~ ZHPDiag v2017.9.26.168 Par Nicolas Coolman (2017/09/26)
~ Démarré par Administrator (Administrator) (2017/09/28 08:32:38)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Certificate ZHPDiag: Legal
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\Administrator.BOULET\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\Administrator.BOULET\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Démarrage du système: Normal (Normal boot)
Windows 2008R2, 64-bit Service Pack 1 (Build 7601) =>.Microsoft Corporation

---\\ Navigateurs Internet (1) - 0s
~ MSIE: Internet Explorer v11.0.9600.18792

---\\ Informations sur les produits Windows (8) - 0s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
~ Windows Operating System - Windows Server(R), VOLUME_MAK_B channel
Windows ID Activation : OK
~ Windows Partial Key : WK29W
Windows License : OK
~ Windows Remaining Initializations Number : 4
Windows Automatic Updates : OK

---\\ Logiciels de protection et autres (Superflus) (1) - 8s
~ Spybot - Search & Destroy v2.6.46 (Superfluous)

---\\ Surveillance de Logiciels (2) - 9s
~ Adobe Flash Player 27 ActiveX (Surveillance)
~ Adobe Acrobat Reader DC (Surveillance)

---\\ Informations sur le système (6) - 0s
~ Operating System: Intel64 Family 6 Model 26 Stepping 5, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 4193.848 MB (39% free) : OK =>.RAM Value
System Restore: Activé (Enable)
System drive C: has 11 GB (5%) free of 184 GB : ATTENTION =>Warning Disk Space

---\\ Mode de connexion au système (3) - 0s
~ Computer Name: DC01
~ User Name: Administrator
~ Logged in as Administrator

---\\ Enumération des unités disques (4) - 1s
~ Drive C: has 11 GB free of 184 GB (System)
~ Drive F: has 11 GB free of 184 GB
~ Drive H: has 11 GB free of 184 GB
~ Drive P: has 11 GB free of 184 GB

---\\ Etat du Centre de Sécurité Windows (8) - 0s
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM64\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK

---\\ Recherche particulière de fichiers génériques (26) - 2s
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - 25/02/2011 - (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\Explorer.exe [2871808] =>.Microsoft Corporation
[MD5.C36BB659F08F046B139C8D1B980BF1AC] - 30/03/2017 - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\Windows\System32\rundll32.exe [46080] =>.Microsoft Corporation
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - 13/07/2009 - (.Microsoft Corporation - Application de démarrage de Windows.) -- C:\Windows\System32\Wininit.exe [129024] =>.Microsoft Corporation
[MD5.2A7DBD3AD83E8F72530816A99DE67636] - 13/08/2017 - (.Microsoft Corporation - Internet Extensions for Win32.) -- C:\Windows\System32\wininet.dll [3241472] =>.Microsoft Corporation
[MD5.8CEBD9D0A0A879CDE9F36F4383B7CAEA] - 16/07/2014 - (.Microsoft Corporation - Application d’ouverture de session Windows.) -- C:\Windows\System32\Winlogon.exe [455168] =>.Microsoft Corporation
[MD5.067FA52BFB59A56110A12312EF9AF243] - 20/11/2010 - (.Microsoft Corporation - Bibliothèque de licences.) -- C:\Windows\System32\sppcomapi.dll [232448] =>.Microsoft Corporation
[MD5.492D07D79E7024CA310867B526D9636D] - 03/03/2011 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\Windows\System32\dnsapi.dll [357888] =>.Microsoft Corporation
[MD5.B40420876B9288E0A1C8CCA8A84E5DC9] - 03/03/2011 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\Windows\Syswow64\dnsapi.dll [270336] =>.Microsoft Corporation
[MD5.0D57D091E06BB1E58E72E5D08479FDDF] - 20/11/2010 - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) -- C:\Windows\System32\fr-FR\user32.dll.mui [20480] =>.Microsoft Corporation
[MD5.0DC2A9882540DEA4A55B08785E09D8FC] - 04/04/2017 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\Windows\System32\drivers\AFD.sys [496128] =>.Microsoft Corporation
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - 13/07/2009 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\drivers\atapi.sys [24128] =>.Microsoft Windows®
[MD5.B8BD2BB284668C84865658C77574381A] - 13/07/2009 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\drivers\Cdfs.sys [92160] =>.Microsoft Corporation
[MD5.F036CE71586E93D94DAB220D7BDF4416] - 20/11/2010 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\drivers\Cdrom.sys [147456] =>.Microsoft Corporation
[MD5.9B38580063D281A99E68EF5813022A5F] - 08/09/2016 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\drivers\DfsC.sys [106496] =>.Microsoft Corporation
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - 20/11/2010 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\drivers\HDAudBus.sys [122368] =>.Microsoft Corporation
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - 13/07/2009 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\Windows\System32\drivers\i8042prt.sys [105472] =>.Microsoft Corporation
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - 13/07/2009 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\drivers\IpNat.sys [116224] =>.Microsoft Corporation
[MD5.F77E8ABD746B93B9B4F9C13250302C47] - 11/08/2017 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\Windows\System32\drivers\MRxSmb.sys [159744] =>.Microsoft Corporation
[MD5.734837208CAFD6E0959A7A0333C95C9D] - 11/08/2017 - (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\drivers\netBT.sys [262656] =>.Microsoft Corporation
[MD5.7FD5A7FB8F55254E9AF5666C653AF3CA] - 09/06/2017 - (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\Windows\System32\drivers\ntfs.sys [1680616] =>.Microsoft Windows®
[MD5.0086431C29C35BE1DBC43F52CC273887] - 13/07/2009 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\Windows\System32\drivers\Parport.sys [97280] =>.Microsoft Corporation
[MD5.471815800AE33E6F1C32FB1B97C490CA] - 20/11/2010 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\drivers\Rasl2tp.sys [129536] =>.Microsoft Corporation
[MD5.1B6163C503398B23FF8B939C67747683] - 20/11/2010 - (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\Windows\System32\drivers\rdpdr.sys [165888] =>.Microsoft Corporation
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - 13/07/2009 - (.Microsoft Corporation - SMB Transport driver.) -- C:\Windows\System32\drivers\smb.sys [93184] =>.Microsoft Corporation
[MD5.4DD986720F7CB7A8A5D1226793097B9A] - 29/07/2017 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\drivers\tdx.sys [117248] =>.Microsoft Corporation
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - 20/11/2010 - (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\Windows\System32\drivers\volsnap.sys [295808] =>.Microsoft Windows®

---\\ Liste des services NT non Microsoft et non désactivés (16) - 4s
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated®
O23 - Service: Dyn Updater (Dyn Updater) . (.Dyn, Inc. - Dyn Updater Service.) - C:\Program Files (x86)\DynDNS Updater\DynUpSvc.exe {512F41BD97D27F6FA9656A73AD523F61}
O23 - Service: Bitdefender Endpoint Agent (epag) . (.Bitdefender - Endpoint Agent by Bitdefender.) - C:\Program Files\Bitdefender\Endpoint Security\epag.exe =>.Bitdefender SRL®
O23 - Service: Bitdefender Endpoint Integration Service (EPIntegrationService) . (.Bitdefender - Endpoint Integration Service.) - C:\Program Files\Bitdefender\Endpoint Security\EPIntegrationService.exe =>.Bitdefender SRL®
O23 - Service: Bitdefender Endpoint Security Service (EPSecurityService) . (.Bitdefender - Endpoint Security Service.) - C:\Program Files\Bitdefender\Endpoint Security\EPSecurityService.exe =>.Bitdefender SRL®
O23 - Service: Bitdefender Endpoint Update Service (EPUpdateService) . (.Bitdefender - Endpoint Update Service.) - C:\Program Files\Bitdefender\Endpoint Security\EPUpdateService.exe =>.Bitdefender SRL®
O23 - Service: Malwarebytes Service (MBAMService) . (.Malwarebytes - Malwarebytes Service.) - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe =>.Malwarebytes Corporation®
O23 - Service: (Net Driver HPZ12) . (.Hewlett-Packard - Dot4Net Module.) - C:\Windows\system32\HPZinw12.dll =>.Hewlett-Packard
O23 - Service: PayClock SQL Database Service (PayClock_Sql_64) . (.iAnywhere Solutions, Inc. - SQL Anywhere Network Server.) - C:\Program Files\Lathem Time Corporation\PayClock\dbsrv11.exe {307EBB0921BD577DF224A57CFDC4631D} =>.iAnywhere Solutions, Inc.
O23 - Service: PayClock Network Terminal Service (PayClock_Terminal_Service) . (.Lathem Time Corporation - Lathem.USBTM.Service.PC600.Service.) - C:\Program Files\Lathem Time Corporation\PayClock\Lathem.USBTM.Service.PC600.Service.exe {790FDD80E16DA8D5E7D626A744017DD8}
O23 - Service: (Pml Driver HPZ12) . (.Hewlett-Packard - PmlDrv Module.) - C:\Windows\system32\HPZipm12.dll =>.Hewlett-Packard
O23 - Service: Printer DCA (Printer DCA) . (.PrintFleet Inc - Printer DCA Service.) - C:\Program Files (x86)\Printer DCA\PrinterDCA.Service.exe =>.PrintFleet Inc
O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) . (.Safer-Networking Ltd. - Spybot-S&D 2 Scanner Service.) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe =>.Safer-Networking Ltd.®
O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) . (.Safer-Networking Ltd. - Spybot-S&D 2 Background update service.) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe =>.Safer-Networking Ltd.®
O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) . (.Safer-Networking Ltd. - Windows Security Center integration..) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe =>.Safer-Networking Ltd.®
O23 - Service: VMware Tools (VMTools) . (.VMware, Inc. - VMware Tools Core Service.) - C:\Program Files\VMware\VMware Tools\vmtoolsd.exe =>.VMware, Inc.®

---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (18) - 137s
SR - Auto [19/07/2017] [ 83032] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated®
SS - Demand [08/08/2017] [ 272384] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe =>.Adobe Systems Incorporated®
SR - Auto [15/11/2011] [ 95608] Dyn Updater (Dyn Updater) . (.Dyn, Inc..) - C:\Program Files (x86)\DynDNS Updater\DynUpSvc.exe {512F41BD97D27F6FA9656A73AD523F61}
SR - Auto [23/08/2017] [ 3565928] Bitdefender Endpoint Agent (epag) . (.Bitdefender.) - C:\Program Files\Bitdefender\Endpoint Security\epag.exe =>.Bitdefender SRL®
SR - Auto [28/09/2017] [ 100392] Bitdefender Endpoint Integration Service (EPIntegrationService) . (.Bitdefender.) - C:\Program Files\Bitdefender\Endpoint Security\EPIntegrationService.exe =>.Bitdefender SRL®
SR - Auto [28/09/2017] [ 100392] Bitdefender Endpoint Security Service (EPSecurityService) . (.Bitdefender.) - C:\Program Files\Bitdefender\Endpoint Security\EPSecurityService.exe =>.Bitdefender SRL®
SR - Auto [28/09/2017] [ 100392] Bitdefender Endpoint Update Service (EPUpdateService) . (.Bitdefender.) - C:\Program Files\Bitdefender\Endpoint Security\EPUpdateService.exe =>.Bitdefender SRL®
SR - Auto [07/08/2017] [ 6058960] Malwarebytes Service (MBAMService) . (.Malwarebytes.) - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe =>.Malwarebytes Corporation®
SR - Auto [31/07/2012] [ 50688] (Net Driver HPZ12) . (.Hewlett-Packard.) - C:\Windows\system32\HPZinw12.dll =>.Hewlett-Packard
SR - Auto [16/05/2011] [ 140152] PayClock SQL Database Service (PayClock_Sql_64) . (.iAnywhere Solutions, Inc..) - C:\Program Files\Lathem Time Corporation\PayClock\dbsrv11.exe {307EBB0921BD577DF224A57CFDC4631D} =>.iAnywhere Solutions, Inc.
SR - Auto [10/12/2013] [ 20776] PayClock Network Terminal Service (PayClock_Terminal_Service) . (.Lathem Time Corporation.) - C:\Program Files\Lathem Time Corporation\PayClock\Lathem.USBTM.Service.PC600.Service.exe {790FDD80E16DA8D5E7D626A744017DD8}
SR - Auto [31/07/2012] [ 66048] (Pml Driver HPZ12) . (.Hewlett-Packard.) - C:\Windows\system32\HPZipm12.dll =>.Hewlett-Packard
SS - Auto [27/07/2012] [ 56832] Printer DCA (Printer DCA) . (.PrintFleet Inc.) - C:\Program Files (x86)\Printer DCA\PrinterDCA.Service.exe =>.PrintFleet Inc
SR - Auto [23/05/2017] [ 1776864] Spybot-S&D 2 Scanner Service (SDScannerService) . (.Safer-Networking Ltd..) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe =>.Safer-Networking Ltd.®
SR - Auto [23/05/2017] [ 2131760] Spybot-S&D 2 Updating Service (SDUpdateService) . (.Safer-Networking Ltd..) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe =>.Safer-Networking Ltd.®
SR - Auto [23/05/2017] [ 233936] Spybot-S&D 2 Security Center Service (SDWSCService) . (.Safer-Networking Ltd..) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe =>.Safer-Networking Ltd.®
SR - Demand [14/06/2016] [ 116736] @%SystemRoot%\System32\termsrv.dll,-268 (TermService) . (.Stas'M Corp..) - C:\Windows\System32\rdpwrap.dll =>.Stas'M Corp.
SR - Auto [18/06/2015] [ 74968] VMware Tools (VMTools) . (.VMware, Inc..) - C:\Program Files\VMware\VMware Tools\vmtoolsd.exe =>.VMware, Inc.®

---\\ Tâches planifiées en automatique (Registre) (3) - 1s
O40 - TASK: {A2E56698-33ED-4BF2-B4EA-A785F189193C} [64Bits][\Adobe Flash Player Updater] - (.Adobe Systems Incorporated - Adobe® Flash® Player Update Service 26.0 r0.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [272384] =>.Adobe Systems Incorporated®
O40 - TASK: {C348952E-D9A1-4D2C-8BDE-BCBCE455287E} [64Bits][\CCleanerSkipUAC] - (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner.exe [4624152] =>.Piriform Ltd®
O40 - TASK: {DD56266B-8394-4D65-B6B4-76159A9CA2DD} [64Bits][\Adobe Acrobat Update Task] - (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1165920] =>.Adobe Systems, Incorporated®

---\\ Applications lancées au démarrage du système (4) - 1s
O4 - HKLM\..\Run: [Seagull Drivers] . (...) -- C:\Windows\ssdal_nc.exe
O4 - HKLM\..\Run: [MsmqIntCert] . (. - .) -- regsvr32
O4 - HKLM\..\Run: [VMware User Process] . (.VMware, Inc. - VMware Tools Core Service.) -- C:\Program Files\VMware\VMware Tools\vmtoolsd.exe =>.VMware, Inc.®
O4 - HKLM\..\Wow6432Node\Run: [SDTray] . (.Safer-Networking Ltd. - Spybot - Search & Destroy tray access.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe =>.Safer-Networking Ltd.®

---\\ Google Chrome, Démarrage,Recherche,Extensions (20) - 1s
G0 - GCSP: Preferences [User Data\Default][HomePage] http://apis.google.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://cdn.fileinfo.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://fileinfo.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://fonts.googleapis.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://id.google.ca =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://pagead2.googlesyndication.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://ssl.gstatic.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://sstats.adobe.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google.ca =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.gstatic.com =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [aapocclcgogkmnckokdopfmhonfmgoek] =>.Google Inc. {Slides}
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] =>.Google Inc. {Docs}
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] http://drive.google.com/ =>.Google Inc. {Drive}
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] http://www.youtube.com =>.Youtube {Youtube}
G2 - GCE: Preference [User Data\Default] [efaidnbmnnnibpcajpcglclefindmkaj] =>.Adobe Inc. {Acrobat}
G2 - GCE: Preference [User Data\Default] [felcaaldnbdncclmgdcncolpebgiejap] =>.Google Inc. {Sheets}
G2 - GCE: Preference [User Data\Default] [ghbmnnjooekpmoecnnnilnnbdlolhkhi] =>.Google Inc. {Docs hors connexion}
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] =>.Google Inc. {Wallet}
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] http://mail.google.com/ =>.Google Inc. {Gmail}
G2 - GCE: Preference [User Data\Default] [pkedcjkdefgpdelpbcmbmeomcjbeemfm] Chrome Media Router =>.Google Inc.

---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (12) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank =>.Microsoft Corporation
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank =>.Microsoft Corporation
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank =>.Microsoft Corporation
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = preserve =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R3 - URLSearchHook: (no name)[HKCU] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Browser.) (11.00.9600.18793 (winblue_ltsb.170815-0600)) -- C:\Windows\SysWOW64\ieframe.dll =>.Microsoft Corporation

---\\ Internet Explorer,Proxy Management (8) - 0s
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
R5 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKLM\SYSTEM\CurrentControlSet\services\NlaSvc\Parameters\Internet\ManualProxies [] =>.Microsoft

---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 1s
F2 - REG:system.ini: UserInit=userinit.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: VMApplet=C:\Windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.) =>.Microsoft Corporation

---\\ Etude du fichier hosts (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (21)

---\\ Raccourcis Global Startup (872) - 57s
O4 - GS\Desktop [_services]: Active Directory Users and Computers.lnk . (...) C:\Windows\system32\dsa.msc
O4 - GS\Desktop [_services]: Group Policy Management.lnk . (.Microsoft Corporation - Microsoft Management Console.) C:\Windows\system32\mmc.exe %SystemRoot%\system32\gpmc.msc =>PUP.Optional.Salus
O4 - GS\Desktop [_services]: Logon Scripts.lnk . (...) C:\Windows\SYSVOL\sysvol\boulet.local\scripts
O4 - GS\Desktop [_services]: PayClock_Daily_Backup - Shortcut.lnk . (...) C:\Partage\Punch\PayClock_Daily_Backup
O4 - GS\Desktop [_services]: Punch_Bkup.lnk . (...) C:\Program Files (x86)\Lathem Time Corporation\PayClock\Backup
O4 - GS\Desktop [_services]: Share and Storage Management.lnk . (...) C:\Windows\system32\StorageMgmt.msc
O4 - GS\Desktop [_services]: Symantec Endpoint Protection Manager Console.lnk . (...) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\bin\sesm.bat =>.Symantec Corporation
O4 - GS\Desktop [_services]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Administrator.BOULET\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [_services]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [_services]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\sendTo [_services]: WinSCP (for upload).lnk . (.Martin Prikryl - WinSCP: SFTP, FTP and SCP client.) C:\Program Files (x86)\WinSCP\WinSCP.exe /upload =>.Martin Prikryl
O4 - GS\TaskBar [_services]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\TaskBar [_services]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [_services]: Windows PowerShell.lnk . (.Microsoft Corporation - Windows PowerShell.) C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe =>.Microsoft Corporation
O4 - GS\Startup [_services]: MagicDisc.lnk . (.MagicISO, Inc. - MagicISO Virtual CD/DVD Manager.) C:\Program Files (x86)\MagicDisc\MagicDisc.exe =>.MagicISO, Inc.
O4 - GS\Programs [_services]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [Access]: Active Directory Users and Computers.lnk . (...) C:\Windows\system32\dsa.msc
O4 - GS\Desktop [Access]: Group Policy Management.lnk . (.Microsoft Corporation - Microsoft Management Console.) C:\Windows\system32\mmc.exe %SystemRoot%\system32\gpmc.msc =>PUP.Optional.Salus
O4 - GS\Desktop [Access]: Logon Scripts.lnk . (...) C:\Windows\SYSVOL\sysvol\boulet.local\scripts
O4 - GS\Desktop [Access]: PayClock_Daily_Backup - Shortcut.lnk . (...) C:\Partage\Punch\PayClock_Daily_Backup
O4 - GS\Desktop [Access]: Punch_Bkup.lnk . (...) C:\Program Files (x86)\Lathem Time Corporation\PayClock\Backup
O4 - GS\Desktop [Access]: Share and Storage Management.lnk . (...) C:\Windows\system32\StorageMgmt.msc
O4 - GS\Desktop [Access]: Symantec Endpoint Protection Manager Console.lnk . (...) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\bin\sesm.bat =>.Symantec Corporation
O4 - GS\Desktop [Access]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Administrator.BOULET\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Access]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [Access]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\sendTo [Access]: WinSCP (for upload).lnk . (.Martin Prikryl - WinSCP: SFTP, FTP and SCP client.) C:\Program Files (x86)\WinSCP\WinSCP.exe /upload =>.Martin Prikryl
O4 - GS\TaskBar [Access]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\TaskBar [Access]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Access]: Windows PowerShell.lnk . (.Microsoft Corporation - Windows PowerShell.) C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe =>.Microsoft Corporation
O4 - GS\Startup [Access]: MagicDisc.lnk . (.MagicISO, Inc. - MagicISO Virtual CD/DVD Manager.) C:\Program Files (x86)\MagicDisc\MagicDisc.exe =>.MagicISO, Inc.
O4 - GS\Programs [Access]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [adm1]: Active Directory Users and Computers.lnk . (...) C:\Windows\system32\dsa.msc
O4 - GS\Desktop [adm1]: Group Policy Management.lnk . (.Microsoft Corporation - Microsoft Management Console.) C:\Windows\system32\mmc.exe %SystemRoot%\system32\gpmc.msc =>PUP.Optional.Salus
O4 - GS\Desktop [adm1]: Logon Scripts.lnk . (...) C:\Windows\SYSVOL\sysvol\boulet.local\scripts
O4 - GS\Desktop [adm1]: PayClock_Daily_Backup - Shortcut.lnk . (...) C:\Partage\Punch\PayClock_Daily_Backup
O4 - GS\Desktop [adm1]: Punch_Bkup.lnk . (...) C:\Program Files (x86)\Lathem Time Corporation\PayClock\Backup
O4 - GS\Desktop [adm1]: Share and Storage Management.lnk . (...) C:\Windows\system32\StorageMgmt.msc
O4 - GS\Desktop [adm1]: Symantec Endpoint Protection Manager Console.lnk . (...) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\bin\sesm.bat =>.Symantec Corporation
O4 - GS\Desktop [adm1]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Administrator.BOULET\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [adm1]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [adm1]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\sendTo [adm1]: WinSCP (for upload).lnk . (.Martin Prikryl - WinSCP: SFTP, FTP and SCP client.) C:\Program Files (x86)\WinSCP\WinSCP.exe /upload =>.Martin Prikryl
O4 - GS\TaskBar [adm1]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\TaskBar [adm1]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [adm1]: Windows PowerShell.lnk . (.Microsoft Corporation - Windows PowerShell.) C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe =>.Microsoft Corporation
O4 - GS\Startup [adm1]: MagicDisc.lnk . (.MagicISO, Inc. - MagicISO Virtual CD/DVD Manager.) C:\Program Files (x86)\MagicDisc\MagicDisc.exe =>.MagicISO, Inc.
O4 - GS\Programs [adm1]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [admin]: Active Directory Users and Computers.lnk . (...) C:\Windows\system32\dsa.msc
O4 - GS\Desktop [admin]: Group Policy Management.lnk . (.Microsoft Corporation - Microsoft Management Console.) C:\Windows\system32\mmc.exe %SystemRoot%\system32\gpmc.msc =>PUP.Optional.Salus
O4 - GS\Desktop [admin]: Logon Scripts.lnk . (...) C:\Windows\SYSVOL\sysvol\boulet.local\scripts
O4 - GS\Desktop [admin]: PayClock_Daily_Backup - Shortcut.lnk . (...) C:\Partage\Punch\PayClock_Daily_Backup
O4 - GS\Desktop [admin]: Punch_Bkup.lnk . (...) C:\Program Files (x86)\Lathem Time Corporation\PayClock\Backup
O4 - GS\Desktop [admin]: Share and Storage Management.lnk . (...) C:\Windows\system32\StorageMgmt.msc
O4 - GS\Desktop [admin]: Symantec Endpoint Protection Manager Console.lnk . (...) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\bin\sesm.bat =>.Symantec Corporation
O4 - GS\Desktop [admin]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Administrator.BOULET\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [admin]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [admin]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\sendTo [admin]: WinSCP (for upload).lnk . (.Martin Prikryl - WinSCP: SFTP, FTP and SCP client.) C:\Program Files (x86)\WinSCP\WinSCP.exe /upload =>.Martin Prikryl
O4 - GS\TaskBar [admin]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\TaskBar [admin]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [admin]: Windows PowerShell.lnk . (.Microsoft Corporation - Windows PowerShell.) C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe =>.Microsoft Corporation
O4 - GS\Startup [admin]: MagicDisc.lnk . (.MagicISO, Inc. - MagicISO Virtual CD/DVD Manager.) C:\Program Files (x86)\MagicDisc\MagicDisc.exe =>.MagicISO, Inc.
O4 - GS\Programs [admin]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [Administrator]: Active Directory Users and Computers.lnk . (...) C:\Windows\system32\dsa.msc
O4 - GS\Desktop [Administrator]: Group Policy Management.lnk . (.Microsoft Corporation - Microsoft Management Console.) C:\Windows\system32\mmc.exe %SystemRoot%\system32\gpmc.msc =>PUP.Optional.Salus
O4 - GS\Desktop [Administrator]: Logon Scripts.lnk . (...) C:\Windows\SYSVOL\sysvol\boulet.local\scripts
O4 - GS\Desktop [Administrator]: PayClock_Daily_Backup - Shortcut.lnk . (...) C:\Partage\Punch\PayClock_Daily_Backup
O4 - GS\Desktop [Administrator]: Punch_Bkup.lnk . (...) C:\Program Files (x86)\Lathem Time Corporation\PayClock\Backup
O4 - GS\Desktop [Administrator]: Share and Storage Management.lnk . (...) C:\Windows\system32\StorageMgmt.msc
O4 - GS\Desktop [Administrator]: Symantec Endpoint Protection Manager Console.lnk . (...) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\bin\sesm.bat =>.Symantec Corporation
O4 - GS\Desktop [Administrator]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Administrator.BOULET\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Administrator]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [Administrator]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\sendTo [Administrator]: WinSCP (for upload).lnk . (.Martin Prikryl - WinSCP: SFTP, FTP and SCP client.) C:\Program Files (x86)\WinSCP\WinSCP.exe /upload =>.Martin Prikryl
O4 - GS\TaskBar [Administrator]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\TaskBar [Administrator]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Administrator]: Windows PowerShell.lnk . (.Microsoft Corporation - Windows PowerShell.) C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe =>.Microsoft Corporation
O4 - GS\Startup [Administrator]: MagicDisc.lnk . (.MagicISO, Inc. - MagicISO Virtual CD/DVD Manager.) C:\Program Files (x86)\MagicDisc\MagicDisc.exe =>.MagicISO, Inc.
O4 - GS\Programs [Administrator]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [Alexandra]: Active Directory Users and Computers.lnk . (...) C:\Windows\system32\dsa.msc
O4 - GS\Desktop [Alexandra]: Group Policy Management.lnk . (.Microsoft Corporation - Microsoft Management Console.) C:\Windows\system32\mmc.exe %SystemRoot%\system32\gpmc.msc =>PUP.Optional.Salus
O4 - GS\Desktop [Alexandra]: Logon Scripts.lnk . (...) C:\Windows\SYSVOL\sysvol\boulet.local\scripts
O4 - GS\Desktop [Alexandra]: PayClock_Daily_Backup - Shortcut.lnk . (...) C:\Partage\Punch\PayClock_Daily_Backup
O4 - GS\Desktop [Alexandra]: Punch_Bkup.lnk . (...) C:\Program Files (x86)\Lathem Time Corporation\PayClock\Backup
O4 - GS\Desktop [Alexandra]: Share and Storage Management.lnk . (...) C:\Windows\system32\StorageMgmt.msc
O4 - GS\Desktop [Alexandra]: Symantec Endpoint Protection Manager Console.lnk . (...) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\bin\sesm.bat =>.Symantec Corporation
O4 - GS\Desktop [Alexandra]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Administrator.BOULET\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Alexandra]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [Alexandra]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\sendTo [Alexandra]: WinSCP (for upload).lnk . (.Martin Prikryl - WinSCP: SFTP, FTP and SCP client.) C:\Program Files (x86)\WinSCP\WinSCP.exe /upload =>.Martin Prikryl
O4 - GS\TaskBar [Alexandra]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\TaskBar [Alexandra]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Alexandra]: Windows PowerShell.lnk . (.Microsoft Corporation - Windows PowerShell.) C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe =>.Microsoft Corporation
O4 - GS\Startup [Alexandra]: MagicDisc.lnk . (.MagicISO, Inc. - MagicISO Virtual CD/DVD Manager.) C:\Program Files (x86)\MagicDisc\MagicDisc.exe =>.MagicISO, Inc.
O4 - GS\Programs [Alexandra]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [alexis]: Active Directory Users and Computers.lnk . (...) C:\Windows\system32\dsa.msc
O4 - GS\Desktop [alexis]: Group Policy Management.lnk . (.Microsoft Corporation - Microsoft Management Console.) C:\Windows\system32\mmc.exe %SystemRoot%\system32\gpmc.msc =>PUP.Optional.Salus
O4 - GS\Desktop [alexis]: Logon Scripts.lnk . (...) C:\Windows\SYSVOL\sysvol\boulet.local\scripts
O4 - GS\Desktop [alexis]: PayClock_Daily_Backup - Shortcut.lnk . (...) C:\Partage\Punch\PayClock_Daily_Backup
O4 - GS\Desktop [alexis]: Punch_Bkup.lnk . (...) C:\Program Files (x86)\Lathem Time Corporation\PayClock\Backup
O4 - GS\Desktop [alexis]: Share and Storage Management.lnk . (...) C:\Windows\system32\StorageMgmt.msc
O4 - GS\Desktop [alexis]: Symantec Endpoint Protection Manager Console.lnk . (...) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\bin\sesm.bat =>.Symantec Corporation
O4 - GS\Desktop [alexis]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Administrator.BOULET\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [alexis]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [alexis]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\sendTo [alexis]: WinSCP (for upload).lnk . (.Martin Prikryl - WinSCP: SFTP, FTP and SCP client.) C:\Program Files (x86)\WinSCP\WinSCP.exe /upload =>.Martin Prikryl
O4 - GS\TaskBar [alexis]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\TaskBar [alexis]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [alexis]: Windows PowerShell.lnk . (.Microsoft Corporation - Windows PowerShell.) C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe =>.Microsoft Corporation
O4 - GS\Startup [alexis]: MagicDisc.lnk . (.MagicISO, Inc. - MagicISO Virtual CD/DVD Manager.) C:\Program Files (x86)\MagicDisc\MagicDisc.exe =>.MagicISO, Inc.
O4 - GS\Programs [alexis]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [andre]: Active Directory Users and Computers.lnk . (...) C:\Windows\system32\dsa.msc
O4 - GS\Desktop [andre]: Group Policy Management.lnk . (.Microsoft Corporation - Microsoft Management Console.) C:\Windows\system32\mmc.exe %SystemRoot%\system32\gpmc.msc =>PUP.Optional.Salus
O4 - GS\Desktop [andre]: Logon Scripts.lnk . (...) C:\Windows\SYSVOL\sysvol\boulet.local\scripts
O4 - GS\Desktop [andre]: PayClock_Daily_Backup - Shortcut.lnk . (...) C:\Partage\Punch\PayClock_Daily_Backup
O4 - GS\Desktop [andre]: Punch_Bkup.lnk . (...) C:\Program Files (x86)\Lathem Time Corporation\PayClock\Backup
O4 - GS\Desktop [andre]: Share and Storage Management.lnk . (...) C:\Windows\system32\StorageMgmt.msc
O4 - GS\Desktop [andre]: Symantec Endpoint Protection Manager Console.lnk . (...) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\bin\sesm.bat =>.Symantec Corporation
O4 - GS\Desktop [andre]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Administrator.BOULET\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [andre]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [andre]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\sendTo [andre]: WinSCP (for upload).lnk . (.Martin Prikryl - WinSCP: SFTP, FTP and SCP client.) C:\Program Files (x86)\WinSCP\WinSCP.exe /upload =>.Martin Prikryl
O4 - GS\TaskBar [andre]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\TaskBar [andre]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [andre]: Windows PowerShell.lnk . (.Microsoft Corporation - Windows PowerShell.) C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe =>.Microsoft Corporation
O4 - GS\Startup [andre]: MagicDisc.lnk . (.MagicISO, Inc. - MagicISO Virtual CD/DVD Manager.) C:\Program Files (x86)\MagicDisc\MagicDisc.exe =>.MagicISO, Inc.
O4 - GS\Programs [andre]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [backup]: Active Directory Users and Computers.lnk . (...) C:\Windows\system32\dsa.msc
O4 - GS\Desktop [backup]: Group Policy Management.lnk . (.Microsoft Corporation - Microsoft Management Console.) C:\Windows\system32\mmc.exe %SystemRoot%\system32\gpmc.msc =>PUP.Optional.Salus
O4 - GS\Desktop [backup]: Logon Scripts.lnk . (...) C:\Windows\SYSVOL\sysvol\boulet.local\scripts
O4 - GS\Desktop [backup]: PayClock_Daily_Backup - Shortcut.lnk . (...) C:\Partage\Punch\PayClock_Daily_Backup
O4 - GS\Desktop [backup]: Punch_Bkup.lnk . (...) C:\Program Files (x86)\Lathem Time Corporation\PayClock\Backup
O4 - GS\Desktop [backup]: Share and Storage Management.lnk . (...) C:\Windows\system32\StorageMgmt.msc
O4 - GS\Desktop [backup]: Symantec Endpoint Protection Manager Console.lnk . (...) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\bin\sesm.bat =>.Symantec Corporation
O4 - GS\Desktop [backup]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Administrator.BOULET\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [backup]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [backup]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\sendTo [backup]: WinSCP (for upload).lnk . (.Martin Prikryl - WinSCP: SFTP, FTP and SCP client.) C:\Program Files (x86)\WinSCP\WinSCP.exe /upload =>.Martin Prikryl
O4 - GS\TaskBar [backup]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\TaskBar [backup]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [backup]: Windows PowerShell.lnk . (.Microsoft Corporation - Windows PowerShell.) C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe =>.Microsoft Corporation
O4 - GS\Startup [backup]: MagicDisc.lnk . (.MagicISO, Inc. - MagicISO Virtual CD/DVD Manager.) C:\Program Files (x86)\MagicDisc\MagicDisc.exe =>.MagicISO, Inc.
O4 - GS\Programs [backup]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [caroll]: Active Directory Users and Computers.lnk . (...) C:\Windows\system32\dsa.msc
O4 - GS\Desktop [caroll]: Group Policy Management.lnk . (.Microsoft Corporation - Microsoft Management Console.) C:\Windows\system32\mmc.exe %SystemRoot%\system32\gpmc.msc =>PUP.Optional.Salus
O4 - GS\Desktop [caroll]: Logon Scripts.lnk . (...) C:\Windows\SYSVOL\sysvol\boulet.local\scripts
O4 - GS\Desktop [caroll]: PayClock_Daily_Backup - Shortcut.lnk . (...) C:\Partage\Punch\PayClock_Daily_Backup
O4 - GS\Desktop [caroll]: Punch_Bkup.lnk . (...) C:\Program Files (x86)\Lathem Time Corporation\PayClock\Backup
O4 - GS\Desktop [caroll]: Share and Storage Management.lnk . (...) C:\Windows\system32\StorageMgmt.msc
O4 - GS\Desktop [caroll]: Symantec Endpoint Protection Manager Console.lnk . (...) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\bin\sesm.bat =>.Symantec Corporation
O4 - GS\Desktop [caroll]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Administrator.BOULET\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [caroll]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [caroll]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\sendTo [caroll]: WinSCP (for upload).lnk . (.Martin Prikryl - WinSCP: SFTP, FTP and SCP client.) C:\Program Files (x86)\WinSCP\WinSCP.exe /upload =>.Martin Prikryl
O4 - GS\TaskBar [caroll]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\TaskBar [caroll]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [caroll]: Windows PowerShell.lnk . (.Microsoft Corporation - Windows PowerShell.) C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe =>.Microsoft Corporation
O4 - GS\Startup [caroll]: MagicDisc.lnk . (.MagicISO, Inc. - MagicISO Virtual CD/DVD Manager.) C:\Program Files (x86)\MagicDisc\MagicDisc.exe =>.MagicISO, Inc.
O4 - GS\Programs [caroll]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [charles]: Active Directory Users and Computers.lnk . (...) C:\Windows\system32\dsa.msc
O4 - GS\Desktop [charles]: Group Policy Management.lnk . (.Microsoft Corporation - Microsoft Management Console.) C:\Windows\system32\mmc.exe %SystemRoot%\system32\gpmc.msc =>PUP.Optional.Salus
O4 - GS\Desktop [charles]: Logon Scripts.lnk . (...) C:\Windows\SYSVOL\sysvol\boulet.local\scripts
O4 - GS\Desktop [charles]: PayClock_Daily_Backup - Shortcut.lnk . (...) C:\Partage\Punch\PayClock_Daily_Backup
O4 - GS\Desktop [charles]: Punch_Bkup.lnk . (...) C:\Program Files (x86)\Lathem Time Corporation\PayClock\Backup
O4 - GS\Desktop [charles]: Share and Storage Management.lnk . (...) C:\Windows\system32\StorageMgmt.msc
O4 - GS\Desktop [charles]: Symantec Endpoint Protection Manager Console.lnk . (...) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\bin\sesm.bat =>.Symantec Corporation
O4 - GS\Desktop [charles]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Administrator.BOULET\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [charles]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [charles]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\sendTo [charles]: WinSCP (for upload).lnk . (.Martin Prikryl - WinSCP: SFTP, FTP and SCP client.) C:\Program Files (x86)\WinSCP\WinSCP.exe /upload =>.Martin Prikryl
O4 - GS\TaskBar [charles]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\TaskBar [charles]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [charles]: Windows PowerShell.lnk . (.Microsoft Corporation - Windows PowerShell.) C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe =>.Microsoft Corporation
O4 - GS\Startup [charles]: MagicDisc.lnk . (.MagicISO, Inc. - MagicISO Virtual CD/DVD Manager.) C:\Program Files (x86)\MagicDisc\MagicDisc.exe =>.MagicISO, Inc.
O4 - GS\Programs [charles]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [DB_ADMIN]: Active Directory Users and Computers.lnk . (...) C:\Windows\system32\dsa.msc
O4 - GS\Desktop [DB_ADMIN]: Group Policy Management.lnk . (.Microsoft Corporation - Microsoft Management Console.) C:\Windows\system32\mmc.exe %SystemRoot%\system32\gpmc.msc =>PUP.Optional.Salus
O4 - GS\Desktop [DB_ADMIN]: Logon Scripts.lnk . (...) C:\Windows\SYSVOL\sysvol\boulet.local\scripts
O4 - GS\Desktop [DB_ADMIN]: PayClock_Daily_Backup - Shortcut.lnk . (...) C:\Partage\Punch\PayClock_Daily_Backup
O4 - GS\Desktop [DB_ADMIN]: Punch_Bkup.lnk . (...) C:\Program Files (x86)\Lathem Time Corporation\PayClock\Backup
O4 - GS\Desktop [DB_ADMIN]: Share and Storage Management.lnk . (...) C:\Windows\system32\StorageMgmt.msc
O4 - GS\Desktop [DB_ADMIN]: Symantec Endpoint Protection Manager Console.lnk . (...) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\bin\sesm.bat =>.Symantec Corporation
O4 - GS\Desktop [DB_ADMIN]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Administrator.BOULET\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [DB_ADMIN]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [DB_ADMIN]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\sendTo [DB_ADMIN]: WinSCP (for upload).lnk . (.Martin Prikryl - WinSCP: SFTP, FTP and SCP client.) C:\Program Files (x86)\WinSCP\WinSCP.exe /upload =>.Martin Prikryl
O4 - GS\TaskBar [DB_ADMIN]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\TaskBar [DB_ADMIN]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [DB_ADMIN]: Windows PowerShell.lnk . (.Microsoft Corporation - Windows PowerShell.) C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe =>.Microsoft Corporation
O4 - GS\Startup [DB_ADMIN]: MagicDisc.lnk . (.MagicISO, Inc. - MagicISO Virtual CD/DVD Manager.) C:\Program Files (x86)\MagicDisc\MagicDisc.exe =>.MagicISO, Inc.
O4 - GS\Programs [DB_ADMIN]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [eda]: Active Directory Users and Computers.lnk . (...) C:\Windows\system32\dsa.msc
O4 - GS\Desktop [eda]: Group Policy Management.lnk . (.Microsoft Corporation - Microsoft Management Console.) C:\Windows\system32\mmc.exe %SystemRoot%\system32\gpmc.msc =>PUP.Optional.Salus
O4 - GS\Desktop [eda]: Logon Scripts.lnk . (...) C:\Windows\SYSVOL\sysvol\boulet.local\scripts
O4 - GS\Desktop [eda]: PayClock_Daily_Backup - Shortcut.lnk . (...) C:\Partage\Punch\PayClock_Daily_Backup
O4 - GS\Desktop [eda]: Punch_Bkup.lnk . (...) C:\Program Files (x86)\Lathem Time Corporation\PayClock\Backup
O4 - GS\Desktop [eda]: Share and Storage Management.lnk . (...) C:\Windows\system32\StorageMgmt.msc
O4 - GS\Desktop [eda]: Symantec Endpoint Protection Manager Console.lnk . (...) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\bin\sesm.bat =>.Symantec Corporation
O4 - GS\Desktop [eda]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Administrator.BOULET\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [eda]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [eda]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\sendTo [eda]: WinSCP (for upload).lnk . (.Martin Prikryl - WinSCP: SFTP, FTP and SCP client.) C:\Program Files (x86)\WinSCP\WinSCP.exe /upload =>.Martin Prikryl
O4 - GS\TaskBar [eda]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\TaskBar [eda]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [eda]: Windows PowerShell.lnk . (.Microsoft Corporation - Windows PowerShell.) C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe =>.Microsoft Corporation
O4 - GS\Startup [eda]: MagicDisc.lnk . (.MagicISO, Inc. - MagicISO Virtual CD/DVD Manager.) C:\Program Files (x86)\MagicDisc\MagicDisc.exe =>.MagicISO, Inc.
O4 - GS\Programs [eda]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [Francois]: Active Directory Users and Computers.lnk . (...) C:\Windows\system32\dsa.msc
O4 - GS\Desktop [Francois]: Group Policy Management.lnk . (.Microsoft Corporation - Microsoft Management Console.) C:\Windows\system32\mmc.exe %SystemRoot%\system32\gpmc.msc =>PUP.Optional.Salus
O4 - GS\Desktop [Francois]: Logon Scripts.lnk . (...) C:\Windows\SYSVOL\sysvol\boulet.local\scripts
O4 - GS\Desktop [Francois]: PayClock_Daily_Backup - Shortcut.lnk . (...) C:\Partage\Punch\PayClock_Daily_Backup
O4 - GS\Desktop [Francois]: Punch_Bkup.lnk . (...) C:\Program Files (x86)\Lathem Time Corporation\PayClock\Backup
O4 - GS\Desktop [Francois]: Share and Storage Management.lnk . (...) C:\Windows\system32\StorageMgmt.msc
O4 - GS\Desktop [Francois]: Symantec Endpoint Protection Manager Console.lnk . (...) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\bin\sesm.bat =>.Symantec Corporation
O4 - GS\Desktop [Francois]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Administrator.BOULET\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Francois]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [Francois]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\sendTo [Francois]: WinSCP (for upload).lnk . (.Martin Prikryl - WinSCP: SFTP, FTP and SCP client.) C:\Program Files (x86)\WinSCP\WinSCP.exe /upload =>.Martin Prikryl
O4 - GS\TaskBar [Francois]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\TaskBar [Francois]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Francois]: Windows PowerShell.lnk . (.Microsoft Corporation - Windows PowerShell.) C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe =>.Microsoft Corporation
O4 - GS\Startup [Francois]: MagicDisc.lnk . (.MagicISO, Inc. - MagicISO Virtual CD/DVD Manager.) C:\Program Files (x86)\MagicDisc\MagicDisc.exe =>.MagicISO, Inc.
O4 - GS\Programs [Francois]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [FRANCOISP]: Active Directory Users and Computers.lnk . (...) C:\Windows\system32\dsa.msc
O4 - GS\Desktop [FRANCOISP]: Group Policy Management.lnk . (.Microsoft Corporation - Microsoft Management Console.) C:\Windows\system32\mmc.exe %SystemRoot%\system32\gpmc.msc =>PUP.Optional.Salus
O4 - GS\Desktop [FRANCOISP]: Logon Scripts.lnk . (...) C:\Windows\SYSVOL\sysvol\boulet.local\scripts
O4 - GS\Desktop [FRANCOISP]: PayClock_Daily_Backup - Shortcut.lnk . (...) C:\Partage\Punch\PayClock_Daily_Backup
O4 - GS\Desktop [FRANCOISP]: Punch_Bkup.lnk . (...) C:\Program Files (x86)\Lathem Time Corporation\PayClock\Backup
O4 - GS\Desktop [FRANCOISP]: Share and Storage Management.lnk . (...) C:\Windows\system32\StorageMgmt.msc
O4 - GS\Desktop [FRANCOISP]: Symantec Endpoint Protection Manager Console.lnk . (...) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\bin\sesm.bat =>.Symantec Corporation
O4 - GS\Desktop [FRANCOISP]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Administrator.BOULET\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [FRANCOISP]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [FRANCOISP]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\sendTo [FRANCOISP]: WinSCP (for upload).lnk . (.Martin Prikryl - WinSCP: SFTP, FTP and SCP client.) C:\Program Files (x86)\WinSCP\WinSCP.exe /upload =>.Martin Prikryl
O4 - GS\TaskBar [FRANCOISP]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\TaskBar [FRANCOISP]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [FRANCOISP]: Windows PowerShell.lnk . (.Microsoft Corporation - Windows PowerShell.) C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe =>.Microsoft Corporation
O4 - GS\Startup [FRANCOISP]: MagicDisc.lnk . (.MagicISO, Inc. - MagicISO Virtual CD/DVD Manager.) C:\Program Files (x86)\MagicDisc\MagicDisc.exe =>.MagicISO, Inc.
O4 - GS\Programs [FRANCOISP]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [Gabrielle]: Active Directory Users and Computers.lnk . (...) C:\Windows\system32\dsa.msc
O4 - GS\Desktop [Gabrielle]: Group Policy Management.lnk . (.Microsoft Corporation - Microsoft Management Console.) C:\Windows\system32\mmc.exe %SystemRoot%\system32\gpmc.msc =>PUP.Optional.Salus
O4 - GS\Desktop [Gabrielle]: Logon Scripts.lnk . (...) C:\Windows\SYSVOL\sysvol\boulet.local\scripts
O4 - GS\Desktop [Gabrielle]: PayClock_Daily_Backup - Shortcut.lnk . (...) C:\Partage\Punch\PayClock_Daily_Backup
O4 - GS\Desktop [Gabrielle]: Punch_Bkup.lnk . (...) C:\Program Files (x86)\Lathem Time Corporation\PayClock\Backup
O4 - GS\Desktop [Gabrielle]: Share and Storage Management.lnk . (...) C:\Windows\system32\StorageMgmt.msc
O4 - GS\Desktop [Gabrielle]: Symantec Endpoint Protection Manager Console.lnk . (...) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\bin\sesm.bat =>.Symantec Corporation
O4 - GS\Desktop [Gabrielle]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Administrator.BOULET\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Gabrielle]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [Gabrielle]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\sendTo [Gabrielle]: WinSCP (for upload).lnk . (.Martin Prikryl - WinSCP: SFTP, FTP and SCP client.) C:\Program Files (x86)\WinSCP\WinSCP.exe /upload =>.Martin Prikryl
O4 - GS\TaskBar [Gabrielle]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\TaskBar [Gabrielle]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Gabrielle]: Windows PowerShell.lnk . (.Microsoft Corporation - Windows PowerShell.) C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe =>.Microsoft Corporation
O4 - GS\Startup [Gabrielle]: MagicDisc.lnk . (.MagicISO, Inc. - MagicISO Virtual CD/DVD Manager.) C:\Program Files (x86)\MagicDisc\MagicDisc.exe =>.MagicISO, Inc.
O4 - GS\Programs [Gabrielle]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [Guest]: Active Directory Users and Computers.lnk . (...) C:\Windows\system32\dsa.msc
O4 - GS\Desktop [Guest]: Group Policy Management.lnk . (.Microsoft Corporation - Microsoft Management Console.) C:\Windows\system32\mmc.exe %SystemRoot%\system32\gpmc.msc =>PUP.Optional.Salus
O4 - GS\Desktop [Guest]: Logon Scripts.lnk . (...) C:\Windows\SYSVOL\sysvol\boulet.local\scripts
O4 - GS\Desktop [Guest]: PayClock_Daily_Backup - Shortcut.lnk . (...) C:\Partage\Punch\PayClock_Daily_Backup
O4 - GS\Desktop [Guest]: Punch_Bkup.lnk . (...) C:\Program Files (x86)\Lathem Time Corporation\PayClock\Backup
O4 - GS\Desktop [Guest]: Share and Storage Management.lnk . (...) C:\Windows\system32\StorageMgmt.msc
O4 - GS\Desktop [Guest]: Symantec Endpoint Protection Manager Console.lnk . (...) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\bin\sesm.bat =>.Symantec Corporation
O4 - GS\Desktop [Guest]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Administrator.BOULET\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Guest]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [Guest]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\sendTo [Guest]: WinSCP (for upload).lnk . (.Martin Prikryl - WinSCP: SFTP, FTP and SCP client.) C:\Program Files (x86)\WinSCP\WinSCP.exe /upload =>.Martin Prikryl
O4 - GS\TaskBar [Guest]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\TaskBar [Guest]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Guest]: Windows PowerShell.lnk . (.Microsoft Corporation - Windows PowerShell.) C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe =>.Microsoft Corporation
O4 - GS\Startup [Guest]: MagicDisc.lnk . (.MagicISO, Inc. - MagicISO Virtual CD/DVD Manager.) C:\Program Files (x86)\MagicDisc\MagicDisc.exe =>.MagicISO, Inc.
O4 - GS\Programs [Guest]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [IUSR_BOULETSRV]: Active Directory Users and Computers.lnk . (...) C:\Windows\system32\dsa.msc
O4 - GS\Desktop [IUSR_BOULETSRV]: Group Policy Management.lnk . (.Microsoft Corporation - Microsoft Management Console.) C:\Windows\system32\mmc.exe %SystemRoot%\system32\gpmc.msc =>PUP.Optional.Salus
O4 - GS\Desktop [IUSR_BOULETSRV]: Logon Scripts.lnk . (...) C:\Windows\SYSVOL\sysvol\boulet.local\scripts
O4 - GS\Desktop [IUSR_BOULETSRV]: PayClock_Daily_Backup - Shortcut.lnk . (...) C:\Partage\Punch\PayClock_Daily_Backup
O4 - GS\Desktop [IUSR_BOULETSRV]: Punch_Bkup.lnk . (...) C:\Program Files (x86)\Lathem Time Corporation\PayClock\Backup
O4 - GS\Desktop [IUSR_BOULETSRV]: Share and Storage Management.lnk . (...) C:\Windows\system32\StorageMgmt.msc
O4 - GS\Desktop [IUSR_BOULETSRV]: Symantec Endpoint Protection Manager Console.lnk . (...) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\bin\sesm.bat =>.Symantec Corporation
O4 - GS\Desktop [IUSR_BOULETSRV]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Administrator.BOULET\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [IUSR_BOULETSRV]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [IUSR_BOULETSRV]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\sendTo [IUSR_BOULETSRV]: WinSCP (for upload).lnk . (.Martin Prikryl - WinSCP: SFTP, FTP and SCP client.) C:\Program Files (x86)\WinSCP\WinSCP.exe /upload =>.Martin Prikryl
O4 - GS\TaskBar [IUSR_BOULETSRV]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\TaskBar [IUSR_BOULETSRV]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [IUSR_BOULETSRV]: Windows PowerShell.lnk . (.Microsoft Corporation - Windows PowerShell.) C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe =>.Microsoft Corporation
O4 - GS\Startup [IUSR_BOULETSRV]: MagicDisc.lnk . (.MagicISO, Inc. - MagicISO Virtual CD/DVD Manager.) C:\Program Files (x86)\MagicDisc\MagicDisc.exe =>.MagicISO, Inc.
O4 - GS\Programs [IUSR_BOULETSRV]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [IWAM_BOULETSRV]: Active Directory Users and Computers.lnk . (...) C:\Windows\system32\dsa.msc
O4 - GS\Desktop [IWAM_BOULETSRV]: Group Policy Management.lnk . (.Microsoft Corporation - Microsoft Management Console.) C:\Windows\system32\mmc.exe %SystemRoot%\system32\gpmc.msc =>PUP.Optional.Salus
O4 - GS\Desktop [IWAM_BOULETSRV]: Logon Scripts.lnk . (...) C:\Windows\SYSVOL\sysvol\boulet.local\scripts
O4 - GS\Desktop [IWAM_BOULETSRV]: PayClock_Daily_Backup - Shortcut.lnk . (...) C:\Partage\Punch\PayClock_Daily_Backup
O4 - GS\Desktop [IWAM_BOULETSRV]: Punch_Bkup.lnk . (...) C:\Program Files (x86)\Lathem Time Corporation\PayClock\Backup
O4 - GS\Desktop [IWAM_BOULETSRV]: Share and Storage Management.lnk . (...) C:\Windows\system32\StorageMgmt.msc
O4 - GS\Desktop [IWAM_BOULETSRV]: Symantec Endpoint Protection Manager Console.lnk . (...) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\bin\sesm.bat =>.Symantec Corporation
O4 - GS\Desktop [IWAM_BOULETSRV]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Administrator.BOULET\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [IWAM_BOULETSRV]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [IWAM_BOULETSRV]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\sendTo [IWAM_BOULETSRV]: WinSCP (for upload).lnk . (.Martin Prikryl - WinSCP: SFTP, FTP and SCP client.) C:\Program Files (x86)\WinSCP\WinSCP.exe /upload =>.Martin Prikryl
O4 - GS\TaskBar [IWAM_BOULETSRV]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\TaskBar [IWAM_BOULETSRV]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [IWAM_BOULETSRV]: Windows PowerShell.lnk . (.Microsoft Corporation - Windows PowerShell.) C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe =>.Microsoft Corporation
O4 - GS\Startup [IWAM_BOULETSRV]: MagicDisc.lnk . (.MagicISO, Inc. - MagicISO Virtual CD/DVD Manager.) C:\Program Files (x86)\MagicDisc\MagicDisc.exe =>.MagicISO, Inc.
O4 - GS\Programs [IWAM_BOULETSRV]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [Jerome]: Active Directory Users and Computers.lnk . (...) C:\Windows\system32\dsa.msc
O4 - GS\Desktop [Jerome]: Group Policy Management.lnk . (.Microsoft Corporation - Microsoft Management Console.) C:\Windows\system32\mmc.exe %SystemRoot%\system32\gpmc.msc =>PUP.Optional.Salus
O4 - GS\Desktop [Jerome]: Logon Scripts.lnk . (...) C:\Windows\SYSVOL\sysvol\boulet.local\scripts
O4 - GS\Desktop [Jerome]: PayClock_Daily_Backup - Shortcut.lnk . (...) C:\Partage\Punch\PayClock_Daily_Backup
O4 - GS\Desktop [Jerome]: Punch_Bkup.lnk . (...) C:\Program Files (x86)\Lathem Time Corporation\PayClock\Backup
O4 - GS\Desktop [Jerome]: Share and Storage Management.lnk . (...) C:\Windows\system32\StorageMgmt.msc
O4 - GS\Desktop [Jerome]: Symantec Endpoint Protection Manager Console.lnk . (...) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\bin\sesm.bat =>.Symantec Corporation
O4 - GS\Desktop [Jerome]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Administrator.BOULET\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Jerome]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [Jerome]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\sendTo [Jerome]: WinSCP (for upload).lnk . (.Martin Prikryl - WinSCP: SFTP, FTP and SCP client.) C:\Program Files (x86)\WinSCP\WinSCP.exe /upload =>.Martin Prikryl
O4 - GS\TaskBar [Jerome]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\TaskBar [Jerome]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Jerome]: Windows PowerShell.lnk . (.Microsoft Corporation - Windows PowerShell.) C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe =>.Microsoft Corporation
O4 - GS\Startup [Jerome]: MagicDisc.lnk . (.MagicISO, Inc. - MagicISO Virtual CD/DVD Manager.) C:\Program Files (x86)\MagicDisc\MagicDisc.exe =>.MagicISO, Inc.
O4 - GS\Programs [Jerome]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [JulieD]: Active Directory Users and Computers.lnk . (...) C:\Windows\system32\dsa.msc
O4 - GS\Desktop [JulieD]: Group Policy Management.lnk . (.Microsoft Corporation - Microsoft Management Console.) C:\Windows\system32\mmc.exe %SystemRoot%\system32\gpmc.msc =>PUP.Optional.Salus
O4 - GS\Desktop [JulieD]: Logon Scripts.lnk . (...) C:\Windows\SYSVOL\sysvol\boulet.local\scripts
O4 - GS\Desktop [JulieD]: PayClock_Daily_Backup - Shortcut.lnk . (...) C:\Partage\Punch\PayClock_Daily_Backup
O4 - GS\Desktop [JulieD]: Punch_Bkup.lnk . (...) C:\Program Files (x86)\Lathem Time Corporation\PayClock\Backup
O4 - GS\Desktop [JulieD]: Share and Storage Management.lnk . (...) C:\Windows\system32\StorageMgmt.msc
O4 - GS\Desktop [JulieD]: Symantec Endpoint Protection Manager Console.lnk . (...) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\bin\sesm.bat =>.Symantec Corporation
O4 - GS\Desktop [JulieD]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Administrator.BOULET\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [JulieD]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [JulieD]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\sendTo [JulieD]: WinSCP (for upload).lnk . (.Martin Prikryl - WinSCP: SFTP, FTP and SCP client.) C:\Program Files (x86)\WinSCP\WinSCP.exe /upload =>.Martin Prikryl
O4 - GS\TaskBar [JulieD]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\TaskBar [JulieD]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [JulieD]: Windows PowerShell.lnk . (.Microsoft Corporation - Windows PowerShell.) C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe =>.Microsoft Corporation
O4 - GS\Startup [JulieD]: MagicDisc.lnk . (.MagicISO, Inc. - MagicISO Virtual CD/DVD Manager.) C:\Program Files (x86)\MagicDisc\MagicDisc.exe =>.MagicISO, Inc.
O4 - GS\Programs [JulieD]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [krbtgt]: Active Directory Users and Computers.lnk . (...) C:\Windows\system32\dsa.msc
O4 - GS\Desktop [krbtgt]: Group Policy Management.lnk . (.Microsoft Corporation - Microsoft Management Console.) C:\Windows\system32\mmc.exe %SystemRoot%\system32\gpmc.msc =>PUP.Optional.Salus
O4 - GS\Desktop [krbtgt]: Logon Scripts.lnk . (...) C:\Windows\SYSVOL\sysvol\boulet.local\scripts
O4 - GS\Desktop [krbtgt]: PayClock_Daily_Backup - Shortcut.lnk . (...) C:\Partage\Punch\PayClock_Daily_Backup
O4 - GS\Desktop [krbtgt]: Punch_Bkup.lnk . (...) C:\Program Files (x86)\Lathem Time Corporation\PayClock\Backup
O4 - GS\Desktop [krbtgt]: Share and Storage Management.lnk . (...) C:\Windows\system32\StorageMgmt.msc
O4 - GS\Desktop [krbtgt]: Symantec Endpoint Protection Manager Console.lnk . (...) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\bin\sesm.bat =>.Symantec Corporation
O4 - GS\Desktop [krbtgt]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Administrator.BOULET\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [krbtgt]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [krbtgt]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\sendTo [krbtgt]: WinSCP (for upload).lnk . (.Martin Prikryl - WinSCP: SFTP, FTP and SCP client.) C:\Program Files (x86)\WinSCP\WinSCP.exe /upload =>.Martin Prikryl
O4 - GS\TaskBar [krbtgt]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\TaskBar [krbtgt]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [krbtgt]: Windows PowerShell.lnk . (.Microsoft Corporation - Windows PowerShell.) C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe =>.Microsoft Corporation
O4 - GS\Startup [krbtgt]: MagicDisc.lnk . (.MagicISO, Inc. - MagicISO Virtual CD/DVD Manager.) C:\Program Files (x86)\MagicDisc\MagicDisc.exe =>.MagicISO, Inc.
O4 - GS\Programs [krbtgt]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [marco]: Active Directory Users and Computers.lnk . (...) C:\Windows\system32\dsa.msc
O4 - GS\Desktop [marco]: Group Policy Management.lnk . (.Microsoft Corporation - Microsoft Management Console.) C:\Windows\system32\mmc.exe %SystemRoot%\system32\gpmc.msc =>PUP.Optional.Salus
O4 - GS\Desktop [marco]: Logon Scripts.lnk . (...) C:\Windows\SYSVOL\sysvol\boulet.local\scripts
O4 - GS\Desktop [marco]: PayClock_Daily_Backup - Shortcut.lnk . (...) C:\Partage\Punch\PayClock_Daily_Backup
O4 - GS\Desktop [marco]: Punch_Bkup.lnk . (...) C:\Program Files (x86)\Lathem Time Corporation\PayClock\Backup
O4 - GS\Desktop [marco]: Share and Storage Management.lnk . (...) C:\Windows\system32\StorageMgmt.msc
O4 - GS\Desktop [marco]: Symantec Endpoint Protection Manager Console.lnk . (...) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\bin\sesm.bat =>.Symantec Corporation
O4 - GS\Desktop [marco]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Administrator.BOULET\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [marco]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [marco]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\sendTo [marco]: WinSCP (for upload).lnk . (.Martin Prikryl - WinSCP: SFTP, FTP and SCP client.) C:\Program Files (x86)\WinSCP\WinSCP.exe /upload =>.Martin Prikryl
O4 - GS\TaskBar [marco]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\TaskBar [marco]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [marco]: Windows PowerShell.lnk . (.Microsoft Corporation - Windows PowerShell.) C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe =>.Microsoft Corporation
O4 - GS\Startup [marco]: MagicDisc.lnk . (.MagicISO, Inc. - MagicISO Virtual CD/DVD Manager.) C:\Program Files (x86)\MagicDisc\MagicDisc.exe =>.MagicISO, Inc.
O4 - GS\Programs [marco]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [Melodie]: Active Directory Users and Computers.lnk . (...) C:\Windows\system32\dsa.msc
O4 - GS\Desktop [Melodie]: Group Policy Management.lnk . (.Microsoft Corporation - Microsoft Management Console.) C:\Windows\system32\mmc.exe %SystemRoot%\system32\gpmc.msc =>PUP.Optional.Salus
O4 - GS\Desktop [Melodie]: Logon Scripts.lnk . (...) C:\Windows\SYSVOL\sysvol\boulet.local\scripts
O4 - GS\Desktop [Melodie]: PayClock_Daily_Backup - Shortcut.lnk . (...) C:\Partage\Punch\PayClock_Daily_Backup
O4 - GS\Desktop [Melodie]: Punch_Bkup.lnk . (...) C:\Program Files (x86)\Lathem Time Corporation\PayClock\Backup
O4 - GS\Desktop [Melodie]: Share and Storage Management.lnk . (...) C:\Windows\system32\StorageMgmt.msc
O4 - GS\Desktop [Melodie]: Symantec Endpoint Protection Manager Console.lnk . (...) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\bin\sesm.bat =>.Symantec Corporation
O4 - GS\Desktop [Melodie]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Administrator.BOULET\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Melodie]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [Melodie]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\sendTo [Melodie]: WinSCP (for upload).lnk . (.Martin Prikryl - WinSCP: SFTP, FTP and SCP client.) C:\Program Files (x86)\WinSCP\WinSCP.exe /upload =>.Martin Prikryl
O4 - GS\TaskBar [Melodie]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\TaskBar [Melodie]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Melodie]: Windows PowerShell.lnk . (.Microsoft Corporation - Windows PowerShell.) C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe =>.Microsoft Corporation
O4 - GS\Startup [Melodie]: MagicDisc.lnk . (.MagicISO, Inc. - MagicISO Virtual CD/DVD Manager.) C:\Program Files (x86)\MagicDisc\MagicDisc.exe =>.MagicISO, Inc.
O4 - GS\Programs [Melodie]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [MicheleH]: Active Directory Users and Computers.lnk . (...) C:\Windows\system32\dsa.msc
O4 - GS\Desktop [MicheleH]: Group Policy Management.lnk . (.Microsoft Corporation - Microsoft Management Console.) C:\Windows\system32\mmc.exe %SystemRoot%\system32\gpmc.msc =>PUP.Optional.Salus
O4 - GS\Desktop [MicheleH]: Logon Scripts.lnk . (...) C:\Windows\SYSVOL\sysvol\boulet.local\scripts
O4 - GS\Desktop [MicheleH]: PayClock_Daily_Backup - Shortcut.lnk . (...) C:\Partage\Punch\PayClock_Daily_Backup
O4 - GS\Desktop [MicheleH]: Punch_Bkup.lnk . (...) C:\Program Files (x86)\Lathem Time Corporation\PayClock\Backup
O4 - GS\Desktop [MicheleH]: Share and Storage Management.lnk . (...) C:\Windows\system32\StorageMgmt.msc
O4 - GS\Desktop [MicheleH]: Symantec Endpoint Protection Manager Console.lnk . (...) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\bin\sesm.bat =>.Symantec Corporation
O4 - GS\Desktop [MicheleH]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Administrator.BOULET\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [MicheleH]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [MicheleH]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\sendTo [MicheleH]: WinSCP (for upload).lnk . (.Martin Prikryl - WinSCP: SFTP, FTP and SCP client.) C:\Program Files (x86)\WinSCP\WinSCP.exe /upload =>.Martin Prikryl
O4 - GS\TaskBar [MicheleH]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\TaskBar [MicheleH]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [MicheleH]: Windows PowerShell.lnk . (.Microsoft Corporation - Windows PowerShell.) C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe =>.Microsoft Corporation
O4 - GS\Startup [MicheleH]: MagicDisc.lnk . (.MagicISO, Inc. - MagicISO Virtual CD/DVD Manager.) C:\Program Files (x86)\MagicDisc\MagicDisc.exe =>.MagicISO, Inc.
O4 - GS\Programs [MicheleH]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [MichelleT]: Active Directory Users and Computers.lnk . (...) C:\Windows\system32\dsa.msc
O4 - GS\Desktop [MichelleT]: Group Policy Management.lnk . (.Microsoft Corporation - Microsoft Management Console.) C:\Windows\system32\mmc.exe %SystemRoot%\system32\gpmc.msc =>PUP.Optional.Salus
O4 - GS\Desktop [MichelleT]: Logon Scripts.lnk . (...) C:\Windows\SYSVOL\sysvol\boulet.local\scripts
O4 - GS\Desktop [MichelleT]: PayClock_Daily_Backup - Shortcut.lnk . (...) C:\Partage\Punch\PayClock_Daily_Backup
O4 - GS\Desktop [MichelleT]: Punch_Bkup.lnk . (...) C:\Program Files (x86)\Lathem Time Corporation\PayClock\Backup
O4 - GS\Desktop [MichelleT]: Share and Storage Management.lnk . (...) C:\Windows\system32\StorageMgmt.msc
O4 - GS\Desktop [MichelleT]: Symantec Endpoint Protection Manager Console.lnk . (...) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\bin\sesm.bat =>.Symantec Corporation
O4 - GS\Desktop [MichelleT]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Administrator.BOULET\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [MichelleT]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [MichelleT]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\sendTo [MichelleT]: WinSCP (for upload).lnk . (.Martin Prikryl - WinSCP: SFTP, FTP and SCP client.) C:\Program Files (x86)\WinSCP\WinSCP.exe /upload =>.Martin Prikryl
O4 - GS\TaskBar [MichelleT]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\TaskBar [MichelleT]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [MichelleT]: Windows PowerShell.lnk . (.Microsoft Corporation - Windows PowerShell.) C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe =>.Microsoft Corporation
O4 - GS\Startup [MichelleT]: MagicDisc.lnk . (.MagicISO, Inc. - MagicISO Virtual CD/DVD Manager.) C:\Program Files (x86)\MagicDisc\MagicDisc.exe =>.MagicISO, Inc.
O4 - GS\Programs [MichelleT]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [mimi]: Active Directory Users and Computers.lnk . (...) C:\Windows\system32\dsa.msc
O4 - GS\Desktop [mimi]: Group Policy Management.lnk . (.Microsoft Corporation - Microsoft Management Console.) C:\Windows\system32\mmc.exe %SystemRoot%\system32\gpmc.msc =>PUP.Optional.Salus
O4 - GS\Desktop [mimi]: Logon Scripts.lnk . (...) C:\Windows\SYSVOL\sysvol\boulet.local\scripts
O4 - GS\Desktop [mimi]: PayClock_Daily_Backup - Shortcut.lnk . (...) C:\Partage\Punch\PayClock_Daily_Backup
O4 - GS\Desktop [mimi]: Punch_Bkup.lnk . (...) C:\Program Files (x86)\Lathem Time Corporation\PayClock\Backup
O4 - GS\Desktop [mimi]: Share and Storage Management.lnk . (...) C:\Windows\system32\StorageMgmt.msc
O4 - GS\Desktop [mimi]: Symantec Endpoint Protection Manager Console.lnk . (...) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\bin\sesm.bat =>.Symantec Corporation
O4 - GS\Desktop [mimi]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Administrator.BOULET\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [mimi]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [mimi]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\sendTo [mimi]: WinSCP (for upload).lnk . (.Martin Prikryl - WinSCP: SFTP, FTP and SCP client.) C:\Program Files (x86)\WinSCP\WinSCP.exe /upload =>.Martin Prikryl
O4 - GS\TaskBar [mimi]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\TaskBar [mimi]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [mimi]: Windows PowerShell.lnk . (.Microsoft Corporation - Windows PowerShell.) C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe =>.Microsoft Corporation
O4 - GS\Startup [mimi]: MagicDisc.lnk . (.MagicISO, Inc. - MagicISO Virtual CD/DVD Manager.) C:\Program Files (x86)\MagicDisc\MagicDisc.exe =>.MagicISO, Inc.
O4 - GS\Programs [mimi]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [Options]: Active Directory Users and Computers.lnk . (...) C:\Windows\system32\dsa.msc
O4 - GS\Desktop [Options]: Group Policy Management.lnk . (.Microsoft Corporation - Microsoft Management Console.) C:\Windows\system32\mmc.exe %SystemRoot%\system32\gpmc.msc =>PUP.Optional.Salus
O4 - GS\Desktop [Options]: Logon Scripts.lnk . (...) C:\Windows\SYSVOL\sysvol\boulet.local\scripts
O4 - GS\Desktop [Options]: PayClock_Daily_Backup - Shortcut.lnk . (...) C:\Partage\Punch\PayClock_Daily_Backup
O4 - GS\Desktop [Options]: Punch_Bkup.lnk . (...) C:\Program Files (x86)\Lathem Time Corporation\PayClock\Backup
O4 - GS\Desktop [Options]: Share and Storage Management.lnk . (...) C:\Windows\system32\StorageMgmt.msc
O4 - GS\Desktop [Options]: Symantec Endpoint Protection Manager Console.lnk . (...) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\bin\sesm.bat =>.Symantec Corporation
O4 - GS\Desktop [Options]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Administrator.BOULET\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Options]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [Options]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\sendTo [Options]: WinSCP (for upload).lnk . (.Martin Prikryl - WinSCP: SFTP, FTP and SCP client.) C:\Program Files (x86)\WinSCP\WinSCP.exe /upload =>.Martin Prikryl
O4 - GS\TaskBar [Options]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\TaskBar [Options]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Options]: Windows PowerShell.lnk . (.Microsoft Corporation - Windows PowerShell.) C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe =>.Microsoft Corporation
O4 - GS\Startup [Options]: MagicDisc.lnk . (.MagicISO, Inc. - MagicISO Virtual CD/DVD Manager.) C:\Program Files (x86)\MagicDisc\MagicDisc.exe =>.MagicISO, Inc.
O4 - GS\Programs [Options]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [PhilippeS]: Active Directory Users and Computers.lnk . (...) C:\Windows\system32\dsa.msc
O4 - GS\Desktop [PhilippeS]: Group Policy Management.lnk . (.Microsoft Corporation - Microsoft Management Console.) C:\Windows\system32\mmc.exe %SystemRoot%\system32\gpmc.msc =>PUP.Optional.Salus
O4 - GS\Desktop [PhilippeS]: Logon Scripts.lnk . (...) C:\Windows\SYSVOL\sysvol\boulet.local\scripts
O4 - GS\Desktop [PhilippeS]: PayClock_Daily_Backup - Shortcut.lnk . (...) C:\Partage\Punch\PayClock_Daily_Backup
O4 - GS\Desktop [PhilippeS]: Punch_Bkup.lnk . (...) C:\Program Files (x86)\Lathem Time Corporation\PayClock\Backup
O4 - GS\Desktop [PhilippeS]: Share and Storage Management.lnk . (...) C:\Windows\system32\StorageMgmt.msc
O4 - GS\Desktop [PhilippeS]: Symantec Endpoint Protection Manager Console.lnk . (...) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\bin\sesm.bat =>.Symantec Corporation
O4 - GS\Desktop [PhilippeS]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Administrator.BOULET\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [PhilippeS]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [PhilippeS]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\sendTo [PhilippeS]: WinSCP (for upload).lnk . (.Martin Prikryl - WinSCP: SFTP, FTP and SCP client.) C:\Program Files (x86)\WinSCP\WinSCP.exe /upload =>.Martin Prikryl
O4 - GS\TaskBar [PhilippeS]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\TaskBar [PhilippeS]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [PhilippeS]: Windows PowerShell.lnk . (.Microsoft Corporation - Windows PowerShell.) C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe =>.Microsoft Corporation
O4 - GS\Startup [PhilippeS]: MagicDisc.lnk . (.MagicISO, Inc. - MagicISO Virtual CD/DVD Manager.) C:\Program Files (x86)\MagicDisc\MagicDisc.exe =>.MagicISO, Inc.
O4 - GS\Programs [PhilippeS]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [pierre]: Active Directory Users and Computers.lnk . (...) C:\Windows\system32\dsa.msc
O4 - GS\Desktop [pierre]: Group Policy Management.lnk . (.Microsoft Corporation - Microsoft Management Console.) C:\Windows\system32\mmc.exe %SystemRoot%\system32\gpmc.msc =>PUP.Optional.Salus
O4 - GS\Desktop [pierre]: Logon Scripts.lnk . (...) C:\Windows\SYSVOL\sysvol\boulet.local\scripts
O4 - GS\Desktop [pierre]: PayClock_Daily_Backup - Shortcut.lnk . (...) C:\Partage\Punch\PayClock_Daily_Backup
O4 - GS\Desktop [pierre]: Punch_Bkup.lnk . (...) C:\Program Files (x86)\Lathem Time Corporation\PayClock\Backup
O4 - GS\Desktop [pierre]: Share and Storage Management.lnk . (...) C:\Windows\system32\StorageMgmt.msc
O4 - GS\Desktop [pierre]: Symantec Endpoint Protection Manager Console.lnk . (...) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\bin\sesm.bat =>.Symantec Corporation
O4 - GS\Desktop [pierre]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Administrator.BOULET\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [pierre]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [pierre]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\sendTo [pierre]: WinSCP (for upload).lnk . (.Martin Prikryl - WinSCP: SFTP, FTP and SCP client.) C:\Program Files (x86)\WinSCP\WinSCP.exe /upload =>.Martin Prikryl
O4 - GS\TaskBar [pierre]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\TaskBar [pierre]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [pierre]: Windows PowerShell.lnk . (.Microsoft Corporation - Windows PowerShell.) C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe =>.Microsoft Corporation
O4 - GS\Startup [pierre]: MagicDisc.lnk . (.MagicISO, Inc. - MagicISO Virtual CD/DVD Manager.) C:\Program Files (x86)\MagicDisc\MagicDisc.exe =>.MagicISO, Inc.
O4 - GS\Programs [pierre]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [PierreB]: Active Directory Users and Computers.lnk . (...) C:\Windows\system32\dsa.msc
O4 - GS\Desktop [PierreB]: Group Policy Management.lnk . (.Microsoft Corporation - Microsoft Management Console.) C:\Windows\system32\mmc.exe %SystemRoot%\system32\gpmc.msc =>PUP.Optional.Salus
O4 - GS\Desktop [PierreB]: Logon Scripts.lnk . (...) C:\Windows\SYSVOL\sysvol\boulet.local\scripts
O4 - GS\Desktop [PierreB]: PayClock_Daily_Backup - Shortcut.lnk . (...) C:\Partage\Punch\PayClock_Daily_Backup
O4 - GS\Desktop [PierreB]: Punch_Bkup.lnk . (...) C:\Program Files (x86)\Lathem Time Corporation\PayClock\Backup
O4 - GS\Desktop [PierreB]: Share and Storage Management.lnk . (...) C:\Windows\system32\StorageMgmt.msc
O4 - GS\Desktop [PierreB]: Symantec Endpoint Protection Manager Console.lnk . (...) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\bin\sesm.bat =>.Symantec Corporation
O4 - GS\Desktop [PierreB]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Administrator.BOULET\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [PierreB]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [PierreB]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\sendTo [PierreB]: WinSCP (for upload).lnk . (.Martin Prikryl - WinSCP: SFTP, FTP and SCP client.) C:\Program Files (x86)\WinSCP\WinSCP.exe /upload =>.Martin Prikryl
O4 - GS\TaskBar [PierreB]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\TaskBar [PierreB]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [PierreB]: Windows PowerShell.lnk . (.Microsoft Corporation - Windows PowerShell.) C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe =>.Microsoft Corporation
O4 - GS\Startup [PierreB]: MagicDisc.lnk . (.MagicISO, Inc. - MagicISO Virtual CD/DVD Manager.) C:\Program Files (x86)\MagicDisc\MagicDisc.exe =>.MagicISO, Inc.
O4 - GS\Programs [PierreB]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [Portable]: Active Directory Users and Computers.lnk . (...) C:\Windows\system32\dsa.msc
O4 - GS\Desktop [Portable]: Group Policy Management.lnk . (.Microsoft Corporation - Microsoft Management Console.) C:\Windows\system32\mmc.exe %SystemRoot%\system32\gpmc.msc =>PUP.Optional.Salus
O4 - GS\Desktop [Portable]: Logon Scripts.lnk . (...) C:\Windows\SYSVOL\sysvol\boulet.local\scripts
O4 - GS\Desktop [Portable]: PayClock_Daily_Backup - Shortcut.lnk . (...) C:\Partage\Punch\PayClock_Daily_Backup
O4 - GS\Desktop [Portable]: Punch_Bkup.lnk . (...) C:\Program Files (x86)\Lathem Time Corporation\PayClock\Backup
O4 - GS\Desktop [Portable]: Share and Storage Management.lnk . (...) C:\Windows\system32\StorageMgmt.msc
O4 - GS\Desktop [Portable]: Symantec Endpoint Protection Manager Console.lnk . (...) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\bin\sesm.bat =>.Symantec Corporation
O4 - GS\Desktop [Portable]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Administrator.BOULET\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Portable]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [Portable]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\sendTo [Portable]: WinSCP (for upload).lnk . (.Martin Prikryl - WinSCP: SFTP, FTP and SCP client.) C:\Program Files (x86)\WinSCP\WinSCP.exe /upload =>.Martin Prikryl
O4 - GS\TaskBar [Portable]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\TaskBar [Portable]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Portable]: Windows PowerShell.lnk . (.Microsoft Corporation - Windows PowerShell.) C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe =>.Microsoft Corporation
O4 - GS\Startup [Portable]: MagicDisc.lnk . (.MagicISO, Inc. - MagicISO Virtual CD/DVD Manager.) C:\Program Files (x86)\MagicDisc\MagicDisc.exe =>.MagicISO, Inc.
O4 - GS\Programs [Portable]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [Production]: Active Directory Users and Computers.lnk . (...) C:\Windows\system32\dsa.msc
O4 - GS\Desktop [Production]: Group Policy Management.lnk . (.Microsoft Corporation - Microsoft Management Console.) C:\Windows\system32\mmc.exe %SystemRoot%\system32\gpmc.msc =>PUP.Optional.Salus
O4 - GS\Desktop [Production]: Logon Scripts.lnk . (...) C:\Windows\SYSVOL\sysvol\boulet.local\scripts
O4 - GS\Desktop [Production]: PayClock_Daily_Backup - Shortcut.lnk . (...) C:\Partage\Punch\PayClock_Daily_Backup
O4 - GS\Desktop [Production]: Punch_Bkup.lnk . (...) C:\Program Files (x86)\Lathem Time Corporation\PayClock\Backup
O4 - GS\Desktop [Production]: Share and Storage Management.lnk . (...) C:\Windows\system32\StorageMgmt.msc
O4 - GS\Desktop [Production]: Symantec Endpoint Protection Manager Console.lnk . (...) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\bin\sesm.bat =>.Symantec Corporation
O4 - GS\Desktop [Production]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Administrator.BOULET\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Production]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [Production]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\sendTo [Production]: WinSCP (for upload).lnk . (.Martin Prikryl - WinSCP: SFTP, FTP and SCP client.) C:\Program Files (x86)\WinSCP\WinSCP.exe /upload =>.Martin Prikryl
O4 - GS\TaskBar [Production]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\TaskBar [Production]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Production]: Windows PowerShell.lnk . (.Microsoft Corporation - Windows PowerShell.) C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe =>.Microsoft Corporation
O4 - GS\Startup [Production]: MagicDisc.lnk . (.MagicISO, Inc. - MagicISO Virtual CD/DVD Manager.) C:\Program Files (x86)\MagicDisc\MagicDisc.exe =>.MagicISO, Inc.
O4 - GS\Programs [Production]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [Punch]: Active Directory Users and Computers.lnk . (...) C:\Windows\system32\dsa.msc
O4 - GS\Desktop [Punch]: Group Policy Management.lnk . (.Microsoft Corporation - Microsoft Management Console.) C:\Windows\system32\mmc.exe %SystemRoot%\system32\gpmc.msc =>PUP.Optional.Salus
O4 - GS\Desktop [Punch]: Logon Scripts.lnk . (...) C:\Windows\SYSVOL\sysvol\boulet.local\scripts
O4 - GS\Desktop [Punch]: PayClock_Daily_Backup - Shortcut.lnk . (...) C:\Partage\Punch\PayClock_Daily_Backup
O4 - GS\Desktop [Punch]: Punch_Bkup.lnk . (...) C:\Program Files (x86)\Lathem Time Corporation\PayClock\Backup
O4 - GS\Desktop [Punch]: Share and Storage Management.lnk . (...) C:\Windows\system32\StorageMgmt.msc
O4 - GS\Desktop [Punch]: Symantec Endpoint Protection Manager Console.lnk . (...) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\bin\sesm.bat =>.Symantec Corporation
O4 - GS\Desktop [Punch]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Administrator.BOULET\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Punch]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [Punch]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\sendTo [Punch]: WinSCP (for upload).lnk . (.Martin Prikryl - WinSCP: SFTP, FTP and SCP client.) C:\Program Files (x86)\WinSCP\WinSCP.exe /upload =>.Martin Prikryl
O4 - GS\TaskBar [Punch]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\TaskBar [Punch]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Punch]: Windows PowerShell.lnk . (.Microsoft Corporation - Windows PowerShell.) C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe =>.Microsoft Corporation
O4 - GS\Startup [Punch]: MagicDisc.lnk . (.MagicISO, Inc. - MagicISO Virtual CD/DVD Manager.) C:\Program Files (x86)\MagicDisc\MagicDisc.exe =>.MagicISO, Inc.
O4 - GS\Programs [Punch]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [pvanier]: Active Directory Users and Computers.lnk . (...) C:\Windows\system32\dsa.msc
O4 - GS\Desktop [pvanier]: Group Policy Management.lnk . (.Microsoft Corporation - Microsoft Management Console.) C:\Windows\system32\mmc.exe %SystemRoot%\system32\gpmc.msc =>PUP.Optional.Salus
O4 - GS\Desktop [pvanier]: Logon Scripts.lnk . (...) C:\Windows\SYSVOL\sysvol\boulet.local\scripts
O4 - GS\Desktop [pvanier]: PayClock_Daily_Backup - Shortcut.lnk . (...) C:\Partage\Punch\PayClock_Daily_Backup
O4 - GS\Desktop [pvanier]: Punch_Bkup.lnk . (...) C:\Program Files (x86)\Lathem Time Corporation\PayClock\Backup
O4 - GS\Desktop [pvanier]: Share and Storage Management.lnk . (...) C:\Windows\system32\StorageMgmt.msc
O4 - GS\Desktop [pvanier]: Symantec Endpoint Protection Manager Console.lnk . (...) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\bin\sesm.bat =>.Symantec Corporation
O4 - GS\Desktop [pvanier]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Administrator.BOULET\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [pvanier]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [pvanier]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\sendTo [pvanier]: WinSCP (for upload).lnk . (.Martin Prikryl - WinSCP: SFTP, FTP and SCP client.) C:\Program Files (x86)\WinSCP\WinSCP.exe /upload =>.Martin Prikryl
O4 - GS\TaskBar [pvanier]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\TaskBar [pvanier]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [pvanier]: Windows PowerShell.lnk . (.Microsoft Corporation - Windows PowerShell.) C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe =>.Microsoft Corporation
O4 - GS\Startup [pvanier]: MagicDisc.lnk . (.MagicISO, Inc. - MagicISO Virtual CD/DVD Manager.) C:\Program Files (x86)\MagicDisc\MagicDisc.exe =>.MagicISO, Inc.
O4 - GS\Programs [pvanier]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [raymond]: Active Directory Users and Computers.lnk . (...) C:\Windows\system32\dsa.msc
O4 - GS\Desktop [raymond]: Group Policy Management.lnk . (.Microsoft Corporation - Microsoft Management Console.) C:\Windows\system32\mmc.exe %SystemRoot%\system32\gpmc.msc =>PUP.Optional.Salus
O4 - GS\Desktop [raymond]: Logon Scripts.lnk . (...) C:\Windows\SYSVOL\sysvol\boulet.local\scripts
O4 - GS\Desktop [raymond]: PayClock_Daily_Backup - Shortcut.lnk . (...) C:\Partage\Punch\PayClock_Daily_Backup
O4 - GS\Desktop [raymond]: Punch_Bkup.lnk . (...) C:\Program Files (x86)\Lathem Time Corporation\PayClock\Backup
O4 - GS\Desktop [raymond]: Share and Storage Management.lnk . (...) C:\Windows\system32\StorageMgmt.msc
O4 - GS\Desktop [raymond]: Symantec Endpoint Protection Manager Console.lnk . (...) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\bin\sesm.bat =>.Symantec Corporation
O4 - GS\Desktop [raymond]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Administrator.BOULET\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [raymond]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [raymond]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\sendTo [raymond]: WinSCP (for upload).lnk . (.Martin Prikryl - WinSCP: SFTP, FTP and SCP client.) C:\Program Files (x86)\WinSCP\WinSCP.exe /upload =>.Martin Prikryl
O4 - GS\TaskBar [raymond]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\TaskBar [raymond]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [raymond]: Windows PowerShell.lnk . (.Microsoft Corporation - Windows PowerShell.) C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe =>.Microsoft Corporation
O4 - GS\Startup [raymond]: MagicDisc.lnk . (.MagicISO, Inc. - MagicISO Virtual CD/DVD Manager.) C:\Program Files (x86)\MagicDisc\MagicDisc.exe =>.MagicISO, Inc.
O4 - GS\Programs [raymond]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [richard]: Active Directory Users and Computers.lnk . (...) C:\Windows\system32\dsa.msc
O4 - GS\Desktop [richard]: Group Policy Management.lnk . (.Microsoft Corporation - Microsoft Management Console.) C:\Windows\system32\mmc.exe %SystemRoot%\system32\gpmc.msc =>PUP.Optional.Salus
O4 - GS\Desktop [richard]: Logon Scripts.lnk . (...) C:\Windows\SYSVOL\sysvol\boulet.local\scripts
O4 - GS\Desktop [richard]: PayClock_Daily_Backup - Shortcut.lnk . (...) C:\Partage\Punch\PayClock_Daily_Backup
O4 - GS\Desktop [richard]: Punch_Bkup.lnk . (...) C:\Program Files (x86)\Lathem Time Corporation\PayClock\Backup
O4 - GS\Desktop [richard]: Share and Storage Management.lnk . (...) C:\Windows\system32\StorageMgmt.msc
O4 - GS\Desktop [richard]: Symantec Endpoint Protection Manager Console.lnk . (...) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\bin\sesm.bat =>.Symantec Corporation
O4 - GS\Desktop [richard]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Administrator.BOULET\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [richard]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [richard]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\sendTo [richard]: WinSCP (for upload).lnk . (.Martin Prikryl - WinSCP: SFTP, FTP and SCP client.) C:\Program Files (x86)\WinSCP\WinSCP.exe /upload =>.Martin Prikryl
O4 - GS\TaskBar [richard]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\TaskBar [richard]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [richard]: Windows PowerShell.lnk . (.Microsoft Corporation - Windows PowerShell.) C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe =>.Microsoft Corporation
O4 - GS\Startup [richard]: MagicDisc.lnk . (.MagicISO, Inc. - MagicISO Virtual CD/DVD Manager.) C:\Program Files (x86)\MagicDisc\MagicDisc.exe =>.MagicISO, Inc.
O4 - GS\Programs [richard]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [rogerb]: Active Directory Users and Computers.lnk . (...) C:\Windows\system32\dsa.msc
O4 - GS\Desktop [rogerb]: Group Policy Management.lnk . (.Microsoft Corporation - Microsoft Management Console.) C:\Windows\system32\mmc.exe %SystemRoot%\system32\gpmc.msc =>PUP.Optional.Salus
O4 - GS\Desktop [rogerb]: Logon Scripts.lnk . (...) C:\Windows\SYSVOL\sysvol\boulet.local\scripts
O4 - GS\Desktop [rogerb]: PayClock_Daily_Backup - Shortcut.lnk . (...) C:\Partage\Punch\PayClock_Daily_Backup
O4 - GS\Desktop [rogerb]: Punch_Bkup.lnk . (...) C:\Program Files (x86)\Lathem Time Corporation\PayClock\Backup
O4 - GS\Desktop [rogerb]: Share and Storage Management.lnk . (...) C:\Windows\system32\StorageMgmt.msc
O4 - GS\Desktop [rogerb]: Symantec Endpoint Protection Manager Console.lnk . (...) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\bin\sesm.bat =>.Symantec Corporation
O4 - GS\Desktop [rogerb]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Administrator.BOULET\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [rogerb]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [rogerb]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\sendTo [rogerb]: WinSCP (for upload).lnk . (.Martin Prikryl - WinSCP: SFTP, FTP and SCP client.) C:\Program Files (x86)\WinSCP\WinSCP.exe /upload =>.Martin Prikryl
O4 - GS\TaskBar [rogerb]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\TaskBar [rogerb]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [rogerb]: Windows PowerShell.lnk . (.Microsoft Corporation - Windows PowerShell.) C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe =>.Microsoft Corporation
O4 - GS\Startup [rogerb]: MagicDisc.lnk . (.MagicISO, Inc. - MagicISO Virtual CD/DVD Manager.) C:\Program Files (x86)\MagicDisc\MagicDisc.exe =>.MagicISO, Inc.
O4 - GS\Programs [rogerb]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [salle-montre]: Active Directory Users and Computers.lnk . (...) C:\Windows\system32\dsa.msc
O4 - GS\Desktop [salle-montre]: Group Policy Management.lnk . (.Microsoft Corporation - Microsoft Management Console.) C:\Windows\system32\mmc.exe %SystemRoot%\system32\gpmc.msc =>PUP.Optional.Salus
O4 - GS\Desktop [salle-montre]: Logon Scripts.lnk . (...) C:\Windows\SYSVOL\sysvol\boulet.local\scripts
O4 - GS\Desktop [salle-montre]: PayClock_Daily_Backup - Shortcut.lnk . (...) C:\Partage\Punch\PayClock_Daily_Backup
O4 - GS\Desktop [salle-montre]: Punch_Bkup.lnk . (...) C:\Program Files (x86)\Lathem Time Corporation\PayClock\Backup
O4 - GS\Desktop [salle-montre]: Share and Storage Management.lnk . (...) C:\Windows\system32\StorageMgmt.msc
O4 - GS\Desktop [salle-montre]: Symantec Endpoint Protection Manager Console.lnk . (...) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\bin\sesm.bat =>.Symantec Corporation
O4 - GS\Desktop [salle-montre]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Administrator.BOULET\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [salle-montre]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [salle-montre]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\sendTo [salle-montre]: WinSCP (for upload).lnk . (.Martin Prikryl - WinSCP: SFTP, FTP and SCP client.) C:\Program Files (x86)\WinSCP\WinSCP.exe /upload =>.Martin Prikryl
O4 - GS\TaskBar [salle-montre]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\TaskBar [salle-montre]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [salle-montre]: Windows PowerShell.lnk . (.Microsoft Corporation - Windows PowerShell.) C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe =>.Microsoft Corporation
O4 - GS\Startup [salle-montre]: MagicDisc.lnk . (.MagicISO, Inc. - MagicISO Virtual CD/DVD Manager.) C:\Program Files (x86)\MagicDisc\MagicDisc.exe =>.MagicISO, Inc.
O4 - GS\Programs [salle-montre]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [sebastien]: Active Directory Users and Computers.lnk . (...) C:\Windows\system32\dsa.msc
O4 - GS\Desktop [sebastien]: Group Policy Management.lnk . (.Microsoft Corporation - Microsoft Management Console.) C:\Windows\system32\mmc.exe %SystemRoot%\system32\gpmc.msc =>PUP.Optional.Salus
O4 - GS\Desktop [sebastien]: Logon Scripts.lnk . (...) C:\Windows\SYSVOL\sysvol\boulet.local\scripts
O4 - GS\Desktop [sebastien]: PayClock_Daily_Backup - Shortcut.lnk . (...) C:\Partage\Punch\PayClock_Daily_Backup
O4 - GS\Desktop [sebastien]: Punch_Bkup.lnk . (...) C:\Program Files (x86)\Lathem Time Corporation\PayClock\Backup
O4 - GS\Desktop [sebastien]: Share and Storage Management.lnk . (...) C:\Windows\system32\StorageMgmt.msc
O4 - GS\Desktop [sebastien]: Symantec Endpoint Protection Manager Console.lnk . (...) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\bin\sesm.bat =>.Symantec Corporation
O4 - GS\Desktop [sebastien]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Administrator.BOULET\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [sebastien]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [sebastien]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\sendTo [sebastien]: WinSCP (for upload).lnk . (.Martin Prikryl - WinSCP: SFTP, FTP and SCP client.) C:\Program Files (x86)\WinSCP\WinSCP.exe /upload =>.Martin Prikryl
O4 - GS\TaskBar [sebastien]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\TaskBar [sebastien]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [sebastien]: Windows PowerShell.lnk . (.Microsoft Corporation - Windows PowerShell.) C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe =>.Microsoft Corporation
O4 - GS\Startup [sebastien]: MagicDisc.lnk . (.MagicISO, Inc. - MagicISO Virtual CD/DVD Manager.) C:\Program Files (x86)\MagicDisc\MagicDisc.exe =>.MagicISO, Inc.
O4 - GS\Programs [sebastien]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [Senior]: Active Directory Users and Computers.lnk . (...) C:\Windows\system32\dsa.msc
O4 - GS\Desktop [Senior]: Group Policy Management.lnk . (.Microsoft Corporation - Microsoft Management Console.) C:\Windows\system32\mmc.exe %SystemRoot%\system32\gpmc.msc =>PUP.Optional.Salus
O4 - GS\Desktop [Senior]: Logon Scripts.lnk . (...) C:\Windows\SYSVOL\sysvol\boulet.local\scripts
O4 - GS\Desktop [Senior]: PayClock_Daily_Backup - Shortcut.lnk . (...) C:\Partage\Punch\PayClock_Daily_Backup
O4 - GS\Desktop [Senior]: Punch_Bkup.lnk . (...) C:\Program Files (x86)\Lathem Time Corporation\PayClock\Backup
O4 - GS\Desktop [Senior]: Share and Storage Management.lnk . (...) C:\Windows\system32\StorageMgmt.msc
O4 - GS\Desktop [Senior]: Symantec Endpoint Protection Manager Console.lnk . (...) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\bin\sesm.bat =>.Symantec Corporation
O4 - GS\Desktop [Senior]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Administrator.BOULET\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Senior]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [Senior]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\sendTo [Senior]: WinSCP (for upload).lnk . (.Martin Prikryl - WinSCP: SFTP, FTP and SCP client.) C:\Program Files (x86)\WinSCP\WinSCP.exe /upload =>.Martin Prikryl
O4 - GS\TaskBar [Senior]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\TaskBar [Senior]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Senior]: Windows PowerShell.lnk . (.Microsoft Corporation - Windows PowerShell.) C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe =>.Microsoft Corporation
O4 - GS\Startup [Senior]: MagicDisc.lnk . (.MagicISO, Inc. - MagicISO Virtual CD/DVD Manager.) C:\Program Files (x86)\MagicDisc\MagicDisc.exe =>.MagicISO, Inc.
O4 - GS\Programs [Senior]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [Services]: Active Directory Users and Computers.lnk . (...) C:\Windows\system32\dsa.msc
O4 - GS\Desktop [Services]: Group Policy Management.lnk . (.Microsoft Corporation - Microsoft Management Console.) C:\Windows\system32\mmc.exe %SystemRoot%\system32\gpmc.msc =>PUP.Optional.Salus
O4 - GS\Desktop [Services]: Logon Scripts.lnk . (...) C:\Windows\SYSVOL\sysvol\boulet.local\scripts
O4 - GS\Desktop [Services]: PayClock_Daily_Backup - Shortcut.lnk . (...) C:\Partage\Punch\PayClock_Daily_Backup
O4 - GS\Desktop [Services]: Punch_Bkup.lnk . (...) C:\Program Files (x86)\Lathem Time Corporation\PayClock\Backup
O4 - GS\Desktop [Services]: Share and Storage Management.lnk . (...) C:\Windows\system32\StorageMgmt.msc
O4 - GS\Desktop [Services]: Symantec Endpoint Protection Manager Console.lnk . (...) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\bin\sesm.bat =>.Symantec Corporation
O4 - GS\Desktop [Services]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Administrator.BOULET\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Services]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [Services]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\sendTo [Services]: WinSCP (for upload).lnk . (.Martin Prikryl - WinSCP: SFTP, FTP and SCP client.) C:\Program Files (x86)\WinSCP\WinSCP.exe /upload =>.Martin Prikryl
O4 - GS\TaskBar [Services]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\TaskBar [Services]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Services]: Windows PowerShell.lnk . (.Microsoft Corporation - Windows PowerShell.) C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe =>.Microsoft Corporation
O4 - GS\Startup [Services]: MagicDisc.lnk . (.MagicISO, Inc. - MagicISO Virtual CD/DVD Manager.) C:\Program Files (x86)\MagicDisc\MagicDisc.exe =>.MagicISO, Inc.
O4 - GS\Programs [Services]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [Sforest]: Active Directory Users and Computers.lnk . (...) C:\Windows\system32\dsa.msc
O4 - GS\Desktop [Sforest]: Group Policy Management.lnk . (.Microsoft Corporation - Microsoft Management Console.) C:\Windows\system32\mmc.exe %SystemRoot%\system32\gpmc.msc =>PUP.Optional.Salus
O4 - GS\Desktop [Sforest]: Logon Scripts.lnk . (...) C:\Windows\SYSVOL\sysvol\boulet.local\scripts
O4 - GS\Desktop [Sforest]: PayClock_Daily_Backup - Shortcut.lnk . (...) C:\Partage\Punch\PayClock_Daily_Backup
O4 - GS\Desktop [Sforest]: Punch_Bkup.lnk . (...) C:\Program Files (x86)\Lathem Time Corporation\PayClock\Backup
O4 - GS\Desktop [Sforest]: Share and Storage Management.lnk . (...) C:\Windows\system32\StorageMgmt.msc
O4 - GS\Desktop [Sforest]: Symantec Endpoint Protection Manager Console.lnk . (...) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\bin\sesm.bat =>.Symantec Corporation
O4 - GS\Desktop [Sforest]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Administrator.BOULET\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Sforest]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [Sforest]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\sendTo [Sforest]: WinSCP (for upload).lnk . (.Martin Prikryl - WinSCP: SFTP, FTP and SCP client.) C:\Program Files (x86)\WinSCP\WinSCP.exe /upload =>.Martin Prikryl
O4 - GS\TaskBar [Sforest]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\TaskBar [Sforest]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Sforest]: Windows PowerShell.lnk . (.Microsoft Corporation - Windows PowerShell.) C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe =>.Microsoft Corporation
O4 - GS\Startup [Sforest]: MagicDisc.lnk . (.MagicISO, Inc. - MagicISO Virtual CD/DVD Manager.) C:\Program Files (x86)\MagicDisc\MagicDisc.exe =>.MagicISO, Inc.
O4 - GS\Programs [Sforest]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [StephanieG]: Active Directory Users and Computers.lnk . (...) C:\Windows\system32\dsa.msc
O4 - GS\Desktop [StephanieG]: Group Policy Management.lnk . (.Microsoft Corporation - Microsoft Management Console.) C:\Windows\system32\mmc.exe %SystemRoot%\system32\gpmc.msc =>PUP.Optional.Salus
O4 - GS\Desktop [StephanieG]: Logon Scripts.lnk . (...) C:\Windows\SYSVOL\sysvol\boulet.local\scripts
O4 - GS\Desktop [StephanieG]: PayClock_Daily_Backup - Shortcut.lnk . (...) C:\Partage\Punch\PayClock_Daily_Backup
O4 - GS\Desktop [StephanieG]: Punch_Bkup.lnk . (...) C:\Program Files (x86)\Lathem Time Corporation\PayClock\Backup
O4 - GS\Desktop [StephanieG]: Share and Storage Management.lnk . (...) C:\Windows\system32\StorageMgmt.msc
O4 - GS\Desktop [StephanieG]: Symantec Endpoint Protection Manager Console.lnk . (...) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\bin\sesm.bat =>.Symantec Corporation
O4 - GS\Desktop [StephanieG]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Administrator.BOULET\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [StephanieG]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [StephanieG]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\sendTo [StephanieG]: WinSCP (for upload).lnk . (.Martin Prikryl - WinSCP: SFTP, FTP and SCP client.) C:\Program Files (x86)\WinSCP\WinSCP.exe /upload =>.Martin Prikryl
O4 - GS\TaskBar [StephanieG]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\TaskBar [StephanieG]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [StephanieG]: Windows PowerShell.lnk . (.Microsoft Corporation - Windows PowerShell.) C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe =>.Microsoft Corporation
O4 - GS\Startup [StephanieG]: MagicDisc.lnk . (.MagicISO, Inc. - MagicISO Virtual CD/DVD Manager.) C:\Program Files (x86)\MagicDisc\MagicDisc.exe =>.MagicISO, Inc.
O4 - GS\Programs [StephanieG]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [sylvie]: Active Directory Users and Computers.lnk . (...) C:\Windows\system32\dsa.msc
O4 - GS\Desktop [sylvie]: Group Policy Management.lnk . (.Microsoft Corporation - Microsoft Management Console.) C:\Windows\system32\mmc.exe %SystemRoot%\system32\gpmc.msc =>PUP.Optional.Salus
O4 - GS\Desktop [sylvie]: Logon Scripts.lnk . (...) C:\Windows\SYSVOL\sysvol\boulet.local\scripts
O4 - GS\Desktop [sylvie]: PayClock_Daily_Backup - Shortcut.lnk . (...) C:\Partage\Punch\PayClock_Daily_Backup
O4 - GS\Desktop [sylvie]: Punch_Bkup.lnk . (...) C:\Program Files (x86)\Lathem Time Corporation\PayClock\Backup
O4 - GS\Desktop [sylvie]: Share and Storage Management.lnk . (...) C:\Windows\system32\StorageMgmt.msc
O4 - GS\Desktop [sylvie]: Symantec Endpoint Protection Manager Console.lnk . (...) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\bin\sesm.bat =>.Symantec Corporation
O4 - GS\Desktop [sylvie]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Administrator.BOULET\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [sylvie]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [sylvie]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\sendTo [sylvie]: WinSCP (for upload).lnk . (.Martin Prikryl - WinSCP: SFTP, FTP and SCP client.) C:\Program Files (x86)\WinSCP\WinSCP.exe /upload =>.Martin Prikryl
O4 - GS\TaskBar [sylvie]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\TaskBar [sylvie]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [sylvie]: Windows PowerShell.lnk . (.Microsoft Corporation - Windows PowerShell.) C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe =>.Microsoft Corporation
O4 - GS\Startup [sylvie]: MagicDisc.lnk . (.MagicISO, Inc. - MagicISO Virtual CD/DVD Manager.) C:\Program Files (x86)\MagicDisc\MagicDisc.exe =>.MagicISO, Inc.
O4 - GS\Programs [sylvie]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [sysdb]: Active Directory Users and Computers.lnk . (...) C:\Windows\system32\dsa.msc
O4 - GS\Desktop [sysdb]: Group Policy Management.lnk . (.Microsoft Corporation - Microsoft Management Console.) C:\Windows\system32\mmc.exe %SystemRoot%\system32\gpmc.msc =>PUP.Optional.Salus
O4 - GS\Desktop [sysdb]: Logon Scripts.lnk . (...) C:\Windows\SYSVOL\sysvol\boulet.local\scripts
O4 - GS\Desktop [sysdb]: PayClock_Daily_Backup - Shortcut.lnk . (...) C:\Partage\Punch\PayClock_Daily_Backup
O4 - GS\Desktop [sysdb]: Punch_Bkup.lnk . (...) C:\Program Files (x86)\Lathem Time Corporation\PayClock\Backup
O4 - GS\Desktop [sysdb]: Share and Storage Management.lnk . (...) C:\Windows\system32\StorageMgmt.msc
O4 - GS\Desktop [sysdb]: Symantec Endpoint Protection Manager Console.lnk . (...) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\bin\sesm.bat =>.Symantec Corporation
O4 - GS\Desktop [sysdb]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Administrator.BOULET\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [sysdb]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [sysdb]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\sendTo [sysdb]: WinSCP (for upload).lnk . (.Martin Prikryl - WinSCP: SFTP, FTP and SCP client.) C:\Program Files (x86)\WinSCP\WinSCP.exe /upload =>.Martin Prikryl
O4 - GS\TaskBar [sysdb]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\TaskBar [sysdb]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [sysdb]: Windows PowerShell.lnk . (.Microsoft Corporation - Windows PowerShell.) C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe =>.Microsoft Corporation
O4 - GS\Startup [sysdb]: MagicDisc.lnk . (.MagicISO, Inc. - MagicISO Virtual CD/DVD Manager.) C:\Program Files (x86)\MagicDisc\MagicDisc.exe =>.MagicISO, Inc.
O4 - GS\Programs [sysdb]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [taher]: Active Directory Users and Computers.lnk . (...) C:\Windows\system32\dsa.msc
O4 - GS\Desktop [taher]: Group Policy Management.lnk . (.Microsoft Corporation - Microsoft Management Console.) C:\Windows\system32\mmc.exe %SystemRoot%\system32\gpmc.msc =>PUP.Optional.Salus
O4 - GS\Desktop [taher]: Logon Scripts.lnk . (...) C:\Windows\SYSVOL\sysvol\boulet.local\scripts
O4 - GS\Desktop [taher]: PayClock_Daily_Backup - Shortcut.lnk . (...) C:\Partage\Punch\PayClock_Daily_Backup
O4 - GS\Desktop [taher]: Punch_Bkup.lnk . (...) C:\Program Files (x86)\Lathem Time Corporation\PayClock\Backup
O4 - GS\Desktop [taher]: Share and Storage Management.lnk . (...) C:\Windows\system32\StorageMgmt.msc
O4 - GS\Desktop [taher]: Symantec Endpoint Protection Manager Console.lnk . (...) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\bin\sesm.bat =>.Symantec Corporation
O4 - GS\Desktop [taher]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Administrator.BOULET\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [taher]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [taher]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\sendTo [taher]: WinSCP (for upload).lnk . (.Martin Prikryl - WinSCP: SFTP, FTP and SCP client.) C:\Program Files (x86)\WinSCP\WinSCP.exe /upload =>.Martin Prikryl
O4 - GS\TaskBar [taher]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\TaskBar [taher]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [taher]: Windows PowerShell.lnk . (.Microsoft Corporation - Windows PowerShell.) C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe =>.Microsoft Corporation
O4 - GS\Startup [taher]: MagicDisc.lnk . (.MagicISO, Inc. - MagicISO Virtual CD/DVD Manager.) C:\Program Files (x86)\MagicDisc\MagicDisc.exe =>.MagicISO, Inc.
O4 - GS\Programs [taher]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [temp]: Active Directory Users and Computers.lnk . (...) C:\Windows\system32\dsa.msc
O4 - GS\Desktop [temp]: Group Policy Management.lnk . (.Microsoft Corporation - Microsoft Management Console.) C:\Windows\system32\mmc.exe %SystemRoot%\system32\gpmc.msc =>PUP.Optional.Salus
O4 - GS\Desktop [temp]: Logon Scripts.lnk . (...) C:\Windows\SYSVOL\sysvol\boulet.local\scripts
O4 - GS\Desktop [temp]: PayClock_Daily_Backup - Shortcut.lnk . (...) C:\Partage\Punch\PayClock_Daily_Backup
O4 - GS\Desktop [temp]: Punch_Bkup.lnk . (...) C:\Program Files (x86)\Lathem Time Corporation\PayClock\Backup
O4 - GS\Desktop [temp]: Share and Storage Management.lnk . (...) C:\Windows\system32\StorageMgmt.msc
O4 - GS\Desktop [temp]: Symantec Endpoint Protection Manager Console.lnk . (...) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\bin\sesm.bat =>.Symantec Corporation
O4 - GS\Desktop [temp]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Administrator.BOULET\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [temp]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [temp]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\sendTo [temp]: WinSCP (for upload).lnk . (.Martin Prikryl - WinSCP: SFTP, FTP and SCP client.) C:\Program Files (x86)\WinSCP\WinSCP.exe /upload =>.Martin Prikryl
O4 - GS\TaskBar [temp]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\TaskBar [temp]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [temp]: Windows PowerShell.lnk . (.Microsoft Corporation - Windows PowerShell.) C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe =>.Microsoft Corporation
O4 - GS\Startup [temp]: MagicDisc.lnk . (.MagicISO, Inc. - MagicISO Virtual CD/DVD Manager.) C:\Program Files (x86)\MagicDisc\MagicDisc.exe =>.MagicISO, Inc.
O4 - GS\Programs [temp]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [UpdateUser]: Active Directory Users and Computers.lnk . (...) C:\Windows\system32\dsa.msc
O4 - GS\Desktop [UpdateUser]: Group Policy Management.lnk . (.Microsoft Corporation - Microsoft Management Console.) C:\Windows\system32\mmc.exe %SystemRoot%\system32\gpmc.msc =>PUP.Optional.Salus
O4 - GS\Desktop [UpdateUser]: Logon Scripts.lnk . (...) C:\Windows\SYSVOL\sysvol\boulet.local\scripts
O4 - GS\Desktop [UpdateUser]: PayClock_Daily_Backup - Shortcut.lnk . (...) C:\Partage\Punch\PayClock_Daily_Backup
O4 - GS\Desktop [UpdateUser]: Punch_Bkup.lnk . (...) C:\Program Files (x86)\Lathem Time Corporation\PayClock\Backup
O4 - GS\Desktop [UpdateUser]: Share and Storage Management.lnk . (...) C:\Windows\system32\StorageMgmt.msc
O4 - GS\Desktop [UpdateUser]: Symantec Endpoint Protection Manager Console.lnk . (...) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\bin\sesm.bat =>.Symantec Corporation
O4 - GS\Desktop [UpdateUser]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Administrator.BOULET\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [UpdateUser]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [UpdateUser]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\sendTo [UpdateUser]: WinSCP (for upload).lnk . (.Martin Prikryl - WinSCP: SFTP, FTP and SCP client.) C:\Program Files (x86)\WinSCP\WinSCP.exe /upload =>.Martin Prikryl
O4 - GS\TaskBar [UpdateUser]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\TaskBar [UpdateUser]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [UpdateUser]: Windows PowerShell.lnk . (.Microsoft Corporation - Windows PowerShell.) C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe =>.Microsoft Corporation
O4 - GS\Startup [UpdateUser]: MagicDisc.lnk . (.MagicISO, Inc. - MagicISO Virtual CD/DVD Manager.) C:\Program Files (x86)\MagicDisc\MagicDisc.exe =>.MagicISO, Inc.
O4 - GS\Programs [UpdateUser]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [Vannak]: Active Directory Users and Computers.lnk . (...) C:\Windows\system32\dsa.msc
O4 - GS\Desktop [Vannak]: Group Policy Management.lnk . (.Microsoft Corporation - Microsoft Management Console.) C:\Windows\system32\mmc.exe %SystemRoot%\system32\gpmc.msc =>PUP.Optional.Salus
O4 - GS\Desktop [Vannak]: Logon Scripts.lnk . (...) C:\Windows\SYSVOL\sysvol\boulet.local\scripts
O4 - GS\Desktop [Vannak]: PayClock_Daily_Backup - Shortcut.lnk . (...) C:\Partage\Punch\PayClock_Daily_Backup
O4 - GS\Desktop [Vannak]: Punch_Bkup.lnk . (...) C:\Program Files (x86)\Lathem Time Corporation\PayClock\Backup
O4 - GS\Desktop [Vannak]: Share and Storage Management.lnk . (...) C:\Windows\system32\StorageMgmt.msc
O4 - GS\Desktop [Vannak]: Symantec Endpoint Protection Manager Console.lnk . (...) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\bin\sesm.bat =>.Symantec Corporation
O4 - GS\Desktop [Vannak]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Administrator.BOULET\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Vannak]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [Vannak]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\sendTo [Vannak]: WinSCP (for upload).lnk . (.Martin Prikryl - WinSCP: SFTP, FTP and SCP client.) C:\Program Files (x86)\WinSCP\WinSCP.exe /upload =>.Martin Prikryl
O4 - GS\TaskBar [Vannak]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\TaskBar [Vannak]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Vannak]: Windows PowerShell.lnk . (.Microsoft Corporation - Windows PowerShell.) C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe =>.Microsoft Corporation
O4 - GS\Startup [Vannak]: MagicDisc.lnk . (.MagicISO, Inc. - MagicISO Virtual CD/DVD Manager.) C:\Program Files (x86)\MagicDisc\MagicDisc.exe =>.MagicISO, Inc.
O4 - GS\Programs [Vannak]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [vannak2]: Active Directory Users and Computers.lnk . (...) C:\Windows\system32\dsa.msc
O4 - GS\Desktop [vannak2]: Group Policy Management.lnk . (.Microsoft Corporation - Microsoft Management Console.) C:\Windows\system32\mmc.exe %SystemRoot%\system32\gpmc.msc =>PUP.Optional.Salus
O4 - GS\Desktop [vannak2]: Logon Scripts.lnk . (...) C:\Windows\SYSVOL\sysvol\boulet.local\scripts
O4 - GS\Desktop [vannak2]: PayClock_Daily_Backup - Shortcut.lnk . (...) C:\Partage\Punch\PayClock_Daily_Backup
O4 - GS\Desktop [vannak2]: Punch_Bkup.lnk . (...) C:\Program Files (x86)\Lathem Time Corporation\PayClock\Backup
O4 - GS\Desktop [vannak2]: Share and Storage Management.lnk . (...) C:\Windows\system32\StorageMgmt.msc
O4 - GS\Desktop [vannak2]: Symantec Endpoint Protection Manager Console.lnk . (...) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\bin\sesm.bat =>.Symantec Corporation
O4 - GS\Desktop [vannak2]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Administrator.BOULET\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [vannak2]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [vannak2]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\sendTo [vannak2]: WinSCP (for upload).lnk . (.Martin Prikryl - WinSCP: SFTP, FTP and SCP client.) C:\Program Files (x86)\WinSCP\WinSCP.exe /upload =>.Martin Prikryl
O4 - GS\TaskBar [vannak2]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\TaskBar [vannak2]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [vannak2]: Windows PowerShell.lnk . (.Microsoft Corporation - Windows PowerShell.) C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe =>.Microsoft Corporation
O4 - GS\Startup [vannak2]: MagicDisc.lnk . (.MagicISO, Inc. - MagicISO Virtual CD/DVD Manager.) C:\Program Files (x86)\MagicDisc\MagicDisc.exe =>.MagicISO, Inc.
O4 - GS\Programs [vannak2]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [xerdox]: Active Directory Users and Computers.lnk . (...) C:\Windows\system32\dsa.msc
O4 - GS\Desktop [xerdox]: Group Policy Management.lnk . (.Microsoft Corporation - Microsoft Management Console.) C:\Windows\system32\mmc.exe %SystemRoot%\system32\gpmc.msc =>PUP.Optional.Salus
O4 - GS\Desktop [xerdox]: Logon Scripts.lnk . (...) C:\Windows\SYSVOL\sysvol\boulet.local\scripts
O4 - GS\Desktop [xerdox]: PayClock_Daily_Backup - Shortcut.lnk . (...) C:\Partage\Punch\PayClock_Daily_Backup
O4 - GS\Desktop [xerdox]: Punch_Bkup.lnk . (...) C:\Program Files (x86)\Lathem Time Corporation\PayClock\Backup
O4 - GS\Desktop [xerdox]: Share and Storage Management.lnk . (...) C:\Windows\system32\StorageMgmt.msc
O4 - GS\Desktop [xerdox]: Symantec Endpoint Protection Manager Console.lnk . (...) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\bin\sesm.bat =>.Symantec Corporation
O4 - GS\Desktop [xerdox]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Administrator.BOULET\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [xerdox]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [xerdox]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\sendTo [xerdox]: WinSCP (for upload).lnk . (.Martin Prikryl - WinSCP: SFTP, FTP and SCP client.) C:\Program Files (x86)\WinSCP\WinSCP.exe /upload =>.Martin Prikryl
O4 - GS\TaskBar [xerdox]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\TaskBar [xerdox]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [xerdox]: Windows PowerShell.lnk . (.Microsoft Corporation - Windows PowerShell.) C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe =>.Microsoft Corporation
O4 - GS\Startup [xerdox]: MagicDisc.lnk . (.MagicISO, Inc. - MagicISO Virtual CD/DVD Manager.) C:\Program Files (x86)\MagicDisc\MagicDisc.exe =>.MagicISO, Inc.
O4 - GS\Programs [xerdox]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [Yanick]: Active Directory Users and Computers.lnk . (...) C:\Windows\system32\dsa.msc
O4 - GS\Desktop [Yanick]: Group Policy Management.lnk . (.Microsoft Corporation - Microsoft Management Console.) C:\Windows\system32\mmc.exe %SystemRoot%\system32\gpmc.msc =>PUP.Optional.Salus
O4 - GS\Desktop [Yanick]: Logon Scripts.lnk . (...) C:\Windows\SYSVOL\sysvol\boulet.local\scripts
O4 - GS\Desktop [Yanick]: PayClock_Daily_Backup - Shortcut.lnk . (...) C:\Partage\Punch\PayClock_Daily_Backup
O4 - GS\Desktop [Yanick]: Punch_Bkup.lnk . (...) C:\Program Files (x86)\Lathem Time Corporation\PayClock\Backup
O4 - GS\Desktop [Yanick]: Share and Storage Management.lnk . (...) C:\Windows\system32\StorageMgmt.msc
O4 - GS\Desktop [Yanick]: Symantec Endpoint Protection Manager Console.lnk . (...) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\bin\sesm.bat =>.Symantec Corporation
O4 - GS\Desktop [Yanick]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Administrator.BOULET\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Yanick]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [Yanick]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\sendTo [Yanick]: WinSCP (for upload).lnk . (.Martin Prikryl - WinSCP: SFTP, FTP and SCP client.) C:\Program Files (x86)\WinSCP\WinSCP.exe /upload =>.Martin Prikryl
O4 - GS\TaskBar [Yanick]: Server Manager.lnk . (...) C:\Windows\system32\ServerManager.msc
O4 - GS\TaskBar [Yanick]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Yanick]: Windows PowerShell.lnk . (.Microsoft Corporation - Windows PowerShell.) C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe =>.Microsoft Corporation
O4 - GS\Startup [Yanick]: MagicDisc.lnk . (.MagicISO, Inc. - MagicISO Virtual CD/DVD Manager.) C:\Program Files (x86)\MagicDisc\MagicDisc.exe =>.MagicISO, Inc.
O4 - GS\Programs [Yanick]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\CommonDesktop [Public]: Acrobat Reader DC.lnk . (.Adobe Systems Incorporated - Adobe Acrobat Reader DC.) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe =>.Adobe Systems, Incorporated®
O4 - GS\CommonDesktop [Public]: CCleaner.lnk . (.Piriform Ltd - CCleaner.) C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Ltd®
O4 - GS\CommonDesktop [Public]: HP Officejet Pro X551dw Printer.lnk . (.Hewlett-Packard Co. - .) C:\Program Files (x86)\HP\HP Officejet Pro X551dw Printer\Bin\HP Officejet Pro X551dw Printer.exe -Start UDCDevicePage =>.Hewlett-Packard Co.
O4 - GS\CommonDesktop [Public]: Malwarebytes.lnk . (.Malwarebytes - Malwarebytes.) C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe =>.Malwarebytes Corporation®
O4 - GS\CommonDesktop [Public]: PayClock V6.lnk . (.Lathem Time Corporation - .) C:\Program Files (x86)\Lathem Time Corporation\PayClock\PayclockV6.exe
O4 - GS\CommonDesktop [Public]: Shop for Supplies - HP Officejet Pro X551dw Printer.lnk . (.Hewlett-Packard Co. - .) C:\Program Files (x86)\HP\HP Officejet Pro X551dw Printer\Bin\hpqDTSS.exe =>.Hewlett-Packard Co.
O4 - GS\CommonDesktop [Public]: Spybot-S&D Start Center.lnk . (.Safer-Networking Ltd. - Start Center.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWelcome.exe =>.Safer-Networking Ltd.®
O4 - GS\CommonDesktop [Public]: VMware vSphere Client.lnk . (.VMware, Inc. - VpxClient.) C:\Program Files (x86)\VMware\Infrastructure\Virtual Infrastructure Client\Launcher\VpxClient.exe =>.VMware, Inc.
O4 - GS\Programs [Public]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Accessories [Public]: Command Prompt.lnk . (.Microsoft Corporation - Interpréteur de commandes Windows.) C:\Windows\system32\cmd.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) C:\Windows\system32\notepad.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe -extoff =>.Microsoft Corporation®
O4 - GS\Accessories [Public]: Calculator.lnk . (.Microsoft Corporation - Calculatrice de Windows.) C:\Windows\system32\calc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: displayswitch.lnk . (.Microsoft Corporation - Afficher le commutateur.) C:\Windows\system32\displayswitch.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.) C:\Windows\system32\mspaint.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Remote Desktop Connection.) C:\Windows\system32\mstsc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Application Windows Wordpad.) C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: dfrgui.lnk . (.Microsoft Corporation - Défragmenteur de disque Microsoft®.) C:\Windows\system32\dfrgui.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Resource Monitor.lnk . (.Microsoft Corporation - Moniteur de ressources et de performances.) C:\Windows\system32\perfmon.exe /res =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: System Information.lnk . (.Microsoft Corporation - Informations système.) C:\Windows\system32\msinfo32.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Task Scheduler.lnk . (...) C:\Windows\system32\taskschd.msc /s =>..Microsoft Corporation
O4 - GS\SystemTools [Public]: Windows Server Backup.lnk . (...) C:\Windows\system32\wbadmin.msc
O4 - GS\ProgramsCommon [Public]: Acrobat Reader DC.lnk . (.Flexera Software LLC - InstallShield.) C:\Windows\Installer\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}\SC_Reader.ico =>.Flexera Software LLC
O4 - GS\ProgramsCommon [Public]: Spybot-S&D Start Center.lnk . (.Safer-Networking Ltd. - Start Center.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWelcome.exe =>.Safer-Networking Ltd.®

---\\ Modification Domaine/Adresses DNS (2) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = boulet.local =>.Local Domain
O17 - HKLM\System\CCS\Services\Tcpip\..\{F406FD58-EDD0-483D-8F1C-E6E74AA77001}: NameServer = 127.0.0.1,192.168.0.250 =>.Local IP Adress

---\\ Protocole additionnel (18) - 1s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll =>.Microsoft Corporation
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®

---\\ Enumère les données de BootExecute (1) - 0s
O34 - HKLM BootExecute: (sdnclean64.exe) =>.Safer Networking Ltd

---\\ Logiciels installés (27) - 11s
O42 - Logiciel: 64 Bit HP CIO Components Installer - (.Hewlett-Packard.) [HKLM][64Bits] -- {3138F992-045B-4F55-825C-53B231E647CA} =>.Hewlett-Packard
O42 - Logiciel: Adobe Acrobat Reader DC - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1033-7B44-AC0F074E4100} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Flash Player 27 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001824237067} =>.Adobe Systems Incorporated
O42 - Logiciel: Bitdefender Endpoint Security Tools - (.Bitdefender.) [HKLM][64Bits] -- Endpoint Security =>.Bitdefender SRL®
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner =>.Piriform Ltd®
O42 - Logiciel: Dyn Updater - (.Dyn, Inc..) [HKLM][64Bits] -- DynUpdater
O42 - Logiciel: Free DWG Viewer 7.0 - (.IGC.) [HKLM][64Bits] -- {B8B4D43C-EAA0-4EEC-B93E-D4D012316286} {2B1A9984B66311DEEDA2F70E453E184D} =>.IGC
O42 - Logiciel: HP Officejet Pro X551dw Printer Basic Device Software - (.Hewlett-Packard Co..) [HKLM][64Bits] -- {68401FEC-E430-4DA0-8912-FAAAEE790D3D} =>.Hewlett-Packard Co.
O42 - Logiciel: Java 8 Update 40 - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83218040F0} =>.Oracle Corporation
O42 - Logiciel: Java Auto Updater - (.Oracle Corporation.) [HKLM][64Bits] -- {4A03706F-666A-4037-7777-5F2748764D10} =>.Oracle Corporation
O42 - Logiciel: MagicDisc 2.7.106 - (..) [HKLM][64Bits] -- MagicDisc 2.7.106
O42 - Logiciel: Malwarebytes version 3.2.2.2029 - (.Malwarebytes.) [HKLM][64Bits] -- {35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1 =>.Malwarebytes Corporation®
O42 - Logiciel: OKI Color Swatch Utility - (.Okidata.) [HKLM][64Bits] -- {A344F95E-E51A-450C-8F84-C940BF61903E} =>.Okidata
O42 - Logiciel: OKI Network Extension - (.Okidata.) [HKLM][64Bits] -- {38ADB9A6-798C-11D6-A855-00105A80791C} =>.Macrovision Corporation®
O42 - Logiciel: PayClock - (.Lathem Time Corporation.) [HKLM][64Bits] -- {CD257C96-8CF2-46EB-ACE9-0533B6B5F8A1}
O42 - Logiciel: Printer DCA - (.PrintFleet Inc..) [HKLM][64Bits] -- {D8D6CA44-79AE-4CFD-885B-1BD50A77AB34}
O42 - Logiciel: Spybot - Search & Destroy - (.Safer-Networking Ltd..) [HKLM][64Bits] -- {B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1 =>.Safer-Networking Ltd.®
O42 - Logiciel: VMware Tools - (.VMware, Inc..) [HKLM][64Bits] -- {2CC6DDCE-708B-416C-8DA6-D1862544668D} =>.VMware, Inc.
O42 - Logiciel: VMware vSphere Client 4.0 - (.VMware, Inc..) [HKLM][64Bits] -- {C40698F9-A861-4531-9F8C-FA7F8961375B} =>.VMware, Inc.
O42 - Logiciel: WatchGuard Fireware v11.10.2 for XTM 3 devices - (.WatchGuard Technologies, Inc..) [HKLM][64Bits] -- WatchGuard XTM XTM3 11.10.2_is1
O42 - Logiciel: WatchGuard Fireware XTM OS for Edge e-Series 11.3.3 - (.WatchGuard Technologies, Inc..) [HKLM][64Bits] -- WatchGuard Fireware XTM OS for Edge e-Series 11.3.3_is1
O42 - Logiciel: WatchGuard Fireware XTM OS for Edge e-Series 11.3.4 - (.WatchGuard Technologies, Inc..) [HKLM][64Bits] -- WatchGuard Fireware XTM OS for Edge e-Series 11.3.4_is1
O42 - Logiciel: WatchGuard System Manager 11.11.4 - (.WatchGuard Technologies, Inc..) [HKLM][64Bits] -- WatchGuard System Manager 11.11_is1
O42 - Logiciel: WinRAR 5.40 beta 4 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver =>.win.rar GmbH®
O42 - Logiciel: WinSCP 4.3.2 - (.Martin Prikryl.) [HKLM][64Bits] -- winscp3_is1 =>.Martin Prikryl
O42 - Logiciel: Yahoo! Detect - (..) [HKLM][64Bits] -- YTdetect =>.SUP.YahooDetect

---\\ HKCU & HKLM Software Keys (66) - 11s
HKLM\SOFTWARE\Wow6432Node\Adobe =>.Adobe
HKLM\SOFTWARE\Wow6432Node\BlueStacks =>.BlueStack Systems, Inc.
HKLM\SOFTWARE\Wow6432Node\Caphyon =>.Caphyon
HKLM\SOFTWARE\Wow6432Node\Dyn
HKLM\SOFTWARE\Wow6432Node\Dyn Updater
HKLM\SOFTWARE\Wow6432Node\Google =>.Google
HKLM\SOFTWARE\Wow6432Node\Hewlett-Packard =>.Hewlett-Packard
HKLM\SOFTWARE\Wow6432Node\IGC =>.IGC
HKLM\SOFTWARE\Wow6432Node\JavaSoft =>.JavaSoft
HKLM\SOFTWARE\Wow6432Node\JreMetrics =>.JreMetrics
HKLM\SOFTWARE\Wow6432Node\Lathem
HKLM\SOFTWARE\Wow6432Node\Licenses =>.Microsoft Corporation
HKLM\SOFTWARE\Wow6432Node\Macromedia =>.Macromedia
HKLM\SOFTWARE\Wow6432Node\Martin Prikryl =>.Martin Prikryl
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins =>.MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\ODBC =>.DB Connectivity Solutions
HKLM\SOFTWARE\Wow6432Node\Okidata =>.Okidata
HKLM\SOFTWARE\Wow6432Node\ParetoLogic =>.SUP.Paretologic
HKLM\SOFTWARE\Wow6432Node\PrintFleet Inc.
HKLM\SOFTWARE\Wow6432Node\Safer Networking Limited =>.Safer Networking Limited
HKLM\SOFTWARE\Wow6432Node\Stellar Data Recovery =>.Stellar Systems
HKLM\SOFTWARE\Wow6432Node\Sybase
HKLM\SOFTWARE\Wow6432Node\Symantec =>.Symantec
HKLM\SOFTWARE\Wow6432Node\TeamViewer =>.TeamViewer
HKLM\SOFTWARE\Wow6432Node\TrendMicro =>.TrendMicro
HKLM\SOFTWARE\Wow6432Node\VMware, Inc. =>.VMware, Inc.
HKLM\SOFTWARE\Wow6432Node\WatchGuard =>.WatchGuard
HKLM\SOFTWARE\Wow6432Node\WatchGuard Technologies, Inc.
HKLM\SOFTWARE\Wow6432Node\Windows =>.Microsoft Corporation
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications =>.Microsoft Corporation
HKCU\SOFTWARE\Adobe =>.Adobe
HKCU\SOFTWARE\AppDataLow =>.Microsoft Corporation
HKCU\SOFTWARE\Bitdefender =>.Bitdefender
HKCU\SOFTWARE\Caphyon =>.Caphyon
HKCU\SOFTWARE\Chromium =>.Chromium
HKCU\SOFTWARE\cks =>.Legitimate
HKCU\SOFTWARE\Dyn Updater
HKCU\SOFTWARE\Google =>.Google
HKCU\SOFTWARE\Hewlett-Packard =>.Hewlett-Packard
HKCU\SOFTWARE\HP =>.HP
HKCU\SOFTWARE\JavaSoft =>.JavaSoft
HKCU\SOFTWARE\Local AppWizard-Generated Applications =>.ZWCAD
HKCU\SOFTWARE\Locky =>.Legitimate
HKCU\SOFTWARE\Macromedia =>.Macromedia
HKCU\SOFTWARE\MagicDisc
HKCU\SOFTWARE\Malwarebytes =>.Malwarebytes
HKCU\SOFTWARE\Martin Prikryl =>.Martin Prikryl
HKCU\SOFTWARE\Netscape =>.Netscape
HKCU\SOFTWARE\ParetoLogic =>.SUP.Paretologic
HKCU\SOFTWARE\Piriform =>.Piriform
HKCU\SOFTWARE\Safer Networking Limited =>.Safer Networking Limited
HKCU\SOFTWARE\Seagull Scientific =>.Seagull Scientific
HKCU\SOFTWARE\SimonTatham =>.Simon Tatham
HKCU\SOFTWARE\Symantec =>.Symantec
HKCU\SOFTWARE\Sysinternals =>.Sysinternals
HKCU\SOFTWARE\TeamViewer =>.TeamViewer
HKCU\SOFTWARE\THXfL9772KeFl5
HKCU\SOFTWARE\VMware =>.VMware
HKCU\SOFTWARE\VMware, Inc. =>.VMware, Inc.
HKCU\SOFTWARE\WatchGuard Technologies, Inc.
HKCU\SOFTWARE\WinRAR =>.WinRAR
HKCU\SOFTWARE\Wow6432Node =>.Microsoft Corporation
HKCU\SOFTWARE\YahooPartnerToolbar =>Toolbar.YahooPartner
HKCU\SOFTWARE\ZHP =>.Nicolas Coolman
HKCU\SOFTWARE\AppDataLow\Software =>.Microsoft Corporation
HKCU\SOFTWARE\AppDataLow\Software\JavaSoft =>.JavaSoft

---\\ Contenu des dossiers Programmes (158) - 9s
O43 - CFD: 27/09/2017 - [] D -- C:\Program Files\Bitdefender =>.Bitdefender
O43 - CFD: 02/12/2014 - [] D -- C:\Program Files\CCleaner =>.Piriform Ltd
O43 - CFD: 12/06/2017 - [] D -- C:\Program Files\Common Files =>.Microsoft Corporation
O43 - CFD: 29/09/2010 - [] D -- C:\Program Files\Hewlett-Packard =>.Hewlett-Packard
O43 - CFD: 02/09/2014 - [] D -- C:\Program Files\HP =>.Hewlett-Packard
O43 - CFD: 27/09/2017 - [] D -- C:\Program Files\Internet Explorer =>.Microsoft Corporation
O43 - CFD: 12/08/2016 - [] D -- C:\Program Files\Lathem Time Corporation {790FDD80E16DA8D5E7D626A744017DD8}
O43 - CFD: 28/09/2017 - [] D -- C:\Program Files\Malwarebytes =>.Malwarebytes
O43 - CFD: 25/08/2010 - [] D -- C:\Program Files\MSBuild =>.Microsoft Corporation
O43 - CFD: 27/09/2017 - [] D -- C:\Program Files\Npcap
O43 - CFD: 07/06/2011 - [] D -- C:\Program Files\Okidata =>.Okidata
O43 - CFD: 25/08/2010 - [] D -- C:\Program Files\Reference Assemblies =>.Microsoft Corporation
O43 - CFD: 24/04/2017 - [0] D -- C:\Program Files\Symantec =>.Symantec
O43 - CFD: 14/07/2009 - [0] HD -- C:\Program Files\Uninstall Information =>.Microsoft Corporation
O43 - CFD: 25/08/2010 - [] D -- C:\Program Files\VMware =>.VMware, Inc.®
O43 - CFD: 02/04/2011 - [] D -- C:\Program Files\Windows Mail =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Windows NT =>.Microsoft Corporation
O43 - CFD: 10/08/2016 - [] D -- C:\Program Files\WinRAR =>.win.rar GmbH®
O43 - CFD: 27/06/2017 - [] D -- C:\Program Files (x86)\Adobe =>.Adobe Systems, Incorporated®
O43 - CFD: 19/12/2016 - [] D -- C:\Program Files (x86)\Common Files =>.Microsoft Corporation
O43 - CFD: 11/07/2013 - [] D -- C:\Program Files (x86)\DynDNS Updater {512F41BD97D27F6FA9656A73AD523F61}
O43 - CFD: 28/09/2017 - [] D -- C:\Program Files (x86)\Google =>.Google
O43 - CFD: 02/09/2014 - [] D -- C:\Program Files (x86)\HP =>.Hewlett-Packard
O43 - CFD: 24/05/2011 - [] D -- C:\Program Files (x86)\IGC {2B1A9984B66311DEEDA2F70E453E184D} =>.IGC
O43 - CFD: 07/06/2011 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information =>.InstallShield
O43 - CFD: 27/09/2017 - [] D -- C:\Program Files (x86)\Internet Explorer =>.Microsoft Corporation
O43 - CFD: 04/03/2015 - [] D -- C:\Program Files (x86)\Java =>.Oracle
O43 - CFD: 12/08/2016 - [] D -- C:\Program Files (x86)\Lathem Time Corporation {790FDD80E16DA8D5E7D626A744017DD8}
O43 - CFD: 27/09/2010 - [] D -- C:\Program Files (x86)\MagicDisc
O43 - CFD: 25/08/2010 - [] D -- C:\Program Files (x86)\Microsoft.NET =>.Microsoft Corporation
O43 - CFD: 25/08/2010 - [] D -- C:\Program Files (x86)\MSBuild =>.Microsoft Corporation
O43 - CFD: 27/09/2017 - [] D -- C:\Program Files (x86)\Nmap =>.Fyodor
O43 - CFD: 19/12/2016 - [0] D -- C:\Program Files (x86)\ParetoLogic =>.SUP.Paretologic
O43 - CFD: 07/03/2015 - [] D -- C:\Program Files (x86)\Printer DCA =>.PrintFleet Inc.
O43 - CFD: 25/08/2010 - [] D -- C:\Program Files (x86)\Reference Assemblies =>.Microsoft Corporation
O43 - CFD: 27/09/2010 - [] D -- C:\Program Files (x86)\ScriptLogic Corporation
O43 - CFD: 27/09/2017 - [] D -- C:\Program Files (x86)\Spybot - Search & Destroy 2 =>.SaferNetworking
O43 - CFD: 14/07/2009 - [0] HD -- C:\Program Files (x86)\Uninstall Information =>.Microsoft Corporation
O43 - CFD: 04/11/2010 - [] D -- C:\Program Files (x86)\VMware =>.VMware
O43 - CFD: 03/06/2011 - [] D -- C:\Program Files (x86)\WatchGuard =>.WatchGuard
O43 - CFD: 02/04/2011 - [] D -- C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Windows NT =>.Microsoft Corporation
O43 - CFD: 02/04/2011 - [] D -- C:\Program Files (x86)\WinSCP
O43 - CFD: 01/07/2014 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories =>.Microsoft Corporation
O43 - CFD: 11/09/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools
O43 - CFD: 27/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender Endpoint Security Tools =>.Bitdefender
O43 - CFD: 02/12/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner =>.Piriform Ltd
O43 - CFD: 11/07/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dyn Updater
O43 - CFD: 24/05/2011 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free DWG Viewer =>.Informative Graphics
O43 - CFD: 02/09/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP =>.Hewlett-Packard
O43 - CFD: 17/12/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java =>.Oracle
O43 - CFD: 12/08/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lathem Time Corporation
O43 - CFD: 27/09/2010 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MagicDisc
O43 - CFD: 13/07/2009 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance =>.Microsoft Corporation
O43 - CFD: 28/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes =>.Malwarebytes
O43 - CFD: 07/06/2011 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Okidata =>.Okidata
O43 - CFD: 02/10/2012 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Printer DCA =>.PrintFleet Inc.
O43 - CFD: 27/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2 =>.SaferNetworking
O43 - CFD: 11/07/2013 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup =>.Microsoft Corporation
O43 - CFD: 12/06/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VMware =>.VMware
O43 - CFD: 13/10/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WatchGuard System Manager 11.11.4
O43 - CFD: 10/08/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR
O43 - CFD: 02/04/2011 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinSCP
O43 - CFD: 27/06/2017 - [] D -- C:\ProgramData\Adobe =>.Adobe
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Application Data =>.Microsoft Corporation
O43 - CFD: 17/08/2017 - [] D -- C:\ProgramData\bdch =>.Softwin
O43 - CFD: 11/08/2016 - [0] D -- C:\ProgramData\bdlogging =>.Bitdefender
O43 - CFD: 11/08/2016 - [] D -- C:\ProgramData\Bitdefender =>.Bitdefender
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Desktop =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Documents =>.Microsoft Corporation
O43 - CFD: 11/07/2013 - [] D -- C:\ProgramData\Dyn
O43 - CFD: 27/09/2010 - [] D -- C:\ProgramData\DynDNS
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Favorites =>.Microsoft Corporation
O43 - CFD: 16/09/2010 - [] D -- C:\ProgramData\GroupPolicy =>.Microsoft Corporation
O43 - CFD: 09/08/2016 - [] D -- C:\ProgramData\Hewlett-Packard =>.Hewlett-Packard
O43 - CFD: 02/09/2014 - [] D -- C:\ProgramData\HP =>.Hewlett-Packard
O43 - CFD: 11/07/2014 - [] D -- C:\ProgramData\Lathem Time Corporation
O43 - CFD: 28/09/2017 - [] D -- C:\ProgramData\Malwarebytes =>.Malwarebytes
O43 - CFD: 27/09/2017 - [] SD -- C:\ProgramData\Microsoft =>.Microsoft Corporation
O43 - CFD: 19/12/2016 - [] D -- C:\ProgramData\ParetoLogic =>.SUP.Paretologic
O43 - CFD: 02/12/2014 - [] D -- C:\ProgramData\Seagull =>.SEAGULL
O43 - CFD: 27/09/2017 - [] D -- C:\ProgramData\Spybot - Search & Destroy =>.SaferNetworking
O43 - CFD: 11/08/2016 - [] D -- C:\ProgramData\SQL Anywhere 11
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Start Menu =>.Microsoft Corporation
O43 - CFD: 15/09/2010 - [] D -- C:\ProgramData\Sun =>.Oracle
O43 - CFD: 19/12/2016 - [] D -- C:\ProgramData\Symantec =>.Symantec
O43 - CFD: 15/08/2016 - [0] AD -- C:\ProgramData\TEMP =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Templates =>.Microsoft Corporation
O43 - CFD: 16/08/2017 - [] D -- C:\ProgramData\Veeam
O43 - CFD: 02/04/2011 - [] D -- C:\ProgramData\VMware =>.VMware
O43 - CFD: 02/04/2011 - [] D -- C:\ProgramData\WatchGuard =>.WatchGuard
O43 - CFD: 27/06/2017 - [] D -- C:\Program Files (x86)\Common Files\Adobe =>.Adobe
O43 - CFD: 07/06/2011 - [] D -- C:\Program Files (x86)\Common Files\InstallShield =>.InstallShield
O43 - CFD: 12/08/2016 - [] D -- C:\Program Files (x86)\Common Files\Intuit =>.Intuit
O43 - CFD: 04/03/2015 - [] D -- C:\Program Files (x86)\Common Files\Java =>.Oracle
O43 - CFD: 12/08/2016 - [] D -- C:\Program Files (x86)\Common Files\Lathem Time Corporation
O43 - CFD: 24/05/2011 - [] D -- C:\Program Files (x86)\Common Files\microsoft shared =>.Microsoft Corporation
O43 - CFD: 13/07/2009 - [] D -- C:\Program Files (x86)\Common Files\Services =>.Microsoft Corporation
O43 - CFD: 27/09/2010 - [0] D -- C:\Program Files (x86)\Common Files\Small Wonders Software
O43 - CFD: 13/07/2009 - [] D -- C:\Program Files (x86)\Common Files\SpeechEngines =>.Microsoft Corporation
O43 - CFD: 11/08/2016 - [] D -- C:\Program Files (x86)\Common Files\Symantec Shared =>.Symantec Corporation
O43 - CFD: 30/04/2015 - [] D -- C:\Program Files (x86)\Common Files\System =>.Microsoft Corporation
O43 - CFD: 13/10/2016 - [] D -- C:\Program Files (x86)\Common Files\WatchGuard =>.WatchGuard
O43 - CFD: 11/05/2015 - [] D -- C:\Users\Administrator.BOULET\AppData\Roaming\Adobe =>.Adobe
O43 - CFD: 27/09/2010 - [0] D -- C:\Users\Administrator.BOULET\AppData\Roaming\Download Manager
O43 - CFD: 08/10/2015 - [] D -- C:\Users\Administrator.BOULET\AppData\Roaming\FileZilla Server =>.FileZilla
O43 - CFD: 24/05/2011 - [] D -- C:\Users\Administrator.BOULET\AppData\Roaming\IGC =>.IGC
O43 - CFD: 07/06/2011 - [] D -- C:\Users\Administrator.BOULET\AppData\Roaming\InstallShield =>.InstallShield
O43 - CFD: 08/05/2012 - [] D -- C:\Users\Administrator.BOULET\AppData\Roaming\IsolatedStorage =>.id Software
O43 - CFD: 16/09/2010 - [] D -- C:\Users\Administrator.BOULET\AppData\Roaming\Macromedia =>.Macromedia
O43 - CFD: 04/04/2017 - [] SD -- C:\Users\Administrator.BOULET\AppData\Roaming\Microsoft =>.Microsoft Corporation
O43 - CFD: 13/08/2016 - [0] D -- C:\Users\Administrator.BOULET\AppData\Roaming\QuickScan =>.Bitdefender
O43 - CFD: 11/07/2014 - [] D -- C:\Users\Administrator.BOULET\AppData\Roaming\TeamViewer =>.TeamViewer GmbH
O43 - CFD: 26/04/2016 - [] D -- C:\Users\Administrator.BOULET\AppData\Roaming\VMware =>.VMware
O43 - CFD: 25/05/2016 - [] D -- C:\Users\Administrator.BOULET\AppData\Roaming\WatchGuard =>.WatchGuard
O43 - CFD: 11/08/2016 - [] D -- C:\Users\Administrator.BOULET\AppData\Roaming\WinRAR =>.WinRAR
O43 - CFD: 28/09/2017 - [] D -- C:\Users\Administrator.BOULET\AppData\Roaming\ZHP =>.Nicolas Coolman
O43 - CFD: 27/06/2017 - [] D -- C:\Users\Administrator.BOULET\AppData\Local\Adobe =>.Adobe
O43 - CFD: 15/09/2010 - [0] SHD -- C:\Users\Administrator.BOULET\AppData\Local\Application Data =>.Microsoft Corporation
O43 - CFD: 27/06/2017 - [] D -- C:\Users\Administrator.BOULET\AppData\Local\Apps =>.Microsoft Corporation
O43 - CFD: 24/11/2015 - [] D -- C:\Users\Administrator.BOULET\AppData\Local\CEF =>.CEF
O43 - CFD: 18/08/2016 - [] D -- C:\Users\Administrator.BOULET\AppData\Local\CrashDumps =>.Microsoft Corporation
O43 - CFD: 27/06/2017 - [0] D -- C:\Users\Administrator.BOULET\AppData\Local\Deployment =>.Microsoft Corporation
O43 - CFD: 06/01/2015 - [] SHD -- C:\Users\Administrator.BOULET\AppData\Local\EmieBrowserModeList =>.Enterprise mode Site List Mgr
O43 - CFD: 01/11/2016 - [0] SHD -- C:\Users\Administrator.BOULET\AppData\Local\EmieSiteList =>.Enterprise mode Site List Mgr
O43 - CFD: 01/11/2016 - [0] SHD -- C:\Users\Administrator.BOULET\AppData\Local\EmieUserList =>.Enterprise mode Site List Mgr
O43 - CFD: 27/09/2017 - [] D -- C:\Users\Administrator.BOULET\AppData\Local\Google =>.Google
O43 - CFD: 15/09/2010 - [0] SHD -- C:\Users\Administrator.BOULET\AppData\Local\History =>.Microsoft Corporation
O43 - CFD: 02/09/2014 - [] D -- C:\Users\Administrator.BOULET\AppData\Local\HP =>.Hewlett-Packard
O43 - CFD: 08/05/2012 - [] D -- C:\Users\Administrator.BOULET\AppData\Local\IsolatedStorage =>.id Software
O43 - CFD: 11/07/2014 - [] D -- C:\Users\Administrator.BOULET\AppData\Local\Lathem_Time_Corporation
O43 - CFD: 04/04/2017 - [] D -- C:\Users\Administrator.BOULET\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 15/08/2016 - [] D -- C:\Users\Administrator.BOULET\AppData\Local\Programs =>.Microsoft Corporation
O43 - CFD: 22/09/2010 - [] D -- C:\Users\Administrator.BOULET\AppData\Local\Symantec =>.Symantec
O43 - CFD: 28/09/2017 - [] D -- C:\Users\Administrator.BOULET\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 15/09/2010 - [0] SHD -- C:\Users\Administrator.BOULET\AppData\Local\Temporary Internet Files =>.Microsoft Corporation
O43 - CFD: 04/11/2010 - [] D -- C:\Users\Administrator.BOULET\AppData\Local\VMware =>.VMware
O43 - CFD: 28/09/2017 - [] D -- C:\Users\Administrator.BOULET\AppData\Local\ZHP =>.Nicolas Coolman
O43 - CFD: 15/08/2016 - [0] D -- C:\Users\Administrator.BOULET\AppData\Local\Programs\Common =>.Microsoft Corporation
O43 - CFD: 16/09/2010 - [] RD -- C:\Users\Administrator.BOULET\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories =>.Microsoft Corporation
O43 - CFD: 27/09/2017 - [] RD -- C:\Users\Administrator.BOULET\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools
O43 - CFD: 27/09/2010 - [0] D -- C:\Users\Administrator.BOULET\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MagicDisc
O43 - CFD: 14/07/2009 - [] RD -- C:\Users\Administrator.BOULET\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance =>.Microsoft Corporation
O43 - CFD: 27/09/2017 - [] RD -- C:\Users\Administrator.BOULET\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup =>.Microsoft Corporation
O43 - CFD: 22/03/2011 - [] D -- C:\Users\Administrator.BOULET\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Symantec Endpoint Protection Manager
O43 - CFD: 14/07/2009 - [0] SHD -- C:\Users\Default\AppData\Local\Application Data =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [0] SHD -- C:\Users\Default\AppData\Local\History =>.Microsoft Corporation
O43 - CFD: 13/07/2009 - [] D -- C:\Users\Default\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 13/07/2009 - [0] D -- C:\Users\Default\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [0] SHD -- C:\Users\Default\AppData\Local\Temporary Internet Files =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [0] SHD -- C:\Users\Default User\AppData\Local\Application Data =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [0] SHD -- C:\Users\Default User\AppData\Local\History =>.Microsoft Corporation
O43 - CFD: 13/07/2009 - [] D -- C:\Users\Default User\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 13/07/2009 - [0] D -- C:\Users\Default User\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [0] SHD -- C:\Users\Default User\AppData\Local\Temporary Internet Files =>.Microsoft Corporation
O43 - CFD: 11/08/2016 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\CrashDumps =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] SD -- C:\Windows\System32\Config\systemprofile\AppData\Roaming\Microsoft =>.Microsoft Corporation

---\\ ShellIconOverlayIdentifiers (SIOI) (2) - 0s
O106 - SIOI: Enhanced Storage Icon Overlay Handler Class [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - DLL d’extension d’environnement de stockage.) -- C:\Windows\System32\EhStorShell.dll =>.Microsoft Corporation
O106 - SIOI: Sharing Overlay (Private) [SharingPrivate] - {08244EE6-92F0-47f2-9FC9-929BAA2E7235}. (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation

---\\ Image File Execution Options (4) - 0s
O50 - IFEO:C:\Windows\System32\ie4uinit.exe - (.Microsoft Corporation - IE Per-User Initialization Utility.) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\ieUnatt.exe - (.Microsoft Corporation - IE 7.0 Unattended Install Utility.) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\msfeedssync.exe - (.Microsoft Corporation - Microsoft Feeds Synchronization.) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\mshta.exe - (.Microsoft Corporation - Microsoft (R) HTML Application host.) [MitigationOptions\\256] =>.Microsoft Corporation

---\\ Liste des pilotes du système (60) - 10s
O58 - SDL:2009/07/13 21:52:21 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [491088] =>.Microsoft Windows®
O58 - SDL:2009/07/13 21:52:21 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [339536] =>.Microsoft Windows®
O58 - SDL:2009/07/13 21:52:21 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\drivers\adpu320.sys [182864] =>.Microsoft Windows®
O58 - SDL:2009/07/13 21:52:21 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [15440] =>.Microsoft Windows®
O58 - SDL:2011/03/11 02:41:12 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [107904] =>.Microsoft Windows®
O58 - SDL:2009/07/13 21:52:20 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [194128] =>.Microsoft Windows®
O58 - SDL:2011/03/11 02:41:12 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [27008] =>.Microsoft Windows®
O58 - SDL:2009/07/13 21:52:21 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [87632] =>.Microsoft Windows®
O58 - SDL:2009/07/13 21:52:21 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [97856] =>.Microsoft Windows®
O58 - SDL:2017/08/23 03:49:32 A . (.BitDefender - Active Virus Control filter driver.) -- C:\Windows\System32\drivers\avc3.sys [1763744] =>.Bitdefender SRL®
O58 - SDL:2017/08/23 03:49:30 RA . (.BitDefender - Active Virus Control Kernel Filtering drive.) -- C:\Windows\System32\drivers\avckf.sys [882672] =>.Bitdefender SRL®
O58 - SDL:2009/06/10 16:34:23 A . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x.) -- C:\Windows\System32\drivers\b57nd60a.sys [270848] =>.Broadcom Corporation
O58 - SDL:2015/10/06 14:58:31 A . (.Bitdefender - Bitdefender DLP upper filter.) -- C:\Windows\System32\drivers\bdupflt.sys [57544] =>.Bitdefender SRL®
O58 - SDL:2009/06/10 16:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [18432] =>.Brother Industries, Ltd.
O58 - SDL:2009/06/10 16:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [8704] =>.Brother Industries, Ltd.
O58 - SDL:2009/07/13 21:19:07 A . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [286720] =>.Brother Industries Ltd.
O58 - SDL:2009/06/10 16:41:10 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [47104] =>.Brother Industries Ltd.
O58 - SDL:2009/06/10 16:41:10 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [14976] =>.Brother Industries Ltd.
O58 - SDL:2009/06/10 16:41:10 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [14720] =>.Brother Industries Ltd.
O58 - SDL:2009/06/10 16:34:28 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [468480] =>.Broadcom Corporation
O58 - SDL:2009/07/13 21:52:31 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [17488] =>.Microsoft Windows®
O58 - SDL:2009/06/10 16:35:09 A . (.Intel Corporation - Intel(R) PRO/1000 Adapter NDIS 6 deserializ.) -- C:\Windows\System32\drivers\E1G6032E.sys [145792] =>.Intel Corporation
O58 - SDL:2009/07/13 21:47:48 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [530496] =>.Microsoft Windows®
O58 - SDL:2009/06/10 16:34:33 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3286016] =>.Broadcom Corporation
O58 - SDL:2017/09/28 00:52:24 A . (.Malwarebytes - Malwarebytes Anti-Ransomware Protection.) -- C:\Windows\System32\drivers\farflt.sys [101824] =>.Malwarebytes Corporation®
O58 - SDL:2017/09/27 09:54:53 A . (.BitDefender LLC - BitDefender Gonzales FileSystem Driver.) -- C:\Windows\System32\drivers\gzflt.sys [187688] =>.Bitdefender SRL®
O58 - SDL:2010/11/20 09:33:35 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [78720] =>.Microsoft Windows®
O58 - SDL:2011/03/11 02:41:26 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [410496] =>.Microsoft Windows®
O58 - SDL:2009/07/13 21:48:04 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [44112] =>.Microsoft Windows®
O58 - SDL:2009/07/13 21:48:04 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [114752] =>.Microsoft Windows®
O58 - SDL:2009/07/13 21:48:04 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [106560] =>.Microsoft Windows®
O58 - SDL:2009/07/13 21:48:04 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [65600] =>.Microsoft Windows®
O58 - SDL:2009/07/13 21:48:04 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [115776] =>.Microsoft Windows®
O58 - SDL:2017/08/24 11:27:36 A . (...) -- C:\Windows\System32\drivers\mbae64.sys [77440] =>.Malwarebytes Corporation®
O58 - SDL:2017/09/28 00:52:23 A . (.Malwarebytes - Malwarebytes Real-Time Protection.) -- C:\Windows\System32\drivers\mbam.sys [45472] =>.Malwarebytes Corporation®
O58 - SDL:2017/09/28 00:52:32 A . (.Malwarebytes - Malwarebytes Chameleon.) -- C:\Windows\System32\drivers\MBAMChameleon.sys [192960] =>.Malwarebytes Corporation®
O58 - SDL:2017/09/28 00:52:23 A . (.Malwarebytes - Malwarebytes SwissArmy.) -- C:\Windows\System32\drivers\MBAMSwissArmy.sys [253888] =>.Malwarebytes Corporation®
O58 - SDL:2009/02/24 18:35:44 A . (.MagicISO, Inc. - MagicISO SCSI Host Controller.) -- C:\Windows\System32\drivers\mcdbus.sys [255552] =>.JiaPing Gan®
O58 - SDL:2009/07/13 21:48:04 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [35392] =>.Microsoft Windows®
O58 - SDL:2009/07/13 21:48:04 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [284736] =>.Microsoft Windows®
O58 - SDL:2017/09/28 07:56:13 A . (.Malwarebytes - Malwarebytes Web Protection.) -- C:\Windows\System32\drivers\mwac.sys [84256] =>.Malwarebytes Corporation®
O58 - SDL:2009/07/13 21:48:26 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [51264] =>.Microsoft Windows®
O58 - SDL:2017/07/27 00:00:30 A . (.Insecure.Com LLC. - npcap.sys (NT6 AMD64) Kernel Filter Driver.) -- C:\Windows\System32\drivers\npcap.sys [72400] =>.Insecure.Com LLC®
O58 - SDL:2011/03/11 02:41:34 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [148352] =>.Microsoft Windows®
O58 - SDL:2011/03/11 02:41:34 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [166272] =>.Microsoft Windows®
O58 - SDL:2009/06/10 16:35:30 A . (.Intel Corporation - Intel(R) 5000 Series Chipsets Integrated De.) -- C:\Windows\System32\drivers\qd260x64.sys [35328] =>.Intel Corporation
O58 - SDL:2009/07/13 21:45:46 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1524816] =>.Microsoft Windows®
O58 - SDL:2009/07/13 21:45:45 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [128592] =>.Microsoft Windows®
O58 - SDL:2009/06/10 16:37:19 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [23040] =>.Macrovision Corporation, Macrovision Europe Limited,
O58 - SDL:2009/07/13 21:45:45 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [43584] =>.Microsoft Windows®
O58 - SDL:2009/07/13 21:45:46 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [80464] =>.Microsoft Windows®
O58 - SDL:2009/07/13 21:45:55 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [24656] =>.Microsoft Windows®
O58 - SDL:2017/09/27 09:55:03 A . (.BitDefender S.R.L. - Trufos Kernel Module.) -- C:\Windows\System32\drivers\trufos.sys [441112] =>.Bitdefender SRL®
O58 - SDL:2009/07/13 21:45:55 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [17488] =>.Microsoft Windows®
O58 - SDL:2011/03/01 15:59:16 A . (.Symantec Corporation - Allows granular display of back ups..) -- C:\Windows\System32\drivers\VirtFile.sys [86072] {57225374A5F346CC850E437600187250} =>.Symantec Corporation
O58 - SDL:2015/06/18 01:38:08 A . (.VMware, Inc. - VMware SVGA 3D Miniport.) -- C:\Windows\System32\drivers\vm3dmp.sys [295640] =>.VMware, Inc.®
O58 - SDL:2014/02/10 18:45:08 A . (.VMware, Inc. - VMware PCI VMCI Bus Device.) -- C:\Windows\System32\drivers\vmci.sys [85584] =>.VMware, Inc.®
O58 - SDL:2015/06/18 01:25:08 A . (.VMware, Inc. - VMware Pointing PS/2 Device Driver.) -- C:\Windows\System32\drivers\vmmouse.sys [14488] =>.VMware, Inc.®
O58 - SDL:2009/07/13 21:45:55 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [161872] =>.Microsoft Windows®
O58 - SDL:2014/02/10 18:45:18 A . (.VMware, Inc. - VMware vSockets Service.) -- C:\Windows\System32\drivers\vsock.sys [73944] =>.VMware, Inc.®

---\\ Derniers fichiers modifiés ou crées (Utilisateur) (2) - 19s
O61 - LFC: 2017/09/27 23:53:18 A . (.jboursier.) -- C:\Users\Administrator.BOULET\Downloads\avcertclean_1.1.2.exe [388096]
O61 - LFC: 2017/09/27 08:55:23 A . (.WatchGuard Technologies, Inc..) -- C:\Users\Administrator.BOULET\Downloads\WSM11_11_4.exe [147817656] {3F740162E656088ED556F72F84F79093}

---\\ Associations Shell Spawning (10) - 1s
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Ob.) -- C:\Windows\System32\eventvwr.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.EXE =>.Microsoft Corporation®
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S

---\\ Menu de démarrage Internet (8) - 0s
O68 - StartMenuInternet: [64Bits][HKLM\..\Shell\open\Command] (...) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (.not file.)
O68 - StartMenuInternet: [64Bits][HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ShowIconsCommand] (...) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (.not file.)
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ReinstallCommand] (...) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (.not file.)
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\HideIconsCommand] (...) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (.not file.)
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation

---\\ Recherche d'infection sur les navigateurs (2) - 0s
O69 - SBI: SearchScopes [HKCU] [64Bits]{0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/ =>.Bing.com
O69 - SBI: SearchScopes [HKLM] [64Bits]{0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (@ieframe.dll,-12512) - http://www.bing.com/ =>.Bing.com

---\\ Enumère les services démarrés par Svchost (32) - 1s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [72192] =>.Microsoft Corporation
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [80384] =>.Microsoft Corporation
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [80384] =>.Microsoft Corporation
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [236032] =>.Microsoft Corporation
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [794624] =>.Microsoft Corporation
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [859648] =>.Microsoft Corporation
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll [680448] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [99328] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll [344064] =>.Microsoft Corporation
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [97792] =>.Microsoft Corporation
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\sens.dll [64512] =>.Microsoft Corporation
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\Windows\System32\ipnathlp.dll [359424] =>.Microsoft Corporation
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [316928] =>.Microsoft Corporation
O83 - Search Svchost Services: TermService (TermService) . (.Stas'M Corp. - Terminal Services Wrapper Library.) -- C:\Windows\System32\rdpwrap.dll [116736] =>.Stas'M Corp.
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\System32\wuaueng.dll [2651136] =>.Microsoft Corporation
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [849920] =>.Microsoft Corporation
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [370688] =>.Microsoft Corporation
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll [569856] =>.Microsoft Corporation
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\Windows\system32\seclogon.dll [30720] =>.Microsoft Corporation
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [70144] =>.Microsoft Corporation
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [156672] =>.Microsoft Corporation
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédia.) -- C:\Windows\System32\mmcss.dll [67584] =>.Microsoft Corporation
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [242688] =>.Microsoft Corporation
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\sessenv.dll [121856] =>.Microsoft Corporation
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [136704] =>.Microsoft Corporation
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [111104] =>.Microsoft Corporation
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [1110016] =>.Microsoft Corporation
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\kmsvc.dll [90624] =>.Microsoft Corporation
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [84480] =>.Microsoft Corporation
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [210432] =>.Microsoft Corporation
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll [193536] =>.Microsoft Corporation
O83 - Search Svchost Services: sacsvr (sacsvr) . (.Microsoft Corporation - Service Microsoft EMS SAC.) -- C:\Windows\System32\sacsvr.dll [14848] =>.Microsoft Corporation

---\\ Liste des exceptions du parefeu Windows (40) - 8s
O87 - FAEL: "{F6A15FAE-A30F-445A-9B45-B5BE016B75F3}" [In-None-P6-TRUE] .(.Lathem Time Corporation - PayclockInstaller.) -- C:\Punch\PayClock V631\PayClock V631\PayClockInstaller.exe {790FDD80E16DA8D5E7D626A744017DD8}
O87 - FAEL: "{D7C02281-340B-4394-811B-7B0D28D5D348}" [Out-None-P6-TRUE] .(.Lathem Time Corporation - PayclockInstaller.) -- C:\Punch\PayClock V631\PayClock V631\PayClockInstaller.exe {790FDD80E16DA8D5E7D626A744017DD8}
O87 - FAEL: "{F81B97A5-9517-4971-BE12-56EA17960CEF}" [In-None-P6-TRUE] .(...) -- C:\Punch\PayClock V631\PayClock V631\PayClock.msi
O87 - FAEL: "{FDF1C8C0-C6CA-4790-A36E-3FF5DCCB2D57}" [Out-None-P6-TRUE] .(...) -- C:\Punch\PayClock V631\PayClock V631\PayClock.msi
O87 - FAEL: "{CBD1009C-53FE-4BF8-A840-423BE1BBFB71}" [In-None-P6-TRUE] .(.Lathem Time Corporation - PayclockInstaller.) -- C:\Punch\PayClock V631\PayClock V631\PayClockInstaller.exe {790FDD80E16DA8D5E7D626A744017DD8}
O87 - FAEL: "{31828B91-5025-441E-8E1E-1B5F51FF990F}" [Out-None-P6-TRUE] .(.Lathem Time Corporation - PayclockInstaller.) -- C:\Punch\PayClock V631\PayClock V631\PayClockInstaller.exe {790FDD80E16DA8D5E7D626A744017DD8}
O87 - FAEL: "{BE97A6C4-F45D-4950-93EB-C14389208369}" [In-None-P6-TRUE] .(...) -- C:\Punch\PayClock V631\PayClock V631\PayClock.msi
O87 - FAEL: "{6C909B49-0582-4FBA-BEF4-1D96D7E98D60}" [Out-None-P6-TRUE] .(...) -- C:\Punch\PayClock V631\PayClock V631\PayClock.msi
O87 - FAEL: "{86AF2FA9-4CC8-4B1F-A403-97ED04B40774}" [In-None-P6-TRUE] .(.Lathem Time Corporation - PayclockInstaller.) -- C:\Punch\BakupMars2016\PayClock V631\PayClock V631\PayClockInstaller.exe {790FDD80E16DA8D5E7D626A744017DD8}
O87 - FAEL: "{0D1823B9-2259-42D3-B859-A22E213EF4E4}" [Out-None-P6-TRUE] .(.Lathem Time Corporation - PayclockInstaller.) -- C:\Punch\BakupMars2016\PayClock V631\PayClock V631\PayClockInstaller.exe {790FDD80E16DA8D5E7D626A744017DD8}
O87 - FAEL: "{F7D60CAD-C870-44DC-9E41-F0985870E184}" [In-None-P6-TRUE] .(...) -- C:\Punch\BakupMars2016\PayClock V631\PayClock V631\PayClock.msi
O87 - FAEL: "{B353C5C7-5953-4D91-8B14-1E51FDF1A588}" [Out-None-P6-TRUE] .(...) -- C:\Punch\BakupMars2016\PayClock V631\PayClock V631\PayClock.msi
O87 - FAEL: "{2133BDF9-91A5-4DB0-93BB-78ECFF89AA55}" [In-None-P6-TRUE] .(.Lathem Time Corporation - PayclockInstaller.) -- C:\Punch\BakupMars2016\PayClock V631\PayClock V631\PayClockInstaller.exe {790FDD80E16DA8D5E7D626A744017DD8}
O87 - FAEL: "{CE28AE02-32A7-4AC7-8221-CA19C1F003CA}" [Out-None-P6-TRUE] .(.Lathem Time Corporation - PayclockInstaller.) -- C:\Punch\BakupMars2016\PayClock V631\PayClock V631\PayClockInstaller.exe {790FDD80E16DA8D5E7D626A744017DD8}
O87 - FAEL: "{6E42465A-3BF1-4FD6-B6AE-B4D47270C01B}" [In-None-P6-TRUE] .(...) -- C:\Punch\BakupMars2016\PayClock V631\PayClock V631\PayClock.msi
O87 - FAEL: "{A35FB6BB-114F-494C-99EF-F8926ABD45D9}" [Out-None-P6-TRUE] .(...) -- C:\Punch\BakupMars2016\PayClock V631\PayClock V631\PayClock.msi
O87 - FAEL: "{7CC1ACE1-810E-4DEB-ADB2-BE8CAA39E9E3}" [In-None-P6-TRUE] .(.Lathem Time Corporation - PayclockInstaller.) -- C:\Punch\BakupMars2016\PayClock V631\PayClock V631\PayClockInstaller.exe {790FDD80E16DA8D5E7D626A744017DD8}
O87 - FAEL: "{537C76BF-D08C-486A-8E91-70D4041A4E05}" [Out-None-P6-TRUE] .(.Lathem Time Corporation - PayclockInstaller.) -- C:\Punch\BakupMars2016\PayClock V631\PayClock V631\PayClockInstaller.exe {790FDD80E16DA8D5E7D626A744017DD8}
O87 - FAEL: "{DEE53802-DDE9-467E-8A42-50B3078DF0F9}" [In-None-P6-TRUE] .(...) -- C:\Punch\BakupMars2016\PayClock V631\PayClock V631\PayClock.msi
O87 - FAEL: "{8FACDD42-BA21-4674-BA7B-AF9F8BAB444D}" [Out-None-P6-TRUE] .(...) -- C:\Punch\BakupMars2016\PayClock V631\PayClock V631\PayClock.msi
O87 - FAEL: "{DC90B11D-333A-4078-BFFD-F40C5473E9F4}" [In-None-P6-TRUE] .(.Lathem Time Corporation - PayclockInstaller.) -- C:\Punch\BakupMars2016\PayClock V631\PayClock V631\PayClockInstaller.exe {790FDD80E16DA8D5E7D626A744017DD8}
O87 - FAEL: "{2891A508-4C6C-4764-9B1C-A8D844CFFFC0}" [Out-None-P6-TRUE] .(.Lathem Time Corporation - PayclockInstaller.) -- C:\Punch\BakupMars2016\PayClock V631\PayClock V631\PayClockInstaller.exe {790FDD80E16DA8D5E7D626A744017DD8}
O87 - FAEL: "{34DFAA0E-DFA2-433D-9B29-880E95DDBD40}" [In-None-P6-TRUE] .(...) -- C:\Punch\BakupMars2016\PayClock V631\PayClock V631\PayClock.msi
O87 - FAEL: "{B90D6D62-6E1A-481B-B8CD-7AEF5D8ECBBC}" [Out-None-P6-TRUE] .(...) -- C:\Punch\BakupMars2016\PayClock V631\PayClock V631\PayClock.msi
O87 - FAEL: "{9F316D83-6D56-40FD-A092-051B5D685685}" [In-None-P6-TRUE] .(.Lathem Time Corporation - PayclockInstaller.) -- C:\Punch\BakupMars2016\PayClock V631\PayClock V631\PayClockInstaller.exe {790FDD80E16DA8D5E7D626A744017DD8}
O87 - FAEL: "{5410F433-5819-40CE-8DDA-4C38FB32373E}" [Out-None-P6-TRUE] .(.Lathem Time Corporation - PayclockInstaller.) -- C:\Punch\BakupMars2016\PayClock V631\PayClock V631\PayClockInstaller.exe {790FDD80E16DA8D5E7D626A744017DD8}
O87 - FAEL: "{05584627-32F9-4F37-A869-9D4DB536600A}" [In-None-P6-TRUE] .(...) -- C:\Punch\BakupMars2016\PayClock V631\PayClock V631\PayClock.msi
O87 - FAEL: "{B3D74FB5-84AD-4A2D-B54A-14EEA2F0B866}" [Out-None-P6-TRUE] .(...) -- C:\Punch\BakupMars2016\PayClock V631\PayClock V631\PayClock.msi
O87 - FAEL: "{A9B37260-E174-4C52-9EA0-FB6FE1235BC9}" [In-None-P6-TRUE] .(.Lathem Time Corporation - Payclock.) -- C:\Program Files\Lathem Time Corporation\PayClock\PayclockV6.exe {790FDD80E16DA8D5E7D626A744017DD8}
O87 - FAEL: "{714AC6B5-0119-471F-8F00-27C83EF874A9}" [Out-None-P6-TRUE] .(.Lathem Time Corporation - Payclock.) -- C:\Program Files\Lathem Time Corporation\PayClock\PayclockV6.exe {790FDD80E16DA8D5E7D626A744017DD8}
O87 - FAEL: "{61A58892-7A34-4396-91E4-3CF31ED89917}" [In-None-P6-TRUE] .(.Lathem Time Corporation - LicenseManager.) -- C:\Program Files\Lathem Time Corporation\PayClock\LicenseManager.exe {790FDD80E16DA8D5E7D626A744017DD8}
O87 - FAEL: "{03D58CAE-AE20-4287-A01C-965FA57A063C}" [Out-None-P6-TRUE] .(.Lathem Time Corporation - LicenseManager.) -- C:\Program Files\Lathem Time Corporation\PayClock\LicenseManager.exe {790FDD80E16DA8D5E7D626A744017DD8}
O87 - FAEL: "{002277C9-951B-48DF-A19B-699010562504}" [In-None-P6-TRUE] .(.Lathem Time Corporation - RegistrationWizard.) -- C:\Program Files\Lathem Time Corporation\PayClock\RegistrationWizard.exe {790FDD80E16DA8D5E7D626A744017DD8}
O87 - FAEL: "{78DF469F-8E88-4F0F-8E1F-9FCB575DA845}" [Out-None-P6-TRUE] .(.Lathem Time Corporation - RegistrationWizard.) -- C:\Program Files\Lathem Time Corporation\PayClock\RegistrationWizard.exe {790FDD80E16DA8D5E7D626A744017DD8}
O87 - FAEL: "{4F213D42-0C00-48AD-AE92-892051F99921}" [In-None-P6-TRUE] .(.Lathem Time Corporation - PayclockInstaller.) -- C:\Punch\BakupMars2016\PayClock V631\PayClock V631\PayClockInstaller.exe {790FDD80E16DA8D5E7D626A744017DD8}
O87 - FAEL: "{35CA0366-5603-46D8-8F02-7DCC66E16C3C}" [Out-None-P6-TRUE] .(.Lathem Time Corporation - PayclockInstaller.) -- C:\Punch\BakupMars2016\PayClock V631\PayClock V631\PayClockInstaller.exe {790FDD80E16DA8D5E7D626A744017DD8}
O87 - FAEL: "{22707390-4796-4803-9CD9-417473BF35CB}" [In-None-P6-TRUE] .(...) -- C:\Punch\BakupMars2016\PayClock V631\PayClock V631\PayClock.msi
O87 - FAEL: "{04601FEC-F55C-4A90-A853-3FAC37FDEF01}" [Out-None-P6-TRUE] .(...) -- C:\Punch\BakupMars2016\PayClock V631\PayClock V631\PayClock.msi
O87 - FAEL: "{A77AADA8-49A9-4DCC-AE13-74DA2CD0869D}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (.not file.)
O87 - FAEL: "{55A184F8-D29D-4814-8526-EA310E056DBE}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (.not file.)

---\\ Scan Additionnel (30) - 0s
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\YTdetect =>.SUP.YahooDetect
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\YTdetect =>.SUP.YahooDetect
C:\Program Files (x86)\ParetoLogic =>.SUP.Paretologic
C:\ProgramData\ParetoLogic =>.SUP.Paretologic
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\2A83E9020591A55FC6DDAD3FB102794C52B24E70 =>PUM.Misplaced.Certificate [Avast Software]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\2B84BFBB34EE2EF949FE1CBE30AA026416EB2216 =>PUM.Misplaced.Certificate [Avast Software]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\305F8BD17AA2CBC483A4C41B19A39A0C75DA39D6 =>PUM.Misplaced.Certificate [Avast Software]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\367D4B3B4FCBBC0B767B2EC0CDB2A36EAB71A4EB =>PUM.Misplaced.Certificate [Avast Software]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\3A850044D8A195CD401A680C012CB0A3B5F8DC08 =>PUM.Misplaced.Certificate [Avast Software]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\40AA38731BD189F9CDB5B9DC35E2136F38777AF4 =>PUM.Misplaced.Certificate [Avast Software]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\43D9BCB568E039D073A74A71D8511F7476089CC3 =>PUM.Misplaced.Certificate [Avast Software]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\471C949A8143DB5AD5CDF1C972864A2504FA23C9 =>PUM.Misplaced.Certificate [Avast Software]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\51C3247D60F356C7CA3BAF4C3F429DAC93EE7B74 =>PUM.Misplaced.Certificate [Avast Software]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\5DE83EE82AC5090AEA9D6AC4E7A6E213F946E179 =>PUM.Misplaced.Certificate [Avast Software]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\61793FCBFA4F9008309BBA5FF12D2CB29CD4151A =>PUM.Misplaced.Certificate [Avast Software]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\637162CC59A3A1E25956FA5FA8F60D2E1C52EAC6 =>PUM.Misplaced.Certificate [Avast Software]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\63FEAE960BAA91E343CE2BD8B71798C76BDB77D0 =>PUM.Misplaced.Certificate [Avast Software]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\6431723036FD26DEA502792FA595922493030F97 =>PUM.Misplaced.Certificate [Avast Software]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\7D7F4414CCEF168ADF6BF40753B5BECD78375931 =>PUM.Misplaced.Certificate [Avast Software]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\80962AE4D6C5B442894E95A13E4A699E07D694CF =>PUM.Misplaced.Certificate [Avast Software]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\86E817C81A5CA672FE000F36F878C19518D6F844 =>PUM.Misplaced.Certificate [Avast Software]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\8E5BD50D6AE686D65252F843A9D4B96D197730AB =>PUM.Misplaced.Certificate [Avast Software]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\9845A431D51959CAF225322B4A4FE9F223CE6D15 =>PUM.Misplaced.Certificate [Avast Software]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\B533345D06F64516403C00DA03187D3BFEF59156 =>PUM.Misplaced.Certificate [Avast Software]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\B86E791620F759F17B8D25E38CA8BE32E7D5EAC2 =>PUM.Misplaced.Certificate [Avast Software]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\C060ED44CBD881BD0EF86C0BA287DDCF8167478C =>PUM.Misplaced.Certificate [Avast Software]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\CEA586B2CE593EC7D939898337C57814708AB2BE =>PUM.Misplaced.Certificate [Avast Software]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\D018B62DC518907247DF50925BB09ACF4A5CB3AD =>PUM.Misplaced.Certificate [Avast Software]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\F8A54E03AADC5692B850496A4C4630FFEAA29D83 =>PUM.Misplaced.Certificate [Avast Software]
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\FA6660A94AB45F6A88C0D7874D89A863D74DEE97 =>PUM.Misplaced.Certificate [Avast Software]

---\\ Récapitulatif des éléments trouvés sur votre station (5) - 0s
https://nicolascoolman.eu/2017/09/07/pup-optional-salus/ =>PUP.Optional.Salus
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.YahooDetect
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Paretologic
https://nicolascoolman.eu/2017/09/23/barres-doutils-de-navigateur-toolbars/ =>Toolbar.YahooPartner
https://nicolascoolman.eu/2017/06/26/trojan-certlock/ =>PUM.Misplaced.Certificate

~ Unselected Options:
~ End of the scan, 18380 items in 04mn58s (1571)(0)