Publicité
Publicité
Format du document : text/plain
Prévisualisation
~ ZHPDiag v2017.11.25.203 Par Nicolas Coolman (2017/11/25)
~ Démarré par Ihab (Administrator) (2017/11/26 18:02:27)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Certificate ZHPDiag: Legal
~ Etat de la version: Version KO
~ Mode: Scanner
~ Rapport: C:\Users\Omnia\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\Omnia\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Démarrage du système: Normal (Normal boot)
Windows 10 Pro N, 64-bit (Build 15063) =>.Microsoft Corporation
---\\ Navigateurs Internet (3) - 1s
~ GCIE: Google Chrome v62.0.3202.94
~ MSIE: Microsoft Edge v40
~ MSIE: Internet Explorer v11.726.15063.0
---\\ Informations sur les produits Windows (8) - 0s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
~ Windows(R) Operating System, RETAIL channel
Windows ID Activation : OK
~ Windows Partial Key : PKCKT
Windows License : OK
~ Windows Remaining Initializations Number : 1001
Windows Automatic Updates : OK
---\\ Logiciels de protection (3) - 20s
Kaspersky Internet Security v16.0.0.614 (Protection)
Kaspersky Anti-Virus v16.0.0.614 (Protection)
Windows Defender (Deactivate)
---\\ Logiciels d'optimisation (1) - 21s
~ CCleaner v5.32 (Optimize)
---\\ Surveillance de Logiciels (2) - 21s
~ Adobe Flash Player 27 PPAPI (Surveillance)
~ Adobe Acrobat Reader DC - Français (Surveillance)
---\\ Informations sur le système (6) - 0s
~ Operating System: Intel64 Family 6 Model 37 Stepping 5, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 3987.304 MB (43% free) : OK =>.RAM Value
System Restore: Activé (Enable)
System drive C: has 58 GB (58%) free of 99 GB : OK =>.Disk Space
---\\ Mode de connexion au système (3) - 0s
~ Computer Name: IHAB-PC
~ User Name: Ihab
~ Logged in as Administrator
---\\ Enumération des unités disques (2) - 0s
~ Drive C: has 58 GB free of 99 GB (System)
~ Drive D: has 160 GB free of 167 GB
---\\ Etat du Centre de Sécurité Windows (10) - 0s
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableTaskMgr: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableRegistryTools: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM64\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
---\\ Recherche particulière de fichiers génériques (25) - 5s
[MD5.01078D46C77CE0D7DC584A29062A799D] - 30/09/2017 - (.Microsoft Corporation - Explorateur Windows.) -- C:\WINDOWS\Explorer.exe [4848952] =>.Microsoft Windows®
[MD5.ECB702B8C5650381C0784F1EEABB97BC] - 18/03/2017 - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\WINDOWS\System32\rundll32.exe [68608] =>.Microsoft Corporation
[MD5.0242626678C83AE788C655C1990A3CC3] - 28/07/2017 - (.Microsoft Corporation - Application de démarrage de Windows.) -- C:\WINDOWS\System32\Wininit.exe [318232] =>.Microsoft Windows Publisher®
[MD5.B86F2476A799E044A2064D2FFD8A8877] - 02/11/2017 - (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\WINDOWS\System32\wininet.dll [3307008] =>.Microsoft Corporation
[MD5.9CDA170849A4F66F4D68B3DBB3AC8394] - 05/09/2017 - (.Microsoft Corporation - Application d’ouverture de session Windows.) -- C:\WINDOWS\System32\Winlogon.exe [706560] =>.Microsoft Corporation
[MD5.50CDF68A8EA8A2A9165CD573FA6C42D8] - 18/03/2017 - (.Microsoft Corporation - Bibliothèque de licences.) -- C:\WINDOWS\System32\sppcomapi.dll [414208] =>.Microsoft Corporation
[MD5.6AFA66A457759C1FEC29A52612A67043] - 30/09/2017 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\WINDOWS\System32\dnsapi.dll [661224] =>.Microsoft Windows®
[MD5.1F4909406532C2FFCBD3683A65F7198F] - 30/09/2017 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\WINDOWS\Syswow64\dnsapi.dll [508344] =>.Microsoft Windows®
[MD5.70E14A01193D817004C0F88E767BC59B] - 19/03/2017 - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) -- C:\WINDOWS\System32\fr-FR\user32.dll.mui [19968] =>.Microsoft Corporation
[MD5.5A6D591D56791BA63CE73FCAD60D89A1] - 05/09/2017 - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) -- C:\WINDOWS\System32\drivers\AFD.sys [610720] =>.Microsoft Windows®
[MD5.01733BEEE02E51F712330D5909BD701C] - 18/03/2017 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\WINDOWS\System32\drivers\atapi.sys [29088] =>.Microsoft Windows®
[MD5.B6E5AD7C83A5254DEE9D86023C0E5A81] - 18/03/2017 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\WINDOWS\System32\drivers\Cdfs.sys [93184] =>.Microsoft Corporation
[MD5.ABE77AD954BC3D72F559CF0C381E50BC] - 18/03/2017 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\WINDOWS\System32\drivers\Cdrom.sys [160256] =>.Microsoft Corporation
[MD5.185A4519B7764F4DEF714D890A7A9FD2] - 18/03/2017 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\WINDOWS\System32\drivers\DfsC.sys [150528] =>.Microsoft Corporation
[MD5.02B9639D9997E95CDF2F4C4F3BDCC73D] - 20/06/2017 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\WINDOWS\System32\drivers\HDAudBus.sys [86528] =>.Microsoft Corporation
[MD5.C6C8315E3262FAE460529C6DA2951682] - 18/03/2017 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\WINDOWS\System32\drivers\i8042prt.sys [115200] =>.Microsoft Corporation
[MD5.DCC05E5EAA580C97F13B434FAFACED85] - 18/03/2017 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\System32\drivers\IpNat.sys [214528] =>.Microsoft Corporation
[MD5.F2AD1B72C5A6475FB5FF332E1980DF88] - 18/03/2017 - (.Microsoft Corporation - Minirdr SMB Windows NT.) -- C:\WINDOWS\System32\drivers\MRxSmb.sys [467352] =>.Microsoft Windows®
[MD5.BAD3C424788BC071C3EC82CFCDA954D2] - 05/09/2017 - (.Microsoft Corporation - MBT Transport driver.) -- C:\WINDOWS\System32\drivers\netBT.sys [305152] =>.Microsoft Corporation
[MD5.4FB781DF7C0ED6B989F465A7886583F1] - 02/11/2017 - (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\WINDOWS\System32\drivers\ntfs.sys [2327448] =>.Microsoft Windows®
[MD5.2CC6C325B271C7CA60F374F8F868CB45] - 18/03/2017 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\WINDOWS\System32\drivers\Parport.sys [97792] =>.Microsoft Corporation
[MD5.5279EC98F6218D29EADDFECCC0D80E9A] - 18/03/2017 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [107008] =>.Microsoft Corporation
[MD5.53A01D3FDB701AC5D9DDE4140227E3D9] - 19/03/2017 - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RD.) -- C:\WINDOWS\System32\drivers\rdpdr.sys [183296] =>.Microsoft Corporation
[MD5.D74756DD1518D28A09CDA99696273FA4] - 01/08/2017 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\WINDOWS\System32\drivers\tdx.sys [119712] =>.Microsoft Windows®
[MD5.E3429DBBEA3965BB96E24B16EF4A2551] - 18/03/2017 - (.Microsoft Corporation - Volume Shadow Copy driver.) -- C:\WINDOWS\System32\drivers\volsnap.sys [397216] =>.Microsoft Windows®
---\\ Liste des services NT non Microsoft et non désactivés (17) - 7s
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated®
O23 - Service: Andrea RT Filters Service (AERTFilters) . (.Andrea Electronics Corporation - Andrea filters APO access service (64-bit).) - C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe =>.Andrea Electronics®
O23 - Service: AtherosSvc (AtherosSvc) . (.Windows (R) Win 7 DDK provider - Windows Setup API.) - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe =>.Qualcomm Atheros®
O23 - Service: Kaspersky Anti-Virus Service 16.0.0 (AVP16.0.0) . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\avp.exe =>.Kaspersky Lab®
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
O23 - Service: HWDeviceService64.exe (HWDeviceService64.exe) . (.Copyright (C) 2008 - DCSHOST.) - C:\ProgramData\DatacardService\HWDeviceService64.exe =>.HUAWEI Technologies Co., Ltd.®
O23 - Service: Internet Mobile. OUC (Internet Mobile. RunOuc) . (...) - C:\Program Files (x86)\Internet Mobile\UpdateDog\ouc.exe =>.HUAWEI Technologies Co., Ltd.®
O23 - Service: odoo-server-9.0 9.0 (odoo-server-9.0) . (...) - D:\odoo\Odoo 9.0-20160320\service\win32_service.exe
O23 - Service: PostgreSQL_For_Odoo - PostgreSQL Server 9.3 (PostgreSQL_For_Odoo) . (.PostgreSQL Global Development Group - pg_ctl - starts/stops/restarts the PostgreS.) - D:\odoo\Odoo 9.0-20160320\PostgreSQL\bin\pg_ctl.exe =>.PostgreSQL Global Development Group
O23 - Service: RealPlayer Cloud Service (RealPlayer Cloud Service) . (.RealNetworks, Inc. - RealTimes Desktop Service.) - c:\program files (x86)\Real\realplayer\RPDS\Bin\rpdsvc.exe {7975BE185DD3B5E5CB86712EAACC41DF} =>.RealNetworks, Inc.
O23 - Service: RealPlayer Update Service (RealPlayerUpdateSvc) . (.RealNetworks, Inc. - RealPlayer.) - C:\program files (x86)\real\UpdateService\RealPlayerUpdateSvc.exe {7975BE185DD3B5E5CB86712EAACC41DF} =>.RealNetworks, Inc.
O23 - Service: RealTimes Desktop Service (RealTimes Desktop Service) . (.RealNetworks, Inc. - RealTimes Desktop Service.) - c:\program files (x86)\real\realplayer\RPDS\Bin\rpdsvc.exe {7975BE185DD3B5E5CB86712EAACC41DF} =>.RealNetworks, Inc.
O23 - Service: Realtek Audio Service (RtkAudioService) . (.Realtek Semiconductor - Realtek Audio Service.) - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe =>.Realtek Semiconductor Corp.®
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe =>.Skype Software Sarl®
O23 - Service: SAMSUNG Mobile Connectivity Service (ss_conn_service) . (.DEVGURU Co., LTD. - MSS CS Connectivity Service.) - C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe =>.Samsung Electronics CO., LTD.®
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) . (.Synaptics Incorporated - 64-bit Synaptics Pointing Enhance Service.) - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe =>.Synaptics Incorporated®
O23 - Service: Wondershare Application Framework Service (WsAppService) . (.Wondershare - Wondershare Passport.) - C:\Program Files (x86)\Wondershare\WAF\2.4.3.229\WsAppService.exe =>.Wondershare Technology Co.,Ltd®
---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (21) - 124s
SR - Auto [27/09/2017] [ 83984] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated®
SS - Demand [15/11/2017] [ 272384] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe =>.Adobe Systems Incorporated®
SR - Auto [11/01/2017] [ 106944] Andrea RT Filters Service (AERTFilters) . (.Andrea Electronics Corporation.) - C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe =>.Andrea Electronics®
SR - Auto [19/11/2015] [ 323152] AtherosSvc (AtherosSvc) . (.Windows (R) Win 7 DDK provider.) - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe =>.Qualcomm Atheros®
SR - Auto [08/12/2015] [ 194000] Kaspersky Anti-Virus Service 16.0.0 (AVP16.0.0) . (.Kaspersky Lab ZAO.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\avp.exe =>.Kaspersky Lab®
SS - Auto [03/09/2016] [ 153752] Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SS - Demand [03/09/2016] [ 153752] Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SR - Auto [14/03/2011] [ 346976] HWDeviceService64.exe (HWDeviceService64.exe) . (.Copyright (C) 2008.) - C:\ProgramData\DatacardService\HWDeviceService64.exe =>.HUAWEI Technologies Co., Ltd.®
SS - Demand [03/04/2005] [ 69632] InstallDriver Table Manager (IDriverT) . (.Macrovision Corporation.) - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe =>.Macrovision Corporation
SS - Auto [04/01/2012] [ 246112] Internet Mobile. OUC (Internet Mobile. RunOuc) . (...) - C:\Program Files (x86)\Internet Mobile\UpdateDog\ouc.exe =>.HUAWEI Technologies Co., Ltd.®
SR - Auto [20/03/2016] [ 23552] odoo-server-9.0 9.0 (odoo-server-9.0) . (...) - D:\odoo\Odoo 9.0-20160320\service\win32_service.exe
SS - Auto [22/07/2014] [ 76800] PostgreSQL_For_Odoo - PostgreSQL Server 9.3 (PostgreSQL_For_Odoo) . (.PostgreSQL Global Development Group.) - D:\odoo\Odoo 9.0-20160320\PostgreSQL\bin\pg_ctl.exe =>.PostgreSQL Global Development Group
SS - Auto [16/09/2017] [ 989912] RealPlayer Cloud Service (RealPlayer Cloud Service) . (.RealNetworks, Inc..) - c:\program files (x86)\Real\realplayer\RPDS\Bin\rpdsvc.exe {7975BE185DD3B5E5CB86712EAACC41DF} =>.RealNetworks, Inc.
SR - Auto [17/08/2017] [ 37104] RealPlayer Update Service (RealPlayerUpdateSvc) . (.RealNetworks, Inc..) - C:\program files (x86)\real\UpdateService\RealPlayerUpdateSvc.exe {7975BE185DD3B5E5CB86712EAACC41DF} =>.RealNetworks, Inc.
SS - Auto [16/09/2017] [ 989912] RealTimes Desktop Service (RealTimes Desktop Service) . (.RealNetworks, Inc..) - c:\program files (x86)\real\realplayer\RPDS\Bin\rpdsvc.exe {7975BE185DD3B5E5CB86712EAACC41DF} =>.RealNetworks, Inc.
SR - Auto [11/01/2017] [ 320512] Realtek Audio Service (RtkAudioService) . (.Realtek Semiconductor.) - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe =>.Realtek Semiconductor Corp.®
SS - Auto [27/02/2017] [ 317400] Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe =>.Skype Software Sarl®
SR - Auto [27/02/2017] [ 317400] SAMSUNG Mobile Connectivity Service (ss_conn_service) . (.DEVGURU Co., LTD..) - C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe =>.Samsung Electronics CO., LTD.®
SR - Auto [27/02/2017] [ 317400] SynTPEnh Caller Service (SynTPEnhService) . (.Synaptics Incorporated.) - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe =>.Synaptics Incorporated®
SS - Demand [27/02/2017] [ 317400] vssbrigde64 (vssbrigde64) . (.AO Kaspersky Lab.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\x64\vssbridge64.exe =>.Kaspersky Lab®
SR - Auto [27/02/2017] [ 317400] Wondershare Application Framework Service (WsAppService) . (.Wondershare.) - C:\Program Files (x86)\Wondershare\WAF\2.4.3.229\WsAppService.exe =>.Wondershare Technology Co.,Ltd®
---\\ Tâches planifiées en automatique (Registre) (128) - 28s
O38 - TASK: {00E5E09D-5EC2-4824-ADB5-831EC9403AB4} [64Bits][\Microsoft\Windows\Autochk\Proxy] - (.Microsoft Corporation - DLL de proxy Autochk.) -- C:\Windows\System32\acproxy.dll [13312] =>.Microsoft Corporation
O38 - TASK: {01A1D0E2-49C4-4CDB-B21E-471D79A39379} [64Bits][\{9D9AD9B9-4C4D-4DCE-AA28-361757016199}] - (.InstallShield Software Corporation - InstallDriver Module.) -- C:\Program Files (x86)\Common Files\InstallShield\Driver\9\Intel 32\IDriver.exe [757760] =>.InstallShield Software Corporation
O38 - TASK: {03B319F4-0332-4699-932F-E20CC56F5D20} [64Bits][\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-316627027-3033381719-1982330960-1000] - (.RealNetworks, Inc. - RealUpgrade Launcher.) -- C:\program files (x86)\Real\RealDownloader\RealUpgrade.exe [135504] {7975BE185DD3B5E5CB86712EAACC41DF} =>.RealNetworks, Inc.
O38 - TASK: {0525CA3E-384D-4673-A981-7C4793D9423D} [64Bits][\{2FDC939A-D502-4C84-A853-BECE2FCDE2BA}] - (...) -- C:\Users\Omnia\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\NSUSX5S3\wmp11-windowsxp-x86-FR-FR.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {0580EED2-AB82-45CA-A879-6D505CFD8431} [64Bits][\WPD\SqmUpload_S-1-5-21-316627027-3033381719-1982330960-1000] - (.Microsoft Corporation - Composants API de l’appareil mobile Windows.) -- C:\Windows\System32\portabledeviceapi.dll [622592] =>.Microsoft Corporation
O38 - TASK: {05C5CB51-F8C1-4573-A143-7B1DCFFF5EEB} [64Bits][\RealDownloader Update Check] - (.Copyright © RealNetworks, Inc. 1995-2017 - RealDownloader.) -- C:\program files (x86)\Real\RealDownloader\downloader2.exe [1259704] {7975BE185DD3B5E5CB86712EAACC41DF}
O38 - TASK: {06E5E6E1-C0A1-44FD-B014-AEC829F2971F} [64Bits][\Microsoft\Windows\Media Center\PvrRecoveryTask] - (...) -- C:\WINDOWS\ehome\mcupdate.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {0DDBAB82-04E6-47B2-A8A9-0B78DA7E34CD} [64Bits][\Microsoft\Windows\Workplace Join\Automatic-Device-Join] - (.Microsoft Corporation - Outil de ligne de commande DSREG.) -- C:\WINDOWS\System32\dsregcmd.exe [659968] =>.Microsoft Corporation
O38 - TASK: {0E00F8E6-DDA9-45B3-B224-C760545E87EA} [64Bits][\Microsoft\Windows\Management\Provisioning\Cellular] - (.Microsoft Corporation - Provisioning package runtime processing too.) -- C:\WINDOWS\system32\ProvTool.exe [68608] =>.Microsoft Corporation
O38 - TASK: {120F0681-B0D9-4830-88E5-0847CF5A021A} [64Bits][\Microsoft\Windows\MUI\Mcbuilder] - (.Microsoft Corporation - Resource cache builder tool.) -- C:\Windows\System32\mcbuilder.exe [347648] =>.Microsoft Corporation
O38 - TASK: {128D6914-EBE2-47A5-B12C-993575368F1A} [64Bits][\Microsoft\Windows\Media Center\ActivateWindowsSearch] - (...) -- C:\WINDOWS\ehome\ehPrivJob.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {1367704F-0AA7-4818-94EC-C13F6BFAAB65} [64Bits][\User_Feed_Synchronization-{CC0E2B23-735D-4F79-A729-1863FF86F02E}] - (.Microsoft Corporation - Microsoft Feeds Synchronization.) -- C:\Windows\System32\msfeedssync.exe [15360] =>.Microsoft Corporation
O38 - TASK: {139282A1-6295-42CE-A1D1-B8E8E19350DE} [64Bits][\Microsoft\Windows\UPnP\UPnPHostConfig] - (.Microsoft Corporation - Outil de configuration du Gestionnaire de c.) -- C:\Windows\System32\sc.exe [68608] =>.Microsoft Corporation
O38 - TASK: {14A9BA87-40AD-4A4D-83E7-D93D7EB23CEE} [64Bits][\Microsoft\Windows\Customer Experience Improvement Program\Consolidator] - (.Microsoft Corporation - Consolidateur SQM Windows.) -- C:\WINDOWS\System32\wsqmcons.exe [77824] =>.Microsoft Corporation
O38 - TASK: {170C58C0-A0E5-40CD-9801-C6C53920FE1F} [64Bits][\Microsoft\Windows\NlaSvc\WiFiTask] - (.Microsoft Corporation - Tâche sans fil en arrière-plan.) -- C:\WINDOWS\System32\WiFiTask.exe [459168] =>.Microsoft Windows®
O38 - TASK: {17754A70-24E8-4AEC-AC94-6DBDA58278B4} [64Bits][\Microsoft\Windows\Media Center\ConfigureInternetTimeService] - (...) -- C:\WINDOWS\ehome\ehPrivJob.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {18014FF8-21C1-485A-907F-B3BA5CA126D7} [64Bits][\RealDownloaderRealUpgradeLogonTaskS-1-5-21-316627027-3033381719-1982330960-1000] - (.RealNetworks, Inc. - RealUpgrade Launcher.) -- C:\program files (x86)\Real\RealDownloader\RealUpgrade.exe [135504] {7975BE185DD3B5E5CB86712EAACC41DF} =>.RealNetworks, Inc.
O38 - TASK: {1B98DAC9-3654-4BFE-A8C9-E544F52E1A43} [64Bits][\Microsoft\Windows\Device Information\Device] - (.Microsoft Corporation - Device Census.) -- C:\WINDOWS\system32\devicecensus.exe [34712] =>.Microsoft Windows®
O38 - TASK: {1D7707AD-21A2-433A-B82E-36C0F7F64ADE} [64Bits][\Microsoft\Office\OfficeTelemetryAgentLogOn2016] - (.Microsoft Corporation - Office Telemetry Agent.) -- C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2248360] =>.Microsoft Corporation®
O38 - TASK: {1DFEA949-0C64-40D3-BF10-7EDF096EE946} [64Bits][\Microsoft\Windows\Media Center\PeriodicScanRetry] - (...) -- C:\WINDOWS\ehome\MCUpdate.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {1E004637-1994-4794-B008-18203250EA47} [64Bits][\Microsoft\Windows\Media Center\MediaCenterRecoveryTask] - (...) -- C:\WINDOWS\ehome\mcupdate.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {219ABF3A-36E7-49E7-9121-2E4F7B3157BD} [64Bits][\Microsoft\Windows\Time Zone\SynchronizeTimeZone] - (.Microsoft Corporation - TimeZone Sync Task.) -- C:\WINDOWS\system32\tzsync.exe [60928] =>.Microsoft Corporation
O38 - TASK: {23A8F6A9-4214-41AD-AF77-FCAFEF5CCFFA} [64Bits][\Microsoft\Windows\Media Center\RegisterSearch] - (...) -- C:\WINDOWS\ehome\ehPrivJob.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {23BB6FD5-FE19-440A-BA82-1FDAB50902A5} [64Bits][\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration] - (.Microsoft Corporation - This task initiates Office Background Task .) -- C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [24264] =>.Microsoft Corporation®
O38 - TASK: {24E3EE0B-C029-4640-BBA9-8EA1703F9BBC} [64Bits][\Microsoft\Windows\Media Center\OCURDiscovery] - (...) -- C:\WINDOWS\ehome\ehPrivJob.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {28CB53EF-E0DC-4DC1-BB30-C083BA854EFD} [64Bits][\CreateChoiceProcessTask] - (...) -- C:\Windows\System32\browserchoice.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {296CF49A-6E6F-4102-9ECC-4DEEBFD8B44B} [64Bits][\Microsoft\Windows\SharedPC\Account Cleanup] - (.Microsoft Corporation - SharedPC.AccountManager.) -- C:\WINDOWS\System32\Windows.SharedPC.AccountManager.dll [192512] =>.Microsoft Corporation
O38 - TASK: {2CC8D6BB-DF29-4DCB-ABAC-0CB7E0E544D2} [64Bits][\Microsoft\Windows\Storage Tiers Management\Storage Tiers Optimization] - (.Microsoft Corp. - Module de défragmenteur de disque.) -- C:\WINDOWS\system32\defrag.exe [185856] =>.Microsoft Corp.
O38 - TASK: {326127EB-1F39-4FB4-9130-2317046E0AF9} [64Bits][\Microsoft\Windows\Subscription\EnableLicenseAcquisition] - (.Microsoft Corporation - Acquire License From Store.) -- C:\WINDOWS\System32\ClipRenew.exe [137112] =>.Microsoft Windows®
O38 - TASK: {35143309-3ACA-4D33-AA28-9FC228232589} [64Bits][\Microsoft\Windows\WindowsUpdate\sihboot] - (.Microsoft Corporation - Client SIH.) -- C:\WINDOWS\System32\sihclient.exe [229888] =>.Microsoft Corporation
O38 - TASK: {3707B2B0-3908-4A15-8428-A899E3A0B132} [64Bits][\Microsoft\Windows\Media Center\InstallPlayReady] - (...) -- C:\WINDOWS\ehome\ehPrivJob.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {398D605B-6743-478C-A5AD-528048341FE8} [64Bits][\GoogleUpdateTaskMachineUA] - (.Google Inc. - Programme d'installation de Google.) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752] =>.Google Inc®
O38 - TASK: {3A370D44-3A12-4806-90E2-92C9A3D6856F} [64Bits][\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck] - (.Microsoft Corporation - AppID Certificate Store Verification Task.) -- C:\WINDOWS\system32\appidcertstorecheck.exe [19456] =>.Microsoft Corporation
O38 - TASK: {3B7C5E6A-02C4-448B-AA88-7A55E8068575} [64Bits][\Microsoft\Windows\SpacePort\SpaceAgentTask] - (.Microsoft Corporation - Paramètres des espaces de stockage.) -- C:\WINDOWS\system32\SpaceAgent.exe [129536] =>.Microsoft Corporation
O38 - TASK: {3D2AEAA7-EA35-4ACF-B8B9-1DDBA19067CD} [64Bits][\Microsoft\Windows\Management\Provisioning\Logon] - (.Microsoft Corporation - Provisioning package runtime processing too.) -- C:\WINDOWS\system32\ProvTool.exe [68608] =>.Microsoft Corporation
O38 - TASK: {3D32339E-B54F-4762-8AC4-CC189BE6FB22} [64Bits][\Microsoft\Windows\Media Center\SqlLiteRecoveryTask] - (...) -- C:\WINDOWS\ehome\mcupdate.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {3E5D6DCB-D6C0-402F-96F0-B27A248DEF9E} [64Bits][\Microsoft\Windows\WCM\WiFiTask] - (.Microsoft Corporation - Tâche sans fil en arrière-plan.) -- C:\WINDOWS\System32\WiFiTask.exe [459168] =>.Microsoft Windows®
O38 - TASK: {3F2BFCCE-5EB5-4E6B-8AC1-A1E8BEE4354E} [64Bits][\Microsoft\Windows\Feedback\Siuf\DmClientOnScenarioDownload] - (.Microsoft Corporation - Microsoft Feedback SIUF Deployment Manager.) -- C:\WINDOWS\system32\dmclient.exe [89600] =>.Microsoft Corporation
O38 - TASK: {3F9C4EE0-9882-430D-8246-E214C1EA697F} [64Bits][\Microsoft\Office\Office ClickToRun Service Monitor] - (.Microsoft Corporation - Microsoft Office Click-to-Run Client.) -- C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [16930984] =>.Microsoft Corporation®
O38 - TASK: {40178447-AB56-492A-BE34-CCDBEAF08801} [64Bits][\RealUpgradeScheduledTaskS-1-5-21-316627027-3033381719-1982330960-1000] - (.RealNetworks, Inc. - RealUpgrade Launcher.) -- C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [122880] =>.RealNetworks, Inc.
O38 - TASK: {40FC1D0D-9ABC-4E20-8A25-7A09203D69B2} [64Bits][\Microsoft\Windows\Media Center\mcupdate] - (...) -- C:\WINDOWS\ehome\mcupdate (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {4160FF84-DE59-4FE2-9719-E3DA11B372D5} [64Bits][\Microsoft\Windows\ApplicationData\DsSvcCleanup] - (.Microsoft Corporation - Data Sharing Service Maintenance Driver.) -- C:\WINDOWS\system32\dstokenclean.exe [12800] =>.Microsoft Corporation
O38 - TASK: {44E0F61A-CFA2-4A5C-964A-ED21C0C26A34} [64Bits][\Microsoft\Windows\Media Center\PBDADiscoveryW1] - (...) -- C:\WINDOWS\ehome\ehPrivJob.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {4700A489-CAFC-4DEA-B9D5-FBBB48BA949B} [64Bits][\RealPlayerRealUpgradeLogonTaskS-1-5-21-316627027-3033381719-1982330960-1000] - (.RealNetworks, Inc. - RealUpgrade Launcher.) -- C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [122880] =>.RealNetworks, Inc.
O38 - TASK: {4D178028-F2ED-45F4-AA30-EC68836FDA06} [64Bits][\Microsoft\Windows\EnterpriseMgmt\MDMMaintenenceTask] - (.Microsoft Corporation - MDMAgent.) -- C:\WINDOWS\system32\MDMAgent.exe [68096] =>.Microsoft Corporation
O38 - TASK: {501B4DEC-783F-4EE9-A736-99EE6CB70F94} [64Bits][\Microsoft\Windows\UpdateOrchestrator\Refresh Settings] - (.Microsoft Corporation - UsoClient.) -- C:\WINDOWS\System32\usoclient.exe [34304] =>.Microsoft Corporation
O38 - TASK: {5268BD87-75C4-420C-8F86-BCC3BB588CFA} [64Bits][\Microsoft\Windows\WindowsUpdate\sih] - (.Microsoft Corporation - Client SIH.) -- C:\WINDOWS\System32\sihclient.exe [229888] =>.Microsoft Corporation
O38 - TASK: {52F70694-01B0-42ED-9814-44AD5D7702BF} [64Bits][\Microsoft\Windows\AppID\PolicyConverter] - (.Microsoft Corporation - AppID Policy Converter Task.) -- C:\WINDOWS\system32\appidpolicyconverter.exe [159744] =>.Microsoft Corporation
O38 - TASK: {555B029E-AE5A-4C31-A08E-FCD1CB02686D} [64Bits][\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector] - (.Microsoft Corporation - Module de diagnostics des erreurs de disque.) -- C:\Windows\System32\dfdts.dll [45568] =>.Microsoft Corporation
O38 - TASK: {570C1312-6519-46B5-A969-552A932711F4} [64Bits][\Microsoft\Windows\Media Center\DispatchRecoveryTasks] - (...) -- C:\WINDOWS\ehome\ehPrivJob.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {5782008E-31FC-4F07-A51D-2E46B4C52243} [64Bits][\Microsoft\Windows\RemovalTools\MRT_HB] - (.Microsoft Corporation - Outil de suppression de logiciels malveilla.) -- C:\WINDOWS\system32\MRT.exe [127017032] =>.Microsoft Corporation®
O38 - TASK: {5790ADE0-2FD6-465B-8C76-3027B937262E} [64Bits][\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange] - (.Microsoft Corporation - Moteur de filtrage de base.) -- C:\Windows\System32\bfe.dll [815616] =>.Microsoft Corporation
O38 - TASK: {5CC32BFA-5F4A-43BD-B014-148EBCFC64CB} [64Bits][\Microsoft\Office\OfficeTelemetryAgentFallBack2016] - (.Microsoft Corporation - Office Telemetry Agent.) -- C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2248360] =>.Microsoft Corporation®
O38 - TASK: {5D1740CE-007B-4200-B035-AB18E0D64A06} [64Bits][\Microsoft\Windows\Feedback\Siuf\DmClient] - (.Microsoft Corporation - Microsoft Feedback SIUF Deployment Manager.) -- C:\WINDOWS\system32\dmclient.exe [89600] =>.Microsoft Corporation
O38 - TASK: {5D3118F3-1F15-46E1-9AC8-5CC8547B3AC4} [64Bits][\Microsoft\Windows Defender\MpIdleTask] - (.Microsoft Corporation - Microsoft Malware Protection Command Line U.) -- c:\program files\windows defender\MpCmdRun.exe [438032] =>.Microsoft Corporation®
O38 - TASK: {5E9D63C2-F730-4CBE-949A-3F42774C8832} [64Bits][\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_ReadyToReboot] - (.Microsoft Corporation - MusNotificationBroker.) -- C:\windows\system32\MusNotification.exe [306176] =>.Microsoft Corporation
O38 - TASK: {5F743234-CC05-4E2A-B660-19F1508AB7AF} [64Bits][\Microsoft\Windows\SystemRestore\SR] - (.Microsoft Corporation - Tâches de fond de la protection du système.) -- C:\WINDOWS\system32\srtasks.exe [57856] =>.Microsoft Corporation
O38 - TASK: {6014C301-6806-478A-8664-0A1A37287188} [64Bits][\Microsoft\Windows\UpdateOrchestrator\Reboot] - (.Microsoft Corporation - MusNotificationBroker.) -- C:\WINDOWS\System32\MusNotification.exe [306176] =>.Microsoft Corporation
O38 - TASK: {602454C8-D263-492D-83FA-97C0B47771C7} [64Bits][\OneDrive Standalone Update Task-S-1-5-21-316627027-3033381719-1982330960-1000] - (.Microsoft Corporation - Standalone Updater.) -- C:\Users\Omnia\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe [2296008] =>.Microsoft Corporation®
O38 - TASK: {60A4F3BE-BB33-4CD6-9E2E-F9921831EC0D} [64Bits][\Adobe Acrobat Update Task] - (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1171480] =>.Adobe Systems, Incorporated®
O38 - TASK: {629A9008-494B-405F-809C-677EBFDF6A38} [64Bits][\Microsoft\Windows\Clip\License Validation] - (.Microsoft Corporation - Client License Platform migration tool.) -- C:\WINDOWS\System32\ClipUp.exe [1347640] =>.Microsoft Windows Publisher®
O38 - TASK: {629F06AA-6A53-4DE5-9DD0-03C1CDC87D6D} [64Bits][\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup] - (.Microsoft Corporation - DLL du client de déploiement d’AppX.) -- C:\Windows\System32\AppxDeploymentClient.dll [654976] =>.Microsoft Windows®
O38 - TASK: {630688FE-8CCC-4BF2-8DD0-E517C5EAF86A} [64Bits][\Adobe Flash Player PPAPI Notifier] - (.Adobe Systems Incorporated - Adobe® Flash® Player Installer/Uninstaller.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_27_0_0_187_pepper.exe [1319424] =>.Adobe Systems Incorporated®
O38 - TASK: {650ABE68-ADE6-4DB9-84CB-221DC5410C15} [64Bits][\{67724B1C-0C6A-4692-805C-845BE583F863}] - (.Microsoft Corporation - Launch Windows App.) -- c:\windows\system32\launchwinapp.exe [42496] =>.Microsoft Corporation
O38 - TASK: {66A2FE4A-49C9-4785-A32C-ADB03063AD5F} [64Bits][\RealPlayerRealUpgradeScheduledTaskS-1-5-21-316627027-3033381719-1982330960-1000] - (.RealNetworks, Inc. - RealUpgrade Launcher.) -- C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [122880] =>.RealNetworks, Inc.
O38 - TASK: {693D7C8C-D671-4DD7-BE20-F6EE2B91DC26} [64Bits][\Microsoft\Windows\Windows Defender\Windows Defender Cleanup] - (.Microsoft Corporation - Microsoft Malware Protection Command Line U.) -- C:\Program Files\Windows Defender\MpCmdRun.exe [438032] =>.Microsoft Corporation®
O38 - TASK: {6CAF0633-69FB-4D28-9C26-2516BF000755} [64Bits][\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser] - (.Microsoft Corporation - Tâche de l’analyseur d’expérience de compte.) -- C:\WINDOWS\System32\MbaeParserTask.exe [112640] =>.Microsoft Corporation
O38 - TASK: {71ED6106-C206-484F-A15F-521899708043} [64Bits][\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance] - (.Microsoft Corporation - Microsoft Malware Protection Command Line U.) -- C:\Program Files\Windows Defender\MpCmdRun.exe [438032] =>.Microsoft Corporation®
O38 - TASK: {7208E7A3-F562-49BB-887F-74AAA3F01D42} [64Bits][\Microsoft\Windows\DiskCleanup\SilentCleanup] - (.Microsoft Corporation - Gestionnaire de nettoyage de disque pour Wi.) -- C:\WINDOWS\system32\cleanmgr.exe [217088] =>.Microsoft Corporation
O38 - TASK: {7B4B02D9-AE21-4E95-BCC3-58A709BA9FE9} [64Bits][\CCleanerSkipUAC] - (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner.exe [7658200] =>.Piriform Ltd®
O38 - TASK: {802658F2-8967-4875-BFB7-551F4F5DE9C7} [64Bits][\Microsoft\XblGameSave\XblGameSaveTask] - (.Microsoft Corporation - XblGameSave Standby Task.) -- C:\WINDOWS\System32\XblGameSaveTask.exe [31744] =>.Microsoft Corporation
O38 - TASK: {8087E806-37AB-4BAE-9392-345700BC7D56} [64Bits][\Microsoft\Windows\UpdateOrchestrator\Policy Install] - (.Microsoft Corporation - UsoClient.) -- C:\WINDOWS\System32\usoclient.exe [34304] =>.Microsoft Corporation
O38 - TASK: {8335AC77-AC90-44C9-88EE-4BA45688225A} [64Bits][\Microsoft\Windows\Media Center\UpdateRecordPath] - (...) -- C:\WINDOWS\ehome\ehPrivJob.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {84FE7D62-93C0-4524-8DB7-83FB0C394BF8} [64Bits][\Microsoft\Windows\Windows Error Reporting\QueueReporting] - (.Microsoft Corporation - Windows Problem Reporting.) -- C:\WINDOWS\system32\wermgr.exe [187800] =>.Microsoft Windows®
O38 - TASK: {8AF2EF4C-9C07-4A46-B8C9-75AD63BA0343} [64Bits][\Microsoft\Windows\MUI\Lpksetup] - (.Microsoft Corporation - Programme d’installation des packs de langu.) -- C:\WINDOWS\System32\lpksetup.exe [743424] =>.Microsoft Corporation
O38 - TASK: {8DAB871E-CC2C-4BC6-A9F0-417CEACBD0A2} [64Bits][\Microsoft\Windows\Media Center\PBDADiscoveryW2] - (...) -- C:\WINDOWS\ehome\ehPrivJob.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {8DCBFD41-4CCC-40A7-965A-C1A92C40975E} [64Bits][\Microsoft\Windows\Location\WindowsActionDialog] - (.Microsoft Corporation - Service Broker pour la boîte de dialogue Ac.) -- C:\WINDOWS\System32\WindowsActionDialog.exe [59392] =>.Microsoft Corporation
O38 - TASK: {91B32A80-B261-4306-A574-9B1ED74BAAC6} [64Bits][\Microsoft\Windows\Windows Media Sharing\UpdateLibrary] - (.Microsoft Corporation - Application de configuration du service Par.) -- C:\Program Files\Windows Media Player\wmpnscfg.exe [70144] =>.Microsoft Corporation
O38 - TASK: {93F31B0F-4326-4B5A-8483-4C66EA008F54} [64Bits][\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser] - (.Microsoft Corporation - Microsoft Compatibility Telemetry.) -- C:\WINDOWS\system32\compattelrunner.exe [136088] =>.Microsoft Windows®
O38 - TASK: {94FAC650-F217-42CC-8326-8D9B727298C9} [64Bits][\Microsoft\Windows\Defrag\ScheduledDefrag] - (.Microsoft Corp. - Module de défragmenteur de disque.) -- C:\WINDOWS\system32\defrag.exe [185856] =>.Microsoft Corp.
O38 - TASK: {960A5F67-42A0-4D4D-B68D-4439C5C9D12F} [64Bits][\Microsoft\Windows\DiskFootprint\Diagnostics] - (.Microsoft Corporation - DiskSnapshot.exe.) -- C:\WINDOWS\system32\disksnapshot.exe [82944] =>.Microsoft Corporation
O38 - TASK: {964E072D-F1EF-4DBC-AF11-64A93DE0EC64} [64Bits][\Microsoft\Windows\Bluetooth\UninstallDeviceTask] - (.Microsoft Corporation - Tâche de désinstallation du périphérique Bl.) -- C:\Windows\System32\BthUdTask.exe [40448] =>.Microsoft Corporation
O38 - TASK: {96FCE796-352B-4C45-9889-796B862FA2E0} [64Bits][\Microsoft\Windows\Time Synchronization\SynchronizeTime] - (.Microsoft Corporation - Outil de configuration du Gestionnaire de c.) -- C:\WINDOWS\system32\sc.exe [68608] =>.Microsoft Corporation
O38 - TASK: {988F11EF-524F-4826-9D04-027CF7A6714D} [64Bits][\Microsoft\XblGameSave\XblGameSaveTaskLogon] - (.Microsoft Corporation - XblGameSave Standby Task.) -- C:\WINDOWS\System32\XblGameSaveTask.exe [31744] =>.Microsoft Corporation
O38 - TASK: {99012CF2-B32B-46BA-8F7B-F0F49C592929} [64Bits][\Microsoft\Windows\UpdateOrchestrator\Maintenance Install] - (.Microsoft Corporation - UsoClient.) -- C:\WINDOWS\System32\usoclient.exe [34304] =>.Microsoft Corporation
O38 - TASK: {9BA0D7D2-8C83-4C10-AE30-642973055898} [64Bits][\Microsoft\Windows\ApplicationData\CleanupTemporaryState] - (.Microsoft Corporation - Windows Application Data API Server.) -- C:\Windows\System32\Windows.Storage.ApplicationData.dll [328616] =>.Microsoft Windows®
O38 - TASK: {9D02B6CE-B95F-40D1-A9E4-3BB7C4146B13} [64Bits][\Microsoft\Windows\Location\Notifications] - (.Microsoft Corporation - Notification d'emplacement.) -- C:\WINDOWS\System32\LocationNotificationWindows.exe [66560] =>.Microsoft Corporation
O38 - TASK: {9D267269-30AD-4D5A-A455-BD8D32A5F6A4} [64Bits][\Microsoft\Windows\DUSM\dusmtask] - (.Microsoft Corporation - DUSM Task.) -- C:\WINDOWS\System32\dusmtask.exe [35840] =>.Microsoft Corporation
O38 - TASK: {9F479564-B8DC-4E5B-9D31-671A81C5CB9E} [64Bits][\Microsoft\Windows\SpacePort\SpaceManagerTask] - (.Microsoft Corporation - Storage Spaces Manager.) -- C:\WINDOWS\system32\spaceman.exe [34816] =>.Microsoft Corporation
O38 - TASK: {A712C228-E724-48D8-8DA5-0939C17AC7B9} [64Bits][\Microsoft\Windows\Media Center\OCURActivate] - (...) -- C:\WINDOWS\ehome\ehPrivJob.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {ADC8C694-2345-4E8A-AA4D-398A8088F99D} [64Bits][\Microsoft\Windows\MUI\LPRemove] - (.Microsoft Corporation - MUI Language pack cleanup.) -- C:\WINDOWS\system32\lpremove.exe [66560] =>.Microsoft Corporation
O38 - TASK: {AE8A4330-A541-43EF-B31C-352A641B1BDF} [64Bits][\{953455B0-0EF1-48D9-AFB1-A6BE6C305A23}] - (...) -- C:\Users\Omnia\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ES6CXBOC\windows-media-player-11_windows_media_player_11.0_francais_20085[1].exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {B07DE546-F70E-4619-B757-E482408494E8} [64Bits][\Microsoft\Windows\UpdateOrchestrator\Schedule Scan] - (.Microsoft Corporation - UsoClient.) -- C:\WINDOWS\System32\usoclient.exe [34304] =>.Microsoft Corporation
O38 - TASK: {B2AA3DC5-3CFC-4DEA-A481-2CFA48C87739} [64Bits][\Microsoft\Windows\Media Center\PvrScheduleTask] - (...) -- C:\WINDOWS\ehome\mcupdate.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {B64FB6F9-D4C1-4B6B-BC7D-C8FDB0D36E4C} [64Bits][\Microsoft\Windows Defender\MP Scheduled Scan] - (.Microsoft Corporation - Microsoft Malware Protection Command Line U.) -- c:\program files\windows defender\MpCmdRun.exe [438032] =>.Microsoft Corporation®
O38 - TASK: {B9428440-4B58-4A61-9013-B30C717CE009} [64Bits][\Microsoft\Windows\Sysmain\WsSwapAssessmentTask] - (.Microsoft Corporation - Hôte de service Superfetch.) -- C:\Windows\System32\sysmain.dll [972800] =>.Microsoft Corporation
O38 - TASK: {C0FE11E9-9F87-413E-A53A-639404322FA8} [64Bits][\Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers] - (.Microsoft Corporation - Module d’installation de pilotes.) -- C:\WINDOWS\System32\drvinst.exe [158720] =>.Microsoft Corporation
O38 - TASK: {C1DF99C7-5EFA-459A-9BCA-9BC85047118F} [64Bits][\Microsoft\Windows\WindowsUpdate\Scheduled Start] - (.Microsoft Corporation - Outil de configuration du Gestionnaire de c.) -- C:\Windows\System32\sc.exe [68608] =>.Microsoft Corporation
O38 - TASK: {C44555BF-313D-4BA3-BF0C-4E44B89730D0} [64Bits][\microsoft\windows\applicationdata\appuriverifierinstall] - (.Microsoft Corporation - Vérificateur de l’inscription des gestionna.) -- C:\WINDOWS\system32\AppHostRegistrationVerifier.exe [105472] =>.Microsoft Corporation
O38 - TASK: {C4486774-0CCE-4E61-A05F-A504113E5907} [64Bits][\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask] - (...) -- C:\WINDOWS\ehome\mcupdate.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {C6968E13-8A7E-4AC1-A5AA-CD8A0CFE739E} [64Bits][\Microsoft\Windows\Windows Defender\Windows Defender Verification] - (.Microsoft Corporation - Microsoft Malware Protection Command Line U.) -- C:\Program Files\Windows Defender\MpCmdRun.exe [438032] =>.Microsoft Corporation®
O38 - TASK: {C6D96425-C719-4DA6-B604-44C823928067} [64Bits][\microsoft\windows\applicationdata\appuriverifierdaily] - (.Microsoft Corporation - Vérificateur de l’inscription des gestionna.) -- C:\WINDOWS\system32\AppHostRegistrationVerifier.exe [105472] =>.Microsoft Corporation
O38 - TASK: {C7002ACC-B47B-43BF-838C-0A58806011C5} [64Bits][\Microsoft\Windows\Application Experience\ProgramDataUpdater] - (.Microsoft Corporation - Microsoft Compatibility Telemetry.) -- C:\WINDOWS\system32\compattelrunner.exe [136088] =>.Microsoft Windows®
O38 - TASK: {C8404A8B-F677-42FF-9A29-B19C9551D34A} [64Bits][\Microsoft\Windows\Media Center\RecordingRestart] - (...) -- C:\WINDOWS\ehome\ehrec (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {C8908A7C-1508-4119-A0BC-5320B8D5124B} [64Bits][\Microsoft\Windows\Media Center\ehDRMInit] - (...) -- C:\WINDOWS\ehome\ehPrivJob.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {C8BEE0EF-5E93-41F0-AEE3-292B4C4F065E} [64Bits][\Microsoft\Windows\Media Center\ReindexSearchRoot] - (...) -- C:\WINDOWS\ehome\ehPrivJob.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {CB3E5BBD-7DE0-4874-921F-333E224C9284} [64Bits][\Microsoft\Windows\Media Center\PBDADiscovery] - (...) -- C:\WINDOWS\ehome\ehPrivJob.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {CF7DC6A3-E160-4A60-BBB3-D5673046394B} [64Bits][\Microsoft\Windows\UpdateOrchestrator\Resume On Boot] - (.Microsoft Corporation - UsoClient.) -- C:\WINDOWS\System32\usoclient.exe [34304] =>.Microsoft Corporation
O38 - TASK: {D0987DAE-9DB4-4F47-8D1D-297EC890A7FF} [64Bits][\Microsoft\Windows\WwanSvc\NotificationTask] - (.Microsoft Corporation - Tâche sans fil en arrière-plan.) -- C:\WINDOWS\System32\WiFiTask.exe [459168] =>.Microsoft Windows®
O38 - TASK: {D13651D7-BA5A-4100-9D2C-EC6D2B14FE27} [64Bits][\Microsoft\Windows\Speech\SpeechModelDownloadTask] - (.Microsoft Corporation - Speech Model Download Executable.) -- C:\Windows\System32\speech_onecore\Common\SpeechModelDownload.exe [162816] =>.Microsoft Corporation
O38 - TASK: {D2A4E9DD-F62B-45D1-9483-01B375F50706} [64Bits][\Microsoft\Internet Explorer\Supprimer les versions précédentes d’Internet Explorer] - (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\SYSTEM32\ie4uinit.EXE [225792] =>.Microsoft Corporation
O38 - TASK: {DB224CAB-74BF-48D3-B058-6D0E9C686635} [64Bits][\Microsoft\Windows\Media Center\mcupdate_scheduled] - (. - Check for Media Center updates..) -- C:\WINDOWS\ehome\mcupdate (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {DBB53BF0-E98E-4296-9B62-B548940FCC25} [64Bits][\Adobe Flash Player Updater] - (.Adobe Systems Incorporated - Adobe® Flash® Player Update Service 27.0 r0.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [272384] =>.Adobe Systems Incorporated®
O38 - TASK: {DEABEF92-70EE-4E53-832A-6D676F4A2D13} [64Bits][\Microsoft\Office\OfficeBackgroundTaskHandlerLogon] - (.Microsoft Corporation - This task initiates Office Background Task .) -- C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [24264] =>.Microsoft Corporation®
O38 - TASK: {DF895C01-61A1-46E5-B0D4-1A6B63223546} [64Bits][\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask] - (.Microsoft Corporation - Serveur COM d’assistance à distance Windows.) -- C:\Windows\System32\raserver.exe [128512] =>.Microsoft Corporation
O38 - TASK: {DFF7D058-6DA8-498F-AB5E-95F28167CB9C} [64Bits][\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_Display] - (.Microsoft Corporation - MusNotificationBroker.) -- C:\windows\system32\MusNotification.exe [306176] =>.Microsoft Corporation
O38 - TASK: {E37AF09F-6BCD-416F-844E-759DDF91348F} [64Bits][\Microsoft\Office\Office Automatic Updates] - (.Microsoft Corporation - Microsoft Office Click-to-Run Client.) -- C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [16930984] =>.Microsoft Corporation®
O38 - TASK: {E7C80751-802F-4B14-83A6-72FC8E523CFA} [64Bits][\Microsoft\Windows\Media Center\StartRecording] - (...) -- C:\WINDOWS\ehome\ehrec (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {EEEA8ECF-FC57-4A3B-8AD2-5AE8A84B9B04} [64Bits][\GoogleUpdateTaskMachineCore] - (.Google Inc. - Programme d'installation de Google.) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752] =>.Google Inc®
O38 - TASK: {F0EF2229-B2E6-4410-9B85-F405AAE02057} [64Bits][\Microsoft\Windows\UpdateOrchestrator\MusUx_UpdateInterval] - (.Microsoft Corporation - MusNotificationBroker.) -- C:\WINDOWS\System32\MusNotification.exe [306176] =>.Microsoft Corporation
O38 - TASK: {F17AA280-E475-4AAD-8AC0-C87C33267E65} [64Bits][\Microsoft\Windows\Subscription\LicenseAcquisition] - (.Microsoft Corporation - Acquire License From Store.) -- C:\WINDOWS\System32\ClipRenew.exe [137112] =>.Microsoft Windows®
O38 - TASK: {F574365F-BBE4-4CA7-80B0-21D56EF5E426} [64Bits][\{522F0E3E-0865-42C3-BD84-1DA8F410D046}] - (...) -- C:\Users\Omnia\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\R4YHGUF4\sp55086[1].exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {F5EBE4C2-AF8E-4182-90AA-EE14AA5D486B} [64Bits][\RealUpgradeLogonTaskS-1-5-21-316627027-3033381719-1982330960-1000] - (.RealNetworks, Inc. - RealUpgrade Launcher.) -- C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [122880] =>.RealNetworks, Inc.
O38 - TASK: {F876BE4C-DADC-426A-BBEA-79D14E14CD4F} [64Bits][\Microsoft\Windows\Shell\FamilySafetyMonitor] - (.Microsoft Corporation - Moniteur du contrôle parental.) -- C:\WINDOWS\System32\wpcmon.exe [1763376] =>.Microsoft Windows®
O38 - TASK: {F979DC26-C89B-4F41-89CF-163892C6006E} [64Bits][\{BAB20F9F-4EBF-4650-A537-169FE858C154}] - (...) -- C:\Users\Omnia\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KBE5X2V9\Win7Vista_64_152254.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {FB25F338-1755-4FF9-9769-D52AF46795C1} [64Bits][\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver] - (.Microsoft Corporation - Outil de résolution des défaillances disque.) -- C:\WINDOWS\system32\DFDWiz.exe [51200] =>.Microsoft Corporation
O38 - TASK: {FB3CBD0B-7B49-4137-B9B8-2CF4C72534EC} [64Bits][\Microsoft\Windows\UpdateOrchestrator\Combined Scan Download Install] - (.Microsoft Corporation - UsoClient.) -- C:\WINDOWS\System32\usoclient.exe [34304] =>.Microsoft Corporation
O38 - TASK: {FC7A6554-B43F-4C6D-9EAC-5CC34E45A799} [64Bits][\Microsoft\Windows\Application Experience\StartupAppTask] - (.Microsoft Corporation - DLL de tâche d’analyse de démarrage.) -- C:\Windows\System32\Startupscan.dll [19968] =>.Microsoft Corporation
---\\ Applications lancées au démarrage du système (16) - 3s
O4 - HKLM\..\Run: [SecurityHealth] . (.Microsoft Corporation - Windows Defender notification icon.) -- C:\Program Files\Windows Defender\MSASCuiL.exe =>.Microsoft Windows®
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\WINDOWS\system32\hkcmd.exe =>.Intel Corporation
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\WINDOWS\system32\igfxpers.exe =>.Intel Corporation
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe =>.Realtek Semiconductor Corp.®
O4 - HKLM\..\Run: [RtHDVBg] . (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe =>.Realtek Semiconductor Corp.®
O4 - HKLM\..\Run: [UMonit] . (.Copyright (C) 2008 - ChangeIcon MFC Application.) -- C:\Windows\SysWOW64\UMonit.exe
O4 - HKCU\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Ltd®
O4 - HKCU\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\Omnia\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - HKLM\..\Wow6432Node\Run: [TkBellExe] . (.RealNetworks, Inc. - RealNetworks Scheduler.) -- C:\Program Files (x86)\Real\realplayer\update\realsched.exe {7975BE185DD3B5E5CB86712EAACC41DF} =>.RealNetworks, Inc.
O4 - HKLM\..\Wow6432Node\Run: [RealDownloader] . (.Copyright © RealNetworks, Inc. 1995-2017 - RealDownloader.) -- C:\program files (x86)\Real\RealDownloader\downloader2.exe {7975BE185DD3B5E5CB86712EAACC41DF}
O4 - HKLM\..\Wow6432Node\Run: [Wondershare Helper Compact.exe] . (. - .) -- C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe (.Not File.) =>.SUP.Orphan
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe =>.Oracle America, Inc.®
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Windows®
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Windows®
O4 - HKUS\S-1-5-21-316627027-3033381719-1982330960-1000\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Ltd®
O4 - HKUS\S-1-5-21-316627027-3033381719-1982330960-1000\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\Omnia\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
---\\ Processus lancés (31) - 9s
[MD5.C58847223D7EA5AB3B1D26F0BEAFDF1F] - (.Realtek Semiconductor - Realtek Audio Service.) -- C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [320512] [PID.2264] =>.Realtek Semiconductor Corp.®
[MD5.C75BEF5E0AA96799E8AD5E363009C125] - (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1483264] [PID.2808] =>.Realtek Semiconductor Corp.®
[MD5.D32D96B6C02040C1496452853462C214] - (.Andrea Electronics Corporation - Andrea filters APO access service (64-bit).) -- C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe [106944] [PID.3348] =>.Andrea Electronics®
[MD5.38622FFE9369D3EC01C0097235BD9279] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [83984] [PID.3364] =>.Adobe Systems, Incorporated®
[MD5.50C3C62FFE6337E6E4F2F01CB07DF63C] - (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\avp.exe [194000] [PID.3384] =>.Kaspersky Lab®
[MD5.B9B601B2DF3F5A3CAE75B0DCAF02B13F] - (.Windows (R) Win 7 DDK provider - Windows Setup API.) -- C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [323152] [PID.3412] =>.Qualcomm Atheros®
[MD5.E90DA42B87D684DEBFB73B38A718A006] - (.Copyright (C) 2008 - DCSHOST.) -- C:\ProgramData\DatacardService\HWDeviceService64.exe [346976] [PID.3468] =>.HUAWEI Technologies Co., Ltd.®
[MD5.42C8721929F894C70CC416190E07F10B] - (.RealNetworks, Inc. - RealPlayer.) -- C:\program files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe [37104] [PID.3596] {7975BE185DD3B5E5CB86712EAACC41DF} =>.RealNetworks, Inc.
[MD5.46826B02C346D48A62FF11882AF662BB] - (.DEVGURU Co., LTD. - MSS CS Connectivity Service.) -- C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224] [PID.3672] =>.Samsung Electronics CO., LTD.®
[MD5.B811CD167596F904F68026058C293BD5] - (.Synaptics Incorporated - 64-bit Synaptics Pointing Enhance Service.) -- C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [253960] [PID.3684] =>.Synaptics Incorporated®
[MD5.B7A50ECA6CC0062BD243FE38489710D8] - (.Wondershare - Wondershare Passport.) -- C:\Program Files (x86)\Wondershare\WAF\2.4.3.229\WsAppService.exe [493280] [PID.3868] =>.Wondershare Technology Co.,Ltd®
[MD5.4704E73C1706F0CBCF2928981CE04E76] - (...) -- D:\odoo\Odoo 9.0-20160320\service\win32_service.exe [23552] [PID.4744]
[MD5.1CE0621B591913C12BECAA5B50E88BB2] - (...) -- C:\ProgramData\Internet Mobile\OnlineUpdate\ouc.exe [246112] [PID.4436] =>.HUAWEI Technologies Co., Ltd.®
[MD5.6967BBC40AC6FF9EFC5CBD11D6FF3634] - (...) -- D:\odoo\Odoo 9.0-20160320\server\openerp-server.exe [20992] [PID.5644]
[MD5.932A21CF0DA4E951C7C4A62D27E6D8FB] - (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\avpui.exe [211712] [PID.6976] =>.Kaspersky Lab®
[MD5.0AF24553D8D4C581B7E2462269FF97AA] - (.Synaptics Incorporated - Synaptics TouchPad 64-bit Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3954352] [PID.7076] =>.Synaptics Incorporated®
[MD5.32CFC37FA01EC93047E82555C6610B67] - (.Synaptics Incorporated - Synaptics Pointing Device Helper.) -- C:\PROGRAM FILES\SYNAPTICS\SynTP\SYNTPHELPER.EXE [218808] [PID.4356] =>.Synaptics Incorporated®
[MD5.349AB4F70E2AC44970894E7F03E1576E] - (.Huawei Technologies Co., Ltd. - DataCardMonitor MFC Application.) -- C:\ProgramData\DatacardService\DCSHelper.exe [236384] [PID.5488] =>.HUAWEI Technologies Co., Ltd.®
[MD5.00000000000000000000000000000000] - (.Intel Corporation - igfxTray Module.) -- C:\Windows\System32\igfxtray.exe [0] [PID.8684] =>.Intel Corporation
[MD5.00000000000000000000000000000000] - (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe [0] [PID.8744] =>.Intel Corporation
[MD5.00000000000000000000000000000000] - (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe [0] [PID.8920] =>.Intel Corporation
[MD5.6B89138EA6759DB1AB6F5C05CA97210D] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9197568] [PID.9008] =>.Realtek Semiconductor Corp.®
[MD5.C75BEF5E0AA96799E8AD5E363009C125] - (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1483264] [PID.9028] =>.Realtek Semiconductor Corp.®
[MD5.E77E8C2373441432DEFB1C79FACE7685] - (.Copyright (C) 2008 - ChangeIcon MFC Application.) -- C:\Windows\SysWOW64\UMonit.exe [28672] [PID.9056]
[MD5.8A81CD2E7C6C3B59CCA43CAFCE4C1C77] - (.RealNetworks, Inc. - RealPlayer with RealTimes.) -- C:\Program Files (x86)\Real\realplayer\RPDS\Bin\rpsystray.exe [7411928] [PID.8672] {7975BE185DD3B5E5CB86712EAACC41DF} =>.RealNetworks, Inc.
[MD5.3619858A81B73C5C8D7C8A818E3AA91C] - (.RealNetworks, Inc. - RealNetworks Scheduler.) -- C:\Program Files (x86)\Real\realplayer\Update\realsched.exe [353104] [PID.6112] {7975BE185DD3B5E5CB86712EAACC41DF} =>.RealNetworks, Inc.
[MD5.49E9F8393BB326CB3FC6D6AC756F17DF] - (.Copyright © RealNetworks, Inc. 1995-2017 - RealDownloader.) -- C:\Program Files (x86)\Real\RealDownloader\downloader2.exe [1259704] [PID.7744] {7975BE185DD3B5E5CB86712EAACC41DF}
[MD5.AC581685C4CC890B42E9E9700014543D] - (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288] [PID.7632] =>.Oracle America, Inc.®
[MD5.BF51D24BBBFAC851F116433F468E1BE4] - (.RealNetworks, Inc. - Tools for RealDownloader.) -- C:\Program Files (x86)\Real\RealDownloader\RealDownloader264.exe [102224] [PID.9808] {7975BE185DD3B5E5CB86712EAACC41DF} =>.RealNetworks, Inc.
[MD5.24AFAD9B4B24FD1D4BF7127A2DC78D92] - (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe [9818328] [PID.9972] =>.Piriform Ltd®
[MD5.88BD3D8978F227F7DA569D9F480B8DBE] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\Omnia\Desktop\ZHPDiag3.exe [2935680] [PID.7500] =>.Nicolas Coolman
---\\ Google Chrome, Démarrage,Recherche,Extensions (10) - 1s
G2 - GCE: Preference [Ihab][User Data\Default] [aapocclcgogkmnckokdopfmhonfmgoek] =>.Google Inc. {Slides}
G2 - GCE: Preference [Ihab][User Data\Default] [aohghmighlieiainnegkcijnfilokake] =>.Google Inc. {Docs}
G2 - GCE: Preference [Ihab][User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] http://drive.google.com/ =>.Google Inc. {Drive}
G2 - GCE: Preference [Ihab][User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] http://www.youtube.com =>.Youtube {Youtube}
G2 - GCE: Preference [Ihab][User Data\Default] [eahebamiopdhefndnmappcihfajigkka]
G2 - GCE: Preference [Ihab][User Data\Default] [felcaaldnbdncclmgdcncolpebgiejap] =>.Google Inc. {Sheets}
G2 - GCE: Preference [Ihab][User Data\Default] [ghbmnnjooekpmoecnnnilnnbdlolhkhi] =>.Google Inc. {Docs hors connexion}
G2 - GCE: Preference [Ihab][User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] =>.Google Inc. {Wallet}
G2 - GCE: Preference [Ihab][User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] http://mail.google.com/ =>.Google Inc. {Gmail}
G2 - GCE: Preference [Ihab][User Data\Default] [pkedcjkdefgpdelpbcmbmeomcjbeemfm] Chrome Media Router =>.Google Inc.
---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (19) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.co.ma =>.Google Inc.
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com =>.Google Inc.
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com =>.Google Inc.
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchUrl,Default = http://www.google.com =>.Google Inc.
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R3 - URLSearchHook: (no name)[HKCU] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (11.00.15063.608 (WinBuild.160101.0800)) -- C:\Windows\System32\ieframe.dll =>.Microsoft Corporation
---\\ Microsoft Edge, Plugin,Favoris,Démarrage,Recherche,Extension (1) - 0s
E0 - Microsoft Edge: HKU\S-1-5-21-316627027-3033381719-1982330960-1000\HomeButtonPage = http://www.google.co.ma =>..Google.com
---\\ Internet Explorer,Proxy Management (6) - 0s
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
R5 - HKLM\SYSTEM\CurrentControlSet\services\NlaSvc\Parameters\Internet\ManualProxies [] =>.Microsoft
---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: VMApplet=
---\\ Etude du fichier hosts (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (1)
---\\ Browser Helper Object de navigateur (BHO) (4) - 1s
O2 - BHO: RealNetworks Download and Record Plugin for Internet Explorer [64Bits] - {3049C3E9-B461-4BC5-8870-4C09146192CA} . (.RealDownloader - RealTimes Video Downloader.) -- C:\program files (x86)\Real\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin64.dll {7975BE185DD3B5E5CB86712EAACC41DF} =>.RealDownloader
O2 - BHO: Lync Click to Call BHO [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} . (.Microsoft Corporation - Skype for Business.) -- C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll =>.Microsoft Corporation®
O2 - BHO: ScriptInjectionPluginBrowserHelperObject [64Bits] - {C66D064F-82FE-4E1A-B06A-B2490BA48B18} . (.AO Kaspersky Lab - Kaspersky Protection plugins.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\x64\IEExt\ie_plugin.dll =>.Kaspersky Lab®
O2 - BHO: Microsoft OneDrive for Business Browser Helper [64Bits] - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} . (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL =>.Microsoft Corporation®
---\\ Raccourcis Global Startup (70) - 19s
O4 - GS\Desktop [Administrator]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [Administrator]: Protection bancaire.lnk . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\avpui.exe -safebanking =>.Kaspersky Lab®
O4 - GS\Desktop [Administrator]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Omnia\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Administrator]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Administrator]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\sendTo [Administrator]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Administrator]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe /sendto: =>.Skype Software Sarl®
O4 - GS\sendTo [Administrator]: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\Programs [Administrator]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\Omnia\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - GS\Desktop [Guest]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [Guest]: Protection bancaire.lnk . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\avpui.exe -safebanking =>.Kaspersky Lab®
O4 - GS\Desktop [Guest]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Omnia\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Guest]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Guest]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\sendTo [Guest]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Guest]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe /sendto: =>.Skype Software Sarl®
O4 - GS\sendTo [Guest]: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\Programs [Guest]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\Omnia\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - GS\Desktop [Ihab]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [Ihab]: Protection bancaire.lnk . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\avpui.exe -safebanking =>.Kaspersky Lab®
O4 - GS\Desktop [Ihab]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Omnia\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Ihab]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Ihab]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\sendTo [Ihab]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Ihab]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe /sendto: =>.Skype Software Sarl®
O4 - GS\sendTo [Ihab]: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\Programs [Ihab]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\Omnia\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - GS\CommonDesktop [Public]: Acrobat Reader DC.lnk . (.Adobe Systems Incorporated - Adobe Acrobat Reader DC.) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe =>.Adobe Systems, Incorporated®
O4 - GS\CommonDesktop [Public]: CCleaner.lnk . (.Piriform Ltd - CCleaner.) C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Ltd®
O4 - GS\CommonDesktop [Public]: Euro Truck Simulator 2 - Vive la France !(X64).lnk . (.SCS Software - Euro Truck Simulator 2 - Steam.) D:\Euro Truck Simulator 2 - Vive la France !\bin\win_x64\eurotrucks2.exe =>.SCS Software
O4 - GS\CommonDesktop [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\CommonDesktop [Public]: Internet Mobile.lnk . (...) C:\Program Files (x86)\Internet Mobile\Internet Mobile.exe
O4 - GS\CommonDesktop [Public]: Kaspersky Internet Security.lnk . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\avpui.exe =>.Kaspersky Lab®
O4 - GS\CommonDesktop [Public]: RealPlayer (RealTimes).lnk . (.RealNetworks, Inc. - RealPlayer.) C:\Program Files (x86)\Real\realplayer\realplay.exe /launch:desktop {7975BE185DD3B5E5CB86712EAACC41DF} =>.RealNetworks, Inc.
O4 - GS\CommonDesktop [Public]: Skype.lnk . (...) C:\WINDOWS\Installer\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}\SkypeIcon.exe =>.Skype Technologies
O4 - GS\CommonDesktop [Public]: VLC media player.lnk . (.VideoLAN - VLC media player.) C:\Program Files (x86)\VideoLAN\VLC\vlc.exe =>.VideoLAN®
O4 - GS\Programs [Public]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\Omnia\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - GS\Accessories [Public]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Accessories [Public]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) C:\WINDOWS\system32\notepad.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Private Character Editor.lnk . (.Microsoft Corporation - Éditeur de caractères privés.) C:\WINDOWS\system32\eudcedit.exe =>.Microsoft Corporation
O4 - GS\Startup [Public]: RealTimes.lnk . (.RealNetworks, Inc. - RealPlayer with RealTimes.) C:\Program Files (x86)\Real\realplayer\RPDS\Bin\rpsystray.exe {7975BE185DD3B5E5CB86712EAACC41DF} =>.RealNetworks, Inc.
O4 - GS\Accessories [Public]: Bluetooth File Transfer Wizard.lnk . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Math Input Panel.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\mip.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Mobility Center.lnk . (.Microsoft Corporation - Centre de mobilité Windows.) C:\WINDOWS\system32\mblctr.exe /open =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.) C:\WINDOWS\system32\mspaint.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Quick Assist.lnk . (.Microsoft Corporation - Quick Assist.) C:\WINDOWS\system32\quickassist.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Connexion Bureau à distance.) C:\WINDOWS\system32\mstsc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - Outil Capture d’écran.) C:\WINDOWS\system32\SnippingTool.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Steps Recorder.lnk . (.Microsoft Corporation - Enregistreur d’actions.) C:\WINDOWS\system32\psr.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Fax and Scan.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\WINDOWS\system32\WFS.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Application Windows Wordpad.) C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: XPS Viewer.lnk . (.Microsoft Corporation - Visionneuse XPS.) C:\WINDOWS\system32\xpsrchvw.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Table des caractères.) C:\WINDOWS\system32\charmap.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Access 2016.lnk . (.Microsoft Corporation - Microsoft Access.) C:\Program Files (x86)\Microsoft Office\root\Office16\MSACCESS.EXE =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: Acrobat Reader DC.lnk . (.Flexera Software LLC - InstallShield.) C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}\SC_Reader.ico =>.Flexera Software LLC
O4 - GS\ProgramsCommon [Public]: Acrobat Reader DC.lnk . (.Flexera Software LLC - InstallShield.) C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}\SC_Reader.ico =>.Flexera Software LLC
O4 - GS\ProgramsCommon [Public]: Assistant Mise à niveau de Windows 10.lnk . (.Microsoft Corporation - Assistant Mise à jour de Windows 10.) C:\Windows10Upgrade\Windows10UpgraderApp.exe =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: Excel 2016.lnk . (.Microsoft Corporation - Microsoft Excel.) C:\Program Files (x86)\Microsoft Office\root\Office16\EXCEL.EXE =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\ProgramsCommon [Public]: Immersive Control Panel.lnk . (.Microsoft Corporation - Windows Control Panel.) C:\WINDOWS\System32\Control.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: MiracastView.lnk . (.Microsoft Corporation - MiracastView.) C:\WINDOWS\MiracastView\MiracastView.exe =>.Microsoft Windows®
O4 - GS\ProgramsCommon [Public]: OneDrive Entreprise.lnk . (.Microsoft Corporation - Microsoft OneDrive for Business.) C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVE.EXE =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: OneNote 2016.lnk . (.Microsoft Corporation - Microsoft OneNote.) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTE.EXE =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: Outlook 2016.lnk . (.Microsoft Corporation - Microsoft Outlook.) C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: PowerPoint 2016.lnk . (.Microsoft Corporation - Microsoft PowerPoint.) C:\Program Files (x86)\Microsoft Office\root\Office16\POWERPNT.EXE =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: PrintDialog.lnk . (.Microsoft Corporation - Print Dialog.) C:\WINDOWS\PrintDialog\PrintDialog.exe =>.Microsoft Windows®
O4 - GS\ProgramsCommon [Public]: Publisher 2016.lnk . (.Microsoft Corporation - Microsoft Publisher.) C:\Program Files (x86)\Microsoft Office\root\Office16\MSPUB.EXE =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: Skype Entreprise 2016.lnk . (.Microsoft Corporation - Skype for Business.) C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: Word 2016.lnk . (.Microsoft Corporation - Microsoft Word.) C:\Program Files (x86)\Microsoft Office\root\Office16\WINWORD.EXE =>.Microsoft Corporation®
---\\ Modification Domaine/Adresses DNS (3) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{41e03c89-2728-4530-9431-6f39c4a2d802}: DhcpNameServer = 192.168.1.1 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{4cfeb332-6219-41b0-a948-4d6356c7512c}: DhcpNameServer = 192.168.1.1 =>.Local IP Adress
---\\ Protocole additionnel (22) - 1s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll =>.Microsoft Corporation
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\System32\tbauth.dll =>.Microsoft Corporation
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: windows.tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\System32\tbauth.dll =>.Microsoft Corporation
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation
---\\ Logiciels installés (59) - 43s
O42 - Logiciel: Adobe Acrobat Reader DC - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AC0F074E4100} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Flash Player 27 PPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player PPAPI =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001824245926} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Shockwave Player 12.2 - (.Adobe Systems, Inc..) [HKLM][64Bits] -- Adobe Shockwave Player =>.Adobe Systems, Inc.
O42 - Logiciel: AMD APP SDK Runtime - (.Advanced Micro Devices Inc..) [HKLM][64Bits] -- {503F672D-6C84-448A-8F8F-4BC35AC83441} =>.Advanced Micro Devices Inc.
O42 - Logiciel: ATI Catalyst Install Manager - (.ATI Technologies, Inc..) [HKLM][64Bits] -- {5854205C-309C-DB40-ED50-C05675BDA8A3} =>.ATI Technologies, Inc.
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner =>.Piriform Ltd®
O42 - Logiciel: Cisco EAP-FAST Module - (.Cisco Systems, Inc..) [HKLM][64Bits] -- {64BF0187-F3D2-498B-99EA-163AF9AE6EC9} =>.Cisco Systems, Inc.
O42 - Logiciel: Cisco LEAP Module - (.Cisco Systems, Inc..) [HKLM][64Bits] -- {51C7AD07-C3F6-4635-8E8A-231306D810FE} =>.Cisco Systems, Inc.
O42 - Logiciel: Cisco PEAP Module - (.Cisco Systems, Inc..) [HKLM][64Bits] -- {ED5776D5-59B4-46B7-AF81-5F2D94D7C640} =>.Cisco Systems, Inc.
O42 - Logiciel: Euro Truck Simulator 2 - Vive la France ! version 1.0 - (.SCS Software.) [HKLM][64Bits] -- Euro Truck Simulator 2 - Vive la France !_is1 =>.SCS Software
O42 - Logiciel: Genesys USB Mass Storage Device - (.Genesys Logic.) [HKLM][64Bits] -- {959B7F35-2819-40C5-A0CD-3C53B5FCC935} =>.InstallShield Software Corporation®
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome =>.Google Inc®
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} =>.Google Inc.
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA} =>.Intel Corporation - Software and Firmware Products®
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {27DEA29A-222C-45F8-B70D-0A7B303FC71B} =>.Intel Corporation
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {409CB30E-E457-4008-9B1A-ED1B9EA21140} =>.Intel Corporation
O42 - Logiciel: Internet Explorer - (.Microsoft Corporation.) [HKLM][64Bits] -- {4E414048-A9DD-4F60-AA1D-018E716C88C9} =>.Microsoft Corporation
O42 - Logiciel: Internet Mobile - (.Huawei Technologies Co.,Ltd.) [HKLM][64Bits] -- Internet Mobile =>.Huawei Technologies Co.,Ltd
O42 - Logiciel: Java 8 Update 151 - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F32180151F0} =>.Oracle Corporation
O42 - Logiciel: Java Auto Updater - (.Oracle Corporation.) [HKLM][64Bits] -- {4A03706F-666A-4037-7777-5F2748764D10} =>.Oracle Corporation
O42 - Logiciel: Kaspersky Anti-Virus - (.Kaspersky Lab.) [HKLM][64Bits] -- {77E7AE5C-181C-4CAF-ADBF-946F11C1CE26} =>.Kaspersky Lab
O42 - Logiciel: Kaspersky Internet Security - (.Kaspersky Lab.) [HKLM][64Bits] -- InstallWIX_{77E7AE5C-181C-4CAF-ADBF-946F11C1CE26} =>.Kaspersky Lab
O42 - Logiciel: Microsoft Application Error Reporting - (.Microsoft Corporation.) [HKLM][64Bits] -- {95120000-00B9-0409-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft DVD App Installation for Microsoft.WindowsDVDPlayer_2019.6.11761. - (.Microsoft Corporation.) [HKLM][64Bits] -- {986E003C-E56D-5A47-110E-D3C81F0E8535} =>.Microsoft Corporation
O42 - Logiciel: Microsoft OneDrive - (.Microsoft Corporation.) [HKCU][64Bits] -- OneDriveSetup.exe =>.Microsoft Corporation®
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} =>.Microsoft Corporation
O42 - Logiciel: MTP Porting Kit - (.Microsoft Corp.) [HKLM][64Bits] -- {353B1E6D-7073-4450-8C80-699BD8FCFB49} =>.Microsoft Corp
O42 - Logiciel: Odoo 9.0 - (.Odoo S.A..) [HKLM][64Bits] -- Odoo 9.0
O42 - Logiciel: Office 16 Click-to-Run Extensibility Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-008C-0000-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Office 16 Click-to-Run Extensibility Component 64-bit Registration - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-00DD-0000-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Office 16 Click-to-Run Licensing Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-008F-0000-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Office 16 Click-to-Run Localization Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-008C-040C-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: PostgreSQL 9.3 (x86) - (.PostgreSQL Global Development Group.) [HKLM][64Bits] -- PostgreSQL 9.3 =>.PostgreSQL Global Development Group
O42 - Logiciel: Qualcomm Atheros Bluetooth Suite (64) - (.Qualcomm Atheros.) [HKLM][64Bits] -- {A84A4FB1-D703-48DB-89E0-68B6499D2801} =>.Qualcomm Atheros
O42 - Logiciel: Qualcomm Atheros Client Installation Program - (.Qualcomm Atheros.) [HKLM][64Bits] -- {28006915-2739-4EBE-B5E8-49B25D32EB33} =>.Qualcomm Atheros
O42 - Logiciel: Qualcomm Atheros Driver Installation Program - (.Qualcomm Atheros.) [HKLM][64Bits] -- {C3A32068-8AB1-4327-BB16-BED9C6219DC7} =>.Qualcomm Atheros
O42 - Logiciel: RealDownloader - (.RealNetworks, Inc..) [HKLM][64Bits] -- {2275115D-1431-4A62-A98F-2F0393815327} =>.RealNetworks, Inc.
O42 - Logiciel: RealDownloader - (.RealNetworks.) [HKLM][64Bits] -- {45bcec97-14a2-4e10-a129-58d2d0b34398} {7975BE185DD3B5E5CB86712EAACC41DF} =>.RealNetworks
O42 - Logiciel: RealDownloader - (.RealNetworks.) [HKLM][64Bits] -- {85584A8B-8989-42AA-81A0-80ABF61EFAF1} =>.RealNetworks
O42 - Logiciel: RealPlayer (RealTimes) - (.RealNetworks.) [HKLM][64Bits] -- RealPlayer 18.1 {7975BE185DD3B5E5CB86712EAACC41DF} =>.RealNetworks
O42 - Logiciel: Realtek Card Reader - (.Realtek Semiconduct Corp..) [HKLM][64Bits] -- {5BC2B5AB-80DE-4E83-B8CF-426902051D0A} =>.Realtek Semiconductor Corp.®
O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476} =>.Realtek Semiconductor Corp.®
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} =>.Realtek Semiconductor Corp.®
O42 - Logiciel: RealUpgrade 1.1 - (.RealNetworks, Inc..) [HKLM][64Bits] -- {28C2DED6-325B-4CC7-983A-1777C8F7FBAB} =>.RealNetworks, Inc.
O42 - Logiciel: SAGEM F@st 800-840 - (.SAGEM.) [HKLM][64Bits] -- {4AE3A0CB-87B0-4F51-BECD-3D1F8DFDD62F} =>.Macrovision Corporation®
O42 - Logiciel: Samsung USB Driver for Mobile Phones - (.Samsung Electronics Co., Ltd..) [HKLM][64Bits] -- {D0795B21-0CDA-4a92-AB9E-6E92D8111E44} =>.Samsung Electronics CO., LTD.®
O42 - Logiciel: Skype™ 7.33 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {3B7E914A-93D5-4A29-92BB-AF8C3F66C431} =>.Skype Technologies S.A.
O42 - Logiciel: Sony Ericsson Device Data - (.Sony Ericsson.) [HKLM][64Bits] -- {C92E7DF1-624A-4D95-A4C4-18CB491B44A4} =>.Sony Ericsson
O42 - Logiciel: swMSM - (.Adobe Systems, Inc.) [HKLM][64Bits] -- {612C34C7-5E90-47D8-9B5C-0F717DD82726} =>.Adobe Systems, Inc
O42 - Logiciel: Sybase PowerAMC 15.1 - (.Sybase Inc..) [HKLM][64Bits] -- {48B0BE4A-EDC9-44C4-A3DB-67D62D75961F} =>.Macrovision Corporation®
O42 - Logiciel: Synaptics TouchPad Driver - (.Synaptics Incorporated.) [HKLM][64Bits] -- SynTPDeinstKey =>.Synaptics Incorporated
O42 - Logiciel: UpdateService - (.RealNetworks, Inc..) [HKLM][64Bits] -- {E3AE96D6-E196-45B4-AF62-2B41998B9E37} =>.RealNetworks, Inc.
O42 - Logiciel: vc2012_redist - (.Realnetworks.) [HKLM][64Bits] -- {9402AEF2-5981-4097-8BE2-6501DAC4DBFD} =>.RealNetworks
O42 - Logiciel: Video Downloader - (.RealNetworks.) [HKLM][64Bits] -- {4C68AE5C-915A-492A-AFCD-B630ECB9522D} =>.RealNetworks
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player =>.VideoLAN
O42 - Logiciel: vs2015_redist x64 - (.Realnetworks.) [HKLM][64Bits] -- {EAED8692-5B63-4665-B857-D626633691DA} =>.RealNetworks
O42 - Logiciel: vs2015_redist x86 - (.Realnetworks.) [HKLM][64Bits] -- {BD46163A-0331-4A61-B65A-7B66D7C93F8E} =>.RealNetworks
O42 - Logiciel: WinRAR 5.21 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver =>.win.rar GmbH®
---\\ HKCU & HKLM Software Keys (168) - 43s
HKLM\SOFTWARE\Wow6432Node\Adobe =>.Adobe
HKLM\SOFTWARE\Wow6432Node\aerosoft =>.aerosoft
HKLM\SOFTWARE\Wow6432Node\Analog Devices =>.Analog Devices
HKLM\SOFTWARE\Wow6432Node\AppDataLow =>.Microsoft Corporation
HKLM\SOFTWARE\Wow6432Node\Atheros =>.Qualcomm Atheros
HKLM\SOFTWARE\Wow6432Node\ATI Technologies =>.ATI Technologies
HKLM\SOFTWARE\Wow6432Node\Blimey! Games =>.Blimey! Games
HKLM\SOFTWARE\Wow6432Node\BlueStacks =>.BlueStack Systems, Inc.
HKLM\SOFTWARE\Wow6432Node\BottleTech =>.Bottle Tech Inc
HKLM\SOFTWARE\Wow6432Node\Bunndle =>.Unknown
HKLM\SOFTWARE\Wow6432Node\CDDB =>.Cddb Software
HKLM\SOFTWARE\Wow6432Node\chriskatdev
HKLM\SOFTWARE\Wow6432Node\Compelson =>.Compelson Labs
HKLM\SOFTWARE\Wow6432Node\Debug =>.Legitimate
HKLM\SOFTWARE\Wow6432Node\Disc Soft =>.Disc Soft
HKLM\SOFTWARE\Wow6432Node\drpsu =>.Driver PackSolution
HKLM\SOFTWARE\Wow6432Node\DSS =>.DSS Software
HKLM\SOFTWARE\Wow6432Node\DT Soft =>.DT Soft Ltd
HKLM\SOFTWARE\Wow6432Node\Empire Interactive =>.Empire Interactive
HKLM\SOFTWARE\Wow6432Node\Eset =>.ESET
HKLM\SOFTWARE\Wow6432Node\ETS2MP
HKLM\SOFTWARE\Wow6432Node\Forward Development =>.Forward Development
HKLM\SOFTWARE\Wow6432Node\Genesys Logic =>.Genesys Logic
HKLM\SOFTWARE\Wow6432Node\Glarysoft =>.Glarysoft
HKLM\SOFTWARE\Wow6432Node\GNU =>.GNU
HKLM\SOFTWARE\Wow6432Node\Google =>.Google
HKLM\SOFTWARE\Wow6432Node\HaaliMkx =>.Haali Media
HKLM\SOFTWARE\Wow6432Node\Huawei technologies =>.Huawei Technologies
HKLM\SOFTWARE\Wow6432Node\IM Providers =>.IM Providers
HKLM\SOFTWARE\Wow6432Node\InstallShield =>.InstallShield
HKLM\SOFTWARE\Wow6432Node\Intel =>.Intel
HKLM\SOFTWARE\Wow6432Node\JavaSoft =>.JavaSoft
HKLM\SOFTWARE\Wow6432Node\JreMetrics =>.JreMetrics
HKLM\SOFTWARE\Wow6432Node\KasperskyLab =>.Kaspersky Labs
HKLM\SOFTWARE\Wow6432Node\Khronos =>.Khronos
HKLM\SOFTWARE\Wow6432Node\Lavasoft =>.Lavasoft
HKLM\SOFTWARE\Wow6432Node\Licenses =>.Microsoft Corporation
HKLM\SOFTWARE\Wow6432Node\Macromedia =>.Macromedia
HKLM\SOFTWARE\Wow6432Node\Malwarebytes' Anti-Malware =>.Malwarebytes' Anti-Malware
HKLM\SOFTWARE\Wow6432Node\Mozilla =>.Mozilla
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins =>.MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\MT Solution
HKLM\SOFTWARE\Wow6432Node\Multisoft
HKLM\SOFTWARE\Wow6432Node\Nuance =>.Nuance
HKLM\SOFTWARE\Wow6432Node\ODBC =>.DB Connectivity Solutions
HKLM\SOFTWARE\Wow6432Node\Panda Security =>.Panda Security
HKLM\SOFTWARE\Wow6432Node\Panda Software =>.Panda Software
HKLM\SOFTWARE\Wow6432Node\PostgreSQL =>.PostgreSQL
HKLM\SOFTWARE\Wow6432Node\PostgreSQL Global Development Group =>.PostgreSQL Global Development Group
HKLM\SOFTWARE\Wow6432Node\Qualcomm Atheros =>.Qualcomm Atheros
HKLM\SOFTWARE\Wow6432Node\RealNetworks =>.RealNetworks
HKLM\SOFTWARE\Wow6432Node\Realtek =>.Realtek Semiconductor Corp.
HKLM\SOFTWARE\Wow6432Node\Realtek Semiconductor Corp. =>.Realtek Semiconductor Corp.
HKLM\SOFTWARE\Wow6432Node\SAGEM =>.Sagem
HKLM\SOFTWARE\Wow6432Node\SBDT AB
HKLM\SOFTWARE\Wow6432Node\Skype =>.Skype
HKLM\SOFTWARE\Wow6432Node\Sony Ericsson =>.Sony Ericsson
HKLM\SOFTWARE\Wow6432Node\SuppHelpDir =>.Toshiba Corporation
HKLM\SOFTWARE\Wow6432Node\Sybase
HKLM\SOFTWARE\Wow6432Node\Symantec =>.Symantec
HKLM\SOFTWARE\Wow6432Node\Sysinternals =>.Sysinternals
HKLM\SOFTWARE\Wow6432Node\Toogame
HKLM\SOFTWARE\Wow6432Node\trendmicro =>.TrendMicro
HKLM\SOFTWARE\Wow6432Node\Valve =>.Valve
HKLM\SOFTWARE\Wow6432Node\VideoLAN =>.VideoLAN
HKLM\SOFTWARE\Wow6432Node\Volatile =>.Microsoft Corporation
HKLM\SOFTWARE\Wow6432Node\WafCX =>.WafCX
HKLM\SOFTWARE\Wow6432Node\Windows =>.Microsoft Corporation
HKLM\SOFTWARE\Wow6432Node\Wondershare =>.Wondershare
HKLM\SOFTWARE\Wow6432Node\WOW6432Node =>.Microsoft Corporation
HKLM\SOFTWARE\Wow6432Node\Xing Technology Corp. =>.Xing Technology Corp.
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications =>.Microsoft Corporation
HKCU\SOFTWARE\AC3Filter =>.Vigovsky Alexander
HKCU\SOFTWARE\Adobe =>.Adobe
HKCU\SOFTWARE\APN PIP =>.SUP.Conduit
HKCU\SOFTWARE\AppDataLow =>.Microsoft Corporation
HKCU\SOFTWARE\Apple Computer, Inc. =>.Apple Computer, Inc.
HKCU\SOFTWARE\Apple Inc. =>.Apple Inc.
HKCU\SOFTWARE\Atheros =>.Qualcomm Atheros
HKCU\SOFTWARE\Besier 3D-Edutainment
HKCU\SOFTWARE\BitTorrent
HKCU\SOFTWARE\BottleTech =>.Bottle Tech Inc
HKCU\SOFTWARE\BrowserCleaner
HKCU\SOFTWARE\BugSplat =>.Bugsplat Game
HKCU\SOFTWARE\BVRP Software =>.BVRP Software
HKCU\SOFTWARE\Carambis =>.Rostpay Ltd
HKCU\SOFTWARE\Chromium =>.Chromium
HKCU\SOFTWARE\ClockStone Software GmbH
HKCU\SOFTWARE\Coin32
HKCU\SOFTWARE\Compelson =>.Compelson Labs
HKCU\SOFTWARE\CyberLink =>.CyberLink Corporation
HKCU\SOFTWARE\Cygnus Solutions =>.Cygnus Solutions
HKCU\SOFTWARE\Digienhanc
HKCU\SOFTWARE\Disc Soft =>.Disc Soft
HKCU\SOFTWARE\Distromatic =>PUP.Optional.AlexaTB
HKCU\SOFTWARE\drpsu =>.Driver PackSolution
HKCU\SOFTWARE\DSS =>.DSS Software
HKCU\SOFTWARE\DT Soft =>.DT Soft Ltd
HKCU\SOFTWARE\Electronic Arts =>.Electronic Arts
HKCU\SOFTWARE\ESET =>.ESET
HKCU\SOFTWARE\Forward Development =>.Forward Development
HKCU\SOFTWARE\FreeAudioVideo
HKCU\SOFTWARE\Gabest =>.Gabest
HKCU\SOFTWARE\Glarysoft =>.Glarysoft
HKCU\SOFTWARE\GNU =>.GNU
HKCU\SOFTWARE\Google =>.Google
HKCU\SOFTWARE\Haali =>.Haali Media
HKCU\SOFTWARE\HookNetwork =>.Hook Network
HKCU\SOFTWARE\IGA =>.Legitimate
HKCU\SOFTWARE\IM Providers =>.IM Providers
HKCU\SOFTWARE\Intel =>.Intel
HKCU\SOFTWARE\InterVideo =>.InterVideo
HKCU\SOFTWARE\JavaSoft =>.JavaSoft
HKCU\SOFTWARE\Jihosoft =>.Jihosoft
HKCU\SOFTWARE\KasperskyLab =>.Kaspersky Labs
HKCU\SOFTWARE\Kiloo Games =>.Kiloo Games
HKCU\SOFTWARE\Kolor =>.Kolor
HKCU\SOFTWARE\Lavasoft =>.Lavasoft
HKCU\SOFTWARE\Licenses =>.Microsoft Corporation
HKCU\SOFTWARE\Macromedia =>.Macromedia
HKCU\SOFTWARE\Macrovision =>.Macrovision
HKCU\SOFTWARE\malavida =>.Maladiva.com
HKCU\SOFTWARE\MediaChance =>.Mediachance
HKCU\SOFTWARE\Mine =>.Microsoft Corporation
HKCU\SOFTWARE\MiniTool Solution Ltd. =>.MiniTool Solution Ltd.
HKCU\SOFTWARE\Multisoft
HKCU\SOFTWARE\Netscape =>.Netscape
HKCU\SOFTWARE\Nitro PDF =>.Nitro PDF
HKCU\SOFTWARE\ODBC =>.DB Connectivity Solutions
HKCU\SOFTWARE\osfinancials =>.osFinancials
HKCU\SOFTWARE\PCSuite =>.Nokia Inc.
HKCU\SOFTWARE\Piriform =>.Piriform
HKCU\SOFTWARE\Protect Software GmbH =>.Protect Software GmbH
HKCU\SOFTWARE\RealNetworks =>.RealNetworks
HKCU\SOFTWARE\Realtek =>.Realtek Semiconductor Corp.
HKCU\SOFTWARE\RegisteredApplications =>.Microsoft Corporation
HKCU\SOFTWARE\Samsung =>.Samsung Electronics
HKCU\SOFTWARE\SCS Software =>.SCS Software
HKCU\SOFTWARE\SecuROM =>.SecuROM
HKCU\SOFTWARE\Skype =>.Skype
HKCU\SOFTWARE\SmartDeblur =>.Vladimir Yuzhikov
HKCU\SOFTWARE\Sybase
HKCU\SOFTWARE\Synaptics =>.Synaptics
HKCU\SOFTWARE\Sysinternals =>.Sysinternals
HKCU\SOFTWARE\Teleca =>.Teleca
HKCU\SOFTWARE\Tencent =>.SUP.Tencent
HKCU\SOFTWARE\The Silicon Realms Toolworks =>.The Silicon Realms Toolworks
HKCU\SOFTWARE\Toogame
HKCU\SOFTWARE\Trolltech =>.Trolltech
HKCU\SOFTWARE\ValuSoft =>.ValuSoft
HKCU\SOFTWARE\Valve =>.Valve
HKCU\SOFTWARE\VB and VBA Program Settings =>.Microsoft Corporation
HKCU\SOFTWARE\VoipBuster
HKCU\SOFTWARE\Windows Live Writer =>.Microsoft Corporation
HKCU\SOFTWARE\WinLicense
HKCU\SOFTWARE\WinRAR =>.WinRAR
HKCU\SOFTWARE\WinRAR SFX =>.RarLab
HKCU\SOFTWARE\Wondershare =>.Wondershare
HKCU\SOFTWARE\Wow6432Node =>.Microsoft Corporation
HKCU\SOFTWARE\ZebHelpProcess Helper =>.Nicolas Coolman
HKCU\SOFTWARE\ZHP =>.Nicolas Coolman
HKCU\SOFTWARE\Zyl Soft =>.Zyl Soft
HKCU\SOFTWARE\应用程序向导生成的本地应用程序
HKCU\SOFTWARE\AppDataLow\Software =>.Microsoft Corporation
HKCU\SOFTWARE\AppDataLow\Software\Adobe =>.Adobe
HKCU\SOFTWARE\AppDataLow\Software\Amazon =>.Amazon
HKCU\SOFTWARE\AppDataLow\Software\JavaSoft =>.JavaSoft
HKCU\SOFTWARE\AppDataLow\Software\Macromedia =>.Macromedia
---\\ Contenu des dossiers Programmes (305) - 27s
O43 - CFD: 08/02/2012 - [] D -- C:\Program Files\ATI =>.Advanced Micro Devices, Inc.®
O43 - CFD: 08/02/2012 - [0] D -- C:\Program Files\ATI Technologies =>.ATI Technologies
O43 - CFD: 11/06/2017 - [] AD -- C:\Program Files\CCleaner =>.Piriform Ltd
O43 - CFD: 21/08/2017 - [] D -- C:\Program Files\Common Files =>.Microsoft Corporation
O43 - CFD: 26/09/2015 - [] D -- C:\Program Files\DVD Maker =>.Aone Software
O43 - CFD: 03/02/2014 - [0] D -- C:\Program Files\Intel =>.Intel Corporation
O43 - CFD: 16/09/2017 - [] D -- C:\Program Files\Internet Explorer =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [] D -- C:\Program Files\Microsoft Games =>.Microsoft Corporation
O43 - CFD: 25/10/2015 - [] D -- C:\Program Files\Microsoft Office =>.Microsoft Corporation
O43 - CFD: 21/12/2015 - [] D -- C:\Program Files\Microsoft Office 15 =>.Microsoft Corporation
O43 - CFD: 14/06/2017 - [] AD -- C:\Program Files\Microsoft Silverlight =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [] D -- C:\Program Files\MSBuild =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [] D -- C:\Program Files\Realtek =>.Realtek
O43 - CFD: 15/04/2017 - [] D -- C:\Program Files\Reference Assemblies =>.Microsoft Corporation
O43 - CFD: 14/10/2017 - [] D -- C:\Program Files\Samsung =>.Samsung Electronics
O43 - CFD: 15/04/2017 - [] D -- C:\Program Files\Synaptics =>.Synaptics Incorporated®
O43 - CFD: 30/07/2015 - [0] HD -- C:\Program Files\Uninstall Information =>.Microsoft Corporation
O43 - CFD: 28/06/2017 - [] RD -- C:\Program Files\Windows Defender =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [] D -- C:\Program Files\Windows Defender Advanced Threat Protection =>.Microsoft Corporation
O43 - CFD: 16/09/2017 - [] D -- C:\Program Files\Windows Mail =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [] D -- C:\Program Files\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [] D -- C:\Program Files\Windows Multimedia Platform =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] D -- C:\Program Files\Windows NT =>.Microsoft Corporation
O43 - CFD: 16/11/2017 - [] D -- C:\Program Files\Windows Photo Viewer =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [] D -- C:\Program Files\Windows Portable Devices =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] D -- C:\Program Files\Windows Security =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [] SHD -- C:\Program Files\Windows Sidebar =>.Microsoft Corporation
O43 - CFD: 23/11/2017 - [] HD -- C:\Program Files\WindowsApps =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] D -- C:\Program Files\WindowsPowerShell =>.Microsoft Corporation
O43 - CFD: 08/04/2015 - [] AD -- C:\Program Files\WinRAR =>.win.rar GmbH®
O43 - CFD: 08/04/2015 - [] D -- C:\Program Files (x86)\Adobe =>.Adobe Systems, Incorporated®
O43 - CFD: 08/02/2012 - [] AD -- C:\Program Files (x86)\AMD APP =>.Advanced Micro Devices Inc
O43 - CFD: 08/10/2012 - [] AD -- C:\Program Files (x86)\Atheros =>.Qualcomm Atheros
O43 - CFD: 30/10/2016 - [] AD -- C:\Program Files (x86)\Bluetooth Suite =>.ASUSTeK
O43 - CFD: 27/01/2012 - [] D -- C:\Program Files (x86)\Cisco =>.Cisco Systems, Inc.
O43 - CFD: 17/11/2017 - [] D -- C:\Program Files (x86)\Common Files =>.Microsoft Corporation
O43 - CFD: 03/09/2016 - [] D -- C:\Program Files (x86)\Google =>.Google Inc®
O43 - CFD: 14/10/2017 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information =>.InstallShield
O43 - CFD: 21/01/2017 - [] D -- C:\Program Files (x86)\Intel =>.Intel Corporation
O43 - CFD: 16/09/2017 - [] D -- C:\Program Files (x86)\Internet Explorer =>.Microsoft Corporation
O43 - CFD: 04/01/2012 - [] D -- C:\Program Files (x86)\Internet Mobile =>.HUAWEI Technologies Co., Ltd.®
O43 - CFD: 22/10/2017 - [] D -- C:\Program Files (x86)\Java =>.Oracle
O43 - CFD: 24/08/2016 - [] D -- C:\Program Files (x86)\Kaspersky Lab =>.Kaspersky Lab
O43 - CFD: 20/11/2014 - [] D -- C:\Program Files (x86)\KONAMI =>.Konami
O43 - CFD: 02/04/2015 - [0] D -- C:\Program Files (x86)\Microsoft Games =>.Microsoft Corporation
O43 - CFD: 17/11/2017 - [] AD -- C:\Program Files (x86)\Microsoft Office =>.Microsoft Corporation
O43 - CFD: 14/06/2017 - [] AD -- C:\Program Files (x86)\Microsoft Silverlight =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [] D -- C:\Program Files (x86)\Microsoft.NET =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [] D -- C:\Program Files (x86)\MSBuild =>.Microsoft Corporation
O43 - CFD: 08/04/2015 - [] AD -- C:\Program Files (x86)\Qualcomm Atheros =>.Qualcomm Atheros
O43 - CFD: 16/09/2017 - [] D -- C:\Program Files (x86)\Real =>.RealNetworks Inc.
O43 - CFD: 16/11/2017 - [] D -- C:\Program Files (x86)\Realtek =>.Realtek
O43 - CFD: 15/04/2017 - [] D -- C:\Program Files (x86)\Reference Assemblies =>.Microsoft Corporation
O43 - CFD: 26/02/2015 - [] D -- C:\Program Files (x86)\SAGEM =>.Sagem
O43 - CFD: 14/10/2017 - [] D -- C:\Program Files (x86)\Samsung =>.Samsung Electronics
O43 - CFD: 09/04/2017 - [] RD -- C:\Program Files (x86)\Skype =>.Skype
O43 - CFD: 22/01/2017 - [0] HD -- C:\Program Files (x86)\Temp =>.Microsoft Corporation
O43 - CFD: 04/08/2012 - [] HD -- C:\Program Files (x86)\Uninstall Information =>.Microsoft Corporation
O43 - CFD: 06/12/2012 - [] D -- C:\Program Files (x86)\VideoLAN =>.VideoLan Team
O43 - CFD: 28/06/2017 - [] D -- C:\Program Files (x86)\Windows Defender =>.Microsoft Corporation
O43 - CFD: 16/09/2017 - [] D -- C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [] D -- C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [] D -- C:\Program Files (x86)\Windows Multimedia Platform =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] D -- C:\Program Files (x86)\Windows NT =>.Microsoft Corporation
O43 - CFD: 16/11/2017 - [] D -- C:\Program Files (x86)\Windows Photo Viewer =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [] D -- C:\Program Files (x86)\Windows Portable Devices =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [] SHD -- C:\Program Files (x86)\Windows Sidebar =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] D -- C:\Program Files (x86)\WindowsPowerShell =>.Microsoft Corporation
O43 - CFD: 17/10/2017 - [] D -- C:\Program Files (x86)\Wondershare =>.Wondershare
O43 - CFD: 18/03/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility =>.Microsoft Corporation
O43 - CFD: 11/10/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories =>.Microsoft Corporation
O43 - CFD: 16/09/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools
O43 - CFD: 15/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner =>.Piriform Ltd
O43 - CFD: 19/08/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Euro Truck Simulator 2 - Vive la France !
O43 - CFD: 02/04/2015 - [0] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel =>.Intel Corporation
O43 - CFD: 15/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Mobile
O43 - CFD: 22/10/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java =>.Oracle
O43 - CFD: 15/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security =>.Kaspersky Lab
O43 - CFD: 18/03/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance =>.Microsoft Corporation
O43 - CFD: 14/06/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outils Microsoft Office 2016 =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PostgreSQL 9.3 (x86)
O43 - CFD: 16/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RealNetworks =>.RealNetworks
O43 - CFD: 15/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SAGEM F@st 800-840 =>.Sagem
O43 - CFD: 14/10/2017 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung =>.Samsung Electronics
O43 - CFD: 15/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype =>.Skype
O43 - CFD: 16/09/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sybase
O43 - CFD: 18/03/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN =>.VideoLan Team
O43 - CFD: 15/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR
O43 - CFD: 08/04/2015 - [] D -- C:\ProgramData\Adobe =>.Adobe
O43 - CFD: 04/08/2016 - [] D -- C:\ProgramData\Apple =>.Apple Inc.
O43 - CFD: 28/09/2015 - [] D -- C:\ProgramData\Apple Computer =>.Apple Inc.
O43 - CFD: 15/04/2017 - [0] SHD -- C:\ProgramData\Application Data =>.Microsoft Corporation
O43 - CFD: 13/01/2013 - [] D -- C:\ProgramData\Avanquest Bluetooth SDK
O43 - CFD: 11/03/2015 - [] D -- C:\ProgramData\BlueStacksSetup =>.BlueStack Systems, Inc.
O43 - CFD: 16/07/2016 - [0] D -- C:\ProgramData\Comms =>.Microsoft Corporation
O43 - CFD: 14/09/2013 - [] D -- C:\ProgramData\CyberLink =>.CyberLink Corporation
O43 - CFD: 13/02/2014 - [] D -- C:\ProgramData\DAEMON Tools Lite =>.DAEMON Tools
O43 - CFD: 29/09/2012 - [] D -- C:\ProgramData\DAEMON Tools Pro =>.The DAEMON Team
O43 - CFD: 04/01/2012 - [] D -- C:\ProgramData\DatacardService =>.Entriq, Inc.
O43 - CFD: 15/04/2017 - [0] SHD -- C:\ProgramData\Desktop =>.Microsoft Corporation
O43 - CFD: 26/03/2015 - [] D -- C:\ProgramData\Doctor Web =>.Doctor Web Ltd
O43 - CFD: 15/04/2017 - [0] SHD -- C:\ProgramData\Documents =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [0] SHD -- C:\ProgramData\Favorites =>.Microsoft Corporation
O43 - CFD: 31/05/2016 - [] D -- C:\ProgramData\GlarySoft =>.GlarySoft
O43 - CFD: 22/03/2015 - [] D -- C:\ProgramData\HitmanPro =>.EIDOS hitman Game
O43 - CFD: 05/09/2015 - [0] D -- C:\ProgramData\IDM =>.IDM
O43 - CFD: 07/02/2012 - [] D -- C:\ProgramData\InstallShield =>.InstallShield
O43 - CFD: 19/08/2013 - [] D -- C:\ProgramData\Intel =>.Intel Corporation
O43 - CFD: 04/01/2012 - [] D -- C:\ProgramData\Internet Mobile
O43 - CFD: 26/11/2017 - [] D -- C:\ProgramData\Kaspersky Lab =>.Kaspersky Lab
O43 - CFD: 20/11/2014 - [] D -- C:\ProgramData\KONAMI =>.Konami
O43 - CFD: 28/07/2014 - [] D -- C:\ProgramData\Logs =>.ABBYY Software
O43 - CFD: 31/08/2014 - [] D -- C:\ProgramData\Malwarebytes =>.Malwarebytes
O43 - CFD: 16/04/2017 - [] SD -- C:\ProgramData\Microsoft =>.Microsoft Corporation
O43 - CFD: 25/10/2015 - [] D -- C:\ProgramData\Microsoft Help =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [] D -- C:\ProgramData\Microsoft OneDrive =>.Microsoft Corporation
O43 - CFD: 06/08/2014 - [] D -- C:\ProgramData\NFS Underground Demo
O43 - CFD: 29/09/2012 - [] D -- C:\ProgramData\Nitro PDF =>.Nitro PDF
O43 - CFD: 22/10/2017 - [] D -- C:\ProgramData\Oracle =>.Oracle
O43 - CFD: 16/09/2017 - [] D -- C:\ProgramData\Package Cache =>.Microsoft Corporation
O43 - CFD: 21/11/2013 - [] D -- C:\ProgramData\PowerAMC 15
O43 - CFD: 16/10/2017 - [] D -- C:\ProgramData\ProductFeatures
O43 - CFD: 16/06/2013 - [] D -- C:\ProgramData\Qualcomm Atheros =>.Qualcomm Atheros
O43 - CFD: 16/09/2017 - [] D -- C:\ProgramData\Real =>.RealNetworks Inc.
O43 - CFD: 16/09/2017 - [] D -- C:\ProgramData\RealNetworks =>.RealNetworks
O43 - CFD: 17/11/2017 - [] AD -- C:\ProgramData\regid.1991-06.com.microsoft =>.Microsoft Corporation
O43 - CFD: 24/03/2015 - [] D -- C:\ProgramData\RogueKiller =>.Adlice Software
O43 - CFD: 14/10/2017 - [] D -- C:\ProgramData\Samsung =>.Samsung Electronics
O43 - CFD: 12/10/2017 - [] D -- C:\ProgramData\Shuame
O43 - CFD: 09/04/2017 - [] D -- C:\ProgramData\Skype =>.Skype
O43 - CFD: 18/03/2017 - [0] D -- C:\ProgramData\SoftwareDistribution =>.Microsoft Corporation
O43 - CFD: 13/08/2012 - [] D -- C:\ProgramData\Sony Ericsson =>.Sony Ericsson
O43 - CFD: 15/04/2017 - [0] SHD -- C:\ProgramData\Start Menu =>.Microsoft Corporation
O43 - CFD: 05/06/2014 - [] D -- C:\ProgramData\Steam =>.Steam Games
O43 - CFD: 30/01/2012 - [] D -- C:\ProgramData\Sun =>.Oracle
O43 - CFD: 27/09/2015 - [] D -- C:\ProgramData\Synaptics =>.Synaptics
O43 - CFD: 13/08/2012 - [] D -- C:\ProgramData\Teleca =>.Teleca
O43 - CFD: 11/02/2017 - [] AD -- C:\ProgramData\TEMP =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [0] SHD -- C:\ProgramData\Templates =>.Microsoft Corporation
O43 - CFD: 11/10/2017 - [] D -- C:\ProgramData\Tencent =>.SUP.Tencent
O43 - CFD: 15/04/2017 - [] D -- C:\ProgramData\USOPrivate =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [] D -- C:\ProgramData\USOShared =>.Microsoft Corporation
O43 - CFD: 21/01/2017 - [] D -- C:\ProgramData\WindSolutions =>.WindSolutions
O43 - CFD: 16/10/2017 - [] D -- C:\ProgramData\Wondershare =>.Wondershare
O43 - CFD: 08/04/2015 - [] AD -- C:\Program Files (x86)\Common Files\Adobe =>.Adobe
O43 - CFD: 04/08/2016 - [] D -- C:\Program Files (x86)\Common Files\Apple =>.Apple Inc.
O43 - CFD: 26/09/2015 - [] D -- C:\Program Files (x86)\Common Files\Atheros =>.Qualcomm Atheros
O43 - CFD: 17/11/2017 - [] D -- C:\Program Files (x86)\Common Files\DESIGNER =>.Designer
O43 - CFD: 27/05/2017 - [] D -- C:\Program Files (x86)\Common Files\InstallShield =>.InstallShield
O43 - CFD: 03/01/2012 - [] D -- C:\Program Files (x86)\Common Files\Intel =>.Intel Corporation
O43 - CFD: 03/08/2012 - [] D -- C:\Program Files (x86)\Common Files\Intel Corporation =>.Intel Corporation
O43 - CFD: 22/10/2017 - [] D -- C:\Program Files (x86)\Common Files\Java =>.Oracle
O43 - CFD: 17/11/2017 - [] AD -- C:\Program Files (x86)\Common Files\Microsoft Shared =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] D -- C:\Program Files (x86)\Common Files\Services =>.Microsoft Corporation
O43 - CFD: 09/04/2017 - [] AD -- C:\Program Files (x86)\Common Files\Skype =>.Skype
O43 - CFD: 15/04/2017 - [] D -- C:\Program Files (x86)\Common Files\SpeechEngines =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [] D -- C:\Program Files (x86)\Common Files\System =>.Microsoft Corporation
O43 - CFD: 11/10/2017 - [] D -- C:\Program Files (x86)\Common Files\Tencent =>.SUP.Tencent
O43 - CFD: 16/09/2017 - [] D -- C:\Program Files (x86)\Common Files\xing shared =>.Xing
O43 - CFD: 08/04/2015 - [] D -- C:\Users\Omnia\AppData\Roaming\Adobe =>.Adobe
O43 - CFD: 30/09/2015 - [] D -- C:\Users\Omnia\AppData\Roaming\Apple Computer =>.Apple Inc.
O43 - CFD: 13/08/2012 - [] D -- C:\Users\Omnia\AppData\Roaming\Carambis =>.Rostpay Ltd
O43 - CFD: 28/07/2014 - [] D -- C:\Users\Omnia\AppData\Roaming\DeltaBin
O43 - CFD: 05/09/2015 - [0] D -- C:\Users\Omnia\AppData\Roaming\DMCache =>.DMCache
O43 - CFD: 03/02/2012 - [] D -- C:\Users\Omnia\AppData\Roaming\driveridentifier =>.DriverIdentifier
O43 - CFD: 04/08/2016 - [] D -- C:\Users\Omnia\AppData\Roaming\DRPNano =>.DriverPack Solution
O43 - CFD: 04/08/2016 - [] D -- C:\Users\Omnia\AppData\Roaming\DRPSu =>.Driver PackSolution
O43 - CFD: 28/07/2016 - [] D -- C:\Users\Omnia\AppData\Roaming\dvdcss =>.VideoLan Team
O43 - CFD: 20/05/2016 - [] D -- C:\Users\Omnia\AppData\Roaming\Elcomsoft =>.Elcomsoft
O43 - CFD: 13/07/2012 - [] D -- C:\Users\Omnia\AppData\Roaming\eTeks =>.eTeks
O43 - CFD: 24/05/2015 - [] D -- C:\Users\Omnia\AppData\Roaming\GameRanger =>.GameRanger
O43 - CFD: 06/06/2015 - [] D -- C:\Users\Omnia\AppData\Roaming\HexHunterZ
O43 - CFD: 03/01/2012 - [] D -- C:\Users\Omnia\AppData\Roaming\Identities =>.Microsoft Corporation
O43 - CFD: 07/02/2012 - [] D -- C:\Users\Omnia\AppData\Roaming\InstallShield =>.InstallShield
O43 - CFD: 07/02/2012 - [] D -- C:\Users\Omnia\AppData\Roaming\Intel Corporation =>.Intel Corporation
O43 - CFD: 28/07/2014 - [] D -- C:\Users\Omnia\AppData\Roaming\LogMate
O43 - CFD: 10/01/2012 - [] D -- C:\Users\Omnia\AppData\Roaming\Macromedia =>.Macromedia
O43 - CFD: 15/04/2017 - [] SD -- C:\Users\Omnia\AppData\Roaming\Microsoft =>.Microsoft Corporation
O43 - CFD: 15/01/2013 - [] D -- C:\Users\Omnia\AppData\Roaming\MOBILedit
O43 - CFD: 29/08/2012 - [] D -- C:\Users\Omnia\AppData\Roaming\Mozilla =>.Mozilla Corporation
O43 - CFD: 29/09/2012 - [] D -- C:\Users\Omnia\AppData\Roaming\Nitro PDF =>.Nitro PDF
O43 - CFD: 14/09/2013 - [] D -- C:\Users\Omnia\AppData\Roaming\Notepad++ =>.Don Ho
O43 - CFD: 29/10/2014 - [] D -- C:\Users\Omnia\AppData\Roaming\Off Road
O43 - CFD: 10/09/2014 - [] D -- C:\Users\Omnia\AppData\Roaming\Oracle =>.Oracle
O43 - CFD: 15/09/2013 - [] D -- C:\Users\Omnia\AppData\Roaming\PowerDesigner
O43 - CFD: 01/06/2013 - [] D -- C:\Users\Omnia\AppData\Roaming\PowerDesigner16
O43 - CFD: 22/08/2013 - [] D -- C:\Users\Omnia\AppData\Roaming\PowerISO =>.PowerISO Computing
O43 - CFD: 20/08/2015 - [] D -- C:\Users\Omnia\AppData\Roaming\ProtectDISC =>.ProtectDisc Software GmbH
O43 - CFD: 16/09/2017 - [] D -- C:\Users\Omnia\AppData\Roaming\Real =>.RealNetworks Inc.
O43 - CFD: 16/09/2017 - [] D -- C:\Users\Omnia\AppData\Roaming\RealNetworks =>.RealNetworks
O43 - CFD: 02/07/2012 - [] D -- C:\Users\Omnia\AppData\Roaming\RegistryKeys =>.Microsoft Corporation
O43 - CFD: 14/10/2017 - [0] D -- C:\Users\Omnia\AppData\Roaming\Samsung =>.Samsung Electronics
O43 - CFD: 30/04/2012 - [] RHD -- C:\Users\Omnia\AppData\Roaming\SecuROM =>.SecuROM
O43 - CFD: 11/10/2017 - [] D -- C:\Users\Omnia\AppData\Roaming\Shuame
O43 - CFD: 09/04/2017 - [] D -- C:\Users\Omnia\AppData\Roaming\Skype =>.Skype
O43 - CFD: 29/08/2015 - [] D -- C:\Users\Omnia\AppData\Roaming\Sun =>.Oracle
O43 - CFD: 27/09/2015 - [] D -- C:\Users\Omnia\AppData\Roaming\Synaptics =>.Synaptics
O43 - CFD: 11/10/2017 - [] D -- C:\Users\Omnia\AppData\Roaming\Tencent =>.SUP.Tencent
O43 - CFD: 18/01/2016 - [] SHD -- C:\Users\Omnia\AppData\Roaming\ViperUpdate AU
O43 - CFD: 04/11/2017 - [] D -- C:\Users\Omnia\AppData\Roaming\vlc =>.VideoLan Team
O43 - CFD: 02/07/2012 - [] D -- C:\Users\Omnia\AppData\Roaming\VoipBuster
O43 - CFD: 12/01/2013 - [0] D -- C:\Users\Omnia\AppData\Roaming\Windows Live Writer =>.Microsoft Corporation
O43 - CFD: 21/01/2017 - [] D -- C:\Users\Omnia\AppData\Roaming\WindSolutions =>.WindSolutions
O43 - CFD: 17/08/2012 - [] D -- C:\Users\Omnia\AppData\Roaming\WinRAR =>.WinRAR
O43 - CFD: 26/11/2017 - [] D -- C:\Users\Omnia\AppData\Roaming\ZHP =>.Nicolas Coolman
O43 - CFD: 15/11/2015 - [0] D -- C:\Users\Omnia\AppData\Local\ActiveSync =>.Microsoft Corporation
O43 - CFD: 02/08/2017 - [] D -- C:\Users\Omnia\AppData\Local\Adobe =>.Adobe
O43 - CFD: 28/09/2015 - [] D -- C:\Users\Omnia\AppData\Local\Apple =>.Apple Inc.
O43 - CFD: 28/09/2015 - [] D -- C:\Users\Omnia\AppData\Local\Apple Computer =>.Apple Inc.
O43 - CFD: 15/04/2017 - [0] SHD -- C:\Users\Omnia\AppData\Local\Application Data =>.Microsoft Corporation
O43 - CFD: 02/06/2015 - [] D -- C:\Users\Omnia\AppData\Local\Apps =>.Microsoft Corporation
O43 - CFD: 27/01/2012 - [] D -- C:\Users\Omnia\AppData\Local\BMExplorer =>.BMExplorer
O43 - CFD: 16/07/2015 - [] D -- C:\Users\Omnia\AppData\Local\CEF =>.CEF
O43 - CFD: 26/09/2015 - [] D -- C:\Users\Omnia\AppData\Local\Comms =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [] D -- C:\Users\Omnia\AppData\Local\ConnectedDevicesPlatform =>.Microsoft Corporation
O43 - CFD: 26/09/2015 - [0] D -- C:\Users\Omnia\AppData\Local\CrashDumps =>.Microsoft Corporation
O43 - CFD: 16/04/2017 - [0] D -- C:\Users\Omnia\AppData\Local\DBG =>.DBG
O43 - CFD: 05/09/2016 - [0] D -- C:\Users\Omnia\AppData\Local\Diagnostics =>.Microsoft Corporation
O43 - CFD: 14/10/2017 - [] D -- C:\Users\Omnia\AppData\Local\Downloaded Installations =>.Microsoft Corporation
O43 - CFD: 15/04/2012 - [] D -- C:\Users\Omnia\AppData\Local\Electronic_Arts_Inc
O43 - CFD: 25/02/2017 - [0] D -- C:\Users\Omnia\AppData\Local\ElevatedDiagnostics =>.Microsoft Corporation
O43 - CFD: 10/06/2015 - [0] SHD -- C:\Users\Omnia\AppData\Local\EmieBrowserModeList =>.Enterprise mode Site List Mgr
O43 - CFD: 10/06/2015 - [0] SHD -- C:\Users\Omnia\AppData\Local\EmieSiteList =>.Enterprise mode Site List Mgr
O43 - CFD: 10/06/2015 - [0] SHD -- C:\Users\Omnia\AppData\Local\EmieUserList =>.Enterprise mode Site List Mgr
O43 - CFD: 03/09/2014 - [] D -- C:\Users\Omnia\AppData\Local\fontconfig =>.Portable Apps
O43 - CFD: 03/09/2014 - [] D -- C:\Users\Omnia\AppData\Local\gegl-0.2 =>.Portable Apps
O43 - CFD: 18/11/2016 - [] D -- C:\Users\Omnia\AppData\Local\Google =>.Google
O43 - CFD: 03/09/2014 - [] D -- C:\Users\Omnia\AppData\Local\gtk-2.0 =>.GTK Project
O43 - CFD: 01/06/2015 - [] D -- C:\Users\Omnia\AppData\Local\GWX =>.GWX
O43 - CFD: 15/04/2017 - [0] SHD -- C:\Users\Omnia\AppData\Local\History =>.Microsoft Corporation
O43 - CFD: 20/10/2012 - [] D -- C:\Users\Omnia\AppData\Local\Hook Network =>.Hook Network
O43 - CFD: 31/07/2012 - [0] D -- C:\Users\Omnia\AppData\Local\Kolor =>.Kolor
O43 - CFD: 29/08/2016 - [] D -- C:\Users\Omnia\AppData\Local\Mega Limited =>.MEGA Limited
O43 - CFD: 29/08/2016 - [] D -- C:\Users\Omnia\AppData\Local\MEGAsync =>.MegaSystems
O43 - CFD: 31/07/2017 - [] D -- C:\Users\Omnia\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 18/08/2015 - [] D -- C:\Users\Omnia\AppData\Local\Microsoft Games =>.Microsoft Corporation
O43 - CFD: 25/10/2015 - [] D -- C:\Users\Omnia\AppData\Local\Microsoft Help =>.Microsoft Corporation
O43 - CFD: 26/09/2015 - [] D -- C:\Users\Omnia\AppData\Local\MicrosoftEdge =>.Microsoft Corporation
O43 - CFD: 25/10/2015 - [] D -- C:\Users\Omnia\AppData\Local\mpress =>.MPress
O43 - CFD: 16/07/2016 - [] D -- C:\Users\Omnia\AppData\Local\MSfree Inc =>HackTool.WinActivator
O43 - CFD: 26/09/2015 - [0] D -- C:\Users\Omnia\AppData\Local\NetworkTiles =>.NetworkTiles
O43 - CFD: 20/03/2016 - [] D -- C:\Users\Omnia\AppData\Local\OpenERP S.A
O43 - CFD: 22/11/2017 - [] D -- C:\Users\Omnia\AppData\Local\Packages =>.Microsoft Corporation
O43 - CFD: 26/09/2015 - [0] D -- C:\Users\Omnia\AppData\Local\PeerDistRepub =>.Microsoft Corporation
O43 - CFD: 25/01/2013 - [] D -- C:\Users\Omnia\AppData\Local\Programs =>.Microsoft Corporation
O43 - CFD: 26/09/2015 - [] D -- C:\Users\Omnia\AppData\Local\Publishers =>.Microsoft Corporation
O43 - CFD: 20/09/2012 - [] D -- C:\Users\Omnia\AppData\Local\RadonLabs
O43 - CFD: 07/09/2015 - [] D -- C:\Users\Omnia\AppData\Local\Real =>.RealNetworks Inc.
O43 - CFD: 14/10/2017 - [0] D -- C:\Users\Omnia\AppData\Local\Samsung =>.Samsung Electronics
O43 - CFD: 06/06/2015 - [] D -- C:\Users\Omnia\AppData\Local\SKIDROW =>.SKIDROW
O43 - CFD: 09/04/2017 - [0] D -- C:\Users\Omnia\AppData\Local\Skype =>.Skype
O43 - CFD: 19/07/2017 - [] D -- C:\Users\Omnia\AppData\Local\Steam =>.Steam Games
O43 - CFD: 26/11/2017 - [] D -- C:\Users\Omnia\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [0] SHD -- C:\Users\Omnia\AppData\Local\Temporary Internet Files =>.Microsoft Corporation
O43 - CFD: 09/04/2017 - [] D -- C:\Users\Omnia\AppData\Local\TileDataLayer =>.Microsoft Corporation
O43 - CFD: 27/06/2012 - [] D -- C:\Users\Omnia\AppData\Local\VirtualStore =>.Microsoft Corporation
O43 - CFD: 03/09/2014 - [] D -- C:\Users\Omnia\AppData\Local\webkit =>.webkit
O43 - CFD: 11/06/2014 - [] D -- C:\Users\Omnia\AppData\Local\Windows Live =>.Microsoft Corporation
O43 - CFD: 12/01/2013 - [] D -- C:\Users\Omnia\AppData\Local\Windows Live Writer =>.Microsoft Corporation
O43 - CFD: 16/10/2017 - [] D -- C:\Users\Omnia\AppData\Local\Wondershare =>.Wondershare
O43 - CFD: 26/11/2017 - [] D -- C:\Users\Omnia\AppData\Local\ZHP =>.Nicolas Coolman
O43 - CFD: 25/01/2013 - [0] D -- C:\Users\Omnia\AppData\Local\Programs\Common =>.Microsoft Corporation
O43 - CFD: 07/11/2015 - [] D -- C:\Users\Omnia\Desktop\965YOKDJ
O43 - CFD: 29/10/2017 - [] D -- C:\Users\Omnia\Desktop\bmce
O43 - CFD: 22/10/2017 - [] D -- C:\Users\Omnia\Desktop\bp
O43 - CFD: 28/10/2017 - [] D -- C:\Users\Omnia\Desktop\iphone
O43 - CFD: 09/07/2017 - [] D -- C:\Users\Omnia\Desktop\Licence
O43 - CFD: 11/02/2017 - [] D -- C:\Users\Omnia\Desktop\master
O43 - CFD: 06/09/2014 - [] D -- C:\Users\Omnia\Desktop\music
O43 - CFD: 17/11/2016 - [] D -- C:\Users\Omnia\Desktop\new music
O43 - CFD: 04/11/2017 - [] D -- C:\Users\Omnia\Desktop\Nouveau dossier (2)
O43 - CFD: 31/05/2017 - [] D -- C:\Users\Omnia\Desktop\Nouveau dossier (3)
O43 - CFD: 16/04/2017 - [] D -- C:\Users\Omnia\Desktop\Nouveau dossier (4)
O43 - CFD: 21/07/2016 - [] D -- C:\Users\Omnia\Desktop\om
O43 - CFD: 27/10/2015 - [] D -- C:\Users\Omnia\Desktop\omnia
O43 - CFD: 07/11/2015 - [] D -- C:\Users\Omnia\Desktop\phone omnia
O43 - CFD: 04/08/2017 - [] D -- C:\Users\Omnia\Desktop\photos ihab
O43 - CFD: 18/03/2017 - [] RD -- C:\Users\Omnia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [] RD -- C:\Users\Omnia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories =>.Microsoft Corporation
O43 - CFD: 16/11/2017 - [] RD -- C:\Users\Omnia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools
O43 - CFD: 11/02/2016 - [0] D -- C:\Users\Omnia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] D -- C:\Users\Omnia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance =>.Microsoft Corporation
O43 - CFD: 16/11/2017 - [] RD -- C:\Users\Omnia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup =>.Microsoft Corporation
O43 - CFD: 19/07/2017 - [] D -- C:\Users\Omnia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam =>.Steam Games
O43 - CFD: 18/03/2017 - [] RD -- C:\Users\Omnia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] RD -- C:\Users\Omnia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [] D -- C:\Users\Omnia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR
O43 - CFD: 15/04/2017 - [0] SHD -- C:\Users\Default\AppData\Local\Application Data =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [0] SHD -- C:\Users\Default\AppData\Local\History =>.Microsoft Corporation
O43 - CFD: 19/03/2017 - [] D -- C:\Users\Default\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 21/01/2017 - [0] D -- C:\Users\Default\AppData\Local\Microsoft Help =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [0] D -- C:\Users\Default\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [0] SHD -- C:\Users\Default\AppData\Local\Temporary Internet Files =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [0] SHD -- C:\Users\Default User\AppData\Local\Application Data =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [0] SHD -- C:\Users\Default User\AppData\Local\History =>.Microsoft Corporation
O43 - CFD: 19/03/2017 - [] D -- C:\Users\Default User\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 21/01/2017 - [0] D -- C:\Users\Default User\AppData\Local\Microsoft Help =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [0] D -- C:\Users\Default User\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [0] SHD -- C:\Users\Default User\AppData\Local\Temporary Internet Files =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [0] D -- C:\WINDOWS\System32\Config\systemprofile\AppData\Local\DBG =>.DBG
O43 - CFD: 30/04/2017 - [] D -- C:\WINDOWS\System32\Config\systemprofile\AppData\Local\Microsoft =>.Microsoft Corporation
---\\ ShellIconOverlayIdentifiers (SIOI) (5) - 0s
O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 1 (ErrorConflict) [ SkyDrivePro1 (ErrorConflict)] - {8BA85C75-763B-4103-94EB-9470F12FE0F7}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 2 (SyncInProgress) [ SkyDrivePro2 (SyncInProgress)] - {CD55129A-B1A1-438E-A425-CEBC7DC684EE}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 3 (InSync) [ SkyDrivePro3 (InSync)] - {E768CD3B-BDDC-436D-9C13-E1B39CA257B1}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - DLL d’extension d’environnement de stockage.) -- C:\Windows\System32\EhStorShell.dll =>.Microsoft Corporation
O106 - SIOI: [Offline Files] - {4E77131D-3629-431c-9818-C5679DC83E81}. (.Microsoft Corporation - IU de cache côté client.) -- C:\WINDOWS\System32\cscui.dll =>.Microsoft Corporation
---\\ Raccourcis de menus conceptuels (SCMH) (35) - 5s
O108 - CMH1: ANotepad++64 [64Bits] - {B298D29A-A6ED-11DE-BA8C-A68E55D89593} . (...) -- D:\notepad\Notepad++\NppShell_05.dll (.not file.) =>.Don Ho
O108 - CMH1: Kaspersky Anti-Virus 16.0.0 [64Bits] - {C845F70F-050A-4052-81DE-587D90C20FE8} . (.Kaspersky Lab ZAO - Shell Extension.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\x64\shellex.dll =>.Kaspersky Lab®
O108 - CMH1: MEGA (Context menu) [64Bits] - {0229E5E7-09E9-45CF-9228-0228EC7D5F17} . (...) -- C:\Users\Omnia\AppData\Local\MEGAsync\ShellExtX64.dll (.not file.)
O108 - CMH1: ModernSharing [64Bits] - {e2bf9676-5f8f-435c-97eb-11607a5bedf7} . (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation
O108 - CMH1: Open With [64Bits] - {09799AFB-AD67-11d1-ABCD-00C04FC30936} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH1: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation
O108 - CMH1: WinRAR [64Bits] - {B41DB860-64E4-11D2-9906-E49FADC173CA} . (.Alexander Roshal - WinRAR shell extension.) -- C:\Program Files\WinRAR\RarExt.dll =>.win.rar GmbH®
O108 - CMH1: WinRAR32 [64Bits] - {B41DB860-8EE4-11D2-9906-E49FADC173CA} . (.Orphan.)
O108 - CMH1: WorkFolders [64Bits] - {E61BF828-5E63-4287-BEF1-60B1A4FDE0E3} . (.Microsoft Corporation - Extension d’environnement de Dossiers de tr.) -- C:\Windows\System32\WorkfoldersShell.dll =>.Microsoft Corporation
O108 - CMH2: OpenContainingFolderMenu [64Bits] - {37ea3a21-7493-4208-a011-7f9ea79ce9f5} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH3: CopyAsPathMenu [64Bits] - {f3d06e7c-1e45-4a26-847e-f9fcdee59be0} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH3: MEGA (Context menu) [64Bits] - {0229E5E7-09E9-45CF-9228-0228EC7D5F17} . (...) -- C:\Users\Omnia\AppData\Local\MEGAsync\ShellExtX64.dll (.not file.)
O108 - CMH3: SendTo [64Bits] - {7BA4C740-9E81-11CF-99D3-00AA004AE837} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH4: Kaspersky Anti-Virus 16.0.0 [64Bits] - {C845F70F-050A-4052-81DE-587D90C20FE8} . (.Kaspersky Lab ZAO - Shell Extension.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\x64\shellex.dll =>.Kaspersky Lab®
O108 - CMH4: MEGA (Context menu) [64Bits] - {0229E5E7-09E9-45CF-9228-0228EC7D5F17} . (...) -- C:\Users\Omnia\AppData\Local\MEGAsync\ShellExtX64.dll (.not file.)
O108 - CMH4: MSSE [64Bits] - {0365FE2C-F183-4091-AC82-BFC39FB75C49} . (.Orphan.)
O108 - CMH4: Offline Files [64Bits] - {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} . (.Microsoft Corporation - IU de cache côté client.) -- C:\WINDOWS\System32\cscui.dll =>.Microsoft Corporation
O108 - CMH4: PowerISO [64Bits] - {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} . (.Orphan.)
O108 - CMH4: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation
O108 - CMH4: WorkFolders [64Bits] - {E61BF828-5E63-4287-BEF1-60B1A4FDE0E3} . (.Microsoft Corporation - Extension d’environnement de Dossiers de tr.) -- C:\Windows\System32\WorkfoldersShell.dll =>.Microsoft Corporation
O108 - CMH5: Gadgets [64Bits] - {6B9228DA-9C15-419e-856C-19E768A13BDC} . (.Orphan.)
O108 - CMH5: igfxcui [64Bits] - {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} . (.Intel Corporation - igfxpph Module.) -- C:\WINDOWS\system32\igfxpph.dll =>.Intel Corporation
O108 - CMH5: New [64Bits] - {D969A300-E7FF-11d0-A93B-00A0C90F2719} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH5: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation
O108 - CMH5: WorkFolders [64Bits] - {E61BF828-5E63-4287-BEF1-60B1A4FDE0E3} . (.Microsoft Corporation - Extension d’environnement de Dossiers de tr.) -- C:\Windows\System32\WorkfoldersShell.dll =>.Microsoft Corporation
O108 - CMH6: Kaspersky Anti-Virus 16.0.0 [64Bits] - {C845F70F-050A-4052-81DE-587D90C20FE8} . (.Kaspersky Lab ZAO - Shell Extension.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\x64\shellex.dll =>.Kaspersky Lab®
O108 - CMH6: Library Location [64Bits] - {3dad6c5d-2167-4cae-9914-f99e41c12cfa} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH6: Offline Files [64Bits] - {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} . (.Microsoft Corporation - IU de cache côté client.) -- C:\WINDOWS\System32\cscui.dll =>.Microsoft Corporation
O108 - CMH6: PintoStartScreen [64Bits] - {470C0EBD-5D73-4d58-9CED-E91E22E23282} . (.Microsoft Corporation - Programme de résolution d’applications.) -- C:\Windows\System32\appresolver.dll =>.Microsoft Windows®
O108 - CMH6: PowerISO [64Bits] - {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} . (.Orphan.)
O108 - CMH6: WinRAR [64Bits] - {B41DB860-64E4-11D2-9906-E49FADC173CA} . (.Alexander Roshal - WinRAR shell extension.) -- C:\Program Files\WinRAR\RarExt.dll =>.win.rar GmbH®
O108 - CMH6: WinRAR32 [64Bits] - {B41DB860-8EE4-11D2-9906-E49FADC173CA} . (.Orphan.)
O108 - CMH7: EnhancedStorageShell [64Bits] - {2854F705-3548-414C-A113-93E27C808C85} . (.Microsoft Corporation - DLL d’extension d’environnement de stockage.) -- C:\Windows\System32\EhStorShell.dll =>.Microsoft Corporation
O108 - CMH7: Kaspersky Anti-Virus 16.0.0 [64Bits] - {C845F70F-050A-4052-81DE-587D90C20FE8} . (.Kaspersky Lab ZAO - Shell Extension.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\x64\shellex.dll =>.Kaspersky Lab®
O108 - CMH7: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation
---\\ Image File Execution Options (18) - 2s
O50 - IFEO:C:\Windows\System32\cscript.exe - (.Microsoft Corporation - Microsoft ® Console Based Script Host.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\dllhost.exe - (.Microsoft Corporation - COM Surrogate.) [DisableExceptionChainValidation\\3] =>.Microsoft Windows®
O50 - IFEO:C:\WINDOWS\System32\drvinst.exe - (.Microsoft Corporation - Module d’installation de pilotes.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\ie4uinit.exe - (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\ieUnatt.exe - (.Microsoft Corporation - Outil d’installation sans assistance d’IE 7.) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\mmc.exe - (.Microsoft Corporation - Microsoft Management Console.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\MRT.exe - (.Microsoft Corporation - Outil de suppression de logiciels malveilla.) [CFGOptions\\1] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\msfeedssync.exe - (.Microsoft Corporation - Microsoft Feeds Synchronization.) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\mshta.exe - (.Microsoft Corporation - Hôte des applications HTML de Microsoft(R).) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\PresentationHost.exe - (.Microsoft Corporation - Windows Presentation Foundation Host.) [MitigationOptions\\1118481] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\PrintIsolationHost.exe - (.Microsoft Corporation - PrintIsolationHost.) [MitigationOptions\\2097152] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\rundll32.exe - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\runtimebroker.exe - (.Microsoft Corporation - Runtime Broker.) [MitigationOptions\\4294967296] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\searchprotocolhost.exe - (.Microsoft Corporation - Microsoft Windows Search Protocol Host.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\spoolsv.exe - (.Microsoft Corporation - Application sous-système spouleur.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\spoolsv.exe - (.Microsoft Corporation - Application sous-système spouleur.) [MitigationOptions\\2097152] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\svchost.exe - (.Microsoft Corporation - Processus hôte pour les services Windows.) [MinimumStackCommitInBytes\\32768] =>.Microsoft Windows Publisher®
O50 - IFEO:C:\Windows\System32\wscript.exe - (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
---\\ Liste des pilotes du système (109) - 37s
O58 - SDL:2015/03/25 15:27:37 A . (.Kaspersky Lab ZAO - Kaspersky Unified Driver.) -- C:\WINDOWS\System32\drivers\11A4E5D76.sys [457824] =>.Kaspersky Lab®
O58 - SDL:2015/03/25 15:30:50 A . (.Kaspersky Lab ZAO - Kaspersky Unified Driver.) -- C:\WINDOWS\System32\drivers\11A4E5D761.sys [457824] =>.Kaspersky Lab®
O58 - SDL:2015/03/25 11:56:05 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\166D5B0C.sys [136408] =>.Malwarebytes Corporation® (.SUP.Orphan)
O58 - SDL:2017/03/18 20:55:43 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\WINDOWS\System32\drivers\3ware.sys [107424] =>.Microsoft Windows®
O58 - SDL:2015/03/24 16:07:15 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\6BBA4D26.sys [136408] =>.Malwarebytes Corporation® (.SUP.Orphan)
O58 - SDL:2017/03/18 20:55:43 A . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS.) -- C:\WINDOWS\System32\drivers\adp80xx.sys [1135512] =>.Microsoft Windows®
O58 - SDL:2017/03/18 20:55:43 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\WINDOWS\System32\drivers\amdsata.sys [83352] =>.Microsoft Windows®
O58 - SDL:2017/03/18 20:55:43 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\WINDOWS\System32\drivers\amdsbs.sys [259488] =>.Microsoft Windows®
O58 - SDL:2017/03/18 20:55:43 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\WINDOWS\System32\drivers\amdxata.sys [27040] =>.Microsoft Windows®
O58 - SDL:2017/03/18 20:55:43 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\WINDOWS\System32\drivers\arcsas.sys [132000] =>.Microsoft Windows®
O58 - SDL:2017/03/18 20:55:40 A . (.Qualcomm Atheros Communications, Inc. - Qualcomm Atheros Extensible Wireless LAN de.) -- C:\WINDOWS\System32\drivers\athwnx.sys [4233728] =>.Qualcomm Atheros Communications, Inc.
O58 - SDL:2017/03/18 20:55:43 A . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\WINDOWS\System32\drivers\bcmfn2.sys [9728] =>.Windows (R) Win 7 DDK provider
O58 - SDL:2016/07/13 17:47:38 A . (.Qualcomm Atheros - Qualcomm Atheros BtFilter Driver.) -- C:\WINDOWS\System32\drivers\btfilter.sys [610336] =>.Microsoft Windows Hardware Compatibility Publisher®
O58 - SDL:2017/03/18 20:55:42 A . (.QLogic Corporation - QLogic Gigabit Ethernet VBD.) -- C:\WINDOWS\System32\drivers\bxvbda.sys [533920] =>.Microsoft Windows®
O58 - SDL:2017/03/18 20:55:43 A . (.Chelsio Communications - Chelsio iSCSI Crash Dump Driver.) -- C:\WINDOWS\System32\drivers\cht4dx64.sys [102816] =>.Microsoft Windows®
O58 - SDL:2017/03/18 20:55:43 A . (.Chelsio Communications - Chelsio iSCSI VMiniport Driver.) -- C:\WINDOWS\System32\drivers\cht4sx64.sys [347032] =>.Microsoft Windows®
O58 - SDL:2017/03/18 20:55:43 A . (.Chelsio Communications - Virtual Bus Driver for Chelsio ® T4 Chipset.) -- C:\WINDOWS\System32\drivers\cht4vx64.sys [2104224] =>.Microsoft Windows®
O58 - SDL:2015/07/05 23:10:20 A . (.Kaspersky Lab ZAO - Cryptographic Module Driver x64 (Weak).) -- C:\WINDOWS\System32\drivers\cm_km.sys [389816] =>.Kaspersky Lab®
O58 - SDL:2007/01/04 13:47:10 A . (.Analog Deivces - USB Firmware loader.) -- C:\WINDOWS\System32\drivers\e4ldrx64.sys [71832] =>.Ikanos Communications, Inc.®
O58 - SDL:2017/03/18 20:55:42 A . (.QLogic Corporation - QLogic 10 GigE VBD.) -- C:\WINDOWS\System32\drivers\evbda.sys [3419040] =>.Microsoft Windows®
O58 - SDL:2012/01/04 20:31:23 A . (.Huawei Tech. Co., Ltd. - HUAWEI USB Smart Card Driver.) -- C:\WINDOWS\System32\drivers\ewdcsc.sys [32768] =>.Huawei Tech. Co., Ltd.
O58 - SDL:2012/01/04 20:31:23 A . (.Huawei Technologies Co., Ltd. - USB Modem/Serial Device Driver.) -- C:\WINDOWS\System32\drivers\ewusbmdm.sys [222464] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2012/01/04 20:31:23 A . (.Huawei Technologies Co., Ltd. - USB NDIS Miniport Driver.) -- C:\WINDOWS\System32\drivers\ewusbwwan.sys [421376] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2012/01/04 20:31:23 A . (.Huawei Technologies Co., Ltd. - ew_hwupgrade Driver.) -- C:\WINDOWS\System32\drivers\ew_hwupgrade.sys [22016] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2012/01/04 20:31:23 A . (.Huawei Technologies Co., Ltd. - USB Modem/Serial Device Driver.) -- C:\WINDOWS\System32\drivers\ew_hwusbdev.sys [117248] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2012/01/04 20:31:23 A . (.Huawei Technologies Co., Ltd. - ew_jubusenum Driver.) -- C:\WINDOWS\System32\drivers\ew_jubusenum.sys [86016] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2012/01/04 20:31:23 A . (.Huawei Technologies Co., Ltd. - ew_jucdcacm Driver.) -- C:\WINDOWS\System32\drivers\ew_jucdcacm.sys [98816] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2012/01/04 20:31:23 A . (.Huawei Technologies Co., Ltd. - ew_jucdcndis Driver.) -- C:\WINDOWS\System32\drivers\ew_jucdcecm.sys [69632] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2012/01/04 20:31:23 A . (.Huawei Technologies Co., Ltd. - ew_juextctrl Driver.) -- C:\WINDOWS\System32\drivers\ew_juextctrl.sys [28672] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2012/01/04 20:31:23 A . (.Huawei Technologies Co., Ltd. - ew_jucdcndis Driver.) -- C:\WINDOWS\System32\drivers\ew_juwwanecm.sys [212992] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2012/01/04 20:31:23 A . (.Huawei Technologies Co., Ltd. - Filter Driver.) -- C:\WINDOWS\System32\drivers\ew_usbenumfilter.sys [13952] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2009/09/17 19:54:54 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\WINDOWS\System32\drivers\HECIx64.sys [56344] =>.Intel Corporation®
O58 - SDL:2017/03/18 20:55:43 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\WINDOWS\System32\drivers\HpSAMD.sys [64416] =>.Microsoft Windows®
O58 - SDL:2017/03/18 20:55:45 A . (.Intel(R) Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\iagpio.sys [33280] =>.Intel(R) Corporation
O58 - SDL:2017/03/18 20:55:45 A . (.Intel(R) Corporation - Intel(R) Serial IO I2C Driver.) -- C:\WINDOWS\System32\drivers\iai2c.sys [81408] =>.Intel(R) Corporation
O58 - SDL:2017/03/18 20:55:45 A . (.Intel Corporation - Intel(R) Serial IO GPIO Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [70656] =>.Intel Corporation
O58 - SDL:2017/03/18 20:55:45 A . (.Intel Corporation - Intel(R) Serial IO GPIO Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [85504] =>.Intel Corporation
O58 - SDL:2017/03/18 20:55:45 A . (.Intel Corporation - Intel(R) Serial IO I2C Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [165376] =>.Intel Corporation
O58 - SDL:2017/03/18 20:55:45 A . (.Intel Corporation - Intel(R) Serial IO I2C Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [168448] =>.Intel Corporation
O58 - SDL:2017/03/18 20:55:42 A . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [38128] =>.Intel Corporation - Client Components Group®
O58 - SDL:2017/03/18 20:55:40 A . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [113152] =>.Intel Corporation
O58 - SDL:2012/05/30 13:42:10 A . (.Intel Corporation - Intel Rapid Storage Technology driver - x64.) -- C:\WINDOWS\System32\drivers\iaStor.sys [569152] =>.Intel Corporation®
O58 - SDL:2013/11/21 08:31:28 A . (.Intel Corporation - Intel Rapid Storage Technology driver - x64.) -- C:\WINDOWS\System32\drivers\iaStorA.sys [632168] =>.Intel Corporation - Intel® Rapid Storage Technology®
O58 - SDL:2017/03/18 20:55:44 A . (.Intel Corporation - Intel(R) Rapid Storage Technology driver (i.) -- C:\WINDOWS\System32\drivers\iaStorAV.sys [673184] =>.Microsoft Windows®
O58 - SDL:2017/03/18 20:55:44 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\WINDOWS\System32\drivers\iaStorV.sys [412064] =>.Microsoft Windows®
O58 - SDL:2017/03/18 20:55:43 A . (.Mellanox - InfiniBand Fabric Bus Driver.) -- C:\WINDOWS\System32\drivers\ibbus.sys [526240] =>.Microsoft Windows®
O58 - SDL:2012/11/26 23:26:12 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\WINDOWS\System32\drivers\igdkmd64.sys [12311776] =>.Intel Corporation
O58 - SDL:2011/08/23 18:12:56 A . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\WINDOWS\System32\drivers\IntcDAud.sys [317440] =>.Intel(R) Corporation
O58 - SDL:2015/06/22 19:40:04 A . (.Kaspersky Lab ZAO - Kaspersky Unified Driver.) -- C:\WINDOWS\System32\drivers\kl1.sys [478392] =>.Kaspersky Lab®
O58 - SDL:2015/06/06 07:48:24 A . (.Kaspersky Lab ZAO - Backup Disk Filter [fre_wnet_x64].) -- C:\WINDOWS\System32\drivers\klbackupdisk.sys [53432] =>.Kaspersky Lab®
O58 - SDL:2015/06/27 00:30:00 A . (.Kaspersky Lab ZAO - Backup File Filter [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klbackupflt.sys [70512] =>.Kaspersky Lab®
O58 - SDL:2016/08/24 15:09:27 A . (.AO Kaspersky Lab - Virtual Disk [fre_wnet_x64].) -- C:\WINDOWS\System32\drivers\kldisk.sys [77728] =>.Kaspersky Lab®
O58 - SDL:2015/06/24 00:28:32 A . (.Kaspersky Lab - Klelam Mini-Filter [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klelam.sys [30328] =>.Microsoft Windows Early Launch Anti-malware Publisher®
O58 - SDL:2015/12/08 00:24:14 A . (.AO Kaspersky Lab - Filter Core [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klflt.sys [181640] =>.Kaspersky Lab®
O58 - SDL:2016/08/24 15:05:34 A . (.AO Kaspersky Lab - klhk [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klhk.sys [238000] =>.Kaspersky Lab®
O58 - SDL:2016/08/24 15:09:33 A . (.AO Kaspersky Lab - Core System Interceptors [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klif.sys [933808] =>.Kaspersky Lab®
O58 - SDL:2017/04/15 13:55:49 A . (.AO Kaspersky Lab - Kaspersky Lab Intermediate Network Driver [.) -- C:\WINDOWS\System32\drivers\klim6.sys [49240] =>.Kaspersky Lab®
O58 - SDL:2015/06/06 07:31:42 A . (.Kaspersky Lab ZAO - Keyboard Device Filter [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klkbdflt.sys [41656] =>.Kaspersky Lab®
O58 - SDL:2015/06/07 00:52:56 A . (.Kaspersky Lab ZAO - Mouse Device Filter [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klmouflt.sys [41656] =>.Kaspersky Lab®
O58 - SDL:2015/12/08 00:24:14 A . (.AO Kaspersky Lab - Format Recognizer [fre_wnet_x64].) -- C:\WINDOWS\System32\drivers\klpd.sys [41352] =>.Kaspersky Lab®
O58 - SDL:2016/08/24 15:09:35 A . (.AO Kaspersky Lab - WFP Network Filter [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klwfp.sys [87984] =>.Kaspersky Lab®
O58 - SDL:2015/06/16 20:56:32 A . (.Kaspersky Lab ZAO - WFP Network Connection Filter Driver [fre_w.) -- C:\WINDOWS\System32\drivers\klwtp.sys [102584] =>.Kaspersky Lab®
O58 - SDL:2015/06/23 17:30:50 A . (.Kaspersky Lab ZAO - Network Processor [fre_wnet_x64].) -- C:\WINDOWS\System32\drivers\kneps.sys [187056] =>.Kaspersky Lab®
O58 - SDL:2017/03/18 20:55:43 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas.sys [108960] =>.Microsoft Windows®
O58 - SDL:2017/03/18 20:55:43 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas2i.sys [123808] =>.Microsoft Windows®
O58 - SDL:2017/03/18 20:55:43 A . (.Avago Technologies - Avago SAS Gen3 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas3i.sys [103328] =>.Microsoft Windows®
O58 - SDL:2017/03/18 20:55:43 A . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sss.sys [82848] =>.Microsoft Windows®
O58 - SDL:2017/03/18 20:55:43 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\megasas.sys [59808] =>.Microsoft Windows®
O58 - SDL:2017/03/18 20:55:43 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\MegaSas2i.sys [64416] =>.Microsoft Windows®
O58 - SDL:2017/03/18 20:55:43 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\WINDOWS\System32\drivers\megasr.sys [575904] =>.Microsoft Windows®
O58 - SDL:2017/03/18 20:55:43 A . (.Mellanox - MLX4 Bus Driver.) -- C:\WINDOWS\System32\drivers\mlx4_bus.sys [842656] =>.Microsoft Windows®
O58 - SDL:2012/01/04 20:31:23 A . (.DiBcom SA - DiBcom AVSTREAM BDA driver.) -- C:\WINDOWS\System32\drivers\mod7700.sys [1001472] =>.DiBcom SA
O58 - SDL:2017/03/18 20:55:43 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\WINDOWS\System32\drivers\mvumis.sys [63904] =>.Microsoft Windows®
O58 - SDL:2017/03/18 20:55:43 A . (.Mellanox - NetworkDirect Support Filter Driver.) -- C:\WINDOWS\System32\drivers\ndfltr.sys [108960] =>.Microsoft Windows®
O58 - SDL:2017/03/18 20:55:43 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\WINDOWS\System32\drivers\nvraid.sys [150432] =>.Microsoft Windows®
O58 - SDL:2017/03/18 20:55:43 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\WINDOWS\System32\drivers\nvstor.sys [166304] =>.Microsoft Windows®
O58 - SDL:2017/03/18 20:55:43 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas2i.sys [58784] =>.Microsoft Windows®
O58 - SDL:2017/03/18 20:55:43 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas3i.sys [61848] =>.Microsoft Windows®
O58 - SDL:2013/04/29 08:17:34 A . (.Panda Security, S.L. - Panda Kernel Memory Access Driver (x86).) -- C:\WINDOWS\System32\drivers\PSKMAD.sys [47632] =>.Panda Security S.L®
O58 - SDL:2017/10/20 03:32:36 A . (.Realtek - Realtek 8101E/8168/8169 NDIS 6.40 64-bit Dr.) -- C:\WINDOWS\System32\drivers\rt640x64.sys [1010648] =>.Realtek Semiconductor Corp.®
O58 - SDL:2017/01/11 11:38:16 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\WINDOWS\System32\drivers\RTKVHD64.sys [5545472] =>.Realtek Semiconductor Corp.®
O58 - SDL:2017/04/20 02:04:59 A . (.Realtek Semiconductor Corp. - Realtek Pcie CardReader Driver for 2K/XP/Vi.) -- C:\WINDOWS\System32\drivers\RtsBaStor.sys [338400] =>.Realtek Semiconductor Corp.®
O58 - SDL:2017/04/14 02:12:58 A . (.Realtek Semiconductor Corp. - Realtek Pcie CardReader Driver for 2K/XP/Vi.) -- C:\WINDOWS\System32\drivers\RtsP2Stor.sys [329184] =>.Realtek Semiconductor Corp.®
O58 - SDL:2017/06/26 08:16:27 A . (.Realsil Semiconductor Corporation - RTS PCIE READER Driver.) -- C:\WINDOWS\System32\drivers\RtsPer.sys [783808] =>.Realtek Semiconductor Corp.®
O58 - SDL:2017/04/19 02:01:20 A . (.Realtek Semiconductor Corp. - Realtek Pcie CardReader Driver for 2K/XP/Vi.) -- C:\WINDOWS\System32\drivers\RtsPStor.sys [400352] =>.Realtek Semiconductor Corp.®
O58 - SDL:2017/04/27 06:02:56 A . (.Realsil Semiconductor Corporation - RTS USB READER Driver.) -- C:\WINDOWS\System32\drivers\RtsUer.sys [420832] =>.Realtek Semiconductor Corp.®
O58 - SDL:2017/03/18 20:55:44 A . (...) -- C:\WINDOWS\System32\drivers\SDFRd.sys [31128] =>.Microsoft Windows®
O58 - SDL:2007/02/12 16:56:08 A . (.Prolific Technology Inc. - USB-to-Serial Cable Driver.) -- C:\WINDOWS\System32\drivers\ser2pl64.sys [89600] =>.Prolific Technology Inc.
O58 - SDL:2017/03/18 20:55:43 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid2.sys [44960] =>.Microsoft Windows®
O58 - SDL:2017/03/18 20:55:43 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid4.sys [81824] =>.Microsoft Windows®
O58 - SDL:2016/04/27 23:53:48 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\WINDOWS\System32\drivers\Smb_driver_AMDASF_Aux.sys [52392] =>.Synaptics Incorporated®
O58 - SDL:2016/04/27 23:53:48 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\WINDOWS\System32\drivers\Smb_driver_Intel.sys [52904] =>.Synaptics Incorporated®
O58 - SDL:2016/04/27 23:53:48 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\WINDOWS\System32\drivers\Smb_driver_Intel_Aux.sys [52904] =>.Synaptics Incorporated®
O58 - SDL:2011/05/13 03:21:02 A . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\WINDOWS\System32\drivers\ssadcm.sys [13288] =>.MCCI Corporation
O58 - SDL:2011/05/13 03:21:04 A . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\WINDOWS\System32\drivers\ssadwh.sys [13800] =>.MCCI Corporation
O58 - SDL:2017/01/16 06:26:40 A . (.Samsung Electronics Co., Ltd. - SAMSUNG USB Composite Device Driver.) -- C:\WINDOWS\System32\drivers\ssudbus.sys [131712] =>.Samsung Electronics CO., LTD.®
O58 - SDL:2017/01/16 06:26:40 A . (.Samsung Electronics Co., Ltd. - SAMSUNG Android Modem Device Driver.) -- C:\WINDOWS\System32\drivers\ssudmdm.sys [165504] =>.Samsung Electronics CO., LTD.®
O58 - SDL:2017/03/18 20:55:43 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\WINDOWS\System32\drivers\stexstor.sys [31136] =>.Microsoft Windows®
O58 - SDL:2016/04/27 23:53:48 A . (.Synaptics Incorporated - Synaptics Touchpad Win64 Driver.) -- C:\WINDOWS\System32\drivers\SynTP.sys [622784] =>.Synaptics Incorporated®
O58 - SDL:2013/09/28 02:56:48 A . (.Trend Micro Inc. - TrendMicro Common Module.) -- C:\WINDOWS\System32\drivers\tmcomm.sys [285208] =>.Trend Micro, Inc.®
O58 - SDL:2015/03/24 14:42:08 A . (...) -- C:\WINDOWS\System32\drivers\TrueSight.sys [35064] =>.Adlice®
O58 - SDL:2016/03/28 12:41:34 A . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\WINDOWS\System32\drivers\usbaapl64.sys [54784] =>.Apple, Inc.
O58 - SDL:2017/03/18 20:55:43 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\WINDOWS\System32\drivers\vsmraid.sys [166816] =>.Microsoft Windows®
O58 - SDL:2017/03/18 20:55:43 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\WINDOWS\System32\drivers\VSTXRAID.SYS [305568] =>.Microsoft Windows®
O58 - SDL:2017/03/18 20:55:43 A . (.Mellanox - Kernel WinMad.) -- C:\WINDOWS\System32\drivers\winmad.sys [32160] =>.Microsoft Windows®
O58 - SDL:2017/03/18 20:55:43 A . (.Mellanox - Kernel WinVerbs.) -- C:\WINDOWS\System32\drivers\winverbs.sys [64920] =>.Microsoft Windows®
O58 - SDL:2014/06/05 19:34:32 A . (.Qualcomm Atheros Communications, Inc. - Qualcomm Atheros Extensible Wireless LAN de.) -- C:\WINDOWS\System32\athrx.sys [4055040] =>.Qualcomm Atheros Communications, Inc.
O58 - SDL:2013/08/26 10:52:56 A . (...) -- C:\WINDOWS\System32\pwdrvio.sys [19032] =>.MiniTool Solution Ltd®
O58 - SDL:2013/08/26 10:52:54 A . (...) -- C:\WINDOWS\System32\pwdspio.sys [12384] =>.MiniTool Solution Ltd®
---\\ Associations Shell Spawning (10) - 0s
O67 - Shell Spawning: <.bat>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\WINDOWS\System32\control.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Ob.) -- C:\WINDOWS\System32\eventvwr.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.exe>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.EXE =>.Microsoft Corporation®
O67 - Shell Spawning: <.js>[HKLM\..\open\Command] (...) -- %1" %*
O67 - Shell Spawning: <.reg>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.scr>[HKLM\..\open\Command] (...) -- "%1" /S
---\\ Menu de démarrage Internet (8) - 1s
O68 - StartMenuInternet: [64Bits][HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O68 - StartMenuInternet: [64Bits][HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
---\\ Recherche d'infection sur les navigateurs (2) - 0s
O69 - SBI: SearchScopes [HKCU] [64Bits]{0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/ =>.Bing.com
O69 - SBI: SearchScopes [HKLM] [64Bits]{0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (@ieframe.dll,-12512) - http://www.bing.com/ =>.Bing.com
---\\ Enumère les services démarrés par Svchost (48) - 1s
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\WINDOWS\System32\certprop.dll [189952] =>.Microsoft Corporation
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\WINDOWS\System32\certprop.dll [189952] =>.Microsoft Corporation
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\WINDOWS\System32\srvsvc.dll [303104] =>.Microsoft Corporation
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\WINDOWS\System32\gpsvc.dll [1269248] =>.Microsoft Corporation
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\WINDOWS\System32\ikeext.dll [934912] =>.Microsoft Corporation
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\WINDOWS\System32\iphlpsvc.dll [996864] =>.Microsoft Corporation
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\WINDOWS\system32\seclogon.dll [31232] =>.Microsoft Corporation
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\WINDOWS\System32\appinfo.dll [138752] =>.Microsoft Corporation
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\WINDOWS\System32\iscsiexe.dll [150016] =>.Microsoft Corporation
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\WINDOWS\System32\eapsvc.dll [108032] =>.Microsoft Corporation
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\WINDOWS\System32\schedsvc.dll [877568] =>.Microsoft Corporation
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\WINDOWS\System32\wbem\WMIsvc.dll [221696] =>.Microsoft Corporation
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\WINDOWS\System32\browser.dll [133120] =>.Microsoft Corporation
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\WINDOWS\System32\profsvc.dll [411648] =>.Microsoft Corporation
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\WINDOWS\System32\sessenv.dll [385536] =>.Microsoft Corporation
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\WINDOWS\System32\wercplsupport.dll [98816] =>.Microsoft Corporation
O83 - Search Svchost Services: shpamsvc (shpamsvc) . (.Microsoft Corporation - SharedPC.AccountManager.) -- C:\WINDOWS\System32\Windows.SharedPC.AccountManager.dll [192512] =>.Microsoft Corporation
O83 - Search Svchost Services: XblGameSave (XblGameSave) . (.Microsoft Corporation - Xbox Live Game Save Service.) -- C:\WINDOWS\System32\XblGameSave.dll [1135104] =>.Microsoft Corporation
O83 - Search Svchost Services: NaturalAuthentication (NaturalAuthentication) . (.Microsoft Corporation - Service d’authentification naturelle.) -- C:\WINDOWS\System32\NaturalAuth.dll [723968] =>.Microsoft Corporation
O83 - Search Svchost Services: TokenBroker (TokenBroker) . (.Microsoft Corporation - Token Broker.) -- C:\WINDOWS\System32\TokenBroker.dll [1052672] =>.Microsoft Corporation
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Service de géolocalisation.) -- C:\WINDOWS\System32\lfsvc.dll [43520] =>.Microsoft Corporation
O83 - Search Svchost Services: Irmon (Irmon) . (.Microsoft Corporation - Moniteur infrarouge.) -- C:\WINDOWS\System32\irmon.dll [24576] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\WINDOWS\System32\rasauto.dll [104448] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d’accès à dista.) -- C:\WINDOWS\System32\rasmans.dll [874496] =>.Microsoft Corporation
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\WINDOWS\System32\mprdim.dll [490496] =>.Microsoft Corporation
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\WINDOWS\System32\sens.dll [69632] =>.Microsoft Corporation
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\WINDOWS\System32\ipnathlp.dll [537600] =>.Microsoft Corporation
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\WINDOWS\System32\tapisrv.dll [306688] =>.Microsoft Corporation
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\WINDOWS\System32\wuaueng.dll [2449408] =>.Microsoft Corporation
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\WINDOWS\System32\qmgr.dll [1159680] =>.Microsoft Corporation
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS\System32\shsvcs.dll [612864] =>.Microsoft Corporation
O83 - Search Svchost Services: XblAuthManager (XblAuthManager) . (.Microsoft Corporation - Xbox Live Auth Manager.) -- C:\WINDOWS\System32\XblAuthManager.dll [1015296] =>.Microsoft Corporation
O83 - Search Svchost Services: dmwappushservice (dmwappushservice) . (.Microsoft Corporation - dmwappushsvc.) -- C:\WINDOWS\System32\dmwappushsvc.dll [55296] =>.Microsoft Corporation
O83 - Search Svchost Services: wisvc (wisvc) . (.Microsoft Corporation - Paramètres de vol.) -- C:\WINDOWS\System32\flightsettings.dll [719872] =>.Microsoft Corporation
O83 - Search Svchost Services: WpnService (WpnService) . (.Microsoft Corporation - Service du système de notifications Push Wi.) -- C:\WINDOWS\System32\WpnService.dll [276480] =>.Microsoft Corporation
O83 - Search Svchost Services: DmEnrollmentSvc (DmEnrollmentSvc) . (.Microsoft Corporation - DLL Windows Management Service.) -- C:\WINDOWS\System32\Windows.Internal.Management.dll [536064] =>.Microsoft Corporation
O83 - Search Svchost Services: XboxNetApiSvc (XboxNetApiSvc) . (.Microsoft Corporation - Xbox Live Networking Service.) -- C:\WINDOWS\System32\XboxNetApiSvc.dll [1067008] =>.Microsoft Corporation
O83 - Search Svchost Services: UsoSvc (UsoSvc) . (.Microsoft Corporation - Mettre à jour la session Orchestrator Core.) -- C:\WINDOWS\System32\usocore.dll [684544] =>.Microsoft Corporation
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d’installation de périphérique.) -- C:\WINDOWS\System32\DeviceSetupManager.dll [233984] =>.Microsoft Corporation
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\WINDOWS\System32\bdesvc.dll [385536] =>.Microsoft Corporation
O83 - Search Svchost Services: NetSetupSvc (NetSetupSvc) . (.Microsoft Corporation - Service Configuration du réseau.) -- C:\WINDOWS\System32\NetSetupSvc.dll [261632] =>.Microsoft Corporation
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\WINDOWS\System32\themeservice.dll [69632] =>.Microsoft Corporation
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Micro.) -- C:\WINDOWS\System32\ncasvc.dll [167424] =>.Microsoft Corporation
O83 - Search Svchost Services: xbgm (xbgm) . (.Microsoft Corporation - Xbox Game Monitoring Service.) -- C:\WINDOWS\System32\xbgmsvc.dll [301216] =>.Microsoft Windows Publisher®
O83 - Search Svchost Services: XboxGipSvc (XboxGipSvc) . (.Microsoft Corporation - Xbox Gip Management Service.) -- C:\WINDOWS\System32\XboxGipSvc.dll [18944] =>.Microsoft Corporation
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\WINDOWS\System32\wlidsvc.dll [2153984] =>.Microsoft Corporation
O83 - Search Svchost Services: UserManager (UserManager) . (.Microsoft Corporation - UserMgr.) -- C:\WINDOWS\System32\usermgr.dll [877568] =>.Microsoft Corporation
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\WINDOWS\System32\appmgmts.dll [196096] =>.Microsoft Corporation
---\\ Liste des exceptions du parefeu Windows (20) - 6s
O87 - FAEL: "UDP Query User{9ABCF0FB-05FC-4A73-A039-AA45CC3A4966}C:\program files (x86)\city car driving\bin\win32\starter.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\city car driving\bin\win32\starter.exe (.not file.)
O87 - FAEL: "TCP Query User{3F5AC79C-5F13-4B9A-9765-192BA505545A}C:\program files (x86)\city car driving\bin\win32\starter.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\city car driving\bin\win32\starter.exe (.not file.)
O87 - FAEL: "{F6A4CE51-3670-4C9E-8917-8BB731E51F67}" [In-None-P6-TRUE] .(...) -- D:\Steam\Steam.exe (.not file.)
O87 - FAEL: "{E1F8344E-A281-4373-806A-090B8E602585}" [In-None-P17-TRUE] .(...) -- D:\Steam\Steam.exe (.not file.)
O87 - FAEL: "{95180E49-5026-4857-843C-3D4A3B85575A}" [In-None-P6-TRUE] .(...) -- D:\Steam\bin\steamwebhelper.exe (.not file.)
O87 - FAEL: "{1221A5D6-C85C-4678-9205-5015247445EC}" [In-None-P17-TRUE] .(...) -- D:\Steam\bin\steamwebhelper.exe (.not file.)
O87 - FAEL: "{7C9C4B4F-B052-4983-8200-42787BCE58EC}" [In-None-P6-TRUE] .(...) -- C:\Program Files\DriversCloud.com\DriversCloud.exe (.not file.)
O87 - FAEL: "{CCD835C6-354C-42D8-966B-4BE59A916931}" [In-None-P17-TRUE] .(...) -- C:\Program Files\DriversCloud.com\DriversCloud.exe (.not file.)
O87 - FAEL: "{57A41B0B-203C-4A32-942E-15F53D211DEE}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\Steam.exe (.not file.)
O87 - FAEL: "{899D95AE-3CF7-4C1E-BD40-DD21571B8F37}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\Steam.exe (.not file.)
O87 - FAEL: "{35A620F6-371E-4711-A10B-EEB70D8800B2}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (.not file.)
O87 - FAEL: "{DCF62660-4FE1-44AF-8881-33BE7E8AB900}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (.not file.)
O87 - FAEL: "{C5B3BC0E-53B0-4962-B726-75A56E925D47}" [In-None-P6-TRUE] .(...) -- D:\Nouveau dossier\steamapps\common\Euro Truck Simulator 2 Demo\bin\win_x86\eurotrucks2.exe (.not file.) =>.Steam Games
O87 - FAEL: "{18E06DDA-E545-455E-BB94-46EBED35C05F}" [In-None-P17-TRUE] .(...) -- D:\Nouveau dossier\steamapps\common\Euro Truck Simulator 2 Demo\bin\win_x86\eurotrucks2.exe (.not file.) =>.Steam Games
O87 - FAEL: "{34809F1E-6F24-47E8-8C27-6526E2F92431}" [In-None-P6-TRUE] .(...) -- D:\Nouveau dossier\steamapps\common\Euro Truck Simulator 2 Demo\bin\win_x64\eurotrucks2.exe (.not file.) =>.Steam Games
O87 - FAEL: "{1B4CB7AC-5F39-4879-9D23-A116F7923B48}" [In-None-P17-TRUE] .(...) -- D:\Nouveau dossier\steamapps\common\Euro Truck Simulator 2 Demo\bin\win_x64\eurotrucks2.exe (.not file.) =>.Steam Games
O87 - FAEL: "{167FA318-5478-4F87-A650-CE329D6DAE4D}" [In-None-P6-TRUE] .(...) -- C:\Users\Omnia\AppData\Roaming\BitTorrent\BitTorrent.exe (.not file.)
O87 - FAEL: "{7F35F2C3-4A38-4CAD-8EBD-FCEAE8A6672F}" [In-None-P17-TRUE] .(...) -- C:\Users\Omnia\AppData\Roaming\BitTorrent\BitTorrent.exe (.not file.)
O87 - FAEL: "{E134DFB5-4CD1-4BD3-A0EC-EB57B9FC39FD}" [In-None-P6-TRUE] .(...) -- C:\Users\Omnia\AppData\Roaming\uTorrent\uTorrent.exe (.not file.)
O87 - FAEL: "{62636A51-1B3E-4EE3-A915-45F1C7A939C6}" [In-None-P17-TRUE] .(...) -- C:\Users\Omnia\AppData\Roaming\uTorrent\uTorrent.exe (.not file.)
---\\ Recherche des packages WindowsInstaller (24) - 12s
[MD5.D7BDE4325CC3EC2F91C0AEA7E18675DC] [WIS][2017/09/16 16:07:08] (.Realnetworks - vs2015_redist x86.) -- C:\WINDOWS\Installer\10211b.msi [1089536] =>.Realnetworks
[MD5.4295DB648F3FC8DB71E72729F5EE8FE1] [WIS][2017/09/16 16:07:08] (.Realnetworks - vc2012_redist.) -- C:\WINDOWS\Installer\10215c.msi [811008] =>.Realnetworks
[MD5.CDE65B341F48B29083DA108CA6CF58D2] [WIS][2017/09/16 16:07:08] (.RealNetworks, Inc. - RealNetworks Upgrade 1.1.0 Component Instal.) -- C:\WINDOWS\Installer\102165.msi [708608] =>.RealNetworks, Inc.
[MD5.2562F08DC0064057CDEDE1B75E26F854] [WIS][2017/09/16 16:07:10] (.RealNetworks, Inc. - Logiciel d'installation RealNetworks %MA_PR.) -- C:\WINDOWS\Installer\1021a1.msi [10682368] =>.RealNetworks, Inc.
[MD5.1C7759ECC8020CB500E6EE76683831E6] [WIS][2017/08/17 14:21:56] (.RealNetworks - RealDownloader.) -- C:\WINDOWS\Installer\1021a6.msi [1622016] =>.RealNetworks
[MD5.34E8A87042FB5E125612B2EB883E9378] [WIS][2017/08/17 14:21:56] (.RealNetworks - Video Downloader.) -- C:\WINDOWS\Installer\1021ab.msi [5832704] =>.RealNetworks
[MD5.594D364D2FBB04C9565FDF25B24FEB70] [WIS][2017/09/16 16:07:06] (.RealNetworks, Inc. - PackageDescription.) -- C:\WINDOWS\Installer\1021b4.msi [389120] =>.RealNetworks, Inc.
[MD5.27174E773F50C4D832D109835868D196] [WIS][2015/04/17 16:55:38] (.ATI Technologies, Inc. - ATI Catalyst Install Manager Installer (64 .) -- C:\WINDOWS\Installer\1342fb3.msi [6734848] =>.ATI Technologies, Inc.
[MD5.45035B8404CC7C5C7EEA20BB5BCB1E51] [WIS][2015/04/17 16:55:38] (.Advanced Micro Devices Inc. - AMD Accelerated Parallel Processing SDK.) -- C:\WINDOWS\Installer\1342fb9.msi [12664320] =>.Advanced Micro Devices Inc.
[MD5.006F60795453FCEAF6393E33E6E11C5D] [WIS][2015/04/17 16:55:39] (.Intel Corporation - Intel(R) Rapid Storage Technology.) -- C:\WINDOWS\Installer\19e9163.msi [9101312] =>.Intel Corporation
[MD5.0BBE832BBB0C15E586F773493024CBC2] [WIS][2016/10/30 18:54:11] (.InstallShield.) -- C:\WINDOWS\Installer\1c2476d.msi [3876864] =>.InstallShield
[MD5.20504BC8E6D72F580BCDACAC7B094351] [WIS][2015/04/17 16:55:43] (.Cisco Systems, Inc..) -- C:\WINDOWS\Installer\3abe3e.msi [1544704] =>.Cisco Systems, Inc.
[MD5.B216CF48909F129A831A2BEAFA2232BE] [WIS][2015/04/17 16:55:43] (.Cisco Systems, Inc..) -- C:\WINDOWS\Installer\3abe46.msi [829440] =>.Cisco Systems, Inc.
[MD5.AB68907A3FF3A7C951960AECF42BAE58] [WIS][2015/04/17 16:55:44] (.Cisco Systems, Inc..) -- C:\WINDOWS\Installer\3abe4e.msi [1304576] =>.Cisco Systems, Inc.
[MD5.25B47EFBE9DCEF40BB9760B6B7846B99] [WIS][2015/04/17 16:55:44] (.Adobe Systems, Inc - swMSM.) -- C:\WINDOWS\Installer\41ace7.msi [2118144] =>.Adobe Systems, Inc
[MD5.9C04E9FEBE042D32C7EED08CBCFE3119] [WIS][2016/09/20 12:44:56] (.Realnetworks - vs2015_redist x64.) -- C:\WINDOWS\Installer\59278d.msi [1191936] =>.Realnetworks
[MD5.606C77DCF8022B97429EDA594BCF83D3] [WIS][2017/04/09 12:26:52] (.Skype Technologies S.A. - Skype.) -- C:\WINDOWS\Installer\5b87e.msi [44208128] =>.Skype Technologies S.A.
[MD5.F0EE2E7F283866A2A0FEA9BE2D12A979] [WIS][2017/11/17 18:07:50] (.Google Inc. - Google Update Helper.) -- C:\WINDOWS\Installer\837e7.msi [40960] =>.Google Inc.
[MD5.ACE9EFABAA906734DEDE3922B00E758D] [WIS][2017/10/22 11:11:25] (.Oracle Corporation - Java SE Runtime Environment 8 Update 151.) -- C:\WINDOWS\Installer\8df9f.msi [34373632] =>.Oracle Corporation
[MD5.D181C3EC418B36FD41F61937E31C66A1] [WIS][2017/10/22 11:11:01] (.Oracle Corporation - Java Auto Updater.) -- C:\WINDOWS\Installer\8dfaa.msi [761856] =>.Oracle Corporation
[MD5.1504667BA3C10D841C0B76B6412FAFB5] [WIS][2015/04/17 16:55:47] (.Adobe Systems Incorporated.) -- C:\WINDOWS\Installer\aa28f1.msi [2805760] =>.Adobe Systems Incorporated
[MD5.A666B14C461CC7207C0C9B3D0D2D28F3] [WIS][2017/11/14 20:56:16] (.Adobe Systems Incorporated - Adobe ARM Installer.) -- C:\WINDOWS\Installer\afa7b3.msi [880128] =>.Adobe Systems Incorporated
[MD5.DAC27B9BB70C3280E1594160432ACB39] [WIS][2017/04/07 17:38:38] (.Kaspersky Lab - Kaspersky Anti-Virus.) -- C:\WINDOWS\Installer\c1ae4.msi [5197824] =>.Kaspersky Lab
[MD5.29B6480A687380A22661567B4A8D43DC] [WIS][2015/04/17 16:55:48] (.Sony Ericsson - [ProductName].) -- C:\WINDOWS\Installer\d89ded.msi [2560512] =>.Sony Ericsson
---\\ Recherche de clés de registre Tracing (1) - 1s
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\tencentdl_RASAPI32 =>.SUP.Tencent
---\\ Scan Additionnel (19) - 1s
C:\ProgramData\Tencent =>.SUP.Tencent
C:\Program Files (x86)\Common Files\Tencent =>.SUP.Tencent
C:\Users\Omnia\AppData\Roaming\Tencent =>.SUP.Tencent
C:\Users\Omnia\AppData\Local\MSfree Inc =>HackTool.WinActivator
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ANotepad++64 =>.SUP.Orphan
HKLM\Software\Wow6432Node\Classes\CLSID\{B298D29A-A6ED-11DE-BA8C-A68E55D89593} =>.SUP.Orphan
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\MEGA (Context menu) =>.SUP.Orphan
HKLM\Software\Classes\CLSID\{0229E5E7-09E9-45CF-9228-0228EC7D5F17} =>.SUP.Orphan
HKLM\Software\Wow6432Node\Classes\CLSID\{0229E5E7-09E9-45CF-9228-0228EC7D5F17} =>.SUP.Orphan
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\WinRAR32 =>.SUP.Orphan
HKLM\Software\Classes\CLSID\{B41DB860-8EE4-11D2-9906-E49FADC173CA} =>.SUP.Orphan
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\MEGA (Context menu) =>.SUP.Orphan
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\MEGA (Context menu) =>.SUP.Orphan
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\MSSE =>.SUP.Orphan
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\PowerISO =>.SUP.Orphan
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\Gadgets =>.SUP.Orphan
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\PowerISO =>.SUP.Orphan
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\WinRAR32 =>.SUP.Orphan
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\tencentdl_RASAPI32 =>.SUP.Tencent
---\\ Récapitulatif des éléments trouvés sur votre station (5) - 0s
https://nicolascoolman.eu/2017/09/12/origine-lignes-orphelines/ =>.SUP.Orphan
https://nicolascoolman.eu/2017/02/06/superfluous-conduit/ =>.SUP.Conduit
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>PUP.Optional.AlexaTB
https://nicolascoolman.eu/2017/02/23/tencentadressbar/ =>.SUP.Tencent
https://nicolascoolman.eu/2017/01/13/hacktool-winactivator/ =>HackTool.WinActivator
~ Unselected Options: O82,
~ End of the scan, 30735 items in 07mn27s (1349)(0)
~ Démarré par Ihab (Administrator) (2017/11/26 18:02:27)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Certificate ZHPDiag: Legal
~ Etat de la version: Version KO
~ Mode: Scanner
~ Rapport: C:\Users\Omnia\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\Omnia\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Démarrage du système: Normal (Normal boot)
Windows 10 Pro N, 64-bit (Build 15063) =>.Microsoft Corporation
---\\ Navigateurs Internet (3) - 1s
~ GCIE: Google Chrome v62.0.3202.94
~ MSIE: Microsoft Edge v40
~ MSIE: Internet Explorer v11.726.15063.0
---\\ Informations sur les produits Windows (8) - 0s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
~ Windows(R) Operating System, RETAIL channel
Windows ID Activation : OK
~ Windows Partial Key : PKCKT
Windows License : OK
~ Windows Remaining Initializations Number : 1001
Windows Automatic Updates : OK
---\\ Logiciels de protection (3) - 20s
Kaspersky Internet Security v16.0.0.614 (Protection)
Kaspersky Anti-Virus v16.0.0.614 (Protection)
Windows Defender (Deactivate)
---\\ Logiciels d'optimisation (1) - 21s
~ CCleaner v5.32 (Optimize)
---\\ Surveillance de Logiciels (2) - 21s
~ Adobe Flash Player 27 PPAPI (Surveillance)
~ Adobe Acrobat Reader DC - Français (Surveillance)
---\\ Informations sur le système (6) - 0s
~ Operating System: Intel64 Family 6 Model 37 Stepping 5, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 3987.304 MB (43% free) : OK =>.RAM Value
System Restore: Activé (Enable)
System drive C: has 58 GB (58%) free of 99 GB : OK =>.Disk Space
---\\ Mode de connexion au système (3) - 0s
~ Computer Name: IHAB-PC
~ User Name: Ihab
~ Logged in as Administrator
---\\ Enumération des unités disques (2) - 0s
~ Drive C: has 58 GB free of 99 GB (System)
~ Drive D: has 160 GB free of 167 GB
---\\ Etat du Centre de Sécurité Windows (10) - 0s
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableTaskMgr: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableRegistryTools: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM64\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
---\\ Recherche particulière de fichiers génériques (25) - 5s
[MD5.01078D46C77CE0D7DC584A29062A799D] - 30/09/2017 - (.Microsoft Corporation - Explorateur Windows.) -- C:\WINDOWS\Explorer.exe [4848952] =>.Microsoft Windows®
[MD5.ECB702B8C5650381C0784F1EEABB97BC] - 18/03/2017 - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\WINDOWS\System32\rundll32.exe [68608] =>.Microsoft Corporation
[MD5.0242626678C83AE788C655C1990A3CC3] - 28/07/2017 - (.Microsoft Corporation - Application de démarrage de Windows.) -- C:\WINDOWS\System32\Wininit.exe [318232] =>.Microsoft Windows Publisher®
[MD5.B86F2476A799E044A2064D2FFD8A8877] - 02/11/2017 - (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\WINDOWS\System32\wininet.dll [3307008] =>.Microsoft Corporation
[MD5.9CDA170849A4F66F4D68B3DBB3AC8394] - 05/09/2017 - (.Microsoft Corporation - Application d’ouverture de session Windows.) -- C:\WINDOWS\System32\Winlogon.exe [706560] =>.Microsoft Corporation
[MD5.50CDF68A8EA8A2A9165CD573FA6C42D8] - 18/03/2017 - (.Microsoft Corporation - Bibliothèque de licences.) -- C:\WINDOWS\System32\sppcomapi.dll [414208] =>.Microsoft Corporation
[MD5.6AFA66A457759C1FEC29A52612A67043] - 30/09/2017 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\WINDOWS\System32\dnsapi.dll [661224] =>.Microsoft Windows®
[MD5.1F4909406532C2FFCBD3683A65F7198F] - 30/09/2017 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\WINDOWS\Syswow64\dnsapi.dll [508344] =>.Microsoft Windows®
[MD5.70E14A01193D817004C0F88E767BC59B] - 19/03/2017 - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) -- C:\WINDOWS\System32\fr-FR\user32.dll.mui [19968] =>.Microsoft Corporation
[MD5.5A6D591D56791BA63CE73FCAD60D89A1] - 05/09/2017 - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) -- C:\WINDOWS\System32\drivers\AFD.sys [610720] =>.Microsoft Windows®
[MD5.01733BEEE02E51F712330D5909BD701C] - 18/03/2017 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\WINDOWS\System32\drivers\atapi.sys [29088] =>.Microsoft Windows®
[MD5.B6E5AD7C83A5254DEE9D86023C0E5A81] - 18/03/2017 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\WINDOWS\System32\drivers\Cdfs.sys [93184] =>.Microsoft Corporation
[MD5.ABE77AD954BC3D72F559CF0C381E50BC] - 18/03/2017 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\WINDOWS\System32\drivers\Cdrom.sys [160256] =>.Microsoft Corporation
[MD5.185A4519B7764F4DEF714D890A7A9FD2] - 18/03/2017 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\WINDOWS\System32\drivers\DfsC.sys [150528] =>.Microsoft Corporation
[MD5.02B9639D9997E95CDF2F4C4F3BDCC73D] - 20/06/2017 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\WINDOWS\System32\drivers\HDAudBus.sys [86528] =>.Microsoft Corporation
[MD5.C6C8315E3262FAE460529C6DA2951682] - 18/03/2017 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\WINDOWS\System32\drivers\i8042prt.sys [115200] =>.Microsoft Corporation
[MD5.DCC05E5EAA580C97F13B434FAFACED85] - 18/03/2017 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\System32\drivers\IpNat.sys [214528] =>.Microsoft Corporation
[MD5.F2AD1B72C5A6475FB5FF332E1980DF88] - 18/03/2017 - (.Microsoft Corporation - Minirdr SMB Windows NT.) -- C:\WINDOWS\System32\drivers\MRxSmb.sys [467352] =>.Microsoft Windows®
[MD5.BAD3C424788BC071C3EC82CFCDA954D2] - 05/09/2017 - (.Microsoft Corporation - MBT Transport driver.) -- C:\WINDOWS\System32\drivers\netBT.sys [305152] =>.Microsoft Corporation
[MD5.4FB781DF7C0ED6B989F465A7886583F1] - 02/11/2017 - (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\WINDOWS\System32\drivers\ntfs.sys [2327448] =>.Microsoft Windows®
[MD5.2CC6C325B271C7CA60F374F8F868CB45] - 18/03/2017 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\WINDOWS\System32\drivers\Parport.sys [97792] =>.Microsoft Corporation
[MD5.5279EC98F6218D29EADDFECCC0D80E9A] - 18/03/2017 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [107008] =>.Microsoft Corporation
[MD5.53A01D3FDB701AC5D9DDE4140227E3D9] - 19/03/2017 - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RD.) -- C:\WINDOWS\System32\drivers\rdpdr.sys [183296] =>.Microsoft Corporation
[MD5.D74756DD1518D28A09CDA99696273FA4] - 01/08/2017 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\WINDOWS\System32\drivers\tdx.sys [119712] =>.Microsoft Windows®
[MD5.E3429DBBEA3965BB96E24B16EF4A2551] - 18/03/2017 - (.Microsoft Corporation - Volume Shadow Copy driver.) -- C:\WINDOWS\System32\drivers\volsnap.sys [397216] =>.Microsoft Windows®
---\\ Liste des services NT non Microsoft et non désactivés (17) - 7s
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated®
O23 - Service: Andrea RT Filters Service (AERTFilters) . (.Andrea Electronics Corporation - Andrea filters APO access service (64-bit).) - C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe =>.Andrea Electronics®
O23 - Service: AtherosSvc (AtherosSvc) . (.Windows (R) Win 7 DDK provider - Windows Setup API.) - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe =>.Qualcomm Atheros®
O23 - Service: Kaspersky Anti-Virus Service 16.0.0 (AVP16.0.0) . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\avp.exe =>.Kaspersky Lab®
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
O23 - Service: HWDeviceService64.exe (HWDeviceService64.exe) . (.Copyright (C) 2008 - DCSHOST.) - C:\ProgramData\DatacardService\HWDeviceService64.exe =>.HUAWEI Technologies Co., Ltd.®
O23 - Service: Internet Mobile. OUC (Internet Mobile. RunOuc) . (...) - C:\Program Files (x86)\Internet Mobile\UpdateDog\ouc.exe =>.HUAWEI Technologies Co., Ltd.®
O23 - Service: odoo-server-9.0 9.0 (odoo-server-9.0) . (...) - D:\odoo\Odoo 9.0-20160320\service\win32_service.exe
O23 - Service: PostgreSQL_For_Odoo - PostgreSQL Server 9.3 (PostgreSQL_For_Odoo) . (.PostgreSQL Global Development Group - pg_ctl - starts/stops/restarts the PostgreS.) - D:\odoo\Odoo 9.0-20160320\PostgreSQL\bin\pg_ctl.exe =>.PostgreSQL Global Development Group
O23 - Service: RealPlayer Cloud Service (RealPlayer Cloud Service) . (.RealNetworks, Inc. - RealTimes Desktop Service.) - c:\program files (x86)\Real\realplayer\RPDS\Bin\rpdsvc.exe {7975BE185DD3B5E5CB86712EAACC41DF} =>.RealNetworks, Inc.
O23 - Service: RealPlayer Update Service (RealPlayerUpdateSvc) . (.RealNetworks, Inc. - RealPlayer.) - C:\program files (x86)\real\UpdateService\RealPlayerUpdateSvc.exe {7975BE185DD3B5E5CB86712EAACC41DF} =>.RealNetworks, Inc.
O23 - Service: RealTimes Desktop Service (RealTimes Desktop Service) . (.RealNetworks, Inc. - RealTimes Desktop Service.) - c:\program files (x86)\real\realplayer\RPDS\Bin\rpdsvc.exe {7975BE185DD3B5E5CB86712EAACC41DF} =>.RealNetworks, Inc.
O23 - Service: Realtek Audio Service (RtkAudioService) . (.Realtek Semiconductor - Realtek Audio Service.) - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe =>.Realtek Semiconductor Corp.®
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe =>.Skype Software Sarl®
O23 - Service: SAMSUNG Mobile Connectivity Service (ss_conn_service) . (.DEVGURU Co., LTD. - MSS CS Connectivity Service.) - C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe =>.Samsung Electronics CO., LTD.®
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) . (.Synaptics Incorporated - 64-bit Synaptics Pointing Enhance Service.) - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe =>.Synaptics Incorporated®
O23 - Service: Wondershare Application Framework Service (WsAppService) . (.Wondershare - Wondershare Passport.) - C:\Program Files (x86)\Wondershare\WAF\2.4.3.229\WsAppService.exe =>.Wondershare Technology Co.,Ltd®
---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (21) - 124s
SR - Auto [27/09/2017] [ 83984] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated®
SS - Demand [15/11/2017] [ 272384] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe =>.Adobe Systems Incorporated®
SR - Auto [11/01/2017] [ 106944] Andrea RT Filters Service (AERTFilters) . (.Andrea Electronics Corporation.) - C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe =>.Andrea Electronics®
SR - Auto [19/11/2015] [ 323152] AtherosSvc (AtherosSvc) . (.Windows (R) Win 7 DDK provider.) - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe =>.Qualcomm Atheros®
SR - Auto [08/12/2015] [ 194000] Kaspersky Anti-Virus Service 16.0.0 (AVP16.0.0) . (.Kaspersky Lab ZAO.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\avp.exe =>.Kaspersky Lab®
SS - Auto [03/09/2016] [ 153752] Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SS - Demand [03/09/2016] [ 153752] Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SR - Auto [14/03/2011] [ 346976] HWDeviceService64.exe (HWDeviceService64.exe) . (.Copyright (C) 2008.) - C:\ProgramData\DatacardService\HWDeviceService64.exe =>.HUAWEI Technologies Co., Ltd.®
SS - Demand [03/04/2005] [ 69632] InstallDriver Table Manager (IDriverT) . (.Macrovision Corporation.) - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe =>.Macrovision Corporation
SS - Auto [04/01/2012] [ 246112] Internet Mobile. OUC (Internet Mobile. RunOuc) . (...) - C:\Program Files (x86)\Internet Mobile\UpdateDog\ouc.exe =>.HUAWEI Technologies Co., Ltd.®
SR - Auto [20/03/2016] [ 23552] odoo-server-9.0 9.0 (odoo-server-9.0) . (...) - D:\odoo\Odoo 9.0-20160320\service\win32_service.exe
SS - Auto [22/07/2014] [ 76800] PostgreSQL_For_Odoo - PostgreSQL Server 9.3 (PostgreSQL_For_Odoo) . (.PostgreSQL Global Development Group.) - D:\odoo\Odoo 9.0-20160320\PostgreSQL\bin\pg_ctl.exe =>.PostgreSQL Global Development Group
SS - Auto [16/09/2017] [ 989912] RealPlayer Cloud Service (RealPlayer Cloud Service) . (.RealNetworks, Inc..) - c:\program files (x86)\Real\realplayer\RPDS\Bin\rpdsvc.exe {7975BE185DD3B5E5CB86712EAACC41DF} =>.RealNetworks, Inc.
SR - Auto [17/08/2017] [ 37104] RealPlayer Update Service (RealPlayerUpdateSvc) . (.RealNetworks, Inc..) - C:\program files (x86)\real\UpdateService\RealPlayerUpdateSvc.exe {7975BE185DD3B5E5CB86712EAACC41DF} =>.RealNetworks, Inc.
SS - Auto [16/09/2017] [ 989912] RealTimes Desktop Service (RealTimes Desktop Service) . (.RealNetworks, Inc..) - c:\program files (x86)\real\realplayer\RPDS\Bin\rpdsvc.exe {7975BE185DD3B5E5CB86712EAACC41DF} =>.RealNetworks, Inc.
SR - Auto [11/01/2017] [ 320512] Realtek Audio Service (RtkAudioService) . (.Realtek Semiconductor.) - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe =>.Realtek Semiconductor Corp.®
SS - Auto [27/02/2017] [ 317400] Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe =>.Skype Software Sarl®
SR - Auto [27/02/2017] [ 317400] SAMSUNG Mobile Connectivity Service (ss_conn_service) . (.DEVGURU Co., LTD..) - C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe =>.Samsung Electronics CO., LTD.®
SR - Auto [27/02/2017] [ 317400] SynTPEnh Caller Service (SynTPEnhService) . (.Synaptics Incorporated.) - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe =>.Synaptics Incorporated®
SS - Demand [27/02/2017] [ 317400] vssbrigde64 (vssbrigde64) . (.AO Kaspersky Lab.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\x64\vssbridge64.exe =>.Kaspersky Lab®
SR - Auto [27/02/2017] [ 317400] Wondershare Application Framework Service (WsAppService) . (.Wondershare.) - C:\Program Files (x86)\Wondershare\WAF\2.4.3.229\WsAppService.exe =>.Wondershare Technology Co.,Ltd®
---\\ Tâches planifiées en automatique (Registre) (128) - 28s
O38 - TASK: {00E5E09D-5EC2-4824-ADB5-831EC9403AB4} [64Bits][\Microsoft\Windows\Autochk\Proxy] - (.Microsoft Corporation - DLL de proxy Autochk.) -- C:\Windows\System32\acproxy.dll [13312] =>.Microsoft Corporation
O38 - TASK: {01A1D0E2-49C4-4CDB-B21E-471D79A39379} [64Bits][\{9D9AD9B9-4C4D-4DCE-AA28-361757016199}] - (.InstallShield Software Corporation - InstallDriver Module.) -- C:\Program Files (x86)\Common Files\InstallShield\Driver\9\Intel 32\IDriver.exe [757760] =>.InstallShield Software Corporation
O38 - TASK: {03B319F4-0332-4699-932F-E20CC56F5D20} [64Bits][\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-316627027-3033381719-1982330960-1000] - (.RealNetworks, Inc. - RealUpgrade Launcher.) -- C:\program files (x86)\Real\RealDownloader\RealUpgrade.exe [135504] {7975BE185DD3B5E5CB86712EAACC41DF} =>.RealNetworks, Inc.
O38 - TASK: {0525CA3E-384D-4673-A981-7C4793D9423D} [64Bits][\{2FDC939A-D502-4C84-A853-BECE2FCDE2BA}] - (...) -- C:\Users\Omnia\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\NSUSX5S3\wmp11-windowsxp-x86-FR-FR.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {0580EED2-AB82-45CA-A879-6D505CFD8431} [64Bits][\WPD\SqmUpload_S-1-5-21-316627027-3033381719-1982330960-1000] - (.Microsoft Corporation - Composants API de l’appareil mobile Windows.) -- C:\Windows\System32\portabledeviceapi.dll [622592] =>.Microsoft Corporation
O38 - TASK: {05C5CB51-F8C1-4573-A143-7B1DCFFF5EEB} [64Bits][\RealDownloader Update Check] - (.Copyright © RealNetworks, Inc. 1995-2017 - RealDownloader.) -- C:\program files (x86)\Real\RealDownloader\downloader2.exe [1259704] {7975BE185DD3B5E5CB86712EAACC41DF}
O38 - TASK: {06E5E6E1-C0A1-44FD-B014-AEC829F2971F} [64Bits][\Microsoft\Windows\Media Center\PvrRecoveryTask] - (...) -- C:\WINDOWS\ehome\mcupdate.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {0DDBAB82-04E6-47B2-A8A9-0B78DA7E34CD} [64Bits][\Microsoft\Windows\Workplace Join\Automatic-Device-Join] - (.Microsoft Corporation - Outil de ligne de commande DSREG.) -- C:\WINDOWS\System32\dsregcmd.exe [659968] =>.Microsoft Corporation
O38 - TASK: {0E00F8E6-DDA9-45B3-B224-C760545E87EA} [64Bits][\Microsoft\Windows\Management\Provisioning\Cellular] - (.Microsoft Corporation - Provisioning package runtime processing too.) -- C:\WINDOWS\system32\ProvTool.exe [68608] =>.Microsoft Corporation
O38 - TASK: {120F0681-B0D9-4830-88E5-0847CF5A021A} [64Bits][\Microsoft\Windows\MUI\Mcbuilder] - (.Microsoft Corporation - Resource cache builder tool.) -- C:\Windows\System32\mcbuilder.exe [347648] =>.Microsoft Corporation
O38 - TASK: {128D6914-EBE2-47A5-B12C-993575368F1A} [64Bits][\Microsoft\Windows\Media Center\ActivateWindowsSearch] - (...) -- C:\WINDOWS\ehome\ehPrivJob.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {1367704F-0AA7-4818-94EC-C13F6BFAAB65} [64Bits][\User_Feed_Synchronization-{CC0E2B23-735D-4F79-A729-1863FF86F02E}] - (.Microsoft Corporation - Microsoft Feeds Synchronization.) -- C:\Windows\System32\msfeedssync.exe [15360] =>.Microsoft Corporation
O38 - TASK: {139282A1-6295-42CE-A1D1-B8E8E19350DE} [64Bits][\Microsoft\Windows\UPnP\UPnPHostConfig] - (.Microsoft Corporation - Outil de configuration du Gestionnaire de c.) -- C:\Windows\System32\sc.exe [68608] =>.Microsoft Corporation
O38 - TASK: {14A9BA87-40AD-4A4D-83E7-D93D7EB23CEE} [64Bits][\Microsoft\Windows\Customer Experience Improvement Program\Consolidator] - (.Microsoft Corporation - Consolidateur SQM Windows.) -- C:\WINDOWS\System32\wsqmcons.exe [77824] =>.Microsoft Corporation
O38 - TASK: {170C58C0-A0E5-40CD-9801-C6C53920FE1F} [64Bits][\Microsoft\Windows\NlaSvc\WiFiTask] - (.Microsoft Corporation - Tâche sans fil en arrière-plan.) -- C:\WINDOWS\System32\WiFiTask.exe [459168] =>.Microsoft Windows®
O38 - TASK: {17754A70-24E8-4AEC-AC94-6DBDA58278B4} [64Bits][\Microsoft\Windows\Media Center\ConfigureInternetTimeService] - (...) -- C:\WINDOWS\ehome\ehPrivJob.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {18014FF8-21C1-485A-907F-B3BA5CA126D7} [64Bits][\RealDownloaderRealUpgradeLogonTaskS-1-5-21-316627027-3033381719-1982330960-1000] - (.RealNetworks, Inc. - RealUpgrade Launcher.) -- C:\program files (x86)\Real\RealDownloader\RealUpgrade.exe [135504] {7975BE185DD3B5E5CB86712EAACC41DF} =>.RealNetworks, Inc.
O38 - TASK: {1B98DAC9-3654-4BFE-A8C9-E544F52E1A43} [64Bits][\Microsoft\Windows\Device Information\Device] - (.Microsoft Corporation - Device Census.) -- C:\WINDOWS\system32\devicecensus.exe [34712] =>.Microsoft Windows®
O38 - TASK: {1D7707AD-21A2-433A-B82E-36C0F7F64ADE} [64Bits][\Microsoft\Office\OfficeTelemetryAgentLogOn2016] - (.Microsoft Corporation - Office Telemetry Agent.) -- C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2248360] =>.Microsoft Corporation®
O38 - TASK: {1DFEA949-0C64-40D3-BF10-7EDF096EE946} [64Bits][\Microsoft\Windows\Media Center\PeriodicScanRetry] - (...) -- C:\WINDOWS\ehome\MCUpdate.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {1E004637-1994-4794-B008-18203250EA47} [64Bits][\Microsoft\Windows\Media Center\MediaCenterRecoveryTask] - (...) -- C:\WINDOWS\ehome\mcupdate.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {219ABF3A-36E7-49E7-9121-2E4F7B3157BD} [64Bits][\Microsoft\Windows\Time Zone\SynchronizeTimeZone] - (.Microsoft Corporation - TimeZone Sync Task.) -- C:\WINDOWS\system32\tzsync.exe [60928] =>.Microsoft Corporation
O38 - TASK: {23A8F6A9-4214-41AD-AF77-FCAFEF5CCFFA} [64Bits][\Microsoft\Windows\Media Center\RegisterSearch] - (...) -- C:\WINDOWS\ehome\ehPrivJob.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {23BB6FD5-FE19-440A-BA82-1FDAB50902A5} [64Bits][\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration] - (.Microsoft Corporation - This task initiates Office Background Task .) -- C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [24264] =>.Microsoft Corporation®
O38 - TASK: {24E3EE0B-C029-4640-BBA9-8EA1703F9BBC} [64Bits][\Microsoft\Windows\Media Center\OCURDiscovery] - (...) -- C:\WINDOWS\ehome\ehPrivJob.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {28CB53EF-E0DC-4DC1-BB30-C083BA854EFD} [64Bits][\CreateChoiceProcessTask] - (...) -- C:\Windows\System32\browserchoice.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {296CF49A-6E6F-4102-9ECC-4DEEBFD8B44B} [64Bits][\Microsoft\Windows\SharedPC\Account Cleanup] - (.Microsoft Corporation - SharedPC.AccountManager.) -- C:\WINDOWS\System32\Windows.SharedPC.AccountManager.dll [192512] =>.Microsoft Corporation
O38 - TASK: {2CC8D6BB-DF29-4DCB-ABAC-0CB7E0E544D2} [64Bits][\Microsoft\Windows\Storage Tiers Management\Storage Tiers Optimization] - (.Microsoft Corp. - Module de défragmenteur de disque.) -- C:\WINDOWS\system32\defrag.exe [185856] =>.Microsoft Corp.
O38 - TASK: {326127EB-1F39-4FB4-9130-2317046E0AF9} [64Bits][\Microsoft\Windows\Subscription\EnableLicenseAcquisition] - (.Microsoft Corporation - Acquire License From Store.) -- C:\WINDOWS\System32\ClipRenew.exe [137112] =>.Microsoft Windows®
O38 - TASK: {35143309-3ACA-4D33-AA28-9FC228232589} [64Bits][\Microsoft\Windows\WindowsUpdate\sihboot] - (.Microsoft Corporation - Client SIH.) -- C:\WINDOWS\System32\sihclient.exe [229888] =>.Microsoft Corporation
O38 - TASK: {3707B2B0-3908-4A15-8428-A899E3A0B132} [64Bits][\Microsoft\Windows\Media Center\InstallPlayReady] - (...) -- C:\WINDOWS\ehome\ehPrivJob.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {398D605B-6743-478C-A5AD-528048341FE8} [64Bits][\GoogleUpdateTaskMachineUA] - (.Google Inc. - Programme d'installation de Google.) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752] =>.Google Inc®
O38 - TASK: {3A370D44-3A12-4806-90E2-92C9A3D6856F} [64Bits][\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck] - (.Microsoft Corporation - AppID Certificate Store Verification Task.) -- C:\WINDOWS\system32\appidcertstorecheck.exe [19456] =>.Microsoft Corporation
O38 - TASK: {3B7C5E6A-02C4-448B-AA88-7A55E8068575} [64Bits][\Microsoft\Windows\SpacePort\SpaceAgentTask] - (.Microsoft Corporation - Paramètres des espaces de stockage.) -- C:\WINDOWS\system32\SpaceAgent.exe [129536] =>.Microsoft Corporation
O38 - TASK: {3D2AEAA7-EA35-4ACF-B8B9-1DDBA19067CD} [64Bits][\Microsoft\Windows\Management\Provisioning\Logon] - (.Microsoft Corporation - Provisioning package runtime processing too.) -- C:\WINDOWS\system32\ProvTool.exe [68608] =>.Microsoft Corporation
O38 - TASK: {3D32339E-B54F-4762-8AC4-CC189BE6FB22} [64Bits][\Microsoft\Windows\Media Center\SqlLiteRecoveryTask] - (...) -- C:\WINDOWS\ehome\mcupdate.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {3E5D6DCB-D6C0-402F-96F0-B27A248DEF9E} [64Bits][\Microsoft\Windows\WCM\WiFiTask] - (.Microsoft Corporation - Tâche sans fil en arrière-plan.) -- C:\WINDOWS\System32\WiFiTask.exe [459168] =>.Microsoft Windows®
O38 - TASK: {3F2BFCCE-5EB5-4E6B-8AC1-A1E8BEE4354E} [64Bits][\Microsoft\Windows\Feedback\Siuf\DmClientOnScenarioDownload] - (.Microsoft Corporation - Microsoft Feedback SIUF Deployment Manager.) -- C:\WINDOWS\system32\dmclient.exe [89600] =>.Microsoft Corporation
O38 - TASK: {3F9C4EE0-9882-430D-8246-E214C1EA697F} [64Bits][\Microsoft\Office\Office ClickToRun Service Monitor] - (.Microsoft Corporation - Microsoft Office Click-to-Run Client.) -- C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [16930984] =>.Microsoft Corporation®
O38 - TASK: {40178447-AB56-492A-BE34-CCDBEAF08801} [64Bits][\RealUpgradeScheduledTaskS-1-5-21-316627027-3033381719-1982330960-1000] - (.RealNetworks, Inc. - RealUpgrade Launcher.) -- C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [122880] =>.RealNetworks, Inc.
O38 - TASK: {40FC1D0D-9ABC-4E20-8A25-7A09203D69B2} [64Bits][\Microsoft\Windows\Media Center\mcupdate] - (...) -- C:\WINDOWS\ehome\mcupdate (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {4160FF84-DE59-4FE2-9719-E3DA11B372D5} [64Bits][\Microsoft\Windows\ApplicationData\DsSvcCleanup] - (.Microsoft Corporation - Data Sharing Service Maintenance Driver.) -- C:\WINDOWS\system32\dstokenclean.exe [12800] =>.Microsoft Corporation
O38 - TASK: {44E0F61A-CFA2-4A5C-964A-ED21C0C26A34} [64Bits][\Microsoft\Windows\Media Center\PBDADiscoveryW1] - (...) -- C:\WINDOWS\ehome\ehPrivJob.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {4700A489-CAFC-4DEA-B9D5-FBBB48BA949B} [64Bits][\RealPlayerRealUpgradeLogonTaskS-1-5-21-316627027-3033381719-1982330960-1000] - (.RealNetworks, Inc. - RealUpgrade Launcher.) -- C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [122880] =>.RealNetworks, Inc.
O38 - TASK: {4D178028-F2ED-45F4-AA30-EC68836FDA06} [64Bits][\Microsoft\Windows\EnterpriseMgmt\MDMMaintenenceTask] - (.Microsoft Corporation - MDMAgent.) -- C:\WINDOWS\system32\MDMAgent.exe [68096] =>.Microsoft Corporation
O38 - TASK: {501B4DEC-783F-4EE9-A736-99EE6CB70F94} [64Bits][\Microsoft\Windows\UpdateOrchestrator\Refresh Settings] - (.Microsoft Corporation - UsoClient.) -- C:\WINDOWS\System32\usoclient.exe [34304] =>.Microsoft Corporation
O38 - TASK: {5268BD87-75C4-420C-8F86-BCC3BB588CFA} [64Bits][\Microsoft\Windows\WindowsUpdate\sih] - (.Microsoft Corporation - Client SIH.) -- C:\WINDOWS\System32\sihclient.exe [229888] =>.Microsoft Corporation
O38 - TASK: {52F70694-01B0-42ED-9814-44AD5D7702BF} [64Bits][\Microsoft\Windows\AppID\PolicyConverter] - (.Microsoft Corporation - AppID Policy Converter Task.) -- C:\WINDOWS\system32\appidpolicyconverter.exe [159744] =>.Microsoft Corporation
O38 - TASK: {555B029E-AE5A-4C31-A08E-FCD1CB02686D} [64Bits][\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector] - (.Microsoft Corporation - Module de diagnostics des erreurs de disque.) -- C:\Windows\System32\dfdts.dll [45568] =>.Microsoft Corporation
O38 - TASK: {570C1312-6519-46B5-A969-552A932711F4} [64Bits][\Microsoft\Windows\Media Center\DispatchRecoveryTasks] - (...) -- C:\WINDOWS\ehome\ehPrivJob.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {5782008E-31FC-4F07-A51D-2E46B4C52243} [64Bits][\Microsoft\Windows\RemovalTools\MRT_HB] - (.Microsoft Corporation - Outil de suppression de logiciels malveilla.) -- C:\WINDOWS\system32\MRT.exe [127017032] =>.Microsoft Corporation®
O38 - TASK: {5790ADE0-2FD6-465B-8C76-3027B937262E} [64Bits][\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange] - (.Microsoft Corporation - Moteur de filtrage de base.) -- C:\Windows\System32\bfe.dll [815616] =>.Microsoft Corporation
O38 - TASK: {5CC32BFA-5F4A-43BD-B014-148EBCFC64CB} [64Bits][\Microsoft\Office\OfficeTelemetryAgentFallBack2016] - (.Microsoft Corporation - Office Telemetry Agent.) -- C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2248360] =>.Microsoft Corporation®
O38 - TASK: {5D1740CE-007B-4200-B035-AB18E0D64A06} [64Bits][\Microsoft\Windows\Feedback\Siuf\DmClient] - (.Microsoft Corporation - Microsoft Feedback SIUF Deployment Manager.) -- C:\WINDOWS\system32\dmclient.exe [89600] =>.Microsoft Corporation
O38 - TASK: {5D3118F3-1F15-46E1-9AC8-5CC8547B3AC4} [64Bits][\Microsoft\Windows Defender\MpIdleTask] - (.Microsoft Corporation - Microsoft Malware Protection Command Line U.) -- c:\program files\windows defender\MpCmdRun.exe [438032] =>.Microsoft Corporation®
O38 - TASK: {5E9D63C2-F730-4CBE-949A-3F42774C8832} [64Bits][\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_ReadyToReboot] - (.Microsoft Corporation - MusNotificationBroker.) -- C:\windows\system32\MusNotification.exe [306176] =>.Microsoft Corporation
O38 - TASK: {5F743234-CC05-4E2A-B660-19F1508AB7AF} [64Bits][\Microsoft\Windows\SystemRestore\SR] - (.Microsoft Corporation - Tâches de fond de la protection du système.) -- C:\WINDOWS\system32\srtasks.exe [57856] =>.Microsoft Corporation
O38 - TASK: {6014C301-6806-478A-8664-0A1A37287188} [64Bits][\Microsoft\Windows\UpdateOrchestrator\Reboot] - (.Microsoft Corporation - MusNotificationBroker.) -- C:\WINDOWS\System32\MusNotification.exe [306176] =>.Microsoft Corporation
O38 - TASK: {602454C8-D263-492D-83FA-97C0B47771C7} [64Bits][\OneDrive Standalone Update Task-S-1-5-21-316627027-3033381719-1982330960-1000] - (.Microsoft Corporation - Standalone Updater.) -- C:\Users\Omnia\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe [2296008] =>.Microsoft Corporation®
O38 - TASK: {60A4F3BE-BB33-4CD6-9E2E-F9921831EC0D} [64Bits][\Adobe Acrobat Update Task] - (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1171480] =>.Adobe Systems, Incorporated®
O38 - TASK: {629A9008-494B-405F-809C-677EBFDF6A38} [64Bits][\Microsoft\Windows\Clip\License Validation] - (.Microsoft Corporation - Client License Platform migration tool.) -- C:\WINDOWS\System32\ClipUp.exe [1347640] =>.Microsoft Windows Publisher®
O38 - TASK: {629F06AA-6A53-4DE5-9DD0-03C1CDC87D6D} [64Bits][\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup] - (.Microsoft Corporation - DLL du client de déploiement d’AppX.) -- C:\Windows\System32\AppxDeploymentClient.dll [654976] =>.Microsoft Windows®
O38 - TASK: {630688FE-8CCC-4BF2-8DD0-E517C5EAF86A} [64Bits][\Adobe Flash Player PPAPI Notifier] - (.Adobe Systems Incorporated - Adobe® Flash® Player Installer/Uninstaller.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_27_0_0_187_pepper.exe [1319424] =>.Adobe Systems Incorporated®
O38 - TASK: {650ABE68-ADE6-4DB9-84CB-221DC5410C15} [64Bits][\{67724B1C-0C6A-4692-805C-845BE583F863}] - (.Microsoft Corporation - Launch Windows App.) -- c:\windows\system32\launchwinapp.exe [42496] =>.Microsoft Corporation
O38 - TASK: {66A2FE4A-49C9-4785-A32C-ADB03063AD5F} [64Bits][\RealPlayerRealUpgradeScheduledTaskS-1-5-21-316627027-3033381719-1982330960-1000] - (.RealNetworks, Inc. - RealUpgrade Launcher.) -- C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [122880] =>.RealNetworks, Inc.
O38 - TASK: {693D7C8C-D671-4DD7-BE20-F6EE2B91DC26} [64Bits][\Microsoft\Windows\Windows Defender\Windows Defender Cleanup] - (.Microsoft Corporation - Microsoft Malware Protection Command Line U.) -- C:\Program Files\Windows Defender\MpCmdRun.exe [438032] =>.Microsoft Corporation®
O38 - TASK: {6CAF0633-69FB-4D28-9C26-2516BF000755} [64Bits][\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser] - (.Microsoft Corporation - Tâche de l’analyseur d’expérience de compte.) -- C:\WINDOWS\System32\MbaeParserTask.exe [112640] =>.Microsoft Corporation
O38 - TASK: {71ED6106-C206-484F-A15F-521899708043} [64Bits][\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance] - (.Microsoft Corporation - Microsoft Malware Protection Command Line U.) -- C:\Program Files\Windows Defender\MpCmdRun.exe [438032] =>.Microsoft Corporation®
O38 - TASK: {7208E7A3-F562-49BB-887F-74AAA3F01D42} [64Bits][\Microsoft\Windows\DiskCleanup\SilentCleanup] - (.Microsoft Corporation - Gestionnaire de nettoyage de disque pour Wi.) -- C:\WINDOWS\system32\cleanmgr.exe [217088] =>.Microsoft Corporation
O38 - TASK: {7B4B02D9-AE21-4E95-BCC3-58A709BA9FE9} [64Bits][\CCleanerSkipUAC] - (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner.exe [7658200] =>.Piriform Ltd®
O38 - TASK: {802658F2-8967-4875-BFB7-551F4F5DE9C7} [64Bits][\Microsoft\XblGameSave\XblGameSaveTask] - (.Microsoft Corporation - XblGameSave Standby Task.) -- C:\WINDOWS\System32\XblGameSaveTask.exe [31744] =>.Microsoft Corporation
O38 - TASK: {8087E806-37AB-4BAE-9392-345700BC7D56} [64Bits][\Microsoft\Windows\UpdateOrchestrator\Policy Install] - (.Microsoft Corporation - UsoClient.) -- C:\WINDOWS\System32\usoclient.exe [34304] =>.Microsoft Corporation
O38 - TASK: {8335AC77-AC90-44C9-88EE-4BA45688225A} [64Bits][\Microsoft\Windows\Media Center\UpdateRecordPath] - (...) -- C:\WINDOWS\ehome\ehPrivJob.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {84FE7D62-93C0-4524-8DB7-83FB0C394BF8} [64Bits][\Microsoft\Windows\Windows Error Reporting\QueueReporting] - (.Microsoft Corporation - Windows Problem Reporting.) -- C:\WINDOWS\system32\wermgr.exe [187800] =>.Microsoft Windows®
O38 - TASK: {8AF2EF4C-9C07-4A46-B8C9-75AD63BA0343} [64Bits][\Microsoft\Windows\MUI\Lpksetup] - (.Microsoft Corporation - Programme d’installation des packs de langu.) -- C:\WINDOWS\System32\lpksetup.exe [743424] =>.Microsoft Corporation
O38 - TASK: {8DAB871E-CC2C-4BC6-A9F0-417CEACBD0A2} [64Bits][\Microsoft\Windows\Media Center\PBDADiscoveryW2] - (...) -- C:\WINDOWS\ehome\ehPrivJob.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {8DCBFD41-4CCC-40A7-965A-C1A92C40975E} [64Bits][\Microsoft\Windows\Location\WindowsActionDialog] - (.Microsoft Corporation - Service Broker pour la boîte de dialogue Ac.) -- C:\WINDOWS\System32\WindowsActionDialog.exe [59392] =>.Microsoft Corporation
O38 - TASK: {91B32A80-B261-4306-A574-9B1ED74BAAC6} [64Bits][\Microsoft\Windows\Windows Media Sharing\UpdateLibrary] - (.Microsoft Corporation - Application de configuration du service Par.) -- C:\Program Files\Windows Media Player\wmpnscfg.exe [70144] =>.Microsoft Corporation
O38 - TASK: {93F31B0F-4326-4B5A-8483-4C66EA008F54} [64Bits][\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser] - (.Microsoft Corporation - Microsoft Compatibility Telemetry.) -- C:\WINDOWS\system32\compattelrunner.exe [136088] =>.Microsoft Windows®
O38 - TASK: {94FAC650-F217-42CC-8326-8D9B727298C9} [64Bits][\Microsoft\Windows\Defrag\ScheduledDefrag] - (.Microsoft Corp. - Module de défragmenteur de disque.) -- C:\WINDOWS\system32\defrag.exe [185856] =>.Microsoft Corp.
O38 - TASK: {960A5F67-42A0-4D4D-B68D-4439C5C9D12F} [64Bits][\Microsoft\Windows\DiskFootprint\Diagnostics] - (.Microsoft Corporation - DiskSnapshot.exe.) -- C:\WINDOWS\system32\disksnapshot.exe [82944] =>.Microsoft Corporation
O38 - TASK: {964E072D-F1EF-4DBC-AF11-64A93DE0EC64} [64Bits][\Microsoft\Windows\Bluetooth\UninstallDeviceTask] - (.Microsoft Corporation - Tâche de désinstallation du périphérique Bl.) -- C:\Windows\System32\BthUdTask.exe [40448] =>.Microsoft Corporation
O38 - TASK: {96FCE796-352B-4C45-9889-796B862FA2E0} [64Bits][\Microsoft\Windows\Time Synchronization\SynchronizeTime] - (.Microsoft Corporation - Outil de configuration du Gestionnaire de c.) -- C:\WINDOWS\system32\sc.exe [68608] =>.Microsoft Corporation
O38 - TASK: {988F11EF-524F-4826-9D04-027CF7A6714D} [64Bits][\Microsoft\XblGameSave\XblGameSaveTaskLogon] - (.Microsoft Corporation - XblGameSave Standby Task.) -- C:\WINDOWS\System32\XblGameSaveTask.exe [31744] =>.Microsoft Corporation
O38 - TASK: {99012CF2-B32B-46BA-8F7B-F0F49C592929} [64Bits][\Microsoft\Windows\UpdateOrchestrator\Maintenance Install] - (.Microsoft Corporation - UsoClient.) -- C:\WINDOWS\System32\usoclient.exe [34304] =>.Microsoft Corporation
O38 - TASK: {9BA0D7D2-8C83-4C10-AE30-642973055898} [64Bits][\Microsoft\Windows\ApplicationData\CleanupTemporaryState] - (.Microsoft Corporation - Windows Application Data API Server.) -- C:\Windows\System32\Windows.Storage.ApplicationData.dll [328616] =>.Microsoft Windows®
O38 - TASK: {9D02B6CE-B95F-40D1-A9E4-3BB7C4146B13} [64Bits][\Microsoft\Windows\Location\Notifications] - (.Microsoft Corporation - Notification d'emplacement.) -- C:\WINDOWS\System32\LocationNotificationWindows.exe [66560] =>.Microsoft Corporation
O38 - TASK: {9D267269-30AD-4D5A-A455-BD8D32A5F6A4} [64Bits][\Microsoft\Windows\DUSM\dusmtask] - (.Microsoft Corporation - DUSM Task.) -- C:\WINDOWS\System32\dusmtask.exe [35840] =>.Microsoft Corporation
O38 - TASK: {9F479564-B8DC-4E5B-9D31-671A81C5CB9E} [64Bits][\Microsoft\Windows\SpacePort\SpaceManagerTask] - (.Microsoft Corporation - Storage Spaces Manager.) -- C:\WINDOWS\system32\spaceman.exe [34816] =>.Microsoft Corporation
O38 - TASK: {A712C228-E724-48D8-8DA5-0939C17AC7B9} [64Bits][\Microsoft\Windows\Media Center\OCURActivate] - (...) -- C:\WINDOWS\ehome\ehPrivJob.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {ADC8C694-2345-4E8A-AA4D-398A8088F99D} [64Bits][\Microsoft\Windows\MUI\LPRemove] - (.Microsoft Corporation - MUI Language pack cleanup.) -- C:\WINDOWS\system32\lpremove.exe [66560] =>.Microsoft Corporation
O38 - TASK: {AE8A4330-A541-43EF-B31C-352A641B1BDF} [64Bits][\{953455B0-0EF1-48D9-AFB1-A6BE6C305A23}] - (...) -- C:\Users\Omnia\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ES6CXBOC\windows-media-player-11_windows_media_player_11.0_francais_20085[1].exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {B07DE546-F70E-4619-B757-E482408494E8} [64Bits][\Microsoft\Windows\UpdateOrchestrator\Schedule Scan] - (.Microsoft Corporation - UsoClient.) -- C:\WINDOWS\System32\usoclient.exe [34304] =>.Microsoft Corporation
O38 - TASK: {B2AA3DC5-3CFC-4DEA-A481-2CFA48C87739} [64Bits][\Microsoft\Windows\Media Center\PvrScheduleTask] - (...) -- C:\WINDOWS\ehome\mcupdate.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {B64FB6F9-D4C1-4B6B-BC7D-C8FDB0D36E4C} [64Bits][\Microsoft\Windows Defender\MP Scheduled Scan] - (.Microsoft Corporation - Microsoft Malware Protection Command Line U.) -- c:\program files\windows defender\MpCmdRun.exe [438032] =>.Microsoft Corporation®
O38 - TASK: {B9428440-4B58-4A61-9013-B30C717CE009} [64Bits][\Microsoft\Windows\Sysmain\WsSwapAssessmentTask] - (.Microsoft Corporation - Hôte de service Superfetch.) -- C:\Windows\System32\sysmain.dll [972800] =>.Microsoft Corporation
O38 - TASK: {C0FE11E9-9F87-413E-A53A-639404322FA8} [64Bits][\Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers] - (.Microsoft Corporation - Module d’installation de pilotes.) -- C:\WINDOWS\System32\drvinst.exe [158720] =>.Microsoft Corporation
O38 - TASK: {C1DF99C7-5EFA-459A-9BCA-9BC85047118F} [64Bits][\Microsoft\Windows\WindowsUpdate\Scheduled Start] - (.Microsoft Corporation - Outil de configuration du Gestionnaire de c.) -- C:\Windows\System32\sc.exe [68608] =>.Microsoft Corporation
O38 - TASK: {C44555BF-313D-4BA3-BF0C-4E44B89730D0} [64Bits][\microsoft\windows\applicationdata\appuriverifierinstall] - (.Microsoft Corporation - Vérificateur de l’inscription des gestionna.) -- C:\WINDOWS\system32\AppHostRegistrationVerifier.exe [105472] =>.Microsoft Corporation
O38 - TASK: {C4486774-0CCE-4E61-A05F-A504113E5907} [64Bits][\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask] - (...) -- C:\WINDOWS\ehome\mcupdate.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {C6968E13-8A7E-4AC1-A5AA-CD8A0CFE739E} [64Bits][\Microsoft\Windows\Windows Defender\Windows Defender Verification] - (.Microsoft Corporation - Microsoft Malware Protection Command Line U.) -- C:\Program Files\Windows Defender\MpCmdRun.exe [438032] =>.Microsoft Corporation®
O38 - TASK: {C6D96425-C719-4DA6-B604-44C823928067} [64Bits][\microsoft\windows\applicationdata\appuriverifierdaily] - (.Microsoft Corporation - Vérificateur de l’inscription des gestionna.) -- C:\WINDOWS\system32\AppHostRegistrationVerifier.exe [105472] =>.Microsoft Corporation
O38 - TASK: {C7002ACC-B47B-43BF-838C-0A58806011C5} [64Bits][\Microsoft\Windows\Application Experience\ProgramDataUpdater] - (.Microsoft Corporation - Microsoft Compatibility Telemetry.) -- C:\WINDOWS\system32\compattelrunner.exe [136088] =>.Microsoft Windows®
O38 - TASK: {C8404A8B-F677-42FF-9A29-B19C9551D34A} [64Bits][\Microsoft\Windows\Media Center\RecordingRestart] - (...) -- C:\WINDOWS\ehome\ehrec (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {C8908A7C-1508-4119-A0BC-5320B8D5124B} [64Bits][\Microsoft\Windows\Media Center\ehDRMInit] - (...) -- C:\WINDOWS\ehome\ehPrivJob.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {C8BEE0EF-5E93-41F0-AEE3-292B4C4F065E} [64Bits][\Microsoft\Windows\Media Center\ReindexSearchRoot] - (...) -- C:\WINDOWS\ehome\ehPrivJob.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {CB3E5BBD-7DE0-4874-921F-333E224C9284} [64Bits][\Microsoft\Windows\Media Center\PBDADiscovery] - (...) -- C:\WINDOWS\ehome\ehPrivJob.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {CF7DC6A3-E160-4A60-BBB3-D5673046394B} [64Bits][\Microsoft\Windows\UpdateOrchestrator\Resume On Boot] - (.Microsoft Corporation - UsoClient.) -- C:\WINDOWS\System32\usoclient.exe [34304] =>.Microsoft Corporation
O38 - TASK: {D0987DAE-9DB4-4F47-8D1D-297EC890A7FF} [64Bits][\Microsoft\Windows\WwanSvc\NotificationTask] - (.Microsoft Corporation - Tâche sans fil en arrière-plan.) -- C:\WINDOWS\System32\WiFiTask.exe [459168] =>.Microsoft Windows®
O38 - TASK: {D13651D7-BA5A-4100-9D2C-EC6D2B14FE27} [64Bits][\Microsoft\Windows\Speech\SpeechModelDownloadTask] - (.Microsoft Corporation - Speech Model Download Executable.) -- C:\Windows\System32\speech_onecore\Common\SpeechModelDownload.exe [162816] =>.Microsoft Corporation
O38 - TASK: {D2A4E9DD-F62B-45D1-9483-01B375F50706} [64Bits][\Microsoft\Internet Explorer\Supprimer les versions précédentes d’Internet Explorer] - (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\SYSTEM32\ie4uinit.EXE [225792] =>.Microsoft Corporation
O38 - TASK: {DB224CAB-74BF-48D3-B058-6D0E9C686635} [64Bits][\Microsoft\Windows\Media Center\mcupdate_scheduled] - (. - Check for Media Center updates..) -- C:\WINDOWS\ehome\mcupdate (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {DBB53BF0-E98E-4296-9B62-B548940FCC25} [64Bits][\Adobe Flash Player Updater] - (.Adobe Systems Incorporated - Adobe® Flash® Player Update Service 27.0 r0.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [272384] =>.Adobe Systems Incorporated®
O38 - TASK: {DEABEF92-70EE-4E53-832A-6D676F4A2D13} [64Bits][\Microsoft\Office\OfficeBackgroundTaskHandlerLogon] - (.Microsoft Corporation - This task initiates Office Background Task .) -- C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [24264] =>.Microsoft Corporation®
O38 - TASK: {DF895C01-61A1-46E5-B0D4-1A6B63223546} [64Bits][\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask] - (.Microsoft Corporation - Serveur COM d’assistance à distance Windows.) -- C:\Windows\System32\raserver.exe [128512] =>.Microsoft Corporation
O38 - TASK: {DFF7D058-6DA8-498F-AB5E-95F28167CB9C} [64Bits][\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_Display] - (.Microsoft Corporation - MusNotificationBroker.) -- C:\windows\system32\MusNotification.exe [306176] =>.Microsoft Corporation
O38 - TASK: {E37AF09F-6BCD-416F-844E-759DDF91348F} [64Bits][\Microsoft\Office\Office Automatic Updates] - (.Microsoft Corporation - Microsoft Office Click-to-Run Client.) -- C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [16930984] =>.Microsoft Corporation®
O38 - TASK: {E7C80751-802F-4B14-83A6-72FC8E523CFA} [64Bits][\Microsoft\Windows\Media Center\StartRecording] - (...) -- C:\WINDOWS\ehome\ehrec (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {EEEA8ECF-FC57-4A3B-8AD2-5AE8A84B9B04} [64Bits][\GoogleUpdateTaskMachineCore] - (.Google Inc. - Programme d'installation de Google.) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752] =>.Google Inc®
O38 - TASK: {F0EF2229-B2E6-4410-9B85-F405AAE02057} [64Bits][\Microsoft\Windows\UpdateOrchestrator\MusUx_UpdateInterval] - (.Microsoft Corporation - MusNotificationBroker.) -- C:\WINDOWS\System32\MusNotification.exe [306176] =>.Microsoft Corporation
O38 - TASK: {F17AA280-E475-4AAD-8AC0-C87C33267E65} [64Bits][\Microsoft\Windows\Subscription\LicenseAcquisition] - (.Microsoft Corporation - Acquire License From Store.) -- C:\WINDOWS\System32\ClipRenew.exe [137112] =>.Microsoft Windows®
O38 - TASK: {F574365F-BBE4-4CA7-80B0-21D56EF5E426} [64Bits][\{522F0E3E-0865-42C3-BD84-1DA8F410D046}] - (...) -- C:\Users\Omnia\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\R4YHGUF4\sp55086[1].exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {F5EBE4C2-AF8E-4182-90AA-EE14AA5D486B} [64Bits][\RealUpgradeLogonTaskS-1-5-21-316627027-3033381719-1982330960-1000] - (.RealNetworks, Inc. - RealUpgrade Launcher.) -- C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [122880] =>.RealNetworks, Inc.
O38 - TASK: {F876BE4C-DADC-426A-BBEA-79D14E14CD4F} [64Bits][\Microsoft\Windows\Shell\FamilySafetyMonitor] - (.Microsoft Corporation - Moniteur du contrôle parental.) -- C:\WINDOWS\System32\wpcmon.exe [1763376] =>.Microsoft Windows®
O38 - TASK: {F979DC26-C89B-4F41-89CF-163892C6006E} [64Bits][\{BAB20F9F-4EBF-4650-A537-169FE858C154}] - (...) -- C:\Users\Omnia\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KBE5X2V9\Win7Vista_64_152254.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {FB25F338-1755-4FF9-9769-D52AF46795C1} [64Bits][\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver] - (.Microsoft Corporation - Outil de résolution des défaillances disque.) -- C:\WINDOWS\system32\DFDWiz.exe [51200] =>.Microsoft Corporation
O38 - TASK: {FB3CBD0B-7B49-4137-B9B8-2CF4C72534EC} [64Bits][\Microsoft\Windows\UpdateOrchestrator\Combined Scan Download Install] - (.Microsoft Corporation - UsoClient.) -- C:\WINDOWS\System32\usoclient.exe [34304] =>.Microsoft Corporation
O38 - TASK: {FC7A6554-B43F-4C6D-9EAC-5CC34E45A799} [64Bits][\Microsoft\Windows\Application Experience\StartupAppTask] - (.Microsoft Corporation - DLL de tâche d’analyse de démarrage.) -- C:\Windows\System32\Startupscan.dll [19968] =>.Microsoft Corporation
---\\ Applications lancées au démarrage du système (16) - 3s
O4 - HKLM\..\Run: [SecurityHealth] . (.Microsoft Corporation - Windows Defender notification icon.) -- C:\Program Files\Windows Defender\MSASCuiL.exe =>.Microsoft Windows®
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\WINDOWS\system32\hkcmd.exe =>.Intel Corporation
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\WINDOWS\system32\igfxpers.exe =>.Intel Corporation
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe =>.Realtek Semiconductor Corp.®
O4 - HKLM\..\Run: [RtHDVBg] . (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe =>.Realtek Semiconductor Corp.®
O4 - HKLM\..\Run: [UMonit] . (.Copyright (C) 2008 - ChangeIcon MFC Application.) -- C:\Windows\SysWOW64\UMonit.exe
O4 - HKCU\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Ltd®
O4 - HKCU\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\Omnia\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - HKLM\..\Wow6432Node\Run: [TkBellExe] . (.RealNetworks, Inc. - RealNetworks Scheduler.) -- C:\Program Files (x86)\Real\realplayer\update\realsched.exe {7975BE185DD3B5E5CB86712EAACC41DF} =>.RealNetworks, Inc.
O4 - HKLM\..\Wow6432Node\Run: [RealDownloader] . (.Copyright © RealNetworks, Inc. 1995-2017 - RealDownloader.) -- C:\program files (x86)\Real\RealDownloader\downloader2.exe {7975BE185DD3B5E5CB86712EAACC41DF}
O4 - HKLM\..\Wow6432Node\Run: [Wondershare Helper Compact.exe] . (. - .) -- C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe (.Not File.) =>.SUP.Orphan
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe =>.Oracle America, Inc.®
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Windows®
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Windows®
O4 - HKUS\S-1-5-21-316627027-3033381719-1982330960-1000\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Ltd®
O4 - HKUS\S-1-5-21-316627027-3033381719-1982330960-1000\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\Omnia\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
---\\ Processus lancés (31) - 9s
[MD5.C58847223D7EA5AB3B1D26F0BEAFDF1F] - (.Realtek Semiconductor - Realtek Audio Service.) -- C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [320512] [PID.2264] =>.Realtek Semiconductor Corp.®
[MD5.C75BEF5E0AA96799E8AD5E363009C125] - (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1483264] [PID.2808] =>.Realtek Semiconductor Corp.®
[MD5.D32D96B6C02040C1496452853462C214] - (.Andrea Electronics Corporation - Andrea filters APO access service (64-bit).) -- C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe [106944] [PID.3348] =>.Andrea Electronics®
[MD5.38622FFE9369D3EC01C0097235BD9279] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [83984] [PID.3364] =>.Adobe Systems, Incorporated®
[MD5.50C3C62FFE6337E6E4F2F01CB07DF63C] - (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\avp.exe [194000] [PID.3384] =>.Kaspersky Lab®
[MD5.B9B601B2DF3F5A3CAE75B0DCAF02B13F] - (.Windows (R) Win 7 DDK provider - Windows Setup API.) -- C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [323152] [PID.3412] =>.Qualcomm Atheros®
[MD5.E90DA42B87D684DEBFB73B38A718A006] - (.Copyright (C) 2008 - DCSHOST.) -- C:\ProgramData\DatacardService\HWDeviceService64.exe [346976] [PID.3468] =>.HUAWEI Technologies Co., Ltd.®
[MD5.42C8721929F894C70CC416190E07F10B] - (.RealNetworks, Inc. - RealPlayer.) -- C:\program files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe [37104] [PID.3596] {7975BE185DD3B5E5CB86712EAACC41DF} =>.RealNetworks, Inc.
[MD5.46826B02C346D48A62FF11882AF662BB] - (.DEVGURU Co., LTD. - MSS CS Connectivity Service.) -- C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224] [PID.3672] =>.Samsung Electronics CO., LTD.®
[MD5.B811CD167596F904F68026058C293BD5] - (.Synaptics Incorporated - 64-bit Synaptics Pointing Enhance Service.) -- C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [253960] [PID.3684] =>.Synaptics Incorporated®
[MD5.B7A50ECA6CC0062BD243FE38489710D8] - (.Wondershare - Wondershare Passport.) -- C:\Program Files (x86)\Wondershare\WAF\2.4.3.229\WsAppService.exe [493280] [PID.3868] =>.Wondershare Technology Co.,Ltd®
[MD5.4704E73C1706F0CBCF2928981CE04E76] - (...) -- D:\odoo\Odoo 9.0-20160320\service\win32_service.exe [23552] [PID.4744]
[MD5.1CE0621B591913C12BECAA5B50E88BB2] - (...) -- C:\ProgramData\Internet Mobile\OnlineUpdate\ouc.exe [246112] [PID.4436] =>.HUAWEI Technologies Co., Ltd.®
[MD5.6967BBC40AC6FF9EFC5CBD11D6FF3634] - (...) -- D:\odoo\Odoo 9.0-20160320\server\openerp-server.exe [20992] [PID.5644]
[MD5.932A21CF0DA4E951C7C4A62D27E6D8FB] - (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\avpui.exe [211712] [PID.6976] =>.Kaspersky Lab®
[MD5.0AF24553D8D4C581B7E2462269FF97AA] - (.Synaptics Incorporated - Synaptics TouchPad 64-bit Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3954352] [PID.7076] =>.Synaptics Incorporated®
[MD5.32CFC37FA01EC93047E82555C6610B67] - (.Synaptics Incorporated - Synaptics Pointing Device Helper.) -- C:\PROGRAM FILES\SYNAPTICS\SynTP\SYNTPHELPER.EXE [218808] [PID.4356] =>.Synaptics Incorporated®
[MD5.349AB4F70E2AC44970894E7F03E1576E] - (.Huawei Technologies Co., Ltd. - DataCardMonitor MFC Application.) -- C:\ProgramData\DatacardService\DCSHelper.exe [236384] [PID.5488] =>.HUAWEI Technologies Co., Ltd.®
[MD5.00000000000000000000000000000000] - (.Intel Corporation - igfxTray Module.) -- C:\Windows\System32\igfxtray.exe [0] [PID.8684] =>.Intel Corporation
[MD5.00000000000000000000000000000000] - (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe [0] [PID.8744] =>.Intel Corporation
[MD5.00000000000000000000000000000000] - (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe [0] [PID.8920] =>.Intel Corporation
[MD5.6B89138EA6759DB1AB6F5C05CA97210D] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9197568] [PID.9008] =>.Realtek Semiconductor Corp.®
[MD5.C75BEF5E0AA96799E8AD5E363009C125] - (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1483264] [PID.9028] =>.Realtek Semiconductor Corp.®
[MD5.E77E8C2373441432DEFB1C79FACE7685] - (.Copyright (C) 2008 - ChangeIcon MFC Application.) -- C:\Windows\SysWOW64\UMonit.exe [28672] [PID.9056]
[MD5.8A81CD2E7C6C3B59CCA43CAFCE4C1C77] - (.RealNetworks, Inc. - RealPlayer with RealTimes.) -- C:\Program Files (x86)\Real\realplayer\RPDS\Bin\rpsystray.exe [7411928] [PID.8672] {7975BE185DD3B5E5CB86712EAACC41DF} =>.RealNetworks, Inc.
[MD5.3619858A81B73C5C8D7C8A818E3AA91C] - (.RealNetworks, Inc. - RealNetworks Scheduler.) -- C:\Program Files (x86)\Real\realplayer\Update\realsched.exe [353104] [PID.6112] {7975BE185DD3B5E5CB86712EAACC41DF} =>.RealNetworks, Inc.
[MD5.49E9F8393BB326CB3FC6D6AC756F17DF] - (.Copyright © RealNetworks, Inc. 1995-2017 - RealDownloader.) -- C:\Program Files (x86)\Real\RealDownloader\downloader2.exe [1259704] [PID.7744] {7975BE185DD3B5E5CB86712EAACC41DF}
[MD5.AC581685C4CC890B42E9E9700014543D] - (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288] [PID.7632] =>.Oracle America, Inc.®
[MD5.BF51D24BBBFAC851F116433F468E1BE4] - (.RealNetworks, Inc. - Tools for RealDownloader.) -- C:\Program Files (x86)\Real\RealDownloader\RealDownloader264.exe [102224] [PID.9808] {7975BE185DD3B5E5CB86712EAACC41DF} =>.RealNetworks, Inc.
[MD5.24AFAD9B4B24FD1D4BF7127A2DC78D92] - (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe [9818328] [PID.9972] =>.Piriform Ltd®
[MD5.88BD3D8978F227F7DA569D9F480B8DBE] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\Omnia\Desktop\ZHPDiag3.exe [2935680] [PID.7500] =>.Nicolas Coolman
---\\ Google Chrome, Démarrage,Recherche,Extensions (10) - 1s
G2 - GCE: Preference [Ihab][User Data\Default] [aapocclcgogkmnckokdopfmhonfmgoek] =>.Google Inc. {Slides}
G2 - GCE: Preference [Ihab][User Data\Default] [aohghmighlieiainnegkcijnfilokake] =>.Google Inc. {Docs}
G2 - GCE: Preference [Ihab][User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] http://drive.google.com/ =>.Google Inc. {Drive}
G2 - GCE: Preference [Ihab][User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] http://www.youtube.com =>.Youtube {Youtube}
G2 - GCE: Preference [Ihab][User Data\Default] [eahebamiopdhefndnmappcihfajigkka]
G2 - GCE: Preference [Ihab][User Data\Default] [felcaaldnbdncclmgdcncolpebgiejap] =>.Google Inc. {Sheets}
G2 - GCE: Preference [Ihab][User Data\Default] [ghbmnnjooekpmoecnnnilnnbdlolhkhi] =>.Google Inc. {Docs hors connexion}
G2 - GCE: Preference [Ihab][User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] =>.Google Inc. {Wallet}
G2 - GCE: Preference [Ihab][User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] http://mail.google.com/ =>.Google Inc. {Gmail}
G2 - GCE: Preference [Ihab][User Data\Default] [pkedcjkdefgpdelpbcmbmeomcjbeemfm] Chrome Media Router =>.Google Inc.
---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (19) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.co.ma =>.Google Inc.
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com =>.Google Inc.
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com =>.Google Inc.
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchUrl,Default = http://www.google.com =>.Google Inc.
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R3 - URLSearchHook: (no name)[HKCU] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (11.00.15063.608 (WinBuild.160101.0800)) -- C:\Windows\System32\ieframe.dll =>.Microsoft Corporation
---\\ Microsoft Edge, Plugin,Favoris,Démarrage,Recherche,Extension (1) - 0s
E0 - Microsoft Edge: HKU\S-1-5-21-316627027-3033381719-1982330960-1000\HomeButtonPage = http://www.google.co.ma =>..Google.com
---\\ Internet Explorer,Proxy Management (6) - 0s
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
R5 - HKLM\SYSTEM\CurrentControlSet\services\NlaSvc\Parameters\Internet\ManualProxies [] =>.Microsoft
---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: VMApplet=
---\\ Etude du fichier hosts (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (1)
---\\ Browser Helper Object de navigateur (BHO) (4) - 1s
O2 - BHO: RealNetworks Download and Record Plugin for Internet Explorer [64Bits] - {3049C3E9-B461-4BC5-8870-4C09146192CA} . (.RealDownloader - RealTimes Video Downloader.) -- C:\program files (x86)\Real\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin64.dll {7975BE185DD3B5E5CB86712EAACC41DF} =>.RealDownloader
O2 - BHO: Lync Click to Call BHO [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} . (.Microsoft Corporation - Skype for Business.) -- C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll =>.Microsoft Corporation®
O2 - BHO: ScriptInjectionPluginBrowserHelperObject [64Bits] - {C66D064F-82FE-4E1A-B06A-B2490BA48B18} . (.AO Kaspersky Lab - Kaspersky Protection plugins.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\x64\IEExt\ie_plugin.dll =>.Kaspersky Lab®
O2 - BHO: Microsoft OneDrive for Business Browser Helper [64Bits] - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} . (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL =>.Microsoft Corporation®
---\\ Raccourcis Global Startup (70) - 19s
O4 - GS\Desktop [Administrator]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [Administrator]: Protection bancaire.lnk . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\avpui.exe -safebanking =>.Kaspersky Lab®
O4 - GS\Desktop [Administrator]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Omnia\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Administrator]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Administrator]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\sendTo [Administrator]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Administrator]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe /sendto: =>.Skype Software Sarl®
O4 - GS\sendTo [Administrator]: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\Programs [Administrator]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\Omnia\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - GS\Desktop [Guest]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [Guest]: Protection bancaire.lnk . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\avpui.exe -safebanking =>.Kaspersky Lab®
O4 - GS\Desktop [Guest]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Omnia\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Guest]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Guest]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\sendTo [Guest]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Guest]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe /sendto: =>.Skype Software Sarl®
O4 - GS\sendTo [Guest]: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\Programs [Guest]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\Omnia\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - GS\Desktop [Ihab]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [Ihab]: Protection bancaire.lnk . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\avpui.exe -safebanking =>.Kaspersky Lab®
O4 - GS\Desktop [Ihab]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Omnia\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Ihab]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Ihab]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\sendTo [Ihab]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Ihab]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe /sendto: =>.Skype Software Sarl®
O4 - GS\sendTo [Ihab]: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\Programs [Ihab]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\Omnia\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - GS\CommonDesktop [Public]: Acrobat Reader DC.lnk . (.Adobe Systems Incorporated - Adobe Acrobat Reader DC.) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe =>.Adobe Systems, Incorporated®
O4 - GS\CommonDesktop [Public]: CCleaner.lnk . (.Piriform Ltd - CCleaner.) C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Ltd®
O4 - GS\CommonDesktop [Public]: Euro Truck Simulator 2 - Vive la France !(X64).lnk . (.SCS Software - Euro Truck Simulator 2 - Steam.) D:\Euro Truck Simulator 2 - Vive la France !\bin\win_x64\eurotrucks2.exe =>.SCS Software
O4 - GS\CommonDesktop [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\CommonDesktop [Public]: Internet Mobile.lnk . (...) C:\Program Files (x86)\Internet Mobile\Internet Mobile.exe
O4 - GS\CommonDesktop [Public]: Kaspersky Internet Security.lnk . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\avpui.exe =>.Kaspersky Lab®
O4 - GS\CommonDesktop [Public]: RealPlayer (RealTimes).lnk . (.RealNetworks, Inc. - RealPlayer.) C:\Program Files (x86)\Real\realplayer\realplay.exe /launch:desktop {7975BE185DD3B5E5CB86712EAACC41DF} =>.RealNetworks, Inc.
O4 - GS\CommonDesktop [Public]: Skype.lnk . (...) C:\WINDOWS\Installer\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}\SkypeIcon.exe =>.Skype Technologies
O4 - GS\CommonDesktop [Public]: VLC media player.lnk . (.VideoLAN - VLC media player.) C:\Program Files (x86)\VideoLAN\VLC\vlc.exe =>.VideoLAN®
O4 - GS\Programs [Public]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\Omnia\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - GS\Accessories [Public]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Accessories [Public]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) C:\WINDOWS\system32\notepad.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Private Character Editor.lnk . (.Microsoft Corporation - Éditeur de caractères privés.) C:\WINDOWS\system32\eudcedit.exe =>.Microsoft Corporation
O4 - GS\Startup [Public]: RealTimes.lnk . (.RealNetworks, Inc. - RealPlayer with RealTimes.) C:\Program Files (x86)\Real\realplayer\RPDS\Bin\rpsystray.exe {7975BE185DD3B5E5CB86712EAACC41DF} =>.RealNetworks, Inc.
O4 - GS\Accessories [Public]: Bluetooth File Transfer Wizard.lnk . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Math Input Panel.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\mip.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Mobility Center.lnk . (.Microsoft Corporation - Centre de mobilité Windows.) C:\WINDOWS\system32\mblctr.exe /open =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.) C:\WINDOWS\system32\mspaint.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Quick Assist.lnk . (.Microsoft Corporation - Quick Assist.) C:\WINDOWS\system32\quickassist.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Connexion Bureau à distance.) C:\WINDOWS\system32\mstsc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - Outil Capture d’écran.) C:\WINDOWS\system32\SnippingTool.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Steps Recorder.lnk . (.Microsoft Corporation - Enregistreur d’actions.) C:\WINDOWS\system32\psr.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Fax and Scan.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\WINDOWS\system32\WFS.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Application Windows Wordpad.) C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: XPS Viewer.lnk . (.Microsoft Corporation - Visionneuse XPS.) C:\WINDOWS\system32\xpsrchvw.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Table des caractères.) C:\WINDOWS\system32\charmap.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Access 2016.lnk . (.Microsoft Corporation - Microsoft Access.) C:\Program Files (x86)\Microsoft Office\root\Office16\MSACCESS.EXE =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: Acrobat Reader DC.lnk . (.Flexera Software LLC - InstallShield.) C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}\SC_Reader.ico =>.Flexera Software LLC
O4 - GS\ProgramsCommon [Public]: Acrobat Reader DC.lnk . (.Flexera Software LLC - InstallShield.) C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}\SC_Reader.ico =>.Flexera Software LLC
O4 - GS\ProgramsCommon [Public]: Assistant Mise à niveau de Windows 10.lnk . (.Microsoft Corporation - Assistant Mise à jour de Windows 10.) C:\Windows10Upgrade\Windows10UpgraderApp.exe =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: Excel 2016.lnk . (.Microsoft Corporation - Microsoft Excel.) C:\Program Files (x86)\Microsoft Office\root\Office16\EXCEL.EXE =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\ProgramsCommon [Public]: Immersive Control Panel.lnk . (.Microsoft Corporation - Windows Control Panel.) C:\WINDOWS\System32\Control.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: MiracastView.lnk . (.Microsoft Corporation - MiracastView.) C:\WINDOWS\MiracastView\MiracastView.exe =>.Microsoft Windows®
O4 - GS\ProgramsCommon [Public]: OneDrive Entreprise.lnk . (.Microsoft Corporation - Microsoft OneDrive for Business.) C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVE.EXE =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: OneNote 2016.lnk . (.Microsoft Corporation - Microsoft OneNote.) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTE.EXE =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: Outlook 2016.lnk . (.Microsoft Corporation - Microsoft Outlook.) C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: PowerPoint 2016.lnk . (.Microsoft Corporation - Microsoft PowerPoint.) C:\Program Files (x86)\Microsoft Office\root\Office16\POWERPNT.EXE =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: PrintDialog.lnk . (.Microsoft Corporation - Print Dialog.) C:\WINDOWS\PrintDialog\PrintDialog.exe =>.Microsoft Windows®
O4 - GS\ProgramsCommon [Public]: Publisher 2016.lnk . (.Microsoft Corporation - Microsoft Publisher.) C:\Program Files (x86)\Microsoft Office\root\Office16\MSPUB.EXE =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: Skype Entreprise 2016.lnk . (.Microsoft Corporation - Skype for Business.) C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: Word 2016.lnk . (.Microsoft Corporation - Microsoft Word.) C:\Program Files (x86)\Microsoft Office\root\Office16\WINWORD.EXE =>.Microsoft Corporation®
---\\ Modification Domaine/Adresses DNS (3) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{41e03c89-2728-4530-9431-6f39c4a2d802}: DhcpNameServer = 192.168.1.1 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{4cfeb332-6219-41b0-a948-4d6356c7512c}: DhcpNameServer = 192.168.1.1 =>.Local IP Adress
---\\ Protocole additionnel (22) - 1s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll =>.Microsoft Corporation
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\System32\tbauth.dll =>.Microsoft Corporation
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: windows.tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\System32\tbauth.dll =>.Microsoft Corporation
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation
---\\ Logiciels installés (59) - 43s
O42 - Logiciel: Adobe Acrobat Reader DC - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AC0F074E4100} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Flash Player 27 PPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player PPAPI =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001824245926} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Shockwave Player 12.2 - (.Adobe Systems, Inc..) [HKLM][64Bits] -- Adobe Shockwave Player =>.Adobe Systems, Inc.
O42 - Logiciel: AMD APP SDK Runtime - (.Advanced Micro Devices Inc..) [HKLM][64Bits] -- {503F672D-6C84-448A-8F8F-4BC35AC83441} =>.Advanced Micro Devices Inc.
O42 - Logiciel: ATI Catalyst Install Manager - (.ATI Technologies, Inc..) [HKLM][64Bits] -- {5854205C-309C-DB40-ED50-C05675BDA8A3} =>.ATI Technologies, Inc.
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner =>.Piriform Ltd®
O42 - Logiciel: Cisco EAP-FAST Module - (.Cisco Systems, Inc..) [HKLM][64Bits] -- {64BF0187-F3D2-498B-99EA-163AF9AE6EC9} =>.Cisco Systems, Inc.
O42 - Logiciel: Cisco LEAP Module - (.Cisco Systems, Inc..) [HKLM][64Bits] -- {51C7AD07-C3F6-4635-8E8A-231306D810FE} =>.Cisco Systems, Inc.
O42 - Logiciel: Cisco PEAP Module - (.Cisco Systems, Inc..) [HKLM][64Bits] -- {ED5776D5-59B4-46B7-AF81-5F2D94D7C640} =>.Cisco Systems, Inc.
O42 - Logiciel: Euro Truck Simulator 2 - Vive la France ! version 1.0 - (.SCS Software.) [HKLM][64Bits] -- Euro Truck Simulator 2 - Vive la France !_is1 =>.SCS Software
O42 - Logiciel: Genesys USB Mass Storage Device - (.Genesys Logic.) [HKLM][64Bits] -- {959B7F35-2819-40C5-A0CD-3C53B5FCC935} =>.InstallShield Software Corporation®
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome =>.Google Inc®
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} =>.Google Inc.
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA} =>.Intel Corporation - Software and Firmware Products®
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {27DEA29A-222C-45F8-B70D-0A7B303FC71B} =>.Intel Corporation
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {409CB30E-E457-4008-9B1A-ED1B9EA21140} =>.Intel Corporation
O42 - Logiciel: Internet Explorer - (.Microsoft Corporation.) [HKLM][64Bits] -- {4E414048-A9DD-4F60-AA1D-018E716C88C9} =>.Microsoft Corporation
O42 - Logiciel: Internet Mobile - (.Huawei Technologies Co.,Ltd.) [HKLM][64Bits] -- Internet Mobile =>.Huawei Technologies Co.,Ltd
O42 - Logiciel: Java 8 Update 151 - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F32180151F0} =>.Oracle Corporation
O42 - Logiciel: Java Auto Updater - (.Oracle Corporation.) [HKLM][64Bits] -- {4A03706F-666A-4037-7777-5F2748764D10} =>.Oracle Corporation
O42 - Logiciel: Kaspersky Anti-Virus - (.Kaspersky Lab.) [HKLM][64Bits] -- {77E7AE5C-181C-4CAF-ADBF-946F11C1CE26} =>.Kaspersky Lab
O42 - Logiciel: Kaspersky Internet Security - (.Kaspersky Lab.) [HKLM][64Bits] -- InstallWIX_{77E7AE5C-181C-4CAF-ADBF-946F11C1CE26} =>.Kaspersky Lab
O42 - Logiciel: Microsoft Application Error Reporting - (.Microsoft Corporation.) [HKLM][64Bits] -- {95120000-00B9-0409-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft DVD App Installation for Microsoft.WindowsDVDPlayer_2019.6.11761. - (.Microsoft Corporation.) [HKLM][64Bits] -- {986E003C-E56D-5A47-110E-D3C81F0E8535} =>.Microsoft Corporation
O42 - Logiciel: Microsoft OneDrive - (.Microsoft Corporation.) [HKCU][64Bits] -- OneDriveSetup.exe =>.Microsoft Corporation®
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} =>.Microsoft Corporation
O42 - Logiciel: MTP Porting Kit - (.Microsoft Corp.) [HKLM][64Bits] -- {353B1E6D-7073-4450-8C80-699BD8FCFB49} =>.Microsoft Corp
O42 - Logiciel: Odoo 9.0 - (.Odoo S.A..) [HKLM][64Bits] -- Odoo 9.0
O42 - Logiciel: Office 16 Click-to-Run Extensibility Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-008C-0000-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Office 16 Click-to-Run Extensibility Component 64-bit Registration - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-00DD-0000-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Office 16 Click-to-Run Licensing Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-008F-0000-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Office 16 Click-to-Run Localization Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-008C-040C-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: PostgreSQL 9.3 (x86) - (.PostgreSQL Global Development Group.) [HKLM][64Bits] -- PostgreSQL 9.3 =>.PostgreSQL Global Development Group
O42 - Logiciel: Qualcomm Atheros Bluetooth Suite (64) - (.Qualcomm Atheros.) [HKLM][64Bits] -- {A84A4FB1-D703-48DB-89E0-68B6499D2801} =>.Qualcomm Atheros
O42 - Logiciel: Qualcomm Atheros Client Installation Program - (.Qualcomm Atheros.) [HKLM][64Bits] -- {28006915-2739-4EBE-B5E8-49B25D32EB33} =>.Qualcomm Atheros
O42 - Logiciel: Qualcomm Atheros Driver Installation Program - (.Qualcomm Atheros.) [HKLM][64Bits] -- {C3A32068-8AB1-4327-BB16-BED9C6219DC7} =>.Qualcomm Atheros
O42 - Logiciel: RealDownloader - (.RealNetworks, Inc..) [HKLM][64Bits] -- {2275115D-1431-4A62-A98F-2F0393815327} =>.RealNetworks, Inc.
O42 - Logiciel: RealDownloader - (.RealNetworks.) [HKLM][64Bits] -- {45bcec97-14a2-4e10-a129-58d2d0b34398} {7975BE185DD3B5E5CB86712EAACC41DF} =>.RealNetworks
O42 - Logiciel: RealDownloader - (.RealNetworks.) [HKLM][64Bits] -- {85584A8B-8989-42AA-81A0-80ABF61EFAF1} =>.RealNetworks
O42 - Logiciel: RealPlayer (RealTimes) - (.RealNetworks.) [HKLM][64Bits] -- RealPlayer 18.1 {7975BE185DD3B5E5CB86712EAACC41DF} =>.RealNetworks
O42 - Logiciel: Realtek Card Reader - (.Realtek Semiconduct Corp..) [HKLM][64Bits] -- {5BC2B5AB-80DE-4E83-B8CF-426902051D0A} =>.Realtek Semiconductor Corp.®
O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476} =>.Realtek Semiconductor Corp.®
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} =>.Realtek Semiconductor Corp.®
O42 - Logiciel: RealUpgrade 1.1 - (.RealNetworks, Inc..) [HKLM][64Bits] -- {28C2DED6-325B-4CC7-983A-1777C8F7FBAB} =>.RealNetworks, Inc.
O42 - Logiciel: SAGEM F@st 800-840 - (.SAGEM.) [HKLM][64Bits] -- {4AE3A0CB-87B0-4F51-BECD-3D1F8DFDD62F} =>.Macrovision Corporation®
O42 - Logiciel: Samsung USB Driver for Mobile Phones - (.Samsung Electronics Co., Ltd..) [HKLM][64Bits] -- {D0795B21-0CDA-4a92-AB9E-6E92D8111E44} =>.Samsung Electronics CO., LTD.®
O42 - Logiciel: Skype™ 7.33 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {3B7E914A-93D5-4A29-92BB-AF8C3F66C431} =>.Skype Technologies S.A.
O42 - Logiciel: Sony Ericsson Device Data - (.Sony Ericsson.) [HKLM][64Bits] -- {C92E7DF1-624A-4D95-A4C4-18CB491B44A4} =>.Sony Ericsson
O42 - Logiciel: swMSM - (.Adobe Systems, Inc.) [HKLM][64Bits] -- {612C34C7-5E90-47D8-9B5C-0F717DD82726} =>.Adobe Systems, Inc
O42 - Logiciel: Sybase PowerAMC 15.1 - (.Sybase Inc..) [HKLM][64Bits] -- {48B0BE4A-EDC9-44C4-A3DB-67D62D75961F} =>.Macrovision Corporation®
O42 - Logiciel: Synaptics TouchPad Driver - (.Synaptics Incorporated.) [HKLM][64Bits] -- SynTPDeinstKey =>.Synaptics Incorporated
O42 - Logiciel: UpdateService - (.RealNetworks, Inc..) [HKLM][64Bits] -- {E3AE96D6-E196-45B4-AF62-2B41998B9E37} =>.RealNetworks, Inc.
O42 - Logiciel: vc2012_redist - (.Realnetworks.) [HKLM][64Bits] -- {9402AEF2-5981-4097-8BE2-6501DAC4DBFD} =>.RealNetworks
O42 - Logiciel: Video Downloader - (.RealNetworks.) [HKLM][64Bits] -- {4C68AE5C-915A-492A-AFCD-B630ECB9522D} =>.RealNetworks
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player =>.VideoLAN
O42 - Logiciel: vs2015_redist x64 - (.Realnetworks.) [HKLM][64Bits] -- {EAED8692-5B63-4665-B857-D626633691DA} =>.RealNetworks
O42 - Logiciel: vs2015_redist x86 - (.Realnetworks.) [HKLM][64Bits] -- {BD46163A-0331-4A61-B65A-7B66D7C93F8E} =>.RealNetworks
O42 - Logiciel: WinRAR 5.21 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver =>.win.rar GmbH®
---\\ HKCU & HKLM Software Keys (168) - 43s
HKLM\SOFTWARE\Wow6432Node\Adobe =>.Adobe
HKLM\SOFTWARE\Wow6432Node\aerosoft =>.aerosoft
HKLM\SOFTWARE\Wow6432Node\Analog Devices =>.Analog Devices
HKLM\SOFTWARE\Wow6432Node\AppDataLow =>.Microsoft Corporation
HKLM\SOFTWARE\Wow6432Node\Atheros =>.Qualcomm Atheros
HKLM\SOFTWARE\Wow6432Node\ATI Technologies =>.ATI Technologies
HKLM\SOFTWARE\Wow6432Node\Blimey! Games =>.Blimey! Games
HKLM\SOFTWARE\Wow6432Node\BlueStacks =>.BlueStack Systems, Inc.
HKLM\SOFTWARE\Wow6432Node\BottleTech =>.Bottle Tech Inc
HKLM\SOFTWARE\Wow6432Node\Bunndle =>.Unknown
HKLM\SOFTWARE\Wow6432Node\CDDB =>.Cddb Software
HKLM\SOFTWARE\Wow6432Node\chriskatdev
HKLM\SOFTWARE\Wow6432Node\Compelson =>.Compelson Labs
HKLM\SOFTWARE\Wow6432Node\Debug =>.Legitimate
HKLM\SOFTWARE\Wow6432Node\Disc Soft =>.Disc Soft
HKLM\SOFTWARE\Wow6432Node\drpsu =>.Driver PackSolution
HKLM\SOFTWARE\Wow6432Node\DSS =>.DSS Software
HKLM\SOFTWARE\Wow6432Node\DT Soft =>.DT Soft Ltd
HKLM\SOFTWARE\Wow6432Node\Empire Interactive =>.Empire Interactive
HKLM\SOFTWARE\Wow6432Node\Eset =>.ESET
HKLM\SOFTWARE\Wow6432Node\ETS2MP
HKLM\SOFTWARE\Wow6432Node\Forward Development =>.Forward Development
HKLM\SOFTWARE\Wow6432Node\Genesys Logic =>.Genesys Logic
HKLM\SOFTWARE\Wow6432Node\Glarysoft =>.Glarysoft
HKLM\SOFTWARE\Wow6432Node\GNU =>.GNU
HKLM\SOFTWARE\Wow6432Node\Google =>.Google
HKLM\SOFTWARE\Wow6432Node\HaaliMkx =>.Haali Media
HKLM\SOFTWARE\Wow6432Node\Huawei technologies =>.Huawei Technologies
HKLM\SOFTWARE\Wow6432Node\IM Providers =>.IM Providers
HKLM\SOFTWARE\Wow6432Node\InstallShield =>.InstallShield
HKLM\SOFTWARE\Wow6432Node\Intel =>.Intel
HKLM\SOFTWARE\Wow6432Node\JavaSoft =>.JavaSoft
HKLM\SOFTWARE\Wow6432Node\JreMetrics =>.JreMetrics
HKLM\SOFTWARE\Wow6432Node\KasperskyLab =>.Kaspersky Labs
HKLM\SOFTWARE\Wow6432Node\Khronos =>.Khronos
HKLM\SOFTWARE\Wow6432Node\Lavasoft =>.Lavasoft
HKLM\SOFTWARE\Wow6432Node\Licenses =>.Microsoft Corporation
HKLM\SOFTWARE\Wow6432Node\Macromedia =>.Macromedia
HKLM\SOFTWARE\Wow6432Node\Malwarebytes' Anti-Malware =>.Malwarebytes' Anti-Malware
HKLM\SOFTWARE\Wow6432Node\Mozilla =>.Mozilla
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins =>.MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\MT Solution
HKLM\SOFTWARE\Wow6432Node\Multisoft
HKLM\SOFTWARE\Wow6432Node\Nuance =>.Nuance
HKLM\SOFTWARE\Wow6432Node\ODBC =>.DB Connectivity Solutions
HKLM\SOFTWARE\Wow6432Node\Panda Security =>.Panda Security
HKLM\SOFTWARE\Wow6432Node\Panda Software =>.Panda Software
HKLM\SOFTWARE\Wow6432Node\PostgreSQL =>.PostgreSQL
HKLM\SOFTWARE\Wow6432Node\PostgreSQL Global Development Group =>.PostgreSQL Global Development Group
HKLM\SOFTWARE\Wow6432Node\Qualcomm Atheros =>.Qualcomm Atheros
HKLM\SOFTWARE\Wow6432Node\RealNetworks =>.RealNetworks
HKLM\SOFTWARE\Wow6432Node\Realtek =>.Realtek Semiconductor Corp.
HKLM\SOFTWARE\Wow6432Node\Realtek Semiconductor Corp. =>.Realtek Semiconductor Corp.
HKLM\SOFTWARE\Wow6432Node\SAGEM =>.Sagem
HKLM\SOFTWARE\Wow6432Node\SBDT AB
HKLM\SOFTWARE\Wow6432Node\Skype =>.Skype
HKLM\SOFTWARE\Wow6432Node\Sony Ericsson =>.Sony Ericsson
HKLM\SOFTWARE\Wow6432Node\SuppHelpDir =>.Toshiba Corporation
HKLM\SOFTWARE\Wow6432Node\Sybase
HKLM\SOFTWARE\Wow6432Node\Symantec =>.Symantec
HKLM\SOFTWARE\Wow6432Node\Sysinternals =>.Sysinternals
HKLM\SOFTWARE\Wow6432Node\Toogame
HKLM\SOFTWARE\Wow6432Node\trendmicro =>.TrendMicro
HKLM\SOFTWARE\Wow6432Node\Valve =>.Valve
HKLM\SOFTWARE\Wow6432Node\VideoLAN =>.VideoLAN
HKLM\SOFTWARE\Wow6432Node\Volatile =>.Microsoft Corporation
HKLM\SOFTWARE\Wow6432Node\WafCX =>.WafCX
HKLM\SOFTWARE\Wow6432Node\Windows =>.Microsoft Corporation
HKLM\SOFTWARE\Wow6432Node\Wondershare =>.Wondershare
HKLM\SOFTWARE\Wow6432Node\WOW6432Node =>.Microsoft Corporation
HKLM\SOFTWARE\Wow6432Node\Xing Technology Corp. =>.Xing Technology Corp.
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications =>.Microsoft Corporation
HKCU\SOFTWARE\AC3Filter =>.Vigovsky Alexander
HKCU\SOFTWARE\Adobe =>.Adobe
HKCU\SOFTWARE\APN PIP =>.SUP.Conduit
HKCU\SOFTWARE\AppDataLow =>.Microsoft Corporation
HKCU\SOFTWARE\Apple Computer, Inc. =>.Apple Computer, Inc.
HKCU\SOFTWARE\Apple Inc. =>.Apple Inc.
HKCU\SOFTWARE\Atheros =>.Qualcomm Atheros
HKCU\SOFTWARE\Besier 3D-Edutainment
HKCU\SOFTWARE\BitTorrent
HKCU\SOFTWARE\BottleTech =>.Bottle Tech Inc
HKCU\SOFTWARE\BrowserCleaner
HKCU\SOFTWARE\BugSplat =>.Bugsplat Game
HKCU\SOFTWARE\BVRP Software =>.BVRP Software
HKCU\SOFTWARE\Carambis =>.Rostpay Ltd
HKCU\SOFTWARE\Chromium =>.Chromium
HKCU\SOFTWARE\ClockStone Software GmbH
HKCU\SOFTWARE\Coin32
HKCU\SOFTWARE\Compelson =>.Compelson Labs
HKCU\SOFTWARE\CyberLink =>.CyberLink Corporation
HKCU\SOFTWARE\Cygnus Solutions =>.Cygnus Solutions
HKCU\SOFTWARE\Digienhanc
HKCU\SOFTWARE\Disc Soft =>.Disc Soft
HKCU\SOFTWARE\Distromatic =>PUP.Optional.AlexaTB
HKCU\SOFTWARE\drpsu =>.Driver PackSolution
HKCU\SOFTWARE\DSS =>.DSS Software
HKCU\SOFTWARE\DT Soft =>.DT Soft Ltd
HKCU\SOFTWARE\Electronic Arts =>.Electronic Arts
HKCU\SOFTWARE\ESET =>.ESET
HKCU\SOFTWARE\Forward Development =>.Forward Development
HKCU\SOFTWARE\FreeAudioVideo
HKCU\SOFTWARE\Gabest =>.Gabest
HKCU\SOFTWARE\Glarysoft =>.Glarysoft
HKCU\SOFTWARE\GNU =>.GNU
HKCU\SOFTWARE\Google =>.Google
HKCU\SOFTWARE\Haali =>.Haali Media
HKCU\SOFTWARE\HookNetwork =>.Hook Network
HKCU\SOFTWARE\IGA =>.Legitimate
HKCU\SOFTWARE\IM Providers =>.IM Providers
HKCU\SOFTWARE\Intel =>.Intel
HKCU\SOFTWARE\InterVideo =>.InterVideo
HKCU\SOFTWARE\JavaSoft =>.JavaSoft
HKCU\SOFTWARE\Jihosoft =>.Jihosoft
HKCU\SOFTWARE\KasperskyLab =>.Kaspersky Labs
HKCU\SOFTWARE\Kiloo Games =>.Kiloo Games
HKCU\SOFTWARE\Kolor =>.Kolor
HKCU\SOFTWARE\Lavasoft =>.Lavasoft
HKCU\SOFTWARE\Licenses =>.Microsoft Corporation
HKCU\SOFTWARE\Macromedia =>.Macromedia
HKCU\SOFTWARE\Macrovision =>.Macrovision
HKCU\SOFTWARE\malavida =>.Maladiva.com
HKCU\SOFTWARE\MediaChance =>.Mediachance
HKCU\SOFTWARE\Mine =>.Microsoft Corporation
HKCU\SOFTWARE\MiniTool Solution Ltd. =>.MiniTool Solution Ltd.
HKCU\SOFTWARE\Multisoft
HKCU\SOFTWARE\Netscape =>.Netscape
HKCU\SOFTWARE\Nitro PDF =>.Nitro PDF
HKCU\SOFTWARE\ODBC =>.DB Connectivity Solutions
HKCU\SOFTWARE\osfinancials =>.osFinancials
HKCU\SOFTWARE\PCSuite =>.Nokia Inc.
HKCU\SOFTWARE\Piriform =>.Piriform
HKCU\SOFTWARE\Protect Software GmbH =>.Protect Software GmbH
HKCU\SOFTWARE\RealNetworks =>.RealNetworks
HKCU\SOFTWARE\Realtek =>.Realtek Semiconductor Corp.
HKCU\SOFTWARE\RegisteredApplications =>.Microsoft Corporation
HKCU\SOFTWARE\Samsung =>.Samsung Electronics
HKCU\SOFTWARE\SCS Software =>.SCS Software
HKCU\SOFTWARE\SecuROM =>.SecuROM
HKCU\SOFTWARE\Skype =>.Skype
HKCU\SOFTWARE\SmartDeblur =>.Vladimir Yuzhikov
HKCU\SOFTWARE\Sybase
HKCU\SOFTWARE\Synaptics =>.Synaptics
HKCU\SOFTWARE\Sysinternals =>.Sysinternals
HKCU\SOFTWARE\Teleca =>.Teleca
HKCU\SOFTWARE\Tencent =>.SUP.Tencent
HKCU\SOFTWARE\The Silicon Realms Toolworks =>.The Silicon Realms Toolworks
HKCU\SOFTWARE\Toogame
HKCU\SOFTWARE\Trolltech =>.Trolltech
HKCU\SOFTWARE\ValuSoft =>.ValuSoft
HKCU\SOFTWARE\Valve =>.Valve
HKCU\SOFTWARE\VB and VBA Program Settings =>.Microsoft Corporation
HKCU\SOFTWARE\VoipBuster
HKCU\SOFTWARE\Windows Live Writer =>.Microsoft Corporation
HKCU\SOFTWARE\WinLicense
HKCU\SOFTWARE\WinRAR =>.WinRAR
HKCU\SOFTWARE\WinRAR SFX =>.RarLab
HKCU\SOFTWARE\Wondershare =>.Wondershare
HKCU\SOFTWARE\Wow6432Node =>.Microsoft Corporation
HKCU\SOFTWARE\ZebHelpProcess Helper =>.Nicolas Coolman
HKCU\SOFTWARE\ZHP =>.Nicolas Coolman
HKCU\SOFTWARE\Zyl Soft =>.Zyl Soft
HKCU\SOFTWARE\应用程序向导生成的本地应用程序
HKCU\SOFTWARE\AppDataLow\Software =>.Microsoft Corporation
HKCU\SOFTWARE\AppDataLow\Software\Adobe =>.Adobe
HKCU\SOFTWARE\AppDataLow\Software\Amazon =>.Amazon
HKCU\SOFTWARE\AppDataLow\Software\JavaSoft =>.JavaSoft
HKCU\SOFTWARE\AppDataLow\Software\Macromedia =>.Macromedia
---\\ Contenu des dossiers Programmes (305) - 27s
O43 - CFD: 08/02/2012 - [] D -- C:\Program Files\ATI =>.Advanced Micro Devices, Inc.®
O43 - CFD: 08/02/2012 - [0] D -- C:\Program Files\ATI Technologies =>.ATI Technologies
O43 - CFD: 11/06/2017 - [] AD -- C:\Program Files\CCleaner =>.Piriform Ltd
O43 - CFD: 21/08/2017 - [] D -- C:\Program Files\Common Files =>.Microsoft Corporation
O43 - CFD: 26/09/2015 - [] D -- C:\Program Files\DVD Maker =>.Aone Software
O43 - CFD: 03/02/2014 - [0] D -- C:\Program Files\Intel =>.Intel Corporation
O43 - CFD: 16/09/2017 - [] D -- C:\Program Files\Internet Explorer =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [] D -- C:\Program Files\Microsoft Games =>.Microsoft Corporation
O43 - CFD: 25/10/2015 - [] D -- C:\Program Files\Microsoft Office =>.Microsoft Corporation
O43 - CFD: 21/12/2015 - [] D -- C:\Program Files\Microsoft Office 15 =>.Microsoft Corporation
O43 - CFD: 14/06/2017 - [] AD -- C:\Program Files\Microsoft Silverlight =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [] D -- C:\Program Files\MSBuild =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [] D -- C:\Program Files\Realtek =>.Realtek
O43 - CFD: 15/04/2017 - [] D -- C:\Program Files\Reference Assemblies =>.Microsoft Corporation
O43 - CFD: 14/10/2017 - [] D -- C:\Program Files\Samsung =>.Samsung Electronics
O43 - CFD: 15/04/2017 - [] D -- C:\Program Files\Synaptics =>.Synaptics Incorporated®
O43 - CFD: 30/07/2015 - [0] HD -- C:\Program Files\Uninstall Information =>.Microsoft Corporation
O43 - CFD: 28/06/2017 - [] RD -- C:\Program Files\Windows Defender =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [] D -- C:\Program Files\Windows Defender Advanced Threat Protection =>.Microsoft Corporation
O43 - CFD: 16/09/2017 - [] D -- C:\Program Files\Windows Mail =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [] D -- C:\Program Files\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [] D -- C:\Program Files\Windows Multimedia Platform =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] D -- C:\Program Files\Windows NT =>.Microsoft Corporation
O43 - CFD: 16/11/2017 - [] D -- C:\Program Files\Windows Photo Viewer =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [] D -- C:\Program Files\Windows Portable Devices =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] D -- C:\Program Files\Windows Security =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [] SHD -- C:\Program Files\Windows Sidebar =>.Microsoft Corporation
O43 - CFD: 23/11/2017 - [] HD -- C:\Program Files\WindowsApps =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] D -- C:\Program Files\WindowsPowerShell =>.Microsoft Corporation
O43 - CFD: 08/04/2015 - [] AD -- C:\Program Files\WinRAR =>.win.rar GmbH®
O43 - CFD: 08/04/2015 - [] D -- C:\Program Files (x86)\Adobe =>.Adobe Systems, Incorporated®
O43 - CFD: 08/02/2012 - [] AD -- C:\Program Files (x86)\AMD APP =>.Advanced Micro Devices Inc
O43 - CFD: 08/10/2012 - [] AD -- C:\Program Files (x86)\Atheros =>.Qualcomm Atheros
O43 - CFD: 30/10/2016 - [] AD -- C:\Program Files (x86)\Bluetooth Suite =>.ASUSTeK
O43 - CFD: 27/01/2012 - [] D -- C:\Program Files (x86)\Cisco =>.Cisco Systems, Inc.
O43 - CFD: 17/11/2017 - [] D -- C:\Program Files (x86)\Common Files =>.Microsoft Corporation
O43 - CFD: 03/09/2016 - [] D -- C:\Program Files (x86)\Google =>.Google Inc®
O43 - CFD: 14/10/2017 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information =>.InstallShield
O43 - CFD: 21/01/2017 - [] D -- C:\Program Files (x86)\Intel =>.Intel Corporation
O43 - CFD: 16/09/2017 - [] D -- C:\Program Files (x86)\Internet Explorer =>.Microsoft Corporation
O43 - CFD: 04/01/2012 - [] D -- C:\Program Files (x86)\Internet Mobile =>.HUAWEI Technologies Co., Ltd.®
O43 - CFD: 22/10/2017 - [] D -- C:\Program Files (x86)\Java =>.Oracle
O43 - CFD: 24/08/2016 - [] D -- C:\Program Files (x86)\Kaspersky Lab =>.Kaspersky Lab
O43 - CFD: 20/11/2014 - [] D -- C:\Program Files (x86)\KONAMI =>.Konami
O43 - CFD: 02/04/2015 - [0] D -- C:\Program Files (x86)\Microsoft Games =>.Microsoft Corporation
O43 - CFD: 17/11/2017 - [] AD -- C:\Program Files (x86)\Microsoft Office =>.Microsoft Corporation
O43 - CFD: 14/06/2017 - [] AD -- C:\Program Files (x86)\Microsoft Silverlight =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [] D -- C:\Program Files (x86)\Microsoft.NET =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [] D -- C:\Program Files (x86)\MSBuild =>.Microsoft Corporation
O43 - CFD: 08/04/2015 - [] AD -- C:\Program Files (x86)\Qualcomm Atheros =>.Qualcomm Atheros
O43 - CFD: 16/09/2017 - [] D -- C:\Program Files (x86)\Real =>.RealNetworks Inc.
O43 - CFD: 16/11/2017 - [] D -- C:\Program Files (x86)\Realtek =>.Realtek
O43 - CFD: 15/04/2017 - [] D -- C:\Program Files (x86)\Reference Assemblies =>.Microsoft Corporation
O43 - CFD: 26/02/2015 - [] D -- C:\Program Files (x86)\SAGEM =>.Sagem
O43 - CFD: 14/10/2017 - [] D -- C:\Program Files (x86)\Samsung =>.Samsung Electronics
O43 - CFD: 09/04/2017 - [] RD -- C:\Program Files (x86)\Skype =>.Skype
O43 - CFD: 22/01/2017 - [0] HD -- C:\Program Files (x86)\Temp =>.Microsoft Corporation
O43 - CFD: 04/08/2012 - [] HD -- C:\Program Files (x86)\Uninstall Information =>.Microsoft Corporation
O43 - CFD: 06/12/2012 - [] D -- C:\Program Files (x86)\VideoLAN =>.VideoLan Team
O43 - CFD: 28/06/2017 - [] D -- C:\Program Files (x86)\Windows Defender =>.Microsoft Corporation
O43 - CFD: 16/09/2017 - [] D -- C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [] D -- C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [] D -- C:\Program Files (x86)\Windows Multimedia Platform =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] D -- C:\Program Files (x86)\Windows NT =>.Microsoft Corporation
O43 - CFD: 16/11/2017 - [] D -- C:\Program Files (x86)\Windows Photo Viewer =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [] D -- C:\Program Files (x86)\Windows Portable Devices =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [] SHD -- C:\Program Files (x86)\Windows Sidebar =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] D -- C:\Program Files (x86)\WindowsPowerShell =>.Microsoft Corporation
O43 - CFD: 17/10/2017 - [] D -- C:\Program Files (x86)\Wondershare =>.Wondershare
O43 - CFD: 18/03/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility =>.Microsoft Corporation
O43 - CFD: 11/10/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories =>.Microsoft Corporation
O43 - CFD: 16/09/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools
O43 - CFD: 15/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner =>.Piriform Ltd
O43 - CFD: 19/08/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Euro Truck Simulator 2 - Vive la France !
O43 - CFD: 02/04/2015 - [0] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel =>.Intel Corporation
O43 - CFD: 15/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Mobile
O43 - CFD: 22/10/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java =>.Oracle
O43 - CFD: 15/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security =>.Kaspersky Lab
O43 - CFD: 18/03/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance =>.Microsoft Corporation
O43 - CFD: 14/06/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outils Microsoft Office 2016 =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PostgreSQL 9.3 (x86)
O43 - CFD: 16/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RealNetworks =>.RealNetworks
O43 - CFD: 15/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SAGEM F@st 800-840 =>.Sagem
O43 - CFD: 14/10/2017 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung =>.Samsung Electronics
O43 - CFD: 15/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype =>.Skype
O43 - CFD: 16/09/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sybase
O43 - CFD: 18/03/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN =>.VideoLan Team
O43 - CFD: 15/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR
O43 - CFD: 08/04/2015 - [] D -- C:\ProgramData\Adobe =>.Adobe
O43 - CFD: 04/08/2016 - [] D -- C:\ProgramData\Apple =>.Apple Inc.
O43 - CFD: 28/09/2015 - [] D -- C:\ProgramData\Apple Computer =>.Apple Inc.
O43 - CFD: 15/04/2017 - [0] SHD -- C:\ProgramData\Application Data =>.Microsoft Corporation
O43 - CFD: 13/01/2013 - [] D -- C:\ProgramData\Avanquest Bluetooth SDK
O43 - CFD: 11/03/2015 - [] D -- C:\ProgramData\BlueStacksSetup =>.BlueStack Systems, Inc.
O43 - CFD: 16/07/2016 - [0] D -- C:\ProgramData\Comms =>.Microsoft Corporation
O43 - CFD: 14/09/2013 - [] D -- C:\ProgramData\CyberLink =>.CyberLink Corporation
O43 - CFD: 13/02/2014 - [] D -- C:\ProgramData\DAEMON Tools Lite =>.DAEMON Tools
O43 - CFD: 29/09/2012 - [] D -- C:\ProgramData\DAEMON Tools Pro =>.The DAEMON Team
O43 - CFD: 04/01/2012 - [] D -- C:\ProgramData\DatacardService =>.Entriq, Inc.
O43 - CFD: 15/04/2017 - [0] SHD -- C:\ProgramData\Desktop =>.Microsoft Corporation
O43 - CFD: 26/03/2015 - [] D -- C:\ProgramData\Doctor Web =>.Doctor Web Ltd
O43 - CFD: 15/04/2017 - [0] SHD -- C:\ProgramData\Documents =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [0] SHD -- C:\ProgramData\Favorites =>.Microsoft Corporation
O43 - CFD: 31/05/2016 - [] D -- C:\ProgramData\GlarySoft =>.GlarySoft
O43 - CFD: 22/03/2015 - [] D -- C:\ProgramData\HitmanPro =>.EIDOS hitman Game
O43 - CFD: 05/09/2015 - [0] D -- C:\ProgramData\IDM =>.IDM
O43 - CFD: 07/02/2012 - [] D -- C:\ProgramData\InstallShield =>.InstallShield
O43 - CFD: 19/08/2013 - [] D -- C:\ProgramData\Intel =>.Intel Corporation
O43 - CFD: 04/01/2012 - [] D -- C:\ProgramData\Internet Mobile
O43 - CFD: 26/11/2017 - [] D -- C:\ProgramData\Kaspersky Lab =>.Kaspersky Lab
O43 - CFD: 20/11/2014 - [] D -- C:\ProgramData\KONAMI =>.Konami
O43 - CFD: 28/07/2014 - [] D -- C:\ProgramData\Logs =>.ABBYY Software
O43 - CFD: 31/08/2014 - [] D -- C:\ProgramData\Malwarebytes =>.Malwarebytes
O43 - CFD: 16/04/2017 - [] SD -- C:\ProgramData\Microsoft =>.Microsoft Corporation
O43 - CFD: 25/10/2015 - [] D -- C:\ProgramData\Microsoft Help =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [] D -- C:\ProgramData\Microsoft OneDrive =>.Microsoft Corporation
O43 - CFD: 06/08/2014 - [] D -- C:\ProgramData\NFS Underground Demo
O43 - CFD: 29/09/2012 - [] D -- C:\ProgramData\Nitro PDF =>.Nitro PDF
O43 - CFD: 22/10/2017 - [] D -- C:\ProgramData\Oracle =>.Oracle
O43 - CFD: 16/09/2017 - [] D -- C:\ProgramData\Package Cache =>.Microsoft Corporation
O43 - CFD: 21/11/2013 - [] D -- C:\ProgramData\PowerAMC 15
O43 - CFD: 16/10/2017 - [] D -- C:\ProgramData\ProductFeatures
O43 - CFD: 16/06/2013 - [] D -- C:\ProgramData\Qualcomm Atheros =>.Qualcomm Atheros
O43 - CFD: 16/09/2017 - [] D -- C:\ProgramData\Real =>.RealNetworks Inc.
O43 - CFD: 16/09/2017 - [] D -- C:\ProgramData\RealNetworks =>.RealNetworks
O43 - CFD: 17/11/2017 - [] AD -- C:\ProgramData\regid.1991-06.com.microsoft =>.Microsoft Corporation
O43 - CFD: 24/03/2015 - [] D -- C:\ProgramData\RogueKiller =>.Adlice Software
O43 - CFD: 14/10/2017 - [] D -- C:\ProgramData\Samsung =>.Samsung Electronics
O43 - CFD: 12/10/2017 - [] D -- C:\ProgramData\Shuame
O43 - CFD: 09/04/2017 - [] D -- C:\ProgramData\Skype =>.Skype
O43 - CFD: 18/03/2017 - [0] D -- C:\ProgramData\SoftwareDistribution =>.Microsoft Corporation
O43 - CFD: 13/08/2012 - [] D -- C:\ProgramData\Sony Ericsson =>.Sony Ericsson
O43 - CFD: 15/04/2017 - [0] SHD -- C:\ProgramData\Start Menu =>.Microsoft Corporation
O43 - CFD: 05/06/2014 - [] D -- C:\ProgramData\Steam =>.Steam Games
O43 - CFD: 30/01/2012 - [] D -- C:\ProgramData\Sun =>.Oracle
O43 - CFD: 27/09/2015 - [] D -- C:\ProgramData\Synaptics =>.Synaptics
O43 - CFD: 13/08/2012 - [] D -- C:\ProgramData\Teleca =>.Teleca
O43 - CFD: 11/02/2017 - [] AD -- C:\ProgramData\TEMP =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [0] SHD -- C:\ProgramData\Templates =>.Microsoft Corporation
O43 - CFD: 11/10/2017 - [] D -- C:\ProgramData\Tencent =>.SUP.Tencent
O43 - CFD: 15/04/2017 - [] D -- C:\ProgramData\USOPrivate =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [] D -- C:\ProgramData\USOShared =>.Microsoft Corporation
O43 - CFD: 21/01/2017 - [] D -- C:\ProgramData\WindSolutions =>.WindSolutions
O43 - CFD: 16/10/2017 - [] D -- C:\ProgramData\Wondershare =>.Wondershare
O43 - CFD: 08/04/2015 - [] AD -- C:\Program Files (x86)\Common Files\Adobe =>.Adobe
O43 - CFD: 04/08/2016 - [] D -- C:\Program Files (x86)\Common Files\Apple =>.Apple Inc.
O43 - CFD: 26/09/2015 - [] D -- C:\Program Files (x86)\Common Files\Atheros =>.Qualcomm Atheros
O43 - CFD: 17/11/2017 - [] D -- C:\Program Files (x86)\Common Files\DESIGNER =>.Designer
O43 - CFD: 27/05/2017 - [] D -- C:\Program Files (x86)\Common Files\InstallShield =>.InstallShield
O43 - CFD: 03/01/2012 - [] D -- C:\Program Files (x86)\Common Files\Intel =>.Intel Corporation
O43 - CFD: 03/08/2012 - [] D -- C:\Program Files (x86)\Common Files\Intel Corporation =>.Intel Corporation
O43 - CFD: 22/10/2017 - [] D -- C:\Program Files (x86)\Common Files\Java =>.Oracle
O43 - CFD: 17/11/2017 - [] AD -- C:\Program Files (x86)\Common Files\Microsoft Shared =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] D -- C:\Program Files (x86)\Common Files\Services =>.Microsoft Corporation
O43 - CFD: 09/04/2017 - [] AD -- C:\Program Files (x86)\Common Files\Skype =>.Skype
O43 - CFD: 15/04/2017 - [] D -- C:\Program Files (x86)\Common Files\SpeechEngines =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [] D -- C:\Program Files (x86)\Common Files\System =>.Microsoft Corporation
O43 - CFD: 11/10/2017 - [] D -- C:\Program Files (x86)\Common Files\Tencent =>.SUP.Tencent
O43 - CFD: 16/09/2017 - [] D -- C:\Program Files (x86)\Common Files\xing shared =>.Xing
O43 - CFD: 08/04/2015 - [] D -- C:\Users\Omnia\AppData\Roaming\Adobe =>.Adobe
O43 - CFD: 30/09/2015 - [] D -- C:\Users\Omnia\AppData\Roaming\Apple Computer =>.Apple Inc.
O43 - CFD: 13/08/2012 - [] D -- C:\Users\Omnia\AppData\Roaming\Carambis =>.Rostpay Ltd
O43 - CFD: 28/07/2014 - [] D -- C:\Users\Omnia\AppData\Roaming\DeltaBin
O43 - CFD: 05/09/2015 - [0] D -- C:\Users\Omnia\AppData\Roaming\DMCache =>.DMCache
O43 - CFD: 03/02/2012 - [] D -- C:\Users\Omnia\AppData\Roaming\driveridentifier =>.DriverIdentifier
O43 - CFD: 04/08/2016 - [] D -- C:\Users\Omnia\AppData\Roaming\DRPNano =>.DriverPack Solution
O43 - CFD: 04/08/2016 - [] D -- C:\Users\Omnia\AppData\Roaming\DRPSu =>.Driver PackSolution
O43 - CFD: 28/07/2016 - [] D -- C:\Users\Omnia\AppData\Roaming\dvdcss =>.VideoLan Team
O43 - CFD: 20/05/2016 - [] D -- C:\Users\Omnia\AppData\Roaming\Elcomsoft =>.Elcomsoft
O43 - CFD: 13/07/2012 - [] D -- C:\Users\Omnia\AppData\Roaming\eTeks =>.eTeks
O43 - CFD: 24/05/2015 - [] D -- C:\Users\Omnia\AppData\Roaming\GameRanger =>.GameRanger
O43 - CFD: 06/06/2015 - [] D -- C:\Users\Omnia\AppData\Roaming\HexHunterZ
O43 - CFD: 03/01/2012 - [] D -- C:\Users\Omnia\AppData\Roaming\Identities =>.Microsoft Corporation
O43 - CFD: 07/02/2012 - [] D -- C:\Users\Omnia\AppData\Roaming\InstallShield =>.InstallShield
O43 - CFD: 07/02/2012 - [] D -- C:\Users\Omnia\AppData\Roaming\Intel Corporation =>.Intel Corporation
O43 - CFD: 28/07/2014 - [] D -- C:\Users\Omnia\AppData\Roaming\LogMate
O43 - CFD: 10/01/2012 - [] D -- C:\Users\Omnia\AppData\Roaming\Macromedia =>.Macromedia
O43 - CFD: 15/04/2017 - [] SD -- C:\Users\Omnia\AppData\Roaming\Microsoft =>.Microsoft Corporation
O43 - CFD: 15/01/2013 - [] D -- C:\Users\Omnia\AppData\Roaming\MOBILedit
O43 - CFD: 29/08/2012 - [] D -- C:\Users\Omnia\AppData\Roaming\Mozilla =>.Mozilla Corporation
O43 - CFD: 29/09/2012 - [] D -- C:\Users\Omnia\AppData\Roaming\Nitro PDF =>.Nitro PDF
O43 - CFD: 14/09/2013 - [] D -- C:\Users\Omnia\AppData\Roaming\Notepad++ =>.Don Ho
O43 - CFD: 29/10/2014 - [] D -- C:\Users\Omnia\AppData\Roaming\Off Road
O43 - CFD: 10/09/2014 - [] D -- C:\Users\Omnia\AppData\Roaming\Oracle =>.Oracle
O43 - CFD: 15/09/2013 - [] D -- C:\Users\Omnia\AppData\Roaming\PowerDesigner
O43 - CFD: 01/06/2013 - [] D -- C:\Users\Omnia\AppData\Roaming\PowerDesigner16
O43 - CFD: 22/08/2013 - [] D -- C:\Users\Omnia\AppData\Roaming\PowerISO =>.PowerISO Computing
O43 - CFD: 20/08/2015 - [] D -- C:\Users\Omnia\AppData\Roaming\ProtectDISC =>.ProtectDisc Software GmbH
O43 - CFD: 16/09/2017 - [] D -- C:\Users\Omnia\AppData\Roaming\Real =>.RealNetworks Inc.
O43 - CFD: 16/09/2017 - [] D -- C:\Users\Omnia\AppData\Roaming\RealNetworks =>.RealNetworks
O43 - CFD: 02/07/2012 - [] D -- C:\Users\Omnia\AppData\Roaming\RegistryKeys =>.Microsoft Corporation
O43 - CFD: 14/10/2017 - [0] D -- C:\Users\Omnia\AppData\Roaming\Samsung =>.Samsung Electronics
O43 - CFD: 30/04/2012 - [] RHD -- C:\Users\Omnia\AppData\Roaming\SecuROM =>.SecuROM
O43 - CFD: 11/10/2017 - [] D -- C:\Users\Omnia\AppData\Roaming\Shuame
O43 - CFD: 09/04/2017 - [] D -- C:\Users\Omnia\AppData\Roaming\Skype =>.Skype
O43 - CFD: 29/08/2015 - [] D -- C:\Users\Omnia\AppData\Roaming\Sun =>.Oracle
O43 - CFD: 27/09/2015 - [] D -- C:\Users\Omnia\AppData\Roaming\Synaptics =>.Synaptics
O43 - CFD: 11/10/2017 - [] D -- C:\Users\Omnia\AppData\Roaming\Tencent =>.SUP.Tencent
O43 - CFD: 18/01/2016 - [] SHD -- C:\Users\Omnia\AppData\Roaming\ViperUpdate AU
O43 - CFD: 04/11/2017 - [] D -- C:\Users\Omnia\AppData\Roaming\vlc =>.VideoLan Team
O43 - CFD: 02/07/2012 - [] D -- C:\Users\Omnia\AppData\Roaming\VoipBuster
O43 - CFD: 12/01/2013 - [0] D -- C:\Users\Omnia\AppData\Roaming\Windows Live Writer =>.Microsoft Corporation
O43 - CFD: 21/01/2017 - [] D -- C:\Users\Omnia\AppData\Roaming\WindSolutions =>.WindSolutions
O43 - CFD: 17/08/2012 - [] D -- C:\Users\Omnia\AppData\Roaming\WinRAR =>.WinRAR
O43 - CFD: 26/11/2017 - [] D -- C:\Users\Omnia\AppData\Roaming\ZHP =>.Nicolas Coolman
O43 - CFD: 15/11/2015 - [0] D -- C:\Users\Omnia\AppData\Local\ActiveSync =>.Microsoft Corporation
O43 - CFD: 02/08/2017 - [] D -- C:\Users\Omnia\AppData\Local\Adobe =>.Adobe
O43 - CFD: 28/09/2015 - [] D -- C:\Users\Omnia\AppData\Local\Apple =>.Apple Inc.
O43 - CFD: 28/09/2015 - [] D -- C:\Users\Omnia\AppData\Local\Apple Computer =>.Apple Inc.
O43 - CFD: 15/04/2017 - [0] SHD -- C:\Users\Omnia\AppData\Local\Application Data =>.Microsoft Corporation
O43 - CFD: 02/06/2015 - [] D -- C:\Users\Omnia\AppData\Local\Apps =>.Microsoft Corporation
O43 - CFD: 27/01/2012 - [] D -- C:\Users\Omnia\AppData\Local\BMExplorer =>.BMExplorer
O43 - CFD: 16/07/2015 - [] D -- C:\Users\Omnia\AppData\Local\CEF =>.CEF
O43 - CFD: 26/09/2015 - [] D -- C:\Users\Omnia\AppData\Local\Comms =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [] D -- C:\Users\Omnia\AppData\Local\ConnectedDevicesPlatform =>.Microsoft Corporation
O43 - CFD: 26/09/2015 - [0] D -- C:\Users\Omnia\AppData\Local\CrashDumps =>.Microsoft Corporation
O43 - CFD: 16/04/2017 - [0] D -- C:\Users\Omnia\AppData\Local\DBG =>.DBG
O43 - CFD: 05/09/2016 - [0] D -- C:\Users\Omnia\AppData\Local\Diagnostics =>.Microsoft Corporation
O43 - CFD: 14/10/2017 - [] D -- C:\Users\Omnia\AppData\Local\Downloaded Installations =>.Microsoft Corporation
O43 - CFD: 15/04/2012 - [] D -- C:\Users\Omnia\AppData\Local\Electronic_Arts_Inc
O43 - CFD: 25/02/2017 - [0] D -- C:\Users\Omnia\AppData\Local\ElevatedDiagnostics =>.Microsoft Corporation
O43 - CFD: 10/06/2015 - [0] SHD -- C:\Users\Omnia\AppData\Local\EmieBrowserModeList =>.Enterprise mode Site List Mgr
O43 - CFD: 10/06/2015 - [0] SHD -- C:\Users\Omnia\AppData\Local\EmieSiteList =>.Enterprise mode Site List Mgr
O43 - CFD: 10/06/2015 - [0] SHD -- C:\Users\Omnia\AppData\Local\EmieUserList =>.Enterprise mode Site List Mgr
O43 - CFD: 03/09/2014 - [] D -- C:\Users\Omnia\AppData\Local\fontconfig =>.Portable Apps
O43 - CFD: 03/09/2014 - [] D -- C:\Users\Omnia\AppData\Local\gegl-0.2 =>.Portable Apps
O43 - CFD: 18/11/2016 - [] D -- C:\Users\Omnia\AppData\Local\Google =>.Google
O43 - CFD: 03/09/2014 - [] D -- C:\Users\Omnia\AppData\Local\gtk-2.0 =>.GTK Project
O43 - CFD: 01/06/2015 - [] D -- C:\Users\Omnia\AppData\Local\GWX =>.GWX
O43 - CFD: 15/04/2017 - [0] SHD -- C:\Users\Omnia\AppData\Local\History =>.Microsoft Corporation
O43 - CFD: 20/10/2012 - [] D -- C:\Users\Omnia\AppData\Local\Hook Network =>.Hook Network
O43 - CFD: 31/07/2012 - [0] D -- C:\Users\Omnia\AppData\Local\Kolor =>.Kolor
O43 - CFD: 29/08/2016 - [] D -- C:\Users\Omnia\AppData\Local\Mega Limited =>.MEGA Limited
O43 - CFD: 29/08/2016 - [] D -- C:\Users\Omnia\AppData\Local\MEGAsync =>.MegaSystems
O43 - CFD: 31/07/2017 - [] D -- C:\Users\Omnia\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 18/08/2015 - [] D -- C:\Users\Omnia\AppData\Local\Microsoft Games =>.Microsoft Corporation
O43 - CFD: 25/10/2015 - [] D -- C:\Users\Omnia\AppData\Local\Microsoft Help =>.Microsoft Corporation
O43 - CFD: 26/09/2015 - [] D -- C:\Users\Omnia\AppData\Local\MicrosoftEdge =>.Microsoft Corporation
O43 - CFD: 25/10/2015 - [] D -- C:\Users\Omnia\AppData\Local\mpress =>.MPress
O43 - CFD: 16/07/2016 - [] D -- C:\Users\Omnia\AppData\Local\MSfree Inc =>HackTool.WinActivator
O43 - CFD: 26/09/2015 - [0] D -- C:\Users\Omnia\AppData\Local\NetworkTiles =>.NetworkTiles
O43 - CFD: 20/03/2016 - [] D -- C:\Users\Omnia\AppData\Local\OpenERP S.A
O43 - CFD: 22/11/2017 - [] D -- C:\Users\Omnia\AppData\Local\Packages =>.Microsoft Corporation
O43 - CFD: 26/09/2015 - [0] D -- C:\Users\Omnia\AppData\Local\PeerDistRepub =>.Microsoft Corporation
O43 - CFD: 25/01/2013 - [] D -- C:\Users\Omnia\AppData\Local\Programs =>.Microsoft Corporation
O43 - CFD: 26/09/2015 - [] D -- C:\Users\Omnia\AppData\Local\Publishers =>.Microsoft Corporation
O43 - CFD: 20/09/2012 - [] D -- C:\Users\Omnia\AppData\Local\RadonLabs
O43 - CFD: 07/09/2015 - [] D -- C:\Users\Omnia\AppData\Local\Real =>.RealNetworks Inc.
O43 - CFD: 14/10/2017 - [0] D -- C:\Users\Omnia\AppData\Local\Samsung =>.Samsung Electronics
O43 - CFD: 06/06/2015 - [] D -- C:\Users\Omnia\AppData\Local\SKIDROW =>.SKIDROW
O43 - CFD: 09/04/2017 - [0] D -- C:\Users\Omnia\AppData\Local\Skype =>.Skype
O43 - CFD: 19/07/2017 - [] D -- C:\Users\Omnia\AppData\Local\Steam =>.Steam Games
O43 - CFD: 26/11/2017 - [] D -- C:\Users\Omnia\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [0] SHD -- C:\Users\Omnia\AppData\Local\Temporary Internet Files =>.Microsoft Corporation
O43 - CFD: 09/04/2017 - [] D -- C:\Users\Omnia\AppData\Local\TileDataLayer =>.Microsoft Corporation
O43 - CFD: 27/06/2012 - [] D -- C:\Users\Omnia\AppData\Local\VirtualStore =>.Microsoft Corporation
O43 - CFD: 03/09/2014 - [] D -- C:\Users\Omnia\AppData\Local\webkit =>.webkit
O43 - CFD: 11/06/2014 - [] D -- C:\Users\Omnia\AppData\Local\Windows Live =>.Microsoft Corporation
O43 - CFD: 12/01/2013 - [] D -- C:\Users\Omnia\AppData\Local\Windows Live Writer =>.Microsoft Corporation
O43 - CFD: 16/10/2017 - [] D -- C:\Users\Omnia\AppData\Local\Wondershare =>.Wondershare
O43 - CFD: 26/11/2017 - [] D -- C:\Users\Omnia\AppData\Local\ZHP =>.Nicolas Coolman
O43 - CFD: 25/01/2013 - [0] D -- C:\Users\Omnia\AppData\Local\Programs\Common =>.Microsoft Corporation
O43 - CFD: 07/11/2015 - [] D -- C:\Users\Omnia\Desktop\965YOKDJ
O43 - CFD: 29/10/2017 - [] D -- C:\Users\Omnia\Desktop\bmce
O43 - CFD: 22/10/2017 - [] D -- C:\Users\Omnia\Desktop\bp
O43 - CFD: 28/10/2017 - [] D -- C:\Users\Omnia\Desktop\iphone
O43 - CFD: 09/07/2017 - [] D -- C:\Users\Omnia\Desktop\Licence
O43 - CFD: 11/02/2017 - [] D -- C:\Users\Omnia\Desktop\master
O43 - CFD: 06/09/2014 - [] D -- C:\Users\Omnia\Desktop\music
O43 - CFD: 17/11/2016 - [] D -- C:\Users\Omnia\Desktop\new music
O43 - CFD: 04/11/2017 - [] D -- C:\Users\Omnia\Desktop\Nouveau dossier (2)
O43 - CFD: 31/05/2017 - [] D -- C:\Users\Omnia\Desktop\Nouveau dossier (3)
O43 - CFD: 16/04/2017 - [] D -- C:\Users\Omnia\Desktop\Nouveau dossier (4)
O43 - CFD: 21/07/2016 - [] D -- C:\Users\Omnia\Desktop\om
O43 - CFD: 27/10/2015 - [] D -- C:\Users\Omnia\Desktop\omnia
O43 - CFD: 07/11/2015 - [] D -- C:\Users\Omnia\Desktop\phone omnia
O43 - CFD: 04/08/2017 - [] D -- C:\Users\Omnia\Desktop\photos ihab
O43 - CFD: 18/03/2017 - [] RD -- C:\Users\Omnia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [] RD -- C:\Users\Omnia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories =>.Microsoft Corporation
O43 - CFD: 16/11/2017 - [] RD -- C:\Users\Omnia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools
O43 - CFD: 11/02/2016 - [0] D -- C:\Users\Omnia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] D -- C:\Users\Omnia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance =>.Microsoft Corporation
O43 - CFD: 16/11/2017 - [] RD -- C:\Users\Omnia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup =>.Microsoft Corporation
O43 - CFD: 19/07/2017 - [] D -- C:\Users\Omnia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam =>.Steam Games
O43 - CFD: 18/03/2017 - [] RD -- C:\Users\Omnia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] RD -- C:\Users\Omnia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [] D -- C:\Users\Omnia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR
O43 - CFD: 15/04/2017 - [0] SHD -- C:\Users\Default\AppData\Local\Application Data =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [0] SHD -- C:\Users\Default\AppData\Local\History =>.Microsoft Corporation
O43 - CFD: 19/03/2017 - [] D -- C:\Users\Default\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 21/01/2017 - [0] D -- C:\Users\Default\AppData\Local\Microsoft Help =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [0] D -- C:\Users\Default\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [0] SHD -- C:\Users\Default\AppData\Local\Temporary Internet Files =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [0] SHD -- C:\Users\Default User\AppData\Local\Application Data =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [0] SHD -- C:\Users\Default User\AppData\Local\History =>.Microsoft Corporation
O43 - CFD: 19/03/2017 - [] D -- C:\Users\Default User\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 21/01/2017 - [0] D -- C:\Users\Default User\AppData\Local\Microsoft Help =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [0] D -- C:\Users\Default User\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [0] SHD -- C:\Users\Default User\AppData\Local\Temporary Internet Files =>.Microsoft Corporation
O43 - CFD: 15/04/2017 - [0] D -- C:\WINDOWS\System32\Config\systemprofile\AppData\Local\DBG =>.DBG
O43 - CFD: 30/04/2017 - [] D -- C:\WINDOWS\System32\Config\systemprofile\AppData\Local\Microsoft =>.Microsoft Corporation
---\\ ShellIconOverlayIdentifiers (SIOI) (5) - 0s
O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 1 (ErrorConflict) [ SkyDrivePro1 (ErrorConflict)] - {8BA85C75-763B-4103-94EB-9470F12FE0F7}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 2 (SyncInProgress) [ SkyDrivePro2 (SyncInProgress)] - {CD55129A-B1A1-438E-A425-CEBC7DC684EE}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 3 (InSync) [ SkyDrivePro3 (InSync)] - {E768CD3B-BDDC-436D-9C13-E1B39CA257B1}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - DLL d’extension d’environnement de stockage.) -- C:\Windows\System32\EhStorShell.dll =>.Microsoft Corporation
O106 - SIOI: [Offline Files] - {4E77131D-3629-431c-9818-C5679DC83E81}. (.Microsoft Corporation - IU de cache côté client.) -- C:\WINDOWS\System32\cscui.dll =>.Microsoft Corporation
---\\ Raccourcis de menus conceptuels (SCMH) (35) - 5s
O108 - CMH1: ANotepad++64 [64Bits] - {B298D29A-A6ED-11DE-BA8C-A68E55D89593} . (...) -- D:\notepad\Notepad++\NppShell_05.dll (.not file.) =>.Don Ho
O108 - CMH1: Kaspersky Anti-Virus 16.0.0 [64Bits] - {C845F70F-050A-4052-81DE-587D90C20FE8} . (.Kaspersky Lab ZAO - Shell Extension.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\x64\shellex.dll =>.Kaspersky Lab®
O108 - CMH1: MEGA (Context menu) [64Bits] - {0229E5E7-09E9-45CF-9228-0228EC7D5F17} . (...) -- C:\Users\Omnia\AppData\Local\MEGAsync\ShellExtX64.dll (.not file.)
O108 - CMH1: ModernSharing [64Bits] - {e2bf9676-5f8f-435c-97eb-11607a5bedf7} . (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation
O108 - CMH1: Open With [64Bits] - {09799AFB-AD67-11d1-ABCD-00C04FC30936} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH1: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation
O108 - CMH1: WinRAR [64Bits] - {B41DB860-64E4-11D2-9906-E49FADC173CA} . (.Alexander Roshal - WinRAR shell extension.) -- C:\Program Files\WinRAR\RarExt.dll =>.win.rar GmbH®
O108 - CMH1: WinRAR32 [64Bits] - {B41DB860-8EE4-11D2-9906-E49FADC173CA} . (.Orphan.)
O108 - CMH1: WorkFolders [64Bits] - {E61BF828-5E63-4287-BEF1-60B1A4FDE0E3} . (.Microsoft Corporation - Extension d’environnement de Dossiers de tr.) -- C:\Windows\System32\WorkfoldersShell.dll =>.Microsoft Corporation
O108 - CMH2: OpenContainingFolderMenu [64Bits] - {37ea3a21-7493-4208-a011-7f9ea79ce9f5} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH3: CopyAsPathMenu [64Bits] - {f3d06e7c-1e45-4a26-847e-f9fcdee59be0} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH3: MEGA (Context menu) [64Bits] - {0229E5E7-09E9-45CF-9228-0228EC7D5F17} . (...) -- C:\Users\Omnia\AppData\Local\MEGAsync\ShellExtX64.dll (.not file.)
O108 - CMH3: SendTo [64Bits] - {7BA4C740-9E81-11CF-99D3-00AA004AE837} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH4: Kaspersky Anti-Virus 16.0.0 [64Bits] - {C845F70F-050A-4052-81DE-587D90C20FE8} . (.Kaspersky Lab ZAO - Shell Extension.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\x64\shellex.dll =>.Kaspersky Lab®
O108 - CMH4: MEGA (Context menu) [64Bits] - {0229E5E7-09E9-45CF-9228-0228EC7D5F17} . (...) -- C:\Users\Omnia\AppData\Local\MEGAsync\ShellExtX64.dll (.not file.)
O108 - CMH4: MSSE [64Bits] - {0365FE2C-F183-4091-AC82-BFC39FB75C49} . (.Orphan.)
O108 - CMH4: Offline Files [64Bits] - {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} . (.Microsoft Corporation - IU de cache côté client.) -- C:\WINDOWS\System32\cscui.dll =>.Microsoft Corporation
O108 - CMH4: PowerISO [64Bits] - {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} . (.Orphan.)
O108 - CMH4: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation
O108 - CMH4: WorkFolders [64Bits] - {E61BF828-5E63-4287-BEF1-60B1A4FDE0E3} . (.Microsoft Corporation - Extension d’environnement de Dossiers de tr.) -- C:\Windows\System32\WorkfoldersShell.dll =>.Microsoft Corporation
O108 - CMH5: Gadgets [64Bits] - {6B9228DA-9C15-419e-856C-19E768A13BDC} . (.Orphan.)
O108 - CMH5: igfxcui [64Bits] - {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} . (.Intel Corporation - igfxpph Module.) -- C:\WINDOWS\system32\igfxpph.dll =>.Intel Corporation
O108 - CMH5: New [64Bits] - {D969A300-E7FF-11d0-A93B-00A0C90F2719} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH5: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation
O108 - CMH5: WorkFolders [64Bits] - {E61BF828-5E63-4287-BEF1-60B1A4FDE0E3} . (.Microsoft Corporation - Extension d’environnement de Dossiers de tr.) -- C:\Windows\System32\WorkfoldersShell.dll =>.Microsoft Corporation
O108 - CMH6: Kaspersky Anti-Virus 16.0.0 [64Bits] - {C845F70F-050A-4052-81DE-587D90C20FE8} . (.Kaspersky Lab ZAO - Shell Extension.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\x64\shellex.dll =>.Kaspersky Lab®
O108 - CMH6: Library Location [64Bits] - {3dad6c5d-2167-4cae-9914-f99e41c12cfa} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH6: Offline Files [64Bits] - {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} . (.Microsoft Corporation - IU de cache côté client.) -- C:\WINDOWS\System32\cscui.dll =>.Microsoft Corporation
O108 - CMH6: PintoStartScreen [64Bits] - {470C0EBD-5D73-4d58-9CED-E91E22E23282} . (.Microsoft Corporation - Programme de résolution d’applications.) -- C:\Windows\System32\appresolver.dll =>.Microsoft Windows®
O108 - CMH6: PowerISO [64Bits] - {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} . (.Orphan.)
O108 - CMH6: WinRAR [64Bits] - {B41DB860-64E4-11D2-9906-E49FADC173CA} . (.Alexander Roshal - WinRAR shell extension.) -- C:\Program Files\WinRAR\RarExt.dll =>.win.rar GmbH®
O108 - CMH6: WinRAR32 [64Bits] - {B41DB860-8EE4-11D2-9906-E49FADC173CA} . (.Orphan.)
O108 - CMH7: EnhancedStorageShell [64Bits] - {2854F705-3548-414C-A113-93E27C808C85} . (.Microsoft Corporation - DLL d’extension d’environnement de stockage.) -- C:\Windows\System32\EhStorShell.dll =>.Microsoft Corporation
O108 - CMH7: Kaspersky Anti-Virus 16.0.0 [64Bits] - {C845F70F-050A-4052-81DE-587D90C20FE8} . (.Kaspersky Lab ZAO - Shell Extension.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\x64\shellex.dll =>.Kaspersky Lab®
O108 - CMH7: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation
---\\ Image File Execution Options (18) - 2s
O50 - IFEO:C:\Windows\System32\cscript.exe - (.Microsoft Corporation - Microsoft ® Console Based Script Host.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\dllhost.exe - (.Microsoft Corporation - COM Surrogate.) [DisableExceptionChainValidation\\3] =>.Microsoft Windows®
O50 - IFEO:C:\WINDOWS\System32\drvinst.exe - (.Microsoft Corporation - Module d’installation de pilotes.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\ie4uinit.exe - (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\ieUnatt.exe - (.Microsoft Corporation - Outil d’installation sans assistance d’IE 7.) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\mmc.exe - (.Microsoft Corporation - Microsoft Management Console.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\MRT.exe - (.Microsoft Corporation - Outil de suppression de logiciels malveilla.) [CFGOptions\\1] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\msfeedssync.exe - (.Microsoft Corporation - Microsoft Feeds Synchronization.) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\mshta.exe - (.Microsoft Corporation - Hôte des applications HTML de Microsoft(R).) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\PresentationHost.exe - (.Microsoft Corporation - Windows Presentation Foundation Host.) [MitigationOptions\\1118481] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\PrintIsolationHost.exe - (.Microsoft Corporation - PrintIsolationHost.) [MitigationOptions\\2097152] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\rundll32.exe - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\runtimebroker.exe - (.Microsoft Corporation - Runtime Broker.) [MitigationOptions\\4294967296] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\searchprotocolhost.exe - (.Microsoft Corporation - Microsoft Windows Search Protocol Host.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\spoolsv.exe - (.Microsoft Corporation - Application sous-système spouleur.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\spoolsv.exe - (.Microsoft Corporation - Application sous-système spouleur.) [MitigationOptions\\2097152] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\svchost.exe - (.Microsoft Corporation - Processus hôte pour les services Windows.) [MinimumStackCommitInBytes\\32768] =>.Microsoft Windows Publisher®
O50 - IFEO:C:\Windows\System32\wscript.exe - (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
---\\ Liste des pilotes du système (109) - 37s
O58 - SDL:2015/03/25 15:27:37 A . (.Kaspersky Lab ZAO - Kaspersky Unified Driver.) -- C:\WINDOWS\System32\drivers\11A4E5D76.sys [457824] =>.Kaspersky Lab®
O58 - SDL:2015/03/25 15:30:50 A . (.Kaspersky Lab ZAO - Kaspersky Unified Driver.) -- C:\WINDOWS\System32\drivers\11A4E5D761.sys [457824] =>.Kaspersky Lab®
O58 - SDL:2015/03/25 11:56:05 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\166D5B0C.sys [136408] =>.Malwarebytes Corporation® (.SUP.Orphan)
O58 - SDL:2017/03/18 20:55:43 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\WINDOWS\System32\drivers\3ware.sys [107424] =>.Microsoft Windows®
O58 - SDL:2015/03/24 16:07:15 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\6BBA4D26.sys [136408] =>.Malwarebytes Corporation® (.SUP.Orphan)
O58 - SDL:2017/03/18 20:55:43 A . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS.) -- C:\WINDOWS\System32\drivers\adp80xx.sys [1135512] =>.Microsoft Windows®
O58 - SDL:2017/03/18 20:55:43 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\WINDOWS\System32\drivers\amdsata.sys [83352] =>.Microsoft Windows®
O58 - SDL:2017/03/18 20:55:43 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\WINDOWS\System32\drivers\amdsbs.sys [259488] =>.Microsoft Windows®
O58 - SDL:2017/03/18 20:55:43 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\WINDOWS\System32\drivers\amdxata.sys [27040] =>.Microsoft Windows®
O58 - SDL:2017/03/18 20:55:43 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\WINDOWS\System32\drivers\arcsas.sys [132000] =>.Microsoft Windows®
O58 - SDL:2017/03/18 20:55:40 A . (.Qualcomm Atheros Communications, Inc. - Qualcomm Atheros Extensible Wireless LAN de.) -- C:\WINDOWS\System32\drivers\athwnx.sys [4233728] =>.Qualcomm Atheros Communications, Inc.
O58 - SDL:2017/03/18 20:55:43 A . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\WINDOWS\System32\drivers\bcmfn2.sys [9728] =>.Windows (R) Win 7 DDK provider
O58 - SDL:2016/07/13 17:47:38 A . (.Qualcomm Atheros - Qualcomm Atheros BtFilter Driver.) -- C:\WINDOWS\System32\drivers\btfilter.sys [610336] =>.Microsoft Windows Hardware Compatibility Publisher®
O58 - SDL:2017/03/18 20:55:42 A . (.QLogic Corporation - QLogic Gigabit Ethernet VBD.) -- C:\WINDOWS\System32\drivers\bxvbda.sys [533920] =>.Microsoft Windows®
O58 - SDL:2017/03/18 20:55:43 A . (.Chelsio Communications - Chelsio iSCSI Crash Dump Driver.) -- C:\WINDOWS\System32\drivers\cht4dx64.sys [102816] =>.Microsoft Windows®
O58 - SDL:2017/03/18 20:55:43 A . (.Chelsio Communications - Chelsio iSCSI VMiniport Driver.) -- C:\WINDOWS\System32\drivers\cht4sx64.sys [347032] =>.Microsoft Windows®
O58 - SDL:2017/03/18 20:55:43 A . (.Chelsio Communications - Virtual Bus Driver for Chelsio ® T4 Chipset.) -- C:\WINDOWS\System32\drivers\cht4vx64.sys [2104224] =>.Microsoft Windows®
O58 - SDL:2015/07/05 23:10:20 A . (.Kaspersky Lab ZAO - Cryptographic Module Driver x64 (Weak).) -- C:\WINDOWS\System32\drivers\cm_km.sys [389816] =>.Kaspersky Lab®
O58 - SDL:2007/01/04 13:47:10 A . (.Analog Deivces - USB Firmware loader.) -- C:\WINDOWS\System32\drivers\e4ldrx64.sys [71832] =>.Ikanos Communications, Inc.®
O58 - SDL:2017/03/18 20:55:42 A . (.QLogic Corporation - QLogic 10 GigE VBD.) -- C:\WINDOWS\System32\drivers\evbda.sys [3419040] =>.Microsoft Windows®
O58 - SDL:2012/01/04 20:31:23 A . (.Huawei Tech. Co., Ltd. - HUAWEI USB Smart Card Driver.) -- C:\WINDOWS\System32\drivers\ewdcsc.sys [32768] =>.Huawei Tech. Co., Ltd.
O58 - SDL:2012/01/04 20:31:23 A . (.Huawei Technologies Co., Ltd. - USB Modem/Serial Device Driver.) -- C:\WINDOWS\System32\drivers\ewusbmdm.sys [222464] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2012/01/04 20:31:23 A . (.Huawei Technologies Co., Ltd. - USB NDIS Miniport Driver.) -- C:\WINDOWS\System32\drivers\ewusbwwan.sys [421376] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2012/01/04 20:31:23 A . (.Huawei Technologies Co., Ltd. - ew_hwupgrade Driver.) -- C:\WINDOWS\System32\drivers\ew_hwupgrade.sys [22016] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2012/01/04 20:31:23 A . (.Huawei Technologies Co., Ltd. - USB Modem/Serial Device Driver.) -- C:\WINDOWS\System32\drivers\ew_hwusbdev.sys [117248] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2012/01/04 20:31:23 A . (.Huawei Technologies Co., Ltd. - ew_jubusenum Driver.) -- C:\WINDOWS\System32\drivers\ew_jubusenum.sys [86016] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2012/01/04 20:31:23 A . (.Huawei Technologies Co., Ltd. - ew_jucdcacm Driver.) -- C:\WINDOWS\System32\drivers\ew_jucdcacm.sys [98816] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2012/01/04 20:31:23 A . (.Huawei Technologies Co., Ltd. - ew_jucdcndis Driver.) -- C:\WINDOWS\System32\drivers\ew_jucdcecm.sys [69632] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2012/01/04 20:31:23 A . (.Huawei Technologies Co., Ltd. - ew_juextctrl Driver.) -- C:\WINDOWS\System32\drivers\ew_juextctrl.sys [28672] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2012/01/04 20:31:23 A . (.Huawei Technologies Co., Ltd. - ew_jucdcndis Driver.) -- C:\WINDOWS\System32\drivers\ew_juwwanecm.sys [212992] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2012/01/04 20:31:23 A . (.Huawei Technologies Co., Ltd. - Filter Driver.) -- C:\WINDOWS\System32\drivers\ew_usbenumfilter.sys [13952] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2009/09/17 19:54:54 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\WINDOWS\System32\drivers\HECIx64.sys [56344] =>.Intel Corporation®
O58 - SDL:2017/03/18 20:55:43 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\WINDOWS\System32\drivers\HpSAMD.sys [64416] =>.Microsoft Windows®
O58 - SDL:2017/03/18 20:55:45 A . (.Intel(R) Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\iagpio.sys [33280] =>.Intel(R) Corporation
O58 - SDL:2017/03/18 20:55:45 A . (.Intel(R) Corporation - Intel(R) Serial IO I2C Driver.) -- C:\WINDOWS\System32\drivers\iai2c.sys [81408] =>.Intel(R) Corporation
O58 - SDL:2017/03/18 20:55:45 A . (.Intel Corporation - Intel(R) Serial IO GPIO Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [70656] =>.Intel Corporation
O58 - SDL:2017/03/18 20:55:45 A . (.Intel Corporation - Intel(R) Serial IO GPIO Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [85504] =>.Intel Corporation
O58 - SDL:2017/03/18 20:55:45 A . (.Intel Corporation - Intel(R) Serial IO I2C Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [165376] =>.Intel Corporation
O58 - SDL:2017/03/18 20:55:45 A . (.Intel Corporation - Intel(R) Serial IO I2C Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [168448] =>.Intel Corporation
O58 - SDL:2017/03/18 20:55:42 A . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [38128] =>.Intel Corporation - Client Components Group®
O58 - SDL:2017/03/18 20:55:40 A . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [113152] =>.Intel Corporation
O58 - SDL:2012/05/30 13:42:10 A . (.Intel Corporation - Intel Rapid Storage Technology driver - x64.) -- C:\WINDOWS\System32\drivers\iaStor.sys [569152] =>.Intel Corporation®
O58 - SDL:2013/11/21 08:31:28 A . (.Intel Corporation - Intel Rapid Storage Technology driver - x64.) -- C:\WINDOWS\System32\drivers\iaStorA.sys [632168] =>.Intel Corporation - Intel® Rapid Storage Technology®
O58 - SDL:2017/03/18 20:55:44 A . (.Intel Corporation - Intel(R) Rapid Storage Technology driver (i.) -- C:\WINDOWS\System32\drivers\iaStorAV.sys [673184] =>.Microsoft Windows®
O58 - SDL:2017/03/18 20:55:44 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\WINDOWS\System32\drivers\iaStorV.sys [412064] =>.Microsoft Windows®
O58 - SDL:2017/03/18 20:55:43 A . (.Mellanox - InfiniBand Fabric Bus Driver.) -- C:\WINDOWS\System32\drivers\ibbus.sys [526240] =>.Microsoft Windows®
O58 - SDL:2012/11/26 23:26:12 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\WINDOWS\System32\drivers\igdkmd64.sys [12311776] =>.Intel Corporation
O58 - SDL:2011/08/23 18:12:56 A . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\WINDOWS\System32\drivers\IntcDAud.sys [317440] =>.Intel(R) Corporation
O58 - SDL:2015/06/22 19:40:04 A . (.Kaspersky Lab ZAO - Kaspersky Unified Driver.) -- C:\WINDOWS\System32\drivers\kl1.sys [478392] =>.Kaspersky Lab®
O58 - SDL:2015/06/06 07:48:24 A . (.Kaspersky Lab ZAO - Backup Disk Filter [fre_wnet_x64].) -- C:\WINDOWS\System32\drivers\klbackupdisk.sys [53432] =>.Kaspersky Lab®
O58 - SDL:2015/06/27 00:30:00 A . (.Kaspersky Lab ZAO - Backup File Filter [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klbackupflt.sys [70512] =>.Kaspersky Lab®
O58 - SDL:2016/08/24 15:09:27 A . (.AO Kaspersky Lab - Virtual Disk [fre_wnet_x64].) -- C:\WINDOWS\System32\drivers\kldisk.sys [77728] =>.Kaspersky Lab®
O58 - SDL:2015/06/24 00:28:32 A . (.Kaspersky Lab - Klelam Mini-Filter [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klelam.sys [30328] =>.Microsoft Windows Early Launch Anti-malware Publisher®
O58 - SDL:2015/12/08 00:24:14 A . (.AO Kaspersky Lab - Filter Core [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klflt.sys [181640] =>.Kaspersky Lab®
O58 - SDL:2016/08/24 15:05:34 A . (.AO Kaspersky Lab - klhk [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klhk.sys [238000] =>.Kaspersky Lab®
O58 - SDL:2016/08/24 15:09:33 A . (.AO Kaspersky Lab - Core System Interceptors [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klif.sys [933808] =>.Kaspersky Lab®
O58 - SDL:2017/04/15 13:55:49 A . (.AO Kaspersky Lab - Kaspersky Lab Intermediate Network Driver [.) -- C:\WINDOWS\System32\drivers\klim6.sys [49240] =>.Kaspersky Lab®
O58 - SDL:2015/06/06 07:31:42 A . (.Kaspersky Lab ZAO - Keyboard Device Filter [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klkbdflt.sys [41656] =>.Kaspersky Lab®
O58 - SDL:2015/06/07 00:52:56 A . (.Kaspersky Lab ZAO - Mouse Device Filter [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klmouflt.sys [41656] =>.Kaspersky Lab®
O58 - SDL:2015/12/08 00:24:14 A . (.AO Kaspersky Lab - Format Recognizer [fre_wnet_x64].) -- C:\WINDOWS\System32\drivers\klpd.sys [41352] =>.Kaspersky Lab®
O58 - SDL:2016/08/24 15:09:35 A . (.AO Kaspersky Lab - WFP Network Filter [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klwfp.sys [87984] =>.Kaspersky Lab®
O58 - SDL:2015/06/16 20:56:32 A . (.Kaspersky Lab ZAO - WFP Network Connection Filter Driver [fre_w.) -- C:\WINDOWS\System32\drivers\klwtp.sys [102584] =>.Kaspersky Lab®
O58 - SDL:2015/06/23 17:30:50 A . (.Kaspersky Lab ZAO - Network Processor [fre_wnet_x64].) -- C:\WINDOWS\System32\drivers\kneps.sys [187056] =>.Kaspersky Lab®
O58 - SDL:2017/03/18 20:55:43 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas.sys [108960] =>.Microsoft Windows®
O58 - SDL:2017/03/18 20:55:43 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas2i.sys [123808] =>.Microsoft Windows®
O58 - SDL:2017/03/18 20:55:43 A . (.Avago Technologies - Avago SAS Gen3 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas3i.sys [103328] =>.Microsoft Windows®
O58 - SDL:2017/03/18 20:55:43 A . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sss.sys [82848] =>.Microsoft Windows®
O58 - SDL:2017/03/18 20:55:43 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\megasas.sys [59808] =>.Microsoft Windows®
O58 - SDL:2017/03/18 20:55:43 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\MegaSas2i.sys [64416] =>.Microsoft Windows®
O58 - SDL:2017/03/18 20:55:43 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\WINDOWS\System32\drivers\megasr.sys [575904] =>.Microsoft Windows®
O58 - SDL:2017/03/18 20:55:43 A . (.Mellanox - MLX4 Bus Driver.) -- C:\WINDOWS\System32\drivers\mlx4_bus.sys [842656] =>.Microsoft Windows®
O58 - SDL:2012/01/04 20:31:23 A . (.DiBcom SA - DiBcom AVSTREAM BDA driver.) -- C:\WINDOWS\System32\drivers\mod7700.sys [1001472] =>.DiBcom SA
O58 - SDL:2017/03/18 20:55:43 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\WINDOWS\System32\drivers\mvumis.sys [63904] =>.Microsoft Windows®
O58 - SDL:2017/03/18 20:55:43 A . (.Mellanox - NetworkDirect Support Filter Driver.) -- C:\WINDOWS\System32\drivers\ndfltr.sys [108960] =>.Microsoft Windows®
O58 - SDL:2017/03/18 20:55:43 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\WINDOWS\System32\drivers\nvraid.sys [150432] =>.Microsoft Windows®
O58 - SDL:2017/03/18 20:55:43 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\WINDOWS\System32\drivers\nvstor.sys [166304] =>.Microsoft Windows®
O58 - SDL:2017/03/18 20:55:43 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas2i.sys [58784] =>.Microsoft Windows®
O58 - SDL:2017/03/18 20:55:43 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas3i.sys [61848] =>.Microsoft Windows®
O58 - SDL:2013/04/29 08:17:34 A . (.Panda Security, S.L. - Panda Kernel Memory Access Driver (x86).) -- C:\WINDOWS\System32\drivers\PSKMAD.sys [47632] =>.Panda Security S.L®
O58 - SDL:2017/10/20 03:32:36 A . (.Realtek - Realtek 8101E/8168/8169 NDIS 6.40 64-bit Dr.) -- C:\WINDOWS\System32\drivers\rt640x64.sys [1010648] =>.Realtek Semiconductor Corp.®
O58 - SDL:2017/01/11 11:38:16 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\WINDOWS\System32\drivers\RTKVHD64.sys [5545472] =>.Realtek Semiconductor Corp.®
O58 - SDL:2017/04/20 02:04:59 A . (.Realtek Semiconductor Corp. - Realtek Pcie CardReader Driver for 2K/XP/Vi.) -- C:\WINDOWS\System32\drivers\RtsBaStor.sys [338400] =>.Realtek Semiconductor Corp.®
O58 - SDL:2017/04/14 02:12:58 A . (.Realtek Semiconductor Corp. - Realtek Pcie CardReader Driver for 2K/XP/Vi.) -- C:\WINDOWS\System32\drivers\RtsP2Stor.sys [329184] =>.Realtek Semiconductor Corp.®
O58 - SDL:2017/06/26 08:16:27 A . (.Realsil Semiconductor Corporation - RTS PCIE READER Driver.) -- C:\WINDOWS\System32\drivers\RtsPer.sys [783808] =>.Realtek Semiconductor Corp.®
O58 - SDL:2017/04/19 02:01:20 A . (.Realtek Semiconductor Corp. - Realtek Pcie CardReader Driver for 2K/XP/Vi.) -- C:\WINDOWS\System32\drivers\RtsPStor.sys [400352] =>.Realtek Semiconductor Corp.®
O58 - SDL:2017/04/27 06:02:56 A . (.Realsil Semiconductor Corporation - RTS USB READER Driver.) -- C:\WINDOWS\System32\drivers\RtsUer.sys [420832] =>.Realtek Semiconductor Corp.®
O58 - SDL:2017/03/18 20:55:44 A . (...) -- C:\WINDOWS\System32\drivers\SDFRd.sys [31128] =>.Microsoft Windows®
O58 - SDL:2007/02/12 16:56:08 A . (.Prolific Technology Inc. - USB-to-Serial Cable Driver.) -- C:\WINDOWS\System32\drivers\ser2pl64.sys [89600] =>.Prolific Technology Inc.
O58 - SDL:2017/03/18 20:55:43 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid2.sys [44960] =>.Microsoft Windows®
O58 - SDL:2017/03/18 20:55:43 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid4.sys [81824] =>.Microsoft Windows®
O58 - SDL:2016/04/27 23:53:48 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\WINDOWS\System32\drivers\Smb_driver_AMDASF_Aux.sys [52392] =>.Synaptics Incorporated®
O58 - SDL:2016/04/27 23:53:48 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\WINDOWS\System32\drivers\Smb_driver_Intel.sys [52904] =>.Synaptics Incorporated®
O58 - SDL:2016/04/27 23:53:48 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\WINDOWS\System32\drivers\Smb_driver_Intel_Aux.sys [52904] =>.Synaptics Incorporated®
O58 - SDL:2011/05/13 03:21:02 A . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\WINDOWS\System32\drivers\ssadcm.sys [13288] =>.MCCI Corporation
O58 - SDL:2011/05/13 03:21:04 A . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\WINDOWS\System32\drivers\ssadwh.sys [13800] =>.MCCI Corporation
O58 - SDL:2017/01/16 06:26:40 A . (.Samsung Electronics Co., Ltd. - SAMSUNG USB Composite Device Driver.) -- C:\WINDOWS\System32\drivers\ssudbus.sys [131712] =>.Samsung Electronics CO., LTD.®
O58 - SDL:2017/01/16 06:26:40 A . (.Samsung Electronics Co., Ltd. - SAMSUNG Android Modem Device Driver.) -- C:\WINDOWS\System32\drivers\ssudmdm.sys [165504] =>.Samsung Electronics CO., LTD.®
O58 - SDL:2017/03/18 20:55:43 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\WINDOWS\System32\drivers\stexstor.sys [31136] =>.Microsoft Windows®
O58 - SDL:2016/04/27 23:53:48 A . (.Synaptics Incorporated - Synaptics Touchpad Win64 Driver.) -- C:\WINDOWS\System32\drivers\SynTP.sys [622784] =>.Synaptics Incorporated®
O58 - SDL:2013/09/28 02:56:48 A . (.Trend Micro Inc. - TrendMicro Common Module.) -- C:\WINDOWS\System32\drivers\tmcomm.sys [285208] =>.Trend Micro, Inc.®
O58 - SDL:2015/03/24 14:42:08 A . (...) -- C:\WINDOWS\System32\drivers\TrueSight.sys [35064] =>.Adlice®
O58 - SDL:2016/03/28 12:41:34 A . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\WINDOWS\System32\drivers\usbaapl64.sys [54784] =>.Apple, Inc.
O58 - SDL:2017/03/18 20:55:43 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\WINDOWS\System32\drivers\vsmraid.sys [166816] =>.Microsoft Windows®
O58 - SDL:2017/03/18 20:55:43 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\WINDOWS\System32\drivers\VSTXRAID.SYS [305568] =>.Microsoft Windows®
O58 - SDL:2017/03/18 20:55:43 A . (.Mellanox - Kernel WinMad.) -- C:\WINDOWS\System32\drivers\winmad.sys [32160] =>.Microsoft Windows®
O58 - SDL:2017/03/18 20:55:43 A . (.Mellanox - Kernel WinVerbs.) -- C:\WINDOWS\System32\drivers\winverbs.sys [64920] =>.Microsoft Windows®
O58 - SDL:2014/06/05 19:34:32 A . (.Qualcomm Atheros Communications, Inc. - Qualcomm Atheros Extensible Wireless LAN de.) -- C:\WINDOWS\System32\athrx.sys [4055040] =>.Qualcomm Atheros Communications, Inc.
O58 - SDL:2013/08/26 10:52:56 A . (...) -- C:\WINDOWS\System32\pwdrvio.sys [19032] =>.MiniTool Solution Ltd®
O58 - SDL:2013/08/26 10:52:54 A . (...) -- C:\WINDOWS\System32\pwdspio.sys [12384] =>.MiniTool Solution Ltd®
---\\ Associations Shell Spawning (10) - 0s
O67 - Shell Spawning: <.bat>
O67 - Shell Spawning: <.cpl>
O67 - Shell Spawning: <.cmd>
O67 - Shell Spawning: <.com>
O67 - Shell Spawning: <.evt>
O67 - Shell Spawning: <.exe>
O67 - Shell Spawning: <.html>
O67 - Shell Spawning: <.js>
O67 - Shell Spawning: <.reg>
O67 - Shell Spawning: <.scr>
---\\ Menu de démarrage Internet (8) - 1s
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
---\\ Recherche d'infection sur les navigateurs (2) - 0s
O69 - SBI: SearchScopes [HKCU] [64Bits]{0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/ =>.Bing.com
O69 - SBI: SearchScopes [HKLM] [64Bits]{0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (@ieframe.dll,-12512) - http://www.bing.com/ =>.Bing.com
---\\ Enumère les services démarrés par Svchost (48) - 1s
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\WINDOWS\System32\certprop.dll [189952] =>.Microsoft Corporation
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\WINDOWS\System32\certprop.dll [189952] =>.Microsoft Corporation
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\WINDOWS\System32\srvsvc.dll [303104] =>.Microsoft Corporation
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\WINDOWS\System32\gpsvc.dll [1269248] =>.Microsoft Corporation
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\WINDOWS\System32\ikeext.dll [934912] =>.Microsoft Corporation
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\WINDOWS\System32\iphlpsvc.dll [996864] =>.Microsoft Corporation
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\WINDOWS\system32\seclogon.dll [31232] =>.Microsoft Corporation
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\WINDOWS\System32\appinfo.dll [138752] =>.Microsoft Corporation
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\WINDOWS\System32\iscsiexe.dll [150016] =>.Microsoft Corporation
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\WINDOWS\System32\eapsvc.dll [108032] =>.Microsoft Corporation
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\WINDOWS\System32\schedsvc.dll [877568] =>.Microsoft Corporation
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\WINDOWS\System32\wbem\WMIsvc.dll [221696] =>.Microsoft Corporation
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\WINDOWS\System32\browser.dll [133120] =>.Microsoft Corporation
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\WINDOWS\System32\profsvc.dll [411648] =>.Microsoft Corporation
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\WINDOWS\System32\sessenv.dll [385536] =>.Microsoft Corporation
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\WINDOWS\System32\wercplsupport.dll [98816] =>.Microsoft Corporation
O83 - Search Svchost Services: shpamsvc (shpamsvc) . (.Microsoft Corporation - SharedPC.AccountManager.) -- C:\WINDOWS\System32\Windows.SharedPC.AccountManager.dll [192512] =>.Microsoft Corporation
O83 - Search Svchost Services: XblGameSave (XblGameSave) . (.Microsoft Corporation - Xbox Live Game Save Service.) -- C:\WINDOWS\System32\XblGameSave.dll [1135104] =>.Microsoft Corporation
O83 - Search Svchost Services: NaturalAuthentication (NaturalAuthentication) . (.Microsoft Corporation - Service d’authentification naturelle.) -- C:\WINDOWS\System32\NaturalAuth.dll [723968] =>.Microsoft Corporation
O83 - Search Svchost Services: TokenBroker (TokenBroker) . (.Microsoft Corporation - Token Broker.) -- C:\WINDOWS\System32\TokenBroker.dll [1052672] =>.Microsoft Corporation
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Service de géolocalisation.) -- C:\WINDOWS\System32\lfsvc.dll [43520] =>.Microsoft Corporation
O83 - Search Svchost Services: Irmon (Irmon) . (.Microsoft Corporation - Moniteur infrarouge.) -- C:\WINDOWS\System32\irmon.dll [24576] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\WINDOWS\System32\rasauto.dll [104448] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d’accès à dista.) -- C:\WINDOWS\System32\rasmans.dll [874496] =>.Microsoft Corporation
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\WINDOWS\System32\mprdim.dll [490496] =>.Microsoft Corporation
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\WINDOWS\System32\sens.dll [69632] =>.Microsoft Corporation
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\WINDOWS\System32\ipnathlp.dll [537600] =>.Microsoft Corporation
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\WINDOWS\System32\tapisrv.dll [306688] =>.Microsoft Corporation
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\WINDOWS\System32\wuaueng.dll [2449408] =>.Microsoft Corporation
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\WINDOWS\System32\qmgr.dll [1159680] =>.Microsoft Corporation
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS\System32\shsvcs.dll [612864] =>.Microsoft Corporation
O83 - Search Svchost Services: XblAuthManager (XblAuthManager) . (.Microsoft Corporation - Xbox Live Auth Manager.) -- C:\WINDOWS\System32\XblAuthManager.dll [1015296] =>.Microsoft Corporation
O83 - Search Svchost Services: dmwappushservice (dmwappushservice) . (.Microsoft Corporation - dmwappushsvc.) -- C:\WINDOWS\System32\dmwappushsvc.dll [55296] =>.Microsoft Corporation
O83 - Search Svchost Services: wisvc (wisvc) . (.Microsoft Corporation - Paramètres de vol.) -- C:\WINDOWS\System32\flightsettings.dll [719872] =>.Microsoft Corporation
O83 - Search Svchost Services: WpnService (WpnService) . (.Microsoft Corporation - Service du système de notifications Push Wi.) -- C:\WINDOWS\System32\WpnService.dll [276480] =>.Microsoft Corporation
O83 - Search Svchost Services: DmEnrollmentSvc (DmEnrollmentSvc) . (.Microsoft Corporation - DLL Windows Management Service.) -- C:\WINDOWS\System32\Windows.Internal.Management.dll [536064] =>.Microsoft Corporation
O83 - Search Svchost Services: XboxNetApiSvc (XboxNetApiSvc) . (.Microsoft Corporation - Xbox Live Networking Service.) -- C:\WINDOWS\System32\XboxNetApiSvc.dll [1067008] =>.Microsoft Corporation
O83 - Search Svchost Services: UsoSvc (UsoSvc) . (.Microsoft Corporation - Mettre à jour la session Orchestrator Core.) -- C:\WINDOWS\System32\usocore.dll [684544] =>.Microsoft Corporation
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d’installation de périphérique.) -- C:\WINDOWS\System32\DeviceSetupManager.dll [233984] =>.Microsoft Corporation
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\WINDOWS\System32\bdesvc.dll [385536] =>.Microsoft Corporation
O83 - Search Svchost Services: NetSetupSvc (NetSetupSvc) . (.Microsoft Corporation - Service Configuration du réseau.) -- C:\WINDOWS\System32\NetSetupSvc.dll [261632] =>.Microsoft Corporation
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\WINDOWS\System32\themeservice.dll [69632] =>.Microsoft Corporation
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Micro.) -- C:\WINDOWS\System32\ncasvc.dll [167424] =>.Microsoft Corporation
O83 - Search Svchost Services: xbgm (xbgm) . (.Microsoft Corporation - Xbox Game Monitoring Service.) -- C:\WINDOWS\System32\xbgmsvc.dll [301216] =>.Microsoft Windows Publisher®
O83 - Search Svchost Services: XboxGipSvc (XboxGipSvc) . (.Microsoft Corporation - Xbox Gip Management Service.) -- C:\WINDOWS\System32\XboxGipSvc.dll [18944] =>.Microsoft Corporation
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\WINDOWS\System32\wlidsvc.dll [2153984] =>.Microsoft Corporation
O83 - Search Svchost Services: UserManager (UserManager) . (.Microsoft Corporation - UserMgr.) -- C:\WINDOWS\System32\usermgr.dll [877568] =>.Microsoft Corporation
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\WINDOWS\System32\appmgmts.dll [196096] =>.Microsoft Corporation
---\\ Liste des exceptions du parefeu Windows (20) - 6s
O87 - FAEL: "UDP Query User{9ABCF0FB-05FC-4A73-A039-AA45CC3A4966}C:\program files (x86)\city car driving\bin\win32\starter.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\city car driving\bin\win32\starter.exe (.not file.)
O87 - FAEL: "TCP Query User{3F5AC79C-5F13-4B9A-9765-192BA505545A}C:\program files (x86)\city car driving\bin\win32\starter.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\city car driving\bin\win32\starter.exe (.not file.)
O87 - FAEL: "{F6A4CE51-3670-4C9E-8917-8BB731E51F67}" [In-None-P6-TRUE] .(...) -- D:\Steam\Steam.exe (.not file.)
O87 - FAEL: "{E1F8344E-A281-4373-806A-090B8E602585}" [In-None-P17-TRUE] .(...) -- D:\Steam\Steam.exe (.not file.)
O87 - FAEL: "{95180E49-5026-4857-843C-3D4A3B85575A}" [In-None-P6-TRUE] .(...) -- D:\Steam\bin\steamwebhelper.exe (.not file.)
O87 - FAEL: "{1221A5D6-C85C-4678-9205-5015247445EC}" [In-None-P17-TRUE] .(...) -- D:\Steam\bin\steamwebhelper.exe (.not file.)
O87 - FAEL: "{7C9C4B4F-B052-4983-8200-42787BCE58EC}" [In-None-P6-TRUE] .(...) -- C:\Program Files\DriversCloud.com\DriversCloud.exe (.not file.)
O87 - FAEL: "{CCD835C6-354C-42D8-966B-4BE59A916931}" [In-None-P17-TRUE] .(...) -- C:\Program Files\DriversCloud.com\DriversCloud.exe (.not file.)
O87 - FAEL: "{57A41B0B-203C-4A32-942E-15F53D211DEE}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\Steam.exe (.not file.)
O87 - FAEL: "{899D95AE-3CF7-4C1E-BD40-DD21571B8F37}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\Steam.exe (.not file.)
O87 - FAEL: "{35A620F6-371E-4711-A10B-EEB70D8800B2}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (.not file.)
O87 - FAEL: "{DCF62660-4FE1-44AF-8881-33BE7E8AB900}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (.not file.)
O87 - FAEL: "{C5B3BC0E-53B0-4962-B726-75A56E925D47}" [In-None-P6-TRUE] .(...) -- D:\Nouveau dossier\steamapps\common\Euro Truck Simulator 2 Demo\bin\win_x86\eurotrucks2.exe (.not file.) =>.Steam Games
O87 - FAEL: "{18E06DDA-E545-455E-BB94-46EBED35C05F}" [In-None-P17-TRUE] .(...) -- D:\Nouveau dossier\steamapps\common\Euro Truck Simulator 2 Demo\bin\win_x86\eurotrucks2.exe (.not file.) =>.Steam Games
O87 - FAEL: "{34809F1E-6F24-47E8-8C27-6526E2F92431}" [In-None-P6-TRUE] .(...) -- D:\Nouveau dossier\steamapps\common\Euro Truck Simulator 2 Demo\bin\win_x64\eurotrucks2.exe (.not file.) =>.Steam Games
O87 - FAEL: "{1B4CB7AC-5F39-4879-9D23-A116F7923B48}" [In-None-P17-TRUE] .(...) -- D:\Nouveau dossier\steamapps\common\Euro Truck Simulator 2 Demo\bin\win_x64\eurotrucks2.exe (.not file.) =>.Steam Games
O87 - FAEL: "{167FA318-5478-4F87-A650-CE329D6DAE4D}" [In-None-P6-TRUE] .(...) -- C:\Users\Omnia\AppData\Roaming\BitTorrent\BitTorrent.exe (.not file.)
O87 - FAEL: "{7F35F2C3-4A38-4CAD-8EBD-FCEAE8A6672F}" [In-None-P17-TRUE] .(...) -- C:\Users\Omnia\AppData\Roaming\BitTorrent\BitTorrent.exe (.not file.)
O87 - FAEL: "{E134DFB5-4CD1-4BD3-A0EC-EB57B9FC39FD}" [In-None-P6-TRUE] .(...) -- C:\Users\Omnia\AppData\Roaming\uTorrent\uTorrent.exe (.not file.)
O87 - FAEL: "{62636A51-1B3E-4EE3-A915-45F1C7A939C6}" [In-None-P17-TRUE] .(...) -- C:\Users\Omnia\AppData\Roaming\uTorrent\uTorrent.exe (.not file.)
---\\ Recherche des packages WindowsInstaller (24) - 12s
[MD5.D7BDE4325CC3EC2F91C0AEA7E18675DC] [WIS][2017/09/16 16:07:08] (.Realnetworks - vs2015_redist x86.) -- C:\WINDOWS\Installer\10211b.msi [1089536] =>.Realnetworks
[MD5.4295DB648F3FC8DB71E72729F5EE8FE1] [WIS][2017/09/16 16:07:08] (.Realnetworks - vc2012_redist.) -- C:\WINDOWS\Installer\10215c.msi [811008] =>.Realnetworks
[MD5.CDE65B341F48B29083DA108CA6CF58D2] [WIS][2017/09/16 16:07:08] (.RealNetworks, Inc. - RealNetworks Upgrade 1.1.0 Component Instal.) -- C:\WINDOWS\Installer\102165.msi [708608] =>.RealNetworks, Inc.
[MD5.2562F08DC0064057CDEDE1B75E26F854] [WIS][2017/09/16 16:07:10] (.RealNetworks, Inc. - Logiciel d'installation RealNetworks %MA_PR.) -- C:\WINDOWS\Installer\1021a1.msi [10682368] =>.RealNetworks, Inc.
[MD5.1C7759ECC8020CB500E6EE76683831E6] [WIS][2017/08/17 14:21:56] (.RealNetworks - RealDownloader.) -- C:\WINDOWS\Installer\1021a6.msi [1622016] =>.RealNetworks
[MD5.34E8A87042FB5E125612B2EB883E9378] [WIS][2017/08/17 14:21:56] (.RealNetworks - Video Downloader.) -- C:\WINDOWS\Installer\1021ab.msi [5832704] =>.RealNetworks
[MD5.594D364D2FBB04C9565FDF25B24FEB70] [WIS][2017/09/16 16:07:06] (.RealNetworks, Inc. - PackageDescription.) -- C:\WINDOWS\Installer\1021b4.msi [389120] =>.RealNetworks, Inc.
[MD5.27174E773F50C4D832D109835868D196] [WIS][2015/04/17 16:55:38] (.ATI Technologies, Inc. - ATI Catalyst Install Manager Installer (64 .) -- C:\WINDOWS\Installer\1342fb3.msi [6734848] =>.ATI Technologies, Inc.
[MD5.45035B8404CC7C5C7EEA20BB5BCB1E51] [WIS][2015/04/17 16:55:38] (.Advanced Micro Devices Inc. - AMD Accelerated Parallel Processing SDK.) -- C:\WINDOWS\Installer\1342fb9.msi [12664320] =>.Advanced Micro Devices Inc.
[MD5.006F60795453FCEAF6393E33E6E11C5D] [WIS][2015/04/17 16:55:39] (.Intel Corporation - Intel(R) Rapid Storage Technology.) -- C:\WINDOWS\Installer\19e9163.msi [9101312] =>.Intel Corporation
[MD5.0BBE832BBB0C15E586F773493024CBC2] [WIS][2016/10/30 18:54:11] (.InstallShield.) -- C:\WINDOWS\Installer\1c2476d.msi [3876864] =>.InstallShield
[MD5.20504BC8E6D72F580BCDACAC7B094351] [WIS][2015/04/17 16:55:43] (.Cisco Systems, Inc..) -- C:\WINDOWS\Installer\3abe3e.msi [1544704] =>.Cisco Systems, Inc.
[MD5.B216CF48909F129A831A2BEAFA2232BE] [WIS][2015/04/17 16:55:43] (.Cisco Systems, Inc..) -- C:\WINDOWS\Installer\3abe46.msi [829440] =>.Cisco Systems, Inc.
[MD5.AB68907A3FF3A7C951960AECF42BAE58] [WIS][2015/04/17 16:55:44] (.Cisco Systems, Inc..) -- C:\WINDOWS\Installer\3abe4e.msi [1304576] =>.Cisco Systems, Inc.
[MD5.25B47EFBE9DCEF40BB9760B6B7846B99] [WIS][2015/04/17 16:55:44] (.Adobe Systems, Inc - swMSM.) -- C:\WINDOWS\Installer\41ace7.msi [2118144] =>.Adobe Systems, Inc
[MD5.9C04E9FEBE042D32C7EED08CBCFE3119] [WIS][2016/09/20 12:44:56] (.Realnetworks - vs2015_redist x64.) -- C:\WINDOWS\Installer\59278d.msi [1191936] =>.Realnetworks
[MD5.606C77DCF8022B97429EDA594BCF83D3] [WIS][2017/04/09 12:26:52] (.Skype Technologies S.A. - Skype.) -- C:\WINDOWS\Installer\5b87e.msi [44208128] =>.Skype Technologies S.A.
[MD5.F0EE2E7F283866A2A0FEA9BE2D12A979] [WIS][2017/11/17 18:07:50] (.Google Inc. - Google Update Helper.) -- C:\WINDOWS\Installer\837e7.msi [40960] =>.Google Inc.
[MD5.ACE9EFABAA906734DEDE3922B00E758D] [WIS][2017/10/22 11:11:25] (.Oracle Corporation - Java SE Runtime Environment 8 Update 151.) -- C:\WINDOWS\Installer\8df9f.msi [34373632] =>.Oracle Corporation
[MD5.D181C3EC418B36FD41F61937E31C66A1] [WIS][2017/10/22 11:11:01] (.Oracle Corporation - Java Auto Updater.) -- C:\WINDOWS\Installer\8dfaa.msi [761856] =>.Oracle Corporation
[MD5.1504667BA3C10D841C0B76B6412FAFB5] [WIS][2015/04/17 16:55:47] (.Adobe Systems Incorporated.) -- C:\WINDOWS\Installer\aa28f1.msi [2805760] =>.Adobe Systems Incorporated
[MD5.A666B14C461CC7207C0C9B3D0D2D28F3] [WIS][2017/11/14 20:56:16] (.Adobe Systems Incorporated - Adobe ARM Installer.) -- C:\WINDOWS\Installer\afa7b3.msi [880128] =>.Adobe Systems Incorporated
[MD5.DAC27B9BB70C3280E1594160432ACB39] [WIS][2017/04/07 17:38:38] (.Kaspersky Lab - Kaspersky Anti-Virus.) -- C:\WINDOWS\Installer\c1ae4.msi [5197824] =>.Kaspersky Lab
[MD5.29B6480A687380A22661567B4A8D43DC] [WIS][2015/04/17 16:55:48] (.Sony Ericsson - [ProductName].) -- C:\WINDOWS\Installer\d89ded.msi [2560512] =>.Sony Ericsson
---\\ Recherche de clés de registre Tracing (1) - 1s
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\tencentdl_RASAPI32 =>.SUP.Tencent
---\\ Scan Additionnel (19) - 1s
C:\ProgramData\Tencent =>.SUP.Tencent
C:\Program Files (x86)\Common Files\Tencent =>.SUP.Tencent
C:\Users\Omnia\AppData\Roaming\Tencent =>.SUP.Tencent
C:\Users\Omnia\AppData\Local\MSfree Inc =>HackTool.WinActivator
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ANotepad++64 =>.SUP.Orphan
HKLM\Software\Wow6432Node\Classes\CLSID\{B298D29A-A6ED-11DE-BA8C-A68E55D89593} =>.SUP.Orphan
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\MEGA (Context menu) =>.SUP.Orphan
HKLM\Software\Classes\CLSID\{0229E5E7-09E9-45CF-9228-0228EC7D5F17} =>.SUP.Orphan
HKLM\Software\Wow6432Node\Classes\CLSID\{0229E5E7-09E9-45CF-9228-0228EC7D5F17} =>.SUP.Orphan
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\WinRAR32 =>.SUP.Orphan
HKLM\Software\Classes\CLSID\{B41DB860-8EE4-11D2-9906-E49FADC173CA} =>.SUP.Orphan
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\MEGA (Context menu) =>.SUP.Orphan
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\MEGA (Context menu) =>.SUP.Orphan
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\MSSE =>.SUP.Orphan
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\PowerISO =>.SUP.Orphan
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\Gadgets =>.SUP.Orphan
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\PowerISO =>.SUP.Orphan
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\WinRAR32 =>.SUP.Orphan
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\tencentdl_RASAPI32 =>.SUP.Tencent
---\\ Récapitulatif des éléments trouvés sur votre station (5) - 0s
https://nicolascoolman.eu/2017/09/12/origine-lignes-orphelines/ =>.SUP.Orphan
https://nicolascoolman.eu/2017/02/06/superfluous-conduit/ =>.SUP.Conduit
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>PUP.Optional.AlexaTB
https://nicolascoolman.eu/2017/02/23/tencentadressbar/ =>.SUP.Tencent
https://nicolascoolman.eu/2017/01/13/hacktool-winactivator/ =>HackTool.WinActivator
~ Unselected Options: O82,
~ End of the scan, 30735 items in 07mn27s (1349)(0)