cjoint

Publicité

Cliquez pour partager vos propres fichiers

Publicité

Format du document : text/plain

Prévisualisation

~ ZHPDiag v2017.12.27.221 Par Nicolas Coolman (2017/12/27)
~ Démarré par olivier (Administrator) (2018/01/01 14:22:40)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Certificate ZHPDiag: Legal
~ Etat de la version: Version KO
~ Mode: Scanner
~ Rapport: C:\Users\olivier\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\olivier\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Démarrage du système: Normal (Normal boot)
Windows 10 Home, 64-bit (Build 15063) =>.Microsoft Corporation

---\\ Navigateurs Internet (4) - 0s
~ GCIE: Google Chrome v63.0.3239.84
~ MFIE: Mozilla Thunderbird 52.5.2 (x86 fr)
~ MSIE: Microsoft Edge v40
~ MSIE: Internet Explorer v11.786.15063.0

---\\ Informations sur les produits Windows (8) - 0s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
~ Windows(R) Operating System, OEM_DM channel
Windows ID Activation : OK
~ Windows Partial Key : KD7X3
Windows License : OK
~ Windows Remaining Initializations Number : 998
Windows Automatic Updates : OK

---\\ Logiciels de protection (2) - 2s
Malwarebytes Anti-Malware version 2.2.1.1043 (Protection)
Windows Defender (Deactivate)

---\\ Logiciels d'optimisation (1) - 3s
~ CCleaner v5.23 (Optimize)

---\\ Surveillance de Logiciels (2) - 3s
~ Adobe Flash Player 22 NPAPI (Surveillance)
~ Adobe Acrobat Reader DC - Français (Surveillance)

---\\ Informations sur le système (6) - 0s
~ Operating System: Intel64 Family 6 Model 78 Stepping 3, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 16637.876 MB (86% free) : OK =>.RAM Value
System Restore: Activé (Enable)
System drive C: has 317 GB (74%) free of 428 GB : OK =>.Disk Space

---\\ Mode de connexion au système (3) - 0s
~ Computer Name: LE-GRITCHE
~ User Name: olivier
~ Logged in as Administrator

---\\ Enumération des unités disques (6) - 0s
~ Drive A: has 472 GB free of 1192 GB
~ Drive B: has 130 GB free of 269 GB
~ Drive C: has 317 GB free of 428 GB (System)
~ Drive D: has 1 GB free of 15 GB
~ Drive H: has 638 GB free of 3815 GB
~ Drive Z: has 0 GB free of 0 GB

---\\ Etat du Centre de Sécurité Windows (7) - 0s
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM64\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK

---\\ Recherche particulière de fichiers génériques (25) - 1s
[MD5.01078D46C77CE0D7DC584A29062A799D] - 30/09/2017 - (.Microsoft Corporation - Explorateur Windows.) -- C:\WINDOWS\Explorer.exe [4848952] =>.Microsoft Windows®
[MD5.ECB702B8C5650381C0784F1EEABB97BC] - 18/03/2017 - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\WINDOWS\System32\rundll32.exe [68608] =>.Microsoft Corporation
[MD5.0242626678C83AE788C655C1990A3CC3] - 14/09/2017 - (.Microsoft Corporation - Application de démarrage de Windows.) -- C:\WINDOWS\System32\Wininit.exe [318232] =>.Microsoft Windows Publisher®
[MD5.1F2AEA6F11EFDE2CD2C382E15279F806] - 30/11/2017 - (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\WINDOWS\System32\wininet.dll [3306496] =>.Microsoft Corporation
[MD5.9CDA170849A4F66F4D68B3DBB3AC8394] - 14/09/2017 - (.Microsoft Corporation - Application d’ouverture de session Windows.) -- C:\WINDOWS\System32\Winlogon.exe [706560] =>.Microsoft Corporation
[MD5.50CDF68A8EA8A2A9165CD573FA6C42D8] - 18/03/2017 - (.Microsoft Corporation - Bibliothèque de licences.) -- C:\WINDOWS\System32\sppcomapi.dll [414208] =>.Microsoft Corporation
[MD5.6AFA66A457759C1FEC29A52612A67043] - 30/09/2017 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\WINDOWS\System32\dnsapi.dll [661224] =>.Microsoft Windows®
[MD5.1F4909406532C2FFCBD3683A65F7198F] - 30/09/2017 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\WINDOWS\Syswow64\dnsapi.dll [508344] =>.Microsoft Windows®
[MD5.70E14A01193D817004C0F88E767BC59B] - 19/03/2017 - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) -- C:\WINDOWS\System32\fr-FR\user32.dll.mui [19968] =>.Microsoft Corporation
[MD5.5A6D591D56791BA63CE73FCAD60D89A1] - 14/09/2017 - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) -- C:\WINDOWS\System32\drivers\AFD.sys [610720] =>.Microsoft Windows®
[MD5.01733BEEE02E51F712330D5909BD701C] - 18/03/2017 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\WINDOWS\System32\drivers\atapi.sys [29088] =>.Microsoft Windows®
[MD5.B6E5AD7C83A5254DEE9D86023C0E5A81] - 18/03/2017 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\WINDOWS\System32\drivers\Cdfs.sys [93184] =>.Microsoft Corporation
[MD5.ABE77AD954BC3D72F559CF0C381E50BC] - 18/03/2017 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\WINDOWS\System32\drivers\Cdrom.sys [160256] =>.Microsoft Corporation
[MD5.185A4519B7764F4DEF714D890A7A9FD2] - 18/03/2017 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\WINDOWS\System32\drivers\DfsC.sys [150528] =>.Microsoft Corporation
[MD5.02B9639D9997E95CDF2F4C4F3BDCC73D] - 11/07/2017 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\WINDOWS\System32\drivers\HDAudBus.sys [86528] =>.Microsoft Corporation
[MD5.C6C8315E3262FAE460529C6DA2951682] - 18/03/2017 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\WINDOWS\System32\drivers\i8042prt.sys [115200] =>.Microsoft Corporation
[MD5.DCC05E5EAA580C97F13B434FAFACED85] - 18/03/2017 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\System32\drivers\IpNat.sys [214528] =>.Microsoft Corporation
[MD5.F2AD1B72C5A6475FB5FF332E1980DF88] - 18/03/2017 - (.Microsoft Corporation - Minirdr SMB Windows NT.) -- C:\WINDOWS\System32\drivers\MRxSmb.sys [467352] =>.Microsoft Windows®
[MD5.BAD3C424788BC071C3EC82CFCDA954D2] - 14/09/2017 - (.Microsoft Corporation - MBT Transport driver.) -- C:\WINDOWS\System32\drivers\netBT.sys [305152] =>.Microsoft Corporation
[MD5.4FB781DF7C0ED6B989F465A7886583F1] - 02/11/2017 - (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\WINDOWS\System32\drivers\ntfs.sys [2327448] =>.Microsoft Windows®
[MD5.2CC6C325B271C7CA60F374F8F868CB45] - 18/03/2017 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\WINDOWS\System32\drivers\Parport.sys [97792] =>.Microsoft Corporation
[MD5.5279EC98F6218D29EADDFECCC0D80E9A] - 18/03/2017 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [107008] =>.Microsoft Corporation
[MD5.53A01D3FDB701AC5D9DDE4140227E3D9] - 20/03/2017 - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RD.) -- C:\WINDOWS\System32\drivers\rdpdr.sys [183296] =>.Microsoft Corporation
[MD5.D74756DD1518D28A09CDA99696273FA4] - 14/09/2017 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\WINDOWS\System32\drivers\tdx.sys [119712] =>.Microsoft Windows®
[MD5.E3429DBBEA3965BB96E24B16EF4A2551] - 18/03/2017 - (.Microsoft Corporation - Volume Shadow Copy driver.) -- C:\WINDOWS\System32\drivers\volsnap.sys [397216] =>.Microsoft Windows®

---\\ Liste des services NT non Microsoft et non désactivés (23) - 3s
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated®
O23 - Service: Intel® SGX AESM (AESMService) . (.Intel Corporation - Intel® SGX Application Enclave Services Man.) - c:\Program Files\Intel\IntelSGXPSW\bin\x64\Release\aesm_service.exe =>.Intel(R) Corporation®
O23 - Service: Adobe Genuine Software Integrity Service (AGSService) . (.Adobe Systems, Incorporated - Adobe Genuine Software Integrity Service.) - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe =>.Adobe Systems Incorporated®
O23 - Service: Apple Mobile Device Service (Apple Mobile Device Service) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe =>.Apple Inc.®
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe =>.Apple Inc.®
O23 - Service: BlueStacks Log Rotator Service (BstHdLogRotatorSvc) . (.BlueStack Systems, Inc. - BlueStacks Log Rotator Service.) - C:\Program Files (x86)\Bluestacks\HD-LogRotatorService.exe =>.BlueStack Systems, Inc.®
O23 - Service: BTDevManager (BTDevManager) . (.Realtek Semiconductor Corp. - Realtek Bluetooth BTDevManager Service Appl.) - C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTDevMgr.exe =>.Realtek Semiconductor Corp®
O23 - Service: Intel(R) Content Protection HDCP Service (cplspcon) . (.Intel Corporation - Intel HD Graphics Drivers for Windows(R).) - C:\Windows\System32\DriverStore\FileRepository\ki124994.inf_amd64_4d880b3eb8bd7056\IntelCpHDCPSvc.exe =>.Intel(R) pGFX®
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
O23 - Service: HP Comm Recovery (HP Comm Recover) . (.HP Inc. - CommRecovery.) - C:\Program Files\HPCommRecovery\HPCommRecovery.exe =>.HP Inc.
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) . (.HP Inc. - HP Support Solutions Framework Service.) - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe =>.HP Inc.®
O23 - Service: HP Touchpoint Analytics (HPTouchpointAnalyticsService) . (.HP Inc. - HP Touchpoint Analytics Client Service.) - C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe =>.HP Inc.®
O23 - Service: HPWMISVC (HPWMISVC) . (.HP Inc. - HP WMI Service.) - c:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe =>.Hewlett-Packard Company®
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) . (.Intel Corporation - igfxCUIService Module.) - C:\Windows\System32\DriverStore\FileRepository\ki124994.inf_amd64_4d880b3eb8bd7056\igfxCUIService.exe =>.Intel(R) pGFX®
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) . (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe =>.Intel(R) Embedded Subsystems and IP Blocks Group®
O23 - Service: NitroPDFDriverCreatorReadSpool10 (NitroDriverReadSpool10) . (.Nitro PDF Software - Nitro PDF Spool Service.) - C:\Program Files\Nitro\Pro 10\NitroPDFDriverService10x64.exe =>.Nitro Software, Inc.®
O23 - Service: NitroUpdateService (NitroUpdateService) . (...) - C:\Program Files\Nitro\Pro 10\Nitro_UpdateService.exe =>.Nitro Software, Inc.®
O23 - Service: Cyberlink RichVideo64 Service(CRVS) (RichVideo64) . (.Copyright 2004 - RichVideo Module.) - C:\Program Files\CyberLink\Shared files\RichVideo64.exe =>.CyberLink Corp.®
O23 - Service: Realtek Audio Service (RtkAudioService) . (.Realtek Semiconductor - Realtek Audio Service.) - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe =>.Realtek Semiconductor Corp.®
O23 - Service: Realtek Bluetooth Device Manager Service (RtkBtManServ) . (.Realtek Semiconductor Corp. - Realtek Bluetooth Device Manager Service Ap.) - C:\Windows\RtkBtManServ.exe =>.Realtek Semiconductor Corp.®
O23 - Service: Service KMSELDI (Service KMSELDI) . (.@ByELDI - Service_KMS.) - C:\Program Files\KMSpico\Service_KMS.exe =>HackTool.KMSpico
O23 - Service: TabletServiceWacom (TabletServiceWacom) . (.Wacom Technology, Corp. - Tablet Service for professional driver.) - C:\windows\system32\Wacom_Tablet.exe =>.Wacom Technology, Corp.
O23 - Service: WindscribeService (WindscribeService) . (.Windscribe Limited - Windscribe service.) - C:\Program Files (x86)\Windscribe\WindscribeService.exe =>.Windscribe Limited®

---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (32) - 13s
SR - Auto [27/09/2017] [ 83984] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated®
SR - Auto [30/09/2015] [ 3715208] Intel® SGX AESM (AESMService) . (.Intel Corporation.) - c:\Program Files\Intel\IntelSGXPSW\bin\x64\Release\aesm_service.exe =>.Intel(R) Corporation®
SR - Auto [23/08/2017] [ 2257016] Adobe Genuine Software Integrity Service (AGSService) . (.Adobe Systems, Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe =>.Adobe Systems Incorporated®
SR - Auto [03/04/2017] [ 83768] Apple Mobile Device Service (Apple Mobile Device Service) . (.Apple Inc..) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe =>.Apple Inc.®
SR - Auto [12/08/2015] [ 462096] Service Bonjour (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe =>.Apple Inc.®
SS - Demand [21/09/2016] [ 445976] BlueStacks Android Service (BstHdAndroidSvc) . (.BlueStack Systems, Inc..) - C:\Program Files (x86)\Bluestacks\HD-Service.exe =>.BlueStack Systems, Inc.®
SR - Auto [21/09/2016] [ 425496] BlueStacks Log Rotator Service (BstHdLogRotatorSvc) . (.BlueStack Systems, Inc..) - C:\Program Files (x86)\Bluestacks\HD-LogRotatorService.exe =>.BlueStack Systems, Inc.®
SS - Demand [21/09/2016] [ 466456] BlueStacks Plus Android Service (BstHdPlusAndroidSvc) . (.BlueStack Systems, Inc..) - C:\Program Files (x86)\Bluestacks\HD-Plus-Service.exe =>.BlueStack Systems, Inc.®
SR - Auto [20/09/2016] [ 125656] BTDevManager (BTDevManager) . (.Realtek Semiconductor Corp..) - C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTDevMgr.exe =>.Realtek Semiconductor Corp®
SR - Demand [26/10/2017] [ 397288] Intel(R) Content Protection HECI Service (cphs) . (.Intel Corporation.) - C:\Windows\System32\DriverStore\FileRepository\ki124994.inf_amd64_4d880b3eb8bd7056\IntelCpHeciSvc.exe =>.Intel(R) pGFX®
SR - Auto [26/10/2017] [ 613352] Intel(R) Content Protection HDCP Service (cplspcon) . (.Intel Corporation.) - C:\Windows\System32\DriverStore\FileRepository\ki124994.inf_amd64_4d880b3eb8bd7056\IntelCpHDCPSvc.exe =>.Intel(R) pGFX®
SS - Demand [14/08/2017] [ 2291904] Disc Soft Lite Bus Service (Disc Soft Lite Bus Service) . (.Disc Soft Ltd.) - C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe =>.Disc Soft Ltd®
SS - Auto [31/03/2017] [ 153752] Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SS - Demand [31/03/2017] [ 153752] Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SR - Auto [07/10/2016] [ 1309184] HP Comm Recovery (HP Comm Recover) . (.HP Inc..) - C:\Program Files\HPCommRecovery\HPCommRecovery.exe =>.HP Inc.
SS - Demand [28/04/2015] [ 1102472] HP Software Framework Service (hpqwmiex) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe =>.Hewlett-Packard Company®
SR - Auto [21/11/2017] [ 332144] HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) . (.HP Inc..) - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe =>.HP Inc.®
SR - Auto [21/11/2017] [ 332216] HP Touchpoint Analytics (HPTouchpointAnalyticsService) . (.HP Inc..) - C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe =>.HP Inc.®
SR - Auto [11/01/2016] [ 606224] HPWMISVC (HPWMISVC) . (.HP Inc..) - c:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe =>.Hewlett-Packard Company®
SR - Auto [26/10/2017] [ 415200] Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) . (.Intel Corporation.) - C:\Windows\System32\DriverStore\FileRepository\ki124994.inf_amd64_4d880b3eb8bd7056\igfxCUIService.exe =>.Intel(R) pGFX®
SR - Demand [13/10/2016] [ 630048] Intel(R) Capability Licensing Service TCP IP Interface (Intel(R) Capability Licensing Service TCP IP Interface) . (.Intel(R) Corporation.) - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe =>.Intel(R) Trust Services®
SS - Demand [14/07/2017] [ 689976] Service de l’iPod (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe =>.Apple Inc.®
SR - Auto [15/01/2017] [ 196200] Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe =>.Intel(R) Embedded Subsystems and IP Blocks Group®
SS - Demand [28/12/2017] [ 175056] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe =>.Mozilla Corporation®
SR - Auto [06/05/2015] [ 324760] NitroPDFDriverCreatorReadSpool10 (NitroDriverReadSpool10) . (.Nitro PDF Software.) - C:\Program Files\Nitro\Pro 10\NitroPDFDriverService10x64.exe =>.Nitro Software, Inc.®
SR - Auto [06/05/2015] [ 418968] NitroUpdateService (NitroUpdateService) . (...) - C:\Program Files\Nitro\Pro 10\Nitro_UpdateService.exe =>.Nitro Software, Inc.®
SR - Auto [14/04/2014] [ 389896] Cyberlink RichVideo64 Service(CRVS) (RichVideo64) . (.Copyright 2004.) - C:\Program Files\CyberLink\Shared files\RichVideo64.exe =>.CyberLink Corp.®
SR - Auto [03/05/2017] [ 320512] Realtek Audio Service (RtkAudioService) . (.Realtek Semiconductor.) - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe =>.Realtek Semiconductor Corp.®
SR - Auto [24/08/2016] [ 223952] Realtek Bluetooth Device Manager Service (RtkBtManServ) . (.Realtek Semiconductor Corp..) - C:\Windows\RtkBtManServ.exe =>.Realtek Semiconductor Corp.®
SR - Auto [30/11/2015] [ 741056] Service KMSELDI (Service KMSELDI) . (.@ByELDI.) - C:\Program Files\KMSpico\Service_KMS.exe =>HackTool.KMSpico
SR - Auto [24/11/2009] [ 5521192] TabletServiceWacom (TabletServiceWacom) . (.Wacom Technology, Corp..) - C:\windows\system32\Wacom_Tablet.exe =>.Wacom Technology Corp.®
SR - Auto [09/05/2017] [ 71272] WindscribeService (WindscribeService) . (.Windscribe Limited.) - C:\Program Files (x86)\Windscribe\WindscribeService.exe =>.Windscribe Limited®

---\\ Tâches planifiées en automatique (Registre) (14) - 9s
O38 - TASK: {2AEA6F4E-C905-48C2-BC79-8D6550278C21} [64Bits][\bak60117319k60117319] - (.samsara - samsara.) -- C:\Program Files (x86)\pathogenesis\pathogenesis.exe [5632]
O38 - TASK: {34E17EE2-6E7B-442A-887C-9744CDD0A874} [64Bits][\AutoPico Daily Restart] - (.@ByELDI - AutoPico.) -- C:\Program Files\KMSpico\AutoPico.exe [741568] =>HackTool.KMSpico
O38 - TASK: {460A6F2B-A8AA-4EFB-B789-753D92ED49E7} [64Bits][\AdobeAAMUpdater-1.0-DESKTOP-ALTVK2P-olivier] - (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508240] =>.Adobe Systems Incorporated
O38 - TASK: {61295E62-2D6A-47F7-88FC-C1E144DBDBB9} [64Bits][\GoogleUpdateTaskMachineCore] - (.Google Inc. - Programme d'installation de Google.) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752] =>.Google Inc.
O38 - TASK: {77E02E45-1592-4AA4-9A88-A490975D7010} [64Bits][\Adobe Acrobat Update Task] - (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1171480] =>.Adobe Systems Incorporated
O38 - TASK: {870FB872-22B8-4651-8685-DCA686B36B3E} [64Bits][\HPDAS] - (.HP - HP Delivery and Status Service.) -- C:\Program Files\HP\HP ePrint\HP.DeliveryAndStatus.Desktop.App.exe [301832] =>.HP
O38 - TASK: {910A2CA9-B0D7-4E2A-9583-0A1F85000F5B} [64Bits][\ba6585723165857231] - (.Pastor - Pastor.) -- C:\Users\olivier\AppData\Local\pastor.exe [12800]
O38 - TASK: {9BEEA2F0-2A4F-4960-88E9-7A49A629AEAF} [64Bits][\CCleanerSkipUAC] - (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner.exe [6889176] =>.Piriform Ltd
O38 - TASK: {9C89BDE0-F96F-4EA0-ADBA-495431911364} [64Bits][\ba1101924411019244] - (.Pastor - Pastor.) -- C:\Program Files (x86)\Difficult\pastor.exe [12800]
O38 - TASK: {A822181F-3314-4D97-9C70-5484F450596B} [64Bits][\Intel PTT EK Recertification] - (.Intel(R) Corporation - Intel(R)PTT EK Recertification Service.) -- C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [543536] =>.Intel(R) Corporation
O38 - TASK: {AEA3E99C-E3D3-4DC3-B48C-6159415FE247} [64Bits][\ba6011731960117319] - (.Pastor - Pastor.) -- C:\Program Files (x86)\Mondial\pastor.exe [12800]
O38 - TASK: {D2C6988B-AC26-4ACA-94FF-2E6ECA649F42} [64Bits][\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA)] - (.Copyright © HP Development Company - HP Active Health.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [25128] =>.Copyright © HP Development Company
O38 - TASK: {DA1DA0E0-87A6-48CD-A787-BC26F2BC779C} [64Bits][\Apple\AppleSoftwareUpdate] - (.Apple Inc. - Apple Software Update.) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [570240] =>.Apple Inc.
O38 - TASK: {F3E649BF-84E6-4AA8-80F2-43FDD97AF37D} [64Bits][\GoogleUpdateTaskMachineUA] - (.Google Inc. - Programme d'installation de Google.) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752] =>.Google Inc.

---\\ Applications lancées au démarrage du système (48) - 7s
O4 - HKLM\..\Run: [SecurityHealth] . (.Microsoft Corporation - Windows Defender notification icon.) -- C:\Program Files\Windows Defender\MSASCuiL.exe =>.Microsoft Windows®
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe =>.Realtek Semiconductor Corp.®
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe =>.Adobe Systems Incorporated®
O4 - HKLM\..\Run: [BtServer] . (.Realtek Semiconductor Corporation - Realtek Bluetooth BTServer Application.) -- C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTServer.exe =>.Realtek Semiconductor Corp®
O4 - HKLM\..\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe =>.Apple Inc.®
O4 - HKLM\..\Run: [splain] . (.Pastor - Pastor.) -- C:\Program Files (x86)\Difficult\pastor.exe
O4 - HKLM\..\Run: [splainlistserv] . (.Byrne - Byrne.) -- C:\Program Files (x86)\ishibashi\byrne.exe
O4 - HKLM\..\Run: [splainsplain] . (.Pastor - Pastor.) -- C:\Program Files (x86)\Mondial\pastor.exe
O4 - HKCU\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\olivier\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - HKCU\..\Run: [OpenDNS Updater] . (...) -- C:\Program Files (x86)\OpenDNS Updater\OpenDNSUpdater.exe
O4 - HKCU\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Ltd®
O4 - HKCU\..\Run: [BlueStacks Agent] . (.BlueStack Systems, Inc. - BlueStacks Agent.) -- C:\Program Files (x86)\Bluestacks\HD-Agent.exe =>.BlueStack Systems, Inc.®
O4 - HKCU\..\Run: [f.lux] . (.f.lux Software LLC - f.lux.) -- C:\Users\olivier\AppData\Local\FluxSoftware\Flux\flux.exe =>.F.lux Software LLC®
O4 - HKCU\..\Run: [Windscribe] . (.Windscribe Limited - Windscribe client.) -- C:\Program Files (x86)\Windscribe\Windscribe.exe =>.Windscribe Limited®
O4 - HKCU\..\Run: [Chromium] . (. - .) -- c:\users\olivier\appdata\local\chromium\application\chrome.exe (.Not File.) =>.SUP.Orphan
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] . (.Disc Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files\DAEMON Tools Lite\DTAgent.exe =>.Disc Soft Ltd®
O4 - HKCU\..\Run: [decontaminated] . (.Pastor - Pastor.) -- C:\Program Files (x86)\Difficult\pastor.exe
O4 - HKCU\..\Run: [decontaminatedpanamanian] . (.Byrne - Byrne.) -- C:\Program Files (x86)\ishibashi\byrne.exe
O4 - HKCU\..\Run: [decontaminateddecontaminated] . (.Pastor - Pastor.) -- C:\Program Files (x86)\Mondial\pastor.exe
O4 - HKCU\..\Run: [listserv] . (.Pastor - Pastor.) -- C:\Program Files (x86)\Difficult\pastor.exe
O4 - HKCU\..\Run: [listservsplain] . (.Byrne - Byrne.) -- C:\Program Files (x86)\ishibashi\byrne.exe
O4 - HKCU\..\Run: [listservlistserv] . (.Pastor - Pastor.) -- C:\Program Files (x86)\Mondial\pastor.exe
O4 - HKCU\..\Run: [americium] . (.Copyright (C) 2017 - americium.) -- C:\Program Files (x86)\epigenetic\americium.exe
O4 - HKCU\..\Run: [kenilworth] . (.Pastor - Pastor.) -- C:\Program Files (x86)\Difficult\pastor.exe
O4 - HKLM\..\Wow6432Node\Run: [HPMessageService] . (.HP Inc. - HP Message Service.) -- C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe =>.Hewlett-Packard Company®
O4 - HKLM\..\Wow6432Node\Run: [EaseUS Cleanup] . (.CHENGDU Yiwo Tech Development Co., Ltd. - CleanUpUI Application.) -- C:\Program Files (x86)\EaseUS\EaseUS Partition Master 11.9\bin\CleanUpUI.exe =>.CHENGDU YIWO Tech Development Co., Ltd.®
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe =>.Oracle America, Inc.®
O4 - HKLM\..\Wow6432Node\Run: [panamanian] . (.Pastor - Pastor.) -- C:\Program Files (x86)\Difficult\pastor.exe
O4 - HKLM\..\Wow6432Node\Run: [panamaniandecontaminated] . (.Byrne - Byrne.) -- C:\Program Files (x86)\ishibashi\byrne.exe
O4 - HKLM\..\Wow6432Node\Run: [panamanianpanamanian] . (.Pastor - Pastor.) -- C:\Program Files (x86)\Mondial\pastor.exe
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Windows®
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Windows®
O4 - HKUS\S-1-5-21-401115250-1694573117-2655383603-1001\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\olivier\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - HKUS\S-1-5-21-401115250-1694573117-2655383603-1001\..\Run: [OpenDNS Updater] . (...) -- C:\Program Files (x86)\OpenDNS Updater\OpenDNSUpdater.exe
O4 - HKUS\S-1-5-21-401115250-1694573117-2655383603-1001\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Ltd®
O4 - HKUS\S-1-5-21-401115250-1694573117-2655383603-1001\..\Run: [BlueStacks Agent] . (.BlueStack Systems, Inc. - BlueStacks Agent.) -- C:\Program Files (x86)\Bluestacks\HD-Agent.exe =>.BlueStack Systems, Inc.®
O4 - HKUS\S-1-5-21-401115250-1694573117-2655383603-1001\..\Run: [f.lux] . (.f.lux Software LLC - f.lux.) -- C:\Users\olivier\AppData\Local\FluxSoftware\Flux\flux.exe =>.F.lux Software LLC®
O4 - HKUS\S-1-5-21-401115250-1694573117-2655383603-1001\..\Run: [Windscribe] . (.Windscribe Limited - Windscribe client.) -- C:\Program Files (x86)\Windscribe\Windscribe.exe =>.Windscribe Limited®
O4 - HKUS\S-1-5-21-401115250-1694573117-2655383603-1001\..\Run: [Chromium] . (. - .) -- c:\users\olivier\appdata\local\chromium\application\chrome.exe (.Not File.) =>.SUP.Orphan
O4 - HKUS\S-1-5-21-401115250-1694573117-2655383603-1001\..\Run: [DAEMON Tools Lite Automount] . (.Disc Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files\DAEMON Tools Lite\DTAgent.exe =>.Disc Soft Ltd®
O4 - HKUS\S-1-5-21-401115250-1694573117-2655383603-1001\..\Run: [decontaminated] . (.Pastor - Pastor.) -- C:\Program Files (x86)\Difficult\pastor.exe
O4 - HKUS\S-1-5-21-401115250-1694573117-2655383603-1001\..\Run: [decontaminatedpanamanian] . (.Byrne - Byrne.) -- C:\Program Files (x86)\ishibashi\byrne.exe
O4 - HKUS\S-1-5-21-401115250-1694573117-2655383603-1001\..\Run: [decontaminateddecontaminated] . (.Pastor - Pastor.) -- C:\Program Files (x86)\Mondial\pastor.exe
O4 - HKUS\S-1-5-21-401115250-1694573117-2655383603-1001\..\Run: [listserv] . (.Pastor - Pastor.) -- C:\Program Files (x86)\Difficult\pastor.exe
O4 - HKUS\S-1-5-21-401115250-1694573117-2655383603-1001\..\Run: [listservsplain] . (.Byrne - Byrne.) -- C:\Program Files (x86)\ishibashi\byrne.exe
O4 - HKUS\S-1-5-21-401115250-1694573117-2655383603-1001\..\Run: [listservlistserv] . (.Pastor - Pastor.) -- C:\Program Files (x86)\Mondial\pastor.exe
O4 - HKUS\S-1-5-21-401115250-1694573117-2655383603-1001\..\Run: [americium] . (.Copyright (C) 2017 - americium.) -- C:\Program Files (x86)\epigenetic\americium.exe
O4 - HKUS\S-1-5-21-401115250-1694573117-2655383603-1001\..\Run: [kenilworth] . (.Pastor - Pastor.) -- C:\Program Files (x86)\Difficult\pastor.exe

---\\ Processus lancés (35) - 7s
[MD5.C41FBCD9CAD43ABE5B14A43054C5EE34] - (.Intel Corporation - igfxCUIService Module.) -- C:\Windows\System32\DriverStore\FileRepository\ki124994.inf_amd64_4d880b3eb8bd7056\igfxCUIService.exe [415200] [PID.1780] =>.Intel(R) pGFX®
[MD5.23910F17EF2B4F2DC6C4C813710065C5] - (.Realtek Semiconductor - Realtek Audio Service.) -- C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [320512] [PID.2304] =>.Realtek Semiconductor Corp.®
[MD5.9C38DBD01D2982FDEFA1CEA058B7A523] - (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1483264] [PID.2752] =>.Realtek Semiconductor Corp.®
[MD5.B5C2F92EE1106DFE7BB1CCE4D35B6037] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe [462096] [PID.2928] =>.Apple Inc.®
[MD5.AEE4EFE6B42133EB03BB0DA017713FE2] - (.Realtek Semiconductor Corp. - Realtek Bluetooth Device Manager Service Ap.) -- C:\Windows\RtkBtManServ.exe [223952] [PID.316] =>.Realtek Semiconductor Corp.®
[MD5.FE578072CB584B65E8160AB4CE9141DC] - (.@ByELDI - Service_KMS.) -- C:\Program Files\KMSpico\Service_KMS.exe [741056] [PID.2992] =>HackTool.KMSpico
[MD5.A6DF138E66DA14BBDFDB60C81E687A4E] - (...) -- c:\program files\Nitro\Pro 10\nitro_updateservice.exe [418968] [PID.3076] =>.Nitro Software, Inc.®
[MD5.91D3BCA53A7E6CC61AE81F8EB556D885] - (.Nitro PDF Software - Nitro PDF Spool Service.) -- c:\program files\Nitro\Pro 10\nitropdfdriverservice10x64.exe [324760] [PID.3084] =>.Nitro Software, Inc.®
[MD5.0677F5ECD4F801403C428BBAE1286379] - (.Adobe Systems, Incorporated - Adobe Genuine Software Integrity Service.) -- C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2257016] [PID.3092] =>.Adobe Systems Incorporated®
[MD5.99267CFA00F6FD971BBF4B01BB5DFA1F] - (.Realtek Semiconductor Corp. - Realtek Bluetooth BTDevManager Service Appl.) -- C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTDevMgr.exe [125656] [PID.3100] =>.Realtek Semiconductor Corp®
[MD5.7DEFAE8665BCEDDC2C9983138D69D7A5] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768] [PID.3116] =>.Apple Inc.®
[MD5.45DA0C44DD2AB1B0FDEFD5DB39295CA9] - (.Windscribe Limited - Windscribe service.) -- C:\Program Files (x86)\Windscribe\WindscribeService.exe [71272] [PID.3184] =>.Windscribe Limited®
[MD5.F8DEE8AB2BA40147E470BA0A0D0580E4] - (.Intel Corporation - Intel HD Graphics Drivers for Windows(R).) -- C:\Windows\System32\DriverStore\FileRepository\ki124994.inf_amd64_4d880b3eb8bd7056\IntelCpHDCPSvc.exe [613352] [PID.3192] =>.Intel(R) pGFX®
[MD5.00000000000000000000000000000000] - (.Wacom Technology, Corp. - Tablet Service for professional driver.) -- C:\windows\system32\Wacom_Tablet.exe [0] [PID.3200] =>.Wacom Technology, Corp.
[MD5.6F41340970DE2036B4A7598316312CC9] - (.Intel Corporation - IntelCpHeciSvc Executable.) -- C:\Windows\System32\DriverStore\FileRepository\ki124994.inf_amd64_4d880b3eb8bd7056\IntelCpHeciSvc.exe [397288] [PID.4008] =>.Intel(R) pGFX®
[MD5.00000000000000000000000000000000] - (.Wacom Technology, Corp. - Tablet user module for professional driver.) -- C:\windows\system32\WTablet\Wacom_TabletUser.exe [0] [PID.6636] =>.Wacom Technology, Corp.
[MD5.00000000000000000000000000000000] - (.Wacom Technology, Corp. - Tablet Service for professional driver.) -- C:\windows\system32\Wacom_Tablet.exe [0] [PID.6720] =>.Wacom Technology, Corp.
[MD5.B8B5C4B873519AB579772A11C82314ED] - (.Intel Corporation - igfxEM Module.) -- C:\Windows\System32\DriverStore\FileRepository\ki124994.inf_amd64_4d880b3eb8bd7056\igfxEM.exe [567784] [PID.4200] =>.Intel(R) pGFX®
[MD5.B42C26F211B24D4A51C6DD93F6D2AF9A] - (.Realtek Semiconductor Corporation - Realtek Bluetooth BTServer Application.) -- C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTServer.exe [231640] [PID.6048] =>.Realtek Semiconductor Corp®
[MD5.05EF78B9E274D3B190C18C34361D4024] - (.f.lux Software LLC - f.lux.) -- C:\Users\olivier\AppData\Local\FluxSoftware\Flux\flux.exe [1678840] [PID.8292] =>.F.lux Software LLC®
[MD5.74E6EAF885CBDA748B7992F891EAA642] - (.Copyright (C) 2017 - americium.) -- C:\Program Files (x86)\epigenetic\americium.exe [73599] [PID.8952]
[MD5.653C6BD5054188AFD98D36D3DB7F2706] - (.Byrne - Byrne.) -- C:\Program Files (x86)\ishibashi\byrne.exe [12288] [PID.8444]
[MD5.38622FFE9369D3EC01C0097235BD9279] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [83984] [PID.8864] =>.Adobe Systems, Incorporated®
[MD5.424D7ED0B63E37D1DDEA5B3D1C17F0F0] - (.Intel Corporation - Intel® SGX Application Enclave Services Man.) -- c:\Program Files\Intel\IntelSGXPSW\bin\x64\Release\aesm_service.exe [3715208] [PID.9352] =>.Intel(R) Corporation®
[MD5.DDC44DAFAEFCD2B02681603E50760BB8] - (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [196200] [PID.9980] =>.Intel(R) Embedded Subsystems and IP Blocks Group®
[MD5.65E8444FAD22676870471596BF6EA001] - (.BlueStack Systems, Inc. - BlueStacks Log Rotator Service.) -- C:\Program Files (x86)\Bluestacks\HD-LogRotatorService.exe [425496] [PID.9488] =>.BlueStack Systems, Inc.®
[MD5.CB0B993C2C6CFC658645A39F072D0B83] - (.Intel(R) Corporation - Intel(R) Capability Licensing Service TCP I.) -- C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [630048] [PID.9720] =>.Intel(R) Trust Services®
[MD5.8002A736D30BACEDB23AD7A3B96A0BC3] - (.HP Inc. - CommRecovery.) -- C:\Program Files\HPCommRecovery\HPCommRecovery.exe [1309184] [PID.8772] =>.HP Inc.
[MD5.517DF0B5228DBA34D8A81DE3B14F5EBA] - (.HP Inc. - HP Support Solutions Framework Service.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [332144] [PID.10172] =>.HP Inc.®
[MD5.A518BED1AD3F1D777AB5E29417C7A851] - (.HP Inc. - HP Touchpoint Analytics Client Service.) -- C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe [332216] [PID.1572] =>.HP Inc.®
[MD5.7109608928D8AB470D60F47BAD5D153A] - (.HP Inc. - HP WMI Service.) -- c:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [606224] [PID.3664] =>.Hewlett-Packard Company®
[MD5.9E18DF158751CF968E7DF83256D70233] - (.Copyright 2004 - RichVideo Module.) -- C:\Program Files\CyberLink\Shared files\RichVideo64.exe [389896] [PID.5564] =>.CyberLink Corp.®
[MD5.D264B48FFBA00CDDE25687A4A188BBEA] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\olivier\AppData\Roaming\ZHP\ZHPDiag3.exe [2956160] [PID.4644] =>.Nicolas Coolman
[MD5.770E680A3FFE6ECFC01AF9876C88F31B] - (.Pastor - Pastor.) -- C:\Users\olivier\AppData\Local\pastor.exe [12800] [PID.8100]
[MD5.770E680A3FFE6ECFC01AF9876C88F31B] - (.Pastor - Pastor.) -- C:\Program Files (x86)\Difficult\pastor.exe [12800] [PID.7692]

---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (1) - 0s
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_22_0_0_209.dll =>.Adobe Systems Incorporated

---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (9) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank =>.Microsoft Corporation
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = www.google.com =>.Google Inc.
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://hp15-comm.msn.com/ =>.Microsoft Corporation
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = www.google.com =>.Google Inc.
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = www.google.com =>.Google Inc.
R1 - HKEY_USERS\S-1-5-21-401115250-1694573117-2655383603-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = www.google.com =>.Google Inc.
R3 - URLSearchHook: (no name)[HKCU] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (11.00.15063.608 (WinBuild.160101.0800)) -- C:\Windows\System32\ieframe.dll =>.Microsoft Corporation

---\\ Internet Explorer,Proxy Management (5) - 1s
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKLM\SYSTEM\CurrentControlSet\services\NlaSvc\Parameters\Internet\ManualProxies [] =>.Microsoft

---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: VMApplet=

---\\ Etude du fichier hosts (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (33)

---\\ Browser Helper Object de navigateur (BHO) (5) - 0s
O2 - BHO: Lync Click to Call BHO [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} . (.Microsoft Corporation - Skype for Business.) -- C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll =>.Microsoft Corporation®
O2 - BHO: Trend Micro Toolbar BHO [64Bits] - {43C6D902-A1C5-45c9-91F6-FD9E90337E18} (.Orphan.)
O2 - BHO: Plug-in de filtre réseau Trend Micro [64Bits] - {959A5673-7971-48e6-AF54-58F745AC4ABC} . (...) -- C:\Program Files\Trend Micro\AMSP\module\20013\5.0.1403\2.7.1088\TmopIEPlg.dll (.not file.)
O2 - BHO: Protection IE Trend Micro [64Bits] - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} . (...) -- C:\Program Files\Trend Micro\AMSP\module\20002\9.2.1026\9.2.1026\TmBpIe64.dll (.not file.)
O2 - BHO: Microsoft OneDrive for Business Browser Helper [64Bits] - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} . (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL =>.Microsoft Corporation®

---\\ Internet Explorer, Barre d'outil (1) - 0s
O3 - Toolbar: Trend Micro Toolbar - [HKLM]{CCAC5586-44D7-4c43-B64A-F042461A97D2} . (...) -- C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll (.not file.)

---\\ Raccourcis Global Startup (151) - 28s
O4 - GS\Desktop [Administrateur]: -- DOCS --.lnk . (...) C:\Users\olivier\Documents\-- DOCS --
O4 - GS\Desktop [Administrateur]: -- EZ950 - Raccourci.lnk . (...) A:\-- EZ950
O4 - GS\Desktop [Administrateur]: Another Metroid 2R.lnk . (...) A:\-- DL Chrome\am2r-another-metroid-2-remake-1-1\AM2R.exe
O4 - GS\Desktop [Administrateur]: BlueStacks.lnk . (.BlueStack Systems, Inc. - BlueStacks App Player.) C:\Program Files (x86)\Bluestacks\Bluestacks.exe =>.BlueStack Systems, Inc.
O4 - GS\Desktop [Administrateur]: CONSOLES.lnk . (...) B:\-- [CONSOLES ] --
O4 - GS\Desktop [Administrateur]: DL Chrome.lnk . (...) A:\-- DL Chrome
O4 - GS\Desktop [Administrateur]: DL jdownloader2.lnk . (...) A:\-- 0. JDOWNLOADER2
O4 - GS\Desktop [Administrateur]: DS4Windows.exe - Raccourci.lnk . (.Copyright © Scarlet.Crush Productions 2012, 2013; Inh - DS4Windows.) C:\Program Files (x86)\DS4\DS4Windows.exe
O4 - GS\Desktop [Administrateur]: eac3to_more_guitrueHD to AC3.lnk . (...) A:\-- DL Chrome\eac3to\yr_eac3to_more_gui.exe
O4 - GS\Desktop [Administrateur]: Etcher.lnk . (.Resin Inc. - Etcher.) C:\Users\olivier\AppData\Local\Programs\etcher\Etcher.exe =>.Resin Inc.®
O4 - GS\Desktop [Administrateur]: Impactor.exe - Raccourci.lnk . (...) B:\-- [IPAD JAILBREAK ]\cydia impactor\Impactor.exe
O4 - GS\Desktop [Administrateur]: OBS Studio (64bit).lnk . (...) C:\Program Files (x86)\obs-studio\bin\64bit\obs64.exe =>.Open Source Developer, Hugh Bailey®
O4 - GS\Desktop [Administrateur]: Popcorn MKV Audio Converter.lnk . (...) A:\-- EZ950\AudioConverter.EXE
O4 - GS\Desktop [Administrateur]: The Escapists 2.lnk . (...) A:\Games\The Escapists 2\TheEscapists2.exe
O4 - GS\Desktop [Administrateur]: TUTO capture ecran new 3DS - Raccourci.lnk . (...) B:\-- [CONSOLES ] --\-- 3DS\-- TUTO capture ecran new 3DS
O4 - GS\Desktop [Administrateur]: ZHPCleaner.lnk . (.Nicolas Coolman - ZHPCleaner.) C:\Users\olivier\AppData\Roaming\ZHP\ZHPCleaner.exe =>.Nicolas Coolman
O4 - GS\Desktop [Administrateur]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\olivier\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Administrateur]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Administrateur]: JDownloader 2.lnk . (.AppWork GmbH - JDownloader 2 Launcher.) C:\Users\olivier\AppData\Local\JDownloader 2.0\JDownloader2.exe =>.Appwork GmbH®
O4 - GS\Quicklaunch [Administrateur]: Microsoft Outlook.lnk . (.Microsoft Corporation - Microsoft Outlook.) C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE /recycle =>.Microsoft Corporation®
O4 - GS\sendTo [Administrateur]: Destinataire de télécopie.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Administrateur]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\WINDOWS\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Administrateur]: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Administrateur]: Adobe Premiere Pro CC 2015.lnk . (.Adobe Systems Incorporated - Adobe Premiere Pro CC 2015.0.) C:\Program Files\Adobe\Adobe Premiere Pro CC 2015\Adobe Premiere Pro.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [Administrateur]: BlueStacks.lnk . (.BlueStack Systems, Inc. - BlueStacks App Player.) C:\Program Files (x86)\Bluestacks\Bluestacks.exe =>.BlueStack Systems, Inc.
O4 - GS\TaskBar [Administrateur]: Excel 2016.lnk . (.Microsoft Corporation - Microsoft Excel.) C:\Program Files (x86)\Microsoft Office\root\Office16\EXCEL.EXE =>.Microsoft Corporation®
O4 - GS\TaskBar [Administrateur]: Fiddler 4.lnk . (.Telerik - Fiddler.) C:\Users\olivier\AppData\Local\Programs\Fiddler\Fiddler.exe =>.TELERIK AD®
O4 - GS\TaskBar [Administrateur]: filezilla - Raccourci.lnk . (.FileZilla Project - .) C:\Program Files (x86)\FileZilla FTP Client\filezilla.exe =>.FileZilla Project
O4 - GS\TaskBar [Administrateur]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [Administrateur]: HP DeskJet 3630 series.lnk . (.HP Inc. - .) C:\Program Files (x86)\HP\HP DeskJet 3630 series\Bin\HP DeskJet 3630 series.exe -Start UDCDevicePage =>.HP Inc.
O4 - GS\TaskBar [Administrateur]: iTunes.lnk . (.Apple Inc. - .) C:\Program Files (x86)\iTunes\iTunes.exe =>.Apple Inc.
O4 - GS\TaskBar [Administrateur]: JDownloader 2.lnk . (.AppWork GmbH - JDownloader 2 Launcher.) C:\Users\olivier\AppData\Local\JDownloader 2.0\JDownloader2.exe =>.Appwork GmbH®
O4 - GS\TaskBar [Administrateur]: Mozilla Thunderbird.lnk . (.Mozilla Corporation - Thunderbird.) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [Administrateur]: Nitro Pro 10.lnk . (.Nitro PDF - .) C:\Program Files (x86)\Nitro\Pro 10\NitroPDF.exe =>.Nitro PDF
O4 - GS\TaskBar [Administrateur]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) C:\WINDOWS\system32\notepad.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Administrateur]: OBS Studio.lnk . (...) C:\Program Files (x86)\obs-studio\bin\32bit\obs32.exe =>.Open Source Developer, Hugh Bailey®
O4 - GS\TaskBar [Administrateur]: Paint.lnk . (.Microsoft Corporation - Paint.) C:\WINDOWS\system32\mspaint.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Administrateur]: Photoshop CC 2015.lnk . (.Adobe Systems, Incorporated - .) C:\Program Files (x86)\Adobe\Adobe Photoshop CC 2015\Photoshop.exe =>.Adobe Systems, Incorporated
O4 - GS\TaskBar [Administrateur]: Windows Firewall with Advanced Security.lnk . (...) C:\WINDOWS\system32\WF.msc
O4 - GS\TaskBar [Administrateur]: Word 2016.lnk . (.Microsoft Corporation - Microsoft Word.) C:\Program Files (x86)\Microsoft Office\root\Office16\WINWORD.EXE =>.Microsoft Corporation®
O4 - GS\Startup [Administrateur]: reportedly.lnk . (.Pastor - Pastor.) C:\Program Files (x86)\Difficult\pastor.exe
O4 - GS\Startup [Administrateur]: reportedlyreportedly.lnk . (.Byrne - Byrne.) C:\Program Files (x86)\ishibashi\byrne.exe
O4 - GS\Programs [Administrateur]: Etcher.lnk . (.Resin Inc. - Etcher.) C:\Users\olivier\AppData\Local\Programs\etcher\Etcher.exe =>.Resin Inc.®
O4 - GS\Programs [Administrateur]: f.lux.lnk . (.f.lux Software LLC - f.lux.) C:\Users\olivier\AppData\Local\FluxSoftware\Flux\flux.exe =>.F.lux Software LLC®
O4 - GS\Programs [Administrateur]: Fiddler 4.lnk . (.Telerik - Fiddler.) C:\Users\olivier\AppData\Local\Programs\Fiddler\Fiddler.exe =>.TELERIK AD®
O4 - GS\Programs [Administrateur]: Fiddler ScriptEditor.lnk . (.Telerik - FiddlerScriptEditor.) C:\Users\olivier\AppData\Local\Programs\Fiddler\ScriptEditor\FSE2.exe =>.TELERIK AD®
O4 - GS\Programs [Administrateur]: MediaInfo.lnk . (.MediaArea.net - MediaInfo.) C:\Program Files\MediaInfo\MediaInfo.exe =>.MediaArea.net®
O4 - GS\Programs [Administrateur]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\olivier\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - GS\Programs [Administrateur]: OpenDNS Updater.lnk . (...) C:\Program Files (x86)\OpenDNS Updater\OpenDNSUpdater.exe
O4 - GS\Desktop [olivier]: -- DOCS --.lnk . (...) C:\Users\olivier\Documents\-- DOCS --
O4 - GS\Desktop [olivier]: -- EZ950 - Raccourci.lnk . (...) A:\-- EZ950
O4 - GS\Desktop [olivier]: Another Metroid 2R.lnk . (...) A:\-- DL Chrome\am2r-another-metroid-2-remake-1-1\AM2R.exe
O4 - GS\Desktop [olivier]: BlueStacks.lnk . (.BlueStack Systems, Inc. - BlueStacks App Player.) C:\Program Files (x86)\Bluestacks\Bluestacks.exe =>.BlueStack Systems, Inc.
O4 - GS\Desktop [olivier]: CONSOLES.lnk . (...) B:\-- [CONSOLES ] --
O4 - GS\Desktop [olivier]: DL Chrome.lnk . (...) A:\-- DL Chrome
O4 - GS\Desktop [olivier]: DL jdownloader2.lnk . (...) A:\-- 0. JDOWNLOADER2
O4 - GS\Desktop [olivier]: DS4Windows.exe - Raccourci.lnk . (.Copyright © Scarlet.Crush Productions 2012, 2013; Inh - DS4Windows.) C:\Program Files (x86)\DS4\DS4Windows.exe
O4 - GS\Desktop [olivier]: eac3to_more_guitrueHD to AC3.lnk . (...) A:\-- DL Chrome\eac3to\yr_eac3to_more_gui.exe
O4 - GS\Desktop [olivier]: Etcher.lnk . (.Resin Inc. - Etcher.) C:\Users\olivier\AppData\Local\Programs\etcher\Etcher.exe =>.Resin Inc.®
O4 - GS\Desktop [olivier]: Impactor.exe - Raccourci.lnk . (...) B:\-- [IPAD JAILBREAK ]\cydia impactor\Impactor.exe
O4 - GS\Desktop [olivier]: OBS Studio (64bit).lnk . (...) C:\Program Files (x86)\obs-studio\bin\64bit\obs64.exe =>.Open Source Developer, Hugh Bailey®
O4 - GS\Desktop [olivier]: Popcorn MKV Audio Converter.lnk . (...) A:\-- EZ950\AudioConverter.EXE
O4 - GS\Desktop [olivier]: The Escapists 2.lnk . (...) A:\Games\The Escapists 2\TheEscapists2.exe
O4 - GS\Desktop [olivier]: TUTO capture ecran new 3DS - Raccourci.lnk . (...) B:\-- [CONSOLES ] --\-- 3DS\-- TUTO capture ecran new 3DS
O4 - GS\Desktop [olivier]: ZHPCleaner.lnk . (.Nicolas Coolman - ZHPCleaner.) C:\Users\olivier\AppData\Roaming\ZHP\ZHPCleaner.exe =>.Nicolas Coolman
O4 - GS\Desktop [olivier]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\olivier\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [olivier]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [olivier]: JDownloader 2.lnk . (.AppWork GmbH - JDownloader 2 Launcher.) C:\Users\olivier\AppData\Local\JDownloader 2.0\JDownloader2.exe =>.Appwork GmbH®
O4 - GS\Quicklaunch [olivier]: Microsoft Outlook.lnk . (.Microsoft Corporation - Microsoft Outlook.) C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE /recycle =>.Microsoft Corporation®
O4 - GS\sendTo [olivier]: Destinataire de télécopie.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [olivier]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\WINDOWS\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [olivier]: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation
O4 - GS\TaskBar [olivier]: Adobe Premiere Pro CC 2015.lnk . (.Adobe Systems Incorporated - Adobe Premiere Pro CC 2015.0.) C:\Program Files\Adobe\Adobe Premiere Pro CC 2015\Adobe Premiere Pro.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [olivier]: BlueStacks.lnk . (.BlueStack Systems, Inc. - BlueStacks App Player.) C:\Program Files (x86)\Bluestacks\Bluestacks.exe =>.BlueStack Systems, Inc.
O4 - GS\TaskBar [olivier]: Excel 2016.lnk . (.Microsoft Corporation - Microsoft Excel.) C:\Program Files (x86)\Microsoft Office\root\Office16\EXCEL.EXE =>.Microsoft Corporation®
O4 - GS\TaskBar [olivier]: Fiddler 4.lnk . (.Telerik - Fiddler.) C:\Users\olivier\AppData\Local\Programs\Fiddler\Fiddler.exe =>.TELERIK AD®
O4 - GS\TaskBar [olivier]: filezilla - Raccourci.lnk . (.FileZilla Project - .) C:\Program Files (x86)\FileZilla FTP Client\filezilla.exe =>.FileZilla Project
O4 - GS\TaskBar [olivier]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [olivier]: HP DeskJet 3630 series.lnk . (.HP Inc. - .) C:\Program Files (x86)\HP\HP DeskJet 3630 series\Bin\HP DeskJet 3630 series.exe -Start UDCDevicePage =>.HP Inc.
O4 - GS\TaskBar [olivier]: iTunes.lnk . (.Apple Inc. - .) C:\Program Files (x86)\iTunes\iTunes.exe =>.Apple Inc.
O4 - GS\TaskBar [olivier]: JDownloader 2.lnk . (.AppWork GmbH - JDownloader 2 Launcher.) C:\Users\olivier\AppData\Local\JDownloader 2.0\JDownloader2.exe =>.Appwork GmbH®
O4 - GS\TaskBar [olivier]: Mozilla Thunderbird.lnk . (.Mozilla Corporation - Thunderbird.) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [olivier]: Nitro Pro 10.lnk . (.Nitro PDF - .) C:\Program Files (x86)\Nitro\Pro 10\NitroPDF.exe =>.Nitro PDF
O4 - GS\TaskBar [olivier]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) C:\WINDOWS\system32\notepad.exe =>.Microsoft Corporation
O4 - GS\TaskBar [olivier]: OBS Studio.lnk . (...) C:\Program Files (x86)\obs-studio\bin\32bit\obs32.exe =>.Open Source Developer, Hugh Bailey®
O4 - GS\TaskBar [olivier]: Paint.lnk . (.Microsoft Corporation - Paint.) C:\WINDOWS\system32\mspaint.exe =>.Microsoft Corporation
O4 - GS\TaskBar [olivier]: Photoshop CC 2015.lnk . (.Adobe Systems, Incorporated - .) C:\Program Files (x86)\Adobe\Adobe Photoshop CC 2015\Photoshop.exe =>.Adobe Systems, Incorporated
O4 - GS\TaskBar [olivier]: Windows Firewall with Advanced Security.lnk . (...) C:\WINDOWS\system32\WF.msc
O4 - GS\TaskBar [olivier]: Word 2016.lnk . (.Microsoft Corporation - Microsoft Word.) C:\Program Files (x86)\Microsoft Office\root\Office16\WINWORD.EXE =>.Microsoft Corporation®
O4 - GS\Startup [olivier]: reportedly.lnk . (.Pastor - Pastor.) C:\Program Files (x86)\Difficult\pastor.exe
O4 - GS\Startup [olivier]: reportedlyreportedly.lnk . (.Byrne - Byrne.) C:\Program Files (x86)\ishibashi\byrne.exe
O4 - GS\Programs [olivier]: Etcher.lnk . (.Resin Inc. - Etcher.) C:\Users\olivier\AppData\Local\Programs\etcher\Etcher.exe =>.Resin Inc.®
O4 - GS\Programs [olivier]: f.lux.lnk . (.f.lux Software LLC - f.lux.) C:\Users\olivier\AppData\Local\FluxSoftware\Flux\flux.exe =>.F.lux Software LLC®
O4 - GS\Programs [olivier]: Fiddler 4.lnk . (.Telerik - Fiddler.) C:\Users\olivier\AppData\Local\Programs\Fiddler\Fiddler.exe =>.TELERIK AD®
O4 - GS\Programs [olivier]: Fiddler ScriptEditor.lnk . (.Telerik - FiddlerScriptEditor.) C:\Users\olivier\AppData\Local\Programs\Fiddler\ScriptEditor\FSE2.exe =>.TELERIK AD®
O4 - GS\Programs [olivier]: MediaInfo.lnk . (.MediaArea.net - MediaInfo.) C:\Program Files\MediaInfo\MediaInfo.exe =>.MediaArea.net®
O4 - GS\Programs [olivier]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\olivier\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - GS\Programs [olivier]: OpenDNS Updater.lnk . (...) C:\Program Files (x86)\OpenDNS Updater\OpenDNSUpdater.exe
O4 - GS\CommonDesktop [Public]: Cuphead.lnk . (...) A:\Cuphead\Cuphead.exe
O4 - GS\CommonDesktop [Public]: Total War - WARHAMMER II.lnk . (.The Creative Assembly Ltd - Total War: WARHAMMER 2.) A:\Total War - WARHAMMER II\Warhammer2.exe =>.The Creative Assembly Ltd
O4 - GS\CommonDesktop [Public]: Win32DiskImager.lnk . (.Copyright (C) 2009-2017 Windows ImageWriter Team - DiskImager.) C:\Program Files (x86)\ImageWriter\Win32DiskImager.exe
O4 - GS\Programs [Public]: Etcher.lnk . (.Resin Inc. - Etcher.) C:\Users\olivier\AppData\Local\Programs\etcher\Etcher.exe =>.Resin Inc.®
O4 - GS\Programs [Public]: f.lux.lnk . (.f.lux Software LLC - f.lux.) C:\Users\olivier\AppData\Local\FluxSoftware\Flux\flux.exe =>.F.lux Software LLC®
O4 - GS\Programs [Public]: Fiddler 4.lnk . (.Telerik - Fiddler.) C:\Users\olivier\AppData\Local\Programs\Fiddler\Fiddler.exe =>.TELERIK AD®
O4 - GS\Programs [Public]: Fiddler ScriptEditor.lnk . (.Telerik - FiddlerScriptEditor.) C:\Users\olivier\AppData\Local\Programs\Fiddler\ScriptEditor\FSE2.exe =>.TELERIK AD®
O4 - GS\Programs [Public]: MediaInfo.lnk . (.MediaArea.net - MediaInfo.) C:\Program Files\MediaInfo\MediaInfo.exe =>.MediaArea.net®
O4 - GS\Programs [Public]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\olivier\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - GS\Programs [Public]: OpenDNS Updater.lnk . (...) C:\Program Files (x86)\OpenDNS Updater\OpenDNSUpdater.exe
O4 - GS\Accessories [Public]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) C:\WINDOWS\system32\notepad.exe =>.Microsoft Corporation
O4 - GS\Startup [Public]: Assistant du gestionnaire de contenu pour PlayStation(R).lnk . (.Sony Computer Entertainment Inc. - Content Manager Assistant.) C:\Program Files (x86)\Sony\Content Manager Assistant\CMA.exe =>.Sony Computer Entertainment Inc.®
O4 - GS\Accessories [Public]: Math Input Panel.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\mip.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.) C:\WINDOWS\system32\mspaint.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Quick Assist.lnk . (.Microsoft Corporation - Quick Assist.) C:\WINDOWS\system32\quickassist.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Connexion Bureau à distance.) C:\WINDOWS\system32\mstsc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - Outil Capture d’écran.) C:\WINDOWS\system32\SnippingTool.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Steps Recorder.lnk . (.Microsoft Corporation - Enregistreur d’actions.) C:\WINDOWS\system32\psr.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Fax and Scan.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\WINDOWS\system32\WFS.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Application Windows Wordpad.) C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: XPS Viewer.lnk . (.Microsoft Corporation - Visionneuse XPS.) C:\WINDOWS\system32\xpsrchvw.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Table des caractères.) C:\WINDOWS\system32\charmap.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Access 2016.lnk . (.Microsoft Corporation - Microsoft Access.) C:\Program Files (x86)\Microsoft Office\root\Office16\MSACCESS.EXE =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: Acrobat Reader DC.lnk . (.Flexera Software LLC - InstallShield.) C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}\SC_Reader.ico =>.Flexera Software LLC
O4 - GS\ProgramsCommon [Public]: Acrobat Reader DC.lnk . (.Flexera Software LLC - InstallShield.) C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}\SC_Reader.ico =>.Flexera Software LLC
O4 - GS\ProgramsCommon [Public]: Adobe Application Manager.lnk . (.Adobe Systems Incorporated - Adobe Application Manager.) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\core\PDapp.exe --appletID=CCM_UI --appletVersion=1.0 --workflow=CCM_workflow_launch =>.Adobe Systems Incorporated®
O4 - GS\ProgramsCommon [Public]: Adobe Photoshop CC 2015.lnk . (.Adobe Systems, Incorporated - .) C:\Program Files (x86)\Adobe\Adobe Photoshop CC 2015\Photoshop.exe =>.Adobe Systems, Incorporated
O4 - GS\ProgramsCommon [Public]: Adobe Premiere Pro CC 2015.lnk . (.Adobe Systems Incorporated - Adobe Premiere Pro CC 2015.0.) C:\Program Files\Adobe\Adobe Premiere Pro CC 2015\Adobe Premiere Pro.exe =>.Adobe Systems Incorporated®
O4 - GS\ProgramsCommon [Public]: Apple Software Update.lnk . (...) C:\WINDOWS\Installer\{52D87F32-70E4-4348-8148-C0B9F35B1314}\AppleSoftwareUpdateIco.exe =>.Apple Inc.
O4 - GS\ProgramsCommon [Public]: Assistant du gestionnaire de contenu pour PlayStation(R).lnk . (.Sony Computer Entertainment Inc. - Content Manager Assistant.) C:\Program Files (x86)\Sony\Content Manager Assistant\CMA.exe =>.Sony Computer Entertainment Inc.®
O4 - GS\ProgramsCommon [Public]: Assistant Mise à jour de Windows 10.lnk . (.Microsoft Corporation - Assistant Mise à jour de Windows 10.) C:\Windows10Upgrade\Windows10UpgraderApp.exe =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: Assistant Mise à niveau de Windows 10.lnk . (.Microsoft Corporation - Assistant Mise à jour de Windows 10.) C:\Windows10Upgrade\Windows10UpgraderApp.exe =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: Audacity.lnk . (.The Audacity Team - Audacity®, the Free, Cross-Platform Sound E.) C:\Program Files (x86)\Audacity\audacity.exe =>.The Audacity Team
O4 - GS\ProgramsCommon [Public]: CyberLink Power Media Player 14.lnk . (.CyberLink Corp. - CyberLink Power Media Player.) C:\Program Files (x86)\Cyberlink\PowerDVD14\PDVDLP.exe =>.CyberLink Corp.®
O4 - GS\ProgramsCommon [Public]: CyberLink PowerDirector.lnk . (.CyberLink Corp. - .) C:\Program Files (x86)\CyberLink\PowerDirector12\PowerDirector_video_editing.exe =>.CyberLink Corp.
O4 - GS\ProgramsCommon [Public]: DTS Audio Control.lnk . (.Microsoft Corporation - Processus hôte Windows (Rundll32).) C:\Windows\System32\rundll32.exe shell32.dll,Control_RunDLL RTSnMg64.cpl,, =>..Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Excel 2016.lnk . (.Microsoft Corporation - Microsoft Excel.) C:\Program Files (x86)\Microsoft Office\root\Office16\EXCEL.EXE =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\ProgramsCommon [Public]: HP Smart Friend.lnk . (.Copyright (C) 2015 - .) C:\Program Files (x86)\HP\Shared\WizLocaleLink.exe C:\HP\HPQWare\HPSmartFriend_URL\WizLocaleLink_DT.ini
O4 - GS\ProgramsCommon [Public]: Immersive Control Panel.lnk . (.Microsoft Corporation - Windows Control Panel.) C:\WINDOWS\System32\Control.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: MiracastView.lnk . (.Microsoft Corporation - MiracastView.) C:\WINDOWS\MiracastView\MiracastView.exe =>.Microsoft Windows®
O4 - GS\ProgramsCommon [Public]: Mozilla Thunderbird.lnk . (.Mozilla Corporation - Thunderbird.) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe =>.Mozilla Corporation®
O4 - GS\ProgramsCommon [Public]: Nitro Pro 10.lnk . (.Nitro PDF - .) C:\Program Files (x86)\Nitro\Pro 10\NitroPDF.exe =>.Nitro PDF
O4 - GS\ProgramsCommon [Public]: OneDrive for Business.lnk . (.Microsoft Corporation - Microsoft OneDrive for Business.) C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVE.EXE =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: OneNote 2016.lnk . (.Microsoft Corporation - Microsoft OneNote.) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTE.EXE =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: Outlook 2016.lnk . (.Microsoft Corporation - Microsoft Outlook.) C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: PowerPoint 2016.lnk . (.Microsoft Corporation - Microsoft PowerPoint.) C:\Program Files (x86)\Microsoft Office\root\Office16\POWERPNT.EXE =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: PrintDialog.lnk . (.Microsoft Corporation - Print Dialog.) C:\WINDOWS\PrintDialog\PrintDialog.exe =>.Microsoft Windows®
O4 - GS\ProgramsCommon [Public]: Publisher 2016.lnk . (.Microsoft Corporation - Microsoft Publisher.) C:\Program Files (x86)\Microsoft Office\root\Office16\MSPUB.EXE =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: Skype for Business 2016.lnk . (.Microsoft Corporation - Skype for Business.) C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Word 2016.lnk . (.Microsoft Corporation - Microsoft Word.) C:\Program Files (x86)\Microsoft Office\root\Office16\WINWORD.EXE =>.Microsoft Corporation®

---\\ Modification Domaine/Adresses DNS (6) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{e6f93d53-17e3-47ce-b86f-acc6da685e2a}: NameServer = 188.120.239.115,8.8.8.8 =>.France Google Cloud
O17 - HKLM\System\CCS\Services\Tcpip\..\{1b91091a-3019-429b-a074-dfe9eed9f4aa}: DhcpNameServer = 10.111.166.1 =>.Private IP (10.0.0.0 - 10.255.255.255) =>.Private IP
O17 - HKLM\System\CCS\Services\Tcpip\..\{bffb412c-8b5d-4d16-8cbd-fba7cc8a249b}: DhcpNameServer = 192.168.43.1 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{df09d8ae-dd69-470f-af0c-e4e6070db738}: DhcpNameServer = 192.168.1.1 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{e6f93d53-17e3-47ce-b86f-acc6da685e2a}: DhcpNameServer = 212.27.40.241 212.27.40.240 =>.France 9 Telecom, Free

---\\ Protocole additionnel (25) - 1s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll =>.Microsoft Corporation
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\System32\tbauth.dll =>.Microsoft Corporation
O18 - Handler: tmbp [64Bits] - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} . (...) -- C:\Program Files\Trend Micro\AMSP\module\20002\9.2.1026\9.2.1026\TmBpIe64.dll (.not file.)
O18 - Handler: tmop [64Bits] - {69FD7CE3-4604-4fe6-967C-49B9735CEE70} . (...) -- C:\Program Files\Trend Micro\AMSP\module\20013\5.0.1403\2.7.1088\TmopIEPlg.dll (.not file.)
O18 - Handler: tmtbim [64Bits] - {0B37915C-8B98-4B9E-80D4-464D2C830D10} . (...) -- C:\Program Files\Trend Micro\Titanium\plugin\ToolbarIE64\ProToolbarIMRatingActiveX.dll (.not file.)
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: windows.tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\System32\tbauth.dll =>.Microsoft Corporation
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation

---\\ Logiciels installés (149) - 44s
O42 - Logiciel: 7-Zip 17.01 beta (x64) - (.Igor Pavlov.) [HKLM][64Bits] -- 7-Zip =>.Igor Pavlov
O42 - Logiciel: ActivInspire Core Resources (FRA) v1 - (.Promethean.) [HKLM][64Bits] -- {8FB93FB4-F181-402F-8C83-1166B3C65AF5} =>.Promethean
O42 - Logiciel: ActivInspire Help (FRA) v1 - (.Promethean.) [HKLM][64Bits] -- {BDFA0080-EFE5-4520-BAD8-9B8D9486B819} =>.Promethean
O42 - Logiciel: ActivInspire v2 - (.Promethean.) [HKLM][64Bits] -- {7327AE03-C66E-410B-AD29-A7AA991FB3B4} =>.Promethean
O42 - Logiciel: Adobe Acrobat Reader DC - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AC0F074E4100} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Flash Player 22 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Photoshop CC 2015 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {793C2BF7-A4FE-4608-91C9-9282C5801C21} =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Premiere Pro CC 2015 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {38C72D42-0672-43B1-9E05-E7631684F9A1} =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001824245926} =>.Adobe Systems Incorporated
O42 - Logiciel: Apple Application Support (32 bits) - (.Apple Inc..) [HKLM][64Bits] -- {D2FE6376-E549-4F63-A2C5-CA24DA035DE4} =>.Apple Inc.
O42 - Logiciel: Apple Application Support (64 bits) - (.Apple Inc..) [HKLM][64Bits] -- {BB109E24-EE90-485B-A28B-ADDEFB40540B} =>.Apple Inc.
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM][64Bits] -- {0A596141-97D5-45FA-9281-98DFAF48D579} =>.Apple Inc.
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {52D87F32-70E4-4348-8148-C0B9F35B1314} =>.Apple Inc.
O42 - Logiciel: Assistant du gestionnaire de contenu pour PlayStation(R) - (.Sony Computer Entertainment Inc..) [HKLM][64Bits] -- {E5C1C342-5E78-4D91-85BE-40C716B09391} =>.Sony Computer Entertainment Inc.
O42 - Logiciel: Audacity 2.1.2 - (.Audacity Team.) [HKLM][64Bits] -- Audacity®_is1 =>.Audacity Team
O42 - Logiciel: Bigasoft Total Video Converter 3.7.24.4700 - (.Bigasoft Corporation.) [HKLM][64Bits] -- {a72ce741-1f32-4d79-bffb-a714375c678d}_is1 =>.Bigasoft Corporation
O42 - Logiciel: BlueStacks App Player - (.BlueStack Systems, Inc..) [HKLM][64Bits] -- BlueStacks =>.BlueStack Systems, Inc.®
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {56DDDFB8-7F79-4480-89D5-25E1F52AB28F} =>.Apple Inc.
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner =>.Piriform Ltd®
O42 - Logiciel: CrystalDiskInfo 7.0.3 - (.Crystal Dew World.) [HKLM][64Bits] -- CrystalDiskInfo_is1 =>.Crystal Dew World
O42 - Logiciel: Cuphead - (.GOG.com.) [HKLM][64Bits] -- 1963513391_is1 =>.GOG Limited®
O42 - Logiciel: CyberLink Power Media Player 14 - (.CyberLink Corp..) [HKLM][64Bits] -- {32C8E300-BDB4-4398-92C2-E9B7D8A233DB} =>.CyberLink Corp.
O42 - Logiciel: CyberLink PowerDirector 12 - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{E1646825-D391-42A0-93AA-27FA810DA093} =>.CyberLink Corp.®
O42 - Logiciel: CyberLink PowerDirector 12 - (.CyberLink Corporation.) [HKLM][64Bits] -- {E1646825-D391-42A0-93AA-27FA810DA093} =>.CyberLink Corp.®
O42 - Logiciel: DAEMON Tools Lite - (.Disc Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Lite =>.Disc Soft Ltd®
O42 - Logiciel: dBpoweramp DSP Effects - (.Illustrate.) [HKLM][64Bits] -- dBpoweramp DSP Effects =>.Illustrate
O42 - Logiciel: dBpoweramp Music Converter - (.Illustrate.) [HKLM][64Bits] -- dBpoweramp Music Converter =>.Illustrate
O42 - Logiciel: dBpoweramp Ogg Vorbis Codec - (.Illustrate.) [HKLM][64Bits] -- dBpoweramp Ogg Vorbis Codec =>.Illustrate
O42 - Logiciel: Defraggler - (.Piriform.) [HKLM][64Bits] -- Defraggler =>.Piriform Ltd®
O42 - Logiciel: devkitProUpdater 1.6.0 - (.devkitPro.) [HKLM][64Bits] -- devkitProUpdater
O42 - Logiciel: Directory List & Print (Pro) - (.Infonautics GmbH, Switzerland.) [HKLM][64Bits] -- {6336F23D-1D20-4E02-9FBD-20B3A8210E4D}_is1 {008DB9783746216599A76440BE0518ED6D} =>.Infonautics GmbH, Switzerland
O42 - Logiciel: DisableMSDefender - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {74FE39A0-FB76-47CD-84BA-91E2BBB17EF2} =>.Hewlett-Packard Company
O42 - Logiciel: EaseUS Data Recovery Wizard - (.EaseUS.) [HKLM][64Bits] -- EaseUS Data Recovery Wizard_is1 =>.CHENGDU YIWO Tech Development Co., Ltd.®
O42 - Logiciel: EaseUS Partition Master 11.9 Trial Edition - (.EaseUS.) [HKLM][64Bits] -- EaseUS Partition Master Trial Edition_is1 =>.EaseUS
O42 - Logiciel: EaseUS Todo PCTrans 9.0 - (.EaseUS.) [HKLM][64Bits] -- EaseUS Todo PCTrans_is1 =>.EaseUS
O42 - Logiciel: Energy Star - (.HP Inc..) [HKLM][64Bits] -- {5CB22648-35F8-41BC-9C35-1E41FE6E12A5} =>.HP Inc.
O42 - Logiciel: Etcher 1.2.0 (only current user) - (.Resin Inc..) [HKCU][64Bits] -- 573339af-d9e1-5dd3-804c-e0162fac1f41 =>.Resin Inc.®
O42 - Logiciel: Étude pour l'amélioration du produit HP DeskJet 3630 series - (.HP Inc..) [HKLM][64Bits] -- {4910A376-4195-4596-AE16-21C232279D2B} =>.HP Inc.
O42 - Logiciel: Expert PDF 8 Professional - (.Avanquest software.) [HKLM][64Bits] -- {FC279721-37A6-4777-AFD8-7A56681EBA14} =>.AVANQUEST SOFTWARE®
O42 - Logiciel: f.lux - (.f.lux Software LLC.) [HKCU][64Bits] -- Flux =>.f.lux Software LLC
O42 - Logiciel: FileZilla Client 3.28.0 - (.Tim Kosse.) [HKCU][64Bits] -- FileZilla Client =>.Tim Kosse
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome =>.Google Inc®
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} =>.Google Inc.
O42 - Logiciel: Haali Media Splitter - (.Mike Matsnev.) [HKLM][64Bits] -- HaaliMkx =>.Mike Matsnev
O42 - Logiciel: HP Customer Experience Enhancements - (.Hewlett-Packard.) [HKLM][64Bits] -- {0CC8AE1D-F5AA-4143-8FAD-E017E0E9EE70} =>.Hewlett-Packard
O42 - Logiciel: HP DeskJet 3630 series Aide - (.Hewlett Packard.) [HKLM][64Bits] -- {08F5B0C6-D24D-4327-BA56-F8E00C1A6878} =>.Hewlett Packard
O42 - Logiciel: HP Documentation - (.HP.) [HKLM][64Bits] -- HP_Documentation =>.HP
O42 - Logiciel: HP Dropbox Plugin - (.HP.) [HKLM][64Bits] -- {6401399A-F5DA-4C04-87AA-E8107DF00751} =>.HP
O42 - Logiciel: HP ePrint SW - (.HP.) [HKLM][64Bits] -- {3C246BB4-8985-480D-8163-0E075A23AB04} =>.HP
O42 - Logiciel: HP ePrint SW - (.HP.) [HKLM][64Bits] -- {7855A8A5-0B5B-41A9-AC8B-A50405FB72FE} =>.HP
O42 - Logiciel: HP ePrint SW - (.HP.) [HKLM][64Bits] -- {7ADB025F-BFB1-480B-B3BF-B2FF8F115FB8} =>.HP
O42 - Logiciel: HP ePrint SW - (.HP.) [HKLM][64Bits] -- {88970959-baf7-4864-a39a-69a58e8ae5cf} =>.HP
O42 - Logiciel: HP ePrint SW - (.HP.) [HKLM][64Bits] -- {E2A0A04B-C0A4-49F5-A496-4B93E1D0710D} =>.HP
O42 - Logiciel: HP ePrint SW - (.HP.) [HKLM][64Bits] -- {EFDACC2F-510D-4A1A-A988-196D58B4B915} =>.HP
O42 - Logiciel: HP Google Drive Plugin - (.HP.) [HKLM][64Bits] -- {63BCC696-0FB4-4E9C-8144-2DA4F248FC17} =>.HP
O42 - Logiciel: HP PC Hardware Diagnostics UEFI - (.HP.) [HKLM][64Bits] -- {924D3ABC-FC75-4042-9DDB-FB846A45848D} =>.HP
O42 - Logiciel: HP Photo Creations - (.HP.) [HKLM][64Bits] -- HP Photo Creations =>.Visan Industries®
O42 - Logiciel: HP Recovery Manager - (.HP.) [HKLM][64Bits] -- {64BAA990-F1FC-4145-A7B1-E41FBBC9DA47} =>.HP
O42 - Logiciel: HP Registration Service - (.Hewlett-Packard.) [HKLM][64Bits] -- {D1E8F2D7-7794-4245-B286-87ED86C1893C} =>.Hewlett-Packard
O42 - Logiciel: HP Support Assistant - (.HP.) [HKLM][64Bits] -- {78E2C850-ADA6-420D-BA35-2F4A9BE733CC} =>.HP
O42 - Logiciel: HP Support Solutions Framework - (.HP.) [HKLM][64Bits] -- {C255181E-049B-4B54-A39C-61A94E32C374} =>.HP
O42 - Logiciel: HP Sure Connect - (.HP Inc..) [HKLM][64Bits] -- {6468C4A5-E47E-405F-B675-A70A70983EA6} =>.HP Inc.
O42 - Logiciel: HP System Event Utility - (.HP Inc..) [HKLM][64Bits] -- {09D0DB68-90EA-4015-983E-A0BD777D5A02} =>.HP Inc.
O42 - Logiciel: HP Touchpoint Analytics Client - (.HP Inc..) [HKLM][64Bits] -- {E5FB98E0-0784-44F0-8CEC-95CD4690C43F} =>.HP Inc.®
O42 - Logiciel: HP Welcome - (.HP Inc..) [HKLM][64Bits] -- HPWelcome =>.HP Inc.
O42 - Logiciel: iDisplay 3.1.1 - (.SHAPE.) [HKLM][64Bits] -- iDisplay_is1 {04B31C987C794BB444162E7D84CC2AC5}
O42 - Logiciel: Intel(R) Chipset Device Software - (.Intel Corporation.) [HKLM][64Bits] -- {81520FC5-3518-40E9-9803-70CE8A801D07} =>.Intel Corporation
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {1CEAC85D-2590-4760-800F-8DE5E91F3700} =>.Intel Corporation
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {A5D239C8-2E26-4A95-9540-C453CEA33C4E} =>.Intel Corporation
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {B106E905-078D-44DA-AA87-5B006ECB5F23} =>.Intel Corporation
O42 - Logiciel: Intel(R) ME UninstallLegacy - (.Intel Corporation.) [HKLM][64Bits] -- {5DA16CDD-D865-4D1C-A87D-69ACB40DBF57} =>.Intel Corporation
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA} =>.Intel(R) pGFX®
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {409CB30E-E457-4008-9B1A-ED1B9EA21140} =>.Intel(R) Rapid Storage Technology®
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {EBE12EC7-60DF-41C2-AAC8-0B2586F15C96} =>.Intel Corporation
O42 - Logiciel: Intel® RealSense™ SDK 2014 Runtime (x64): Core - (.Intel Corporation.) [HKLM][64Bits] -- {37D41A97-6B02-4C30-8753-85107BE1D674} =>.Intel Corporation
O42 - Logiciel: Intel® Software Guard Extensions Platform Software - (.Intel Corporation.) [HKLM][64Bits] -- {B9C23BC3-1C33-43EB-8FE9-17137D8AF644} =>.Intel Corporation
O42 - Logiciel: Intel® Trusted Connect Service Client - (.Intel Corporation.) [HKLM][64Bits] -- {F255C3B6-F053-4592-9325-34898BF5EB46} =>.Intel Corporation
O42 - Logiciel: ISO to WBFS - (.isotowbfs.com.) [HKLM][64Bits] -- {10FD06B0-A517-4604-97C2-8D55F9D80F5F}_is1 =>.isotowbfs.com
O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM][64Bits] -- {02F95875-9527-49CC-B32F-970ADAEBD1EF} =>.Apple Inc.
O42 - Logiciel: Java 8 Update 144 - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F32180144F0} =>.Oracle Corporation
O42 - Logiciel: Java Auto Updater - (.Oracle Corporation.) [HKLM][64Bits] -- {4A03706F-666A-4037-7777-5F2748764D10} =>.Oracle Corporation
O42 - Logiciel: JDownloader 2 - (.AppWork GmbH.) [HKLM][64Bits] -- jdownloader2 =>.Appwork GmbH®
O42 - Logiciel: KMSpico - (..) [HKLM][64Bits] -- {8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1 =>HackTool.KMSpico
O42 - Logiciel: Logiciel de base du périphérique HP DeskJet 3630 series - (.HP Inc..) [HKLM][64Bits] -- {7383A117-4920-4E9F-AC48-7C40199A8ADD} =>.HP Inc.
O42 - Logiciel: Logiciel pour périphérique à chipset Intel® - (.Intel(R) Corporation.) [HKLM][64Bits] -- {619e726e-d2b4-4e28-9568-c964fd81ee6c} =>.Intel(R) Corporation
O42 - Logiciel: Logiciel pour périphérique à chipset Intel® - (.Intel(R) Corporation.) [HKLM][64Bits] -- {bb0592a7-5772-4736-9d55-2402740085db} =>.Intel(R) Software and Firmware Products®
O42 - Logiciel: Malwarebytes Anti-Malware version 2.2.1.1043 - (.Malwarebytes.) [HKLM][64Bits] -- Malwarebytes Anti-Malware_is1 =>.Malwarebytes
O42 - Logiciel: MD5 Checksum 1.1 - (.Okaryn.) [HKLM][64Bits] -- MD5 Checksum_is1 =>.Okaryn
O42 - Logiciel: MediaInfo 0.7.99 - (.MediaArea.net.) [HKLM][64Bits] -- MediaInfo =>.MediaArea.net
O42 - Logiciel: Microsoft OneDrive - (.Microsoft Corporation.) [HKCU][64Bits] -- OneDriveSetup.exe =>.Microsoft Corporation®
O42 - Logiciel: Microsoft VC++ redistributables repacked. - (.Intel Corporation.) [HKLM][64Bits] -- {A7C371FF-6F53-423E-AF2F-F96A4F02ED2D} =>.Intel Corporation
O42 - Logiciel: Microsoft VC++ redistributables repacked. - (.Intel Corporation.) [HKLM][64Bits] -- {CD6A45F2-F08C-4164-9D8F-A49C134EF07C} =>.Intel Corporation
O42 - Logiciel: MKVToolNix 19.0.0 (64-bit) - (.Moritz Bunkus.) [HKLM][64Bits] -- MKVToolNix =>.Moritz Bunkus
O42 - Logiciel: MotioninJoy Gamepad tool 0.7.1001 - (.www.motioninjoy.com.) [HKLM][64Bits] -- {330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1 =>.www.motioninjoy.com
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService =>.Mozilla
O42 - Logiciel: Mozilla Thunderbird 52.5.2 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Thunderbird 52.5.2 (x86 fr) =>.Mozilla Corporation®
O42 - Logiciel: Mp3tag v2.78 - (.Florian Heidenreich.) [HKLM][64Bits] -- Mp3tag =>.Florian Heidenreich
O42 - Logiciel: Nitro Pro 10 - (.Nitro.) [HKLM][64Bits] -- {C78478E6-8206-470E-B843-0204995371C6} =>.Nitro
O42 - Logiciel: Notepad++ - (.Notepad++ Team.) [HKLM][64Bits] -- Notepad++ =>.Notepad++ Team
O42 - Logiciel: OBS Studio - (.OBS Project.) [HKLM][64Bits] -- OBS Studio =>.OBS Project
O42 - Logiciel: Office 16 Click-to-Run Extensibility Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-008C-0000-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Office 16 Click-to-Run Licensing Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-008F-0000-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Office 16 Click-to-Run Localization Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-008C-0409-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: OpenDNS Updater 2.2.1 - (..) [HKLM][64Bits] -- OpenDNS Updater
O42 - Logiciel: Outil de téléchargement USB/DVD Windows 7 - (.Microsoft Corporation.) [HKLM][64Bits] -- {5F8683B5-5056-411C-B808-B289E29E9BBB} =>.Microsoft Corporation
O42 - Logiciel: Package de pilotes Windows - Microsoft PS Vita Type B (02/22/2013 6.1.7600. - (.Microsoft.) [HKLM][64Bits] -- A0EC80B5719D4DA4CF40C9219D7CB9CCAD6DBA40 =>.Microsoft Windows®
O42 - Logiciel: Progress Telerik Fiddler - (.Telerik.) [HKCU][64Bits] -- Fiddler2 =>.TELERIK AD®
O42 - Logiciel: Project64 version 2.3.0.210 - (.Project64.) [HKLM][64Bits] -- {BEB5FB69-4080-466F-96C4-F15DF271718B}_is1 =>.Project64
O42 - Logiciel: Python 3.5.2 (32-bit) - (.Python Software Foundation.) [HKCU][64Bits] -- {cf72a2ab-2f1d-49fd-a0d7-1065e6357e1e} =>.Python Software Foundation®
O42 - Logiciel: Python 3.5.2 Add to Path (32-bit) - (.Python Software Foundation.) [HKLM][64Bits] -- {7E08C4EE-B1C7-4138-8227-7CD3837636AA} =>.Python Software Foundation
O42 - Logiciel: Python 3.5.2 Core Interpreter (32-bit) - (.Python Software Foundation.) [HKLM][64Bits] -- {EB0611B2-7F10-4D97-BCF2-DCAAB1199498} =>.Python Software Foundation
O42 - Logiciel: Python 3.5.2 Development Libraries (32-bit) - (.Python Software Foundation.) [HKLM][64Bits] -- {5DB2183B-62D3-407F-BBC1-EAD2F36283FA} =>.Python Software Foundation
O42 - Logiciel: Python 3.5.2 Documentation (32-bit) - (.Python Software Foundation.) [HKLM][64Bits] -- {1FBA5182-78DD-4940-9F06-96E5042B7061} =>.Python Software Foundation
O42 - Logiciel: Python 3.5.2 Executables (32-bit) - (.Python Software Foundation.) [HKLM][64Bits] -- {33B10015-A9B1-4210-B50A-26C6443979B0} =>.Python Software Foundation
O42 - Logiciel: Python 3.5.2 pip Bootstrap (32-bit) - (.Python Software Foundation.) [HKLM][64Bits] -- {9ADF9987-3327-48C6-91B3-B10900366491} =>.Python Software Foundation
O42 - Logiciel: Python 3.5.2 Standard Library (32-bit) - (.Python Software Foundation.) [HKLM][64Bits] -- {FCBB04F4-D2CF-4F55-BE92-B3898696B318} =>.Python Software Foundation
O42 - Logiciel: Python 3.5.2 Tcl/Tk Support (32-bit) - (.Python Software Foundation.) [HKLM][64Bits] -- {C1153533-FDC4-4922-892D-B71810F69566} =>.Python Software Foundation
O42 - Logiciel: Python 3.5.2 Test Suite (32-bit) - (.Python Software Foundation.) [HKLM][64Bits] -- {9D50A6D7-410A-4469-87B7-35FA84CBD479} =>.Python Software Foundation
O42 - Logiciel: Python 3.5.2 Utility Scripts (32-bit) - (.Python Software Foundation.) [HKLM][64Bits] -- {E6DEBF43-7ACF-4E88-9BBF-9B5945683281} =>.Python Software Foundation
O42 - Logiciel: Python Launcher - (.Python Software Foundation.) [HKLM][64Bits] -- {963ECCDD-F09F-4C24-9367-8B5D748AA7C8} =>.Python Software Foundation
O42 - Logiciel: Qcma - (.codestation.) [HKLM][64Bits] -- Qcma =>.codestation
O42 - Logiciel: REALTEK Bluetooth Driver - (.REALTEK Semiconductor Corp..) [HKLM][64Bits] -- {9D3D8C60-A5EF-4123-B2B9-172095903AB} =>.Realtek Semiconductor Corp®
O42 - Logiciel: Realtek Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {5BC2B5AB-80DE-4E83-B8CF-426902051D0A} =>.Realtek Semiconductor Corp.®
O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476} =>.Realtek Semiconductor Corp®
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} =>.Realtek Semiconductor Corp.®
O42 - Logiciel: REALTEK Wireless LAN Driver - (.REALTEK Semiconductor Corp..) [HKLM][64Bits] -- {A5107464-AA9B-4177-8129-5FF2F42DD322} =>.Realtek Semiconductor Corp®
O42 - Logiciel: Recuva - (.Piriform.) [HKLM][64Bits] -- Recuva =>.Piriform Ltd®
O42 - Logiciel: Revo Uninstaller Pro 3.1.6 - (.VS Revo Group, Ltd..) [HKLM][64Bits] -- {67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1 =>.VS Revo Group, Ltd.
O42 - Logiciel: RLinkToolbox 3.3.0.1896 - (.TomTom.) [HKLM][64Bits] -- RLinkToolbox =>.TomTom International BV®
O42 - Logiciel: SixaxisPairTool 0.3.0 - (.Dancing Pixel Studios.) [HKLM][64Bits] -- SixaxisPairTool_is1
O42 - Logiciel: SpeedFan (remove only) - (.Almico Software.) [HKLM][64Bits] -- SpeedFan =>.Almico Software
O42 - Logiciel: Subtitle Edit 3.4.13 - (.Nikse.) [HKLM][64Bits] -- SubtitleEdit_is1 =>.Nikse
O42 - Logiciel: Tablette Wacom - (.Wacom Technology Corp..) [HKLM][64Bits] -- Wacom Tablet Driver =>.Wacom Technology Corp.®
O42 - Logiciel: The Escapists 2 - (..) [HKLM][64Bits] -- The Escapists 2_is1
O42 - Logiciel: Time Adjuster STANDARD 3.1 - (.IrekSoftware.com.) [HKCU][64Bits] -- TimeAdjuster =>.IrekSoftware.com
O42 - Logiciel: Total War - WARHAMMER II version 1.0 - (.STEAMPUNKS.) [HKLM][64Bits] -- Total War - WARHAMMER II_is1
O42 - Logiciel: TreeSize Free V3.4.5 - (.JAM Software.) [HKLM][64Bits] -- TreeSize Free_is1 =>.JAM Software GmbH®
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player =>.VideoLAN
O42 - Logiciel: Vulkan Run Time Libraries 1.0.33.0 - (.LunarG, Inc..) [HKLM][64Bits] -- VulkanRT1.0.33.0 =>.LunarG, Inc.®
O42 - Logiciel: Vulkan Run Time Libraries 1.0.54.1 - (.LunarG, Inc..) [HKLM][64Bits] -- VulkanRT1.0.54.1 =>.LunarG, Inc.®
O42 - Logiciel: WBFS Manager 3.0 - (.AlexDP.) [HKLM][64Bits] -- WBFS Manager 3.0 =>.AlexDP
O42 - Logiciel: Win32DiskImager version 1.0.0 - (.ImageWriter Developers.) [HKLM][64Bits] -- {3DFFA293-DF2C-4B23-92E5-3433BDC310E1}}_is1 =>.ImageWriter Developers
O42 - Logiciel: Winamp - (.Nullsoft, Inc.) [HKLM][64Bits] -- Winamp =>.Nullsoft, Inc
O42 - Logiciel: Windows 10 Update and Privacy Settings - (.Microsoft Corporation.) [HKLM][64Bits] -- {4DFCD818-036A-4229-A67D-CF17DC461D92} =>.Microsoft Corporation
O42 - Logiciel: Windscribe version 1.70 build 4 - (.Windscribe.) [HKLM][64Bits] -- {fa690e90-ddb0-4f0c-b3f1-136c084e5fc7}_is1 =>.Windscribe Limited®
O42 - Logiciel: WinPDFEditor V3.4 - (.http://www.WinPDFEditor.com.) [HKLM][64Bits] -- WinPDFEditor_is1 =>.http://www.WinPDFEditor.com
O42 - Logiciel: WinRAR 4.00 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver =>.win.rar GmbH
O42 - Logiciel: ZedTV version 3.1.37 - (.zedsoft.) [HKLM][64Bits] -- {7B4E06B9-2FA4-4F3E-85C5-1DCF1BA4B999}_is1 =>.ZedSoft
O42 - Logiciel: ZHPFix 2015 - (.Nicolas Coolman.) [HKLM][64Bits] -- ZHPFix_is1 =>.Nicolas Coolman

---\\ HKCU & HKLM Software Keys (224) - 44s
HKLM\SOFTWARE\Activ Software
HKLM\SOFTWARE\Adobe =>.Adobe
HKLM\SOFTWARE\Apple Inc. =>.Apple Inc.
HKLM\SOFTWARE\Avanquest =>.Avanquest
HKLM\SOFTWARE\AviSynth =>.Ben Rudiak-Gold
HKLM\SOFTWARE\Bigasoft =>.Bigasoft Corporation
HKLM\SOFTWARE\BlueStacks =>.BlueStack Systems, Inc.
HKLM\SOFTWARE\Caphyon =>.Caphyon
HKLM\SOFTWARE\CDDB =>.Cddb Software
HKLM\SOFTWARE\CleverFiles =>.CleverFiles
HKLM\SOFTWARE\CodeGear =>.CodeGear
HKLM\SOFTWARE\CyberLink =>.CyberLink Corporation
HKLM\SOFTWARE\DropboxUpdate =>.Dropbox Inc.
HKLM\SOFTWARE\EaseUS =>.EaseUS Software
HKLM\SOFTWARE\Eset =>.ESET
HKLM\SOFTWARE\Faasoft =>.Faasoft
HKLM\SOFTWARE\FileZilla 3 =>.FileZilla
HKLM\SOFTWARE\Florian Heidenreich =>.Florian Heidenreich
HKLM\SOFTWARE\GOG.com =>.GOG.com
HKLM\SOFTWARE\Google =>.Google
HKLM\SOFTWARE\HaaliMkx =>.Haali Media
HKLM\SOFTWARE\Hewlett-Packard =>.Hewlett-Packard
HKLM\SOFTWARE\HP =>.HP
HKLM\SOFTWARE\HP Inc. =>.HP Inc.
HKLM\SOFTWARE\IM Providers =>.IM Providers
HKLM\SOFTWARE\Intel =>.Intel
HKLM\SOFTWARE\JavaSoft =>.JavaSoft
HKLM\SOFTWARE\JreMetrics =>.JreMetrics
HKLM\SOFTWARE\Khronos =>.Khronos
HKLM\SOFTWARE\LogMeIn Rescue =>.LogMeIn Entreprise
HKLM\SOFTWARE\LogMeInRescueCallingCard =>.LogMeIn Entreprise
HKLM\SOFTWARE\LogMeInRescueCallingCards =>.LogMeIn Entreprise
HKLM\SOFTWARE\Macromedia =>.Macromedia
HKLM\SOFTWARE\Malwarebytes' Anti-Malware =>.Malwarebytes' Anti-Malware
HKLM\SOFTWARE\McAfee =>.McAfee Inc.
HKLM\SOFTWARE\Mozilla =>.Mozilla
HKLM\SOFTWARE\mozilla.org =>.mozilla.org
HKLM\SOFTWARE\MozillaPlugin =>.MozillaPlugin
HKLM\SOFTWARE\MozillaPlugins =>.MozillaPlugins
HKLM\SOFTWARE\Nikse =>.Nikse
HKLM\SOFTWARE\Notepad++ =>.Don Ho
HKLM\SOFTWARE\Nuance =>.Nuance
HKLM\SOFTWARE\Nullsoft =>.Nullsoft
HKLM\SOFTWARE\OBS Studio =>.OBS Studio
HKLM\SOFTWARE\ODBC =>.DB Connectivity Solutions
HKLM\SOFTWARE\Python =>.Python
HKLM\SOFTWARE\Realtek =>.Realtek Semiconductor Corp.
HKLM\SOFTWARE\Realtek Semiconductor Corp. =>.Realtek Semiconductor Corp.
HKLM\SOFTWARE\RocketLife =>.RocketLife
HKLM\SOFTWARE\RtWLan =>.Realtek Semiconductor Corp.
HKLM\SOFTWARE\Safer Networking Limited =>.Safer Networking Limited
HKLM\SOFTWARE\SHAPE
HKLM\SOFTWARE\Software =>.Unknown
HKLM\SOFTWARE\Sony Corporation =>.Sony Corporation
HKLM\SOFTWARE\SpeedFan =>.Almico Software
HKLM\SOFTWARE\SpoonInstall
HKLM\SOFTWARE\TomTom =>.TomTom
HKLM\SOFTWARE\TrendMicro =>.TrendMicro
HKLM\SOFTWARE\Unreal =>.Unreal Software
HKLM\SOFTWARE\Visan =>.Visan Software
HKLM\SOFTWARE\Wacom =>.Wacom
HKLM\SOFTWARE\WBFS Manager 3.0
HKLM\SOFTWARE\WOW6432Node =>.Microsoft Corporation
HKLM\SOFTWARE\RegisteredApplications =>.Microsoft Corporation
HKLM\SOFTWARE\WOW6432Node\Activ Software
HKLM\SOFTWARE\WOW6432Node\Adobe =>.Adobe
HKLM\SOFTWARE\WOW6432Node\Apple Inc. =>.Apple Inc.
HKLM\SOFTWARE\WOW6432Node\Avanquest =>.Avanquest
HKLM\SOFTWARE\WOW6432Node\AviSynth =>.Ben Rudiak-Gold
HKLM\SOFTWARE\WOW6432Node\Bigasoft =>.Bigasoft Corporation
HKLM\SOFTWARE\WOW6432Node\BlueStacks =>.BlueStack Systems, Inc.
HKLM\SOFTWARE\WOW6432Node\Caphyon =>.Caphyon
HKLM\SOFTWARE\WOW6432Node\CDDB =>.Cddb Software
HKLM\SOFTWARE\WOW6432Node\CleverFiles =>.CleverFiles
HKLM\SOFTWARE\WOW6432Node\CodeGear =>.CodeGear
HKLM\SOFTWARE\WOW6432Node\CyberLink =>.CyberLink Corporation
HKLM\SOFTWARE\WOW6432Node\DropboxUpdate =>.Dropbox Inc.
HKLM\SOFTWARE\WOW6432Node\EaseUS =>.EaseUS Software
HKLM\SOFTWARE\WOW6432Node\Eset =>.ESET
HKLM\SOFTWARE\WOW6432Node\Faasoft =>.Faasoft
HKLM\SOFTWARE\WOW6432Node\FileZilla 3 =>.FileZilla
HKLM\SOFTWARE\WOW6432Node\Florian Heidenreich =>.Florian Heidenreich
HKLM\SOFTWARE\WOW6432Node\GOG.com =>.GOG.com
HKLM\SOFTWARE\WOW6432Node\Google =>.Google
HKLM\SOFTWARE\WOW6432Node\HaaliMkx =>.Haali Media
HKLM\SOFTWARE\WOW6432Node\Hewlett-Packard =>.Hewlett-Packard
HKLM\SOFTWARE\WOW6432Node\HP =>.HP
HKLM\SOFTWARE\WOW6432Node\HP Inc. =>.HP Inc.
HKLM\SOFTWARE\WOW6432Node\IM Providers =>.IM Providers
HKLM\SOFTWARE\WOW6432Node\Intel =>.Intel
HKLM\SOFTWARE\WOW6432Node\JavaSoft =>.JavaSoft
HKLM\SOFTWARE\WOW6432Node\JreMetrics =>.JreMetrics
HKLM\SOFTWARE\WOW6432Node\Khronos =>.Khronos
HKLM\SOFTWARE\WOW6432Node\LogMeIn Rescue =>.LogMeIn Entreprise
HKLM\SOFTWARE\WOW6432Node\LogMeInRescueCallingCard =>.LogMeIn Entreprise
HKLM\SOFTWARE\WOW6432Node\LogMeInRescueCallingCards =>.LogMeIn Entreprise
HKLM\SOFTWARE\WOW6432Node\Macromedia =>.Macromedia
HKLM\SOFTWARE\WOW6432Node\Malwarebytes' Anti-Malware =>.Malwarebytes' Anti-Malware
HKLM\SOFTWARE\WOW6432Node\McAfee =>.McAfee Inc.
HKLM\SOFTWARE\WOW6432Node\Mozilla =>.Mozilla
HKLM\SOFTWARE\WOW6432Node\mozilla.org =>.mozilla.org
HKLM\SOFTWARE\WOW6432Node\MozillaPlugin =>.MozillaPlugin
HKLM\SOFTWARE\WOW6432Node\MozillaPlugins =>.MozillaPlugins
HKLM\SOFTWARE\WOW6432Node\Nikse =>.Nikse
HKLM\SOFTWARE\WOW6432Node\Notepad++ =>.Don Ho
HKLM\SOFTWARE\WOW6432Node\Nuance =>.Nuance
HKLM\SOFTWARE\WOW6432Node\Nullsoft =>.Nullsoft
HKLM\SOFTWARE\WOW6432Node\OBS Studio =>.OBS Studio
HKLM\SOFTWARE\WOW6432Node\ODBC =>.DB Connectivity Solutions
HKLM\SOFTWARE\WOW6432Node\Python =>.Python
HKLM\SOFTWARE\WOW6432Node\Realtek =>.Realtek Semiconductor Corp.
HKLM\SOFTWARE\WOW6432Node\Realtek Semiconductor Corp. =>.Realtek Semiconductor Corp.
HKLM\SOFTWARE\WOW6432Node\RocketLife =>.RocketLife
HKLM\SOFTWARE\WOW6432Node\RtWLan =>.Realtek Semiconductor Corp.
HKLM\SOFTWARE\WOW6432Node\Safer Networking Limited =>.Safer Networking Limited
HKLM\SOFTWARE\WOW6432Node\SHAPE
HKLM\SOFTWARE\WOW6432Node\Software =>.Unknown
HKLM\SOFTWARE\WOW6432Node\Sony Corporation =>.Sony Corporation
HKLM\SOFTWARE\WOW6432Node\SpeedFan =>.Almico Software
HKLM\SOFTWARE\WOW6432Node\SpoonInstall
HKLM\SOFTWARE\WOW6432Node\TomTom =>.TomTom
HKLM\SOFTWARE\WOW6432Node\TrendMicro =>.TrendMicro
HKLM\SOFTWARE\WOW6432Node\Unreal =>.Unreal Software
HKLM\SOFTWARE\WOW6432Node\Visan =>.Visan Software
HKLM\SOFTWARE\WOW6432Node\Wacom =>.Wacom
HKLM\SOFTWARE\WOW6432Node\WBFS Manager 3.0
HKLM\SOFTWARE\WOW6432Node\WOW6432Node =>.Microsoft Corporation
HKLM\SOFTWARE\WOW6432Node\RegisteredApplications =>.Microsoft Corporation
HKCU\SOFTWARE\573339af-d9e1-5dd3-804c-e0162fac1f41 =>Adware.CrossRider
HKCU\SOFTWARE\7-Zip =>.Igor Pavlov
HKCU\SOFTWARE\AC3Filter =>.Vigovsky Alexander
HKCU\SOFTWARE\Adobe =>.Adobe
HKCU\SOFTWARE\Apowersoft =>.Apowersoft
HKCU\SOFTWARE\AppDataLow =>.Microsoft Corporation
HKCU\SOFTWARE\Apple Computer, Inc. =>.Apple Computer, Inc.
HKCU\SOFTWARE\Apple Inc. =>.Apple Inc.
HKCU\SOFTWARE\Avanquest =>.Avanquest
HKCU\SOFTWARE\Bigasoft =>.Bigasoft Corporation
HKCU\SOFTWARE\BlueStacks =>.BlueStack Systems, Inc.
HKCU\SOFTWARE\Bogosoft =>.BogoSoft
HKCU\SOFTWARE\BugSplat =>.Bugsplat Game
HKCU\SOFTWARE\bunkus.org =>.bunkus.org
HKCU\SOFTWARE\Bytescout =>.ByteScout
HKCU\SOFTWARE\Chromium =>.Chromium
HKCU\SOFTWARE\CleverFiles =>.CleverFiles
HKCU\SOFTWARE\codestation =>.codestation
HKCU\SOFTWARE\Corel =>.Corel
HKCU\SOFTWARE\CyberLink =>.CyberLink Corporation
HKCU\SOFTWARE\Disc Soft =>.Disc Soft
HKCU\SOFTWARE\DropboxUpdate =>.Dropbox Inc.
HKCU\SOFTWARE\DxOLabs =>.DxO Labs
HKCU\SOFTWARE\EaseUS =>.EaseUS Software
HKCU\SOFTWARE\ej-technologies =>.ej-technologies
HKCU\SOFTWARE\Emjysoft =>.Emjysoft
HKCU\SOFTWARE\ESET =>.ESET
HKCU\SOFTWARE\Faasoft =>.Faasoft
HKCU\SOFTWARE\FileZilla Client =>.Tim Kosse
HKCU\SOFTWARE\Freeware =>.VirtualDub.org
HKCU\SOFTWARE\Gabest =>.Gabest
HKCU\SOFTWARE\Geek Uninstaller =>.Geek Uninstaller
HKCU\SOFTWARE\GOG.com =>.GOG.com
HKCU\SOFTWARE\Google =>.Google
HKCU\SOFTWARE\Haali =>.Haali Media
HKCU\SOFTWARE\HeartWare =>.HeartWare
HKCU\SOFTWARE\Hewlett-Packard =>.Hewlett-Packard
HKCU\SOFTWARE\HP =>.HP
HKCU\SOFTWARE\Illustrate =>.Illustrate
HKCU\SOFTWARE\IM Providers =>.IM Providers
HKCU\SOFTWARE\Infonautics =>.Infonautics
HKCU\SOFTWARE\Intel =>.Intel
HKCU\SOFTWARE\IrekZielinskiSoft =>.IrekZielinski Software
HKCU\SOFTWARE\JAM Software =>.JAM Software
HKCU\SOFTWARE\JavaSoft =>.JavaSoft
HKCU\SOFTWARE\Larian Studios =>.Larian Studios
HKCU\SOFTWARE\LAV =>.LAV Inc
HKCU\SOFTWARE\LogMeInRescueCallingCard =>.LogMeIn Entreprise
HKCU\SOFTWARE\LunarianConcepts
HKCU\SOFTWARE\MD5Checksum
HKCU\SOFTWARE\MediaArea
HKCU\SOFTWARE\Mediachance =>.Mediachance
HKCU\SOFTWARE\Memeo =>.Memeo
HKCU\SOFTWARE\Michael Herf =>.Michael Herf
HKCU\SOFTWARE\Mirage =>.Mirage Game
HKCU\SOFTWARE\Mozilla =>.Mozilla
HKCU\SOFTWARE\Netscape =>.Netscape
HKCU\SOFTWARE\Network Optix =>.Network Optix
HKCU\SOFTWARE\Nitro =>.Nitro
HKCU\SOFTWARE\ODBC =>.DB Connectivity Solutions
HKCU\SOFTWARE\OpenDNS Updater
HKCU\SOFTWARE\Piriform =>.Piriform
HKCU\SOFTWARE\Python =>.Python
HKCU\SOFTWARE\QtProject =>.QtProject
HKCU\SOFTWARE\Realtek =>.Realtek Semiconductor Corp.
HKCU\SOFTWARE\RegisteredApplications =>.Microsoft Corporation
HKCU\SOFTWARE\Rtp =>.RTP Software
HKCU\SOFTWARE\Safer Networking Limited =>.Safer Networking Limited
HKCU\SOFTWARE\SaurikIT =>.SaurikIT, LLC
HKCU\SOFTWARE\SHAPE
HKCU\SOFTWARE\SharewareOnSale =>.SharewareOnSale
HKCU\SOFTWARE\Sony Corporation =>.Sony Corporation
HKCU\SOFTWARE\SpeedFan =>.Almico Software
HKCU\SOFTWARE\SpoonInstall
HKCU\SOFTWARE\Studio MDHR =>.Pinnacle Systems, Inc.
HKCU\SOFTWARE\SupRip
HKCU\SOFTWARE\Team 17 Digital ltd. =>.Team 17 Digital
HKCU\SOFTWARE\TechSmith =>.TechSmith
HKCU\SOFTWARE\Telerik =>.Telerik
HKCU\SOFTWARE\Thunderbird =>.Thunderbird
HKCU\SOFTWARE\TomTom =>.TomTom
HKCU\SOFTWARE\Trolltech =>.Trolltech
HKCU\SOFTWARE\Unity =>.Unity
HKCU\SOFTWARE\VB and VBA Program Settings =>.Microsoft Corporation
HKCU\SOFTWARE\Visan =>.Visan Software
HKCU\SOFTWARE\VS Revo Group =>.VS Revo Group
HKCU\SOFTWARE\Win32DiskImager
HKCU\SOFTWARE\Winamp =>.Nullsoft Inc.
HKCU\SOFTWARE\Windscribe =>.Windscribe
HKCU\SOFTWARE\WinRAR =>.WinRAR
HKCU\SOFTWARE\WinRAR SFX =>.RarLab
HKCU\SOFTWARE\Wow6432Node =>.Microsoft Corporation
HKCU\SOFTWARE\ZebHelpProcess Helper =>.Nicolas Coolman
HKCU\SOFTWARE\ZHP =>.Nicolas Coolman
HKCU\SOFTWARE\AppDataLow\Software =>.Microsoft Corporation
HKCU\SOFTWARE\AppDataLow\Software\PasswordBox =>.PasswordBox Inc

---\\ Contenu des dossiers Programmes (414) - 41s
O43 - CFD: 02/09/2017 - [] AD -- C:\Program Files\7-Zip =>.Igor Pavlov
O43 - CFD: 25/09/2016 - [] AD -- C:\Program Files\Adobe =>.Adobe Systems Incorporated®
O43 - CFD: 18/12/2016 - [] AD -- C:\Program Files\Bonjour =>.Apple Inc.
O43 - CFD: 22/08/2016 - [] AD -- C:\Program Files\CCleaner =>.Piriform Ltd
O43 - CFD: 14/09/2017 - [] D -- C:\Program Files\Common Files =>.Microsoft Corporation
O43 - CFD: 29/04/2017 - [] AD -- C:\Program Files\Corel =>.Corel Corporation
O43 - CFD: 03/06/2016 - [] D -- C:\Program Files\CyberLink =>.CyberLink Corporation
O43 - CFD: 06/10/2017 - [] D -- C:\Program Files\DAEMON Tools Lite =>.DAEMON Tools
O43 - CFD: 24/09/2016 - [] AD -- C:\Program Files\Defraggler =>.Piriform Ltd
O43 - CFD: 18/11/2016 - [] D -- C:\Program Files\DIFX =>.Microsoft Corporation
O43 - CFD: 12/11/2016 - [] D -- C:\Program Files\EaseUS =>.EaseUS Software
O43 - CFD: 22/08/2016 - [0] SHD -- C:\Program Files\Fichiers communs =>.Microsoft Corporation
O43 - CFD: 07/10/2017 - [] D -- C:\Program Files\FileZilla FTP Client =>.Tim Kosse
O43 - CFD: 21/11/2017 - [] D -- C:\Program Files\HP =>.Hewlett-Packard
O43 - CFD: 08/12/2016 - [] D -- C:\Program Files\HPCommRecovery
O43 - CFD: 08/11/2017 - [] D -- C:\Program Files\Intel =>.Intel Corporation
O43 - CFD: 05/10/2017 - [] D -- C:\Program Files\Internet Explorer =>.Microsoft Corporation
O43 - CFD: 24/08/2017 - [] D -- C:\Program Files\iPod =>.Apple Inc.®
O43 - CFD: 24/08/2017 - [] AD -- C:\Program Files\iTunes =>.Apple Inc.
O43 - CFD: 11/10/2017 - [] AD -- C:\Program Files\KMSpico =>HackTool.KMSpico
O43 - CFD: 28/10/2017 - [] D -- C:\Program Files\MediaInfo =>.Jérôme Martinez
O43 - CFD: 24/08/2016 - [] D -- C:\Program Files\Microsoft Office 15 =>.Microsoft Corporation
O43 - CFD: 10/12/2017 - [] D -- C:\Program Files\MKVToolNix18.0 =>.Moritz Bunkus®
O43 - CFD: 06/12/2017 - [] D -- C:\Program Files\MKVToolNix19.0 =>.Moritz Bunkus®
O43 - CFD: 24/08/2016 - [] AD -- C:\Program Files\MotioninJoy =>.MotionInjoy
O43 - CFD: 14/09/2017 - [] D -- C:\Program Files\MSBuild =>.Microsoft Corporation
O43 - CFD: 15/11/2016 - [] D -- C:\Program Files\Nitro =>.Nitro
O43 - CFD: 03/06/2016 - [] RD -- C:\Program Files\Online Services =>.Hewlett-Packard
O43 - CFD: 18/11/2016 - [] D -- C:\Program Files\Qcma
O43 - CFD: 14/09/2017 - [] D -- C:\Program Files\Realtek =>.Realtek
O43 - CFD: 16/10/2017 - [] AD -- C:\Program Files\Recuva =>.Piriform
O43 - CFD: 14/09/2017 - [] D -- C:\Program Files\Reference Assemblies =>.Microsoft Corporation
O43 - CFD: 14/09/2017 - [0] HD -- C:\Program Files\Uninstall Information =>.Microsoft Corporation
O43 - CFD: 07/07/2017 - [] AD -- C:\Program Files\UNP =>.Microsoft Corporation
O43 - CFD: 23/08/2016 - [] D -- C:\Program Files\VideoLAN =>.VideoLan Team
O43 - CFD: 01/09/2016 - [] D -- C:\Program Files\VS Revo Group =>.VS Revo Group
O43 - CFD: 24/08/2016 - [] D -- C:\Program Files\WBFS =>.WBFS
O43 - CFD: 15/09/2017 - [] RD -- C:\Program Files\Windows Defender =>.Microsoft Corporation
O43 - CFD: 14/09/2017 - [] D -- C:\Program Files\Windows Mail =>.Microsoft Corporation
O43 - CFD: 14/12/2017 - [] D -- C:\Program Files\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] D -- C:\Program Files\Windows Multimedia Platform =>.Microsoft Corporation
O43 - CFD: 14/09/2017 - [] D -- C:\Program Files\Windows NT =>.Microsoft Corporation
O43 - CFD: 18/11/2017 - [] D -- C:\Program Files\Windows Photo Viewer =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] D -- C:\Program Files\Windows Portable Devices =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] D -- C:\Program Files\Windows Security =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] SHD -- C:\Program Files\Windows Sidebar =>.Microsoft Corporation
O43 - CFD: 30/12/2017 - [] HD -- C:\Program Files\WindowsApps =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] D -- C:\Program Files\WindowsPowerShell =>.Microsoft Corporation
O43 - CFD: 22/08/2016 - [] AD -- C:\Program Files\WinRAR =>.WinRAR
O43 - CFD: 06/09/2016 - [] D -- C:\Program Files (x86)\Activ Software
O43 - CFD: 02/09/2016 - [] D -- C:\Program Files (x86)\Adobe =>.Adobe Systems, Incorporated®
O43 - CFD: 24/08/2017 - [] AD -- C:\Program Files (x86)\Apple Software Update =>.Apple Inc.
O43 - CFD: 27/08/2016 - [] AD -- C:\Program Files (x86)\Audacity =>.Audacity
O43 - CFD: 02/09/2016 - [] D -- C:\Program Files (x86)\Avanquest =>.Avanquest
O43 - CFD: 19/06/2012 - [] D -- C:\Program Files (x86)\AviSynth 2.6 =>.AviSynth
O43 - CFD: 07/04/2017 - [0] D -- C:\Program Files (x86)\AxBx =>.AxBx
O43 - CFD: 24/08/2016 - [] D -- C:\Program Files (x86)\Bigasoft =>.Bigasoft Corporation
O43 - CFD: 28/09/2016 - [] AD -- C:\Program Files (x86)\Bluestacks =>.BlueStack Systems, Inc.
O43 - CFD: 18/12/2016 - [] AD -- C:\Program Files (x86)\Bonjour =>.Apple Inc.
O43 - CFD: 12/12/2017 - [] D -- C:\Program Files (x86)\Captvty =>.Guillaume
O43 - CFD: 15/09/2017 - [] D -- C:\Program Files (x86)\Common Files =>.Microsoft Corporation
O43 - CFD: 24/09/2016 - [] AD -- C:\Program Files (x86)\CrystalDiskInfo =>.Crystal Dew World
O43 - CFD: 08/11/2016 - [] D -- C:\Program Files (x86)\Cyberlink =>.CyberLink Corporation
O43 - CFD: 31/12/2017 - [] D -- C:\Program Files (x86)\Difficult
O43 - CFD: 08/09/2016 - [] AD -- C:\Program Files (x86)\DirectoryListPrintPro =>.Infonautics GmbH
O43 - CFD: 25/10/2017 - [] D -- C:\Program Files (x86)\DS4
O43 - CFD: 08/02/2017 - [] D -- C:\Program Files (x86)\EaseUS =>.EaseUS Software
O43 - CFD: 31/12/2017 - [] HD -- C:\Program Files (x86)\epigenetic
O43 - CFD: 31/12/2017 - [0] D -- C:\Program Files (x86)\eRightSoft =>.eRightSoft
O43 - CFD: 01/01/2018 - [0] D -- C:\Program Files (x86)\Faasoft =>.Faasoft
O43 - CFD: 31/03/2017 - [] D -- C:\Program Files (x86)\Google =>.Google Inc®
O43 - CFD: 04/09/2016 - [] D -- C:\Program Files (x86)\h264ts_cutter_v111
O43 - CFD: 04/09/2016 - [] D -- C:\Program Files (x86)\Haali =>.Haali
O43 - CFD: 03/06/2016 - [] AD -- C:\Program Files (x86)\Hewlett-Packard =>.Hewlett-Packard
O43 - CFD: 30/08/2016 - [] AD -- C:\Program Files (x86)\HP =>.Hewlett-Packard
O43 - CFD: 23/08/2016 - [] D -- C:\Program Files (x86)\HP Inc =>.HP Inc
O43 - CFD: 30/08/2016 - [] D -- C:\Program Files (x86)\HP Photo Creations =>.Visan Industries®
O43 - CFD: 26/08/2017 - [] AD -- C:\Program Files (x86)\iDisplay
O43 - CFD: 27/08/2016 - [] D -- C:\Program Files (x86)\Illustrate =>.Illustrate
O43 - CFD: 07/10/2017 - [] AD -- C:\Program Files (x86)\ImageWriter =>.Legitimate
O43 - CFD: 08/11/2016 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information =>.InstallShield
O43 - CFD: 14/09/2017 - [] D -- C:\Program Files (x86)\Intel =>.Intel Corporation
O43 - CFD: 05/10/2017 - [] D -- C:\Program Files (x86)\Internet Explorer =>.Microsoft Corporation
O43 - CFD: 31/12/2017 - [] D -- C:\Program Files (x86)\ishibashi
O43 - CFD: 24/08/2016 - [] AD -- C:\Program Files (x86)\ISO to WBFS
O43 - CFD: 24/08/2016 - [] D -- C:\Program Files (x86)\JAM Software =>.JAM Software GmbH®
O43 - CFD: 15/09/2017 - [] D -- C:\Program Files (x86)\Java =>.Oracle
O43 - CFD: 02/09/2016 - [] D -- C:\Program Files (x86)\LogMeIn Rescue RC - 40a68392-f815-4505-98e5-5fbc1694ad54 =>.LogMeIn Entreprise
O43 - CFD: 24/08/2016 - [] AD -- C:\Program Files (x86)\Malwarebytes Anti-Malware =>.Malwarebytes
O43 - CFD: 02/09/2016 - [0] D -- C:\Program Files (x86)\McAfee =>.McAfee
O43 - CFD: 02/11/2016 - [] AD -- C:\Program Files (x86)\MD5 Checksum
O43 - CFD: 24/08/2016 - [] AD -- C:\Program Files (x86)\Microsoft Office =>.Microsoft Corporation
O43 - CFD: 14/09/2017 - [] D -- C:\Program Files (x86)\Microsoft.NET =>.Microsoft Corporation
O43 - CFD: 31/12/2017 - [] HD -- C:\Program Files (x86)\Mondial
O43 - CFD: 01/01/2018 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service =>.Mozilla
O43 - CFD: 01/01/2018 - [] AD -- C:\Program Files (x86)\Mozilla Thunderbird =>.Mozilla
O43 - CFD: 27/08/2016 - [] D -- C:\Program Files (x86)\MP3Gain =>.Glen Sawyer
O43 - CFD: 27/08/2016 - [] D -- C:\Program Files (x86)\Mp3tag =>.Florian Heidenreich
O43 - CFD: 14/09/2017 - [] D -- C:\Program Files (x86)\MSBuild =>.Microsoft Corporation
O43 - CFD: 15/11/2016 - [] D -- C:\Program Files (x86)\Nitro =>.Nitro
O43 - CFD: 24/08/2016 - [] D -- C:\Program Files (x86)\Notepad++ =>.Don Ho
O43 - CFD: 03/06/2016 - [] D -- C:\Program Files (x86)\NSIS Uninstall Information =>.MSIS
O43 - CFD: 20/12/2016 - [] D -- C:\Program Files (x86)\obs-studio =>.OBS-Studio
O43 - CFD: 03/06/2016 - [] RD -- C:\Program Files (x86)\Online Services =>.Hewlett-Packard
O43 - CFD: 22/08/2016 - [] D -- C:\Program Files (x86)\OpenDNS Updater
O43 - CFD: 31/12/2017 - [] D -- C:\Program Files (x86)\pathogenesis
O43 - CFD: 24/08/2016 - [] AD -- C:\Program Files (x86)\Project64 2.3 =>.Project64
O43 - CFD: 08/12/2016 - [] AD -- C:\Program Files (x86)\Realtek =>.Realtek
O43 - CFD: 14/09/2017 - [] D -- C:\Program Files (x86)\Reference Assemblies =>.Microsoft Corporation
O43 - CFD: 24/08/2016 - [] AD -- C:\Program Files (x86)\RLinkToolbox 3 =>.TomTom International BV®
O43 - CFD: 24/08/2016 - [] AD -- C:\Program Files (x86)\SixaxisPairTool
O43 - CFD: 30/08/2016 - [] D -- C:\Program Files (x86)\Sony =>.Sony Computer Entertainment Inc.®
O43 - CFD: 06/10/2017 - [] D -- C:\Program Files (x86)\SpeedFan =>.Almico Software
O43 - CFD: 07/04/2017 - [] AD -- C:\Program Files (x86)\Spybot - Search & Destroy 2 =>.SaferNetworking
O43 - CFD: 24/08/2016 - [] D -- C:\Program Files (x86)\SubRip-1.56.1
O43 - CFD: 24/08/2016 - [] AD -- C:\Program Files (x86)\Subtitle Edit =>.Nikse
O43 - CFD: 24/08/2016 - [] D -- C:\Program Files (x86)\Suprip
O43 - CFD: 24/08/2016 - [] D -- C:\Program Files (x86)\Tablet =>.Wacom Technology Corp.®
O43 - CFD: 03/05/2017 - [0] HD -- C:\Program Files (x86)\Temp =>.Microsoft Corporation
O43 - CFD: 24/08/2016 - [] D -- C:\Program Files (x86)\TimeAdjuster
O43 - CFD: 24/08/2016 - [] D -- C:\Program Files (x86)\tsMuxeR_2.6.12
O43 - CFD: 08/11/2017 - [] D -- C:\Program Files (x86)\VulkanRT =>.LunarG, Inc
O43 - CFD: 24/08/2016 - [] D -- C:\Program Files (x86)\WildTangent Games =>.WildTangent Games
O43 - CFD: 27/12/2016 - [] D -- C:\Program Files (x86)\Winamp =>.Winamp
O43 - CFD: 11/07/2017 - [] D -- C:\Program Files (x86)\Windows Defender =>.Microsoft Corporation
O43 - CFD: 14/09/2017 - [] D -- C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation
O43 - CFD: 14/12/2017 - [] D -- C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] D -- C:\Program Files (x86)\Windows Multimedia Platform =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] D -- C:\Program Files (x86)\Windows NT =>.Microsoft Corporation
O43 - CFD: 18/11/2017 - [] D -- C:\Program Files (x86)\Windows Photo Viewer =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] D -- C:\Program Files (x86)\Windows Portable Devices =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] SHD -- C:\Program Files (x86)\Windows Sidebar =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [] D -- C:\Program Files (x86)\WindowsPowerShell =>.Microsoft Corporation
O43 - CFD: 09/07/2017 - [] AD -- C:\Program Files (x86)\Windscribe =>.Windscribe
O43 - CFD: 24/08/2016 - [] D -- C:\Program Files (x86)\winhex {008F569001D50FC457}
O43 - CFD: 03/07/2017 - [] AD -- C:\Program Files (x86)\WinPDFEditor
O43 - CFD: 28/05/2017 - [] AD -- C:\Program Files (x86)\ZedTV =>.ZedSoft
O43 - CFD: 27/08/2016 - [] AD -- C:\Program Files (x86)\ZHPFix =>.Nicolas Coolman
O43 - CFD: 14/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip =>.Igor Pavlov
O43 - CFD: 15/09/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility =>.Microsoft Corporation
O43 - CFD: 13/10/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories =>.Microsoft Corporation
O43 - CFD: 14/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Activ Software
O43 - CFD: 15/09/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools
O43 - CFD: 14/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner =>.Piriform Ltd
O43 - CFD: 06/10/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cuphead [GOG.com]
O43 - CFD: 14/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\dBpoweramp Music Converter =>.Illustrate
O43 - CFD: 14/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\devkitPro
O43 - CFD: 14/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Directory List & Print (Pro)
O43 - CFD: 14/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Data Recovery Wizard =>.EaseUS Software
O43 - CFD: 14/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Partition Master 11.9 =>.EaseUS Software
O43 - CFD: 14/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Todo PCTrans =>.EaseUS Software
O43 - CFD: 14/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Expert PDF 8 Professional
O43 - CFD: 14/09/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games =>.Microsoft Corporation
O43 - CFD: 14/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP =>.Hewlett-Packard
O43 - CFD: 14/09/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support =>.Hewlett-Packard
O43 - CFD: 14/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iDisplay
O43 - CFD: 07/10/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Image Writer =>.Michael Casadevall
O43 - CFD: 14/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ISO to WBFS
O43 - CFD: 14/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes =>.Apple Inc.
O43 - CFD: 15/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java =>.Oracle
O43 - CFD: 11/10/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSpico =>HackTool.KMSpico
O43 - CFD: 18/03/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance =>.Microsoft Corporation
O43 - CFD: 14/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware =>.Malwarebytes
O43 - CFD: 14/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MD5 Checksum
O43 - CFD: 14/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2016 Tools =>.Microsoft Corporation
O43 - CFD: 14/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MKVToolNix =>.Matroska
O43 - CFD: 10/12/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MKVToolNix18
O43 - CFD: 14/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MotioninJoy =>.MotionInjoy
O43 - CFD: 14/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++ =>.Don Ho
O43 - CFD: 14/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OBS Studio =>.OBS Studio
O43 - CFD: 14/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Project64 2.3 =>.Project64
O43 - CFD: 14/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Qcma
O43 - CFD: 14/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recuva =>.Piriform
O43 - CFD: 14/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Renault =>.Renault
O43 - CFD: 14/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro =>.VS Revo Group
O43 - CFD: 14/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SixaxisPairTool
O43 - CFD: 07/10/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup =>.Microsoft Corporation
O43 - CFD: 14/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Subtitle Edit =>.Nikse
O43 - CFD: 15/09/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools =>.Microsoft Corporation
O43 - CFD: 14/09/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablette Wacom =>.Wacom Technology
O43 - CFD: 14/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN =>.VideoLan Team
O43 - CFD: 14/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windscribe =>.Windscribe
O43 - CFD: 14/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinPDFEditor
O43 - CFD: 14/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR
O43 - CFD: 14/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZedTV =>.ZedSoft
O43 - CFD: 06/09/2016 - [] D -- C:\ProgramData\Activ Software
O43 - CFD: 02/09/2016 - [] D -- C:\ProgramData\Adobe =>.Adobe
O43 - CFD: 18/12/2016 - [] D -- C:\ProgramData\Apple =>.Apple Inc.
O43 - CFD: 18/12/2016 - [] D -- C:\ProgramData\Apple Computer =>.Apple Inc.
O43 - CFD: 14/09/2017 - [0] SHD -- C:\ProgramData\Application Data =>.Microsoft Corporation
O43 - CFD: 02/09/2016 - [] D -- C:\ProgramData\Avanquest =>.Avanquest
O43 - CFD: 02/09/2016 - [] D -- C:\ProgramData\Avanquest Software =>.Avanquest Software
O43 - CFD: 25/09/2016 - [] D -- C:\ProgramData\AVAST Software =>.AVAST Software
O43 - CFD: 21/09/2016 - [] AD -- C:\ProgramData\Bluestacks =>.BlueStack Systems, Inc.
O43 - CFD: 14/11/2017 - [0] D -- C:\ProgramData\BlueStacksSetup =>.BlueStack Systems, Inc.
O43 - CFD: 22/08/2016 - [0] SHD -- C:\ProgramData\Bureau =>.Microsoft Corporation
O43 - CFD: 16/07/2016 - [0] D -- C:\ProgramData\Comms =>.Microsoft Corporation
O43 - CFD: 29/04/2017 - [] D -- C:\ProgramData\Corel =>.Corel Corporation
O43 - CFD: 20/11/2016 - [] D -- C:\ProgramData\CyberLink =>.CyberLink Corporation
O43 - CFD: 29/06/2017 - [] D -- C:\ProgramData\DAEMON Tools Lite =>.DAEMON Tools
O43 - CFD: 14/09/2017 - [0] SHD -- C:\ProgramData\Documents =>.Microsoft Corporation
O43 - CFD: 03/06/2016 - [] D -- C:\ProgramData\Dropbox =>.Dropbox
O43 - CFD: 09/12/2016 - [] D -- C:\ProgramData\DxO Labs =>.DxO Labs
O43 - CFD: 02/09/2016 - [0] D -- C:\ProgramData\Expert PDF 8
O43 - CFD: 02/09/2016 - [0] D -- C:\ProgramData\Expert PDF Jobs =>.Avanquest Software Publishing Ltd
O43 - CFD: 04/10/2017 - [] D -- C:\ProgramData\GOG.com =>.GOG.com
O43 - CFD: 22/08/2016 - [] D -- C:\ProgramData\Hewlett-Packard =>.Hewlett-Packard
O43 - CFD: 21/11/2017 - [] AD -- C:\ProgramData\HP =>.Hewlett-Packard
O43 - CFD: 30/08/2016 - [] AD -- C:\ProgramData\HP Photo Creations =>.HP Photo Creations
O43 - CFD: 08/11/2016 - [] D -- C:\ProgramData\install_backup
O43 - CFD: 03/06/2016 - [] D -- C:\ProgramData\install_clap =>.Microsoft Corporation
O43 - CFD: 02/09/2016 - [] D -- C:\ProgramData\Intel =>.Intel Corporation
O43 - CFD: 24/08/2016 - [] D -- C:\ProgramData\Malwarebytes =>.Malwarebytes
O43 - CFD: 02/09/2016 - [] D -- C:\ProgramData\McAfee =>.McAfee
O43 - CFD: 22/08/2016 - [0] SHD -- C:\ProgramData\Menu Démarrer =>.Microsoft Corporation
O43 - CFD: 05/10/2017 - [] SD -- C:\ProgramData\Microsoft =>.Microsoft Corporation
O43 - CFD: 14/09/2017 - [] D -- C:\ProgramData\Microsoft OneDrive =>.Microsoft Corporation
O43 - CFD: 22/08/2016 - [0] SHD -- C:\ProgramData\Modèles =>.Microsoft Corporation
O43 - CFD: 15/11/2016 - [] D -- C:\ProgramData\Nitro =>.Nitro
O43 - CFD: 15/09/2017 - [] D -- C:\ProgramData\Oracle =>.Oracle
O43 - CFD: 04/10/2017 - [] D -- C:\ProgramData\Package Cache =>.Microsoft Corporation
O43 - CFD: 06/09/2016 - [] D -- C:\ProgramData\Promethean =>.Promethean
O43 - CFD: 25/01/2017 - [0] D -- C:\ProgramData\Protexis =>.Protexis Inc.
O43 - CFD: 08/12/2016 - [] D -- C:\ProgramData\Realtek =>.Realtek
O43 - CFD: 14/09/2017 - [] D -- C:\ProgramData\regid.1986-12.com.adobe =>.Adobe Inc.
O43 - CFD: 14/09/2017 - [] AD -- C:\ProgramData\regid.1991-06.com.microsoft =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [0] D -- C:\ProgramData\SoftwareDistribution =>.Microsoft Corporation
O43 - CFD: 07/04/2017 - [] D -- C:\ProgramData\Spybot - Search & Destroy =>.SaferNetworking
O43 - CFD: 14/09/2017 - [] D -- C:\ProgramData\SRS Labs =>.SRS Labs
O43 - CFD: 08/11/2016 - [] D -- C:\ProgramData\SUPPORTDIR =>.Microsoft Corporation
O43 - CFD: 23/08/2016 - [] D -- C:\ProgramData\Temp =>.Microsoft Corporation
O43 - CFD: 15/09/2017 - [] D -- C:\ProgramData\Trend Micro =>.Trend Micro
O43 - CFD: 12/04/2017 - [] D -- C:\ProgramData\Trend Micro Installer =>.Trend Micro
O43 - CFD: 09/11/2016 - [] D -- C:\ProgramData\UniqueId =>.Microsoft Corporation
O43 - CFD: 14/09/2017 - [] D -- C:\ProgramData\USOPrivate =>.Microsoft Corporation
O43 - CFD: 14/09/2017 - [] D -- C:\ProgramData\USOShared =>.Microsoft Corporation
O43 - CFD: 30/08/2016 - [] D -- C:\ProgramData\Visan =>.Visan Industries
O43 - CFD: 23/08/2016 - [] D -- C:\ProgramData\VS Revo Group =>.VS Revo Group
O43 - CFD: 01/01/2017 - [] D -- C:\ProgramData\Western Digital =>.Western Digital
O43 - CFD: 20/03/2017 - [] D -- C:\ProgramData\WindowsHolographicDevices =>.Microsoft Corporation
O43 - CFD: 06/09/2016 - [] AD -- C:\Program Files (x86)\Common Files\Activ Software
O43 - CFD: 30/05/2017 - [] AD -- C:\Program Files (x86)\Common Files\Adobe =>.Adobe
O43 - CFD: 18/12/2016 - [] D -- C:\Program Files (x86)\Common Files\Apple =>.Apple Inc.
O43 - CFD: 07/06/2017 - [] AD -- C:\Program Files (x86)\Common Files\DESIGNER =>.Designer
O43 - CFD: 14/09/2017 - [] D -- C:\Program Files (x86)\Common Files\Intel =>.Intel Corporation
O43 - CFD: 15/09/2017 - [] D -- C:\Program Files (x86)\Common Files\Java =>.Oracle
O43 - CFD: 14/09/2017 - [] AD -- C:\Program Files (x86)\Common Files\Microsoft Shared =>.Microsoft Corporation
O43 - CFD: 15/11/2016 - [] AD -- C:\Program Files (x86)\Common Files\Nitro =>.Nitro
O43 - CFD: 27/08/2016 - [] D -- C:\Program Files (x86)\Common Files\PX Storage Engine =>.Sonic Solutions
O43 - CFD: 18/03/2017 - [] D -- C:\Program Files (x86)\Common Files\Services =>.Microsoft Corporation
O43 - CFD: 20/03/2017 - [] D -- C:\Program Files (x86)\Common Files\System =>.Microsoft Corporation
O43 - CFD: 02/05/2017 - [] D -- C:\Users\olivier\AppData\Roaming\AccurateRip =>.Legitimate
O43 - CFD: 25/09/2016 - [] D -- C:\Users\olivier\AppData\Roaming\Adobe =>.Adobe
O43 - CFD: 13/11/2016 - [] D -- C:\Users\olivier\AppData\Roaming\Apowersoft =>.Apowersoft
O43 - CFD: 17/09/2016 - [] D -- C:\Users\olivier\AppData\Roaming\Apple Computer =>.Apple Inc.
O43 - CFD: 11/06/2017 - [] D -- C:\Users\olivier\AppData\Roaming\Audacity =>.Audacity
O43 - CFD: 10/11/2016 - [] D -- C:\Users\olivier\AppData\Roaming\Corel =>.Corel Corporation
O43 - CFD: 20/11/2016 - [] D -- C:\Users\olivier\AppData\Roaming\CyberLink =>.CyberLink Corporation
O43 - CFD: 09/12/2017 - [] D -- C:\Users\olivier\AppData\Roaming\DAEMON Tools Lite =>.DAEMON Tools
O43 - CFD: 02/05/2017 - [] D -- C:\Users\olivier\AppData\Roaming\dBpoweramp =>.Illustrate
O43 - CFD: 24/08/2016 - [] D -- C:\Users\olivier\AppData\Roaming\Desktop =>.Microsoft Corporation
O43 - CFD: 08/09/2016 - [] D -- C:\Users\olivier\AppData\Roaming\DirectoryListPrintPro =>.Infonautics GmbH
O43 - CFD: 15/11/2016 - [] D -- C:\Users\olivier\AppData\Roaming\Downloaded Installations =>.Microsoft Corporation
O43 - CFD: 27/10/2017 - [] D -- C:\Users\olivier\AppData\Roaming\DS4Windows =>.DSDCS
O43 - CFD: 01/09/2016 - [] D -- C:\Users\olivier\AppData\Roaming\DxO Labs =>.DxO Labs
O43 - CFD: 25/09/2016 - [] D -- C:\Users\olivier\AppData\Roaming\Emjysoft =>.Emjysoft
O43 - CFD: 16/02/2017 - [] D -- C:\Users\olivier\AppData\Roaming\epm =>.Easus
O43 - CFD: 28/12/2017 - [] D -- C:\Users\olivier\AppData\Roaming\etcher
O43 - CFD: 02/09/2016 - [] D -- C:\Users\olivier\AppData\Roaming\Expert PDF 8
O43 - CFD: 07/12/2017 - [] D -- C:\Users\olivier\AppData\Roaming\FileZilla =>.FileZilla
O43 - CFD: 23/08/2016 - [] D -- C:\Users\olivier\AppData\Roaming\Geek Uninstaller =>.Geek Uninstaller
O43 - CFD: 26/08/2017 - [] D -- C:\Users\olivier\AppData\Roaming\Google =>.Google
O43 - CFD: 22/08/2016 - [] D -- C:\Users\olivier\AppData\Roaming\Hewlett-Packard =>.Hewlett-Packard
O43 - CFD: 30/08/2016 - [] D -- C:\Users\olivier\AppData\Roaming\HP_Easy_Start =>.Hewlett-Packard
O43 - CFD: 09/11/2016 - [] D -- C:\Users\olivier\AppData\Roaming\JAM Software =>.JAM Software
O43 - CFD: 28/12/2017 - [] D -- C:\Users\olivier\AppData\Roaming\LibreELEC
O43 - CFD: 02/10/2016 - [] D -- C:\Users\olivier\AppData\Roaming\livestreamer =>.Legitimate
O43 - CFD: 22/08/2016 - [] D -- C:\Users\olivier\AppData\Roaming\Macromedia =>.Macromedia
O43 - CFD: 24/08/2016 - [] D -- C:\Users\olivier\AppData\Roaming\MediaInfo =>.Jérôme Martinez
O43 - CFD: 14/09/2017 - [] SD -- C:\Users\olivier\AppData\Roaming\Microsoft =>.Microsoft Corporation
O43 - CFD: 23/09/2017 - [] D -- C:\Users\olivier\AppData\Roaming\Mozilla =>.Mozilla Corporation
O43 - CFD: 27/08/2016 - [] D -- C:\Users\olivier\AppData\Roaming\Mozilla.old
O43 - CFD: 15/11/2016 - [] D -- C:\Users\olivier\AppData\Roaming\Nitro =>.Nitro
O43 - CFD: 25/09/2016 - [] D -- C:\Users\olivier\AppData\Roaming\Notepad++ =>.Don Ho
O43 - CFD: 06/10/2017 - [] D -- C:\Users\olivier\AppData\Roaming\obs-studio =>.OBS-Studio
O43 - CFD: 22/08/2016 - [] D -- C:\Users\olivier\AppData\Roaming\OpenDNS Updater
O43 - CFD: 24/08/2016 - [] D -- C:\Users\olivier\AppData\Roaming\Profiles =>.Microsoft Corporation
O43 - CFD: 06/09/2016 - [] D -- C:\Users\olivier\AppData\Roaming\Promethean =>.Promethean
O43 - CFD: 26/08/2017 - [] D -- C:\Users\olivier\AppData\Roaming\SHAPE
O43 - CFD: 25/09/2016 - [] D -- C:\Users\olivier\AppData\Roaming\Skype =>.Skype
O43 - CFD: 30/08/2016 - [] D -- C:\Users\olivier\AppData\Roaming\Sony Corporation =>.Sony Corporation
O43 - CFD: 06/12/2017 - [] D -- C:\Users\olivier\AppData\Roaming\Subtitle Edit =>.Nikse
O43 - CFD: 23/10/2016 - [] D -- C:\Users\olivier\AppData\Roaming\Sun =>.Oracle
O43 - CFD: 06/12/2017 - [] D -- C:\Users\olivier\AppData\Roaming\SupRip
O43 - CFD: 27/08/2016 - [] D -- C:\Users\olivier\AppData\Roaming\Thunderbird =>.Thunderbird
O43 - CFD: 10/03/2017 - [] D -- C:\Users\olivier\AppData\Roaming\USB_HELPER
O43 - CFD: 31/12/2017 - [] D -- C:\Users\olivier\AppData\Roaming\vlc =>.VideoLan Team
O43 - CFD: 10/01/2017 - [0] D -- C:\Users\olivier\AppData\Roaming\Western Digital =>.Western Digital
O43 - CFD: 24/08/2016 - [] D -- C:\Users\olivier\AppData\Roaming\WildTangent =>.WildTangent
O43 - CFD: 27/12/2016 - [] D -- C:\Users\olivier\AppData\Roaming\Winamp =>.Winamp
O43 - CFD: 22/08/2016 - [] D -- C:\Users\olivier\AppData\Roaming\WinRAR =>.WinRAR
O43 - CFD: 01/01/2018 - [] D -- C:\Users\olivier\AppData\Roaming\WTablet =>.Wacom Technology
O43 - CFD: 01/01/2018 - [] D -- C:\Users\olivier\AppData\Roaming\ZHP =>.Nicolas Coolman
O43 - CFD: 25/08/2016 - [0] D -- C:\Users\olivier\AppData\Local\ActiveSync =>.Microsoft Corporation
O43 - CFD: 30/12/2017 - [] D -- C:\Users\olivier\AppData\Local\Adobe =>.Adobe
O43 - CFD: 27/10/2017 - [] D -- C:\Users\olivier\AppData\Local\AM2R
O43 - CFD: 18/12/2016 - [] D -- C:\Users\olivier\AppData\Local\Apple =>.Apple Inc.
O43 - CFD: 01/09/2016 - [] D -- C:\Users\olivier\AppData\Local\Apple Computer =>.Apple Inc.
O43 - CFD: 14/09/2017 - [0] SHD -- C:\Users\olivier\AppData\Local\Application Data =>.Microsoft Corporation
O43 - CFD: 28/08/2016 - [] D -- C:\Users\olivier\AppData\Local\Apps =>.Microsoft Corporation
O43 - CFD: 27/08/2016 - [] D -- C:\Users\olivier\AppData\Local\Audacity =>.Audacity
O43 - CFD: 28/09/2016 - [] D -- C:\Users\olivier\AppData\Local\Bluestacks =>.BlueStack Systems, Inc.
O43 - CFD: 24/08/2016 - [] D -- C:\Users\olivier\AppData\Local\bunkus.org =>.bunkus.org
O43 - CFD: 26/08/2016 - [] D -- C:\Users\olivier\AppData\Local\CEF =>.CEF
O43 - CFD: 27/12/2016 - [] D -- C:\Users\olivier\AppData\Local\Cinema_Squid
O43 - CFD: 15/10/2017 - [] D -- C:\Users\olivier\AppData\Local\Comms =>.Microsoft Corporation
O43 - CFD: 25/09/2016 - [] D -- C:\Users\olivier\AppData\Local\ConnectedDevicesPlatform =>.Microsoft Corporation
O43 - CFD: 01/09/2016 - [] D -- C:\Users\olivier\AppData\Local\CrashRpt
O43 - CFD: 01/09/2016 - [] D -- C:\Users\olivier\AppData\Local\CyberLink =>.CyberLink Corporation
O43 - CFD: 14/09/2017 - [0] D -- C:\Users\olivier\AppData\Local\DBG =>.DBG
O43 - CFD: 18/10/2017 - [0] D -- C:\Users\olivier\AppData\Local\Diagnostics =>.Microsoft Corporation
O43 - CFD: 29/04/2017 - [] D -- C:\Users\olivier\AppData\Local\Disc_Soft_Ltd =>.Disc Soft Ltd
O43 - CFD: 06/09/2017 - [] D -- C:\Users\olivier\AppData\Local\Downloaded Installations =>.Microsoft Corporation
O43 - CFD: 01/09/2016 - [] D -- C:\Users\olivier\AppData\Local\DxO_Labs =>.DxO Labs
O43 - CFD: 18/10/2017 - [0] D -- C:\Users\olivier\AppData\Local\ElevatedDiagnostics =>.Microsoft Corporation
O43 - CFD: 23/08/2016 - [] D -- C:\Users\olivier\AppData\Local\ESET =>.ESET
O43 - CFD: 02/07/2017 - [] D -- C:\Users\olivier\AppData\Local\FileZilla =>.FileZilla
O43 - CFD: 08/11/2016 - [] D -- C:\Users\olivier\AppData\Local\FluxSoftware =>.Stereopsis
O43 - CFD: 01/04/2017 - [] D -- C:\Users\olivier\AppData\Local\Google =>.Google
O43 - CFD: 14/10/2017 - [] D -- C:\Users\olivier\AppData\Local\Hewlett-Packard =>.Hewlett-Packard
O43 - CFD: 08/03/2017 - [] D -- C:\Users\olivier\AppData\Local\Hikari06
O43 - CFD: 14/09/2017 - [0] SHD -- C:\Users\olivier\AppData\Local\Historique =>.Microsoft Corporation
O43 - CFD: 30/08/2016 - [] D -- C:\Users\olivier\AppData\Local\HP =>.Hewlett-Packard
O43 - CFD: 22/08/2016 - [] D -- C:\Users\olivier\AppData\Local\HP_Inc =>.Hewlett-Packard
O43 - CFD: 29/12/2016 - [] D -- C:\Users\olivier\AppData\Local\initPRAGMA
O43 - CFD: 01/09/2016 - [] D -- C:\Users\olivier\AppData\Local\IsolatedStorage =>.id Software
O43 - CFD: 01/01/2018 - [] AD -- C:\Users\olivier\AppData\Local\JDownloader 2.0 =>.JDownloader
O43 - CFD: 23/08/2016 - [] D -- C:\Users\olivier\AppData\Local\LogMeIn Rescue Calling Card =>.LogMeIn Entreprise
O43 - CFD: 28/09/2016 - [] D -- C:\Users\olivier\AppData\Local\Macromedia =>.Macromedia
O43 - CFD: 05/10/2017 - [] D -- C:\Users\olivier\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 06/02/2017 - [] D -- C:\Users\olivier\AppData\Local\Microsoft Help =>.Microsoft Corporation
O43 - CFD: 22/08/2016 - [] D -- C:\Users\olivier\AppData\Local\MicrosoftEdge =>.Microsoft Corporation
O43 - CFD: 23/09/2017 - [] D -- C:\Users\olivier\AppData\Local\Mozilla =>.Mozilla Corporation
O43 - CFD: 24/08/2016 - [] D -- C:\Users\olivier\AppData\Local\MSfree Inc =>HackTool.WinActivator
O43 - CFD: 26/08/2016 - [0] D -- C:\Users\olivier\AppData\Local\NetworkTiles =>.NetworkTiles
O43 - CFD: 23/10/2016 - [] D -- C:\Users\olivier\AppData\Local\NUSGrabberGUI
O43 - CFD: 02/11/2016 - [] D -- C:\Users\olivier\AppData\Local\Package Cache =>.Microsoft Corporation
O43 - CFD: 14/12/2017 - [] D -- C:\Users\olivier\AppData\Local\Packages =>.Microsoft Corporation
O43 - CFD: 02/11/2016 - [] D -- C:\Users\olivier\AppData\Local\pip =>.Python
O43 - CFD: 24/08/2016 - [] D -- C:\Users\olivier\AppData\Local\Profiles =>.Microsoft Corporation
O43 - CFD: 28/12/2017 - [] D -- C:\Users\olivier\AppData\Local\Programs =>.Microsoft Corporation
O43 - CFD: 22/08/2016 - [] D -- C:\Users\olivier\AppData\Local\Publishers =>.Microsoft Corporation
O43 - CFD: 05/10/2017 - [] D -- C:\Users\olivier\AppData\Local\Recovery =>.Recovery Labs
O43 - CFD: 24/08/2016 - [] D -- C:\Users\olivier\AppData\Local\Renault =>.Renault
O43 - CFD: 27/08/2016 - [] D -- C:\Users\olivier\AppData\Local\speech =>.Microsoft Corporation
O43 - CFD: 26/12/2016 - [] D -- C:\Users\olivier\AppData\Local\SquirrelTemp =>.Squirrels
O43 - CFD: 01/01/2018 - [] D -- C:\Users\olivier\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 14/09/2017 - [0] SHD -- C:\Users\olivier\AppData\Local\Temporary Internet Files =>.Microsoft Corporation
O43 - CFD: 24/08/2016 - [] D -- C:\Users\olivier\AppData\Local\Thunderbird =>.Thunderbird
O43 - CFD: 14/09/2017 - [] D -- C:\Users\olivier\AppData\Local\TileDataLayer =>.Microsoft Corporation
O43 - CFD: 06/09/2017 - [] D -- C:\Users\olivier\AppData\Local\Trend Micro =>.Trend Micro
O43 - CFD: 07/07/2017 - [] D -- C:\Users\olivier\AppData\Local\UNP =>.Microsoft Corporation
O43 - CFD: 04/11/2016 - [] D -- C:\Users\olivier\AppData\Local\uTikDownloadHelper
O43 - CFD: 10/07/2017 - [] D -- C:\Users\olivier\AppData\Local\VirtualStore =>.Microsoft Corporation
O43 - CFD: 23/08/2016 - [] D -- C:\Users\olivier\AppData\Local\VS Revo Group =>.VS Revo Group
O43 - CFD: 16/11/2016 - [] D -- C:\Users\olivier\AppData\Local\WBFSManager
O43 - CFD: 10/01/2017 - [0] D -- C:\Users\olivier\AppData\Local\Western Digital =>.Western Digital
O43 - CFD: 02/07/2017 - [] D -- C:\Users\olivier\AppData\Local\Windscribe =>.Windscribe
O43 - CFD: 27/11/2016 - [] D -- C:\Users\olivier\AppData\Local\X-Ways
O43 - CFD: 01/01/2018 - [] D -- C:\Users\olivier\AppData\Local\ZHP =>.Nicolas Coolman
O43 - CFD: 22/08/2016 - [0] D -- C:\Users\olivier\AppData\Local\Programs\Common =>.Microsoft Corporation
O43 - CFD: 28/12/2017 - [] D -- C:\Users\olivier\AppData\Local\Programs\etcher
O43 - CFD: 04/10/2017 - [] D -- C:\Users\olivier\AppData\Local\Programs\Fiddler
O43 - CFD: 02/11/2016 - [] D -- C:\Users\olivier\AppData\Local\Programs\Python =>.Python
O43 - CFD: 06/10/2017 - [] D -- C:\Users\olivier\Desktop\Aricles Word
O43 - CFD: 30/12/2017 - [] D -- C:\Users\olivier\Desktop\BEELINK
O43 - CFD: 04/12/2017 - [] D -- C:\Users\olivier\Desktop\DCIM
O43 - CFD: 27/06/2017 - [] D -- C:\Users\olivier\Desktop\meditation
O43 - CFD: 01/01/2018 - [] D -- C:\Users\olivier\Desktop\PC infecté
O43 - CFD: 14/09/2017 - [] D -- C:\Users\olivier\Desktop\vice versa =>.RSA Security
O43 - CFD: 15/09/2017 - [] RD -- C:\Users\olivier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility =>.Microsoft Corporation
O43 - CFD: 05/10/2017 - [] RD -- C:\Users\olivier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories =>.Microsoft Corporation
O43 - CFD: 14/12/2017 - [] RD -- C:\Users\olivier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools
O43 - CFD: 14/09/2017 - [] D -- C:\Users\olivier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bigasoft =>.Bigasoft Corporation
O43 - CFD: 07/10/2017 - [] D -- C:\Users\olivier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client =>.Tim Kosse
O43 - CFD: 14/09/2017 - [] D -- C:\Users\olivier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Haali Media Splitter =>.Mike Matsnev
O43 - CFD: 14/09/2017 - [] D -- C:\Users\olivier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader =>.JDownloader
O43 - CFD: 18/03/2017 - [] D -- C:\Users\olivier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance =>.Microsoft Corporation
O43 - CFD: 14/09/2017 - [] D -- C:\Users\olivier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MP3Gain =>.Glen Sawyer
O43 - CFD: 14/09/2017 - [] D -- C:\Users\olivier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Outil de téléchargement USB DVD Windows 7
O43 - CFD: 14/09/2017 - [] D -- C:\Users\olivier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Python 3.5 =>.Python
O43 - CFD: 31/12/2017 - [] RD -- C:\Users\olivier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup =>.Microsoft Corporation
O43 - CFD: 15/09/2017 - [] RD -- C:\Users\olivier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools =>.Microsoft Corporation
O43 - CFD: 14/09/2017 - [] D -- C:\Users\olivier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TimeAdjuster
O43 - CFD: 14/09/2017 - [] D -- C:\Users\olivier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Trend Micro Internet Security =>.Trend Micro
O43 - CFD: 14/09/2017 - [] D -- C:\Users\olivier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WBFS Manager
O43 - CFD: 10/03/2017 - [0] D -- C:\Users\olivier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WiiU_USB_Helper
O43 - CFD: 15/09/2017 - [] RD -- C:\Users\olivier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell =>.Microsoft Corporation
O43 - CFD: 14/09/2017 - [] D -- C:\Users\olivier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR
O43 - CFD: 14/09/2017 - [0] SHD -- C:\Users\Default\AppData\Local\Application Data =>.Microsoft Corporation
O43 - CFD: 25/09/2016 - [0] SHD -- C:\Users\Default\AppData\Local\Historique =>.Microsoft Corporation
O43 - CFD: 20/03/2017 - [] D -- C:\Users\Default\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [0] D -- C:\Users\Default\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 14/09/2017 - [0] SHD -- C:\Users\Default\AppData\Local\Temporary Internet Files =>.Microsoft Corporation
O43 - CFD: 14/09/2017 - [0] SHD -- C:\Users\Default User\AppData\Local\Application Data =>.Microsoft Corporation
O43 - CFD: 25/09/2016 - [0] SHD -- C:\Users\Default User\AppData\Local\Historique =>.Microsoft Corporation
O43 - CFD: 20/03/2017 - [] D -- C:\Users\Default User\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 18/03/2017 - [0] D -- C:\Users\Default User\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 14/09/2017 - [0] SHD -- C:\Users\Default User\AppData\Local\Temporary Internet Files =>.Microsoft Corporation
O43 - CFD: 04/10/2017 - [0] D -- C:\WINDOWS\System32\Config\systemprofile\AppData\Local\DBG =>.DBG
O43 - CFD: 14/09/2017 - [] D -- C:\WINDOWS\System32\Config\systemprofile\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 15/10/2017 - [] D -- C:\WINDOWS\System32\Config\systemprofile\AppData\Roaming\Microsoft =>.Microsoft Corporation
O43 - CFD: 14/09/2017 - [0] -- C:\WINDOWS\System32\Config\systemprofile\AppData\Roaming\Windscribe =>.Windscribe
User empty folders CLSID founds (1). Clean with ZHPFix 'EmptyCLSID' command =>.SUP.Empty.CLSID

---\\ ShellIconOverlayIdentifiers (SIOI) (4) - 1s
O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 1 (ErrorConflict) [ SkyDrivePro1 (ErrorConflict)] - {8BA85C75-763B-4103-94EB-9470F12FE0F7}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 2 (SyncInProgress) [ SkyDrivePro2 (SyncInProgress)] - {CD55129A-B1A1-438E-A425-CEBC7DC684EE}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 3 (InSync) [ SkyDrivePro3 (InSync)] - {E768CD3B-BDDC-436D-9C13-E1B39CA257B1}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - DLL d’extension d’environnement de stockage.) -- C:\Windows\System32\EhStorShell.dll =>.Microsoft Corporation

---\\ Raccourcis de menus conceptuels (SCMH) (47) - 5s
O108 - CMH1: KuaiZipShlExt [64Bits] - {6ADF19E3-77A3-4395-ADB4-9FD7D351EB3E} . (.Orphan.) =>.SUP.ShanghaiGuangle
O108 - CMH1: FileSyncEx [64Bits] - {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} . (.Orphan.)
O108 - CMH1: 7-Zip [64Bits] - {23170F69-40C1-278A-1000-000100020000} . (.Igor Pavlov - 7-Zip Shell Extension.) -- C:\Program Files\7-Zip\7-zip.dll =>.Igor Pavlov
O108 - CMH1: ANotepad++64 [64Bits] - {B298D29A-A6ED-11DE-BA8C-A68E55D89593} . (.Copyright © 2010 - ShellHandler for Notepad++ (64 bit).) -- C:\Program Files (x86)\Notepad++\NppShell_06.dll =>.Notepad++®
O108 - CMH1: ContextMenuExt [64Bits] - {6ADF19E3-77A3-4395-ADB4-9FD7D351EB3E} . (.Orphan.)
O108 - CMH1: EPP [64Bits] - {09A47860-11B0-4DA5-AFA5-26D86198A780} . (.Microsoft Corporation - Extension Microsoft Security Client Shell.) -- C:\ProgramData\Microsoft\Windows Defender\Platform\4.12.17007.17123-0\shellext.dll =>.Microsoft Windows®
O108 - CMH1: ModernSharing [64Bits] - {e2bf9676-5f8f-435c-97eb-11607a5bedf7} . (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation
O108 - CMH1: Mp3tagShell [64Bits] - {6351E20C-35FA-4BE3-98FB-4CABF1363E12} . (.Florian Heidenreich - Shell Extension Mp3tag - the universal Tag.) -- C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll =>.Florian Heidenreich
O108 - CMH1: NP8ShellExtension [64Bits] - {9C4B85B8-956C-49BF-9BA5-101384E562B2} . (.Nitro PDF - Nitro Pro ShellExtension.) -- C:\Program Files\Nitro\Pro 10\NPShellExtension.dll =>.Nitro Software, Inc.®
O108 - CMH1: Open With [64Bits] - {09799AFB-AD67-11d1-ABCD-00C04FC30936} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH1: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation
O108 - CMH1: WinRAR [64Bits] - {B41DB860-64E4-11D2-9906-E49FADC173CA} . (...) -- C:\Program Files\WinRAR\RarExt.dll
O108 - CMH1: WinRAR32 [64Bits] - {B41DB860-8EE4-11D2-9906-E49FADC173CA} . (.Orphan.)
O108 - CMH1: WorkFolders [64Bits] - {E61BF828-5E63-4287-BEF1-60B1A4FDE0E3} . (.Microsoft Corporation - Extension d’environnement de Dossiers de tr.) -- C:\Windows\System32\WorkfoldersShell.dll =>.Microsoft Corporation
O108 - CMH2: OpenContainingFolderMenu [64Bits] - {37ea3a21-7493-4208-a011-7f9ea79ce9f5} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH3: 00avast [64Bits] - {472083B0-C522-11CF-8763-00608CC02F24} . (.Orphan.)
O108 - CMH3: CopyAsPathMenu [64Bits] - {f3d06e7c-1e45-4a26-847e-f9fcdee59be0} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH3: MBAMShlExt [64Bits] - {57CE581A-0CB6-4266-9CA0-19364C90A0B3} . (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll =>.Malwarebytes Corporation®
O108 - CMH3: SendTo [64Bits] - {7BA4C740-9E81-11CF-99D3-00AA004AE837} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH4: FileSyncEx [64Bits] - {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} . (.Orphan.)
O108 - CMH4: 7-Zip [64Bits] - {23170F69-40C1-278A-1000-000100020000} . (.Igor Pavlov - 7-Zip Shell Extension.) -- C:\Program Files\7-Zip\7-zip.dll =>.Igor Pavlov
O108 - CMH4: EPP [64Bits] - {09A47860-11B0-4DA5-AFA5-26D86198A780} . (.Microsoft Corporation - Extension Microsoft Security Client Shell.) -- C:\ProgramData\Microsoft\Windows Defender\Platform\4.12.17007.17123-0\shellext.dll =>.Microsoft Windows®
O108 - CMH4: Mp3tagShell [64Bits] - {6351E20C-35FA-4BE3-98FB-4CABF1363E12} . (.Florian Heidenreich - Shell Extension Mp3tag - the universal Tag.) -- C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll =>.Florian Heidenreich
O108 - CMH4: Offline Files [64Bits] - {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} . (.Orphan.)
O108 - CMH4: RecuvaShellExt [64Bits] - {435E5DF5-2510-463C-B223-BDA47006D002} . (.Piriform Ltd - Recuva shell extensions.) -- C:\Program Files\Recuva\RecuvaShell64.dll =>.Piriform Ltd®
O108 - CMH4: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation
O108 - CMH4: WinRAR [64Bits] - {B41DB860-64E4-11D2-9906-E49FADC173CA} . (...) -- C:\Program Files\WinRAR\RarExt.dll
O108 - CMH4: WinRAR32 [64Bits] - {B41DB860-8EE4-11D2-9906-E49FADC173CA} . (.Orphan.)
O108 - CMH4: WorkFolders [64Bits] - {E61BF828-5E63-4287-BEF1-60B1A4FDE0E3} . (.Microsoft Corporation - Extension d’environnement de Dossiers de tr.) -- C:\Windows\System32\WorkfoldersShell.dll =>.Microsoft Corporation
O108 - CMH5: igfxcui [64Bits] - {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} . (.Orphan.)
O108 - CMH5: igfxDTCM [64Bits] - {9B5F5829-A529-4B12-814A-E81BCB8D93FC} . (.Intel Corporation - igfxDTCM Module.) -- C:\Windows\System32\DriverStore\FileRepository\ki124994.inf_amd64_4d880b3eb8bd7056\igfxDTCM.dll =>.Microsoft Windows Hardware Compatibility Publisher®
O108 - CMH5: New [64Bits] - {D969A300-E7FF-11d0-A93B-00A0C90F2719} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH5: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation
O108 - CMH5: WorkFolders [64Bits] - {E61BF828-5E63-4287-BEF1-60B1A4FDE0E3} . (.Microsoft Corporation - Extension d’environnement de Dossiers de tr.) -- C:\Windows\System32\WorkfoldersShell.dll =>.Microsoft Corporation
O108 - CMH6: 7-Zip [64Bits] - {23170F69-40C1-278A-1000-000100020000} . (.Igor Pavlov - 7-Zip Shell Extension.) -- C:\Program Files\7-Zip\7-zip.dll =>.Igor Pavlov
O108 - CMH6: Library Location [64Bits] - {3dad6c5d-2167-4cae-9914-f99e41c12cfa} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH6: MBAMShlExt [64Bits] - {57CE581A-0CB6-4266-9CA0-19364C90A0B3} . (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll =>.Malwarebytes Corporation®
O108 - CMH6: Offline Files [64Bits] - {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} . (.Orphan.)
O108 - CMH6: PintoStartScreen [64Bits] - {470C0EBD-5D73-4d58-9CED-E91E22E23282} . (.Microsoft Corporation - Programme de résolution d’applications.) -- C:\Windows\System32\appresolver.dll =>.Microsoft Windows®
O108 - CMH6: RecuvaShellExt [64Bits] - {435E5DF5-2510-463C-B223-BDA47006D002} . (.Piriform Ltd - Recuva shell extensions.) -- C:\Program Files\Recuva\RecuvaShell64.dll =>.Piriform Ltd®
O108 - CMH6: RUShellExt [64Bits] - {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} . (.VS Revo Group - Revo Uninstaller Pro Extension.) -- C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RUExt.dll =>.VS Revo Group®
O108 - CMH6: WinRAR [64Bits] - {B41DB860-64E4-11D2-9906-E49FADC173CA} . (...) -- C:\Program Files\WinRAR\RarExt.dll
O108 - CMH6: WinRAR32 [64Bits] - {B41DB860-8EE4-11D2-9906-E49FADC173CA} . (.Orphan.)
O108 - CMH7: EnhancedStorageShell [64Bits] - {2854F705-3548-414C-A113-93E27C808C85} . (.Microsoft Corporation - DLL d’extension d’environnement de stockage.) -- C:\Windows\System32\EhStorShell.dll =>.Microsoft Corporation
O108 - CMH7: EPP [64Bits] - {09A47860-11B0-4DA5-AFA5-26D86198A780} . (.Microsoft Corporation - Extension Microsoft Security Client Shell.) -- C:\ProgramData\Microsoft\Windows Defender\Platform\4.12.17007.17123-0\shellext.dll =>.Microsoft Windows®
O108 - CMH7: Mp3tagShell [64Bits] - {6351E20C-35FA-4BE3-98FB-4CABF1363E12} . (.Florian Heidenreich - Shell Extension Mp3tag - the universal Tag.) -- C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll =>.Florian Heidenreich
O108 - CMH7: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation

---\\ Image File Execution Options (18) - 3s
O50 - IFEO:C:\Windows\System32\cscript.exe - (.Microsoft Corporation - Microsoft ® Console Based Script Host.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\dllhost.exe - (.Microsoft Corporation - COM Surrogate.) [DisableExceptionChainValidation\\3] =>.Microsoft Windows®
O50 - IFEO:C:\WINDOWS\System32\drvinst.exe - (.Microsoft Corporation - Module d’installation de pilotes.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\ie4uinit.exe - (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\ieUnatt.exe - (.Microsoft Corporation - Outil d’installation sans assistance d’IE 7.) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\mmc.exe - (.Microsoft Corporation - Microsoft Management Console.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\MRT.exe - (.Microsoft Corporation - Outil de suppression de logiciels malveilla.) [CFGOptions\\1] {3300000019CB58D66BE3198DB7000000000019} =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\msfeedssync.exe - (.Microsoft Corporation - Microsoft Feeds Synchronization.) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\mshta.exe - (.Microsoft Corporation - Hôte des applications HTML de Microsoft(R).) [MitigationOptions\\256] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\PresentationHost.exe - (.Microsoft Corporation - Windows Presentation Foundation Host.) [MitigationOptions\\1118481] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\PrintIsolationHost.exe - (.Microsoft Corporation - PrintIsolationHost.) [MitigationOptions\\2097152] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\rundll32.exe - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\runtimebroker.exe - (.Microsoft Corporation - Runtime Broker.) [MitigationOptions\\4294967296] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\searchprotocolhost.exe - (.Microsoft Corporation - Microsoft Windows Search Protocol Host.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\spoolsv.exe - (.Microsoft Corporation - Application sous-système spouleur.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation
O50 - IFEO:C:\WINDOWS\System32\spoolsv.exe - (.Microsoft Corporation - Application sous-système spouleur.) [MitigationOptions\\2097152] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\svchost.exe - (.Microsoft Corporation - Processus hôte pour les services Windows.) [MinimumStackCommitInBytes\\32768] =>.Microsoft Windows Publisher®
O50 - IFEO:C:\Windows\System32\wscript.exe - (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation

---\\ Liste des pilotes du système (82) - 25s
O58 - SDL:2017/03/18 21:56:25 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\WINDOWS\System32\drivers\3ware.sys [107424] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS.) -- C:\WINDOWS\System32\drivers\adp80xx.sys [1135512] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\WINDOWS\System32\drivers\amdsata.sys [83352] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\WINDOWS\System32\drivers\amdsbs.sys [259488] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\WINDOWS\System32\drivers\amdxata.sys [27040] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\WINDOWS\System32\drivers\arcsas.sys [132000] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\WINDOWS\System32\drivers\bcmfn2.sys [9728] =>.Windows (R) Win 7 DDK provider
O58 - SDL:2017/03/18 21:56:23 A . (.QLogic Corporation - QLogic Gigabit Ethernet VBD.) -- C:\WINDOWS\System32\drivers\bxvbda.sys [533920] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.Chelsio Communications - Chelsio iSCSI Crash Dump Driver.) -- C:\WINDOWS\System32\drivers\cht4dx64.sys [102816] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.Chelsio Communications - Chelsio iSCSI VMiniport Driver.) -- C:\WINDOWS\System32\drivers\cht4sx64.sys [347032] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.Chelsio Communications - Virtual Bus Driver for Chelsio ® T4 Chipset.) -- C:\WINDOWS\System32\drivers\cht4vx64.sys [2104224] =>.Microsoft Windows®
O58 - SDL:2017/04/29 08:59:39 A . (.Disc Soft Ltd - DAEMON Tools Lite Virtual SCSI Bus Driver.) -- C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264] =>.Disc Soft Ltd®
O58 - SDL:2017/04/29 08:59:50 A . (.Disc Soft Ltd - DAEMON Tools Lite Virtual USB Bus Driver.) -- C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672] =>.Disc Soft Ltd®
O58 - SDL:2016/02/23 14:25:30 A . (.ESET - Epfw NDIS LightWeight Filter.) -- C:\WINDOWS\System32\drivers\EpfwLWF.sys [53384] =>.ESET, spol. s r.o.®
O58 - SDL:2017/03/18 21:56:23 A . (.QLogic Corporation - QLogic 10 GigE VBD.) -- C:\WINDOWS\System32\drivers\evbda.sys [3419040] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\WINDOWS\System32\drivers\HpSAMD.sys [64416] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:28 A . (.Intel(R) Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\iagpio.sys [33280] =>.Intel(R) Corporation
O58 - SDL:2017/03/18 21:56:28 A . (.Intel(R) Corporation - Intel(R) Serial IO I2C Driver.) -- C:\WINDOWS\System32\drivers\iai2c.sys [81408] =>.Intel(R) Corporation
O58 - SDL:2017/03/18 21:56:28 A . (.Intel Corporation - Intel(R) Serial IO GPIO Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [70656] =>.Intel Corporation
O58 - SDL:2017/03/18 21:56:28 A . (.Intel Corporation - Intel(R) Serial IO GPIO Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [85504] =>.Intel Corporation
O58 - SDL:2017/03/18 21:56:28 A . (.Intel Corporation - Intel(R) Serial IO I2C Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [165376] =>.Intel Corporation
O58 - SDL:2017/03/18 21:56:28 A . (.Intel Corporation - Intel(R) Serial IO I2C Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [168448] =>.Intel Corporation
O58 - SDL:2017/03/18 21:56:23 A . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [38128] =>.Intel Corporation - Client Components Group®
O58 - SDL:2017/03/18 21:56:19 A . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [113152] =>.Intel Corporation
O58 - SDL:2016/09/20 10:04:30 A . (.Intel Corporation - Intel(R) Rapid Storage Technology driver -.) -- C:\WINDOWS\System32\drivers\iaStorA.sys [795640] =>.Intel(R) Rapid Storage Technology®
O58 - SDL:2017/03/18 21:56:26 A . (.Intel Corporation - Intel(R) Rapid Storage Technology driver (i.) -- C:\WINDOWS\System32\drivers\iaStorAV.sys [673184] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:26 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\WINDOWS\System32\drivers\iaStorV.sys [412064] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.Mellanox - InfiniBand Fabric Bus Driver.) -- C:\WINDOWS\System32\drivers\ibbus.sys [526240] =>.Microsoft Windows®
O58 - SDL:2017/06/30 15:47:14 A . (...) -- C:\WINDOWS\System32\drivers\idisplay.sys [40040] =>.Microsoft Windows Hardware Compatibility Publisher®
O58 - SDL:2017/06/23 12:54:26 A . (...) -- C:\WINDOWS\System32\drivers\idisplayfilter.sys [35352] =>.SHAPE GmbH®
O58 - SDL:2017/07/24 22:11:00 A . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\WINDOWS\System32\drivers\IntcDAud.sys [825376] =>.Intel(R) OWR®
O58 - SDL:2010/07/28 23:25:10 A . (.Initio Corporation - Initio Default Vendor Specific Device Drive.) -- C:\WINDOWS\System32\drivers\ivusb.sys [29720] =>.Initio Corporation®
O58 - SDL:2017/03/18 21:56:25 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas.sys [108960] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas2i.sys [123808] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.Avago Technologies - Avago SAS Gen3 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas3i.sys [103328] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sss.sys [82848] =>.Microsoft Windows®
O58 - SDL:2016/03/10 13:08:54 A . (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\mbam.sys [27008] =>.Malwarebytes Corporation®
O58 - SDL:2016/03/10 13:08:58 A . (.Malwarebytes - Malwarebytes Chameleon Protection Driver.) -- C:\WINDOWS\System32\drivers\mbamchameleon.sys [140672] =>.Malwarebytes Corporation®
O58 - SDL:2017/05/28 16:01:11 A . (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys [192216] =>.Malwarebytes Corporation®
O58 - SDL:2017/03/18 21:56:25 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\megasas.sys [59808] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\MegaSas2i.sys [64416] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\WINDOWS\System32\drivers\megasr.sys [575904] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.Mellanox - MLX4 Bus Driver.) -- C:\WINDOWS\System32\drivers\mlx4_bus.sys [842656] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\WINDOWS\System32\drivers\mvumis.sys [63904] =>.Microsoft Windows®
O58 - SDL:2016/03/10 13:09:10 A . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\WINDOWS\System32\drivers\mwac.sys [65408] =>.Malwarebytes Corporation®
O58 - SDL:2017/03/18 21:56:25 A . (.Mellanox - NetworkDirect Support Filter Driver.) -- C:\WINDOWS\System32\drivers\ndfltr.sys [108960] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\WINDOWS\System32\drivers\nvraid.sys [150432] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\WINDOWS\System32\drivers\nvstor.sys [166304] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas2i.sys [58784] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas3i.sys [61848] =>.Microsoft Windows®
O58 - SDL:2009/12/30 10:21:26 A . (.VS Revo Group - Revo Uninstaller Minifilter.) -- C:\WINDOWS\System32\drivers\revoflt.sys [31800] =>.VS Revo Group®
O58 - SDL:2015/10/10 16:27:32 A . (.Realtek - Realtek 8101E/8168/8169 NDIS 6.40 64-bit Dr.) -- C:\WINDOWS\System32\drivers\rt640x64.sys [935168] =>.Realtek Semiconductor Corp®
O58 - SDL:2016/06/29 19:29:44 A . (.Realtek Semiconductor Corporation - Realtek Bluetooth A2DP Driver.) -- C:\WINDOWS\System32\drivers\RtkA2dp.sys [207632] =>.Realtek Semiconductor Corp®
O58 - SDL:2017/07/20 05:41:10 A . (.Realtek Semiconductor Corporation - Realtek Bluetooth Filter Driver.) -- C:\WINDOWS\System32\drivers\RtkBtfilter.sys [723920] =>.Realtek Semiconductor Corp.®
O58 - SDL:2015/09/09 16:19:28 A . (.Realtek Semiconductor Corporation - Realtek Bluetooth Hands-free-AG Audio Drive.) -- C:\WINDOWS\System32\drivers\RtkHfp.sys [104688] =>.Realtek Semiconductor Corp®
O58 - SDL:2017/05/03 16:02:36 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\WINDOWS\System32\drivers\RTKVHD64.sys [5568504] =>.Realtek Semiconductor Corp.®
O58 - SDL:2016/02/02 11:18:14 A . (.Realtek Semiconductor Corp. - Realtek Pcie CardReader Driver for 2K/XP/Vi.) -- C:\WINDOWS\System32\drivers\RtsBaStor.sys [313048] =>.Realtek Semiconductor Corp®
O58 - SDL:2016/02/02 11:18:14 A . (.Realtek Semiconductor Corp. - Realtek Pcie CardReader Driver for 2K/XP/Vi.) -- C:\WINDOWS\System32\drivers\RtsP2Stor.sys [328920] =>.Realtek Semiconductor Corp®
O58 - SDL:2016/02/02 11:18:15 A . (.Realsil Semiconductor Corporation - RTS PCIE READER Driver.) -- C:\WINDOWS\System32\drivers\RtsPer.sys [777944] =>.Realtek Semiconductor Corp®
O58 - SDL:2016/02/02 11:18:15 A . (.Realtek Semiconductor Corp. - Realtek Pcie CardReader Driver for 2K/XP/Vi.) -- C:\WINDOWS\System32\drivers\RtsPStor.sys [367320] =>.Realtek Semiconductor Corp®
O58 - SDL:2016/08/05 08:09:48 A . (.Realsil Semiconductor Corporation - RTS USB READER Driver.) -- C:\WINDOWS\System32\drivers\RtsUer.sys [418784] =>.Realtek Semiconductor Corp.®
O58 - SDL:2017/08/17 22:47:18 A . (.Realtek Semiconductor Corporation - Realtek PCIE NDIS Driver 55887 55838.) -- C:\WINDOWS\System32\drivers\rtwlane.sys [6895984] =>.Realtek Semiconductor Corp.®
O58 - SDL:2013/05/19 01:02:52 A . (.Scarlet.Crush Productions - Scp Virtual Bus Driver.) -- C:\WINDOWS\System32\drivers\ScpVBus.sys [39168] =>.Bruce James®
O58 - SDL:2017/03/18 21:56:26 A . (...) -- C:\WINDOWS\System32\drivers\SDFRd.sys [31128] =>.Microsoft Windows®
O58 - SDL:2015/09/30 13:17:36 A . (.Windows (R) Win 7 DDK provider - Intel® Software Guard Extensions Device.) -- C:\WINDOWS\System32\drivers\sgx_driver.sys [54768] =>.Intel(R) Corporation®
O58 - SDL:2017/03/18 21:56:25 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid2.sys [44960] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid4.sys [81824] =>.Microsoft Windows®
O58 - SDL:2016/09/05 04:47:06 A . (.Samsung Electronics Co., Ltd. - SAMSUNG USB Composite Device Driver.) -- C:\WINDOWS\System32\drivers\ssudbus.sys [131712] =>.Samsung Electronics CO., LTD.®
O58 - SDL:2016/09/05 04:47:12 A . (.Samsung Electronics Co., Ltd. - SAMSUNG Android Modem Device Driver.) -- C:\WINDOWS\System32\drivers\ssudmdm.sys [165504] =>.Samsung Electronics CO., LTD.®
O58 - SDL:2017/03/18 21:56:25 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\WINDOWS\System32\drivers\stexstor.sys [31136] =>.Microsoft Windows®
O58 - SDL:2017/04/21 03:16:36 A . (.The OpenVPN Project - TAP-Windows Virtual Network Driver (NDIS 6..) -- C:\WINDOWS\System32\drivers\tapwindscribe0901.sys [54896] =>.Windscribe Limited®
O58 - SDL:2016/12/02 04:09:42 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [204920] =>.Intel(R) Embedded Subsystems and IP Blocks Group®
O58 - SDL:2016/03/28 12:41:34 A . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\WINDOWS\System32\drivers\usbaapl64.sys [54784] =>.Apple, Inc.
O58 - SDL:2017/03/18 21:56:25 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\WINDOWS\System32\drivers\vsmraid.sys [166816] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\WINDOWS\System32\drivers\VSTXRAID.SYS [305568] =>.Microsoft Windows®
O58 - SDL:2007/02/16 09:12:36 A . (.Wacom Technology - Wacom Mouse Filter Driver.) -- C:\WINDOWS\System32\drivers\wacommousefilter.sys [12848] =>.Wacom Technology Corp.®
O58 - SDL:2009/05/20 10:54:06 A . (.Wacom Technology - Virtual Hid Device.) -- C:\WINDOWS\System32\drivers\wacomvhid.sys [15656] =>.Wacom Technology Corp.®
O58 - SDL:2015/11/12 21:50:10 A . (.Western Digital Technologies, Inc. - Western Digital SCSI Architecture Model (SA.) -- C:\WINDOWS\System32\drivers\wdcsam64.sys [26880] =>.WDKTestCert wdclab,130885612892544312®
O58 - SDL:2017/03/18 21:56:25 A . (.Mellanox - Kernel WinMad.) -- C:\WINDOWS\System32\drivers\winmad.sys [32160] =>.Microsoft Windows®
O58 - SDL:2017/03/18 21:56:25 A . (.Mellanox - Kernel WinVerbs.) -- C:\WINDOWS\System32\drivers\winverbs.sys [64920] =>.Microsoft Windows®
O58 - SDL:2016/01/14 10:05:18 A . (...) -- C:\WINDOWS\System32\epmntdrv.sys [24056] =>.CHENGDU YIWO Tech Development Co., Ltd.®
O58 - SDL:2016/07/11 10:01:24 A . (...) -- C:\WINDOWS\System32\EuGdiDrv.sys [10848] =>.Intel Corporation

---\\ Derniers fichiers modifiés ou crées (Utilisateur) (5) - 98s
O61 - LFC: 2017/12/31 08:42:46 A . (.Byrne.) -- C:\Users\olivier\AppData\Local\byrne.exe [12288]
O61 - LFC: 2017/12/29 08:11:15 N . (.Java(TM) Native Access (JNA).) -- C:\Users\olivier\AppData\Local\JDownloader 2.0\tmp\jna\jna3862486837019884953.dll [198144]
O61 - LFC: 2017/12/31 08:42:44 A . (.Pastor.) -- C:\Users\olivier\AppData\Local\pastor.exe [12800]
O61 - LFC: 2017/12/30 06:24:14 A . (.LibreELEC.) -- C:\Users\olivier\Desktop\BEELINK\8.2.2\LibreELEC.USB-SD.Creator.Win32.exe [6660096]
O61 - LFC: 2017/12/28 22:03:36 A . (.LibreELEC.) -- C:\Users\olivier\Desktop\BEELINK\LibreELEC.USB-SD.Creator.Win32.exe [6660096]

---\\ Associations Shell Spawning (9) - 1s
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Ob.) -- C:\Windows\System32\eventvwr.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (...) -- %1" %*
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S

---\\ Menu de démarrage Internet (5) - 0s
O68 - StartMenuInternet: [64Bits][HKLM\..\Shell\open\Command] (...) -- firefox.exe (.not file.)
O68 - StartMenuInternet: [64Bits][HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.

---\\ Recherche d'infection sur les navigateurs (3) - 0s
O69 - SBI: SearchScopes [HKCU] [64Bits]{0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/ =>.Bing.com
O69 - SBI: SearchScopes [HKCU] [64Bits]{96BBC430-9900-4299-9F5D-7951AB36EFDF} - (Google) - http://www.google.com/ =>.Google Inc.
O69 - SBI: SearchScopes [HKLM] [64Bits]{0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (@ieframe.dll,-12512) - http://www.bing.com/ =>.Bing.com

---\\ Enumère les services démarrés par Svchost (47) - 1s
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\WINDOWS\System32\certprop.dll [189952] =>.Microsoft Corporation
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [189952] =>.Microsoft Corporation
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [303104] =>.Microsoft Corporation
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [1269248] =>.Microsoft Corporation
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\IKEEXT.DLL [934912] =>.Microsoft Corporation
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll [996864] =>.Microsoft Corporation
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\Windows\System32\seclogon.dll [31232] =>.Microsoft Corporation
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [138752] =>.Microsoft Corporation
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [150016] =>.Microsoft Corporation
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [108032] =>.Microsoft Corporation
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [877568] =>.Microsoft Corporation
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [221696] =>.Microsoft Corporation
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [133120] =>.Microsoft Corporation
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [411648] =>.Microsoft Corporation
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [385536] =>.Microsoft Corporation
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [98816] =>.Microsoft Corporation
O83 - Search Svchost Services: shpamsvc (shpamsvc) . (.Microsoft Corporation - SharedPC.AccountManager.) -- C:\Windows\System32\Windows.SharedPC.AccountManager.dll [192512] =>.Microsoft Corporation
O83 - Search Svchost Services: XblGameSave (XblGameSave) . (.Microsoft Corporation - Xbox Live Game Save Service.) -- C:\Windows\System32\XblGameSave.dll [1135104] =>.Microsoft Corporation
O83 - Search Svchost Services: NaturalAuthentication (NaturalAuthentication) . (.Microsoft Corporation - Service d’authentification naturelle.) -- C:\Windows\System32\NaturalAuth.dll [723968] =>.Microsoft Corporation
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\Windows\System32\wlidsvc.dll [2153984] =>.Microsoft Corporation
O83 - Search Svchost Services: UserManager (UserManager) . (.Microsoft Corporation - UserMgr.) -- C:\Windows\System32\usermgr.dll [877568] =>.Microsoft Corporation
O83 - Search Svchost Services: XblAuthManager (XblAuthManager) . (.Microsoft Corporation - Xbox Live Auth Manager.) -- C:\Windows\System32\XblAuthManager.dll [1015296] =>.Microsoft Corporation
O83 - Search Svchost Services: DmEnrollmentSvc (DmEnrollmentSvc) . (.Microsoft Corporation - DLL Windows Management Service.) -- C:\Windows\System32\Windows.Internal.Management.dll [536064] =>.Microsoft Corporation
O83 - Search Svchost Services: xbgm (xbgm) . (.Microsoft Corporation - Xbox Game Monitoring Service.) -- C:\Windows\System32\xbgmsvc.dll [301216] =>.Microsoft Windows Publisher®
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [69632] =>.Microsoft Corporation
O83 - Search Svchost Services: TokenBroker (TokenBroker) . (.Microsoft Corporation - Token Broker.) -- C:\Windows\System32\TokenBroker.dll [1052672] =>.Microsoft Corporation
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Service de géolocalisation.) -- C:\Windows\System32\lfsvc.dll [43520] =>.Microsoft Corporation
O83 - Search Svchost Services: Irmon (Irmon) . (.Microsoft Corporation - Moniteur infrarouge.) -- C:\Windows\System32\irmon.dll [24576] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [104448] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d’accès à dista.) -- C:\Windows\System32\rasmans.dll [874496] =>.Microsoft Corporation
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [490496] =>.Microsoft Corporation
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\Sens.dll [69632] =>.Microsoft Corporation
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\Windows\System32\ipnathlp.dll [537600] =>.Microsoft Corporation
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [306688] =>.Microsoft Corporation
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\System32\wuaueng.dll [2449408] =>.Microsoft Corporation
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [1159680] =>.Microsoft Corporation
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [612864] =>.Microsoft Corporation
O83 - Search Svchost Services: dmwappushservice (dmwappushservice) . (.Microsoft Corporation - dmwappushsvc.) -- C:\Windows\System32\dmwappushsvc.dll [55296] =>.Microsoft Corporation
O83 - Search Svchost Services: wisvc (wisvc) . (.Microsoft Corporation - Paramètres de vol.) -- C:\Windows\System32\flightsettings.dll [719872] =>.Microsoft Corporation
O83 - Search Svchost Services: WpnService (WpnService) . (.Microsoft Corporation - Service du système de notifications Push Wi.) -- C:\Windows\System32\WpnService.dll [276480] =>.Microsoft Corporation
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [385536] =>.Microsoft Corporation
O83 - Search Svchost Services: XboxNetApiSvc (XboxNetApiSvc) . (.Microsoft Corporation - Xbox Live Networking Service.) -- C:\Windows\System32\XboxNetApiSvc.dll [1067008] =>.Microsoft Corporation
O83 - Search Svchost Services: UsoSvc (UsoSvc) . (.Microsoft Corporation - Mettre à jour la session Orchestrator Core.) -- C:\Windows\System32\usocore.dll [684544] =>.Microsoft Corporation
O83 - Search Svchost Services: NetSetupSvc (NetSetupSvc) . (.Microsoft Corporation - Service Configuration du réseau.) -- C:\Windows\System32\NetSetupSvc.dll [261632] =>.Microsoft Corporation
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d’installation de périphérique.) -- C:\Windows\System32\DeviceSetupManager.dll [233984] =>.Microsoft Corporation
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Micro.) -- C:\Windows\System32\NcaSvc.dll [167424] =>.Microsoft Corporation
O83 - Search Svchost Services: XboxGipSvc (XboxGipSvc) . (.Microsoft Corporation - Xbox Gip Management Service.) -- C:\Windows\System32\XboxGipSvc.dll [18944] =>.Microsoft Corporation

---\\ Liste des exceptions du parefeu Windows (23) - 13s
O87 - FAEL: "UDP Query User{4396010D-49E8-457B-8CDE-42835993328A}C:\server saviine\saviine_server.exe" [In-None-P17-TRUE] .(.ChadSoft - cafiine_server.) -- C:\server saviine\saviine_server.exe
O87 - FAEL: "TCP Query User{C2120EA4-5958-4DE3-A6F5-56F7ECA225DB}C:\server saviine\saviine_server.exe" [In-None-P6-TRUE] .(.ChadSoft - cafiine_server.) -- C:\server saviine\saviine_server.exe
O87 - FAEL: "UDP Query User{7029D0E4-4CA3-4419-84EB-9F352D6068FD}B:\-- [ consoles ] --\-- [ wiiusb ] --\usb helper\wiiu_usb_helper.exe" [In-None-P17-TRUE] .(...) -- B:\-- [ consoles ] --\-- [ wiiusb ] --\usb helper\wiiu_usb_helper.exe (.not file.)
O87 - FAEL: "TCP Query User{12C86044-482F-48A7-9C77-A30BFF18605D}B:\-- [ consoles ] --\-- [ wiiusb ] --\usb helper\wiiu_usb_helper.exe" [In-None-P6-TRUE] .(...) -- B:\-- [ consoles ] --\-- [ wiiusb ] --\usb helper\wiiu_usb_helper.exe (.not file.)
O87 - FAEL: "UDP Query User{7867B921-3452-42E1-A91F-93B603218788}C:\program files\qcma\qcma.exe" [In-None-P17-TRUE] .(...) -- C:\program files\qcma\qcma.exe
O87 - FAEL: "TCP Query User{32618094-824A-4B7C-9699-94E398F7D03C}C:\program files\qcma\qcma.exe" [In-None-P6-TRUE] .(...) -- C:\program files\qcma\qcma.exe
O87 - FAEL: "{26FA339D-F963-404D-939E-EC44A1610253}" [Out-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Apowersoft\Apowersoft Screen Recorder Pro 2\Apowersoft Screen Recorder Pro 2.exe (.not file.)
O87 - FAEL: "{5C1FAEBC-D298-496B-A450-977554A2656E}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Apowersoft\Apowersoft Screen Recorder Pro 2\Apowersoft Screen Recorder Pro 2.exe (.not file.)
O87 - FAEL: "UDP Query User{2CB6AF7C-72C9-465F-90BB-47896C01C734}B:\-- [ consoles ] --\3ds\tuto capture ecran new 3ds\ntr_3.4preview2_starter_kit\ntrviewer\ntrviewer.exe" [In-None-P17-TRUE] .(...) -- B:\-- [ consoles ] --\3ds\tuto capture ecran new 3ds\ntr_3.4preview2_starter_kit\ntrviewer\ntrviewer.exe (.not file.)
O87 - FAEL: "TCP Query User{36996885-32F9-4B05-9613-F9BBEB0CD590}B:\-- [ consoles ] --\3ds\tuto capture ecran new 3ds\ntr_3.4preview2_starter_kit\ntrviewer\ntrviewer.exe" [In-None-P6-TRUE] .(...) -- B:\-- [ consoles ] --\3ds\tuto capture ecran new 3ds\ntr_3.4preview2_starter_kit\ntrviewer\ntrviewer.exe (.not file.)
O87 - FAEL: "UDP Query User{D14B28D7-B7DB-4292-8D51-80226A77B55A}C:\program files\comicrack\comicrack.exe" [In-None-P17-TRUE] .(...) -- C:\program files\comicrack\comicrack.exe (.not file.)
O87 - FAEL: "TCP Query User{E6D4A0B9-CAEA-4876-BF84-1768A4B35B95}C:\program files\comicrack\comicrack.exe" [In-None-P6-TRUE] .(...) -- C:\program files\comicrack\comicrack.exe (.not file.)
O87 - FAEL: "UDP Query User{2E4AD592-7888-4416-AEC5-2F80DBCEDC5A}A:\-- [ wiiusb ] --\saviine_server\saviine_server.exe" [In-None-P17-TRUE] .(...) -- A:\-- [ wiiusb ] --\saviine_server\saviine_server.exe (.not file.)
O87 - FAEL: "TCP Query User{44187880-5A72-497B-9ED5-C0F37760636C}A:\-- [ wiiusb ] --\saviine_server\saviine_server.exe" [In-None-P6-TRUE] .(...) -- A:\-- [ wiiusb ] --\saviine_server\saviine_server.exe (.not file.)
O87 - FAEL: "{545168D4-BE77-4B03-9789-0E4C831A5240}" [Out-None-P6-TRUE] .(.@ByELDI - AutoPico.) -- C:\Program Files\KMSpico\AutoPico.exe =>HackTool.KMSpico
O87 - FAEL: "{15291A76-DEBA-48AF-A9C7-EB26AF001A52}" [In-None-P6-TRUE] .(.@ByELDI - AutoPico.) -- C:\Program Files\KMSpico\AutoPico.exe =>HackTool.KMSpico
O87 - FAEL: "{E103F930-9DAD-4695-972D-4AD253FA1230}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Mozilla Firefox\firefox.exe (.not file.)
O87 - FAEL: "TCP Query User{DA3864CD-343A-49B1-B488-6B49919A8600}A:\divinity - original sin 2\bin\eocapp.exe" [In-None-P6-TRUE] .(...) -- A:\divinity - original sin 2\bin\eocapp.exe (.not file.)
O87 - FAEL: "UDP Query User{446E52DE-019D-4C5A-809C-B6B21648BCC1}A:\divinity - original sin 2\bin\eocapp.exe" [In-None-P17-TRUE] .(...) -- A:\divinity - original sin 2\bin\eocapp.exe (.not file.)
O87 - FAEL: "TCP Query User{D147A8C0-2BCD-49F6-A09E-085E0B3E3B15}A:\games\the escapists 2\theescapists2.exe" [In-None-P6-TRUE] .(...) -- A:\games\the escapists 2\theescapists2.exe
O87 - FAEL: "UDP Query User{E303002A-9DE3-4517-A5BD-C8836DF84321}A:\games\the escapists 2\theescapists2.exe" [In-None-P17-TRUE] .(...) -- A:\games\the escapists 2\theescapists2.exe
O87 - FAEL: "{DB001470-442A-4135-B228-1EECFC0736D8}" [Out-None-P17-TRUE] .(.Pastor - Pastor.) -- C:\Program Files (x86)\Difficult\pastor.exe
O87 - FAEL: "{88F83B65-4ADF-49FE-96AB-BBAC4F312339}" [Out-None-P17-TRUE] .(.Pastor - Pastor.) -- C:\Program Files (x86)\Mondial\pastor.exe

---\\ Recherche des packages WindowsInstaller (59) - 25s
[MD5.1504667BA3C10D841C0B76B6412FAFB5] [WIS][2015/03/17 09:41:29] (.Adobe Systems Incorporated.) -- C:\WINDOWS\Installer\124010.msi [2805760] =>.Adobe Systems Incorporated
[MD5.3C70DCD13DD89BF057B4678677424F54] [WIS][2015/11/11 21:09:16] (.HP Inc..) -- C:\WINDOWS\Installer\1315f.msi [1716224] =>.HP Inc.
[MD5.A11FB6FB260C846EEE34C0E3505A0246] [WIS][2016/01/05 01:20:30] (.HP.) -- C:\WINDOWS\Installer\13168.msi [4434432] =>.HP
[MD5.A92F47F04ED59B480A258776E501413B] [WIS][2016/03/10 00:56:27] (.Macrovision Corporation.) -- C:\WINDOWS\Installer\131a1.msi [542208] =>.Macrovision Corporation
[MD5.14A5288B8209A15BC3DBA9E82E26F2AE] [WIS][2016/07/29 05:48:12] (.HP - HP Scan Dropbox destination plugin.) -- C:\WINDOWS\Installer\142a5a9.msi [155648] =>.HP
[MD5.45162C7F363D8F790D50DC2663A27FB9] [WIS][2016/07/29 05:48:12] (.HP - HP Scan Google Drive destination plugin.) -- C:\WINDOWS\Installer\142a5b2.msi [155648] =>.HP
[MD5.8126412AD9AA0A8145593885A8CC2286] [WIS][2016/07/29 05:48:14] (.Hewlett Packard - HP DeskJet 3630 series Get product specific.) -- C:\WINDOWS\Installer\142a5bb.msi [163840] =>.Hewlett Packard
[MD5.FADDCFBBDBCF2278C1173534D3C14BE6] [WIS][2016/07/29 05:48:10] (.HP Inc. - Product Improvement Study for HP DeskJet 36.) -- C:\WINDOWS\Installer\142a5c4.msi [290816] =>.HP Inc.
[MD5.D5C646762D82D4457765C62198E5B2FD] [WIS][2013/02/01 22:53:16] (.Hewlett-Packard Company.) -- C:\WINDOWS\Installer\14593.msi [98816] =>.Hewlett-Packard Company
[MD5.F85BBE5AFD49571B7ECD5FF4870AAB8E] [WIS][2017/08/24 05:21:19] (.Apple Inc. - Apple Application Support Installer.) -- C:\WINDOWS\Installer\14d2199a.msi [43044864] =>.Apple Inc.
[MD5.AD51A5C86B1C25F0C9497A04D9827652] [WIS][2017/08/24 05:21:25] (.Apple Inc. - Apple Application Support Installer.) -- C:\WINDOWS\Installer\14d21b69.msi [48181248] =>.Apple Inc.
[MD5.E5D5BE27EE42AA69A3C9C14B75502A97] [WIS][2017/08/24 05:21:26] (.Apple Inc. - Apple Software Update Installer.) -- C:\WINDOWS\Installer\14d21be1.msi [2420736] =>.Apple Inc.
[MD5.D74A72659B78CB88EB36EF3C35B1C6D2] [WIS][2017/08/24 05:21:28] (.Apple Inc. - Apple Mobile Device Support Installer.) -- C:\WINDOWS\Installer\14d21c27.msi [13926400] =>.Apple Inc.
[MD5.EC00D0000F1CF40D5A7EEEB9D08B95B2] [WIS][2017/08/24 05:21:49] (.Apple Inc. - iTunes Installer.) -- C:\WINDOWS\Installer\14d22b8b.msi [163397632] =>.Apple Inc.
[MD5.A04E16FA33082B02CB691F122BAB15B3] [WIS][2015/10/27 07:55:00] (.Intel Corporation - Intel® RealSense™ SDK 2014 Runtime (x64): .) -- C:\WINDOWS\Installer\1d317b.msi [2801664] =>.Intel Corporation
[MD5.B14699F8593437CD62F17CA6405B5D70] [WIS][2016/11/15 17:32:49] (.Nitro - Nitro Pro 10.5.1.17.) -- C:\WINDOWS\Installer\1ec24ed2.msi [442335232] =>.Nitro
[MD5.BF16AEF6395900782B9CFCB445AF0DB8] [WIS][2015/11/10 10:08:34] (.HP - HP ePrint SW.) -- C:\WINDOWS\Installer\217fc.msi [1175552] =>.HP
[MD5.7B5C090C6A248C41EE4786B4D890B3D9] [WIS][2015/11/10 10:03:24] (.HP - HP ePrint SW.) -- C:\WINDOWS\Installer\21810.msi [606208] =>.HP
[MD5.46A5E823A0C73653A2324B704511E719] [WIS][2015/11/10 10:01:58] (.HP - HP ePrint SW.) -- C:\WINDOWS\Installer\21815.msi [18587648] =>.HP
[MD5.D13577B9D09B1A7B17F3C24B1862A297] [WIS][2015/11/10 10:02:54] (.HP - HP ePrint SW.) -- C:\WINDOWS\Installer\2181a.msi [1028096] =>.HP
[MD5.813B63B37325E8690EF9D8D238F8B580] [WIS][2015/11/10 10:02:04] (.HP - HP ePrint SW.) -- C:\WINDOWS\Installer\2181f.msi [1290240] =>.HP
[MD5.E1786236758B54FDEEB96295E1B77DF2] [WIS][2016/02/23 23:13:58] (.© Copyright 2015 HP Development Company, L.P..) -- C:\WINDOWS\Installer\21824.msi [3038720]
[MD5.86E2B390629665FBC20E06DFBF01A48F] [WIS][2016/10/18 02:03:58] (.Apple Inc. - [ProductName] Installer.) -- C:\WINDOWS\Installer\30b8e.msi [2732032] =>.Apple Inc.
[MD5.FFE8745D10B1409DB6D9AA9DDBAF58DA] [WIS][2016/07/29 05:48:06] (.HP Inc. - HP DeskJet 3630 series Basic Device Softwar.) -- C:\WINDOWS\Installer\3ad70ec.msi [5234688] =>.HP Inc.
[MD5.7B132CFACB4D08D3DCEDFD2A5FFA8740] [WIS][2016/09/20 10:06:08] (.Intel Corporation - Intel(R) Rapid Storage Technology.) -- C:\WINDOWS\Installer\4000e29c.msi [2928640] =>.Intel Corporation
[MD5.A880DC6170CEA191F7B12D4931E9890F] [WIS][2017/01/15 12:44:10] (.Intel Corporation - Intel(R) Management Engine Components.) -- C:\WINDOWS\Installer\4000e2e3.msi [2854912] =>.Intel Corporation
[MD5.0E4D7B40676D70D4963FE776DF6E839D] [WIS][2017/01/15 12:43:32] (.Intel Corporation - Microsoft VC++ redistributables repacked..) -- C:\WINDOWS\Installer\4000e305.msi [12795904] =>.Intel Corporation
[MD5.8C78D73369CBC823167EC55180BE3024] [WIS][2017/01/15 12:43:40] (.Intel Corporation - Microsoft VC++ redistributables repacked..) -- C:\WINDOWS\Installer\4000e32f.msi [14249984] =>.Intel Corporation
[MD5.4B17CD40BF7A72CCACC29A78C7FF9DAF] [WIS][2017/01/15 12:44:02] (.Intel Corporation - Intel(R) Management Engine Components.) -- C:\WINDOWS\Installer\4000e34e.msi [5074815] =>.Intel Corporation
[MD5.9DD194E77197A5F3BF54FB4C2B4D74A5] [WIS][2016/11/08 01:22:14] (.Intel Corporation - Intel(R) Trusted Connect Service Client.) -- C:\WINDOWS\Installer\4000e365.msi [11124736] =>.Intel Corporation
[MD5.ABBF1987391F56BAD77284EA0763E8CF] [WIS][2016/10/03 18:16:02] (.Intel Corporation - Intel(R) Chipset Device Software.) -- C:\WINDOWS\Installer\4000e38b.msi [737280] =>.Intel Corporation
[MD5.03C51510DC6C2C557D31EB0CDD290A7A] [WIS][2016/08/03 08:31:20] (.Promethean - ActivInspire.) -- C:\WINDOWS\Installer\530092.msi [80274944] =>.Promethean
[MD5.9924A09121EC35542AF4745F693699F3] [WIS][2012/03/16 11:34:20] (.Promethean - ActivInspire Help.) -- C:\WINDOWS\Installer\53009b.msi [15938048] =>.Promethean
[MD5.E3105AE227F4EB4672F9A399DD8C737D] [WIS][2012/03/05 13:40:22] (.Promethean - ActivInspire Core Resources.) -- C:\WINDOWS\Installer\5300a2.msi [43313664] =>.Promethean
[MD5.F80C14B14F2D50CB0507A42ECFFE23E6] [WIS][2016/09/01 16:01:29] (.CleverFiles.) -- C:\WINDOWS\Installer\606ba5a.msi [16493056] =>.CleverFiles
[MD5.6D7ACFF0B3DBF554475B917D8602D5ED] [WIS][2016/07/07 12:24:38] (.CleverFiles.) -- C:\WINDOWS\Installer\62ff2b9.msi [16194048] =>.CleverFiles
[MD5.CEA0931BACA27DBF77EADCA4D1388458] [WIS][2016/06/25 22:06:48] (.Python Software Foundation - Python 3.5.2 Core Interpreter (32-bit).) -- C:\WINDOWS\Installer\7890fbf.msi [1167360] =>.Python Software Foundation
[MD5.5B9E4A4C76FB18E3D0C92E620C7DE341] [WIS][2016/06/25 22:07:36] (.Python Software Foundation - Python 3.5.2 Development Libraries (32-bit).) -- C:\WINDOWS\Installer\7890fc7.msi [270336] =>.Python Software Foundation
[MD5.4F58CDD29E806EF5A9F57458289D8A2E] [WIS][2016/06/25 22:08:10] (.Python Software Foundation - Python 3.5.2 Executables (32-bit).) -- C:\WINDOWS\Installer\7890fcf.msi [233472] =>.Python Software Foundation
[MD5.30928FA5CA0567D16FC4B0BF41EA8E87] [WIS][2016/06/25 22:09:02] (.Python Software Foundation - Python 3.5.2 Standard Library (32-bit).) -- C:\WINDOWS\Installer\7890fd7.msi [6074368] =>.Python Software Foundation
[MD5.A5333FA5125F944242913009457FDA41] [WIS][2016/06/25 22:12:30] (.Python Software Foundation - Python 3.5.2 Test Suite (32-bit).) -- C:\WINDOWS\Installer\7890fdf.msi [2895872] =>.Python Software Foundation
[MD5.98C99440D355461DCEC0BA74F16B4B33] [WIS][2016/06/25 22:08:02] (.Python Software Foundation - Python 3.5.2 Documentation (32-bit).) -- C:\WINDOWS\Installer\7890fe7.msi [7806976] =>.Python Software Foundation
[MD5.EFD4E4F1D1DDAB7C69A965CBC7C76749] [WIS][2016/06/25 22:12:48] (.Python Software Foundation - Python 3.5.2 Utility Scripts (32-bit).) -- C:\WINDOWS\Installer\7890fef.msi [192512] =>.Python Software Foundation
[MD5.DEB6720EEB857E26B1AC20312FDF8954] [WIS][2016/06/25 22:11:12] (.Python Software Foundation - Python 3.5.2 Tcl/Tk Support (32-bit).) -- C:\WINDOWS\Installer\7890ff7.msi [3252224] =>.Python Software Foundation
[MD5.1C536BB4DA4FC4A13AC263AF358A7000] [WIS][2016/06/25 22:12:50] (.Python Software Foundation - Python Launcher.) -- C:\WINDOWS\Installer\7890fff.msi [229376] =>.Python Software Foundation
[MD5.3FE2517C71A51067B0458754762F414D] [WIS][2016/06/25 22:10:12] (.Python Software Foundation - Python 3.5.2 pip Bootstrap (32-bit).) -- C:\WINDOWS\Installer\7891007.msi [253952] =>.Python Software Foundation
[MD5.3F00FA1F83ECD0036384E433F7586393] [WIS][2016/06/25 22:10:06] (.Python Software Foundation - Python 3.5.2 Add to Path (32-bit).) -- C:\WINDOWS\Installer\789100f.msi [40960] =>.Python Software Foundation
[MD5.4B0D73DF4E49C9786DA2A41FFBCD8209] [WIS][2016/03/16 00:59:42] (.Intel Corporation - Intel(R) ME UninstallLegacy.) -- C:\WINDOWS\Installer\9a7d96c.msi [425984] =>.Intel Corporation
[MD5.95FFFC3B25281063FE9CB949EE0BCA2B] [WIS][2017/09/14 05:13:27] (.HP - HP PC Hardware Diagnostics UEFI.) -- C:\WINDOWS\Installer\9c9fe.msi [34024960] =>.HP
[MD5.F0EE2E7F283866A2A0FEA9BE2D12A979] [WIS][2017/11/15 01:37:00] (.Google Inc. - Google Update Helper.) -- C:\WINDOWS\Installer\9ee71773.msi [40960] =>.Google Inc.
[MD5.E4EECA96E08781FA6F948A70EDE0C458] [WIS][2017/09/15 05:36:50] (.Oracle Corporation - Java SE Runtime Environment 8 Update 144.) -- C:\WINDOWS\Installer\9fc6c.msi [56287232] =>.Oracle Corporation
[MD5.A438338C8CC1B462078A808F2FC63380] [WIS][2017/09/15 05:36:24] (.Oracle Corporation - Java Auto Updater.) -- C:\WINDOWS\Installer\9fc7d.msi [761856] =>.Oracle Corporation
[MD5.A666B14C461CC7207C0C9B3D0D2D28F3] [WIS][2017/11/15 18:14:13] (.Adobe Systems Incorporated - Adobe ARM Installer.) -- C:\WINDOWS\Installer\a27343c8.msi [880128] =>.Adobe Systems Incorporated
[MD5.D4A20EAB2B3E227A4A1E484347A972BE] [WIS][2016/08/30 08:28:57] (.Sony Computer Entertainment Inc. - Content Manager Assistant.) -- C:\WINDOWS\Installer\d653a27.msi [6743552] =>.Sony Computer Entertainment Inc.
[MD5.84B4CF9ADAF25223B0DC9FC8D26B81A9] [WIS][2016/06/03 02:49:37] (.HP - HP Support Solutions Framework.) -- C:\WINDOWS\Installer\f82f.msi [9281536] =>.HP
[MD5.EEBF81AC86ECA198CC220425BDCCB6BD] [WIS][2016/06/03 02:50:16] (.HP - HP Support Assistant.) -- C:\WINDOWS\Installer\f832.msi [36421120] =>.HP
[MD5.8D9378D81025784C60CD3DDF061309F5] [WIS][2016/06/03 02:51:07] (.Hewlett-Packard.) -- C:\WINDOWS\Installer\f837.msi [635392] =>.Hewlett-Packard
[MD5.CA0BE0011CD63833D9FE73ABCC85E576] [WIS][2015/11/17 10:08:01] (.Hewlett-Packard.) -- C:\WINDOWS\Installer\f83c.msi [1631932] =>.Hewlett-Packard
[MD5.115F40DAB811286E90F878608D04B5D8] [WIS][2016/02/22 14:04:59] (.Intel Corporation - Intel® Software Guard Extensions Platform S.) -- C:\WINDOWS\Installer\f873.msi [5210112] =>.Intel Corporation

---\\ Recherche de clés de registre Tracing (2) - 2s
HKLM\SOFTWARE\Microsoft\Tracing\ByteFence_RASAPI32 =>.SUP.ByteFence
HKLM\SOFTWARE\Microsoft\Tracing\ByteFence_RASMANCS =>.SUP.ByteFence

---\\ Scan Additionnel (26) - 0s
HKLM\SYSTEM\CurrentControlSet\Services\Service KMSELDI =>HackTool.KMSpico
C:\Program Files\KMSpico\Service_KMS.exe =>HackTool.KMSpico
C:\Program Files\KMSpico\AutoPico.exe =>HackTool.KMSpico
C:\WINDOWS\System32\Tasks\AutoPico Daily Restart =>HackTool.KMSpico
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{43C6D902-A1C5-45c9-91F6-FD9E90337E18} =>.SUP.Orphan
HKLM\Software\Classes\CLSID\{43C6D902-A1C5-45c9-91F6-FD9E90337E18} =>.SUP.Orphan
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{43C6D902-A1C5-45c9-91F6-FD9E90337E18} =>.SUP.Orphan
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{43C6D902-A1C5-45c9-91F6-FD9E90337E18} =>.SUP.Orphan
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1 =>HackTool.KMSpico
C:\Program Files\KMSpico =>HackTool.KMSpico
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSpico =>HackTool.KMSpico
C:\Users\olivier\AppData\Local\MSfree Inc =>HackTool.WinActivator
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\KuaiZipShlExt =>.SUP.ShanghaiGuangle
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ FileSyncEx =>.SUP.Orphan
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ContextMenuExt =>.SUP.Orphan
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\WinRAR32 =>.SUP.Orphan
HKLM\Software\Classes\CLSID\{B41DB860-8EE4-11D2-9906-E49FADC173CA} =>.SUP.Orphan
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\00avast =>.SUP.Orphan
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\ FileSyncEx =>.SUP.Orphan
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\Offline Files =>.SUP.Orphan
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\WinRAR32 =>.SUP.Orphan
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui =>.SUP.Orphan
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\Offline Files =>.SUP.Orphan
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\WinRAR32 =>.SUP.Orphan
HKLM\Software\WOW6432Node\Microsoft\Tracing\ByteFence_RASAPI32 =>.SUP.ByteFence
HKLM\Software\WOW6432Node\Microsoft\Tracing\ByteFence_RASMANCS =>.SUP.ByteFence

---\\ Récapitulatif des éléments trouvés sur votre station (7) - 0s
https://nicolascoolman.eu/2017/02/16/hacktool-kmspico/ =>HackTool.KMSpico
https://nicolascoolman.eu/2017/09/12/origine-lignes-orphelines/ =>.SUP.Orphan
https://nicolascoolman.eu/2017/03/11/pup-optional-crossrider/ =>Adware.CrossRider
https://nicolascoolman.eu/2017/01/13/hacktool-winactivator/ =>HackTool.WinActivator
https://nicolascoolman.eu/2017/11/29/le-format-clsid-registre-windows/ =>.SUP.Empty.CLSID
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.ShanghaiGuangle
https://nicolascoolman.eu/2017/03/13/superfluous-bytefence/ =>.SUP.ByteFence

~ Unselected Options: O82,
~ End of the scan, 38638 items in 06mn03s (1647)(0)

Publicité

Signaler le contenu de ce document

Publicité