Publicité
Publicité
Format du document : text/plain
Prévisualisation
~ ZHPDiag v2017.10.3.174 Par Nicolas Coolman (2017/10/03)
~ Démarré par Youss (Administrator) (2017/10/05 07:57:08)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Certificate ZHPDiag: Legal
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\Youss\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\Youss\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Deactivate
~ Démarrage du système: Normal (Normal boot)
Windows 7 Professional, 64-bit Service Pack 1 (Build 7601) =>.Microsoft Corporation
---\\ Navigateurs Internet (3) - 0s
~ MFIE: Mozilla Firefox 48.0 (x64 en-US)
~ OPIE: Opera 48.0.2685.35
~ MSIE: Internet Explorer v11.0.9600.18524
---\\ Informations sur les produits Windows (4) - 4s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK
Windows Activation Technologies : KO
---\\ Logiciels de protection (1) - 0s
Kaspersky Internet Security 2013 v13.0.1.4190 (Protection)
---\\ Surveillance de Logiciels (1) - 0s
~ Adobe Flash Player 27 PPAPI (Surveillance)
---\\ Logiciels de partage P2P (1) - 0s
~ µTorrent v3.5.0.44090 (P2P)
---\\ Informations sur le système (6) - 0s
~ Operating System: Intel64 Family 6 Model 69 Stepping 1, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 8274.284 MB (62% free) : OK =>.RAM Value
System Restore: Activé (Enable)
System drive C: has 37 GB (27%) free of 133 GB : OK =>.Disk Space
---\\ Mode de connexion au système (3) - 0s
~ Computer Name: YOUSS-PC
~ User Name: Youss
~ Logged in as Administrator
---\\ Enumération des unités disques (2) - 0s
~ Drive C: has 37 GB free of 133 GB (System)
~ Drive D: has 333 GB free of 819 GB
---\\ Etat du Centre de Sécurité Windows (10) - 0s
[HKLM\Software\WOW6432Node\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\Software\WOW6432Node\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\Software\WOW6432Node\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM64\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
---\\ Recherche particulière de fichiers génériques (26) - 1s
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - 15/05/2016 - (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\Explorer.exe [2871808] =>.Microsoft Corporation
[MD5.DD81D91FF3B0763C392422865C9AC12E] - 14/07/2009 - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\Windows\System32\rundll32.exe [45568] =>.Microsoft Corporation
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - 14/07/2009 - (.Microsoft Corporation - Application de démarrage de Windows.) -- C:\Windows\System32\Wininit.exe [129024] =>.Microsoft Corporation
[MD5.ECFCBD328C57E6EE2966B52A179016AE] - 20/11/2016 - (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\System32\wininet.dll [2920448] =>.Microsoft Corporation
[MD5.8CEBD9D0A0A879CDE9F36F4383B7CAEA] - 15/05/2016 - (.Microsoft Corporation - Application d’ouverture de session Windows.) -- C:\Windows\System32\Winlogon.exe [455168] =>.Microsoft Corporation
[MD5.067FA52BFB59A56110A12312EF9AF243] - 21/11/2010 - (.Microsoft Corporation - Bibliothèque de licences.) -- C:\Windows\System32\sppcomapi.dll [232448] =>.Microsoft Corporation
[MD5.492D07D79E7024CA310867B526D9636D] - 21/11/2010 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\Windows\System32\dnsapi.dll [357888] =>.Microsoft Corporation
[MD5.B40420876B9288E0A1C8CCA8A84E5DC9] - 15/05/2016 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\Windows\Syswow64\dnsapi.dll [270336] =>.Microsoft Corporation
[MD5.0D57D091E06BB1E58E72E5D08479FDDF] - 18/04/2016 - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) -- C:\Windows\System32\fr-FR\user32.dll.mui [20480] =>.Microsoft Corporation
[MD5.9A4A1EEE802BF2F878EE8EAB407B21B7] - 15/05/2016 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\Windows\System32\drivers\AFD.sys [497664] =>.Microsoft Corporation
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - 14/07/2009 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\drivers\atapi.sys [24128] =>.Microsoft Windows®
[MD5.B8BD2BB284668C84865658C77574381A] - 13/07/2009 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\drivers\Cdfs.sys [92160] =>.Microsoft Corporation
[MD5.F036CE71586E93D94DAB220D7BDF4416] - 21/11/2010 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\drivers\Cdrom.sys [147456] =>.Microsoft Corporation
[MD5.9B38580063D281A99E68EF5813022A5F] - 16/10/2016 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\drivers\DfsC.sys [106496] =>.Microsoft Corporation
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - 21/11/2010 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\drivers\HDAudBus.sys [122368] =>.Microsoft Corporation
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - 13/07/2009 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\Windows\System32\drivers\i8042prt.sys [105472] =>.Microsoft Corporation
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - 14/07/2009 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\drivers\IpNat.sys [116224] =>.Microsoft Corporation
[MD5.C514067DA02C938D4F96BB7769408089] - 20/11/2016 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\Windows\System32\drivers\MRxSmb.sys [159744] =>.Microsoft Corporation
[MD5.09594D1089C523423B32A4229263F068] - 21/11/2010 - (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\drivers\netBT.sys [261632] =>.Microsoft Corporation
[MD5.47B2D0B31BDC3EBE6090228E2BA3764D] - 15/05/2016 - (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\Windows\System32\drivers\ntfs.sys [1684416] =>.Microsoft Windows®
[MD5.0086431C29C35BE1DBC43F52CC273887] - 14/07/2009 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\Windows\System32\drivers\Parport.sys [97280] =>.Microsoft Corporation
[MD5.471815800AE33E6F1C32FB1B97C490CA] - 21/11/2010 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\drivers\Rasl2tp.sys [129536] =>.Microsoft Corporation
[MD5.1B6163C503398B23FF8B939C67747683] - 21/11/2010 - (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\Windows\System32\drivers\rdpdr.sys [165888] =>.Microsoft Corporation
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - 14/07/2009 - (.Microsoft Corporation - SMB Transport driver.) -- C:\Windows\System32\drivers\smb.sys [93184] =>.Microsoft Corporation
[MD5.AA77EB517D2F07A947294F260E3ACA83] - 15/05/2016 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\drivers\tdx.sys [118272] =>.Microsoft Corporation
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - 21/11/2010 - (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\Windows\System32\drivers\volsnap.sys [295808] =>.Microsoft Windows®
---\\ Liste des services NT non Microsoft et non désactivés (14) - 3s
O23 - Service: Arp Intelligent Protection Service (AIPS) . (.Arcai.com - Arp Intelligent Protection Service.) - C:\Program Files (x86)\netcut\services\aips.exe =>.arcai.com
O23 - Service: Kaspersky Anti-Virus Service (AVP) . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe =>.Kaspersky Lab®
O23 - Service: Digital Wave Update Service (DigitalWave.Update.Service) . (.Digital Wave Ltd. - Digital Wave Update Service.) - C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe =>.Digital Wave Ltd®
O23 - Service: Intel Bluetooth Service (ibtsiva) . (...) - C:\Windows\System32\ibtsiva (.not file.) =>.Intel Corporation
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) . (.Intel Corporation - igfxCUIService Module.) - C:\Windows\System32\igfxCUIService.exe =>.Intel Corporation
O23 - Service: Meditel Imola Modem Device Helper (Meditel Imola Modem Device Helper) . (...) - C:\Program Files (x86)\HSPA USB MODEM\BackgroundService\ServiceManager.exe
O23 - Service: OpenVPN Agent (ovpnagent) . (...) - C:\Program Files (x86)\OpenVPN Technologies\PrivateTunnel\ovpnagent.exe =>.OpenVPN Technologies, Inc.®
O23 - Service: PinnacleUpdate Service (PinnacleUpdateSvc) . (...) - C:\Program Files (x86)\PowerUp Software\Pinnacle Game Profiler\pinnacle_updater.exe (.not file.)
O23 - Service: Realtek Audio Service (RtkAudioService) . (.Realtek Semiconductor - Realtek Audio Service.) - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe =>.Realtek Semiconductor Corp.®
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe =>.Skype Software Sarl®
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) . (.Synaptics Incorporated - 64-bit Synaptics Pointing Enhance Service.) - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe =>.Synaptics Incorporated®
O23 - Service: TeamViewer 12 (TeamViewer) . (.TeamViewer GmbH - TeamViewer 12.) - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe =>.TeamViewer GmbH®
O23 - Service: Wondershare Application Framework Service (WsAppService) . (.Wondershare - Wondershare Passport.) - C:\Program Files (x86)\Wondershare\WAF\2.4.3.227\WsAppService.exe =>.Wondershare Technology Co.,Ltd®
O23 - Service: Wondershare Driver Install Service (WsDrvInst) . (...) - C:\Program Files (x86)\Wondershare\dr.fone toolkit for Android\Library\DriverInstaller\DriverInstall.exe (.not file.)
---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (16) - 19s
SS - Demand [14/09/2017] [ 272384] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe =>.Adobe Systems Incorporated®
SR - Auto [28/07/2011] [ 262144] Arp Intelligent Protection Service (AIPS) . (.Arcai.com.) - C:\Program Files (x86)\netcut\services\aips.exe =>.arcai.com
SR - Auto [04/04/2017] [ 356128] Kaspersky Anti-Virus Service (AVP) . (.Kaspersky Lab ZAO.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe =>.Kaspersky Lab®
SS - Demand [02/05/2017] [ 387128] BlueStacks Android Service (BstHdAndroidSvc) . (.BlueStack Systems, Inc..) - C:\Program Files (x86)\BlueStacks\HD-Service.exe =>.BlueStack Systems, Inc.®
SS - Demand [02/05/2017] [ 369720] BlueStacks Log Rotator Service (BstHdLogRotatorSvc) . (.BlueStack Systems, Inc..) - C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe =>.BlueStack Systems, Inc.®
SS - Demand [02/05/2017] [ 406584] BlueStacks Plus Android Service (BstHdPlusAndroidSvc) . (.BlueStack Systems, Inc..) - C:\Program Files (x86)\BlueStacks\HD-Plus-Service.exe =>.BlueStack Systems, Inc.®
SS - Demand [09/08/2015] [ 288688] Intel(R) Content Protection HECI Service (cphs) . (.Intel Corporation.) - C:\Windows\SysWOW64\IntelCpHeciSvc.exe =>.Intel Corporation - pGFX®
SR - Auto [14/07/2017] [ 440808] Digital Wave Update Service (DigitalWave.Update.Service) . (.Digital Wave Ltd..) - C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe =>.Digital Wave Ltd®
SR - Auto [09/08/2015] [ 355232] Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) . (.Intel Corporation.) - C:\Windows\System32\igfxCUIService.exe =>.Intel Corporation - pGFX®
SR - Auto [20/06/2011] [ 49752] Meditel Imola Modem Device Helper (Meditel Imola Modem Device Helper) . (...) - C:\Program Files (x86)\HSPA USB MODEM\BackgroundService\ServiceManager.exe
SR - Auto [29/08/2016] [ 949480] OpenVPN Agent (ovpnagent) . (...) - C:\Program Files (x86)\OpenVPN Technologies\PrivateTunnel\ovpnagent.exe =>.OpenVPN Technologies, Inc.®
SR - Auto [29/06/2017] [ 324608] Realtek Audio Service (RtkAudioService) . (.Realtek Semiconductor.) - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe =>.Realtek Semiconductor Corp.®
SS - Auto [05/04/2017] [ 317400] Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe =>.Skype Software Sarl®
SR - Auto [05/04/2017] [ 317400] SynTPEnh Caller Service (SynTPEnhService) . (.Synaptics Incorporated.) - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe =>.Synaptics Incorporated®
SR - Auto [05/04/2017] [ 317400] TeamViewer 12 (TeamViewer) . (.TeamViewer GmbH.) - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe =>.TeamViewer GmbH®
SS - Auto [05/04/2017] [ 317400] Wondershare Application Framework Service (WsAppService) . (.Wondershare.) - C:\Program Files (x86)\Wondershare\WAF\2.4.3.227\WsAppService.exe =>.Wondershare Technology Co.,Ltd®
---\\ Tâches planifiées en automatique (Registre) (61) - 5s
O38 - TASK: {00AF9B66-8FBE-43AC-A817-FFAF6B2B1E2B} [64Bits][\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector] - (.Microsoft Corporation - Module de diagnostics des erreurs de disque.) -- C:\Windows\System32\dfdts.dll [45568] =>.Microsoft Corporation
O38 - TASK: {044A6734-E90E-4F8F-B357-B2DC8AB3B5EC} [64Bits][\Microsoft\Windows\Time Synchronization\SynchronizeTime] - (...) -- w32time task_started [0]
O38 - TASK: {088482FA-65B8-4E17-9ABF-1DCD48E8D373} [64Bits][\Microsoft\Windows\Tcpip\IpAddressConflict1] - (.Microsoft Corporation - API cliente de cadre de Diagnostic réseau.) -- C:\Windows\System32\ndfapi.dll [238592] =>.Microsoft Corporation
O38 - TASK: {09F06BFE-A3C8-40E3-846A-6E6F4000C238} [64Bits][\Microsoft\Windows\Tcpip\IpAddressConflict2] - (.Microsoft Corporation - API cliente de cadre de Diagnostic réseau.) -- C:\Windows\System32\ndfapi.dll [238592] =>.Microsoft Corporation
O38 - TASK: {195A0EAE-DEDE-4F64-85F9-A055580D05BD} [64Bits][\Microsoft\Windows\Media Center\ConfigureInternetTimeService] - (.Microsoft Corporation - Application d’inscription de périphérique d.) -- C:\Windows\ehome\ehPrivJob.exe [295936] =>.Microsoft Corporation
O38 - TASK: {1E9EEB80-3A18-4401-B230-C8913B03BB02} [64Bits][\AceUtilsSkipUAC] - (.Acelogix Software - Ace Utilities.) -- C:\Program Files\Ace Utilities\au.exe [7528440] {6A7AED7950677809783F1C26D8D65CC6}
O38 - TASK: {20E8C404-4C44-494E-990B-83F6776ADE0B} [64Bits][\Opera scheduled Autoupdate 1488955737] - (.Opera Software - Opera Internet Browser.) -- C:\Users\Youss\AppData\Local\Programs\Opera\launcher.exe [1221720] =>.Opera Software AS®
O38 - TASK: {273CCC4C-A9B1-408D-A7E1-8AD72F7FF642} [64Bits][\Opera scheduled Autoupdate 1488955240] - (.Opera Software - Opera Internet Browser.) -- C:\Users\Youss\AppData\Local\Programs\Opera\launcher.exe [1221720] =>.Opera Software AS®
O38 - TASK: {2806CEF2-E20E-4E76-9446-29406AEF4B97} [64Bits][\Microsoft\Windows\Media Center\PvrRecoveryTask] - (.Microsoft Corporation - Gestionnaire de mises à jour du magasin Win.) -- C:\Windows\ehome\mcupdate.exe [198656] =>.Microsoft Corporation
O38 - TASK: {2E2A33C5-97BA-4913-A89B-C5351E36214A} [64Bits][\Microsoft\Windows\Media Center\RegisterSearch] - (.Microsoft Corporation - Application d’inscription de périphérique d.) -- C:\Windows\ehome\ehPrivJob.exe [295936] =>.Microsoft Corporation
O38 - TASK: {2F57269B-1E09-4E2D-AB1E-B0FDAC7D279C} [64Bits][\Microsoft\Windows\WindowsBackup\ConfigNotification] - (.Microsoft Corporation - Sauvegarde Microsoft® Windows.) -- C:\Windows\System32\sdclt.exe [1264640] =>.Microsoft Corporation
O38 - TASK: {35533E24-631A-4CB5-900C-2B3E5CED27AC} [64Bits][\Adobe Flash Player PPAPI Notifier] - (.Adobe Systems Incorporated - Adobe® Flash® Player Installer/Uninstaller.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_27_0_0_130_pepper.exe [1286144] =>.Adobe Systems Incorporated®
O38 - TASK: {3CFAD6CF-AD52-493F-899D-A81FE09CDE54} [64Bits][\Microsoft\Windows Defender\MP Scheduled Scan] - (.Microsoft Corporation - Microsoft Malware Protection Command Line U.) -- c:\program files\windows defender\MpCmdRun.exe [190976] =>.Microsoft Corporation
O38 - TASK: {44E0792F-B4EB-4BC4-9E1C-5CD6833137A2} [64Bits][\Microsoft\Windows\Media Center\OCURDiscovery] - (.Microsoft Corporation - Application d’inscription de périphérique d.) -- C:\Windows\ehome\ehPrivJob.exe [295936] =>.Microsoft Corporation
O38 - TASK: {5A40E926-9E86-4B89-9CFD-B12311724371} [64Bits][\Microsoft\Windows\UPnP\UPnPHostConfig] - (.Microsoft Corporation - Outil facilitant le développement de servic.) -- C:\Windows\System32\sc.exe [45056] =>.Microsoft Corporation
O38 - TASK: {5C0AEEEA-C154-45BE-8499-BEA5F11BAFF6} [64Bits][\Microsoft\Windows\Defrag\ScheduledDefrag] - (.Microsoft Corp. - Module de défragmenteur de disque.) -- C:\Windows\system32\defrag.exe [183296] =>.Microsoft Corp.
O38 - TASK: {5DDE3967-6103-4DC1-910B-871872A2A28B} [64Bits][\WPD\SqmUpload_S-1-5-21-3773301370-269709488-2435709199-1000] - (.Microsoft Corporation - Composants API de l’appareil mobile Windows.) -- C:\Windows\System32\portabledeviceapi.dll [758272] =>.Microsoft Corporation
O38 - TASK: {6D2F2CC5-B207-4B2F-860E-8DD25EAE4D2F} [64Bits][\Microsoft\Windows\Media Center\ehDRMInit] - (.Microsoft Corporation - Application d’inscription de périphérique d.) -- C:\Windows\ehome\ehPrivJob.exe [295936] =>.Microsoft Corporation
O38 - TASK: {6E2468B7-15A8-403C-9168-BCF44F031F6A} [64Bits][\Microsoft\Windows\Media Center\PBDADiscovery] - (.Microsoft Corporation - Application d’inscription de périphérique d.) -- C:\Windows\ehome\ehPrivJob.exe [295936] =>.Microsoft Corporation
O38 - TASK: {6E3021E8-C492-4837-BFDD-75D3EA8A93C1} [64Bits][\Microsoft\Windows\Media Center\PBDADiscoveryW1] - (.Microsoft Corporation - Application d’inscription de périphérique d.) -- C:\Windows\ehome\ehPrivJob.exe [295936] =>.Microsoft Corporation
O38 - TASK: {6E62C39D-8C7B-4347-8847-06560DF2BFED} [64Bits][\Microsoft\Windows\Media Center\InstallPlayReady] - (.Microsoft Corporation - Application d’inscription de périphérique d.) -- C:\Windows\ehome\ehPrivJob.exe [295936] =>.Microsoft Corporation
O38 - TASK: {716D761C-CFF7-434C-8E94-9B45BE833B65} [64Bits][\Microsoft\Windows\Media Center\MediaCenterRecoveryTask] - (.Microsoft Corporation - Gestionnaire de mises à jour du magasin Win.) -- C:\Windows\ehome\mcupdate.exe [198656] =>.Microsoft Corporation
O38 - TASK: {72DB7465-BC54-491B-A92A-4637A28C9BBF} [64Bits][\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck] - (.Microsoft Corporation - AppID Certificate Store Verification Task.) -- C:\Windows\system32\appidcertstorecheck.exe [17920] =>.Microsoft Corporation
O38 - TASK: {753C47AE-EC5E-44B3-95A9-2C8E553F0E39} [64Bits][\Microsoft\Windows\Windows Media Sharing\UpdateLibrary] - (.Microsoft Corporation - Application de configuration du service Par.) -- C:\Program Files\Windows Media Player\wmpnscfg.exe [70656] =>.Microsoft Corporation
O38 - TASK: {7F492256-96EF-4809-95E6-56F4F37C97C8} [64Bits][\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask] - (.Microsoft Corporation - Gestionnaire de mises à jour du magasin Win.) -- C:\Windows\ehome\mcupdate.exe [198656] =>.Microsoft Corporation
O38 - TASK: {81540B9F-B5BF-47EB-9C95-BE195BF2C664} [64Bits][\Microsoft\Windows\NetTrace\GatherNetworkInfo] - (.Microsoft Corporation - .) -- C:\Windows\system32\gatherNetworkInfo.vbs [40552] =>.Microsoft Corporation
O38 - TASK: {90F9A2F3-B25F-4FB4-A403-13064B812F69} [64Bits][\{8E78500A-8E32-4FE0-990F-6E0F3BE38267}] - (...) -- C:\Program Files (x86)\brizMP3split\unins000.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {97659AE0-B74D-4B87-BC8C-962F9C494212} [64Bits][\Adobe Flash Player Updater] - (.Adobe Systems Incorporated - Adobe® Flash® Player Update Service 27.0 r0.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [272384] =>.Adobe Systems Incorporated®
O38 - TASK: {994C86AD-A929-4B2C-88A0-4E25A107A029} [64Bits][\Microsoft\Windows\SystemRestore\SR] - (.Microsoft Corporation - Bibliothèque de configuration de la protect.) -- C:\Windows\System32\srrstr.dll [270848] =>.Microsoft Corporation
O38 - TASK: {9972B67D-0E9D-4300-8A71-4B605B372024} [64Bits][\OfficeSoftwareProtectionPlatform\SvcRestartTask] - (...) -- osppsvc [0]
O38 - TASK: {9CB870E3-6CC1-445F-A8FE-086F1B302DF9} [64Bits][\Microsoft\Windows\MUI\Mcbuilder] - (.Microsoft Corporation - Resource cache builder tool.) -- C:\Windows\System32\mcbuilder.exe [272896] =>.Microsoft Corporation
O38 - TASK: {9D9DC9F3-CB9E-4C5E-B391-86C6F7152BD5} [64Bits][\Microsoft\Windows\Media Center\OCURActivate] - (.Microsoft Corporation - Application d’inscription de périphérique d.) -- C:\Windows\ehome\ehPrivJob.exe [295936] =>.Microsoft Corporation
O38 - TASK: {A48CABBF-24C8-4B87-B00F-9261807C3B43} [64Bits][\Microsoft\Windows\AppID\PolicyConverter] - (.Microsoft Corporation - AppID Policy Converter Task.) -- C:\Windows\system32\appidpolicyconverter.exe [148480] =>.Microsoft Corporation
O38 - TASK: {A6AF9377-77CE-47AB-AD7D-EC32CAD0C82D} [64Bits][\Microsoft\Windows\Location\Notifications] - (.Microsoft Corporation - Activité de la localisation.) -- C:\Windows\System32\LocationNotifications.exe [90112] =>.Microsoft Corporation
O38 - TASK: {A8DA5B58-4CDC-4EFC-A4A8-75292BB226EF} [64Bits][\Driver Booster SkipUAC (Youss)] - (...) -- C:\Program Files (x86)\IObit\Driver Booster\4.0.4\DriverBooster.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {AC4E5ACF-89F7-4220-BA21-81EE183975E2} [64Bits][\Microsoft\Windows\Application Experience\AitAgent] - (...) -- aitagent [0]
O38 - TASK: {B2C9169D-E1A0-470A-A0CA-0558D38D4462} [64Bits][\Microsoft\Windows\Media Center\DispatchRecoveryTasks] - (.Microsoft Corporation - Application d’inscription de périphérique d.) -- C:\Windows\ehome\ehPrivJob.exe [295936] =>.Microsoft Corporation
O38 - TASK: {C016366B-7126-46CA-B36B-592A3D95A60B} [64Bits][\Microsoft\Windows\Customer Experience Improvement Program\Consolidator] - (.Microsoft Corporation - Consolidateur SQM Windows.) -- C:\Windows\System32\wsqmcons.exe [293888] =>.Microsoft Corporation
O38 - TASK: {C2FEFB0C-33B7-4E21-AD61-E4D50351A60E} [64Bits][\Microsoft\Windows\Media Center\UpdateRecordPath] - (.Microsoft Corporation - Application d’inscription de périphérique d.) -- C:\Windows\ehome\ehPrivJob.exe [295936] =>.Microsoft Corporation
O38 - TASK: {C6274E53-0E85-4FFF-B09B-FCB521CC9981} [64Bits][\Microsoft\Windows\Media Center\mcupdate] - (...) -- C:\Windows\ehome\mcupdate (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {C6AEE372-6EFE-4C0E-9A60-FF4F134FD157} [64Bits][\Microsoft\Windows\MUI\Lpksetup] - (.Microsoft Corporation - Programme d’installation des packs de langu.) -- C:\Windows\System32\lpksetup.exe [653312] =>.Microsoft Corporation
O38 - TASK: {C779C46F-9AC5-48A1-815F-DCE36BE433E4} [64Bits][\Microsoft\Windows\Media Center\StartRecording] - (...) -- C:\Windows\ehome\ehrec (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {C8F72995-A170-4284-85EC-A62AC70EAC20} [64Bits][\Microsoft\Windows\Media Center\PeriodicScanRetry] - (.Microsoft Corporation - Gestionnaire de mises à jour du magasin Win.) -- C:\Windows\ehome\MCUpdate.exe [198656] =>.Microsoft Corporation
O38 - TASK: {CA2F60DE-E813-4FB8-952B-C052E8CC50A4} [64Bits][\Microsoft\Windows\Media Center\RecordingRestart] - (...) -- C:\Windows\ehome\ehrec (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {CB3D64BF-C0C9-45FF-BFB0-FF1A8F680186} [64Bits][\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask] - (.Microsoft Corporation - Serveur COM d’assistance à distance Windows.) -- C:\Windows\System32\raserver.exe [125952] =>.Microsoft Corporation
O38 - TASK: {D0250F3F-6480-484F-B719-42F659AC64D5} [64Bits][\Microsoft\Windows\Windows Error Reporting\QueueReporting] - (.Microsoft Corporation - Windows Problem Reporting.) -- C:\Windows\system32\wermgr.exe [50688] =>.Microsoft Corporation
O38 - TASK: {D02B6C15-9B4A-4BF4-BF1D-04789D9003E8} [64Bits][\Microsoft\Windows\Media Center\ReindexSearchRoot] - (.Microsoft Corporation - Application d’inscription de périphérique d.) -- C:\Windows\ehome\ehPrivJob.exe [295936] =>.Microsoft Corporation
O38 - TASK: {D201F291-C43E-4A28-85C0-8FC5A6CAE21E} [64Bits][\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver] - (.Microsoft Corporation - Outil de résolution des défaillances disque.) -- C:\Windows\system32\DFDWiz.exe [79360] =>.Microsoft Corporation
O38 - TASK: {D383C619-D06E-42B7-BFFD-95E39050514C} [64Bits][\{01247E7C-60B3-4D65-AB82-5D7AC432DD00}] - (...) -- C:\Program Files (x86)\ARAR\UNWISE.EXE (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {D6C87927-171D-4B23-8B43-2BC7884E5154} [64Bits][\Microsoft\Windows\TabletPC\InputPersonalization] - (...) -- %CommonProgramFiles%\Microsoft Shared\Ink\InputPersonalization.exe [0]
O38 - TASK: {D7B6E81D-3CF4-432C-84D2-24213F4316E6} [64Bits][\Microsoft\Windows\Autochk\Proxy] - (.Microsoft Corporation - DLL de proxy Autochk.) -- C:\Windows\System32\acproxy.dll [11264] =>.Microsoft Corporation
O38 - TASK: {DBB37053-DE10-42CA-AF7E-EBA29E313D3C} [64Bits][\Microsoft\Windows\Media Center\ActivateWindowsSearch] - (.Microsoft Corporation - Application d’inscription de périphérique d.) -- C:\Windows\ehome\ehPrivJob.exe [295936] =>.Microsoft Corporation
O38 - TASK: {DC40F54A-272C-4DF7-B1AD-633B83F2F027} [64Bits][\Microsoft\Windows\Media Center\SqlLiteRecoveryTask] - (.Microsoft Corporation - Gestionnaire de mises à jour du magasin Win.) -- C:\Windows\ehome\mcupdate.exe [198656] =>.Microsoft Corporation
O38 - TASK: {DD9F510C-95F4-499A-90C8-BAC5BC372FF4} [64Bits][\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask] - (.Microsoft Corporation - Outil facilitant le développement de servic.) -- C:\Windows\System32\sc.exe [45056] =>.Microsoft Corporation
O38 - TASK: {E22A8667-F75B-4BA9-BA46-067ED4429DE8} [64Bits][\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange] - (.Microsoft Corporation - Moteur de filtrage de base.) -- C:\Windows\System32\bfe.dll [705024] =>.Microsoft Corporation
O38 - TASK: {E2D4E7C5-8572-4E25-A714-3D004871CF9A} [64Bits][\Microsoft\Windows\Media Center\PBDADiscoveryW2] - (.Microsoft Corporation - Application d’inscription de périphérique d.) -- C:\Windows\ehome\ehPrivJob.exe [295936] =>.Microsoft Corporation
O38 - TASK: {E3163C33-301D-4730-A266-5518C5ED3967} [64Bits][\Microsoft\Windows\Bluetooth\UninstallDeviceTask] - (.Microsoft Corporation - Tâche de désinstallation du périphérique Bl.) -- C:\Windows\System32\BthUdTask.exe [36864] =>.Microsoft Corporation
O38 - TASK: {E31B2458-3E49-4B4B-9B54-97146EFB2DAF} [64Bits][\DRPNPS] - (...) -- SCHTASKS [0]
O38 - TASK: {EB02381F-D652-4B1C-894A-712498C62C51} [64Bits][\Microsoft\Windows\MUI\LPRemove] - (.Microsoft Corporation - MUI Language pack cleanup.) -- C:\Windows\system32\lpremove.exe [71168] =>.Microsoft Corporation
O38 - TASK: {FA1C17CA-BDD8-40B4-82BE-CC49C4F8EA45} [64Bits][\Microsoft\Windows\Media Center\PvrScheduleTask] - (.Microsoft Corporation - Gestionnaire de mises à jour du magasin Win.) -- C:\Windows\ehome\mcupdate.exe [198656] =>.Microsoft Corporation
O38 - TASK: {FB3C354D-297A-4EB2-9B58-090F6361906B} [64Bits][\Microsoft\Windows\Power Efficiency Diagnostics\AnalyzeSystem] - (.Microsoft Corporation - Outil de ligne de commande des paramètres d.) -- C:\Windows\System32\powercfg.exe [71168] =>.Microsoft Corporation
---\\ Applications lancées au démarrage du système (9) - 1s
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe =>.Realtek Semiconductor Corp.®
O4 - HKLM\..\Run: [RtHDVBg] . (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe =>.Realtek Semiconductor Corp.®
O4 - HKLM\..\Run: [RtHDVBg_PushButton] . (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe =>.Realtek Semiconductor Corp.®
O4 - HKLM\..\RunOnce: [!MOF64] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\System32\cmd.exe =>.Microsoft Corporation
O4 - HKLM\..\Wow6432Node\Run: [AVP] . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe =>.Kaspersky Lab®
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
---\\ Google Chrome, Démarrage,Recherche,Extensions (23) - 0s
G0 - GCSP: Preferences [User Data\Default][HomePage] http://apis.google.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://blog.malwarebytes.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://cleanserp.net
G0 - GCSP: Preferences [User Data\Default][HomePage] http://fonts.googleapis.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://id.google.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://ssl.gstatic.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://startme.online
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.gstatic.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.malwarebytes.com
G2 - GCE: Preference [User Data\Default] [aapocclcgogkmnckokdopfmhonfmgoek] =>.Google Inc. {Slides}
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] =>.Google Inc. {Docs}
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] http://drive.google.com/ =>.Google Inc. {Drive}
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] http://www.youtube.com =>.Youtube {Youtube}
G2 - GCE: Preference [User Data\Default] [dchlnpcodkpfdpacogkljefecpegganj]
G2 - GCE: Preference [User Data\Default] [felcaaldnbdncclmgdcncolpebgiejap] =>.Google Inc. {Sheets}
G2 - GCE: Preference [User Data\Default] [ghbmnnjooekpmoecnnnilnnbdlolhkhi] =>.Google Inc. {Docs hors connexion}
G2 - GCE: Preference [User Data\Default] [lpoimibckejjdjcfbdnajaicnklhfplh]
G2 - GCE: Preference [User Data\Default] [ngpampappnmepgilojfohadhhmbhlaek] IDM Integration Module =>.IDM Computer Solutions, Inc.
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] =>.Google Inc. {Wallet}
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] http://mail.google.com/ =>.Google Inc. {Gmail}
G2 - GCE: Preference [User Data\Default] [pjldcfjmnllhmgjclecdnfampinooman]
G2 - GCE: Preference [User Data\Default] [pkedcjkdefgpdelpbcmbmeomcjbeemfm] Chrome Media Router =>.Google Inc.
---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (4) - 4s
P2 - EXT FILE: (.Autofill Forms - Fill out web forms automatically.) -- C:\Users\Youss\AppData\Roaming\Mozilla\Firefox\Profiles\n0hm0r5l.default-1499323577382\extensions\autofillForms@blueimp.net.xpi
P2 - EXT FILE: (.Multifox - .) -- C:\Users\Youss\AppData\Roaming\Mozilla\Firefox\Profiles\n0hm0r5l.default-1499323577382\extensions\multifox@hultmann.xpi =>.Multifox
P2 - EXT: (.Eugene G. Suslikov - FireShot.) -- C:\Users\Youss\AppData\Roaming\Mozilla\Firefox\Profiles\n0hm0r5l.default-1499323577382\extensions\{0b457cAA-602d-484a-8fe7-c1d894a011ba} =>.Eugene G. Suslikov
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_27_0_0_130.dll =>.Adobe Systems Incorporated
---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (17) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = preserve =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R1 - HKEY_USERS\S-1-5-21-3773301370-269709488-2435709199-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = preserve =>.Microsoft Corporation
R3 - URLSearchHook: (no name)[HKCU] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (11.00.9600.18523 (winblue_ltsb.161022-0600)) -- C:\Windows\SysWOW64\ieframe.dll =>.Microsoft Corporation
---\\ Internet Explorer,Proxy Management (6) - 0s
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
R5 - HKLM\SYSTEM\CurrentControlSet\services\NlaSvc\Parameters\Internet\ManualProxies [] =>.Microsoft
---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=userinit.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: VMApplet=C:\Windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.) =>.Microsoft Corporation
---\\ Etude du fichier hosts (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (29)
---\\ Browser Helper Object de navigateur (BHO) (5) - 1s
O2 - BHO: IDM Helper [64Bits] - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Internet Download Manager, Tonec Inc. - IDM Browser Helper Object.) -- C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll =>.Tonec Inc.®
O2 - BHO: ContentBlockerBrowserHelperObject [64Bits] - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} . (.Kaspersky Lab ZAO - Content Blocker Plugin.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\ContentBlocker\ie_content_blocker_plugin.dll =>.Kaspersky Lab®
O2 - BHO: VirtualKeyboardBrowserHelperObject [64Bits] - {73455575-E40C-433C-9784-C78DC7761455} . (.Kaspersky Lab ZAO - Virtual Keyboard Plugin.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll =>.Kaspersky Lab®
O2 - BHO: Safe Money Plugin [64Bits] - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} . (.Kaspersky Lab ZAO - Safe Money Plugin.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\OnlineBanking\online_banking_bho.dll =>.Kaspersky Lab®
O2 - BHO: link filter bho [64Bits] - {E33CF602-D945-461A-83F0-819F76A199F8} . (.Kaspersky Lab ZAO - URL Advisor Plugin.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\UrlAdvisor\klwtbbho.dll =>.Kaspersky Lab®
---\\ Raccourcis Global Startup (109) - 40s
O4 - GS\Desktop [Administrateur]: 0.lnk . (...) D:\الربح من الأنترنيت\الفايس بوك\الفيسبوكات الخاصة ب يوسف\0
O4 - GS\Desktop [Administrateur]: Absolute MP3 Splitter.lnk . (...) C:\Program Files (x86)\Absolute MP3 Splitter\Absolute MP3 Splitter.exe
O4 - GS\Desktop [Administrateur]: Ace Utilities.lnk . (.Acelogix Software - .) C:\Program Files (x86)\Ace Utilities\aulaunch.exe
O4 - GS\Desktop [Administrateur]: Calculator.lnk . (.Microsoft Corporation - Calculatrice de Windows.) C:\Windows\system32\calc.exe =>.Microsoft Corporation
O4 - GS\Desktop [Administrateur]: Camtasia 9.lnk . (...) C:\Windows\Installer\{8AD50DED-EE14-4FEC-BC2C-F229C3BEFE58}\CamtasiaIcons.exe
O4 - GS\Desktop [Administrateur]: DFX.lnk . (...) D:\برامج\التشغيل\DFX.Audio.Enhancer.12.023\Crack\DFX.exe
O4 - GS\Desktop [Administrateur]: fsquirt.lnk . (.Microsoft Corporation - .) C:\Windows\System32\DriverStore\FileRepository\bth.inf_amd64_neutral_de0494b6391d872c\fsquirt.exe =>.Microsoft Corporation
O4 - GS\Desktop [Administrateur]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Users\Youss\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Desktop [Administrateur]: HandBrake.lnk . (.HandBrake Team - .) C:\Program Files (x86)\HandBrake\HandBrake.exe =>.HandBrake Team
O4 - GS\Desktop [Administrateur]: ID.lnk . (.http://fast-likers.com - Forged identity cards BY MrZaghar.) D:\الربح من الأنترنيت\صناعة بطاقة الفيسبوك\ID.exe
O4 - GS\Desktop [Administrateur]: Images.lnk . (...) C:\Users\Youss\AppData\Roaming\Microsoft\Windows\Libraries\Pictures.library-ms =>.Microsoft Corporation
O4 - GS\Desktop [Administrateur]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [Administrateur]: Kaspersky Internet Security 2013.lnk . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus Launcher.) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\starter_avp.exe =>.Kaspersky Lab®
O4 - GS\Desktop [Administrateur]: Mozilla Firefox.lnk . (.Mozilla Corporation - .) C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation
O4 - GS\Desktop [Administrateur]: PES2017.lnk . (.Konami Digital Entertainment Co., Ltd. - Pro Evolution Soccer 2017.) D:\ألعاب\Pro Evolution Soccer 2017\PES2017.exe =>.Konami Digital Entertainment Co., Ltd.
O4 - GS\Desktop [Administrateur]: TapinRadio.lnk . (.Raimersoft - TapinRadio.) C:\Program Files\TapinRadio\TapinRadio.exe =>.Raimersoft
O4 - GS\Desktop [Administrateur]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Youss\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Desktop [Administrateur]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\Youss\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - GS\Desktop [Administrateur]: افلام.lnk . (...) D:\صور\افلام
O4 - GS\Quicklaunch [Administrateur]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Users\Youss\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Administrateur]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [Administrateur]: Opera.lnk . (.Opera Software - Opera Internet Browser.) C:\Users\Youss\AppData\Local\Programs\Opera\launcher.exe =>.Opera Software AS®
O4 - GS\sendTo [Administrateur]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Administrateur]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe /sendto: =>.Skype Software Sarl®
O4 - GS\sendTo [Administrateur]: TeamViewer.lnk . (.TeamViewer GmbH - TeamViewer 12.) C:\Program Files (x86)\TeamViewer\TeamViewer.exe --sendto =>.TeamViewer GmbH®
O4 - GS\sendTo [Administrateur]: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Administrateur]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Users\Youss\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [Administrateur]: Paint.lnk . (.Microsoft Corporation - Paint.) C:\Windows\system32\mspaint.exe =>.Microsoft Corporation
O4 - GS\Programs [Administrateur]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Users\Youss\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Programs [Administrateur]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [Youss]: 0.lnk . (...) D:\الربح من الأنترنيت\الفايس بوك\الفيسبوكات الخاصة ب يوسف\0
O4 - GS\Desktop [Youss]: Absolute MP3 Splitter.lnk . (...) C:\Program Files (x86)\Absolute MP3 Splitter\Absolute MP3 Splitter.exe
O4 - GS\Desktop [Youss]: Ace Utilities.lnk . (.Acelogix Software - .) C:\Program Files (x86)\Ace Utilities\aulaunch.exe
O4 - GS\Desktop [Youss]: Calculator.lnk . (.Microsoft Corporation - Calculatrice de Windows.) C:\Windows\system32\calc.exe =>.Microsoft Corporation
O4 - GS\Desktop [Youss]: Camtasia 9.lnk . (...) C:\Windows\Installer\{8AD50DED-EE14-4FEC-BC2C-F229C3BEFE58}\CamtasiaIcons.exe
O4 - GS\Desktop [Youss]: DFX.lnk . (...) D:\برامج\التشغيل\DFX.Audio.Enhancer.12.023\Crack\DFX.exe
O4 - GS\Desktop [Youss]: fsquirt.lnk . (.Microsoft Corporation - .) C:\Windows\System32\DriverStore\FileRepository\bth.inf_amd64_neutral_de0494b6391d872c\fsquirt.exe =>.Microsoft Corporation
O4 - GS\Desktop [Youss]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Users\Youss\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Desktop [Youss]: HandBrake.lnk . (.HandBrake Team - .) C:\Program Files (x86)\HandBrake\HandBrake.exe =>.HandBrake Team
O4 - GS\Desktop [Youss]: ID.lnk . (.http://fast-likers.com - Forged identity cards BY MrZaghar.) D:\الربح من الأنترنيت\صناعة بطاقة الفيسبوك\ID.exe
O4 - GS\Desktop [Youss]: Images.lnk . (...) C:\Users\Youss\AppData\Roaming\Microsoft\Windows\Libraries\Pictures.library-ms =>.Microsoft Corporation
O4 - GS\Desktop [Youss]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [Youss]: Kaspersky Internet Security 2013.lnk . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus Launcher.) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\starter_avp.exe =>.Kaspersky Lab®
O4 - GS\Desktop [Youss]: Mozilla Firefox.lnk . (.Mozilla Corporation - .) C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation
O4 - GS\Desktop [Youss]: PES2017.lnk . (.Konami Digital Entertainment Co., Ltd. - Pro Evolution Soccer 2017.) D:\ألعاب\Pro Evolution Soccer 2017\PES2017.exe =>.Konami Digital Entertainment Co., Ltd.
O4 - GS\Desktop [Youss]: TapinRadio.lnk . (.Raimersoft - TapinRadio.) C:\Program Files\TapinRadio\TapinRadio.exe =>.Raimersoft
O4 - GS\Desktop [Youss]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Youss\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Desktop [Youss]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\Youss\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - GS\Desktop [Youss]: افلام.lnk . (...) D:\صور\افلام
O4 - GS\Quicklaunch [Youss]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Users\Youss\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Youss]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [Youss]: Opera.lnk . (.Opera Software - Opera Internet Browser.) C:\Users\Youss\AppData\Local\Programs\Opera\launcher.exe =>.Opera Software AS®
O4 - GS\sendTo [Youss]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Youss]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe /sendto: =>.Skype Software Sarl®
O4 - GS\sendTo [Youss]: TeamViewer.lnk . (.TeamViewer GmbH - TeamViewer 12.) C:\Program Files (x86)\TeamViewer\TeamViewer.exe --sendto =>.TeamViewer GmbH®
O4 - GS\sendTo [Youss]: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Youss]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Users\Youss\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [Youss]: Paint.lnk . (.Microsoft Corporation - Paint.) C:\Windows\system32\mspaint.exe =>.Microsoft Corporation
O4 - GS\Programs [Youss]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Users\Youss\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Programs [Youss]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\CommonDesktop [Public]: Audacity.lnk . (.The Audacity Team - Audacity®, the Free, Cross-Platform Sound E.) C:\Program Files (x86)\Audacity\audacity.exe =>.The Audacity Team
O4 - GS\CommonDesktop [Public]: BlueStacks.lnk . (.BlueStack Systems, Inc. - BlueStacks App Player.) C:\Program Files (x86)\BlueStacks\BlueStacks.exe =>.BlueStack Systems, Inc.®
O4 - GS\CommonDesktop [Public]: DVDVideoSoft Free Studio.lnk . (.Digital Wave Ltd - Free Studio.) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\FreeStudioManager.exe =>.Digital Wave Ltd®
O4 - GS\CommonDesktop [Public]: HSPA USB MODEM.lnk . (...) C:\Program Files (x86)\HSPA USB MODEM\ModemApplication.exe
O4 - GS\CommonDesktop [Public]: MPC-HC x64.lnk . (.MPC-HC Team - .) C:\Program Files (x86)\MPC-HC\mpc-hc64.exe =>.MPC-HC Team
O4 - GS\CommonDesktop [Public]: OBS Studio.lnk . (...) C:\Program Files (x86)\obs-studio\bin\64bit\obs64.exe =>.Open Source Developer, Hugh Bailey®
O4 - GS\CommonDesktop [Public]: Opera.lnk . (.Opera Software - Opera Internet Browser.) C:\Users\Youss\AppData\Local\Programs\Opera\launcher.exe =>.Opera Software AS®
O4 - GS\CommonDesktop [Public]: Private Tunnel.lnk . (.OpenVPN Technologies - Private Tunnel VPN Client.) C:\Program Files (x86)\OpenVPN Technologies\PrivateTunnel\privatetunnel2.8.1.exe =>.OpenVPN Technologies, Inc.®
O4 - GS\CommonDesktop [Public]: Skype.lnk . (...) C:\Windows\Installer\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}\SkypeIcon.exe =>.Skype Technologies
O4 - GS\CommonDesktop [Public]: TeamViewer 12.lnk . (.TeamViewer GmbH - TeamViewer 12.) C:\Program Files (x86)\TeamViewer\TeamViewer.exe =>.TeamViewer GmbH®
O4 - GS\Programs [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Users\Youss\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Programs [Public]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Accessories [Public]: Command Prompt.lnk . (.Microsoft Corporation - Interpréteur de commandes Windows.) C:\Windows\system32\cmd.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) C:\Windows\system32\notepad.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe -extoff =>.Microsoft Corporation®
O4 - GS\SystemTools [Public]: Private Character Editor.lnk . (.Microsoft Corporation - Éditeur de caractères privés.) C:\Windows\system32\eudcedit.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Bluetooth File Transfer Wizard.lnk . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: displayswitch.lnk . (.Microsoft Corporation - Afficher le commutateur.) C:\Windows\system32\displayswitch.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Math Input Panel.lnk . (.Microsoft Corporation - Accessoire du panneau de saisie mathématiqu.) C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\mip.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Mobility Center.lnk . (.Microsoft Corporation - Centre de mobilité
~ Démarré par Youss (Administrator) (2017/10/05 07:57:08)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Certificate ZHPDiag: Legal
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\Youss\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\Youss\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Deactivate
~ Démarrage du système: Normal (Normal boot)
Windows 7 Professional, 64-bit Service Pack 1 (Build 7601) =>.Microsoft Corporation
---\\ Navigateurs Internet (3) - 0s
~ MFIE: Mozilla Firefox 48.0 (x64 en-US)
~ OPIE: Opera 48.0.2685.35
~ MSIE: Internet Explorer v11.0.9600.18524
---\\ Informations sur les produits Windows (4) - 4s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK
Windows Activation Technologies : KO
---\\ Logiciels de protection (1) - 0s
Kaspersky Internet Security 2013 v13.0.1.4190 (Protection)
---\\ Surveillance de Logiciels (1) - 0s
~ Adobe Flash Player 27 PPAPI (Surveillance)
---\\ Logiciels de partage P2P (1) - 0s
~ µTorrent v3.5.0.44090 (P2P)
---\\ Informations sur le système (6) - 0s
~ Operating System: Intel64 Family 6 Model 69 Stepping 1, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 8274.284 MB (62% free) : OK =>.RAM Value
System Restore: Activé (Enable)
System drive C: has 37 GB (27%) free of 133 GB : OK =>.Disk Space
---\\ Mode de connexion au système (3) - 0s
~ Computer Name: YOUSS-PC
~ User Name: Youss
~ Logged in as Administrator
---\\ Enumération des unités disques (2) - 0s
~ Drive C: has 37 GB free of 133 GB (System)
~ Drive D: has 333 GB free of 819 GB
---\\ Etat du Centre de Sécurité Windows (10) - 0s
[HKLM\Software\WOW6432Node\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\Software\WOW6432Node\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\Software\WOW6432Node\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM64\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
---\\ Recherche particulière de fichiers génériques (26) - 1s
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - 15/05/2016 - (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\Explorer.exe [2871808] =>.Microsoft Corporation
[MD5.DD81D91FF3B0763C392422865C9AC12E] - 14/07/2009 - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\Windows\System32\rundll32.exe [45568] =>.Microsoft Corporation
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - 14/07/2009 - (.Microsoft Corporation - Application de démarrage de Windows.) -- C:\Windows\System32\Wininit.exe [129024] =>.Microsoft Corporation
[MD5.ECFCBD328C57E6EE2966B52A179016AE] - 20/11/2016 - (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\System32\wininet.dll [2920448] =>.Microsoft Corporation
[MD5.8CEBD9D0A0A879CDE9F36F4383B7CAEA] - 15/05/2016 - (.Microsoft Corporation - Application d’ouverture de session Windows.) -- C:\Windows\System32\Winlogon.exe [455168] =>.Microsoft Corporation
[MD5.067FA52BFB59A56110A12312EF9AF243] - 21/11/2010 - (.Microsoft Corporation - Bibliothèque de licences.) -- C:\Windows\System32\sppcomapi.dll [232448] =>.Microsoft Corporation
[MD5.492D07D79E7024CA310867B526D9636D] - 21/11/2010 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\Windows\System32\dnsapi.dll [357888] =>.Microsoft Corporation
[MD5.B40420876B9288E0A1C8CCA8A84E5DC9] - 15/05/2016 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\Windows\Syswow64\dnsapi.dll [270336] =>.Microsoft Corporation
[MD5.0D57D091E06BB1E58E72E5D08479FDDF] - 18/04/2016 - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) -- C:\Windows\System32\fr-FR\user32.dll.mui [20480] =>.Microsoft Corporation
[MD5.9A4A1EEE802BF2F878EE8EAB407B21B7] - 15/05/2016 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\Windows\System32\drivers\AFD.sys [497664] =>.Microsoft Corporation
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - 14/07/2009 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\drivers\atapi.sys [24128] =>.Microsoft Windows®
[MD5.B8BD2BB284668C84865658C77574381A] - 13/07/2009 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\drivers\Cdfs.sys [92160] =>.Microsoft Corporation
[MD5.F036CE71586E93D94DAB220D7BDF4416] - 21/11/2010 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\drivers\Cdrom.sys [147456] =>.Microsoft Corporation
[MD5.9B38580063D281A99E68EF5813022A5F] - 16/10/2016 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\drivers\DfsC.sys [106496] =>.Microsoft Corporation
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - 21/11/2010 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\drivers\HDAudBus.sys [122368] =>.Microsoft Corporation
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - 13/07/2009 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\Windows\System32\drivers\i8042prt.sys [105472] =>.Microsoft Corporation
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - 14/07/2009 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\drivers\IpNat.sys [116224] =>.Microsoft Corporation
[MD5.C514067DA02C938D4F96BB7769408089] - 20/11/2016 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\Windows\System32\drivers\MRxSmb.sys [159744] =>.Microsoft Corporation
[MD5.09594D1089C523423B32A4229263F068] - 21/11/2010 - (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\drivers\netBT.sys [261632] =>.Microsoft Corporation
[MD5.47B2D0B31BDC3EBE6090228E2BA3764D] - 15/05/2016 - (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\Windows\System32\drivers\ntfs.sys [1684416] =>.Microsoft Windows®
[MD5.0086431C29C35BE1DBC43F52CC273887] - 14/07/2009 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\Windows\System32\drivers\Parport.sys [97280] =>.Microsoft Corporation
[MD5.471815800AE33E6F1C32FB1B97C490CA] - 21/11/2010 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\drivers\Rasl2tp.sys [129536] =>.Microsoft Corporation
[MD5.1B6163C503398B23FF8B939C67747683] - 21/11/2010 - (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\Windows\System32\drivers\rdpdr.sys [165888] =>.Microsoft Corporation
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - 14/07/2009 - (.Microsoft Corporation - SMB Transport driver.) -- C:\Windows\System32\drivers\smb.sys [93184] =>.Microsoft Corporation
[MD5.AA77EB517D2F07A947294F260E3ACA83] - 15/05/2016 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\drivers\tdx.sys [118272] =>.Microsoft Corporation
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - 21/11/2010 - (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\Windows\System32\drivers\volsnap.sys [295808] =>.Microsoft Windows®
---\\ Liste des services NT non Microsoft et non désactivés (14) - 3s
O23 - Service: Arp Intelligent Protection Service (AIPS) . (.Arcai.com - Arp Intelligent Protection Service.) - C:\Program Files (x86)\netcut\services\aips.exe =>.arcai.com
O23 - Service: Kaspersky Anti-Virus Service (AVP) . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe =>.Kaspersky Lab®
O23 - Service: Digital Wave Update Service (DigitalWave.Update.Service) . (.Digital Wave Ltd. - Digital Wave Update Service.) - C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe =>.Digital Wave Ltd®
O23 - Service: Intel Bluetooth Service (ibtsiva) . (...) - C:\Windows\System32\ibtsiva (.not file.) =>.Intel Corporation
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) . (.Intel Corporation - igfxCUIService Module.) - C:\Windows\System32\igfxCUIService.exe =>.Intel Corporation
O23 - Service: Meditel Imola Modem Device Helper (Meditel Imola Modem Device Helper) . (...) - C:\Program Files (x86)\HSPA USB MODEM\BackgroundService\ServiceManager.exe
O23 - Service: OpenVPN Agent (ovpnagent) . (...) - C:\Program Files (x86)\OpenVPN Technologies\PrivateTunnel\ovpnagent.exe =>.OpenVPN Technologies, Inc.®
O23 - Service: PinnacleUpdate Service (PinnacleUpdateSvc) . (...) - C:\Program Files (x86)\PowerUp Software\Pinnacle Game Profiler\pinnacle_updater.exe (.not file.)
O23 - Service: Realtek Audio Service (RtkAudioService) . (.Realtek Semiconductor - Realtek Audio Service.) - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe =>.Realtek Semiconductor Corp.®
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe =>.Skype Software Sarl®
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) . (.Synaptics Incorporated - 64-bit Synaptics Pointing Enhance Service.) - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe =>.Synaptics Incorporated®
O23 - Service: TeamViewer 12 (TeamViewer) . (.TeamViewer GmbH - TeamViewer 12.) - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe =>.TeamViewer GmbH®
O23 - Service: Wondershare Application Framework Service (WsAppService) . (.Wondershare - Wondershare Passport.) - C:\Program Files (x86)\Wondershare\WAF\2.4.3.227\WsAppService.exe =>.Wondershare Technology Co.,Ltd®
O23 - Service: Wondershare Driver Install Service (WsDrvInst) . (...) - C:\Program Files (x86)\Wondershare\dr.fone toolkit for Android\Library\DriverInstaller\DriverInstall.exe (.not file.)
---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (16) - 19s
SS - Demand [14/09/2017] [ 272384] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe =>.Adobe Systems Incorporated®
SR - Auto [28/07/2011] [ 262144] Arp Intelligent Protection Service (AIPS) . (.Arcai.com.) - C:\Program Files (x86)\netcut\services\aips.exe =>.arcai.com
SR - Auto [04/04/2017] [ 356128] Kaspersky Anti-Virus Service (AVP) . (.Kaspersky Lab ZAO.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe =>.Kaspersky Lab®
SS - Demand [02/05/2017] [ 387128] BlueStacks Android Service (BstHdAndroidSvc) . (.BlueStack Systems, Inc..) - C:\Program Files (x86)\BlueStacks\HD-Service.exe =>.BlueStack Systems, Inc.®
SS - Demand [02/05/2017] [ 369720] BlueStacks Log Rotator Service (BstHdLogRotatorSvc) . (.BlueStack Systems, Inc..) - C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe =>.BlueStack Systems, Inc.®
SS - Demand [02/05/2017] [ 406584] BlueStacks Plus Android Service (BstHdPlusAndroidSvc) . (.BlueStack Systems, Inc..) - C:\Program Files (x86)\BlueStacks\HD-Plus-Service.exe =>.BlueStack Systems, Inc.®
SS - Demand [09/08/2015] [ 288688] Intel(R) Content Protection HECI Service (cphs) . (.Intel Corporation.) - C:\Windows\SysWOW64\IntelCpHeciSvc.exe =>.Intel Corporation - pGFX®
SR - Auto [14/07/2017] [ 440808] Digital Wave Update Service (DigitalWave.Update.Service) . (.Digital Wave Ltd..) - C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe =>.Digital Wave Ltd®
SR - Auto [09/08/2015] [ 355232] Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) . (.Intel Corporation.) - C:\Windows\System32\igfxCUIService.exe =>.Intel Corporation - pGFX®
SR - Auto [20/06/2011] [ 49752] Meditel Imola Modem Device Helper (Meditel Imola Modem Device Helper) . (...) - C:\Program Files (x86)\HSPA USB MODEM\BackgroundService\ServiceManager.exe
SR - Auto [29/08/2016] [ 949480] OpenVPN Agent (ovpnagent) . (...) - C:\Program Files (x86)\OpenVPN Technologies\PrivateTunnel\ovpnagent.exe =>.OpenVPN Technologies, Inc.®
SR - Auto [29/06/2017] [ 324608] Realtek Audio Service (RtkAudioService) . (.Realtek Semiconductor.) - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe =>.Realtek Semiconductor Corp.®
SS - Auto [05/04/2017] [ 317400] Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe =>.Skype Software Sarl®
SR - Auto [05/04/2017] [ 317400] SynTPEnh Caller Service (SynTPEnhService) . (.Synaptics Incorporated.) - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe =>.Synaptics Incorporated®
SR - Auto [05/04/2017] [ 317400] TeamViewer 12 (TeamViewer) . (.TeamViewer GmbH.) - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe =>.TeamViewer GmbH®
SS - Auto [05/04/2017] [ 317400] Wondershare Application Framework Service (WsAppService) . (.Wondershare.) - C:\Program Files (x86)\Wondershare\WAF\2.4.3.227\WsAppService.exe =>.Wondershare Technology Co.,Ltd®
---\\ Tâches planifiées en automatique (Registre) (61) - 5s
O38 - TASK: {00AF9B66-8FBE-43AC-A817-FFAF6B2B1E2B} [64Bits][\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector] - (.Microsoft Corporation - Module de diagnostics des erreurs de disque.) -- C:\Windows\System32\dfdts.dll [45568] =>.Microsoft Corporation
O38 - TASK: {044A6734-E90E-4F8F-B357-B2DC8AB3B5EC} [64Bits][\Microsoft\Windows\Time Synchronization\SynchronizeTime] - (...) -- w32time task_started [0]
O38 - TASK: {088482FA-65B8-4E17-9ABF-1DCD48E8D373} [64Bits][\Microsoft\Windows\Tcpip\IpAddressConflict1] - (.Microsoft Corporation - API cliente de cadre de Diagnostic réseau.) -- C:\Windows\System32\ndfapi.dll [238592] =>.Microsoft Corporation
O38 - TASK: {09F06BFE-A3C8-40E3-846A-6E6F4000C238} [64Bits][\Microsoft\Windows\Tcpip\IpAddressConflict2] - (.Microsoft Corporation - API cliente de cadre de Diagnostic réseau.) -- C:\Windows\System32\ndfapi.dll [238592] =>.Microsoft Corporation
O38 - TASK: {195A0EAE-DEDE-4F64-85F9-A055580D05BD} [64Bits][\Microsoft\Windows\Media Center\ConfigureInternetTimeService] - (.Microsoft Corporation - Application d’inscription de périphérique d.) -- C:\Windows\ehome\ehPrivJob.exe [295936] =>.Microsoft Corporation
O38 - TASK: {1E9EEB80-3A18-4401-B230-C8913B03BB02} [64Bits][\AceUtilsSkipUAC] - (.Acelogix Software - Ace Utilities.) -- C:\Program Files\Ace Utilities\au.exe [7528440] {6A7AED7950677809783F1C26D8D65CC6}
O38 - TASK: {20E8C404-4C44-494E-990B-83F6776ADE0B} [64Bits][\Opera scheduled Autoupdate 1488955737] - (.Opera Software - Opera Internet Browser.) -- C:\Users\Youss\AppData\Local\Programs\Opera\launcher.exe [1221720] =>.Opera Software AS®
O38 - TASK: {273CCC4C-A9B1-408D-A7E1-8AD72F7FF642} [64Bits][\Opera scheduled Autoupdate 1488955240] - (.Opera Software - Opera Internet Browser.) -- C:\Users\Youss\AppData\Local\Programs\Opera\launcher.exe [1221720] =>.Opera Software AS®
O38 - TASK: {2806CEF2-E20E-4E76-9446-29406AEF4B97} [64Bits][\Microsoft\Windows\Media Center\PvrRecoveryTask] - (.Microsoft Corporation - Gestionnaire de mises à jour du magasin Win.) -- C:\Windows\ehome\mcupdate.exe [198656] =>.Microsoft Corporation
O38 - TASK: {2E2A33C5-97BA-4913-A89B-C5351E36214A} [64Bits][\Microsoft\Windows\Media Center\RegisterSearch] - (.Microsoft Corporation - Application d’inscription de périphérique d.) -- C:\Windows\ehome\ehPrivJob.exe [295936] =>.Microsoft Corporation
O38 - TASK: {2F57269B-1E09-4E2D-AB1E-B0FDAC7D279C} [64Bits][\Microsoft\Windows\WindowsBackup\ConfigNotification] - (.Microsoft Corporation - Sauvegarde Microsoft® Windows.) -- C:\Windows\System32\sdclt.exe [1264640] =>.Microsoft Corporation
O38 - TASK: {35533E24-631A-4CB5-900C-2B3E5CED27AC} [64Bits][\Adobe Flash Player PPAPI Notifier] - (.Adobe Systems Incorporated - Adobe® Flash® Player Installer/Uninstaller.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_27_0_0_130_pepper.exe [1286144] =>.Adobe Systems Incorporated®
O38 - TASK: {3CFAD6CF-AD52-493F-899D-A81FE09CDE54} [64Bits][\Microsoft\Windows Defender\MP Scheduled Scan] - (.Microsoft Corporation - Microsoft Malware Protection Command Line U.) -- c:\program files\windows defender\MpCmdRun.exe [190976] =>.Microsoft Corporation
O38 - TASK: {44E0792F-B4EB-4BC4-9E1C-5CD6833137A2} [64Bits][\Microsoft\Windows\Media Center\OCURDiscovery] - (.Microsoft Corporation - Application d’inscription de périphérique d.) -- C:\Windows\ehome\ehPrivJob.exe [295936] =>.Microsoft Corporation
O38 - TASK: {5A40E926-9E86-4B89-9CFD-B12311724371} [64Bits][\Microsoft\Windows\UPnP\UPnPHostConfig] - (.Microsoft Corporation - Outil facilitant le développement de servic.) -- C:\Windows\System32\sc.exe [45056] =>.Microsoft Corporation
O38 - TASK: {5C0AEEEA-C154-45BE-8499-BEA5F11BAFF6} [64Bits][\Microsoft\Windows\Defrag\ScheduledDefrag] - (.Microsoft Corp. - Module de défragmenteur de disque.) -- C:\Windows\system32\defrag.exe [183296] =>.Microsoft Corp.
O38 - TASK: {5DDE3967-6103-4DC1-910B-871872A2A28B} [64Bits][\WPD\SqmUpload_S-1-5-21-3773301370-269709488-2435709199-1000] - (.Microsoft Corporation - Composants API de l’appareil mobile Windows.) -- C:\Windows\System32\portabledeviceapi.dll [758272] =>.Microsoft Corporation
O38 - TASK: {6D2F2CC5-B207-4B2F-860E-8DD25EAE4D2F} [64Bits][\Microsoft\Windows\Media Center\ehDRMInit] - (.Microsoft Corporation - Application d’inscription de périphérique d.) -- C:\Windows\ehome\ehPrivJob.exe [295936] =>.Microsoft Corporation
O38 - TASK: {6E2468B7-15A8-403C-9168-BCF44F031F6A} [64Bits][\Microsoft\Windows\Media Center\PBDADiscovery] - (.Microsoft Corporation - Application d’inscription de périphérique d.) -- C:\Windows\ehome\ehPrivJob.exe [295936] =>.Microsoft Corporation
O38 - TASK: {6E3021E8-C492-4837-BFDD-75D3EA8A93C1} [64Bits][\Microsoft\Windows\Media Center\PBDADiscoveryW1] - (.Microsoft Corporation - Application d’inscription de périphérique d.) -- C:\Windows\ehome\ehPrivJob.exe [295936] =>.Microsoft Corporation
O38 - TASK: {6E62C39D-8C7B-4347-8847-06560DF2BFED} [64Bits][\Microsoft\Windows\Media Center\InstallPlayReady] - (.Microsoft Corporation - Application d’inscription de périphérique d.) -- C:\Windows\ehome\ehPrivJob.exe [295936] =>.Microsoft Corporation
O38 - TASK: {716D761C-CFF7-434C-8E94-9B45BE833B65} [64Bits][\Microsoft\Windows\Media Center\MediaCenterRecoveryTask] - (.Microsoft Corporation - Gestionnaire de mises à jour du magasin Win.) -- C:\Windows\ehome\mcupdate.exe [198656] =>.Microsoft Corporation
O38 - TASK: {72DB7465-BC54-491B-A92A-4637A28C9BBF} [64Bits][\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck] - (.Microsoft Corporation - AppID Certificate Store Verification Task.) -- C:\Windows\system32\appidcertstorecheck.exe [17920] =>.Microsoft Corporation
O38 - TASK: {753C47AE-EC5E-44B3-95A9-2C8E553F0E39} [64Bits][\Microsoft\Windows\Windows Media Sharing\UpdateLibrary] - (.Microsoft Corporation - Application de configuration du service Par.) -- C:\Program Files\Windows Media Player\wmpnscfg.exe [70656] =>.Microsoft Corporation
O38 - TASK: {7F492256-96EF-4809-95E6-56F4F37C97C8} [64Bits][\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask] - (.Microsoft Corporation - Gestionnaire de mises à jour du magasin Win.) -- C:\Windows\ehome\mcupdate.exe [198656] =>.Microsoft Corporation
O38 - TASK: {81540B9F-B5BF-47EB-9C95-BE195BF2C664} [64Bits][\Microsoft\Windows\NetTrace\GatherNetworkInfo] - (.Microsoft Corporation - .) -- C:\Windows\system32\gatherNetworkInfo.vbs [40552] =>.Microsoft Corporation
O38 - TASK: {90F9A2F3-B25F-4FB4-A403-13064B812F69} [64Bits][\{8E78500A-8E32-4FE0-990F-6E0F3BE38267}] - (...) -- C:\Program Files (x86)\brizMP3split\unins000.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {97659AE0-B74D-4B87-BC8C-962F9C494212} [64Bits][\Adobe Flash Player Updater] - (.Adobe Systems Incorporated - Adobe® Flash® Player Update Service 27.0 r0.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [272384] =>.Adobe Systems Incorporated®
O38 - TASK: {994C86AD-A929-4B2C-88A0-4E25A107A029} [64Bits][\Microsoft\Windows\SystemRestore\SR] - (.Microsoft Corporation - Bibliothèque de configuration de la protect.) -- C:\Windows\System32\srrstr.dll [270848] =>.Microsoft Corporation
O38 - TASK: {9972B67D-0E9D-4300-8A71-4B605B372024} [64Bits][\OfficeSoftwareProtectionPlatform\SvcRestartTask] - (...) -- osppsvc [0]
O38 - TASK: {9CB870E3-6CC1-445F-A8FE-086F1B302DF9} [64Bits][\Microsoft\Windows\MUI\Mcbuilder] - (.Microsoft Corporation - Resource cache builder tool.) -- C:\Windows\System32\mcbuilder.exe [272896] =>.Microsoft Corporation
O38 - TASK: {9D9DC9F3-CB9E-4C5E-B391-86C6F7152BD5} [64Bits][\Microsoft\Windows\Media Center\OCURActivate] - (.Microsoft Corporation - Application d’inscription de périphérique d.) -- C:\Windows\ehome\ehPrivJob.exe [295936] =>.Microsoft Corporation
O38 - TASK: {A48CABBF-24C8-4B87-B00F-9261807C3B43} [64Bits][\Microsoft\Windows\AppID\PolicyConverter] - (.Microsoft Corporation - AppID Policy Converter Task.) -- C:\Windows\system32\appidpolicyconverter.exe [148480] =>.Microsoft Corporation
O38 - TASK: {A6AF9377-77CE-47AB-AD7D-EC32CAD0C82D} [64Bits][\Microsoft\Windows\Location\Notifications] - (.Microsoft Corporation - Activité de la localisation.) -- C:\Windows\System32\LocationNotifications.exe [90112] =>.Microsoft Corporation
O38 - TASK: {A8DA5B58-4CDC-4EFC-A4A8-75292BB226EF} [64Bits][\Driver Booster SkipUAC (Youss)] - (...) -- C:\Program Files (x86)\IObit\Driver Booster\4.0.4\DriverBooster.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {AC4E5ACF-89F7-4220-BA21-81EE183975E2} [64Bits][\Microsoft\Windows\Application Experience\AitAgent] - (...) -- aitagent [0]
O38 - TASK: {B2C9169D-E1A0-470A-A0CA-0558D38D4462} [64Bits][\Microsoft\Windows\Media Center\DispatchRecoveryTasks] - (.Microsoft Corporation - Application d’inscription de périphérique d.) -- C:\Windows\ehome\ehPrivJob.exe [295936] =>.Microsoft Corporation
O38 - TASK: {C016366B-7126-46CA-B36B-592A3D95A60B} [64Bits][\Microsoft\Windows\Customer Experience Improvement Program\Consolidator] - (.Microsoft Corporation - Consolidateur SQM Windows.) -- C:\Windows\System32\wsqmcons.exe [293888] =>.Microsoft Corporation
O38 - TASK: {C2FEFB0C-33B7-4E21-AD61-E4D50351A60E} [64Bits][\Microsoft\Windows\Media Center\UpdateRecordPath] - (.Microsoft Corporation - Application d’inscription de périphérique d.) -- C:\Windows\ehome\ehPrivJob.exe [295936] =>.Microsoft Corporation
O38 - TASK: {C6274E53-0E85-4FFF-B09B-FCB521CC9981} [64Bits][\Microsoft\Windows\Media Center\mcupdate] - (...) -- C:\Windows\ehome\mcupdate (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {C6AEE372-6EFE-4C0E-9A60-FF4F134FD157} [64Bits][\Microsoft\Windows\MUI\Lpksetup] - (.Microsoft Corporation - Programme d’installation des packs de langu.) -- C:\Windows\System32\lpksetup.exe [653312] =>.Microsoft Corporation
O38 - TASK: {C779C46F-9AC5-48A1-815F-DCE36BE433E4} [64Bits][\Microsoft\Windows\Media Center\StartRecording] - (...) -- C:\Windows\ehome\ehrec (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {C8F72995-A170-4284-85EC-A62AC70EAC20} [64Bits][\Microsoft\Windows\Media Center\PeriodicScanRetry] - (.Microsoft Corporation - Gestionnaire de mises à jour du magasin Win.) -- C:\Windows\ehome\MCUpdate.exe [198656] =>.Microsoft Corporation
O38 - TASK: {CA2F60DE-E813-4FB8-952B-C052E8CC50A4} [64Bits][\Microsoft\Windows\Media Center\RecordingRestart] - (...) -- C:\Windows\ehome\ehrec (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {CB3D64BF-C0C9-45FF-BFB0-FF1A8F680186} [64Bits][\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask] - (.Microsoft Corporation - Serveur COM d’assistance à distance Windows.) -- C:\Windows\System32\raserver.exe [125952] =>.Microsoft Corporation
O38 - TASK: {D0250F3F-6480-484F-B719-42F659AC64D5} [64Bits][\Microsoft\Windows\Windows Error Reporting\QueueReporting] - (.Microsoft Corporation - Windows Problem Reporting.) -- C:\Windows\system32\wermgr.exe [50688] =>.Microsoft Corporation
O38 - TASK: {D02B6C15-9B4A-4BF4-BF1D-04789D9003E8} [64Bits][\Microsoft\Windows\Media Center\ReindexSearchRoot] - (.Microsoft Corporation - Application d’inscription de périphérique d.) -- C:\Windows\ehome\ehPrivJob.exe [295936] =>.Microsoft Corporation
O38 - TASK: {D201F291-C43E-4A28-85C0-8FC5A6CAE21E} [64Bits][\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver] - (.Microsoft Corporation - Outil de résolution des défaillances disque.) -- C:\Windows\system32\DFDWiz.exe [79360] =>.Microsoft Corporation
O38 - TASK: {D383C619-D06E-42B7-BFFD-95E39050514C} [64Bits][\{01247E7C-60B3-4D65-AB82-5D7AC432DD00}] - (...) -- C:\Program Files (x86)\ARAR\UNWISE.EXE (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {D6C87927-171D-4B23-8B43-2BC7884E5154} [64Bits][\Microsoft\Windows\TabletPC\InputPersonalization] - (...) -- %CommonProgramFiles%\Microsoft Shared\Ink\InputPersonalization.exe [0]
O38 - TASK: {D7B6E81D-3CF4-432C-84D2-24213F4316E6} [64Bits][\Microsoft\Windows\Autochk\Proxy] - (.Microsoft Corporation - DLL de proxy Autochk.) -- C:\Windows\System32\acproxy.dll [11264] =>.Microsoft Corporation
O38 - TASK: {DBB37053-DE10-42CA-AF7E-EBA29E313D3C} [64Bits][\Microsoft\Windows\Media Center\ActivateWindowsSearch] - (.Microsoft Corporation - Application d’inscription de périphérique d.) -- C:\Windows\ehome\ehPrivJob.exe [295936] =>.Microsoft Corporation
O38 - TASK: {DC40F54A-272C-4DF7-B1AD-633B83F2F027} [64Bits][\Microsoft\Windows\Media Center\SqlLiteRecoveryTask] - (.Microsoft Corporation - Gestionnaire de mises à jour du magasin Win.) -- C:\Windows\ehome\mcupdate.exe [198656] =>.Microsoft Corporation
O38 - TASK: {DD9F510C-95F4-499A-90C8-BAC5BC372FF4} [64Bits][\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask] - (.Microsoft Corporation - Outil facilitant le développement de servic.) -- C:\Windows\System32\sc.exe [45056] =>.Microsoft Corporation
O38 - TASK: {E22A8667-F75B-4BA9-BA46-067ED4429DE8} [64Bits][\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange] - (.Microsoft Corporation - Moteur de filtrage de base.) -- C:\Windows\System32\bfe.dll [705024] =>.Microsoft Corporation
O38 - TASK: {E2D4E7C5-8572-4E25-A714-3D004871CF9A} [64Bits][\Microsoft\Windows\Media Center\PBDADiscoveryW2] - (.Microsoft Corporation - Application d’inscription de périphérique d.) -- C:\Windows\ehome\ehPrivJob.exe [295936] =>.Microsoft Corporation
O38 - TASK: {E3163C33-301D-4730-A266-5518C5ED3967} [64Bits][\Microsoft\Windows\Bluetooth\UninstallDeviceTask] - (.Microsoft Corporation - Tâche de désinstallation du périphérique Bl.) -- C:\Windows\System32\BthUdTask.exe [36864] =>.Microsoft Corporation
O38 - TASK: {E31B2458-3E49-4B4B-9B54-97146EFB2DAF} [64Bits][\DRPNPS] - (...) -- SCHTASKS [0]
O38 - TASK: {EB02381F-D652-4B1C-894A-712498C62C51} [64Bits][\Microsoft\Windows\MUI\LPRemove] - (.Microsoft Corporation - MUI Language pack cleanup.) -- C:\Windows\system32\lpremove.exe [71168] =>.Microsoft Corporation
O38 - TASK: {FA1C17CA-BDD8-40B4-82BE-CC49C4F8EA45} [64Bits][\Microsoft\Windows\Media Center\PvrScheduleTask] - (.Microsoft Corporation - Gestionnaire de mises à jour du magasin Win.) -- C:\Windows\ehome\mcupdate.exe [198656] =>.Microsoft Corporation
O38 - TASK: {FB3C354D-297A-4EB2-9B58-090F6361906B} [64Bits][\Microsoft\Windows\Power Efficiency Diagnostics\AnalyzeSystem] - (.Microsoft Corporation - Outil de ligne de commande des paramètres d.) -- C:\Windows\System32\powercfg.exe [71168] =>.Microsoft Corporation
---\\ Applications lancées au démarrage du système (9) - 1s
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe =>.Realtek Semiconductor Corp.®
O4 - HKLM\..\Run: [RtHDVBg] . (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe =>.Realtek Semiconductor Corp.®
O4 - HKLM\..\Run: [RtHDVBg_PushButton] . (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe =>.Realtek Semiconductor Corp.®
O4 - HKLM\..\RunOnce: [!MOF64] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\System32\cmd.exe =>.Microsoft Corporation
O4 - HKLM\..\Wow6432Node\Run: [AVP] . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe =>.Kaspersky Lab®
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
---\\ Google Chrome, Démarrage,Recherche,Extensions (23) - 0s
G0 - GCSP: Preferences [User Data\Default][HomePage] http://apis.google.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://blog.malwarebytes.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://cleanserp.net
G0 - GCSP: Preferences [User Data\Default][HomePage] http://fonts.googleapis.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://id.google.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://ssl.gstatic.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://startme.online
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.gstatic.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.malwarebytes.com
G2 - GCE: Preference [User Data\Default] [aapocclcgogkmnckokdopfmhonfmgoek] =>.Google Inc. {Slides}
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] =>.Google Inc. {Docs}
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] http://drive.google.com/ =>.Google Inc. {Drive}
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] http://www.youtube.com =>.Youtube {Youtube}
G2 - GCE: Preference [User Data\Default] [dchlnpcodkpfdpacogkljefecpegganj]
G2 - GCE: Preference [User Data\Default] [felcaaldnbdncclmgdcncolpebgiejap] =>.Google Inc. {Sheets}
G2 - GCE: Preference [User Data\Default] [ghbmnnjooekpmoecnnnilnnbdlolhkhi] =>.Google Inc. {Docs hors connexion}
G2 - GCE: Preference [User Data\Default] [lpoimibckejjdjcfbdnajaicnklhfplh]
G2 - GCE: Preference [User Data\Default] [ngpampappnmepgilojfohadhhmbhlaek] IDM Integration Module =>.IDM Computer Solutions, Inc.
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] =>.Google Inc. {Wallet}
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] http://mail.google.com/ =>.Google Inc. {Gmail}
G2 - GCE: Preference [User Data\Default] [pjldcfjmnllhmgjclecdnfampinooman]
G2 - GCE: Preference [User Data\Default] [pkedcjkdefgpdelpbcmbmeomcjbeemfm] Chrome Media Router =>.Google Inc.
---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (4) - 4s
P2 - EXT FILE: (.Autofill Forms - Fill out web forms automatically.) -- C:\Users\Youss\AppData\Roaming\Mozilla\Firefox\Profiles\n0hm0r5l.default-1499323577382\extensions\autofillForms@blueimp.net.xpi
P2 - EXT FILE: (.Multifox - .) -- C:\Users\Youss\AppData\Roaming\Mozilla\Firefox\Profiles\n0hm0r5l.default-1499323577382\extensions\multifox@hultmann.xpi =>.Multifox
P2 - EXT: (.Eugene G. Suslikov - FireShot.) -- C:\Users\Youss\AppData\Roaming\Mozilla\Firefox\Profiles\n0hm0r5l.default-1499323577382\extensions\{0b457cAA-602d-484a-8fe7-c1d894a011ba} =>.Eugene G. Suslikov
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_27_0_0_130.dll =>.Adobe Systems Incorporated
---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (17) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = preserve =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R1 - HKEY_USERS\S-1-5-21-3773301370-269709488-2435709199-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = preserve =>.Microsoft Corporation
R3 - URLSearchHook: (no name)[HKCU] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (11.00.9600.18523 (winblue_ltsb.161022-0600)) -- C:\Windows\SysWOW64\ieframe.dll =>.Microsoft Corporation
---\\ Internet Explorer,Proxy Management (6) - 0s
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
R5 - HKLM\SYSTEM\CurrentControlSet\services\NlaSvc\Parameters\Internet\ManualProxies [] =>.Microsoft
---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=userinit.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: VMApplet=C:\Windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.) =>.Microsoft Corporation
---\\ Etude du fichier hosts (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (29)
---\\ Browser Helper Object de navigateur (BHO) (5) - 1s
O2 - BHO: IDM Helper [64Bits] - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Internet Download Manager, Tonec Inc. - IDM Browser Helper Object.) -- C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll =>.Tonec Inc.®
O2 - BHO: ContentBlockerBrowserHelperObject [64Bits] - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} . (.Kaspersky Lab ZAO - Content Blocker Plugin.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\ContentBlocker\ie_content_blocker_plugin.dll =>.Kaspersky Lab®
O2 - BHO: VirtualKeyboardBrowserHelperObject [64Bits] - {73455575-E40C-433C-9784-C78DC7761455} . (.Kaspersky Lab ZAO - Virtual Keyboard Plugin.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll =>.Kaspersky Lab®
O2 - BHO: Safe Money Plugin [64Bits] - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} . (.Kaspersky Lab ZAO - Safe Money Plugin.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\OnlineBanking\online_banking_bho.dll =>.Kaspersky Lab®
O2 - BHO: link filter bho [64Bits] - {E33CF602-D945-461A-83F0-819F76A199F8} . (.Kaspersky Lab ZAO - URL Advisor Plugin.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\UrlAdvisor\klwtbbho.dll =>.Kaspersky Lab®
---\\ Raccourcis Global Startup (109) - 40s
O4 - GS\Desktop [Administrateur]: 0.lnk . (...) D:\الربح من الأنترنيت\الفايس بوك\الفيسبوكات الخاصة ب يوسف\0
O4 - GS\Desktop [Administrateur]: Absolute MP3 Splitter.lnk . (...) C:\Program Files (x86)\Absolute MP3 Splitter\Absolute MP3 Splitter.exe
O4 - GS\Desktop [Administrateur]: Ace Utilities.lnk . (.Acelogix Software - .) C:\Program Files (x86)\Ace Utilities\aulaunch.exe
O4 - GS\Desktop [Administrateur]: Calculator.lnk . (.Microsoft Corporation - Calculatrice de Windows.) C:\Windows\system32\calc.exe =>.Microsoft Corporation
O4 - GS\Desktop [Administrateur]: Camtasia 9.lnk . (...) C:\Windows\Installer\{8AD50DED-EE14-4FEC-BC2C-F229C3BEFE58}\CamtasiaIcons.exe
O4 - GS\Desktop [Administrateur]: DFX.lnk . (...) D:\برامج\التشغيل\DFX.Audio.Enhancer.12.023\Crack\DFX.exe
O4 - GS\Desktop [Administrateur]: fsquirt.lnk . (.Microsoft Corporation - .) C:\Windows\System32\DriverStore\FileRepository\bth.inf_amd64_neutral_de0494b6391d872c\fsquirt.exe =>.Microsoft Corporation
O4 - GS\Desktop [Administrateur]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Users\Youss\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Desktop [Administrateur]: HandBrake.lnk . (.HandBrake Team - .) C:\Program Files (x86)\HandBrake\HandBrake.exe =>.HandBrake Team
O4 - GS\Desktop [Administrateur]: ID.lnk . (.http://fast-likers.com - Forged identity cards BY MrZaghar.) D:\الربح من الأنترنيت\صناعة بطاقة الفيسبوك\ID.exe
O4 - GS\Desktop [Administrateur]: Images.lnk . (...) C:\Users\Youss\AppData\Roaming\Microsoft\Windows\Libraries\Pictures.library-ms =>.Microsoft Corporation
O4 - GS\Desktop [Administrateur]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [Administrateur]: Kaspersky Internet Security 2013.lnk . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus Launcher.) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\starter_avp.exe =>.Kaspersky Lab®
O4 - GS\Desktop [Administrateur]: Mozilla Firefox.lnk . (.Mozilla Corporation - .) C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation
O4 - GS\Desktop [Administrateur]: PES2017.lnk . (.Konami Digital Entertainment Co., Ltd. - Pro Evolution Soccer 2017.) D:\ألعاب\Pro Evolution Soccer 2017\PES2017.exe =>.Konami Digital Entertainment Co., Ltd.
O4 - GS\Desktop [Administrateur]: TapinRadio.lnk . (.Raimersoft - TapinRadio.) C:\Program Files\TapinRadio\TapinRadio.exe =>.Raimersoft
O4 - GS\Desktop [Administrateur]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Youss\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Desktop [Administrateur]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\Youss\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - GS\Desktop [Administrateur]: افلام.lnk . (...) D:\صور\افلام
O4 - GS\Quicklaunch [Administrateur]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Users\Youss\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Administrateur]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [Administrateur]: Opera.lnk . (.Opera Software - Opera Internet Browser.) C:\Users\Youss\AppData\Local\Programs\Opera\launcher.exe =>.Opera Software AS®
O4 - GS\sendTo [Administrateur]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Administrateur]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe /sendto: =>.Skype Software Sarl®
O4 - GS\sendTo [Administrateur]: TeamViewer.lnk . (.TeamViewer GmbH - TeamViewer 12.) C:\Program Files (x86)\TeamViewer\TeamViewer.exe --sendto =>.TeamViewer GmbH®
O4 - GS\sendTo [Administrateur]: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Administrateur]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Users\Youss\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [Administrateur]: Paint.lnk . (.Microsoft Corporation - Paint.) C:\Windows\system32\mspaint.exe =>.Microsoft Corporation
O4 - GS\Programs [Administrateur]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Users\Youss\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Programs [Administrateur]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [Youss]: 0.lnk . (...) D:\الربح من الأنترنيت\الفايس بوك\الفيسبوكات الخاصة ب يوسف\0
O4 - GS\Desktop [Youss]: Absolute MP3 Splitter.lnk . (...) C:\Program Files (x86)\Absolute MP3 Splitter\Absolute MP3 Splitter.exe
O4 - GS\Desktop [Youss]: Ace Utilities.lnk . (.Acelogix Software - .) C:\Program Files (x86)\Ace Utilities\aulaunch.exe
O4 - GS\Desktop [Youss]: Calculator.lnk . (.Microsoft Corporation - Calculatrice de Windows.) C:\Windows\system32\calc.exe =>.Microsoft Corporation
O4 - GS\Desktop [Youss]: Camtasia 9.lnk . (...) C:\Windows\Installer\{8AD50DED-EE14-4FEC-BC2C-F229C3BEFE58}\CamtasiaIcons.exe
O4 - GS\Desktop [Youss]: DFX.lnk . (...) D:\برامج\التشغيل\DFX.Audio.Enhancer.12.023\Crack\DFX.exe
O4 - GS\Desktop [Youss]: fsquirt.lnk . (.Microsoft Corporation - .) C:\Windows\System32\DriverStore\FileRepository\bth.inf_amd64_neutral_de0494b6391d872c\fsquirt.exe =>.Microsoft Corporation
O4 - GS\Desktop [Youss]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Users\Youss\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Desktop [Youss]: HandBrake.lnk . (.HandBrake Team - .) C:\Program Files (x86)\HandBrake\HandBrake.exe =>.HandBrake Team
O4 - GS\Desktop [Youss]: ID.lnk . (.http://fast-likers.com - Forged identity cards BY MrZaghar.) D:\الربح من الأنترنيت\صناعة بطاقة الفيسبوك\ID.exe
O4 - GS\Desktop [Youss]: Images.lnk . (...) C:\Users\Youss\AppData\Roaming\Microsoft\Windows\Libraries\Pictures.library-ms =>.Microsoft Corporation
O4 - GS\Desktop [Youss]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [Youss]: Kaspersky Internet Security 2013.lnk . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus Launcher.) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\starter_avp.exe =>.Kaspersky Lab®
O4 - GS\Desktop [Youss]: Mozilla Firefox.lnk . (.Mozilla Corporation - .) C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation
O4 - GS\Desktop [Youss]: PES2017.lnk . (.Konami Digital Entertainment Co., Ltd. - Pro Evolution Soccer 2017.) D:\ألعاب\Pro Evolution Soccer 2017\PES2017.exe =>.Konami Digital Entertainment Co., Ltd.
O4 - GS\Desktop [Youss]: TapinRadio.lnk . (.Raimersoft - TapinRadio.) C:\Program Files\TapinRadio\TapinRadio.exe =>.Raimersoft
O4 - GS\Desktop [Youss]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Youss\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Desktop [Youss]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\Youss\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - GS\Desktop [Youss]: افلام.lnk . (...) D:\صور\افلام
O4 - GS\Quicklaunch [Youss]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Users\Youss\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Youss]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [Youss]: Opera.lnk . (.Opera Software - Opera Internet Browser.) C:\Users\Youss\AppData\Local\Programs\Opera\launcher.exe =>.Opera Software AS®
O4 - GS\sendTo [Youss]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Youss]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe /sendto: =>.Skype Software Sarl®
O4 - GS\sendTo [Youss]: TeamViewer.lnk . (.TeamViewer GmbH - TeamViewer 12.) C:\Program Files (x86)\TeamViewer\TeamViewer.exe --sendto =>.TeamViewer GmbH®
O4 - GS\sendTo [Youss]: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Youss]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Users\Youss\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [Youss]: Paint.lnk . (.Microsoft Corporation - Paint.) C:\Windows\system32\mspaint.exe =>.Microsoft Corporation
O4 - GS\Programs [Youss]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Users\Youss\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Programs [Youss]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\CommonDesktop [Public]: Audacity.lnk . (.The Audacity Team - Audacity®, the Free, Cross-Platform Sound E.) C:\Program Files (x86)\Audacity\audacity.exe =>.The Audacity Team
O4 - GS\CommonDesktop [Public]: BlueStacks.lnk . (.BlueStack Systems, Inc. - BlueStacks App Player.) C:\Program Files (x86)\BlueStacks\BlueStacks.exe =>.BlueStack Systems, Inc.®
O4 - GS\CommonDesktop [Public]: DVDVideoSoft Free Studio.lnk . (.Digital Wave Ltd - Free Studio.) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\FreeStudioManager.exe =>.Digital Wave Ltd®
O4 - GS\CommonDesktop [Public]: HSPA USB MODEM.lnk . (...) C:\Program Files (x86)\HSPA USB MODEM\ModemApplication.exe
O4 - GS\CommonDesktop [Public]: MPC-HC x64.lnk . (.MPC-HC Team - .) C:\Program Files (x86)\MPC-HC\mpc-hc64.exe =>.MPC-HC Team
O4 - GS\CommonDesktop [Public]: OBS Studio.lnk . (...) C:\Program Files (x86)\obs-studio\bin\64bit\obs64.exe =>.Open Source Developer, Hugh Bailey®
O4 - GS\CommonDesktop [Public]: Opera.lnk . (.Opera Software - Opera Internet Browser.) C:\Users\Youss\AppData\Local\Programs\Opera\launcher.exe =>.Opera Software AS®
O4 - GS\CommonDesktop [Public]: Private Tunnel.lnk . (.OpenVPN Technologies - Private Tunnel VPN Client.) C:\Program Files (x86)\OpenVPN Technologies\PrivateTunnel\privatetunnel2.8.1.exe =>.OpenVPN Technologies, Inc.®
O4 - GS\CommonDesktop [Public]: Skype.lnk . (...) C:\Windows\Installer\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}\SkypeIcon.exe =>.Skype Technologies
O4 - GS\CommonDesktop [Public]: TeamViewer 12.lnk . (.TeamViewer GmbH - TeamViewer 12.) C:\Program Files (x86)\TeamViewer\TeamViewer.exe =>.TeamViewer GmbH®
O4 - GS\Programs [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Users\Youss\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Programs [Public]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Accessories [Public]: Command Prompt.lnk . (.Microsoft Corporation - Interpréteur de commandes Windows.) C:\Windows\system32\cmd.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) C:\Windows\system32\notepad.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe -extoff =>.Microsoft Corporation®
O4 - GS\SystemTools [Public]: Private Character Editor.lnk . (.Microsoft Corporation - Éditeur de caractères privés.) C:\Windows\system32\eudcedit.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Bluetooth File Transfer Wizard.lnk . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: displayswitch.lnk . (.Microsoft Corporation - Afficher le commutateur.) C:\Windows\system32\displayswitch.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Math Input Panel.lnk . (.Microsoft Corporation - Accessoire du panneau de saisie mathématiqu.) C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\mip.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Mobility Center.lnk . (.Microsoft Corporation - Centre de mobilité