Publicité
Publicité
Format du document : text/plain
Prévisualisation
~ ZHPDiag v2017.10.24.185 Par Nicolas Coolman (2017/10/24)
~ Démarré par owner (Administrator) (2017/10/27 19:14:53)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Certificate ZHPDiag: Legal
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\owner\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\owner\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Démarrage du système: Normal (Normal boot)
Windows 10 Pro, 64-bit (Build 16299) =>.Microsoft Corporation
---\\ Navigateurs Internet (3) - 0s
~ MFIE: Mozilla Firefox 56.0.1 (x64 fr)
~ MSIE: Microsoft Edge v40
~ MSIE: Internet Explorer v11.15.16299.0
---\\ Informations sur les produits Windows (8) - 0s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
~ Windows(R) Operating System, VOLUME_MAK channel
Windows ID Activation : OK
~ Windows Partial Key : 6MT6Y
Windows License : OK
~ Windows Remaining Initializations Number : 1001
Windows Automatic Updates : KO
---\\ Logiciels de protection (2) - 3s
ESET NOD32 Antivirus v8.0.319.0 (Protection)
Windows Defender (Deactivate)
---\\ Surveillance de Logiciels (1) - 3s
~ Adobe Flash Player 27 NPAPI (Surveillance)
---\\ Informations sur le système (6) - 0s
~ Operating System: Intel64 Family 6 Model 60 Stepping 3, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 16700.736 MB (74% free) : OK =>.RAM Value
System Restore: Activé (Enable)
System drive C: has 86 GB (17%) free of 486 GB : OK =>.Disk Space
---\\ Mode de connexion au système (3) - 0s
~ Computer Name: PC
~ User Name: owner
~ Logged in as Administrator
---\\ Enumération des unités disques (1) - 0s
~ Drive C: has 86 GB free of 486 GB (System)
---\\ Etat du Centre de Sécurité Windows (7) - 0s
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM64\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
---\\ Recherche particulière de fichiers génériques (25) - 1s
[MD5.4312C7F7CA8CC13A475CB150EEB5F35E] - 29/09/2017 - (.Microsoft Corporation - Explorateur Windows.) -- C:\WINDOWS\Explorer.exe [3894968] =>.Microsoft Windows®
[MD5.731A783A36A8E69A6434D19D98B12A09] - 29/09/2017 - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\WINDOWS\System32\rundll32.exe [71168] =>.Microsoft Corporation
[MD5.BF3E1D9B2360C6BE4CC3094CD2DDC617] - 29/09/2017 - (.Microsoft Corporation - Application de démarrage de Windows.) -- C:\WINDOWS\System32\Wininit.exe [359584] {330000016A891F494619ED646800000000016A} =>.Microsoft Corporation
[MD5.D5B5C1E2E7C8AFB93C365D53E80F0BF9] - 19/10/2017 - (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\WINDOWS\System32\wininet.dll [3334144] =>.Microsoft Corporation
[MD5.8B67C13E6C000B14C1551FF07F15242E] - 29/09/2017 - (.Microsoft Corporation - Application d’ouverture de session Windows.) -- C:\WINDOWS\System32\Winlogon.exe [712704] =>.Microsoft Corporation
[MD5.4D487E7D2B047FB929BE00117C09F9EC] - 29/09/2017 - (.Microsoft Corporation - Bibliothèque de licences.) -- C:\WINDOWS\System32\sppcomapi.dll [414720] =>.Microsoft Corporation
[MD5.A94E2533A7604E4AA05DCCC675A9F396] - 19/10/2017 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\WINDOWS\System32\dnsapi.dll [739696] =>.Microsoft Windows®
[MD5.0A821BF024E347943D6F5C5180FAEA31] - 19/10/2017 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\WINDOWS\Syswow64\dnsapi.dll [597160] =>.Microsoft Windows®
[MD5.3B34C7B9D7E22AEF58DF0CFC4C7CC82D] - 19/10/2017 - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) -- C:\WINDOWS\System32\fr-FR\user32.dll.mui [19968] =>.Microsoft Corporation
[MD5.6FB5A2026B16D596DEABF550E7A4BD82] - 29/09/2017 - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) -- C:\WINDOWS\System32\drivers\AFD.sys [614296] =>.Microsoft Windows®
[MD5.6191B9B2EE0E8CB957C683B9B341CC86] - 29/09/2017 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\WINDOWS\System32\drivers\atapi.sys [28568] =>.Microsoft Windows®
[MD5.9E82A95D77AC78C84BA75FF896B060BF] - 29/09/2017 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\WINDOWS\System32\drivers\Cdfs.sys [93184] =>.Microsoft Corporation
[MD5.6D83565C1652E80447EDEA6947FA89D7] - 29/09/2017 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\WINDOWS\System32\drivers\Cdrom.sys [159744] =>.Microsoft Corporation
[MD5.9910E9CFF5ECDCB225F82E72CE9DE459] - 29/09/2017 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\WINDOWS\System32\drivers\DfsC.sys [151040] =>.Microsoft Corporation
[MD5.99A34FD1F6431A10D8C3BB50E170D0F2] - 29/09/2017 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\WINDOWS\System32\drivers\HDAudBus.sys [86016] =>.Microsoft Corporation
[MD5.56FF074E50F9042FD2856AB3418F4B18] - 29/09/2017 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\WINDOWS\System32\drivers\i8042prt.sys [105984] =>.Microsoft Corporation
[MD5.7BEC2AF23F586EFF0DB4DBF4331B0C70] - 29/09/2017 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\System32\drivers\IpNat.sys [214016] =>.Microsoft Corporation
[MD5.6FC2E733C7172B6BFAD383B108E56F92] - 29/09/2017 - (.Microsoft Corporation - Minirdr SMB Windows NT.) -- C:\WINDOWS\System32\drivers\MRxSmb.sys [496536] =>.Microsoft Windows®
[MD5.401C17200AA0433D94EA61695F111DC3] - 29/09/2017 - (.Microsoft Corporation - MBT Transport driver.) -- C:\WINDOWS\System32\drivers\netBT.sys [316928] =>.Microsoft Corporation
[MD5.CB320257BE88E11E5C7B209F3EF7F7D8] - 19/10/2017 - (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\WINDOWS\System32\drivers\ntfs.sys [2400664] =>.Microsoft Windows®
[MD5.2E07EC2C1622F5E7B535D62DCD61F3AB] - 29/09/2017 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\WINDOWS\System32\drivers\Parport.sys [98816] =>.Microsoft Corporation
[MD5.E0220BB6580D34001D4D1D133052DAA4] - 29/09/2017 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [106496] =>.Microsoft Corporation
[MD5.DF83769C92527DB50653F8FB57D001FF] - 30/09/2017 - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RD.) -- C:\WINDOWS\System32\drivers\rdpdr.sys [182784] =>.Microsoft Corporation
[MD5.571D82ABAC428D902ACA0CF60373C039] - 29/09/2017 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\WINDOWS\System32\drivers\tdx.sys [121240] =>.Microsoft Windows®
[MD5.6AF9BCB1FFD127B8F4E7E7B9FF9351EA] - 29/09/2017 - (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\WINDOWS\System32\drivers\volsnap.sys [401304] =>.Microsoft Windows®
---\\ Liste des services NT non Microsoft et non désactivés (25) - 2s
O23 - Service: (AdobeUpdateService) . (.Adobe Systems Incorporated - Adobe Update Service.) - C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe =>.Adobe Systems Incorporated®
O23 - Service: Adobe Genuine Software Integrity Service (AGSService) . (.Adobe Systems, Incorporated - Adobe Genuine Software Integrity Service.) - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe =>.Adobe Systems Incorporated®
O23 - Service: @oem5.inf,%HidMonitor.SvcDisp%;Alps HID Monitor Service (ApHidMonitorService) . (.Alps Electric Co., Ltd. - HidMonitorSvc Application.) - C:\Program Files\Apoint2K\HidMonitorSvc.exe {0A19FDD4BEA3CB223E6B548A4940E48C} =>.Alps Electric Co., Ltd.
O23 - Service: Cron Service (CronService) . (.Fork, Ltd. - Execution Service.) - C:\Windows\Prey\wpxsvc.exe
O23 - Service: ESET Service (ekrn) . (.ESET - ESET Service.) - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe =>.ESET, spol. s r.o.®
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) . (.Intel Corporation - IAStorDataSvc.) - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe =>.Intel(R) Rapid Storage Technology®
O23 - Service: @oem30.inf,%SERVICE_NAME%;Intel Bluetooth Service (ibtsiva) . (...) - C:\WINDOWS\System32\ibtsiva (.not file.) =>.Intel Corporation
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) . (.Intel Corporation - igfxCUIService Module.) - C:\WINDOWS\System32\igfxCUIService.exe =>.Intel Corporation
O23 - Service: Intel(R) Capability Licensing Service Interface (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation - Intel(R) Capability Licensing Service Inter.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe =>.Intel(R) Corporation
O23 - Service: Intel(R) ME Service (Intel(R) ME Service) . (.Intel Corporation - Intel(R) ME Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe =>.Intel Corporation - Intel® Management Engine Firmware®
O23 - Service: Internet Off Service (InternetOffService) . (...) - C:\Program Files (x86)\InternetOff\IOffSvc.exe =>.Crystal Rich Ltd®
O23 - Service: IObit Uninstaller Service (IObitUnSvr) . (.IObit - Uninstall Programs.) - C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe =>.IObit Information Technology®
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) . (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe =>.Intel Corporation - Intel® Management Engine Firmware®
O23 - Service: Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation - Intel(R) Local Management Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe =>.Intel Corporation - Software and Firmware Products®
O23 - Service: Macrium Service (MacriumService) . (.Paramount Software UK Ltd - Macrium Reflect Utility Service.) - C:\Program Files\Macrium\Common\MacriumService.exe =>.Paramount Software UK Ltd®
O23 - Service: NetLimiter 4 Service (nlsvc) . (.Locktime Software - NetLimiter Service.) - C:\Program Files\Locktime Software\NetLimiter 4\NLSvc.exe =>.Locktime Software s.r.o.®
O23 - Service: Protexis Licensing V2 x64 (PSI_SVC_2_x64) . (.arvato digital services llc - PsiService PsiService.) - c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe =>.Arvato Digital Services Canada Inc®
O23 - Service: SMITS (SMITS) . (...) - C:\Windows\SysWOW64\SMITSC.exe
O23 - Service: TPCHKarteSVC (TPCHKarteSVC) . (.Toshiba Corporation - Toshiba Health monitor karte service.) - C:\Program Files (x86)\TOSHIBA\TKRTL\TPCHKarteSVC.exe =>.TOSHIBA CORPORATION®
O23 - Service: VMware vCenter Converter Standalone Agent (vmware-converter-agent) . (.VMware, Inc. - VMware Converter Service.) - C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\vmware-converter-a.exe =>.VMware, Inc.®
O23 - Service: VMware vCenter Converter Standalone Server (vmware-converter-server) . (.VMware, Inc. - VMware Converter Service.) - C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\vmware-converter.exe =>.VMware, Inc.®
O23 - Service: VMware vCenter Converter Standalone Worker (vmware-converter-worker) . (.VMware, Inc. - VMware Converter Service.) - C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\vmware-converter.exe =>.VMware, Inc.®
O23 - Service: Intel(R) Extreme Tuning Utility Service (XTU3SERVICE) . (.Intel(R) Corporation - XtuService.) - C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe =>.Intel(R) Extreme Tuning Utility®
O23 - Service: Zentimo Assistant (ZentimoService) . (.Crystal Rich Ltd - Zentimo assistant service.) - C:\Zentimo Portable 2.0.6\App\ProgramFiles\ZentimoService.exe =>.Crystal Rich Ltd®
O23 - Service: Power Control [2016/06/10 17:49:24] ({41E8078B-96D9-42DC-8789-A1CF102CD880}) . (...) - \C:\Program Files (x86)\CyberLink\PowerDVD16\Common\NavFilter\000.fcl (.not file.)
---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (41) - 52s
SR - Auto [20/09/2017] [ 817760] (AdobeUpdateService) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe =>.Adobe Systems Incorporated®
SR - Auto [23/08/2017] [ 2257016] Adobe Genuine Software Integrity Service (AGSService) . (.Adobe Systems, Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe =>.Adobe Systems Incorporated®
SR - Auto [20/02/2017] [ 115776] @oem5.inf,%HidMonitor.SvcDisp%;Alps HID Monitor Service (ApHidMonitorService) . (.Alps Electric Co., Ltd..) - C:\Program Files\Apoint2K\HidMonitorSvc.exe {0A19FDD4BEA3CB223E6B548A4940E48C} =>.Alps Electric Co., Ltd.
SS - Demand [02/12/2016] [ 301560] Intel(R) Content Protection HECI Service (cphs) . (.Intel Corporation.) - C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe =>.Intel(R) pGFX®
SR - Auto [13/09/2017] [ 611854] Cron Service (CronService) . (.Fork, Ltd..) - C:\Windows\Prey\wpxsvc.exe
SR - Demand [27/05/2015] [ 19960] DTS APO Service (dts_apo_service) . (.Copyright © 2012.) - C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe =>.DTS, Inc.®
SR - Auto [08/07/2015] [ 1353720] ESET Service (ekrn) . (.ESET.) - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe =>.ESET, spol. s r.o.®
SS - Disabl [22/08/2016] [ 107912] Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SS - Disabl [22/08/2016] [ 107912] Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SR - Auto [03/02/2016] [ 18488] Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) . (.Intel Corporation.) - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe =>.Intel(R) Rapid Storage Technology®
SR - Auto [ 0] [ 0] @oem30.inf,%SERVICE_NAME%;Intel Bluetooth Service (ibtsiva) . (...) - C:\WINDOWS\System32\ibtsiva =>.Intel Corporation
SR - Demand [24/06/2014] [ 171480] Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe =>.Intel Corporation - Intel® Management Engine Firmware®
SR - Auto [02/12/2016] [ 373752] Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) . (.Intel Corporation.) - C:\WINDOWS\System32\igfxCUIService.exe =>.Intel(R) pGFX®
SR - Auto [27/08/2013] [ 747520] Intel(R) Capability Licensing Service Interface (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe =>.Intel(R) Corporation
SS - Demand [27/08/2013] [ 828376] Intel(R) Capability Licensing Service TCP IP Interface (Intel(R) Capability Licensing Service TCP IP Interface) . (.Intel(R) Corporation.) - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe =>.Intel® Trusted Connect Service®
SR - Auto [09/12/2013] [ 131544] Intel(R) ME Service (Intel(R) ME Service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe =>.Intel Corporation - Intel® Management Engine Firmware®
SR - Auto [25/05/2016] [ 1634072] Internet Off Service (InternetOffService) . (...) - C:\Program Files (x86)\InternetOff\IOffSvc.exe =>.Crystal Rich Ltd®
SR - Auto [14/06/2017] [ 206112] IObit Uninstaller Service (IObitUnSvr) . (.IObit.) - C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe =>.IObit Information Technology®
SR - Auto [09/12/2013] [ 169432] Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe =>.Intel Corporation - Intel® Management Engine Firmware®
SR - Auto [09/12/2013] [ 390616] Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe =>.Intel Corporation - Software and Firmware Products®
SR - Auto [10/03/2017] [ 3931080] Macrium Service (MacriumService) . (.Paramount Software UK Ltd.) - C:\Program Files\Macrium\Common\MacriumService.exe =>.Paramount Software UK Ltd®
SR - Auto [03/08/2017] [ 332848] NetLimiter 4 Service (nlsvc) . (.Locktime Software.) - C:\Program Files\Locktime Software\NetLimiter 4\NLSvc.exe =>.Locktime Software s.r.o.®
SS - Disabl [17/12/2012] [ 16384] OEMRegistrationProgram (OEMRegistrationProgram) . (.Toshiba Corporation.) - C:\Program Files (x86)\Toshiba\OEM Registration Program\OEMRegistrationProgram.exe =>.Toshiba Corporation
SR - Auto [13/09/2013] [ 337776] Protexis Licensing V2 x64 (PSI_SVC_2_x64) . (.arvato digital services llc.) - c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe =>.Arvato Digital Services Canada Inc®
SS - Demand [01/03/2013] [ 118520] Remote Packet Capture Protocol v.0 (experimental) (rpcapd) . (.Riverbed Technology, Inc..) - C:\Program Files (x86)\WinPcap\rpcapd.exe =>.Riverbed Technology, Inc.®
SR - Auto [27/02/2014] [ 13312] SMITS (SMITS) . (...) - C:\Windows\SysWOW64\SMITSC.exe
SS - Demand [07/09/2017] [ 1610016] Steam Client Service (Steam Client Service) . (.Valve Corporation.) - C:\Program Files (x86)\Common Files\Steam\SteamService.exe =>.Valve®
SR - Demand [07/12/2015] [ 53040] TMachInfo (TMachInfo) . (.TOSHIBA Corporation.) - C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe =>.TOSHIBA CORPORATION®
SS - Disabl [15/06/2015] [ 331056] TOSHIBA eco Utility Service (TOSHIBA eco Utility Service) . (.Toshiba Corporation.) - C:\Program Files\TOSHIBA\Teco\TecoService.exe =>.TOSHIBA CORPORATION®
SR - Auto [22/01/2013] [ 244144] TPCHKarteSVC (TPCHKarteSVC) . (.Toshiba Corporation.) - C:\Program Files (x86)\TOSHIBA\TKRTL\TPCHKarteSVC.exe =>.TOSHIBA CORPORATION®
SS - Demand [24/11/2014] [ 451144] TPCH Service (TPCHSrv) . (.TOSHIBA Corporation.) - C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe =>.TOSHIBA CORPORATION®
SS - Demand [18/09/2017] [ 95208] VMware Authorization Service (VMAuthdService) . (.VMware, Inc..) - C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe =>.VMware, Inc.®
SS - Demand [18/09/2017] [ 367080] VMware DHCP Service (VMnetDHCP) . (.VMware, Inc..) - C:\Windows\SysWOW64\vmnetdhcp.exe =>.VMware, Inc.®
SS - Demand [31/08/2017] [ 866792] VMware USB Arbitration Service (VMUSBArbService) . (.VMware, Inc..) - C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe =>.VMware, Inc.®
SS - Demand [18/09/2017] [ 402408] VMware NAT Service (VMware NAT Service) . (.VMware, Inc..) - C:\Windows\SysWOW64\vmnat.exe =>.VMware, Inc.®
SR - Auto [09/02/2016] [ 503512] VMware vCenter Converter Standalone Agent (vmware-converter-agent) . (.VMware, Inc..) - C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\vmware-converter-a.exe =>.VMware, Inc.®
SR - Auto [09/02/2016] [ 503512] VMware vCenter Converter Standalone Server (vmware-converter-server) . (.VMware, Inc..) - C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\vmware-converter.exe =>.VMware, Inc.®
SR - Auto [09/02/2016] [ 503512] VMware vCenter Converter Standalone Worker (vmware-converter-worker) . (.VMware, Inc..) - C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\vmware-converter.exe =>.VMware, Inc.®
SS - Demand [18/09/2017] [14344168] VMware Workstation Server (VMwareHostd) . (...) - C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe =>.VMware, Inc.®
SR - Auto [21/07/2017] [ 18264] Intel(R) Extreme Tuning Utility Service (XTU3SERVICE) . (.Intel(R) Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe =>.Intel(R) Extreme Tuning Utility®
SR - Auto [03/06/2017] [ 1782880] Zentimo Assistant (ZentimoService) . (.Crystal Rich Ltd.) - C:\Zentimo Portable 2.0.6\App\ProgramFiles\ZentimoService.exe =>.Crystal Rich Ltd®
---\\ Applications lancées au démarrage du système (52) - 2s
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe =>.Realtek Semiconductor Corp®
O4 - HKLM\..\Run: [Apoint] . (.Alps Electric Co., Ltd. - Alps Pointing-device Driver.) -- C:\Program Files\Apoint2K\Apoint.exe {0BCAF9CC9C146EF901281EF22C122E9A} =>.Alps Electric Co., Ltd.
O4 - HKLM\..\Run: [TCrdMain] . (.TOSHIBA Corporation - TOSHIBA Function Key Main Module.) -- C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe =>.TOSHIBA CORPORATION®
O4 - HKLM\..\Run: [egui] . (.ESET - ESET Main GUI.) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe =>.ESET, spol. s r.o.®
O4 - HKLM\..\Run: [NetWorx] . (.SoftPerfect - NetWorx Application (64-bit).) -- C:\Program Files\NetWorx\networx.exe =>.SOFTPERFECT PTY. LTD.®
O4 - HKLM\..\Run: [IAStorIcon] . (.Intel Corporation - Delayed launcher.) -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe =>.Intel Corporation
O4 - HKLM\..\Run: [Classic Start Menu] . (.IvoSoft - Classic Start Menu.) -- C:\Program Files\Classic Shell\ClassicStartMenu.exe =>.Ivaylo Beltchev®
O4 - HKLM\..\Run: [Greenshot] . (.Greenshot - Greenshot.) -- C:\Program Files\Greenshot\Greenshot.exe =>.Open Source Developer, Robin Krom®
O4 - HKLM\..\Run: [LogiOptions] . (.Logitech, Inc. - LogiOptions.exe (UNICODE).) -- C:\Program Files\Logitech\LogiOptions\LogiOptions.exe =>.Logitech Inc®
O4 - HKLM\..\Run: [Reflect UI] . (.Paramount Software UK Ltd - Macrium Reflect UI Watcher.) -- C:\Program Files\Macrium\Common\ReflectUI.exe =>.Paramount Software UK Ltd®
O4 - HKCU\..\Run: [Switcher] . (.Bao_Nguyen - Switcher.) -- C:\Program Files (x86)\Switcher\Switcher.exe
O4 - HKCU\..\Run: [7 Taskbar Tweaker] . (.RaMMicHaeL - 7+ Taskbar Tweaker.) -- C:\Users\owner\AppData\Roaming\7+ Taskbar Tweaker\7+ Taskbar Tweaker.exe =>.RaMMicHaeL
O4 - HKCU\..\Run: [InternetOff] . (...) -- C:\Program Files (x86)\InternetOff\InternetOff.exe =>.Crystal Rich Ltd®
O4 - HKCU\..\Run: [Clavier+] . (.Guillaume Ryder (http://utilfr42.free.fr) - Clavier+.) -- C:\Users\owner\AppData\Local\Clavier+\Clavier.exe =>.Guillaume Ryder (http://utilfr42.free.fr)
O4 - HKCU\..\Run: [RocketDock] . (...) -- C:\Program Files (x86)\RocketDock\RocketDock.exe =>.Punk Software
O4 - HKCU\..\Run: [My CPU Monitor] . (.My Portable Software - My CPU Monitor.) -- C:\My CPU Monitor\My CPU Monitor.exe =>.My Portable Software
O4 - HKCU\..\Run: [AutoHideDesktopIcons] . (. - .) -- C:\Program Files (x86)\AutoHideDesktopIcons\AutoHideDesktopIcons.exe =>PUP.Optional.ADON
O4 - HKCU\..\Run: [Winsplit] . (.Copyright (c) 2011 - WinSplit executable.) -- C:\Program Files (x86)\WinSplit Revolution\WinSplit.exe
O4 - HKCU\..\Run: [SuperCopier2.exe] . (.SFX TEAM - SuperCopier 2 (explorer file copy replaceme.) -- C:\Program Files (x86)\SuperCopier2\SuperCopier2.exe =>.SFX TEAM
O4 - HKCU\..\Run: [CS Dispatch] . (.Copyright (C) 2011 - EASY KM Link.) -- C:\Users\owner\AppData\Roaming\OTi\EASYKMLink\FunctModules\{23863E42-6AAC-482c-81D2-BD6A23CCFEF8}\EASYKMLink.exe {541786083D7A13AE1755009F2D9E30C8}
O4 - HKCU\..\Run: [DiskIndicator] . (.ITSamples.com - Disk Activity Indicator system tray utility.) -- C:\Program Files (x86)\Disk activity indicator\DiskActivity.exe =>.ITSamples.com
O4 - HKCU\..\Run: [ProcessKO] . (.(Nenad Hrg) SoftwareOK - ProcessKO.) -- C:\Program Files (x86)\Process KO\ProcessKO x64.exe
O4 - HKCU\..\Run: [Textify] . (.Copyright 2017 - Textify.) -- C:\Users\owner\AppData\Roaming\Textify\Textify.exe
O4 - HKCU\..\Run: [Simple Sticky Notes] . (.Simnet Ltd. - Simple Sticky Notes.) -- C:\Program Files (x86)\Simple Sticky Notes\ssn.exe =>.Simnet Bilgisayar Yazilim Hiz. San. ve Tic. Ltd. Sti.®
O4 - HKCU\..\Run: [3RVX] . (.Matthew Malensek - 3RVX.) -- C:\Program Files (x86)\3RVX\3RVX.exe
O4 - HKCU\..\Run: [$Volumouse$] . (.NirSoft - Volumouse Utility.) -- C:\Program Files\volumouse-x64\volumouse.exe =>.Nir Sofer®
O4 - HKCU\..\Run: [Volume2] . (.Alexandr Irza - Volume² - advanced Windows volume control.) -- C:\Program Files (x86)\Volume2\Volume2.exe =>.Alexandr Irza
O4 - HKCU\..\Run: [Zentimo xStorage Manager] . (.Crystal Rich Ltd - Zentimo - An External Drive Manager.) -- C:\Zentimo Portable 2.0.6\App\ProgramFiles\Zentimo.exe =>.Crystal Rich Ltd
O4 - HKCU\..\Run: [NetLimiter] . (.Locktime Software - NetLimiter Client.) -- C:\Program Files\Locktime Software\NetLimiter 4\nlclientapp.exe =>.Locktime Software s.r.o.®
O4 - HKLM\..\Wow6432Node\Run: [DFX] . (...) -- C:\Program Files (x86)\DFX\DFX.exe =>.Power Technology®
O4 - HKLM\..\Wow6432Node\Run: [vmware-tray.exe] . (.VMware, Inc. - VMware Tray Process.) -- C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe =>.VMware, Inc.®
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Windows®
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Windows®
O4 - HKUS\S-1-5-21-1112066077-4254746724-1257480092-1001\..\Run: [Switcher] . (.Bao_Nguyen - Switcher.) -- C:\Program Files (x86)\Switcher\Switcher.exe
O4 - HKUS\S-1-5-21-1112066077-4254746724-1257480092-1001\..\Run: [7 Taskbar Tweaker] . (.RaMMicHaeL - 7+ Taskbar Tweaker.) -- C:\Users\owner\AppData\Roaming\7+ Taskbar Tweaker\7+ Taskbar Tweaker.exe =>.RaMMicHaeL
O4 - HKUS\S-1-5-21-1112066077-4254746724-1257480092-1001\..\Run: [InternetOff] . (...) -- C:\Program Files (x86)\InternetOff\InternetOff.exe =>.Crystal Rich Ltd®
O4 - HKUS\S-1-5-21-1112066077-4254746724-1257480092-1001\..\Run: [Clavier+] . (.Guillaume Ryder (http://utilfr42.free.fr) - Clavier+.) -- C:\Users\owner\AppData\Local\Clavier+\Clavier.exe =>.Guillaume Ryder (http://utilfr42.free.fr)
O4 - HKUS\S-1-5-21-1112066077-4254746724-1257480092-1001\..\Run: [RocketDock] . (...) -- C:\Program Files (x86)\RocketDock\RocketDock.exe =>.Punk Software
O4 - HKUS\S-1-5-21-1112066077-4254746724-1257480092-1001\..\Run: [My CPU Monitor] . (.My Portable Software - My CPU Monitor.) -- C:\My CPU Monitor\My CPU Monitor.exe =>.My Portable Software
O4 - HKUS\S-1-5-21-1112066077-4254746724-1257480092-1001\..\Run: [AutoHideDesktopIcons] . (. - .) -- C:\Program Files (x86)\AutoHideDesktopIcons\AutoHideDesktopIcons.exe =>PUP.Optional.ADON
O4 - HKUS\S-1-5-21-1112066077-4254746724-1257480092-1001\..\Run: [Winsplit] . (.Copyright (c) 2011 - WinSplit executable.) -- C:\Program Files (x86)\WinSplit Revolution\WinSplit.exe
O4 - HKUS\S-1-5-21-1112066077-4254746724-1257480092-1001\..\Run: [SuperCopier2.exe] . (.SFX TEAM - SuperCopier 2 (explorer file copy replaceme.) -- C:\Program Files (x86)\SuperCopier2\SuperCopier2.exe =>.SFX TEAM
O4 - HKUS\S-1-5-21-1112066077-4254746724-1257480092-1001\..\Run: [CS Dispatch] . (.Copyright (C) 2011 - EASY KM Link.) -- C:\Users\owner\AppData\Roaming\OTi\EASYKMLink\FunctModules\{23863E42-6AAC-482c-81D2-BD6A23CCFEF8}\EASYKMLink.exe {541786083D7A13AE1755009F2D9E30C8}
O4 - HKUS\S-1-5-21-1112066077-4254746724-1257480092-1001\..\Run: [DiskIndicator] . (.ITSamples.com - Disk Activity Indicator system tray utility.) -- C:\Program Files (x86)\Disk activity indicator\DiskActivity.exe =>.ITSamples.com
O4 - HKUS\S-1-5-21-1112066077-4254746724-1257480092-1001\..\Run: [ProcessKO] . (.(Nenad Hrg) SoftwareOK - ProcessKO.) -- C:\Program Files (x86)\Process KO\ProcessKO x64.exe
O4 - HKUS\S-1-5-21-1112066077-4254746724-1257480092-1001\..\Run: [Textify] . (.Copyright 2017 - Textify.) -- C:\Users\owner\AppData\Roaming\Textify\Textify.exe
O4 - HKUS\S-1-5-21-1112066077-4254746724-1257480092-1001\..\Run: [Simple Sticky Notes] . (.Simnet Ltd. - Simple Sticky Notes.) -- C:\Program Files (x86)\Simple Sticky Notes\ssn.exe =>.Simnet Bilgisayar Yazilim Hiz. San. ve Tic. Ltd. Sti.®
O4 - HKUS\S-1-5-21-1112066077-4254746724-1257480092-1001\..\Run: [3RVX] . (.Matthew Malensek - 3RVX.) -- C:\Program Files (x86)\3RVX\3RVX.exe
O4 - HKUS\S-1-5-21-1112066077-4254746724-1257480092-1001\..\Run: [$Volumouse$] . (.NirSoft - Volumouse Utility.) -- C:\Program Files\volumouse-x64\volumouse.exe =>.Nir Sofer®
O4 - HKUS\S-1-5-21-1112066077-4254746724-1257480092-1001\..\Run: [Volume2] . (.Alexandr Irza - Volume² - advanced Windows volume control.) -- C:\Program Files (x86)\Volume2\Volume2.exe =>.Alexandr Irza
O4 - HKUS\S-1-5-21-1112066077-4254746724-1257480092-1001\..\Run: [Zentimo xStorage Manager] . (.Crystal Rich Ltd - Zentimo - An External Drive Manager.) -- C:\Zentimo Portable 2.0.6\App\ProgramFiles\Zentimo.exe =>.Crystal Rich Ltd
O4 - HKUS\S-1-5-21-1112066077-4254746724-1257480092-1001\..\Run: [NetLimiter] . (.Locktime Software - NetLimiter Client.) -- C:\Program Files\Locktime Software\NetLimiter 4\nlclientapp.exe =>.Locktime Software s.r.o.®
---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (97) - 29s
P2 - EXT FILE: (.Disconnect - Make the web faster, more private, and.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\2.0@disconnect.me.xpi =>.Disconnect
P2 - EXT FILE: (.About config button - Przycisk otwierajacy zaawansowane usta.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\aboutconfigbutton@firefox.xpi
P2 - EXT FILE: (.Addons Recent Updates - Show more addons recent updates.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\addonsRecentUpdates@infocatcher.xpi =>.Addons Recent Updates
P2 - EXT FILE: (.Haga Tamaño Barra de direcciones de fu - Esta extensión hace que la barra de di.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\addressBarFontSizeBigger@papafresh.com.xpi
P2 - EXT FILE: (.Roomy Bookmarks Toolbar - Make your bookmarks bar better. Custom.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\ALone-live@ya.ru.xpi
P2 - EXT FILE: (.Biscuit - .) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\biscuit@nuko.org.xpi
P2 - EXT FILE: (.Classic Theme Restorer - 'Classic Theme Restorer' restores many.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\ClassicThemeRestorer@ArisT2Noia4dev.xpi =>.Classic Theme Restorer
P2 - EXT FILE: (.FireGestures - Executes various commands with mouse g.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\firegestures@xuldev.org.xpi =>.FireGestures
P2 - EXT FILE: (.Hide Caption Titlebar Plus - "Maximize your screen space by adjusti.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\hidecaptionplus-dp@dummy.addons.mozilla.org.xpi
P2 - EXT FILE: (.HTTPS Everywhere - Encrypt the Web! Automatically use HTT.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\https-everywhere@eff.org.xpi =>.HTTPS Everywhere
P2 - EXT FILE: (.Switchy - Manage your profiles easily.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\id@baku.switchy.xpi
P2 - EXT FILE: (.InstaClick - Open links in new tabs with right-mous.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\instaclick@leahscape.com.xpi
P2 - EXT FILE: (.Self-Destructing Cookies - Fix the web. Gets rid of a site's.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\jid0-9XfBwUWnvPx4wWsfBWMCm4Jj69E@jetpack.xpi =>.Self-Destructing Cookies
P2 - EXT FILE: (.Facebook™ Seen Blocker - Facebook™ Seen Blocker allows you to r.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\jid0-AcfdPqSA2Ugt2vdJh6Kj7IiOp5W@jetpack.xpi
P2 - EXT FILE: (.Facebook™ Disconnect - Facebook™ Disconnect is an efficient f.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\jid0-dBgF7UkIiOsWqvBng4hYu@jetpack.xpi =>.Facebook™ Disconnect
P2 - EXT FILE: (.Auto Shutdown NG - Executes a command when all downloads .) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\jid0-HZ5UvAEiWWAxT9TKLuhEgUCARqo@jetpack.xpi =>.Auto Shutdown NG
P2 - EXT FILE: (.What about:.. - Alle about-Befehle auf einen Blick.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\jid0-IPSuVKD0J7yL1cIBwQAdoHTCWmY@jetpack.xpi
P2 - EXT FILE: (.fontdpi - A widget to change firefox font displa.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\jid1-4ZzxC2kiN3rzJA@jetpack.xpi
P2 - EXT FILE: (.PDF Mage - Click to save page as PDF.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\jid1-GeRCnsiDhZiTvA@jetpack.xpi
P2 - EXT FILE: (...) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\jid1-MnnxcxisBPnSXQ@jetpack.xpi
P2 - EXT FILE: (. - __MSG_extensionDescription__.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\playbackSpeed@waldemar.b.xpi
P2 - EXT FILE: (.Semi-Full Screen - Full screen with task bar visible..) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\SemiFullScreen@Merci.chao.xpi
P2 - EXT FILE: (.Sibi Antony - SSleuth.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\ssleuth@github.xpi
P2 - EXT FILE: (.uBlock Origin - __MSG_popupTipPicker__".) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\uBlock0@raymondhill.net.xpi =>.uBlock Origin
P2 - EXT FILE: (.Undo Closed Tabs Button - Add a toolbar button onto any toolbar .) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\undoclosedtabsbutton@supernova00.biz.xpi
P2 - EXT FILE: (.Zoom Page - Zooms web page (either Full-Page or Te.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\zoompage@DW-dev.xpi =>.Zoom Page
P2 - EXT FILE: (.Flagfox - Displays a flag depicting the location.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b}.xpi =>.Flagfox
P2 - EXT FILE: (.Stylish - .) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8}.xpi =>.Stylish
P2 - EXT FILE: (.Grab and Drag - Enables Adobe Acrobat-style grab and d.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\{477c4c36-24eb-11da-94d4-00e08161165f}.xpi
P2 - EXT FILE: (.SmoothWheel (mozdev.org)-- - Scrolls the document smoothly when scr.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\{5F590AA2-1221-4113-A6F4-A4BB62414FAC}.xpi
P2 - EXT FILE: (.Easy Emoji - Easily find & copy any emoji(s) from y.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\{61dbde8a-3824-40ed-85cc-d857c370d265}.xpi
P2 - EXT FILE: (.Speed Dial - Direct access to your most visited web.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\{64161300-e22b-11db-8314-0800200c9a66}.xpi
P2 - EXT FILE: (. - __MSG_appDesc__.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\{7b1bf0b6-a1b9-42b0-b75d-252036438bdc}.xpi
P2 - EXT FILE: (...) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\{b9acf540-acba-11e1-8ccb-001fd0e08bd4}.xpi
P2 - EXT FILE: (.Change Referer Button - Change the referer with a button.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\{c71ff04d-f001-1fc1-1fc1-c71ff04df001}.xpi
P2 - EXT FILE: (.Greg Yardley - BetterPrivacy.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\{d40f5e7b-d2cf-4856-b441-cc613eeffbe3}.xpi =>.Greg Yardley
P2 - EXT FILE: (.Tab Mix Plus - Tab browsing with an added boost..) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\{dc572301-7619-498c-a57d-39143191b318}.xpi =>.Tab Mix Plus
P2 - EXT FILE: (.Aaron Boodman; http://youngpup.net/ - A User Script Manager for Firefox.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi =>.Aaron Boodman; http://youngpup.net/
P2 - EXT FILE: (.Disconnect - Make the web faster, more private, and.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\2.0@disconnect.me.xpi =>.Disconnect
P2 - EXT FILE: (.Addons Recent Updates - Show more addons recent updates.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\addonsRecentUpdates@infocatcher.xpi =>.Addons Recent Updates
P2 - EXT FILE: (.Haga Tamaño Barra de direcciones de fu - Esta extensión hace que la barra de di.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\addressBarFontSizeBigger@papafresh.com.xpi
P2 - EXT FILE: (.Roomy Bookmarks Toolbar - Make your bookmarks bar better. Custom.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\ALone-live@ya.ru.xpi
P2 - EXT FILE: (.Classic Theme Restorer - 'Classic Theme Restorer' restores many.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\ClassicThemeRestorer@ArisT2Noia4dev.xpi =>.Classic Theme Restorer
P2 - EXT FILE: (.Colour That Site! - Passe die Farben beliebiger Webseiten .) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\ColourThatSite@einspeiser.de.xpi =>.Colour That Site!
P2 - EXT FILE: (.Classic Toolbar Buttons - Classic toolbar button style for Firef.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\CSTBB@NArisT2_Noia4dev.xpi
P2 - EXT FILE: (.Exify - Displays image EXIF information.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\exify@dev13.version.xpi
P2 - EXT FILE: (.Facebook Disconnect - .) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\facebook@disconnect.me.xpi =>.Facebook Disconnect
P2 - EXT FILE: (.Bookmarks Checker - check for bad link - Check favorites for broken or bad link.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\firefoxbookmarkchecker@everhelper.me.xpi =>.Bookmarks Checker - check for bad link
P2 - EXT FILE: (.FireGestures - Executes various commands with mouse g.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\firegestures@xuldev.org.xpi =>.FireGestures
P2 - EXT FILE: (.Focus Follows Mouse - A productivity tool which automaticall.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\focus-follows-input@spyrosoft.com.xpi
P2 - EXT FILE: (.Hide Caption Titlebar Plus - "Maximize your screen space by adjusti.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\hidecaptionplus-dp@dummy.addons.mozilla.org.xpi
P2 - EXT FILE: (.HTTPS Everywhere - Encrypt the Web! Automatically use HTT.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\https-everywhere@eff.org.xpi =>.HTTPS Everywhere
P2 - EXT FILE: (.Switchy - Manage your profiles easily.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\id@baku.switchy.xpi
P2 - EXT FILE: (.InstaClick - Open links in new tabs with right-mous.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\instaclick@leahscape.com.xpi
P2 - EXT FILE: (.Self-Destructing Cookies - Fix the web. Gets rid of a site's.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\jid0-9XfBwUWnvPx4wWsfBWMCm4Jj69E@jetpack.xpi =>.Self-Destructing Cookies
P2 - EXT FILE: (.Remove Google Tracking - Remove Google Tracking(redirect) at Cl.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\jid0-DpogclPgnN9OvqNntEBbPZxBinY@jetpack.xpi
P2 - EXT FILE: (.Auto Shutdown NG - Executes a command when all downloads .) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\jid0-HZ5UvAEiWWAxT9TKLuhEgUCARqo@jetpack.xpi =>.Auto Shutdown NG
P2 - EXT FILE: (.What about:.. - Alle about-Befehle auf einen Blick.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\jid0-IPSuVKD0J7yL1cIBwQAdoHTCWmY@jetpack.xpi
P2 - EXT FILE: (.facebook-cleaner - This extension help you to block faceb.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\jid0-TBRXf78ZEzGQyccB8SA1ALbcMpE@jetpack.xpi
P2 - EXT FILE: (.Decentraleyes - Local emulation of Content Delivery Ne.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\jid1-BoFifL9Vbdl2zQ@jetpack.xpi =>.Decentraleyes
P2 - EXT FILE: (.YouTube™ HD Plus - Automatically play YouTube™ videos in .) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\jid1-wkCmfgboni3B1Q@jetpack.xpi =>.YouTube™ HD Plus
P2 - EXT FILE: (.AutoHiDPI - Set a different pixel ratio (layout.cs.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\jid1-ylDsmQrKspNYVg@jetpack.xpi
P2 - EXT FILE: (.Nimbus Screen Capture - Screen Capture FULL Web page or any pa.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\nimbusscreencaptureff@everhelper.me.xpi
P2 - EXT FILE: (.OmniSidebar - Bring your bookmarks into view with ju.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\osb@quicksaver.xpi =>.OmniSidebar
P2 - EXT FILE: (.Personas Plus - Your Firefox, your style. Easy-to-chan.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\personas@christopher.beard.xpi =>.Personas Plus
P2 - EXT FILE: (.Download Manager (S3) - View and manage downloads from a tidy .) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\s3download@statusbar.xpi =>.Download Manager (S3)
P2 - EXT FILE: (...) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\snaplinks@snaplinks.mozdev.org.xpi
P2 - EXT FILE: (...) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\stefanvandamme@stefanvd.net.xpi
P2 - EXT FILE: (.Thumbnail Zoom Plus - Shows full image when you hover over a.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\thumbnailZoom@dadler.github.com.xpi =>.Thumbnail Zoom Plus
P2 - EXT FILE: (.Tile Tabs - Tiles browser tabs horizontally or ver.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\tiletabs@DW-dev.xpi =>.Tile Tabs
P2 - EXT FILE: (.uBlock Origin - __MSG_popupTipPicker__".) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\uBlock0@raymondhill.net.xpi =>.uBlock Origin
P2 - EXT FILE: (.Zoom Page - Zooms web page (either Full-Page or Te.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\zoompage@DW-dev.xpi =>.Zoom Page
P2 - EXT FILE: (.Flagfox - Displays a flag depicting the location.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b}.xpi =>.Flagfox
P2 - EXT FILE: (.Capture Print - This add-on lets you print a webpage's.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\{146f1820-2b0d-49ef-acbf-d85a6986e10c}.xpi
P2 - EXT FILE: (.FlashGot - Enables Firefox, Mozilla Suite, Netsca.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi =>.FlashGot
P2 - EXT FILE: (.Stylish - .) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8}.xpi =>.Stylish
P2 - EXT FILE: (.Grab and Drag - Enables Adobe Acrobat-style grab and d.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\{477c4c36-24eb-11da-94d4-00e08161165f}.xpi
P2 - EXT FILE: (.OwlZoom - Zoom+ in Youtube Videos!.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\{5a77a3a7-a4d1-42ed-922d-86f9bf878c75}.xpi
P2 - EXT FILE: (.SmoothWheel (mozdev.org)-- - Scrolls the document smoothly when scr.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\{5F590AA2-1221-4113-A6F4-A4BB62414FAC}.xpi
P2 - EXT FILE: (.Speed Dial - Direct access to your most visited web.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\{64161300-e22b-11db-8314-0800200c9a66}.xpi
P2 - EXT FILE: (.Hung Le - lori (Life-of-request info).) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\{6dfc4f52-26f0-4e5f-89c7-31d6de480db9}.xpi
P2 - EXT FILE: (.NoScript - Extra protection for your Firefox: NoS.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi =>.NoScript
P2 - EXT FILE: (.Restart Application Button - Restart Application Button lets you re.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\{a0797d99-f7d0-4762-9d21-d2f1e207c4ef}.xpi
P2 - EXT FILE: (...) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\{b9acf540-acba-11e1-8ccb-001fd0e08bd4}.xpi
P2 - EXT FILE: (.Video DownloadHelper - Download Videos from the Web.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi =>.Video DownloadHelper
P2 - EXT FILE: (.Change Referer Button - Change the referer with a button.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\{c71ff04d-f001-1fc1-1fc1-c71ff04df001}.xpi
P2 - EXT FILE: (.Greg Yardley - BetterPrivacy.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\{d40f5e7b-d2cf-4856-b441-cc613eeffbe3}.xpi =>.Greg Yardley
P2 - EXT FILE: (.Open With Internet Explorer - Open With Internet Explorer sends page.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\{d8321cd4-01ae-4efd-9bdb-cb6340613168}.xpi
P2 - EXT FILE: (.Tab Mix Plus - Tab browsing with an added boost..) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\{dc572301-7619-498c-a57d-39143191b318}.xpi =>.Tab Mix Plus
P2 - EXT FILE: (.YouTube Video Replay - YouTube Video Replay is an new ultimat.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\{e1aaa9f8-4500-47f1-9a0a-b02bd60e4076}.xpi
P2 - EXT FILE: (.Aaron Boodman; http://youngpup.net/ - A User Script Manager for Firefox.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi =>.Aaron Boodman; http://youngpup.net/
P2 - EXT FILE: (.Open With Photoshop - Open With Photoshop is a new companion.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\{f3f219f9-cbce-467e-b8fe-6e076d29665c}.xpi
P2 - EXT: (.Giuliano Masseroni - Favicon Restorer.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\faviconrestorer@masserog.it =>.Giuliano Masseroni
P2 - EXT: (.y5. Revived for AlexancarlProject - Organize Status Bar (Revived).) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\obsrev@alexancarlproject.net
P2 - EXT: (.Eugene G. Suslikov - FireShot.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\{0b457cAA-602d-484a-8fe7-c1d894a011ba} =>.Eugene G. Suslikov
P2 - EXT: (.BITS Co., Ltd. - Wired-Marker.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\{e36db930-f18d-4449-b45f-e286cfb9e03a}
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_27_0_0_183.dll =>.Adobe Systems Incorporated
---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (17) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr =>.Google Inc.
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = preserve =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R1 - HKEY_USERS\S-1-5-21-1112066077-4254746724-1257480092-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = preserve =>.Microsoft Corporation
R3 - URLSearchHook: (no name)[HKCU] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (11.00.16299.15 (WinBuild.160101.0800)) -- C:\Windows\SysWOW64\ieframe.dll =>.Microsoft Corporation
---\\ Internet Explorer,Proxy Management (6) - 0s
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
R5 - HKLM\SYSTEM\CurrentControlSet\services\NlaSvc\Parameters\Internet\ManualProxies [] =>.Microsoft
---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: VMApplet=
---\\ Etude du fichier hosts (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (4145)
---\\ Browser Helper Object de navigateur (BHO) (6) - 0s
O2 - BHO: ExplorerWnd Helper [64Bits] - {10921475-03CE-4E04-90CE-E2E7EF20C814} (.Orphan.)
O2 - BHO: (no name) [64Bits] - {27DD0F8B-3E0E-4ADC-A78A-66047E71ADC5} . (.www.startisback.com - OldNewExplorer shell enhancements.) -- C:\Program Files (x86)\OldNewExplorer\OldNewExplorer32.dll =>.www.startisback.com
O2 - BHO: Lync Click to Call BHO [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} . (.Microsoft Corporation - Skype for Business.) -- C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll =>.Microsoft Corporation®
O2 - BHO: ExplorerBHO Class [64Bits] - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} . (.IvoSoft - Adds classic Windows Explorer features.) -- C:\Program Files\Classic Shell\ClassicExplorer32.dll =>.Ivaylo Beltchev®
O2 - BHO: Microsoft OneDrive for Business Browser Helper [64Bits] - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} . (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL =>.Microsoft Corporation®
O2 - BHO: ClassicIEBHO Class [64Bits] - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} . (.IvoSoft - Customizations for the title bar and status.) -- C:\Program Files\Classic Shell\ClassicIEDLL_32.dll =>.Ivaylo Beltchev®
---\\ Raccourcis Global Startup (127) - 5s
O4 - GS\Quicklaunch [___VMware_Conv_SA___]: EaseUS Partition Master 12.5.lnk . (.EaseUS - EaseUS Partition Master Loader Application.) C:\Program Files (x86)\EaseUS\EaseUS Partition Master 12.5\bin\epm0.exe =>.EaseUS
O4 - GS\Quicklaunch [___VMware_Conv_SA___]: Hard Disk Sentinel.lnk . (.H.D.S. Hungary - Hard Disk Sentinel Engine.) C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe =>.Janos Mathe®
O4 - GS\Quicklaunch [___VMware_Conv_SA___]: Kolor Autopano Giga 4.4.lnk . (.Kolor - Autopano Giga (Build 16/05/2017).) C:\Program Files\Kolor\Autopano Giga 4.4\AutopanoGiga_x64.exe =>.Kolor
O4 - GS\Quicklaunch [___VMware_Conv_SA___]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [___VMware_Conv_SA___]: PortExpert.lnk . (.KC Softwares - Cybersecurity at your finge tips.) C:\Program Files (x86)\KC Softwares\PortExpert\PortExpert.exe =>.KC Softwares
O4 - GS\Quicklaunch [___VMware_Conv_SA___]: RAMExpert.lnk . (.KC Softwares - RAM Details at your fingertips.) C:\Program Files (x86)\KC Softwares\RAMExpert\RAMExpert.exe =>.KC Softwares®
O4 - GS\Quicklaunch [___VMware_Conv_SA___]: Windows Explorer Tracker.lnk . (.TriSun Software Inc. - Windows Explorer Tracker.) C:\Program Files (x86)\Windows Explorer Tracker\WET.exe =>.TriSun Software Limited®
O4 - GS\Quicklaunch [___VMware_Conv_SA___]: Wireshark.lnk . (.The Wireshark developer community, http://www.wiresha - Wireshark.) C:\Program Files\Wireshark\Wireshark.exe =>.Wireshark Foundation, Inc.®
O4 - GS\Quicklaunch [___VMware_Conv_SA___]: XnConvert.lnk . (.XnView, http://www.xnview.com - XnConvert.) C:\Program Files\XnConvert\xnconvert.exe =>.Pierre GOUGELET®
O4 - GS\sendTo [___VMware_Conv_SA___]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\WINDOWS\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [___VMware_Conv_SA___]: FAX 受信者.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [___VMware_Conv_SA___]: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\TaskBar [___VMware_Conv_SA___]: Everything.lnk . (.Copyright (C) 2016 David Carpenter - Everything.) C:\Program Files (x86)\Everything\Everything.exe
O4 - GS\TaskBar [___VMware_Conv_SA___]: Task Manager (2).lnk . (.Microsoft Corporation - Windows TaskManager.) C:\Taskmgr.exe =>.Microsoft Corporation
O4 - GS\Startup [___VMware_Conv_SA___]: Envoyer à OneNote.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE /tsr =>.Microsoft Corporation
O4 - GS\Startup [___VMware_Conv_SA___]: Gest.lnk . (...) C:\Users\owner\AppData\Roaming\Gest\GestLauncher.exe
O4 - GS\Startup [___VMware_Conv_SA___]: MemInfo.lnk . (.Carthago Software - MemInfo.) C:\Program Files (x86)\MemInfo\meminfo.exe =>.Carthago Software
O4 - GS\Startup [___VMware_Conv_SA___]: OneNoteM.EXE.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE =>.Microsoft Corporation
O4 - GS\Startup [___VMware_Conv_SA___]: ShellFolderFix.lnk . (...) C:\Program Files (x86)\ShellFolderFix64\ShellFolderFixUI.exe /autostart
O4 - GS\Startup [___VMware_Conv_SA___]: Stick-It.exe.lnk . (...) C:\Program Files (x86)\Stick it 1.00.0b\Stick-It!.exe
O4 - GS\Startup [___VMware_Conv_SA___]: WizMouse.exe.lnk . (...) C:\Program Files (x86)\wizmouse 1.7.0.3 portable\WizMouse.exe {00D39D410A3C118AE7EC2FE1A059AD66D9}
O4 - GS\Quicklaunch [Administrator]: EaseUS Partition Master 12.5.lnk . (.EaseUS - EaseUS Partition Master Loader Application.) C:\Program Files (x86)\EaseUS\EaseUS Partition Master 12.5\bin\epm0.exe =>.EaseUS
O4 - GS\Quicklaunch [Administrator]: Hard Disk Sentinel.lnk . (.H.D.S. Hungary - Hard Disk Sentinel Engine.) C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe =>.Janos Mathe®
O4 - GS\Quicklaunch [Administrator]: Kolor Autopano Giga 4.4.lnk . (.Kolor - Autopano Giga (Build 16/05/2017).) C:\Program Files\Kolor\Autopano Giga 4.4\AutopanoGiga_x64.exe =>.Kolor
O4 - GS\Quicklaunch [Administrator]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [Administrator]: PortExpert.lnk . (.KC Softwares - Cybersecurity at your finge tips.) C:\Program Files (x86)\KC Softwares\PortExpert\PortExpert.exe =>.KC Softwares
O4 - GS\Quicklaunch [Administrator]: RAMExpert.lnk . (.KC Softwares - RAM Details at your fingertips.) C:\Program Files (x86)\KC Softwares\RAMExpert\RAMExpert.exe =>.KC Softwares®
O4 - GS\Quicklaunch [Administrator]: Windows Explorer Tracker.lnk . (.TriSun Software Inc. - Windows Explorer Tracker.) C:\Program Files (x86)\Windows Explorer Tracker\WET.exe =>.TriSun Software Limited®
O4 - GS\Quicklaunch [Administrator]: Wireshark.lnk . (.The Wireshark developer community, http://www.wiresha - Wireshark.) C:\Program Files\Wireshark\Wireshark.exe =>.Wireshark Foundation, Inc.®
O4 - GS\Quicklaunch [Administrator]: XnConvert.lnk . (.XnView, http://www.xnview.com - XnConvert.) C:\Program Files\XnConvert\xnconvert.exe =>.Pierre GOUGELET®
O4 - GS\sendTo [Administrator]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\WINDOWS\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Administrator]: FAX 受信者.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Administrator]: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Administrator]: Everything.lnk . (.Copyright (C) 2016 David Carpenter - Everything.) C:\Program Files (x86)\Everything\Everything.exe
O4 - GS\TaskBar [Administrator]: Task Manager (2).lnk . (.Microsoft Corporation - Windows TaskManager.) C:\Taskmgr.exe =>.Microsoft Corporation
O4 - GS\Startup [Administrator]: Envoyer à OneNote.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE /tsr =>.Microsoft Corporation
O4 - GS\Startup [Administrator]: Gest.lnk . (...) C:\Users\owner\AppData\Roaming\Gest\GestLauncher.exe
O4 - GS\Startup [Administrator]: MemInfo.lnk . (.Carthago Software - MemInfo.) C:\Program Files (x86)\MemInfo\meminfo.exe =>.Carthago Software
O4 - GS\Startup [Administrator]: OneNoteM.EXE.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE =>.Microsoft Corporation
O4 - GS\Startup [Administrator]: ShellFolderFix.lnk . (...) C:\Program Files (x86)\ShellFolderFix64\ShellFolderFixUI.exe /autostart
O4 - GS\Startup [Administrator]: Stick-It.exe.lnk . (...) C:\Program Files (x86)\Stick it 1.00.0b\Stick-It!.exe
O4 - GS\Startup [Administrator]: WizMouse.exe.lnk . (...) C:\Program Files (x86)\wizmouse 1.7.0.3 portable\WizMouse.exe {00D39D410A3C118AE7EC2FE1A059AD66D9}
O4 - GS\Quicklaunch [Guest]: EaseUS Partition Master 12.5.lnk . (.EaseUS - EaseUS Partition Master Loader Application.) C:\Program Files (x86)\EaseUS\EaseUS Partition Master 12.5\bin\epm0.exe =>.EaseUS
O4 - GS\Quicklaunch [Guest]: Hard Disk Sentinel.lnk . (.H.D.S. Hungary - Hard Disk Sentinel Engine.) C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe =>.Janos Mathe®
O4 - GS\Quicklaunch [Guest]: Kolor Autopano Giga 4.4.lnk . (.Kolor - Autopano Giga (Build 16/05/2017).) C:\Program Files\Kolor\Autopano Giga 4.4\AutopanoGiga_x64.exe =>.Kolor
O4 - GS\Quicklaunch [Guest]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [Guest]: PortExpert.lnk . (.KC Softwares - Cybersecurity at your finge tips.) C:\Program Files (x86)\KC Softwares\PortExpert\PortExpert.exe =>.KC Softwares
O4 - GS\Quicklaunch [Guest]: RAMExpert.lnk . (.KC Softwares - RAM Details at your fingertips.) C:\Program Files (x86)\KC Softwares\RAMExpert\RAMExpert.exe =>.KC Softwares®
O4 - GS\Quicklaunch [Guest]: Windows Explorer Tracker.lnk . (.TriSun Software Inc. - Windows Explorer Tracker.) C:\Program Files (x86)\Windows Explorer Tracker\WET.exe =>.TriSun Software Limited®
O4 - GS\Quicklaunch [Guest]: Wireshark.lnk . (.The Wireshark developer community, http://www.wiresha - Wireshark.) C:\Program Files\Wireshark\Wireshark.exe =>.Wireshark Foundation, Inc.®
O4 - GS\Quicklaunch [Guest]: XnConvert.lnk . (.XnView, http://www.xnview.com - XnConvert.) C:\Program Files\XnConvert\xnconvert.exe =>.Pierre GOUGELET®
O4 - GS\sendTo [Guest]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\WINDOWS\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Guest]: FAX 受信者.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Guest]: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Guest]: Everything.lnk . (.Copyright (C) 2016 David Carpenter - Everything.) C:\Program Files (x86)\Everything\Everything.exe
O4 - GS\TaskBar [Guest]: Task Manager (2).lnk . (.Microsoft Corporation - Windows TaskManager.) C:\Taskmgr.exe =>.Microsoft Corporation
O4 - GS\Startup [Guest]: Envoyer à OneNote.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE /tsr =>.Microsoft Corporation
O4 - GS\Startup [Guest]: Gest.lnk . (...) C:\Users\owner\AppData\Roaming\Gest\GestLauncher.exe
O4 - GS\Startup [Guest]: MemInfo.lnk . (.Carthago Software - MemInfo.) C:\Program Files (x86)\MemInfo\meminfo.exe =>.Carthago Software
O4 - GS\Startup [Guest]: OneNoteM.EXE.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE =>.Microsoft Corporation
O4 - GS\Startup [Guest]: ShellFolderFix.lnk . (...) C:\Program Files (x86)\ShellFolderFix64\ShellFolderFixUI.exe /autostart
O4 - GS\Startup [Guest]: Stick-It.exe.lnk . (...) C:\Program Files (x86)\Stick it 1.00.0b\Stick-It!.exe
O4 - GS\Startup [Guest]: WizMouse.exe.lnk . (...) C:\Program Files (x86)\wizmouse 1.7.0.3 portable\WizMouse.exe {00D39D410A3C118AE7EC2FE1A059AD66D9}
O4 - GS\Quicklaunch [owner]: EaseUS Partition Master 12.5.lnk . (.EaseUS - EaseUS Partition Master Loader Application.) C:\Program Files (x86)\EaseUS\EaseUS Partition Master 12.5\bin\epm0.exe =>.EaseUS
O4 - GS\Quicklaunch [owner]: Hard Disk Sentinel.lnk . (.H.D.S. Hungary - Hard Disk Sentinel Engine.) C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe =>.Janos Mathe®
O4 - GS\Quicklaunch [owner]: Kolor Autopano Giga 4.4.lnk . (.Kolor - Autopano Giga (Build 16/05/2017).) C:\Program Files\Kolor\Autopano Giga 4.4\AutopanoGiga_x64.exe =>.Kolor
O4 - GS\Quicklaunch [owner]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [owner]: PortExpert.lnk . (.KC Softwares - Cybersecurity at your finge tips.) C:\Program Files (x86)\KC Softwares\PortExpert\PortExpert.exe =>.KC Softwares
O4 - GS\Quicklaunch [owner]: RAMExpert.lnk . (.KC Softwares - RAM Details at your fingertips.) C:\Program Files (x86)\KC Softwares\RAMExpert\RAMExpert.exe =>.KC Softwares®
O4 - GS\Quicklaunch [owner]: Windows Explorer Tracker.lnk . (.TriSun Software Inc. - Windows Explorer Tracker.) C:\Program Files (x86)\Windows Explorer Tracker\WET.exe =>.TriSun Software Limited®
O4 - GS\Quicklaunch [owner]: Wireshark.lnk . (.The Wireshark developer community, http://www.wiresha - Wireshark.) C:\Program Files\Wireshark\Wireshark.exe =>.Wireshark Foundation, Inc.®
O4 - GS\Quicklaunch [owner]: XnConvert.lnk . (.XnView, http://www.xnview.com - XnConvert.) C:\Program Files\XnConvert\xnconvert.exe =>.Pierre GOUGELET®
O4 - GS\sendTo [owner]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\WINDOWS\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [owner]: FAX 受信者.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [owner]: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\TaskBar [owner]: Everything.lnk . (.Copyright (C) 2016 David Carpenter - Everything.) C:\Program Files (x86)\Everything\Everything.exe
O4 - GS\TaskBar [owner]: Task Manager (2).lnk . (.Microsoft Corporation - Windows TaskManager.) C:\Taskmgr.exe =>.Microsoft Corporation
O4 - GS\Startup [owner]: Envoyer à OneNote.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE /tsr =>.Microsoft Corporation
O4 - GS\Startup [owner]: Gest.lnk . (...) C:\Users\owner\AppData\Roaming\Gest\GestLauncher.exe
O4 - GS\Startup [owner]: MemInfo.lnk . (.Carthago Software - MemInfo.) C:\Program Files (x86)\MemInfo\meminfo.exe =>.Carthago Software
O4 - GS\Startup [owner]: OneNoteM.EXE.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE =>.Microsoft Corporation
O4 - GS\Startup [owner]: ShellFolderFix.lnk . (...) C:\Program Files (x86)\ShellFolderFix64\ShellFolderFixUI.exe /autostart
O4 - GS\Startup [owner]: Stick-It.exe.lnk . (...) C:\Program Files (x86)\Stick it 1.00.0b\Stick-It!.exe
O4 - GS\Startup [owner]: WizMouse.exe.lnk . (...) C:\Program Files (x86)\wizmouse 1.7.0.3 portable\WizMouse.exe {00D39D410A3C118AE7EC2FE1A059AD66D9}
O4 - GS\Quicklaunch [WDAGUtilityAccount]: EaseUS Partition Master 12.5.lnk . (.EaseUS - EaseUS Partition Master Loader Application.) C:\Program Files (x86)\EaseUS\EaseUS Partition Master 12.5\bin\epm0.exe =>.EaseUS
O4 - GS\Quicklaunch [WDAGUtilityAccount]: Hard Disk Sentinel.lnk . (.H.D.S. Hungary - Hard Disk Sentinel Engine.) C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe =>.Janos Mathe®
O4 - GS\Quicklaunch [WDAGUtilityAccount]: Kolor Autopano Giga 4.4.lnk . (.Kolor - Autopano Giga (Build 16/05/2017).) C:\Program Files\Kolor\Autopano Giga 4.4\AutopanoGiga_x64.exe =>.Kolor
O4 - GS\Quicklaunch [WDAGUtilityAccount]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [WDAGUtilityAccount]: PortExpert.lnk . (.KC Softwares - Cybersecurity at your finge tips.) C:\Program Files (x86)\KC Softwares\PortExpert\PortExpert.exe =>.KC Softwares
O4 - GS\Quicklaunch [WDAGUtilityAccount]: RAMExpert.lnk . (.KC Softwares - RAM Details at your fingertips.) C:\Program Files (x86)\KC Softwares\RAMExpert\RAMExpert.exe =>.KC Softwares®
O4 - GS\Quicklaunch [WDAGUtilityAccount]: Windows Explorer Tracker.lnk . (.TriSun Software Inc. - Windows Explorer Tracker.) C:\Program Files (x86)\Windows Explorer Tracker\WET.exe =>.TriSun Software Limited®
O4 - GS\Quicklaunch [WDAGUtilityAccount]: Wireshark.lnk . (.The Wireshark developer community, http://www.wiresha - Wireshark.) C:\Program Files\Wireshark\Wireshark.exe =>.Wireshark Foundation, Inc.®
O4 - GS\Quicklaunch [WDAGUtilityAccount]: XnConvert.lnk . (.XnView, http://www.xnview.com - XnConvert.) C:\Program Files\XnConvert\xnconvert.exe =>.Pierre GOUGELET®
O4 - GS\sendTo [WDAGUtilityAccount]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\WINDOWS\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [WDAGUtilityAccount]: FAX 受信者.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [WDAGUtilityAccount]: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\TaskBar [WDAGUtilityAccount]: Everything.lnk . (.Copyright (C) 2016 David Carpenter - Everything.) C:\Program Files (x86)\Everything\Everything.exe
O4 - GS\TaskBar [WDAGUtilityAccount]: Task Manager (2).lnk . (.Microsoft Corporation - Windows TaskManager.) C:\Taskmgr.exe =>.Microsoft Corporation
O4 - GS\Startup [WDAGUtilityAccount]: Envoyer à OneNote.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE /tsr =>.Microsoft Corporation
O4 - GS\Startup [WDAGUtilityAccount]: Gest.lnk . (...) C:\Users\owner\AppData\Roaming\Gest\GestLauncher.exe
O4 - GS\Startup [WDAGUtilityAccount]: MemInfo.lnk . (.Carthago Software - MemInfo.) C:\Program Files (x86)\MemInfo\meminfo.exe =>.Carthago Software
O4 - GS\Startup [WDAGUtilityAccount]: OneNoteM.EXE.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE =>.Microsoft Corporation
O4 - GS\Startup [WDAGUtilityAccount]: ShellFolderFix.lnk . (...) C:\Program Files (x86)\ShellFolderFix64\ShellFolderFixUI.exe /autostart
O4 - GS\Startup [WDAGUtilityAccount]: Stick-It.exe.lnk . (...) C:\Program Files (x86)\Stick it 1.00.0b\Stick-It!.exe
O4 - GS\Startup [WDAGUtilityAccount]: WizMouse.exe.lnk . (...) C:\Program Files (x86)\wizmouse 1.7.0.3 portable\WizMouse.exe {00D39D410A3C118AE7EC2FE1A059AD66D9}
O4 - GS\Accessories [Public]: Fonctionnalités optionnelles.lnk . (.Microsoft Corporation - Assistance des fonctionnalités à la demande.) C:\Windows\System32\fodhelper.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\internet explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Accessories [Public]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) C:\WINDOWS\system32\notepad.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Old Calculator.lnk . (.Microsoft Corporation - Calculatrice de Windows.) C:\Windows\System32\calc1.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Search.lnk . (.Microsoft Corporation - Processus hôte Windows (Rundll32).) C:\WINDOWS\system32\rundll32.exe -sta {C90FB8CA-3295-4462-A721-2935E83694BA} =>..Microsoft Corporation
O4 - GS\Startup [Public]: Ear Trumpet.lnk . (.File-New-Project - Ear Trumpet.) C:\Program Files (x86)\Ear Trumpet\EarTrumpet.exe
O4 - GS\Startup [Public]: Gest.lnk . (...) C:\Users\owner\AppData\Roaming\Gest\GestLauncher.exe
O4 - GS\Startup [Public]: MemInfo.lnk . (.Carthago Software - MemInfo.) C:\Program Files (x86)\MemInfo\meminfo.exe =>.Carthago Software
O4 - GS\Startup [Public]: QuickLook.lnk . (.pooi.moe - QuickLook.) C:\Users\owner\AppData\Local\Programs\QuickLook\QuickLook.exe {119DD8389F5F5DF7EC782CD1033C8987}
O4 - GS\Startup [Public]: Rainmeter.lnk . (.Rainmeter - Rainmeter desktop customization tool.) C:\Program Files\Rainmeter\Rainmeter.exe =>.Open Source Developer, Birunthan Mohanathas®
O4 - GS\Accessories [Public]: Math Input Panel.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\mip.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.) C:\WINDOWS\system32\mspaint.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Connexion Bureau à distance.) C:\WINDOWS\system32\mstsc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - Outil Capture d’écran.) C:\WINDOWS\system32\SnippingTool.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Steps Recorder.lnk . (.Microsoft Corporation - Enregistreur d’actions.) C:\WINDOWS\system32\psr.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sticky Notes (classic).lnk . (.Microsoft Corporation - Pense-bête.) C:\Program Files\Classic Sticky Notes\StikyNot.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Fax and Scan.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\WINDOWS\system32\WFS.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Application Windows Wordpad.) C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: XPS Viewer.lnk . (.Microsoft Corporation - Visionneuse XPS.) C:\WINDOWS\system32\xpsrchvw.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Table des caractères.) C:\WINDOWS\system32\charmap.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Immersive Control Panel.lnk . (.Microsoft Corporation - Windows Control Panel.) C:\WINDOWS\System32\Control.exe =>.Microsoft Corporation
---\\ Modification Domaine/Adresses DNS (4) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{8d0a3c31-147d-4352-b744-4d5309e6edd5}: DhcpNameServer = 192.168.1.254 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{cbd81dbf-9dce-42fc-92d1-ae8370325fb3}: DhcpNameServer = 192.168.1.1 192.168.1.1 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{ec54fa79-9ced-4441-aa34-ab2ddf87a0c7}: DhcpNameServer = 192.168.1.1 =>.Local IP Adress
---\\ Protocole additionnel (26) - 0s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\SysWOW64\itss.dll =>.Microsoft Corporation
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\SysWOW64\inetcomm.dll =>.Microsoft Corporation
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\SysWOW64\itss.dll =>.Microsoft Corporation
O18 - Handler: mso-minsb-roaming.16 [64Bits] - {83C25742-A9F7-49FB-9138-434302C88D07} . (.Microsoft Corporation - Microsoft Office 2016 component.) -- C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL =>.Microsoft Corporation®
O18 - Handler: mso-minsb.16 [64Bits] - {42089D2D-912D-4018-9087-2B87803E93FB} . (.Microsoft Corporation - Microsoft Office 2016 component.) -- C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL =>.Microsoft Corporation®
O18 - Handler: osf-roaming.16 [64Bits] - {42089D2D-912D-4018-9087-2B87803E93FB} . (.Microsoft Corporation - Microsoft Office 2016 component.) -- C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL =>.Microsoft Corporation®
O18 - Handler: osf.16 [64Bits] - {5504BE45-A83B-4808-900A-3A5C36E7F77A} . (.Microsoft Corporation - Microsoft Office 2016 component.) -- C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL =>.Microsoft Corporation®
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\SysWOW64\tbauth.dll =>.Microsoft Corporation
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: windows.tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\SysWOW64\tbauth.dll =>.Microsoft Corporation
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll =>.Microsoft Corporation
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll =>.Microsoft Corporation
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll =>.Microsoft Corporation
---\\ ASIC (ActiveSetup Installed Components) (4) - 1s
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Utilitaire d’installation du Lecteur Window.) -- C:\Windows\System32\unregmp2.exe =>.Microsoft Corporation
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\System32\mscories.dll =>.Microsoft Corporation®
---\\ Logiciels installés (191) - 20s
O42 - Logiciel: 3RVX - (.Matthew Malensek.) [HKLM][64Bits] -- {400A8514-5440-410A-B318-44061BD7EE8E}
O42 - Logiciel: 7+ Taskbar Tweaker v5.3.0.7 - (.RaMMicHaeL.) [HKCU][64Bits] -- 7 Taskbar Tweaker =>.RaMMicHaeL
O42 - Logiciel: Acrylic Wi-Fi Home v3.1 - (.Tarlogic Security S.L..) [HKCU][64Bits] -- {3706FB7A-11FB-44C4-AD94-2B29878D75DC}_is1 =>.Tarlogic Security SL®
O42 - Logiciel: Adobe After Effects CC 2018 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- AEFT_15_0_0 =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Bridge CC 2018 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- KBRG_8_0 =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Creative Cloud - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Creative Cloud =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Extension Manager CC - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {244FD30F-63F1-49B9-9D98-1150FF4FFCB1} =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Flash Player 27 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Illustrator CC 2018 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- ILST_22_0_0 =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Lightroom Classic CC - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- LTRM_7_0 =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Media Encoder CC 2018 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- AME_12_0_0 =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Photoshop CC 2018 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- PHSP_19_0 =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Premiere Pro CC 2018 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- PPRO_12_0_0 =>.Adobe Systems Incorporated®
O42 - Logiciel: AIDA64 Extreme v5.90 - (.FinalWire Ltd..) [HKLM][64Bits] -- AIDA64 Extreme_is1 =>.FinalWire Kft.®
O42 - Logiciel: ALPS Touch Pad Driver - (.ALPS ELECTRIC CO., LTD..) [HKLM][64Bits] -- {9F72EF8B-AEC9-4CA5-B483-143980AFD6FD} {0E65E8DD1CF974DC27F89D371DA742F6} =>.Alps Electric Co., Ltd.
O42 - Logiciel: Amazon Kindle - (.Amazon.) [HKCU][64Bits] -- Amazon Kindle =>.Amazon
O42 - Logiciel: Anki - (.Damien Elmes.) [HKLM][64Bits] -- Anki =>.Damien Elmes
O42 - Logiciel: Ant Renamer - (.Ant Software.) [HKLM][64Bits] -- Ant Renamer 2_is1 =>.Ant Software
O42 - Logiciel: Arasan 20.2 - (.Jon Dart.) [HKLM][64Bits] -- Arasan_is1
O42 - Logiciel: Argente Utilities - (.Raúl Argente.) [HKLM][64Bits] -- AUtilities =>.Raúl Argente
O42 - Logiciel: ASIO4ALL - (.Michael Tippach.) [HKLM][64Bits] -- ASIO4ALL =>.Michael Tippach
O42 - Logiciel: AtHome Camera Version 3.4.1 - (. iChano Inc..) [HKLM][64Bits] -- {B659A0AE-7339-41DF-A7BA-81EBEBF91321}_is1
O42 - Logiciel: Audacity 2.1.3 - (.Audacity Team.) [HKLM][64Bits] -- Audacity®_is1 =>.Audacity Team
O42 - Logiciel: AutoHotkey 1.1.24.01 - (.Lexikos.) [HKLM][64Bits] -- AutoHotkey =>.Lexikos
O42 - Logiciel: Bluetooth(R) Link - (.Toshiba Corporation.) [HKLM][64Bits] -- {3F3DCC8C-2C93-4082-A6DE-BBDC74804FA0} =>.Toshiba Corporation
O42 - Logiciel: Camtasia 9 - (.TechSmith Corporation.) [HKLM][64Bits] -- {00ce4b8c-0138-4743-b0b8-379b2715eb44} =>.TechSmith Corporation®
O42 - Logiciel: Camtasia 9 - (.TechSmith Corporation.) [HKLM][64Bits] -- {1D09B594-C8B5-4CF1-B927-41D9A487799C} =>.TechSmith Corporation
O42 - Logiciel: ChessX version 1.4.6 - (.chessx.sourceforge.net.) [HKLM][64Bits] -- {278EF322-A05B-4F81-B23B-F7D8050F6837}_is1
O42 - Logiciel: Classic Shell - (.IvoSoft.) [HKLM][64Bits] -- {CABCE573-0A86-42FA-A52A-C7EA61D5BE08} =>.IvoSoft
O42 - Logiciel: Classic Sticky Notes - (.Winaero.) [HKLM][64Bits] -- Classic Sticky Notes_is1 =>.Winaero
O42 - Logiciel: Clavier+ 10.8.1 - (.Guillaume Ryder.) [HKLM][64Bits] -- Clavier+_is1 =>.Guillaume Ryder
O42 - Logiciel: CMEDIA USB2.0 Audio Device - (.C-Media Electronics, Inc..) [HKLM][64Bits] -- {71B53BA8-4BE3-49AF-BC3E-07F392016500} =>.C-Media Electronics, Inc.
O42 - Logiciel: Contents64 - (.Corel Corporation.) [HKLM][64Bits] -- {CC17740C-FD9D-4025-BD75-99ED1A9DA22E} =>.Corel Corporation
O42 - Logiciel: Corel VideoStudio X7 - (.Corel Corporation.) [HKLM][64Bits] -- _{77B3BEA9-835C-4DDF-BCE7-1510271E4E37} =>.Corel Corporation®
O42 - Logiciel: Crayon Physics Deluxe version 55 - (.Kloonigames, Ltd.) [HKLM][64Bits] -- {4CA1E8E2-B2A9-40C1-8EC4-BBCB23BAAA19}_is1
O42 - Logiciel: Cursor Commander - (.Winaero.com.) [HKLM][64Bits] -- Cursor Commander
O42 - Logiciel: DFX - (.Power Technology.) [HKLM][64Bits] -- DFX =>.Power Technology
O42 - Logiciel: DiskFresh 1.1 - (.Puran Software.) [HKLM][64Bits] -- DiskFresh_is1 =>.Puran Software
O42 - Logiciel: DTS Studio Sound - (.DTS, Inc..) [HKLM][64Bits] -- {793B70D2-41E9-46AB-9DDC-B34C99D07DB5} =>.DTS, Inc.
O42 - Logiciel: DxO OpticsPro 11 - (.DxO.) [HKLM][64Bits] -- {F7A166EE-F127-4470-9A13-C6407CBAC968} =>.DxO
O42 - Logiciel: Êâåòêà 4.0 - (.Áîäÿãèí Äìèòðèé.) [HKLM][64Bits] -- Êâåòêà_is1
O42 - Logiciel: Ear Trumpet - (..) [HKLM][64Bits] -- BA8684A3-9834-4D78-A666-04E88FF0EC82_is1
O42 - Logiciel: EaseUS Partition Master 12.5 Trial Edition - (.EaseUS.) [HKLM][64Bits] -- EaseUS Partition Master Trial Edition_is1 =>.CHENGDU YIWO Tech Development Co., Ltd.®
O42 - Logiciel: ESET NOD32 Antivirus - (.ESET, spol s r. o..) [HKLM][64Bits] -- {5F2AE448-CD4B-40BD-B245-5F0CD06A09B0} =>.ESET, spol s r. o.
O42 - Logiciel: Exact Audio Copy 1.3 - (.Andre Wiethoff.) [HKLM][64Bits] -- Exact Audio Copy =>.Andre Wiethoff
O42 - Logiciel: ExeIcon (remove only) - (..) [HKCU][64Bits] -- ExeIcon
O42 - Logiciel: Eye-One Match 3.6.2 - (.GretagMacbeth.) [HKLM][64Bits] -- Eye-One Match_is1 =>.GretagMacbeth
O42 - Logiciel: FastStone Image Viewer 6.3 - (.FastStone Soft.) [HKLM][64Bits] -- FastStone Image Viewer =>.FastStone Soft
O42 - Logiciel: FastStone MaxView 3.1 - (.FastStone Soft..) [HKLM][64Bits] -- FastStone MaxView =>.FastStone Soft.
O42 - Logiciel: FastStone Photo Resizer 3.8 - (.FastStone Soft..) [HKLM][64Bits] -- FastStone Photo Resizer =>.FastStone Soft.
O42 - Logiciel: FileSearchy - (.Midlinesoft.) [HKLM][64Bits] -- FileSearchy =>.Midlinesoft
O42 - Logiciel: FolderIco 4.0 - (.teorex.) [HKLM][64Bits] -- {22C37D82-6137-40BF-8625-7A846ED65F3A}_is1 =>.Teorex
O42 - Logiciel: foobar2000 v1.3.16 - (.Peter Pawlowski.) [HKLM][64Bits] -- foobar2000 =>.Peter Pawlowski
O42 - Logiciel: Geekbench 4 - (.Primate Labs Inc..) [HKLM][64Bits] -- Geekbench 4
O42 - Logiciel: GetDataBack for NTFS - (.Runtime Software.) [HKLM][64Bits] -- {56582EEA-3AEF-4D84-8B9D-C87A3CD9250F} =>.Runtime Software
O42 - Logiciel: Greenshot 1.2.10.6 - (.Greenshot.) [HKLM][64Bits] -- Greenshot_is1 =>.Open Source Developer, Robin Krom®
O42 - Logiciel: HandBrake 0.10.5 - (.HandBrake Team.) [HKLM][64Bits] -- HandBrake =>.HandBrake Team
O42 - Logiciel: Hard Disk Sentinel - (.HDS.) [HKLM][64Bits] -- Hard Disk Sentinel_is1 =>.Janos Mathe®
O42 - Logiciel: HashTab 6.0.0.28 - (.Implbits Software.) [HKLM][64Bits] -- HashTab =>.Implbits Software
O42 - Logiciel: HostsMan 4.6.103 - (.abelhadigital.com.) [HKLM][64Bits] -- {1A3DD1A9-7B7B-4ECA-AD2F-98466F49F62C}_is1 =>.abelhadigital.com
O42 - Logiciel: ICA - (.Corel Corporation.) [HKLM][64Bits] -- {77B3BEA9-835C-4DDF-BCE7-1510271E4E37} =>.Corel Corporation
O42 - Logiciel: Icaros 3.0.1 - (.Tabibito Technology.) [HKLM][64Bits] -- Icaros_is1 =>.Tabibito Technology
O42 - Logiciel: Intel Extreme Tuning Utility - (.Intel Corporation.) [HKLM][64Bits] -- {2b6ed4de-d92a-4e61-aa4f-5196a0ecee21} =>.Intel(R) Extreme Tuning Utility®
O42 - Logiciel: Intel Extreme Tuning Utility - (.Intel Corporation.) [HKLM][64Bits] -- {64432AF2-9AB3-4F5C-8F97-D6D6FCC89C18} =>.Intel Corporation
O42 - Logiciel: Intel Extreme Tuning Utility - (.Intel Corporation.) [HKLM][64Bits] -- {AD9EAA1C-2EF5-4243-ACE5-7AB77047291D} =>.Intel Corporation
O42 - Logiciel: Intel(R) C++ Redistributables on Intel(R) 64 - (.Intel Corporation.) [HKLM][64Bits] -- {F70BCE36-25F2-4475-A918-6209B3D85BF3} =>.Intel Corporation
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A} =>.Intel Corporation - Software and Firmware Products®
O42 - Logiciel: Intel(R) Network Connections Drivers - (.Intel.) [HKLM][64Bits] -- PROSet =>.Intel
O42 - Logiciel: Intel(R) PRO/Wireless Driver - (.Intel Corporation.) [HKLM][64Bits] -- {c56c5664-97ab-4e2a-bd62-99ed18d7059e} =>.Intel Corporation
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA} =>.Intel Corporation - pGFX®
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {409CB30E-E457-4008-9B1A-ED1B9EA21140} =>.Intel Corporation
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {FF8F5F84-9660-40DB-BDAD-CCD03F6BD1F6} =>.Intel Corporation
O42 - Logiciel: Intel(R) Wireless Bluetooth(R) - (.Intel Corporation.) [HKLM][64Bits] -- {01FE8E22-F9DA-4EB7-9A95-80A8D1236DEB} =>.Intel Corporation
O42 - Logiciel: Intel-SA-00075 Detection and Mitigation Tool 1.0.2.116 - (.Intel Corporation.) [HKLM][64Bits] -- {35EDB1A1-56A4-4268-8643-142166FCBF39} =>.Intel Corporation
O42 - Logiciel: InternetOff 3.0, 32\64 bit edition - (.Crystal Rich, Ltd.) [HKLM][64Bits] -- InternetOff_is1 =>.Crystal Rich, Ltd
O42 - Logiciel: IObit Uninstaller - (.IObit.) [HKLM][64Bits] -- IObitUninstall =>.IObit Information Technology®
O42 - Logiciel: IObit Unlocker - (.IObit.) [HKLM][64Bits] -- IObit Unlocker_is1 =>.IObit Information Technology®
O42 - Logiciel: IPM_VS_Pro64 - (.Corel Corporation.) [HKLM][64Bits] -- {0662B4EB-B027-4D10-B49C-B6433FE81C07} =>.Corel Corporation
O42 - Logiciel: IrfanView 4.50 (64-bit) - (.Irfan Skiljan.) [HKLM][64Bits] -- IrfanView64 =>.Irfan Skiljan®
O42 - Logiciel: Java 9.0.1 (64-bit) - (.Oracle Corporation.) [HKLM][64Bits] -- {2590B9D6-4310-52BC-808E-1A585861A836} =>.Oracle Corporation
O42 - Logiciel: Java Auto Updater - (.Oracle Corporation.) [HKLM][64Bits] -- {4A03706F-666A-4037-7777-5F2748764D10} =>.Oracle Corporation
O42 - Logiciel: KC Softwares PortExpert - (.KC Softwares.) [HKLM][64Bits] -- KC Softwares PortExpert_is1 =>.KC Softwares®
O42 - Logiciel: KC Softwares RAMExpert - (.KC Softwares.) [HKLM][64Bits] -- KC Softwares RAMExpert_is1 =>.KC Softwares®
O42 - Logiciel: Kolor Autopano Giga 4.4 - (.Kolor.) [HKLM][64Bits] -- AutopanoGiga4.4 =>.Kolor SAS®
O42 - Logiciel: Kyodai Mahjongg 2006 v1.42 - (.Rene-Gilles Deberdt.) [HKLM][64Bits] -- Kyodai Mahjongg 2006_is1 =>.Rene-Gilles Deberdt
O42 - Logiciel: Link Shell Extension - (.Hermann Schinagl.) [HKLM][64Bits] -- HardlinkShellExt
O42 - Logiciel: Logitech Options - (.Logitech.) [HKLM][64Bits] -- LogiOptions =>.Logitech Inc®
O42 - Logiciel: LRTimelapse 4.7.8 - (.Gunther Wegner.) [HKLM][64Bits] -- {3B86296C-F4C8-4FE7-8561-CC5F444098D4}}_is1 {1F2A7CD41F218CDAA9AD1F1FCBF9AB0C}
O42 - Logiciel: Macrium Reflect Workstation Edition - (.Paramount Software (UK) Ltd..) [HKLM][64Bits] -- {AE7CBEA4-2603-479D-9056-4BCDA3736B3A} =>.Paramount Software (UK) Ltd.
O42 - Logiciel: Macrium Reflect Workstation Edition - (.Paramount Software (UK) Ltd..) [HKLM][64Bits] -- MacriumReflect =>.Paramount Software UK Ltd®
O42 - Logiciel: MakeMKV v1.10.7 - (.GuinpinSoft inc.) [HKLM][64Bits] -- MakeMKV =>.GuinpinSoft inc
O42 - Logiciel: MediaInfo 0.7.99 - (.MediaArea.net.) [HKLM][64Bits] -- MediaInfo =>.MediaArea.net
O42 - Logiciel: Medieval CUE Splitter - (.Medieval Software.) [HKLM][64Bits] -- {B96D2269-568B-4CBF-9332-12FAE8B158F7} =>.Medieval Software
O42 - Logiciel: MemInfo (remove only) - (..) [HKLM][64Bits] -- MemInfo
O42 - Logiciel: Microsoft OneDrive - (.Microsoft Corporation.) [HKCU][64Bits] -- OneDriveSetup.exe =>.Microsoft Windows®
O42 - Logiciel: MKVToolNix 17.0.0 (64-bit) - (.Moritz Bunkus.) [HKLM][64Bits] -- MKVToolNix =>.Moritz Bunkus
O42 - Logiciel: Module externe DxO OpticsPro 11 pour Adobe Lightroom - (.DxO Labs.) [HKLM][64Bits] -- {13E8E1D4-CA2E-4A5C-BBD4-EB4F7CA66014} =>.DxO Labs
O42 - Logiciel: MozBackup 1.5.1 - (.Pavel Cvrcek.) [HKLM][64Bits] -- MozBackup =>.Pavel Cvrcek
O42 - Logiciel: Mozilla Firefox 56.0.1 (x64 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 56.0.1 (x64 fr) =>.Mozilla Corporation®
O42 - Logiciel: MPC-HC 1.7.13 (64-bit) - (.MPC-HC Team.) [HKLM][64Bits] -- {2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1 =>.Fotis Zafiropoulos®
O42 - Logiciel: NetLimiter 4 - (.Locktime Software.) [HKLM][64Bits] -- {9603A9C1-8914-4E85-82AB-7E3806B04086} =>.Locktime Software
O42 - Logiciel: NetLimiter 4 - (.Locktime Software.) [HKLM][64Bits] -- NetLimiter 4 4.0.31.0 =>.Locktime Software
O42 - Logiciel: NetWorx 5.5.5 - (.Softperfect.) [HKLM][64Bits] -- NetWorx_is1 =>.SoftPerfect
O42 - Logiciel: NewFolderEx (remove only) - (..) [HKLM][64Bits] -- NewFolderEx
O42 - Logiciel: Nik Collection - (.Google.) [HKLM][64Bits] -- Nik Collection =>.Google Inc®
O42 - Logiciel: NirSoft WebBrowserPassView - (.NirSoft.) [HKLM][64Bits] -- NirSoft WebBrowserPassView =>.NirSoft
O42 - Logiciel: OEM Registration Program - (.Toshiba Corporation.) [HKLM][64Bits] -- {B69F4E72-CCA4-4352-BF1C-708CE3D96E25} =>.Toshiba Corporation
O42 - Logiciel: Office 16 Click-to-Run Extensibility Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-008C-0000-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Office 16 Click-to-Run Licensing Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-007E-0000-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Office 16 Click-to-Run Localization Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-008C-040C-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Old Calculator for Windows 10 - (.http://winaero.com.) [HKLM][64Bits] -- OldCalcForWin10 =>.http://winaero.com
O42 - Logiciel: Old Task Manager for Windows 10 - (.http://winaero.com.) [HKLM][64Bits] -- Old Task Manager for Windows 10 =>.http://winaero.com
O42 - Logiciel: PC8DeviceAgent 2.1.191 - (.SRM, Inc..) [HKLM][64Bits] -- PC8DeviceAgent
O42 - Logiciel: PCあんしん点検ユーティリティ - (.Toshiba Corporation.) [HKLM][64Bits] -- {D9CD7DB3-E2BE-4BC6-85A6-EF9235C0B096} =>.Toshiba Corporation
O42 - Logiciel: PDF-Viewer - (.Tracker Software Products Ltd.) [HKLM][64Bits] -- {A278382D-4F1B-4D47-9885-8523F7261E8D}_is1 =>.Tracker Software Products (Canada) Ltd®
O42 - Logiciel: photoFXlab - (.Topaz Labs.) [HKLM][64Bits] -- photoFXlab =>.Topaz Labs
O42 - Logiciel: Photomatix Pro version 6.0.1 - (.HDRsoft Ltd.) [HKLM][64Bits] -- PhotomatixPro6x64_is1 =>.HDRsoft Ltd
O42 - Logiciel: PhotoWizard - (.Microsoft.) [HKLM][64Bits] -- {3C100F93-4F0E-4C32-9AEB-EFB3E2CA34F8} =>.Microsoft
O42 - Logiciel: Prey Anti-Theft - (.Prey, Inc..) [HKLM][64Bits] -- {4D91189D-F5FD-45A9-B63E-58291ADA338B} =>.Prey, Inc.
O42 - Logiciel: Prey Anti-Theft - (.Prey, Inc..) [HKLM][64Bits] -- {C18974B2-3B85-4F55-BBA7-6D2D7867C31E} =>.Prey, Inc.
O42 - Logiciel: QuickLook - (.Paddy Xu.) [HKLM][64Bits] -- {571EDFC6-06D2-4DB3-BB47-A52FAC2ECEE1}
O42 - Logiciel: Rainmeter - (.kimmo.pekkola.) [HKLM][64Bits] -- Rainmeter
O42 - Logiciel: Realtek Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {5BC2B5AB-80DE-4E83-B8CF-426902051D0A} =>.Realtek Semiconductor Corp.®
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} =>.Realtek Semiconductor Corp®
O42 - Logiciel: Registry Finder 2.21.1 - (.Sergey Filippov.) [HKLM][64Bits] -- {CC3C7E59-8611-4542-8BFD-FFC6759AD0FB}_is1
O42 - Logiciel: RocketDock 1.3.5 - (.Punk Software.) [HKLM][64Bits] -- RocketDock_is1 =>.Punk Software
O42 - Logiciel: Rockstar Games Social Club - (.Rockstar Games.) [HKLM][64Bits] -- Rockstar Games Social Club =>.Rockstar Games, Inc.®
O42 - Logiciel: Scrabble solutions - (..) [HKCU][64Bits] -- Scrabble solutions
O42 - Logiciel: scrabbleproB 1.1.7 - (.scrabblepro.) [HKLM][64Bits] -- scrabbleproB_is1 =>.scrabblepro
O42 - Logiciel: ServiceCommander Version 4 - (.Core Technologies Consulting, LLC.) [HKLM][64Bits] -- ServiceCommander_is1 =>.Core Technologies Consulting, LLC®
O42 - Logiciel: Setup - (.Corel Corporation.) [HKLM][64Bits] -- {EE1DF8F8-24D8-4287-816B-E67B03460CEE} =>.Corel Corporation
O42 - Logiciel: Share64 - (.Corel Corporation.) [HKLM][64Bits] -- {5F5C5CC6-3457-4D8B-A716-85CC964C4533} =>.Corel Corporation
O42 - Logiciel: Simple Sticky Notes 3.6.1 - (.Simnet Ltd..) [HKLM][64Bits] -- Simple Sticky Notes_is1 =>.Simnet Ltd.
O42 - Logiciel: Soldats Inconnus Mémoires de la Grande Guerre 1.0.140373 - (.Huyustus.) [HKLM][64Bits] -- Soldats Inconnus Mémoires de la Grande Guerre 1.0.140373 =>.Huyustus
O42 - Logiciel: Spacewar - (.Valve.) [HKLM][64Bits] -- Steam App 480 =>.Valve®
O42 - Logiciel: SRMX - (.SRM.) [HKLM][64Bits] -- {de.srm.srmx.Main}}_is1
O42 - Logiciel: SumatraPDF - (.Krzysztof Kowalczyk.) [HKLM][64Bits] -- SumatraPDF =>.Krzysztof Kowalczyk®
O42 - Logiciel: SuperCopier2 - (.SFX Team.) [HKLM][64Bits] -- SuperCopier2 =>.SFX TEAM
O42 - Logiciel: Switcher 2.0.0 - (.Bao Nguyen.) [HKLM][64Bits] -- {F7DB6677-661D-4835-AAD8-1B7F4C98D7CE} =>.Bao Nguyen
O42 - Logiciel: SyncBackFree - (.2BrightSparks.) [HKLM][64Bits] -- SyncBackFree_is1 =>.2BrightSparks Pte. Ltd.®
O42 - Logiciel: Textify v1.6.2 - (.RaMMicHaeL.) [HKCU][64Bits] -- Textify =>.RaMMicHaeL
O42 - Logiciel: The Bat! v7.4.16 (64-bit) - (.Ritlabs, SRL.) [HKLM][64Bits] -- {BD704984-2F13-4EF3-90BD-38C949CE1D22} =>.Ritlabs, SRL
O42 - Logiciel: Topaz Adjust 5 - (.Topaz Labs, LLC.) [HKLM][64Bits] -- Topaz Adjust 5 =>.Topaz Labs, LLC
O42 - Logiciel: Topaz B&W Effects - (.Topaz Labs, LLC.) [HKLM][64Bits] -- Topaz BW Effects 2 =>.Topaz Labs, LLC
O42 - Logiciel: Topaz Clarity - (.Topaz Labs, LLC.) [HKLM][64Bits] -- Topaz Clarity =>.Topaz Labs, LLC
O42 - Logiciel: Topaz Clean 3 - (.Topaz Labs, LLC.) [HKLM][64Bits] -- Topaz Clean 3 =>.Topaz Labs, LLC
O42 - Logiciel: Topaz DeJpeg 4 - (.Topaz Labs, LLC.) [HKLM][64Bits] -- Topaz DeJpeg 4 =>.Topaz Labs, LLC
O42 - Logiciel: Topaz DeNoise 6 - (.Topaz Labs, LLC.) [HKLM][64Bits] -- Topaz DeNoise 6 =>.Topaz Labs, LLC
O42 - Logiciel: Topaz Detail 3 - (.Topaz Labs, LLC.) [HKLM][64Bits] -- Topaz Detail 3 =>.Topaz Labs, LLC
O42 - Logiciel: Topaz Fusion Express 2 - (.Topaz Labs, LLC.) [HKLM][64Bits] -- Topaz Fusion Express 2 =>.Topaz Labs, LLC
O42 - Logiciel: Topaz Glow 2 - (.Topaz Labs, LLC.) [HKLM][64Bits] -- Topaz Glow 2 =>.Topaz Labs, LLC
O42 - Logiciel: Topaz Impression 2 - (.Topaz Labs, LLC.) [HKLM][64Bits] -- Topaz Impression 2 =>.Topaz Labs, LLC
O42 - Logiciel: Topaz InFocus - (.Topaz Labs, LLC.) [HKLM][64Bits] -- Topaz InFocus =>.Topaz Labs, LLC
O42 - Logiciel: Topaz Lens Effects - (.Topaz Labs, LLC.) [HKLM][64Bits] -- Topaz Lens Effects =>.Topaz Labs, LLC
O42 - Logiciel: Topaz ReMask 5 - (.Topaz Labs, LLC.) [HKLM][64Bits] -- Topaz ReMask 5 =>.Topaz Labs, LLC
O42 - Logiciel: Topaz ReStyle - (.Topaz Labs, LLC.) [HKLM][64Bits] -- Topaz ReStyle =>.Topaz Labs, LLC
O42 - Logiciel: Topaz Simplify 4 - (.Topaz Labs, LLC.) [HKLM][64Bits] -- Topaz Simplify 4 =>.Topaz Labs, LLC
O42 - Logiciel: Topaz Star Effects - (.Topaz Labs, LLC.) [HKLM][64Bits] -- Topaz Star Effects =>.Topaz Labs, LLC
O42 - Logiciel: Topaz Texture Effects 2 - (.Topaz Labs, LLC.) [HKLM][64Bits] -- Topaz Texture Effects 2 =>.Topaz Labs, LLC
O42 - Logiciel: TOSHIBA Blu-ray Disc Player - (.Toshiba Corporation.) [HKLM][64Bits] -- {FF07604E-C860-40E9-A230-E37FA41F103A} =>.Toshiba Corporation
O42 - Logiciel: TOSHIBA Desktop Assist - (.Toshiba Corporation.) [HKLM][64Bits] -- {C4CDCEF0-0A7A-4425-887C-33E39533D758} =>.Toshiba Corporation
O42 - Logiciel: TOSHIBA eco Utility - (.Toshiba Corporation.) [HKLM][64Bits] -- {72EFCFA8-3923-451D-AF52-7CE9D87BC2A1} =>.Toshiba Corporation
O42 - Logiciel: TOSHIBA PalaDouga - (.Toshiba Corporation.) [HKLM][64Bits] -- {21CEB4A6-0FF1-444F-A0CC-6F648F74C7F6} =>.Toshiba Corporation
O42 - Logiciel: TOSHIBA Password Utility - (.Toshiba Corporation.) [HKLM][64Bits] -- {CD4B9E2C-4295-4920-82F2-C87113822E32} =>.Toshiba Corporation
O42 - Logiciel: TOSHIBA PC Health Monitor - (.Toshiba Corporation.) [HKLM][64Bits] -- {B507386D-1F61-4E55-B05B-F56ACB0086B3} =>.Toshiba Corporation
O42 - Logiciel: Toshiba Quality Application - (.TOSHIBA.) [HKLM][64Bits] -- {716C8275-A4A9-48CB-88C0-9829334CA3C5} =>.Toshiba
O42 - Logiciel: TOSHIBA Recovery Media Creator - (.Toshiba Corporation.) [HKLM][64Bits] -- {B65BBB06-1F8E-48F5-8A54-B024A9E15FDF} =>.TOSHIBA CORPORATION®
O42 - Logiciel: TOSHIBA Service Station - (.Toshiba Corporation.) [HKLM][64Bits] -- {4E688A2F-C4FB-4606-9282-1045B79CBFE2} =>.Toshiba Corporation
O42 - Logiciel: TOSHIBA Speech Synthesis - (.Toshiba Corporation.) [HKLM][64Bits] -- {36B0B896-6CD8-4C5F-B7E1-2AC8E9588ACC} =>.Toshiba Corporation
O42 - Logiciel: TOSHIBA System Driver - (.Toshiba Corporation.) [HKLM][64Bits] -- {1E6A96A1-2BAB-43EF-8087-30437593C66C} =>.Toshiba Corporation
O42 - Logiciel: TOSHIBA System Settings - (.Toshiba Corporation.) [HKLM][64Bits] -- {4D57ED72-6B01-40BD-9CA9-012B8FC09CEB} =>.Toshiba Corporation
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player =>.VideoLAN
O42 - Logiciel: VMware vCenter Converter Standalone - (.VMware, Inc..) [HKLM][64Bits] -- {70487A14-885E-4203-80E6-6FE7AA5FDA8C} =>.VMware, Inc.
O42 - Logiciel: VMware Workstation - (.VMware, Inc..) [HKLM][64Bits] -- {E374BA09-9CD0-4F58-90EE-F8C1488BC81E} =>.VMware, Inc.
O42 - Logiciel: VSClassic64 - (.Corel Corporation.) [HKLM][64Bits] -- {AE666608-C3B5-46F0-BAFA-B0A7BEE058F5} =>.Corel Corporation
O42 - Logiciel: Win10 Spy Disabler v1.4 - (.site2unblock.com.) [HKLM][64Bits] -- Win10 Spy Disabler_is1 =>.site2unblock.com
O42 - Logiciel: WinDirStat 1.1.2 - (.Seifert Systems.) [HKCU][64Bits] -- WinDirStat =>.Seifert Systems
O42 - Logiciel: WindowManager - (.DeskSoft.) [HKLM][64Bits] -- WindowManager =>.DeskSoft
O42 - Logiciel: Windows 10 Manager - (.Yamicsoft.) [HKCU][64Bits] -- Windows 10 Manager 2.1.7 =>.Yamicsoft
O42 - Logiciel: Windows 10 Manager - (.Yamicsoft.) [HKLM][64Bits] -- {24AFDB39-7D45-4724-866B-A8EEAFA71186} =>.Yamicsoft
O42 - Logiciel: Windows 10 Manager - (.Yamicsoft.) [HKLM][64Bits] -- {DC63955E-98AF-4858-AEC7-1C2843D77C85} =>.Yamicsoft
O42 - Logiciel: Windows Explorer Tracker 2.0 - (.TriSun Software Inc..) [HKLM][64Bits] -- Windows Explorer Tracker_is1
O42 - Logiciel: WinPcap 4.1.3 - (.Riverbed Technology, Inc..) [HKLM][64Bits] -- WinPcapInst =>.Riverbed Technology, Inc.
O42 - Logiciel: WinRAR 5.40 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver =>.win.rar GmbH®
O42 - Logiciel: WinSplit Revolution (v11.04) - (.Raphael Lencrerot.) [HKLM][64Bits] -- WinSplit Revolution
O42 - Logiciel: WinUAE 3.5.0 - (.Arabuusimiehet.) [HKLM][64Bits] -- {D6C0EFC7-6FA8-4482-9C9B-D9100844AFE3}
O42 - Logiciel: Wireshark 2.4.1 64-bit - (.The Wireshark developer community, https://www.wireshark.org.) [HKLM][64Bits] -- Wireshark =>.Wireshark Foundation, Inc.®
O42 - Logiciel: XnConvert 1.74 - (.Gougelet Pierre-e.) [HKLM][64Bits] -- XnConvert_is1 =>.Pierre GOUGELET®
O42 - Logiciel: XnView Shell Extension 3.5.1 (64bits) - (.Gougelet Pierre-e.) [HKLM][64Bits] -- XnView Shell Extension_is1 =>.Pierre GOUGELET®
O42 - Logiciel: 東芝スクリーンミラーリング - (.APUSONE Technology Inc..) [HKLM][64Bits] -- {FB840BB8-82D9-43F8-B7AD-C1DE01185294}
O42 - Logiciel: 東芝スクリーンミラーリング for スマートフォン/タブレット - (.APUSONE Technology Inc..) [HKLM][64Bits] -- InstallShield_{FB840BB8-82D9-43F8-B7AD-C1DE01185294}
---\\ HKCU & HKLM Software Keys (210) - 20s
HKLM\SOFTWARE\Wow6432Node\2BrightSparks =>.Ignite Realtime
HKLM\SOFTWARE\Wow6432Node\abelhadigital.com =>.abelhadigital.com
HKLM\SOFTWARE\Wow6432Node\Adobe =>.Adobe
HKLM\SOFTWARE\Wow6432Node\Anki =>.Damien Elmes
HKLM\SOFTWARE\Wow6432Node\APUSONE
HKLM\SOFTWARE\Wow6432Node\ASIO =>.Steinberg Media Technologies
HKLM\SOFTWARE\Wow6432Node\ASIO4ALL =>.Michael Tippach
HKLM\SOFTWARE\Wow6432Node\Axonic =>.Axonic
HKLM\SOFTWARE\Wow6432Node\Brother =>.Brother
HKLM\SOFTWARE\Wow6432Node\Caphyon =>.Caphyon
HKLM\SOFTWARE\Wow6432Node\CMEDIA USB2.0 Audio Device
HKLM\SOFTWARE\Wow6432Node\Core Technologies Consulting
HKLM\SOFTWARE\Wow6432Node\Cyberlink =>.CyberLink Corporation
HKLM\SOFTWARE\Wow6432Node\DeskSoft =>.DeskSoft
HKLM\SOFTWARE\Wow6432Node\DFX =>.DFX Power Technology
HKLM\SOFTWARE\Wow6432Node\DTS =>.Creative Technology
HKLM\SOFTWARE\Wow6432Node\DTS, Inc. =>.DTS, Inc.
HKLM\SOFTWARE\Wow6432Node\EaseUS =>.EaseUS Software
HKLM\SOFTWARE\Wow6432Node\ESET =>.ESET
HKLM\SOFTWARE\Wow6432Node\FastStone Image Viewer =>.FastStone Soft
HKLM\SOFTWARE\Wow6432Node\FastStone MaxView
HKLM\SOFTWARE\Wow6432Node\foobar2000 =>.Peter Pawlowski
HKLM\SOFTWARE\Wow6432Node\Fujisoft
HKLM\SOFTWARE\Wow6432Node\Google =>.Google
HKLM\SOFTWARE\Wow6432Node\HD Sentinel =>.HD Sentinel
HKLM\SOFTWARE\Wow6432Node\InstallShield =>.InstallShield
HKLM\SOFTWARE\Wow6432Node\Intel =>.Intel
HKLM\SOFTWARE\Wow6432Node\IObit =>.IObit
HKLM\SOFTWARE\Wow6432Node\JavaSoft =>.JavaSoft
HKLM\SOFTWARE\Wow6432Node\JreMetrics =>.JreMetrics
HKLM\SOFTWARE\Wow6432Node\Khronos =>.Khronos
HKLM\SOFTWARE\Wow6432Node\Lake =>.Lake Sofware
HKLM\SOFTWARE\Wow6432Node\Locktime Software =>.Locktime Software
HKLM\SOFTWARE\Wow6432Node\macrium =>.Macrium
HKLM\SOFTWARE\Wow6432Node\Macromedia =>.Macromedia
HKLM\SOFTWARE\Wow6432Node\Mozilla =>.Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org =>.mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins =>.MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\Nuance =>.Nuance
HKLM\SOFTWARE\Wow6432Node\ODBC =>.DB Connectivity Solutions
HKLM\SOFTWARE\Wow6432Node\Piriform =>.Piriform
HKLM\SOFTWARE\Wow6432Node\PowerTechnology =>.PowerTechnology
HKLM\SOFTWARE\Wow6432Node\Prey
HKLM\SOFTWARE\Wow6432Node\Rainmeter =>.Rainmeter
HKLM\SOFTWARE\Wow6432Node\Realtek =>.Realtek Semiconductor Corp.
HKLM\SOFTWARE\Wow6432Node\Realtek Semiconductor Corp. =>.Realtek Semiconductor Corp.
HKLM\SOFTWARE\Wow6432Node\Rockstar Games =>.Rockstar Games
HKLM\SOFTWARE\Wow6432Node\RTS
HKLM\SOFTWARE\Wow6432Node\Runtime Software =>.Runtime Software
HKLM\SOFTWARE\Wow6432Node\sMedio =>.sMedio
HKLM\SOFTWARE\Wow6432Node\Software =>.Unknown
HKLM\SOFTWARE\Wow6432Node\Sonic =>.Sonic
HKLM\SOFTWARE\Wow6432Node\SRS Labs =>.SRS Labs
HKLM\SOFTWARE\Wow6432Node\TeamViewer =>.TeamViewer
HKLM\SOFTWARE\Wow6432Node\TechSmith =>.TechSmith
HKLM\SOFTWARE\Wow6432Node\ThinPrint =>.ThinPrint
HKLM\SOFTWARE\Wow6432Node\Topaz Labs =>.Topaz Labs
HKLM\SOFTWARE\Wow6432Node\TOSHIBA =>.Toshiba Corporation
HKLM\SOFTWARE\Wow6432Node\Toshiba Corporation =>.Toshiba Corporation
HKLM\SOFTWARE\Wow6432Node\Valve =>.Valve
HKLM\SOFTWARE\Wow6432Node\VirtualWiFi
HKLM\SOFTWARE\Wow6432Node\VMware, Inc. =>.VMware, Inc.
HKLM\SOFTWARE\Wow6432Node\Volatile =>.Microsoft Corporation
HKLM\SOFTWARE\Wow6432Node\Winaero.com =>.Winaero
HKLM\SOFTWARE\Wow6432Node\WinPcap =>.Riverbed Technology
HKLM\SOFTWARE\Wow6432Node\WinSplit Revolution
HKLM\SOFTWARE\Wow6432Node\WOW6432Node =>.Microsoft Corporation
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications =>.Microsoft Corporation
HKCU\SOFTWARE\2BrightSparks =>.Ignite Realtime
HKCU\SOFTWARE\3766396
HKCU\SOFTWARE\3RVX
HKCU\SOFTWARE\7 Taskbar Tweaker
HKCU\SOFTWARE\AcoustIDPlugin =>.Intermedia Software
HKCU\SOFTWARE\Adobe =>.Adobe
HKCU\SOFTWARE\Adobe Lightroom =>.Adobe Inc.
HKCU\SOFTWARE\Agnitum =>.Agnitum
HKCU\SOFTWARE\Akeo Consulting =>.Akeo Consulting
HKCU\SOFTWARE\Alps =>.ALPS
HKCU\SOFTWARE\Amazon =>.Amazon
HKCU\SOFTWARE\AppDataLow =>.Microsoft Corporation
HKCU\SOFTWARE\Apple Computer, Inc. =>.Apple Computer, Inc.
HKCU\SOFTWARE\Apple Inc. =>.Apple Inc.
HKCU\SOFTWARE\Arabuusimiehet
HKCU\SOFTWARE\Arasan =>.Jon Dart
HKCU\SOFTWARE\ASIO4ALL v2 by Wuschel =>.Unknown
HKCU\SOFTWARE\AWSoftware =>.AWSoftware
HKCU\SOFTWARE\Axonic =>.Axonic
HKCU\SOFTWARE\Bitsum =>.Bitsum
HKCU\SOFTWARE\Brightsoft
HKCU\SOFTWARE\bunkus.org =>.bunkus.org
HKCU\SOFTWARE\Caphyon =>.Caphyon
HKCU\SOFTWARE\Chromium =>.Chromium
HKCU\SOFTWARE\Circitor =>.Circitor
HKCU\SOFTWARE\Core Technologies Consulting
HKCU\SOFTWARE\Corel =>.Corel
HKCU\SOFTWARE\CyberLink =>.CyberLink Corporation
HKCU\SOFTWARE\Cygwin =>.Cygwin
HKCU\SOFTWARE\DFX =>.DFX Power Technology
HKCU\SOFTWARE\DxO Labs =>.DxO Labs
HKCU\SOFTWARE\DxOLabs =>.DxO Labs
HKCU\SOFTWARE\EaseUS =>.EaseUS Software
HKCU\SOFTWARE\eBookConverter
HKCU\SOFTWARE\EFD Software =>.EFD Software
HKCU\SOFTWARE\Embarcadero =>.Embarcadero
HKCU\SOFTWARE\ESET =>.ESET
HKCU\SOFTWARE\Eusing Clock
HKCU\SOFTWARE\FinalWire =>.FinalWire
HKCU\SOFTWARE\foobar2000 =>.Peter Pawlowski
HKCU\SOFTWARE\Gest
HKCU\SOFTWARE\Google =>.Google
HKCU\SOFTWARE\GRETECH =>.Gretech
HKCU\SOFTWARE\HashTab =>.Implbits Software
HKCU\SOFTWARE\HB Studios Multimedia Ltd. =>.HB Studios Multimedia Ltd.
HKCU\SOFTWARE\HDRsoft =>.HDRsoft
HKCU\SOFTWARE\Hiro's tool
HKCU\SOFTWARE\HotSwap!
HKCU\SOFTWARE\Icaros =>.Icaros
HKCU\SOFTWARE\Illustrate =>.Illustrate
HKCU\SOFTWARE\IM Providers =>.IM Providers
HKCU\SOFTWARE\Intel =>.Intel
HKCU\SOFTWARE\InternetOff
HKCU\SOFTWARE\InterVideo =>.InterVideo
HKCU\SOFTWARE\ITSamples
HKCU\SOFTWARE\IvoSoft =>.IvoSoft
HKCU\SOFTWARE\JavaSoft =>.JavaSoft
HKCU\SOFTWARE\KC Softwares =>.KC Softwares
HKCU\SOFTWARE\Kolor =>.Kolor
HKCU\SOFTWARE\Lake =>.Lake Sofware
HKCU\SOFTWARE\LinkEngine
HKCU\SOFTWARE\LinkShellExtension
HKCU\SOFTWARE\Logitech =>.Logitech
HKCU\SOFTWARE\Logo =>.Unknown
HKCU\SOFTWARE\LopeSoft =>.LopeSoft
HKCU\SOFTWARE\macrium =>.Macrium
HKCU\SOFTWARE\Macrium.ReflectMonitor
HKCU\SOFTWARE\Macromedia =>.Macromedia
HKCU\SOFTWARE\MainConcept =>.MainConcept AG
HKCU\SOFTWARE\MakeMKV =>.GuinpinSoft inc
HKCU\SOFTWARE\MediaArea
HKCU\SOFTWARE\Medieval =>.Medieval
HKCU\SOFTWARE\Mine =>.Microsoft Corporation
HKCU\SOFTWARE\Mozilla =>.Mozilla
HKCU\SOFTWARE\Mozilla Backup =>.Mozilla Corporation
HKCU\SOFTWARE\MozillaPlugins =>.MozillaPlugins
HKCU\SOFTWARE\MPC-HC =>.MPC-HC Team
HKCU\SOFTWARE\MT66
HKCU\SOFTWARE\Namida =>.Namida Diamond Factory Ltd
HKCU\SOFTWARE\Netscape =>.Netscape
HKCU\SOFTWARE\O&O =>.O&O Software GmbH
HKCU\SOFTWARE\ODBC =>.DB Connectivity Solutions
HKCU\SOFTWARE\OTi
HKCU\SOFTWARE\Pangolin
HKCU\SOFTWARE\Paramount Software (UK) Ltd. =>.Paramount Software (UK) Ltd.
HKCU\SOFTWARE\Piriform =>.Piriform
HKCU\SOFTWARE\PortableAppC
HKCU\SOFTWARE\ProcessLasso =>.Bitsum Technologies
HKCU\SOFTWARE\PurkdellApps
HKCU\SOFTWARE\QtProject =>.QtProject
HKCU\SOFTWARE\RBSoft
HKCU\SOFTWARE\Realtek =>.Realtek Semiconductor Corp.
HKCU\SOFTWARE\RegisteredApplications =>.Microsoft Corporation
HKCU\SOFTWARE\RIT
HKCU\SOFTWARE\Ritlabs =>.Ritlabs
HKCU\SOFTWARE\RocketDock =>.Punk Software
HKCU\SOFTWARE\Rockstar Games =>.Rockstar Games
HKCU\SOFTWARE\Seifert =>.Seifert Systems
HKCU\SOFTWARE\SFX TEAM =>.SFX TEAM
HKCU\SOFTWARE\ShellFolderFix =>.Legitimate
HKCU\SOFTWARE\SimBin
HKCU\SOFTWARE\Simnet =>.Simnet Ltd
HKCU\SOFTWARE\Spoon =>.Spoon Software
HKCU\SOFTWARE\SRM Training System
HKCU\SOFTWARE\SyncEngines =>.Microsoft Corporation
HKCU\SOFTWARE\Sysinternals =>.Sysinternals
HKCU\SOFTWARE\Tapstar Interactive
HKCU\SOFTWARE\TCP Optimizer =>.Speed Guide, Inc
HKCU\SOFTWARE\TeamViewer =>.TeamViewer
HKCU\SOFTWARE\techPowerUp =>.TechPowerUp
HKCU\SOFTWARE\TechSmith =>.TechSmith
HKCU\SOFTWARE\Teorex =>.Teorex
HKCU\SOFTWARE\Textify
HKCU\SOFTWARE\TIE
HKCU\SOFTWARE\Tihiy
HKCU\SOFTWARE\Topaz Labs =>.Topaz Labs
HKCU\SOFTWARE\TopazLabs =>.Topaz Labs
HKCU\SOFTWARE\Toshiba =>.Toshiba Corporation
HKCU\SOFTWARE\Tracker Software =>.Tracker Software
HKCU\SOFTWARE\Trolltech =>.Trolltech
HKCU\SOFTWARE\Tryon
HKCU\SOFTWARE\Ulead =>.Ulead Systems
HKCU\SOFTWARE\Ulead Systems =>.Ulead Systems
HKCU\SOFTWARE\Unity =>.Unity
HKCU\SOFTWARE\Valve =>.Valve
HKCU\SOFTWARE\VB and VBA Program Settings =>.Microsoft Corporation
HKCU\SOFTWARE\VMware, Inc. =>.VMware, Inc.
HKCU\SOFTWARE\WhoStalksMyCam
HKCU\SOFTWARE\Winaero.com =>.Winaero
HKCU\SOFTWARE\WindowsPrivacyTweaker =>.Phrozen Software
HKCU\SOFTWARE\WinRAR =>.WinRAR
HKCU\SOFTWARE\WinRAR SFX =>.RarLab
HKCU\SOFTWARE\Wireshark =>.Wireshark
HKCU\SOFTWARE\Woozle
HKCU\SOFTWARE\Wow6432Node =>.Microsoft Corporation
HKCU\SOFTWARE\XnView =>.Pierre-Emmanuel Gougelet
HKCU\SOFTWARE\XTZY
HKCU\SOFTWARE\Yamicsoft =>.Yamicsoft
HKCU\SOFTWARE\ZebHelpProcess Helper =>.Nicolas Coolman
HKCU\SOFTWARE\Zentimo
HKCU\SOFTWARE\ZHP =>.Nicolas Coolman
HKCU\SOFTWARE\AppDataLow\Software =>.Microsoft Corporation
---\\ Contenu des dossiers Programmes (502) - 18s
O43 - CFD: 25/06/2016 - [] D -- C:\Program Files\Acrylic Wi-Fi Home =>.Acrylic
O43 - CFD: 20/10/2017 - [] AD -- C:\Program Files\Adobe =>.Adobe Systems Incorporated®
O43 - CFD: 19/10/2017 - [] AD -- C:\Program Files\Apoint2K =>.Alps Electric Co., LTD.®
O43 - CFD: 19/10/2017 - [] AD -- C:\Program Files\Argente Utilities
O43 - CFD: 07/10/2016 - [] D -- C:\Program Files\AutoHotkey =>.Chicony Multimedia
O43 - CFD: 06/12/2016 - [] D -- C:\Program Files\CINEBENCH R15.038_RC184115 =>.MAXON Computer GmbH®
O43 - CFD: 14/08/2017 - [] D -- C:\Program Files\Classic Shell =>.Ivo Beltchev
O43 - CFD: 26/04/2017 - [] AD -- C:\Program Files\Classic Sticky Notes
O43 - CFD: 20/10/2017 - [] D -- C:\Program Files\Common Files =>.Microsoft Corporation
O43 - CFD: 06/06/2016 - [] D -- C:\Program Files\Corel =>.Corel Corporation
O43 - CFD: 13/09/2017 - [] D -- C:\Program Files\CPU-Z =>.CPUID Inc
O43 - CFD: 02/07/2017 - [] AD -- C:\Program Files\DiskFresh
O43 - CFD: 24/04/2017 - [] D -- C:\Program Files\DxO Labs =>.DxO Labs
O43 - CFD: 14/07/2017 - [] D -- C:\Program Files\Easy Context Menu
O43 - CFD: 05/06/2016 - [] D -- C:\Program Files\ESET =>.ESET, spol. s r.o.®
O43 - CFD: 14/07/2016 - [] AD -- C:\Program Files\FolderIco =>.Shedko Software
O43 - CFD: 22/08/2016 - [] D -- C:\Program Files\Google =>.Google Inc®
O43 - CFD: 15/09/2017 - [] AD -- C:\Program Files\Greenshot =>.Open Source Developer, Robin Krom®
O43 - CFD: 01/11/2016 - [] D -- C:\Program Files\Handbrake =>.Handbrake
O43 - CFD: 02/07/2016 - [] D -- C:\Program Files\HashTab Shell Extension =>.Implbits Software
O43 - CFD: 29/04/2017 - [] AD -- C:\Program Files\Icaros
O43 - CFD: 19/10/2017 - [] D -- C:\Program Files\Intel =>.Intel Corporation
O43 - CFD: 19/10/2017 - [] D -- C:\Program Files\internet explorer =>.Microsoft Corporation
O43 - CFD: 19/02/2017 - [] AD -- C:\Program Files\IrfanView =>.Irfan skiljan
O43 - CFD: 20/10/2017 - [] D -- C:\Program Files\Java =>.Oracle
O43 - CFD: 14/06/2017 - [] D -- C:\Program Files\Kolor =>.Kolor
O43 - CFD: 13/06/2016 - [] D -- C:\Program Files\LinkShellExtension
O43 - CFD: 07/08/2017 - [] D -- C:\Program Files\Locktime Software =>.Locktime Software
O43 - CFD: 12/10/2017 - [] D -- C:\Program Files\Logitech =>.Logitech Inc®
O43 - CFD: 27/09/2017 - [] AD -- C:\Program Files\LRTimelapse 4
O43 - CFD: 25/10/2017 - [] D -- C:\Program Files\Macrium =>.Macrium
O43 - CFD: 05/05/2017 - [] D -- C:\Program Files\MediaInfo =>.Jérôme Martinez
O43 - CFD: 19/10/2017 - [] D -- C:\Program Files\Microsoft =>.Microsoft Corporation
O43 - CFD: 03/08/2016 - [] D -- C:\Program Files\Microsoft LifeCam =>.Microsoft Corporation
O43 - CFD: 20/10/2017 - [] AD -- C:\Program Files\Microsoft Office =>.Microsoft Corporation
O43 - CFD: 15/06/2016 - [] D -- C:\Program Files\Microsoft Office 15 =>.Microsoft Corporation
O43 - CFD: 27/10/2016 - [] AD -- C:\Program Files\Microsoft SQL Server Compact Edition =>.Microsoft Corporation
O43 - CFD: 27/10/2016 - [] D -- C:\Program Files\Microsoft Synchronization Services =>.Microsoft Corporation
O43 - CFD: 21/02/2017 - [] D -- C:\Program Files\MKVToolNix =>.Matroska
O43 - CFD: 10/10/2017 - [] AD -- C:\Program Files\Mozilla Firefox =>.Mozilla
O43 - CFD: 18/07/2017 - [] AD -- C:\Program Files\MPC-HC =>.MPC-HC Team
O43 - CFD: 19/10/2017 - [] D -- C:\Program Files\MSBuild =>.Microsoft Corporation
O43 - CFD: 01/01/2017 - [] AD -- C:\Program Files\NetWorx =>.SOFTPERFECT PTY. LTD.®
O43 - CFD: 30/08/2017 - [] D -- C:\Program Files\Notepad++ =>.Don Ho
O43 - CFD: 04/06/2017 - [] AD -- C:\Program Files\PhotomatixPro6
O43 - CFD: 01/10/2017 - [] D -- C:\Program Files\Rainmeter =>.kimmo.pekkola
O43 - CFD: 19/10/2017 - [] D -- C:\Program Files\Realtek =>.Realtek
O43 - CFD: 19/10/2017 - [] D -- C:\Program Files\Reference Assemblies =>.Microsoft Corporation
O43 - CFD: 29/08/2017 - [] AD -- C:\Program Files\Registry Finder
O43 - CFD: 13/03/2017 - [] D -- C:\Program Files\Rockstar Games =>.Rockstar Games, Inc.®
O43 - CFD: 09/06/2016 - [] D -- C:\Program Files\ShellFolderFix64
O43 - CFD: 05/07/2017 - [0] D -- C:\Program Files\Speccy =>.Piriform
O43 - CFD: 02/05/2017 - [] AD -- C:\Program Files\SumatraPDF =>.Krzysztof Kowalczyk
O43 - CFD: 07/07/2016 - [] D -- C:\Program Files\Task Manager
O43 - CFD: 19/06/2017 - [] D -- C:\Program Files\TechSmith =>.TechSmith
O43 - CFD: 06/03/2017 - [] AD -- C:\Program Files\The Bat! {7B6C72E14CC763DFB10B718EA27D8B7D}
O43 - CFD: 28/07/2017 - [] D -- C:\Program Files\TOSHIBA =>.Toshiba Corporation
O43 - CFD: 08/03/2017 - [] AD -- C:\Program Files\Tracker Software =>.Tracker Software
O43 - CFD: 13/02/2016 - [0] HD -- C:\Program Files\Uninstall Information =>.Microsoft Corporation
O43 - CFD: 05/06/2016 - [] D -- C:\Program Files\VideoLAN =>.VideoLan Team
O43 - CFD: 19/03/2017 - [] D -- C:\Program Files\volumouse-x64 =>.Nir Sofer®
O43 - CFD: 19/06/2016 - [] AD -- C:\Program Files\Win10 Spy Disabler =>.Site2unblock
O43 - CFD: 19/10/2017 - [] D -- C:\Program Files\Windows Defender =>.Microsoft Corporation
O43 - CFD: 19/10/2017 - [] D -- C:\Program Files\Windows Defender Advanced Threat Protection =>.Microsoft Corporation
O43 - CFD: 19/10/2017 - [] D -- C:\Program Files\Windows Mail =>.Microsoft Corporation
O43 - CFD: 19/10/2017 - [] D -- C:\Program Files\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [] D -- C:\Program Files\Windows Multimedia Platform =>.Microsoft Corporation
O43 - CFD: 19/10/2017 - [] D -- C:\Program Files\windows nt =>.Microsoft Corporation
O43 - CFD: 19/10/2017 - [] D -- C:\Program Files\Windows Photo Viewer =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [] D -- C:\Program Files\Windows Portable Devices =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [] D -- C:\Program Files\Windows Security =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [] SHD -- C:\Program Files\Windows Sidebar =>.Microsoft Corporation
O43 - CFD: 19/10/2017 - [] HD -- C:\Program Files\WindowsApps =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [] D -- C:\Program Files\WindowsPowerShell =>.Microsoft Corporation
O43 - CFD: 16/08/2016 - [] AD -- C:\Program Files\WinRAR =>.win.rar GmbH®
O43 - CFD: 31/08/2017 - [] AD -- C:\Program Files\Wireshark =>.Wireshark
O43 - CFD: 06/04/2017 - [] AD -- C:\Program Files\XnConvert =>.Pierre Gougelet
O43 - CFD: 12/06/2016 - [] D -- C:\Program Files\XnView =>.Pierre-Emmanuel Gougelet
O43 - CFD: 23/07/2017 - [] D -- C:\Program Files\Yamicsoft =>.YAMICSOFT TECHNOLOGY LIMITED®
O43 - CFD: 15/07/2016 - [] D -- C:\Program Files (x86)\2BrightSparks =>.Ignite Realtime
O43 - CFD: 19/03/2017 - [] AD -- C:\Program Files (x86)\3RVX
O43 - CFD: 27/09/2017 - [] AD -- C:\Program Files (x86)\Adobe =>.Adobe Systems Incorporated®
O43 - CFD: 21/05/2017 - [] D -- C:\Program Files (x86)\Anki =>.Damien Elmes
O43 - CFD: 11/09/2016 - [] AD -- C:\Program Files (x86)\Ant Renamer =>.Antoine Potten
O43 - CFD: 20/10/2017 - [] D -- C:\Program Files (x86)\Arasan =>.Jon Dart
O43 - CFD: 30/12/2016 - [] D -- C:\Program Files (x86)\ASIO4ALL v2 =>.Michael Tippach
O43 - CFD: 03/10/2016 - [] AD -- C:\Program Files (x86)\AtHome Camera
O43 - CFD: 26/03/2017 - [] AD -- C:\Program Files (x86)\Audacity =>.Audacity
O43 - CFD: 22/06/2017 - [] D -- C:\Program Files (x86)\Audio Multi Gen
O43 - CFD: 24/10/2017 - [] D -- C:\Program Files (x86)\Ccleaner =>.Piriform Ltd
O43 - CFD: 17/04/2017 - [] AD -- C:\Program Files (x86)\ChessX
O43 - CFD: 30/05/2016 - [0] D -- C:\Program Files (x86)\Cisco =>.Cisco Systems, Inc.
O43 - CFD: 20/10/2017 - [] D -- C:\Program Files (x86)\Common Files =>.Microsoft Corporation
O43 - CFD: 01/08/2017 - [] D -- C:\Program Files (x86)\Corel =>.Corel Corporation
O43 - CFD: 02/07/2017 - [] AD -- C:\Program Files (x86)\Crayon Physics Deluxe
O43 - CFD: 04/08/2017 - [] D -- C:\Program Files (x86)\CrystalDiskInfo =>.Crystal Dew World
O43 - CFD: 01/08/2017 - [] D -- C:\Program Files (x86)\CrystalDiskMark =>.Noriyuki Miyazaki®
O43 - CFD: 10/06/2016 - [] D -- C:\Program Files (x86)\CyberLink =>.CyberLink Corporation
O43 - CFD: 27/10/2017 - [] D -- C:\Program Files (x86)\Destroy Windows 10 Spying
O43 - CFD: 09/10/2016 - [] D -- C:\Program Files (x86)\devmanview-x64 =>.Nir Sofer®
O43 - CFD: 03/09/2016 - [] AD -- C:\Program Files (x86)\DFX =>.DFX Power Technology
O43 - CFD: 25/07/2016 - [] D -- C:\Program Files (x86)\Disk activity indicator
O43 - CFD: 25/10/2016 - [] D -- C:\Program Files (x86)\Drive letter view =>.Nir Sofer®
O43 - CFD: 07/06/2016 - [] D -- C:\Program Files (x86)\DTS, Inc =>.DTS, Inc.®
O43 - CFD: 05/02/2017 - [] AD -- C:\Program Files (x86)\Ear Trumpet
O43 - CFD: 15/08/2017 - [] D -- C:\Program Files (x86)\EaseUS =>.EaseUS Software
O43 - CFD: 19/02/2017 - [] D -- C:\Program Files (x86)\eBook Converter 3.17.210.400 Portable
O43 - CFD: 09/08/2015 - [] D -- C:\Program Files (x86)\EcMenu 1.6
O43 - CFD: 27/10/2017 - [] D -- C:\Program Files (x86)\Everything =>.Everything
O43 - CFD: 06/09/2016 - [] D -- C:\Program Files (x86)\Exact Audio Copy =>.Andre Wiethoff
O43 - CFD: 07/11/2016 - [] D -- C:\Program Files (x86)\Executed programs list =>.Nir Sofer®
O43 - CFD: 01/08/2017 - [] D -- C:\Program Files (x86)\FastStone Image Viewer =>.FastStone Soft
O43 - CFD: 19/02/2017 - [] D -- C:\Program Files (x86)\FastStone MaxView
O43 - CFD: 19/02/2017 - [] D -- C:\Program Files (x86)\FastStone Photo Resizer =>.FastStone Soft
O43 - CFD: 14/04/2017 - [] D -- C:\Program Files (x86)\FileMenuTools
O43 - CFD: 27/10/2017 - [] D -- C:\Program Files (x86)\FileSearchy
O43 - CFD: 28/06/2016 - [] D -- C:\Program Files (x86)\FinalWire =>.FinalWire Kft.®
O43 - CFD: 01/01/2017 - [] D -- C:\Program Files (x86)\flac-1.3.2-win
O43 - CFD: 09/05/2017 - [] D -- C:\Program Files (x86)\Flicflac
O43 - CFD: 04/05/2017 - [] D -- C:\Program Files (x86)\Folder change view =>.Nir Sofer®
O43 - CFD: 10/07/2017 - [] AD -- C:\Program Files (x86)\foobar2000 =>.Peter Pawlowski
O43 - CFD: 23/01/2017 - [] D -- C:\Program Files (x86)\gabnetstats
O43 - CFD: 21/05/2017 - [] D -- C:\Program Files (x86)\Geekbench 4 =>.Primate Labs Inc.®
O43 - CFD: 09/06/2016 - [] D -- C:\Program Files (x86)\Gest
O43 - CFD: 22/08/2016 - [] D -- C:\Program Files (x86)\Google =>.Google Inc®
O43 - CFD: 24/02/2017 - [] D -- C:\Program Files (x86)\GretagMacbeth =>.GretagMacbeth
O43 - CFD: 24/10/2017 - [] AD -- C:\Program Files (x86)\Hard Disk Sentinel =>.H.D.S. Hungary
O43 - CFD: 24/10/2016 - [] AD -- C:\Program Files (x86)\HostsMan
O43 - CFD: 07/11/2016 - [] D -- C:\Program Files (x86)\Installed drivers list-x64
O43 - CFD: 14/03/2017 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information =>.InstallShield
O43 - CFD: 15/07/2017 - [] AD -- C:\Program Files (x86)\Intel =>.Intel Corporation
O43 - CFD: 19/10/2017 - [] D -- C:\Program Files (x86)\Internet Explorer =>.Microsoft Corporation
O43 - CFD: 09/05/2017 - [] AD -- C:\Program Files (x86)\InternetOff =>.Crystal Rich Ltd®
O43 - CFD: 11/03/2017 - [] D -- C:\Program Files (x86)\IObit =>.IObit
O43 - CFD: 06/03/2017 - [] D -- C:\Program Files (x86)\KC Softwares =>.KC Softwares®
O43 - CFD: 07/07/2017 - [] AD -- C:\Program Files (x86)\Kvetka
O43 - CFD: 13/06/2016 - [] AD -- C:\Program Files (x86)\Kyodai Mahjongg 2006 =>.René-Gilles Deberdt
O43 - CFD: 09/10/2016 - [] D -- C:\Program Files (x86)\lastactivityview =>.Nir Sofer®
O43 - CFD: 07/02/2017 - [] D -- C:\Program Files (x86)\loadeddllsview-x64 =>.Nir Sofer®
O43 - CFD: 09/10/2016 - [] D -- C:\Program Files (x86)\MAC Address Scanner
O43 - CFD: 05/06/2017 - [] D -- C:\Program Files (x86)\Mac address view =>.Nir Sofer®
O43 - CFD: 21/10/2017 - [] D -- C:\Program Files (x86)\MakeMKV
O43 - CFD: 23/02/2017 - [] D -- C:\Program Files (x86)\Medieval Software =>.Medieval Software
O43 - CFD: 05/06/2016 - [] D -- C:\Program Files (x86)\MemInfo
O43 - CFD: 03/08/2016 - [] D -- C:\Program Files (x86)\Microsoft LifeCam =>.Microsoft Corporation
O43 - CFD: 27/10/2016 - [] AD -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition =>.Microsoft Corporation
O43 - CFD: 27/10/2016 - [] D -- C:\Program Files (x86)\Microsoft Synchronization Services =>.Microsoft Corporation
O43 - CFD: 19/10/2017 - [] D -- C:\Program Files (x86)\Microsoft.NET =>.Microsoft Corporation
O43 - CFD: 30/05/2016 - [] D -- C:\Program Files (x86)\MozBackup =>.Mozilla
O43 - CFD: 19/10/2017 - [] D -- C:\Program Files (x86)\MSBuild =>.Microsoft Corporation
O43 - CFD: 29/06/2017 - [] D -- C:\Program Files (x86)\Network usage =>.Nir Sofer®
O43 - CFD: 10/09/2016 - [] D -- C:\Program Files (x86)\networkconnectlog =>.Nir Sofer®
O43 - CFD: 03/07/2016 - [] D -- C:\Program Files (x86)\NewFolderEx
O43 - CFD: 07/10/2016 - [] D -- C:\Program Files (x86)\NirSoft =>.NirSoft
O43 - CFD: 10/06/2016 - [] D -- C:\Program Files (x86)\NSIS Uninstall Information =>.MSIS
O43 - CFD: 27/03/2017 - [] D -- C:\Program Files (x86)\NTFS Links View =>.Nir Sofer®
O43 - CFD: 10/05/2017 - [] D -- C:\Program Files (x86)\O&O Shut up W10 =>.O&O Software GmbH®
O43 - CFD: 19/10/2017 - [] D -- C:\Program Files (x86)\OldNewExplorer
O43 - CFD: 21/10/2017 - [] D -- C:\Program Files (x86)\OpenHardwareMonitor
O43 - CFD: 11/12/2014 - [] D -- C:\Program Files (x86)\PalaDouga
O43 - CFD: 22/11/2016 - [] D -- C:\Program Files (x86)\PhotoFiltre7 =>.Antonio Da Cruz
O43 - CFD: 13/09/2017 - [] D -- C:\Program Files (x86)\Prime 95
O43 - CFD: 17/09/2017 - [] D -- C:\Program Files (x86)\Process KO
O43 - CFD: 23/05/2017 - [] D -- C:\Program Files (x86)\ProcessExplorer =>.Microsoft Corporation®
O43 - CFD: 11/04/2015 - [] D -- C:\Program Files (x86)\Realtek =>.Realtek
O43 - CFD: 19/10/2017 - [] D -- C:\Program Files (x86)\Reference Assemblies =>.Microsoft Corporation
O43 - CFD: 11/05/2017 - [] D -- C:\Program Files (x86)\Reset Data Usage - Script
O43 - CFD: 26/02/2017 - [] D -- C:\Program Files (x86)\Resource hacker =>.Angus Johnson
O43 - CFD: 03/04/2017 - [] D -- C:\Program Files (x86)\Right Click Enhancer
O43 - CFD: 09/06/2016 - [] AD -- C:\Program Files (x86)\RocketDock =>.Punk Software
O43 - CFD: 13/03/2017 - [] D -- C:\Program Files (x86)\Rockstar Games =>.Rockstar Games, Inc.®
O43 - CFD: 22/02/2017 - [] AD -- C:\Program Files (x86)\Runtime Software =>.Runtime Software, LLC®
O43 - CFD: 02/07/2017 - [] D -- C:\Program Files (x86)\Scrabble solutions =>.Games Software
O43 - CFD: 27/05/2017 - [] AD -- C:\Program Files (x86)\scrabbleproB1.1 =>.Games Software
O43 - CFD: 06/07/2016 - [] AD -- C:\Program Files (x86)\ServiceCommander =>.Core Technologies Consulting, LLC®
O43 - CFD: 13/05/2017 - [] AD -- C:\Program Files (x86)\Simple Sticky Notes =>.Simnet Bilgisayar Yazilim Hiz. San. ve Tic. Ltd. Sti.®
O43 - CFD: 13/06/2016 - [] AD -- C:\Program Files (x86)\Soldats Inconnus Mémoires de la Grande Guerre =>.Ubisoft Chengdu Co., Ltd.®
O43 - CFD: 18/06/2016 - [] D -- C:\Program Files (x86)\SRM Training System
O43 - CFD: 18/06/2016 - [] AD -- C:\Program Files (x86)\SRMX
O43 - CFD: 24/09/2016 - [] D -- C:\Program Files (x86)\SSD-Z
O43 - CFD: 24/10/2017 - [] D -- C:\Program Files (x86)\Steam =>.Steam Games
O43 - CFD: 01/05/2017 - [] D -- C:\Program Files (x86)\Stick it 1.00.0b
O43 - CFD: 09/06/2016 - [] D -- C:\Program Files (x86)\SuperCopier2 =>.Ultracopier
O43 - CFD: 05/06/2016 - [] D -- C:\Program Files (x86)\Switcher
O43 - CFD: 13/05/2017 - [] D -- C:\Program Files (x86)\Task scheduler view-x64 =>.Nir Sofer®
O43 - CFD: 19/02/2017 - [] D -- C:\Program Files (x86)\Topaz Labs {0A10F7F6DFC59215284F3151CD7F5827} =>.Topaz Labs
O43 - CFD: 15/08/2017 - [] D -- C:\Program Files (x86)\Tor Browser =>.Roger Dingledine
O43 - CFD: 07/06/2016 - [] D -- C:\Program Files (x86)\Toshiba =>.Toshiba Corporation
O43 - CFD: 15/10/2017 - [] D -- C:\Program Files (x86)\turned on times view =>.Nir Sofer®
O43 - CFD: 24/10/2011 - [] D -- C:\Program Files (x86)\Tweaking.com - Windows Repair =>.Tweaking LLC®
O43 - CFD: 18/05/2017 - [] D -- C:\Program Files (x86)\uninstallview-x64 =>.Nir Sofer®
O43 - CFD: 05/07/2016 - [] D -- C:\Program Files (x86)\usbdeview-x64 =>.Nir Sofer®
O43 - CFD: 27/09/2017 - [] AD -- C:\Program Files (x86)\VMware =>.VMware, Inc.®
O43 - CFD: 27/10/2017 - [] D -- C:\Program Files (x86)\Volume2
O43 - CFD: 04/10/2016 - [] D -- C:\Program Files (x86)\webcacheimageinfo =>.Nir Sofer®
O43 - CFD: 11/05/2017 - [] D -- C:\Program Files (x86)\wifihistoryview =>.Nir Sofer®
O43 - CFD: 11/10/2017 - [] D -- C:\Program Files (x86)\wifiinfoview =>.Nir Sofer®
O43 - CFD: 19/02/2017 - [] D -- C:\Program Files (x86)\Win Privacy
O43 - CFD: 20/11/2016 - [] D -- C:\Program Files (x86)\Winaero.com
O43 - CFD: 15/08/2017 - [] D -- C:\Program Files (x86)\WinaeroTweaker =>.Sergey Tkachenko
O43 - CFD: 05/07/2016 - [] D -- C:\Program Files (x86)\WinDirStat =>.Seifert Systems
O43 - CFD: 03/09/2017 - [] AD -- C:\Program Files (x86)\WindowManager
O43 - CFD: 19/10/2017 - [] D -- C:\Program Files (x86)\Windows Defender =>.Microsoft Corporation
O43 - CFD: 03/05/2017 - [] AD -- C:\Program Files (x86)\Windows Explorer Tracker
O43 - CFD: 19/10/2017 - [] D -- C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation
O43 - CFD: 19/10/2017 - [] D -- C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [] D -- C:\Program Files (x86)\Windows Multimedia Platform =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [] D -- C:\Program Files (x86)\windows nt =>.Microsoft Corporation
O43 - CFD: 19/10/2017 - [] D -- C:\Program Files (x86)\Windows Photo Viewer =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [] D -- C:\Program Files (x86)\Windows Portable Devices =>.Microsoft Corporation
O43 - CFD: 14/06/2017 - [] D -- C:\Program Files (x86)\Windows Repair Toolbox
O43 - CFD: 29/09/2017 - [] SHD -- C:\Program Files (x86)\Windows Sidebar =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [] D -- C:\Program Files (x86)\WindowsPowerShell =>.Microsoft Corporation
O43 - CFD: 01/10/2017 - [] D -- C:\Program Files (x86)\winlogonview =>.Nir Sofer®
O43 - CFD: 09/06/2016 - [] D -- C:\Program Files (x86)\WinPcap =>.Riverbed Technology
O43 - CFD: 09/06/2016 - [] D -- C:\Program Files (x86)\WinSplit Revolution
O43 - CFD: 16/06/2017 - [] AD -- C:\Program Files (x86)\WinUAE {562B338CB88526A9EC50806CA768E1D5}
O43 - CFD: 02/09/2016 - [] D -- C:\Program Files (x86)\wirelesskeyview =>.Nir Sofer®
O43 - CFD: 06/10/2017 - [] D -- C:\Program Files (x86)\Wirelessnetview =>.Nir Sofer®
O43 - CFD: 05/10/2016 - [] D -- C:\Program Files (x86)\wizmouse 1.7.0.3 portable {00D39D410A3C118AE7EC2FE1A059AD66D9}
O43 - CFD: 27/04/2017 - [] D -- C:\Program Files (x86)\wnetwatcher =>.Nir Sofer®
O43 - CFD: 29/09/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility =>.Microsoft Corporation
O43 - CFD: 19/10/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories =>.Microsoft Corporation
O43 - CFD: 30/09/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools
O43 - CFD: 19/10/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe =>.Adobe
O43 - CFD: 19/10/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel =>.Intel Corporation
O43 - CFD: 29/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance =>.Microsoft Corporation
O43 - CFD: 19/10/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools =>.Microsoft Corporation
O43 - CFD: 13/02/2016 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC =>.Wacom Technology
O43 - CFD: 19/10/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TOSHIBA =>.Toshiba Corporation
O43 - CFD: 24/10/2016 - [] D -- C:\ProgramData\abelhadigital.com =>.abelhadigital.com
O43 - CFD: 20/10/2017 - [] D -- C:\ProgramData\Adobe =>.Adobe
O43 - CFD: 11/09/2016 - [] D -- C:\ProgramData\Ant Renamer =>.Antoine Potten
O43 - CFD: 18/06/2016 - [] D -- C:\ProgramData\Apple =>.Apple Inc.
O43 - CFD: 19/10/2017 - [0] SHD -- C:\ProgramData\Application Data =>.Microsoft Corporation
O43 - CFD: 22/06/2016 - [] D -- C:\ProgramData\boost_interprocess =>.boost.org
O43 - CFD: 24/01/2017 - [] D -- C:\ProgramData\Caphyon =>.Caphyon
O43 - CFD: 16/07/2016 - [0] D -- C:\ProgramData\Comms =>.Microsoft Corporation
O43 - CFD: 06/06/2016 - [] D -- C:\ProgramData\Corel =>.Corel Corporation
O43 - CFD: 10/06/2016 - [] D -- C:\ProgramData\CyberLink =>.CyberLink Corporation
O43 - CFD: 11/04/2015 - [] D -- C:\ProgramData\dbg =>.DBG
O43 - CFD: 19/03/2017 - [] D -- C:\ProgramData\DeskSoft =>.DeskSoft
O43 - CFD: 19/10/2017 - [0] SHD -- C:\ProgramData\Documents =>.Microsoft Corporation
O43 - CFD: 24/04/2017 - [] D -- C:\ProgramData\DxO Labs =>.DxO Labs
O43 - CFD: 19/02/2017 - [] D -- C:\ProgramData\eBook Converter =>.ebook Converter
O43 - CFD: 05/06/2016 - [] D -- C:\ProgramData\ESET =>.ESET
O43 - CFD: 22/08/2016 - [] D -- C:\ProgramData\Google =>.Google
O43 - CFD: 10/06/2016 - [] D -- C:\ProgramData\install_clap =>.Microsoft Corporation
O43 - CFD: 27/10/2016 - [] D -- C:\ProgramData\Intel =>.Intel Corporation
O43 - CFD: 27/10/2017 - [] D -- C:\ProgramData\IObit =>.IObit
O43 - CFD: 21/09/2017 - [] D -- C:\ProgramData\IOffSvc
O43 - CFD: 26/05/2017 - [] D -- C:\ProgramData\Locktime =>.Locktime Software
O43 - CFD: 12/10/2017 - [] D -- C:\ProgramData\Logishrd =>.Logitech Inc.
O43 - CFD: 14/04/2017 - [] D -- C:\ProgramData\LopeSoft =>.LopeSoft
O43 - CFD: 15/08/2017 - [] D -- C:\ProgramData\Macrium =>.Macrium
O43 - CFD: 09/07/2017 - [] D -- C:\ProgramData\Make-EXE
O43 - CFD: 19/10/2017 - [] SD -- C:\ProgramData\Microsoft =>.Microsoft Corporation
O43 - CFD: 19/10/2017 - [] D -- C:\ProgramData\Microsoft OneDrive =>.Microsoft Corporation
O43 - CFD: 11/04/2015 - [] AD -- C:\ProgramData\MicrosoftPhotoBook =>.Microsoft Corporation
O43 - CFD: 28/02/2017 - [] D -- C:\ProgramData\Oracle =>.Oracle
O43 - CFD: 13/06/2016 - [] D -- C:\ProgramData\Orbit =>.Orbit
O43 - CFD: 01/08/2017 - [] D -- C:\ProgramData\Package Cache =>.Microsoft Corporation
O43 - CFD: 10/06/2016 - [] D -- C:\ProgramData\PDVD =>.PDVD
O43 - CFD: 10/03/2017 - [0] D -- C:\ProgramData\ProcessLasso
O43 - CFD: 27/10/2017 - [] D -- C:\ProgramData\ProductData =>.Microsoft Corporation
O43 - CFD: 02/06/2016 - [0] D -- C:\ProgramData\Protexis64 =>.Protexis Inc.
O43 - CFD: 20/10/2017 - [] D -- C:\ProgramData\regid.1986-12.com.adobe =>.Adobe Inc.
O43 - CFD: 20/10/2017 - [] D -- C:\ProgramData\regid.1991-06.com.microsoft =>.Microsoft Corporation
O43 - CFD: 13/06/2016 - [0] D -- C:\ProgramData\Reprise =>.Unknown
O43 - CFD: 11/04/2015 - [] D -- C:\ProgramData\Roaming =>.Microsoft Corporation
O43 - CFD: 11/04/2015 - [] D -- C:\ProgramData\Roxio Log Files =>.Roxio
O43 - CFD: 06/06/2016 - [] D -- C:\ProgramData\Screen Mirroring
O43 - CFD: 12/06/2016 - [] D -- C:\ProgramData\SoftPerfect =>.SoftPerfect
O43 - CFD: 29/09/2017 - [0] D -- C:\ProgramData\SoftwareDistribution =>.Microsoft Corporation
O43 - CFD: 07/06/2016 - [] D -- C:\ProgramData\SRS Labs =>.SRS Labs
O43 - CFD: 27/06/2016 - [] D -- C:\ProgramData\Steam =>.Steam Games
O43 - CFD: 10/06/2016 - [] D -- C:\ProgramData\SUPPORTDIR =>.Microsoft Corporation
O43 - CFD: 19/06/2017 - [] AD -- C:\ProgramData\TechSmith =>.TechSmith
O43 - CFD: 19/10/2017 - [0] SHD -- C:\ProgramData\Templates =>.Microsoft Corporation
O43 - CFD: 14/07/2016 - [] D -- C:\ProgramData\Teorex =>.Teorex
O43 - CFD: 07/06/2016 - [] D -- C:\ProgramData\TOSHIBA =>.Toshiba Corporation
O43 - CFD: 11/04/2015 - [] D -- C:\ProgramData\Toshiba Places Gadget V4 =>.Toshiba Corporation
O43 - CFD: 05/06/2016 - [] D -- C:\ProgramData\Trend Micro =>.Trend Micro
O43 - CFD: 19/10/2017 - [] D -- C:\ProgramData\USOPrivate =>.Microsoft Corporation
O43 - CFD: 19/10/2017 - [] D -- C:\ProgramData\USOShared =>.Microsoft Corporation
O43 - CFD: 09/10/2017 - [] AD -- C:\ProgramData\VMware =>.VMware
O43 - CFD: 18/06/2017 - [] D -- C:\ProgramData\WinaeroTweaker =>.Sergey Tkachenko
O43 - CFD: 30/09/2017 - [] D -- C:\ProgramData\WindowsHolographicDevices =>.Microsoft Corporation
O43 - CFD: 23/06/2017 - [] D -- C:\ProgramData\ZentimoService
O43 - CFD: 18/03/2017 - [] D -- C:\ProgramData\ZentimoService.BackupByZentimoPortable
O43 - CFD: 10/03/2016 - [0] SHD -- C:\ProgramData\スタート メニュー
O43 - CFD: 10/03/2016 - [0] SHD -- C:\ProgramData\デスクトップ
O43 - CFD: 20/10/2017 - [] AD -- C:\Program Files (x86)\Common Files\Adobe =>.Adobe
O43 - CFD: 03/09/2016 - [] D -- C:\Program Files (x86)\Common Files\DFX =>.DFX Power Technology
O43 - CFD: 11/04/2015 - [] D -- C:\Program Files (x86)\Common Files\InstallShield =>.InstallShield
O43 - CFD: 19/10/2017 - [] D -- C:\Program Files (x86)\Common Files\Intel =>.Intel Corporation
O43 - CFD: 23/03/2017 - [] D -- C:\Program Files (x86)\Common Files\Intel Corporation =>.Intel Corporation
O43 - CFD: 11/03/2017 - [] D -- C:\Program Files (x86)\Common Files\IObit =>.IObit
O43 - CFD: 20/10/2017 - [] D -- C:\Program Files (x86)\Common Files\Java =>.Oracle
O43 - CFD: 19/10/2017 - [] D -- C:\Program Files (x86)\Common Files\logishrd =>.Logitech Inc.
O43 - CFD: 19/10/2017 - [] D -- C:\Program Files (x86)\Common Files\microsoft shared =>.Microsoft Corporation
O43 - CFD: 11/04/2015 - [] D -- C:\Program Files (x86)\Common Files\postureAgent =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [] D -- C:\Program Files (x86)\Common Files\Services =>.Microsoft Corporation
O43 - CFD: 23/10/2017 - [] D -- C:\Program Files (x86)\Common Files\Steam =>.Steam Games
O43 - CFD: 19/10/2017 - [] D -- C:\Program Files (x86)\Common Files\system =>.Microsoft Corporation
O43 - CFD: 27/09/2017 - [] AD -- C:\Program Files (x86)\Common Files\ThinPrint =>.ThinPrint
O43 - CFD: 19/02/2017 - [] D -- C:\Program Files (x86)\Common Files\Topaz Labs =>.Topaz Labs
O43 - CFD: 07/06/2016 - [] D -- C:\Program Files (x86)\Common Files\Toshiba Shared =>.Toshiba Corporation
O43 - CFD: 27/09/2017 - [] D -- C:\Program Files (x86)\Common Files\VMware =>.VMware
O43 - CFD: 15/07/2016 - [] D -- C:\Users\owner\AppData\Roaming\2BrightSparks =>.Ignite Realtime
O43 - CFD: 19/03/2017 - [] D -- C:\Users\owner\AppData\Roaming\3RVX
O43 - CFD: 06/06/2016 - [] D -- C:\Users\owner\AppData\Roaming\7+ Taskbar Tweaker
O43 - CFD: 24/10/2016 - [] D -- C:\Users\owner\AppData\Roaming\abelhadigital.com =>.abelhadigital.com
O43 - CFD: 09/06/2016 - [] D -- C:\Users\owner\AppData\Roaming\AccurateRip =>.Legitimate
O43 - CFD: 23/01/2017 - [] D -- C:\Users\owner\AppData\Roaming\Acrylic Wi-Fi Home =>.Acrylic
O43 - CFD: 21/10/2017 - [] D -- C:\Users\owner\AppData\Roaming\Adobe =>.Adobe
O43 - CFD: 21/05/2017 - [] D -- C:\Users\owner\AppData\Roaming\Anki2
O43 - CFD: 27/06/2017 - [] D -- C:\Users\owner\AppData\Roaming\audacity =>.Audacity
O43 - CFD: 05/06/2016 - [] D -- C:\Users\owner\AppData\Roaming\Bao_Nguyen
O43 - CFD: 19/02/2017 - [] D -- C:\Users\owner\AppData\Roaming\calibre =>.Kovid Goyal
O43 - CFD: 05/06/2016 - [] D -- C:\Users\owner\AppData\Roaming\Carthago
O43 - CFD: 03/07/2017 - [] D -- C:\Users\owner\AppData\Roaming\chessx
O43 - CFD: 08/01/2017 - [] D -- C:\Users\owner\AppData\Roaming\ClickMonitorDDC
O43 - CFD: 02/06/2016 - [] D -- C:\Users\owner\AppData\Roaming\Corel =>.Corel Corporation
O43 - CFD: 02/07/2017 - [] D -- C:\Users\owner\AppData\Roaming\Crayon Physics Deluxe
O43 - CFD: 15/08/2016 - [] D -- C:\Users\owner\AppData\Roaming\CrystalIdea Software =>.CrystalIdea Software
O43 - CFD: 20/11/2016 - [] D -- C:\Users\owner\AppData\Roaming\Cursorpacks
O43 - CFD: 10/06/2016 - [] D -- C:\Users\owner\AppData\Roaming\CyberLink =>.CyberLink Corporation
O43 - CFD: 19/03/2017 - [] D -- C:\Users\owner\AppData\Roaming\DeskSoft =>.DeskSoft
O43 - CFD: 10/06/2016 - [] D -- C:\Users\owner\AppData\Roaming\dvdcss =>.VideoLan Team
O43 - CFD: 04/03/2017 - [] D -- C:\Users\owner\AppData\Roaming\DxO Labs =>.DxO Labs
O43 - CFD: 09/06/2016 - [] D -- C:\Users\owner\AppData\Roaming\EAC =>.Legitimate
O43 - CFD: 18/06/2016 - [] D -- C:\Users\owner\AppData\Roaming\EuroTalk
O43 - CFD: 17/10/2016 - [] D -- C:\Users\owner\AppData\Roaming\Eusing =>.Eusing
O43 - CFD: 22/01/2017 - [0] D -- C:\Users\owner\AppData\Roaming\ExperienceIndexOK
O43 - CFD: 19/02/2017 - [] D -- C:\Users\owner\AppData\Roaming\FastStone =>.FastStone Soft
O43 - CFD: 27/10/2017 - [] D -- C:\Users\owner\AppData\Roaming\foobar2000 =>.Peter Pawlowski
O43 - CFD: 09/06/2016 - [] D -- C:\Users\owner\AppData\Roaming\Gest
O43 - CFD: 28/02/2017 - [] D -- C:\Users\owner\AppData\Roaming\Greenshot =>.Greenshot
O43 - CFD: 30/05/2017 - [] D -- C:\Users\owner\AppData\Roaming\HandBrake =>.Handbrake
O43 - CFD: 01/11/2016 - [] D -- C:\Users\owner\AppData\Roaming\HandBrake Team =>.HandBrake Team
O43 - CFD: 06/06/2016 - [] D -- C:\Users\owner\AppData\Roaming\Hard Disk Sentinel =>.H.D.S. Hungary
O43 - CFD: 12/03/2017 - [] D -- C:\Users\owner\AppData\Roaming\HD Tune Pro =>.EFD Software
O43 - CFD: 04/06/2017 - [] D -- C:\Users\owner\AppData\Roaming\HDRsoft =>.HDRsoft
O43 - CFD: 03/04/2017 - [] D -- C:\Users\owner\AppData\Roaming\Icons8 =>.Icons8
O43 - CFD: 30/05/2016 - [] D -- C:\Users\owner\AppData\Roaming\Identities =>.Microsoft Corporation
O43 - CFD: 10/03/2016 - [] D -- C:\Users\owner\AppData\Roaming\Intel =>.Intel Corporation
O43 - CFD: 21/09/2016 - [] D -- C:\Users\owner\AppData\Roaming\Intel Corporation =>.Intel Corporation
O43 - CFD: 07/06/2016 - [] D -- C:\Users\owner\AppData\Roaming\InternetOff
O43 - CFD: 27/10/2017 - [] D -- C:\Users\owner\AppData\Roaming\IObit =>.IObit
O43 - CFD: 11/10/2017 - [] D -- C:\Users\owner\AppData\Roaming\IrfanView =>.Irfan skiljan
O43 - CFD: 09/07/2017 - [] D -- C:\Users\owner\AppData\Roaming\KC Softwares =>.KC Softwares
O43 - CFD: 26/05/2017 - [] D -- C:\Users\owner\AppData\Roaming\Locktime =>.Locktime Software
O43 - CFD: 07/08/2017 - [] D -- C:\Users\owner\AppData\Roaming\Locktime Software =>.Locktime Software
O43 - CFD: 12/10/2017 - [] D -- C:\Users\owner\AppData\Roaming\Logishrd =>.Logitech Inc.
O43 - CFD: 01/03/2017 - [] D -- C:\Users\owner\AppData\Roaming\LRTimelapse
O43 - CFD: 11/10/2017 - [] D -- C:\Users\owner\AppData\Roaming\Macromedia =>.Macromedia
O43 - CFD: 03/03/2017 - [] D -- C:\Users\owner\AppData\Roaming\MAXON =>.Maxon
O43 - CFD: 31/08/2016 - [] D -- C:\Users\owner\AppData\Roaming\MediaInfo =>.Jérôme Martinez
O43 - CFD: 19/10/2017 - [] SD -- C:\Users\owner\AppData\Roaming\Microsoft =>.Microsoft Corporation
O43 - CFD: 07/06/2016 - [] D -- C:\Users\owner\AppData\Roaming\Mozilla =>.Mozilla Corporation
O43 - CFD: 27/10/2017 - [0] D -- C:\Users\owner\AppData\Roaming\MPC-HC =>.MPC-HC Team
O43 - CFD: 11/05/2017 - [] D -- C:\Users\owner\AppData\Roaming\Notepad++ =>.Don Ho
O43 - CFD: 09/06/2016 - [] D -- C:\Users\owner\AppData\Roaming\OTi
O43 - CFD: 02/08/2016 - [] D -- C:\Users\owner\AppData\Roaming\ProcessKO
O43 - CFD: 10/03/2017 - [] D -- C:\Users\owner\AppData\Roaming\ProcessLasso
O43 - CFD: 20/11/2016 - [] D -- C:\Users\owner\AppData\Roaming\Rainmeter =>.kimmo.pekkola
O43 - CFD: 20/10/2017 - [] D -- C:\Users\owner\AppData\Roaming\RegistryFinder
O43 - CFD: 14/04/2017 - [] D -- C:\Users\owner\AppData\Roaming\ScreenToGif
O43 - CFD: 09/06/2016 - [] D -- C:\Users\owner\AppData\Roaming\ShellFolderFix =>.Legitimate
O43 - CFD: 13/05/2017 - [] D -- C:\Users\owner\AppData\Roaming\Simnet
O43 - CFD: 07/06/2016 - [] D -- C:\Users\owner\AppData\Roaming\sMedio =>.sMedio inc,
O43 - CFD: 02/05/2017 - [] D -- C:\Users\owner\AppData\Roaming\SumatraPDF =>.Krzysztof Kowalczyk
O43 - CFD: 28/02/2017 - [] D -- C:\Users\owner\AppData\Roaming\Sun =>.Oracle
O43 - CFD: 26/06/2017 - [] D -- C:\Users\owner\AppData\Roaming\TeamViewer =>.TeamViewer GmbH
O43 - CFD: 19/06/2017 - [] D -- C:\Users\owner\AppData\Roaming\TechSmith =>.TechSmith
O43 - CFD: 06/10/2017 - [] D -- C:\Users\owner\AppData\Roaming\Textify =>.RaMMicHaeL
O43 - CFD: 27/10/2017 - [] D -- C:\Users\owner\AppData\Roaming\The Bat!
O43 - CFD: 19/02/2017 - [] D -- C:\Users\owner\AppData\Roaming\Thinstall =>.VMare
O43 - CFD: 10/12/2016 - [] D -- C:\Users\owner\AppData\Roaming\TOSHIBA =>.Toshiba Corporation
O43 - CFD: 03/05/2017 - [] D -- C:\Users\owner\AppData\Roaming\TSSI
O43 - CFD: 06/06/2016 - [] D -- C:\Users\owner\AppData\Roaming\Ulead Systems =>.Ulead Systems
O43 - CFD: 27/10/2017 - [] D -- C:\Users\owner\AppData\Roaming\vlc =>.VideoLan Team
O43 - CFD: 21/10/2017 - [] D -- C:\Users\owner\AppData\Roaming\VMware =>.VMware
O43 - CFD: 30/05/2016 - [] D -- C:\Users\owner\AppData\Roaming\WinBatch =>.winbatch.com
O43 - CFD: 17/06/2016 - [] D -- C:\Users\owner\AppData\Roaming\WinRAR =>.WinRAR
O43 - CFD: 15/05/2017 - [] D -- C:\Users\owner\AppData\Roaming\Winsplit Revolution
O43 - CFD: 20/07/2017 - [] D -- C:\Users\owner\AppData\Roaming\Wireshark =>.Wireshark
O43 - CFD: 03/04/2017 - [] SHD -- C:\Users\owner\AppData\Roaming\wyUpdate AU =>.wyUpdate AU
O43 - CFD: 17/05/2017 - [] D -- C:\Users\owner\AppData\Roaming\XnConvert =>.Pierre Gougelet
O43 - CFD: 21/10/2017 - [] D -- C:\Users\owner\AppData\Roaming\Yamicsoft =>.Yamicsoft
O43 - CFD: 27/10/2017 - [] D -- C:\Users\owner\AppData\Roaming\Zentimo
O43 - CFD: 19/06/2017 - [] D -- C:\Users\owner\AppData\Roaming\Zentimo.BackupByZentimoPortable
O43 - CFD: 27/10/2017 - [] D -- C:\Users\owner\AppData\Roaming\ZHP =>.Nicolas Coolman
O43 - CFD: 01/06/2017 - [] D -- C:\Users\owner\AppData\Local\2BrightSparks =>.Ignite Realtime
O43 - CFD: 06/06/2016 - [0] D -- C:\Users\owner\AppData\Local\ActiveSync =>.Microsoft Corporation
O43 - CFD: 25/10/2017 - [] D -- C:\Users\owner\AppData\Local\Adobe =>.Adobe
O43 - CFD: 19/02/2017 - [] D -- C:\Users\owner\AppData\Local\Amazon =>.Amazon
O43 - CFD: 19/10/2017 - [0] SHD -- C:\Users\owner\AppData\Local\Application Data =>.Microsoft Corporation
O43 - CFD: 03/10/2016 - [] D -- C:\Users\owner\AppData\Local\AtHome Camera
O43 - CFD: 26/03/2017 - [] D -- C:\Users\owner\AppData\Local\Audacity =>.Audacity
O43 - CFD: 05/06/2016 - [] D -- C:\Users\owner\AppData\Local\Bao_Nguyen
O43 - CFD: 21/02/2017 - [] D -- C:\Users\owner\AppData\Local\bunkus.org =>.bunkus.org
O43 - CFD: 05/11/2016 - [] D -- C:\Users\owner\AppData\Local\CEF =>.CEF
O43 - CFD: 16/04/2017 - [] D -- C:\Users\owner\AppData\Local\chessx
O43 - CFD: 27/10/2017 - [] D -- C:\Users\owner\AppData\Local\ClassicShell =>.SourceForge
O43 - CFD: 20/09/2017 - [] AD -- C:\Users\owner\AppData\Local\Clavier+ =>.Guillaume Ryder
O43 - CFD: 06/06/2016 - [] D -- C:\Users\owner\AppData\Local\Comms =>.Microsoft Corporation
O43 - CFD: 19/10/2017 - [] D -- C:\Users\owner\AppData\Local\ConnectedDevicesPlatform =>.Microsoft Corporation
O43 - CFD: 18/04/2017 - [0] D -- C:\Users\owner\AppData\Local\CrashDumps =>.Microsoft Corporation
O43 - CFD: 10/06/2016 - [] D -- C:\Users\owner\AppData\Local\CyberLink =>.CyberLink Corporation
O43 - CFD: 05/08/2017 - [0] D -- C:\Users\owner\AppData\Local\DBG =>.DBG
O43 - CFD: 03/09/2016 - [] D -- C:\Users\owner\AppData\Local\DFX =>.DFX Power Technology
O43 - CFD: 25/09/2017 - [0] D -- C:\Users\owner\AppData\Local\Diagnostics =>.Microsoft Corporation
O43 - CFD: 06/06/2016 - [] D -- C:\Users\owner\AppData\Local\DLaunch
O43 - CFD: 07/06/2016 - [] D -- C:\Users\owner\AppData\Local\Downloaded Installations =>.Microsoft Corporation
O43 - CFD: 10/03/2016 - [] D -- C:\Users\owner\AppData\Local\Dportal
O43 - CFD: 27/02/2017 - [] D -- C:\Users\owner\AppData\Local\DxO_Labs =>.DxO Labs
O43 - CFD: 01/05/2017 - [0] D -- C:\Users\owner\AppData\Local\ElevatedDiagnostics =>.Microsoft Corporation
O43 - CFD: 04/06/2016 - [0] SHD -- C:\Users\owner\AppData\Local\EmieBrowserModeList =>.Enterprise mode Site List Mgr
O43 - CFD: 04/06/2016 - [0] SHD -- C:\Users\owner\AppData\Local\EmieSiteList =>.Enterprise mode Site List Mgr
O43 - CFD: 04/06/2016 - [0] SHD -- C:\Users\owner\AppData\Local\EmieUserList =>.Enterprise mode Site List Mgr
O43 - CFD: 05/06/2016 - [] D -- C:\Users\owner\AppData\Local\ESET =>.ESET
O43 - CFD: 19/02/2017 - [] D -- C:\Users\owner\AppData\Local\FastStone =>.FastStone Soft
O43 - CFD: 27/10/2017 - [] D -- C:\Users\owner\AppData\Local\FileSearchy
O43 - CFD: 21/02/2017 - [] D -- C:\Users\owner\AppData\Local\GabSoftware
O43 - CFD: 22/08/2016 - [] D -- C:\Users\owner\AppData\Local\Google =>.Google
O43 - CFD: 25/10/2017 - [] D -- C:\Users\owner\AppData\Local\Greenshot =>.Greenshot
O43 - CFD: 19/10/2017 - [0] SHD -- C:\Users\owner\AppData\Local\History =>.Microsoft Corporation
O43 - CFD: 29/04/2017 - [] D -- C:\Users\owner\AppData\Local\Icaros
O43 - CFD: 13/06/2016 - [] D -- C:\Users\owner\AppData\Local\IsolatedStorage =>.id Software
O43 - CFD: 14/06/2017 - [] D -- C:\Users\owner\AppData\Local\Kolor =>.Kolor
O43 - CFD: 27/10/2017 - [] D -- C:\Users\owner\AppData\Local\Lookeen
O43 - CFD: 05/06/2016 - [] D -- C:\Users\owner\AppData\Local\Macromedia =>.Macromedia
O43 - CFD: 23/10/2017 - [] D -- C:\Users\owner\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 28/10/2016 - [] D -- C:\Users\owner\AppData\Local\MicrosoftEdge =>.Microsoft Corporation
O43 - CFD: 24/02/2017 - [] D -- C:\Users\owner\AppData\Local\Microsoft_Corporation =>.Microsoft Corporation
O43 - CFD: 07/06/2016 - [] D -- C:\Users\owner\AppData\Local\Mozilla =>.Mozilla Corporation
O43 - CFD: 30/08/2017 - [0] D -- C:\Users\owner\AppData\Local\Notepad++ =>.Don Ho
O43 - CFD: 19/10/2017 - [] D -- C:\Users\owner\AppData\Local\Packages =>.Microsoft Corporation
O43 - CFD: 06/06/2016 - [0] D -- C:\Users\owner\AppData\Local\PeerDistRepub =>.Microsoft Corporation
O43 - CFD: 07/08/2017 - [] D -- C:\Users\owner\AppData\Local\pooi.moe
O43 - CFD: 31/07/2017 - [] D -- C:\Users\owner\AppData\Local\Programs =>.Microsoft Corporation
O43 - CFD: 06/06/2016 - [] D -- C:\Users\owner\AppData\Local\Publishers =>.Microsoft Corporation
O43 - CFD: 12/03/2017 - [] D -- C:\Users\owner\AppData\Local\Rockstar Games =>.Rockstar Games
O43 - CFD: 11/11/2016 - [] D -- C:\Users\owner\AppData\Local\speech =>.Microsoft Corporation
O43 - CFD: 12/03/2017 - [] D -- C:\Users\owner\AppData\Local\Steam =>.Steam Games
O43 - CFD: 28/02/2017 - [] D -- C:\Users\owner\AppData\Local\SvchostViewer
O43 - CFD: 19/06/2017 - [] D -- C:\Users\owner\AppData\Local\TechSmith =>.TechSmith
O43 - CFD: 27/10/2017 - [] D -- C:\Users\owner\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 19/10/2017 - [0] SHD -- C:\Users\owner\AppData\Local\Temporary Internet Files =>.Microsoft Corporation
O43 - CFD: 19/02/2017 - [] D -- C:\Users\owner\AppData\Local\Thinstall =>.VMare
O43 - CFD: 19/10/2017 - [] D -- C:\Users\owner\AppData\Local\TileDataLayer =>.Microsoft Corporation
O43 - CFD: 19/02/2017 - [] D -- C:\Users\owner\AppData\Local\Topaz Labs =>.Topaz Labs
O43 - CFD: 12/03/2016 - [] D -- C:\Users\owner\AppData\Local\Toshiba =>.Toshiba Corporation
O43 - CFD: 13/07/2017 - [] D -- C:\Users\owner\AppData\Local\VirtualStore =>.Microsoft Corporation
O43 - CFD: 21/10/2017 - [] D -- C:\Users\owner\AppData\Local\VMware =>.VMware
O43 - CFD: 09/06/2016 - [] D -- C:\Users\owner\AppData\Local\Volumouse
O43 - CFD: 17/04/2017 - [] D -- C:\Users\owner\AppData\Local\WinTools
O43 - CFD: 27/10/2017 - [] D -- C:\Users\owner\AppData\Local\ZHP =>.Nicolas Coolman
O43 - CFD: 06/06/2016 - [0] D -- C:\Users\owner\AppData\Local\Programs\Common =>.Microsoft Corporation
O43 - CFD: 07/08/2017 - [] D -- C:\Users\owner\AppData\Local\Programs\QuickLook
O43 - CFD: 29/09/2017 - [] RD -- C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility =>.Microsoft Corporation
O43 - CFD: 19/10/2017 - [] RD -- C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories =>.Microsoft Corporation
O43 - CFD: 20/10/2017 - [] RD -- C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools
O43 - CFD: 20/10/2017 - [] D -- C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Adobe =>.Adobe
O43 - CFD: 27/10/2017 - [] D -- C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Custom Windows 10
O43 - CFD: 19/10/2017 - [] D -- C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\e-verbe
O43 - CFD: 20/10/2017 - [] D -- C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games =>.Microsoft Corporation
O43 - CFD: 19/10/2017 - [] D -- C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Gest
O43 - CFD: 19/10/2017 - [] D -- C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hardware
O43 - CFD: 19/10/2017 - [] D -- C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image
O43 - CFD: 19/10/2017 - [] RD -- C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet
O43 - CFD: 19/10/2017 - [] D -- C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Japonais
O43 - CFD: 27/10/2017 - [] D -- C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance =>.Microsoft Corporation
O43 - CFD: 26/10/2017 - [] RD -- C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Multimédia
O43 - CFD: 19/10/2017 - [] D -- C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Musique
O43 - CFD: 19/10/2017 - [] D -- C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Office 2016 =>.Microsoft Corporation
O43 - CFD: 19/10/2017 - [] D -- C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pilotes
O43 - CFD: 26/10/2017 - [] D -- C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Privacy Windows 10
O43 - CFD: 27/10/2017 - [] D -- C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Protection
O43 - CFD: 19/10/2017 - [] D -- C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SRM Training System
O43 - CFD: 20/10/2017 - [] RD -- C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [] RD -- C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools =>.Microsoft Corporation
O43 - CFD: 27/10/2017 - [] D -- C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Système
O43 - CFD: 29/09/2017 - [] RD -- C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell =>.Microsoft Corporation
O43 - CFD: 19/10/2017 - [] HD -- C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\AutorunsDisabled
O43 - CFD: 19/10/2017 - [0] SHD -- C:\Users\Default\AppData\Local\Application Data =>.Microsoft Corporation
O43 - CFD: 19/10/2017 - [0] SHD -- C:\Users\Default\AppData\Local\History =>.Microsoft Corporation
O43 - CFD: 19/10/2017 - [] D -- C:\Users\Default\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [0] D -- C:\Users\Default\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 19/10/2017 - [0] SHD -- C:\Users\Default\AppData\Local\Temporary Internet Files =>.Microsoft Corporation
O43 - CFD: 19/10/2017 - [0] SHD -- C:\Users\Default User\AppData\Local\Application Data =>.Microsoft Corporation
O43 - CFD: 19/10/2017 - [0] SHD -- C:\Users\Default User\AppData\Local\History =>.Microsoft Corporation
O43 - CFD: 19/10/2017 - [] D -- C:\Users\Default User\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [0] D -- C:\Users\Default User\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 19/10/2017 - [0] SHD -- C:\Users\Default User\AppData\Local\Temporary Internet Files =>.Microsoft Corporation
O43 - CFD: 19/10/2017 - [] HD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AutorunsDisabled
O43 - CFD: 19/10/2017 - [] D -- C:\WINDOWS\System32\Config\systemprofile\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 19/10/2017 - [0] -- C:\WINDOWS\System32\Config\systemprofile\AppData\Local\VMware =>.VMware
O43 - CFD: 21/10/2017 - [0] -- C:\WINDOWS\System32\Config\systemprofile\AppData\Roaming\VMware =>.VMware
---\\ ShellIconOverlayIdentifiers (SIOI) (10) - 0s
O106 - SIOI: ErrorOverlayHandler Class [ OneDrive1] - {BBACC218-34EA-4666-9D7A-C78F2274A524}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\owner\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_2\FileSyncShell.dll =>.Microsoft Windows®
O106 - SIOI: SharedOverlayHandler Class [ OneDrive2] - {5AB7172C-9C11-405C-8DD5-AF20F3606282}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\owner\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_2\FileSyncShell.dll =>.Microsoft Windows®
O106 - SIOI: SharedSyncingOverlayHandler Class [ OneDrive3] - {A78ED123-AB77-406B-9962-2A5D9D2F7F30}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\owner\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_2\FileSyncShell.dll =>.Microsoft Windows®
O106 - SIOI: UpToDateOverlayHandler Class [ OneDrive4] - {F241C880-6982-4CE5-8CF7-7085BA96DA5A}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\owner\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_2\FileSyncShell.dll =>.Microsoft Windows®
O106 - SIOI: SyncingOverlayHandler Class [ OneDrive5] - {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\owner\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_2\FileSyncShell.dll =>.Microsoft Windows®
O106 - SIOI: ReadOnlyOverlayHandler Class [ OneDrive6] - {9AA2F32D-362A-42D9-9328-24A483E2CCC3}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\owner\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_2\FileSyncShell.dll =>.Microsoft Windows®
O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 1 (ErrorConflict) [ SkyDrivePro1 (ErrorConflict)] - {8BA85C75-763B-4103-94EB-9470F12FE0F7}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 2 (SyncInProgress) [ SkyDrivePro2 (SyncInProgress)] - {CD55129A-B1A1-438E-A425-CEBC7DC684EE}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 3 (InSync) [ SkyDrivePro3 (InSync)] - {E768CD3B-BDDC-436D-9C13-E1B39CA257B1}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: ShareOverlay Class [ShareOverlay] - {594D4122-1F87-41E2-96C7-825FB4796516}. (.IvoSoft - Adds classic Windows Explorer features.) -- C:\Program Files\Classic Shell\ClassicExplorer32.dll =>.Ivaylo Beltchev®
---\\ Liste des pilotes du système (93) - 6s
O58 - SDL:2017/09/29 21:41:02 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\WINDOWS\System32\drivers\3ware.sys [107416] =>.Microsoft Windows®
O58 - SDL:2017/09/29 21:41:02 A . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS.) -- C:\WINDOWS\System32\drivers\adp80xx.sys [1135512] =>.Microsoft Windows®
O58 - SDL:2015/06/04 08:07:48 A . (.Advanced Micro Devices, Inc. - AMD PCI Root Bus Lower Filter.) -- C:\WINDOWS\System32\drivers\amdkmpfd.sys [73976] =>.Advanced Micro Devices, Inc.®
O58 - SDL:2017/09/29 21:41:02 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\WINDOWS\System32\drivers\amdsata.sys [83352] =>.Microsoft Windows®
O58 - SDL:2017/09/29 21:41:02 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\WINDOWS\System32\drivers\amdsbs.sys [258592] =>.Microsoft Windows®
O58 - SDL:2017/09/29 21:41:02 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\WINDOWS\System32\drivers\amdxata.sys [27032] =>.Microsoft Windows®
O58 - SDL:2017/02/20 20:41:00 A . (.Alps Electric Co., Ltd. - Alps Touch Pad Driver.) -- C:\WINDOWS\System32\drivers\Apfiltr.sys [633880] {0BCAF9CC9C146EF901281EF22C122E9A} =>.Alps Electric Co., Ltd.
O58 - SDL:2017/09/29 21:41:02 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\WINDOWS\System32\drivers\arcsas.sys [131992] =>.Microsoft Windows®
O58 - SDL:2017/09/29 21:41:02 A . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\WINDOWS\System32\drivers\bcmfn2.sys [9728] =>.Windows (R) Win 7 DDK provider
O58 - SDL:2017/09/29 21:41:01 A . (.QLogic Corporation - QLogic Gigabit Ethernet VBD.) -- C:\WINDOWS\System32\drivers\bxvbda.sys [533912] =>.Microsoft Windows®
O58 - SDL:2012/04/24 02:01:00 A . (.Corel Corporation - CDR4 64-bit CD and DVD Place Holder Driver.) -- C:\WINDOWS\System32\drivers\cdr4_xp.sys [10864] =>.Corel Corporation®
O58 - SDL:2012/04/24 02:01:00 A . (.Corel Corporation - CDRAL 64-bit Place Holder Driver (see PxHel.) -- C:\WINDOWS\System32\drivers\cdralw2k.sys [11376] =>.Corel Corporation®
O58 - SDL:2017/09/29 21:41:02 A . (.Chelsio Communications - Chelsio iSCSI Crash Dump Driver.) -- C:\WINDOWS\System32\drivers\cht4dx64.sys [141208] =>.Microsoft Windows®
O58 - SDL:2017/09/29 21:41:02 A . (.Chelsio Communications - Chelsio iSCSI VMiniport Driver.) -- C:\WINDOWS\System32\drivers\cht4sx64.sys [357272] =>.Microsoft Windows®
O58 - SDL:2017/09/29 21:41:02 A . (.Chelsio Communications - Virtual Bus Driver for Chelsio ® T5/T6 Chip.) -- C:\WINDOWS\System32\drivers\cht4vx64.sys [1723288] =>.Microsoft Windows®
O58 - SDL:2015/11/15 07:07:54 A . (.Windows (R) Win 7 DDK provider - Explore Systems Virtual Audio Device.) -- C:\WINDOWS\System32\drivers\dfx12x64.sys [39048] =>.Power Technology®
O58 - SDL:2017/09/29 21:40:59 A . (.Intel Corporation - Intel(R) Gigabit Adapter NDIS 6.x driver.) -- C:\WINDOWS\System32\drivers\e1i63x64.sys [524800] =>.Intel Corporation
O58 - SDL:2015/07/13 06:14:14 A . (.ESET - Amon monitor.) -- C:\WINDOWS\System32\drivers\eamonm.sys [255240] =>.ESET, spol. s r.o.®
O58 - SDL:2015/07/13 06:14:14 A . (.ESET - Devmon monitor.) -- C:\WINDOWS\System32\drivers\edevmon.sys [251632] =>.ESET, spol. s r.o.®
O58 - SDL:2015/07/13 06:14:14 A . (.ESET - ESET Helper driver.) -- C:\WINDOWS\System32\drivers\ehdrv.sys [178520] =>.ESET, spol. s r.o.®
O58 - SDL:2015/07/13 06:14:14 A . (.ESET - ESET Personal Firewall driver.) -- C:\WINDOWS\System32\drivers\epfwwfpr.sys [168208] =>.ESET, spol. s r.o.®
O58 - SDL:2017/09/29 21:41:01 A . (.QLogic Corporation - QLogic 10 GigE VBD.) -- C:\WINDOWS\System32\drivers\evbda.sys [3419032] =>.Microsoft Windows®
O58 - SDL:2016/03/12 10:52:46 A . (...) -- C:\WINDOWS\System32\drivers\fbd.sys [13] =>.EasyCo LLC
O58 - SDL:2017/08/31 00:11:30 A . (.VMware, Inc. - VMware USB monitor.) -- C:\WINDOWS\System32\drivers\hcmon.sys [83008] =>.VMware, Inc.®
O58 - SDL:2017/09/29 21:41:02 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\WINDOWS\System32\drivers\HpSAMD.sys [63520] =>.Microsoft Windows®
O58 - SDL:2005/12/14 07:53:42 A . (.GretagMacbeth LLC - SeqCal.) -- C:\WINDOWS\System32\drivers\i1display_x64.sys [7808] =>.GretagMacbeth LLC
O58 - SDL:2007/02/08 20:48:04 A . (.Thesycon GmbH, Germany - USBIO Driver.) -- C:\WINDOWS\System32\drivers\i1iO2_x64.sys [51600] =>.Thesycon GmbH, Germany
O58 - SDL:2007/02/08 20:48:04 A . (.Thesycon GmbH, Germany - USBIO Driver.) -- C:\WINDOWS\System32\drivers\i1_x64.sys [51600] =>.Thesycon GmbH, Germany
O58 - SDL:2017/09/29 21:40:59 A . (.Intel(R) Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\iagpio.sys [36864] =>.Intel(R) Corporation
O58 - SDL:2017/09/29 21:40:59 A . (.Intel(R) Corporation - Intel(R) Serial IO I2C Driver.) -- C:\WINDOWS\System32\drivers\iai2c.sys [91648] =>.Intel(R) Corporation
O58 - SDL:2017/09/29 21:40:59 A . (.Intel Corporation - Intel(R) Serial IO GPIO Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [79360] =>.Intel Corporation
O58 - SDL:2017/09/29 21:40:59 A . (.Intel Corporation - Intel(R) Serial IO GPIO Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [88576] =>.Intel Corporation
O58 - SDL:2017/09/29 21:40:59 A . (.Intel Corporation - Intel(R) Serial IO I2C Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [171520] =>.Intel Corporation
O58 - SDL:2017/09/29 21:40:59 A . (.Intel Corporation - Intel(R) Serial IO I2C Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [174592] =>.Intel Corporation
O58 - SDL:2017/09/29 21:41:01 A . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [38128] =>.Intel Corporation - Client Components Group®
O58 - SDL:2017/09/29 21:40:59 A . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [113152] =>.Intel Corporation
O58 - SDL:2016/02/12 18:12:50 A . (.Intel Corporation - Intel(R) Rapid Storage Technology driver -.) -- C:\WINDOWS\System32\drivers\iaStorA.sys [1477648] =>.Intel(R) Rapid Storage Technology®
O58 - SDL:2017/09/29 21:41:03 A . (.Intel Corporation - Intel(R) Rapid Storage Technology driver (i.) -- C:\WINDOWS\System32\drivers\iaStorAV.sys [674200] =>.Microsoft Windows®
O58 - SDL:2017/09/29 21:41:03 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\WINDOWS\System32\drivers\iaStorV.sys [412056] =>.Microsoft Windows®
O58 - SDL:2017/09/29 21:41:02 A . (.Mellanox - InfiniBand Fabric Bus Driver.) -- C:\WINDOWS\System32\drivers\ibbus.sys [526232] =>.Microsoft Windows®
O58 - SDL:2016/12/12 23:21:32 A . (.Intel Corporation - Intel(R) Wireless Bluetooth(R) Filter Drive.) -- C:\WINDOWS\System32\drivers\ibtusb.sys [230656] =>.Intel Corporation-Wireless Connectivity Solutions®
O58 - SDL:2016/12/02 14:30:38 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\WINDOWS\System32\drivers\igdkmd64.sys [7969784] =>.Intel(R) pGFX®
O58 - SDL:2016/05/12 12:32:26 A . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\WINDOWS\System32\drivers\IntcDAud.sys [481768] =>.Intel(R) OWR®
O58 - SDL:2014/08/02 04:18:33 A . (.Intel Corporation - Intel® WiDi Solution.) -- C:\WINDOWS\System32\drivers\intelaud.sys [38296] =>.Intel Wireless Display®
O58 - SDL:2010/03/05 19:19:00 A . (.Intercom, Inc. - LAPLINK HelpDesk Remote Control Component.) -- C:\WINDOWS\System32\drivers\llhrcmi6.sys [11296] {525B75B769EE9009BD5B37A49023D05A}
O58 - SDL:2017/09/29 21:41:02 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas.sys [108064] =>.Microsoft Windows®
O58 - SDL:2017/09/29 21:41:02 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas2i.sys [123800] =>.Microsoft Windows®
O58 - SDL:2017/09/29 21:41:02 A . (.Avago Technologies - Avago SAS Gen3 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas3i.sys [103320] =>.Microsoft Windows®
O58 - SDL:2017/09/29 21:41:02 A . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sss.sys [82840] =>.Microsoft Windows®
O58 - SDL:2017/09/29 21:41:02 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\megasas.sys [59800] =>.Microsoft Windows®
O58 - SDL:2017/09/29 21:41:02 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\MegaSas2i.sys [63520] =>.Microsoft Windows®
O58 - SDL:2017/09/29 21:41:02 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\WINDOWS\System32\drivers\megasr.sys [575896] =>.Microsoft Windows®
O58 - SDL:2017/09/29 21:41:02 A . (.Mellanox - MLX4 Bus Driver.) -- C:\WINDOWS\System32\drivers\mlx4_bus.sys [842648] =>.Microsoft Windows®
O58 - SDL:2017/04/06 18:32:11 A . (.Windows (R) Win 7 DDK provider - Macrium Reflect Changed Block Tracker.) -- C:\WINDOWS\System32\drivers\mrcbt.sys [96752] =>.Paramount Software UK Ltd®
O58 - SDL:2017/09/29 21:41:02 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\WINDOWS\System32\drivers\mvumis.sys [63896] =>.Microsoft Windows®
O58 - SDL:2017/09/29 21:41:02 A . (.Mellanox - NetworkDirect Support Filter Driver.) -- C:\WINDOWS\System32\drivers\ndfltr.sys [108952] =>.Microsoft Windows®
O58 - SDL:2017/09/29 21:40:59 A . (.Intel Corporation - Intel® Wireless WiFi Link Driver.) -- C:\WINDOWS\System32\drivers\Netwbw02.sys [3485696] =>.Intel Corporation
O58 - SDL:2016/09/20 14:28:56 A . (.NetFilterSDK.com - NetFilter SDK TDI Hook Driver (WPP).) -- C:\WINDOWS\System32\drivers\networx.sys [72632] =>.SOFTPERFECT PTY. LTD.®
O58 - SDL:2017/08/03 20:06:11 A . (.Locktime Software - NetLimiter 4 Driver.) -- C:\WINDOWS\System32\drivers\nldrv.sys [178552] =>.Locktime Software s.r.o.®
O58 - SDL:2013/03/01 09:49:12 A . (.Riverbed Technology, Inc. - npf.sys (NT5/6 AMD64) Kernel Driver.) -- C:\WINDOWS\System32\drivers\npf.sys [36600] =>.Riverbed Technology, Inc.®
O58 - SDL:2017/09/29 21:41:02 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\WINDOWS\System32\drivers\nvraid.sys [150424] =>.Microsoft Windows®
O58 - SDL:2017/09/29 21:41:02 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\WINDOWS\System32\drivers\nvstor.sys [166296] =>.Microsoft Windows®
O58 - SDL:2017/09/29 21:41:02 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas2i.sys [58776] =>.Microsoft Windows®
O58 - SDL:2017/09/29 21:41:02 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas3i.sys [61848] =>.Microsoft Windows®
O58 - SDL:2017/06/17 19:21:30 A . (.Sysinternals - www.sysinternals.com - Process Monitor Driver.) -- C:\WINDOWS\System32\drivers\PROCMON23.SYS [91976] =>.Microsoft Windows Hardware Compatibility Publisher®
O58 - SDL:2017/02/22 13:14:42 A . (.Windows (R) Win 7 DDK provider - Paramount Software Image Mounting Driver.) -- C:\WINDOWS\System32\drivers\psmounterex.sys [190320] =>.Paramount Software UK Ltd®
O58 - SDL:2017/02/22 13:35:34 A . (.Windows (R) Win 7 DDK provider - Volume Access Driver.) -- C:\WINDOWS\System32\drivers\PSVolAcc.sys [32512] =>.Paramount Software UK Ltd®
O58 - SDL:2013/08/15 18:07:58 A . (...) -- C:\WINDOWS\System32\drivers\PuranRefreshDriver.sys [9984]
O58 - SDL:2017/09/29 21:41:14 RA . (.Realtek - Realtek PCIe GBE Family Controller Flight.) -- C:\WINDOWS\System32\drivers\rteth.sys [59904] =>.Realtek
O58 - SDL:2015/07/20 15:23:16 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\WINDOWS\System32\drivers\RTKVHD64.sys [4515584] =>.Realtek Semiconductor Corp®
O58 - SDL:2016/11/10 10:55:20 A . (.Realsil Semiconductor Corporation - RTS PCIE READER Driver.) -- C:\WINDOWS\System32\drivers\RtsPer.sys [787976] =>.Realtek Semiconductor Corp.®
O58 - SDL:2017/09/29 21:41:02 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid2.sys [44952] =>.Microsoft Windows®
O58 - SDL:2017/09/29 21:41:02 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid4.sys [81816] =>.Microsoft Windows®
O58 - SDL:2017/09/29 21:41:02 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\WINDOWS\System32\drivers\stexstor.sys [31128] =>.Microsoft Windows®
O58 - SDL:2015/12/25 13:56:14 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [185384] =>.Intel(R) Embedded Subsystems and IP Blocks Group®
O58 - SDL:2016/08/03 14:30:18 A . (.Toshiba Client Solutions Co., Ltd. - Toshiba Hotkey Driver.) -- C:\WINDOWS\System32\drivers\Thotkey.sys [52816] =>.Toshiba Client Solutions Co.,Ltd.®
O58 - SDL:2016/03/10 10:17:04 A . (.TOSHIBA Corporation - TOSHIBA Bluetooth ACPI Driver.) -- C:\WINDOWS\System32\drivers\tosrfec.sys [44208] =>.TOSHIBA CORPORATION®
O58 - SDL:2015/05/27 14:15:50 A . (.TOSHIBA Corporation - tos_sps64.) -- C:\WINDOWS\System32\drivers\tos_sps64.sys [507832] =>.TOSHIBA CORPORATION®
O58 - SDL:2016/07/22 03:23:26 A . (.TOSHIBA Corporation - TOSHIBA ACPI-Based Value Added Logical and.) -- C:\WINDOWS\System32\drivers\TVALZ.SYS [53888] =>.TOSHIBA CORPORATION®
O58 - SDL:2013/06/07 14:21:50 A . (.TOSHIBA Corporation - TOSHIBA TVALZ Filter Driver.) -- C:\WINDOWS\System32\drivers\TVALZFL.sys [17208] =>.TOSHIBA CORPORATION®
O58 - SDL:2017/09/05 03:54:54 A . (.VMware, Inc. - VMware PCI VMCI Bus Device.) -- C:\WINDOWS\System32\drivers\vmci.sys [105024] =>.VMware, Inc.®
O58 - SDL:2017/09/18 05:32:42 A . (.VMware, Inc. - VMware virtual network driver (64-bit).) -- C:\WINDOWS\System32\drivers\vmnet.sys [46040] =>.VMware, Inc.®
O58 - SDL:2017/09/18 05:32:34 A . (.VMware, Inc. - VMware virtual network adapter driver (64-b.) -- C:\WINDOWS\System32\drivers\vmnetadapter.sys [46040] =>.VMware, Inc.®
O58 - SDL:2017/09/18 05:32:42 A . (.VMware, Inc. - VMware bridge driver (64-bit).) -- C:\WINDOWS\System32\drivers\vmnetbridge.sys [66520] =>.VMware, Inc.®
O58 - SDL:2017/09/18 05:32:42 A . (.VMware, Inc. - VMware network application interface driver.) -- C:\WINDOWS\System32\drivers\vmnetuserif.sys [43992] =>.VMware, Inc.®
O58 - SDL:2017/09/18 05:21:10 A . (.VMware, Inc. - VMware kernel driver.) -- C:\WINDOWS\System32\drivers\vmx86.sys [95704] =>.VMware, Inc.®
O58 - SDL:2017/09/29 21:41:02 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\WINDOWS\System32\drivers\vsmraid.sys [166808] =>.Microsoft Windows®
O58 - SDL:2017/09/05 03:54:54 A . (.VMware, Inc. - VMware vSockets Service.) -- C:\WINDOWS\System32\drivers\vsock.sys [91712] =>.VMware, Inc.®
O58 - SDL:2017/09/29 21:41:02 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\WINDOWS\System32\drivers\VSTXRAID.SYS [305560] =>.Microsoft Windows®
O58 - SDL:2017/09/29 21:41:02 A . (.Mellanox - Kernel WinMad.) -- C:\WINDOWS\System32\drivers\winmad.sys [32152] =>.Microsoft Windows®
O58 - SDL:2017/09/29 21:41:02 A . (.Mellanox - Kernel WinVerbs.) -- C:\WINDOWS\System32\drivers\winverbs.sys [64920] =>.Microsoft Windows®
O58 - SDL:2016/12/07 12:26:06 A . (...) -- C:\WINDOWS\System32\epmntdrv.sys [33448] =>.CHENGDU YIWO Tech Development Co., Ltd.®
O58 - SDL:2016/07/11 09:01:24 A . (...) -- C:\WINDOWS\System32\EuGdiDrv.sys [10848] =>.Intel Corporation
---\\ Derniers fichiers modifiés ou crées (Utilisateur) (4) - 8s
O61 - LFC: 2017/10/21 13:13:58 RA . (..) -- C:\Users\owner\AppData\Roaming\Microsoft\Installer\{DC63955E-98AF-4858-AEC7-1C2843D77C85}\SystemFoldermsiexec.exe [14534]
O61 - LFC: 2017/10/21 13:13:58 RA . (..) -- C:\Users\owner\AppData\Roaming\Microsoft\Installer\{DC63955E-98AF-4858-AEC7-1C2843D77C85}\W10MLogo256_1.exe [304886]
O61 - LFC: 2017/10/27 18:47:35 A . (.Copyright © 2016 Midlinesoft.) -- C:\Users\owner\Documents\Programmes Windows 10\Programmes Windows 10\système\FileSearchy 1.43.exe [9168508]
O61 - LFC: 2017/10/25 21:47:09 A . (..) -- C:\Users\owner\Downloads\torbrowser-install-7.0.8_en-US.exe [53527264] {0F622EF31D0F1EF94E520DBD7A43E58C}
---\\ Associations Shell Spawning (11) - 0s
O67 - Shell Spawning: <.bat>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\WINDOWS\System32\control.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Ob.) -- C:\WINDOWS\System32\eventvwr.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.exe>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.EXE =>.Microsoft Corporation®
O67 - Shell Spawning: <.js>[HKLM\..\open\Command] (...) -- %1" %*
O67 - Shell Spawning: <.reg>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.scr>[HKLM\..\open\Command] (...) -- "%1" /S
O67 - Shell Spawning: <.html>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
---\\ Menu de démarrage Internet (8) - 1s
O68 - StartMenuInternet: [64Bits][HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O68 - StartMenuInternet: [64Bits][HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
---\\ Recherche d'infection sur les navigateurs (2) - 64s
O69 - SBI: SearchScopes [HKCU] [64Bits]{0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/ =>.Bing.com
O69 - SBI: SearchScopes [HKLM] [64Bits]{0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (@ieframe.dll,-12512) - http://www.bing.com/ =>.Bing.com
---\\ Enumère les services démarrés par Svchost (48) - 0s
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\WINDOWS\System32\certprop.dll [188928] =>.Microsoft Corporation
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\WINDOWS\System32\certprop.dll [188928] =>.Microsoft Corporation
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\WINDOWS\System32\srvsvc.dll [270848] =>.Microsoft Corporation
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\WINDOWS\System32\gpsvc.dll [1275904] =>.Microsoft Corporation
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\WINDOWS\System32\ikeext.dll [984064] =>.Microsoft Corporation
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\WINDOWS\System32\iphlpsvc.dll [820224] =>.Microsoft Corporation
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\WINDOWS\system32\seclogon.dll [30720] =>.Microsoft Corporation
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\WINDOWS\System32\appinfo.dll [144896] =>.Microsoft Corporation
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\WINDOWS\System32\iscsiexe.dll [150528] =>.Microsoft Corporation
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\WINDOWS\System32\eapsvc.dll [109056] =>.Microsoft Corporation
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\WINDOWS\System32\schedsvc.dll [880640] =>.Microsoft Corporation
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\WINDOWS\System32\wbem\WMIsvc.dll [220160] =>.Microsoft Corporation
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\WINDOWS\System32\profsvc.dll [407040] =>.Microsoft Corporation
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\WINDOWS\System32\sessenv.dll [387584] =>.Microsoft Corporation
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\WINDOWS\System32\wercplsupport.dll [108544] =>.Microsoft Corporation
O83 - Search Svchost Services: PushToInstall (PushToInstall) . (.Microsoft Corporation - PushToInstall.) -- C:\WINDOWS\System32\PushToInstall.dll [254976] =>.Microsoft Corporation
O83 - Search Svchost Services: shpamsvc (shpamsvc) . (.Microsoft Corporation - SharedPC.AccountManager.) -- C:\WINDOWS\System32\Windows.SharedPC.AccountManager.dll [194560] =>.Microsoft Corporation
O83 - Search Svchost Services: XblGameSave (XblGameSave) . (.Microsoft Corporation - Xbox Live Game Save Service.) -- C:\WINDOWS\System32\XblGameSave.dll [1272320] =>.Microsoft Corporation
O83 - Search Svchost Services: NaturalAuthentication (NaturalAuthentication) . (.Microsoft Corporation - Service d’authentification naturelle.) -- C:\WINDOWS\System32\NaturalAuth.dll [795136] =>.Microsoft Corporation
O83 - Search Svchost Services: TokenBroker (TokenBroker) . (.Microsoft Corporation - Broker à jetons.) -- C:\WINDOWS\System32\TokenBroker.dll [1230848] =>.Microsoft Corporation
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Service de géolocalisation.) -- C:\WINDOWS\System32\lfsvc.dll [46080] =>.Microsoft Corporation
O83 - Search Svchost Services: XblAuthManager (XblAuthManager) . (.Microsoft Corporation - Xbox Live Auth Manager.) -- C:\WINDOWS\System32\XblAuthManager.dll [1107968] =>.Microsoft Corporation
O83 - Search Svchost Services: Irmon (Irmon) . (.Microsoft Corporation - Moniteur infrarouge.) -- C:\WINDOWS\System32\irmon.dll [24576] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\WINDOWS\System32\rasauto.dll [104960] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d’accès à dista.) -- C:\WINDOWS\System32\rasmans.dll [930304] =>.Microsoft Corporation
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\WINDOWS\System32\mprdim.dll [491520] =>.Microsoft Corporation
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\WINDOWS\System32\sens.dll [73216] =>.Microsoft Corporation
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\WINDOWS\System32\ipnathlp.dll [600576] =>.Microsoft Corporation
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\WINDOWS\System32\tapisrv.dll [307200] =>.Microsoft Corporation
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\WINDOWS\System32\wuaueng.dll [2782720] =>.Microsoft Corporation
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\WINDOWS\System32\qmgr.dll [1345536] =>.Microsoft Corporation
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS\System32\shsvcs.dll [613376] =>.Microsoft Corporation
O83 - Search Svchost Services: DmEnrollmentSvc (DmEnrollmentSvc) . (.Microsoft Corporation - DLL Windows Management Service.) -- C:\WINDOWS\System32\Windows.Internal.Management.dll [702464] =>.Microsoft Corporation
O83 - Search Svchost Services: dmwappushservice (dmwappushservice) . (.Microsoft Corporation - dmwappushsvc.) -- C:\WINDOWS\System32\dmwappushsvc.dll [57856] =>.Microsoft Corporation
O83 - Search Svchost Services: wisvc (wisvc) . (.Microsoft Corporation - Paramètres de vol.) -- C:\WINDOWS\System32\flightsettings.dll [779264] =>.Microsoft Corporation
O83 - Search Svchost Services: WpnService (WpnService) . (.Microsoft Corporation - Service du système de notifications Push Wi.) -- C:\WINDOWS\System32\WpnService.dll [284672] =>.Microsoft Corporation
O83 - Search Svchost Services: XboxNetApiSvc (XboxNetApiSvc) . (.Microsoft Corporation - Xbox Live Networking Service.) -- C:\WINDOWS\System32\XboxNetApiSvc.dll [1143808] =>.Microsoft Corporation
O83 - Search Svchost Services: UsoSvc (UsoSvc) . (.Microsoft Corporation - Mettre à jour la session Orchestrator Core.) -- C:\WINDOWS\System32\usocore.dll [1288704] =>.Microsoft Corporation
O83 - Search Svchost Services: UserManager (UserManager) . (.Microsoft Corporation - UserMgr.) -- C:\WINDOWS\System32\usermgr.dll [951808] =>.Microsoft Corporation
O83 - Search Svchost Services: InstallService (InstallService) . (.Microsoft Corporation - InstallService.) -- C:\WINDOWS\System32\InstallService.dll [1306624] =>.Microsoft Corporation
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\WINDOWS\System32\themeservice.dll [69632] =>.Microsoft Corporation
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\WINDOWS\System32\bdesvc.dll [387072] =>.Microsoft Corporation
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d’installation de périphérique.) -- C:\WINDOWS\System32\DeviceSetupManager.dll [237568] =>.Microsoft Corporation
O83 - Search Svchost Services: NetSetupSvc (NetSetupSvc) . (.Microsoft Corporation - Service Configuration du réseau.) -- C:\WINDOWS\System32\NetSetupSvc.dll [307712] =>.Microsoft Corporation
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Micro.) -- C:\WINDOWS\System32\ncasvc.dll [170496] =>.Microsoft Corporation
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\WINDOWS\System32\wlidsvc.dll [2223104] =>.Microsoft Corporation
O83 - Search Svchost Services: XboxGipSvc (XboxGipSvc) . (.Microsoft Corporation - Xbox Gip Management Service.) -- C:\WINDOWS\System32\XboxGipSvc.dll [57856] =>.Microsoft Corporation
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\WINDOWS\System32\appmgmts.dll [196096] =>.Microsoft Corporation
---\\ Liste des exceptions du parefeu Windows (2) - 1s
O87 - FAEL: "{2765E0F4-2918-4A46-B9C9-43CDD8FCBA2B}" [Out-None-P17-TRUE] .(...) -- C:\windows\systemapps\microsoft.windows.cortana_cw5n1h2txyewy\searchui.exe (.not file.)
O87 - FAEL: "{79C2BA16-D1B2-405C-8699-2D5E4578FF35}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (.not file.)
---\\ Scan Additionnel (2) - 1s
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814} =>.SUP.Orphan
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{10921475-03CE-4E04-90CE-E2E7EF20C814} =>.SUP.Orphan
---\\ Récapitulatif des éléments trouvés sur votre station (2) - 0s
https://www.nicolascoolman.com/fr/adware-adon/ =>PUP.Optional.ADON
https://nicolascoolman.eu/2017/09/12/origine-lignes-orphelines/ =>.SUP.Orphan
~ Unselected Options: O38, O50, O82,
~ End of the scan, 96870 items in 03mn41s (1636)(0)
~ Démarré par owner (Administrator) (2017/10/27 19:14:53)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Certificate ZHPDiag: Legal
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\owner\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\owner\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Démarrage du système: Normal (Normal boot)
Windows 10 Pro, 64-bit (Build 16299) =>.Microsoft Corporation
---\\ Navigateurs Internet (3) - 0s
~ MFIE: Mozilla Firefox 56.0.1 (x64 fr)
~ MSIE: Microsoft Edge v40
~ MSIE: Internet Explorer v11.15.16299.0
---\\ Informations sur les produits Windows (8) - 0s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
~ Windows(R) Operating System, VOLUME_MAK channel
Windows ID Activation : OK
~ Windows Partial Key : 6MT6Y
Windows License : OK
~ Windows Remaining Initializations Number : 1001
Windows Automatic Updates : KO
---\\ Logiciels de protection (2) - 3s
ESET NOD32 Antivirus v8.0.319.0 (Protection)
Windows Defender (Deactivate)
---\\ Surveillance de Logiciels (1) - 3s
~ Adobe Flash Player 27 NPAPI (Surveillance)
---\\ Informations sur le système (6) - 0s
~ Operating System: Intel64 Family 6 Model 60 Stepping 3, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 16700.736 MB (74% free) : OK =>.RAM Value
System Restore: Activé (Enable)
System drive C: has 86 GB (17%) free of 486 GB : OK =>.Disk Space
---\\ Mode de connexion au système (3) - 0s
~ Computer Name: PC
~ User Name: owner
~ Logged in as Administrator
---\\ Enumération des unités disques (1) - 0s
~ Drive C: has 86 GB free of 486 GB (System)
---\\ Etat du Centre de Sécurité Windows (7) - 0s
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM64\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
---\\ Recherche particulière de fichiers génériques (25) - 1s
[MD5.4312C7F7CA8CC13A475CB150EEB5F35E] - 29/09/2017 - (.Microsoft Corporation - Explorateur Windows.) -- C:\WINDOWS\Explorer.exe [3894968] =>.Microsoft Windows®
[MD5.731A783A36A8E69A6434D19D98B12A09] - 29/09/2017 - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\WINDOWS\System32\rundll32.exe [71168] =>.Microsoft Corporation
[MD5.BF3E1D9B2360C6BE4CC3094CD2DDC617] - 29/09/2017 - (.Microsoft Corporation - Application de démarrage de Windows.) -- C:\WINDOWS\System32\Wininit.exe [359584] {330000016A891F494619ED646800000000016A} =>.Microsoft Corporation
[MD5.D5B5C1E2E7C8AFB93C365D53E80F0BF9] - 19/10/2017 - (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\WINDOWS\System32\wininet.dll [3334144] =>.Microsoft Corporation
[MD5.8B67C13E6C000B14C1551FF07F15242E] - 29/09/2017 - (.Microsoft Corporation - Application d’ouverture de session Windows.) -- C:\WINDOWS\System32\Winlogon.exe [712704] =>.Microsoft Corporation
[MD5.4D487E7D2B047FB929BE00117C09F9EC] - 29/09/2017 - (.Microsoft Corporation - Bibliothèque de licences.) -- C:\WINDOWS\System32\sppcomapi.dll [414720] =>.Microsoft Corporation
[MD5.A94E2533A7604E4AA05DCCC675A9F396] - 19/10/2017 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\WINDOWS\System32\dnsapi.dll [739696] =>.Microsoft Windows®
[MD5.0A821BF024E347943D6F5C5180FAEA31] - 19/10/2017 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\WINDOWS\Syswow64\dnsapi.dll [597160] =>.Microsoft Windows®
[MD5.3B34C7B9D7E22AEF58DF0CFC4C7CC82D] - 19/10/2017 - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) -- C:\WINDOWS\System32\fr-FR\user32.dll.mui [19968] =>.Microsoft Corporation
[MD5.6FB5A2026B16D596DEABF550E7A4BD82] - 29/09/2017 - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) -- C:\WINDOWS\System32\drivers\AFD.sys [614296] =>.Microsoft Windows®
[MD5.6191B9B2EE0E8CB957C683B9B341CC86] - 29/09/2017 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\WINDOWS\System32\drivers\atapi.sys [28568] =>.Microsoft Windows®
[MD5.9E82A95D77AC78C84BA75FF896B060BF] - 29/09/2017 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\WINDOWS\System32\drivers\Cdfs.sys [93184] =>.Microsoft Corporation
[MD5.6D83565C1652E80447EDEA6947FA89D7] - 29/09/2017 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\WINDOWS\System32\drivers\Cdrom.sys [159744] =>.Microsoft Corporation
[MD5.9910E9CFF5ECDCB225F82E72CE9DE459] - 29/09/2017 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\WINDOWS\System32\drivers\DfsC.sys [151040] =>.Microsoft Corporation
[MD5.99A34FD1F6431A10D8C3BB50E170D0F2] - 29/09/2017 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\WINDOWS\System32\drivers\HDAudBus.sys [86016] =>.Microsoft Corporation
[MD5.56FF074E50F9042FD2856AB3418F4B18] - 29/09/2017 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\WINDOWS\System32\drivers\i8042prt.sys [105984] =>.Microsoft Corporation
[MD5.7BEC2AF23F586EFF0DB4DBF4331B0C70] - 29/09/2017 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\System32\drivers\IpNat.sys [214016] =>.Microsoft Corporation
[MD5.6FC2E733C7172B6BFAD383B108E56F92] - 29/09/2017 - (.Microsoft Corporation - Minirdr SMB Windows NT.) -- C:\WINDOWS\System32\drivers\MRxSmb.sys [496536] =>.Microsoft Windows®
[MD5.401C17200AA0433D94EA61695F111DC3] - 29/09/2017 - (.Microsoft Corporation - MBT Transport driver.) -- C:\WINDOWS\System32\drivers\netBT.sys [316928] =>.Microsoft Corporation
[MD5.CB320257BE88E11E5C7B209F3EF7F7D8] - 19/10/2017 - (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\WINDOWS\System32\drivers\ntfs.sys [2400664] =>.Microsoft Windows®
[MD5.2E07EC2C1622F5E7B535D62DCD61F3AB] - 29/09/2017 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\WINDOWS\System32\drivers\Parport.sys [98816] =>.Microsoft Corporation
[MD5.E0220BB6580D34001D4D1D133052DAA4] - 29/09/2017 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [106496] =>.Microsoft Corporation
[MD5.DF83769C92527DB50653F8FB57D001FF] - 30/09/2017 - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RD.) -- C:\WINDOWS\System32\drivers\rdpdr.sys [182784] =>.Microsoft Corporation
[MD5.571D82ABAC428D902ACA0CF60373C039] - 29/09/2017 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\WINDOWS\System32\drivers\tdx.sys [121240] =>.Microsoft Windows®
[MD5.6AF9BCB1FFD127B8F4E7E7B9FF9351EA] - 29/09/2017 - (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\WINDOWS\System32\drivers\volsnap.sys [401304] =>.Microsoft Windows®
---\\ Liste des services NT non Microsoft et non désactivés (25) - 2s
O23 - Service: (AdobeUpdateService) . (.Adobe Systems Incorporated - Adobe Update Service.) - C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe =>.Adobe Systems Incorporated®
O23 - Service: Adobe Genuine Software Integrity Service (AGSService) . (.Adobe Systems, Incorporated - Adobe Genuine Software Integrity Service.) - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe =>.Adobe Systems Incorporated®
O23 - Service: @oem5.inf,%HidMonitor.SvcDisp%;Alps HID Monitor Service (ApHidMonitorService) . (.Alps Electric Co., Ltd. - HidMonitorSvc Application.) - C:\Program Files\Apoint2K\HidMonitorSvc.exe {0A19FDD4BEA3CB223E6B548A4940E48C} =>.Alps Electric Co., Ltd.
O23 - Service: Cron Service (CronService) . (.Fork, Ltd. - Execution Service.) - C:\Windows\Prey\wpxsvc.exe
O23 - Service: ESET Service (ekrn) . (.ESET - ESET Service.) - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe =>.ESET, spol. s r.o.®
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) . (.Intel Corporation - IAStorDataSvc.) - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe =>.Intel(R) Rapid Storage Technology®
O23 - Service: @oem30.inf,%SERVICE_NAME%;Intel Bluetooth Service (ibtsiva) . (...) - C:\WINDOWS\System32\ibtsiva (.not file.) =>.Intel Corporation
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) . (.Intel Corporation - igfxCUIService Module.) - C:\WINDOWS\System32\igfxCUIService.exe =>.Intel Corporation
O23 - Service: Intel(R) Capability Licensing Service Interface (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation - Intel(R) Capability Licensing Service Inter.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe =>.Intel(R) Corporation
O23 - Service: Intel(R) ME Service (Intel(R) ME Service) . (.Intel Corporation - Intel(R) ME Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe =>.Intel Corporation - Intel® Management Engine Firmware®
O23 - Service: Internet Off Service (InternetOffService) . (...) - C:\Program Files (x86)\InternetOff\IOffSvc.exe =>.Crystal Rich Ltd®
O23 - Service: IObit Uninstaller Service (IObitUnSvr) . (.IObit - Uninstall Programs.) - C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe =>.IObit Information Technology®
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) . (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe =>.Intel Corporation - Intel® Management Engine Firmware®
O23 - Service: Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation - Intel(R) Local Management Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe =>.Intel Corporation - Software and Firmware Products®
O23 - Service: Macrium Service (MacriumService) . (.Paramount Software UK Ltd - Macrium Reflect Utility Service.) - C:\Program Files\Macrium\Common\MacriumService.exe =>.Paramount Software UK Ltd®
O23 - Service: NetLimiter 4 Service (nlsvc) . (.Locktime Software - NetLimiter Service.) - C:\Program Files\Locktime Software\NetLimiter 4\NLSvc.exe =>.Locktime Software s.r.o.®
O23 - Service: Protexis Licensing V2 x64 (PSI_SVC_2_x64) . (.arvato digital services llc - PsiService PsiService.) - c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe =>.Arvato Digital Services Canada Inc®
O23 - Service: SMITS (SMITS) . (...) - C:\Windows\SysWOW64\SMITSC.exe
O23 - Service: TPCHKarteSVC (TPCHKarteSVC) . (.Toshiba Corporation - Toshiba Health monitor karte service.) - C:\Program Files (x86)\TOSHIBA\TKRTL\TPCHKarteSVC.exe =>.TOSHIBA CORPORATION®
O23 - Service: VMware vCenter Converter Standalone Agent (vmware-converter-agent) . (.VMware, Inc. - VMware Converter Service.) - C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\vmware-converter-a.exe =>.VMware, Inc.®
O23 - Service: VMware vCenter Converter Standalone Server (vmware-converter-server) . (.VMware, Inc. - VMware Converter Service.) - C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\vmware-converter.exe =>.VMware, Inc.®
O23 - Service: VMware vCenter Converter Standalone Worker (vmware-converter-worker) . (.VMware, Inc. - VMware Converter Service.) - C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\vmware-converter.exe =>.VMware, Inc.®
O23 - Service: Intel(R) Extreme Tuning Utility Service (XTU3SERVICE) . (.Intel(R) Corporation - XtuService.) - C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe =>.Intel(R) Extreme Tuning Utility®
O23 - Service: Zentimo Assistant (ZentimoService) . (.Crystal Rich Ltd - Zentimo assistant service.) - C:\Zentimo Portable 2.0.6\App\ProgramFiles\ZentimoService.exe =>.Crystal Rich Ltd®
O23 - Service: Power Control [2016/06/10 17:49:24] ({41E8078B-96D9-42DC-8789-A1CF102CD880}) . (...) - \C:\Program Files (x86)\CyberLink\PowerDVD16\Common\NavFilter\000.fcl (.not file.)
---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (41) - 52s
SR - Auto [20/09/2017] [ 817760] (AdobeUpdateService) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe =>.Adobe Systems Incorporated®
SR - Auto [23/08/2017] [ 2257016] Adobe Genuine Software Integrity Service (AGSService) . (.Adobe Systems, Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe =>.Adobe Systems Incorporated®
SR - Auto [20/02/2017] [ 115776] @oem5.inf,%HidMonitor.SvcDisp%;Alps HID Monitor Service (ApHidMonitorService) . (.Alps Electric Co., Ltd..) - C:\Program Files\Apoint2K\HidMonitorSvc.exe {0A19FDD4BEA3CB223E6B548A4940E48C} =>.Alps Electric Co., Ltd.
SS - Demand [02/12/2016] [ 301560] Intel(R) Content Protection HECI Service (cphs) . (.Intel Corporation.) - C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe =>.Intel(R) pGFX®
SR - Auto [13/09/2017] [ 611854] Cron Service (CronService) . (.Fork, Ltd..) - C:\Windows\Prey\wpxsvc.exe
SR - Demand [27/05/2015] [ 19960] DTS APO Service (dts_apo_service) . (.Copyright © 2012.) - C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe =>.DTS, Inc.®
SR - Auto [08/07/2015] [ 1353720] ESET Service (ekrn) . (.ESET.) - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe =>.ESET, spol. s r.o.®
SS - Disabl [22/08/2016] [ 107912] Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SS - Disabl [22/08/2016] [ 107912] Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SR - Auto [03/02/2016] [ 18488] Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) . (.Intel Corporation.) - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe =>.Intel(R) Rapid Storage Technology®
SR - Auto [ 0] [ 0] @oem30.inf,%SERVICE_NAME%;Intel Bluetooth Service (ibtsiva) . (...) - C:\WINDOWS\System32\ibtsiva =>.Intel Corporation
SR - Demand [24/06/2014] [ 171480] Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe =>.Intel Corporation - Intel® Management Engine Firmware®
SR - Auto [02/12/2016] [ 373752] Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) . (.Intel Corporation.) - C:\WINDOWS\System32\igfxCUIService.exe =>.Intel(R) pGFX®
SR - Auto [27/08/2013] [ 747520] Intel(R) Capability Licensing Service Interface (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe =>.Intel(R) Corporation
SS - Demand [27/08/2013] [ 828376] Intel(R) Capability Licensing Service TCP IP Interface (Intel(R) Capability Licensing Service TCP IP Interface) . (.Intel(R) Corporation.) - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe =>.Intel® Trusted Connect Service®
SR - Auto [09/12/2013] [ 131544] Intel(R) ME Service (Intel(R) ME Service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe =>.Intel Corporation - Intel® Management Engine Firmware®
SR - Auto [25/05/2016] [ 1634072] Internet Off Service (InternetOffService) . (...) - C:\Program Files (x86)\InternetOff\IOffSvc.exe =>.Crystal Rich Ltd®
SR - Auto [14/06/2017] [ 206112] IObit Uninstaller Service (IObitUnSvr) . (.IObit.) - C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe =>.IObit Information Technology®
SR - Auto [09/12/2013] [ 169432] Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe =>.Intel Corporation - Intel® Management Engine Firmware®
SR - Auto [09/12/2013] [ 390616] Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe =>.Intel Corporation - Software and Firmware Products®
SR - Auto [10/03/2017] [ 3931080] Macrium Service (MacriumService) . (.Paramount Software UK Ltd.) - C:\Program Files\Macrium\Common\MacriumService.exe =>.Paramount Software UK Ltd®
SR - Auto [03/08/2017] [ 332848] NetLimiter 4 Service (nlsvc) . (.Locktime Software.) - C:\Program Files\Locktime Software\NetLimiter 4\NLSvc.exe =>.Locktime Software s.r.o.®
SS - Disabl [17/12/2012] [ 16384] OEMRegistrationProgram (OEMRegistrationProgram) . (.Toshiba Corporation.) - C:\Program Files (x86)\Toshiba\OEM Registration Program\OEMRegistrationProgram.exe =>.Toshiba Corporation
SR - Auto [13/09/2013] [ 337776] Protexis Licensing V2 x64 (PSI_SVC_2_x64) . (.arvato digital services llc.) - c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe =>.Arvato Digital Services Canada Inc®
SS - Demand [01/03/2013] [ 118520] Remote Packet Capture Protocol v.0 (experimental) (rpcapd) . (.Riverbed Technology, Inc..) - C:\Program Files (x86)\WinPcap\rpcapd.exe =>.Riverbed Technology, Inc.®
SR - Auto [27/02/2014] [ 13312] SMITS (SMITS) . (...) - C:\Windows\SysWOW64\SMITSC.exe
SS - Demand [07/09/2017] [ 1610016] Steam Client Service (Steam Client Service) . (.Valve Corporation.) - C:\Program Files (x86)\Common Files\Steam\SteamService.exe =>.Valve®
SR - Demand [07/12/2015] [ 53040] TMachInfo (TMachInfo) . (.TOSHIBA Corporation.) - C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe =>.TOSHIBA CORPORATION®
SS - Disabl [15/06/2015] [ 331056] TOSHIBA eco Utility Service (TOSHIBA eco Utility Service) . (.Toshiba Corporation.) - C:\Program Files\TOSHIBA\Teco\TecoService.exe =>.TOSHIBA CORPORATION®
SR - Auto [22/01/2013] [ 244144] TPCHKarteSVC (TPCHKarteSVC) . (.Toshiba Corporation.) - C:\Program Files (x86)\TOSHIBA\TKRTL\TPCHKarteSVC.exe =>.TOSHIBA CORPORATION®
SS - Demand [24/11/2014] [ 451144] TPCH Service (TPCHSrv) . (.TOSHIBA Corporation.) - C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe =>.TOSHIBA CORPORATION®
SS - Demand [18/09/2017] [ 95208] VMware Authorization Service (VMAuthdService) . (.VMware, Inc..) - C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe =>.VMware, Inc.®
SS - Demand [18/09/2017] [ 367080] VMware DHCP Service (VMnetDHCP) . (.VMware, Inc..) - C:\Windows\SysWOW64\vmnetdhcp.exe =>.VMware, Inc.®
SS - Demand [31/08/2017] [ 866792] VMware USB Arbitration Service (VMUSBArbService) . (.VMware, Inc..) - C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe =>.VMware, Inc.®
SS - Demand [18/09/2017] [ 402408] VMware NAT Service (VMware NAT Service) . (.VMware, Inc..) - C:\Windows\SysWOW64\vmnat.exe =>.VMware, Inc.®
SR - Auto [09/02/2016] [ 503512] VMware vCenter Converter Standalone Agent (vmware-converter-agent) . (.VMware, Inc..) - C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\vmware-converter-a.exe =>.VMware, Inc.®
SR - Auto [09/02/2016] [ 503512] VMware vCenter Converter Standalone Server (vmware-converter-server) . (.VMware, Inc..) - C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\vmware-converter.exe =>.VMware, Inc.®
SR - Auto [09/02/2016] [ 503512] VMware vCenter Converter Standalone Worker (vmware-converter-worker) . (.VMware, Inc..) - C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\vmware-converter.exe =>.VMware, Inc.®
SS - Demand [18/09/2017] [14344168] VMware Workstation Server (VMwareHostd) . (...) - C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe =>.VMware, Inc.®
SR - Auto [21/07/2017] [ 18264] Intel(R) Extreme Tuning Utility Service (XTU3SERVICE) . (.Intel(R) Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe =>.Intel(R) Extreme Tuning Utility®
SR - Auto [03/06/2017] [ 1782880] Zentimo Assistant (ZentimoService) . (.Crystal Rich Ltd.) - C:\Zentimo Portable 2.0.6\App\ProgramFiles\ZentimoService.exe =>.Crystal Rich Ltd®
---\\ Applications lancées au démarrage du système (52) - 2s
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe =>.Realtek Semiconductor Corp®
O4 - HKLM\..\Run: [Apoint] . (.Alps Electric Co., Ltd. - Alps Pointing-device Driver.) -- C:\Program Files\Apoint2K\Apoint.exe {0BCAF9CC9C146EF901281EF22C122E9A} =>.Alps Electric Co., Ltd.
O4 - HKLM\..\Run: [TCrdMain] . (.TOSHIBA Corporation - TOSHIBA Function Key Main Module.) -- C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe =>.TOSHIBA CORPORATION®
O4 - HKLM\..\Run: [egui] . (.ESET - ESET Main GUI.) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe =>.ESET, spol. s r.o.®
O4 - HKLM\..\Run: [NetWorx] . (.SoftPerfect - NetWorx Application (64-bit).) -- C:\Program Files\NetWorx\networx.exe =>.SOFTPERFECT PTY. LTD.®
O4 - HKLM\..\Run: [IAStorIcon] . (.Intel Corporation - Delayed launcher.) -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe =>.Intel Corporation
O4 - HKLM\..\Run: [Classic Start Menu] . (.IvoSoft - Classic Start Menu.) -- C:\Program Files\Classic Shell\ClassicStartMenu.exe =>.Ivaylo Beltchev®
O4 - HKLM\..\Run: [Greenshot] . (.Greenshot - Greenshot.) -- C:\Program Files\Greenshot\Greenshot.exe =>.Open Source Developer, Robin Krom®
O4 - HKLM\..\Run: [LogiOptions] . (.Logitech, Inc. - LogiOptions.exe (UNICODE).) -- C:\Program Files\Logitech\LogiOptions\LogiOptions.exe =>.Logitech Inc®
O4 - HKLM\..\Run: [Reflect UI] . (.Paramount Software UK Ltd - Macrium Reflect UI Watcher.) -- C:\Program Files\Macrium\Common\ReflectUI.exe =>.Paramount Software UK Ltd®
O4 - HKCU\..\Run: [Switcher] . (.Bao_Nguyen - Switcher.) -- C:\Program Files (x86)\Switcher\Switcher.exe
O4 - HKCU\..\Run: [7 Taskbar Tweaker] . (.RaMMicHaeL - 7+ Taskbar Tweaker.) -- C:\Users\owner\AppData\Roaming\7+ Taskbar Tweaker\7+ Taskbar Tweaker.exe =>.RaMMicHaeL
O4 - HKCU\..\Run: [InternetOff] . (...) -- C:\Program Files (x86)\InternetOff\InternetOff.exe =>.Crystal Rich Ltd®
O4 - HKCU\..\Run: [Clavier+] . (.Guillaume Ryder (http://utilfr42.free.fr) - Clavier+.) -- C:\Users\owner\AppData\Local\Clavier+\Clavier.exe =>.Guillaume Ryder (http://utilfr42.free.fr)
O4 - HKCU\..\Run: [RocketDock] . (...) -- C:\Program Files (x86)\RocketDock\RocketDock.exe =>.Punk Software
O4 - HKCU\..\Run: [My CPU Monitor] . (.My Portable Software - My CPU Monitor.) -- C:\My CPU Monitor\My CPU Monitor.exe =>.My Portable Software
O4 - HKCU\..\Run: [AutoHideDesktopIcons] . (. - .) -- C:\Program Files (x86)\AutoHideDesktopIcons\AutoHideDesktopIcons.exe =>PUP.Optional.ADON
O4 - HKCU\..\Run: [Winsplit] . (.Copyright (c) 2011 - WinSplit executable.) -- C:\Program Files (x86)\WinSplit Revolution\WinSplit.exe
O4 - HKCU\..\Run: [SuperCopier2.exe] . (.SFX TEAM - SuperCopier 2 (explorer file copy replaceme.) -- C:\Program Files (x86)\SuperCopier2\SuperCopier2.exe =>.SFX TEAM
O4 - HKCU\..\Run: [CS Dispatch] . (.Copyright (C) 2011 - EASY KM Link.) -- C:\Users\owner\AppData\Roaming\OTi\EASYKMLink\FunctModules\{23863E42-6AAC-482c-81D2-BD6A23CCFEF8}\EASYKMLink.exe {541786083D7A13AE1755009F2D9E30C8}
O4 - HKCU\..\Run: [DiskIndicator] . (.ITSamples.com - Disk Activity Indicator system tray utility.) -- C:\Program Files (x86)\Disk activity indicator\DiskActivity.exe =>.ITSamples.com
O4 - HKCU\..\Run: [ProcessKO] . (.(Nenad Hrg) SoftwareOK - ProcessKO.) -- C:\Program Files (x86)\Process KO\ProcessKO x64.exe
O4 - HKCU\..\Run: [Textify] . (.Copyright 2017 - Textify.) -- C:\Users\owner\AppData\Roaming\Textify\Textify.exe
O4 - HKCU\..\Run: [Simple Sticky Notes] . (.Simnet Ltd. - Simple Sticky Notes.) -- C:\Program Files (x86)\Simple Sticky Notes\ssn.exe =>.Simnet Bilgisayar Yazilim Hiz. San. ve Tic. Ltd. Sti.®
O4 - HKCU\..\Run: [3RVX] . (.Matthew Malensek - 3RVX.) -- C:\Program Files (x86)\3RVX\3RVX.exe
O4 - HKCU\..\Run: [$Volumouse$] . (.NirSoft - Volumouse Utility.) -- C:\Program Files\volumouse-x64\volumouse.exe =>.Nir Sofer®
O4 - HKCU\..\Run: [Volume2] . (.Alexandr Irza - Volume² - advanced Windows volume control.) -- C:\Program Files (x86)\Volume2\Volume2.exe =>.Alexandr Irza
O4 - HKCU\..\Run: [Zentimo xStorage Manager] . (.Crystal Rich Ltd - Zentimo - An External Drive Manager.) -- C:\Zentimo Portable 2.0.6\App\ProgramFiles\Zentimo.exe =>.Crystal Rich Ltd
O4 - HKCU\..\Run: [NetLimiter] . (.Locktime Software - NetLimiter Client.) -- C:\Program Files\Locktime Software\NetLimiter 4\nlclientapp.exe =>.Locktime Software s.r.o.®
O4 - HKLM\..\Wow6432Node\Run: [DFX] . (...) -- C:\Program Files (x86)\DFX\DFX.exe =>.Power Technology®
O4 - HKLM\..\Wow6432Node\Run: [vmware-tray.exe] . (.VMware, Inc. - VMware Tray Process.) -- C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe =>.VMware, Inc.®
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Windows®
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Windows®
O4 - HKUS\S-1-5-21-1112066077-4254746724-1257480092-1001\..\Run: [Switcher] . (.Bao_Nguyen - Switcher.) -- C:\Program Files (x86)\Switcher\Switcher.exe
O4 - HKUS\S-1-5-21-1112066077-4254746724-1257480092-1001\..\Run: [7 Taskbar Tweaker] . (.RaMMicHaeL - 7+ Taskbar Tweaker.) -- C:\Users\owner\AppData\Roaming\7+ Taskbar Tweaker\7+ Taskbar Tweaker.exe =>.RaMMicHaeL
O4 - HKUS\S-1-5-21-1112066077-4254746724-1257480092-1001\..\Run: [InternetOff] . (...) -- C:\Program Files (x86)\InternetOff\InternetOff.exe =>.Crystal Rich Ltd®
O4 - HKUS\S-1-5-21-1112066077-4254746724-1257480092-1001\..\Run: [Clavier+] . (.Guillaume Ryder (http://utilfr42.free.fr) - Clavier+.) -- C:\Users\owner\AppData\Local\Clavier+\Clavier.exe =>.Guillaume Ryder (http://utilfr42.free.fr)
O4 - HKUS\S-1-5-21-1112066077-4254746724-1257480092-1001\..\Run: [RocketDock] . (...) -- C:\Program Files (x86)\RocketDock\RocketDock.exe =>.Punk Software
O4 - HKUS\S-1-5-21-1112066077-4254746724-1257480092-1001\..\Run: [My CPU Monitor] . (.My Portable Software - My CPU Monitor.) -- C:\My CPU Monitor\My CPU Monitor.exe =>.My Portable Software
O4 - HKUS\S-1-5-21-1112066077-4254746724-1257480092-1001\..\Run: [AutoHideDesktopIcons] . (. - .) -- C:\Program Files (x86)\AutoHideDesktopIcons\AutoHideDesktopIcons.exe =>PUP.Optional.ADON
O4 - HKUS\S-1-5-21-1112066077-4254746724-1257480092-1001\..\Run: [Winsplit] . (.Copyright (c) 2011 - WinSplit executable.) -- C:\Program Files (x86)\WinSplit Revolution\WinSplit.exe
O4 - HKUS\S-1-5-21-1112066077-4254746724-1257480092-1001\..\Run: [SuperCopier2.exe] . (.SFX TEAM - SuperCopier 2 (explorer file copy replaceme.) -- C:\Program Files (x86)\SuperCopier2\SuperCopier2.exe =>.SFX TEAM
O4 - HKUS\S-1-5-21-1112066077-4254746724-1257480092-1001\..\Run: [CS Dispatch] . (.Copyright (C) 2011 - EASY KM Link.) -- C:\Users\owner\AppData\Roaming\OTi\EASYKMLink\FunctModules\{23863E42-6AAC-482c-81D2-BD6A23CCFEF8}\EASYKMLink.exe {541786083D7A13AE1755009F2D9E30C8}
O4 - HKUS\S-1-5-21-1112066077-4254746724-1257480092-1001\..\Run: [DiskIndicator] . (.ITSamples.com - Disk Activity Indicator system tray utility.) -- C:\Program Files (x86)\Disk activity indicator\DiskActivity.exe =>.ITSamples.com
O4 - HKUS\S-1-5-21-1112066077-4254746724-1257480092-1001\..\Run: [ProcessKO] . (.(Nenad Hrg) SoftwareOK - ProcessKO.) -- C:\Program Files (x86)\Process KO\ProcessKO x64.exe
O4 - HKUS\S-1-5-21-1112066077-4254746724-1257480092-1001\..\Run: [Textify] . (.Copyright 2017 - Textify.) -- C:\Users\owner\AppData\Roaming\Textify\Textify.exe
O4 - HKUS\S-1-5-21-1112066077-4254746724-1257480092-1001\..\Run: [Simple Sticky Notes] . (.Simnet Ltd. - Simple Sticky Notes.) -- C:\Program Files (x86)\Simple Sticky Notes\ssn.exe =>.Simnet Bilgisayar Yazilim Hiz. San. ve Tic. Ltd. Sti.®
O4 - HKUS\S-1-5-21-1112066077-4254746724-1257480092-1001\..\Run: [3RVX] . (.Matthew Malensek - 3RVX.) -- C:\Program Files (x86)\3RVX\3RVX.exe
O4 - HKUS\S-1-5-21-1112066077-4254746724-1257480092-1001\..\Run: [$Volumouse$] . (.NirSoft - Volumouse Utility.) -- C:\Program Files\volumouse-x64\volumouse.exe =>.Nir Sofer®
O4 - HKUS\S-1-5-21-1112066077-4254746724-1257480092-1001\..\Run: [Volume2] . (.Alexandr Irza - Volume² - advanced Windows volume control.) -- C:\Program Files (x86)\Volume2\Volume2.exe =>.Alexandr Irza
O4 - HKUS\S-1-5-21-1112066077-4254746724-1257480092-1001\..\Run: [Zentimo xStorage Manager] . (.Crystal Rich Ltd - Zentimo - An External Drive Manager.) -- C:\Zentimo Portable 2.0.6\App\ProgramFiles\Zentimo.exe =>.Crystal Rich Ltd
O4 - HKUS\S-1-5-21-1112066077-4254746724-1257480092-1001\..\Run: [NetLimiter] . (.Locktime Software - NetLimiter Client.) -- C:\Program Files\Locktime Software\NetLimiter 4\nlclientapp.exe =>.Locktime Software s.r.o.®
---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (97) - 29s
P2 - EXT FILE: (.Disconnect - Make the web faster, more private, and.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\2.0@disconnect.me.xpi =>.Disconnect
P2 - EXT FILE: (.About config button - Przycisk otwierajacy zaawansowane usta.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\aboutconfigbutton@firefox.xpi
P2 - EXT FILE: (.Addons Recent Updates - Show more addons recent updates.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\addonsRecentUpdates@infocatcher.xpi =>.Addons Recent Updates
P2 - EXT FILE: (.Haga Tamaño Barra de direcciones de fu - Esta extensión hace que la barra de di.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\addressBarFontSizeBigger@papafresh.com.xpi
P2 - EXT FILE: (.Roomy Bookmarks Toolbar - Make your bookmarks bar better. Custom.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\ALone-live@ya.ru.xpi
P2 - EXT FILE: (.Biscuit - .) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\biscuit@nuko.org.xpi
P2 - EXT FILE: (.Classic Theme Restorer - 'Classic Theme Restorer' restores many.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\ClassicThemeRestorer@ArisT2Noia4dev.xpi =>.Classic Theme Restorer
P2 - EXT FILE: (.FireGestures - Executes various commands with mouse g.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\firegestures@xuldev.org.xpi =>.FireGestures
P2 - EXT FILE: (.Hide Caption Titlebar Plus - "Maximize your screen space by adjusti.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\hidecaptionplus-dp@dummy.addons.mozilla.org.xpi
P2 - EXT FILE: (.HTTPS Everywhere - Encrypt the Web! Automatically use HTT.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\https-everywhere@eff.org.xpi =>.HTTPS Everywhere
P2 - EXT FILE: (.Switchy - Manage your profiles easily.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\id@baku.switchy.xpi
P2 - EXT FILE: (.InstaClick - Open links in new tabs with right-mous.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\instaclick@leahscape.com.xpi
P2 - EXT FILE: (.Self-Destructing Cookies - Fix the web. Gets rid of a site's.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\jid0-9XfBwUWnvPx4wWsfBWMCm4Jj69E@jetpack.xpi =>.Self-Destructing Cookies
P2 - EXT FILE: (.Facebook™ Seen Blocker - Facebook™ Seen Blocker allows you to r.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\jid0-AcfdPqSA2Ugt2vdJh6Kj7IiOp5W@jetpack.xpi
P2 - EXT FILE: (.Facebook™ Disconnect - Facebook™ Disconnect is an efficient f.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\jid0-dBgF7UkIiOsWqvBng4hYu@jetpack.xpi =>.Facebook™ Disconnect
P2 - EXT FILE: (.Auto Shutdown NG - Executes a command when all downloads .) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\jid0-HZ5UvAEiWWAxT9TKLuhEgUCARqo@jetpack.xpi =>.Auto Shutdown NG
P2 - EXT FILE: (.What about:.. - Alle about-Befehle auf einen Blick.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\jid0-IPSuVKD0J7yL1cIBwQAdoHTCWmY@jetpack.xpi
P2 - EXT FILE: (.fontdpi - A widget to change firefox font displa.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\jid1-4ZzxC2kiN3rzJA@jetpack.xpi
P2 - EXT FILE: (.PDF Mage - Click to save page as PDF.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\jid1-GeRCnsiDhZiTvA@jetpack.xpi
P2 - EXT FILE: (...) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\jid1-MnnxcxisBPnSXQ@jetpack.xpi
P2 - EXT FILE: (. - __MSG_extensionDescription__.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\playbackSpeed@waldemar.b.xpi
P2 - EXT FILE: (.Semi-Full Screen - Full screen with task bar visible..) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\SemiFullScreen@Merci.chao.xpi
P2 - EXT FILE: (.Sibi Antony - SSleuth.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\ssleuth@github.xpi
P2 - EXT FILE: (.uBlock Origin - __MSG_popupTipPicker__".) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\uBlock0@raymondhill.net.xpi =>.uBlock Origin
P2 - EXT FILE: (.Undo Closed Tabs Button - Add a toolbar button onto any toolbar .) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\undoclosedtabsbutton@supernova00.biz.xpi
P2 - EXT FILE: (.Zoom Page - Zooms web page (either Full-Page or Te.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\zoompage@DW-dev.xpi =>.Zoom Page
P2 - EXT FILE: (.Flagfox - Displays a flag depicting the location.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b}.xpi =>.Flagfox
P2 - EXT FILE: (.Stylish - .) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8}.xpi =>.Stylish
P2 - EXT FILE: (.Grab and Drag - Enables Adobe Acrobat-style grab and d.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\{477c4c36-24eb-11da-94d4-00e08161165f}.xpi
P2 - EXT FILE: (.SmoothWheel (mozdev.org)-- - Scrolls the document smoothly when scr.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\{5F590AA2-1221-4113-A6F4-A4BB62414FAC}.xpi
P2 - EXT FILE: (.Easy Emoji - Easily find & copy any emoji(s) from y.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\{61dbde8a-3824-40ed-85cc-d857c370d265}.xpi
P2 - EXT FILE: (.Speed Dial - Direct access to your most visited web.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\{64161300-e22b-11db-8314-0800200c9a66}.xpi
P2 - EXT FILE: (. - __MSG_appDesc__.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\{7b1bf0b6-a1b9-42b0-b75d-252036438bdc}.xpi
P2 - EXT FILE: (...) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\{b9acf540-acba-11e1-8ccb-001fd0e08bd4}.xpi
P2 - EXT FILE: (.Change Referer Button - Change the referer with a button.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\{c71ff04d-f001-1fc1-1fc1-c71ff04df001}.xpi
P2 - EXT FILE: (.Greg Yardley - BetterPrivacy.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\{d40f5e7b-d2cf-4856-b441-cc613eeffbe3}.xpi =>.Greg Yardley
P2 - EXT FILE: (.Tab Mix Plus - Tab browsing with an added boost..) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\{dc572301-7619-498c-a57d-39143191b318}.xpi =>.Tab Mix Plus
P2 - EXT FILE: (.Aaron Boodman; http://youngpup.net/ - A User Script Manager for Firefox.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\3kg8bhol.New\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi =>.Aaron Boodman; http://youngpup.net/
P2 - EXT FILE: (.Disconnect - Make the web faster, more private, and.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\2.0@disconnect.me.xpi =>.Disconnect
P2 - EXT FILE: (.Addons Recent Updates - Show more addons recent updates.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\addonsRecentUpdates@infocatcher.xpi =>.Addons Recent Updates
P2 - EXT FILE: (.Haga Tamaño Barra de direcciones de fu - Esta extensión hace que la barra de di.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\addressBarFontSizeBigger@papafresh.com.xpi
P2 - EXT FILE: (.Roomy Bookmarks Toolbar - Make your bookmarks bar better. Custom.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\ALone-live@ya.ru.xpi
P2 - EXT FILE: (.Classic Theme Restorer - 'Classic Theme Restorer' restores many.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\ClassicThemeRestorer@ArisT2Noia4dev.xpi =>.Classic Theme Restorer
P2 - EXT FILE: (.Colour That Site! - Passe die Farben beliebiger Webseiten .) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\ColourThatSite@einspeiser.de.xpi =>.Colour That Site!
P2 - EXT FILE: (.Classic Toolbar Buttons - Classic toolbar button style for Firef.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\CSTBB@NArisT2_Noia4dev.xpi
P2 - EXT FILE: (.Exify - Displays image EXIF information.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\exify@dev13.version.xpi
P2 - EXT FILE: (.Facebook Disconnect - .) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\facebook@disconnect.me.xpi =>.Facebook Disconnect
P2 - EXT FILE: (.Bookmarks Checker - check for bad link - Check favorites for broken or bad link.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\firefoxbookmarkchecker@everhelper.me.xpi =>.Bookmarks Checker - check for bad link
P2 - EXT FILE: (.FireGestures - Executes various commands with mouse g.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\firegestures@xuldev.org.xpi =>.FireGestures
P2 - EXT FILE: (.Focus Follows Mouse - A productivity tool which automaticall.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\focus-follows-input@spyrosoft.com.xpi
P2 - EXT FILE: (.Hide Caption Titlebar Plus - "Maximize your screen space by adjusti.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\hidecaptionplus-dp@dummy.addons.mozilla.org.xpi
P2 - EXT FILE: (.HTTPS Everywhere - Encrypt the Web! Automatically use HTT.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\https-everywhere@eff.org.xpi =>.HTTPS Everywhere
P2 - EXT FILE: (.Switchy - Manage your profiles easily.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\id@baku.switchy.xpi
P2 - EXT FILE: (.InstaClick - Open links in new tabs with right-mous.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\instaclick@leahscape.com.xpi
P2 - EXT FILE: (.Self-Destructing Cookies - Fix the web. Gets rid of a site's.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\jid0-9XfBwUWnvPx4wWsfBWMCm4Jj69E@jetpack.xpi =>.Self-Destructing Cookies
P2 - EXT FILE: (.Remove Google Tracking - Remove Google Tracking(redirect) at Cl.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\jid0-DpogclPgnN9OvqNntEBbPZxBinY@jetpack.xpi
P2 - EXT FILE: (.Auto Shutdown NG - Executes a command when all downloads .) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\jid0-HZ5UvAEiWWAxT9TKLuhEgUCARqo@jetpack.xpi =>.Auto Shutdown NG
P2 - EXT FILE: (.What about:.. - Alle about-Befehle auf einen Blick.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\jid0-IPSuVKD0J7yL1cIBwQAdoHTCWmY@jetpack.xpi
P2 - EXT FILE: (.facebook-cleaner - This extension help you to block faceb.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\jid0-TBRXf78ZEzGQyccB8SA1ALbcMpE@jetpack.xpi
P2 - EXT FILE: (.Decentraleyes - Local emulation of Content Delivery Ne.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\jid1-BoFifL9Vbdl2zQ@jetpack.xpi =>.Decentraleyes
P2 - EXT FILE: (.YouTube™ HD Plus - Automatically play YouTube™ videos in .) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\jid1-wkCmfgboni3B1Q@jetpack.xpi =>.YouTube™ HD Plus
P2 - EXT FILE: (.AutoHiDPI - Set a different pixel ratio (layout.cs.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\jid1-ylDsmQrKspNYVg@jetpack.xpi
P2 - EXT FILE: (.Nimbus Screen Capture - Screen Capture FULL Web page or any pa.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\nimbusscreencaptureff@everhelper.me.xpi
P2 - EXT FILE: (.OmniSidebar - Bring your bookmarks into view with ju.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\osb@quicksaver.xpi =>.OmniSidebar
P2 - EXT FILE: (.Personas Plus - Your Firefox, your style. Easy-to-chan.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\personas@christopher.beard.xpi =>.Personas Plus
P2 - EXT FILE: (.Download Manager (S3) - View and manage downloads from a tidy .) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\s3download@statusbar.xpi =>.Download Manager (S3)
P2 - EXT FILE: (...) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\snaplinks@snaplinks.mozdev.org.xpi
P2 - EXT FILE: (...) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\stefanvandamme@stefanvd.net.xpi
P2 - EXT FILE: (.Thumbnail Zoom Plus - Shows full image when you hover over a.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\thumbnailZoom@dadler.github.com.xpi =>.Thumbnail Zoom Plus
P2 - EXT FILE: (.Tile Tabs - Tiles browser tabs horizontally or ver.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\tiletabs@DW-dev.xpi =>.Tile Tabs
P2 - EXT FILE: (.uBlock Origin - __MSG_popupTipPicker__".) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\uBlock0@raymondhill.net.xpi =>.uBlock Origin
P2 - EXT FILE: (.Zoom Page - Zooms web page (either Full-Page or Te.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\zoompage@DW-dev.xpi =>.Zoom Page
P2 - EXT FILE: (.Flagfox - Displays a flag depicting the location.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b}.xpi =>.Flagfox
P2 - EXT FILE: (.Capture Print - This add-on lets you print a webpage's.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\{146f1820-2b0d-49ef-acbf-d85a6986e10c}.xpi
P2 - EXT FILE: (.FlashGot - Enables Firefox, Mozilla Suite, Netsca.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi =>.FlashGot
P2 - EXT FILE: (.Stylish - .) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8}.xpi =>.Stylish
P2 - EXT FILE: (.Grab and Drag - Enables Adobe Acrobat-style grab and d.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\{477c4c36-24eb-11da-94d4-00e08161165f}.xpi
P2 - EXT FILE: (.OwlZoom - Zoom+ in Youtube Videos!.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\{5a77a3a7-a4d1-42ed-922d-86f9bf878c75}.xpi
P2 - EXT FILE: (.SmoothWheel (mozdev.org)-- - Scrolls the document smoothly when scr.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\{5F590AA2-1221-4113-A6F4-A4BB62414FAC}.xpi
P2 - EXT FILE: (.Speed Dial - Direct access to your most visited web.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\{64161300-e22b-11db-8314-0800200c9a66}.xpi
P2 - EXT FILE: (.Hung Le - lori (Life-of-request info).) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\{6dfc4f52-26f0-4e5f-89c7-31d6de480db9}.xpi
P2 - EXT FILE: (.NoScript - Extra protection for your Firefox: NoS.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi =>.NoScript
P2 - EXT FILE: (.Restart Application Button - Restart Application Button lets you re.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\{a0797d99-f7d0-4762-9d21-d2f1e207c4ef}.xpi
P2 - EXT FILE: (...) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\{b9acf540-acba-11e1-8ccb-001fd0e08bd4}.xpi
P2 - EXT FILE: (.Video DownloadHelper - Download Videos from the Web.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi =>.Video DownloadHelper
P2 - EXT FILE: (.Change Referer Button - Change the referer with a button.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\{c71ff04d-f001-1fc1-1fc1-c71ff04df001}.xpi
P2 - EXT FILE: (.Greg Yardley - BetterPrivacy.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\{d40f5e7b-d2cf-4856-b441-cc613eeffbe3}.xpi =>.Greg Yardley
P2 - EXT FILE: (.Open With Internet Explorer - Open With Internet Explorer sends page.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\{d8321cd4-01ae-4efd-9bdb-cb6340613168}.xpi
P2 - EXT FILE: (.Tab Mix Plus - Tab browsing with an added boost..) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\{dc572301-7619-498c-a57d-39143191b318}.xpi =>.Tab Mix Plus
P2 - EXT FILE: (.YouTube Video Replay - YouTube Video Replay is an new ultimat.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\{e1aaa9f8-4500-47f1-9a0a-b02bd60e4076}.xpi
P2 - EXT FILE: (.Aaron Boodman; http://youngpup.net/ - A User Script Manager for Firefox.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi =>.Aaron Boodman; http://youngpup.net/
P2 - EXT FILE: (.Open With Photoshop - Open With Photoshop is a new companion.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\{f3f219f9-cbce-467e-b8fe-6e076d29665c}.xpi
P2 - EXT: (.Giuliano Masseroni - Favicon Restorer.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\faviconrestorer@masserog.it =>.Giuliano Masseroni
P2 - EXT: (.y5. Revived for AlexancarlProject - Organize Status Bar (Revived).) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\obsrev@alexancarlproject.net
P2 - EXT: (.Eugene G. Suslikov - FireShot.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\{0b457cAA-602d-484a-8fe7-c1d894a011ba} =>.Eugene G. Suslikov
P2 - EXT: (.BITS Co., Ltd. - Wired-Marker.) -- C:\Users\owner\AppData\Roaming\Mozilla\Firefox\Profiles\dmd0r7pz.Defaut new\extensions\{e36db930-f18d-4449-b45f-e286cfb9e03a}
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_27_0_0_183.dll =>.Adobe Systems Incorporated
---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (17) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr =>.Google Inc.
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = preserve =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R1 - HKEY_USERS\S-1-5-21-1112066077-4254746724-1257480092-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = preserve =>.Microsoft Corporation
R3 - URLSearchHook: (no name)[HKCU] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (11.00.16299.15 (WinBuild.160101.0800)) -- C:\Windows\SysWOW64\ieframe.dll =>.Microsoft Corporation
---\\ Internet Explorer,Proxy Management (6) - 0s
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
R5 - HKLM\SYSTEM\CurrentControlSet\services\NlaSvc\Parameters\Internet\ManualProxies [] =>.Microsoft
---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: VMApplet=
---\\ Etude du fichier hosts (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (4145)
---\\ Browser Helper Object de navigateur (BHO) (6) - 0s
O2 - BHO: ExplorerWnd Helper [64Bits] - {10921475-03CE-4E04-90CE-E2E7EF20C814} (.Orphan.)
O2 - BHO: (no name) [64Bits] - {27DD0F8B-3E0E-4ADC-A78A-66047E71ADC5} . (.www.startisback.com - OldNewExplorer shell enhancements.) -- C:\Program Files (x86)\OldNewExplorer\OldNewExplorer32.dll =>.www.startisback.com
O2 - BHO: Lync Click to Call BHO [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} . (.Microsoft Corporation - Skype for Business.) -- C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll =>.Microsoft Corporation®
O2 - BHO: ExplorerBHO Class [64Bits] - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} . (.IvoSoft - Adds classic Windows Explorer features.) -- C:\Program Files\Classic Shell\ClassicExplorer32.dll =>.Ivaylo Beltchev®
O2 - BHO: Microsoft OneDrive for Business Browser Helper [64Bits] - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} . (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL =>.Microsoft Corporation®
O2 - BHO: ClassicIEBHO Class [64Bits] - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} . (.IvoSoft - Customizations for the title bar and status.) -- C:\Program Files\Classic Shell\ClassicIEDLL_32.dll =>.Ivaylo Beltchev®
---\\ Raccourcis Global Startup (127) - 5s
O4 - GS\Quicklaunch [___VMware_Conv_SA___]: EaseUS Partition Master 12.5.lnk . (.EaseUS - EaseUS Partition Master Loader Application.) C:\Program Files (x86)\EaseUS\EaseUS Partition Master 12.5\bin\epm0.exe =>.EaseUS
O4 - GS\Quicklaunch [___VMware_Conv_SA___]: Hard Disk Sentinel.lnk . (.H.D.S. Hungary - Hard Disk Sentinel Engine.) C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe =>.Janos Mathe®
O4 - GS\Quicklaunch [___VMware_Conv_SA___]: Kolor Autopano Giga 4.4.lnk . (.Kolor - Autopano Giga (Build 16/05/2017).) C:\Program Files\Kolor\Autopano Giga 4.4\AutopanoGiga_x64.exe =>.Kolor
O4 - GS\Quicklaunch [___VMware_Conv_SA___]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [___VMware_Conv_SA___]: PortExpert.lnk . (.KC Softwares - Cybersecurity at your finge tips.) C:\Program Files (x86)\KC Softwares\PortExpert\PortExpert.exe =>.KC Softwares
O4 - GS\Quicklaunch [___VMware_Conv_SA___]: RAMExpert.lnk . (.KC Softwares - RAM Details at your fingertips.) C:\Program Files (x86)\KC Softwares\RAMExpert\RAMExpert.exe =>.KC Softwares®
O4 - GS\Quicklaunch [___VMware_Conv_SA___]: Windows Explorer Tracker.lnk . (.TriSun Software Inc. - Windows Explorer Tracker.) C:\Program Files (x86)\Windows Explorer Tracker\WET.exe =>.TriSun Software Limited®
O4 - GS\Quicklaunch [___VMware_Conv_SA___]: Wireshark.lnk . (.The Wireshark developer community, http://www.wiresha - Wireshark.) C:\Program Files\Wireshark\Wireshark.exe =>.Wireshark Foundation, Inc.®
O4 - GS\Quicklaunch [___VMware_Conv_SA___]: XnConvert.lnk . (.XnView, http://www.xnview.com - XnConvert.) C:\Program Files\XnConvert\xnconvert.exe =>.Pierre GOUGELET®
O4 - GS\sendTo [___VMware_Conv_SA___]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\WINDOWS\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [___VMware_Conv_SA___]: FAX 受信者.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [___VMware_Conv_SA___]: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\TaskBar [___VMware_Conv_SA___]: Everything.lnk . (.Copyright (C) 2016 David Carpenter - Everything.) C:\Program Files (x86)\Everything\Everything.exe
O4 - GS\TaskBar [___VMware_Conv_SA___]: Task Manager (2).lnk . (.Microsoft Corporation - Windows TaskManager.) C:\Taskmgr.exe =>.Microsoft Corporation
O4 - GS\Startup [___VMware_Conv_SA___]: Envoyer à OneNote.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE /tsr =>.Microsoft Corporation
O4 - GS\Startup [___VMware_Conv_SA___]: Gest.lnk . (...) C:\Users\owner\AppData\Roaming\Gest\GestLauncher.exe
O4 - GS\Startup [___VMware_Conv_SA___]: MemInfo.lnk . (.Carthago Software - MemInfo.) C:\Program Files (x86)\MemInfo\meminfo.exe =>.Carthago Software
O4 - GS\Startup [___VMware_Conv_SA___]: OneNoteM.EXE.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE =>.Microsoft Corporation
O4 - GS\Startup [___VMware_Conv_SA___]: ShellFolderFix.lnk . (...) C:\Program Files (x86)\ShellFolderFix64\ShellFolderFixUI.exe /autostart
O4 - GS\Startup [___VMware_Conv_SA___]: Stick-It.exe.lnk . (...) C:\Program Files (x86)\Stick it 1.00.0b\Stick-It!.exe
O4 - GS\Startup [___VMware_Conv_SA___]: WizMouse.exe.lnk . (...) C:\Program Files (x86)\wizmouse 1.7.0.3 portable\WizMouse.exe {00D39D410A3C118AE7EC2FE1A059AD66D9}
O4 - GS\Quicklaunch [Administrator]: EaseUS Partition Master 12.5.lnk . (.EaseUS - EaseUS Partition Master Loader Application.) C:\Program Files (x86)\EaseUS\EaseUS Partition Master 12.5\bin\epm0.exe =>.EaseUS
O4 - GS\Quicklaunch [Administrator]: Hard Disk Sentinel.lnk . (.H.D.S. Hungary - Hard Disk Sentinel Engine.) C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe =>.Janos Mathe®
O4 - GS\Quicklaunch [Administrator]: Kolor Autopano Giga 4.4.lnk . (.Kolor - Autopano Giga (Build 16/05/2017).) C:\Program Files\Kolor\Autopano Giga 4.4\AutopanoGiga_x64.exe =>.Kolor
O4 - GS\Quicklaunch [Administrator]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [Administrator]: PortExpert.lnk . (.KC Softwares - Cybersecurity at your finge tips.) C:\Program Files (x86)\KC Softwares\PortExpert\PortExpert.exe =>.KC Softwares
O4 - GS\Quicklaunch [Administrator]: RAMExpert.lnk . (.KC Softwares - RAM Details at your fingertips.) C:\Program Files (x86)\KC Softwares\RAMExpert\RAMExpert.exe =>.KC Softwares®
O4 - GS\Quicklaunch [Administrator]: Windows Explorer Tracker.lnk . (.TriSun Software Inc. - Windows Explorer Tracker.) C:\Program Files (x86)\Windows Explorer Tracker\WET.exe =>.TriSun Software Limited®
O4 - GS\Quicklaunch [Administrator]: Wireshark.lnk . (.The Wireshark developer community, http://www.wiresha - Wireshark.) C:\Program Files\Wireshark\Wireshark.exe =>.Wireshark Foundation, Inc.®
O4 - GS\Quicklaunch [Administrator]: XnConvert.lnk . (.XnView, http://www.xnview.com - XnConvert.) C:\Program Files\XnConvert\xnconvert.exe =>.Pierre GOUGELET®
O4 - GS\sendTo [Administrator]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\WINDOWS\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Administrator]: FAX 受信者.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Administrator]: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Administrator]: Everything.lnk . (.Copyright (C) 2016 David Carpenter - Everything.) C:\Program Files (x86)\Everything\Everything.exe
O4 - GS\TaskBar [Administrator]: Task Manager (2).lnk . (.Microsoft Corporation - Windows TaskManager.) C:\Taskmgr.exe =>.Microsoft Corporation
O4 - GS\Startup [Administrator]: Envoyer à OneNote.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE /tsr =>.Microsoft Corporation
O4 - GS\Startup [Administrator]: Gest.lnk . (...) C:\Users\owner\AppData\Roaming\Gest\GestLauncher.exe
O4 - GS\Startup [Administrator]: MemInfo.lnk . (.Carthago Software - MemInfo.) C:\Program Files (x86)\MemInfo\meminfo.exe =>.Carthago Software
O4 - GS\Startup [Administrator]: OneNoteM.EXE.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE =>.Microsoft Corporation
O4 - GS\Startup [Administrator]: ShellFolderFix.lnk . (...) C:\Program Files (x86)\ShellFolderFix64\ShellFolderFixUI.exe /autostart
O4 - GS\Startup [Administrator]: Stick-It.exe.lnk . (...) C:\Program Files (x86)\Stick it 1.00.0b\Stick-It!.exe
O4 - GS\Startup [Administrator]: WizMouse.exe.lnk . (...) C:\Program Files (x86)\wizmouse 1.7.0.3 portable\WizMouse.exe {00D39D410A3C118AE7EC2FE1A059AD66D9}
O4 - GS\Quicklaunch [Guest]: EaseUS Partition Master 12.5.lnk . (.EaseUS - EaseUS Partition Master Loader Application.) C:\Program Files (x86)\EaseUS\EaseUS Partition Master 12.5\bin\epm0.exe =>.EaseUS
O4 - GS\Quicklaunch [Guest]: Hard Disk Sentinel.lnk . (.H.D.S. Hungary - Hard Disk Sentinel Engine.) C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe =>.Janos Mathe®
O4 - GS\Quicklaunch [Guest]: Kolor Autopano Giga 4.4.lnk . (.Kolor - Autopano Giga (Build 16/05/2017).) C:\Program Files\Kolor\Autopano Giga 4.4\AutopanoGiga_x64.exe =>.Kolor
O4 - GS\Quicklaunch [Guest]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [Guest]: PortExpert.lnk . (.KC Softwares - Cybersecurity at your finge tips.) C:\Program Files (x86)\KC Softwares\PortExpert\PortExpert.exe =>.KC Softwares
O4 - GS\Quicklaunch [Guest]: RAMExpert.lnk . (.KC Softwares - RAM Details at your fingertips.) C:\Program Files (x86)\KC Softwares\RAMExpert\RAMExpert.exe =>.KC Softwares®
O4 - GS\Quicklaunch [Guest]: Windows Explorer Tracker.lnk . (.TriSun Software Inc. - Windows Explorer Tracker.) C:\Program Files (x86)\Windows Explorer Tracker\WET.exe =>.TriSun Software Limited®
O4 - GS\Quicklaunch [Guest]: Wireshark.lnk . (.The Wireshark developer community, http://www.wiresha - Wireshark.) C:\Program Files\Wireshark\Wireshark.exe =>.Wireshark Foundation, Inc.®
O4 - GS\Quicklaunch [Guest]: XnConvert.lnk . (.XnView, http://www.xnview.com - XnConvert.) C:\Program Files\XnConvert\xnconvert.exe =>.Pierre GOUGELET®
O4 - GS\sendTo [Guest]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\WINDOWS\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Guest]: FAX 受信者.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Guest]: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Guest]: Everything.lnk . (.Copyright (C) 2016 David Carpenter - Everything.) C:\Program Files (x86)\Everything\Everything.exe
O4 - GS\TaskBar [Guest]: Task Manager (2).lnk . (.Microsoft Corporation - Windows TaskManager.) C:\Taskmgr.exe =>.Microsoft Corporation
O4 - GS\Startup [Guest]: Envoyer à OneNote.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE /tsr =>.Microsoft Corporation
O4 - GS\Startup [Guest]: Gest.lnk . (...) C:\Users\owner\AppData\Roaming\Gest\GestLauncher.exe
O4 - GS\Startup [Guest]: MemInfo.lnk . (.Carthago Software - MemInfo.) C:\Program Files (x86)\MemInfo\meminfo.exe =>.Carthago Software
O4 - GS\Startup [Guest]: OneNoteM.EXE.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE =>.Microsoft Corporation
O4 - GS\Startup [Guest]: ShellFolderFix.lnk . (...) C:\Program Files (x86)\ShellFolderFix64\ShellFolderFixUI.exe /autostart
O4 - GS\Startup [Guest]: Stick-It.exe.lnk . (...) C:\Program Files (x86)\Stick it 1.00.0b\Stick-It!.exe
O4 - GS\Startup [Guest]: WizMouse.exe.lnk . (...) C:\Program Files (x86)\wizmouse 1.7.0.3 portable\WizMouse.exe {00D39D410A3C118AE7EC2FE1A059AD66D9}
O4 - GS\Quicklaunch [owner]: EaseUS Partition Master 12.5.lnk . (.EaseUS - EaseUS Partition Master Loader Application.) C:\Program Files (x86)\EaseUS\EaseUS Partition Master 12.5\bin\epm0.exe =>.EaseUS
O4 - GS\Quicklaunch [owner]: Hard Disk Sentinel.lnk . (.H.D.S. Hungary - Hard Disk Sentinel Engine.) C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe =>.Janos Mathe®
O4 - GS\Quicklaunch [owner]: Kolor Autopano Giga 4.4.lnk . (.Kolor - Autopano Giga (Build 16/05/2017).) C:\Program Files\Kolor\Autopano Giga 4.4\AutopanoGiga_x64.exe =>.Kolor
O4 - GS\Quicklaunch [owner]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [owner]: PortExpert.lnk . (.KC Softwares - Cybersecurity at your finge tips.) C:\Program Files (x86)\KC Softwares\PortExpert\PortExpert.exe =>.KC Softwares
O4 - GS\Quicklaunch [owner]: RAMExpert.lnk . (.KC Softwares - RAM Details at your fingertips.) C:\Program Files (x86)\KC Softwares\RAMExpert\RAMExpert.exe =>.KC Softwares®
O4 - GS\Quicklaunch [owner]: Windows Explorer Tracker.lnk . (.TriSun Software Inc. - Windows Explorer Tracker.) C:\Program Files (x86)\Windows Explorer Tracker\WET.exe =>.TriSun Software Limited®
O4 - GS\Quicklaunch [owner]: Wireshark.lnk . (.The Wireshark developer community, http://www.wiresha - Wireshark.) C:\Program Files\Wireshark\Wireshark.exe =>.Wireshark Foundation, Inc.®
O4 - GS\Quicklaunch [owner]: XnConvert.lnk . (.XnView, http://www.xnview.com - XnConvert.) C:\Program Files\XnConvert\xnconvert.exe =>.Pierre GOUGELET®
O4 - GS\sendTo [owner]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\WINDOWS\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [owner]: FAX 受信者.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [owner]: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\TaskBar [owner]: Everything.lnk . (.Copyright (C) 2016 David Carpenter - Everything.) C:\Program Files (x86)\Everything\Everything.exe
O4 - GS\TaskBar [owner]: Task Manager (2).lnk . (.Microsoft Corporation - Windows TaskManager.) C:\Taskmgr.exe =>.Microsoft Corporation
O4 - GS\Startup [owner]: Envoyer à OneNote.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE /tsr =>.Microsoft Corporation
O4 - GS\Startup [owner]: Gest.lnk . (...) C:\Users\owner\AppData\Roaming\Gest\GestLauncher.exe
O4 - GS\Startup [owner]: MemInfo.lnk . (.Carthago Software - MemInfo.) C:\Program Files (x86)\MemInfo\meminfo.exe =>.Carthago Software
O4 - GS\Startup [owner]: OneNoteM.EXE.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE =>.Microsoft Corporation
O4 - GS\Startup [owner]: ShellFolderFix.lnk . (...) C:\Program Files (x86)\ShellFolderFix64\ShellFolderFixUI.exe /autostart
O4 - GS\Startup [owner]: Stick-It.exe.lnk . (...) C:\Program Files (x86)\Stick it 1.00.0b\Stick-It!.exe
O4 - GS\Startup [owner]: WizMouse.exe.lnk . (...) C:\Program Files (x86)\wizmouse 1.7.0.3 portable\WizMouse.exe {00D39D410A3C118AE7EC2FE1A059AD66D9}
O4 - GS\Quicklaunch [WDAGUtilityAccount]: EaseUS Partition Master 12.5.lnk . (.EaseUS - EaseUS Partition Master Loader Application.) C:\Program Files (x86)\EaseUS\EaseUS Partition Master 12.5\bin\epm0.exe =>.EaseUS
O4 - GS\Quicklaunch [WDAGUtilityAccount]: Hard Disk Sentinel.lnk . (.H.D.S. Hungary - Hard Disk Sentinel Engine.) C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe =>.Janos Mathe®
O4 - GS\Quicklaunch [WDAGUtilityAccount]: Kolor Autopano Giga 4.4.lnk . (.Kolor - Autopano Giga (Build 16/05/2017).) C:\Program Files\Kolor\Autopano Giga 4.4\AutopanoGiga_x64.exe =>.Kolor
O4 - GS\Quicklaunch [WDAGUtilityAccount]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [WDAGUtilityAccount]: PortExpert.lnk . (.KC Softwares - Cybersecurity at your finge tips.) C:\Program Files (x86)\KC Softwares\PortExpert\PortExpert.exe =>.KC Softwares
O4 - GS\Quicklaunch [WDAGUtilityAccount]: RAMExpert.lnk . (.KC Softwares - RAM Details at your fingertips.) C:\Program Files (x86)\KC Softwares\RAMExpert\RAMExpert.exe =>.KC Softwares®
O4 - GS\Quicklaunch [WDAGUtilityAccount]: Windows Explorer Tracker.lnk . (.TriSun Software Inc. - Windows Explorer Tracker.) C:\Program Files (x86)\Windows Explorer Tracker\WET.exe =>.TriSun Software Limited®
O4 - GS\Quicklaunch [WDAGUtilityAccount]: Wireshark.lnk . (.The Wireshark developer community, http://www.wiresha - Wireshark.) C:\Program Files\Wireshark\Wireshark.exe =>.Wireshark Foundation, Inc.®
O4 - GS\Quicklaunch [WDAGUtilityAccount]: XnConvert.lnk . (.XnView, http://www.xnview.com - XnConvert.) C:\Program Files\XnConvert\xnconvert.exe =>.Pierre GOUGELET®
O4 - GS\sendTo [WDAGUtilityAccount]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\WINDOWS\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [WDAGUtilityAccount]: FAX 受信者.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [WDAGUtilityAccount]: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\TaskBar [WDAGUtilityAccount]: Everything.lnk . (.Copyright (C) 2016 David Carpenter - Everything.) C:\Program Files (x86)\Everything\Everything.exe
O4 - GS\TaskBar [WDAGUtilityAccount]: Task Manager (2).lnk . (.Microsoft Corporation - Windows TaskManager.) C:\Taskmgr.exe =>.Microsoft Corporation
O4 - GS\Startup [WDAGUtilityAccount]: Envoyer à OneNote.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE /tsr =>.Microsoft Corporation
O4 - GS\Startup [WDAGUtilityAccount]: Gest.lnk . (...) C:\Users\owner\AppData\Roaming\Gest\GestLauncher.exe
O4 - GS\Startup [WDAGUtilityAccount]: MemInfo.lnk . (.Carthago Software - MemInfo.) C:\Program Files (x86)\MemInfo\meminfo.exe =>.Carthago Software
O4 - GS\Startup [WDAGUtilityAccount]: OneNoteM.EXE.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE =>.Microsoft Corporation
O4 - GS\Startup [WDAGUtilityAccount]: ShellFolderFix.lnk . (...) C:\Program Files (x86)\ShellFolderFix64\ShellFolderFixUI.exe /autostart
O4 - GS\Startup [WDAGUtilityAccount]: Stick-It.exe.lnk . (...) C:\Program Files (x86)\Stick it 1.00.0b\Stick-It!.exe
O4 - GS\Startup [WDAGUtilityAccount]: WizMouse.exe.lnk . (...) C:\Program Files (x86)\wizmouse 1.7.0.3 portable\WizMouse.exe {00D39D410A3C118AE7EC2FE1A059AD66D9}
O4 - GS\Accessories [Public]: Fonctionnalités optionnelles.lnk . (.Microsoft Corporation - Assistance des fonctionnalités à la demande.) C:\Windows\System32\fodhelper.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\internet explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Accessories [Public]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) C:\WINDOWS\system32\notepad.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Old Calculator.lnk . (.Microsoft Corporation - Calculatrice de Windows.) C:\Windows\System32\calc1.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Search.lnk . (.Microsoft Corporation - Processus hôte Windows (Rundll32).) C:\WINDOWS\system32\rundll32.exe -sta {C90FB8CA-3295-4462-A721-2935E83694BA} =>..Microsoft Corporation
O4 - GS\Startup [Public]: Ear Trumpet.lnk . (.File-New-Project - Ear Trumpet.) C:\Program Files (x86)\Ear Trumpet\EarTrumpet.exe
O4 - GS\Startup [Public]: Gest.lnk . (...) C:\Users\owner\AppData\Roaming\Gest\GestLauncher.exe
O4 - GS\Startup [Public]: MemInfo.lnk . (.Carthago Software - MemInfo.) C:\Program Files (x86)\MemInfo\meminfo.exe =>.Carthago Software
O4 - GS\Startup [Public]: QuickLook.lnk . (.pooi.moe - QuickLook.) C:\Users\owner\AppData\Local\Programs\QuickLook\QuickLook.exe {119DD8389F5F5DF7EC782CD1033C8987}
O4 - GS\Startup [Public]: Rainmeter.lnk . (.Rainmeter - Rainmeter desktop customization tool.) C:\Program Files\Rainmeter\Rainmeter.exe =>.Open Source Developer, Birunthan Mohanathas®
O4 - GS\Accessories [Public]: Math Input Panel.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\mip.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.) C:\WINDOWS\system32\mspaint.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Connexion Bureau à distance.) C:\WINDOWS\system32\mstsc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - Outil Capture d’écran.) C:\WINDOWS\system32\SnippingTool.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Steps Recorder.lnk . (.Microsoft Corporation - Enregistreur d’actions.) C:\WINDOWS\system32\psr.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sticky Notes (classic).lnk . (.Microsoft Corporation - Pense-bête.) C:\Program Files\Classic Sticky Notes\StikyNot.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Fax and Scan.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\WINDOWS\system32\WFS.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Application Windows Wordpad.) C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: XPS Viewer.lnk . (.Microsoft Corporation - Visionneuse XPS.) C:\WINDOWS\system32\xpsrchvw.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Table des caractères.) C:\WINDOWS\system32\charmap.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Immersive Control Panel.lnk . (.Microsoft Corporation - Windows Control Panel.) C:\WINDOWS\System32\Control.exe =>.Microsoft Corporation
---\\ Modification Domaine/Adresses DNS (4) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{8d0a3c31-147d-4352-b744-4d5309e6edd5}: DhcpNameServer = 192.168.1.254 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{cbd81dbf-9dce-42fc-92d1-ae8370325fb3}: DhcpNameServer = 192.168.1.1 192.168.1.1 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{ec54fa79-9ced-4441-aa34-ab2ddf87a0c7}: DhcpNameServer = 192.168.1.1 =>.Local IP Adress
---\\ Protocole additionnel (26) - 0s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\SysWOW64\itss.dll =>.Microsoft Corporation
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\SysWOW64\inetcomm.dll =>.Microsoft Corporation
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\SysWOW64\itss.dll =>.Microsoft Corporation
O18 - Handler: mso-minsb-roaming.16 [64Bits] - {83C25742-A9F7-49FB-9138-434302C88D07} . (.Microsoft Corporation - Microsoft Office 2016 component.) -- C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL =>.Microsoft Corporation®
O18 - Handler: mso-minsb.16 [64Bits] - {42089D2D-912D-4018-9087-2B87803E93FB} . (.Microsoft Corporation - Microsoft Office 2016 component.) -- C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL =>.Microsoft Corporation®
O18 - Handler: osf-roaming.16 [64Bits] - {42089D2D-912D-4018-9087-2B87803E93FB} . (.Microsoft Corporation - Microsoft Office 2016 component.) -- C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL =>.Microsoft Corporation®
O18 - Handler: osf.16 [64Bits] - {5504BE45-A83B-4808-900A-3A5C36E7F77A} . (.Microsoft Corporation - Microsoft Office 2016 component.) -- C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL =>.Microsoft Corporation®
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\SysWOW64\tbauth.dll =>.Microsoft Corporation
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: windows.tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\SysWOW64\tbauth.dll =>.Microsoft Corporation
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll =>.Microsoft Corporation
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll =>.Microsoft Corporation
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll =>.Microsoft Corporation
---\\ ASIC (ActiveSetup Installed Components) (4) - 1s
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Utilitaire d’installation du Lecteur Window.) -- C:\Windows\System32\unregmp2.exe =>.Microsoft Corporation
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\System32\mscories.dll =>.Microsoft Corporation®
---\\ Logiciels installés (191) - 20s
O42 - Logiciel: 3RVX - (.Matthew Malensek.) [HKLM][64Bits] -- {400A8514-5440-410A-B318-44061BD7EE8E}
O42 - Logiciel: 7+ Taskbar Tweaker v5.3.0.7 - (.RaMMicHaeL.) [HKCU][64Bits] -- 7 Taskbar Tweaker =>.RaMMicHaeL
O42 - Logiciel: Acrylic Wi-Fi Home v3.1 - (.Tarlogic Security S.L..) [HKCU][64Bits] -- {3706FB7A-11FB-44C4-AD94-2B29878D75DC}_is1 =>.Tarlogic Security SL®
O42 - Logiciel: Adobe After Effects CC 2018 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- AEFT_15_0_0 =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Bridge CC 2018 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- KBRG_8_0 =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Creative Cloud - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Creative Cloud =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Extension Manager CC - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {244FD30F-63F1-49B9-9D98-1150FF4FFCB1} =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Flash Player 27 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Illustrator CC 2018 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- ILST_22_0_0 =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Lightroom Classic CC - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- LTRM_7_0 =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Media Encoder CC 2018 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- AME_12_0_0 =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Photoshop CC 2018 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- PHSP_19_0 =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Premiere Pro CC 2018 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- PPRO_12_0_0 =>.Adobe Systems Incorporated®
O42 - Logiciel: AIDA64 Extreme v5.90 - (.FinalWire Ltd..) [HKLM][64Bits] -- AIDA64 Extreme_is1 =>.FinalWire Kft.®
O42 - Logiciel: ALPS Touch Pad Driver - (.ALPS ELECTRIC CO., LTD..) [HKLM][64Bits] -- {9F72EF8B-AEC9-4CA5-B483-143980AFD6FD} {0E65E8DD1CF974DC27F89D371DA742F6} =>.Alps Electric Co., Ltd.
O42 - Logiciel: Amazon Kindle - (.Amazon.) [HKCU][64Bits] -- Amazon Kindle =>.Amazon
O42 - Logiciel: Anki - (.Damien Elmes.) [HKLM][64Bits] -- Anki =>.Damien Elmes
O42 - Logiciel: Ant Renamer - (.Ant Software.) [HKLM][64Bits] -- Ant Renamer 2_is1 =>.Ant Software
O42 - Logiciel: Arasan 20.2 - (.Jon Dart.) [HKLM][64Bits] -- Arasan_is1
O42 - Logiciel: Argente Utilities - (.Raúl Argente.) [HKLM][64Bits] -- AUtilities =>.Raúl Argente
O42 - Logiciel: ASIO4ALL - (.Michael Tippach.) [HKLM][64Bits] -- ASIO4ALL =>.Michael Tippach
O42 - Logiciel: AtHome Camera Version 3.4.1 - (. iChano Inc..) [HKLM][64Bits] -- {B659A0AE-7339-41DF-A7BA-81EBEBF91321}_is1
O42 - Logiciel: Audacity 2.1.3 - (.Audacity Team.) [HKLM][64Bits] -- Audacity®_is1 =>.Audacity Team
O42 - Logiciel: AutoHotkey 1.1.24.01 - (.Lexikos.) [HKLM][64Bits] -- AutoHotkey =>.Lexikos
O42 - Logiciel: Bluetooth(R) Link - (.Toshiba Corporation.) [HKLM][64Bits] -- {3F3DCC8C-2C93-4082-A6DE-BBDC74804FA0} =>.Toshiba Corporation
O42 - Logiciel: Camtasia 9 - (.TechSmith Corporation.) [HKLM][64Bits] -- {00ce4b8c-0138-4743-b0b8-379b2715eb44} =>.TechSmith Corporation®
O42 - Logiciel: Camtasia 9 - (.TechSmith Corporation.) [HKLM][64Bits] -- {1D09B594-C8B5-4CF1-B927-41D9A487799C} =>.TechSmith Corporation
O42 - Logiciel: ChessX version 1.4.6 - (.chessx.sourceforge.net.) [HKLM][64Bits] -- {278EF322-A05B-4F81-B23B-F7D8050F6837}_is1
O42 - Logiciel: Classic Shell - (.IvoSoft.) [HKLM][64Bits] -- {CABCE573-0A86-42FA-A52A-C7EA61D5BE08} =>.IvoSoft
O42 - Logiciel: Classic Sticky Notes - (.Winaero.) [HKLM][64Bits] -- Classic Sticky Notes_is1 =>.Winaero
O42 - Logiciel: Clavier+ 10.8.1 - (.Guillaume Ryder.) [HKLM][64Bits] -- Clavier+_is1 =>.Guillaume Ryder
O42 - Logiciel: CMEDIA USB2.0 Audio Device - (.C-Media Electronics, Inc..) [HKLM][64Bits] -- {71B53BA8-4BE3-49AF-BC3E-07F392016500} =>.C-Media Electronics, Inc.
O42 - Logiciel: Contents64 - (.Corel Corporation.) [HKLM][64Bits] -- {CC17740C-FD9D-4025-BD75-99ED1A9DA22E} =>.Corel Corporation
O42 - Logiciel: Corel VideoStudio X7 - (.Corel Corporation.) [HKLM][64Bits] -- _{77B3BEA9-835C-4DDF-BCE7-1510271E4E37} =>.Corel Corporation®
O42 - Logiciel: Crayon Physics Deluxe version 55 - (.Kloonigames, Ltd.) [HKLM][64Bits] -- {4CA1E8E2-B2A9-40C1-8EC4-BBCB23BAAA19}_is1
O42 - Logiciel: Cursor Commander - (.Winaero.com.) [HKLM][64Bits] -- Cursor Commander
O42 - Logiciel: DFX - (.Power Technology.) [HKLM][64Bits] -- DFX =>.Power Technology
O42 - Logiciel: DiskFresh 1.1 - (.Puran Software.) [HKLM][64Bits] -- DiskFresh_is1 =>.Puran Software
O42 - Logiciel: DTS Studio Sound - (.DTS, Inc..) [HKLM][64Bits] -- {793B70D2-41E9-46AB-9DDC-B34C99D07DB5} =>.DTS, Inc.
O42 - Logiciel: DxO OpticsPro 11 - (.DxO.) [HKLM][64Bits] -- {F7A166EE-F127-4470-9A13-C6407CBAC968} =>.DxO
O42 - Logiciel: Êâåòêà 4.0 - (.Áîäÿãèí Äìèòðèé.) [HKLM][64Bits] -- Êâåòêà_is1
O42 - Logiciel: Ear Trumpet - (..) [HKLM][64Bits] -- BA8684A3-9834-4D78-A666-04E88FF0EC82_is1
O42 - Logiciel: EaseUS Partition Master 12.5 Trial Edition - (.EaseUS.) [HKLM][64Bits] -- EaseUS Partition Master Trial Edition_is1 =>.CHENGDU YIWO Tech Development Co., Ltd.®
O42 - Logiciel: ESET NOD32 Antivirus - (.ESET, spol s r. o..) [HKLM][64Bits] -- {5F2AE448-CD4B-40BD-B245-5F0CD06A09B0} =>.ESET, spol s r. o.
O42 - Logiciel: Exact Audio Copy 1.3 - (.Andre Wiethoff.) [HKLM][64Bits] -- Exact Audio Copy =>.Andre Wiethoff
O42 - Logiciel: ExeIcon (remove only) - (..) [HKCU][64Bits] -- ExeIcon
O42 - Logiciel: Eye-One Match 3.6.2 - (.GretagMacbeth.) [HKLM][64Bits] -- Eye-One Match_is1 =>.GretagMacbeth
O42 - Logiciel: FastStone Image Viewer 6.3 - (.FastStone Soft.) [HKLM][64Bits] -- FastStone Image Viewer =>.FastStone Soft
O42 - Logiciel: FastStone MaxView 3.1 - (.FastStone Soft..) [HKLM][64Bits] -- FastStone MaxView =>.FastStone Soft.
O42 - Logiciel: FastStone Photo Resizer 3.8 - (.FastStone Soft..) [HKLM][64Bits] -- FastStone Photo Resizer =>.FastStone Soft.
O42 - Logiciel: FileSearchy - (.Midlinesoft.) [HKLM][64Bits] -- FileSearchy =>.Midlinesoft
O42 - Logiciel: FolderIco 4.0 - (.teorex.) [HKLM][64Bits] -- {22C37D82-6137-40BF-8625-7A846ED65F3A}_is1 =>.Teorex
O42 - Logiciel: foobar2000 v1.3.16 - (.Peter Pawlowski.) [HKLM][64Bits] -- foobar2000 =>.Peter Pawlowski
O42 - Logiciel: Geekbench 4 - (.Primate Labs Inc..) [HKLM][64Bits] -- Geekbench 4
O42 - Logiciel: GetDataBack for NTFS - (.Runtime Software.) [HKLM][64Bits] -- {56582EEA-3AEF-4D84-8B9D-C87A3CD9250F} =>.Runtime Software
O42 - Logiciel: Greenshot 1.2.10.6 - (.Greenshot.) [HKLM][64Bits] -- Greenshot_is1 =>.Open Source Developer, Robin Krom®
O42 - Logiciel: HandBrake 0.10.5 - (.HandBrake Team.) [HKLM][64Bits] -- HandBrake =>.HandBrake Team
O42 - Logiciel: Hard Disk Sentinel - (.HDS.) [HKLM][64Bits] -- Hard Disk Sentinel_is1 =>.Janos Mathe®
O42 - Logiciel: HashTab 6.0.0.28 - (.Implbits Software.) [HKLM][64Bits] -- HashTab =>.Implbits Software
O42 - Logiciel: HostsMan 4.6.103 - (.abelhadigital.com.) [HKLM][64Bits] -- {1A3DD1A9-7B7B-4ECA-AD2F-98466F49F62C}_is1 =>.abelhadigital.com
O42 - Logiciel: ICA - (.Corel Corporation.) [HKLM][64Bits] -- {77B3BEA9-835C-4DDF-BCE7-1510271E4E37} =>.Corel Corporation
O42 - Logiciel: Icaros 3.0.1 - (.Tabibito Technology.) [HKLM][64Bits] -- Icaros_is1 =>.Tabibito Technology
O42 - Logiciel: Intel Extreme Tuning Utility - (.Intel Corporation.) [HKLM][64Bits] -- {2b6ed4de-d92a-4e61-aa4f-5196a0ecee21} =>.Intel(R) Extreme Tuning Utility®
O42 - Logiciel: Intel Extreme Tuning Utility - (.Intel Corporation.) [HKLM][64Bits] -- {64432AF2-9AB3-4F5C-8F97-D6D6FCC89C18} =>.Intel Corporation
O42 - Logiciel: Intel Extreme Tuning Utility - (.Intel Corporation.) [HKLM][64Bits] -- {AD9EAA1C-2EF5-4243-ACE5-7AB77047291D} =>.Intel Corporation
O42 - Logiciel: Intel(R) C++ Redistributables on Intel(R) 64 - (.Intel Corporation.) [HKLM][64Bits] -- {F70BCE36-25F2-4475-A918-6209B3D85BF3} =>.Intel Corporation
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A} =>.Intel Corporation - Software and Firmware Products®
O42 - Logiciel: Intel(R) Network Connections Drivers - (.Intel.) [HKLM][64Bits] -- PROSet =>.Intel
O42 - Logiciel: Intel(R) PRO/Wireless Driver - (.Intel Corporation.) [HKLM][64Bits] -- {c56c5664-97ab-4e2a-bd62-99ed18d7059e} =>.Intel Corporation
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA} =>.Intel Corporation - pGFX®
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {409CB30E-E457-4008-9B1A-ED1B9EA21140} =>.Intel Corporation
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {FF8F5F84-9660-40DB-BDAD-CCD03F6BD1F6} =>.Intel Corporation
O42 - Logiciel: Intel(R) Wireless Bluetooth(R) - (.Intel Corporation.) [HKLM][64Bits] -- {01FE8E22-F9DA-4EB7-9A95-80A8D1236DEB} =>.Intel Corporation
O42 - Logiciel: Intel-SA-00075 Detection and Mitigation Tool 1.0.2.116 - (.Intel Corporation.) [HKLM][64Bits] -- {35EDB1A1-56A4-4268-8643-142166FCBF39} =>.Intel Corporation
O42 - Logiciel: InternetOff 3.0, 32\64 bit edition - (.Crystal Rich, Ltd.) [HKLM][64Bits] -- InternetOff_is1 =>.Crystal Rich, Ltd
O42 - Logiciel: IObit Uninstaller - (.IObit.) [HKLM][64Bits] -- IObitUninstall =>.IObit Information Technology®
O42 - Logiciel: IObit Unlocker - (.IObit.) [HKLM][64Bits] -- IObit Unlocker_is1 =>.IObit Information Technology®
O42 - Logiciel: IPM_VS_Pro64 - (.Corel Corporation.) [HKLM][64Bits] -- {0662B4EB-B027-4D10-B49C-B6433FE81C07} =>.Corel Corporation
O42 - Logiciel: IrfanView 4.50 (64-bit) - (.Irfan Skiljan.) [HKLM][64Bits] -- IrfanView64 =>.Irfan Skiljan®
O42 - Logiciel: Java 9.0.1 (64-bit) - (.Oracle Corporation.) [HKLM][64Bits] -- {2590B9D6-4310-52BC-808E-1A585861A836} =>.Oracle Corporation
O42 - Logiciel: Java Auto Updater - (.Oracle Corporation.) [HKLM][64Bits] -- {4A03706F-666A-4037-7777-5F2748764D10} =>.Oracle Corporation
O42 - Logiciel: KC Softwares PortExpert - (.KC Softwares.) [HKLM][64Bits] -- KC Softwares PortExpert_is1 =>.KC Softwares®
O42 - Logiciel: KC Softwares RAMExpert - (.KC Softwares.) [HKLM][64Bits] -- KC Softwares RAMExpert_is1 =>.KC Softwares®
O42 - Logiciel: Kolor Autopano Giga 4.4 - (.Kolor.) [HKLM][64Bits] -- AutopanoGiga4.4 =>.Kolor SAS®
O42 - Logiciel: Kyodai Mahjongg 2006 v1.42 - (.Rene-Gilles Deberdt.) [HKLM][64Bits] -- Kyodai Mahjongg 2006_is1 =>.Rene-Gilles Deberdt
O42 - Logiciel: Link Shell Extension - (.Hermann Schinagl.) [HKLM][64Bits] -- HardlinkShellExt
O42 - Logiciel: Logitech Options - (.Logitech.) [HKLM][64Bits] -- LogiOptions =>.Logitech Inc®
O42 - Logiciel: LRTimelapse 4.7.8 - (.Gunther Wegner.) [HKLM][64Bits] -- {3B86296C-F4C8-4FE7-8561-CC5F444098D4}}_is1 {1F2A7CD41F218CDAA9AD1F1FCBF9AB0C}
O42 - Logiciel: Macrium Reflect Workstation Edition - (.Paramount Software (UK) Ltd..) [HKLM][64Bits] -- {AE7CBEA4-2603-479D-9056-4BCDA3736B3A} =>.Paramount Software (UK) Ltd.
O42 - Logiciel: Macrium Reflect Workstation Edition - (.Paramount Software (UK) Ltd..) [HKLM][64Bits] -- MacriumReflect =>.Paramount Software UK Ltd®
O42 - Logiciel: MakeMKV v1.10.7 - (.GuinpinSoft inc.) [HKLM][64Bits] -- MakeMKV =>.GuinpinSoft inc
O42 - Logiciel: MediaInfo 0.7.99 - (.MediaArea.net.) [HKLM][64Bits] -- MediaInfo =>.MediaArea.net
O42 - Logiciel: Medieval CUE Splitter - (.Medieval Software.) [HKLM][64Bits] -- {B96D2269-568B-4CBF-9332-12FAE8B158F7} =>.Medieval Software
O42 - Logiciel: MemInfo (remove only) - (..) [HKLM][64Bits] -- MemInfo
O42 - Logiciel: Microsoft OneDrive - (.Microsoft Corporation.) [HKCU][64Bits] -- OneDriveSetup.exe =>.Microsoft Windows®
O42 - Logiciel: MKVToolNix 17.0.0 (64-bit) - (.Moritz Bunkus.) [HKLM][64Bits] -- MKVToolNix =>.Moritz Bunkus
O42 - Logiciel: Module externe DxO OpticsPro 11 pour Adobe Lightroom - (.DxO Labs.) [HKLM][64Bits] -- {13E8E1D4-CA2E-4A5C-BBD4-EB4F7CA66014} =>.DxO Labs
O42 - Logiciel: MozBackup 1.5.1 - (.Pavel Cvrcek.) [HKLM][64Bits] -- MozBackup =>.Pavel Cvrcek
O42 - Logiciel: Mozilla Firefox 56.0.1 (x64 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 56.0.1 (x64 fr) =>.Mozilla Corporation®
O42 - Logiciel: MPC-HC 1.7.13 (64-bit) - (.MPC-HC Team.) [HKLM][64Bits] -- {2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1 =>.Fotis Zafiropoulos®
O42 - Logiciel: NetLimiter 4 - (.Locktime Software.) [HKLM][64Bits] -- {9603A9C1-8914-4E85-82AB-7E3806B04086} =>.Locktime Software
O42 - Logiciel: NetLimiter 4 - (.Locktime Software.) [HKLM][64Bits] -- NetLimiter 4 4.0.31.0 =>.Locktime Software
O42 - Logiciel: NetWorx 5.5.5 - (.Softperfect.) [HKLM][64Bits] -- NetWorx_is1 =>.SoftPerfect
O42 - Logiciel: NewFolderEx (remove only) - (..) [HKLM][64Bits] -- NewFolderEx
O42 - Logiciel: Nik Collection - (.Google.) [HKLM][64Bits] -- Nik Collection =>.Google Inc®
O42 - Logiciel: NirSoft WebBrowserPassView - (.NirSoft.) [HKLM][64Bits] -- NirSoft WebBrowserPassView =>.NirSoft
O42 - Logiciel: OEM Registration Program - (.Toshiba Corporation.) [HKLM][64Bits] -- {B69F4E72-CCA4-4352-BF1C-708CE3D96E25} =>.Toshiba Corporation
O42 - Logiciel: Office 16 Click-to-Run Extensibility Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-008C-0000-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Office 16 Click-to-Run Licensing Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-007E-0000-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Office 16 Click-to-Run Localization Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-008C-040C-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Old Calculator for Windows 10 - (.http://winaero.com.) [HKLM][64Bits] -- OldCalcForWin10 =>.http://winaero.com
O42 - Logiciel: Old Task Manager for Windows 10 - (.http://winaero.com.) [HKLM][64Bits] -- Old Task Manager for Windows 10 =>.http://winaero.com
O42 - Logiciel: PC8DeviceAgent 2.1.191 - (.SRM, Inc..) [HKLM][64Bits] -- PC8DeviceAgent
O42 - Logiciel: PCあんしん点検ユーティリティ - (.Toshiba Corporation.) [HKLM][64Bits] -- {D9CD7DB3-E2BE-4BC6-85A6-EF9235C0B096} =>.Toshiba Corporation
O42 - Logiciel: PDF-Viewer - (.Tracker Software Products Ltd.) [HKLM][64Bits] -- {A278382D-4F1B-4D47-9885-8523F7261E8D}_is1 =>.Tracker Software Products (Canada) Ltd®
O42 - Logiciel: photoFXlab - (.Topaz Labs.) [HKLM][64Bits] -- photoFXlab =>.Topaz Labs
O42 - Logiciel: Photomatix Pro version 6.0.1 - (.HDRsoft Ltd.) [HKLM][64Bits] -- PhotomatixPro6x64_is1 =>.HDRsoft Ltd
O42 - Logiciel: PhotoWizard - (.Microsoft.) [HKLM][64Bits] -- {3C100F93-4F0E-4C32-9AEB-EFB3E2CA34F8} =>.Microsoft
O42 - Logiciel: Prey Anti-Theft - (.Prey, Inc..) [HKLM][64Bits] -- {4D91189D-F5FD-45A9-B63E-58291ADA338B} =>.Prey, Inc.
O42 - Logiciel: Prey Anti-Theft - (.Prey, Inc..) [HKLM][64Bits] -- {C18974B2-3B85-4F55-BBA7-6D2D7867C31E} =>.Prey, Inc.
O42 - Logiciel: QuickLook - (.Paddy Xu.) [HKLM][64Bits] -- {571EDFC6-06D2-4DB3-BB47-A52FAC2ECEE1}
O42 - Logiciel: Rainmeter - (.kimmo.pekkola.) [HKLM][64Bits] -- Rainmeter
O42 - Logiciel: Realtek Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {5BC2B5AB-80DE-4E83-B8CF-426902051D0A} =>.Realtek Semiconductor Corp.®
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} =>.Realtek Semiconductor Corp®
O42 - Logiciel: Registry Finder 2.21.1 - (.Sergey Filippov.) [HKLM][64Bits] -- {CC3C7E59-8611-4542-8BFD-FFC6759AD0FB}_is1
O42 - Logiciel: RocketDock 1.3.5 - (.Punk Software.) [HKLM][64Bits] -- RocketDock_is1 =>.Punk Software
O42 - Logiciel: Rockstar Games Social Club - (.Rockstar Games.) [HKLM][64Bits] -- Rockstar Games Social Club =>.Rockstar Games, Inc.®
O42 - Logiciel: Scrabble solutions - (..) [HKCU][64Bits] -- Scrabble solutions
O42 - Logiciel: scrabbleproB 1.1.7 - (.scrabblepro.) [HKLM][64Bits] -- scrabbleproB_is1 =>.scrabblepro
O42 - Logiciel: ServiceCommander Version 4 - (.Core Technologies Consulting, LLC.) [HKLM][64Bits] -- ServiceCommander_is1 =>.Core Technologies Consulting, LLC®
O42 - Logiciel: Setup - (.Corel Corporation.) [HKLM][64Bits] -- {EE1DF8F8-24D8-4287-816B-E67B03460CEE} =>.Corel Corporation
O42 - Logiciel: Share64 - (.Corel Corporation.) [HKLM][64Bits] -- {5F5C5CC6-3457-4D8B-A716-85CC964C4533} =>.Corel Corporation
O42 - Logiciel: Simple Sticky Notes 3.6.1 - (.Simnet Ltd..) [HKLM][64Bits] -- Simple Sticky Notes_is1 =>.Simnet Ltd.
O42 - Logiciel: Soldats Inconnus Mémoires de la Grande Guerre 1.0.140373 - (.Huyustus.) [HKLM][64Bits] -- Soldats Inconnus Mémoires de la Grande Guerre 1.0.140373 =>.Huyustus
O42 - Logiciel: Spacewar - (.Valve.) [HKLM][64Bits] -- Steam App 480 =>.Valve®
O42 - Logiciel: SRMX - (.SRM.) [HKLM][64Bits] -- {de.srm.srmx.Main}}_is1
O42 - Logiciel: SumatraPDF - (.Krzysztof Kowalczyk.) [HKLM][64Bits] -- SumatraPDF =>.Krzysztof Kowalczyk®
O42 - Logiciel: SuperCopier2 - (.SFX Team.) [HKLM][64Bits] -- SuperCopier2 =>.SFX TEAM
O42 - Logiciel: Switcher 2.0.0 - (.Bao Nguyen.) [HKLM][64Bits] -- {F7DB6677-661D-4835-AAD8-1B7F4C98D7CE} =>.Bao Nguyen
O42 - Logiciel: SyncBackFree - (.2BrightSparks.) [HKLM][64Bits] -- SyncBackFree_is1 =>.2BrightSparks Pte. Ltd.®
O42 - Logiciel: Textify v1.6.2 - (.RaMMicHaeL.) [HKCU][64Bits] -- Textify =>.RaMMicHaeL
O42 - Logiciel: The Bat! v7.4.16 (64-bit) - (.Ritlabs, SRL.) [HKLM][64Bits] -- {BD704984-2F13-4EF3-90BD-38C949CE1D22} =>.Ritlabs, SRL
O42 - Logiciel: Topaz Adjust 5 - (.Topaz Labs, LLC.) [HKLM][64Bits] -- Topaz Adjust 5 =>.Topaz Labs, LLC
O42 - Logiciel: Topaz B&W Effects - (.Topaz Labs, LLC.) [HKLM][64Bits] -- Topaz BW Effects 2 =>.Topaz Labs, LLC
O42 - Logiciel: Topaz Clarity - (.Topaz Labs, LLC.) [HKLM][64Bits] -- Topaz Clarity =>.Topaz Labs, LLC
O42 - Logiciel: Topaz Clean 3 - (.Topaz Labs, LLC.) [HKLM][64Bits] -- Topaz Clean 3 =>.Topaz Labs, LLC
O42 - Logiciel: Topaz DeJpeg 4 - (.Topaz Labs, LLC.) [HKLM][64Bits] -- Topaz DeJpeg 4 =>.Topaz Labs, LLC
O42 - Logiciel: Topaz DeNoise 6 - (.Topaz Labs, LLC.) [HKLM][64Bits] -- Topaz DeNoise 6 =>.Topaz Labs, LLC
O42 - Logiciel: Topaz Detail 3 - (.Topaz Labs, LLC.) [HKLM][64Bits] -- Topaz Detail 3 =>.Topaz Labs, LLC
O42 - Logiciel: Topaz Fusion Express 2 - (.Topaz Labs, LLC.) [HKLM][64Bits] -- Topaz Fusion Express 2 =>.Topaz Labs, LLC
O42 - Logiciel: Topaz Glow 2 - (.Topaz Labs, LLC.) [HKLM][64Bits] -- Topaz Glow 2 =>.Topaz Labs, LLC
O42 - Logiciel: Topaz Impression 2 - (.Topaz Labs, LLC.) [HKLM][64Bits] -- Topaz Impression 2 =>.Topaz Labs, LLC
O42 - Logiciel: Topaz InFocus - (.Topaz Labs, LLC.) [HKLM][64Bits] -- Topaz InFocus =>.Topaz Labs, LLC
O42 - Logiciel: Topaz Lens Effects - (.Topaz Labs, LLC.) [HKLM][64Bits] -- Topaz Lens Effects =>.Topaz Labs, LLC
O42 - Logiciel: Topaz ReMask 5 - (.Topaz Labs, LLC.) [HKLM][64Bits] -- Topaz ReMask 5 =>.Topaz Labs, LLC
O42 - Logiciel: Topaz ReStyle - (.Topaz Labs, LLC.) [HKLM][64Bits] -- Topaz ReStyle =>.Topaz Labs, LLC
O42 - Logiciel: Topaz Simplify 4 - (.Topaz Labs, LLC.) [HKLM][64Bits] -- Topaz Simplify 4 =>.Topaz Labs, LLC
O42 - Logiciel: Topaz Star Effects - (.Topaz Labs, LLC.) [HKLM][64Bits] -- Topaz Star Effects =>.Topaz Labs, LLC
O42 - Logiciel: Topaz Texture Effects 2 - (.Topaz Labs, LLC.) [HKLM][64Bits] -- Topaz Texture Effects 2 =>.Topaz Labs, LLC
O42 - Logiciel: TOSHIBA Blu-ray Disc Player - (.Toshiba Corporation.) [HKLM][64Bits] -- {FF07604E-C860-40E9-A230-E37FA41F103A} =>.Toshiba Corporation
O42 - Logiciel: TOSHIBA Desktop Assist - (.Toshiba Corporation.) [HKLM][64Bits] -- {C4CDCEF0-0A7A-4425-887C-33E39533D758} =>.Toshiba Corporation
O42 - Logiciel: TOSHIBA eco Utility - (.Toshiba Corporation.) [HKLM][64Bits] -- {72EFCFA8-3923-451D-AF52-7CE9D87BC2A1} =>.Toshiba Corporation
O42 - Logiciel: TOSHIBA PalaDouga - (.Toshiba Corporation.) [HKLM][64Bits] -- {21CEB4A6-0FF1-444F-A0CC-6F648F74C7F6} =>.Toshiba Corporation
O42 - Logiciel: TOSHIBA Password Utility - (.Toshiba Corporation.) [HKLM][64Bits] -- {CD4B9E2C-4295-4920-82F2-C87113822E32} =>.Toshiba Corporation
O42 - Logiciel: TOSHIBA PC Health Monitor - (.Toshiba Corporation.) [HKLM][64Bits] -- {B507386D-1F61-4E55-B05B-F56ACB0086B3} =>.Toshiba Corporation
O42 - Logiciel: Toshiba Quality Application - (.TOSHIBA.) [HKLM][64Bits] -- {716C8275-A4A9-48CB-88C0-9829334CA3C5} =>.Toshiba
O42 - Logiciel: TOSHIBA Recovery Media Creator - (.Toshiba Corporation.) [HKLM][64Bits] -- {B65BBB06-1F8E-48F5-8A54-B024A9E15FDF} =>.TOSHIBA CORPORATION®
O42 - Logiciel: TOSHIBA Service Station - (.Toshiba Corporation.) [HKLM][64Bits] -- {4E688A2F-C4FB-4606-9282-1045B79CBFE2} =>.Toshiba Corporation
O42 - Logiciel: TOSHIBA Speech Synthesis - (.Toshiba Corporation.) [HKLM][64Bits] -- {36B0B896-6CD8-4C5F-B7E1-2AC8E9588ACC} =>.Toshiba Corporation
O42 - Logiciel: TOSHIBA System Driver - (.Toshiba Corporation.) [HKLM][64Bits] -- {1E6A96A1-2BAB-43EF-8087-30437593C66C} =>.Toshiba Corporation
O42 - Logiciel: TOSHIBA System Settings - (.Toshiba Corporation.) [HKLM][64Bits] -- {4D57ED72-6B01-40BD-9CA9-012B8FC09CEB} =>.Toshiba Corporation
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player =>.VideoLAN
O42 - Logiciel: VMware vCenter Converter Standalone - (.VMware, Inc..) [HKLM][64Bits] -- {70487A14-885E-4203-80E6-6FE7AA5FDA8C} =>.VMware, Inc.
O42 - Logiciel: VMware Workstation - (.VMware, Inc..) [HKLM][64Bits] -- {E374BA09-9CD0-4F58-90EE-F8C1488BC81E} =>.VMware, Inc.
O42 - Logiciel: VSClassic64 - (.Corel Corporation.) [HKLM][64Bits] -- {AE666608-C3B5-46F0-BAFA-B0A7BEE058F5} =>.Corel Corporation
O42 - Logiciel: Win10 Spy Disabler v1.4 - (.site2unblock.com.) [HKLM][64Bits] -- Win10 Spy Disabler_is1 =>.site2unblock.com
O42 - Logiciel: WinDirStat 1.1.2 - (.Seifert Systems.) [HKCU][64Bits] -- WinDirStat =>.Seifert Systems
O42 - Logiciel: WindowManager - (.DeskSoft.) [HKLM][64Bits] -- WindowManager =>.DeskSoft
O42 - Logiciel: Windows 10 Manager - (.Yamicsoft.) [HKCU][64Bits] -- Windows 10 Manager 2.1.7 =>.Yamicsoft
O42 - Logiciel: Windows 10 Manager - (.Yamicsoft.) [HKLM][64Bits] -- {24AFDB39-7D45-4724-866B-A8EEAFA71186} =>.Yamicsoft
O42 - Logiciel: Windows 10 Manager - (.Yamicsoft.) [HKLM][64Bits] -- {DC63955E-98AF-4858-AEC7-1C2843D77C85} =>.Yamicsoft
O42 - Logiciel: Windows Explorer Tracker 2.0 - (.TriSun Software Inc..) [HKLM][64Bits] -- Windows Explorer Tracker_is1
O42 - Logiciel: WinPcap 4.1.3 - (.Riverbed Technology, Inc..) [HKLM][64Bits] -- WinPcapInst =>.Riverbed Technology, Inc.
O42 - Logiciel: WinRAR 5.40 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver =>.win.rar GmbH®
O42 - Logiciel: WinSplit Revolution (v11.04) - (.Raphael Lencrerot.) [HKLM][64Bits] -- WinSplit Revolution
O42 - Logiciel: WinUAE 3.5.0 - (.Arabuusimiehet.) [HKLM][64Bits] -- {D6C0EFC7-6FA8-4482-9C9B-D9100844AFE3}
O42 - Logiciel: Wireshark 2.4.1 64-bit - (.The Wireshark developer community, https://www.wireshark.org.) [HKLM][64Bits] -- Wireshark =>.Wireshark Foundation, Inc.®
O42 - Logiciel: XnConvert 1.74 - (.Gougelet Pierre-e.) [HKLM][64Bits] -- XnConvert_is1 =>.Pierre GOUGELET®
O42 - Logiciel: XnView Shell Extension 3.5.1 (64bits) - (.Gougelet Pierre-e.) [HKLM][64Bits] -- XnView Shell Extension_is1 =>.Pierre GOUGELET®
O42 - Logiciel: 東芝スクリーンミラーリング - (.APUSONE Technology Inc..) [HKLM][64Bits] -- {FB840BB8-82D9-43F8-B7AD-C1DE01185294}
O42 - Logiciel: 東芝スクリーンミラーリング for スマートフォン/タブレット - (.APUSONE Technology Inc..) [HKLM][64Bits] -- InstallShield_{FB840BB8-82D9-43F8-B7AD-C1DE01185294}
---\\ HKCU & HKLM Software Keys (210) - 20s
HKLM\SOFTWARE\Wow6432Node\2BrightSparks =>.Ignite Realtime
HKLM\SOFTWARE\Wow6432Node\abelhadigital.com =>.abelhadigital.com
HKLM\SOFTWARE\Wow6432Node\Adobe =>.Adobe
HKLM\SOFTWARE\Wow6432Node\Anki =>.Damien Elmes
HKLM\SOFTWARE\Wow6432Node\APUSONE
HKLM\SOFTWARE\Wow6432Node\ASIO =>.Steinberg Media Technologies
HKLM\SOFTWARE\Wow6432Node\ASIO4ALL =>.Michael Tippach
HKLM\SOFTWARE\Wow6432Node\Axonic =>.Axonic
HKLM\SOFTWARE\Wow6432Node\Brother =>.Brother
HKLM\SOFTWARE\Wow6432Node\Caphyon =>.Caphyon
HKLM\SOFTWARE\Wow6432Node\CMEDIA USB2.0 Audio Device
HKLM\SOFTWARE\Wow6432Node\Core Technologies Consulting
HKLM\SOFTWARE\Wow6432Node\Cyberlink =>.CyberLink Corporation
HKLM\SOFTWARE\Wow6432Node\DeskSoft =>.DeskSoft
HKLM\SOFTWARE\Wow6432Node\DFX =>.DFX Power Technology
HKLM\SOFTWARE\Wow6432Node\DTS =>.Creative Technology
HKLM\SOFTWARE\Wow6432Node\DTS, Inc. =>.DTS, Inc.
HKLM\SOFTWARE\Wow6432Node\EaseUS =>.EaseUS Software
HKLM\SOFTWARE\Wow6432Node\ESET =>.ESET
HKLM\SOFTWARE\Wow6432Node\FastStone Image Viewer =>.FastStone Soft
HKLM\SOFTWARE\Wow6432Node\FastStone MaxView
HKLM\SOFTWARE\Wow6432Node\foobar2000 =>.Peter Pawlowski
HKLM\SOFTWARE\Wow6432Node\Fujisoft
HKLM\SOFTWARE\Wow6432Node\Google =>.Google
HKLM\SOFTWARE\Wow6432Node\HD Sentinel =>.HD Sentinel
HKLM\SOFTWARE\Wow6432Node\InstallShield =>.InstallShield
HKLM\SOFTWARE\Wow6432Node\Intel =>.Intel
HKLM\SOFTWARE\Wow6432Node\IObit =>.IObit
HKLM\SOFTWARE\Wow6432Node\JavaSoft =>.JavaSoft
HKLM\SOFTWARE\Wow6432Node\JreMetrics =>.JreMetrics
HKLM\SOFTWARE\Wow6432Node\Khronos =>.Khronos
HKLM\SOFTWARE\Wow6432Node\Lake =>.Lake Sofware
HKLM\SOFTWARE\Wow6432Node\Locktime Software =>.Locktime Software
HKLM\SOFTWARE\Wow6432Node\macrium =>.Macrium
HKLM\SOFTWARE\Wow6432Node\Macromedia =>.Macromedia
HKLM\SOFTWARE\Wow6432Node\Mozilla =>.Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org =>.mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins =>.MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\Nuance =>.Nuance
HKLM\SOFTWARE\Wow6432Node\ODBC =>.DB Connectivity Solutions
HKLM\SOFTWARE\Wow6432Node\Piriform =>.Piriform
HKLM\SOFTWARE\Wow6432Node\PowerTechnology =>.PowerTechnology
HKLM\SOFTWARE\Wow6432Node\Prey
HKLM\SOFTWARE\Wow6432Node\Rainmeter =>.Rainmeter
HKLM\SOFTWARE\Wow6432Node\Realtek =>.Realtek Semiconductor Corp.
HKLM\SOFTWARE\Wow6432Node\Realtek Semiconductor Corp. =>.Realtek Semiconductor Corp.
HKLM\SOFTWARE\Wow6432Node\Rockstar Games =>.Rockstar Games
HKLM\SOFTWARE\Wow6432Node\RTS
HKLM\SOFTWARE\Wow6432Node\Runtime Software =>.Runtime Software
HKLM\SOFTWARE\Wow6432Node\sMedio =>.sMedio
HKLM\SOFTWARE\Wow6432Node\Software =>.Unknown
HKLM\SOFTWARE\Wow6432Node\Sonic =>.Sonic
HKLM\SOFTWARE\Wow6432Node\SRS Labs =>.SRS Labs
HKLM\SOFTWARE\Wow6432Node\TeamViewer =>.TeamViewer
HKLM\SOFTWARE\Wow6432Node\TechSmith =>.TechSmith
HKLM\SOFTWARE\Wow6432Node\ThinPrint =>.ThinPrint
HKLM\SOFTWARE\Wow6432Node\Topaz Labs =>.Topaz Labs
HKLM\SOFTWARE\Wow6432Node\TOSHIBA =>.Toshiba Corporation
HKLM\SOFTWARE\Wow6432Node\Toshiba Corporation =>.Toshiba Corporation
HKLM\SOFTWARE\Wow6432Node\Valve =>.Valve
HKLM\SOFTWARE\Wow6432Node\VirtualWiFi
HKLM\SOFTWARE\Wow6432Node\VMware, Inc. =>.VMware, Inc.
HKLM\SOFTWARE\Wow6432Node\Volatile =>.Microsoft Corporation
HKLM\SOFTWARE\Wow6432Node\Winaero.com =>.Winaero
HKLM\SOFTWARE\Wow6432Node\WinPcap =>.Riverbed Technology
HKLM\SOFTWARE\Wow6432Node\WinSplit Revolution
HKLM\SOFTWARE\Wow6432Node\WOW6432Node =>.Microsoft Corporation
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications =>.Microsoft Corporation
HKCU\SOFTWARE\2BrightSparks =>.Ignite Realtime
HKCU\SOFTWARE\3766396
HKCU\SOFTWARE\3RVX
HKCU\SOFTWARE\7 Taskbar Tweaker
HKCU\SOFTWARE\AcoustIDPlugin =>.Intermedia Software
HKCU\SOFTWARE\Adobe =>.Adobe
HKCU\SOFTWARE\Adobe Lightroom =>.Adobe Inc.
HKCU\SOFTWARE\Agnitum =>.Agnitum
HKCU\SOFTWARE\Akeo Consulting =>.Akeo Consulting
HKCU\SOFTWARE\Alps =>.ALPS
HKCU\SOFTWARE\Amazon =>.Amazon
HKCU\SOFTWARE\AppDataLow =>.Microsoft Corporation
HKCU\SOFTWARE\Apple Computer, Inc. =>.Apple Computer, Inc.
HKCU\SOFTWARE\Apple Inc. =>.Apple Inc.
HKCU\SOFTWARE\Arabuusimiehet
HKCU\SOFTWARE\Arasan =>.Jon Dart
HKCU\SOFTWARE\ASIO4ALL v2 by Wuschel =>.Unknown
HKCU\SOFTWARE\AWSoftware =>.AWSoftware
HKCU\SOFTWARE\Axonic =>.Axonic
HKCU\SOFTWARE\Bitsum =>.Bitsum
HKCU\SOFTWARE\Brightsoft
HKCU\SOFTWARE\bunkus.org =>.bunkus.org
HKCU\SOFTWARE\Caphyon =>.Caphyon
HKCU\SOFTWARE\Chromium =>.Chromium
HKCU\SOFTWARE\Circitor =>.Circitor
HKCU\SOFTWARE\Core Technologies Consulting
HKCU\SOFTWARE\Corel =>.Corel
HKCU\SOFTWARE\CyberLink =>.CyberLink Corporation
HKCU\SOFTWARE\Cygwin =>.Cygwin
HKCU\SOFTWARE\DFX =>.DFX Power Technology
HKCU\SOFTWARE\DxO Labs =>.DxO Labs
HKCU\SOFTWARE\DxOLabs =>.DxO Labs
HKCU\SOFTWARE\EaseUS =>.EaseUS Software
HKCU\SOFTWARE\eBookConverter
HKCU\SOFTWARE\EFD Software =>.EFD Software
HKCU\SOFTWARE\Embarcadero =>.Embarcadero
HKCU\SOFTWARE\ESET =>.ESET
HKCU\SOFTWARE\Eusing Clock
HKCU\SOFTWARE\FinalWire =>.FinalWire
HKCU\SOFTWARE\foobar2000 =>.Peter Pawlowski
HKCU\SOFTWARE\Gest
HKCU\SOFTWARE\Google =>.Google
HKCU\SOFTWARE\GRETECH =>.Gretech
HKCU\SOFTWARE\HashTab =>.Implbits Software
HKCU\SOFTWARE\HB Studios Multimedia Ltd. =>.HB Studios Multimedia Ltd.
HKCU\SOFTWARE\HDRsoft =>.HDRsoft
HKCU\SOFTWARE\Hiro's tool
HKCU\SOFTWARE\HotSwap!
HKCU\SOFTWARE\Icaros =>.Icaros
HKCU\SOFTWARE\Illustrate =>.Illustrate
HKCU\SOFTWARE\IM Providers =>.IM Providers
HKCU\SOFTWARE\Intel =>.Intel
HKCU\SOFTWARE\InternetOff
HKCU\SOFTWARE\InterVideo =>.InterVideo
HKCU\SOFTWARE\ITSamples
HKCU\SOFTWARE\IvoSoft =>.IvoSoft
HKCU\SOFTWARE\JavaSoft =>.JavaSoft
HKCU\SOFTWARE\KC Softwares =>.KC Softwares
HKCU\SOFTWARE\Kolor =>.Kolor
HKCU\SOFTWARE\Lake =>.Lake Sofware
HKCU\SOFTWARE\LinkEngine
HKCU\SOFTWARE\LinkShellExtension
HKCU\SOFTWARE\Logitech =>.Logitech
HKCU\SOFTWARE\Logo =>.Unknown
HKCU\SOFTWARE\LopeSoft =>.LopeSoft
HKCU\SOFTWARE\macrium =>.Macrium
HKCU\SOFTWARE\Macrium.ReflectMonitor
HKCU\SOFTWARE\Macromedia =>.Macromedia
HKCU\SOFTWARE\MainConcept =>.MainConcept AG
HKCU\SOFTWARE\MakeMKV =>.GuinpinSoft inc
HKCU\SOFTWARE\MediaArea
HKCU\SOFTWARE\Medieval =>.Medieval
HKCU\SOFTWARE\Mine =>.Microsoft Corporation
HKCU\SOFTWARE\Mozilla =>.Mozilla
HKCU\SOFTWARE\Mozilla Backup =>.Mozilla Corporation
HKCU\SOFTWARE\MozillaPlugins =>.MozillaPlugins
HKCU\SOFTWARE\MPC-HC =>.MPC-HC Team
HKCU\SOFTWARE\MT66
HKCU\SOFTWARE\Namida =>.Namida Diamond Factory Ltd
HKCU\SOFTWARE\Netscape =>.Netscape
HKCU\SOFTWARE\O&O =>.O&O Software GmbH
HKCU\SOFTWARE\ODBC =>.DB Connectivity Solutions
HKCU\SOFTWARE\OTi
HKCU\SOFTWARE\Pangolin
HKCU\SOFTWARE\Paramount Software (UK) Ltd. =>.Paramount Software (UK) Ltd.
HKCU\SOFTWARE\Piriform =>.Piriform
HKCU\SOFTWARE\PortableAppC
HKCU\SOFTWARE\ProcessLasso =>.Bitsum Technologies
HKCU\SOFTWARE\PurkdellApps
HKCU\SOFTWARE\QtProject =>.QtProject
HKCU\SOFTWARE\RBSoft
HKCU\SOFTWARE\Realtek =>.Realtek Semiconductor Corp.
HKCU\SOFTWARE\RegisteredApplications =>.Microsoft Corporation
HKCU\SOFTWARE\RIT
HKCU\SOFTWARE\Ritlabs =>.Ritlabs
HKCU\SOFTWARE\RocketDock =>.Punk Software
HKCU\SOFTWARE\Rockstar Games =>.Rockstar Games
HKCU\SOFTWARE\Seifert =>.Seifert Systems
HKCU\SOFTWARE\SFX TEAM =>.SFX TEAM
HKCU\SOFTWARE\ShellFolderFix =>.Legitimate
HKCU\SOFTWARE\SimBin
HKCU\SOFTWARE\Simnet =>.Simnet Ltd
HKCU\SOFTWARE\Spoon =>.Spoon Software
HKCU\SOFTWARE\SRM Training System
HKCU\SOFTWARE\SyncEngines =>.Microsoft Corporation
HKCU\SOFTWARE\Sysinternals =>.Sysinternals
HKCU\SOFTWARE\Tapstar Interactive
HKCU\SOFTWARE\TCP Optimizer =>.Speed Guide, Inc
HKCU\SOFTWARE\TeamViewer =>.TeamViewer
HKCU\SOFTWARE\techPowerUp =>.TechPowerUp
HKCU\SOFTWARE\TechSmith =>.TechSmith
HKCU\SOFTWARE\Teorex =>.Teorex
HKCU\SOFTWARE\Textify
HKCU\SOFTWARE\TIE
HKCU\SOFTWARE\Tihiy
HKCU\SOFTWARE\Topaz Labs =>.Topaz Labs
HKCU\SOFTWARE\TopazLabs =>.Topaz Labs
HKCU\SOFTWARE\Toshiba =>.Toshiba Corporation
HKCU\SOFTWARE\Tracker Software =>.Tracker Software
HKCU\SOFTWARE\Trolltech =>.Trolltech
HKCU\SOFTWARE\Tryon
HKCU\SOFTWARE\Ulead =>.Ulead Systems
HKCU\SOFTWARE\Ulead Systems =>.Ulead Systems
HKCU\SOFTWARE\Unity =>.Unity
HKCU\SOFTWARE\Valve =>.Valve
HKCU\SOFTWARE\VB and VBA Program Settings =>.Microsoft Corporation
HKCU\SOFTWARE\VMware, Inc. =>.VMware, Inc.
HKCU\SOFTWARE\WhoStalksMyCam
HKCU\SOFTWARE\Winaero.com =>.Winaero
HKCU\SOFTWARE\WindowsPrivacyTweaker =>.Phrozen Software
HKCU\SOFTWARE\WinRAR =>.WinRAR
HKCU\SOFTWARE\WinRAR SFX =>.RarLab
HKCU\SOFTWARE\Wireshark =>.Wireshark
HKCU\SOFTWARE\Woozle
HKCU\SOFTWARE\Wow6432Node =>.Microsoft Corporation
HKCU\SOFTWARE\XnView =>.Pierre-Emmanuel Gougelet
HKCU\SOFTWARE\XTZY
HKCU\SOFTWARE\Yamicsoft =>.Yamicsoft
HKCU\SOFTWARE\ZebHelpProcess Helper =>.Nicolas Coolman
HKCU\SOFTWARE\Zentimo
HKCU\SOFTWARE\ZHP =>.Nicolas Coolman
HKCU\SOFTWARE\AppDataLow\Software =>.Microsoft Corporation
---\\ Contenu des dossiers Programmes (502) - 18s
O43 - CFD: 25/06/2016 - [] D -- C:\Program Files\Acrylic Wi-Fi Home =>.Acrylic
O43 - CFD: 20/10/2017 - [] AD -- C:\Program Files\Adobe =>.Adobe Systems Incorporated®
O43 - CFD: 19/10/2017 - [] AD -- C:\Program Files\Apoint2K =>.Alps Electric Co., LTD.®
O43 - CFD: 19/10/2017 - [] AD -- C:\Program Files\Argente Utilities
O43 - CFD: 07/10/2016 - [] D -- C:\Program Files\AutoHotkey =>.Chicony Multimedia
O43 - CFD: 06/12/2016 - [] D -- C:\Program Files\CINEBENCH R15.038_RC184115 =>.MAXON Computer GmbH®
O43 - CFD: 14/08/2017 - [] D -- C:\Program Files\Classic Shell =>.Ivo Beltchev
O43 - CFD: 26/04/2017 - [] AD -- C:\Program Files\Classic Sticky Notes
O43 - CFD: 20/10/2017 - [] D -- C:\Program Files\Common Files =>.Microsoft Corporation
O43 - CFD: 06/06/2016 - [] D -- C:\Program Files\Corel =>.Corel Corporation
O43 - CFD: 13/09/2017 - [] D -- C:\Program Files\CPU-Z =>.CPUID Inc
O43 - CFD: 02/07/2017 - [] AD -- C:\Program Files\DiskFresh
O43 - CFD: 24/04/2017 - [] D -- C:\Program Files\DxO Labs =>.DxO Labs
O43 - CFD: 14/07/2017 - [] D -- C:\Program Files\Easy Context Menu
O43 - CFD: 05/06/2016 - [] D -- C:\Program Files\ESET =>.ESET, spol. s r.o.®
O43 - CFD: 14/07/2016 - [] AD -- C:\Program Files\FolderIco =>.Shedko Software
O43 - CFD: 22/08/2016 - [] D -- C:\Program Files\Google =>.Google Inc®
O43 - CFD: 15/09/2017 - [] AD -- C:\Program Files\Greenshot =>.Open Source Developer, Robin Krom®
O43 - CFD: 01/11/2016 - [] D -- C:\Program Files\Handbrake =>.Handbrake
O43 - CFD: 02/07/2016 - [] D -- C:\Program Files\HashTab Shell Extension =>.Implbits Software
O43 - CFD: 29/04/2017 - [] AD -- C:\Program Files\Icaros
O43 - CFD: 19/10/2017 - [] D -- C:\Program Files\Intel =>.Intel Corporation
O43 - CFD: 19/10/2017 - [] D -- C:\Program Files\internet explorer =>.Microsoft Corporation
O43 - CFD: 19/02/2017 - [] AD -- C:\Program Files\IrfanView =>.Irfan skiljan
O43 - CFD: 20/10/2017 - [] D -- C:\Program Files\Java =>.Oracle
O43 - CFD: 14/06/2017 - [] D -- C:\Program Files\Kolor =>.Kolor
O43 - CFD: 13/06/2016 - [] D -- C:\Program Files\LinkShellExtension
O43 - CFD: 07/08/2017 - [] D -- C:\Program Files\Locktime Software =>.Locktime Software
O43 - CFD: 12/10/2017 - [] D -- C:\Program Files\Logitech =>.Logitech Inc®
O43 - CFD: 27/09/2017 - [] AD -- C:\Program Files\LRTimelapse 4
O43 - CFD: 25/10/2017 - [] D -- C:\Program Files\Macrium =>.Macrium
O43 - CFD: 05/05/2017 - [] D -- C:\Program Files\MediaInfo =>.Jérôme Martinez
O43 - CFD: 19/10/2017 - [] D -- C:\Program Files\Microsoft =>.Microsoft Corporation
O43 - CFD: 03/08/2016 - [] D -- C:\Program Files\Microsoft LifeCam =>.Microsoft Corporation
O43 - CFD: 20/10/2017 - [] AD -- C:\Program Files\Microsoft Office =>.Microsoft Corporation
O43 - CFD: 15/06/2016 - [] D -- C:\Program Files\Microsoft Office 15 =>.Microsoft Corporation
O43 - CFD: 27/10/2016 - [] AD -- C:\Program Files\Microsoft SQL Server Compact Edition =>.Microsoft Corporation
O43 - CFD: 27/10/2016 - [] D -- C:\Program Files\Microsoft Synchronization Services =>.Microsoft Corporation
O43 - CFD: 21/02/2017 - [] D -- C:\Program Files\MKVToolNix =>.Matroska
O43 - CFD: 10/10/2017 - [] AD -- C:\Program Files\Mozilla Firefox =>.Mozilla
O43 - CFD: 18/07/2017 - [] AD -- C:\Program Files\MPC-HC =>.MPC-HC Team
O43 - CFD: 19/10/2017 - [] D -- C:\Program Files\MSBuild =>.Microsoft Corporation
O43 - CFD: 01/01/2017 - [] AD -- C:\Program Files\NetWorx =>.SOFTPERFECT PTY. LTD.®
O43 - CFD: 30/08/2017 - [] D -- C:\Program Files\Notepad++ =>.Don Ho
O43 - CFD: 04/06/2017 - [] AD -- C:\Program Files\PhotomatixPro6
O43 - CFD: 01/10/2017 - [] D -- C:\Program Files\Rainmeter =>.kimmo.pekkola
O43 - CFD: 19/10/2017 - [] D -- C:\Program Files\Realtek =>.Realtek
O43 - CFD: 19/10/2017 - [] D -- C:\Program Files\Reference Assemblies =>.Microsoft Corporation
O43 - CFD: 29/08/2017 - [] AD -- C:\Program Files\Registry Finder
O43 - CFD: 13/03/2017 - [] D -- C:\Program Files\Rockstar Games =>.Rockstar Games, Inc.®
O43 - CFD: 09/06/2016 - [] D -- C:\Program Files\ShellFolderFix64
O43 - CFD: 05/07/2017 - [0] D -- C:\Program Files\Speccy =>.Piriform
O43 - CFD: 02/05/2017 - [] AD -- C:\Program Files\SumatraPDF =>.Krzysztof Kowalczyk
O43 - CFD: 07/07/2016 - [] D -- C:\Program Files\Task Manager
O43 - CFD: 19/06/2017 - [] D -- C:\Program Files\TechSmith =>.TechSmith
O43 - CFD: 06/03/2017 - [] AD -- C:\Program Files\The Bat! {7B6C72E14CC763DFB10B718EA27D8B7D}
O43 - CFD: 28/07/2017 - [] D -- C:\Program Files\TOSHIBA =>.Toshiba Corporation
O43 - CFD: 08/03/2017 - [] AD -- C:\Program Files\Tracker Software =>.Tracker Software
O43 - CFD: 13/02/2016 - [0] HD -- C:\Program Files\Uninstall Information =>.Microsoft Corporation
O43 - CFD: 05/06/2016 - [] D -- C:\Program Files\VideoLAN =>.VideoLan Team
O43 - CFD: 19/03/2017 - [] D -- C:\Program Files\volumouse-x64 =>.Nir Sofer®
O43 - CFD: 19/06/2016 - [] AD -- C:\Program Files\Win10 Spy Disabler =>.Site2unblock
O43 - CFD: 19/10/2017 - [] D -- C:\Program Files\Windows Defender =>.Microsoft Corporation
O43 - CFD: 19/10/2017 - [] D -- C:\Program Files\Windows Defender Advanced Threat Protection =>.Microsoft Corporation
O43 - CFD: 19/10/2017 - [] D -- C:\Program Files\Windows Mail =>.Microsoft Corporation
O43 - CFD: 19/10/2017 - [] D -- C:\Program Files\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [] D -- C:\Program Files\Windows Multimedia Platform =>.Microsoft Corporation
O43 - CFD: 19/10/2017 - [] D -- C:\Program Files\windows nt =>.Microsoft Corporation
O43 - CFD: 19/10/2017 - [] D -- C:\Program Files\Windows Photo Viewer =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [] D -- C:\Program Files\Windows Portable Devices =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [] D -- C:\Program Files\Windows Security =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [] SHD -- C:\Program Files\Windows Sidebar =>.Microsoft Corporation
O43 - CFD: 19/10/2017 - [] HD -- C:\Program Files\WindowsApps =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [] D -- C:\Program Files\WindowsPowerShell =>.Microsoft Corporation
O43 - CFD: 16/08/2016 - [] AD -- C:\Program Files\WinRAR =>.win.rar GmbH®
O43 - CFD: 31/08/2017 - [] AD -- C:\Program Files\Wireshark =>.Wireshark
O43 - CFD: 06/04/2017 - [] AD -- C:\Program Files\XnConvert =>.Pierre Gougelet
O43 - CFD: 12/06/2016 - [] D -- C:\Program Files\XnView =>.Pierre-Emmanuel Gougelet
O43 - CFD: 23/07/2017 - [] D -- C:\Program Files\Yamicsoft =>.YAMICSOFT TECHNOLOGY LIMITED®
O43 - CFD: 15/07/2016 - [] D -- C:\Program Files (x86)\2BrightSparks =>.Ignite Realtime
O43 - CFD: 19/03/2017 - [] AD -- C:\Program Files (x86)\3RVX
O43 - CFD: 27/09/2017 - [] AD -- C:\Program Files (x86)\Adobe =>.Adobe Systems Incorporated®
O43 - CFD: 21/05/2017 - [] D -- C:\Program Files (x86)\Anki =>.Damien Elmes
O43 - CFD: 11/09/2016 - [] AD -- C:\Program Files (x86)\Ant Renamer =>.Antoine Potten
O43 - CFD: 20/10/2017 - [] D -- C:\Program Files (x86)\Arasan =>.Jon Dart
O43 - CFD: 30/12/2016 - [] D -- C:\Program Files (x86)\ASIO4ALL v2 =>.Michael Tippach
O43 - CFD: 03/10/2016 - [] AD -- C:\Program Files (x86)\AtHome Camera
O43 - CFD: 26/03/2017 - [] AD -- C:\Program Files (x86)\Audacity =>.Audacity
O43 - CFD: 22/06/2017 - [] D -- C:\Program Files (x86)\Audio Multi Gen
O43 - CFD: 24/10/2017 - [] D -- C:\Program Files (x86)\Ccleaner =>.Piriform Ltd
O43 - CFD: 17/04/2017 - [] AD -- C:\Program Files (x86)\ChessX
O43 - CFD: 30/05/2016 - [0] D -- C:\Program Files (x86)\Cisco =>.Cisco Systems, Inc.
O43 - CFD: 20/10/2017 - [] D -- C:\Program Files (x86)\Common Files =>.Microsoft Corporation
O43 - CFD: 01/08/2017 - [] D -- C:\Program Files (x86)\Corel =>.Corel Corporation
O43 - CFD: 02/07/2017 - [] AD -- C:\Program Files (x86)\Crayon Physics Deluxe
O43 - CFD: 04/08/2017 - [] D -- C:\Program Files (x86)\CrystalDiskInfo =>.Crystal Dew World
O43 - CFD: 01/08/2017 - [] D -- C:\Program Files (x86)\CrystalDiskMark =>.Noriyuki Miyazaki®
O43 - CFD: 10/06/2016 - [] D -- C:\Program Files (x86)\CyberLink =>.CyberLink Corporation
O43 - CFD: 27/10/2017 - [] D -- C:\Program Files (x86)\Destroy Windows 10 Spying
O43 - CFD: 09/10/2016 - [] D -- C:\Program Files (x86)\devmanview-x64 =>.Nir Sofer®
O43 - CFD: 03/09/2016 - [] AD -- C:\Program Files (x86)\DFX =>.DFX Power Technology
O43 - CFD: 25/07/2016 - [] D -- C:\Program Files (x86)\Disk activity indicator
O43 - CFD: 25/10/2016 - [] D -- C:\Program Files (x86)\Drive letter view =>.Nir Sofer®
O43 - CFD: 07/06/2016 - [] D -- C:\Program Files (x86)\DTS, Inc =>.DTS, Inc.®
O43 - CFD: 05/02/2017 - [] AD -- C:\Program Files (x86)\Ear Trumpet
O43 - CFD: 15/08/2017 - [] D -- C:\Program Files (x86)\EaseUS =>.EaseUS Software
O43 - CFD: 19/02/2017 - [] D -- C:\Program Files (x86)\eBook Converter 3.17.210.400 Portable
O43 - CFD: 09/08/2015 - [] D -- C:\Program Files (x86)\EcMenu 1.6
O43 - CFD: 27/10/2017 - [] D -- C:\Program Files (x86)\Everything =>.Everything
O43 - CFD: 06/09/2016 - [] D -- C:\Program Files (x86)\Exact Audio Copy =>.Andre Wiethoff
O43 - CFD: 07/11/2016 - [] D -- C:\Program Files (x86)\Executed programs list =>.Nir Sofer®
O43 - CFD: 01/08/2017 - [] D -- C:\Program Files (x86)\FastStone Image Viewer =>.FastStone Soft
O43 - CFD: 19/02/2017 - [] D -- C:\Program Files (x86)\FastStone MaxView
O43 - CFD: 19/02/2017 - [] D -- C:\Program Files (x86)\FastStone Photo Resizer =>.FastStone Soft
O43 - CFD: 14/04/2017 - [] D -- C:\Program Files (x86)\FileMenuTools
O43 - CFD: 27/10/2017 - [] D -- C:\Program Files (x86)\FileSearchy
O43 - CFD: 28/06/2016 - [] D -- C:\Program Files (x86)\FinalWire =>.FinalWire Kft.®
O43 - CFD: 01/01/2017 - [] D -- C:\Program Files (x86)\flac-1.3.2-win
O43 - CFD: 09/05/2017 - [] D -- C:\Program Files (x86)\Flicflac
O43 - CFD: 04/05/2017 - [] D -- C:\Program Files (x86)\Folder change view =>.Nir Sofer®
O43 - CFD: 10/07/2017 - [] AD -- C:\Program Files (x86)\foobar2000 =>.Peter Pawlowski
O43 - CFD: 23/01/2017 - [] D -- C:\Program Files (x86)\gabnetstats
O43 - CFD: 21/05/2017 - [] D -- C:\Program Files (x86)\Geekbench 4 =>.Primate Labs Inc.®
O43 - CFD: 09/06/2016 - [] D -- C:\Program Files (x86)\Gest
O43 - CFD: 22/08/2016 - [] D -- C:\Program Files (x86)\Google =>.Google Inc®
O43 - CFD: 24/02/2017 - [] D -- C:\Program Files (x86)\GretagMacbeth =>.GretagMacbeth
O43 - CFD: 24/10/2017 - [] AD -- C:\Program Files (x86)\Hard Disk Sentinel =>.H.D.S. Hungary
O43 - CFD: 24/10/2016 - [] AD -- C:\Program Files (x86)\HostsMan
O43 - CFD: 07/11/2016 - [] D -- C:\Program Files (x86)\Installed drivers list-x64
O43 - CFD: 14/03/2017 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information =>.InstallShield
O43 - CFD: 15/07/2017 - [] AD -- C:\Program Files (x86)\Intel =>.Intel Corporation
O43 - CFD: 19/10/2017 - [] D -- C:\Program Files (x86)\Internet Explorer =>.Microsoft Corporation
O43 - CFD: 09/05/2017 - [] AD -- C:\Program Files (x86)\InternetOff =>.Crystal Rich Ltd®
O43 - CFD: 11/03/2017 - [] D -- C:\Program Files (x86)\IObit =>.IObit
O43 - CFD: 06/03/2017 - [] D -- C:\Program Files (x86)\KC Softwares =>.KC Softwares®
O43 - CFD: 07/07/2017 - [] AD -- C:\Program Files (x86)\Kvetka
O43 - CFD: 13/06/2016 - [] AD -- C:\Program Files (x86)\Kyodai Mahjongg 2006 =>.René-Gilles Deberdt
O43 - CFD: 09/10/2016 - [] D -- C:\Program Files (x86)\lastactivityview =>.Nir Sofer®
O43 - CFD: 07/02/2017 - [] D -- C:\Program Files (x86)\loadeddllsview-x64 =>.Nir Sofer®
O43 - CFD: 09/10/2016 - [] D -- C:\Program Files (x86)\MAC Address Scanner
O43 - CFD: 05/06/2017 - [] D -- C:\Program Files (x86)\Mac address view =>.Nir Sofer®
O43 - CFD: 21/10/2017 - [] D -- C:\Program Files (x86)\MakeMKV
O43 - CFD: 23/02/2017 - [] D -- C:\Program Files (x86)\Medieval Software =>.Medieval Software
O43 - CFD: 05/06/2016 - [] D -- C:\Program Files (x86)\MemInfo
O43 - CFD: 03/08/2016 - [] D -- C:\Program Files (x86)\Microsoft LifeCam =>.Microsoft Corporation
O43 - CFD: 27/10/2016 - [] AD -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition =>.Microsoft Corporation
O43 - CFD: 27/10/2016 - [] D -- C:\Program Files (x86)\Microsoft Synchronization Services =>.Microsoft Corporation
O43 - CFD: 19/10/2017 - [] D -- C:\Program Files (x86)\Microsoft.NET =>.Microsoft Corporation
O43 - CFD: 30/05/2016 - [] D -- C:\Program Files (x86)\MozBackup =>.Mozilla
O43 - CFD: 19/10/2017 - [] D -- C:\Program Files (x86)\MSBuild =>.Microsoft Corporation
O43 - CFD: 29/06/2017 - [] D -- C:\Program Files (x86)\Network usage =>.Nir Sofer®
O43 - CFD: 10/09/2016 - [] D -- C:\Program Files (x86)\networkconnectlog =>.Nir Sofer®
O43 - CFD: 03/07/2016 - [] D -- C:\Program Files (x86)\NewFolderEx
O43 - CFD: 07/10/2016 - [] D -- C:\Program Files (x86)\NirSoft =>.NirSoft
O43 - CFD: 10/06/2016 - [] D -- C:\Program Files (x86)\NSIS Uninstall Information =>.MSIS
O43 - CFD: 27/03/2017 - [] D -- C:\Program Files (x86)\NTFS Links View =>.Nir Sofer®
O43 - CFD: 10/05/2017 - [] D -- C:\Program Files (x86)\O&O Shut up W10 =>.O&O Software GmbH®
O43 - CFD: 19/10/2017 - [] D -- C:\Program Files (x86)\OldNewExplorer
O43 - CFD: 21/10/2017 - [] D -- C:\Program Files (x86)\OpenHardwareMonitor
O43 - CFD: 11/12/2014 - [] D -- C:\Program Files (x86)\PalaDouga
O43 - CFD: 22/11/2016 - [] D -- C:\Program Files (x86)\PhotoFiltre7 =>.Antonio Da Cruz
O43 - CFD: 13/09/2017 - [] D -- C:\Program Files (x86)\Prime 95
O43 - CFD: 17/09/2017 - [] D -- C:\Program Files (x86)\Process KO
O43 - CFD: 23/05/2017 - [] D -- C:\Program Files (x86)\ProcessExplorer =>.Microsoft Corporation®
O43 - CFD: 11/04/2015 - [] D -- C:\Program Files (x86)\Realtek =>.Realtek
O43 - CFD: 19/10/2017 - [] D -- C:\Program Files (x86)\Reference Assemblies =>.Microsoft Corporation
O43 - CFD: 11/05/2017 - [] D -- C:\Program Files (x86)\Reset Data Usage - Script
O43 - CFD: 26/02/2017 - [] D -- C:\Program Files (x86)\Resource hacker =>.Angus Johnson
O43 - CFD: 03/04/2017 - [] D -- C:\Program Files (x86)\Right Click Enhancer
O43 - CFD: 09/06/2016 - [] AD -- C:\Program Files (x86)\RocketDock =>.Punk Software
O43 - CFD: 13/03/2017 - [] D -- C:\Program Files (x86)\Rockstar Games =>.Rockstar Games, Inc.®
O43 - CFD: 22/02/2017 - [] AD -- C:\Program Files (x86)\Runtime Software =>.Runtime Software, LLC®
O43 - CFD: 02/07/2017 - [] D -- C:\Program Files (x86)\Scrabble solutions =>.Games Software
O43 - CFD: 27/05/2017 - [] AD -- C:\Program Files (x86)\scrabbleproB1.1 =>.Games Software
O43 - CFD: 06/07/2016 - [] AD -- C:\Program Files (x86)\ServiceCommander =>.Core Technologies Consulting, LLC®
O43 - CFD: 13/05/2017 - [] AD -- C:\Program Files (x86)\Simple Sticky Notes =>.Simnet Bilgisayar Yazilim Hiz. San. ve Tic. Ltd. Sti.®
O43 - CFD: 13/06/2016 - [] AD -- C:\Program Files (x86)\Soldats Inconnus Mémoires de la Grande Guerre =>.Ubisoft Chengdu Co., Ltd.®
O43 - CFD: 18/06/2016 - [] D -- C:\Program Files (x86)\SRM Training System
O43 - CFD: 18/06/2016 - [] AD -- C:\Program Files (x86)\SRMX
O43 - CFD: 24/09/2016 - [] D -- C:\Program Files (x86)\SSD-Z
O43 - CFD: 24/10/2017 - [] D -- C:\Program Files (x86)\Steam =>.Steam Games
O43 - CFD: 01/05/2017 - [] D -- C:\Program Files (x86)\Stick it 1.00.0b
O43 - CFD: 09/06/2016 - [] D -- C:\Program Files (x86)\SuperCopier2 =>.Ultracopier
O43 - CFD: 05/06/2016 - [] D -- C:\Program Files (x86)\Switcher
O43 - CFD: 13/05/2017 - [] D -- C:\Program Files (x86)\Task scheduler view-x64 =>.Nir Sofer®
O43 - CFD: 19/02/2017 - [] D -- C:\Program Files (x86)\Topaz Labs {0A10F7F6DFC59215284F3151CD7F5827} =>.Topaz Labs
O43 - CFD: 15/08/2017 - [] D -- C:\Program Files (x86)\Tor Browser =>.Roger Dingledine
O43 - CFD: 07/06/2016 - [] D -- C:\Program Files (x86)\Toshiba =>.Toshiba Corporation
O43 - CFD: 15/10/2017 - [] D -- C:\Program Files (x86)\turned on times view =>.Nir Sofer®
O43 - CFD: 24/10/2011 - [] D -- C:\Program Files (x86)\Tweaking.com - Windows Repair =>.Tweaking LLC®
O43 - CFD: 18/05/2017 - [] D -- C:\Program Files (x86)\uninstallview-x64 =>.Nir Sofer®
O43 - CFD: 05/07/2016 - [] D -- C:\Program Files (x86)\usbdeview-x64 =>.Nir Sofer®
O43 - CFD: 27/09/2017 - [] AD -- C:\Program Files (x86)\VMware =>.VMware, Inc.®
O43 - CFD: 27/10/2017 - [] D -- C:\Program Files (x86)\Volume2
O43 - CFD: 04/10/2016 - [] D -- C:\Program Files (x86)\webcacheimageinfo =>.Nir Sofer®
O43 - CFD: 11/05/2017 - [] D -- C:\Program Files (x86)\wifihistoryview =>.Nir Sofer®
O43 - CFD: 11/10/2017 - [] D -- C:\Program Files (x86)\wifiinfoview =>.Nir Sofer®
O43 - CFD: 19/02/2017 - [] D -- C:\Program Files (x86)\Win Privacy
O43 - CFD: 20/11/2016 - [] D -- C:\Program Files (x86)\Winaero.com
O43 - CFD: 15/08/2017 - [] D -- C:\Program Files (x86)\WinaeroTweaker =>.Sergey Tkachenko
O43 - CFD: 05/07/2016 - [] D -- C:\Program Files (x86)\WinDirStat =>.Seifert Systems
O43 - CFD: 03/09/2017 - [] AD -- C:\Program Files (x86)\WindowManager
O43 - CFD: 19/10/2017 - [] D -- C:\Program Files (x86)\Windows Defender =>.Microsoft Corporation
O43 - CFD: 03/05/2017 - [] AD -- C:\Program Files (x86)\Windows Explorer Tracker
O43 - CFD: 19/10/2017 - [] D -- C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation
O43 - CFD: 19/10/2017 - [] D -- C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [] D -- C:\Program Files (x86)\Windows Multimedia Platform =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [] D -- C:\Program Files (x86)\windows nt =>.Microsoft Corporation
O43 - CFD: 19/10/2017 - [] D -- C:\Program Files (x86)\Windows Photo Viewer =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [] D -- C:\Program Files (x86)\Windows Portable Devices =>.Microsoft Corporation
O43 - CFD: 14/06/2017 - [] D -- C:\Program Files (x86)\Windows Repair Toolbox
O43 - CFD: 29/09/2017 - [] SHD -- C:\Program Files (x86)\Windows Sidebar =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [] D -- C:\Program Files (x86)\WindowsPowerShell =>.Microsoft Corporation
O43 - CFD: 01/10/2017 - [] D -- C:\Program Files (x86)\winlogonview =>.Nir Sofer®
O43 - CFD: 09/06/2016 - [] D -- C:\Program Files (x86)\WinPcap =>.Riverbed Technology
O43 - CFD: 09/06/2016 - [] D -- C:\Program Files (x86)\WinSplit Revolution
O43 - CFD: 16/06/2017 - [] AD -- C:\Program Files (x86)\WinUAE {562B338CB88526A9EC50806CA768E1D5}
O43 - CFD: 02/09/2016 - [] D -- C:\Program Files (x86)\wirelesskeyview =>.Nir Sofer®
O43 - CFD: 06/10/2017 - [] D -- C:\Program Files (x86)\Wirelessnetview =>.Nir Sofer®
O43 - CFD: 05/10/2016 - [] D -- C:\Program Files (x86)\wizmouse 1.7.0.3 portable {00D39D410A3C118AE7EC2FE1A059AD66D9}
O43 - CFD: 27/04/2017 - [] D -- C:\Program Files (x86)\wnetwatcher =>.Nir Sofer®
O43 - CFD: 29/09/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility =>.Microsoft Corporation
O43 - CFD: 19/10/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories =>.Microsoft Corporation
O43 - CFD: 30/09/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools
O43 - CFD: 19/10/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe =>.Adobe
O43 - CFD: 19/10/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel =>.Intel Corporation
O43 - CFD: 29/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance =>.Microsoft Corporation
O43 - CFD: 19/10/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools =>.Microsoft Corporation
O43 - CFD: 13/02/2016 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC =>.Wacom Technology
O43 - CFD: 19/10/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TOSHIBA =>.Toshiba Corporation
O43 - CFD: 24/10/2016 - [] D -- C:\ProgramData\abelhadigital.com =>.abelhadigital.com
O43 - CFD: 20/10/2017 - [] D -- C:\ProgramData\Adobe =>.Adobe
O43 - CFD: 11/09/2016 - [] D -- C:\ProgramData\Ant Renamer =>.Antoine Potten
O43 - CFD: 18/06/2016 - [] D -- C:\ProgramData\Apple =>.Apple Inc.
O43 - CFD: 19/10/2017 - [0] SHD -- C:\ProgramData\Application Data =>.Microsoft Corporation
O43 - CFD: 22/06/2016 - [] D -- C:\ProgramData\boost_interprocess =>.boost.org
O43 - CFD: 24/01/2017 - [] D -- C:\ProgramData\Caphyon =>.Caphyon
O43 - CFD: 16/07/2016 - [0] D -- C:\ProgramData\Comms =>.Microsoft Corporation
O43 - CFD: 06/06/2016 - [] D -- C:\ProgramData\Corel =>.Corel Corporation
O43 - CFD: 10/06/2016 - [] D -- C:\ProgramData\CyberLink =>.CyberLink Corporation
O43 - CFD: 11/04/2015 - [] D -- C:\ProgramData\dbg =>.DBG
O43 - CFD: 19/03/2017 - [] D -- C:\ProgramData\DeskSoft =>.DeskSoft
O43 - CFD: 19/10/2017 - [0] SHD -- C:\ProgramData\Documents =>.Microsoft Corporation
O43 - CFD: 24/04/2017 - [] D -- C:\ProgramData\DxO Labs =>.DxO Labs
O43 - CFD: 19/02/2017 - [] D -- C:\ProgramData\eBook Converter =>.ebook Converter
O43 - CFD: 05/06/2016 - [] D -- C:\ProgramData\ESET =>.ESET
O43 - CFD: 22/08/2016 - [] D -- C:\ProgramData\Google =>.Google
O43 - CFD: 10/06/2016 - [] D -- C:\ProgramData\install_clap =>.Microsoft Corporation
O43 - CFD: 27/10/2016 - [] D -- C:\ProgramData\Intel =>.Intel Corporation
O43 - CFD: 27/10/2017 - [] D -- C:\ProgramData\IObit =>.IObit
O43 - CFD: 21/09/2017 - [] D -- C:\ProgramData\IOffSvc
O43 - CFD: 26/05/2017 - [] D -- C:\ProgramData\Locktime =>.Locktime Software
O43 - CFD: 12/10/2017 - [] D -- C:\ProgramData\Logishrd =>.Logitech Inc.
O43 - CFD: 14/04/2017 - [] D -- C:\ProgramData\LopeSoft =>.LopeSoft
O43 - CFD: 15/08/2017 - [] D -- C:\ProgramData\Macrium =>.Macrium
O43 - CFD: 09/07/2017 - [] D -- C:\ProgramData\Make-EXE
O43 - CFD: 19/10/2017 - [] SD -- C:\ProgramData\Microsoft =>.Microsoft Corporation
O43 - CFD: 19/10/2017 - [] D -- C:\ProgramData\Microsoft OneDrive =>.Microsoft Corporation
O43 - CFD: 11/04/2015 - [] AD -- C:\ProgramData\MicrosoftPhotoBook =>.Microsoft Corporation
O43 - CFD: 28/02/2017 - [] D -- C:\ProgramData\Oracle =>.Oracle
O43 - CFD: 13/06/2016 - [] D -- C:\ProgramData\Orbit =>.Orbit
O43 - CFD: 01/08/2017 - [] D -- C:\ProgramData\Package Cache =>.Microsoft Corporation
O43 - CFD: 10/06/2016 - [] D -- C:\ProgramData\PDVD =>.PDVD
O43 - CFD: 10/03/2017 - [0] D -- C:\ProgramData\ProcessLasso
O43 - CFD: 27/10/2017 - [] D -- C:\ProgramData\ProductData =>.Microsoft Corporation
O43 - CFD: 02/06/2016 - [0] D -- C:\ProgramData\Protexis64 =>.Protexis Inc.
O43 - CFD: 20/10/2017 - [] D -- C:\ProgramData\regid.1986-12.com.adobe =>.Adobe Inc.
O43 - CFD: 20/10/2017 - [] D -- C:\ProgramData\regid.1991-06.com.microsoft =>.Microsoft Corporation
O43 - CFD: 13/06/2016 - [0] D -- C:\ProgramData\Reprise =>.Unknown
O43 - CFD: 11/04/2015 - [] D -- C:\ProgramData\Roaming =>.Microsoft Corporation
O43 - CFD: 11/04/2015 - [] D -- C:\ProgramData\Roxio Log Files =>.Roxio
O43 - CFD: 06/06/2016 - [] D -- C:\ProgramData\Screen Mirroring
O43 - CFD: 12/06/2016 - [] D -- C:\ProgramData\SoftPerfect =>.SoftPerfect
O43 - CFD: 29/09/2017 - [0] D -- C:\ProgramData\SoftwareDistribution =>.Microsoft Corporation
O43 - CFD: 07/06/2016 - [] D -- C:\ProgramData\SRS Labs =>.SRS Labs
O43 - CFD: 27/06/2016 - [] D -- C:\ProgramData\Steam =>.Steam Games
O43 - CFD: 10/06/2016 - [] D -- C:\ProgramData\SUPPORTDIR =>.Microsoft Corporation
O43 - CFD: 19/06/2017 - [] AD -- C:\ProgramData\TechSmith =>.TechSmith
O43 - CFD: 19/10/2017 - [0] SHD -- C:\ProgramData\Templates =>.Microsoft Corporation
O43 - CFD: 14/07/2016 - [] D -- C:\ProgramData\Teorex =>.Teorex
O43 - CFD: 07/06/2016 - [] D -- C:\ProgramData\TOSHIBA =>.Toshiba Corporation
O43 - CFD: 11/04/2015 - [] D -- C:\ProgramData\Toshiba Places Gadget V4 =>.Toshiba Corporation
O43 - CFD: 05/06/2016 - [] D -- C:\ProgramData\Trend Micro =>.Trend Micro
O43 - CFD: 19/10/2017 - [] D -- C:\ProgramData\USOPrivate =>.Microsoft Corporation
O43 - CFD: 19/10/2017 - [] D -- C:\ProgramData\USOShared =>.Microsoft Corporation
O43 - CFD: 09/10/2017 - [] AD -- C:\ProgramData\VMware =>.VMware
O43 - CFD: 18/06/2017 - [] D -- C:\ProgramData\WinaeroTweaker =>.Sergey Tkachenko
O43 - CFD: 30/09/2017 - [] D -- C:\ProgramData\WindowsHolographicDevices =>.Microsoft Corporation
O43 - CFD: 23/06/2017 - [] D -- C:\ProgramData\ZentimoService
O43 - CFD: 18/03/2017 - [] D -- C:\ProgramData\ZentimoService.BackupByZentimoPortable
O43 - CFD: 10/03/2016 - [0] SHD -- C:\ProgramData\スタート メニュー
O43 - CFD: 10/03/2016 - [0] SHD -- C:\ProgramData\デスクトップ
O43 - CFD: 20/10/2017 - [] AD -- C:\Program Files (x86)\Common Files\Adobe =>.Adobe
O43 - CFD: 03/09/2016 - [] D -- C:\Program Files (x86)\Common Files\DFX =>.DFX Power Technology
O43 - CFD: 11/04/2015 - [] D -- C:\Program Files (x86)\Common Files\InstallShield =>.InstallShield
O43 - CFD: 19/10/2017 - [] D -- C:\Program Files (x86)\Common Files\Intel =>.Intel Corporation
O43 - CFD: 23/03/2017 - [] D -- C:\Program Files (x86)\Common Files\Intel Corporation =>.Intel Corporation
O43 - CFD: 11/03/2017 - [] D -- C:\Program Files (x86)\Common Files\IObit =>.IObit
O43 - CFD: 20/10/2017 - [] D -- C:\Program Files (x86)\Common Files\Java =>.Oracle
O43 - CFD: 19/10/2017 - [] D -- C:\Program Files (x86)\Common Files\logishrd =>.Logitech Inc.
O43 - CFD: 19/10/2017 - [] D -- C:\Program Files (x86)\Common Files\microsoft shared =>.Microsoft Corporation
O43 - CFD: 11/04/2015 - [] D -- C:\Program Files (x86)\Common Files\postureAgent =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [] D -- C:\Program Files (x86)\Common Files\Services =>.Microsoft Corporation
O43 - CFD: 23/10/2017 - [] D -- C:\Program Files (x86)\Common Files\Steam =>.Steam Games
O43 - CFD: 19/10/2017 - [] D -- C:\Program Files (x86)\Common Files\system =>.Microsoft Corporation
O43 - CFD: 27/09/2017 - [] AD -- C:\Program Files (x86)\Common Files\ThinPrint =>.ThinPrint
O43 - CFD: 19/02/2017 - [] D -- C:\Program Files (x86)\Common Files\Topaz Labs =>.Topaz Labs
O43 - CFD: 07/06/2016 - [] D -- C:\Program Files (x86)\Common Files\Toshiba Shared =>.Toshiba Corporation
O43 - CFD: 27/09/2017 - [] D -- C:\Program Files (x86)\Common Files\VMware =>.VMware
O43 - CFD: 15/07/2016 - [] D -- C:\Users\owner\AppData\Roaming\2BrightSparks =>.Ignite Realtime
O43 - CFD: 19/03/2017 - [] D -- C:\Users\owner\AppData\Roaming\3RVX
O43 - CFD: 06/06/2016 - [] D -- C:\Users\owner\AppData\Roaming\7+ Taskbar Tweaker
O43 - CFD: 24/10/2016 - [] D -- C:\Users\owner\AppData\Roaming\abelhadigital.com =>.abelhadigital.com
O43 - CFD: 09/06/2016 - [] D -- C:\Users\owner\AppData\Roaming\AccurateRip =>.Legitimate
O43 - CFD: 23/01/2017 - [] D -- C:\Users\owner\AppData\Roaming\Acrylic Wi-Fi Home =>.Acrylic
O43 - CFD: 21/10/2017 - [] D -- C:\Users\owner\AppData\Roaming\Adobe =>.Adobe
O43 - CFD: 21/05/2017 - [] D -- C:\Users\owner\AppData\Roaming\Anki2
O43 - CFD: 27/06/2017 - [] D -- C:\Users\owner\AppData\Roaming\audacity =>.Audacity
O43 - CFD: 05/06/2016 - [] D -- C:\Users\owner\AppData\Roaming\Bao_Nguyen
O43 - CFD: 19/02/2017 - [] D -- C:\Users\owner\AppData\Roaming\calibre =>.Kovid Goyal
O43 - CFD: 05/06/2016 - [] D -- C:\Users\owner\AppData\Roaming\Carthago
O43 - CFD: 03/07/2017 - [] D -- C:\Users\owner\AppData\Roaming\chessx
O43 - CFD: 08/01/2017 - [] D -- C:\Users\owner\AppData\Roaming\ClickMonitorDDC
O43 - CFD: 02/06/2016 - [] D -- C:\Users\owner\AppData\Roaming\Corel =>.Corel Corporation
O43 - CFD: 02/07/2017 - [] D -- C:\Users\owner\AppData\Roaming\Crayon Physics Deluxe
O43 - CFD: 15/08/2016 - [] D -- C:\Users\owner\AppData\Roaming\CrystalIdea Software =>.CrystalIdea Software
O43 - CFD: 20/11/2016 - [] D -- C:\Users\owner\AppData\Roaming\Cursorpacks
O43 - CFD: 10/06/2016 - [] D -- C:\Users\owner\AppData\Roaming\CyberLink =>.CyberLink Corporation
O43 - CFD: 19/03/2017 - [] D -- C:\Users\owner\AppData\Roaming\DeskSoft =>.DeskSoft
O43 - CFD: 10/06/2016 - [] D -- C:\Users\owner\AppData\Roaming\dvdcss =>.VideoLan Team
O43 - CFD: 04/03/2017 - [] D -- C:\Users\owner\AppData\Roaming\DxO Labs =>.DxO Labs
O43 - CFD: 09/06/2016 - [] D -- C:\Users\owner\AppData\Roaming\EAC =>.Legitimate
O43 - CFD: 18/06/2016 - [] D -- C:\Users\owner\AppData\Roaming\EuroTalk
O43 - CFD: 17/10/2016 - [] D -- C:\Users\owner\AppData\Roaming\Eusing =>.Eusing
O43 - CFD: 22/01/2017 - [0] D -- C:\Users\owner\AppData\Roaming\ExperienceIndexOK
O43 - CFD: 19/02/2017 - [] D -- C:\Users\owner\AppData\Roaming\FastStone =>.FastStone Soft
O43 - CFD: 27/10/2017 - [] D -- C:\Users\owner\AppData\Roaming\foobar2000 =>.Peter Pawlowski
O43 - CFD: 09/06/2016 - [] D -- C:\Users\owner\AppData\Roaming\Gest
O43 - CFD: 28/02/2017 - [] D -- C:\Users\owner\AppData\Roaming\Greenshot =>.Greenshot
O43 - CFD: 30/05/2017 - [] D -- C:\Users\owner\AppData\Roaming\HandBrake =>.Handbrake
O43 - CFD: 01/11/2016 - [] D -- C:\Users\owner\AppData\Roaming\HandBrake Team =>.HandBrake Team
O43 - CFD: 06/06/2016 - [] D -- C:\Users\owner\AppData\Roaming\Hard Disk Sentinel =>.H.D.S. Hungary
O43 - CFD: 12/03/2017 - [] D -- C:\Users\owner\AppData\Roaming\HD Tune Pro =>.EFD Software
O43 - CFD: 04/06/2017 - [] D -- C:\Users\owner\AppData\Roaming\HDRsoft =>.HDRsoft
O43 - CFD: 03/04/2017 - [] D -- C:\Users\owner\AppData\Roaming\Icons8 =>.Icons8
O43 - CFD: 30/05/2016 - [] D -- C:\Users\owner\AppData\Roaming\Identities =>.Microsoft Corporation
O43 - CFD: 10/03/2016 - [] D -- C:\Users\owner\AppData\Roaming\Intel =>.Intel Corporation
O43 - CFD: 21/09/2016 - [] D -- C:\Users\owner\AppData\Roaming\Intel Corporation =>.Intel Corporation
O43 - CFD: 07/06/2016 - [] D -- C:\Users\owner\AppData\Roaming\InternetOff
O43 - CFD: 27/10/2017 - [] D -- C:\Users\owner\AppData\Roaming\IObit =>.IObit
O43 - CFD: 11/10/2017 - [] D -- C:\Users\owner\AppData\Roaming\IrfanView =>.Irfan skiljan
O43 - CFD: 09/07/2017 - [] D -- C:\Users\owner\AppData\Roaming\KC Softwares =>.KC Softwares
O43 - CFD: 26/05/2017 - [] D -- C:\Users\owner\AppData\Roaming\Locktime =>.Locktime Software
O43 - CFD: 07/08/2017 - [] D -- C:\Users\owner\AppData\Roaming\Locktime Software =>.Locktime Software
O43 - CFD: 12/10/2017 - [] D -- C:\Users\owner\AppData\Roaming\Logishrd =>.Logitech Inc.
O43 - CFD: 01/03/2017 - [] D -- C:\Users\owner\AppData\Roaming\LRTimelapse
O43 - CFD: 11/10/2017 - [] D -- C:\Users\owner\AppData\Roaming\Macromedia =>.Macromedia
O43 - CFD: 03/03/2017 - [] D -- C:\Users\owner\AppData\Roaming\MAXON =>.Maxon
O43 - CFD: 31/08/2016 - [] D -- C:\Users\owner\AppData\Roaming\MediaInfo =>.Jérôme Martinez
O43 - CFD: 19/10/2017 - [] SD -- C:\Users\owner\AppData\Roaming\Microsoft =>.Microsoft Corporation
O43 - CFD: 07/06/2016 - [] D -- C:\Users\owner\AppData\Roaming\Mozilla =>.Mozilla Corporation
O43 - CFD: 27/10/2017 - [0] D -- C:\Users\owner\AppData\Roaming\MPC-HC =>.MPC-HC Team
O43 - CFD: 11/05/2017 - [] D -- C:\Users\owner\AppData\Roaming\Notepad++ =>.Don Ho
O43 - CFD: 09/06/2016 - [] D -- C:\Users\owner\AppData\Roaming\OTi
O43 - CFD: 02/08/2016 - [] D -- C:\Users\owner\AppData\Roaming\ProcessKO
O43 - CFD: 10/03/2017 - [] D -- C:\Users\owner\AppData\Roaming\ProcessLasso
O43 - CFD: 20/11/2016 - [] D -- C:\Users\owner\AppData\Roaming\Rainmeter =>.kimmo.pekkola
O43 - CFD: 20/10/2017 - [] D -- C:\Users\owner\AppData\Roaming\RegistryFinder
O43 - CFD: 14/04/2017 - [] D -- C:\Users\owner\AppData\Roaming\ScreenToGif
O43 - CFD: 09/06/2016 - [] D -- C:\Users\owner\AppData\Roaming\ShellFolderFix =>.Legitimate
O43 - CFD: 13/05/2017 - [] D -- C:\Users\owner\AppData\Roaming\Simnet
O43 - CFD: 07/06/2016 - [] D -- C:\Users\owner\AppData\Roaming\sMedio =>.sMedio inc,
O43 - CFD: 02/05/2017 - [] D -- C:\Users\owner\AppData\Roaming\SumatraPDF =>.Krzysztof Kowalczyk
O43 - CFD: 28/02/2017 - [] D -- C:\Users\owner\AppData\Roaming\Sun =>.Oracle
O43 - CFD: 26/06/2017 - [] D -- C:\Users\owner\AppData\Roaming\TeamViewer =>.TeamViewer GmbH
O43 - CFD: 19/06/2017 - [] D -- C:\Users\owner\AppData\Roaming\TechSmith =>.TechSmith
O43 - CFD: 06/10/2017 - [] D -- C:\Users\owner\AppData\Roaming\Textify =>.RaMMicHaeL
O43 - CFD: 27/10/2017 - [] D -- C:\Users\owner\AppData\Roaming\The Bat!
O43 - CFD: 19/02/2017 - [] D -- C:\Users\owner\AppData\Roaming\Thinstall =>.VMare
O43 - CFD: 10/12/2016 - [] D -- C:\Users\owner\AppData\Roaming\TOSHIBA =>.Toshiba Corporation
O43 - CFD: 03/05/2017 - [] D -- C:\Users\owner\AppData\Roaming\TSSI
O43 - CFD: 06/06/2016 - [] D -- C:\Users\owner\AppData\Roaming\Ulead Systems =>.Ulead Systems
O43 - CFD: 27/10/2017 - [] D -- C:\Users\owner\AppData\Roaming\vlc =>.VideoLan Team
O43 - CFD: 21/10/2017 - [] D -- C:\Users\owner\AppData\Roaming\VMware =>.VMware
O43 - CFD: 30/05/2016 - [] D -- C:\Users\owner\AppData\Roaming\WinBatch =>.winbatch.com
O43 - CFD: 17/06/2016 - [] D -- C:\Users\owner\AppData\Roaming\WinRAR =>.WinRAR
O43 - CFD: 15/05/2017 - [] D -- C:\Users\owner\AppData\Roaming\Winsplit Revolution
O43 - CFD: 20/07/2017 - [] D -- C:\Users\owner\AppData\Roaming\Wireshark =>.Wireshark
O43 - CFD: 03/04/2017 - [] SHD -- C:\Users\owner\AppData\Roaming\wyUpdate AU =>.wyUpdate AU
O43 - CFD: 17/05/2017 - [] D -- C:\Users\owner\AppData\Roaming\XnConvert =>.Pierre Gougelet
O43 - CFD: 21/10/2017 - [] D -- C:\Users\owner\AppData\Roaming\Yamicsoft =>.Yamicsoft
O43 - CFD: 27/10/2017 - [] D -- C:\Users\owner\AppData\Roaming\Zentimo
O43 - CFD: 19/06/2017 - [] D -- C:\Users\owner\AppData\Roaming\Zentimo.BackupByZentimoPortable
O43 - CFD: 27/10/2017 - [] D -- C:\Users\owner\AppData\Roaming\ZHP =>.Nicolas Coolman
O43 - CFD: 01/06/2017 - [] D -- C:\Users\owner\AppData\Local\2BrightSparks =>.Ignite Realtime
O43 - CFD: 06/06/2016 - [0] D -- C:\Users\owner\AppData\Local\ActiveSync =>.Microsoft Corporation
O43 - CFD: 25/10/2017 - [] D -- C:\Users\owner\AppData\Local\Adobe =>.Adobe
O43 - CFD: 19/02/2017 - [] D -- C:\Users\owner\AppData\Local\Amazon =>.Amazon
O43 - CFD: 19/10/2017 - [0] SHD -- C:\Users\owner\AppData\Local\Application Data =>.Microsoft Corporation
O43 - CFD: 03/10/2016 - [] D -- C:\Users\owner\AppData\Local\AtHome Camera
O43 - CFD: 26/03/2017 - [] D -- C:\Users\owner\AppData\Local\Audacity =>.Audacity
O43 - CFD: 05/06/2016 - [] D -- C:\Users\owner\AppData\Local\Bao_Nguyen
O43 - CFD: 21/02/2017 - [] D -- C:\Users\owner\AppData\Local\bunkus.org =>.bunkus.org
O43 - CFD: 05/11/2016 - [] D -- C:\Users\owner\AppData\Local\CEF =>.CEF
O43 - CFD: 16/04/2017 - [] D -- C:\Users\owner\AppData\Local\chessx
O43 - CFD: 27/10/2017 - [] D -- C:\Users\owner\AppData\Local\ClassicShell =>.SourceForge
O43 - CFD: 20/09/2017 - [] AD -- C:\Users\owner\AppData\Local\Clavier+ =>.Guillaume Ryder
O43 - CFD: 06/06/2016 - [] D -- C:\Users\owner\AppData\Local\Comms =>.Microsoft Corporation
O43 - CFD: 19/10/2017 - [] D -- C:\Users\owner\AppData\Local\ConnectedDevicesPlatform =>.Microsoft Corporation
O43 - CFD: 18/04/2017 - [0] D -- C:\Users\owner\AppData\Local\CrashDumps =>.Microsoft Corporation
O43 - CFD: 10/06/2016 - [] D -- C:\Users\owner\AppData\Local\CyberLink =>.CyberLink Corporation
O43 - CFD: 05/08/2017 - [0] D -- C:\Users\owner\AppData\Local\DBG =>.DBG
O43 - CFD: 03/09/2016 - [] D -- C:\Users\owner\AppData\Local\DFX =>.DFX Power Technology
O43 - CFD: 25/09/2017 - [0] D -- C:\Users\owner\AppData\Local\Diagnostics =>.Microsoft Corporation
O43 - CFD: 06/06/2016 - [] D -- C:\Users\owner\AppData\Local\DLaunch
O43 - CFD: 07/06/2016 - [] D -- C:\Users\owner\AppData\Local\Downloaded Installations =>.Microsoft Corporation
O43 - CFD: 10/03/2016 - [] D -- C:\Users\owner\AppData\Local\Dportal
O43 - CFD: 27/02/2017 - [] D -- C:\Users\owner\AppData\Local\DxO_Labs =>.DxO Labs
O43 - CFD: 01/05/2017 - [0] D -- C:\Users\owner\AppData\Local\ElevatedDiagnostics =>.Microsoft Corporation
O43 - CFD: 04/06/2016 - [0] SHD -- C:\Users\owner\AppData\Local\EmieBrowserModeList =>.Enterprise mode Site List Mgr
O43 - CFD: 04/06/2016 - [0] SHD -- C:\Users\owner\AppData\Local\EmieSiteList =>.Enterprise mode Site List Mgr
O43 - CFD: 04/06/2016 - [0] SHD -- C:\Users\owner\AppData\Local\EmieUserList =>.Enterprise mode Site List Mgr
O43 - CFD: 05/06/2016 - [] D -- C:\Users\owner\AppData\Local\ESET =>.ESET
O43 - CFD: 19/02/2017 - [] D -- C:\Users\owner\AppData\Local\FastStone =>.FastStone Soft
O43 - CFD: 27/10/2017 - [] D -- C:\Users\owner\AppData\Local\FileSearchy
O43 - CFD: 21/02/2017 - [] D -- C:\Users\owner\AppData\Local\GabSoftware
O43 - CFD: 22/08/2016 - [] D -- C:\Users\owner\AppData\Local\Google =>.Google
O43 - CFD: 25/10/2017 - [] D -- C:\Users\owner\AppData\Local\Greenshot =>.Greenshot
O43 - CFD: 19/10/2017 - [0] SHD -- C:\Users\owner\AppData\Local\History =>.Microsoft Corporation
O43 - CFD: 29/04/2017 - [] D -- C:\Users\owner\AppData\Local\Icaros
O43 - CFD: 13/06/2016 - [] D -- C:\Users\owner\AppData\Local\IsolatedStorage =>.id Software
O43 - CFD: 14/06/2017 - [] D -- C:\Users\owner\AppData\Local\Kolor =>.Kolor
O43 - CFD: 27/10/2017 - [] D -- C:\Users\owner\AppData\Local\Lookeen
O43 - CFD: 05/06/2016 - [] D -- C:\Users\owner\AppData\Local\Macromedia =>.Macromedia
O43 - CFD: 23/10/2017 - [] D -- C:\Users\owner\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 28/10/2016 - [] D -- C:\Users\owner\AppData\Local\MicrosoftEdge =>.Microsoft Corporation
O43 - CFD: 24/02/2017 - [] D -- C:\Users\owner\AppData\Local\Microsoft_Corporation =>.Microsoft Corporation
O43 - CFD: 07/06/2016 - [] D -- C:\Users\owner\AppData\Local\Mozilla =>.Mozilla Corporation
O43 - CFD: 30/08/2017 - [0] D -- C:\Users\owner\AppData\Local\Notepad++ =>.Don Ho
O43 - CFD: 19/10/2017 - [] D -- C:\Users\owner\AppData\Local\Packages =>.Microsoft Corporation
O43 - CFD: 06/06/2016 - [0] D -- C:\Users\owner\AppData\Local\PeerDistRepub =>.Microsoft Corporation
O43 - CFD: 07/08/2017 - [] D -- C:\Users\owner\AppData\Local\pooi.moe
O43 - CFD: 31/07/2017 - [] D -- C:\Users\owner\AppData\Local\Programs =>.Microsoft Corporation
O43 - CFD: 06/06/2016 - [] D -- C:\Users\owner\AppData\Local\Publishers =>.Microsoft Corporation
O43 - CFD: 12/03/2017 - [] D -- C:\Users\owner\AppData\Local\Rockstar Games =>.Rockstar Games
O43 - CFD: 11/11/2016 - [] D -- C:\Users\owner\AppData\Local\speech =>.Microsoft Corporation
O43 - CFD: 12/03/2017 - [] D -- C:\Users\owner\AppData\Local\Steam =>.Steam Games
O43 - CFD: 28/02/2017 - [] D -- C:\Users\owner\AppData\Local\SvchostViewer
O43 - CFD: 19/06/2017 - [] D -- C:\Users\owner\AppData\Local\TechSmith =>.TechSmith
O43 - CFD: 27/10/2017 - [] D -- C:\Users\owner\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 19/10/2017 - [0] SHD -- C:\Users\owner\AppData\Local\Temporary Internet Files =>.Microsoft Corporation
O43 - CFD: 19/02/2017 - [] D -- C:\Users\owner\AppData\Local\Thinstall =>.VMare
O43 - CFD: 19/10/2017 - [] D -- C:\Users\owner\AppData\Local\TileDataLayer =>.Microsoft Corporation
O43 - CFD: 19/02/2017 - [] D -- C:\Users\owner\AppData\Local\Topaz Labs =>.Topaz Labs
O43 - CFD: 12/03/2016 - [] D -- C:\Users\owner\AppData\Local\Toshiba =>.Toshiba Corporation
O43 - CFD: 13/07/2017 - [] D -- C:\Users\owner\AppData\Local\VirtualStore =>.Microsoft Corporation
O43 - CFD: 21/10/2017 - [] D -- C:\Users\owner\AppData\Local\VMware =>.VMware
O43 - CFD: 09/06/2016 - [] D -- C:\Users\owner\AppData\Local\Volumouse
O43 - CFD: 17/04/2017 - [] D -- C:\Users\owner\AppData\Local\WinTools
O43 - CFD: 27/10/2017 - [] D -- C:\Users\owner\AppData\Local\ZHP =>.Nicolas Coolman
O43 - CFD: 06/06/2016 - [0] D -- C:\Users\owner\AppData\Local\Programs\Common =>.Microsoft Corporation
O43 - CFD: 07/08/2017 - [] D -- C:\Users\owner\AppData\Local\Programs\QuickLook
O43 - CFD: 29/09/2017 - [] RD -- C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility =>.Microsoft Corporation
O43 - CFD: 19/10/2017 - [] RD -- C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories =>.Microsoft Corporation
O43 - CFD: 20/10/2017 - [] RD -- C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools
O43 - CFD: 20/10/2017 - [] D -- C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Adobe =>.Adobe
O43 - CFD: 27/10/2017 - [] D -- C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Custom Windows 10
O43 - CFD: 19/10/2017 - [] D -- C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\e-verbe
O43 - CFD: 20/10/2017 - [] D -- C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games =>.Microsoft Corporation
O43 - CFD: 19/10/2017 - [] D -- C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Gest
O43 - CFD: 19/10/2017 - [] D -- C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hardware
O43 - CFD: 19/10/2017 - [] D -- C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image
O43 - CFD: 19/10/2017 - [] RD -- C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet
O43 - CFD: 19/10/2017 - [] D -- C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Japonais
O43 - CFD: 27/10/2017 - [] D -- C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance =>.Microsoft Corporation
O43 - CFD: 26/10/2017 - [] RD -- C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Multimédia
O43 - CFD: 19/10/2017 - [] D -- C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Musique
O43 - CFD: 19/10/2017 - [] D -- C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Office 2016 =>.Microsoft Corporation
O43 - CFD: 19/10/2017 - [] D -- C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pilotes
O43 - CFD: 26/10/2017 - [] D -- C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Privacy Windows 10
O43 - CFD: 27/10/2017 - [] D -- C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Protection
O43 - CFD: 19/10/2017 - [] D -- C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SRM Training System
O43 - CFD: 20/10/2017 - [] RD -- C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [] RD -- C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools =>.Microsoft Corporation
O43 - CFD: 27/10/2017 - [] D -- C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Système
O43 - CFD: 29/09/2017 - [] RD -- C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell =>.Microsoft Corporation
O43 - CFD: 19/10/2017 - [] HD -- C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\AutorunsDisabled
O43 - CFD: 19/10/2017 - [0] SHD -- C:\Users\Default\AppData\Local\Application Data =>.Microsoft Corporation
O43 - CFD: 19/10/2017 - [0] SHD -- C:\Users\Default\AppData\Local\History =>.Microsoft Corporation
O43 - CFD: 19/10/2017 - [] D -- C:\Users\Default\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [0] D -- C:\Users\Default\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 19/10/2017 - [0] SHD -- C:\Users\Default\AppData\Local\Temporary Internet Files =>.Microsoft Corporation
O43 - CFD: 19/10/2017 - [0] SHD -- C:\Users\Default User\AppData\Local\Application Data =>.Microsoft Corporation
O43 - CFD: 19/10/2017 - [0] SHD -- C:\Users\Default User\AppData\Local\History =>.Microsoft Corporation
O43 - CFD: 19/10/2017 - [] D -- C:\Users\Default User\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 29/09/2017 - [0] D -- C:\Users\Default User\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 19/10/2017 - [0] SHD -- C:\Users\Default User\AppData\Local\Temporary Internet Files =>.Microsoft Corporation
O43 - CFD: 19/10/2017 - [] HD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AutorunsDisabled
O43 - CFD: 19/10/2017 - [] D -- C:\WINDOWS\System32\Config\systemprofile\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 19/10/2017 - [0] -- C:\WINDOWS\System32\Config\systemprofile\AppData\Local\VMware =>.VMware
O43 - CFD: 21/10/2017 - [0] -- C:\WINDOWS\System32\Config\systemprofile\AppData\Roaming\VMware =>.VMware
---\\ ShellIconOverlayIdentifiers (SIOI) (10) - 0s
O106 - SIOI: ErrorOverlayHandler Class [ OneDrive1] - {BBACC218-34EA-4666-9D7A-C78F2274A524}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\owner\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_2\FileSyncShell.dll =>.Microsoft Windows®
O106 - SIOI: SharedOverlayHandler Class [ OneDrive2] - {5AB7172C-9C11-405C-8DD5-AF20F3606282}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\owner\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_2\FileSyncShell.dll =>.Microsoft Windows®
O106 - SIOI: SharedSyncingOverlayHandler Class [ OneDrive3] - {A78ED123-AB77-406B-9962-2A5D9D2F7F30}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\owner\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_2\FileSyncShell.dll =>.Microsoft Windows®
O106 - SIOI: UpToDateOverlayHandler Class [ OneDrive4] - {F241C880-6982-4CE5-8CF7-7085BA96DA5A}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\owner\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_2\FileSyncShell.dll =>.Microsoft Windows®
O106 - SIOI: SyncingOverlayHandler Class [ OneDrive5] - {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\owner\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_2\FileSyncShell.dll =>.Microsoft Windows®
O106 - SIOI: ReadOnlyOverlayHandler Class [ OneDrive6] - {9AA2F32D-362A-42D9-9328-24A483E2CCC3}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\owner\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_2\FileSyncShell.dll =>.Microsoft Windows®
O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 1 (ErrorConflict) [ SkyDrivePro1 (ErrorConflict)] - {8BA85C75-763B-4103-94EB-9470F12FE0F7}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 2 (SyncInProgress) [ SkyDrivePro2 (SyncInProgress)] - {CD55129A-B1A1-438E-A425-CEBC7DC684EE}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 3 (InSync) [ SkyDrivePro3 (InSync)] - {E768CD3B-BDDC-436D-9C13-E1B39CA257B1}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: ShareOverlay Class [ShareOverlay] - {594D4122-1F87-41E2-96C7-825FB4796516}. (.IvoSoft - Adds classic Windows Explorer features.) -- C:\Program Files\Classic Shell\ClassicExplorer32.dll =>.Ivaylo Beltchev®
---\\ Liste des pilotes du système (93) - 6s
O58 - SDL:2017/09/29 21:41:02 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\WINDOWS\System32\drivers\3ware.sys [107416] =>.Microsoft Windows®
O58 - SDL:2017/09/29 21:41:02 A . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS.) -- C:\WINDOWS\System32\drivers\adp80xx.sys [1135512] =>.Microsoft Windows®
O58 - SDL:2015/06/04 08:07:48 A . (.Advanced Micro Devices, Inc. - AMD PCI Root Bus Lower Filter.) -- C:\WINDOWS\System32\drivers\amdkmpfd.sys [73976] =>.Advanced Micro Devices, Inc.®
O58 - SDL:2017/09/29 21:41:02 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\WINDOWS\System32\drivers\amdsata.sys [83352] =>.Microsoft Windows®
O58 - SDL:2017/09/29 21:41:02 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\WINDOWS\System32\drivers\amdsbs.sys [258592] =>.Microsoft Windows®
O58 - SDL:2017/09/29 21:41:02 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\WINDOWS\System32\drivers\amdxata.sys [27032] =>.Microsoft Windows®
O58 - SDL:2017/02/20 20:41:00 A . (.Alps Electric Co., Ltd. - Alps Touch Pad Driver.) -- C:\WINDOWS\System32\drivers\Apfiltr.sys [633880] {0BCAF9CC9C146EF901281EF22C122E9A} =>.Alps Electric Co., Ltd.
O58 - SDL:2017/09/29 21:41:02 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\WINDOWS\System32\drivers\arcsas.sys [131992] =>.Microsoft Windows®
O58 - SDL:2017/09/29 21:41:02 A . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\WINDOWS\System32\drivers\bcmfn2.sys [9728] =>.Windows (R) Win 7 DDK provider
O58 - SDL:2017/09/29 21:41:01 A . (.QLogic Corporation - QLogic Gigabit Ethernet VBD.) -- C:\WINDOWS\System32\drivers\bxvbda.sys [533912] =>.Microsoft Windows®
O58 - SDL:2012/04/24 02:01:00 A . (.Corel Corporation - CDR4 64-bit CD and DVD Place Holder Driver.) -- C:\WINDOWS\System32\drivers\cdr4_xp.sys [10864] =>.Corel Corporation®
O58 - SDL:2012/04/24 02:01:00 A . (.Corel Corporation - CDRAL 64-bit Place Holder Driver (see PxHel.) -- C:\WINDOWS\System32\drivers\cdralw2k.sys [11376] =>.Corel Corporation®
O58 - SDL:2017/09/29 21:41:02 A . (.Chelsio Communications - Chelsio iSCSI Crash Dump Driver.) -- C:\WINDOWS\System32\drivers\cht4dx64.sys [141208] =>.Microsoft Windows®
O58 - SDL:2017/09/29 21:41:02 A . (.Chelsio Communications - Chelsio iSCSI VMiniport Driver.) -- C:\WINDOWS\System32\drivers\cht4sx64.sys [357272] =>.Microsoft Windows®
O58 - SDL:2017/09/29 21:41:02 A . (.Chelsio Communications - Virtual Bus Driver for Chelsio ® T5/T6 Chip.) -- C:\WINDOWS\System32\drivers\cht4vx64.sys [1723288] =>.Microsoft Windows®
O58 - SDL:2015/11/15 07:07:54 A . (.Windows (R) Win 7 DDK provider - Explore Systems Virtual Audio Device.) -- C:\WINDOWS\System32\drivers\dfx12x64.sys [39048] =>.Power Technology®
O58 - SDL:2017/09/29 21:40:59 A . (.Intel Corporation - Intel(R) Gigabit Adapter NDIS 6.x driver.) -- C:\WINDOWS\System32\drivers\e1i63x64.sys [524800] =>.Intel Corporation
O58 - SDL:2015/07/13 06:14:14 A . (.ESET - Amon monitor.) -- C:\WINDOWS\System32\drivers\eamonm.sys [255240] =>.ESET, spol. s r.o.®
O58 - SDL:2015/07/13 06:14:14 A . (.ESET - Devmon monitor.) -- C:\WINDOWS\System32\drivers\edevmon.sys [251632] =>.ESET, spol. s r.o.®
O58 - SDL:2015/07/13 06:14:14 A . (.ESET - ESET Helper driver.) -- C:\WINDOWS\System32\drivers\ehdrv.sys [178520] =>.ESET, spol. s r.o.®
O58 - SDL:2015/07/13 06:14:14 A . (.ESET - ESET Personal Firewall driver.) -- C:\WINDOWS\System32\drivers\epfwwfpr.sys [168208] =>.ESET, spol. s r.o.®
O58 - SDL:2017/09/29 21:41:01 A . (.QLogic Corporation - QLogic 10 GigE VBD.) -- C:\WINDOWS\System32\drivers\evbda.sys [3419032] =>.Microsoft Windows®
O58 - SDL:2016/03/12 10:52:46 A . (...) -- C:\WINDOWS\System32\drivers\fbd.sys [13] =>.EasyCo LLC
O58 - SDL:2017/08/31 00:11:30 A . (.VMware, Inc. - VMware USB monitor.) -- C:\WINDOWS\System32\drivers\hcmon.sys [83008] =>.VMware, Inc.®
O58 - SDL:2017/09/29 21:41:02 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\WINDOWS\System32\drivers\HpSAMD.sys [63520] =>.Microsoft Windows®
O58 - SDL:2005/12/14 07:53:42 A . (.GretagMacbeth LLC - SeqCal.) -- C:\WINDOWS\System32\drivers\i1display_x64.sys [7808] =>.GretagMacbeth LLC
O58 - SDL:2007/02/08 20:48:04 A . (.Thesycon GmbH, Germany - USBIO Driver.) -- C:\WINDOWS\System32\drivers\i1iO2_x64.sys [51600] =>.Thesycon GmbH, Germany
O58 - SDL:2007/02/08 20:48:04 A . (.Thesycon GmbH, Germany - USBIO Driver.) -- C:\WINDOWS\System32\drivers\i1_x64.sys [51600] =>.Thesycon GmbH, Germany
O58 - SDL:2017/09/29 21:40:59 A . (.Intel(R) Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\iagpio.sys [36864] =>.Intel(R) Corporation
O58 - SDL:2017/09/29 21:40:59 A . (.Intel(R) Corporation - Intel(R) Serial IO I2C Driver.) -- C:\WINDOWS\System32\drivers\iai2c.sys [91648] =>.Intel(R) Corporation
O58 - SDL:2017/09/29 21:40:59 A . (.Intel Corporation - Intel(R) Serial IO GPIO Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [79360] =>.Intel Corporation
O58 - SDL:2017/09/29 21:40:59 A . (.Intel Corporation - Intel(R) Serial IO GPIO Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [88576] =>.Intel Corporation
O58 - SDL:2017/09/29 21:40:59 A . (.Intel Corporation - Intel(R) Serial IO I2C Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [171520] =>.Intel Corporation
O58 - SDL:2017/09/29 21:40:59 A . (.Intel Corporation - Intel(R) Serial IO I2C Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [174592] =>.Intel Corporation
O58 - SDL:2017/09/29 21:41:01 A . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [38128] =>.Intel Corporation - Client Components Group®
O58 - SDL:2017/09/29 21:40:59 A . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [113152] =>.Intel Corporation
O58 - SDL:2016/02/12 18:12:50 A . (.Intel Corporation - Intel(R) Rapid Storage Technology driver -.) -- C:\WINDOWS\System32\drivers\iaStorA.sys [1477648] =>.Intel(R) Rapid Storage Technology®
O58 - SDL:2017/09/29 21:41:03 A . (.Intel Corporation - Intel(R) Rapid Storage Technology driver (i.) -- C:\WINDOWS\System32\drivers\iaStorAV.sys [674200] =>.Microsoft Windows®
O58 - SDL:2017/09/29 21:41:03 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\WINDOWS\System32\drivers\iaStorV.sys [412056] =>.Microsoft Windows®
O58 - SDL:2017/09/29 21:41:02 A . (.Mellanox - InfiniBand Fabric Bus Driver.) -- C:\WINDOWS\System32\drivers\ibbus.sys [526232] =>.Microsoft Windows®
O58 - SDL:2016/12/12 23:21:32 A . (.Intel Corporation - Intel(R) Wireless Bluetooth(R) Filter Drive.) -- C:\WINDOWS\System32\drivers\ibtusb.sys [230656] =>.Intel Corporation-Wireless Connectivity Solutions®
O58 - SDL:2016/12/02 14:30:38 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\WINDOWS\System32\drivers\igdkmd64.sys [7969784] =>.Intel(R) pGFX®
O58 - SDL:2016/05/12 12:32:26 A . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\WINDOWS\System32\drivers\IntcDAud.sys [481768] =>.Intel(R) OWR®
O58 - SDL:2014/08/02 04:18:33 A . (.Intel Corporation - Intel® WiDi Solution.) -- C:\WINDOWS\System32\drivers\intelaud.sys [38296] =>.Intel Wireless Display®
O58 - SDL:2010/03/05 19:19:00 A . (.Intercom, Inc. - LAPLINK HelpDesk Remote Control Component.) -- C:\WINDOWS\System32\drivers\llhrcmi6.sys [11296] {525B75B769EE9009BD5B37A49023D05A}
O58 - SDL:2017/09/29 21:41:02 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas.sys [108064] =>.Microsoft Windows®
O58 - SDL:2017/09/29 21:41:02 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas2i.sys [123800] =>.Microsoft Windows®
O58 - SDL:2017/09/29 21:41:02 A . (.Avago Technologies - Avago SAS Gen3 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas3i.sys [103320] =>.Microsoft Windows®
O58 - SDL:2017/09/29 21:41:02 A . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sss.sys [82840] =>.Microsoft Windows®
O58 - SDL:2017/09/29 21:41:02 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\megasas.sys [59800] =>.Microsoft Windows®
O58 - SDL:2017/09/29 21:41:02 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\MegaSas2i.sys [63520] =>.Microsoft Windows®
O58 - SDL:2017/09/29 21:41:02 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\WINDOWS\System32\drivers\megasr.sys [575896] =>.Microsoft Windows®
O58 - SDL:2017/09/29 21:41:02 A . (.Mellanox - MLX4 Bus Driver.) -- C:\WINDOWS\System32\drivers\mlx4_bus.sys [842648] =>.Microsoft Windows®
O58 - SDL:2017/04/06 18:32:11 A . (.Windows (R) Win 7 DDK provider - Macrium Reflect Changed Block Tracker.) -- C:\WINDOWS\System32\drivers\mrcbt.sys [96752] =>.Paramount Software UK Ltd®
O58 - SDL:2017/09/29 21:41:02 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\WINDOWS\System32\drivers\mvumis.sys [63896] =>.Microsoft Windows®
O58 - SDL:2017/09/29 21:41:02 A . (.Mellanox - NetworkDirect Support Filter Driver.) -- C:\WINDOWS\System32\drivers\ndfltr.sys [108952] =>.Microsoft Windows®
O58 - SDL:2017/09/29 21:40:59 A . (.Intel Corporation - Intel® Wireless WiFi Link Driver.) -- C:\WINDOWS\System32\drivers\Netwbw02.sys [3485696] =>.Intel Corporation
O58 - SDL:2016/09/20 14:28:56 A . (.NetFilterSDK.com - NetFilter SDK TDI Hook Driver (WPP).) -- C:\WINDOWS\System32\drivers\networx.sys [72632] =>.SOFTPERFECT PTY. LTD.®
O58 - SDL:2017/08/03 20:06:11 A . (.Locktime Software - NetLimiter 4 Driver.) -- C:\WINDOWS\System32\drivers\nldrv.sys [178552] =>.Locktime Software s.r.o.®
O58 - SDL:2013/03/01 09:49:12 A . (.Riverbed Technology, Inc. - npf.sys (NT5/6 AMD64) Kernel Driver.) -- C:\WINDOWS\System32\drivers\npf.sys [36600] =>.Riverbed Technology, Inc.®
O58 - SDL:2017/09/29 21:41:02 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\WINDOWS\System32\drivers\nvraid.sys [150424] =>.Microsoft Windows®
O58 - SDL:2017/09/29 21:41:02 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\WINDOWS\System32\drivers\nvstor.sys [166296] =>.Microsoft Windows®
O58 - SDL:2017/09/29 21:41:02 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas2i.sys [58776] =>.Microsoft Windows®
O58 - SDL:2017/09/29 21:41:02 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas3i.sys [61848] =>.Microsoft Windows®
O58 - SDL:2017/06/17 19:21:30 A . (.Sysinternals - www.sysinternals.com - Process Monitor Driver.) -- C:\WINDOWS\System32\drivers\PROCMON23.SYS [91976] =>.Microsoft Windows Hardware Compatibility Publisher®
O58 - SDL:2017/02/22 13:14:42 A . (.Windows (R) Win 7 DDK provider - Paramount Software Image Mounting Driver.) -- C:\WINDOWS\System32\drivers\psmounterex.sys [190320] =>.Paramount Software UK Ltd®
O58 - SDL:2017/02/22 13:35:34 A . (.Windows (R) Win 7 DDK provider - Volume Access Driver.) -- C:\WINDOWS\System32\drivers\PSVolAcc.sys [32512] =>.Paramount Software UK Ltd®
O58 - SDL:2013/08/15 18:07:58 A . (...) -- C:\WINDOWS\System32\drivers\PuranRefreshDriver.sys [9984]
O58 - SDL:2017/09/29 21:41:14 RA . (.Realtek - Realtek PCIe GBE Family Controller Flight.) -- C:\WINDOWS\System32\drivers\rteth.sys [59904] =>.Realtek
O58 - SDL:2015/07/20 15:23:16 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\WINDOWS\System32\drivers\RTKVHD64.sys [4515584] =>.Realtek Semiconductor Corp®
O58 - SDL:2016/11/10 10:55:20 A . (.Realsil Semiconductor Corporation - RTS PCIE READER Driver.) -- C:\WINDOWS\System32\drivers\RtsPer.sys [787976] =>.Realtek Semiconductor Corp.®
O58 - SDL:2017/09/29 21:41:02 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid2.sys [44952] =>.Microsoft Windows®
O58 - SDL:2017/09/29 21:41:02 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid4.sys [81816] =>.Microsoft Windows®
O58 - SDL:2017/09/29 21:41:02 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\WINDOWS\System32\drivers\stexstor.sys [31128] =>.Microsoft Windows®
O58 - SDL:2015/12/25 13:56:14 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [185384] =>.Intel(R) Embedded Subsystems and IP Blocks Group®
O58 - SDL:2016/08/03 14:30:18 A . (.Toshiba Client Solutions Co., Ltd. - Toshiba Hotkey Driver.) -- C:\WINDOWS\System32\drivers\Thotkey.sys [52816] =>.Toshiba Client Solutions Co.,Ltd.®
O58 - SDL:2016/03/10 10:17:04 A . (.TOSHIBA Corporation - TOSHIBA Bluetooth ACPI Driver.) -- C:\WINDOWS\System32\drivers\tosrfec.sys [44208] =>.TOSHIBA CORPORATION®
O58 - SDL:2015/05/27 14:15:50 A . (.TOSHIBA Corporation - tos_sps64.) -- C:\WINDOWS\System32\drivers\tos_sps64.sys [507832] =>.TOSHIBA CORPORATION®
O58 - SDL:2016/07/22 03:23:26 A . (.TOSHIBA Corporation - TOSHIBA ACPI-Based Value Added Logical and.) -- C:\WINDOWS\System32\drivers\TVALZ.SYS [53888] =>.TOSHIBA CORPORATION®
O58 - SDL:2013/06/07 14:21:50 A . (.TOSHIBA Corporation - TOSHIBA TVALZ Filter Driver.) -- C:\WINDOWS\System32\drivers\TVALZFL.sys [17208] =>.TOSHIBA CORPORATION®
O58 - SDL:2017/09/05 03:54:54 A . (.VMware, Inc. - VMware PCI VMCI Bus Device.) -- C:\WINDOWS\System32\drivers\vmci.sys [105024] =>.VMware, Inc.®
O58 - SDL:2017/09/18 05:32:42 A . (.VMware, Inc. - VMware virtual network driver (64-bit).) -- C:\WINDOWS\System32\drivers\vmnet.sys [46040] =>.VMware, Inc.®
O58 - SDL:2017/09/18 05:32:34 A . (.VMware, Inc. - VMware virtual network adapter driver (64-b.) -- C:\WINDOWS\System32\drivers\vmnetadapter.sys [46040] =>.VMware, Inc.®
O58 - SDL:2017/09/18 05:32:42 A . (.VMware, Inc. - VMware bridge driver (64-bit).) -- C:\WINDOWS\System32\drivers\vmnetbridge.sys [66520] =>.VMware, Inc.®
O58 - SDL:2017/09/18 05:32:42 A . (.VMware, Inc. - VMware network application interface driver.) -- C:\WINDOWS\System32\drivers\vmnetuserif.sys [43992] =>.VMware, Inc.®
O58 - SDL:2017/09/18 05:21:10 A . (.VMware, Inc. - VMware kernel driver.) -- C:\WINDOWS\System32\drivers\vmx86.sys [95704] =>.VMware, Inc.®
O58 - SDL:2017/09/29 21:41:02 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\WINDOWS\System32\drivers\vsmraid.sys [166808] =>.Microsoft Windows®
O58 - SDL:2017/09/05 03:54:54 A . (.VMware, Inc. - VMware vSockets Service.) -- C:\WINDOWS\System32\drivers\vsock.sys [91712] =>.VMware, Inc.®
O58 - SDL:2017/09/29 21:41:02 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\WINDOWS\System32\drivers\VSTXRAID.SYS [305560] =>.Microsoft Windows®
O58 - SDL:2017/09/29 21:41:02 A . (.Mellanox - Kernel WinMad.) -- C:\WINDOWS\System32\drivers\winmad.sys [32152] =>.Microsoft Windows®
O58 - SDL:2017/09/29 21:41:02 A . (.Mellanox - Kernel WinVerbs.) -- C:\WINDOWS\System32\drivers\winverbs.sys [64920] =>.Microsoft Windows®
O58 - SDL:2016/12/07 12:26:06 A . (...) -- C:\WINDOWS\System32\epmntdrv.sys [33448] =>.CHENGDU YIWO Tech Development Co., Ltd.®
O58 - SDL:2016/07/11 09:01:24 A . (...) -- C:\WINDOWS\System32\EuGdiDrv.sys [10848] =>.Intel Corporation
---\\ Derniers fichiers modifiés ou crées (Utilisateur) (4) - 8s
O61 - LFC: 2017/10/21 13:13:58 RA . (..) -- C:\Users\owner\AppData\Roaming\Microsoft\Installer\{DC63955E-98AF-4858-AEC7-1C2843D77C85}\SystemFoldermsiexec.exe [14534]
O61 - LFC: 2017/10/21 13:13:58 RA . (..) -- C:\Users\owner\AppData\Roaming\Microsoft\Installer\{DC63955E-98AF-4858-AEC7-1C2843D77C85}\W10MLogo256_1.exe [304886]
O61 - LFC: 2017/10/27 18:47:35 A . (.Copyright © 2016 Midlinesoft.) -- C:\Users\owner\Documents\Programmes Windows 10\Programmes Windows 10\système\FileSearchy 1.43.exe [9168508]
O61 - LFC: 2017/10/25 21:47:09 A . (..) -- C:\Users\owner\Downloads\torbrowser-install-7.0.8_en-US.exe [53527264] {0F622EF31D0F1EF94E520DBD7A43E58C}
---\\ Associations Shell Spawning (11) - 0s
O67 - Shell Spawning: <.bat>
O67 - Shell Spawning: <.cpl>
O67 - Shell Spawning: <.cmd>
O67 - Shell Spawning: <.com>
O67 - Shell Spawning: <.evt>
O67 - Shell Spawning: <.exe>
O67 - Shell Spawning: <.html>
O67 - Shell Spawning: <.js>
O67 - Shell Spawning: <.reg>
O67 - Shell Spawning: <.scr>
O67 - Shell Spawning: <.html>
---\\ Menu de démarrage Internet (8) - 1s
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
---\\ Recherche d'infection sur les navigateurs (2) - 64s
O69 - SBI: SearchScopes [HKCU] [64Bits]{0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/ =>.Bing.com
O69 - SBI: SearchScopes [HKLM] [64Bits]{0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (@ieframe.dll,-12512) - http://www.bing.com/ =>.Bing.com
---\\ Enumère les services démarrés par Svchost (48) - 0s
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\WINDOWS\System32\certprop.dll [188928] =>.Microsoft Corporation
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\WINDOWS\System32\certprop.dll [188928] =>.Microsoft Corporation
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\WINDOWS\System32\srvsvc.dll [270848] =>.Microsoft Corporation
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\WINDOWS\System32\gpsvc.dll [1275904] =>.Microsoft Corporation
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\WINDOWS\System32\ikeext.dll [984064] =>.Microsoft Corporation
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\WINDOWS\System32\iphlpsvc.dll [820224] =>.Microsoft Corporation
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\WINDOWS\system32\seclogon.dll [30720] =>.Microsoft Corporation
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\WINDOWS\System32\appinfo.dll [144896] =>.Microsoft Corporation
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\WINDOWS\System32\iscsiexe.dll [150528] =>.Microsoft Corporation
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\WINDOWS\System32\eapsvc.dll [109056] =>.Microsoft Corporation
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\WINDOWS\System32\schedsvc.dll [880640] =>.Microsoft Corporation
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\WINDOWS\System32\wbem\WMIsvc.dll [220160] =>.Microsoft Corporation
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\WINDOWS\System32\profsvc.dll [407040] =>.Microsoft Corporation
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\WINDOWS\System32\sessenv.dll [387584] =>.Microsoft Corporation
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\WINDOWS\System32\wercplsupport.dll [108544] =>.Microsoft Corporation
O83 - Search Svchost Services: PushToInstall (PushToInstall) . (.Microsoft Corporation - PushToInstall.) -- C:\WINDOWS\System32\PushToInstall.dll [254976] =>.Microsoft Corporation
O83 - Search Svchost Services: shpamsvc (shpamsvc) . (.Microsoft Corporation - SharedPC.AccountManager.) -- C:\WINDOWS\System32\Windows.SharedPC.AccountManager.dll [194560] =>.Microsoft Corporation
O83 - Search Svchost Services: XblGameSave (XblGameSave) . (.Microsoft Corporation - Xbox Live Game Save Service.) -- C:\WINDOWS\System32\XblGameSave.dll [1272320] =>.Microsoft Corporation
O83 - Search Svchost Services: NaturalAuthentication (NaturalAuthentication) . (.Microsoft Corporation - Service d’authentification naturelle.) -- C:\WINDOWS\System32\NaturalAuth.dll [795136] =>.Microsoft Corporation
O83 - Search Svchost Services: TokenBroker (TokenBroker) . (.Microsoft Corporation - Broker à jetons.) -- C:\WINDOWS\System32\TokenBroker.dll [1230848] =>.Microsoft Corporation
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Service de géolocalisation.) -- C:\WINDOWS\System32\lfsvc.dll [46080] =>.Microsoft Corporation
O83 - Search Svchost Services: XblAuthManager (XblAuthManager) . (.Microsoft Corporation - Xbox Live Auth Manager.) -- C:\WINDOWS\System32\XblAuthManager.dll [1107968] =>.Microsoft Corporation
O83 - Search Svchost Services: Irmon (Irmon) . (.Microsoft Corporation - Moniteur infrarouge.) -- C:\WINDOWS\System32\irmon.dll [24576] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\WINDOWS\System32\rasauto.dll [104960] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d’accès à dista.) -- C:\WINDOWS\System32\rasmans.dll [930304] =>.Microsoft Corporation
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\WINDOWS\System32\mprdim.dll [491520] =>.Microsoft Corporation
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\WINDOWS\System32\sens.dll [73216] =>.Microsoft Corporation
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\WINDOWS\System32\ipnathlp.dll [600576] =>.Microsoft Corporation
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\WINDOWS\System32\tapisrv.dll [307200] =>.Microsoft Corporation
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\WINDOWS\System32\wuaueng.dll [2782720] =>.Microsoft Corporation
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\WINDOWS\System32\qmgr.dll [1345536] =>.Microsoft Corporation
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS\System32\shsvcs.dll [613376] =>.Microsoft Corporation
O83 - Search Svchost Services: DmEnrollmentSvc (DmEnrollmentSvc) . (.Microsoft Corporation - DLL Windows Management Service.) -- C:\WINDOWS\System32\Windows.Internal.Management.dll [702464] =>.Microsoft Corporation
O83 - Search Svchost Services: dmwappushservice (dmwappushservice) . (.Microsoft Corporation - dmwappushsvc.) -- C:\WINDOWS\System32\dmwappushsvc.dll [57856] =>.Microsoft Corporation
O83 - Search Svchost Services: wisvc (wisvc) . (.Microsoft Corporation - Paramètres de vol.) -- C:\WINDOWS\System32\flightsettings.dll [779264] =>.Microsoft Corporation
O83 - Search Svchost Services: WpnService (WpnService) . (.Microsoft Corporation - Service du système de notifications Push Wi.) -- C:\WINDOWS\System32\WpnService.dll [284672] =>.Microsoft Corporation
O83 - Search Svchost Services: XboxNetApiSvc (XboxNetApiSvc) . (.Microsoft Corporation - Xbox Live Networking Service.) -- C:\WINDOWS\System32\XboxNetApiSvc.dll [1143808] =>.Microsoft Corporation
O83 - Search Svchost Services: UsoSvc (UsoSvc) . (.Microsoft Corporation - Mettre à jour la session Orchestrator Core.) -- C:\WINDOWS\System32\usocore.dll [1288704] =>.Microsoft Corporation
O83 - Search Svchost Services: UserManager (UserManager) . (.Microsoft Corporation - UserMgr.) -- C:\WINDOWS\System32\usermgr.dll [951808] =>.Microsoft Corporation
O83 - Search Svchost Services: InstallService (InstallService) . (.Microsoft Corporation - InstallService.) -- C:\WINDOWS\System32\InstallService.dll [1306624] =>.Microsoft Corporation
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\WINDOWS\System32\themeservice.dll [69632] =>.Microsoft Corporation
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\WINDOWS\System32\bdesvc.dll [387072] =>.Microsoft Corporation
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d’installation de périphérique.) -- C:\WINDOWS\System32\DeviceSetupManager.dll [237568] =>.Microsoft Corporation
O83 - Search Svchost Services: NetSetupSvc (NetSetupSvc) . (.Microsoft Corporation - Service Configuration du réseau.) -- C:\WINDOWS\System32\NetSetupSvc.dll [307712] =>.Microsoft Corporation
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Micro.) -- C:\WINDOWS\System32\ncasvc.dll [170496] =>.Microsoft Corporation
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\WINDOWS\System32\wlidsvc.dll [2223104] =>.Microsoft Corporation
O83 - Search Svchost Services: XboxGipSvc (XboxGipSvc) . (.Microsoft Corporation - Xbox Gip Management Service.) -- C:\WINDOWS\System32\XboxGipSvc.dll [57856] =>.Microsoft Corporation
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\WINDOWS\System32\appmgmts.dll [196096] =>.Microsoft Corporation
---\\ Liste des exceptions du parefeu Windows (2) - 1s
O87 - FAEL: "{2765E0F4-2918-4A46-B9C9-43CDD8FCBA2B}" [Out-None-P17-TRUE] .(...) -- C:\windows\systemapps\microsoft.windows.cortana_cw5n1h2txyewy\searchui.exe (.not file.)
O87 - FAEL: "{79C2BA16-D1B2-405C-8699-2D5E4578FF35}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (.not file.)
---\\ Scan Additionnel (2) - 1s
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814} =>.SUP.Orphan
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{10921475-03CE-4E04-90CE-E2E7EF20C814} =>.SUP.Orphan
---\\ Récapitulatif des éléments trouvés sur votre station (2) - 0s
https://www.nicolascoolman.com/fr/adware-adon/ =>PUP.Optional.ADON
https://nicolascoolman.eu/2017/09/12/origine-lignes-orphelines/ =>.SUP.Orphan
~ Unselected Options: O38, O50, O82,
~ End of the scan, 96870 items in 03mn41s (1636)(0)