Files\AVAST Software\SZBrowser\Launcher.exe (.not file.)

---\\ Recherche d'infection sur les navigateurs (3) - 8s
O69 - SBI: prefs.js [NASRO - ps9whlyp.default] user_pref("network.http.request.max-start-delay", 0); =>.Superfluous.MaxStart
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/ =>.Bing.com
O69 - SBI: SearchScopes [HKLM] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (@ieframe.dll,-12512) - http://www.bing.com/ =>.Bing.com

---\\ Enumère les services démarrés par Svchost (48) - 1s
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\WINDOWS\System32\certprop.dll [189952] =>.Microsoft Corporation
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\WINDOWS\System32\certprop.dll [189952] =>.Microsoft Corporation
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\WINDOWS\system32\srvsvc.dll [303616] =>.Microsoft Corporation
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\WINDOWS\System32\gpsvc.dll [1269248] =>.Microsoft Corporation
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\WINDOWS\System32\ikeext.dll [934912] =>.Microsoft Corporation
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\WINDOWS\System32\iphlpsvc.dll [996864] =>.Microsoft Corporation
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\WINDOWS\system32\seclogon.dll [31232] =>.Microsoft Corporation
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\WINDOWS\System32\appinfo.dll [138752] =>.Microsoft Corporation
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\WINDOWS\system32\iscsiexe.dll [150016] =>.Microsoft Corporation
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\WINDOWS\System32\eapsvc.dll [108032] =>.Microsoft Corporation
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\WINDOWS\system32\schedsvc.dll [877568] =>.Microsoft Corporation
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\WINDOWS\system32\wbem\WMIsvc.dll [221696] =>.Microsoft Corporation
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\WINDOWS\System32\browser.dll [133120] =>.Microsoft Corporation
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\WINDOWS\system32\profsvc.dll [413696] =>.Microsoft Corporation
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [385536] =>.Microsoft Corporation
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\WINDOWS\System32\wercplsupport.dll [91648] =>.Microsoft Corporation
O83 - Search Svchost Services: shpamsvc (shpamsvc) . (.Microsoft Corporation - SharedPC.AccountManager.) -- C:\WINDOWS\system32\Windows.SharedPC.AccountManager.dll [199168] =>.Microsoft Corporation
O83 - Search Svchost Services: XblGameSave (XblGameSave) . (.Microsoft Corporation - Xbox Live Game Save Service.) -- C:\WINDOWS\System32\XblGameSave.dll [1135104] =>.Microsoft Corporation
O83 - Search Svchost Services: NaturalAuthentication (NaturalAuthentication) . (.Microsoft Corporation - Service d’authentification naturelle.) -- C:\WINDOWS\System32\NaturalAuth.dll [723968] =>.Microsoft Corporation
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\WINDOWS\system32\wlidsvc.dll [2155008] =>.Microsoft Corporation
O83 - Search Svchost Services: UserManager (UserManager) . (.Microsoft Corporation - UserMgr.) -- C:\WINDOWS\System32\usermgr.dll [877568] =>.Microsoft Corporation
O83 - Search Svchost Services: XblAuthManager (XblAuthManager) . (.Microsoft Corporation - Xbox Live Auth Manager.) -- C:\WINDOWS\System32\XblAuthManager.dll [1013248] =>.Microsoft Corporation
O83 - Search Svchost Services: DmEnrollmentSvc (DmEnrollmentSvc) . (.Microsoft Corporation - DLL Windows Management Service.) -- C:\Windows\System32\Windows.Internal.Management.dll [536064] =>.Microsoft Corporation
O83 - Search Svchost Services: xbgm (xbgm) . (.Microsoft Corporation - Xbox Game Monitoring Service.) -- C:\WINDOWS\System32\xbgmsvc.dll [301216] =>.Microsoft Windows Publisher®
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\WINDOWS\system32\themeservice.dll [69632] =>.Microsoft Corporation
O83 - Search Svchost Services: TokenBroker (TokenBroker) . (.Microsoft Corporation - Token Broker.) -- C:\Windows\System32\TokenBroker.dll [1054720] =>.Microsoft Corporation
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Service de géolocalisation.) -- C:\WINDOWS\System32\lfsvc.dll [43520] =>.Microsoft Corporation
O83 - Search Svchost Services: Irmon (Irmon) . (.Microsoft Corporation - Moniteur infrarouge.) -- C:\WINDOWS\System32\irmon.dll [24576] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\WINDOWS\System32\rasauto.dll [104448] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d’accès à dista.) -- C:\WINDOWS\System32\rasmans.dll [871936] =>.Microsoft Corporation
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [490496] =>.Microsoft Corporation
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\WINDOWS\System32\sens.dll [69632] =>.Microsoft Corporation
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\WINDOWS\System32\ipnathlp.dll [537600] =>.Microsoft Corporation
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [306688] =>.Microsoft Corporation
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\WINDOWS\system32\wuaueng.dll [2443264] =>.Microsoft Corporation
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\WINDOWS\System32\qmgr.dll [1159680] =>.Microsoft Corporation
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [612864] =>.Microsoft Corporation
O83 - Search Svchost Services: dmwappushservice (dmwappushservice) . (.Microsoft Corporation - dmwappushsvc.) -- C:\WINDOWS\system32\dmwappushsvc.dll [55296] =>.Microsoft Corporation
O83 - Search Svchost Services: wisvc (wisvc) . (.Microsoft Corporation - Paramètres de vol.) -- C:\WINDOWS\system32\flightsettings.dll [699904] =>.Microsoft Corporation
O83 - Search Svchost Services: WpnService (WpnService) . (.Microsoft Corporation - Service du système de notifications Push Wi.) -- C:\WINDOWS\system32\WpnService.dll [276480] =>.Microsoft Corporation
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\WINDOWS\System32\bdesvc.dll [385536] =>.Microsoft Corporation
O83 - Search Svchost Services: XboxNetApiSvc (XboxNetApiSvc) . (.Microsoft Corporation - Xbox Live Networking Service.) -- C:\WINDOWS\system32\XboxNetApiSvc.dll [1067008] =>.Microsoft Corporation
O83 - Search Svchost Services: UsoSvc (UsoSvc) . (.Microsoft Corporation - Mettre à jour la session Orchestrator Core.) -- C:\WINDOWS\system32\usocore.dll [681984] =>.Microsoft Corporation
O83 - Search Svchost Services: NetSetupSvc (NetSetupSvc) . (.Microsoft Corporation - Service Configuration du réseau.) -- C:\WINDOWS\System32\NetSetupSvc.dll [261632] =>.Microsoft Corporation
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d’installation de périphérique.) -- C:\WINDOWS\System32\DeviceSetupManager.dll [233984] =>.Microsoft Corporation
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Micro.) -- C:\WINDOWS\System32\ncasvc.dll [167424] =>.Microsoft Corporation
O83 - Search Svchost Services: XboxGipSvc (XboxGipSvc) . (.Microsoft Corporation - Xbox Gip Management Service.) -- C:\WINDOWS\System32\XboxGipSvc.dll [18944] =>.Microsoft Corporation
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll [196096] =>.Microsoft Corporation

---\\ Liste des exceptions du parefeu Windows (6) - 4s
O87 - FAEL: "{1DAD7E27-2704-45DA-AF16-427BBAC551AE}" [Out-None-P17-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\NASRO\AppData\Roaming\uTorrent\uTorrent.exe
O87 - FAEL: "{FA4D02D5-CCC1-4873-8B62-D931FB6511A4}" [In-None-P17-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\NASRO\AppData\Roaming\uTorrent\uTorrent.exe
O87 - FAEL: "{4F75341C-467A-40D1-82C1-744DCACBB8FD}" [In-None-P6-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\NASRO\AppData\Roaming\uTorrent\uTorrent.exe
O87 - FAEL: "{9597B740-91E7-48C4-9209-A9814B967676}" [In-None-P17-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\NASRO\AppData\Roaming\uTorrent\uTorrent.exe
O87 - FAEL: "{5598557E-B91C-4361-8F6B-56A32D35087C}" [Out-None-P6-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\NASRO\AppData\Roaming\uTorrent\uTorrent.exe
O87 - FAEL: "{0A19821A-0B4D-4256-8F9C-6E9A44AEB7C8}" [In-None-P6-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\NASRO\AppData\Roaming\uTorrent\uTorrent.exe

---\\ Scan Additionnel (163) - 0s
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814} =>.Superfluous.Orphan
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{10921475-03CE-4E04-90CE-E2E7EF20C814} =>.Superfluous.Orphan
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} =>.Superfluous.Orphan
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9} =>.Superfluous.Orphan
C:\Users\NASRO\AppData\Local\Tempzxpsign047044f650f1da63 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign05b26e38a14a9a4a =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign0616519a24dfcd29 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign08acc04cc5aa3b95 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign0b1c155fcda44aea =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign0d9fabf9fa1b5148 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign11114b5f0257dd5d =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign1122cda4f39b9752 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign1143116533d03b21 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign11793414264a870e =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign11cd512397b1082d =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign1411da6abde78ad1 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign14c8c94f83e95a65 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign1531394dc37b6da4 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign162eb85d7490c5d7 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign167caa89ab78c634 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign19a90e68d55cc257 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign1a59cc9792a1299d =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign1b734c0bddfd3ba4 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign1e4176d31837c66c =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign202e19b4620dbf20 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign20e3a242283a43f2 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign215f52695ace5117 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign2166bc43ba79fba8 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign21685922e119431c =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign21d4481efdb12807 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign2654eadf87cf14c8 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign29cc908862f1f16b =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign2af494ff2a29697b =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign2cd9dc3d6811a4b9 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign2e58217322083250 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign2f56a0c5f119f29c =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign320f79cac24694e9 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign34e3d3b0a549a7b2 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign37a4926b293dd704 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign37a7f0a2e92e8412 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign385bd463f032f512 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign3c78a38503f28811 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign3ce765ee03d0484a =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign3f7386dfa02821a3 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign40fa5901a8ba71d5 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign41b127d59c8afd3e =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign4387596ac4ef66ce =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign442a114b12d40ccb =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign4b4d6222e7824442 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign5081160a03d5139b =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign52110bed99ecdd3a =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign5435795a9264dcae =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign5539e30349807175 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign56554d203f01798b =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign5a781f2646daa720 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign5b2e2a9c337b836f =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign5dc959a883d3532e =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign5f975b050b4336b1 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign5fc55487a88d19e2 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign66d7db7f40bfa508 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign682d11b914e6b8d5 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign6906d87231b50484 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign6a1462e10e58741d =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign6af6a3a293862908 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign6afea6d205920aec =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign6c9eb383f2988999 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign716c402fb4d515b7 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign7310d5a723c16c1b =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign73e133a133560c86 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign74fe8ede9193e542 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign74ff7fdc4c8c86f7 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign751c7a3556b113c0 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign77dbf39854cceaef =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign78d18b0d30a55f52 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign796fd78686792a04 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign79ed88f7bfb95bcf =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign7a3788631a507a1c =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign7b1fdcb252ffac79 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign7d8da7eb5b862724 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign7e86ef5f4460a815 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign7ea9268bd9cb62d1 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign7f4db8003ce69673 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign83f805b8f11fb799 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign8641f9461b75dca1 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign89cbc88627f76813 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign8abf9a04661c29c6 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign8d1747c398af7f4c =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign8f85dfdcc1c98abe =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign92d2797d20633e9c =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign938d854980e820fc =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign942c7b9ea02b2e0e =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign94fcbe50cec2ab06 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign96fbf65c4e220396 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign9840a29fbe26a292 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign9ce26b01707a75e9 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign9d0a44cea1e59a9a =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsign9f9dd7bef98a7140 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsigna27beb1a5a2cc387 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsigna401b534be4c8414 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsigna75e118de8ed0b3c =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsigna9a58956e05f4305 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsignab57a580c6757362 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsignabc65fcb746c8c67 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsignac657b9d156c9e3c =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsignae9e5ab8488058fd =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsignafcc96d9faa832cd =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsignb1cd3bc1f570e703 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsignb2c10167dc1fe0ba =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsignb38b99b3eb3215df =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsignb48c0965ac8a83c4 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsignb636b0eb786e5ed0 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsignb6a467d719eea25f =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsignb9004838473fbf23 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsignb904717a0c833df2 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsignb9dee86e3657ea46 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsignbb0f6f50c424e42b =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsignbb3cb028a1d32842 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsignbc79dd40db78191a =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsignbca5c4ced58e2ed5 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsignbe72ef73a2f6b9c2 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsignbedfb7e6977aa177 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsignbf13733e3447cc4a =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsignbf5fd80cbb967474 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsignc1fcca52db258598 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsignc51cac775f1ade4e =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsignc5c170313c238e4d =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsignc738068b64dc8532 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsignc8fb1917d0ec13e1 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsigncacb77586c63434f =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsigncb2e031e83a1cc1a =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsigncc1a6f4fb904a603 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsigncd0254441fd2538c =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsignce7a2a43899a9110 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsignd190194db2a929db =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsignd4e29a85ea62f224 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsignd68b78f6243f821e =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsignd8ab2c8888619504 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsignd99d1cbeb44ec5df =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsignda83f4eebe8512ef =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsigndb5fe1f32f5443ae =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsigndc66642640b612a5 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsigndec0e43cf6b44a0e =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsigne1a482ade696a38f =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsigne1f98ea5deae45d7 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsigne269de7153afdb4d =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsigne3a4ebdb8962aed0 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsigne503e5f185e03315 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsigne5d7bfea8264277b =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsigne5e3ead1a55ffa4d =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsigne7cc660a8cd2e331 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsigneb37134268466710 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsignecb3e14b5978ddd4 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsignf2f4e14794e31438 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsignf3259c5d33b5f9b1 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsignf37b48f36cf27021 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsignf64d35f14db0a095 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsignf7a5e054c6a1da8b =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsignf8c0a6480dea8582 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsignfb0ee14187b32bc9 =>.Superfluous.Temporary
C:\Users\NASRO\AppData\Local\Tempzxpsignfc0b65f266a14393 =>.Superfluous.Temporary
C:\WINDOWS\Prefetch\BROWSERPROTECT.EXE-C73693F7.pf =>PUP.Optional.Eazel
C:\Users\NASRO\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_st.chatango.com_0.localstorage =>PUP.Optional.Chatango
C:\Users\NASRO\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_st.chatango.com_0.localstorage-journal =>PUP.Optional.Chatango

---\\ Récapitulatif des éléments trouvés sur votre station (5) - 0s
https://www.nicolascoolman.com/fr/pup-toolbarcleaner/ =>PUP.Optional.ToolbarCleaner
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.Superfluous.Temporary
https://www.nicolascoolman.com/fr/hijacker-eazel/ =>PUP.Optional.Eazel
https://www.anti-malware.top/2016/06/07/superfluous-maxstart/ =>.Superfluous.MaxStart
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>PUP.Optional.Chatango

~ Unselected Options: O82,
~ End of the scan, 45053 items in 04mn58s (1848)(0)