~ ZHPDiag v2018.8.5.156 Par Nicolas Coolman (2018/08/05)
~ Démarré par Mr-MDX (Administrator) (2018/08/09 14:37:42)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Certificate ZHPDiag: Illegal
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Documents and Settings\Mr-MDX\Bureau\ZHPDiag.txt
~ Rapport: C:\Documents and Settings\Mr-MDX\Application Data\ZHP\ZHPDiag.txt
~ UAC: Deactivate
~ Démarrage du système: Normal (Normal boot)
Windows XP, 32-bit Service Pack 3 (Build 2600) =>.Microsoft Corporation

---\\ NAVIGATEURS INTERNET (2) - 1s
~ MFIE: Mozilla Firefox 52.9.0 ESR (x86 en-US)
~ MSIE: Internet Explorer v6.0.2900.5512

---\\ INFORMATIONS SUR LES PRODUITS WINDOWS (3) - 0s
Windows Automatic Updates : OK
Windows Activation Technologies : KO
Windows Genuine Advantage : KO

---\\ SURVEILLANCE LOGICIEL (1) - 2s
~ Adobe Flash Player 30 NPAPI (Surveillance)

---\\ INFORMATIONS SUR LE SYSTÈME (6) - 0s
~ Operating System: x86 Family 15 Model 4 Stepping 1, GenuineIntel
~ Operating System: 32-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 515.516 MB (2% free) : ATTENTION =>Warning RAM
System Restore: Activé (Enable)
System drive C: has 5 GB (29%) free of 17 GB : ATTENTION =>Warning Disk Space

---\\ MODE DE CONNEXION AU SYSTÈME (3) - 0s
~ Computer Name: ECHA-95C95217E2
~ User Name: Mr-MDX
~ Logged in as Administrator

---\\ ÉNUMÉRATION DES UNITÉS DE STOCKAGE (2) - 1s
~ Drive C: has 5 GB free of 17 GB (System)
~ Drive D: has 3 GB free of 20 GB

---\\ ÉTAT DU CENTRE DE SÉCURITÉ WINDOWS (8) - 0s
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] XMLLookup: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Intl: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK

---\\ RECHERCHE PARTICULIÈRE DE FICHIERS GÉNÉRIQUES (23) - 2s
[MD5.F2317622D29F9FF0F88AEECD5F60F0DD] - 13/04/2008 - (.Microsoft Corporation - Explorateur Windows.) -- C:\WINDOWS\Explorer.exe [1037824] =>.Microsoft Corporation
[MD5.93AD0B78C7357A05F50E594EC7C22300] - 13/04/2008 - (.Microsoft Corporation - Exécuter une DLL en tant qu'application.) -- C:\WINDOWS\System32\rundll32.exe [33792] =>.Microsoft Corporation
[MD5.4A6E04EA20F48D750D9BFED8600D516B] - 13/04/2008 - (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\WINDOWS\System32\wininet.dll [670208] =>.Microsoft Corporation
[MD5.DD73D6B9F6B4CB630CF35B438B540174] - 13/04/2008 - (.Microsoft Corporation - Application d'ouverture de session Windows.) -- C:\WINDOWS\System32\Winlogon.exe [512000] =>.Microsoft Corporation
[MD5.F640F61A063DD79BD4D2F6C9509FB958] - 13/04/2008 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\WINDOWS\System32\dnsapi.dll [147968] =>.Microsoft Corporation
[MD5.322D0E36693D6E24A2398BEE62A268CD] - 13/04/2008 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\WINDOWS\System32\drivers\AFD.sys [138112] =>.Microsoft Corporation
[MD5.9F3A2F5AA6875C72BF062C712CFA2674] - 13/04/2008 - (.Microsoft Corporation - IDE/ATAPI Port Driver.) -- C:\WINDOWS\System32\drivers\atapi.sys [96512] =>.Microsoft Corporation
[MD5.C885B02847F5D2FD45A24E219ED93B32] - 13/04/2008 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\WINDOWS\System32\drivers\Cdfs.sys [63744] =>.Microsoft Corporation
[MD5.1F4260CC5B42272D71F79E570A27A4FE] - 13/04/2008 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\WINDOWS\System32\drivers\Cdrom.sys [62976] =>.Microsoft Corporation
[MD5.31F923EB2170FC172C81ABDA0045D18C] - 13/04/2008 - (.Microsoft Corporation - Pilote de cryptographie FIPS.) -- C:\WINDOWS\System32\drivers\Fips.sys [44672] =>.Microsoft Corporation
[MD5.573C7D0A32852B48F3058CFD8026F511] - 13/04/2008 - (.Microsoft - High Definition Audio Bus Driver v1.0a.) -- C:\WINDOWS\System32\drivers\HDAudBus.sys [144384] =>.Microsoft
[MD5.A09BDC4ED10E3B2E0EC27BB94AF32516] - 13/04/2008 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\WINDOWS\System32\drivers\i8042prt.sys [54144] =>.Microsoft Corporation
[MD5.083A052659F5310DD8B6A6CB05EDCF8E] - 13/04/2008 - (.Microsoft Corporation - IMAPI Kernel Driver.) -- C:\WINDOWS\System32\drivers\Imapi.sys [42112] =>.Microsoft Corporation
[MD5.CC748EA12C6EFFDE940EE98098BF96BB] - 13/04/2008 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\System32\drivers\IpNat.sys [152832] =>.Microsoft Corporation
[MD5.23C74D75E36E7158768DD63D92789A91] - 13/04/2008 - (.Microsoft Corporation - IPSec Driver.) -- C:\WINDOWS\System32\drivers\IPSec.sys [75264] =>.Microsoft Corporation
[MD5.68755F0FF16070178B54674FE5B847B0] - 13/04/2008 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\WINDOWS\System32\drivers\MRxSmb.sys [456576] =>.Microsoft Corporation
[MD5.74B2B2F5BEA5E9A3DC021D685551BD3D] - 13/04/2008 - (.Microsoft Corporation - MBT Transport driver.) -- C:\WINDOWS\System32\drivers\netBT.sys [162816] =>.Microsoft Corporation
[MD5.78A08DD6A8D65E697C18E1DB01C5CDCA] - 13/04/2008 - (.Microsoft Corporation - NT File System Driver.) -- C:\WINDOWS\System32\drivers\ntfs.sys [574976] =>.Microsoft Corporation
[MD5.8FD0BDBEA875D06CCF6C945CA9ABAF75] - 13/04/2008 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\WINDOWS\System32\drivers\Parport.sys [80384] =>.Microsoft Corporation
[MD5.11B4A627BC9614B885C4969BFA5FF8A6] - 13/04/2008 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [51328] =>.Microsoft Corporation
[MD5.15CABD0F7C00C47C70124907916AF3F1] - 13/04/2008 - (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\WINDOWS\System32\drivers\rdpdr.sys [196224] =>.Microsoft Corporation
[MD5.D8EB2A7904DB6C916EB5361878DDCBAE] - 13/04/2008 - (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) -- C:\WINDOWS\System32\drivers\redbook.sys [58752] =>.Microsoft Corporation
[MD5.46DE1126684369BACE4849E4FC8C43CA] - 13/04/2008 - (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\WINDOWS\System32\drivers\volsnap.sys [53376] =>.Microsoft Corporation

---\\ LISTE DES SERVICES (Non désactivés) (44) - 11s
O23 - Service: Arp Intelligent Protection Service (AIPS) . (.Arcai.com - Arp Intelligent Protection Service.) - C:\Program Files\netcut\services\aips.exe =>.arcai.com
O23 - Service: Audio Windows (AudioSrv) . (.Microsoft Corporation - Windows Audio Service.) - C:\WINDOWS\system32\audiosrv.dll =>.Microsoft Corporation
O23 - Service: Explorateur d'ordinateur (Browser) . (.Microsoft Corporation - Computer Browser Service DLL.) - C:\WINDOWS\system32\browser.dll =>.Microsoft Corporation
O23 - Service: Microsoft .NET Framework NGEN v4.0.30319_X86 (clr_optimization_v4.0.30319_32) . (.Microsoft Corporation - .NET Runtime Optimization Service.) - C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe =>.Microsoft Corporation®
O23 - Service: Services de cryptographie (CryptSvc) . (.Microsoft Corporation - Cryptographic Services.) - C:\WINDOWS\system32\cryptsvc.dll =>.Microsoft Corporation
O23 - Service: Client DHCP (Dhcp) . (.Microsoft Corporation - Service client DHCP.) - C:\WINDOWS\system32\dhcpcsvc.dll =>.Microsoft Corporation
O23 - Service: Gestionnaire de disque logique (dmserver) . (.Microsoft Corp. - DLL Service gestionnaire de disque logique.) - C:\WINDOWS\system32\dmserver.dll =>.Microsoft Corp.
O23 - Service: Client DNS (Dnscache) . (.Microsoft Corporation - Service de résolution du cache DNS.) - C:\WINDOWS\system32\dnsrslvr.dll =>.Microsoft Corporation
O23 - Service: Service de rapport d'erreurs (ERSvc) . (.Microsoft Corporation - Windows Error Reporting Service.) - C:\WINDOWS\system32\ersvc.dll =>.Microsoft Corporation
O23 - Service: Journal des événements (Eventlog) . (.Microsoft Corporation - Applications Services et Contrôleur.) - C:\WINDOWS\system32\services.exe =>.Microsoft Corporation
O23 - Service: Gryptographic Services (Gryptographic Services) . (.版权所有 (C) 2010 - server Microsoft 基础类应用程序.) - C:\WINDOWS\system32\ccuwco.exe
O23 - Service: Aide et support (helpsvc) . (.Microsoft Corporation - Microsoft PCHealth Service Holder.) - C:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll =>.Microsoft Corporation
O23 - Service: HID Input Service (HidServ) . (.Microsoft Corporation - HID Audio Service.) - C:\WINDOWS\system32\hidserv.dll =>.Microsoft Corporation
O23 - Service: HuaweiHiSuiteService.exe (HuaweiHiSuiteService.exe) . (. - HuaweiHiSuiteService.) - C:\Program Files\HiSuite\HandSetService\HuaweiHiSuiteService.exe
O23 - Service: IObit Uninstaller Service (IObitUnSvr) . (.IObit - Uninstall Programs.) - C:\Program Files\IObit\IObit Uninstaller\IUService.exe =>.IObit Information Technology®
O23 - Service: Serveur (LanmanServer) . (.Microsoft Corporation - Server Service DLL.) - C:\WINDOWS\system32\srvsvc.dll =>.Microsoft Corporation
O23 - Service: Station de travail (lanmanworkstation) . (.Microsoft Corporation - Workstation Service DLL.) - C:\WINDOWS\system32\wkssvc.dll =>.Microsoft Corporation
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) . (.Hewlett-Packard Company - LightScribe Service.) - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe =>.Hewlett-Packard Company
O23 - Service: Assistance TCP/IP NetBIOS (LmHosts) . (.Microsoft Corporation - TCPIP NetBios Transport Services DLL.) - C:\WINDOWS\system32\lmhsvc.dll =>.Microsoft Corporation
O23 - Service: Plug-and-Play (PlugPlay) . (.Microsoft Corporation - Applications Services et Contrôleur.) - C:\WINDOWS\system32\services.exe =>.Microsoft Corporation
O23 - Service: Services IPSEC (PolicyAgent) . (.Microsoft Corporation - LSA Shell (Export Version).) - C:\WINDOWS\system32\lsass.exe =>.Microsoft Corporation
O23 - Service: Emplacement protégé (ProtectedStorage) . (.Microsoft Corporation - LSA Shell (Export Version).) - C:\WINDOWS\system32\lsass.exe =>.Microsoft Corporation
O23 - Service: Accès à distance au Registre (RemoteRegistry) . (.Microsoft Corporation - Remote Registry Service.) - C:\WINDOWS\system32\regsvc.dll =>.Microsoft Corporation
O23 - Service: Appel de procédure distante (RPC) (RpcSs) . (.Microsoft Corporation - Distributed COM Services.) - C:\WINDOWS\system32\rpcss.dll =>.Microsoft Corporation
O23 - Service: Carte à puce (SCardSvr) . (.Microsoft Corporation - Serveur de gestion de ressources des cartes.) - C:\WINDOWS\system32\scardsvr.exe =>.Microsoft Corporation
O23 - Service: Planificateur de tâches (Schedule) . (.Microsoft Corporation - Moteur du Planificateur de tâches.) - C:\WINDOWS\system32\schedsvc.dll =>.Microsoft Corporation
O23 - Service: SDService (SDService) . (...) - C:\Documents and Settings\Mr-MDX\Application Data\SDService\SDService.exe =>.Sunny Network Tech LTD.®
O23 - Service: Connexion secondaire (seclogon) . (.Microsoft Corporation - DLL de service d'ouverture de session secon.) - C:\WINDOWS\system32\seclogon.dll =>.Microsoft Corporation
O23 - Service: Notification d'événement système (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) - C:\WINDOWS\system32\sens.dll =>.Microsoft Corporation
O23 - Service: Pare-feu Windows / Partage de connexion Internet (SharedAccess) . (.Microsoft Corporation - Composants de l'application d'assistance à.) - C:\WINDOWS\system32\ipnathlp.dll =>.Microsoft Corporation
O23 - Service: Détection matériel noyau (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) - C:\WINDOWS\system32\shsvcs.dll =>.Microsoft Corporation
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) . (.Analog Devices, Inc. - SoundMAX service agent component.) - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe =>.Analog Devices, Inc.
O23 - Service: Spouleur d'impression (Spooler) . (.Microsoft Corporation - Spooler SubSystem App.) - C:\WINDOWS\system32\spoolsv.exe =>.Microsoft Corporation
O23 - Service: Service de restauration système (srservice) . (.Microsoft Corporation - Service de restauration du système.) - C:\WINDOWS\system32\srsvc.dll =>.Microsoft Corporation
O23 - Service: Acquisition d'image Windows (WIA) (stisvc) . (.Microsoft Corporation - Service de périphériques d'images fixes.) - C:\WINDOWS\system32\wiaservc.dll =>.Microsoft Corporation
O23 - Service: The Calendar Service (TheCalendarService) . (. - The Calendar Service.) - C:\Program Files\CalendarTool\2.0.0.1000176\CalendarServ.exe =>PUP.Optional.ScreenSnapshot
O23 - Service: Thèmes (Themes) . (.Microsoft Corporation - Dll des services Windows Shell.) - C:\WINDOWS\system32\shsvcs.dll =>.Microsoft Corporation
O23 - Service: Horloge Windows (W32Time) . (.Microsoft Corporation - Service de temps Windows.) - C:\WINDOWS\system32\w32time.dll =>.Microsoft Corporation
O23 - Service: WebClient (WebClient) . (.Microsoft Corporation - Web DAV Service DLL.) - C:\WINDOWS\system32\webclnt.dll =>.Microsoft Corporation
O23 - Service: WinArchiver Service (WinArchiver Service) . (...) - C:\Program Files\WinArchiver\WAService.exe {1324F475EBA5951391C5126CF4EEB3CE}
O23 - Service: Infrastructure de gestion Windows (winmgmt) . (.Microsoft Corporation - WMI.) - C:\WINDOWS\system32\wbem\wmisvc.dll =>.Microsoft Corporation
O23 - Service: Centre de sécurité (wscsvc) . (.Microsoft Corporation - Windows Security Center Service.) - C:\WINDOWS\system32\wscsvc.dll =>.Microsoft Corporation
O23 - Service: Mises à jour automatiques (wuauserv) . (.Microsoft Corporation - Windows Update AutoUpdate Service.) - C:\WINDOWS\system32\wuauserv.dll =>.Microsoft Corporation
O23 - Service: Configuration automatique sans fil (WZCSVC) . (.Microsoft Corporation - Service configuration automatique sans fil.) - C:\WINDOWS\system32\wzcsvc.dll =>.Microsoft Corporation

---\\ SERVICES NON MICROSOFT (SR=Démarré,SS=Stoppé) (12) - 23s
SS - Demand [15/07/2018] [ 335872] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe =>.Adobe Systems Incorporated
SS - Auto [28/07/2011] [ 262144] Arp Intelligent Protection Service (AIPS) . (.Arcai.com.) - C:\Program Files\netcut\services\aips.exe =>.arcai.com
SS - Disabl [13/04/2008] [ 5632] Service d'indexation (CiSvc) . (...) - C:\WINDOWS\system32\cisvc.exe
SS - Auto [08/07/2018] [ 39936] Gryptographic Services (Gryptographic Services) . (.版权所有 (C) 2010.) - C:\WINDOWS\system32\ccuwco.exe
SS - Auto [20/04/2018] [ 154432] HuaweiHiSuiteService.exe (HuaweiHiSuiteService.exe) . (...) - C:\Program Files\HiSuite\HandSetService\HuaweiHiSuiteService.exe
SS - Auto [28/10/2016] [ 360736] IObit Uninstaller Service (IObitUnSvr) . (.IObit.) - C:\Program Files\IObit\IObit Uninstaller\IUService.exe =>.IObit Information Technology®
SR - Auto [22/08/2008] [ 73728] LightScribeService Direct Disc Labeling Service (LightScribeService) . (.Hewlett-Packard Company.) - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe =>.Hewlett-Packard Company
SS - Demand [09/07/2018] [ 174032] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe =>.Mozilla Corporation®
SR - Auto [27/08/2017] [ 184504] SDService (SDService) . (...) - C:\Documents and Settings\Mr-MDX\Application Data\SDService\SDService.exe =>.Sunny Network Tech LTD.®
SR - Auto [20/09/2002] [ 45056] SoundMAX Agent Service (SoundMAX Agent Service (default)) . (.Analog Devices, Inc..) - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe =>.Analog Devices, Inc.
SR - Auto [20/08/2017] [ 151696] The Calendar Service (TheCalendarService) . (...) - C:\Program Files\CalendarTool\2.0.0.1000176\CalendarServ.exe =>PUP.Optional.ScreenSnapshot =>PUP.Optional.ScreenSnapshot
SR - Auto [06/07/2018] [ 230432] WinArchiver Service (WinArchiver Service) . (...) - C:\Program Files\WinArchiver\WAService.exe {1324F475EBA5951391C5126CF4EEB3CE}

---\\ APPLICATIONS LANCÉES AU DÉMARRAGE DU SYSTÈME (8) - 0s
O4 - HKCU\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe =>.Microsoft Corporation
O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-1417001333-1532298954-1177238915-1003\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-1417001333-1532298954-1177238915-1003\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files\Internet Download Manager\IDMan.exe =>.Tonec Inc.

---\\ PROCESSUS LANCÉS (15) - 4s
[MD5.CCC6EF2C2B741554E092CB6E73EAE78D] - (...) -- C:\Program Files\WinArchiver\WAService.exe [230432] [PID.992] {1324F475EBA5951391C5126CF4EEB3CE}
[MD5.E75ADCFAFDEF3F4C3AF3332928D59926] - (.Hewlett-Packard Company - LightScribe Service.) -- C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe [73728] [PID.572] =>.Hewlett-Packard Company
[MD5.3A9A04078A1DDD43585831247B465AE3] - (...) -- C:\Documents and Settings\Mr-MDX\Application Data\SDService\SDService.exe [184504] [PID.664] =>.Sunny Network Tech LTD.®
[MD5.3978F082274F723AD5A0A8058C2417DD] - (.Analog Devices, Inc. - SoundMAX service agent component.) -- C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe [45056] [PID.460] =>.Analog Devices, Inc.
[MD5.47333D19E8DA47A6CDF23FC7A800983D] - (. - The Calendar Service.) -- C:\Program Files\CalendarTool\2.0.0.1000176\CalendarServ.exe [151696] [PID.1064] =>PUP.Optional.ScreenSnapshot
[MD5.7079DC7371622B0515C6CCC147CF1FCC] - (. - calendar Application.) -- C:\Program Files\CalendarTool\2.0.0.1000176\calendar.exe [2249360] [PID.1900] =>PUP.Optional.ScreenSnapshot
[MD5.A92CF3AEBAEC981CDCE42F96B894731C] - (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files\Internet Download Manager\IDMan.exe [3948600] [PID.2088] =>.Tonec Inc.
[MD5.9F92C9866CE691982E62ABB80BDE9B52] - (.Antonio Da Cruz - PhotoFiltre Studio.) -- C:\Program Files\PhotoFiltre Studio X\pfstudiox.exe [3288576] [PID.2736] =>.Antonio Da Cruz
[MD5.C21B5DD80E635547D807ADA10B44FFAD] - (.IObit - UninstallerMonitor.) -- C:\Program Files\IObit\IObit Uninstaller\UninstallMonitor.exe [2275616] [PID.2868] =>.IObit Information Technology®
[MD5.3D35CE5BB2D0F6C5007C1C674DDB0584] - (.版权所有 (C) 2010 - server Microsoft 基础类应用程序.) -- C:\WINDOWS\Temp\hrl25.tmp [39936] [PID.2976]
[MD5.FA7346F3C657197C00B20572EC01C61E] - (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe [517072] [PID.3872] =>.Mozilla Corporation®
[MD5.2F5C5F2ACDD98034E5320A6EEB1700B7] - (...) -- C:\Documents and Settings\Mr-MDX\Application Data\SDService\updatefiles\checkupdate.exe [829112] [PID.3368] =>.Sunny Network Tech LTD.®
[MD5.3D35CE5BB2D0F6C5007C1C674DDB0584] - (.版权所有 (C) 2010 - server Microsoft 基础类应用程序.) -- C:\WINDOWS\Temp\hrl54.tmp [39936] [PID.3836]
[MD5.3D35CE5BB2D0F6C5007C1C674DDB0584] - (.版权所有 (C) 2010 - server Microsoft 基础类应用程序.) -- C:\WINDOWS\Temp\hrl55.tmp [39936] [PID.4012]
[MD5.60CAFB11D7B433A9C7199FBBD7A5C86F] - (.Nicolas Coolman - ZHPDiag.) -- C:\Documents and Settings\Mr-MDX\Bureau\ZHPDiag3_3.exe [3157376] [PID.1616] =>.Nicolas Coolman

---\\ FIREFOX, Plugins,Démarrage,Recherche,Extensions (8) - 3s
M0 - MFSP: prefs.js [Mr-MDX - juzzcchh.default] http://google.co.ma =>.Google Inc.
P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\browser\features\aushelper@mozilla.org.xpi =>.Mozilla Corporation
P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\browser\features\e10srollout@mozilla.org.xpi =>.Mozilla Corporation
P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\browser\features\firefox@getpocket.com.xpi =>.Mozilla Corporation
P2 - EXT FILE: (.webcompat.com.) -- C:\Program Files\Mozilla Firefox\browser\features\webcompat@mozilla.org.xpi =>.webcompat.com
P2 - FPN: [HKCU] [@catalinahub.net/CatalinaGroup Update;version=3] - (.Catalina Group Ltd..) -- C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\CatalinaGroup\Update\1.3.25.225\npCatalinaUpdate3.dll =>.SUP.CatalinaMarketing
P2 - FPN: [HKCU] [@catalinahub.net/CatalinaGroup Update;version=9] - (.Catalina Group Ltd..) -- C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\CatalinaGroup\Update\1.3.25.225\npCatalinaUpdate3.dll =>.SUP.CatalinaMarketing
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32_30_0_0_134.dll =>.Adobe Systems Incorporated

---\\ INTERNET EXPLORER,Démarrage,Recherche,URLSearchHook (7) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://google.co.ma =>.Google Inc.
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/ =>.Microsoft Corporation
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/ =>.Microsoft Corporation
R3 - URLSearchHook: (no name)[HKCU] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Bibliothèque d'objets et de contrôles de do.) (6.00.2900.5512 (xpsp.080413-2105)) -- C:\WINDOWS\system32\shdocvw.dll =>.Microsoft Corporation

---\\ INTERNET EXPLORER, Site de confiance et site sensible (1) - 0s
~ Microsoft Internet Explorer Restricted Site(s) Domains: 0(Good) / 0(Bad)

---\\ INTERNET EXPLORER,Proxy Management (4) - 0s
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 =>.Default.Value
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 =>.Default.Value
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 =>.Default.Value
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

---\\ INTERNET EXPLORER,IniFiles, Autoloading Programs (3) - 0s
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"

---\\ ÉTUDE DU FICHIER HOSTS (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (23)

---\\ BROWSER HELPER OBJECT DE NAVIGATEUR (BHO) (4) - 2s
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Internet Download Manager, Tonec Inc. - IDM Browser Helper Object.) -- C:\Program Files\Internet Download Manager\IDMIECC.dll =>.Tonec Inc.®
O2 - BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} . (.IObit - Uninstall for explorer.) -- C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer.dll =>.IObit Information Technology®
O2 - BHO: FlashGetBHO - {b070d3e3-fec0-47d9-8e8a-99d4eeb3d3b0} . (.Trend Media Group - FlashGet Browser Helper Object.) -- C:\Documents and Settings\Mr-MDX\Application Data\FlashGetBHO\FlashGetBHO.dll =>.Trend Media Corporation Limited®
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL =>.Microsoft Corporation®

---\\ RACCOURCIS GLOBAL STARTUP (202) - 36s
O4 - GS\Desktop [Administrateur]: Black Bird Cleaner.lnk . (.Black Bird Cleaner Software - Black Bird Cleaner.) C:\Program Files\Black Bird Cleaner\BlackBirdCleaner.exe =>.Black Bird Cleaner Software
O4 - GS\Desktop [Administrateur]: Chrome Web Store.lnk . (.CatalinaGroup Ltd. - Citrio.) C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\CatalinaGroup\Citrio\Application\citrio.exe http://chrome.google.com/ =>.SUP.CatalinaMarketing
O4 - GS\Desktop [Administrateur]: Citrio.lnk . (.CatalinaGroup Ltd. - Citrio.) C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\CatalinaGroup\Citrio\Application\citrio.exe =>.SUP.CatalinaMarketing
O4 - GS\Desktop [Administrateur]: Facebook.lnk . (.CatalinaGroup Ltd. - Citrio.) C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\CatalinaGroup\Citrio\Application\citrio.exe http://www.facebook.com =>.SUP.CatalinaMarketing
O4 - GS\Desktop [Administrateur]: Internet Download Manager.lnk . (.Tonec Inc. - Internet Download Manager (IDM).) C:\Program Files\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - GS\Desktop [Administrateur]: Notepad++.lnk . (.Don HO don.h@free.fr - Notepad++ : a free (GNU) source code editor.) C:\Program Files\Notepad++\notepad++.exe =>.Notepad++®
O4 - GS\Desktop [Administrateur]: PhotoFiltre Studio X.lnk . (.Antonio Da Cruz - PhotoFiltre Studio.) C:\Program Files\PhotoFiltre Studio X\pfstudiox.exe =>.Antonio Da Cruz
O4 - GS\Desktop [Administrateur]: Picosmos Shows.lnk . (.Free Time Co., Ltd. - Picosmos Shows.) C:\Program Files\PicosmosTools\PicosmosShows.exe =>.Free Time Co., Ltd.®
O4 - GS\Desktop [Administrateur]: Picosmos Tools.lnk . (.Free Time Co., Ltd. - Picosmos Tools.) C:\Program Files\PicosmosTools\PicosmosTools.exe =>.Free Time Co., Ltd.®
O4 - GS\Desktop [Administrateur]: PotPlayer.lnk . (.Kakao - PotPlayer.) C:\Program Files\DAUM\PotPlayer\PotPlayerMini.exe =>.Kakao corp.®
O4 - GS\Desktop [Administrateur]: Quranflash Desktop.lnk . (...) C:\Program Files\Quranflash Desktop\Quranflash Desktop.exe
O4 - GS\Desktop [Administrateur]: SecretFolder.lnk . (.oh!soft - .) C:\Program Files\SecretFolder\SecretFolder.exe {70331E78607690B67504AEFE} =>.oh!soft
O4 - GS\Desktop [Administrateur]: UmmyVideoDownloader.lnk . (...) C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\UmmyVideoDownloader\UmmyVideoDownloader.exe {65FA5A5518239DCE52EB94EB}
O4 - GS\Desktop [Administrateur]: WinMend File Copy.lnk . (...) C:\Program Files\WinMend\File Copy\FileCopy.exe
O4 - GS\Desktop [Administrateur]: YouTube.lnk . (.CatalinaGroup Ltd. - Citrio.) C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\CatalinaGroup\Citrio\Application\citrio.exe http://www.youtube.com =>.SUP.CatalinaMarketing
O4 - GS\Desktop [Administrateur]: ZHPDiag.lnk . (...) C:\Documents and Settings\Mr-MDX\Application Data\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Desktop [Administrateur]: موسيقى.lnk . (...) D:\موسيقى
O4 - GS\Desktop [Administrateur]: ░║MOµRAD║░.lnk . (...) D:\
O4 - GS\Quicklaunch [Administrateur]: Citrio.lnk . (.CatalinaGroup Ltd. - Citrio.) C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\CatalinaGroup\Citrio\Application\citrio.exe =>.SUP.CatalinaMarketing
O4 - GS\Quicklaunch [Administrateur]: Démarrer Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\IEXPLORE.EXE =>.Microsoft Corporation
O4 - GS\Quicklaunch [Administrateur]: FlashGet3.lnk . (.Trend Media Corporation Limited - FlashGet3.) C:\Program Files\FlashGet Network\FlashGet 3\FlashGet3.exe -shortcut -quicklanuch =>.Trend Media Corporation Limited®
O4 - GS\Quicklaunch [Administrateur]: jetAudio.lnk . (.JetAudio, Inc. - jetAudio.) C:\Program Files\JetAudio\JetAudio.exe =>.JetAudio, Inc.
O4 - GS\Quicklaunch [Administrateur]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\Quicklaunch [Administrateur]: PotPlayer.lnk . (.Kakao - PotPlayer.) C:\Program Files\DAUM\PotPlayer\PotPlayerMini.exe =>.Kakao corp.®
O4 - GS\Quicklaunch [Administrateur]: Samsung PC Studio 3.lnk . (...) C:\Program Files\Samsung\Samsung PC Studio 3\Launcher.exe
O4 - GS\Quicklaunch [Administrateur]: Torch.lnk . (...) C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\Torch\Application\torch.exe =>.SUP.Torch
O4 - GS\Quicklaunch [Administrateur]: WinMend File Copy.lnk . (...) C:\Program Files\WinMend\File Copy\FileCopy.exe
O4 - GS\Quicklaunch [Administrateur]: Wondershare Photo Collage Studio.lnk . (.Wondershare Software Co.,Ltd. - Photo Collage Studio.) C:\Program Files\Wondershare\Photo Collage Studio\pcls.exe =>.Wondershare Software Co.,Ltd.
O4 - GS\Quicklaunch [Administrateur]: Xilisoft Convertisseur Vidéo Ultimate.lnk . (...) C:\Program Files\Xilisoft\Video Converter Ultimate\vcloader.exe
O4 - GS\Programs [Administrateur]: Assistance à distance.lnk . (.Microsoft Corporation - Assistance à distance Microsoft.) C:\WINDOWS\system32\rcimlby.exe -LaunchRA =>.Microsoft Corporation
O4 - GS\Programs [Administrateur]: Citrio.lnk . (.CatalinaGroup Ltd. - Citrio.) C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\CatalinaGroup\Citrio\Application\citrio.exe =>.SUP.CatalinaMarketing
O4 - GS\Programs [Administrateur]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\IEXPLORE.EXE =>.Microsoft Corporation
O4 - GS\Programs [Administrateur]: Lecteur Windows Media.lnk . (.Microsoft Corporation - Lecteur Windows Media.) C:\Program Files\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\Programs [Administrateur]: Outlook Express.lnk . (.Microsoft Corporation - Outlook Express.) C:\Program Files\Outlook Express\msimn.exe =>.Microsoft Corporation
O4 - GS\Programs [Administrateur]: SetRefresh.lnk . (.InstallShield Software Corp. - InstallShield.) C:\Documents and Settings\Mr-MDX\Application Data\Microsoft\Installer\{F5242227-2051-4158-AC42-0F2BAA3CD3D6}\New_Shortcut_S1425_ADB54615A0E240F89C5EFD8513472ED3.exe -f =>.InstallShield Software Corp.
O4 - GS\Desktop [ASPNET]: Black Bird Cleaner.lnk . (.Black Bird Cleaner Software - Black Bird Cleaner.) C:\Program Files\Black Bird Cleaner\BlackBirdCleaner.exe =>.Black Bird Cleaner Software
O4 - GS\Desktop [ASPNET]: Chrome Web Store.lnk . (.CatalinaGroup Ltd. - Citrio.) C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\CatalinaGroup\Citrio\Application\citrio.exe http://chrome.google.com/ =>.SUP.CatalinaMarketing
O4 - GS\Desktop [ASPNET]: Citrio.lnk . (.CatalinaGroup Ltd. - Citrio.) C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\CatalinaGroup\Citrio\Application\citrio.exe =>.SUP.CatalinaMarketing
O4 - GS\Desktop [ASPNET]: Facebook.lnk . (.CatalinaGroup Ltd. - Citrio.) C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\CatalinaGroup\Citrio\Application\citrio.exe http://www.facebook.com =>.SUP.CatalinaMarketing
O4 - GS\Desktop [ASPNET]: Internet Download Manager.lnk . (.Tonec Inc. - Internet Download Manager (IDM).) C:\Program Files\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - GS\Desktop [ASPNET]: Notepad++.lnk . (.Don HO don.h@free.fr - Notepad++ : a free (GNU) source code editor.) C:\Program Files\Notepad++\notepad++.exe =>.Notepad++®
O4 - GS\Desktop [ASPNET]: PhotoFiltre Studio X.lnk . (.Antonio Da Cruz - PhotoFiltre Studio.) C:\Program Files\PhotoFiltre Studio X\pfstudiox.exe =>.Antonio Da Cruz
O4 - GS\Desktop [ASPNET]: Picosmos Shows.lnk . (.Free Time Co., Ltd. - Picosmos Shows.) C:\Program Files\PicosmosTools\PicosmosShows.exe =>.Free Time Co., Ltd.®
O4 - GS\Desktop [ASPNET]: Picosmos Tools.lnk . (.Free Time Co., Ltd. - Picosmos Tools.) C:\Program Files\PicosmosTools\PicosmosTools.exe =>.Free Time Co., Ltd.®
O4 - GS\Desktop [ASPNET]: PotPlayer.lnk . (.Kakao - PotPlayer.) C:\Program Files\DAUM\PotPlayer\PotPlayerMini.exe =>.Kakao corp.®
O4 - GS\Desktop [ASPNET]: Quranflash Desktop.lnk . (...) C:\Program Files\Quranflash Desktop\Quranflash Desktop.exe
O4 - GS\Desktop [ASPNET]: SecretFolder.lnk . (.oh!soft - .) C:\Program Files\SecretFolder\SecretFolder.exe {70331E78607690B67504AEFE} =>.oh!soft
O4 - GS\Desktop [ASPNET]: UmmyVideoDownloader.lnk . (...) C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\UmmyVideoDownloader\UmmyVideoDownloader.exe {65FA5A5518239DCE52EB94EB}
O4 - GS\Desktop [ASPNET]: WinMend File Copy.lnk . (...) C:\Program Files\WinMend\File Copy\FileCopy.exe
O4 - GS\Desktop [ASPNET]: YouTube.lnk . (.CatalinaGroup Ltd. - Citrio.) C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\CatalinaGroup\Citrio\Application\citrio.exe http://www.youtube.com =>.SUP.CatalinaMarketing
O4 - GS\Desktop [ASPNET]: ZHPDiag.lnk . (...) C:\Documents and Settings\Mr-MDX\Application Data\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Desktop [ASPNET]: موسيقى.lnk . (...) D:\موسيقى
O4 - GS\Desktop [ASPNET]: ░║MOµRAD║░.lnk . (...) D:\
O4 - GS\Quicklaunch [ASPNET]: Citrio.lnk . (.CatalinaGroup Ltd. - Citrio.) C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\CatalinaGroup\Citrio\Application\citrio.exe =>.SUP.CatalinaMarketing
O4 - GS\Quicklaunch [ASPNET]: Démarrer Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\IEXPLORE.EXE =>.Microsoft Corporation
O4 - GS\Quicklaunch [ASPNET]: FlashGet3.lnk . (.Trend Media Corporation Limited - FlashGet3.) C:\Program Files\FlashGet Network\FlashGet 3\FlashGet3.exe -shortcut -quicklanuch =>.Trend Media Corporation Limited®
O4 - GS\Quicklaunch [ASPNET]: jetAudio.lnk . (.JetAudio, Inc. - jetAudio.) C:\Program Files\JetAudio\JetAudio.exe =>.JetAudio, Inc.
O4 - GS\Quicklaunch [ASPNET]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\Quicklaunch [ASPNET]: PotPlayer.lnk . (.Kakao - PotPlayer.) C:\Program Files\DAUM\PotPlayer\PotPlayerMini.exe =>.Kakao corp.®
O4 - GS\Quicklaunch [ASPNET]: Samsung PC Studio 3.lnk . (...) C:\Program Files\Samsung\Samsung PC Studio 3\Launcher.exe
O4 - GS\Quicklaunch [ASPNET]: Torch.lnk . (...) C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\Torch\Application\torch.exe =>.SUP.Torch
O4 - GS\Quicklaunch [ASPNET]: WinMend File Copy.lnk . (...) C:\Program Files\WinMend\File Copy\FileCopy.exe
O4 - GS\Quicklaunch [ASPNET]: Wondershare Photo Collage Studio.lnk . (.Wondershare Software Co.,Ltd. - Photo Collage Studio.) C:\Program Files\Wondershare\Photo Collage Studio\pcls.exe =>.Wondershare Software Co.,Ltd.
O4 - GS\Quicklaunch [ASPNET]: Xilisoft Convertisseur Vidéo Ultimate.lnk . (...) C:\Program Files\Xilisoft\Video Converter Ultimate\vcloader.exe
O4 - GS\Programs [ASPNET]: Assistance à distance.lnk . (.Microsoft Corporation - Assistance à distance Microsoft.) C:\WINDOWS\system32\rcimlby.exe -LaunchRA =>.Microsoft Corporation
O4 - GS\Programs [ASPNET]: Citrio.lnk . (.CatalinaGroup Ltd. - Citrio.) C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\CatalinaGroup\Citrio\Application\citrio.exe =>.SUP.CatalinaMarketing
O4 - GS\Programs [ASPNET]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\IEXPLORE.EXE =>.Microsoft Corporation
O4 - GS\Programs [ASPNET]: Lecteur Windows Media.lnk . (.Microsoft Corporation - Lecteur Windows Media.) C:\Program Files\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\Programs [ASPNET]: Outlook Express.lnk . (.Microsoft Corporation - Outlook Express.) C:\Program Files\Outlook Express\msimn.exe =>.Microsoft Corporation
O4 - GS\Programs [ASPNET]: SetRefresh.lnk . (.InstallShield Software Corp. - InstallShield.) C:\Documents and Settings\Mr-MDX\Application Data\Microsoft\Installer\{F5242227-2051-4158-AC42-0F2BAA3CD3D6}\New_Shortcut_S1425_ADB54615A0E240F89C5EFD8513472ED3.exe -f =>.InstallShield Software Corp.
O4 - GS\Desktop [HelpAssistant]: Black Bird Cleaner.lnk . (.Black Bird Cleaner Software - Black Bird Cleaner.) C:\Program Files\Black Bird Cleaner\BlackBirdCleaner.exe =>.Black Bird Cleaner Software
O4 - GS\Desktop [HelpAssistant]: Chrome Web Store.lnk . (.CatalinaGroup Ltd. - Citrio.) C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\CatalinaGroup\Citrio\Application\citrio.exe http://chrome.google.com/ =>.SUP.CatalinaMarketing
O4 - GS\Desktop [HelpAssistant]: Citrio.lnk . (.CatalinaGroup Ltd. - Citrio.) C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\CatalinaGroup\Citrio\Application\citrio.exe =>.SUP.CatalinaMarketing
O4 - GS\Desktop [HelpAssistant]: Facebook.lnk . (.CatalinaGroup Ltd. - Citrio.) C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\CatalinaGroup\Citrio\Application\citrio.exe http://www.facebook.com =>.SUP.CatalinaMarketing
O4 - GS\Desktop [HelpAssistant]: Internet Download Manager.lnk . (.Tonec Inc. - Internet Download Manager (IDM).) C:\Program Files\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - GS\Desktop [HelpAssistant]: Notepad++.lnk . (.Don HO don.h@free.fr - Notepad++ : a free (GNU) source code editor.) C:\Program Files\Notepad++\notepad++.exe =>.Notepad++®
O4 - GS\Desktop [HelpAssistant]: PhotoFiltre Studio X.lnk . (.Antonio Da Cruz - PhotoFiltre Studio.) C:\Program Files\PhotoFiltre Studio X\pfstudiox.exe =>.Antonio Da Cruz
O4 - GS\Desktop [HelpAssistant]: Picosmos Shows.lnk . (.Free Time Co., Ltd. - Picosmos Shows.) C:\Program Files\PicosmosTools\PicosmosShows.exe =>.Free Time Co., Ltd.®
O4 - GS\Desktop [HelpAssistant]: Picosmos Tools.lnk . (.Free Time Co., Ltd. - Picosmos Tools.) C:\Program Files\PicosmosTools\PicosmosTools.exe =>.Free Time Co., Ltd.®
O4 - GS\Desktop [HelpAssistant]: PotPlayer.lnk . (.Kakao - PotPlayer.) C:\Program Files\DAUM\PotPlayer\PotPlayerMini.exe =>.Kakao corp.®
O4 - GS\Desktop [HelpAssistant]: Quranflash Desktop.lnk . (...) C:\Program Files\Quranflash Desktop\Quranflash Desktop.exe
O4 - GS\Desktop [HelpAssistant]: SecretFolder.lnk . (.oh!soft - .) C:\Program Files\SecretFolder\SecretFolder.exe {70331E78607690B67504AEFE} =>.oh!soft
O4 - GS\Desktop [HelpAssistant]: UmmyVideoDownloader.lnk . (...) C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\UmmyVideoDownloader\UmmyVideoDownloader.exe {65FA5A5518239DCE52EB94EB}
O4 - GS\Desktop [HelpAssistant]: WinMend File Copy.lnk . (...) C:\Program Files\WinMend\File Copy\FileCopy.exe
O4 - GS\Desktop [HelpAssistant]: YouTube.lnk . (.CatalinaGroup Ltd. - Citrio.) C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\CatalinaGroup\Citrio\Application\citrio.exe http://www.youtube.com =>.SUP.CatalinaMarketing
O4 - GS\Desktop [HelpAssistant]: ZHPDiag.lnk . (...) C:\Documents and Settings\Mr-MDX\Application Data\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Desktop [HelpAssistant]: موسيقى.lnk . (...) D:\موسيقى
O4 - GS\Desktop [HelpAssistant]: ░║MOµRAD║░.lnk . (...) D:\
O4 - GS\Quicklaunch [HelpAssistant]: Citrio.lnk . (.CatalinaGroup Ltd. - Citrio.) C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\CatalinaGroup\Citrio\Application\citrio.exe =>.SUP.CatalinaMarketing
O4 - GS\Quicklaunch [HelpAssistant]: Démarrer Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\IEXPLORE.EXE =>.Microsoft Corporation
O4 - GS\Quicklaunch [HelpAssistant]: FlashGet3.lnk . (.Trend Media Corporation Limited - FlashGet3.) C:\Program Files\FlashGet Network\FlashGet 3\FlashGet3.exe -shortcut -quicklanuch =>.Trend Media Corporation Limited®
O4 - GS\Quicklaunch [HelpAssistant]: jetAudio.lnk . (.JetAudio, Inc. - jetAudio.) C:\Program Files\JetAudio\JetAudio.exe =>.JetAudio, Inc.
O4 - GS\Quicklaunch [HelpAssistant]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\Quicklaunch [HelpAssistant]: PotPlayer.lnk . (.Kakao - PotPlayer.) C:\Program Files\DAUM\PotPlayer\PotPlayerMini.exe =>.Kakao corp.®
O4 - GS\Quicklaunch [HelpAssistant]: Samsung PC Studio 3.lnk . (...) C:\Program Files\Samsung\Samsung PC Studio 3\Launcher.exe
O4 - GS\Quicklaunch [HelpAssistant]: Torch.lnk . (...) C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\Torch\Application\torch.exe =>.SUP.Torch
O4 - GS\Quicklaunch [HelpAssistant]: WinMend File Copy.lnk . (...) C:\Program Files\WinMend\File Copy\FileCopy.exe
O4 - GS\Quicklaunch [HelpAssistant]: Wondershare Photo Collage Studio.lnk . (.Wondershare Software Co.,Ltd. - Photo Collage Studio.) C:\Program Files\Wondershare\Photo Collage Studio\pcls.exe =>.Wondershare Software Co.,Ltd.
O4 - GS\Quicklaunch [HelpAssistant]: Xilisoft Convertisseur Vidéo Ultimate.lnk . (...) C:\Program Files\Xilisoft\Video Converter Ultimate\vcloader.exe
O4 - GS\Programs [HelpAssistant]: Assistance à distance.lnk . (.Microsoft Corporation - Assistance à distance Microsoft.) C:\WINDOWS\system32\rcimlby.exe -LaunchRA =>.Microsoft Corporation
O4 - GS\Programs [HelpAssistant]: Citrio.lnk . (.CatalinaGroup Ltd. - Citrio.) C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\CatalinaGroup\Citrio\Application\citrio.exe =>.SUP.CatalinaMarketing
O4 - GS\Programs [HelpAssistant]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\IEXPLORE.EXE =>.Microsoft Corporation
O4 - GS\Programs [HelpAssistant]: Lecteur Windows Media.lnk . (.Microsoft Corporation - Lecteur Windows Media.) C:\Program Files\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\Programs [HelpAssistant]: Outlook Express.lnk . (.Microsoft Corporation - Outlook Express.) C:\Program Files\Outlook Express\msimn.exe =>.Microsoft Corporation
O4 - GS\Programs [HelpAssistant]: SetRefresh.lnk . (.InstallShield Software Corp. - InstallShield.) C:\Documents and Settings\Mr-MDX\Application Data\Microsoft\Installer\{F5242227-2051-4158-AC42-0F2BAA3CD3D6}\New_Shortcut_S1425_ADB54615A0E240F89C5EFD8513472ED3.exe -f =>.InstallShield Software Corp.
O4 - GS\Desktop [Mr-MDX]: Black Bird Cleaner.lnk . (.Black Bird Cleaner Software - Black Bird Cleaner.) C:\Program Files\Black Bird Cleaner\BlackBirdCleaner.exe =>.Black Bird Cleaner Software
O4 - GS\Desktop [Mr-MDX]: Chrome Web Store.lnk . (.CatalinaGroup Ltd. - Citrio.) C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\CatalinaGroup\Citrio\Application\citrio.exe http://chrome.google.com/ =>.SUP.CatalinaMarketing
O4 - GS\Desktop [Mr-MDX]: Citrio.lnk . (.CatalinaGroup Ltd. - Citrio.) C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\CatalinaGroup\Citrio\Application\citrio.exe =>.SUP.CatalinaMarketing
O4 - GS\Desktop [Mr-MDX]: Facebook.lnk . (.CatalinaGroup Ltd. - Citrio.) C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\CatalinaGroup\Citrio\Application\citrio.exe http://www.facebook.com =>.SUP.CatalinaMarketing
O4 - GS\Desktop [Mr-MDX]: Internet Download Manager.lnk . (.Tonec Inc. - Internet Download Manager (IDM).) C:\Program Files\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - GS\Desktop [Mr-MDX]: Notepad++.lnk . (.Don HO don.h@free.fr - Notepad++ : a free (GNU) source code editor.) C:\Program Files\Notepad++\notepad++.exe =>.Notepad++®
O4 - GS\Desktop [Mr-MDX]: PhotoFiltre Studio X.lnk . (.Antonio Da Cruz - PhotoFiltre Studio.) C:\Program Files\PhotoFiltre Studio X\pfstudiox.exe =>.Antonio Da Cruz
O4 - GS\Desktop [Mr-MDX]: Picosmos Shows.lnk . (.Free Time Co., Ltd. - Picosmos Shows.) C:\Program Files\PicosmosTools\PicosmosShows.exe =>.Free Time Co., Ltd.®
O4 - GS\Desktop [Mr-MDX]: Picosmos Tools.lnk . (.Free Time Co., Ltd. - Picosmos Tools.) C:\Program Files\PicosmosTools\PicosmosTools.exe =>.Free Time Co., Ltd.®
O4 - GS\Desktop [Mr-MDX]: PotPlayer.lnk . (.Kakao - PotPlayer.) C:\Program Files\DAUM\PotPlayer\PotPlayerMini.exe =>.Kakao corp.®
O4 - GS\Desktop [Mr-MDX]: Quranflash Desktop.lnk . (...) C:\Program Files\Quranflash Desktop\Quranflash Desktop.exe
O4 - GS\Desktop [Mr-MDX]: SecretFolder.lnk . (.oh!soft - .) C:\Program Files\SecretFolder\SecretFolder.exe {70331E78607690B67504AEFE} =>.oh!soft
O4 - GS\Desktop [Mr-MDX]: UmmyVideoDownloader.lnk . (...) C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\UmmyVideoDownloader\UmmyVideoDownloader.exe {65FA5A5518239DCE52EB94EB}
O4 - GS\Desktop [Mr-MDX]: WinMend File Copy.lnk . (...) C:\Program Files\WinMend\File Copy\FileCopy.exe
O4 - GS\Desktop [Mr-MDX]: YouTube.lnk . (.CatalinaGroup Ltd. - Citrio.) C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\CatalinaGroup\Citrio\Application\citrio.exe http://www.youtube.com =>.SUP.CatalinaMarketing
O4 - GS\Desktop [Mr-MDX]: ZHPDiag.lnk . (...) C:\Documents and Settings\Mr-MDX\Application Data\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Desktop [Mr-MDX]: موسيقى.lnk . (...) D:\موسيقى
O4 - GS\Desktop [Mr-MDX]: ░║MOµRAD║░.lnk . (...) D:\
O4 - GS\Quicklaunch [Mr-MDX]: Citrio.lnk . (.CatalinaGroup Ltd. - Citrio.) C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\CatalinaGroup\Citrio\Application\citrio.exe =>.SUP.CatalinaMarketing
O4 - GS\Quicklaunch [Mr-MDX]: Démarrer Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\IEXPLORE.EXE =>.Microsoft Corporation
O4 - GS\Quicklaunch [Mr-MDX]: FlashGet3.lnk . (.Trend Media Corporation Limited - FlashGet3.) C:\Program Files\FlashGet Network\FlashGet 3\FlashGet3.exe -shortcut -quicklanuch =>.Trend Media Corporation Limited®
O4 - GS\Quicklaunch [Mr-MDX]: jetAudio.lnk . (.JetAudio, Inc. - jetAudio.) C:\Program Files\JetAudio\JetAudio.exe =>.JetAudio, Inc.
O4 - GS\Quicklaunch [Mr-MDX]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\Quicklaunch [Mr-MDX]: PotPlayer.lnk . (.Kakao - PotPlayer.) C:\Program Files\DAUM\PotPlayer\PotPlayerMini.exe =>.Kakao corp.®
O4 - GS\Quicklaunch [Mr-MDX]: Samsung PC Studio 3.lnk . (...) C:\Program Files\Samsung\Samsung PC Studio 3\Launcher.exe
O4 - GS\Quicklaunch [Mr-MDX]: Torch.lnk . (...) C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\Torch\Application\torch.exe =>.SUP.Torch
O4 - GS\Quicklaunch [Mr-MDX]: WinMend File Copy.lnk . (...) C:\Program Files\WinMend\File Copy\FileCopy.exe
O4 - GS\Quicklaunch [Mr-MDX]: Wondershare Photo Collage Studio.lnk . (.Wondershare Software Co.,Ltd. - Photo Collage Studio.) C:\Program Files\Wondershare\Photo Collage Studio\pcls.exe =>.Wondershare Software Co.,Ltd.
O4 - GS\Quicklaunch [Mr-MDX]: Xilisoft Convertisseur Vidéo Ultimate.lnk . (...) C:\Program Files\Xilisoft\Video Converter Ultimate\vcloader.exe
O4 - GS\Programs [Mr-MDX]: Assistance à distance.lnk . (.Microsoft Corporation - Assistance à distance Microsoft.) C:\WINDOWS\system32\rcimlby.exe -LaunchRA =>.Microsoft Corporation
O4 - GS\Programs [Mr-MDX]: Citrio.lnk . (.CatalinaGroup Ltd. - Citrio.) C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\CatalinaGroup\Citrio\Application\citrio.exe =>.SUP.CatalinaMarketing
O4 - GS\Programs [Mr-MDX]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\IEXPLORE.EXE =>.Microsoft Corporation
O4 - GS\Programs [Mr-MDX]: Lecteur Windows Media.lnk . (.Microsoft Corporation - Lecteur Windows Media.) C:\Program Files\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\Programs [Mr-MDX]: Outlook Express.lnk . (.Microsoft Corporation - Outlook Express.) C:\Program Files\Outlook Express\msimn.exe =>.Microsoft Corporation
O4 - GS\Programs [Mr-MDX]: SetRefresh.lnk . (.InstallShield Software Corp. - InstallShield.) C:\Documents and Settings\Mr-MDX\Application Data\Microsoft\Installer\{F5242227-2051-4158-AC42-0F2BAA3CD3D6}\New_Shortcut_S1425_ADB54615A0E240F89C5EFD8513472ED3.exe -f =>.InstallShield Software Corp.
O4 - GS\Desktop [SUPPORT_388945a0]: Black Bird Cleaner.lnk . (.Black Bird Cleaner Software - Black Bird Cleaner.) C:\Program Files\Black Bird Cleaner\BlackBirdCleaner.exe =>.Black Bird Cleaner Software
O4 - GS\Desktop [SUPPORT_388945a0]: Chrome Web Store.lnk . (.CatalinaGroup Ltd. - Citrio.) C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\CatalinaGroup\Citrio\Application\citrio.exe http://chrome.google.com/ =>.SUP.CatalinaMarketing
O4 - GS\Desktop [SUPPORT_388945a0]: Citrio.lnk . (.CatalinaGroup Ltd. - Citrio.) C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\CatalinaGroup\Citrio\Application\citrio.exe =>.SUP.CatalinaMarketing
O4 - GS\Desktop [SUPPORT_388945a0]: Facebook.lnk . (.CatalinaGroup Ltd. - Citrio.) C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\CatalinaGroup\Citrio\Application\citrio.exe http://www.facebook.com =>.SUP.CatalinaMarketing
O4 - GS\Desktop [SUPPORT_388945a0]: Internet Download Manager.lnk . (.Tonec Inc. - Internet Download Manager (IDM).) C:\Program Files\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - GS\Desktop [SUPPORT_388945a0]: Notepad++.lnk . (.Don HO don.h@free.fr - Notepad++ : a free (GNU) source code editor.) C:\Program Files\Notepad++\notepad++.exe =>.Notepad++®
O4 - GS\Desktop [SUPPORT_388945a0]: PhotoFiltre Studio X.lnk . (.Antonio Da Cruz - PhotoFiltre Studio.) C:\Program Files\PhotoFiltre Studio X\pfstudiox.exe =>.Antonio Da Cruz
O4 - GS\Desktop [SUPPORT_388945a0]: Picosmos Shows.lnk . (.Free Time Co., Ltd. - Picosmos Shows.) C:\Program Files\PicosmosTools\PicosmosShows.exe =>.Free Time Co., Ltd.®
O4 - GS\Desktop [SUPPORT_388945a0]: Picosmos Tools.lnk . (.Free Time Co., Ltd. - Picosmos Tools.) C:\Program Files\PicosmosTools\PicosmosTools.exe =>.Free Time Co., Ltd.®
O4 - GS\Desktop [SUPPORT_388945a0]: PotPlayer.lnk . (.Kakao - PotPlayer.) C:\Program Files\DAUM\PotPlayer\PotPlayerMini.exe =>.Kakao corp.®
O4 - GS\Desktop [SUPPORT_388945a0]: Quranflash Desktop.lnk . (...) C:\Program Files\Quranflash Desktop\Quranflash Desktop.exe
O4 - GS\Desktop [SUPPORT_388945a0]: SecretFolder.lnk . (.oh!soft - .) C:\Program Files\SecretFolder\SecretFolder.exe {70331E78607690B67504AEFE} =>.oh!soft
O4 - GS\Desktop [SUPPORT_388945a0]: UmmyVideoDownloader.lnk . (...) C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\UmmyVideoDownloader\UmmyVideoDownloader.exe {65FA5A5518239DCE52EB94EB}
O4 - GS\Desktop [SUPPORT_388945a0]: WinMend File Copy.lnk . (...) C:\Program Files\WinMend\File Copy\FileCopy.exe
O4 - GS\Desktop [SUPPORT_388945a0]: YouTube.lnk . (.CatalinaGroup Ltd. - Citrio.) C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\CatalinaGroup\Citrio\Application\citrio.exe http://www.youtube.com =>.SUP.CatalinaMarketing
O4 - GS\Desktop [SUPPORT_388945a0]: ZHPDiag.lnk . (...) C:\Documents and Settings\Mr-MDX\Application Data\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Desktop [SUPPORT_388945a0]: موسيقى.lnk . (...) D:\موسيقى
O4 - GS\Desktop [SUPPORT_388945a0]: ░║MOµRAD║░.lnk . (...) D:\
O4 - GS\Quicklaunch [SUPPORT_388945a0]: Citrio.lnk . (.CatalinaGroup Ltd. - Citrio.) C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\CatalinaGroup\Citrio\Application\citrio.exe =>.SUP.CatalinaMarketing
O4 - GS\Quicklaunch [SUPPORT_388945a0]: Démarrer Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\IEXPLORE.EXE =>.Microsoft Corporation
O4 - GS\Quicklaunch [SUPPORT_388945a0]: FlashGet3.lnk . (.Trend Media Corporation Limited - FlashGet3.) C:\Program Files\FlashGet Network\FlashGet 3\FlashGet3.exe -shortcut -quicklanuch =>.Trend Media Corporation Limited®
O4 - GS\Quicklaunch [SUPPORT_388945a0]: jetAudio.lnk . (.JetAudio, Inc. - jetAudio.) C:\Program Files\JetAudio\JetAudio.exe =>.JetAudio, Inc.
O4 - GS\Quicklaunch [SUPPORT_388945a0]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\Quicklaunch [SUPPORT_388945a0]: PotPlayer.lnk . (.Kakao - PotPlayer.) C:\Program Files\DAUM\PotPlayer\PotPlayerMini.exe =>.Kakao corp.®
O4 - GS\Quicklaunch [SUPPORT_388945a0]: Samsung PC Studio 3.lnk . (...) C:\Program Files\Samsung\Samsung PC Studio 3\Launcher.exe
O4 - GS\Quicklaunch [SUPPORT_388945a0]: Torch.lnk . (...) C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\Torch\Application\torch.exe =>.SUP.Torch
O4 - GS\Quicklaunch [SUPPORT_388945a0]: WinMend File Copy.lnk . (...) C:\Program Files\WinMend\File Copy\FileCopy.exe
O4 - GS\Quicklaunch [SUPPORT_388945a0]: Wondershare Photo Collage Studio.lnk . (.Wondershare Software Co.,Ltd. - Photo Collage Studio.) C:\Program Files\Wondershare\Photo Collage Studio\pcls.exe =>.Wondershare Software Co.,Ltd.
O4 - GS\Quicklaunch [SUPPORT_388945a0]: Xilisoft Convertisseur Vidéo Ultimate.lnk . (...) C:\Program Files\Xilisoft\Video Converter Ultimate\vcloader.exe
O4 - GS\Programs [SUPPORT_388945a0]: Assistance à distance.lnk . (.Microsoft Corporation - Assistance à distance Microsoft.) C:\WINDOWS\system32\rcimlby.exe -LaunchRA =>.Microsoft Corporation
O4 - GS\Programs [SUPPORT_388945a0]: Citrio.lnk . (.CatalinaGroup Ltd. - Citrio.) C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\CatalinaGroup\Citrio\Application\citrio.exe =>.SUP.CatalinaMarketing
O4 - GS\Programs [SUPPORT_388945a0]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\IEXPLORE.EXE =>.Microsoft Corporation
O4 - GS\Programs [SUPPORT_388945a0]: Lecteur Windows Media.lnk . (.Microsoft Corporation - Lecteur Windows Media.) C:\Program Files\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\Programs [SUPPORT_388945a0]: Outlook Express.lnk . (.Microsoft Corporation - Outlook Express.) C:\Program Files\Outlook Express\msimn.exe =>.Microsoft Corporation
O4 - GS\Programs [SUPPORT_388945a0]: SetRefresh.lnk . (.InstallShield Software Corp. - InstallShield.) C:\Documents and Settings\Mr-MDX\Application Data\Microsoft\Installer\{F5242227-2051-4158-AC42-0F2BAA3CD3D6}\New_Shortcut_S1425_ADB54615A0E240F89C5EFD8513472ED3.exe -f =>.InstallShield Software Corp.
O4 - GS\CommonDesktop [Public]: 4shared Desktop.lnk . (.New IT Solutions - Desktop.) C:\Program Files\4shared Desktop\desktop.exe =>.SUP.NewItLimited
O4 - GS\CommonDesktop [Public]: HiSuite.lnk . (.Huawei - Huawei PC suite.) C:\Program Files\HiSuite\HiSuite.exe {6BFEC00B525C0B29E84B80BFFD846F67} =>.Huawei
O4 - GS\CommonDesktop [Public]: Internet Mobile.lnk . (...) C:\Program Files\Internet Mobile\Internet Mobile.exe
O4 - GS\CommonDesktop [Public]: IObit Uninstaller.lnk . (.IObit - Uninstall Programs.) C:\Program Files\IObit\IObit Uninstaller\Uninstaler_SkipUac.exe =>.IObit Information Technology®
O4 - GS\CommonDesktop [Public]: IP-TV Player.lnk . (.ADSL Club Co Ltd - IP-TV Player.) C:\Program Files\IP-TV Player\IpTvPlayer.exe =>.ADSL Club Co Ltd®
O4 - GS\CommonDesktop [Public]: jetAudio.lnk . (.JetAudio, Inc. - jetAudio.) C:\Program Files\JetAudio\JetAudio.exe =>.JetAudio, Inc.
O4 - GS\CommonDesktop [Public]: Movavi Video Converter 18 Premium.lnk . (.Movavi - Movavi Video Converter 18.3.1 Premium.) C:\Program Files\Movavi Video Converter 18 Premium\converter.exe =>.Movavi
O4 - GS\CommonDesktop [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\CommonDesktop [Public]: Samsung PC Studio 3.lnk . (...) C:\Program Files\Samsung\Samsung PC Studio 3\Launcher.exe
O4 - GS\CommonDesktop [Public]: Screen Recorder.lnk . (.ZD Soft - Screen Recorder.) C:\Program Files\ZD Soft\Screen Recorder\ScnRec.exe {4D5CE6A7676A87145A2AA1DB38353764}
O4 - GS\CommonDesktop [Public]: Speccy.lnk . (.Piriform Ltd - Speccy.) C:\Program Files\Speccy\Speccy.exe =>.Piriform Ltd®
O4 - GS\CommonDesktop [Public]: VLC media player.lnk . (.VideoLAN - VLC media player.) C:\Program Files\VideoLAN\VLC\vlc.exe =>.VideoLAN®
O4 - GS\CommonDesktop [Public]: Wondershare Photo Collage Studio.lnk . (.Wondershare Software Co.,Ltd. - Photo Collage Studio.) C:\Program Files\Wondershare\Photo Collage Studio\pcls.exe =>.Wondershare Software Co.,Ltd.
O4 - GS\CommonDesktop [Public]: Wondershare Video Editor.lnk . (.Wondershare Software - Wondershare Video Editor Crack UZ1.) C:\Program Files\Wondershare\Video Editor\VideoEditor.exe =>.Wondershare Software
O4 - GS\CommonDesktop [Public]: Xilisoft Convertisseur Vidéo Ultimate.lnk . (...) C:\Program Files\Xilisoft\Video Converter Ultimate\vcloader.exe
O4 - GS\Programs [Public]: Assistance à distance.lnk . (.Microsoft Corporation - Assistance à distance Microsoft.) C:\WINDOWS\system32\rcimlby.exe -LaunchRA =>.Microsoft Corporation
O4 - GS\Programs [Public]: Citrio.lnk . (.CatalinaGroup Ltd. - Citrio.) C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\CatalinaGroup\Citrio\Application\citrio.exe =>.SUP.CatalinaMarketing
O4 - GS\Programs [Public]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\IEXPLORE.EXE =>.Microsoft Corporation
O4 - GS\Programs [Public]: Lecteur Windows Media.lnk . (.Microsoft Corporation - Lecteur Windows Media.) C:\Program Files\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\Programs [Public]: Outlook Express.lnk . (.Microsoft Corporation - Outlook Express.) C:\Program Files\Outlook Express\msimn.exe =>.Microsoft Corporation
O4 - GS\Programs [Public]: SetRefresh.lnk . (.InstallShield Software Corp. - InstallShield.) C:\Documents and Settings\Mr-MDX\Application Data\Microsoft\Installer\{F5242227-2051-4158-AC42-0F2BAA3CD3D6}\New_Shortcut_S1425_ADB54615A0E240F89C5EFD8513472ED3.exe -f =>.InstallShield Software Corp.
O4 - GS\ProgramsCommon [Public]: IObit Uninstaller.lnk . (.IObit - Uninstall Programs.) C:\Program Files\IObit\IObit Uninstaller\Uninstaler_SkipUac.exe =>.IObit Information Technology®
O4 - GS\ProgramsCommon [Public]: IP-TV Player.lnk . (.ADSL Club Co Ltd - IP-TV Player.) C:\Program Files\IP-TV Player\IpTvPlayer.exe =>.ADSL Club Co Ltd®
O4 - GS\ProgramsCommon [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\ProgramsCommon [Public]: MSN.lnk . (.Microsoft Corporation - Win32 Cabinet Self-Extractor.) C:\Program Files\MSN\MSNCoreFiles\Install\msnsusii.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Windows Messenger.lnk . (.Microsoft Corporation - Windows Messenger.) C:\Program Files\Messenger\msmsgs.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Windows Movie Maker.lnk . (.Microsoft Corporation - Windows Movie Maker.) C:\Program Files\Movie Maker\moviemk.exe =>.Microsoft Corporation

---\\ MODIFICATION DOMAINE/ADRESSES (DNS) (2) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 8.8.8.8 8.8.4.4 =>.France Google Cloud
O17 - HKLM\System\CCS\Services\Tcpip\..\{535E573B-4C86-48A7-9638-3D848BEAA76D}: DhcpNameServer = 8.8.8.8 8.8.4.4 =>.France Google Cloud

---\\ PROTOCOLE ADDITIONNEL (30) - 1s
O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\WINDOWS\system32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\WINDOWS\system32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\WINDOWS\system32\msvidctl.dll =>.Microsoft Corporation
O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\WINDOWS\system32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\WINDOWS\system32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\WINDOWS\system32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\WINDOWS\system32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\WINDOWS\system32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\WINDOWS\system32\itss.dll =>.Microsoft Corporation
O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\WINDOWS\system32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\WINDOWS\system32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\WINDOWS\system32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API.) -- C:\WINDOWS\system32\inetcomm.dll =>.Microsoft Corporation
O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\WINDOWS\system32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll =>.Microsoft Corporation®
O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\WINDOWS\system32\itss.dll =>.Microsoft Corporation
O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\WINDOWS\system32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: sysimage - {76E67A63-06E9-11D2-A840-006008059382} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\WINDOWS\system32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\WINDOWS\system32\msvidctl.dll =>.Microsoft Corporation
O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\WINDOWS\system32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: wia - {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} . (.Microsoft Corporation - WIA Scripting Layer.) -- C:\WINDOWS\system32\wiascr.dll =>.Microsoft Corporation
O18 - Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\system32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\system32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\system32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: Class Install Handler - {32B533BB-EDAE-11d0-BD5A-00AA00B92AF1} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\WINDOWS\system32\urlmon.dll =>.Microsoft Corporation
O18 - Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\WINDOWS\system32\urlmon.dll =>.Microsoft Corporation
O18 - Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\WINDOWS\system32\urlmon.dll =>.Microsoft Corporation
O18 - Filter: lzdhtml - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\WINDOWS\system32\urlmon.dll =>.Microsoft Corporation
O18 - Filter: text/webviewhtml - {733AC4CB-F1A4-11d0-B951-00A0C90312E1} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\shell32.dll =>.Microsoft Corporation
O18 - Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE14\MSOXMLMF.DLL =>.Microsoft Corporation®

---\\ REGISTRE AppInit_DLLs et Winlogon Notify (1) - 0s
O20 - Winlogon : UserInit . (.Microsoft Corporation - Application d'ouverture de session Userinit.) - C:\WINDOWS\system32\userinit.exe =>.Microsoft Corporation

---\\ COMPOSANTS ACTIVESETUP INSTALLÉS (ASIC) (11) - 3s
O40 - ASIC: Outlook Express - >{881dd1c5-3dcf-431b-b061-f3f88e8be88a} . (.Microsoft Corporation - Windows NT User Data Migration Tool.) -- C:\WINDOWS\system32\shmgrate.exe =>.Microsoft Corporation
O40 - ASIC: LightScribe Control Panel - {10880D85-AAD9-4558-ABDC-2AB1552D831F} . (.Hewlett-Packard Company - .) -- C:\Program Files\Fichiers communs\LightScribe\LSRunOnce.exe =>.Hewlett-Packard Company®
O40 - ASIC: Microsoft NetShow Player - {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} . (.Microsoft Corporation - Windows Media 6.4 Player Shim.) -- C:\WINDOWS\system32\wmpdxm.dll =>.Microsoft Corporation
O40 - ASIC: Lecteur Windows Media Microsoft 6.4 - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media 6.4 Player Shim.) -- C:\WINDOWS\system32\wmpdxm.dll =>.Microsoft Corporation
O40 - ASIC: DirectAnimation - {283807B5-2C60-11D0-A31D-00AA00B92C03} . (.Microsoft Corporation - DirectX Media -- DirectAnimation.) -- C:\WINDOWS\system32\danim.dll =>.Microsoft Corporation
O40 - ASIC: Themes Setup - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - Microsoft(C) Register Server.) -- C:\WINDOWS\system32\regsvr32.exe =>.Microsoft Corporation
O40 - ASIC: Microsoft Outlook Express 6 - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Bibliothèque d'installation Outlook Express.) -- C:\Program Files\Outlook Express\setup50.exe =>.Microsoft Corporation
O40 - ASIC: Carnet d'adresses 6 - {7790769C-0471-11d2-AF11-00C04FA35D02} . (.Microsoft Corporation - Bibliothèque d'installation Outlook Express.) -- C:\Program Files\Outlook Express\setup50.exe =>.Microsoft Corporation
O40 - ASIC: Internet Explorer 6 - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'installation individualisée de.) -- C:\WINDOWS\system32\ie4uinit.exe =>.Microsoft Corporation
O40 - ASIC: (no name) - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\WINDOWS\system32\mscories.dll =>.Microsoft Corporation®
O40 - ASIC: Macromedia Shockwave Flash - {D27CDB6E-AE6D-11cf-96B8-444553540000} . (.Macromedia, Inc. - Macromedia Flash Player 8.0 r22.) -- C:\WINDOWS\system32\Flash8.ocx =>.Macromedia, Inc.®

---\\ LOGICIELS INSTALLÉS (91) - 37s
O42 - Logiciel: 4shared Desktop - (.4shared.) [HKLM] -- 4shared Desktop =>.SUP.NewItLimited
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM] -- {10166660-0C51-4355-BD74-D4700EFDB83B} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM] -- Adobe AIR =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Flash Player 30 NPAPI - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player NPAPI =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Shockwave Player 12.3 - (.Adobe Systems, Inc..) [HKLM] -- Adobe Shockwave Player =>.Adobe Systems, Inc.
O42 - Logiciel: Advanced Calendar 2.0.0.1000176 - (.MEIXIAN XIE.) [HKLM] -- {D9BAB2C9-5236-48c3-AF02-67E799F09BBD} =>PUP.Optional.ScreenSnapshot
O42 - Logiciel: Black Bird Cleaner - (.Black Bird Cleaner Software.) [HKLM] -- Black Bird Cleaner =>.Black Bird Cleaner Software
O42 - Logiciel: Broadcom Management Programs - (.Broadcom Corporation.) [HKLM] -- {7BB045C3-D5E4-4620-B536-DC11AACD5942} =>.Broadcom Corporation
O42 - Logiciel: Broadcom NetXtreme Ethernet Controller - (.Broadcom Corporation.) [HKLM] -- {F870B987-18BC-45FC-9BE8-35C02DCDA10F} =>.Broadcom Corporation
O42 - Logiciel: Citrio - (.© Catalinagroup Ltd..) [HKCU] -- Citrio =>.SUP.CatalinaMarketing
O42 - Logiciel: FlashGet3.7 - (.http://www.FlashGet.com.) [HKLM] -- FlashGet3.7 =>.http://www.FlashGet.com
O42 - Logiciel: Folder Colorizer version 1.3.3 - (.Softorino.) [HKLM] -- {A133E9CD-2879-4F30-87D4-1604AFD5C5CC}_is1 =>.Hirtal Developments Ltd.®
O42 - Logiciel: GMX - Enhanced by Google - (..) [HKLM] -- {379DDF5D-671D-0EDD-D69D-7E5D061DADDD}
O42 - Logiciel: HiSuite - (.Huawei Technologies Co.,Ltd.) [HKLM] -- Hi Suite =>.Huawei Technologies Co.,Ltd
O42 - Logiciel: HP SetRefresh - (.Hewlett-Packard Company.) [HKLM] -- {F5242227-2051-4158-AC42-0F2BAA3CD3D6} =>.Hewlett-Packard Company
O42 - Logiciel: HP USB Smart Card Keyboard - (.HP.) [HKLM] -- {E24A2D94-3215-4E81-A8BA-17BC0E577597} =>.HP
O42 - Logiciel: Intel(R) Graphics Media Accelerator Driver - (.Intel Corporation.) [HKLM] -- HDMI =>.Intel Corporation
O42 - Logiciel: Internet Download Manager - (.Tonek Inc..) [HKLM] -- Internet Download Manager =>.Tonek Inc.
O42 - Logiciel: Internet Mobile - (.Huawei Technologies Co.,Ltd.) [HKLM] -- Internet Mobile =>.Huawei Technologies Co.,Ltd
O42 - Logiciel: IObit Uninstaller - (.IObit.) [HKLM] -- IObitUninstall =>.IObit Information Technology®
O42 - Logiciel: IP-TV Player 49.1 - (.ADSL Club Co Ltd.) [HKLM] -- IP-TV_Player =>.ADSL Club Co Ltd
O42 - Logiciel: jetAudio Basic - (.COWON.) [HKLM] -- {DF8195AF-8E6F-4487-A0EE-196F7E3F4B8A} =>.COWON
O42 - Logiciel: LightScribe System Software 1.14.25.1 - (.LightScribe.) [HKLM] -- {DA9DAC64-C947-47BA-B411-8A1959B177CF} =>.LightScribe
O42 - Logiciel: Microsoft .NET Framework 2.0 Service Pack 1 - (.Microsoft Corporation.) [HKLM] -- {B508B3F1-A24A-32C0-B310-85786919EF28} =>.Microsoft Corporation
O42 - Logiciel: Microsoft .NET Framework 2.0 Service Pack 1 Language Pack - FRA - (.Microsoft Corporation.) [HKLM] -- {3F7924B9-D148-3141-87B1-68F36043A940} =>.Microsoft Corporation
O42 - Logiciel: Microsoft .NET Framework 3.0 Service Pack 1 - (.Microsoft Corporation.) [HKLM] -- {2BA00471-0328-3743-93BD-FA813353A783} =>.Microsoft Corporation
O42 - Logiciel: Microsoft .NET Framework 3.0 Service Pack 1 Language Pack - FRA - (.Microsoft Corporation.) [HKLM] -- {511DF669-2930-30C0-8EB6-552887E29EC8} =>.Microsoft Corporation
O42 - Logiciel: Microsoft .NET Framework 3.5 - (.Microsoft Corporation.) [HKLM] -- {2FC099BD-AC9B-33EB-809C-D332E1B27C40} =>.Microsoft Corporation
O42 - Logiciel: Microsoft .NET Framework 3.5 - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 =>.Microsoft Corporation®
O42 - Logiciel: Microsoft .NET Framework 3.5 Language Pack - fra - (.Microsoft Corporation.) [HKLM] -- {5B76AEA2-D4E5-3B55-B965-ACC36AE0EAFC} =>.Microsoft Corporation
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6} =>.Microsoft Corporation
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile =>.Microsoft Corporation®
O42 - Logiciel: Microsoft .NET Framework 4 Extended - (.Microsoft Corporation.) [HKLM] -- {0A0CADCF-78DA-33C4-A350-CD51849B9702} =>.Microsoft Corporation
O42 - Logiciel: Microsoft .NET Framework 4 Extended - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Extended =>.Microsoft Corporation®
O42 - Logiciel: Microsoft Kernel-Mode Driver Framework Feature Pack 1.9 - (.Microsoft Corporation.) [HKLM] -- Wdf01009 =>.Microsoft Corporation®
O42 - Logiciel: Microsoft Office Access MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-0015-040C-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Office Excel MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-0016-040C-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Office Groove MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-00BA-040C-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Office InfoPath MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-0044-040C-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Office OneNote MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-00A1-040C-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Office Outlook MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-001A-040C-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-0018-040C-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Office Professional Plus 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Office Professionnel Plus 2010 - (.Microsoft Corporation.) [HKLM] -- Office14.PROPLUS =>.Microsoft Corporation®
O42 - Logiciel: Microsoft Office Proof (Arabic) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-001F-0401-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Office Proof (Dutch) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-001F-0413-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Office Proof (English) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-001F-0409-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Office Proof (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-001F-040C-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Office Proof (German) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-001F-0407-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Office Proof (Spanish) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-001F-0C0A-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Office Proofing (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-002C-040C-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Office Publisher MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-0019-040C-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Office Shared MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-006E-040C-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Office Word MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-001B-040C-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Software Update for Web Folders (French) 14 - (.Microsoft Corporation.) [HKLM] -- {90140000-0010-040C-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 - (.Microsoft Corporation.) [HKLM] -- {FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4} =>.Microsoft Corporation
O42 - Logiciel: Microsoft WinUsb 2.0 - (.Microsoft Corporation.) [HKLM] -- winusb0200 =>.Microsoft Corporation®
O42 - Logiciel: Module linguistique Microsoft .NET Framework 3.5 - fra - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 Language Pack - fra =>.Microsoft Corporation®
O42 - Logiciel: Movavi Video Converter 18 Premium - (.Movavi.) [HKLM] -- Movavi Video Converter 18 Premium =>.Movavi
O42 - Logiciel: Mozilla Firefox 52.9.0 ESR (x86 en-US) - (.Mozilla.) [HKLM] -- Mozilla Firefox 52.9.0 ESR (x86 en-US) =>.Mozilla Corporation®
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM] -- MozillaMaintenanceService =>.Mozilla
O42 - Logiciel: Notepad++ (32-bit x86) - (.Notepad++ Team.) [HKLM] -- Notepad++ =>.Notepad++ Team
O42 - Logiciel: PhotoFiltre Studio X - (.Antonio Da Cruz.) [HKCU] -- PhotoFiltre Studio X =>.Antonio Da Cruz
O42 - Logiciel: PicosmosTools 2.0.0.0 - (.Free Time.) [HKLM] -- PicosmosTools =>.Free Time
O42 - Logiciel: PotPlayer - (.Kakao Corp..) [HKLM] -- PotPlayer =>.Kakao Corp.
O42 - Logiciel: ProgDVB x64 x64 - (.Prog.) [HKLM] -- ProgDVB =>.Prog
O42 - Logiciel: Quranflash Desktop الإصدار 1.3 - (.Vijua, Inc..) [HKLM] -- {628E798A-4A77-46F8-9E3D-5A5D6377323E}}_is1 {00F0A5CD9EA2DD1322C07D410D0E1A945B} =>.Vijua, Inc.
O42 - Logiciel: SAMSUNG CDMA Modem Driver Set - (.Samsung Electronics.) [HKLM] -- SAMSUNG CDMA Modem =>.SAMSUNG Electronics
O42 - Logiciel: SAMSUNG Mobile Composite Device Software - (.Samsung Electronics.) [HKLM] -- SAMSUNG Mobile Composite Device =>.SAMSUNG Electronics
O42 - Logiciel: Samsung Mobile phone USB driver Software - (.Samsung Electronics.) [HKLM] -- Samsung Mobile phone USB driver =>.SAMSUNG Electronics
O42 - Logiciel: SAMSUNG Mobile USB Modem 1.0 Software - (.Samsung Electronics.) [HKLM] -- SAMSUNG Mobile USB Modem 1.0 =>.SAMSUNG Electronics
O42 - Logiciel: SAMSUNG Mobile USB Modem Software - (.Samsung Electronics.) [HKLM] -- SAMSUNG Mobile USB Modem =>.SAMSUNG Electronics
O42 - Logiciel: Samsung PC Studio 3 - (.Samsung Electronics Co., Ltd..) [HKLM] -- {C4A4722E-79F9-417C-BD72-8D359A090C97} =>.Samsung Electronics Co., Ltd.
O42 - Logiciel: Samsung PC Studio 3 - (.Samsung Electronics Co., Ltd..) [HKLM] -- {D5B35376-6F9E-47B3-A9F8-791824EBFE0D} =>.Samsung Electronics Co., Ltd.
O42 - Logiciel: SecretFolder version 5.5.0.0 - (.http://ohsoft.net/.) [HKLM] -- SecretFolder_is1 =>.http://ohsoft.net/
O42 - Logiciel: SoundMAX - (.Analog Devices.) [HKLM] -- {F0A37341-D692-11D4-A984-009027EC0A9C} =>.Analog Devices
O42 - Logiciel: Speccy - (.Piriform.) [HKLM] -- Speccy =>.Piriform Ltd®
O42 - Logiciel: swMSM - (.Adobe Systems, Inc.) [HKLM] -- {612C34C7-5E90-47D8-9B5C-0F717DD82726} =>.Adobe Systems, Inc
O42 - Logiciel: UmmyVideoDownloader - (.Ummy Software.) [HKLM] -- {E028DBDA-EEE7-48A0-ADF7-D250589A02C5}_is1
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM] -- VLC media player =>.VideoLAN
O42 - Logiciel: WebFldrs XP - (.Microsoft Corporation.) [HKLM] -- {350C940c-3D7C-4EE8-BAA9-00BCB3D54227} =>.Microsoft Corporation
O42 - Logiciel: WinArchiver - (.Power Software Ltd.) [HKLM] -- WinArchiver =>.Power Software Ltd
O42 - Logiciel: Windows Feature Pack for Storage (32-bit) - IMAPI update for Blu-Ray - (.Microsoft Corporation.) [HKLM] -- KB952011 =>.Microsoft Corporation®
O42 - Logiciel: WinMend File Copy 2.4.0 - (.WinMend.com.) [HKLM] -- WinMend File Copy_is1 =>.SUP.SunnyDigit
O42 - Logiciel: Wondershare Photo Collage Studio 4.2.12.13 - (.Wondershare Software Co.,Ltd..) [HKLM] -- Wondershare Photo Collage Studio_is1 =>.Wondershare Software Co.,Ltd.
O42 - Logiciel: Wondershare Video Editor(Build 5.1.3) - (.Wondershare Software.) [HKLM] -- Wondershare Video Editor_is1 =>.Wondershare Software
O42 - Logiciel: Xilisoft Convertisseur Vidéo Ultimate - (.Xilisoft.) [HKLM] -- Xilisoft Convertisseur Vidéo Ultimate =>.Xilisoft
O42 - Logiciel: XML Paper Specification Shared Components Language Pack 1.0 - (.Microsoft Corporation.) [HKLM] -- XPSEPSCLP =>.Microsoft Corporation®
O42 - Logiciel: XML Paper Specification Shared Components Pack 1.0 - (.Microsoft Corporation.) [HKLM] -- XpsEPSC =>.Microsoft Corporation
O42 - Logiciel: ZD Soft Screen Recorder 11.1.12 - (.ZD Soft.) [HKLM] -- {89F6A32D-A780-4AC6-B30B-8AFD0875063A}

---\\ CLÉ DE REGISTRE SOFTWARE HKCU & HKLM (154) - 37s
HKCU\Software\csastats =>Adware.InstallCore
HKLM\SOFTWARE\Winmend =>.SUP.SunnyDigit
HKLM\SOFTWARE\Secure =>.SUP.SecurePCCleaner
HKLM\SOFTWARE\4shared Desktop
HKLM\SOFTWARE\Adobe =>.Adobe
HKLM\SOFTWARE\Analog Devices =>.Analog Devices
HKLM\SOFTWARE\Andrea Electronics =>.Andrea Electronics
HKLM\SOFTWARE\AppDataLow =>.Microsoft Corporation
HKLM\SOFTWARE\Apple Inc. =>.Apple Inc.
HKLM\SOFTWARE\Arcai =>.Arcai.com
HKLM\SOFTWARE\Baidu =>.Baidu
HKLM\SOFTWARE\Broadcom =>.Broadcom
HKLM\SOFTWARE\C07ft5Y =>.Total War Game
HKLM\SOFTWARE\CalendarTool
HKLM\SOFTWARE\CDDB =>.Cddb Software
HKLM\SOFTWARE\CloudOPTInfo =>.Baidu Technology
HKLM\SOFTWARE\COWON =>.COWON
HKLM\SOFTWARE\DAUM =>.DAUM
HKLM\SOFTWARE\DtsEncodeTools =>PUP.Optional.WeatherTool
HKLM\SOFTWARE\FlashGet Network =>.FlashGet Network
HKLM\SOFTWARE\Gemplus =>.Gemplus
HKLM\SOFTWARE\Google =>.Google
HKLM\SOFTWARE\Hewlett-Packard =>.Hewlett-Packard
HKLM\SOFTWARE\Huawei technologies =>.Huawei Technologies
HKLM\SOFTWARE\InstalledOptions =>.Installed Options
HKLM\SOFTWARE\Intel =>.Intel
HKLM\SOFTWARE\Internet Download Manager =>.Tonec Inc
HKLM\SOFTWARE\IObit =>.IObit
HKLM\SOFTWARE\LightScribe =>.LightScribe
HKLM\SOFTWARE\Macromedia =>.Macromedia
HKLM\SOFTWARE\MCCI =>.MCCI
HKLM\SOFTWARE\MOVAVI =>.Movavi
HKLM\SOFTWARE\Mozilla =>.Mozilla
HKLM\SOFTWARE\mozilla.org =>.mozilla.org
HKLM\SOFTWARE\MozillaPlugins =>.MozillaPlugins
HKLM\SOFTWARE\Notepad++ =>.Don Ho
HKLM\SOFTWARE\ODBC =>.DB Connectivity Solutions
HKLM\SOFTWARE\PicosmosShows =>.Picosmos
HKLM\SOFTWARE\Piriform =>.Piriform
HKLM\SOFTWARE\Program Groups =>.Program Groups
HKLM\SOFTWARE\RegisteredApplications =>.Microsoft Corporation
HKLM\SOFTWARE\Samsung =>.Samsung Electronics
HKLM\SOFTWARE\Samsung Electronics Co., Ltd. =>.Samsung Electronics
HKLM\SOFTWARE\Schlumberger =>.Schlumberger
HKLM\SOFTWARE\SmartCardReader Installation
HKLM\SOFTWARE\Staccato =>.Staccato Software
HKLM\SOFTWARE\SunnyDigits
HKLM\SOFTWARE\VideoLAN =>.VideoLAN
HKLM\SOFTWARE\WinArchiver
HKLM\SOFTWARE\Windows 3.1 Migration Status =>.Microsoft Corporation
HKLM\SOFTWARE\Wondershare =>.Wondershare
HKLM\SOFTWARE\Wow6432Node =>.Microsoft Corporation
HKLM\SOFTWARE\Xilisoft =>.Xilisoft
HKLM\SOFTWARE\Yandex =>.Yandex
HKLM\SOFTWARE\WOW6432Node\ByteFence =>.SUP.ByteFence
HKLM\SOFTWARE\WOW6432Node\Internet Download Manager =>.Tonec Inc
HKCU\SOFTWARE\4shared Desktop
HKCU\SOFTWARE\Adobe =>.Adobe
HKCU\SOFTWARE\Aiseesoft Studio =>.Aiseesoft Studio
HKCU\SOFTWARE\Analog Devices =>.Analog Devices
HKCU\SOFTWARE\Any Sound Recorder
HKCU\SOFTWARE\Arcai.com =>.Arcai.com
HKCU\SOFTWARE\ASProtect =>.ASPack Software
HKCU\SOFTWARE\Baidu =>.Baidu
HKCU\SOFTWARE\Broadcom =>.Broadcom
HKCU\SOFTWARE\CatalinaGroup =>.SUP.CatalinaMarketing
HKCU\SOFTWARE\COWON =>.COWON
HKCU\SOFTWARE\DAUM =>.DAUM
HKCU\SOFTWARE\DownloadManager =>.DownloadManager
HKCU\SOFTWARE\FlashGet Network =>.FlashGet Network
HKCU\SOFTWARE\FreeTime =>.FreeTime Inc
HKCU\SOFTWARE\FSPro Labs =>.FSPro Labs
HKCU\SOFTWARE\GNU =>.GNU
HKCU\SOFTWARE\Google =>.Google
HKCU\SOFTWARE\Hewlett-Packard =>.Hewlett-Packard
HKCU\SOFTWARE\Intel =>.Intel
HKCU\SOFTWARE\LightScribe =>.LightScribe
HKCU\SOFTWARE\Macromedia =>.Macromedia
HKCU\SOFTWARE\Magicbit =>.SUP.Magicbit
HKCU\SOFTWARE\MOVAVI =>.Movavi
HKCU\SOFTWARE\Mozilla =>.Mozilla
HKCU\SOFTWARE\MozillaPlugins =>.MozillaPlugins
HKCU\SOFTWARE\Netscape =>.Netscape
HKCU\SOFTWARE\ODBC =>.DB Connectivity Solutions
HKCU\SOFTWARE\PhotoFiltre Studio X =>.Antonio Da Cruz
HKCU\SOFTWARE\Piriform =>.Piriform
HKCU\SOFTWARE\profession
HKCU\SOFTWARE\QtProject =>.QtProject
HKCU\SOFTWARE\Samsung =>.Samsung Electronics
HKCU\SOFTWARE\Samsung PC Studio =>.Samsung Electronics
HKCU\SOFTWARE\SimpleTV by SergeyVS#3
HKCU\SOFTWARE\Softorino =>.Softorino
HKCU\SOFTWARE\SunnyDigits
HKCU\SOFTWARE\Torch =>.SUP.Torch
HKCU\SOFTWARE\Trolltech =>.Trolltech
HKCU\SOFTWARE\WinArchiver
HKCU\SOFTWARE\Wondershare =>.Wondershare
HKCU\SOFTWARE\Xilisoft =>.Xilisoft
HKCU\SOFTWARE\Yandex =>.Yandex
HKCU\SOFTWARE\ZD Soft
HKCU\SOFTWARE\ZHP =>.Nicolas Coolman
HKCU\SOFTWARE\로컬 응용 프로그램 마법사에서 생성된 응용 프로그램
HKU\.DEFAULT\SOFTWARE\Arcai.com =>.Arcai.com
HKU\.DEFAULT\SOFTWARE\Baidu =>.Baidu
HKU\.DEFAULT\SOFTWARE\Intel =>.Intel
HKU\.DEFAULT\SOFTWARE\MozillaPlugins =>.MozillaPlugins
HKU\.DEFAULT\SOFTWARE\Netscape =>.Netscape
HKU\S-1-5-21-1417001333-1532298954-1177238915-1003\SOFTWARE\4shared Desktop
HKU\S-1-5-21-1417001333-1532298954-1177238915-1003\SOFTWARE\Adobe =>.Adobe
HKU\S-1-5-21-1417001333-1532298954-1177238915-1003\SOFTWARE\Aiseesoft Studio =>.Aiseesoft Studio
HKU\S-1-5-21-1417001333-1532298954-1177238915-1003\SOFTWARE\Analog Devices =>.Analog Devices
HKU\S-1-5-21-1417001333-1532298954-1177238915-1003\SOFTWARE\Any Sound Recorder
HKU\S-1-5-21-1417001333-1532298954-1177238915-1003\SOFTWARE\Arcai.com =>.Arcai.com
HKU\S-1-5-21-1417001333-1532298954-1177238915-1003\SOFTWARE\ASProtect =>.ASPack Software
HKU\S-1-5-21-1417001333-1532298954-1177238915-1003\SOFTWARE\Baidu =>.Baidu
HKU\S-1-5-21-1417001333-1532298954-1177238915-1003\SOFTWARE\Broadcom =>.Broadcom
HKU\S-1-5-21-1417001333-1532298954-1177238915-1003\SOFTWARE\CatalinaGroup =>.SUP.CatalinaMarketing
HKU\S-1-5-21-1417001333-1532298954-1177238915-1003\SOFTWARE\COWON =>.COWON
HKU\S-1-5-21-1417001333-1532298954-1177238915-1003\SOFTWARE\csastats
HKU\S-1-5-21-1417001333-1532298954-1177238915-1003\SOFTWARE\DAUM =>.DAUM
HKU\S-1-5-21-1417001333-1532298954-1177238915-1003\SOFTWARE\DownloadManager =>.DownloadManager
HKU\S-1-5-21-1417001333-1532298954-1177238915-1003\SOFTWARE\FlashGet Network =>.FlashGet Network
HKU\S-1-5-21-1417001333-1532298954-1177238915-1003\SOFTWARE\FreeTime =>.FreeTime Inc
HKU\S-1-5-21-1417001333-1532298954-1177238915-1003\SOFTWARE\FSPro Labs =>.FSPro Labs
HKU\S-1-5-21-1417001333-1532298954-1177238915-1003\SOFTWARE\GNU =>.GNU
HKU\S-1-5-21-1417001333-1532298954-1177238915-1003\SOFTWARE\Google =>.Google
HKU\S-1-5-21-1417001333-1532298954-1177238915-1003\SOFTWARE\Hewlett-Packard =>.Hewlett-Packard
HKU\S-1-5-21-1417001333-1532298954-1177238915-1003\SOFTWARE\Intel =>.Intel
HKU\S-1-5-21-1417001333-1532298954-1177238915-1003\SOFTWARE\LightScribe =>.LightScribe
HKU\S-1-5-21-1417001333-1532298954-1177238915-1003\SOFTWARE\Macromedia =>.Macromedia
HKU\S-1-5-21-1417001333-1532298954-1177238915-1003\SOFTWARE\Magicbit =>.SUP.Magicbit
HKU\S-1-5-21-1417001333-1532298954-1177238915-1003\SOFTWARE\MOVAVI =>.Movavi
HKU\S-1-5-21-1417001333-1532298954-1177238915-1003\SOFTWARE\Mozilla =>.Mozilla
HKU\S-1-5-21-1417001333-1532298954-1177238915-1003\SOFTWARE\MozillaPlugins =>.MozillaPlugins
HKU\S-1-5-21-1417001333-1532298954-1177238915-1003\SOFTWARE\Netscape =>.Netscape
HKU\S-1-5-21-1417001333-1532298954-1177238915-1003\SOFTWARE\ODBC =>.DB Connectivity Solutions
HKU\S-1-5-21-1417001333-1532298954-1177238915-1003\SOFTWARE\PhotoFiltre Studio X =>.Antonio Da Cruz
HKU\S-1-5-21-1417001333-1532298954-1177238915-1003\SOFTWARE\Piriform =>.Piriform
HKU\S-1-5-21-1417001333-1532298954-1177238915-1003\SOFTWARE\profession
HKU\S-1-5-21-1417001333-1532298954-1177238915-1003\SOFTWARE\QtProject =>.QtProject
HKU\S-1-5-21-1417001333-1532298954-1177238915-1003\SOFTWARE\Samsung =>.Samsung Electronics
HKU\S-1-5-21-1417001333-1532298954-1177238915-1003\SOFTWARE\Samsung PC Studio =>.Samsung Electronics
HKU\S-1-5-21-1417001333-1532298954-1177238915-1003\SOFTWARE\SimpleTV by SergeyVS#3
HKU\S-1-5-21-1417001333-1532298954-1177238915-1003\SOFTWARE\Softorino =>.Softorino
HKU\S-1-5-21-1417001333-1532298954-1177238915-1003\SOFTWARE\SunnyDigits
HKU\S-1-5-21-1417001333-1532298954-1177238915-1003\SOFTWARE\Torch =>.SUP.Torch
HKU\S-1-5-21-1417001333-1532298954-1177238915-1003\SOFTWARE\Trolltech =>.Trolltech
HKU\S-1-5-21-1417001333-1532298954-1177238915-1003\SOFTWARE\WinArchiver
HKU\S-1-5-21-1417001333-1532298954-1177238915-1003\SOFTWARE\Wondershare =>.Wondershare
HKU\S-1-5-21-1417001333-1532298954-1177238915-1003\SOFTWARE\Xilisoft =>.Xilisoft
HKU\S-1-5-21-1417001333-1532298954-1177238915-1003\SOFTWARE\Yandex =>.Yandex
HKU\S-1-5-21-1417001333-1532298954-1177238915-1003\SOFTWARE\ZD Soft
HKU\S-1-5-21-1417001333-1532298954-1177238915-1003\SOFTWARE\ZHP =>.Nicolas Coolman
HKU\S-1-5-21-1417001333-1532298954-1177238915-1003\SOFTWARE\로컬 응용 프로그램 마법사에서 생성된 응용 프로그램

---\\ CONTENU DES DOSSIERS PROGRAMMES (191) - 35s
O43 - CFD: 09/07/2018 - [] D -- C:\Program Files\4shared Desktop =>.SUP.NewItLimited
O43 - CFD: 10/07/2018 - [] D -- C:\Program Files\Adobe =>.Adobe
O43 - CFD: 08/07/2018 - [] D -- C:\Program Files\Analog Devices =>.Analog Devices
O43 - CFD: 09/07/2018 - [] D -- C:\Program Files\baidu =>.Baidu
O43 - CFD: 18/07/2018 - [] D -- C:\Program Files\Black Bird Cleaner
O43 - CFD: 08/07/2018 - [] D -- C:\Program Files\Broadcom =>.Broadcom Corporation®
O43 - CFD: 09/07/2018 - [] D -- C:\Program Files\CalendarTool =>.Meixian Xie
O43 - CFD: 09/07/2018 - [] D -- C:\Program Files\Common Files =>.Microsoft Corporation
O43 - CFD: 08/07/2018 - [] D -- C:\Program Files\COMPAQ =>.Compaq Computer Corporation
O43 - CFD: 08/07/2018 - [0] D -- C:\Program Files\ComPlus Applications =>.Microsoft Corporation
O43 - CFD: 12/07/2018 - [] D -- C:\Program Files\DAUM =>.DAUM
O43 - CFD: 16/07/2018 - [] D -- C:\Program Files\Fichiers communs =>.Microsoft Corporation
O43 - CFD: 14/07/2018 - [] D -- C:\Program Files\FlashGet Network =>.FlashGet
O43 - CFD: 09/07/2018 - [] D -- C:\Program Files\Folder Colorizer =>.Hirtal Developments Ltd.®
O43 - CFD: 13/07/2018 - [] D -- C:\Program Files\Folder Protect
O43 - CFD: 10/07/2018 - [] D -- C:\Program Files\HiSuite =>.Huawei Technologies Co.,Ltd
O43 - CFD: 08/07/2018 - [] D -- C:\Program Files\HP USB Smart Card Keyboard
O43 - CFD: 12/07/2018 - [] HD -- C:\Program Files\InstallJammer Registry =>.Legitimate
O43 - CFD: 13/07/2018 - [] HD -- C:\Program Files\InstallShield Installation Information =>.InstallShield
O43 - CFD: 08/07/2018 - [] D -- C:\Program Files\Intel =>.Intel Corporation
O43 - CFD: 16/07/2018 - [] D -- C:\Program Files\Internet Download Manager =>.Tonec Inc
O43 - CFD: 09/07/2018 - [] D -- C:\Program Files\Internet Explorer =>.Microsoft Corporation
O43 - CFD: 25/07/2018 - [] D -- C:\Program Files\Internet Mobile
O43 - CFD: 16/07/2018 - [] D -- C:\Program Files\IObit =>.IObit
O43 - CFD: 13/07/2018 - [] D -- C:\Program Files\IP-TV Player =>.ADSL Club Co Ltd
O43 - CFD: 09/07/2018 - [] D -- C:\Program Files\JetAudio =>.JetAudio, Inc.
O43 - CFD: 08/07/2018 - [] D -- C:\Program Files\Messenger =>.Microsoft Corporation
O43 - CFD: 08/07/2018 - [] D -- C:\Program Files\microsoft frontpage =>.Microsoft Corporation
O43 - CFD: 09/07/2018 - [] D -- C:\Program Files\Microsoft Office =>.Microsoft Corporation
O43 - CFD: 09/07/2018 - [] D -- C:\Program Files\Microsoft Silverlight =>.Microsoft Corporation
O43 - CFD: 09/07/2018 - [] D -- C:\Program Files\Microsoft.NET =>.Microsoft Corporation
O43 - CFD: 09/07/2018 - [] D -- C:\Program Files\Movavi Video Converter 18 Premium =>.Movavi
O43 - CFD: 08/07/2018 - [] D -- C:\Program Files\Movie Maker =>.Microsoft Corporation
O43 - CFD: 09/07/2018 - [] D -- C:\Program Files\Mozilla Firefox =>.Mozilla
O43 - CFD: 09/07/2018 - [] D -- C:\Program Files\Mozilla Maintenance Service =>.Mozilla
O43 - CFD: 09/07/2018 - [] D -- C:\Program Files\MSBuild =>.Microsoft Corporation
O43 - CFD: 08/07/2018 - [] D -- C:\Program Files\MSN =>.Microsoft Corporation
O43 - CFD: 08/07/2018 - [] D -- C:\Program Files\MSN Gaming Zone =>.Microsoft Corporation
O43 - CFD: 10/07/2018 - [] D -- C:\Program Files\My Lockbox =>.FSPro Labs
O43 - CFD: 19/07/2018 - [] D -- C:\Program Files\netcut =>.Arcai.com
O43 - CFD: 08/07/2018 - [] D -- C:\Program Files\NetMeeting =>.Microsoft Corporation
O43 - CFD: 15/07/2018 - [] D -- C:\Program Files\Notepad++ =>.Don Ho
O43 - CFD: 08/07/2018 - [] D -- C:\Program Files\Online Services =>.Hewlett-Packard
O43 - CFD: 08/07/2018 - [] D -- C:\Program Files\Outlook Express =>.Microsoft Corporation
O43 - CFD: 20/07/2018 - [] D -- C:\Program Files\PhotoFiltre Studio X =>.Antonio Da Cruz
O43 - CFD: 27/07/2018 - [] D -- C:\Program Files\PicosmosTools =>.PicosmosTools
O43 - CFD: 12/07/2018 - [0] D -- C:\Program Files\ProgDVB x64
O43 - CFD: 09/07/2018 - [] D -- C:\Program Files\Quranflash Desktop
O43 - CFD: 09/07/2018 - [] D -- C:\Program Files\Reference Assemblies =>.Microsoft Corporation
O43 - CFD: 13/07/2018 - [] D -- C:\Program Files\Samsung =>.Samsung Electronics
O43 - CFD: 09/07/2018 - [] D -- C:\Program Files\SecretFolder {70331E78607690B67504AEFE}
O43 - CFD: 08/07/2018 - [] D -- C:\Program Files\Services en ligne =>.Hewlett-Packard
O43 - CFD: 12/07/2018 - [0] D -- C:\Program Files\Short-TV
O43 - CFD: 16/07/2018 - [] D -- C:\Program Files\Speccy =>.Piriform
O43 - CFD: 08/07/2018 - [0] HD -- C:\Program Files\Uninstall Information =>.Microsoft Corporation
O43 - CFD: 08/07/2018 - [] D -- C:\Program Files\VideoLAN =>.VideoLan Team
O43 - CFD: 09/07/2018 - [] D -- C:\Program Files\WinArchiver
O43 - CFD: 08/07/2018 - [] D -- C:\Program Files\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 08/07/2018 - [] D -- C:\Program Files\Windows NT =>.Microsoft Corporation
O43 - CFD: 08/07/2018 - [0] HD -- C:\Program Files\WindowsUpdate =>.Microsoft Corporation
O43 - CFD: 18/07/2018 - [] D -- C:\Program Files\WinMend {2A3B95C0E6DA8B0D900631206B5A21D3} =>.SUP.SunnyDigit
O43 - CFD: 29/07/2018 - [] D -- C:\Program Files\Wondershare =>.Wondershare
O43 - CFD: 08/07/2018 - [] D -- C:\Program Files\xerox =>.Xerox
O43 - CFD: 08/07/2018 - [] D -- C:\Program Files\Xilisoft =>.Xilisoft
O43 - CFD: 09/07/2018 - [] D -- C:\Program Files\ZD Soft {4D5CE6A7676A87145A2AA1DB38353764}
O43 - CFD: 08/07/2018 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\4shared Desktop
O43 - CFD: 13/07/2018 - [] RD -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Accessoires =>.Microsoft Corporation
O43 - CFD: 08/07/2018 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Broadcom =>.Broadcom
O43 - CFD: 12/07/2018 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Daum =>.DAUM
O43 - CFD: 10/07/2018 - [] RD -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage =>.Microsoft Corporation
O43 - CFD: 09/07/2018 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Folder Colorizer
O43 - CFD: 09/07/2018 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HiSuite =>.Huawei Technologies Co.,Ltd
O43 - CFD: 24/07/2018 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Internet Mobile
O43 - CFD: 16/07/2018 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\IObit Uninstaller =>.IObit
O43 - CFD: 09/07/2018 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\jetAudio =>.JetAudio, Inc.
O43 - CFD: 08/07/2018 - [] RD -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Jeux =>.Games Software
O43 - CFD: 08/07/2018 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\LightScribe Direct Disc Labeling =>.LightScribe
O43 - CFD: 09/07/2018 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Microsoft Office =>.Microsoft Corporation
O43 - CFD: 09/07/2018 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Microsoft Silverlight =>.Microsoft Corporation
O43 - CFD: 09/07/2018 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Movavi Video Converter 18 Premium =>.Movavi
O43 - CFD: 09/07/2018 - [0] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Notepad++ =>.Don Ho
O43 - CFD: 08/07/2018 - [] RD -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Outils d'administration =>.Microsoft Corporation
O43 - CFD: 09/07/2018 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Quranflash Desktop
O43 - CFD: 13/07/2018 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Samsung PC Studio 3 =>.Pinnacle Systems, Inc.
O43 - CFD: 09/07/2018 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\SecretFolder
O43 - CFD: 08/07/2018 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\SoundMAX
O43 - CFD: 16/07/2018 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Speccy =>.Piriform
O43 - CFD: 29/07/2018 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\VideoLAN =>.VideoLan Team
O43 - CFD: 09/07/2018 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\WinArchiver
O43 - CFD: 18/07/2018 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\WinMend
O43 - CFD: 29/07/2018 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Wondershare =>.Wondershare
O43 - CFD: 08/07/2018 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Xilisoft =>.Xilisoft
O43 - CFD: 10/07/2018 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\ZD Soft
O43 - CFD: 10/07/2018 - [] D -- C:\Documents and Settings\All Users\Application Data\Adobe =>.Adobe
O43 - CFD: 09/07/2018 - [] D -- C:\Documents and Settings\All Users\Application Data\Baidu =>.Baidu
O43 - CFD: 16/07/2018 - [0] D -- C:\Documents and Settings\All Users\Application Data\IDM =>.IDM
O43 - CFD: 10/07/2018 - [] D -- C:\Documents and Settings\All Users\Application Data\install_clap =>.Microsoft Corporation
O43 - CFD: 21/07/2018 - [] D -- C:\Documents and Settings\All Users\Application Data\IObit =>.IObit
O43 - CFD: 12/07/2018 - [] D -- C:\Documents and Settings\All Users\Application Data\IP-TV Player =>.ADSL Club Co Ltd
O43 - CFD: 10/07/2018 - [] SD -- C:\Documents and Settings\All Users\Application Data\Microsoft =>.Microsoft Corporation
O43 - CFD: 09/07/2018 - [] D -- C:\Documents and Settings\All Users\Application Data\Microsoft Help =>.Microsoft Corporation
O43 - CFD: 09/07/2018 - [] D -- C:\Documents and Settings\All Users\Application Data\Movavi =>.Movavi
O43 - CFD: 10/07/2018 - [] D -- C:\Documents and Settings\All Users\Application Data\Movavi Photo Editor 5 =>.Movavi
O43 - CFD: 08/08/2018 - [] D -- C:\Documents and Settings\All Users\Application Data\ProductData =>.Microsoft Corporation
O43 - CFD: 12/07/2018 - [0] D -- C:\Documents and Settings\All Users\Application Data\ProgDVB
O43 - CFD: 18/07/2018 - [] D -- C:\Documents and Settings\All Users\Application Data\SDData
O43 - CFD: 09/07/2018 - [] D -- C:\Documents and Settings\All Users\Application Data\Wondershare =>.Wondershare
O43 - CFD: 09/07/2018 - [] D -- C:\Documents and Settings\All Users\Application Data\Wondershare Video Editor =>.Wondershare Inc
O43 - CFD: 08/07/2018 - [] D -- C:\Documents and Settings\All Users\Application Data\Xilisoft =>.Xilisoft
O43 - CFD: 10/07/2018 - [] D -- C:\Program Files\Fichiers communs\Adobe AIR =>.Adobe Inc.
O43 - CFD: 09/07/2018 - [] D -- C:\Program Files\Fichiers communs\COWON =>.COWON
O43 - CFD: 09/07/2018 - [] D -- C:\Program Files\Fichiers communs\DESIGNER =>.Designer
O43 - CFD: 08/07/2018 - [] D -- C:\Program Files\Fichiers communs\InstallShield =>.InstallShield
O43 - CFD: 16/07/2018 - [] D -- C:\Program Files\Fichiers communs\IObit =>.IObit
O43 - CFD: 08/07/2018 - [] D -- C:\Program Files\Fichiers communs\LightScribe =>.LightScribe
O43 - CFD: 09/07/2018 - [] D -- C:\Program Files\Fichiers communs\Microsoft Shared =>.Microsoft Corporation
O43 - CFD: 08/07/2018 - [] D -- C:\Program Files\Fichiers communs\MSSoap =>.Microsoft Corporation
O43 - CFD: 09/07/2018 - [] D -- C:\Program Files\Fichiers communs\ODBC =>.DB Connectivity Solutions
O43 - CFD: 08/07/2018 - [] D -- C:\Program Files\Fichiers communs\Services =>.Microsoft Corporation
O43 - CFD: 09/07/2018 - [] D -- C:\Program Files\Fichiers communs\SpeechEngines =>.Microsoft Corporation
O43 - CFD: 08/07/2018 - [] D -- C:\Program Files\Fichiers communs\System =>.Microsoft Corporation
O43 - CFD: 12/07/2018 - [] D -- C:\Documents and Settings\Mr-MDX\Application Data\4shared Desktop
O43 - CFD: 10/07/2018 - [] D -- C:\Documents and Settings\Mr-MDX\Application Data\Adobe =>.Adobe
O43 - CFD: 09/07/2018 - [] D -- C:\Documents and Settings\Mr-MDX\Application Data\Baidu =>.Baidu
O43 - CFD: 15/07/2018 - [] D -- C:\Documents and Settings\Mr-MDX\Application Data\BITS =>.BITS
O43 - CFD: 08/08/2018 - [] D -- C:\Documents and Settings\Mr-MDX\Application Data\CalendarTool =>.Meixian Xie
O43 - CFD: 09/07/2018 - [] D -- C:\Documents and Settings\Mr-MDX\Application Data\COWON =>.COWON
O43 - CFD: 09/07/2018 - [] D -- C:\Documents and Settings\Mr-MDX\Application Data\desktop.quranflash
O43 - CFD: 09/08/2018 - [] D -- C:\Documents and Settings\Mr-MDX\Application Data\DMCache =>.DMCache
O43 - CFD: 14/07/2018 - [] D -- C:\Documents and Settings\Mr-MDX\Application Data\FlashGet =>.FlashGet
O43 - CFD: 14/07/2018 - [] D -- C:\Documents and Settings\Mr-MDX\Application Data\FlashGetBHO
O43 - CFD: 14/07/2018 - [0] D -- C:\Documents and Settings\Mr-MDX\Application Data\FlashgetSetup
O43 - CFD: 10/07/2018 - [] D -- C:\Documents and Settings\Mr-MDX\Application Data\FolderColorize
O43 - CFD: 09/07/2018 - [] D -- C:\Documents and Settings\Mr-MDX\Application Data\Identities =>.Microsoft Corporation
O43 - CFD: 05/08/2018 - [] D -- C:\Documents and Settings\Mr-MDX\Application Data\IDM =>.IDM
O43 - CFD: 16/07/2018 - [] D -- C:\Documents and Settings\Mr-MDX\Application Data\IObit =>.IObit
O43 - CFD: 08/08/2018 - [] D -- C:\Documents and Settings\Mr-MDX\Application Data\IP-TV Player =>.ADSL Club Co Ltd
O43 - CFD: 09/07/2018 - [] D -- C:\Documents and Settings\Mr-MDX\Application Data\Macromedia =>.Macromedia
O43 - CFD: 24/07/2018 - [] SD -- C:\Documents and Settings\Mr-MDX\Application Data\Microsoft =>.Microsoft Corporation
O43 - CFD: 08/07/2018 - [] D -- C:\Documents and Settings\Mr-MDX\Application Data\Mozilla =>.Mozilla Corporation
O43 - CFD: 12/07/2018 - [] D -- C:\Documents and Settings\Mr-MDX\Application Data\Notepad++ =>.Don Ho
O43 - CFD: 20/07/2018 - [] D -- C:\Documents and Settings\Mr-MDX\Application Data\PhotoFiltre Studio X =>.Antonio Da Cruz
O43 - CFD: 27/07/2018 - [] D -- C:\Documents and Settings\Mr-MDX\Application Data\Picosmos =>.Picosmos
O43 - CFD: 13/07/2018 - [] D -- C:\Documents and Settings\Mr-MDX\Application Data\Samsung =>.Samsung Electronics
O43 - CFD: 18/07/2018 - [] D -- C:\Documents and Settings\Mr-MDX\Application Data\SDService
O43 - CFD: 09/07/2018 - [] D -- C:\Documents and Settings\Mr-MDX\Application Data\SecretFolder
O43 - CFD: 08/08/2018 - [] D -- C:\Documents and Settings\Mr-MDX\Application Data\vlc =>.VideoLan Team
O43 - CFD: 09/07/2018 - [] D -- C:\Documents and Settings\Mr-MDX\Application Data\WinArchiver
O43 - CFD: 08/07/2018 - [] D -- C:\Documents and Settings\Mr-MDX\Application Data\Xilisoft =>.Xilisoft
O43 - CFD: 23/07/2018 - [] D -- C:\Documents and Settings\Mr-MDX\Application Data\Yandex =>.Yandex
O43 - CFD: 09/08/2018 - [] D -- C:\Documents and Settings\Mr-MDX\Application Data\ZHP =>.Nicolas Coolman
O43 - CFD: 10/07/2018 - [] D -- C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\Adobe =>.Adobe
O43 - CFD: 18/07/2018 - [] D -- C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\Black Bird Cleaner Software =>.Black Bird Cleaner Software
O43 - CFD: 26/07/2018 - [] D -- C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\CatalinaGroup =>.SUP.CatalinaMarketing
O43 - CFD: 09/07/2018 - [] D -- C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\chromium =>.Chromium
O43 - CFD: 09/07/2018 - [] D -- C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\converter =>.CocoonSoftware
O43 - CFD: 09/07/2018 - [] D -- C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\ConverterAgent
O43 - CFD: 09/07/2018 - [] D -- C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\Google =>.Google
O43 - CFD: 09/07/2018 - [] D -- C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\Hisuite =>.Huawei Technologies Co.,Ltd
O43 - CFD: 14/07/2018 - [] D -- C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\Identities =>.Microsoft Corporation
O43 - CFD: 25/07/2018 - [] D -- C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\Microsoft =>.Microsoft Corporation
O43 - CFD: 09/07/2018 - [0] D -- C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\Microsoft Help =>.Microsoft Corporation
O43 - CFD: 10/07/2018 - [] D -- C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\Movavi =>.Movavi
O43 - CFD: 08/07/2018 - [] D -- C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\Mozilla =>.Mozilla Corporation
O43 - CFD: 12/07/2018 - [0] D -- C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\Notepad++ =>.Don Ho
O43 - CFD: 10/07/2018 - [] D -- C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\PhotoEditor
O43 - CFD: 10/07/2018 - [0] D -- C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\SoftorinoUpdates
O43 - CFD: 09/07/2018 - [] D -- C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\Torch =>.SUP.Torch
O43 - CFD: 14/07/2018 - [] D -- C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\UmmyVideoDownloader =>.UmmyVideoDownloader
O43 - CFD: 09/07/2018 - [] D -- C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\Wondershare =>.Wondershare
O43 - CFD: 15/07/2018 - [] D -- C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\Yandex =>.Yandex
O43 - CFD: 09/08/2018 - [] D -- C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\ZHP =>.Nicolas Coolman
O43 - CFD: 09/07/2018 - [] D -- C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\{469570C9-623D-1C71-0FA5-39992BCDC501}
O43 - CFD: 09/07/2018 - [] D -- C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\{E908DF54-CDA0-B3EC-A038-960484506A9C}
O43 - CFD: 06/08/2018 - [] D -- C:\Documents and Settings\Mr-MDX\Bureau\ChipGenius_v4_18_0203
O43 - CFD: 15/07/2018 - [] HD -- C:\Documents and Settings\Mr-MDX\Bureau\data
O43 - CFD: 01/08/2018 - [] D -- C:\Documents and Settings\Mr-MDX\Bureau\FREE 23 Premium World IPTV Playlist Links M3U 31-12-2017
O43 - CFD: 01/08/2018 - [] D -- C:\Documents and Settings\Mr-MDX\Bureau\FREE 32 Premium World IPTV Playlist Links M3U 23-12-2017
O43 - CFD: 01/08/2018 - [] D -- C:\Documents and Settings\Mr-MDX\Bureau\IPTV
O43 - CFD: 08/08/2018 - [] D -- C:\Documents and Settings\Mr-MDX\Bureau\Nouveau dossier
O43 - CFD: 03/08/2018 - [] RD -- C:\Documents and Settings\Mr-MDX\Bureau\خزانة مأقة
O43 - CFD: 29/07/2018 - [] D -- C:\Documents and Settings\Mr-MDX\Bureau\مرفقات التصميم
O43 - CFD: 08/08/2018 - [] RD -- C:\Documents and Settings\Mr-MDX\Bureau\مسلسل Wentworth
O43 - CFD: 08/07/2018 - [] RD -- C:\Documents and Settings\Mr-MDX\Menu Démarrer\Programmes\Accessoires =>.Microsoft Corporation
O43 - CFD: 18/07/2018 - [] D -- C:\Documents and Settings\Mr-MDX\Menu Démarrer\Programmes\Black Bird Cleaner
O43 - CFD: 09/07/2018 - [] RD -- C:\Documents and Settings\Mr-MDX\Menu Démarrer\Programmes\Démarrage =>.Microsoft Corporation
O43 - CFD: 14/07/2018 - [] D -- C:\Documents and Settings\Mr-MDX\Menu Démarrer\Programmes\FlashGet3.7
O43 - CFD: 16/07/2018 - [] D -- C:\Documents and Settings\Mr-MDX\Menu Démarrer\Programmes\Internet Download Manager =>.Tonec Inc
O43 - CFD: 20/07/2018 - [] D -- C:\Documents and Settings\Mr-MDX\Menu Démarrer\Programmes\PhotoFiltre Studio X =>.Antonio Da Cruz
O43 - CFD: 27/07/2018 - [] D -- C:\Documents and Settings\Mr-MDX\Menu Démarrer\Programmes\PicosmosTools =>.PicosmosTools
O43 - CFD: 13/07/2018 - [] D -- C:\Documents and Settings\Mr-MDX\Menu Démarrer\Programmes\UmmyVideoDownloader =>.UmmyVideoDownloader

---\\ ShellIconOverlayIdentifiers (SIOI) (2) - 0s
O106 - SIOI: IDM Shell Extension [ IDM Shell Extension] - {CDC95B92-E27C-4745-A8C5-64A52A78855D}. (.Tonec Inc. - Internet Download Manager module.) -- C:\Program Files\Internet Download Manager\IDMShellExt.dll =>.Tonec Inc.®
O106 - SIOI: Offline Files Menu [Fichiers hors connexion] - {750fdf0e-2a26-11d1-a3ea-080036587f03}. (.Microsoft Corporation - IU de cache côté client.) -- C:\WINDOWS\system32\cscui.dll =>.Microsoft Corporation

---\\ RACCOURCIS DES MENUS CONCEPTUELS (SCMH) (25) - 3s
O108 - CMH1: ANotepad++ - {00F3C2EC-A6EE-11DE-A03A-EF8F55D89593} . (. - ShellHandler for Notepad++.) -- C:\Program Files\Notepad++\NppShell_06.dll =>.Notepad++®
O108 - CMH1: CContextMenuExt - {1FC0D81E-00A0-443B-AB4D-51DEFEB9EA54} . (...) -- C:\WINDOWS\FPContextMenu.dll (.not file.)
O108 - CMH1: Fichiers hors connexion - {750fdf0e-2a26-11d1-a3ea-080036587f03} . (.Microsoft Corporation - IU de cache côté client.) -- C:\WINDOWS\system32\cscui.dll =>.Microsoft Corporation
O108 - CMH1: IObitUnstaler - {B19ED566-D419-470b-B111-3C89040BC027} . (.IObit - IObitUnlockerExtension.) -- C:\Program Files\IObit\IObit Uninstaller\UninstallMenuRight.dll =>.IObit Information Technology®
O108 - CMH1: Open With - {09799AFB-AD67-11d1-ABCD-00C04FC30936} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\shell32.dll =>.Microsoft Corporation
O108 - CMH1: Open With EncryptionMenu - {A470F8CF-A1E8-4f65-8335-227475AA5C46} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\shell32.dll =>.Microsoft Corporation
O108 - CMH1: PicosmosShell - {A3888921-CFD3-4A6B-89BF-08E6B95716E8} . (.Free Time - FormatFactory Shell Menu Module.) -- C:\Program Files\PicosmosTools\ShellEx_100.dll =>.Free Time
O108 - CMH1: WinArchiver - {A6630968-27DC-8DB8-9BCE-E12B3198A9B1} . (.Power Software Ltd - WinArchiverShell DLL.) -- C:\Program Files\WinArchiver\WASHELL.DLL {1324F475EBA5951391C5126CF4EEB3CE} =>.Power Software Ltd
O108 - CMH2: Fichiers hors connexion - {750fdf0e-2a26-11d1-a3ea-080036587f03} . (.Microsoft Corporation - IU de cache côté client.) -- C:\WINDOWS\system32\cscui.dll =>.Microsoft Corporation
O108 - CMH2: IObitUnstaler - {B19ED566-D419-470b-B111-3C89040BC027} . (.IObit - IObitUnlockerExtension.) -- C:\Program Files\IObit\IObit Uninstaller\UninstallMenuRight.dll =>.IObit Information Technology®
O108 - CMH3: jetAudio - {8D1636FD-CA49-4B4E-90E4-0A20E03A15E8} . (.JetAudio - Shell Extension for jetAudio.) -- C:\Program Files\JetAudio\JetFlExt.dll
O108 - CMH3: Send To - {7BA4C740-9E81-11CF-99D3-00AA004AE837} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\shell32.dll =>.Microsoft Corporation
O108 - CMH4: CContextMenuExt - {1FC0D81E-00A0-443B-AB4D-51DEFEB9EA54} . (...) -- C:\WINDOWS\FPContextMenu.dll (.not file.)
O108 - CMH4: EncryptionMenu - {A470F8CF-A1E8-4f65-8335-227475AA5C46} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\shell32.dll =>.Microsoft Corporation
O108 - CMH4: Fichiers hors connexion - {750fdf0e-2a26-11d1-a3ea-080036587f03} . (.Microsoft Corporation - IU de cache côté client.) -- C:\WINDOWS\system32\cscui.dll =>.Microsoft Corporation
O108 - CMH4: FolderColorize - {3443FE61-F294-403D-A4A6-53E034FC9B3F} . (...) -- C:\Program Files\Folder Colorizer\FolderColorShlExt.dll =>.Hirtal Developments Ltd.®
O108 - CMH4: IObitUnstaler - {B19ED566-D419-470b-B111-3C89040BC027} . (.IObit - IObitUnlockerExtension.) -- C:\Program Files\IObit\IObit Uninstaller\UninstallMenuRight.dll =>.IObit Information Technology®
O108 - CMH4: Sharing - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (...) -- ntshrui.dll (.not file.)
O108 - CMH4: WinArchiver - {A6630968-27DC-8DB8-9BCE-E12B3198A9B1} . (.Power Software Ltd - WinArchiverShell DLL.) -- C:\Program Files\WinArchiver\WASHELL.DLL {1324F475EBA5951391C5126CF4EEB3CE} =>.Power Software Ltd
O108 - CMH5: New - {D969A300-E7FF-11d0-A93B-00A0C90F2719} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\shell32.dll =>.Microsoft Corporation
O108 - CMH6: IObitUnstaler - {B19ED566-D419-470b-B111-3C89040BC027} . (.IObit - IObitUnlockerExtension.) -- C:\Program Files\IObit\IObit Uninstaller\UninstallMenuRight.dll =>.IObit Information Technology®
O108 - CMH6: jetAudio - {8D1636FD-CA49-4B4E-90E4-0A20E03A15E8} . (.JetAudio - Shell Extension for jetAudio.) -- C:\Program Files\JetAudio\JetFlExt.dll
O108 - CMH6: WinArchiver - {A6630968-27DC-8DB8-9BCE-E12B3198A9B1} . (.Power Software Ltd - WinArchiverShell DLL.) -- C:\Program Files\WinArchiver\WASHELL.DLL {1324F475EBA5951391C5126CF4EEB3CE} =>.Power Software Ltd
O108 - CMH7: Fichiers hors connexion - {750fdf0e-2a26-11d1-a3ea-080036587f03} . (.Microsoft Corporation - IU de cache côté client.) -- C:\WINDOWS\system32\cscui.dll =>.Microsoft Corporation
O108 - CMH7: Sharing - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (...) -- ntshrui.dll (.not file.)

---\\ IMAGE FILE EXECUTION OPTIONS (IFEO) (3) - 1s
O50 - IFEO:C:\WINDOWS\system32\FlashPlayerApp.exe - (.Adobe Systems Incorporated - Adobe Flash Player Control Panel Applet.) [DisableExceptionChainValidation\\0] =>.Adobe Systems Incorporated
O50 - IFEO:C:\WINDOWS\system32\mscoree.dll - (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) [CheckAppHelp\\1] =>.Microsoft Corporation®
O50 - IFEO:C:\WINDOWS\system32\setup.exe - (.Microsoft Corporation - Windows NT Setup Executable.) [ApplicationGoo\\0x0007000054020000000200008407] =>.Microsoft Corporation

---\\ ÉNUMÉRATION DES CLÉS StartupReg (18) - 2s
O53 - SMSR:HKLM\...\startupreg\CatalinaGroup Update [Key] . (.Catalina Group Ltd. - CatalinaGroup Update.) -- C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\CatalinaGroup\Update\CatalinaUpdate.exe =>.SUP.CatalinaMarketing
O53 - SMSR:HKLM\...\startupreg\ctfmon.exe [Key] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe =>.Microsoft Corporation
O53 - SMSR:HKLM\...\startupreg\FlashGet 3 [Key] . (.Trend Media Corporation Limited - FlashGet3.) -- C:\Program Files\FlashGet Network\FlashGet 3\FlashGet3.exe =>.Trend Media Corporation Limited
O53 - SMSR:HKLM\...\startupreg\GoogleChromeAutoLaunch_16D19D3187B0BF35C5D6407DD80ED32C [Key] . (.The Chromium Authors - Chromium.) -- C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\chromium\Application\chrome.exe =>.The Chromium Authors
O53 - SMSR:HKLM\...\startupreg\HotKeysCmds [Key] . (.Intel Corporation - hkcmd Module.) -- C:\WINDOWS\system32\hkcmd.exe =>.Intel Corporation
O53 - SMSR:HKLM\...\startupreg\IgfxTray [Key] . (.Intel Corporation - igfxTray Module.) -- C:\WINDOWS\system32\igfxtray.exe =>.Intel Corporation
O53 - SMSR:HKLM\...\startupreg\IMJPMIG8.1 [Key] . (.Microsoft Corporation - Microsoft IME.) -- C:\WINDOWS\ime\imjp8_1\imjpmig.exe =>.Microsoft Corporation
O53 - SMSR:HKLM\...\startupreg\LayoutM [Key] . (.Chicony - KLayMgr.) -- KLayMgr.exe (.not file.) =>.Chicony
O53 - SMSR:HKLM\...\startupreg\LightScribe Control Panel [Key] . (.Hewlett-Packard Company - .) -- C:\Program Files\Fichiers communs\LightScribe\LightScribeControlPanel.exe =>.Hewlett-Packard Company
O53 - SMSR:HKLM\...\startupreg\MSPY2002 [Key] . (...) -- C:\WINDOWS\system32\IME\PINTLGNT\IMSCINST.EXE
O53 - SMSR:HKLM\...\startupreg\Persistence [Key] . (.Intel Corporation - persistence Module.) -- C:\WINDOWS\system32\igfxpers.exe =>.Intel Corporation
O53 - SMSR:HKLM\...\startupreg\PHIME2002A [Key] . (.Microsoft Corporation - 微軟新注音輸入法 2002a.) -- C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE =>.Microsoft Corporation
O53 - SMSR:HKLM\...\startupreg\PHIME2002ASync [Key] . (.Microsoft Corporation - 微軟新注音輸入法 2002a.) -- C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE =>.Microsoft Corporation
O53 - SMSR:HKLM\...\startupreg\SetRefresh [Key] . (.Hewlett-Packard Company - SetRefresh.) -- C:\Program Files\COMPAQ\SetRefresh\SetRefresh.exe =>.Hewlett-Packard Company
O53 - SMSR:HKLM\...\startupreg\Short-TV [Key] . (...) -- C:\Program Files\Short-TV\Reminders.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\Smapp [Key] . (.Analog Devices, Inc. - SoundMAX System Tray.) -- C:\Program Files\Analog Devices\SoundMAX\SMTray.exe =>.Analog Devices, Inc.
O53 - SMSR:HKLM\...\startupreg\WAHELPER.EXE [Key] . (.Power Software Ltd - WinArchiver Virtual Drive Manager.) -- C:\Program Files\WinArchiver\WAHELPER.EXE =>.Power Software Ltd
O53 - SMSR:HKLM\...\startupreg\Wondershare Helper Compact.exe [Key] . (.Wondershare - Wondershare Studio.) -- C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe =>.Wondershare

---\\ LISTE DES PILOTES DU SYSTÈME (228) - 19s
O58 - SDL:2008/04/13 18:52:44 A . (.Microsoft Corporation - Pilote ACPI pour NT.) -- C:\WINDOWS\System32\drivers\acpi.sys [188672] =>.Microsoft Corporation
O58 - SDL:2001/08/28 14:00:00 A . (.Microsoft Corporation - Pilote de contrôleur intégré ACPI.) -- C:\WINDOWS\System32\drivers\acpiec.sys [12032] =>.Microsoft Corporation
O58 - SDL:2003/10/23 11:17:10 A . (.Andrea Electronics Corporation - Andrea Audio Noise Cancellation Driver.) -- C:\WINDOWS\System32\drivers\aeaudio.sys [100384] =>.Andrea Electronics Corporation
O58 - SDL:2008/04/13 09:39:24 A . (.Microsoft Corporation - Microsoft Acoustic Echo Canceller.) -- C:\WINDOWS\System32\drivers\aec.sys [142592] =>.Microsoft Corporation
O58 - SDL:2008/04/13 12:19:24 A . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\WINDOWS\System32\drivers\afd.sys [138112] =>.Microsoft Corporation
O58 - SDL:2008/04/13 19:47:24 A . (.Microsoft Corporation - Pilote de périphérique processeur.) -- C:\WINDOWS\System32\drivers\amdk6.sys [41472] =>.Microsoft Corporation
O58 - SDL:2008/04/13 19:47:24 A . (.Microsoft Corporation - Pilote de périphérique processeur.) -- C:\WINDOWS\System32\drivers\amdk7.sys [41856] =>.Microsoft Corporation
O58 - SDL:2008/04/13 19:47:24 A . (.Microsoft Corporation - IP/1394 Arp Client.) -- C:\WINDOWS\System32\drivers\arp1394.sys [60800] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:57:28 A . (.Microsoft Corporation - MS Remote Access serial network driver.) -- C:\WINDOWS\System32\drivers\asyncmac.sys [14336] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:40:32 A . (.Microsoft Corporation - IDE/ATAPI Port Driver.) -- C:\WINDOWS\System32\drivers\atapi.sys [96512] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:51:26 A . (.Microsoft Corporation - IP/ATM Arp Client.) -- C:\WINDOWS\System32\drivers\atmarpc.sys [59904] =>.Microsoft Corporation
O58 - SDL:2001/08/28 14:00:00 A . (.Microsoft Corporation - ATM Ethernet Encapsulation Intermediate Dri.) -- C:\WINDOWS\System32\drivers\atmepvc.sys [31360] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:51:32 A . (.Microsoft Corporation - ATM Lan Emulation Driver.) -- C:\WINDOWS\System32\drivers\atmlane.sys [55808] =>.Microsoft Corporation
O58 - SDL:2001/08/28 14:00:00 A . (.Microsoft Corporation - ATM UNI Call Manager.) -- C:\WINDOWS\System32\drivers\atmuni.sys [352256] =>.Microsoft Corporation
O58 - SDL:2001/08/17 23:59:44 A . (.Microsoft Corporation - AudStub Driver.) -- C:\WINDOWS\System32\drivers\audstub.sys [3072] =>.Microsoft Corporation
O58 - SDL:2008/04/24 15:44:52 A . (.Broadcom Corporation - Broadcom NetXtreme Crash Dump (x86).) -- C:\WINDOWS\System32\drivers\b57cdx.sys [105472] =>.Broadcom Corporation
O58 - SDL:2008/07/25 01:18:32 A . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS5.1.) -- C:\WINDOWS\System32\drivers\b57xp32.sys [176640] =>.Broadcom Corporation
O58 - SDL:2008/06/06 09:15:40 A . (.Broadcom Corporation - Broadcom Advanced Server Program Driver for.) -- C:\WINDOWS\System32\drivers\baspxp32.sys [98816] =>.Broadcom Corporation
O58 - SDL:2001/08/28 14:00:00 A . (.Microsoft Corporation - BEEP Driver.) -- C:\WINDOWS\System32\drivers\beep.sys [4224] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:53:24 A . (.Microsoft Corporation - MAC Bridge Driver.) -- C:\WINDOWS\System32\drivers\bridge.sys [71552] =>.Microsoft Corporation
O58 - SDL:2001/08/28 14:00:00 A . (.Microsoft Corporation - CardBus/PCMCIA IDE Miniport Driver.) -- C:\WINDOWS\System32\drivers\cbidf2k.sys [13952] =>.Microsoft Corporation
O58 - SDL:2001/08/28 14:00:00 A . (.Microsoft Corporation - CD-ROM Audio Filter Driver.) -- C:\WINDOWS\System32\drivers\cdaudio.sys [18688] =>.Microsoft Corporation
O58 - SDL:2008/04/13 12:14:22 A . (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\WINDOWS\System32\drivers\cdfs.sys [63744] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:40:48 A . (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\WINDOWS\System32\drivers\cdrom.sys [62976] =>.Microsoft Corporation
O58 - SDL:2001/08/28 14:00:00 A . (.RAVISENT Technologies Inc. - Pilote principal CineMaster C 1.2 WDM.) -- C:\WINDOWS\System32\drivers\cinemst2.sys [262528] =>.RAVISENT Technologies Inc.
O58 - SDL:2008/04/13 12:16:24 A . (.Microsoft Corporation - SCSI Class System Dll.) -- C:\WINDOWS\System32\drivers\classpnp.sys [49536] =>.Microsoft Corporation
O58 - SDL:2001/08/28 14:00:00 A . (.Compaq Computer Corporation - Compaq PA-1 Player Driver.) -- C:\WINDOWS\System32\drivers\cpqdap01.sys [11776] =>.Compaq Computer Corporation
O58 - SDL:2008/04/13 19:47:24 A . (.Microsoft Corporation - Pilote de périphérique processeur.) -- C:\WINDOWS\System32\drivers\crusoe.sys [40960] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:40:48 A . (.Microsoft Corporation - PnP Disk Driver.) -- C:\WINDOWS\System32\drivers\disk.sys [36352] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:40:46 A . (.Microsoft Corporation - Crash Dump Disk Driver.) -- C:\WINDOWS\System32\drivers\diskdump.sys [14208] =>.Microsoft Corporation
O58 - SDL:2008/04/13 19:05:08 A . (.Microsoft Corp., Veritas Software - Pilote de démarrage du gestionnaire de disq.) -- C:\WINDOWS\System32\drivers\dmboot.sys [800256] =>.Microsoft Corp., Veritas Software
O58 - SDL:2008/04/13 19:05:14 A . (.Microsoft Corp., Veritas Software - Pilote E/S du Gestionnaire de disques NT.) -- C:\WINDOWS\System32\drivers\dmio.sys [154496] =>.Microsoft Corp., Veritas Software
O58 - SDL:2001/08/28 14:00:00 A . (.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) -- C:\WINDOWS\System32\drivers\dmload.sys [5888] =>.Microsoft Corp., Veritas Software.
O58 - SDL:2008/04/13 11:45:02 A . (.Microsoft Corporation - Microsoft Kernel DLS Synthesizer.) -- C:\WINDOWS\System32\drivers\DMusic.sys [52864] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:45:16 A . (.Microsoft Corporation - Microsoft Kernel DRM Descrambler Filter.) -- C:\WINDOWS\System32\drivers\drmk.sys [60160] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:45:14 A . (.Microsoft Corporation - Microsoft Kernel DRM Audio Descrambler Filt.) -- C:\WINDOWS\System32\drivers\drmkaud.sys [2944] =>.Microsoft Corporation
O58 - SDL:2001/08/28 14:00:00 A . (.Microsoft Corporation - DirectX API Driver.) -- C:\WINDOWS\System32\drivers\dxapi.sys [10496] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:38:30 A . (.Microsoft Corporation - DirectX Graphics Driver.) -- C:\WINDOWS\System32\drivers\dxg.sys [71168] =>.Microsoft Corporation
O58 - SDL:2001/08/28 14:00:00 A . (.Microsoft Corporation - DirectX Graphics Driver Thunk.) -- C:\WINDOWS\System32\drivers\dxgthk.sys [3328] =>.Microsoft Corporation
O58 - SDL:2007/08/09 04:13:04 A . (.Huawei Tech. Co., Ltd. - HUAWEI USB Smart Card Driver.) -- C:\WINDOWS\System32\drivers\ewdcsc.sys [24448] =>.Huawei Tech. Co., Ltd.
O58 - SDL:2009/10/12 15:21:54 A . (.Huawei Technologies Co., Ltd. - USB Modem/Serial Device Driver.) -- C:\WINDOWS\System32\drivers\ewusbdev.sys [100736] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2009/12/07 19:53:12 A . (.Huawei Technologies Co., Ltd. - USB Modem/Serial Device Driver.) -- C:\WINDOWS\System32\drivers\ewusbmdm.sys [102912] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2009/12/08 20:19:12 A . (.Huawei Technologies Co., Ltd. - USB NDIS Miniport Driver.) -- C:\WINDOWS\System32\drivers\ewusbnet.sys [114432] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2018/04/20 08:28:44 A . (.Huawei Technologies Co., Ltd. - Filter Driver.) -- C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [15360] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2008/04/13 12:14:30 A . (.Microsoft Corporation - Fast FAT File System Driver.) -- C:\WINDOWS\System32\drivers\fastfat.sys [143744] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:40:26 A . (.Microsoft Corporation - Floppy Disk Controller Driver.) -- C:\WINDOWS\System32\drivers\fdc.sys [27392] =>.Microsoft Corporation
O58 - SDL:2008/04/13 18:57:40 A . (.Microsoft Corporation - Pilote de cryptographie FIPS.) -- C:\WINDOWS\System32\drivers\fips.sys [44672] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:40:26 A . (.Microsoft Corporation - Floppy Driver.) -- C:\WINDOWS\System32\drivers\flpydisk.sys [20480] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:33:00 A . (.Microsoft Corporation - Microsoft Filesystem Filter Manager.) -- C:\WINDOWS\System32\drivers\fltMgr.sys [129792] =>.Microsoft Corporation
O58 - SDL:2011/06/03 22:59:14 A . (.FSPro Labs - FSPro File System Filter.) -- C:\WINDOWS\System32\drivers\FSPFltd2.sys [51760] {5B4C9286D5437F09B40BEE7A9F6A6DC1} =>.FSPro Labs
O58 - SDL:2001/08/28 14:00:00 A . (.Microsoft Corporation - Pilote vidéo plein écran.) -- C:\WINDOWS\System32\drivers\fsvga.sys [12416] =>.Microsoft Corporation
O58 - SDL:2001/08/28 14:00:00 A . (.Microsoft Corporation - File System Recognizer Driver.) -- C:\WINDOWS\System32\drivers\fs_rec.sys [7936] =>.Microsoft Corporation
O58 - SDL:2001/08/28 14:00:00 A . (.Microsoft Corporation - Pilote de disque à FT.) -- C:\WINDOWS\System32\drivers\ftdisk.sys [126080] =>.Microsoft Corporation
O58 - SDL:2008/04/13 09:36:06 A . (.Windows (R) Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) -- C:\WINDOWS\System32\drivers\hdaudbus.sys [144384] =>.Microsoft Corporation
O58 - SDL:2017/10/18 15:52:16 A . (...) -- C:\WINDOWS\System32\drivers\hfFilter.sys [38288]
O58 - SDL:2008/04/13 11:45:28 A . (.Microsoft Corporation - Hid Class Library.) -- C:\WINDOWS\System32\drivers\hidclass.sys [36864] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:45:24 A . (.Microsoft Corporation - Hid Parsing Library.) -- C:\WINDOWS\System32\drivers\hidparse.sys [24960] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:45:28 A . (.Microsoft Corporation - USB Miniport Driver for Input Devices.) -- C:\WINDOWS\System32\drivers\hidusb.sys [10368] =>.Microsoft Corporation
O58 - SDL:2009/08/05 06:56:04 A . (.Hewlett-Packard Company - PC-SC Driver for HP USB Smartcard Keyboard.) -- C:\WINDOWS\System32\drivers\HPKBCCID.sys [48256] =>.Hewlett-Packard Company
O58 - SDL:2008/04/13 11:53:54 A . (.Microsoft Corporation - HTTP Protocol Stack.) -- C:\WINDOWS\System32\drivers\http.sys [264832] =>.Microsoft Corporation
O58 - SDL:2018/04/20 08:28:44 A . (.Huawei Technologies Co., Ltd. - ew_cdcacm Driver.) -- C:\WINDOWS\System32\drivers\hw_cdcacm.sys [113792] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2018/04/20 08:28:44 A . (.Huawei Technologies Co., Ltd. - USB Modem/Serial Device Driver.) -- C:\WINDOWS\System32\drivers\hw_quusbmdm.sys [199680] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2018/04/20 08:28:44 A . (.Huawei Technologies Co., Ltd. - USB NDIS Miniport Driver.) -- C:\WINDOWS\System32\drivers\hw_quusbnet.sys [249856] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2018/04/20 08:28:44 A . (.Huawei Technologies Co., Ltd. - USB Modem/Serial Device Driver.) -- C:\WINDOWS\System32\drivers\hw_usbdev.sys [102272] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2008/04/13 19:00:54 A . (.Microsoft Corporation - Pilote de port i8042.) -- C:\WINDOWS\System32\drivers\i8042prt.sys [54144] =>.Microsoft Corporation
O58 - SDL:2018/03/01 17:36:14 A . (.Tonec Inc. - Internet Download Manager TDI Driver.) -- C:\WINDOWS\System32\drivers\idmtdi.sys [143040] =>.Tonec Inc.®
O58 - SDL:2007/01/13 11:33:18 A . (.Intel Corporation - Intel Graphics Miniport Driver.) -- C:\WINDOWS\System32\drivers\igxpmp32.sys [5672032] =>.Intel Corporation
O58 - SDL:2008/04/13 11:41:00 A . (.Microsoft Corporation - IMAPI Kernel Driver.) -- C:\WINDOWS\System32\drivers\imapi.sys [42112] =>.Microsoft Corporation
O58 - SDL:2008/04/13 21:03:26 A . (.Microsoft Corporation - Pilote IDE Intel PCI.) -- C:\WINDOWS\System32\drivers\intelide.sys [5504] =>.Microsoft Corporation
O58 - SDL:2008/04/13 19:03:28 A . (.Microsoft Corporation - Pilote de périphérique processeur.) -- C:\WINDOWS\System32\drivers\intelppm.sys [40576] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:53:36 A . (.Microsoft Corporation - IPv6 Windows Firewall Driver.) -- C:\WINDOWS\System32\drivers\ip6fw.sys [36608] =>.Microsoft Corporation
O58 - SDL:2001/08/28 14:00:00 A . (.Microsoft Corporation - IP FILTER DRIVER.) -- C:\WINDOWS\System32\drivers\ipfltdrv.sys [32896] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:57:08 A . (.Microsoft Corporation - IP in IP Encapsulation Driver.) -- C:\WINDOWS\System32\drivers\ipinip.sys [20864] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:57:16 A . (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\System32\drivers\ipnat.sys [152832] =>.Microsoft Corporation
O58 - SDL:2008/04/13 12:19:44 A . (.Microsoft Corporation - IPSec Driver.) -- C:\WINDOWS\System32\drivers\ipsec.sys [75264] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:54:30 A . (.Microsoft Corporation - Infra-Red Bus Enumerator.) -- C:\WINDOWS\System32\drivers\irenum.sys [11264] =>.Microsoft Corporation
O58 - SDL:2008/04/13 19:04:36 A . (.Microsoft Corporation - Pilote de bus PNP ISA.) -- C:\WINDOWS\System32\drivers\isapnp.sys [37632] =>.Microsoft Corporation
O58 - SDL:2008/04/13 19:05:16 A . (.Microsoft Corporation - Pilote de la classe Clavier.) -- C:\WINDOWS\System32\drivers\kbdclass.sys [25216] =>.Microsoft Corporation
O58 - SDL:2008/04/13 19:05:16 A . (.Microsoft Corporation - Pilote de filtre souris HID.) -- C:\WINDOWS\System32\drivers\kbdhid.sys [14720] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:45:10 A . (.Microsoft Corporation - Kernel Mode Audio Mixer.) -- C:\WINDOWS\System32\drivers\kmixer.sys [172416] =>.Microsoft Corporation
O58 - SDL:2008/04/13 12:16:38 A . (.Microsoft Corporation - Kernel CSA Library.) -- C:\WINDOWS\System32\drivers\ks.sys [141056] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:31:44 A . (.Microsoft Corporation - Kernel Security Support Provider Interface.) -- C:\WINDOWS\System32\drivers\ksecdd.sys [92288] =>.Microsoft Corporation
O58 - SDL:2001/08/28 14:00:00 A . (.Microsoft Corporation - Medium changer class driver.) -- C:\WINDOWS\System32\drivers\mcd.sys [7680] =>.Microsoft Corporation
O58 - SDL:2008/04/13 19:47:24 A . (.Microsoft Corporation - Multifunction Enumerator.) -- C:\WINDOWS\System32\drivers\mf.sys [63744] =>.Microsoft Corporation
O58 - SDL:2001/08/28 14:00:00 A . (.Microsoft Corporation - Frame buffer simulator.) -- C:\WINDOWS\System32\drivers\mnmdd.sys [4224] =>.Microsoft Corporation
O58 - SDL:2008/04/13 19:47:24 A . (.Microsoft Corporation - Pilote de périphérique modem.) -- C:\WINDOWS\System32\drivers\modem.sys [30336] =>.Microsoft Corporation
O58 - SDL:2008/04/13 19:47:24 A . (.Microsoft Corporation - Pilote de la classe Souris.) -- C:\WINDOWS\System32\drivers\mouclass.sys [23680] =>.Microsoft Corporation
O58 - SDL:2001/08/28 14:00:00 A . (.Microsoft Corporation - Pilote de filtre souris HID.) -- C:\WINDOWS\System32\drivers\mouhid.sys [12288] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:39:48 A . (.Microsoft Corporation - Mount Manager.) -- C:\WINDOWS\System32\drivers\mountmgr.sys [42368] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:39:46 A . (.Microsoft Corporation - Windows NT MQ Access Control Device Driver.) -- C:\WINDOWS\System32\drivers\mqac.sys [92544] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:32:46 A . (.Microsoft Corporation - Windows NT WebDav Minirdr.) -- C:\WINDOWS\System32\drivers\mrxdav.sys [180608] =>.Microsoft Corporation
O58 - SDL:2008/04/13 12:17:02 A . (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\WINDOWS\System32\drivers\mrxsmb.sys [456576] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:32:40 A . (.Microsoft Corporation - Mailslot driver.) -- C:\WINDOWS\System32\drivers\msfs.sys [19072] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:56:34 A . (.Microsoft Corporation - MS General Packet Classifier.) -- C:\WINDOWS\System32\drivers\msgpc.sys [35072] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:39:54 A . (.Microsoft Corporation - MS KS Server.) -- C:\WINDOWS\System32\drivers\MSKSSRV.sys [7552] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:39:52 A . (.Microsoft Corporation - MS Proxy Clock.) -- C:\WINDOWS\System32\drivers\MSPCLOCK.sys [5376] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:39:52 A . (.Microsoft Corporation - MS Proxy Quality Manager.) -- C:\WINDOWS\System32\drivers\MSPQM.sys [4992] =>.Microsoft Corporation
O58 - SDL:2008/04/13 19:47:24 A . (.Microsoft Corporation - System Management BIOS Driver.) -- C:\WINDOWS\System32\drivers\mssmbios.sys [15488] =>.Microsoft Corporation
O58 - SDL:2008/04/13 12:17:06 A . (.Microsoft Corporation - Multiple UNC Provider driver.) -- C:\WINDOWS\System32\drivers\mup.sys [105344] =>.Microsoft Corporation
O58 - SDL:2008/04/13 12:20:38 A . (.Microsoft Corporation - NDIS 5.1 wrapper driver.) -- C:\WINDOWS\System32\drivers\ndis.sys [182656] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:57:28 A . (.Microsoft Corporation - NDIS 3.0 connection wrapper driver.) -- C:\WINDOWS\System32\drivers\ndistapi.sys [10112] =>.Microsoft Corporation
O58 - SDL:2008/04/13 19:47:24 A . (.Microsoft Corporation - NDIS User mode I/O Driver.) -- C:\WINDOWS\System32\drivers\ndisuio.sys [14592] =>.Microsoft Corporation
O58 - SDL:2008/04/13 12:20:44 A . (.Microsoft Corporation - MS PPP Framing Driver (Strong Encryption).) -- C:\WINDOWS\System32\drivers\ndiswan.sys [91520] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:57:30 A . (.Microsoft Corporation - NDIS Proxy.) -- C:\WINDOWS\System32\drivers\ndproxy.sys [40576] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:56:04 A . (.Microsoft Corporation - NetBIOS interface driver.) -- C:\WINDOWS\System32\drivers\netbios.sys [34688] =>.Microsoft Corporation
O58 - SDL:2008/04/13 12:21:02 A . (.Microsoft Corporation - MBT Transport driver.) -- C:\WINDOWS\System32\drivers\netbt.sys [162816] =>.Microsoft Corporation
O58 - SDL:2008/04/13 19:47:24 A . (.Microsoft Corporation - IEEE1394 Ndis Miniport and Call Manager.) -- C:\WINDOWS\System32\drivers\nic1394.sys [61824] =>.Microsoft Corporation
O58 - SDL:2001/08/28 14:00:00 A . (.S3/Diamond Multimedia Systems - NikeDrv Usb Driver.) -- C:\WINDOWS\System32\drivers\nikedrv.sys [12032] =>.S3/Diamond Multimedia Systems
O58 - SDL:2008/04/13 11:53:10 A . (.Microsoft Corporation - Netmon NT Driver.) -- C:\WINDOWS\System32\drivers\nmnt.sys [40320] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:32:40 A . (.Microsoft Corporation - NPFS Driver.) -- C:\WINDOWS\System32\drivers\npfs.sys [30848] =>.Microsoft Corporation
O58 - SDL:2008/04/13 12:15:54 A . (.Microsoft Corporation - NT File System Driver.) -- C:\WINDOWS\System32\drivers\ntfs.sys [574976] =>.Microsoft Corporation
O58 - SDL:2001/08/28 14:00:00 A . (.Microsoft Corporation - NULL Driver.) -- C:\WINDOWS\System32\drivers\null.sys [2944] =>.Microsoft Corporation
O58 - SDL:2001/08/28 14:00:00 A . (.Microsoft Corporation - NWLINK2 Traffic Filter Driver.) -- C:\WINDOWS\System32\drivers\nwlnkflt.sys [12416] =>.Microsoft Corporation
O58 - SDL:2001/08/28 14:00:00 A . (.Microsoft Corporation - NWLINK2 Forwarder Driver.) -- C:\WINDOWS\System32\drivers\nwlnkfwd.sys [32512] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:56:08 A . (.Microsoft Corporation - NWLINK2 IPX Protocol Driver.) -- C:\WINDOWS\System32\drivers\nwlnkipx.sys [88320] =>.Microsoft Corporation
O58 - SDL:2001/08/28 14:00:00 A . (.Microsoft Corporation - NWLINK2 IPX Netbios Protocol Driver.) -- C:\WINDOWS\System32\drivers\nwlnknb.sys [63232] =>.Microsoft Corporation
O58 - SDL:2001/08/28 14:00:00 A . (.Microsoft Corporation - NWLINK2 SPX Protocol Driver.) -- C:\WINDOWS\System32\drivers\nwlnkspx.sys [55936] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:34:14 A . (.Microsoft Corporation - NetWare Redirector File System Driver.) -- C:\WINDOWS\System32\drivers\nwrdr.sys [163584] =>.Microsoft Corporation
O58 - SDL:2001/08/28 14:00:00 A . (.Microsoft Corporation - ACPI Operation Registration Driver.) -- C:\WINDOWS\System32\drivers\oprghdlr.sys [3456] =>.Microsoft Corporation
O58 - SDL:2008/04/13 19:47:24 A . (.Microsoft Corporation - Pilote de périphérique processeur.) -- C:\WINDOWS\System32\drivers\p3.sys [46848] =>.Microsoft Corporation
O58 - SDL:2008/04/13 19:47:24 A . (.Microsoft Corporation - Pilote de port parallèle.) -- C:\WINDOWS\System32\drivers\parport.sys [80384] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:40:50 A . (.Microsoft Corporation - Partition Manager.) -- C:\WINDOWS\System32\drivers\partmgr.sys [19712] =>.Microsoft Corporation
O58 - SDL:2001/08/28 14:00:00 A . (.Microsoft Corporation - Pilote parallèle VDM.) -- C:\WINDOWS\System32\drivers\parvdm.sys [6912] =>.Microsoft Corporation
O58 - SDL:2008/04/13 19:09:48 A . (.Microsoft Corporation - Énumérateur Plug-and-Play PCI pour NT.) -- C:\WINDOWS\System32\drivers\pci.sys [68608] =>.Microsoft Corporation
O58 - SDL:2001/08/23 17:15:46 A . (.Microsoft Corporation - Pilote de bus générique PCI IDE.) -- C:\WINDOWS\System32\drivers\pciide.sys [3328] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:40:30 A . (.Microsoft Corporation - PCI IDE Bus Driver Extension.) -- C:\WINDOWS\System32\drivers\pciidex.sys [24960] =>.Microsoft Corporation
O58 - SDL:2008/04/13 19:09:54 A . (.Microsoft Corporation - Pilote de bus PCMCIA.) -- C:\WINDOWS\System32\drivers\pcmcia.sys [120576] =>.Microsoft Corporation
O58 - SDL:2008/04/13 12:19:42 A . (.Microsoft Corporation - Port Class (Class Driver for Port/Miniport.) -- C:\WINDOWS\System32\drivers\portcls.sys [146048] =>.Microsoft Corporation
O58 - SDL:2008/04/13 19:47:24 A . (.Microsoft Corporation - Pilote de périphérique processeur.) -- C:\WINDOWS\System32\drivers\processr.sys [40064] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:56:40 A . (.Microsoft Corporation - MS QoS Packet Scheduler.) -- C:\WINDOWS\System32\drivers\psched.sys [69120] =>.Microsoft Corporation
O58 - SDL:2001/08/28 14:00:00 A . (.Parallel Technologies, Inc. - Parallel Technologies DirectParallel IO Lib.) -- C:\WINDOWS\System32\drivers\ptilink.sys [17792] =>.Parallel Technologies, Inc.
O58 - SDL:2001/08/28 14:00:00 A . (.Microsoft Corporation - RAS Automatic Connection Driver.) -- C:\WINDOWS\System32\drivers\rasacd.sys [8832] =>.Microsoft Corporation
O58 - SDL:2008/04/13 12:19:44 A . (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\WINDOWS\System32\drivers\rasl2tp.sys [51328] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:57:34 A . (.Microsoft Corporation - RAS PPPoE mini-port/call-manager driver.) -- C:\WINDOWS\System32\drivers\raspppoe.sys [41472] =>.Microsoft Corporation
O58 - SDL:2008/04/13 12:19:50 A . (.Microsoft Corporation - Peer-to-Peer Tunneling Protocol.) -- C:\WINDOWS\System32\drivers\raspptp.sys [48384] =>.Microsoft Corporation
O58 - SDL:2001/08/28 14:00:00 A . (.Microsoft Corporation - PTI DirectParallel(R) mini-port/call-manage.) -- C:\WINDOWS\System32\drivers\raspti.sys [16512] =>.Microsoft Corporation
O58 - SDL:2001/08/28 14:00:00 A . (.Microsoft Corporation - Raw WAN Transport.) -- C:\WINDOWS\System32\drivers\rawwan.sys [34432] =>.Microsoft Corporation
O58 - SDL:2008/04/13 12:28:40 A . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) -- C:\WINDOWS\System32\drivers\rdbss.sys [175744] =>.Microsoft Corporation
O58 - SDL:2001/08/28 14:00:00 A . (.Microsoft Corporation - RDP Miniport.) -- C:\WINDOWS\System32\drivers\rdpcdd.sys [4224] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:32:52 A . (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\WINDOWS\System32\drivers\rdpdr.sys [196224] =>.Microsoft Corporation
O58 - SDL:2008/04/13 19:34:56 A . (.Microsoft Corporation - RDP Terminal Stack Driver (US/Canada Only,.) -- C:\WINDOWS\System32\drivers\rdpwd.sys [139656] =>.Microsoft Corporation
O58 - SDL:2008/04/13 20:57:36 A . (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) -- C:\WINDOWS\System32\drivers\redbook.sys [58752] =>.Microsoft Corporation
O58 - SDL:2001/08/28 14:00:00 A . (.S3/Diamond Multimedia Systems - Rio8Drv.sys Usb Driver.) -- C:\WINDOWS\System32\drivers\rio8drv.sys [12032] =>.S3/Diamond Multimedia Systems
O58 - SDL:2001/08/28 14:00:00 A . (.S3/Diamond Multimedia Systems - RioDrv Usb Driver.) -- C:\WINDOWS\System32\drivers\riodrv.sys [12032] =>.S3/Diamond Multimedia Systems
O58 - SDL:2008/04/13 11:55:10 A . (.Microsoft Corporation - Reliable Multicast Transport.) -- C:\WINDOWS\System32\drivers\RMCast.sys [202624] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:56:50 A . (.Microsoft Corporation - Remote NDIS Miniport.) -- C:\WINDOWS\System32\drivers\rndismp.sys [30592] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:56:50 A . (.Microsoft Corporation - Remote NDIS Miniport.) -- C:\WINDOWS\System32\drivers\rndismpx.sys [30592] =>.Microsoft Corporation
O58 - SDL:2001/08/28 14:00:00 A . (.Microsoft Corporation - Legacy Non-Pnp Modem Device Driver.) -- C:\WINDOWS\System32\drivers\rootmdm.sys [5888] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:40:32 A . (.Microsoft Corporation - SCSI Port Driver.) -- C:\WINDOWS\System32\drivers\scsiport.sys [96384] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:36:46 A . (.Microsoft Corporation - SecureDigital Bus Driver.) -- C:\WINDOWS\System32\drivers\sdbus.sys [79232] =>.Microsoft Corporation
O58 - SDL:2008/04/13 09:39:16 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\WINDOWS\System32\drivers\secdrv.sys [20480] =>.Rovi Corporation
O58 - SDL:2008/04/13 11:40:14 A . (.Microsoft Corporation - Serial Port Enumerator.) -- C:\WINDOWS\System32\drivers\serenum.sys [15744] =>.Microsoft Corporation
O58 - SDL:2008/04/13 19:00:10 A . (.Microsoft Corporation - Pilote de périphérique série.) -- C:\WINDOWS\System32\drivers\serial.sys [66048] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:40:48 A . (.Microsoft Corporation - Small Form Factor Disk Driver.) -- C:\WINDOWS\System32\drivers\sffdisk.sys [11904] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:40:50 A . (.Microsoft Corporation - Small Form Factor MMC Protocol Driver.) -- C:\WINDOWS\System32\drivers\sffp_mmc.sys [10240] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:40:48 A . (.Microsoft Corporation - Small Form Factor SD Protocol Driver.) -- C:\WINDOWS\System32\drivers\sffp_sd.sys [11008] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:40:50 A . (.Microsoft Corporation - SCSI Floppy Driver.) -- C:\WINDOWS\System32\drivers\sfloppy.sys [11392] =>.Microsoft Corporation
O58 - SDL:2001/08/28 14:00:00 A . (.Microsoft Corporation - Smard Card Driver Library.) -- C:\WINDOWS\System32\drivers\smclib.sys [14592] =>.Microsoft Corporation
O58 - SDL:2003/04/08 10:30:48 A . (.Analog Devices, Inc. - SoundMAX Stub Driver.) -- C:\WINDOWS\System32\drivers\smsens.sys [3744] =>.Analog Devices, Inc.
O58 - SDL:2004/04/15 11:20:36 A . (.Analog Devices, Inc. - SoundMAX Integrated Digital Audio.) -- C:\WINDOWS\System32\drivers\smwdm.sys [612416] =>.Analog Devices, Inc.
O58 - SDL:2008/04/13 19:47:24 A . (.Microsoft Corporation - 1394 Desktop Camera Driver.) -- C:\WINDOWS\System32\drivers\sonydcam.sys [25344] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:45:08 A . (.Microsoft Corporation - Microsoft Kernel Audio Splitter.) -- C:\WINDOWS\System32\drivers\splitter.sys [6272] =>.Microsoft Corporation
O58 - SDL:2008/04/13 19:10:04 A . (.Microsoft Corporation - Pilote de filtre de système de fichiers pou.) -- C:\WINDOWS\System32\drivers\sr.sys [73600] =>.Microsoft Corporation
O58 - SDL:2008/04/13 12:15:12 A . (.Microsoft Corporation - Server driver.) -- C:\WINDOWS\System32\drivers\srv.sys [334848] =>.Microsoft Corporation
O58 - SDL:2006/07/24 16:05:00 A . (...) -- C:\WINDOWS\System32\drivers\StarOpen.sys [5632] =>.Rocket Division Software
O58 - SDL:2007/01/24 02:01:00 A . (.SCM Microsystems Inc. - STC DFU Driver.) -- C:\WINDOWS\System32\drivers\STCFUx32.sys [7680]
O58 - SDL:2008/04/13 11:45:16 A . (.Microsoft Corporation - WDM CODEC Class Device Driver 2.0.) -- C:\WINDOWS\System32\drivers\stream.sys [49408] =>.Microsoft Corporation
O58 - SDL:2008/04/13 19:47:24 A . (.Microsoft Corporation - Plug and Play Software Device Enumerator.) -- C:\WINDOWS\System32\drivers\swenum.sys [4352] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:45:10 A . (.Microsoft Corporation - Microsoft GS Wavetable Synthesizer.) -- C:\WINDOWS\System32\drivers\swmidi.sys [56576] =>.Microsoft Corporation
O58 - SDL:2008/04/13 12:15:56 A . (.Microsoft Corporation - System Audio WDM Filter.) -- C:\WINDOWS\System32\drivers\sysaudio.sys [60800] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:40:52 A . (.Microsoft Corporation - SCSI Tape Class Driver.) -- C:\WINDOWS\System32\drivers\tape.sys [14976] =>.Microsoft Corporation
O58 - SDL:2008/04/13 12:20:18 A . (.Microsoft Corporation - TCP/IP Protocol Driver.) -- C:\WINDOWS\System32\drivers\tcpip.sys [361344] =>.Microsoft Corporation
O58 - SDL:2008/04/13 12:00:04 A . (.Microsoft Corporation - IPv6 driver.) -- C:\WINDOWS\System32\drivers\tcpip6.sys [225664] =>.Microsoft Corporation
O58 - SDL:2008/04/13 12:00:06 A . (.Microsoft Corporation - TDI Wrapper.) -- C:\WINDOWS\System32\drivers\tdi.sys [19072] =>.Microsoft Corporation
O58 - SDL:2008/04/13 19:34:54 A . (.Microsoft Corporation - Named Pipe Transport Driver.) -- C:\WINDOWS\System32\drivers\tdpipe.sys [12040] =>.Microsoft Corporation
O58 - SDL:2008/04/13 19:34:54 A . (.Microsoft Corporation - TCP Transport Driver.) -- C:\WINDOWS\System32\drivers\tdtcp.sys [21896] =>.Microsoft Corporation
O58 - SDL:2008/04/13 19:34:54 A . (.Microsoft Corporation - Terminal Server Driver.) -- C:\WINDOWS\System32\drivers\termdd.sys [40840] =>.Microsoft Corporation
O58 - SDL:2001/08/28 14:00:00 A . (.Microsoft Corporation - TOSHIBA DVD Stream Minidriver.) -- C:\WINDOWS\System32\drivers\tosdvd.sys [51712] =>.Microsoft Corporation
O58 - SDL:2001/08/28 14:00:00 A . (.Toshiba Corporation - WDM Toshiba Tecra Video Capture Driver.) -- C:\WINDOWS\System32\drivers\tsbvcap.sys [21376] =>.Toshiba Corporation
O58 - SDL:2008/04/13 19:47:24 A . (.Microsoft Corporation - Microsoft Tunnel Interface Driver.) -- C:\WINDOWS\System32\drivers\tunmp.sys [12288] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:32:38 A . (.Microsoft Corporation - UDF File System Driver.) -- C:\WINDOWS\System32\drivers\udfs.sys [66048] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:39:48 A . (.Microsoft Corporation - Update Driver.) -- C:\WINDOWS\System32\drivers\update.sys [384768] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:56:50 A . (.Microsoft Corporation - Remote NDIS USB Driver.) -- C:\WINDOWS\System32\drivers\usb8023.sys [12800] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:56:50 A . (.Microsoft Corporation - Remote NDIS USB Driver.) -- C:\WINDOWS\System32\drivers\usb8023x.sys [12800] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:45:14 A . (.Microsoft Corporation - USB Audio Class Driver.) -- C:\WINDOWS\System32\drivers\USBAUDIO.sys [60032] =>.Microsoft Corporation
O58 - SDL:2008/04/13 19:47:24 A . (.Microsoft Corporation - Universal Serial Bus Camera Driver.) -- C:\WINDOWS\System32\drivers\usbcamd.sys [25600] =>.Microsoft Corporation
O58 - SDL:2008/04/13 19:47:24 A . (.Microsoft Corporation - Universal Serial Bus Camera Driver.) -- C:\WINDOWS\System32\drivers\usbcamd2.sys [25728] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:45:40 A . (.Microsoft Corporation - USB Common Class Generic Parent Driver.) -- C:\WINDOWS\System32\drivers\usbccgp.sys [32128] =>.Microsoft Corporation
O58 - SDL:2001/08/28 14:00:00 A . (.Microsoft Corporation - Universal Serial Bus Driver.) -- C:\WINDOWS\System32\drivers\usbd.sys [4736] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:45:36 A . (.Microsoft Corporation - EHCI eUSB Miniport Driver.) -- C:\WINDOWS\System32\drivers\usbehci.sys [30208] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:45:38 A . (.Microsoft Corporation - Default Hub Driver for USB.) -- C:\WINDOWS\System32\drivers\usbhub.sys [59520] =>.Microsoft Corporation
O58 - SDL:2008/04/13 19:47:24 A . (.Microsoft Corporation - Universal Serial Bus Camera Driver.) -- C:\WINDOWS\System32\drivers\usbintel.sys [15872] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:45:38 A . (.Microsoft Corporation - USB 1.1 & 2.0 Port Driver.) -- C:\WINDOWS\System32\drivers\usbport.sys [143872] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:45:36 A . (.Microsoft Corporation - USB Scanner Driver.) -- C:\WINDOWS\System32\drivers\usbscan.sys [15104] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:45:38 A . (.Microsoft Corporation - USB Modem Driver.) -- C:\WINDOWS\System32\drivers\usbser.sys [26112] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:45:40 A . (.Microsoft Corporation - USB Mass Storage Class Driver.) -- C:\WINDOWS\System32\drivers\USBSTOR.SYS [26368] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:45:36 A . (.Microsoft Corporation - UHCI USB Miniport Driver.) -- C:\WINDOWS\System32\drivers\usbuhci.sys [20608] =>.Microsoft Corporation
O58 - SDL:2001/08/28 14:00:00 A . (.RAVISENT Technologies Inc. - CineMaster C WDM DVD Minidriver.) -- C:\WINDOWS\System32\drivers\vdmindvd.sys [58112] =>.RAVISENT Technologies Inc.
O58 - SDL:2008/04/13 11:44:42 A . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\WINDOWS\System32\drivers\vga.sys [20992] =>.Microsoft Corporation
O58 - SDL:2008/04/13 11:44:42 A . (.Microsoft Corporation - Video Port Driver.) -- C:\WINDOWS\System32\drivers\videoprt.sys [81664] =>.Microsoft Corporation
O58 - SDL:2008/04/13 18:56:06 A . (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\WINDOWS\System32\drivers\volsnap.sys [53376] =>.Microsoft Corporation
O58 - SDL:2017/06/15 09:31:58 A . (.Power Software Ltd - WinArchiver Virtual Drive.) -- C:\WINDOWS\System32\drivers\waemu.sys [127648] =>.Power Software Limited®
O58 - SDL:2008/04/13 11:57:22 A . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) -- C:\WINDOWS\System32\drivers\wanarp.sys [34560] =>.Microsoft Corporation
O58 - SDL:2009/07/14 10:35:16 N . (.Microsoft Corporation - Kernel Mode Driver Framework Runtime.) -- C:\WINDOWS\System32\drivers\wdf01000.sys [444136] =>.Microsoft Windows Component Publisher®
O58 - SDL:2009/07/14 10:35:16 N . (.Microsoft Corporation - Kernel Mode Driver Framework Loader.) -- C:\WINDOWS\System32\drivers\wdfldr.sys [37608] =>.Microsoft Windows Component Publisher®
O58 - SDL:2008/04/13 12:17:20 A . (.Microsoft Corporation - MMSYSTEM Wave/Midi API mapper.) -- C:\WINDOWS\System32\drivers\wdmaud.sys [83072] =>.Microsoft Corporation
O58 - SDL:2009/07/13 16:51:12 N . (.Microsoft Corporation - Windows USB Class Driver BETA.) -- C:\WINDOWS\System32\drivers\winusb.sys [34944] =>.Microsoft Corporation
O58 - SDL:2008/04/13 13:36:40 A . (.Microsoft Corporation - Windows Management Interface for ACPI.) -- C:\WINDOWS\System32\drivers\wmiacpi.sys [8832] =>.Microsoft Corporation
O58 - SDL:2001/08/28 14:00:00 A . (.Microsoft Corporation - WMILIB WMI support library Dll.) -- C:\WINDOWS\System32\drivers\wmilib.sys [4352] =>.Microsoft Corporation
O58 - SDL:2001/08/28 14:00:00 A . (.Microsoft Corporation - Winsock2 IFS Layer.) -- C:\WINDOWS\System32\drivers\ws2ifsl.sys [12032] =>.Microsoft Corporation
O58 - SDL:2001/08/28 14:00:00 A . (...) -- C:\WINDOWS\System32\ansi.sys [9037] =>.Microsoft Corporation
O58 - SDL:2001/08/28 14:00:00 A . (...) -- C:\WINDOWS\System32\country.sys [27097] =>.Microsoft Corporation
O58 - SDL:2001/08/28 14:00:00 A . (...) -- C:\WINDOWS\System32\himem.sys [4912] =>.Microsoft Corporation
O58 - SDL:2001/08/28 14:00:00 A . (...) -- C:\WINDOWS\System32\key01.sys [42809] =>.Microsoft Corporation
O58 - SDL:2008/04/13 09:50:56 A . (...) -- C:\WINDOWS\System32\keyboard.sys [42537] =>.Microsoft Corporation
O58 - SDL:2001/08/28 14:00:00 A . (...) -- C:\WINDOWS\System32\ntdos.sys [27916] =>.Microsoft Corporation
O58 - SDL:2001/08/28 14:00:00 A . (...) -- C:\WINDOWS\System32\ntdos404.sys [29146] =>.Microsoft Corporation
O58 - SDL:2001/08/28 14:00:00 A . (...) -- C:\WINDOWS\System32\ntdos411.sys [29370] =>.Microsoft Corporation
O58 - SDL:2001/08/28 14:00:00 A . (...) -- C:\WINDOWS\System32\ntdos412.sys [29274] =>.Microsoft Corporation
O58 - SDL:2001/08/28 14:00:00 A . (...) -- C:\WINDOWS\System32\ntdos804.sys [29146] =>.Microsoft Corporation
O58 - SDL:2008/04/13 09:49:52 A . (...) -- C:\WINDOWS\System32\ntio.sys [34000] =>.Microsoft Corporation
O58 - SDL:2008/04/13 09:49:44 A . (...) -- C:\WINDOWS\System32\ntio404.sys [34560] =>.Microsoft Corporation
O58 - SDL:2008/04/13 09:49:40 A . (...) -- C:\WINDOWS\System32\ntio411.sys [35648] =>.Microsoft Corporation
O58 - SDL:2008/04/13 09:49:44 A . (...) -- C:\WINDOWS\System32\ntio412.sys [35424] =>.Microsoft Corporation
O58 - SDL:2008/04/13 09:49:42 A . (...) -- C:\WINDOWS\System32\ntio804.sys [34560] =>.Microsoft Corporation
O58 - SDL:2003/04/16 09:00:36 A . (.Compaq Computer Corporation - Client Management Device Driver.) -- C:\WINDOWS\System32\SP28595.SYS [50520] =>.Compaq Computer Corporation
O58 - SDL:2008/04/13 11:45:00 A . (.Microsoft Corporation - Watchdog Driver.) -- C:\WINDOWS\System32\watchdog.sys [17664] =>.Microsoft Corporation
O58 - SDL:2008/04/13 18:58:08 A . (.Microsoft Corporation - Pilote Win32 multi-utilisateurs.) -- C:\WINDOWS\System32\win32k.sys [1845760] =>.Microsoft Corporation

---\\ DERNIERS FICHIERS MODIFIÉS OU CRÉÉS (Utilisateur) (5) - 111s
O61 - LFC: 2018/07/18 15:56:55 RSH . (..) -- C:\Documents and Settings\Mr-MDX\Application Data\SDService\lpk.dll [47616]
O61 - LFC: 2018/07/18 15:56:55 RSH . (..) -- C:\Documents and Settings\Mr-MDX\Application Data\SDService\updatefiles\lpk.dll [47616]
O61 - LFC: 2018/08/06 17:16:27 RSH . (..) -- C:\Documents and Settings\Mr-MDX\Bureau\ChipGenius_v4_18_0203\lpk.dll [47616]
O61 - LFC: 2018/07/15 15:19:56 A . (.Setup Factory is a trademark of Indigo Rose Corporati.) -- C:\Documents and Settings\Mr-MDX\Mes documents\Downloads\AthanBasic.exe [9022580]
O61 - LFC: 2018/07/15 20:10:15 RSH . (..) -- C:\Documents and Settings\Mr-MDX\Mes documents\Downloads\lpk.dll [47616]

---\\ ASSOCIATION Shell Spawning (8) - 0s
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %* =>.Default.Value
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\shell32.dll =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %* =>.Default.Value
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %* =>.Default.Value
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %* =>.Default.Value
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (...) -- %SystemRoot%\System32\WScript.exe "%1" %* =>.Default.Value
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\WINDOWS\regedit.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S =>.Default.Value

---\\ MENU DE DÉMARRAGE INTERNET (14) - 2s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.CatalinaGroup Ltd. - Citrio.) -- C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\CatalinaGroup\Citrio\Application\citrio.exe
O68 - StartMenuInternet: <>[HKLM\..\Shell\open\Command] (.CatalinaGroup Ltd. - Citrio.) -- C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\CatalinaGroup\Citrio\Application\citrio.exe =>.SUP.CatalinaMarketing
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- firefox.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- iexplore.exe =>.Microsoft Corporation
O68 - StartMenuInternet: <>[HKLM\..\Shell\open\Command] (...) -- C:\Program Files\baidu\Baidu Browser\Spark.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.CatalinaGroup Ltd. - Citrio.) -- C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\CatalinaGroup\Citrio\Application\citrio.exe =>.SUP.CatalinaMarketing
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Windows NT User Data Migration Tool.) -- C:\WINDOWS\system32\shmgrate.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.CatalinaGroup Ltd. - Citrio.) -- C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\CatalinaGroup\Citrio\Application\citrio.exe =>.SUP.CatalinaMarketing
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Windows NT User Data Migration Tool.) -- C:\WINDOWS\system32\shmgrate.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.CatalinaGroup Ltd. - Citrio.) -- C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\CatalinaGroup\Citrio\Application\citrio.exe =>.SUP.CatalinaMarketing
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Windows NT User Data Migration Tool.) -- C:\WINDOWS\system32\shmgrate.exe =>.Microsoft Corporation

---\\ ÉNUMÈRE LES SERVICES DÉMARRÉS PAR Svchost (40) - 1s
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\WINDOWS\system32\appmgmts.dll [176640] =>.Microsoft Corporation
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Windows Audio Service.) -- C:\WINDOWS\system32\audiosrv.dll [42496] =>.Microsoft Corporation
O83 - Search Svchost Services: Browser (Browser) . (.Microsoft Corporation - Computer Browser Service DLL.) -- C:\WINDOWS\system32\browser.dll [77824] =>.Microsoft Corporation
O83 - Search Svchost Services: CryptSvc (CryptSvc) . (.Microsoft Corporation - Cryptographic Services.) -- C:\WINDOWS\system32\cryptsvc.dll [62464] =>.Microsoft Corporation
O83 - Search Svchost Services: DMServer (DMServer) . (.Microsoft Corp. - DLL Service gestionnaire de disque logique.) -- C:\WINDOWS\system32\dmserver.dll [24576] =>.Microsoft Corp.
O83 - Search Svchost Services: DHCP (DHCP) . (.Microsoft Corporation - Service client DHCP.) -- C:\WINDOWS\system32\dhcpcsvc.dll [127488] =>.Microsoft Corporation
O83 - Search Svchost Services: ERSvc (ERSvc) . (.Microsoft Corporation - Windows Error Reporting Service.) -- C:\WINDOWS\system32\ersvc.dll [23040] =>.Microsoft Corporation
O83 - Search Svchost Services: EventSystem (EventSystem) . (.Microsoft Corporation - .) -- C:\WINDOWS\system32\es.dll [246272] =>.Microsoft Corporation
O83 - Search Svchost Services: FastUserSwitchingCompatibility (FastUserSwitchingCompatibility) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS\system32\shsvcs.dll [135680] =>.Microsoft Corporation
O83 - Search Svchost Services: HidServ (HidServ) . (.Microsoft Corporation - HID Audio Service.) -- C:\WINDOWS\system32\hidserv.dll [21504] =>.Microsoft Corporation
O83 - Search Svchost Services: LanmanServer (LanmanServer) . (.Microsoft Corporation - Server Service DLL.) -- C:\WINDOWS\system32\srvsvc.dll [96768] =>.Microsoft Corporation
O83 - Search Svchost Services: LanmanWorkstation (LanmanWorkstation) . (.Microsoft Corporation - Workstation Service DLL.) -- C:\WINDOWS\system32\wkssvc.dll [132096] =>.Microsoft Corporation
O83 - Search Svchost Services: Messenger (Messenger) . (.Microsoft Corporation - NT Messenger Service.) -- C:\WINDOWS\system32\msgsvc.dll [33792] =>.Microsoft Corporation
O83 - Search Svchost Services: Netman (Netman) . (.Microsoft Corporation - Gestionnaire de connexions réseau.) -- C:\WINDOWS\system32\netman.dll [198144] =>.Microsoft Corporation
O83 - Search Svchost Services: Nla (Nla) . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Micro.) -- C:\WINDOWS\system32\mswsock.dll [247808] =>.Microsoft Corporation
O83 - Search Svchost Services: Ntmssvc (Ntmssvc) . (.Microsoft Corporation - Gestionnaire de stockage amovible.) -- C:\WINDOWS\system32\ntmssvc.dll [438272] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Remote Access AutoDial Manager.) -- C:\WINDOWS\system32\rasauto.dll [88576] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Remote Access Connection Manager.) -- C:\WINDOWS\system32\rasmans.dll [186368] =>.Microsoft Corporation
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamic Interface Manager.) -- C:\WINDOWS\system32\mprdim.dll [53248] =>.Microsoft Corporation
O83 - Search Svchost Services: Schedule (Schedule) . (.Microsoft Corporation - Moteur du Planificateur de tâches.) -- C:\WINDOWS\system32\schedsvc.dll [194560] =>.Microsoft Corporation
O83 - Search Svchost Services: Seclogon (Seclogon) . (.Microsoft Corporation - DLL de service d'ouverture de session secon.) -- C:\WINDOWS\system32\seclogon.dll [18944] =>.Microsoft Corporation
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) -- C:\WINDOWS\system32\sens.dll [39424] =>.Microsoft Corporation
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l'application d'assistance à.) -- C:\WINDOWS\system32\ipnathlp.dll [332800] =>.Microsoft Corporation
O83 - Search Svchost Services: SRService (SRService) . (.Microsoft Corporation - Service de restauration du système.) -- C:\WINDOWS\system32\srsvc.dll [171520] =>.Microsoft Corporation
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\WINDOWS\system32\tapisrv.dll [249856] =>.Microsoft Corporation
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS\system32\shsvcs.dll [135680] =>.Microsoft Corporation
O83 - Search Svchost Services: TrkWks (TrkWks) . (.Microsoft Corporation - Distributed Link Tracking Client.) -- C:\WINDOWS\system32\trkwks.dll [90112] =>.Microsoft Corporation
O83 - Search Svchost Services: W32Time (W32Time) . (.Microsoft Corporation - Service de temps Windows.) -- C:\WINDOWS\system32\w32time.dll [178176] =>.Microsoft Corporation
O83 - Search Svchost Services: WZCSVC (WZCSVC) . (.Microsoft Corporation - Service configuration automatique sans fil.) -- C:\WINDOWS\system32\wzcsvc.dll [483840] =>.Microsoft Corporation
O83 - Search Svchost Services: Wmi (Wmi) . (.Microsoft Corporation - API avancées Windows 32.) -- C:\WINDOWS\system32\advapi32.dll [685568] =>.Microsoft Corporation
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\WINDOWS\system32\wbem\wmisvc.dll [145408] =>.Microsoft Corporation
O83 - Search Svchost Services: wscsvc (wscsvc) . (.Microsoft Corporation - Windows Security Center Service.) -- C:\WINDOWS\system32\wscsvc.dll [80896] =>.Microsoft Corporation
O83 - Search Svchost Services: xmlprov (xmlprov) . (.Microsoft Corporation - Network Provisioning Service.) -- C:\WINDOWS\system32\xmlprov.dll [129024] =>.Microsoft Corporation
O83 - Search Svchost Services: napagent (napagent) . (.Microsoft Corporation - Exécution du service Agent de quarantaine.) -- C:\WINDOWS\system32\qagentrt.dll [293376] =>.Microsoft Corporation
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\WINDOWS\system32\kmsvc.dll [61440] =>.Microsoft Corporation
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\WINDOWS\system32\qmgr.dll [409088] =>.Microsoft Corporation
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update AutoUpdate Service.) -- C:\WINDOWS\system32\wuauserv.dll [6656] =>.Microsoft Corporation
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS\system32\shsvcs.dll [135680] =>.Microsoft Corporation
O83 - Search Svchost Services: helpsvc (helpsvc) . (.Microsoft Corporation - Microsoft PCHealth Service Holder.) -- C:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll [38400] =>.Microsoft Corporation
O83 - Search Svchost Services: WmdmPmSN (WmdmPmSN) . (.Microsoft Corporation - Fournisseur de services de périphérique mul.) -- C:\WINDOWS\system32\mspmsnsv.dll [52736] =>.Microsoft Corporation

---\\ CODES PRODUITS LOGICIELS (41) - 2s
O90 - PUC: "000041090100C0400000000000F01FEC" [HKLM] . (.Microsoft Software Update for Web Folders (French) 14.) =>.Microsoft Corporation
O90 - PUC: "00004109110000000000000000F01FEC" [HKLM] . (.Microsoft Office Professional Plus 2010.) =>.Microsoft Corporation
O90 - PUC: "000041091A00C0400000000000F01FEC" [HKLM] . (.Microsoft Office OneNote MUI (French) 2010.) =>.Microsoft Corporation
O90 - PUC: "000041094400C0400000000000F01FEC" [HKLM] . (.Microsoft Office InfoPath MUI (French) 2010.) =>.Microsoft Corporation
O90 - PUC: "000041095100C0400000000000F01FEC" [HKLM] . (.Microsoft Office Access MUI (French) 2010.) =>.Microsoft Corporation
O90 - PUC: "000041096100C0400000000000F01FEC" [HKLM] . (.Microsoft Office Excel MUI (French) 2010.) =>.Microsoft Corporation
O90 - PUC: "000041098100C0400000000000F01FEC" [HKLM] . (.Microsoft Office PowerPoint MUI (French) 2010.) =>.Microsoft Corporation
O90 - PUC: "000041099100C0400000000000F01FEC" [HKLM] . (.Microsoft Office Publisher MUI (French) 2010.) =>.bl.org
O90 - PUC: "00004109A100C0400000000000F01FEC" [HKLM] . (.Microsoft Office Outlook MUI (French) 2010.) =>.Microsoft Corporation
O90 - PUC: "00004109AB00C0400000000000F01FEC" [HKLM] . (.Microsoft Office Groove MUI (French) 2010.) =>.Microsoft Corporation
O90 - PUC: "00004109B100C0400000000000F01FEC" [HKLM] . (.Microsoft Office Word MUI (French) 2010.) =>.Microsoft Corporation
O90 - PUC: "00004109C200C0400000000000F01FEC" [HKLM] . (.Microsoft Office Proofing (French) 2010.) =>.Microsoft Corporation
O90 - PUC: "00004109E600C0400000000000F01FEC" [HKLM] . (.Microsoft Office Shared MUI (French) 2010.) =>.Microsoft Corporation
O90 - PUC: "00004109F10010400000000000F01FEC" [HKLM] . (.Microsoft Office Proof (Arabic) 2010.) =>.Microsoft Corporation
O90 - PUC: "00004109F10031400000000000F01FEC" [HKLM] . (.Microsoft Office Proof (Dutch) 2010.) =>.Microsoft Corporation
O90 - PUC: "00004109F10070400000000000F01FEC" [HKLM] . (.Microsoft Office Proof (German) 2010.) =>.Microsoft Corporation
O90 - PUC: "00004109F10090400000000000F01FEC" [HKLM] . (.Microsoft Office Proof (English) 2010.) =>.Microsoft Corporation
O90 - PUC: "00004109F100A0C00000000000F01FEC" [HKLM] . (.Microsoft Office Proof (Spanish) 2010.) =>.Microsoft Corporation
O90 - PUC: "00004109F100C0400000000000F01FEC" [HKLM] . (.Microsoft Office Proof (French) 2010.) =>.Microsoft Corporation
O90 - PUC: "0666610115C05534DB474D07E0DF8BB3" [HKLM] . (.Adobe AIR.) =>.Adobe Inc.
O90 - PUC: "17400AB28230347339DBAF1833357A38" [HKLM] . (.Microsoft .NET Framework 3.0 Service Pack 1.) -- C:\WINDOWS\Installer\{2BA00471-0328-3743-93BD-FA813353A783}\ArpIcon =>.Microsoft Corporation
O90 - PUC: "1F3B805BA42A0C233B0158879691FE82" [HKLM] . (.Microsoft .NET Framework 2.0 Service Pack 1.) =>.Microsoft Corporation
O90 - PUC: "2AEA67B55E4D55B39B56CA3CA60EAECF" [HKLM] . (.Microsoft .NET Framework 3.5 Language Pack - fra.) =>.Microsoft Corporation
O90 - PUC: "3C540BB74E5D02645B63CD11AADC9524" [HKLM] . (.Broadcom Management Programs.) -- C:\WINDOWS\Installer\{7BB045C3-D5E4-4620-B536-DC11AACD5942}\ARPPRODUCTICON.exe =>.Broadcom Corporation
O90 - PUC: "46CAD9AD749CAB744B11A891951B77FC" [HKLM] . (.LightScribe System Software 1.14.25.1.) -- C:\WINDOWS\Installer\{DA9DAC64-C947-47BA-B411-8A1959B177CF}\ARPPRODUCTICON.exe =>.Hewlett-Packard
O90 - PUC: "5C1093C35543A0E32A41B090A305076A" [HKLM] . (.Microsoft .NET Framework 4 Client Profile.) =>.Microsoft Corporation
O90 - PUC: "67353B5DE9F63B749A8F978142BEEFD0" [HKLM] . (.Samsung PC Studio 3.) =>.Samsung Electronics
O90 - PUC: "6F9E66FF7E38E3A3FA41D89E8A906A4A" [HKLM] . (.Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.) =>.bl.org
O90 - PUC: "789B078FCB81CF54B98E530CD2DC1AF0" [HKLM] . (.Broadcom NetXtreme Ethernet Controller.) -- C:\WINDOWS\Installer\{F870B987-18BC-45FC-9BE8-35C02DCDA10F}\ARPPRODUCTICON.exe =>.Broadcom Corporation
O90 - PUC: "7C43C21609E58D74B9C5F017D78D7262" [HKLM] . (.swMSM.) -- C:\WINDOWS\Installer\{612C34C7-5E90-47D8-9B5C-0F717DD82726}\ARPPRODUCTICON.exe =>.Adobe Inc.
O90 - PUC: "966FD11503920C03E86B5582782EE98C" [HKLM] . (.Microsoft .NET Framework 3.0 Service Pack 1 Language Pack - FRA.) -- C:\WINDOWS\Installer\{511DF669-2930-30C0-8EB6-552887E29EC8}\Setup.ico =>.Microsoft Corporation
O90 - PUC: "9B4297F3841D1413781B863F06349A04" [HKLM] . (.Microsoft .NET Framework 2.0 Service Pack 1 Language Pack - FRA.) =>.Microsoft Corporation
O90 - PUC: "c049C053C7D38EE4AB9A00CB3B5D2472" [HKLM] . (.WebFldrs XP.) =>.Microsoft Corporation
O90 - PUC: "D23A6F98087A6CA43BB0A8DF805760A3" [HKLM] . (.ZD Soft Screen Recorder 11.1.12.) -- C:\WINDOWS\Installer\{89F6A32D-A780-4AC6-B30B-8AFD0875063A}\ScnRec.ico
O90 - PUC: "D7314F9862C648A4DB8BE2A5B47BE100" [HKLM] . (.Microsoft Silverlight.) -- C:\WINDOWS\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ARPIcon =>.Microsoft Corporation
O90 - PUC: "DB990CF2B9CABE3308C93D231E2BC704" [HKLM] . (.Microsoft .NET Framework 3.5.) =>.Microsoft Corporation
O90 - PUC: "FCDAC0A0AD874C333A05DC1548B97920" [HKLM] . (.Microsoft .NET Framework 4 Extended.) =>.Microsoft Corporation
O90 - PUC: "49D2A42E512318E48AAB71CBE0755779" [HKCU] . (.HP USB Smart Card Keyboard.) =>.Hewlett-Packard
O90 - PUC: "7222425F15028514CA24F0B2AAC33D6D" [HKCU] . (.HP SetRefresh.) -- %APPDATA%\Microsoft\Installer\{F5242227-2051-4158-AC42-0F2BAA3CD3D6}\ARPPRODUCTICON.exe =>.Hewlett-Packard
O90 - PUC: "49D2A42E512318E48AAB71CBE0755779" [HKU] . (.HP USB Smart Card Keyboard.) =>.Hewlett-Packard
O90 - PUC: "7222425F15028514CA24F0B2AAC33D6D" [HKU] . (.HP SetRefresh.) -- %APPDATA%\Microsoft\Installer\{F5242227-2051-4158-AC42-0F2BAA3CD3D6}\ARPPRODUCTICON.exe =>.Hewlett-Packard

---\\ PACKAGES WINDOWS INSTALLER (39) - 44s
[MD5.4DE74F71B03AD9C3625D6551374E6253] [WIS][2018/07/08 23:42:31] (..) -- C:\WINDOWS\Installer\1022ff.msi [1482752]
[MD5.71D4373B6FFF3A28F3C31666424FDCAA] [WIS][2018/07/08 23:44:10] (..) -- C:\WINDOWS\Installer\102304.msi [1401856]
[MD5.B8D172707608177DA351027413490134] [WIS][2018/07/08 23:49:26] (..) -- C:\WINDOWS\Installer\10230a.msi [228352]
[MD5.0AACCF7D964862514C318662C18A9890] [WIS][2018/07/09 14:47:49] (..) -- C:\WINDOWS\Installer\16eecf.msi [86528]
[MD5.73391F8378DCF1B7DDFA038D80301890] [WIS][2018/07/09 14:50:10] (..) -- C:\WINDOWS\Installer\1a6cb6.msi [348160]
[MD5.021A0195DE3B29B9172FA7B797DE6058] [WIS][2018/07/09 14:51:10] (..) -- C:\WINDOWS\Installer\1bd93c.msi [630272]
[MD5.9C9768994FF1A88DACA02297F648A3E5] [WIS][2018/07/09 14:52:15] (..) -- C:\WINDOWS\Installer\1ca701.msi [102400]
[MD5.D9493B47468853A0B2A5032D147E89A9] [WIS][2018/07/09 14:52:30] (..) -- C:\WINDOWS\Installer\1ca715.msi [1119744]
[MD5.D27D87D36E45395A16ECA75CC2B9F257] [WIS][2018/07/09 14:52:43] (..) -- C:\WINDOWS\Installer\1ca724.msi [428544]
[MD5.1E0D63AF1BD565FD77D8845124732826] [WIS][2018/07/09 15:00:07] (..) -- C:\WINDOWS\Installer\1ca742.msi [1160192]
[MD5.2C481642B56BA105E1E171E756B87159] [WIS][2018/07/09 15:07:22] (..) -- C:\WINDOWS\Installer\1ca74a.msi [492544]
[MD5.334BC32E261800C14427B789BCDF95A3] [WIS][2018/07/10 11:18:04] (..) -- C:\WINDOWS\Installer\326323.msi [1158656]
[MD5.B6D0FEC1321878F299365491F08831B7] [WIS][2018/07/08 23:05:45] (..) -- C:\WINDOWS\Installer\3459a.msi [265216]
[MD5.0E49BA0C3740F97A7A85A978121AC8A7] [WIS][2018/07/09 15:20:11] (..) -- C:\WINDOWS\Installer\35d046.msi [3063296]
[MD5.D8BDA72CFA10E0ECD38F5B160B06ED34] [WIS][2018/07/09 15:20:51] (..) -- C:\WINDOWS\Installer\35d04d.msi [1803776]
[MD5.D705629EDC1792D1079E2E2C0AA2733E] [WIS][2018/07/09 15:21:47] (..) -- C:\WINDOWS\Installer\35d054.msi [1801216]
[MD5.8D7F05FD38E1AE3EB0A793036392DCF7] [WIS][2018/07/09 15:22:26] (..) -- C:\WINDOWS\Installer\35d05b.msi [1805312]
[MD5.BA1EADB8ECE49D70411C3107E32239A2] [WIS][2018/07/09 15:22:34] (..) -- C:\WINDOWS\Installer\35d062.msi [2116608]
[MD5.095017357B632C1797B2FAF7154D0EDE] [WIS][2018/07/09 15:22:38] (..) -- C:\WINDOWS\Installer\35d069.msi [651776]
[MD5.EBCE781C2AF8136A7B39DA46A431BBBD] [WIS][2018/07/09 15:22:40] (..) -- C:\WINDOWS\Installer\35d070.msi [659456]
[MD5.6B9FDAEA22BC8755EC20B8842FECA16F] [WIS][2018/07/09 15:22:42] (..) -- C:\WINDOWS\Installer\35d077.msi [659456]
[MD5.81FAF3BE2053EC884249796F68021495] [WIS][2018/07/09 15:22:44] (..) -- C:\WINDOWS\Installer\35d07e.msi [664064]
[MD5.1B8CEB4FA7AB1DD3B95CEEF30F3A8D46] [WIS][2018/07/09 15:22:46] (..) -- C:\WINDOWS\Installer\35d085.msi [653312]
[MD5.D63EC5772490429F140A120F87EBA701] [WIS][2018/07/09 15:22:48] (..) -- C:\WINDOWS\Installer\35d08c.msi [660480]
[MD5.22D6B8BC05A58EF6396D089D61678367] [WIS][2018/07/09 15:22:50] (..) -- C:\WINDOWS\Installer\35d093.msi [650752]
[MD5.83B0B81A64CD79D8D143994729FD3B75] [WIS][2018/07/09 15:22:54] (..) -- C:\WINDOWS\Installer\35d09a.msi [1800704]
[MD5.4603B1079F0DB30BA722E0860B318DE4] [WIS][2018/07/09 15:23:00] (..) -- C:\WINDOWS\Installer\35d0a1.msi [2445312]
[MD5.119799859CE4AD391B716268A1CB71B8] [WIS][2018/07/09 15:23:06] (..) -- C:\WINDOWS\Installer\35d0a9.msi [1815552]
[MD5.EF90B7F0F6B0D99488BC806068197E70] [WIS][2018/07/09 15:23:11] (..) -- C:\WINDOWS\Installer\35d0b0.msi [1821184]
[MD5.4E5481E4B85EF2F101BB36650E2E1C16] [WIS][2018/07/09 15:23:15] (..) -- C:\WINDOWS\Installer\35d0ba.msi [47616]
[MD5.0A1824E294A14C9F4E87CF436DA0188E] [WIS][2018/07/09 15:23:34] (..) -- C:\WINDOWS\Installer\35d0c1.msi [1821184]
[MD5.581F410E200CAFF1CC159948E6D712A9] [WIS][2018/07/09 15:26:17] (..) -- C:\WINDOWS\Installer\35d0cc.msi [24806400]
[MD5.BEED1074F7430BCD172FF53573C5400C] [WIS][2018/07/08 23:17:07] (..) -- C:\WINDOWS\Installer\3932c.msi [343040]
[MD5.2CDC318A634DD3ABC770194A37D9BC3C] [WIS][2018/07/08 23:20:09] (..) -- C:\WINDOWS\Installer\39333.msi [2522624]
[MD5.8B6B0446BEE47D7FD367B249EA909B84] [WIS][2018/07/08 23:23:21] (..) -- C:\WINDOWS\Installer\39339.msi [1760768]
[MD5.5DA9B7FFCD176DAD2964E9811353B8D6] [WIS][2018/07/13 01:13:41] (..) -- C:\WINDOWS\Installer\4ad9a4.msi [167424]
[MD5.EFA24A6A57102DF12A8CC5A9A4F7EE99] [WIS][2018/07/10 11:50:28] (..) -- C:\WINDOWS\Installer\51bf35.msi [430592]
[MD5.8A32D476DC67363EF736C4224A9DC15A] [WIS][2018/07/10 12:01:58] (..) -- C:\WINDOWS\Installer\51bf75.msi [30720]
[MD5.4226B5D6DE81C5C014F2260AFB7E758F] [WIS][2018/07/09 14:36:44] (..) -- C:\WINDOWS\Installer\eedec.msi [37888]

---\\ FEATURE CONTROLE. (80) - 0s
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ACTIVEX_REPURPOSEDETECTION]:sllauncher.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ACTIVEX_REPURPOSEDETECTION]:PresentationHost.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:clview.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BEHAVIORS]:infopath.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BEHAVIORS]:msn6.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BEHAVIORS]:iexplore.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BEHAVIORS]:explorer.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BEHAVIORS]:msimn.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BEHAVIORS]:clview.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BLOCK_LMZ_IMG]:sllauncher.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BLOCK_LMZ_IMG]:PresentationHost.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BLOCK_LMZ_OBJECT]:sllauncher.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BLOCK_LMZ_OBJECT]:PresentationHost.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BLOCK_LMZ_SCRIPT]:sllauncher.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BLOCK_LMZ_SCRIPT]:PresentationHost.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION]:sllauncher.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION]:VideoEditor.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_LEGACY_COMPRESSION]:PresentationHost.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_MK_PROTOCOL]:SAPLOGON.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_MK_PROTOCOL]:SAPfewgsrv.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_MK_PROTOCOL]:iexplore.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_MK_PROTOCOL]:explorer.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_MK_PROTOCOL]:msimn.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_MK_PROTOCOL]:clview.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_TELNET_PROTOCOL]:PresentationHost.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ENABLE_SCRIPT_PASTE_URLACTION_IF_PROMPT]:sllauncher.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ENABLE_SCRIPT_PASTE_URLACTION_IF_PROMPT]:PresentationHost.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_FORCE_ADDR_AND_STATUS]:PresentationHost.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:clview.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:wmplayer.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:iexplore.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:explorer.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:msimn.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:sllauncher.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:PresentationHost.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:clview.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MAXCONNECTIONSPER1_0SERVER]:sllauncher.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MAXCONNECTIONSPERSERVER]:sllauncher.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:iexplore.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:explorer.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:msimn.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:clview.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:iexplore.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:explorer.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:msimn.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:clview.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:iexplore.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:explorer.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:msimn.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:clview.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:iexplore.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:explorer.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ABOUT_PROTOCOL_IE7]:sllauncher.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ABOUT_PROTOCOL_IE7]:PresentationHost.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:clview.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:clview.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_OBJECT_DATA_ATTRIBUTE]:sllauncher.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_OBJECT_DATA_ATTRIBUTE]:PresentationHost.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_RES_TO_LMZ]:sllauncher.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_RES_TO_LMZ]:PresentationHost.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:iexplore.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:explorer.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:clview.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:clview.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SHOW_APP_PROTOCOL_WARN_DIALOG]:sllauncher.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SHOW_APP_PROTOCOL_WARN_DIALOG]:PresentationHost.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SSLUX]:PresentationHost.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:clview.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:iexplore.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:explorer.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:msimn.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:iexplore.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:explorer.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:msimn.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:clview.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:iexplore.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:explorer.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:msimn.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:PresentationHost.exe =>.Legitimate
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:clview.exe =>.Legitimate

---\\ SCAN ADDITIONNEL (23) - 6s
HKLM\SYSTEM\CurrentControlSet\Services\TheCalendarService =>PUP.Optional.ScreenSnapshot
C:\Program Files\CalendarTool\2.0.0.1000176\CalendarServ.exe =>PUP.Optional.ScreenSnapshot
C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\CatalinaGroup\Update\1.3.25.225\npCatalinaUpdate3.dll =>.SUP.CatalinaMarketing
HKCU\SOFTWARE\MozillaPlugins\@catalinahub.net/CatalinaGroup Update;version=3 =>.SUP.CatalinaMarketing
HKCU\SOFTWARE\MozillaPlugins\@catalinahub.net/CatalinaGroup Update;version=9 =>.SUP.CatalinaMarketing
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\WinMend File Copy_is1 =>.SUP.SunnyDigit
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WinMend File Copy_is1 =>.SUP.SunnyDigit
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Citrio =>.SUP.CatalinaMarketing
C:\Program Files\WinMend =>.SUP.SunnyDigit
C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\CatalinaGroup =>.SUP.CatalinaMarketing
C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\Torch =>.SUP.Torch
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\CContextMenuExt =>.SUP.Orphan
HKLM\Software\Classes\CLSID\{1FC0D81E-00A0-443B-AB4D-51DEFEB9EA54} =>.SUP.Orphan
HKLM\Software\Wow6432Node\Classes\CLSID\{1FC0D81E-00A0-443B-AB4D-51DEFEB9EA54} =>.SUP.Orphan
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\CContextMenuExt =>.SUP.Orphan
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\Sharing =>.SUP.Orphan
HKLM\Software\Classes\CLSID\{f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} =>.SUP.Orphan
HKLM\Software\Wow6432Node\Classes\CLSID\{f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} =>.SUP.Orphan
HKLM\Software\Classes\Drive\shellex\ContextMenuHandlers\Sharing =>.SUP.Orphan
C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\CatalinaGroup\Update\CatalinaUpdate.exe =>.SUP.CatalinaMarketing
HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\CatalinaGroup Update =>.SUP.CatalinaMarketing
HKLM\SOFTWARE\Wow6432Node\Clients\StartMenuInternet\citrio.exe\shell\Open\command =>.SUP.CatalinaMarketing
C:\Documents and Settings\Mr-MDX\Local Settings\Application Data\CatalinaGroup\Citrio\Application\citrio.exe =>.SUP.CatalinaMarketing

---\\ RÉCAPITULATIF DES ÉLÉMENTS TROUVÉS SUR VOTRE STATION (11) - 0s
https://www.anti-malware.top/2016/06/21/conseils-logiciel-publicitaire-screensnapshot/ =>PUP.Optional.ScreenSnapshot
https://nicolascoolman.eu/2017/09/16/sup-catalinamarketing/ =>.SUP.CatalinaMarketing
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.SunnyDigit
https://nicolascoolman.eu/2017/09/19/adware-installcore-3/ =>Adware.InstallCore
https://www.anti-malware.top/2016/06/08/superfluous-securepccleaner/ =>.SUP.SecurePCCleaner
https://www.nicolascoolman.com/fr/pup-optional-weathertool =>PUP.Optional.WeatherTool
https://nicolascoolman.eu/2017/03/13/superfluous-bytefence/ =>.SUP.ByteFence
https://nicolascoolman.eu/2017/12/23/sup-magicbit/ =>.SUP.Magicbit
https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Torch
https://nicolascoolman.eu/2017/09/12/origine-lignes-orphelines/ =>.SUP.Orphan
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>PUP.Optional.Citrio

~ Unselected Options: O82,
~ End of the scan, 5014 items in 06mn31s (1472)(0)